Technology Short Take 134

Welcome to Technology Short Take #134! I’m publishing a bit early this time due to the Thanksgiving holiday in the US. So, for all my US readers, here’s some content to peruse while enjoying some turkey (or whatever you’re having this year). For my international readers, here’s some content to peruse while enjoying dramatically lower volumes of e-mail because the US is on holiday. See, something for everyone!

Networking

  • Isovalent—the company behind Cilium, the eBPF-powered networking solution for Kubernetes clusters—just launched with a $29M Series A round of funding. Cilium is good stuff, and the Isovalent team is chock-full of great people. Congrats, Isovalent team!
  • Has the time come for the return of DNS cache poisoning attacks?

Security

  • I’m glad to see this. Open source has become so critical to so many aspects of our computing infrastructure.
  • OpenCSPM looks like it could be quite a useful tool. I haven’t yet had time to dig in and get familiar with the details, but what I have seen so far looks good.
  • Uh oh…more hardware exploits.
  • The macOS OCSP fiasco generated quite a bit of attention and analysis (see here and here).

Cloud Computing/Cloud Management

  • Shray Kumar provides ten tips for running Istio in production. This article is chock-full of useful information that, typically, can only be gathered from direct experience (like the note on using istioctl instead of the Istio Operator to avoid an issue when upgrading from 1.6 to 1.7).
  • AWS has some advice for customers dealing with Docker Hub rate limits. I’m still somewhat in shock at the move by Docker to simply give away their position as the de facto “app store” of the container world, but hey, what do I know? The void left by their decision is rapidly going to be filled by someone else (and based on this article it looks like AWS is gunning for the spot).
  • Vlad Holubiev has some tricks for making smaller Lambda artifacts and thus reducing cold start latency.
  • Teammate Eric Shanks shows folks how to use ytt to customize a TKG deployment. It’s a bit of a whirlwind introduction, but Eric also supplies some practical use cases/examples towards the end of the article. I often find that helpful when learning something new.
  • I recently stumbled across Ricardo Sueiras’ “AWS open source news and updates” posts. Here’s number 43, from 9 November 2020. Good stuff here!
  • I wasn’t aware of Cloudflare Argo Tunnel, so this article was informative for that reason alone. Throw in some Fargate and there’s even more to learn!
  • I predict we’ll see more of this kind of content as folks seek to migrate away from Docker Hub.
  • Niko Virtala shares some information on making AWS developer tools work with AWS SSO.
  • Adrian Hornsby shows how to use AWS Systems Manager Automation to perform chaos engineering experiments. I particularly appreciated how Adrian provides an example of how it’s done, and walks readers through in detail how the example works. Adrian’s operational review readiness template is another great post as well.
  • The race to make Kubernetes ever smaller continues.

Operating Systems/Applications

  • One of the things I love about Matt Oswalt is that he exemplifies the idea of a perpetual learner. The latest example is Matt’s post on the anatomy of a binary executable, in which he dives deep into what exactly it means to be a binary executable file. Good stuff!
  • You may have heard of eBPF, the Linux technology that is reshaping Linux applications (and in some ways reshaping Linux itself). Brendan Gregg discusses the future of BPF binaries, made possible through BTF and CO-RE. The idea of creating ELF binaries (don’t know what that is? See the previous bullet!) for BPF is pretty cool, in my opinion, and has the potential to unlock a lot of innovation in this space.
  • Something about Linux, and Fedora in particular, just keeps drawing me back. If you’re in a similar boat, and you’re looking for information on how to get Firefox on Fedora to play H.264 videos, Leo Chavez has some information that should help.
  • Here’s a bit of history on macOS, for those of us interested in such things.
  • This looks horribly confusing. It almost feels like we are well into Windows Registry territory here.
  • What a time to be alive: Microsoft has its own Linux distribution.
  • Whether it be dissatisfaction with macOS 11 “Big Sur,” or unhappiness at the direction of their hardware (there’s some discussion that the new M1 chips don’t support eGPUs), or concerns over privacy given the recent issues with OCSP and macOS “dialing home,” I’m seeing folks leaving macOS for other platforms (mostly Linux). Preslav Rachev shares his story here, and Juan Diego Caballero shares his story here.

Storage

  • Chris Mellor shares an interview with Hazelcast on the performance of Intel Optane PMem.

Virtualization

  • Mark Brookfield has an in-depth article on using continuous deployment to provision VDI desktops. The article covers everything from using Packer to automate the creation of the desktop images, to using HashiCorp Vault to store the credentials used in the desktop image, to using PowerCLI to recompose the VDI pool—all orchestrated by GitLab CI/CD. Well done.
  • William Lam shares how to build a complete vSphere with Tanzu homelab in just 32GB of RAM.
  • VMware finally splits VMware Tools out from vSphere.
  • I told you AWS Nitro Enclaves were going to be interesting. In this article, we see an example of using Nitro Enclaves to provide ultra-secure password storage within EC2 instances. The author of the article, Luc van Donkersgoed, also has a couple of articles on using Nitro Enclaves for ACM (see part 1 and part 2).
  • Frank Denneman has a great article that walks readers through the network configuration for vSphere with Tanzu, helping to break down each of the various networks and IP addresses required.
  • Blake Garner shares a Packer template for macOS 11 on VMware Fusion.

That’s all this time, but hopefully it’s enough! If you have suggestions for content to include in a future Technology Short Take, or if you’d just like to catch up and say hello, feel free to contact me on Twitter. Enjoy the rest of your week!

Discover more from UBERCLOUD

Subscribe now to keep reading and get access to the full archive.

Continue reading