Posts by tag

devops

66 posts
View Post
  • 4 min

Delegate Common Tasks With An Open Source Automation Tool

Rundeck is an open source software used to quickly automate manual tasks. Use it to create workflows consisting of commands, scripts, and APIs. A key precept for site reliability engineering (SRE), platform engineering, and *Ops teams is automating non-essential toil. Think of toil as any tasks that must be done for systems to run smoothly but don’t directly impact functionality. Tasks like running security updates and installing or upgrading packages fall into the toil category. As teams become more proficient at creating automation, automating for other teams becomes more appealing. Delegating tasks to other technical teams so they can self-serve saves…
View Post
Share
View Post
  • 9 min

Manage OpenStack Using Terraform And Gitlab

Follow this tutorial to see how using GitLab can further enhance collaboration in your OpenStack cluster. One virtue of GitOps is Infrastructure as Code. It encourages collaboration by using a shared configuration and policy repository. Using GitLab can further enhance collaboration in your OpenStack cluster. GitLab CI can serve as your source control and orchestration hub for CI/CD, and it can even manage the state of Terraform. To achieve this, you need the following: GitLab and Terraform state The goal is to achieve collaboration through Terraform, so you need to have a centralized state file. GitLab has a managed state for Terraform.…
View Post
Share
View Post
  • 3 min

The Good And Bad Of ‘Zero-Touch’ Cloud Operations

We’re getting closer to true zero-touch cloud operations, or so we keep hearing. Take a clear-eyed look at the advantages and disadvantages before jumping in. Zero-touch cloud operations is the concept of automating cloud operations (cloudops) processes to minimize the need for human intervention. Specifically, it involves automating the deployment, configuration, scaling, monitoring, and resolution of issues on all cloud platforms (public and private), and even extends to traditional legacy systems and edge computing systems as well. Physically, it is a layer of technology running above the cloud providers (e.g., a metacloud). It can be anything that’s able to automate cloudops,…
View Post
Share
View Post
  • 3 min

Are Your CICD And DevOps Tools Really Helping Developers?

If you are responsible for your team’s CICD and DevOps tools, have you ever asked yourself if the tools you built are really making developers’ lives easier? Or are they there just to reinforce the rules you’ve set? It’s your responsibility to make sure the tools and procedures you’ve implemented are truly helping software developers do their job. After setting your CICD tools, how frequently have you asked the developers for feedback? How many times have you changed/updated those based on feedback from the developers? Or are all your changes to support new requirements, infrastructure, and analysis tools? You might…
View Post
Share
View Post
  • 3 min

How Multicloud Changes DevOps

More clouds, more complexity, more challenges. Now’s the time to prepare for the impact multicloud will have on your devops teams. Devops or devsecops (I’ll use devops for this post) is more than just a fast way to build and deploy software within the cloud and on traditional systems. It’s now a solid standard, with best practices, processes, and widely accepted tools. However, as multicloud becomes the new path to cloud computing, I’m asked how it will impact existing devops programs. Specifically, how development may change and what problems need to be addressed before and after moving to devops to…
View Post
Share
View Post
  • 1 min

Kubernetes {Open-Source} Security: A Survey

Guest post originally published on ARMO’s blog by Jonathan Kaftzan, VP Marketing & Business Development at ARMOA first of its kind survey looks at the relationship between open-source and K8s security. Today DevOps and security teams who deploy Kubernetes are forced to make a difficult choice between two security realities. They can either commit to a proprietary solution that they can’t adapt, access its code, influence the roadmap or contribute to its future. Or they can use open-source tools. But then they’ll end up attempting to integrate several of these tools together. This will add complexity to the monitoring and…
View Post
Share
View Post
  • 6 min

Composite Availability: Calculating The Overall Availability Of Cloud Infrastructure

When designing cloud systems, a major consideration is reliability. As infrastructure architects, what do we want to guarantee to our customers, whether they’re internal or end users? How much time can we possibly allow our services to be down? How do we design services for resiliency? A huge portion of reliability is dependent on availability (also called “uptime” or “uptime availability”). In this Google Cloud blog post “Available… or not?” availability is defined as whether or not a system is able to fulfill its intended function at a point in time. In other words, how often is a web page…
View Post
Share
View Post
  • 4 min

Zero Trust For Cloud-Native Workloads: Mitigating Future Log4j Incidents

In my previous blog post, I introduced the brief history of zero trust, the core pillars of a zero-trust model, and how to build a zero-trust model for cloud-native workloads. In this blog post, you will learn how to mitigate vulnerabilities, such as the recent zero-day Log4j vulnerability, with a zero-trust workload security approach. Zero trust: A quick refresher The starting point for building a zero-trust security model is understanding your attack and protect surface. The outcome of designing your security plan should be eliminating the attack surface completely. Enterprises are realizing that the best approach to mitigating breaches and…
View Post
Share
View Post
  • 3 min

Skaffold V2 GA: Further Enhancing Developer Productivity

For years, Google has been committed to maximizing developer productivity. In 2019, we announced the general availability of Skaffold, a command-line tool that facilitates continuous development and delivery for containerized applications. Today, we’re excited to announce that Skaffold V2 is now generally available. Skaffold V2 expands Skaffold’s supported platforms and architectures with the introduction of Cloud Run as a supported deployer, and now supports building from and deploying to both ARM and x86 architectures. Skaffold V2 also offers enhanced support for CI/CD and GitOps workflows, with the introduction of the skaffold render phase, verify phase, and kpt integration. Best of…
View Post
Share
View Post
  • 6 min

Introducing Software Delivery Shield For End-To-End Software Supply Chain Security

Organizations and their software delivery pipelines are continually exposed to growing cyberattack vectors. Coupled with the massive adoption of open source software, which now helps power nearly all of our public infrastructure and is highly prevalent in most proprietary software, businesses around the world are more vulnerable than ever. Today’s organizations need to be more vigilant in protecting their software development infrastructure and processes. Development and IT teams are all asking for a better way to secure the software supply chain across the code, people, systems, and processes that contribute to development and delivery of the software.For many years, Google…
View Post
Share