InfoQ Homepage DevOps Content on InfoQ
-
Mitigating Software Vulnerabilities at Microsoft over the Last 20+ Years
At BlueHat IL 2019, Microsoft engineer Matt Miller described how the software vulnerability landscape has evolved over the last 20+ years and the approach Microsoft has been taking to mitigate threats. Interestingly, among the major culprits of security bugs, says Miller, are memory safety issues, which account for 70% of total security bugs Microsoft has patched.
-
RunC Bug Enables Malicious Containers to Gain Root Access on Hosts
Security researchers have discovered a critical bug in runC - a lightweight CLI tool for spawning containers according to the OCI specification - which allows the attackers to escape the container and gain administrative privileges on the host, rendering it vulnerable.
-
DNS Solution CoreDNS Graduates from the Cloud Native Computing Foundation
CoreDNS, a cloud-native DNS server commonly used for dynamic DNS-based service discovery, has become the first Cloud Native Computing Foundation (CNCF) project to graduate in 2019.
-
Amazon Adds Three New Threat Detections to Its GuardDuty Service in AWS
Amazon has added another set of new threat detections to its GuardDuty service in AWS. The three new threat detections are two new penetration testing detections and one policy violation detection.
-
Managing Cloud Spend, Azure Cost Management Reaches General Availability
In a recent blog post, Microsoft announced Azure Cost Management has reached general availability (GA). Azure Cost Management provides a native cost management solution for enterprise customers which allows organizations to manage and optimize Azure costs across their subscriptions. The core feature set includes cost analysis, budgets, data export, management APIs and alerting.
-
Eclipse Releases GlassFish 5.1 Certified as Compatible with Java EE 8
Eclipse has achieved another GlassFish milestone with the anticipated GA release of version 5.1. A year in the making, this milestone included previous GlassFish milestones such as the full migration of source code and open-sourcing the Java EE TCK (September 2018), the RC1 release of GlassFish 5.1 (October 2018), and the integration of EclipseLink and Eclipse Jersey in GlassFish (December 2018).
-
Q&A on Cloud Discovery Tool for Multi-Cloud Environments
Cloud Discovery is an open-source tool from Twistlock that connects to cloud providers and gets an inventory of all the various infrastructure resources deployed. Cloud Discovery gathers and reports resources metadata in an aggregated way. Furthermore, application security holes can be identified when there’s more visibility across environments, such as which resources are missing a firewall rule.
-
Three Pillars with Zero Answers: Rethinking Observability with Ben Sigelman
At KubeCon NA, held in Seattle, USA, in December 2018, Ben Sigelman presented “Three Pillars, Zero Answers: We Need to Rethink Observability” and argued that many organisations may need to rethink their approach to metrics, logging and distributed tracing.
-
Evolution of Metrics Collection and Log Aggregation at Coinbase
Luke Demi, software engineer at Coinbase, writes about the changes in monitoring and logging that have taken place at Coinbase since mid-2018. Coinbase moved from a self-managed Elasticsearch cluster that served the dual purpose of log analysis and metrics visualization, to Datadog for metrics collection and managed Elasticsearch on AWS for log aggregation.
-
Microsoft Announces New Azure Analytics Services ADLS, ADX and More
Microsoft has announced the general availability of two new Azure analytics services - Azure Data Lake Storage Gen2 (ADLS) and Azure Data Explorer (ADX). Furthermore, Microsoft also announced the preview of Azure Data Factory Mapping Data Flow.
-
Improving Deployment Safety at Airbnb with Pipelines
Alexander Katz, a software engineering intern at Airbnb, recently wrote about improving deployment safety with the introduction of deployment pipelines to Deployboard. The inhouse deployment service at Airbnb, Deployboard, handles thousands of deploys daily for the thousands of services that support Airbnb’s product.
-
Uber Introduces AresDB: GPU-Powered, Open-Source, Real-Time Analytics Engine
Uber recently introduced AresDB, an open-source real-time analytics engine leveraging an unconventional power source - graphics processing units (GPUs) - for meeting the growing demands of analysis at scale and at the same time unifying, simplifying and improving Uber’s existing solutions.
-
Amazon Announces AWS PrivateLink Support for Its ECR and ECS Services
In a recent blog post, Amazon announced AWS PrivateLink support for its Elastic Container Registry (ECR) and Elastic Container Service (ECS). With AWS PrivateLink support customers can create endpoints for ECS and ECR appearing as elastic network interfaces with a private IP address in their Virtual Private Cloud (VPC).
-
GoDaddy Announces Sponsorship of AdoptOpenJDK to Further its Commitment to a Free and Open Internet
GoDaddy, the well-known domain name registrar company, recently announced sponsorship of the AdoptOpenJDK community. Charles Beadnall, CTO at GoDaddy, and Martijn Verburg, co-founder and CEO at jClarity and co-founder of AdoptOpenJDK, spoke to InfoQ about this new sponsorship.
-
Testing Complex Distributed Systems at FT.com: Sarah Wells Shares Lessons Learned
The complexity in complex distributed systems isn’t in the code, it’s between the services or functions. Testing implies balancing finding problems versus delivering value, said Sarah Wells at the European Testing Conference. Testers often have the best understanding of what the system does; they have a good hypothesis about what went wrong, and are able to validate it pretty quickly.