At DockerCon 2016, held in Seattle, USA, Aaron Grattafiori presented “The Golden Ticket: Docker and High Security Microservices”. Core recommendations for running secure container-based microservices included enabling User Namespaces, configuring application-specific AppArmor or SELinux and seccomp whitelist, hardening the host system, restricting host access and considering network security.
AWS released an update to its Relational Database Service (RDS) that allows users to take advantage of native SQL Server backup and restore functionality. AWS beat Microsoft Azure to market with this capability which simplifies database migration and disaster recovery scenarios.
Kubernetes 1.3 has been released with improved support for scaling clusters up and down, cross-cluster federated services, improved local development tooling, support for CoreOS’s rkt container format, foundations for the emerging OCI image format and CNI networking standards, and the inclusion of the alpha ‘PetSet’ feature that enables support for implementing stateful applications.
InfoQ had the opportunity to speak with Uri Sarid, the CTO of MuleSoft at their CONNECT 2016 annual conference in San Francisco. Sarid is the creator of RAML, which just released its long awaited version 1.0 in GA, so it was a good opportunity to follow-up from last year’s interview and also to get a broader view on MuleSoft’s solutions for API teams and his vision for APIs.
At QCon New York 2016, Etsy software engineer Stefanie Schirmer told how her company successfully transitioned to an API-first architecture that supports multiple devices, addresses server-side performance problems, and was quickly adopted by development teams.
Stefan Thies, DevOps Evangelist at Sematext, in a recent post discusses ten important container monitoring metrics and their implications on operating Docker containers, specifically when running many containers per host. Combined in a single correlated view these metrics provide a starting point for monitoring Docker-based environments.
Robert Scherrer, head of application engineering at SIX, on how the company leveraged DevOps principles and benefits in the highly regulated Swiss financial industry. Engaging with compliance auditors to collaboratively agree on solutions early before it's too costly to change and avoiding legacy internal directives (not actually required by external regulations) are the main takeaways.
Microsoft has released an updated checklist for high-availability (HA) scenarios in Microsoft Azure with guidance on how to design and manage solutions that use VMs, websites and storage, in cases where great load is expected intermittently or consistently.
VersionEye open-sourced its eponymous continuous integration tool that helps with updated project dependencies. Coined "continuous updating", the tool provides update notifications, licence checking and security vulnerabilities information for many software libraries. By open-sourcing the software, VersionEye founder Robert Reiz intends to increase trust and transparency of the code base.
Jonathan Smart, head of development services at Barclays, described how the bank's DevOps journey requires blending with local cultures (as in local to a given business are or to a geography) to succeed. Principles need to be shared, but practices need to emerge (with guidance where required) by applying those principles to the local context.
Oracle has created JEP 293 to introduce a set of guidelines for command line options in JDK tools in an attempt to fix the existing disparity among them. The JEP has no target version yet, meaning it will be delivered with Java 10 as soonest; however, taking into account that the scope is only to create a set of guidelines for new options, it may take even longer for the effects to be felt.
DevOps transformation projects are increasingly appealing to established enterprises. InfoQ spoke to three businesses focused on DevOps consulting to understand how they are helping businesses make the change.
Stack Overflow has launched a new website called Documentation, enabling developers to create documentation on various software development topics for developers.
In context of its Project Blueshift, Puppet has added a new set of Docker images for running Puppet software released to Docker Hub. Blueshift is a demonstration of solutions to the problem of managing heterogeneous software, using Puppet as the unified way of managing the new software stack.
Previously available on BitBucket Server, Git Large File Storage now reaches Bitbucket Cloud, Atlassian’s cloud-based code management solution, writes Atlassian engineer Szilard Szasz-Toth.