#general (2024-03)

General conversations related to DevOps/Automation

General Discussions

2024-03-01

SweetOps avatar
SweetOps
08:00:03 PM

Hey everyone, give a warm welcome to our newest members!

  • @Madu valentine
  • @Owen
  • @Daniel Grzelak
  • @jedi
  • @Yangci Ou
  • @Christopher McGill
  • @Rafa

Good to have you here =)

cool-doge2
2

2024-03-03

SweetOps avatar
SweetOps
08:00:03 PM

Hey everyone, give a warm welcome to our newest members!

  • @Luis Orlando Cabrera Aldui

Good to have you here =)

sweetops1

2024-03-04

SweetOps avatar
SweetOps
08:00:02 PM

Hey everyone, give a warm welcome to our newest members!

  • @Adnan S
  • @Chris Engelbert
  • @Nathan Henry
  • @Ciprian

Good to have you here =)

2

2024-03-05

SweetOps avatar
SweetOps
08:00:05 PM

Hey everyone, give a warm welcome to our newest members!

  • @greg351
  • @ilkan
  • @GoodGod Okorie
  • @prathapxsz
  • @Joshua Tessier

Good to have you here =)

1
2

2024-03-06

SweetOps avatar
SweetOps
08:00:03 PM

Hey everyone, give a warm welcome to our newest members!

  • @gubuda
  • @Judith Chebet
  • @Jamey
  • @Vitalii Samofal
  • @Zack
  • @gpreciousgodwin

Good to have you here =)

1
1

2024-03-07

SweetOps avatar
SweetOps
08:00:10 PM

Hey everyone, give a warm welcome to our newest members!

  • @Oz Hidiroglu
  • @Greatness Akuma
  • @Kornelia
  • @Steve Sperandeo

Good to have you here =)

sweetops1

2024-03-08

SweetOps avatar
SweetOps
08:00:05 PM

Hey everyone, give a warm welcome to our newest members!

  • @Sean Wright
  • @Sumz
  • @ivi
  • @Matias Palermo
  • @Steve Severinghaus

Good to have you here =)

wave2

2024-03-09

SweetOps avatar
SweetOps
08:00:05 PM

Hey everyone, give a warm welcome to our newest members!

  • @crisnevares
  • @zohirdamene

Good to have you here =)

1
sweetops1

2024-03-10

SweetOps avatar
SweetOps
07:00:05 PM

Hey everyone, give a warm welcome to our newest members!

  • @Gokul Ks

Good to have you here =)

sweetops1
1

2024-03-11

SweetOps avatar
SweetOps
07:00:03 PM

Hey everyone, give a warm welcome to our newest members!

  • @Node
  • @mshiin
  • @Karthik G

Good to have you here =)

wave1
1

2024-03-12

SweetOps avatar
SweetOps
07:00:04 PM

Hey everyone, give a warm welcome to our newest members!

  • @prwnd9
  • @gaurav grover

Good to have you here =)

wave2
1
prwnd9 avatar

Hello, thanks!

wave2

2024-03-13

SweetOps avatar
SweetOps
07:00:04 PM

Hey everyone, give a warm welcome to our newest members!

  • @topher
  • @glashio
  • @Enrique

Good to have you here =)

wave3
1

2024-03-14

SweetOps avatar
SweetOps
07:00:01 PM

Hey everyone, give a warm welcome to our newest members!

  • @Val
  • @bessey
  • @Marty Haught

Good to have you here =)

wave2
1

2024-03-15

SweetOps avatar
SweetOps
07:00:02 PM

Hey everyone, give a warm welcome to our newest members!

  • @Dan

Good to have you here =)

1

2024-03-16

SweetOps avatar
SweetOps
07:00:01 PM

Hey everyone, give a warm welcome to our newest members!

  • @Michael Pruitt
  • @Shivam s

Good to have you here =)

1

2024-03-18

SweetOps avatar
SweetOps
07:00:08 PM

Hey everyone, give a warm welcome to our newest members!

  • @Marat Bakeev
  • @Alexander Pankratiev

Good to have you here =)

1
wave2
sweetops1

2024-03-19

SweetOps avatar
SweetOps
07:00:01 PM

Hey everyone, give a warm welcome to our newest members!

  • @Ercan Ermis
  • @Ozan Gazi
  • @Ozan GAZİ
  • @Samantha Upegui

Good to have you here =)

wave2
1

2024-03-20

SweetOps avatar
SweetOps
07:00:54 PM

Hey everyone, give a warm welcome to our newest members!

  • @William
  • @solaod_slack
  • @olatokunboalege

Good to have you here =)

1
wave2
1

2024-03-22

SweetOps avatar
SweetOps
07:00:02 PM

Hey everyone, give a warm welcome to our newest members!

  • @Amaia
  • @vedran.alajbegovic
  • @Jonas Mariën
  • @Ian-Taylor
  • @riccardo

Good to have you here =)

2
2
wave3

2024-03-23

SweetOps avatar
SweetOps
07:00:06 PM

Hey everyone, give a warm welcome to our newest members!

  • @Monish Devendran
  • @Anil Choudhary

Good to have you here =)

3
wave1

2024-03-25

SweetOps avatar
SweetOps
07:00:04 PM

Hey everyone, give a warm welcome to our newest members!

  • @Jesse Pitts

Good to have you here =)

wave3

2024-03-26

SweetOps avatar
SweetOps
07:00:01 PM

Hey everyone, give a warm welcome to our newest members!

  • @Adithi Nayak
  • @Mark DeBaets
  • @Henrik Gerdes [ARES]

Good to have you here =)

sweetops1
wave1

2024-03-27

SweetOps avatar
SweetOps
07:00:04 PM

Hey everyone, give a warm welcome to our newest members!

  • @ibukuntaiwoa
  • @Aditya
  • @Roy
  • @krishan-software-deve
  • @mark washburn
  • @Lucca

Good to have you here =)

wave3

2024-03-28

SweetOps avatar
SweetOps
07:00:01 PM

Hey everyone, give a warm welcome to our newest members!

  • @shariqueakram
  • @ponkia.ankit
  • @Flavio Briz
  • @Ray

Good to have you here =)

2
wave1

2024-03-29

alan avatar

hi I’m not sure what channel is right for this question, so please let me know if I should delete it.

I’d love to hear how to handle secrets when deploying servers at a cloud provider that doesn’t provide any IAM or secrets management services like I’m used to from AWS. I’m trying to keep things as simple as possible as I’m solely responsible for managing 10s of servers. At the moment I deploy servers using cloud-init and follow an immutable approach, so any changes means redeploying/reinstalling the server after I make changes to the cloud-init config. This works great, but I need a better way to handle secrets than current manual approach.

On AWS I’d use an instance’s role to grant it permissions to write/read secrets in parameter store or secrets manager. I’m lost as to how to approach the lack of these two fundamental services. I know hashicorp vault is popular but 1) I don’t want to deploy and manage vault 2) it seems overkill for my needs.

I’ve looked at mozilla sops but every blog post talks about using it with kubernetes or on the big cloud providers and using their kms services. I’m unsure how this would work for my use-case.

To provide some more background, I have two types of needs when it comes to servers:

  1. First launch of a new server, secrets are generated on the server. I need to store these secrets centrally in case the server is destroyed.
  2. If the server is re-deployed it should check if there’s already a secret available before generating a new one. I know secrets management is a complicated topic, but if anyone has any experience or ideas for how to solve this when a cloud provider doesn’t offer it as a service I’d love to chat. Again I’m looking to KISS :)
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

There’s no silver bullet, and the advice/recommendations will depend on your situation. That’s why it’s hard to find a channel, because the question is too broad. E.g. secrets management for #terraform, or #kubernetes or #aws or #helmfile will all differ.

alan avatar

I agree , but I’d still like to have a discussion if someone is up for it. As I mentioned I’m not using terraform, k8s, aws etc. The starting point for a discussion would be:

• cloud provider that doesn’t offer iam/kms/secrets services

• deployment currently cloud-init config and the provider’s provisioning API

• systemd service units to run the necessary app server

• looking for a simple way to handle secrets generated on the servers

1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

What are your thoughts on HashiCorp Vault or even the managed version? What about using 1Password which has been positioning itself more and more in this category

SweetOps avatar
SweetOps
07:00:03 PM

Hey everyone, give a warm welcome to our newest members!

  • @V.S
  • @yzvl
  • @Nick Sandar
  • @Kellie Mackey
  • @alan
  • @Ashish

Good to have you here =)

wave3

2024-03-30

SweetOps avatar
SweetOps
07:00:04 PM

Hey everyone, give a warm welcome to our newest members!

  • @kunalkumar25.official
  • @jgibbard

Good to have you here =)

wave2

2024-03-31

SweetOps avatar
SweetOps
07:00:04 PM

Hey everyone, give a warm welcome to our newest members!

  • @Narayan Ubale
  • @Dakotah Hurda
  • @Surya Pendyala

Good to have you here =)

wave2
    keyboard_arrow_up