#office-hours (2021-04)

Meeting password: sweetops

Public “Office Hours” are held every Wednesday at 11:30 PST via Zoom. It’s open to everyone. Ask questions related to DevOps & Cloud and get answers! https://cpco.io/slack-office-hours

Public “Office Hours” are held every Wednesday at 11:30 PST via Zoom. It’s open to everyone. Ask questions related to DevOps & Cloud and get answers! https://cpco.io/slack-office-hours

Meeting password: sweetops

2021-04-28

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
06:00:45 PM

@here office hours is starting in 30 minutes! Remember to post your questions here.

1
1
Zoom avatar
Zoom
06:28:34 PM

Erik Osterman (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:28:41 PM

Rajiv Ranjan has joined Public “Office Hours”

Zoom avatar
Zoom
06:28:50 PM

Emile Fugulin has joined Public “Office Hours”

Zoom avatar
Zoom
06:28:55 PM

Vlad Ionescu has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:00 PM

Jeff Lanza has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:03 PM

Vicken Simonian has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:04 PM

Andrew Grube has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:09 PM

James Thalacker has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:27 PM

Andy Miguel (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:34 PM

Matt Gowie has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:52 PM

Phil Sautter has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:01 PM

Bruce Messick has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:11 PM

Robert Jackson has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:11 PM

Mazin Ahmed has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:11 PM

Michael Londeen has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:11 PM

Jason Valencia has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:12 PM

Matt Calhoun has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:12 PM

Kerri Rist (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:14 PM

Mohammed Yahya has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:19 PM

jasoneinon has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:21 PM

Florain Drescher has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:21 PM

Cliff Williams has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:22 PM

uwaila adams has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:35 PM

Cliff Williams has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:35 PM

Michael Jenkins has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:43 PM

Evan Pitstick has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:05 PM

Kristopher Flint has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:17 PM

emem umoh has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:19 PM

Joaquin Menchaca has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:00 PM

mb Branski has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:04 PM

Liran G has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:14 PM

Vitaly Markov has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:17 PM

Mike Martin has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:32 PM

Jeremy (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:39 PM

PePe Amengual has joined Public “Office Hours”

Zoom avatar
Zoom
06:34:09 PM

Andrew Thompson has joined Public “Office Hours”

Zoom avatar
Zoom
06:35:15 PM

Yoni Leitersdorf has joined Public “Office Hours”

Zoom avatar
Zoom
06:35:38 PM

Luis Masaya has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:04 PM

William Holroyd has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:09 PM

Patrick Joyce has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:15 PM

tamsky has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:24 PM

Dhaval Dedhia has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:49 PM

David Lozano has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:56 PM

Mohammed Yahya has joined Public “Office Hours”

Zoom avatar
Zoom
06:37:58 PM

Dhaval Dedhia has joined Public “Office Hours”

Zoom avatar
Zoom
06:38:30 PM

test has joined Public “Office Hours”

Zoom avatar
Zoom
06:39:51 PM

Dhaval Dedhia has joined Public “Office Hours”

Zoom avatar
Zoom
06:40:30 PM

Pepe Amengual (CloudPosse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:42:31 PM

M Azim Khatri has joined Public “Office Hours”

Zoom avatar
Zoom
06:43:27 PM

Gabriel Boie has joined Public “Office Hours”

Zoom avatar
Zoom
06:45:04 PM

emem umoh has joined Public “Office Hours”

Zoom avatar
Zoom
06:46:35 PM

katrina walker has joined Public “Office Hours”

Zoom avatar
Zoom
06:50:04 PM

Aaron Addleman has joined Public “Office Hours”

Zoom avatar
Zoom
06:51:21 PM

Blaise Pabon has joined Public “Office Hours”

Zoom avatar
Zoom
06:52:46 PM

James Thalacker has joined Public “Office Hours”

Zoom avatar
Zoom
06:53:44 PM

Zaven Boni has joined Public “Office Hours”

Zoom avatar
Zoom
07:02:07 PM

Alina B has joined Public “Office Hours”

Zoom avatar
Zoom
07:09:08 PM

Andy Roth has joined Public “Office Hours”

Zoom avatar
Zoom
07:12:14 PM
Zoom avatar
Zoom
07:12:33 PM

Michael Padgett has joined Public “Office Hours”

Zoom avatar
Zoom
07:14:50 PM

Matt Calhoun has joined Public “Office Hours”

Zoom avatar
Zoom
07:16:03 PM

Stan M has joined Public “Office Hours”

2021-04-21

David Lozano avatar
David Lozano

In certain scenarios, we have had to bootstrap containers to handle variation in configuration files for different environments (e.g. staging / production). We have done so by leveraging mostly Docker entrypoints and confd or shell scripting but for simple and not very complex scenarios.

Is there a better solution or anything you could recommend that would help avoid adding too many abstraction layers to container config management? (e.g. ansible pull)

1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
gomplate documentation

gomplate documentation

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
06:00:30 PM

@here office hours is starting in 30 minutes! Remember to post your questions here.

Zoom avatar
Zoom
06:29:34 PM

Andy Miguel (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:39 PM

Michael Sew has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:39 PM

Zachary Loeber has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:52 PM

Thayne Trevenen has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:57 PM

Emile Fugulin has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:57 PM

Erik Osterman (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:04 PM

Sam C has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:07 PM

James Haughey has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:26 PM

Vlad Ionescu has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:33 PM

Michael Martin has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:43 PM

Matt Gowie has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:46 PM

Florain Drescher has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:54 PM

Hakan Kaya has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:00 PM

mb Branski has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:10 PM

David Vasandani has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:20 PM

Kerri Rist has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:29 PM

David Lozano has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:45 PM

Michael Jenkins has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:48 PM

Mazin Ahmed has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:44 PM

Luis Masaya has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:05 PM

Vicken Simonian has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:20 PM

Kristopher Flint has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:26 PM

Loren Gordon has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:41 PM

James Thalacker has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:49 PM

Kayla Rodriguez has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:59 PM

Stevan Arychuk has joined Public “Office Hours”

Zoom avatar
Zoom
06:34:01 PM

Amelia Graycen has joined Public “Office Hours”

Zoom avatar
Zoom
06:35:00 PM

Patrick Joyce has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:23 PM

Jawwad has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:24 PM

Gabriel Montañola has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:26 PM

Alina B has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:56 PM

Anere Faithful has joined Public “Office Hours”

Zoom avatar
Zoom
06:37:05 PM

Eric Berg has joined Public “Office Hours”

Zoom avatar
Zoom
06:38:04 PM

Andy Roth has joined Public “Office Hours”

Zoom avatar
Zoom
06:38:57 PM

Oliver Schoenborn has joined Public “Office Hours”

Zoom avatar
Zoom
06:40:39 PM

Andrew Thompson has joined Public “Office Hours”

Zoom avatar
Zoom
06:42:04 PM

venkata mutyala has joined Public “Office Hours”

Zoom avatar
Zoom
06:44:31 PM

Alina B has joined Public “Office Hours”

Zoom avatar
Zoom
06:45:29 PM

Jeff Lanza has joined Public “Office Hours”

Zoom avatar
Zoom
06:47:04 PM

Ola Ade has joined Public “Office Hours”

Zoom avatar
Zoom
06:49:45 PM

Gabriel Boie has joined Public “Office Hours”

Zoom avatar
Zoom
06:51:01 PM

Yoni Leitersdorf has joined Public “Office Hours”

Zoom avatar
Zoom
06:52:30 PM

Pepe Amengual (CloudPosse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:52:52 PM

Mohammed Yahya has joined Public “Office Hours”

Zoom avatar
Zoom
06:53:04 PM

Andrew Thompson has joined Public “Office Hours”

tomkinson avatar
tomkinson

Says we need a passcode to enter

Zoom avatar
Zoom
06:54:54 PM

Andrew Thompson has joined Public “Office Hours”

Zoom avatar
Zoom
06:56:05 PM

Mike Martin has joined Public “Office Hours”

tamsky avatar
tamsky

passcode in slack channel description at top

1
Zoom avatar
Zoom
06:57:03 PM

tamsky has joined Public “Office Hours”

Zoom avatar
Zoom
06:57:28 PM

Mike Martin has joined Public “Office Hours”

Zoom avatar
Zoom
06:58:04 PM

ASIS SETHI has joined Public “Office Hours”

Zoom avatar
Zoom
06:58:40 PM

BitsnBites has joined Public “Office Hours”

roth.andy avatar
roth.andy
06:59:26 PM
roth.andy avatar
roth.andy
07:03:45 PM
Zoom avatar
Zoom
07:00:09 PM

Andrew Thompson has joined Public “Office Hours”

Vlad Ionescu (he/him) avatar
Vlad Ionescu (he/him)
Octobox

Untangle your GitHub Notifications

Mazin Ahmed avatar
Mazin Ahmed

I’m working on a new project that will be released soon! Would love to hear your feedback, let me know your Github ID if you would like a preview before release https://twitter.com/mazen160/status/1383475198544936964

Zoom avatar
Zoom
07:04:54 PM

uwaila adams has joined Public “Office Hours”

tomkinson avatar
tomkinson

Our Rancher UI went down and looks like the etcd keeps crashing and restarting (cycling). Over and over. Ever 10 or so seconds. Could this be a cert thing? 3 cluster. Rancher said it’s K8s so we’re digging in but thought to ask. Should we move to Fargate if no K8s specialists? https://youtu.be/zKH5j02abX4

Zoom avatar
Zoom
07:09:08 PM

James Haughey has joined Public “Office Hours”

Zoom avatar
Zoom
07:15:33 PM

Andrew Thompson has joined Public “Office Hours”

Zoom avatar
Zoom
07:19:21 PM

Michael Martin has joined Public “Office Hours”

Zoom avatar
Zoom
07:22:32 PM

Sanjeev M has joined Public “Office Hours”

Zoom avatar
Zoom
07:25:10 PM

Eric Berg has joined Public “Office Hours”

Zoom avatar
Zoom
07:28:58 PM

Eric Berg has joined Public “Office Hours”

Matt Gowie avatar
Matt Gowie

Hey folks, just because it’s easy for things to get lost in the “joined” messages: Here are the docs that we’ve been putting together on the SweetOps methodology: https://docs.cloudposse.com/ and we just released a new tutorial on how to do build an environment on AWS using Cloud Posse tooling + module library + patterns https://docs.cloudposse.com/tutorials/first-aws-environment/. If anybody has any questions be sure to give me a shout!

2

2021-04-20

2021-04-19

2021-04-15

managedkaos avatar
managedkaos

For the next office hours can we get a tutorial/demo on how the Cloud Posse README.md files are generated? I see the structure of the README.yml and the associated docs/terraform.md (which i assume is generated by terraform-docs markdown . I’d be thrilled to see how it all comes together in CI/CD.

1
1
managedkaos avatar
managedkaos

If its not worth the office hours time, and there are docs/demos already available, just point me at those and I’ll proceed with due dilligence.

2021-04-14

Mazin Ahmed avatar
Mazin Ahmed

Hi all! Been a long-time listener to CloudPosse office hours and glad to be joining you on Slack

Mazin Ahmed avatar
Mazin Ahmed

@Erik Osterman (Cloud Posse) If I can add a question to todays discussion, how do people approach migrating existing AWS infrastructure into Terraform for large-scale projects with many resources?

1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
06:00:23 PM

@here office hours is starting in 30 minutes! Remember to post your questions here.

1
Matt Gowie avatar
Matt Gowie

Question for discussion: Does anyone have a solid process for terraform state migrations in larger teams?

My largest client had an issue today where a newer infrastructure engineer did a bunch of terraform state mv migrations for work of his that hadn’t been merged upstream yet and it caused us to roll back a bunch of his state changes. I’d like to propose a better solution for them to do state migrations going forward and I believe I know how I would do it, but I’d like to see if anyone in this group has strong opinions or has already gone through the trenches with this type of problem before.

1
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

hah, we’ve exceeded the max pins per channel for free teams

3
Zoom avatar
Zoom
06:29:37 PM

Erik Osterman (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:46 PM

Sam C has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:47 PM

Colton Wrisner has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:50 PM

mb Branski has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:58 PM

Jeff Lanza has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:05 PM

Mohammed Yahya has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:08 PM

Luis Masaya has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:18 PM

Andy Miguel (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:21 PM

Matt Gowie has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:41 PM

Patrick Joyce has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:54 PM

Mazin Ahmed has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:20 PM

Kristopher Flint has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:50 PM

Julian Severino has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:02 PM

Alex Vorona has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:22 PM

Bill Clark has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:38 PM

Oliver Schoenborn has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:44 PM

Kerri Rist has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:52 PM

Andrew Thompson has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:58 PM

jasoneinon has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:06 PM

Jamie Ratcliffe has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:12 PM

Andrew Thompson has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:57 PM

Ian Bartholomew has joined Public “Office Hours”

Zoom avatar
Zoom
06:35:12 PM

Andrew Grube has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:09 PM

ASIS SETHI has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:27 PM

Thayne Trevenen has joined Public “Office Hours”

Zoom avatar
Zoom
06:37:10 PM

tamsky has joined Public “Office Hours”

Zoom avatar
Zoom
06:37:23 PM

Emile Fugulin has joined Public “Office Hours”

Zoom avatar
Zoom
06:37:40 PM

Andrew Elkins has joined Public “Office Hours”

Zoom avatar
Zoom
06:38:03 PM

Wasim Khan has joined Public “Office Hours”

Zoom avatar
Zoom
06:38:13 PM

Michael Londeen has joined Public “Office Hours”

Zoom avatar
Zoom
06:39:25 PM

venkata mutyala has joined Public “Office Hours”

Zoom avatar
Zoom
06:40:52 PM

Michael Holt has joined Public “Office Hours”

Zoom avatar
Zoom
06:44:28 PM

Andrew Thompson has joined Public “Office Hours”

Zoom avatar
Zoom
06:45:21 PM

Jeremy (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:48:54 PM

Zadkiel has joined Public “Office Hours”

Zoom avatar
Zoom
06:53:26 PM

Jose Franco has joined Public “Office Hours”

Zoom avatar
Zoom
06:59:24 PM

Bill Clark has joined Public “Office Hours”

Zoom avatar
Zoom
07:15:20 PM

Steven Hopkins has joined Public “Office Hours”

Zoom avatar
Zoom
07:20:46 PM

Mohammed Yahya has joined Public “Office Hours”

jason einon avatar
jason einon

Thanks for the talk tonight! first intro to terraformer! and 1password automation given at a great time!

1

2021-04-07

Eric Berg avatar
Eric Berg

When adding custom metrics to our apps, I’m interested in how people structure any given metrics. For example, we could post a single metrics with tags to indicate status, but that makes calculations more complex and prone to error, whereas, if we post the total and and error count, we can more easily get the ratio of errors. What are best practices in this area?

tamsky avatar
tamsky

Have you checked out the docs?
As a rule of thumb, either the sum() or the avg() over all dimensions of a given metric should be meaningful (though not necessarily useful). - @ https://prometheus.io/docs/practices/naming
Having tags indicate status is not a good pattern.

Metric and label naming | Prometheus

An open-source monitoring system with a dimensional data model, flexible query language, efficient time series database and modern alerting approach.

Eric Berg avatar
Eric Berg

Yes, But my question is about what related metrics to publish, not simply how to name metrics but that is

Marcin Brański avatar
Marcin Brański
10:01:23 AM


For example, we could post a single metrics with tags to indicate status
What kind of status are we talking about? Generally the pattern is to use APP_UP metric to indicate if service is up or down (0 down, 1 up). On top of that you add additional metrics (golden signal) and then anything specific to your app usage that makes sense. Check out this book, I think it will answer many of your questions

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
06:00:28 PM

@here office hours is starting in 30 minutes! Remember to post your questions here.

pjaudiomv avatar
pjaudiomv

Im curious how people manage auto rotation of iam user access keys within terraform if time permits.

pjaudiomv avatar
pjaudiomv

basically im manually bumping a user creation module now, i had thought of creating a pipeline schedule that taints the resource and reapplies but curious what other people do.

tamsky avatar
tamsky

what kind of key material or keypairs are these? (access key ID + secret access key) ?

Zoom avatar
Zoom
06:29:25 PM

Andy Miguel (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:27 PM

Andy Roth has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:50 PM

Brandon vh has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:56 PM

Nick James has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:57 PM

Andrew Grube has joined Public “Office Hours”

Zoom avatar
Zoom
06:29:59 PM

Kerri Rist has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:10 PM

David Scott has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:17 PM

Vlad Ionescu has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:46 PM

Aleksandr Fofanov has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:49 PM

Patrick Joyce has joined Public “Office Hours”

Zoom avatar
Zoom
06:30:57 PM

mb Branski has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:03 PM

Erik Osterman (Cloud Posse) has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:07 PM

Mohammed Yahya has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:15 PM

PePe Amengual has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:17 PM

Michael Jenkins has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:20 PM

Vicken Simonian has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:32 PM

Matt Calhoun has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:34 PM

Julian Severino has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:50 PM

Steven Hopkins has joined Public “Office Hours”

Zoom avatar
Zoom
06:31:56 PM

Mtu Nguyaz has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:02 PM

Luis Masaya has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:24 PM

Matt Calhoun has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:41 PM

Andrew Thompson has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:45 PM

Michael Martin has joined Public “Office Hours”

Zoom avatar
Zoom
06:32:52 PM

Neil Gealy has joined Public “Office Hours”

Zoom avatar
Zoom
06:33:03 PM

Jeffrey Regan has joined Public “Office Hours”

Zoom avatar
Zoom
06:34:59 PM

Vicken Simonian has joined Public “Office Hours”

Zoom avatar
Zoom
06:35:24 PM

David Lozano has joined Public “Office Hours”

Zoom avatar
Zoom
06:36:02 PM

Jamie Ratcliffe has joined Public “Office Hours”

Zoom avatar
Zoom
06:37:36 PM

Oskar Maria Grande has joined Public “Office Hours”

Zoom avatar
Zoom
06:37:41 PM

Michael Sew has joined Public “Office Hours”

Zoom avatar
Zoom
06:39:40 PM

Anthony Michaels has joined Public “Office Hours”

Zoom avatar
Zoom
06:40:30 PM

mb Branski has joined Public “Office Hours”

Zoom avatar
Zoom
06:40:49 PM

imran.hussain has joined Public “Office Hours”

Zoom avatar
Zoom
06:43:42 PM

tamsky has joined Public “Office Hours”

Zoom avatar
Zoom
06:51:21 PM

Andrew Grube has joined Public “Office Hours”

Zoom avatar
Zoom
06:52:48 PM

Evan Pitstick has joined Public “Office Hours”

Zoom avatar
Zoom
06:56:27 PM

Eric Berg has joined Public “Office Hours”

roth.andy avatar
roth.andy
ISTIO-SECURITY-2021-002

Upgrades from older Istio versions can affect access control to an ingress gateway due to a change of container ports.

Mike Martin avatar
Mike Martin

pypi Deprecation of non-SNI compatible clients https://github.com/pypa/pypi-support/issues/978 Some of your older apps may begin to fail to build (your pre-docker builds)

Deprecation of non-SNI compatible clients. · Issue #978 · pypa/pypi-support
Our CDN provider is deprecating non-SNI support for access to [pypi.org> and <http://files.pythonhosted.org files.pythonhosted.org](http://pypi.org). It appears that this rollout has begun and users without SNI support can expect disruptions. Brown…
tamsky avatar
tamsky

Does anyone have feedback/experience with the new JetBrains Projector project?

https://blog.jetbrains.com/blog/2021/03/11/projector-is-out/

Access Your IDE Remotely With Projector | JetBrains News attachment image

Today we’re announcing the initial release of Projector – a tool and framework for running JetBrains IDEs and Swing apps remotely over your network. As you may know, Swing is a graphical widget toolk

Zoom avatar
Zoom
07:02:47 PM

uwaila adams has joined Public “Office Hours”

Andy Miguel (Cloud Posse) avatar
Andy Miguel (Cloud Posse)

[thread] CTO.ai slackops first class approach?

Zoom avatar
Zoom
07:05:24 PM

mezbaur rahman has joined Public “Office Hours”

Evan Pitstick avatar
Evan Pitstick

Anyone use any of the CNCF tools that work on top of Envoy? If so, did it ease your workflow or make it more complicated? I see Contour, Curiefense, and Open Service Mesh as examples.

Steven Hopkins (Cloud Posse) avatar
Steven Hopkins (Cloud Posse)

Is anyone using any type of IPAM software dynamically in terraform or have a way you define and slice from suberblocks/supernets

Steven Hopkins (Cloud Posse) avatar
Steven Hopkins (Cloud Posse)

netblox, nipap, ryo aws service etc

Zoom avatar
Zoom
07:22:53 PM

Andrew Shepherd has joined Public “Office Hours”

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
07:28:00 PM
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
07:28:23 PM
matt avatar

It looks like Google created an open-source repo to help track “the four keys”…https://github.com/GoogleCloudPlatform/fourkeys

GoogleCloudPlatform/fourkeys

Contribute to GoogleCloudPlatform/fourkeys development by creating an account on GitHub.

3
1
roth.andy avatar
roth.andy
08:20:34 PM
roth.andy avatar
roth.andy

coworker posted this, I think it’s actually not DORA though, it’s mostly Puppet

Vlad Ionescu (he/him) avatar
Vlad Ionescu (he/him)

Yeah, it’s similar, but not the same thing.

Vlad Ionescu (he/him) avatar
Vlad Ionescu (he/him)
[@ikrnic> [@puppetize> [@jezhumble> @jessfraz <https://twitter.com/alannapb @alannapb](https://twitter.com/jezhumble) <https://twitter.com/stahnma @stahnma](https://twitter.com/puppetize) <https://twitter.com/nigelkersten @nigelkersten](https://twitter.com/ikrnic) We collab’d and I was principal investigator 2014-2017. DORA split and did our own report 2018-2019 (I was PI).

In 2020, DORA is led by @jezhumble> (coauthors & Dustin Smith joined 2019); they’ve released some fab work like Quick Check and deep dives <http://cloud.google.com/devops

larry kirschner avatar
larry kirschner

question about the cloudposse terraform-aws-elastic-beanstalk-environment module:

https://github.com/cloudposse/terraform-aws-elastic-beanstalk-environment

…what I’m trying to do is configure the beanstalk-env loadbalancer to redirect HTTP requests to HTTPS

It doesn’t seem to be a config option of the module itself, so wondering what’s the best way to configure this?

One thought I had would be to find the arn for the load balancer from outputs and then modify it within a resource block, e.g.

resource "aws_lb_listener" "front_end" {
  load_balancer_arn = "${find.arn.from.ebsEnv.output}"
  port              = "80"
  protocol          = "HTTP"

  default_action {
    type = "redirect"

    redirect {
      port        = "443"
      protocol    = "HTTPS"
      status_code = "HTTP_301"
    }
  }
}

…but then the above might stomp out other settings of the load balancer?

Another option could be to fork https://github.com/cloudposse/terraform-aws-elastic-beanstalk-environment and then PR a config option to for redirectHttpToHttps

…any help/advise greatly appreciated

cloudposse/terraform-aws-elastic-beanstalk-environment

Terraform module to provision an AWS Elastic Beanstalk Environment - cloudposse/terraform-aws-elastic-beanstalk-environment

Andy Miguel (Cloud Posse) avatar
Andy Miguel (Cloud Posse)

thx for the question @! might get a quicker response in #terraform on this one

cloudposse/terraform-aws-elastic-beanstalk-environment

Terraform module to provision an AWS Elastic Beanstalk Environment - cloudposse/terraform-aws-elastic-beanstalk-environment

larry kirschner avatar
larry kirschner

ok thx for getting back…I found something I’m going to try which is this:

resource "aws_lb_listener_rule" "redirect_http_to_https" {
  listener_arn = {lb arn}

  action {
    type = "redirect"

    redirect {
      port        = "443"
      protocol    = "HTTPS"
      status_code = "HTTP_301"
    }
  }

  condition {
    http_header {
      http_header_name = "X-Forwarded-Port"
      values           = ["80"]
    }
  }
}

…if that doesn’t work will try that terraform channel. Thanks again for responding to my q!

larry kirschner avatar
larry kirschner

…digging around I also found the lb_listener_rule resource, which looks promising:

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/lb_listener_rule

…they have an example for HTTP => HTTPS…but it looks weird to me, because the condition isn’t PORT==80?

resource "aws_lb_listener_rule" "redirect_http_to_https" {
  listener_arn = FIND_FROM_CLOUDPOSSE_OUTPUT

  action {
    type = "redirect"

    redirect {
      port        = "443"
      protocol    = "HTTPS"
      status_code = "HTTP_301"
    }
  }

  condition {
    # shouldn't condition be PORT==80 somehow?
    http_header {
      http_header_name = "X-Forwarded-For"
      values           = ["192.168.1.*"]
    }
  }
}

2021-04-03

roth.andy avatar
roth.andy
GitHub investigating crypto-mining campaign abusing its server infrastructure | The Record by Recorded Future attachment image

Code-hosting service GitHub is actively investigating a series of attacks against its cloud infrastructure that allowed cybercriminals to implant and abuse the company’s servers for illicit crypto-mining operations, a spokesperson told The Record today.

2
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

We’ve been hit

GitHub investigating crypto-mining campaign abusing its server infrastructure | The Record by Recorded Future attachment image

Code-hosting service GitHub is actively investigating a series of attacks against its cloud infrastructure that allowed cybercriminals to implant and abuse the company’s servers for illicit crypto-mining operations, a spokesperson told The Record today.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
Demo title Add files via upload by cumcum20000 · Pull Request #1146 · cloudposse/packages attachment image

what Describe high-level what changed as a result of these commits (i.e. in plain-english, what do these changes mean?) Use bullet points to be concise and to the point. why Provide the justific…

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
05:37:56 AM
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Lame we can’t mark as spam

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
05:38:46 AM
Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Submitting a spam report requires ~6 clicks and an explanation of why I’m submitting it as spam.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

This is itself absusive.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

Github is retarded. So crypto miners can open up as many of these spam PRs as they want.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

I report them, and I am the one rate limited.

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)
05:49:50 AM

2021-04-01

Erik Osterman (Cloud Posse) avatar
Erik Osterman (Cloud Posse)

[thread] CTO.ai slackops first class approach?

    keyboard_arrow_up