#random (2021-06)
Non-work banter and water cooler conversation
A place for non-work-related flimflam, faffing, hodge-podge or jibber-jabber you’d prefer to keep out of more focused work-related channels.
Archive: https://archive.sweetops.com/random/
2021-06-02
![David avatar](https://secure.gravatar.com/avatar/4f47da5c338b83938ce2229dbbd5460f.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0003-72.png)
Is it a bad idea to open up a graphql playground publically? All of our routes that need it have auth requirements, so it would mostly be just exposing the public schema
![Chris Wahl avatar](https://avatars.slack-edge.com/2023-10-19/6058794155158_dbaad990a63a31ee390e_72.png)
It seems fairly common to encounter playgrounds / GraphiQL setups in the wild, such as with GitLab. Not sure if that’s bad or not.
![bradym avatar](https://avatars.slack-edge.com/2023-06-21/5464816405572_dd21bed1bf537acb6539_72.jpg)
We’ve locked ours down by IP. I think it depends on whether you have a public api or not. If you do, it could be a useful tool for people using your api. We don’t have a public api, so locking it down made the most sense to us.
![Harry avatar](https://secure.gravatar.com/avatar/0cd5f2112ac91e49296b221b7adb58f3.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0014-72.png)
Anyone can run graphql playground, graphiql, altair or a similar tool locally and just put in your actual API URL if you don’t host one for them.
2021-06-03
![Erik Osterman (Cloud Posse) avatar](https://secure.gravatar.com/avatar/88c480d4f73b813904e00a5695a454cb.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0023-72.png)
@kelseyhightower Ranchers don’t have cattle as their pet project. Cattle is their business! So in this analogy (which I’ve always loved), you become the Rancher and you have to run it as a full on business. That means financials, (internal) sales, marketing wins, R&D, etc
2021-06-06
![Erik Osterman (Cloud Posse) avatar](https://secure.gravatar.com/avatar/88c480d4f73b813904e00a5695a454cb.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0023-72.png)
![attachment image](https://www.goldfiglabs.com/images/blog/blog-saas-checklist.jpg)
Learn how to protect your SaaS applications with the SaaS CTO security checklist. Doing the basics goes a long way in keeping your company and product secure.
![Nicolò Marchesi avatar](https://avatars.slack-edge.com/2021-06-03/2155770044096_587b80db19a6c55fe23f_72.jpg)
This is golden! Bookmarked
![attachment image](https://www.goldfiglabs.com/images/blog/blog-saas-checklist.jpg)
Learn how to protect your SaaS applications with the SaaS CTO security checklist. Doing the basics goes a long way in keeping your company and product secure.
2021-06-07
2021-06-08
![rei avatar](https://secure.gravatar.com/avatar/707f916d5733af8f0ce7938695a8da03.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0005-72.png)
Apparently fastly broke the Internet https://downdetector.com/
![attachment image](https://cdn2.downdetector.com/e238001954c3e26/images/Downdetector-OG.png)
Realtime overview of issues and outages with all kinds of services. Having issues? We help you find out what is wrong.
![rei avatar](https://secure.gravatar.com/avatar/707f916d5733af8f0ce7938695a8da03.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0005-72.png)
10m ago @AP tweeted: “Numerous websites were unavailable on Tu..” - read what others are saying and join the conversation.
![DevOpsGuy avatar](https://avatars.slack-edge.com/2021-03-12/1859188196948_0c24af9f65bf66c25227_72.png)
Can anyone have (best) suggestions on below question?? This is for Kubernetes Micro-services. Cloud: AWS (But, we manage the cluster)
- What is the best open source Service Mesh?
- What is the best open source API Gateway?
- Is it ok to have both Service Mesh and API Gateway? If so, what is the best combination of both?
![roth.andy avatar](https://avatars.slack-edge.com/2019-09-18/753707271651_6f58c1cbab3c77754f58_72.jpg)
It’s hard to answer what is “best” since different things are “best” in different situations. Can you talk a bit about what your situation is and what outcomes you are looking for?
For example, in my team, we were looking for the ability to abstract Zero Trust and centralized logging away from the application development efforts and into the platform, so we chose Istio
![William Morgan avatar](https://avatars.slack-edge.com/2021-06-07/2145474731762_6b759edb05c7f7a897d6_72.jpg)
To partially answer #3, yes, having both is a common pattern
![William Morgan avatar](https://avatars.slack-edge.com/2021-06-07/2145474731762_6b759edb05c7f7a897d6_72.jpg)
For the others… what problem are you trying to solve?
![William Morgan avatar](https://avatars.slack-edge.com/2021-06-07/2145474731762_6b759edb05c7f7a897d6_72.jpg)
E.g. I work on Linkerd and our focus is on minimalism, performance, and “feeling” like the rest of K8s. If that’s important to you then IMO it’s a good choice. If you have other goals (especially around integrating non-K8s components into your mesh) then you might look at other options.
![Balazs Varga avatar](https://secure.gravatar.com/avatar/944e59f1543dc43935bda4d7b9be7f85.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0019-72.png)
We use kops to setup cluster and use traefik for control gateway. For app gateway and for mesh we use istio
![bp avatar](https://avatars.slack-edge.com/2021-05-11/2036077149639_2c2c0e72bdf1d9c06bb0_72.jpg)
@antonbabenko did a ‘weekly dose of terraform’ a few weeks back talking about a eks boilerplate that you could have a look at? https://www.youtube.com/watch?v=giVShrQHf8E
2021-06-09
![Pipo avatar](https://avatars.slack-edge.com/2021-05-21/2114108614144_70e6e3ac00e75e528e41_72.png)
Hey guys, I am considering changing from terraform cloud to another service. Have anyone used CircleCi or Scalr or any other service? The main issue with Terraform Cloud is that having too many concurrent runs and the total runs per month is expensive, and I need to run over 5K runs per month.
![AWay avatar](https://secure.gravatar.com/avatar/45d5cf06d286e0f7646bfd3ca0f46c8a.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0018-72.png)
Have you seen the CloudPosse video comparing the different “TACoS” providers?
![AWay avatar](https://secure.gravatar.com/avatar/45d5cf06d286e0f7646bfd3ca0f46c8a.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0018-72.png)
(disclaimer: I’m from env0)
![AWay avatar](https://secure.gravatar.com/avatar/45d5cf06d286e0f7646bfd3ca0f46c8a.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0018-72.png)
we offer unlimited concurrency
![AWay avatar](https://secure.gravatar.com/avatar/45d5cf06d286e0f7646bfd3ca0f46c8a.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0018-72.png)
![Pipo avatar](https://avatars.slack-edge.com/2021-05-21/2114108614144_70e6e3ac00e75e528e41_72.png)
![msharma24 avatar](https://avatars.slack-edge.com/2021-07-12/2274860926897_140ea0637d985071847a_72.jpg)
![Matt Gowie avatar](https://avatars.slack-edge.com/2023-02-06/4762019351860_44dadfaff89f62cba646_72.jpg)
This question comes up all the time — The video helps. Good alternatives to TFC are:
- Scalr
- Spacelift
- Env0 (though unfortunately doesn’t have a Terraform provider which is the killer for me) I just completed a migration from TFC to Spacelift and I’m a big fan.
![omry avatar](https://avatars.slack-edge.com/2023-09-13/5888083058210_914ef7f44387fe3f3e2a_72.png)
@Matt Gowie we actually have a Terraform provider - https://registry.terraform.io/providers/env0/env0/latest
(I am the co-founder and CTO of env0)
![Matt Gowie avatar](https://avatars.slack-edge.com/2023-02-06/4762019351860_44dadfaff89f62cba646_72.jpg)
@omry Ah glad to see it launched! Ya’ll are now in the running in my mind. I’ll be sure to check out the provider and hit ya’ll up for a demo sometime.
![omry avatar](https://avatars.slack-edge.com/2023-09-13/5888083058210_914ef7f44387fe3f3e2a_72.png)
Sure thing @Matt Gowie, we’ll be happy to give you a demo and show you the product
2021-06-10
![Gerald avatar](https://avatars.slack-edge.com/2021-03-23/1885328773765_261fca259cd32d5c3dfa_72.jpg)
Hi people, any Infrastructure as Code practitioners here? I’d need to pick your brain for a second please, to help us prioritize items on an OSS tool roadmap If you look at your setup (or your customer’s), would you say that:
You only use a single IaC solution (ex: CloudFormation only, Terraform only, Pulumi only…) You use multiple IaC solutions on purpose for different resources/use cases (ex: CloudFormation + Terraform or ARM+Terraform and/or the serverless framework) You use multiple solutions today but plan to migrate to a single solution (ex migrating from a mix of CloudFormation + Terraform to Terraform only)
Many thanks for your feedback, it really helps
![Erik Osterman (Cloud Posse) avatar](https://secure.gravatar.com/avatar/88c480d4f73b813904e00a5695a454cb.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0023-72.png)
Use terraform for the foundational infrastructure capable of supporting most tools. Use what ever other tool developers want for their applications. Serverless, CDK, CFT, etc
![Gerald avatar](https://avatars.slack-edge.com/2021-03-23/1885328773765_261fca259cd32d5c3dfa_72.jpg)
very interesting, thanks @Erik Osterman (Cloud Posse)
![Andrew Nazarov avatar](https://avatars.slack-edge.com/2021-06-09/2146832855878_fbb84e3b2832cc494a93_72.jpg)
![Gerald avatar](https://avatars.slack-edge.com/2021-03-23/1885328773765_261fca259cd32d5c3dfa_72.jpg)
thanks a lot. Really appreciate.
![MattyB avatar](https://secure.gravatar.com/avatar/ff034363a31c46cbb9df6b6b2a8c82ae.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0025-72.png)
We prefer Terraform over the others due to CloudPosse’s secure by default, context.tf, other good practices, and helpful community. We’ve also used AWS SAM and CDK for certain things like lambdas, apigw, or when developers prefer not to learn another language.
![Gerald avatar](https://avatars.slack-edge.com/2021-03-23/1885328773765_261fca259cd32d5c3dfa_72.jpg)
Okay, I get it. So it’s a bit like for Erik. Your basis is on TF, but there’s an open door for what developers might want/need on top of that. Thanks a lot for sharing
2021-06-11
![Erik Osterman (Cloud Posse) avatar](https://secure.gravatar.com/avatar/88c480d4f73b813904e00a5695a454cb.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0023-72.png)
![attachment image](https://video-images.vice.com/articles/60c35f68a59378009bffd4d6/lede/1623416687109-ea-logo.jpeg?image-resize-opts=Y3JvcD0xeHc6MC44NDN4aDsweHcsMC4wNTh4aCZyZXNpemU9MTIwMDoqJnJlc2l6ZT0xMjAwOio)
A representative for the hackers explained to Motherboard how the group stole a wealth of data from the game publishing giant.
![slack](/assets/images/custom_emojis/slack.png)
2021-06-15
![Chris Fowles avatar](https://avatars.slack-edge.com/2019-10-08/789284772630_caabfcff3b09cf0455ee_72.jpg)
this looks really interesting: https://steampipe.io/ anyone played with it yet?
Steampipe is an open source tool to instantly query your cloud services (e.g. AWS, Azure, GCP and more) with SQL. No DB required.
![Chris Fowles avatar](https://avatars.slack-edge.com/2019-10-08/789284772630_caabfcff3b09cf0455ee_72.jpg)
i can see a ton of compliance usecases
2021-06-16
![managedkaos avatar](https://secure.gravatar.com/avatar/f7d88a7a95990c984ab107b491b51b3f.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0025-72.png)
steampipe
looks very interesting indeed. I’ve written entire python and javascript programs that do what the whois module does in just a few lines!
![Mohammed Yahya avatar](https://avatars.slack-edge.com/2020-12-17/1590276740676_9fdeb6c9ef89d13e6414_72.png)
Agree, I’m starting adding steampipe to my terraform scripts, as reading values after applying and make sure you get what you applied. also to generate a nice reports about infrastructure
![Andrea Cavagna avatar](https://avatars.slack-edge.com/2021-06-03/2117246507255_286fcae8e21f30cbdc32_72.jpg)
it support all services? still never tried steampipe but looks a really helpful tool
![Erik Osterman (Cloud Posse) avatar](https://secure.gravatar.com/avatar/88c480d4f73b813904e00a5695a454cb.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0023-72.png)
It does look very neat
![jark99 avatar](https://avatars.slack-edge.com/2021-06-16/2203553029520_db57110450f147e93919_72.jpg)
Hi everyone, glad to be in this slack! First time joining SweetOps office hours! Bit about me, I work as a DevOps engineer for a mid-tier cloud consulting firm. Outside of my professional work, I also consult on all things AWS for various client and some software development. Nice to meet you all
![wave](/assets/images/custom_emojis/wave.png)
![wave](/assets/images/custom_emojis/wave.png)
2021-06-17
2021-06-18
![Tim Birkett avatar](https://avatars.slack-edge.com/2020-06-17/1195943326852_93709badec7475544cf0_72.jpg)
Hey - I’ve started to Open Source some very simple Prometheus exporters for AWS that might be of interest to people. The first one exports some potentially useful ECR repository and image metrics: https://github.com/aws-exporters/ecr
A Prometheus exporter for AWS ECR. Contribute to aws-exporters/ecr development by creating an account on GitHub.
![Tim Birkett avatar](https://avatars.slack-edge.com/2020-06-17/1195943326852_93709badec7475544cf0_72.jpg)
Also probably signed myself up to a lawsuit from AWS
A Prometheus exporter for AWS ECR. Contribute to aws-exporters/ecr development by creating an account on GitHub.
![Nishant Thorat avatar](https://avatars.slack-edge.com/2021-03-18/1874295524357_0cdb6fbd0a8dd90680cb_72.png)
A compiled list of AWS services and subservices//blog.cloudyali.io/aws-services-how-many-are-there-really>
![attachment image](https://hashnode.com/utility/r?url=https%3A%2F%2Fcdn.hashnode.com%2Fres%2Fhashnode%2Fimage%2Fupload%2Fv1623911153290%2FeREdZW19y.jpeg%3Fw%3D1200%26h%3D630%26fit%3Dcrop%26crop%3Dentropy%26auto%3Dcompress%26fm%3Dpng)
TL;DR: Depends on what you count as service, 180 at the lower side and 250 at the upper side. AWS innovates at breath taking speed, often defeating itself. It keeps adding new services, add new features to the existing services at lightening speed. …
2021-06-23
![managedkaos avatar](https://secure.gravatar.com/avatar/f7d88a7a95990c984ab107b491b51b3f.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0025-72.png)
![Erik Osterman (Cloud Posse) avatar](https://secure.gravatar.com/avatar/88c480d4f73b813904e00a5695a454cb.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0023-72.png)
![attachment image](https://github.githubassets.com/images/modules/site/social-cards/planning-tracking-social.png)
Give your developers flexible features for project management that adapts to any team, project, and workflow—all alongside your code.
![Erik Osterman (Cloud Posse) avatar](https://secure.gravatar.com/avatar/88c480d4f73b813904e00a5695a454cb.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0023-72.png)
Spanish court had agreed to extradite John McAfee to the U.S.
![Erik Osterman (Cloud Posse) avatar](https://secure.gravatar.com/avatar/88c480d4f73b813904e00a5695a454cb.jpg?s=72&d=https%3A%2F%2Fa.slack-edge.com%2Fdf10d%2Fimg%2Favatars%2Fava_0023-72.png)
![Scott Mathson avatar](https://avatars.slack-edge.com/2021-05-04/2016366666407_5cf552ccf3fb8a069acc_72.png)
i don’t believe you
2021-06-24
![ITGuyEric avatar](https://avatars.slack-edge.com/2022-07-25/3843491186901_274a6772617ce87e83ac_72.png)
Our hosts chat with Steve Ginty, the Director of Threat Intelligence at RiskIQ ! We discuss how to collect relevant, actionable intelligence to protect our organizations from malicious actors. https://sudo.show/28 #itsecurity
In this episode, Eric and Brandon talk to Steve Ginty, Director of Threat Intelligence at RiskIQ. They discuss how to collect relavant, actionable intelligence to protect our organizations.
2021-06-30
![Andrew Nazarov avatar](https://avatars.slack-edge.com/2021-06-09/2146832855878_fbb84e3b2832cc494a93_72.jpg)
![attachment image](https://assets.ubuntu.com/v1/3d1afa25-K8s_cloud_native_report.png)
Kubernetes + Cloud Native Operations Report - Data from 1200 respondents and insight from 7 industry experts on hybrid and multi-cloud operations, VMs and more
![Andrew Nazarov avatar](https://avatars.slack-edge.com/2021-06-09/2146832855878_fbb84e3b2832cc494a93_72.jpg)
Moved it to random as it seems it fits better
![attachment image](https://assets.ubuntu.com/v1/3d1afa25-K8s_cloud_native_report.png)
Kubernetes + Cloud Native Operations Report - Data from 1200 respondents and insight from 7 industry experts on hybrid and multi-cloud operations, VMs and more
![Andrew Nazarov avatar](https://avatars.slack-edge.com/2021-06-09/2146832855878_fbb84e3b2832cc494a93_72.jpg)
Interesting that they have some open questions which, I think, have been more or less closed already by tools such as helmfile and approaches such as monochart