Nexteam is sponsoring this newsletter.
Rackspace confirms it suffered a ransomware attack
I am very sad to see this bad news. Rackspace is one of the most famous hosting companies, although it has lost its leadership years ago.
https://www.malwarebytes.com/blog/news/2022/12/rackspace-confirms-it-suffered-a-ransomware-attack
AWS Security Hub now integrates with AWS Control Tower (Preview)
https://aws.amazon.com/about-aws/whats-new/2022/12/aws-security-hub-integrates-aws-control-tower
AWS Verified Access Preview — VPN-less Secure Network Access to Corporate Applications
Verified Access is built using the AWS Zero Trust security principles, which makes it very innovative and interesting.
https://aws.amazon.com/security/zero-trust/
Zero Trust on AWS | AWS Events
It is not a brand new service from AWS but still quite relatively unknown.
7 Things I Learned from Haskell
These concepts could be applied to other languages.
https://gilmi.me/blog/post/2022/12/13/learned-from-haskell
Haskell in Production: e-bot7
Another installment of the Haskell in Production series. Although Haskell might miss or lack some popular libraries, it can bring high quality to a project.
https://serokell.io/blog/haskell-in-production-e-bot7
Intel 3rd Gen Xeon Scalable Linux Performance Evolution Since Launch
https://www.phoronix.com/review/xeon-icelake-eo2022
5 Simple Ways to Reduce Kubernetes Costs
Some practical advice to save costs.
https://www.itprotoday.com/hybrid-cloud-and-multicloud/5-simple-ways-reduce-kubernetes-costs
Linux 6.2 Will Help With Power Savings For Intel Alder Lake N & Raptor Lake P
https://www.phoronix.com/news/Linux-6.2-Power-Management
Edge SEO - Technical Search Engine Optimization with Black Edge SEO Tools
It is a new concept for me: edge computing used for SEO.
An Introduction to Monitoring Microservices with Prometheus and Grafana
A simple but effective tutorial on Prometheus, with a Go service exposing metrics relative to a Python service and also the APISIX plugin.
https://navendu.me/posts/introduction-to-monitoring-microservices/
pg_crdt - an experimental CRDT extension for Postgres
As you might know, CRDT is one of the best solutions for distributed databases.
https://supabase.com/blog/postgres-crdt
BBC Online — A year with serverless
This article is worth reading but after having worked (contract) in another department of BBC I don't share the enthusiastic words like 'amazing software engineering community, filled with amazingly talented people', but the WebCore team is where innovation seems to happen in BBC.
https://medium.com/bbc-product-technology/bbc-online-a-year-with-serverless-ffc2ae474277
8 best practices for optimizing Lambda functions
They have some good advice. Lambda can be very expensive and I found out that costs drive the design more than anything else. If lambda is continuously running probably people are better off using ECS and containers on Fargate, which is still serverless.
https://cloudash.dev/blog/best-practices-for-optimizing-lambda-functions
When to use a Lambda function, and when not?
In this article, you will find some useful serverless design patterns.
https://jeromevdl.medium.com/when-to-use-a-lambda-function-and-when-not-9a225e6dd2dd
Fastest Runtime For AWS Lambda Functions
A comparison of different runtimes and if your functions are called sporadically you are better of with dynamic languages because have are faster during the cold start.
https://blog.thundra.io/fastest-runtime-for-aws-lambda-functions
Samba Releases Security Updates
The Samba Team has released security updates to address vulnerabilities in multiple versions of Samba.
https://www.samba.org/samba/security/CVE-2022-38023.html
https://www.samba.org/samba/security/CVE-2022-37966.html
https://www.samba.org/samba/security/CVE-2022-37967.html
https://www.samba.org/samba/security/CVE-2022-45141.html
Platform Engineering in 2023: Dev First, Collaboration, and APIs
Daniel writes about Platform Engineering, and the importance of improving the developer experience, and it is going to be a centerpiece of 2023 trends.
https://thenewstack.io/platform-engineering-in-2023-dev-first-collaboration-and-apis/
What is cloud-native WebAssembly
Another article on Kubernetes and Web Assembly, but it might be worth a quick look. I find it good for a summary or quick review.
https://nigelpoulton.com/what-is-cloud-native-webassembly/
The state of AI in 2022—and a half decade in review
This a very good survey on AI, its adoption, and its influence on technologies. It is from McKinsey and even though it is not specific to infrastructure, I think we should be well-informed on this sector and the influence it has on technology and on our lives.
Modern Data Stack in a Box with DuckDB
Another post from DuckDB about running the whole data engineering stack in a box, of course, is not suitable for big data projects. How many data projects you have worked on that were not big-data projects? Probably a lot.
https://duckdb.org/2022/10/12/modern-data-stack-in-a-box.html
Building an extension framework for dbt
Monzo has the best banking app in the UK and they build a strong team of engineers. In this article, you can read about their adoption of DBT and their extension framework.
https://monzo.com/blog/2022/12/15/building-an-extension-framework-for-dbt
3 (More) Tips for Optimizing Apache Flink Applications
As the title says: three good tips on Apache Flink.
https://shopifyengineering.myshopify.com/blogs/engineering/optimizing-apache-flink-tips-part-two
Holiday Replay Edition – The Staying Power of Kubernetes with Kelsey Hightower
Join Corey and Kelsey as they explore the journey that led Kelsey to Kubernetes; where Corey feels Kubernetes falls short; how Kubernetes is just another step in the evolution of technology, with more to follow in the future; why Corey used to argue against the cloud; why Kelsey believes Kubernetes makes hyperspecialization worthwhile; Kelsey’s general feelings about multi-cloud; what Kelsey believes is the biggest thing that’s misunderstood about Kubernetes; what the future of Kubernetes looks like; and more. This holiday replay edition was originally aired on February 19th, 2020.
The Incident Benchmark Report
A report analyzing 50k incidents.
https://firehydrant.com/reports/incident-benchmarks/
3 Reasons Why You Shouldn't Use Public CAs for Internal Infrastructures.
https://smallstep.com/blog/reasons-not-to-use-public-certificate-authorities/
Complexity leads to cloud outages. Here’s the proof
Complexity is a natural byproduct of a highly heterogeneous and distributed architecture. Now we better understand its impact.
https://www.infoworld.com/article/3663680/complexity-leads-to-cloud-outages-heres-the-proof.html
Hurl
Hurl is a command line tool that runs HTTP requests defined in a simple plain text format.
https://github.com/Orange-OpenSource/hurl
Newsletter sponsor: Nexteam
Technology, Experience, Delivered.