This is Infra Weekly Newsletter, a newsletter about infrastructure, cloud, DevOps, automation, servers, Linux and related subjects.
July 2022 Security Updates
https://msrc.microsoft.com/update-guide/releaseNote/2022-Jul
SAP Security Patch Day – July 2022
A PDF with the patches for July 2022.
https://dam.sap.com/mac/app/e/pdf/preview/embed/ucQrx6G?ltr=a&rc=10
Citrix Hypervisor Security Bulletin
CVE-2022-23816 and CVE-2022-23825
Nvidia QODA
The platform for hybrid quantum-classical computing
https://developer.nvidia.com/qoda
Known Exploited Vulnerabilities Catalog
A catalog of known vulnerabilities that every organization should always check.
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Secretive
Lock your private key with Secretive (Mac). For instance, every time you will SSH into a server, it can ask you to tap onto your touch ID (biometric authentication).
https://github.com/maxgoedjen/secretive
Security-Conscious Open Source Devs Now Wrestle with Government Requirements
Technologists using open source software, long plagued by security concerns, are now facing a new challenge: meeting government requirements enacted to mitigate those concerns.
https://virtualizationreview.com/articles/2022/07/13/open-source-challenges.aspx
AWS has patched a rather embarrassing Kubernetes bug
Gafnit Amiga, in a blog post, noted: "I found several flaws in the authentication process that could bypass the protection against replay attacks or allow an attacker to gain higher permissions in the cluster by impersonating other identities."
https://www.techradar.com/uk/news/aws-has-patched-a-rather-embarrassing-kubernetes-bug
AWS Cloud WAN
AWS Cloud WAN provides a central dashboard for making connections between your branch offices, data centres, and Amazon Virtual Private Clouds (VPCs) – building a global network with only a few clicks. You use network policies to automate network management and security tasks in one location. Cloud WAN generates a complete view of your on-premises and AWS networks to help you monitor network health, security, and performance.
https://aws.amazon.com/cloud-wan/
Amazon Redshift Serverless – Now Generally Available with New Capabilities
How to tune TLS for hybrid post-quantum cryptography with Kyber
The next generation of public key encryption, post-quantum.
https://pq-crystals.org/kyber/index.shtml
Kyligence Announces Support for Amazon EMR Serverless
With Kyligence and Amazon EMR Serverless, organizations can process and analyze massive amounts of data at less than half the cost of on-premises solutions.
Cloud Native Database SingleStore raises USD 116 Mn in funding
https://analyticsindiamag.com/cloud-native-database-singlestore-raises-usd-116-mn-in-a-funding/
Tencent Cloud Releases Upgraded Version of Cloud-Native Database TDSQL-C
https://intl.cloud.tencent.com/products/cynosdb
RisingWave
RisingWave is a cloud-native streaming database that uses SQL as the interface language. It is designed to reduce the complexity and cost of building real-time applications. RisingWave consumes streaming data, performs continuous queries, and updates results dynamically. As a database system, RisingWave maintains results inside its own storage and allows users to access data efficiently.
https://github.com/singularity-data/risingwave
THC Servers: 8-year review and very positive
https://www.webhostingtalk.com/showthread.php?t=1877053
Data To Go: Postgres Logical Replication
This is a quick explainer about logical replication that also compares it to streaming replication.
https://www.crunchydata.com/blog/data-to-go-postgres-logical-replication
Enabling and Enforcing SSL/TLS for PostgreSQL Connections
A tutorial on how to enable TLS in PostgreSQL connections, from Percona's blog.
https://www.percona.com/blog/enabling-and-enforcing-ssl-tls-for-postgresql-connections/
Nim Language
I recently started to study Nim, a programming language similar to Rust, but with simpler syntax, similar to Python. Here are some resources you could check out.
https://github.com/moigagoo/norm - Nim ORM
https://howistart.org/posts/nim/1/ - How I start
https://learnxinyminutes.com/docs/nim/
https://www.manning.com/books/nim-in-action - A book written by a core developer with practical examples, check chapter 7. Code examples are outdated.
https://nim-lang.org/docs/manual.html - The official Nim manual
Juniper Networks Releases Security Updates for Multiple Products
ML Prediction On Streaming Data Using Kafka Streams
A simple but interesting example of how to read events from Kafka and process them using ML on the fly.
https://towardsdatascience.com/ml-prediction-on-streaming-data-using-kafka-streams-1e4ebd21008
Pharos: The Observability Platform at Workday
A company I used to work for, has published an article on their observability platform.
https://medium.com/workday-engineering/pharos-the-observability-platform-at-workday-a2c0355a9427
Is it time to look past Git?
Has GIT reached the top? Do we need a better tool? The author mentions a few interesting projects: DARCS and Pijul.
https://dev.to/yonkeltron/is-it-time-to-look-past-git-ah4
PostgreSQL Logging Configuration Explained: How to Enable Database Logs
Everything about PostgreSQL logs.
https://sematext.com/blog/postgresql-logs/
Scheduling Data Pipelines at Criteo - Introducing Criteo’s BigDataFlow project
Read about Criteo's scheduler and BigDataflow.
Part 1: https://medium.com/criteo-engineering/scheduling-data-pipelines-at-criteo-part-1-8b257c6c8e55
Part 2: https://medium.com/criteo-engineering/scheduling-data-pipelines-at-criteo-part-2-8b0da38ff3a4
Debezium to Snowflake - Lessons learned building data replication in production
https://substack.com/redirect/db51e375-c264-4c9b-a704-d41386908667?u=1067909
tproxy
A tool for monitoring things like gRPC and MySQL connections while developing and debugging.
https://github.com/kevwan/tproxy