This is Infra Weekly Newsletter, a newsletter about infrastructure, cloud, DevOps, automation, servers, Linux and related subjects.
Introducing the Azure Developer CLI (azd): A faster way to build apps for the cloud
New cloud CLI from Azure.
My Poor Experience With Azure (or why I'm sticking with AWS)
Some misadventure on trying Azure.
https://new.pythonforengineers.com/blog/my-poor-experience-with-azure-or-why-im-sticking-with-aws/
5 AWS Lambda Pitfalls Most Developers Don't Know About
https://torvo.com.au/articles/5-aws-lambda-pitfalls-most-developers-dont-know-about
Azure's Security Vulnerabilities Are Out of Control
Corey talks about the security issues in Azure and the poor attitude of Microsoft to solve them.
PostgreSQL 14 Internals
A book on PostgreSQL internals. Only part one is available.
https://postgrespro.com/community/books/internals
Gexec In PSQL: PostgreSQL Poweruser Practice
Learn about \gexec which is an equivalent of eval in other languages.
https://www.cybertec-postgresql.com/en/gexec-psql-postgresql-poweruser-practice/
The Jamstack definition evolved
“..an architectural approach that decouples the web experience layer from data and business logic, improving flexibility, scalability, performance, and maintainability”
https://www.netlify.com/blog/the-jamstack-definition-evolved/
Things I wish I knew about AWS WAF - Bot Control
Read about the bot control feature of WAF, its increase on your AWS WAF bill, and its pros and cons.
https://badshah.io/things-i-wish-i-knew-aws-waf-bot-control/
A quick overview of AWS principals, identity-based policies, and resource-based policies
See the differences between granting access identity-based and resources-based, spoiler: resource-based are more flexible.
https://yehudacohen.substack.com/p/a-quick-overview-of-aws-principal
Prevent Ransomware S3 Object Lock
Object lock is an extra step you can use to protect data on S3, but once locked, an object cannot be deleted, even AWS cannot do that.
https://blog.symops.com/2022/07/07/prevent-ransomware-s3-object-lock/
Inside Ukraine’s open-source war
A Financial Times article on how Ukrainian Engineers are working to find solutions to fight against Russians. It is very interesting how they decentralized their networks.
https://www.ft.com/content/297d3300-1a65-4793-982b-1ba2372241a3
New Luna ransomware encrypts Windows, Linux, and ESXi systems
Ransomware is written in Rust.
DNS Esoterica - Why you can't dig Switzerland
Dig thinks that Switzerland is Chaosnet.
https://shkspr.mobi/blog/2022/07/dns-esoterica-why-you-cant-dig-switzerland/
https://en.wikipedia.org/wiki/Chaosnet
Stop writing Rust
It can be difficult to start a project with Rust but it's easy to finish projects (correctness).
pg_timetable: Advanced scheduling for PostgreSQL
https://github.com/cybertec-postgresql/pg_timetable
LocalStack
A fully functional local cloud stack. One of the biggest problems with Serverless is the possibility to do local testing, since Serverless, usually, runs only in the cloud.
The best ways to save money on Lambda
How to size lambda functions, moving to ARM architecture. With provisioned concurrency, the cost per millisecond of execution time is about 70% cheaper.
https://theburningmonk.com/2022/07/the-best-ways-to-save-money-on-lambda/
Extending Your Cloud Deployments to Edge
Edge Deployments of K8s with AWS Outpost.
https://medium.com/engineered-publicis-sapient/extending-your-cloud-deployments-to-edge-3bbd4cc4d977