Issue #58
Courtesy of Evan Wise - Unsplash
Nexteam is sponsoring this newsletter. Please tell your friends and colleagues about this publication. Thank you.
HashiCorp's New License Is Still Open Source-ish, Just With Less free Lunch
This news is all over the Internet. You will not be able to embed or provide via a hosting/SaaS production of HashiCorp’s products. This is a big deal. We should be all aware that companies can change licenses and if your product depends on that, you are at risk. HashiCorp has lost its open-source DNA for sure. Joe Duffy, founder, and CEO of rival infrastructure-as-code vendor Pulumi, said:
“The blog post is disingenuous. We tried many times to contribute upstream fixes to Terraform providers, but HashiCorp would never accept them. So we've had to maintain forks. They lost their OSS DNA a long time ago, and this move just puts the final nail in the coffin.“
Pulumi is a typed configuration tool that can be used directly with existing real programming languages. Maybe we should switch to that.
https://www.theregister.com/2023/08/11/hashicorp_bsl_licence/ - The Register Article
https://www.hashicorp.com/bsl - Link to the License definition
https://www.hashicorp.com/blog/hashicorp-adopts-business-source-license - From Hashi Corp blog.
The DevSecOps Conference from Any Edge to Any Cloud
In September there will be ChefConfUS and in October ChefConfEU.
Open Enterprise Linux Association
CIQ, Oracle, and SUSE create a new project to overcome the paywalled Red Hat access to RHEL sources.
Turn Off the Power to Datacenter
Trellix bods say it's not that hard to do, thanks to these vulnerabilities. List of vulnerabilities from the article:
CVE-2023-3264: Use of hard-coded credentials (CVSS severity 6.7 out of 10)
CVE-2023-3265: Improper neutralization of escape, meta, or control sequences (authentication bypass; CVSS 7.2)
CVE-2023-3266: Improperly implemented security check for standard (another bypass; CVSS 7.5)
CVE-2023-3267: OS command injection (authenticated remote-code execution; CVSS 7.5)
CVE-2023-3259: Deserialization of untrusted data (authentication bypass; CVSS 9.8)
CVE-2023-3260: OS command injection (authenticated remote-code execution; CVSS 7.2)
CVE-2023-3261: Buffer overflow (denial-of-service; CVSS 7.5)
CVE-2023-3262: Use of hard-coded credentials (CVSS 6.7)
CVE-2023-3263: Authentication bypass by alternate name (another bypass; CVSS 7.5)
https://www.theregister.com/2023/08/12/def_con_datacenter_power_bugs/
Aqua Nautilus Researchers Find Kubernetes Clusters Under Attack in Hundreds of Organizations
https://www.aquasec.com/news/kubernetes-clusters-under-attack/
Nephio Community Gains Momentum with Release 1 to Simplify Cloud Native Network Automation
Nephio provides a carrier-quality, straightforward, open solution powered by Kubernetes for cloud-native intent automation, coupled with standardized automation templates. These templates significantly ease the roll-out and administration of multi-vendor cloud infrastructure and network functionalities, especially in extensive edge deployments. Moreover, Nephio facilitates automatic setup for both cloud infrastructure and network operations. This ensures a boost in network uptime and robustness, while also minimizing service interruptions for maintenance.
Exploring the Internals of Linux v0.01
The first version of the Linux kernel was only 10k lines instead of millions. It is a better way to get started when learning the kernel.
https://seiya.me/blog/reading-linux-v0.01
5 Arrested in Poland for Running Bulletproof Hosting Service for cybercrime Gangs
Porkbun Review 2023: Features, Pros & Cons
https://www.forbes.com/advisor/business/software/porkbun-review/
The Future of Cloud Management: How OpenStack is Transforming the Telecommunications Industry
How Do You Build a culture of Reliability?
This article form Slack Engineering explores the introduction of a unified metric, termed the Service Delivery Index, to steer discussions.
https://slack.engineering/service-delivery-index-a-driver-for-reliability/
Postgres: The Graph Database You Didn't Know You Had
How to build a graph on Postgres with a couple of tables and a recursive query, is brilliant.
https://www.dylanpaulus.com/posts/postgres-is-a-graph-database/
Nix 2.17 Released
https://discourse.nixos.org/t/nix-2-17-released/30917
Fast, Declarative, Reproducible, and Composable Developer Environments using Nix
I love this project. I could not install Ruby with RVM because of some missing dependencies and this tool provides ad-hoc environments per projects with everything you need.
Newsletter sponsor: Nexteam
Technology, Experience, Delivered.
Thanks for reading Infra Weekly Newsletter! Subscribe for free to receive new posts and support my work.