po + containers   127

Why Does Developing on Kubernetes Suck? | Tilt Blog
Kubernetes has changed the way I operate software. Whole classes of production problems have disappeared–arguably to be replaced by others. But such is the way of the world. All told I’m happier operating a microservices app today than I was before I started using Kubernetes.

Some useful tools are linked that help visualize and audit pod relationships.

That said, this is another example of how k8s introduces so much cognitive overhead and complexity that it makes it extraordinarily difficult to troubleshoot.
The sheer number of tools needed to keep k8s supported is infrastructure equivalent of "code smell."

I get that it's a standard pattern to identify a problem, write a solution, and maybe even charge money for it.
That's business.
But the sheer number of essential tools in the k8s ecosystem that aren't kubernetes-qua-kubernetes always gives me pause because complexity kills.
k8s  kubernetes  containers  development  critique  complexity  tooling  devops  sre  cognitive.overhead  code.smell  infrastructure  microservices 
6 days ago by po
GitHub - StanfordSNR/gg: The Stanford Builder
The Stanford Builder. Contribute to StanfordSNR/gg development by creating an account on GitHub.
automation  lambda  containers  aws  programming  workflow  opensores  cloud  usenix 
7 weeks ago by po
This looks less rubbishy than the goog runtime.
kubernetes  k8s  docker  containers  opensores  virtualization  runtimes 
april 2019 by po
Kubernetes: The Difference Between Containers and Virtual Machines | Dyn Blog
If you are remotely involved in technology and haven’t just hatched out of an egg, you have probably have heard of Kubernetes. ...
kubernetes  containers  reiterations 
january 2019 by po
The Almighty Pause Container - Ian Lewis
When checking out the nodes of your Kubernetes cluster, you may have noticed some containers called
k8s  docker  kubernetes  containers  internals  pods 
january 2019 by po
GitHub - theupdateframework/notary: Notary is a project that allows anyone to have trust over arbitrary collections of data
Notary is a project that allows anyone to have trust over arbitrary collections of data - theupdateframework/notary

Data signing, basically.
Looks like it still requires a secure channel for keys.
Which makes me wonder why they're not using pki or even pubic keys. (I may be misunderstanding the architecture.)
aws  containers  trust  data  docker  security  infosec  storage  tools  web.of.trust  tuf 
december 2018 by po
The Packer Book
The Packer Book - A hands-on book on Packer
books  containers  docker  terraform  vagrant 
november 2018 by po
quick start | Rancher Labs
Follow our easy steps to get started with Rancher 2.0. Install a supported version of Docker software on the Linux host, then run the Rancher server. Learn more.
rancher  docker  containers  howto 
november 2018 by po
Releases · kubernetes/minikube
30.0/minikube-darwin-amd64 && chmod +x minikube && sudo cp minikube /usr/local/bin/ && rm minikube
minikube  kubernetes  docker  containers 
october 2018 by po
Docker is the dangerous gamble which we will regret | Smash Company
a foolish consistency is something something...

>And as near as I can tell, this is 100% why Docker is winning. Forget all the nonsense you read about Docker making deployment or security or orchestration easier. It doesn’t. But it is emerging as a standard, something a person can learn at one company and then take to another company. It isn’t messy and ad-hoc the way a custom bash script would be. And that is the real argument in favor of Docker. Whether it can live up to that promise is the gamble.

Fascinating. Never considered the labor skill aspect of it.
docker  critique  devops  containers  loldocker 
may 2018 by po
Escaping Docker container using waitid() – CVE-2017-5123 | Hacker News
For a forum where tptacek has been informally instructing other hn readers for years, they still come up with some profound misunderstandings of some pretty basic security concepts.
hn  security  infosec  docker  containers 
january 2018 by po
« earlier      
per page:    204080120160

related tags

abstraction  addons  anti.patterns  antipatterns  api  appimage  architecture  article  articles  artifacts  attack  automation  aws  azure  bad.practices  bash  blogs  boat  books  bsd  build  business  canonical  chef  ci  cicd  cli  cloud  cloud.foundry  cloud.native  clusters  code.smell  cognitive.overhead  commercial.entities  comparison  complexity  constraints  container  container.images  container.registry  containers  control.panel  cool  copy.on.write  coreos  crash.course  crio  criteria  critique  culture  data  databases  dcps  debian  debugging  dependencies  deployment  design  dev  development  devops  distributed.storage  distributed.systems  distributions  distro  do  docker  docker.swarm  dockerfiles  dockers  documentation  download  dumb  errors  extensions  fail  failure  fat.binaries  fedora.core  filesystem  firefox  flatpak  funny  futures  gcp  gke  go  golang  google  greybeards  guide  guides  harbor  heat  hn  hosting  howto  humor  infosec  infrastructure  inspection  installer  insulated  intel  interesting  internals  isolation  jails  java  k8s  kuberenetes  kubernetes  kubo  kurbernetes  lambda  lamp  lcfs  legacy  legal  limitations  links  linux  linux.distro  list  lists  loldocker  lxc  lxd  maya  mesos  microservices  minikube  mix  mysql  namespaces  netflix  networking  observability  oped  opensores  opensource  openstack  openvz  oracle  orchestration  overview  paas  packaging  pcf  pipelines  pitfalls  pks  pkx  pods  practices  presentation  privacy  problems  production  programming  pws  qemu  quay  rancher  rdbms  reddit  registry  reiterations  repository  risk  rkt  rpi  rubbish  runtimes  s3  saas  scale  schemas  sdn  security  server  shipping  snap  snapcraft  snappy  solaris.zones  sre  storage  stunt  suck  suckage  sucks  synchronization  sysadmin  systemd  technology  terraform  threading  tooling  tools  travel  troubleshooting  trust  tuf  tutorial  ubuntu  unix  usenix  ushare  vagrant  video  virtualization  visualization  vm  vms  vulnerability  web.of.trust  where.are.they.now  windows  wizards  workflow  xdg-app  zones 

Copy this bookmark: