2 min read
Here's the recording from our DevOps “Office Hours” session on 2022-02-16.
We hold public “Office Hours” every Wednesday at 11:30am PST to answer questions on all things DevOps/Terraform/Kubernetes/CICD related.
These “lunch & learn” style sessions are totally free and really just an opportunity to talk shop, ask questions and get answers.
Register here: cloudposse.com/office-hours
Basically, these sessions are an opportunity to get a free weekly consultation with Cloud Posse where you can literally “ask me anything” (AMA). Since we're all engineers, this also helps us better understand the challenges our users have so we can better focus on solving the real problems you have and address the problems/gaps in our tools.
[00:00:00] Intro
[00:01:30] Terraform AWS Provider v4.0.0 released (with breaking changes)
https://github.com/hashicorp/terraform-provider-aws/releases/tag/v4.0.0
[00:05:47] Set up Tracing on GitHub Actions Workflows using Datadog
https://docs.datadoghq.com/continuous_integration/setup_pipelines/github/#compatibility
[00:07:32] HTTP/3: Everything you need to know about the next-generation web protocol
https://portswigger.net/daily-swig/http-3-everything-you-need-to-know-about-the-next-generation-web-protocol
[00:09:23] Include diagrams in your Markdown files with Mermaid (With example)
https://github.blog/2022-02-14-include-diagrams-markdown-files-mermaid/
https://github.com/mermaid-js/mermaid#flowchart-docs—live-editor
[00:17:10] Embed SVGs in GitHub Markdown
https://github.blog/changelog/2022-01-21-allow-to-upload-svg-files-to-markdown/
[00:18:38] Amazon Elastic File System Update – Sub-Millisecond Read Latency
https://aws.amazon.com/blogs/aws/amazon-elastic-file-system-update-sub-millisecond-read-latency/
[00:20:09] 1Password for SSH & Git (Beta)
https://developer.1password.com/docs/ssh/
[00:22:08] Observation: The rise of the specialized cloud
[00:26:30] AWS WAF ruleset for credential stuffing
[00:28:19] Has anyone found a tool that can facilitate mass migration of data from one tier of Glacier to the other?
[00:31:14] What are people doing in the wild with respect to pinning for ACM generated certificates?
[00:35:33] What is the recommended way for EKS pods to CRUD on S3 buckets?
[00:37:27] Is there a way to basically do AWS IPAM, but just in TF?
[00:43:07] Has anyone had to deal with uploading and offloading child accounts. I had like over 50 accounts to create on New Relic and i had to manually add this accounts on the UI
[00:46:37] In your centralized logging system (ELK/Loki), How do you deal with a spike of logs that overwhelms your pipeline?
[00:52:26] Giving the infra deploy pipeline full admin in AWS vs fine-grained permissions that seem more secure but troublesome to manage
[00:57:08] Outro
Author Details
CEO
Erik Osterman is a technical evangelist and insanely passionate DevOps guru with over a decade of hands-on experience architecting systems for AWS. After leading major cloud initiatives at CBS Interactive as the Director of Cloud Architecture, he founded Cloud Posse, a DevOps Accelerator that helps high-growth Startups and Fortune 500 Companies own their infrastructure in record time by building it together with customers and showing them the ropes.