tobru.guru Newsletter #4
5 min read

tobru.guru Newsletter #4

A good amount of Crossplane and Wireguard stuff this time. But also some cool stories and of course a lot of Open Source tools.

News

Software releases, news articles and other new stuff

Add Crossplane as CNCF Sandbox project by jbw976 · Pull Request #454 · cncf/toc · GitHub
#crossplane, #cncf

This PR contains a proposal to add Crossplane to the CNCF as a Sandbox project. We have requested time with the App Delivery SIG to present the project and proposal and will follow up on this PR when that is complete.

As I really like the Crossplane project and will use it at work for many future projects, it would be fantastic to see Crossplane to be part of CNCF.

Add Crossplane.io v0.11.0 to community-operators by kasey · Pull Request #1787 · operator-framework/community-operators
#crossplane, #openshift

Having Crossplane available as a one-click installation solution in OpenShift would certainly make it more attractive to the Cloud Native world.

It really looks like I had the right feeling in fall last year when I had a deeper look into Crossplane. Right from the beginning it felt like the answer to the missing piece of having a real Cloud Native infrastructure provisioning tool, tightly integrated into the Kubernetes community and philosophy, making it the right tool to use in Project Syn which uses the Kubernetes API for nearly everything.


Articles

Interesting articles and blog posts

Crossplane as an OpenShift Operator to manage and provision cloud-native services
#crossplane, #openshift

A collaboration between Upbound and Red Hat Emerging Technologies explores the Crossplane project and its recent optimization with Red Hat OpenShift Container Platform as an alternative to Open Service Broker API for provisioning, managing, and consuming external services by cloud native applications.

And already the third link to something about Crossplane. Do you think I like the project? =)

Top 10 must-know Kubernetes design patterns - Red Hat Developer
#kubernetes, #openshift, #bestpractices

Learning these 10 design patterns from the Kubernetes Patterns book will help you follow basic Kubernetes concepts and design Kubernetes-based applications.

This is for people not working with Kubernetes since a long time. The patterns described in this article will help you to certainly get the best out of it, I can speak from my experience over the last four years.

The Day AppGet Died.
#story, #microsoft, #packaging

The story of how Microsoft embraced and then killed AppGet.

As I like stories of things which are happening in the world of Open Source, I had to link this one. And seeing Windows to get a real package manager is also a good thing (no, I will not switch to Windows because of this!)

Kubernetes 1.18 Feature Server-side Apply Beta 2 - Kubernetes
#kubernetes, #kubectl

Server-side Apply is an important effort to migrate “kubectl apply” to the apiserver. It was started in 2018 by the Apply working group.

When I upgraded my Kubernetes/k3s cluster the other day to 1.18 and later looked at some resources, I was puzzled about the field metadata.managedFields which was new to me (and makes looking at resources a pain now!). This article describes what's up with it

Last Week in Kubernetes Development
#kubernetes, #newsletter

LWKD is a weekly newsletter summarizing code activity in the Kubernetes project: merges, PRs, deprecations, version updates, release schedules, and the weekly community meeting. It does not cover events or news in the Kubernetes ecosystem, as our sister publication KubeWeekly does a great job of handling those.

If you want to stay up-to-date on the inner details of Kubernetes development, this Newsletter is for you! I read it every time a new issue is out and helps me to stay informed of changes in Kubernetes. At least most of the time; see above, I missed the information about the new field.

I wrote Task Manager and I just remembered something...
#windows, #task

Some Task Manager lore: I'm the Microsoft (Redmond, '93) developer that wrote TaskMgr at home in my den in about 1994 and then the NT silverback devs let me check it into the main tree even though I was a greenhorn at the time.

Another story to read. Again about some Windows stuff. Doesn't matter to me, I like stories, as already written.

Why is This Website Port Scanning me
#portscanning, #websocket, #browser

Investigation of the practice of port scanning site visitors for fingerprinting and tracking.

This is new to me. Things happen on the Internet...

10 most common mistakes using kubernetes – pipetail Blog
#kubernetes, #learning

We had the chance to see quite a bit of clusters in our years of experience with kubernetes (both managed and unmanaged - on GCP, AWS and Azure), and we see some mistakes being repeated. No shame in that, we’ve done most of these too! I'll try to show the ones we see very often and talk a bit about how to fix them.

Yes, I can feel all these things. Aka: Been there, done that.

stapelberg uses this: my 2020 desk setup
#desk, #experience

I generally enjoy reading the uses this blog, and recently people have been talking about desk setups in my bubble (and on my Twitch stream), so I figured I’d write a post about my current setup!

In the times of remote working and home office, it's interesting to see how others are setting up their workspace. This article is very well written.


Tools

Open Source tools newly discovered

Tools for better thinking | Untools
#nontech

Collection of thinking tools and frameworks to help you solve problems, make decisions and understand systems.

Ok, nothing to download. But to read...

naggie/dsnet: Simple command to manage a centralised wireguard VPN. Think wg-quick but quicker.
#wireguard

dsnet is a simple configuration tool to manage a centralised wireguard VPN. Think wg-quick but quicker. From scratch:

tailscale/tailscale: The easiest, most secure way to use WireGuard and 2FA.
#wireguard, #vpn

Private WireGuard networks made easy

subspacecommunity/subspace: A fork of the simple WireGuard VPN server GUI community maintained
#wireguard, #webapp

unDraw - Open source illustrations for any idea
#symbols, #graphics, #illustrations

Create better designed websites, products and applications. Browse to find the images that fit your messaging, automagically customise the color to match your brand and use it as a normal image, embedded code or directly in your design workflow.

ngine-io/turret: Just a smaller Tower
#ansible, #automation, #cicd

Turret distributes Ansible execution with a simple API and minimal set of requirements.

No code to see yet, but maybe some day?

CISOfy/lynis: Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
#audit, #security, #scan

Lynis is a security auditing tool for systems based on UNIX like Linux, macOS, BSD, and others. It performs an in-depth security scan and runs on the system itself. The primary goal is to test security defenses and provide tips for further system hardening. It will also scan for general system information, vulnerable software packages, and possible configuration issues. Lynis was commonly used by system administrators and auditors to assess the security defenses of their systems. Besides the "blue team," nowadays penetration testers also have Lynis in their toolkit.

toni-moreno/syncflux: SyncFlux is an Open Source InfluxDB Data syncronization and replication tool for migration purposes or HA clusters
#influxdb, #replication

SyncFlux is an Open Source InfluxDB Data syncronization and replication tool with HTTP API Interface which has as main goal recover lost data from any handmade HA influxDB 1.X cluster.

Krucible: Kubernetes clusters for testing and development
#kubernetes, #testing, #ephemeral

Create Kubernetes clusters for testing and development. Clusters spin up in seconds—faster than any other provider. Designed for CI/CD environments.

GitHub - iegomez/mosquitto-go-auth: Auth plugin for mosquitto.
#mqtt, #mosquitto, #authentication, #go

Mosquitto Go Auth is an authentication and authorization plugin for the Mosquitto MQTT broker.

Enjoying these posts? Subscribe for more