Operations | Monitoring | ITSM | DevOps | Cloud

At Grafana Labs, we are proud to be one of the largest code contributors to Cloud Native Computing Foundation projects. We are currently the leading company contributor to Prometheus, and also make substantial contributions to Cortex, Thanos, Jaeger, and OpenTelemetry. Our own open source projects — Grafana, Grafana Loki, and Grafana Tempo — have also become fundamental parts of the cloud native ecosystem.

This week in the Civo DevOps bootcamp, we covered what is DevOps & why it matters. There are no prerequisites for this bootcamp. The only thing we require is your passion to learn and explore. This session was undertaken by mentors highly experienced in their respective fields. Read on to learn more about it!

SSL is an acronym for Secure Sockets Layer. It's considered as a standard security technology, it serves as an Internet protocol by establishing an encrypted link between a browser and a web server. SSL is used to secure credit card transactions, data transfer and logins thereby preventing hackers from accessing private data.

We’re excited to launch our new integration with GitHub that supports GitHub Enterprise Server customers. This allows companies using GitHub Enterprise on their own domains to access key features in Rollbar that help developers fix errors faster. GitHub Enterprise offers a fully integrated development platform for organizations to accelerate software innovation and secure delivery. With Rollbar, GitHub Enterprise Server customers can now access.

In any case, by using the MITRE ATT&CK framework to model and implement your cloud IaaS security, you will have a head start on any compliance standard since it guides your cybersecurity and risk teams to follow the best security practices. As it does for all platforms and environments, MITRE came up with an IaaS Matrix to map the specific Tactics, Techniques, and Procedures (TTPs) that advanced threat actors could possibly use in their attacks on Cloud environments.

The CVE-2021-33909, named Sequoia, is a new privilege escalation vulnerability that affects Linux’s file system. It was disclosed in July, 2021, and it was introduced in 2014 on many Linux distros; among which we have Ubuntu (20.04, 20.10 and 21.04), Debian 11, Fedora 34 Workstation and some Red Hat products, too. This vulnerability is caused by an out-of-bounds write found in the Linux kernel’s seq_file in the Filesystem layer.

As a developer, you’re going to be making changes to a codebase. That’s why, as Harold Abelson put it, “Programs must be written for people to read.” If a codebase is not clearly formatted, debugging becomes more difficult than it should be. Though usually overlooked, little changes like reformatting and proper indentation of your code can obviously differentiate a professional developer’s code base from someone just learning.

John Pagliuca, CEO of N-able, has taken issue in the press multiple times with the term digital transformation, preferring the term digital evolution. I agree that evolution is a better term. Digital transformation implies a one-time event; digital evolution acknowledges the ongoing nature of these changes. In short, the market will continue to change. How you adapt dictates whether you come out far ahead or remain with the status quo.

In December 2020, we blogged about security issues in Go’s encoding/xml with critical impact on several Go-based SAML implementations. Coordinating the disclosure around those issues was no small feat; we spent months emailing the Go security team, reviewing code, testing and retesting exploits, coming up with workarounds, implementing a validation library, and finally reaching out to SAML library maintainers and 20 different companies downstream.

A year ago, in July of 2020, I started my SysAdmin Day post  with the words, Here we are, 12 months later, and a lot has changed, but life (and tech) continue to be extraordinarily not-normal. The challenges we face as IT pros in general and SysAdmins in particular push us to our limits daily, and there’s no hiding or sugar-coating it. In the face of all this, I’d like to offer some new thoughts for my SysAdmin family to help process the year that was and navigate the challenges to come.