Technology Short Take 121

 Published on 6 Dec 2019 ·  Filed in Information ·  879 words (estimated 5 minutes to read)

Welcome to Technology Short Take #121! This may possibly be the last Tech Short Take of 2019 (not sure if I’ll be able to squeeze in another one), so here’s hoping that you find something useful, helpful, or informative in the links that I’ve collected. Enjoy some light reading over your festive holiday season!

Networking

• Brian Linkletter has a post on how to run the Antidote network emulator on KVM for better performance. Antidote, as I understand it, is the network emulator that runs the labs on the NRELabs web site (which is another cool thing in and of itself). In perusing some of Brian’s content, I see lots of stuff at the intersection of networking and virtualization. That’s a good place to be right now, in my opinion.
• Anders Olsson explains how to map NSX-T UUIDs to the actual logical objects.
• Julien Demierre has three-part series on interfaces and uplinks for ESXi/Edge in NSX-T deployments (part 1, part 2, and part 3).
• This is an old(er) post that I’ve probably mentioned here before, but I think it still has relevance. Brent Salisbury’s post on Golang for Network Ops not only points out why networking pros should learn Golang, but also provides some resources on how to learn it.
• Philippe Bogaerts has an article on how to use tcpdump effectively in Kubernetes. The one caveat to his approach that may be worth mentioning is that some policies (a PodSecurityPolicy or the use of Open Policy Agent) may prevent the user from launching a Pod connected to the host’s network namespace.

Servers/Hardware

Nothing this time around, although there may have been some hardware-related news coming out of re:Invent that I missed (such as new generations of AWS-designed chips being announced).

Security

• Joel de la Garza has a post over on the a16z site on 16 steps to securing your data (and life).
• SentinelOne discusses how to spoof privileged helpers to exploit macOS. Once again we see that fooling the user is the most reliable way to gain access to a system.
• A massive data leak exposing details on as many as 1.2 billion (yes, you read that right) people? Ouch. See this post for details.
• Whiskey Tango brings a privacy issue with Keybase to light (and an issue that I’ve experienced as a Keybase user).
• A new VPN security flaw has been uncovered that affects a wide range of UNIX- and Linux-based systems.

Cloud Computing/Cloud Management

• I found this article on chaos engineering to be helpful in understanding the principles and concepts. The article also pointed me to this GitHub repository with chaos engineering resources.
• This GitHub blog post tells the story of the extremely in-depth debugging required to track down the source of some network stalls in Kubernetes.
• Taylor Clauson takes an investment-centric view of AWS, its ever-growing list of services and offerings, and the evolving cloud computing market.
• Kief Morris’ article on breaking up your Terraform project (day 5 of SysAdvent) is really good; well worth the read, in my opinion.

Operating Systems/Applications

• I found this tidbit on Twitter (here’s the original tweet) but wanted to share it here. Apparently you can get a terminal into your Docker Desktop for Mac VM by running screen ~/Library/Containers/com.docker.docker/Data/vms/0/tty. This will give you a root prompt for the VM behind Docker Desktop. Handy!
• The latest version of macOS (“Catalina”) drops bash as the default shell in favor of zsh. I guess this is fine, since the version of bash that ships with macOS is two major releases behind (due to Apple’s aversion to all things GPL). To help you make the most of your zsh environment, check out this repository by Justin Garrison.
• Robert Kloosterhuis talks about running CoreDNS in a Docker lab to provide DNS for your home lab.
• Here’s an article from Marko Saric on his switch from macOS to Linux.
• A complete OS based on the bare bones open source that backs macOS is apparently a real thing called PureDarwin.
• This Ars Technica article is originally from November 2013, but resurfaced over the 2019 Thanksgiving holiday—it tells the story of OS/2.
• Samuel Karp has a list of guidelines for designing and testing software daemons.
• Jamie Duncan (a new teammate of mine) writes about domain-specific DNS settings on macOS.
• Luc Dekens has a great article on the basics of cloud-init, with a particular focus on its usage with PowerCLI in VMware-based environments.

Storage

Nothing this time; sorry! I’ll be on the lookout for stuff I can include next time around.

Virtualization

• Are you running an all-VMware shop and want to add some Kubernetes to the mix? This blog post has a link to a white paper that could be useful.
• Phil Chapman talks about using PowerCLI to modify settings for an existing Horizon View pool.
• Maarten Van Driessen shares a workaround for an error updating standalone ESXi hosts to version 6.5.

Career/Soft Skills

I haven’t included anything this time, as this Short Take has been pretty heavy on technical content. I’ll stay alert for content to include here next time.

OK, that’s it for now! I hope this was helpful and informative. Feedback is always welcome; it’s probably easiest to contact me via Twitter, but I’m around a lot of different places if you look. Have a great weekend!

Metadata and Navigation

 Networking  Hardware  Security  Storage  Virtualization  NSX  KVM  macOS  Docker  Linux  Kubernetes  AWS  VPN  Terraform  vSphere  VMware
Previous Post: Technology Short Take 120
Next Post: Technology Short Take 122

Be social and share this post!