#164 — May 2, 2018

Read on the Web

Web Operations Weekly

Moving Fast and Securing Things at Slack — Ease of deployment and security often have an inverse relationship but it pays to get both right. Slack does this by following a Security Development Lifecycle and has built some tools and processes to manage it smoothly.

Max Feldman

Rethinking Web Performance with Service Workers — The author makes a bold claim of this article covering ‘30 years of research in a 30 minute read’. It gets a bit tool/platform specific at the end but does cover many key points and best practices in Web performance.

Wolfram Wingerath

See the 9 Best-Practices for a Successful CI/CD Implementation — Following these principles will help you avoid common pitfalls and strengthen your deployment practices.

DigitalOcean sponsor

Google Introduces '.app', a TLD for Apps — Currently registration is in ‘early access’ only with general availability from May 8. Also, thanks to HSTS, HTTPS support will be mandatory for all .app domains.

Google

Amazon Unimpressed with Signal's Use of 'Domain Fronting' on AWS — Signal first used domain fronting (a way to hide the true endpoint of an SSL connection) on Google App Engine to help circumvent censorship but they stopped it from working. Amazon has now followed suit.

Signal

Google Releases gVisor, a Sandboxed Container Runtime — gVisor provides VM-style isolation for containers in multi-tenant environments but in a more lightweight way.

Nicolas Lacasse (Google)

Build a Serverless Multi-Region, Active-Active Backend in an Hour — It’s pretty amazing how far things have come when you can put together something so complex so easily. This uses DynamoDB Global Tables, AWS Lambda, regional API Gateway, and Route53 routing policies.

Adrian Hornsby

Azure Container Instances Now Generally Available — You can now create Linux and Windows containers to run on Azure without managing any underlying VMs, effectively bringing serverless principles to containerized apps.

Corey Sanders (Microsoft)

Custom Domains on GitHub Pages Gain Support for HTTPS — Users have been noticing this new feature over the past few weeks, but now it’s official and powered by Let’s Encrypt behind the scenes.

GitHub

Free Webinar: Continuous Delivery with Docker, Kubernetes, and GoCD — Get a practical guide in designing a Docker based CD pipeline on Kubernetes with GoCD.

GoCD sponsor

💻 Jobs

Senior Software Engineer - San Francisco, CA — Love to travel? Help us build and scale the platform behind the best mobile hotel booking experience out there.

HotelTonight

Open to a New Job? Sign Up for Vettery — Top developers can get 5+ interview requests during their first week on Vettery.

Vettery

News & Opinion

Docker for Desktop is Certified Kubernetes — Docker for both Windows and Mac have passed the Kubernetes conformance tests.

Gareth Rushgrove

Early Price for the O'Reilly Fluent Conference ends May 4 - Register Today

O’Reilly Media sponsor

▶  Building a .NET Serverless Application on AWS

Abby Fuller, Tara Walker, and Nicki Klein

The Future of Kubernetes Is Serverless

Brendan Burns

Microservicing with Envoy, Istio and Kubernetes“As we move to services architectures, we push the complexity to the space between our services.” And tools like Envoy (the proxy) and Istio (the service mesh) can help us manage such complexity.

Christian Posta

5 Reasons You Should Be Doing Container Native Development

Matt Butcher

Achieving Resilient Cloud Applications with Managed DNS — Thoughts on harnessing the power of DNS for traffic steering, load balancing, and intelligent response.

Mark Wilkins

📘 Tutorials

Scaling a High-Traffic Rate Limiting Stack with Redis Cluster

Brandur Leach

How to Create a Landing Page with Serverless Components — Using Netlify, AWS, and MailChimp.

David Wells

Understanding OAuth 2.0 and OpenID Connect

Keith Casey

Kubernetes: The State of Stateful Apps — Some thoughts on managing state in Kubernetes which is tricky at the best of times.

Sean Loiselle

5 Kubernetes Monitoring To-Dos

Steven Czerwinski (Scalyr)

Getting Started with Terraform and Cloudflare — Write code to manage your Cloudflare config using Terraform.

Patrick R. Donahue.

🔧 Code & Tools

Subfont: Generate Optimal, Optimized Web Font Subsets for Pages — It automatically figures out what characters are used from your Web Fonts and generates smaller versions.

Peter Brandt Müller

Flog: A Fake Log Generator for Common Log Formats

MinJae Kwon