Best of Infrastructure — September 2024

1
Article
The New Stack·2y
Learning Linux? Start Here
Learning Linux has never been easier, thanks to numerous resources and user-friendly distributions. The key areas to focus on include mastering the command line, learning access control methods, managing hardware and services, selecting and deploying a distribution, system maintenance, and configuring networking. Hands-on experience with virtual machines and using tools like Vim, Nano, systemctl, and ssh is essential. Efficient user and permission management, along with understanding package managers and firewalls, are crucial skills for Linux administration. Start with a structured learning plan to become proficient in this versatile operating system.
168
6
2
Article
Community Picks·2y
Linux Containers
Incus is a next-generation system container and virtual machine manager offering a user experience similar to a public cloud. It supports a variety of Linux distributions, multiple storage backends, and diverse network types. Key features include a secure and intuitive API, scalability, event-based logging, and comprehensive backup and recovery options. Incus runs on any recent Linux distribution, with the client also available for Windows and macOS. The current LTS release is Incus 6.0, supported until June 2029.
78
2
3
Video
Community Picks·2y
Secure Your .NET Application With Keycloak: Step-by-Step Guide
Learn how to secure your .NET application using Keycloak, an open-source identity provider compatible with OAuth2 and OpenID. This guide covers setting up a Keycloak realm and client, configuring authentication with JSON Web Tokens (JWT), and implementing an API endpoint for user claims. The tutorial also dives into using distributed tracing with OpenTelemetry to validate and debug your authentication setup.
58
3
4
Video
Theo - t3․gg·2y
We stopped using serverless. The results are insane.
Upload Thing V7 drastically improves file upload speeds, making uploads five times faster. Major changes include seamless pausing and resuming of uploads, integration support for Remix, and the transition from relying on direct S3 uploads to a custom upload server, simplifying the process and enhancing control. This update reduces the number of steps and requests needed, enhances security, and unlocks new features like bring-your-own-bucket and better file validation.
52
3
5
Article
Community Picks·2y
Keycloak with istio and Oauth2-Proxy.
The post guides you through setting up Istio with Keycloak and OAuth2 Proxy to add authentication and authorization to a microservices architecture. Keycloak serves as an identity provider and OAuth2 authorization server, while OAuth2 Proxy handles OAuth2 authentication flows, converting them into HTTP headers for backend services. The tutorial also covers using JWTs for stateless verification, configuring Keycloak and OAuth2 Proxy, and setting up Istio policies to protect services like a test pod. Finally, it demonstrates testing the implementation to ensure secure access.
18
6
Article
habr·2y
Kata Containers for Docker in 2024
Kata Containers offer a secure way to run containers within isolated virtual machines. The post discusses alternatives to Docker-Machine and highlights Kata's usage on different Linux distributions. It explains the lack of pre-built packages for some distributions and provides a detailed guide on installing Kata Containers from source or pre-built binaries, emphasizing the importance of security updates and the process of setting up and running containers using Kata.
17
7
Article
Spacelift·2y
DevOps Maturity Model : Levels, Metrics & Benefits
Organizations looking to enhance their software development and delivery processes can benefit from a DevOps maturity model. This framework helps assess the current level of DevOps adoption, providing a structured path for improvement across processes, tools, culture, and automation. The model typically includes five levels: Initial, Managed, Defined, Measured, and Optimized. Measuring DevOps maturity involves tracking metrics such as deployment frequency, lead time, and mean time to recovery. Implementing a DevOps maturity model results in continuous improvement, better collaboration, and more efficient processes.
15
8
Article
Community Picks·2y
These 5 Linux Commands Make Reading Large Files Easier
Learn how to effectively handle large text files and data streams in Linux using commands like 'less' for scrolling and searching, 'split' for managing chunks of data, and 'head' and 'tail' for selective viewing. Capture command outputs into files for future use and manage file content with 'grep' for powerful searching. Enhance efficiency by understanding stream redirection and file monitoring techniques.
15
1
9
Article
Community Picks·2y
How Amazon Lambda Works 🔥
AWS Lambda is a serverless computing service that allows for scalable backend solutions without the hassle of server management. By using lightweight virtual machines called microVMs managed by Firecracker, AWS Lambda can efficiently handle scalability and performance. The system includes important components like the invoke service for routing requests, the assignment service for tracking workers, and the use of journal logs for failover and fault tolerance. Techniques like warm starts and lazy-loading of container images help reduce latency.
14
10
Article
Salesforce Engineering·2y
Inside Salesforce’s Scalable Time Series Forecasting AI Platform
Salesforce's Infrastructure Data Science team expanded their time series forecasting capabilities from 5 to over 70 services, generating millions of forecasts daily. The new platform, inspired by human-centric frameworks, standardizes common data and compute infrastructure requirements, enabling faster deployment and maintaining high availability with robust code safety and flexible compute backends. The team balances model accuracy, hierarchical coherence, and adaptability to data drift, using simplified tools and custom solutions for their unique needs.
12
11
Article
Slack engineering·2y
Advancing Our Chef Infrastructure
At Slack, efficient management of tens of thousands of EC2 instances is a critical task, involving services like Vitess databases and Kubernetes workers. Initially relying on a single Chef stack, they faced issues with simultaneous changes across all environments and potential single points of failure. Transitioning to a sharded Chef infrastructure, Slack improved reliability and resilience by distributing the load and segregating development and production stacks. Challenges such as node discovery and cookbook versioning were addressed using Consul for service discovery and developing tools like Chef Librarian for independent environment updates. Future plans include further segmenting Chef environments and exploring Chef PolicyFiles and PolicyGroups for greater flexibility in deployments.
11
12
Article
Materialized View·2y
The Customers, They Want Flexible Deployment
Customers demand flexible deployment options for infrastructure, including embedded, client-side, single-node, clustered, SaaS, and BYOC. Confluent's acquisition of WarpStream enables BYOC deployment, addressing customer needs. Examples of flexible systems include ClickHouse, PostgreSQL, and DuckDB, highlighting a shift towards adaptable, multi-faceted deployment models. Advances in technology, such as zero-disk architecture and WebAssembly, facilitate this trend.
10
13
Article
Hacker News·2y
OrbStack · Fast, light, simple Docker & Linux on macOS
OrbStack offers a fast, lightweight, and efficient alternative to Docker Desktop for running Docker containers and Linux on macOS. It provides turbocharged networking, low CPU and disk usage, seamless CLI integration, and excellent performance with features optimized for Apple Silicon. OrbStack is designed as a drop-in replacement for Docker Desktop, offering robust integration and simplified workflows without the battery drain and resource hog of traditional setups.
10
1

See all Infrastructure archives