Podcast: Play in new window | Download | Embed
- Security issue in Windows K8 nodes
- Rancher launches Rockoon, a Kubernetes controller for OpenStack.
- Yellowbrick takes a page out of 37signals cloud repatriation manual
- A podcast recommendation
CVE-2024-9042: Command Injection affecting Windows nodes via nodes/*/logs/query API · Issue #129654
Exploit Me, Baby, One More Time: Command Injection in Kubernetes Log Query | Akamai
Mirantis Rockoon and the Github repository
Google SRE podcast
Security issue in Windows K8 nodes
This one is important, so let’s get it out of the way right away. There’s a security issue with Kubernetes versions that allows takeover of all Windows nodes in a cluster.
Mirantis launches Rockoon
You probably knew that a Rockoon is a rocket attached to a balloon, right?! Well, I didn’t. According to Wikipedia a rockoon “is a sounding rocket that, rather than being lit immediately while still on the ground, is first carried into the upper atmosphere by a gas-filled balloon, then separated from the balloon and ignited. This allows the rocket to achieve a higher altitude, as the rocket does not have to move under power through the lower and thicker layers of the atmosphere.”
Yellowbrick saves tons of money with Cloud repatriation
Here’s another company saving money by moving off the hyperscalers – Yellowbrick is a Postgres look-alike database in the cloud and was previously hosted on three cloud providers, costing around $6 million. How they were able to cut cost in half my moving to a K8-based on-premises solution is described in an informative blog post by their CEO.
A podcast recommendation
Here’s my recommendation for this episode and it’s somewhat tied with the previous topic – the Google SRE Prodcast. It is Google’s podcast about Site Reliability Engineering and production software. What I like most about it is that they bring the receipts.