Collection of useful, relevant or just fun places on the Internets for 27th January 2014 and a bit commentary about what I’ve found interesting about them:
DevOps: Hero Culture – DevOps is about preventing problems before they happen. Activestate has a great article about legacy IT practices (ITIL) that breed the wrong sort of results. While most managers give lip service to preventing problems, the reality:
By 4am, things are back online and all the pizza has been consumed. Frank and Spencer head home and attempt to sleep regardless of the Red Bull coursing through their bloodstream. Nobody would deny that they fought a brave fight here tonight and they go home self-confessed heroes.
While the people doing much more effective and worthwhile work
They have been building many such systems over the past 6 months, but so far nothing has made it into production. This is mainly due to lack of confidence in switching over some major infrastructure to the new system. The head of IT, Boris, has consulted with his top firefighters, Frank and Spencer, and they are not confident with the new technology: “What if it causes an outage?”, “We understand the current system well and can quickly fix things that go wrong”, “If it ain’t broke, why fix it?”.
Telling stories and providing advice to managers who can’t see the trees for the wood
If you have a quorum of fire-fighters, who actually thrive on fire-fighting, then introducing proactive preventative measures may be difficult. We humans hate change at the best of times, even if it is for a long-term benefit.
Great article, go and read it.
The HP SDN APP Store – It Might Just Work | LINDSAY HILL – Lindsay talks about the HP SDN App Store that I saw a demonstration at HP Discover:
HP has been laying out their SDN vision over the last few months. They want to develop a complete SDN ecosystem, including an Open Standards-based network that can integrate with common overlay models, development resources to help 3rd parties to develop applications, test & validation tools, right through to an “App Store” that will deliver applications to end-users.
Study of French “three strikes” piracy law finds no deterrent effect | Ars Technica – The folks in favour of copyright protections still haven’t found the right answer. Which is fine, it’s been tried lets move on, but instead they will still keep trying to criminalise an activity that has little impact on a civil society. Copyright holders are would be better served by focussing on generating revenue with better products and new distribution methids. Worth remembering that the entire Hollywood revenue is less than one months of Apple revenue (roughly USD$4B)
. It’s basically small business. “Our econometric results indicate that the Hadopi [three strikes] law has not deterred individuals from engaging in digital piracy and that it did not reduce the intensity of illegal activity of those who did engage in piracy,” report the four co-authors, economists at the University of Delaware and the University of Rennes.
This Is How You’ll Fall In Love With A Developer | Thought Catalog – When you say it like this:
He preached about the wonders and majesties of all that is code. He promised me that the compartmentalized jumble of numbers, texts, and symbols would transform into beauty, fluidity, and movement. He spoke as if he was God–able to create and transform with no boundaries. How he needed X to happen, which could be executed through Options A, B, or C.
Cisco Evolves Security Education Portfolio to Address Talent Gaps with Updates to CCNP Security and Introduction of Cybersecurity Specialist – The Network: Cisco’s Technology News Site – This welcome because it embreaces a more cohesive approach to real security. But “cybersecurity” is gormless word and smacks of an NSA general pretending that he didn’t lie.
To meet the increasing challenges of securing enterprise networks evolving in size, scope and complexity, Cisco today announced a major revision of the CCNP Security Certification, the introduction of a new Cybersecurity Specialist Certification and other security solutions training.
RSA issues non-denying denial of NSA deal to favor flawed crypto code | Ars Technica – EMC’s RSA division has some serious explaining on it’s ethical practices when it charged the NSA $10Million for the time taken to weaken a security protocol that it then made the default encryption protocol in a software librabry that it sold to customers with the promise that security was best-in-class. ARS is calling out the press release as corproate non-denial:
Taken on its face, the statements seem to assert only that the contract wasn’t secret and that the goal of the contract was to improve, not weaken, the cryptographic capabilities of BSAFE. Nothing in the release contradicts the findings of the Reuters article—that RSA accepted $10 million from the NSA in exchange for making the Dual EC_DRBG BSAFE’s default pseudo random number generator (PRNG). RSA’s defense seems to be that officials didn’t know the NSA-influenced deterministic random bit generator had weaknesses that could be exploited to crack adversaries’ cryptographic keys.
New App: Arista Network Telemetry for Splunk Enterprise | Splunk Blogs – Arista has built a Splunk collector into their NOS. Assuming that you could afford to buy a Splunk license ( I wouldn’t recommend it for networking data), then this has some interesting use cases:
Just add a Splunk forwarder to your Arista switch for easy collection of these metrics. Since these switches are like having Linux boxes with a bunch of Ethernet ports, it is no different from installing your Splunk forwarder directly on any other Linux machine. Once it’s there you can take advantage of both real-time and historical switch statistics to make your networks more efficient.
For networking data, Splunk it simply too expensive. Much more practical to use open source tools, VMware LogInsight or Solarwinds.