Kubernetes:

• odo, a tool to simplify development on Kubernetes,
• The Truth about “kubectl get all”,
• Introducing KWOK: Kubernetes WithOut Kubelet,
• Preserving Authorship in a GitOps World with Kyverno,
• Secure your CI/CD Pipelines with Sigstore and Kyverno — Signing and Verifying Image,
• Six critical blindspots while securing Argo CD,
• Restricting cluster-admin Permissions,
• Policies as Code in Kubernetes using jsPolicy,
• Kubernetes traffic discovery,
• Top 10 most used policies for Kyverno,
• Streamlining Kubernetes Management with Kyverno and ArgoCD,
• Cilium for Kubernetes networking: Why we use it and why we love it,
• How to architect an application for portability with a Kubernetes platform,
• My first experience with Kyverno,
• Exploring ephemeral containers in kubernetes,
• Getting To SLSA Level 2 with Tekton and Tekton Chains,
• Open-source tools for securing your kubernetes cluster,
• k8s.gcr.io Redirect to registry.k8s.io – What You Need to Know,
• The Good and the Bad of Kubernetes Container Orchestration,
• KubeEdge – CNCF’s First SLSA 3 Project,
• AKS vs EKS vs GKE,
• Our advice for configuring Knative Broker for Apache Kafka,

OpenShift:

• Deploying Helm-Based ACM Applications,
• Unlocking value with the Silicom Time Sync Operator,
• GPU instance types available for ROSA,
• Running Knative services on AWS spot instances,
• Using Let’s Encrypt certificates on managed clusters with OpenShift Hive,
• A breakdown of using GitOps with Azure Red Hat OpenShift,
• Tekton & Shipwright – The Future of Building in OpenShift?
• Connecting GitHub Container Registry with Azure Red Hat OpenShift,
• 5 global environment variables provided by OpenShift GitOps,
• Back To Where It All Started – Let’s Build an OpenShift Home Lab,
• Effortlessly And Efficiently Provision OpenShift Clusters With OpenShift Virtualization,
• How to use Confidential Containers without confidential hardware,
• Customize your Kubernetes – OpenShift gets composable,
• MuleSoft workloads on OpenShift Container Platform (OCP),
• Extracting TLS CA Certificates from Kubeconfig File,
• Guide: Install OpenShift 4.12 using IPI on Nutanix CE 2.0,
• Keeping the SAP core clean with ROSA,
• How to do blue/green and canary deployments with Argo Rollouts,

Containers:

• What is Podman Desktop? A developer’s introduction,
• PCI Container Orchestration Guidance for Kubernetes,
• Introduction to Podman,
• Announcing public preview of confidential containers on Azure Container Instances,
• Troubleshooting Podman Machine,
• Trivy v0.38.0 is released!
• How RHEL image builder has improved security and function,
• Deploying a multi-container application using Podman and Quadlet,
• Why I Will Never Use Alpine Linux Ever Again,
• Containerd 1.7.0 release announcement,
• 5 Podman features that can benefit your IT architecture,
• How to run containers on Mac with Podman,

Service Mesh:

• Linkerd and Ingress Controllers: Bringing the Outside World In,
• The Future of Service Mesh is Networking,
• Merbridge overview,
• What Is mTLS?
• WTF is Cilium?
• Istio Ambient Service Mesh Merged to Istio’s Main Branch,
• Istio service mesh, a start to finish tutorial with Side Car architecture and an analysis + comparison of the Ambient mesh architecture,

RHEL:

• The State of Customer and Partner Experience at Red Hat 2022: See your feedback in action,
• How the Kepler project is working to advance environmentally-conscious efforts,
• Red Hat Smart Management for your Red Hat OpenStack Platform cloud,
• Beyond the STIG: What does “security leadership” really mean?
• Delivering highly resilient IT operations with event-driven automation,
• Red Hat Satellite 6.12 and remote execution: Now featuring pull mode,
• 6-step tutorial on installing Ansible 2.3 on RHEL 9.1,
• CentOS Community Newsletter, February 2023,
• Containerizing SAP HANA Express on Red Hat Enterprise Linux,
• RHEL 8 QCOW KVM,
• RHEL 9 QCOW2 Guest Images in KVM,

Certifications:

• CKAD Exercices,

Miscellaneous:

• Get Started with eBPF,
• Introducing Service Weaver: A Framework for Writing Distributed Applications,
• How to cache Ansible facts with Redis,
• Troubleshoot RDS connectivity issues with Ansible validated content,
• 6 things architects need to know about 6G wireless networks,
• 4 cool new projects to try in Copr for March 2023,
• The most important Linux commands that nobody teaches you,
• Software Supply Chains Achilles Heel,
• How to create NFS share on Azure Blob Storage,
• How to use a YubiKey with Fedora Linux,
• 3 fundamental tools to troubleshoot Linux performance problems,
• How to configure an Ansible dynamic inventory for virtual machines,
• Overhauling memory tuning in OpenJDK containers updates,
• How to encrypt Bash shell variables with Ansible Vault,
• Microsoft is harnessing the power of the cloud to make the promise of quantum at scale a reality,
• Announcing Rust 1.68.0,
• Using ansible_vault_setup.sh to Set Up a Vault Password for Ansible-Navigator,
• The Fedora Project FOSDEM 23 Experience,
• Fedora Linux editions part 3: Labs,
• Big data basics: What sysadmins need to know,
• Inject external data in policy evaluations with Conftest.

Kubernetes:

• Configuring AKS to read secrets and certificates from Azure KeyVaults,
• GitOps for multi-cluster K8s environments,
• What David Flanagan Learned Fixing Kubernetes Clusters,
• An Introduction to Talos Linux: The New Kubernetes Operating System,
• Which JDK to Choose on Kubernetes,
• Kyverno, Kubernetes Native Policy Management,
• Multiple sources for Argo CD applications,
• Claudie: Cloud-agnostic managed Kubernetes,
• Cgroups – Deep Dive into Resource Management in Kubernetes,
• Kubernetes Security Compliance Frameworks,
• ArgoCD-vault-eplacer: An Argo CD plugin to replace placeholders in Kubernetes manifests with secrets stored in Hashicorp Vault,
• Kyverno Pt. 1: Deep Dive (37min),
• Kyverno Pt. 2: Deep Dive (47min),
• Cosign 2.0 Released!
• Amazon EKS Upgrade Journey From 1.24 to 1.25,
• Change OpenShift Data Foundation OSDs disk flavor (dimension),
• KubeShark: Wireshark for Kubernetes,
• Lesson learned while scaling Kubernetes cluster to 1000 pods in AWS EKS,
• Create and Release Your Own Helm Chart,
• Scanning container vulnerabilities and publishing the results using Trivy in Azure DevOps,

OpenShift:

• Managing Secrets in Kubernetes (54min),
• Ask an OpenShift Admin (E93) | Openshift Logging and Observability (67min) / slides,
• Episode XII: Scalable & Exposable iPAM with Multus,
• How to deploy JBoss EAP for Red Hat OpenShift Service on AWS (ROSA),
• Your Guide to security hardening OpenShift using the compliance operator,
• Updating the Pull Secret to Access an OpenShift Internal Registry,
• As time passes, our IT World is continuously changing…,
• External Cloud Provider Support in OpenShift on OpenStack,
• Scaling Model Serving with Red Hat OpenShift Data Science,
• Managing OCP Infrastructures Using GitOps (Part 3),
• Benchmarking Red Hat OpenShift Virtualization for latency-sensitive workloads,
• Run .Net 7 code on Red Hat OpenShift Container Platform on MacOS,
• OpenShift to MicroShift Resource Mapping,
• Serving and Monitoring Models across Clusters,
• 5 Reasons to Upgrade from OpenShift Container Platform to OpenShift Platform Plus,
• Dynamically manage Kubernetes applications to improve network latency,
• Installing NGINX Ingress Operator on Azure RedHat OpenShift,
• Red Hat collaborates with NVIDIA to offer GPU-based 5G vRAN solutions with Red Hat OpenShift,
• Using GitOps to Deploy Bare Metal OpenShift Hosted Control Plane Clusters,
• Connect Prometheus alerts to IT service management (ITSM) workflows,
• How to use continuous integration with Jenkins on OpenShift,
• How to employ continuous deployment with Ansible on OpenShift,
• How a manual intervention pipeline restricts deployment,

Containers:

• Configure a container to start automatically as a systemd service,
• Build a Grafana dashboard to visualize data using Ansible and Podman,
• Container security fundamentals: Exploring containers as processes,

Service Mesh:

• Ambient mesh available in Istio’s main branch,
• Performance Optimization for Istio,
• How to integrate Istio with AWS Private Certificate Authority,
• Experiment: Migrating OpenTracing-based application in Go to use the OpenTelemetry SDK,

RHEL:

• New warnings and errors in Clang 15,
• Red Hat Ansible Automation Platform now available on Google Cloud Marketplace,
• 5 steps to install Microsoft SQL on RHEL8 via automation,
• Security by design: Security principles and threat modeling,
• Using Red Hat Insights as a source of events for Event-Driven Ansible automation,
• Sustainability, the cloud native way,
• Red Hat Introduces New Partner Subscriptions to Enable Ecosystem Innovation and Customer Success,
• Learn how to use the Red Hat Enterprise Linux (RHEL) web console,
• 21 things every Red Hat Satellite user should know,
• 5G architecture: Frequently asked questions answered,
• Cloud RAN mobile architecture: 6 questions answered,
• Mastering Git with university students,

Miscellaneous:

• Migrating to AWS CloudFront,
• NAT between identical networks using VRF,
• Automate your SSO with Ansible and Keycloak,
• How we redesigned the Keycloak UI to increase efficiency,
• Microsoft Pluton TPM CRB Functionality Merged Into Linux 6.3,
• Free eBook: Learn Vim the Smart Way,
• Free eBook: Rust Atomics and Locks,
• The complete guide to OpenTelemetry in Golang,
• Our advice for installing Node.js modules using npm registry,
• Episode XIII: 6G, Field of Dreams,
• Network automation with Ansible validated content,
• 6 tutorials for modern app development,
• rpmdistro-repoquery: a cross-distribution repoquery tool,
• Avoiding pitfalls when using cURL in CI/CD pipelines,
• EXT4 Scores A Nice Direct I/O Performance Improvement With Linux 6.3,
• Maximize your hybrid cloud mastery with the Ansible validated content.

Kubernetes:

• Protect Your Mission-Critical Pods From Eviction With PriorityClass,
• Sigstore’s cosign and policy-controller with GKE, Artifact Registry and KMS,
• Overview of Azure Kubernetes Services Networking Models,
• What is a kubeconfig file?
• Kubewarden UI 1.0.0 is released!
• How to verify container images with Kyverno using KMS, Cosign, and Workload Identity,
• kubeaudit helps you audit your Kubernetes clusters against common security controls,
• First post: Creating a simple web app to list kubernetes resources,
• Saving costs in Google Kubernetes Engine using Spot VMs,
• Under-documented Kubernetes Security Tips,
• Best Practices for Java Apps on Kubernetes,
• K8s ASA: Watching and Caching,
• Running CockroachDB TPC-C benchmark on GKE,
• Notes from Cloud Native SecurityCon 2023,
• Temporary Policy Exceptions with Kyverno,
• Enforcing Kubernetes Best Practices using Kyverno and Argo CD,
• A Guide to Running Sigstore Locally,
• Testing Production Kubernetes Controllers,
• How To Inject Secrets in Pods To Improve Security with Hashicorp Vault in 5 Minutes,
• Cilium 1.13 – Gateway API, mTLS datapath, Service Mesh, BIG TCP, SBOM, SNI NetworkPolicy,
• Deploy RabbitMQ with Kubernetes and Persistent Volumes,
• Kubernetes Infrastructure At Medium,

OpenShift:

• Check Out the new Network Observability Support in OpenShift 4.12,
• Running kubectl from pod kubernetes/Openshift,
• Streamline creating container instances with Red Hat OpenShift and Git,
• Establish secure routes and TLS termination with wildcard certificates,
• Azure Red Hat OpenShift for Microsoft Azure Government Now Available,
• Introducing a Game-Changing New Way to Deploy OpenShift Clusters in Disconnected Environments,
• In-depth OpenShift Monitoring for 4.12,
• Moving beyond digital transformation with Apollo GraphQL and Red Hat OpenShift,
• Tekton vs. Jenkins: What’s better for CI/CD pipelines on Red Hat OpenShift?
• How JBoss EAP 8-Beta makes deployment on OpenShift easier,
• Use Keycloak SSO and TLS to build secure routes,
• Introducing: Control plane machine management and 1-click scaling,
• Red Hat Advanced Cluster Management for Kubernetes 2.7 maintains its commitment to security at the edge,
• OpenShift 4.12: Ingress Node Firewall Operator,
• Insights recommendations as alerts,
• Application Tracing using Open Telemetry and Jaeger on Openshift,
• ACM Add-Ons (VolSync),
• Quarkus Application Monitoring using Prometheus on Openshift,
• How to use the Topology Aware Lifecycle Manager,
• Announcing GCP  support for OpenShift Window Containers,
• ACM Add-Ons (Submariner),
• 3scale — Publishing an API as Custom Resource Definition,
• Securing APIs in Red Hat 3scale API Management with Red Hat Single Sign-On,
• Bring Your Own Directory Service,
• How to run Camel on Spring Boot in Red Hat Developer Sandbox,
• OpenShift 4 Lifecycle Enhancements: Introducing an extended update support phase,
• Navigating Kubernetes/OpenShift API deprecations and removals,
• Meet Red Hat Device Edge with MicroShift,
• Debugging Prometheus on OpenShift the Hard Way,
• HowTo install Loki [S3 persistent storage] & NetObserv Operator on Openshift 4 (4.10–4.12),
• How to use Loki from Grafana Cloud with Openshift Network Observability,
• Identifying recently started pods with Prometheus and Grafana on OKD,
• How to Configure an OpenShift node as an IPv6 router in an O-RAN LLS-C1 configuration,
• How to accelerate workloads with NVIDIA GPUs on Red Hat Device Edge,
• Create Rsyslog Service in Kubernetes,
• Juniper Networks’ CN2 Achieves Red Hat OpenShift Certification,
• SNO on Spot,
• Build smaller container images using S2I,
• How we provision Ansible Automation Platform in 10 minutes with a custom Operator,
• Persistent data on Red Hat OpenShift at the edge,

Containers:

• How to deploy Microsoft SQL Server 2022 containers on Red Hat Enterprise Linux (Part 2),
• The container name resolution conundrum,
• Buildah version 1.26.0 Release Announcement,
• Podman checkpoint,
• Remote container development with VS Code and Podman,
• Rootless Systemd in Rootless Podman,
• Default Podman network subnets,
• How to use new container events and auditing features in Podman 4.4,
• Make systemd better for Podman with Quadlet,
• Release Notes – Podman Desktop 0.12,

Service Mesh:

• Solo.io Gloo Platform: Application Networking Introduction (26min),
• Solo.io Gloo Platform: Application Networking in the Real World (35min),
• Solo.io Sidecar-Less Service Mesh (23min),
• What’s a Zero-Trust Tunnel? Exploring Security and Simpler Operations with Istio Ambient Mesh (37min),
• Service Mesh for Developers,
• Use service mesh and mTLS to establish secure routes and TLS termination,
• SPIRE: A case for attestable workload identity,
• How the Istio Service Mesh Became Critical Infrastructure for Cloud Native Applications,
• eBPF enhanced HTTP observability — L7 metrics and tracing,
• Announcing Istio 1.17,
• gRPC to REST transcoding with OpenShift and Service Mesh,

RHEL:

• Bringing faster updates to Ansible Automation Platform,
• Securing open source development: A supply chain perspective,
• Red Hat Satellite 6.12.2 has been released,
• Automate Microsoft SQL Server Always On availability groups on Red Hat Enterprise Linux,
• Planning our migration to Ansible Automation Platform 2,
• Manage automation controller Configuration as Code (CaC) with Ansible,
• What are RHEL in-place upgrades?
• What’s new in the web console in RHEL 9.1 and 8.7,
• Migrating to Ansible Automation Platform 2: How we did it,
• Manage automation controller active and passive multisite architecture with Ansible,
• Enable Extensions on Azure Arc Connected Machines with Ansible Automation Platform,
• How I built a homelab with Red Hat Enterprise Linux (RHEL),
• How to architect multicluster DevSecOps,
• SAP automation: Integrating NetApp and SAP LaMa with Red Hat Ansible Automation Platform,
• How to convert CentOS Linux to RHEL in-place on AWS,
• Project Wisdom Demo: AI-assisted Ansible (6min),

Certifications:

• Red Hat Updates Certification Exam Retake Policy to Broaden the Red Hat Certified Community,
• Taking education upstream with Red Hat Academy,

Miscellaneous:

• The Future of Observability,
• AWS Multi-Region Fundamentals,
• How to improve application security using _FORTIFY_SOURCE=3,
• Google announces the response to ChatGPT: Bard,
• Deploy Quarkus Applications with Databases in Kubernetes,
• Can ChatGPT write Ansible playbooks that work?
• Linux 6.1 Officially Promoted To Being An LTS Kernel,
• Creating custom Event-Driven Ansible source plugins,
• Advanced Testing with Quarkus,
• Test Ansible using policy as code with Conftest,
• Introduction to YAMLPath,
• Create encrypted backups of your workstation with an Ansible playbook,
• How debugging Go programs with Delve and eBPF is faster,
• Apache Kafka Patterns and Anti-Patterns,
• 5 things developers should know about edge computing,
• Canonical Promotes Ubuntu’s Real-Time “RT” Kernel To General Availability,
• A comparison of ActiveMQ and Kafka,
• Horizontally scaling Kafka consumers with rendezvous hashing,
• How Rust went from a side project to the world’s most-loved programming language,
• Working with Btrfs – Compression.

Kubernetes:

• Be Lean, Go Far: leveraging Kubernetes for an elastic right-sized platform,
• How to generate code using Fabric8 Kubernetes Client,
• Addressing Bandwidth Exhaustion with Cilium Bandwidth Manager,
• OpenEBS ZFS CSI Driver: a CSI driver for provisioning Local PVs backed by ZFS,
• Kubernetes Capacity and Resource Management: It’s Not What You Think It Is,
• Deploy s3gw in Digital Ocean,
• Manage Secrets on Kubernetes with ArgoCD and Vault,
• Kubernetes Cluster Configuration and Vulnerability Scan,
• Backup, Restore and Migrate Kubernetes Cluster resources using Velero,
• Progressive Rollouts in Kubernetes,
• Official benchmarking tool for etcd clusters,
• Continuous Deployments of Kubernetes Applications using Argo CD GitOps & Helm Charts,
• The life of a DNS query in Kubernetes,
• What Are the Hardest Parts of Kubernetes to Learn?
• Kubernetes Authentication – Comparing Solutions,
• Crossplane v1.11 is now available!
• Kubernetes OWASP Top 10: Insecure Workload Configurations,
• Comparing the Top Eight Managed Kubernetes Providers,
• Kyverno 1.9 Released,
• 6 kubectl plugins you must try,
• How to configure Kubernetes memory limits for Java application,
• 10 Things I wish I’d known before building a Kubernetes CRD controller,
• GitOps: Multi-Tenancy with Flux and Kubernetes,
• Auditing RBAC – Redux,

OCP 4.12:

• Red Hat Adds New Security and Compliance Capabilities to Red Hat OpenShift,
• What’s New in Red Hat OpenShift 4.12?
• 3 improvements to the OpenShift 4.12 developer experience,
• Red Hat OpenShift Update Extends Reach of Operators for Kubernetes,
• Red Hat gives an ARM up to OpenShift Kubernetes operations,
• What’s New in Red Hat OpenShift Monitoring 4.12 & Logging 5.6?
• Introducing the Security Profiles Operator for OpenShift,

OpenShift:

• OpenShift Pipelines 1.9 Released,
• How to deploy a web service on OpenShift,
• Enabling Kubernetes feature gates in OpenShift,
• What’s New In Red Hat Advanced Cluster Security,
• Deploying Red Hat OpenShift Service on AWS,
• Planning your migration from Red Hat OpenShift 3 to 4,
• Run the Canary Deployment pattern on Kubernetes,
• AI on OpenShift,
• Advanced Cluster Management Updates (Part 1 of 2),
• Advanced Cluster Management Updates (Part 2 of 2),
• Managing OCP Infrastructures Using GitOps (Part 2),
• Lost your SSH-access to your Openshift nodes? This is what you have to do,
• Reference Architecture: Red Hat OpenShift Container Platform on Lenovo Servers,
• 4 steps to run an application under OpenShift Service Mesh,
• 3 ways to encrypt communications in protected environments with Red Hat OpenShift,
• Episode XI: Latency-Driven Service Orchestration,
• Expanding Your Openshift Cluster’s VLAN: A Step-by-Step Guide for Overcoming IP Address Limitations,
• Dynamic Plugins Now Available,
• Developing an OpenShift Dynamic Console Plugin,

OpenShift peer-pods:

• Red Hat OpenShift sandboxed containers: Peer-pods solution overview,
• Red Hat OpenShift sandboxed containers: Peer-pods technical deep dive,
• Red Hat OpenShift sandboxed containers: Peer-pods hands-on,

Containers:

• It’s Time to Forget About Docker,
• Containers without Docker (podman, buildah, and skopeo),
• Containerize your assembly language code,
• Understanding rootless Podman’s user namespace modes,
• Universal Base Images FAQ updated,
• Release Notes – Podman Desktop 0.11,
• HPC containers at scale using Podman,
• Running WebAssembly Workloads on Container Runtimes,
• Podman v4.4, Buildah v1.29 released!
• Buildah version 1.29.0 Release Announcement,

Service Mesh:

• Service Mesh Deployment Best Practices for Security and High Availability,
• Istio publishes results of 2022 security audit,
• mTLS and Linkerd,
• Unlocking the Power of Service Mesh – Part 1, Part 2, Part 3, Part 4, Part 5,

RHEL:

• Stratis Storage 3.5 Released With Encrypted Cache Support,
• Introducing the new Red Hat Enterprise Linux download experience,
• How to use Red Hat Insights malware detection service,
• Getting started with RHEL for Workstations on AWS,
• How to deploy Microsoft SQL Server 2022 containers on Red Hat Enterprise Linux (Part 1),
• Beyond the STIG: What hardening really means,
• Ansible Automation Platform 2.3 Configuration as Code Improvements,
• Set up GitLab CI and GitLab Runner to configure Ansible automation controller,
• Set up base configurations for Ansible automation controller using GitLab CI,
• Red Hat Announces Intent to Reach Net-Zero Operational Greenhouse Gas Emissions by 2030,
• Ansible Automation Platform Moving Towards Smarter Inventory,
• CSAF VEX documents now generally available,
• Red Hat Launches Ansible Automation Platform on Google Cloud,

Certifications:

• The Ultimate Guide to obtaining the Certified Kubernetes Administrator (CKA),

Miscellaneous:

• Fundamentals of Network Automation with Ansible Validated Content using the network.base collection,
• How ChatGPT will change cybersecurity,
• Measuring your DevSecOps journey,
• How to install containerized applications on Fedora Silverblue,
• MinIO Replication Best Practices,
• Workshop Getting started with Camel Quarkus,
• ip vs. ifconfig: Which do you use?
• Using .NET 7 on Fedora Linux,
• 5 great Perl scripts to keep in your sysadmin toolbox,
• Distributed tracing with OpenTelemetry in your Go/Python microservices,
• error: rpmdbNextIterator: skipping in Fedora 38+,
• Automatically decrypt your disk using TPM2,
• How we added support for the C++23 assume feature in GCC,
• From CSVs to live dashboards: How we modernized our data access platform,
• CVE-2022-4254: FreeIPA PKINIT certificate mapping vulnerability,
• Putty-like SSH port forwarding on Linux and MacOS,
• General availability of SLSA 3 Container Generator for GitHub Actions,
• Announcing Issuance of Federal Information Processing Standard (FIPS) 186-5, Digital Signature Standard,
• Enable organization-level CI/CD controls in Ansible automation controller using configuration as code,
• 3 questions to guide your quantum applications strategy,
• Fedora now has frame pointers.

Kubernetes:

• Cloud Native and Kubernetes Security Predictions 2023,
• Use Azure Key Vault for Secret Store With Azure CSI Driver,
• Observations and thoughts after building 3 kubernetes platforms in Financial Services Industry,
• How to prevent computer overload with remote kind clusters,
• Why you should try to keep your Deployment names to 47 characters (or less),
• Testing Kubernetes Operators using EnvTest,
• The top 5 kubectl plugins by github stars,
• Kubernetes pod probes visual description,
• Evaluating and improving the performance of your ingress controller on Oracle Kubernetes Engine with Locust,
• Apache Druid: overview, running in Kubernetes and monitoring with Prometheus,
• Leveraging CNI custom networking alongside security groups for pods in Amazon EKS,
• Enterprise Restaurant Compute,
• How to distribute workloads using Open Cluster Management,
• Consider All Microservices Vulnerable — And Monitor Their Behavior,
• How to Preview and Diff Your Argo CD Deployments,
• journalctl to debug Kubernetes,
• Troubleshoot: Preflight Checks and Support Bundles Framework for Kubernetes Applications,
• Ingresses and Load Balancers in Kubernetes with MetalLB and nginx-ingress,
• Kubediff: differences between Source and Deployed,
• What Happens When Deleting a Pod,
• Kubeconform: a FAST Kubernetes manifests validator,
• Benchmarking cluster creation time for 8 managed Kubernetes providers,
• Is your Kubernetes API Server exposed? Learn how to check and fix!
• helm-mapkubeapis: a Helm plugin which maps deprecated or removed Kubernetes APIs in a release to supported APIs,
• K8s ASA: The Storage Interface,
• How to write tests with Fabric8 Kubernetes Client,

OpenShift 4.12:

• OCP 4.12 Release Notes,
• Ask an OpenShift Admin (E91) | What’s New for Admins in OpenShift 4.12 (93min),
• What’s New OpenShift 4.12 Developer Edition (31min),
• OKD 4.12 released,

OpenShift:

• How to autoscale your SaaS application infrastructure,
• Red Hat OpenShift at the edge: zero-touch provisioning,
• Customize OpenShift Login with US Government Banner,
• Rate limiting and Authnz for OpenShift Service Mesh with Kuadrant (Developer Preview),
• A Guide to Resilience for Red Hat OpenShift Service on AWS (ROSA),
• Scaling your Azure Private OpenShift clusters with Virtual Network NAT,
• OpenShift: DNS Server Misbehaving,
• OpenShift / OKD Upgrades – Cluster Version Operator (34min),
• 5 tips for using oc to work faster in Kubernetes,
• How OpenShift GitOps notifications can trigger pipelines,
• Keeping Virtual Machines Available by Allowing Nodes to Self Repair,
• What does Red Hat OpenShift have to do with Cloud RAN?
• OpenShift Coffee Break | Cloud Native Networking & Observability for OpenShift with eBPF (66min),
• Expanding OpenShift Data Science Support for On-Premise Deployments,
• You MUST Know to Scale by driven-events not just by CPU or RAM,
• Using eBPF on OpenShift nodes (the quick and dirty way),
• Connecting to your Managed Kafka instance from the Developer Sandbox for Red Hat OpenShift,
• How to Display Your Kubernetes / OpenShift Network Flows,
• Openshift data foundation (ODF) storage (CEPH) FULL, paused modify; how to fix it?
• Adding a trusted CA config & the ingress certificate in OCP 4,

Containers:

• Podman begins CNI plugins deprecation,
• Approaching the Kubernetes Bridge – Multi-container Apps with Rootless Podman,
• How to deploy .NET apps as systemd services using containers,
• Vulnerability in Linux containers – investigation and mitigation,

Service Mesh:

• 70 Days of Service Mesh,
• eBPF-Enhanced HTTP Observability: L7 Metrics and Tracing with SkyWalking,
• 2022 Service Mesh Adoption Survey,
• Getting up and running with an OpenShift Service Mesh (37min),
• What to expect for ambient mesh in 2023,
• How Are Certificates Managed in Istio?
• How Istio’s mTLS Traffic Encryption Works as Part of a Zero Trust Security Posture,
• Fault Injection with Istio on Kubernetes,
• Service mesh 2022 recap: Linkerd adoption doubled, and what we learned about eBPF, the Gateway API, and more,

RHEL:

• Automating HA cluster configuration with RHEL system roles,
• OpenSSL: From FIPS 140-2 upstream to 140-3 downstream,
• Red Hat Insights malware detection service is now generally available,
• Red Hat build of OptaPlanner is now available in Red Hat Application Foundations,
• New deep threat intelligence in Red Hat Insights: Helping to prioritize what matters the most with system vulnerabilities,
• AAP 2.3 Introducing Remote Execution Mesh Nodes for Openshift,
• Red Hat Satellite 6.12.1 has been released,
• AnsibleFest 2022 Quick Take: expanding to AWS, Event-Driven Automation and Project Wisdom,
• Clevis performance improvements,
• Four benefits from Red Hat and Microsoft for Azure Red Hat OpenShift customers,

Certifications:

• A year in review: Red Hat Training’s most popular courses of 2022,
• Career builders: Upskill in the new year with these 10 free Red Hat Training webinars,

Miscellaneous:

• SystemD socket activation lesson learned,
• Introduction to certificate compression in GnuTLS,
• A Brief History of Cryptography,
• Addressing NetOps issues with Event-Driven Ansible,
• How to create, delete, and modify groups in Linux,
• Getting started with data science and machine learning: what architects need to know,
• How Fedora and tox make Python testing easier,
• How to create and use file access control lists in Linux,
• Build a kiosk with Fedora Silverblue,
• How we expanded GCC value range propagation to floats,
• Use FleetDM to optimize system monitoring with Osquery,
• How to run queries and use policies to monitor your system in FleetDM,
• How to become a Shortwave listener (SWL) with Fedora Linux and Software Defined Radio,
• Rust concepts I wish I learned earlier,
• Fun with Caddy – SSRF Testing,
• Taking patch management to the next level with automation,
• 7 pro tips for using the GDB step command,
• Free up space on your Linux system with this open source tool,
• How to choose the right API style and technology for your software architecture,
• Ansible and ChatGPT: Putting it to the test.

Kubernetes:

• Helm security and best practices,
• Managing Kubernetes control plane events in Amazon EKS,
• Kube-secrets-init: Kubernetes mutating webhook for secrets-init injection,
• Kubernetes probes 101,
• GitDocs: A GitOps approach to documentation on Kubernetes,
• How to use Fabric8 Java Client with Kubernetes,
• Programming Kubernetes custom resources in Java,
• How to use Fabric8 Kubernetes Client,
• Native Java with GraalVM and Virtual Threads on Kubernetes,
• Kubernetes Operator for Multi-clusters Usage Tracking, Analytics and Accounting,
• How to sudo in Kubernetes,
• Attacker persistence in Kubernetes using the TokenRequest API: Overview, detection, and prevention,
• How To Make Kubernetes Secrets Truly Secret,
• 6 Steps to successful autoscaling on Kubernetes,
• GKE with CertManager,
• Trivy Operator PolicyReport Adapter: a tool to map Trivy Operator CRDs into the unified PolicyReport and ClusterPolicyReport from the Kubernetes Policy Working Group,
• Injecting secrets from Vault into Helm charts with ArgoCD,
• Cilium CNI on EKS using secondary CIDR and prefix delegation,
• Kubernetes-secret-generator: a Kubernetes controller for automatically generating and updating secrets,

OpenShift:

• Deploying TrilioVault For Kubernetes with OpenShift & Red Hat Advanced Cluster Management Policies,
• Installing OKD using Assisted Installer in a disconnected environment,
• Managing Clusters in Isolated Networks by using Red Hat Advanced Cluster Management for Kubernetes,
• Demystifying node-level tuning on OpenShift,
• Red Hat OpenShift: How to create and integrate a private registry with stronger security capabilities,
• Using Red Hat OpenShift OperatorHub on restricted networks,
• What’s new in Red Hat OpenShift GitOps 1.7,
• Migrate Elasticsearch shards to a new StorageClass,
• A little bit of security is what I want,
• Configuring/Leveraging AWS Controllers for Kubernetes (ACK) for Multi-tenancy Support in OpenShift,
• Node Selection and Affinity for Virtual Machines in OpenShift,
• A developer’s guide to using OpenShift with Kubernetes,
• What’s new OCP 4.12 (90 min) / slides,

Containers:

• Docker and Fedora 37: Migrating to Podman,
• AWS free official practice exams,
• What is Clair?
• Automatic container updates with watchtower,
• Azure Container Registry: the first cloud registry to support the OCI Specifications 1.1,
• Multi-Stage Dockerfile: Awesome Approach To Optimize Your Container Size,
• How To Containerize MEVN Stack with Podman,

Service Mesh:

• Istio JWT Authentication & Authorization at the edge,
• Using Kiali with Istio in Kubernetes,
• How Service Mesh Layers Microservices Security with Traditional Security to Move Fast Safely,
• Istio Supercharges Service Mesh With New Ambient Mesh,
• Scaling Service Mesh Efficiently for Enterprise Workloads, Environments, and Teams with Tetrate’s Brooklyn Release,

RHEL:

• How to install Red Hat Ansible Automation Platform on RHEL 9,
• Kcli installation via Qubinode,
• Deploy Vyos router on Qubinode,
• Firewalld 1.3 Released With Easier Firewall Management For More Services,
• 5 security technologies to know in Red Hat Enterprise Linux,
• Red Hat Enterprise Linux and Microsoft security update of November 2022,
• Learn about Red Hat Enterprise Linux system roles,
• Event-driven automation: How to build an event-driven automation architecture,
• With the release of RHEL 9, what’s new with GNOME 40?
• Modernizing SCADA system interfaces,
• New Slack integration with Red Hat Insights,
• End of maintenance for Red Hat Enterprise Linux 7 is almost here,
• Red Hat and WebAssembly,
• Using system tags to enable extended security hardening recommendations,
• Take the unknowns out of RHEL upgrades with Red Hat Insights,
• A look back on Red Hat Enterprise Linux in 2022,
• Modularity in Red Hat Enterprise Linux 9,
• Red Hat new Benchmark results on AMD EPYC4 (Genoa) processors,

Certifications:

• AWS free official practice exams,
• How I Prepared For The Certified Kubernetes Security Specialist (CKS) Exam (November 2022),

Miscellaneous:

• Survey of security mitigations and architectures, December 2022,
• Speech Recognition in Python,
• Second try at self-hosting Mastodon,
• Gather Linux system info with CPU-X,
• How to build a real-time streaming application: A hands-on guide,
• How libabigail 2.2 supports multiple debugging formats,
• WSL and Ubuntu: 2022 year in review,
• How a single developer dropped AWS costs by 90%, then disappeared,
• URL Mapping with Traefik Reverse Proxy,
• Creating Ansible playbooks with ChatGPT,
• A new constant expression interpreter for Clang,
• Understanding the Confidential Containers Attestation Flow,
• Testing Github actions locally,
• Infrastructure as Code on AWS – An Introduction,
• XFS Progressing On Defragmenting Free Space – Needed For Online Shrinking,
• AMD Ryzen 5 7600 / Ryzen 7 7700 / Ryzen 9 7900 Linux Performance,
• Fedora 38 Features Approved For Unified Kernel, mdadm BIOS RAID, Xfce 4.18,
• Using OpenSearch in Fedora Linux,
• How to run the correct Java version after an update,
• How to use valgrind to track file descriptors,
• How to automate devices using the Ansible CIP collection,
• Linux file permissions explained,
• What is Open RAN?
• 5 new advanced features improving C# 11,
• Fine-grained authorization for Quarkus microservices,
• How to create a Ceph cluster on a single machine,
• ELF section retrieval with debuginfod.

Let’s hope that Ukrainians and Russians reconcile one day.

Kubernetes:

• Detecting Kubernetes API Deprecations with pluto,
• Auto-Scaling based on Prometheus Custom Metrics,
• Kubernetes resources under the hood — Part 1,
• Kubernetes resources under the hood — Part 2,
• Kubernetes resources under the hood — Part 3,
• Kubeconform: A FAST Kubernetes manifests validator, with support for Custom Resources!
• Daily-work stories: Optimizing ArgoCD repo-server to work with Kustomize in monorepo,
• More elastic than Jenkins?Tekton vs Monolithic repository. How to trigger a pipeline when given directory changes?
• CI/CD from Kitchen #1: The “CD” part with ArgoCD,
• Hygiene of an ArgoCD-built automation at a scale,
• On Amazon EKS and Cost Optimisation,
• Getting started with Observability,
• Kube-no-trouble: Easily check your clusters for use of deprecated APIs,
• Kubernetes 1.26: Job Tracking, to Support Massively Parallel Batch Workloads, Is Generally Available,
• Playing with Crossplane, for real,
• Reduce Amazon EKS cost by scaling node groups to zero,
• Why not DNS?
• Kubernetes v1.26: Advancements in Kubernetes Traffic Engineering,
• Continuous Deployments of Kubernetes Applications using Argo CD GitOps & Helm Charts,
• Kubernetes Load Testing: 8 Tools & Best Practices,
• What does sigstore get you as a kubernetes operator? (18min),

OpenShift:

• Manage OpenShift Streams for Apache Kafka with AKHQ,
• Learn about Progressive Application Delivery with GitOps,
• Building Ansible Tower (RHAAP) execution environments for OpenShift,
• Azure Red Hat OpenShift: Disable community operators in Operators Hub,
• OpenShift Event-Driven Architecture Workshop,
• Connecting to Azure Red Hat OpenShift from Azure DevOps,

Containers:

• GitHub Actions: Use Podman to run Fedora Linux,

Rust:

• Rust in the Android platform,
• All Algorithms implemented in Rust,
• Welcome to Comprehensive Rust,
• Experiment: Improving the Rust Book,

Certifications:

• Offensive Software Exploitation (OSE) Course,
• How to pass the AWS Security Specialty exam – guide (2023),

Miscellaneous:

• Debugging binaries invoked from scripts with GDB,
• How much memory my program uses or the tale of working set size,
• Linux find Windows 10/11 OEM product key command,
• Working with Btrfs – Snapshots,
• Page Cache and basic file operations,
• Edubuntu Looks To Re-Establish Itself In 2023,
• Fedora 38 Plans For GCC 13, Binutils 2.39 & Glibc 2.37 Toolchain,
• Make Audio Book from any PDF using Python.

Kubernetes:

• Implement distributed tracing with Jaeger & Opentelemetry on Kubernetes,
• Kubernetes Centralized External Secrets Management with HashiCorp Vault,
• How to Migrate From Docker Compose to Kubernetes,
• Give Users and Groups Access to Kubernetes Cluster Using RBAC,
• Let’s talk about Kubernetes on the Internet,
• Kubernetes Taints and Tolerations do not guarantee pod assignment on target nodes,
• Build EKS cluster with Terraform,
• The Kubernetes Networking Guide,
• Observing the K8 cluster using ELK stack,
• Encrypting Kubernetes Secrets at Rest,
• Extend ArgoCD UI,
• Goodbye Sealed Secrets, hello SOPS,
• Access PVC Data without the POD; troubleshooting Kubernetes,
• Scaling Kubernetes to Thousands of CRDs,
• Deploy with Kustomize, FluxCD and Remote Resources,
• Kubernetes 1.26: Introducing Validating Admission Policies,
• GitOps Cookbook: Kubernetes automation in practice,
• Kubernetes 101 for OpenShift developers, Part 1: Components,
• Kubernetes v1.26: GA Support for Kubelet Credential Providers,
• Kubernetes Events: In-Depth Guide & Examples,
• Kubernetes 1.26: Support for Passing Pod fsGroup to CSI Drivers At Mount Time,
• K8s Gateway API is here – what’s in it for you?
• Configuring Kubernetes operands through custom resources,
• What Happens When Deleting a Pod,

OpenShift:

• Kubernetes Multi-cluster Management – Part 1,
• Kubernetes Multi-Cluster Management – Part 2,
• Kubernetes Multi-Cluster Management – Part 3,
• vuln4shift-backend: Vulnerabilities detection for OpenShift images,
• Azure Red Hat OpenShift — Deleting a user in a proper way,
• IBM Spectrum Protect Plus: Protecting Red Hat OpenShift Containerized Environments,
• How to configure Dell FC Powermax for Persistent Storage on OpenShift 4,
• The Argo Project Graduates at the CNCF,
• Managing OCP Infrastructures Using GitOps (Part 1),
• Configure a pod security context with Cryostat Operator,
• Standardizing application delivery with OpenShift,
• The Consequences Of Pausing MachineConfig Pools In OpenShift’s Machine Config Operator (MCO),
• Configure Openshift OVN to use the kernel routing table,
• Multiple ways of Authentication on OpenShift Container Platform (OCP), Part 2,
• Manually deleting a namespace that is stuck in the “terminating” state — k8s/ocp,
• OC-Mirror surprised us again with new abilities,
• Installation and basic configuration for RedHat’s Advanced Cluster Management — Drill-down for disconnected environments,
• Mini HowTo — Run ‘oc-mirror’ inside a container for importing k8s operators into internal networks,
• Doing Ci & CD with ArgoCD.(mk.2),
• Having issues updating argocd-cm with Openshift-GitOps?!
• How to Configure — Openshift GitOps ArgoCD Authorization,
• How to Setup External Secrets Operator (ESO) as a Service,
• How to Version-Bound Images and Artifacts for OpenShift Operators,
• Custom Queries for Observability Using Grafana and APIs,
• Stream processing with ksqlDB in OpenShift Streams for Apache Kafka,
• How to provision a bare-metal telco cloud platform at scale,
• How to deploy custom-made Helm Charts on Multi Openshift Clusters w/ Advanced Cluster Management (Including in disconnected environments),

Containers:

• Podman — Cannot connect to the Docker daemon error on macOS,
• Podman with MacVLAN,
• Fun with Capabilities,
• Securing Your Containers—Top 3 Challenges,
• Speed up Podman build on MacOS and Windows,
• docker-compose on Fedora CoreOS,
• Installing Podman on Oracle Linux 8,
• Linking Containers with Podman in Oracle Linux 8,
• Podman secrets: a better way to pass environment variables to containers,
• Enterprise and Edge Scale Security with NeuVector Container Security 5.1,
• Setting up Fedora IoT on Raspberry Pi and rootless Podman containers,
• How to “build once, run anywhere” at the edge with containers,
• Hide the current process executable file,
• A Year in Review: Podman in 2022,

Service Mesh:

• Diving into the world of Service Mesh and Istio – Part 1 (61min),
• Overview And State Of Linkerd (35min),
• How to expose Kubernetes services to external traffic using Istio Gateway,
• How to Use Hashicorp Vault As a More Secure Way to Store Istio Certificates,
• Addressing latency and data transfer costs on EKS using Istio,
• Troubleshooting “no healthy upstream” errors in Istio Service Mesh,

RHEL:

• How to migrate apps from JBoss EAP 7.x to JBoss EAP 8-Beta,
• CentOS Connect at FOSDEM 2023,
• Automate JBoss Web Server deployment with the Red Hat Certified Content Collection for JWS,
• Why we added restartable sequences support to glibc in RHEL 9,
• Measuring Essential Eight Assessment Activity with the Ansible Automation Platform,

Certifications:

• CKAD Command Line Tips & Tricks,
• Kubesimplify workshops,
• OSCP Study Guide 2022,
• My thoughts on the Certified Kubernetes Security Specialist (CKS) exam,

Miscellaneous:

• System Design Basics: What is an API Gateway?
• How to schedule jobs using the Linux ‘cron’ utility,
• Creating Custom Rules for Ansible Lint,
• New enhancements in the Cryostat 2.2 JMC agent plugin,
• Introduction to policy as code with automation,
• Update from the world of Fedora Workstation,
• Some notes on porting Delve to PPC64LE,
• Boost Root Cause Analysis Quickly With SkyWalking’s New Trace-Metrics Association Feature,
• Announcing OSV-Scanner: Vulnerability Scanner for Open Source,
• 5 great books about containers for busy architects,
• How to contribute to LLVM,
• Introduction to the Node.js reference architecture, part 11: Typical development workflows,
• Terminals and pseudoterminals,
• 1st of July, 2023: End of Universal Analytics and Beginning of Google Analytics 4.

Kubernetes:

• Hardening Monitoring: a step-by-step guide,
• Clusters for all!
• Enable auto-completion for Kubectl in a Linux bash shell,
• Grafana Loki multi tenant setup in EKS clusters,
• Kubernetes 101: Install Kubernetes on Rocky Linux,
• Automatic Renewal of TLS Certificates for Load Balancers in Kubernetes,
• Managing Pod Security on Amazon EKS with Kyverno,
• CrashLoopBackOff Error in Kubernetes — What it is and its troubleshooting approaches,
• Kubernetes Ingress vs. External Services,
• Awesome Kubernetes (K8s) Security,
• Auditing GKE Clusters across the entire organization,
• Connecting Google Secrets Manager to a Kubernetes Cluster,
• Argo CD: ApplicationSet and Helm custom plugin — challenges and solutions,
• Argo Project Graduates With Unanimous Support,
• MicroSoft thread matrix guide for Kubernetes,
• So you need to wait for some Kubernetes resources?
• Kubernetes v1.26 released,
• What’s new for security in Kubernetes 1.26,
• Kubernetes 1.26: We’re now signing our binary release artifacts!
• Dependency-Free Kubernetes Cluster Monitoring,
• Kubernetes Informers: Opening the Mystery Box,
• Helm security and best practices,
• K8s Tips: Accessing the API Server From a Pod,
• Use of PodDisruptionBudgets,
• NFS CSI driver for Kubernetes,
• Manage Multiple Kubernetes Clusters with ArgoCD,
• Grafana, Prometheus, and Loki: Exploring Metrics and Logs,
• Kubernetes network policies for pods and namespaces isolation,
• Reloader: A Kubernetes controller to watch changes in ConfigMap and Secrets and do rolling upgrades,
• K8spacket: packets traffic visualization for kubernetes,
• Kubernetes-event-exporter: Export Kubernetes events to multiple destinations with routing and filtering,
• Google Kubernetes Engine Ingress configuration for production environments,
• Explore API Priority and Fairness to Ease the Load of the APIServer,
• Stateless Collectors For Stateful Data: Scaling Prometheus As a Node Agent (35min),
• What’s New In Operator Framework? (34min),
• Autoscale large images faster using Longhorn (distributed storage),
• KeyCloak with Nginx Ingress,
• How Consul and Kubernetes work together (14 min),
• Kubernetes Audit Logs – Best Practices And Configuration,
• A Definitive guide to Kubernetes Operator — The walk! ( Part 1),
• Using Cinder as Storage Backend Kubernetes,
• K8s — Manage Stateful Applications, Part one,
• WebAssembly vs. Kubernetes,
• Forbearing: A library implementing various handlers to more easily create/update/apply/patch/delete/get/list/watch k8s resources,
• Sealed Secrets on Kubernetes with ArgoCD and Terraform,

OpenShift:

• How we optimized ROI for BSS modernization with cloud infrastructure,
• How we built an AI platform with Red Hat OpenShift, VMware vSphere and NVIDIA GPUs,
• Red Hat Quay 3.8 Puts you Back in Control of your Container Images,
• Leveraging the Red Hat Advanced Cluster Management Observability to Support OpenShift 3 to OpenShift 4 Migration,
• PoC! — Kyverno & Policy Reporter UI on Openshift 4.x,
• Kubernetes Network Emulation on OpenShift,
• How I’ve Used ChatGPT To Create A Whole GitOps Demo Using 3 Simple Questions,
• Configuring custom domains for applications – the operator-way!
• Kubernetes-native inner loop development with Quarkus,
• Using libguestfs Tools to Manipulate VM images in OpenShift Virtualization,
• Network Observability Deep Dive in Kubernetes with NetObserv Operator,
• A Guide to Scaling OpenShift Data Science to Hundreds of Users and Notebooks,
• Building a custom OKD Machine OS image,
• Experimenting with eStargz image pulling on OpenShift,
• How to easily migrate a legacy application to OpenShift,
• Configure Cryostat RBAC mapping in Cryostat Operator 2.2.0,
• Red Hat OpenShift Container Platform 4.10 on VMware Cloud Foundation 4.5,

Containers:

• podman info, error creating tmpdir: mkdir /run/user/1007: permission denied,
• Multi-arch Container Image,
• Dropping Capabilities, making containers more secure,
• Podman Compose or Docker Compose: Which should you use in Podman?
• How to use Podman inside of a container,
• Podman machine customization with Ostree,
• Surviving a Podman database corruption,
• Automate container management on Fedora Linux with the Podman Linux System Role,
• How to copy Docker images to Podman,

Service Mesh:

• Deciding on Rust-based ztunnel for Istio ambient mesh,
• No-Cost Istio training: from fundamentals to ambient to production readiness,
• What really happens at startup: a deep dive into Linkerd, init containers, CNI plugins, and more,
• Isovalent Hands-on labs,
• L7 Traffic Path in Ambient Mesh,
• Flomesh ServiceMesh available on RedHat Openshift Platform,

RHEL:

• Walking on Clouds with Ansible,
• What’s new in Ansible Automation Platform 2.3,
• Troubleshoot node connectivity issues in Ansible Automation Platform controller,
• How to remotely query indexed caches in Data Grid 8,
• How we keep our Linux systems patched with automation,
• How to build a Quarkus app on RHEL using Microsoft SQL Server,
• Project signing and verification,
• Fermilab/CERN recommendation for Linux distribution,
• How to use workflow job templates in Ansible,
• The Hybrid Networking Stack,
• Crank up your automation with Ansible validated content,
• 5 essential components of a hybrid cloud architecture,
• Red Hat Ansible Automation Platform now available in AWS Marketplace,

Miscellaneous:

• Software Engineer Levels and Salaries Explained,
• New – Failover Controls for Amazon S3 Multi-Region Access Points,
• Creating a modifiable gzipped disk image,
• Working with Btrfs – Subvolumes,
• How to verify Mastodon users with cryptography,
• How the new VSCode XML extension improves developer experience,
• How to make an automatic dog feeder with Arduino and Linux,
• Is hybrid cloud right for you? 6 considerations,
• C# 11: Raw strings, required members, and auto-default structs,
• 5 ways to harden your Linux server with Ansible,
• How we designed observability for a hybrid cloud platform,
• How we designed a long-lasting web-hosting service on Linux: 3 lessons learned,
• How to trace application errors using SystemTap,
• How often do you patch?
• Achieve SLSA Level 2 compliance with GitLab,
• 6 ways to get information about your CPU on Linux,
• Implementing C++20 atomic waiting in libstdc++,
• How to implement single sign-out in Keycloak with Spring Boot,
• Cryostat 2.2’s new JMX credentials keyring,
• Cryostat 2.2 is released with enhanced Java recording features,
• How to prevent broken access control,
• How to analyze a Linux process’ memory map with pmap,
• Management of Passwords and protecting private Information,
• How to Use Grep with -A and -B Options for Efficient Text File Searching in Linux Systems,
• How to use the lsof command to troubleshoot Linux,
• How Cryostat 2.2 application management is more flexible,
• The Long Road to Safe RAM Handling,
• Btrfs With Linux 6.2 Bringing Performance Improvements, Better RAID 5/6 Reliability,
• 2 new features in C# 11,
• Cryostat 2.2 improvements: Revamped archives views and more,
• Tips And Tricks To Successfully Migrate From Jaeger To OpenTelemetry (30min),
• Linux Kernel 6.1 Released, This is What’s New,
• Python Magic Methods You Haven’t Heard About,
• How to schedule tasks using the Linux ‘at’ command,
• Perf vs gprof: Comparing software performance profiling tools,
• How to troubleshoot IPsec VPN misconfigurations,
• How we addressed an unforeseen use case in pthread_atfork().

Kubernetes:

• Kubeshark: API traffic viewer for Kubernetes,
• Securing the integrity of Software Supply Chains,
• Kubetools – A Curated List of Kubernetes Tools,
• Best Kubernetes books for beginners,
• K8s Gateway API is here – what’s in it for you?
• Free eBook: From Containers to Kubernetes with Node.js,
• Detecting Kubernetes API Deprecations with pluto,
• State of Kubernetes Secrets Management in 2022,
• Kyverno – A Kubernetes native policy manager (Policy as Code),
• Performance evaluation of the autoscaling strategies vertical and horizontal using Kubernetes,
• My Cheatsheet for the “yq” Tool,
• Limit number of processes running in a Kubernetes pod,
• Simple Kubernetes management with GitLab,
• Securing Container Image using trivy in Jenkins CICD Pipeline,
• Governing Multi-Tenant Kubernetes Clusters with Kyverno,
• Multi-cluster using Azure Kubernetes Fleet Manager — Part 1, Part 2, Part 3,
• 2022 Kubernetes Vulnerabilities – Main Takeaways,
• registry.k8s.io: faster, cheaper and Generally Available (GA),
• DIY: How To Build A Kubernetes Policy Engine,
• How to monitor etcd,
• kubectl-foreach: Run kubectl commands in all/some contexts in parallel,
• What Actually Happens When You Publish a Container Port,
• Kubernetes Centralized External Secrets Management with HashiCorp Vault,
• How to run kubernetes for FREE!
• Finding suspicious syscalls with the seccomp notifier,
• Autoprovisioning NFS volumes in EKS with CDK,
• Setting up SSL/TLS for Kubernetes Ingress,
• Monitoring high cardinality jobs with Grafana, Grafana Loki, and Prometheus,
• Renew Certificates on Kubernetes with Cert Manager and Reloader,
• Load Testing a Service with ~20,000 Requests per Second with Locust, Helm, and Kustomize,

OpenShift:

• Tools and technologies that are hosted on an OpenShift cluster,
• Deploy Backstage.io app on RedHat OpenShift Cluster,
• How to deploy Next.js applications to Red Hat OpenShift,
• Installing OpenShift Container Platform in VMWare with User Provisioned Infrastructure,
• Pipenv and S2i: A better way to manage Python dependencies in containers,
• MicroShift on the Edge (29min),
• Deliver: Publish your own Operator with Operator Lifecycle Manager and the OpenShift Operator Catalog (4/4),
• Migrate OSDs from one storage class to another,
• Red Hat OpenShift on AWS (ROSA): What architects need to know,
• Run Windows workloads on OpenShift Container Platform,

Containers:

• Podman vs Docker: All You Need To Know!
• CoreOS Layering Explained (15min),
• Implementing Container Runtime Shim: runc,
• Amicontained: a container introspection tool,
• How To Containerize MERN Stack with Podman,
• Replacing Docker Desktop with Podman and Kind in MacOS,
• Dive: a tool for exploring each layer in a docker image,
• Docker: How To Debug Distroless And Slim Containers,

Service Mesh:

• Exploring Cilium Layer 7 Capabilities Compared to Istio,
• Istio’s canary upgrade assistance with Kiali,
• Istio 1.16 is out, what does it mean for ambient mesh and you?
• What is NEW in Istio 1.16 (40min)?
• The Future of Istio: the Path to Zero Trust Security,
• Istio Service Mesh Implementation,
• Why the Gateway API Is the Unified Future of Ingress for Kubernetes and Service Mesh,

RHEL:

• Say hello to Red Hat Enterprise Linux 9.1,
• 3 new Ansible automation hub updates,
• Importing/Exporting Collections in automation hubs,
• CentOS Community Newsletter, November 2022,
• Rocky Linux 9.1 Available Now,
• Red Hat Developers Announce Work On New “Composefs” File-System,

Certifications:

• Certified Kubernetes Security Specialist (CKS) Exam Curriculum,
• The New CKAD Exam Guide — Kubernetes For Developers,

Miscellaneous:

• Alpine Linux 3.17 Released With OpenSSL 3.0, Better Rust Support,
• Diagrams as Code,
• The State of OpenTelemetry,
• Python vs. Bash? Why not both with Python’s subprocess module,
• 2 practical ways to use the Python subprocess module,
• How I developed a faster Ruby interpreter,
• 5 great diagramming tools for enterprise and software architects,
• Find anything you need with fzf, the Linux fuzzy finder tool,
• What is cloud native WebAssembly,
• Getting Started with Mastodon API in Python,
• Supply chain security in cloud-native environments: What is it, why it matters,
• Using GitLab as a convenient Helm charts repository,
• Grafana Loki 2.7 release: TSDB index, Promtail enhancements, and more.