simon – Page 12 – Simon Lyall's Blog

DevOpsDays NZ 2019 – Day 1 – Session 2

Allen Geer, Michael Harrod – Kiwi Ingenuity – Kiwi’s can Overcome Tough Problems In DevOps

Contrast – US vs NZ
- In the US companies are bigger, lots more people, lots more money to throw at problems.
- Contrast with Arial Topdressing pioneered in NZ using surplus WW2 aircraft
- Since the problems are up to 100x bigger in the US the tools are designed for that scale. ROI might not not be there for smaller companies.
- Dealing with Scale
  - Avoid “Shinny new thing” syndrom, plan for keeping things for at least 5 years.
  - Ramp up slowly with the tool, push it into other areas.
  - Avoid Single Person Silo.
  - Bring up some Kiwi Inginuity (Look at Open source, Use the Free Tiers or Cheap Tiers).
  - Out-Innovate the US companies rather than trying to out-scale
- Infrastructure: Monetization of Toil
  - Spending time and money on stuff you can automate
  - Lots of manual creating of infrastructure, servers, firewalls.
  - Lack of incentive for providers who charge for changes to automate stuff
  - Other Providers will automate (especially overseas ones that will come into NZ)
  - People take risks (eg no DR) in order to save money.
  - Innovator’s Dilemma
- Solutions
  - More vocal customers
  - Providers should provider a platform, lots more self-service. Ahnd-holding for the hard stuff not the day-to-day
  - Charge for outcomes not person-hours
  - Begin Small
  - It’s an experiment – Freedom to Fail
- Inattentive Customer Service
  - Overseas companies have a lot more forums, helpdesks, quick responses.
  - “Kiwis reluctant to make a fuss” , Companies not used to people making a fuss
  - Apply “American Ingenuity” – Striving focus to increase customer satisfaction.
  - Build a healthy community (eg online forums) around your service.
  - Gather insights from customers
  - Bezos – “When a customer contacts us, we see this as a defect” . Focus on the source of problems
- Evolving Kiwi Workforce
  - NZ has older and aging workforce. 2nd oldest in the OECD
  - Slightly Fewer peoples with degrees
  - 11% of workforce 65+ by 2038
- Learning in the workplace
  - Leverage senior Knowledge
  - Telco – Older customers didn’t want to approach young workers in mall. Brought in retired engineers to work in stores.
  - Mentoring and reverse-mentoring. Mentor learns insights from mentoree too (eg about younger people’s habits)
- Introducing people to DevOps
  - Kiwi DevOps models

Craig Box – Teaching Old Servers New Tricks: extending the service mesh outside the cluster

Service Mesh
- Managing a service is hard
- metrics, monitoring, logging, traceing
- AAA encryption, certs
- load balancing, routing, network policy
- quota
- Failure handling, fault inject
Microservices
- Not just for hipsters
- Works best at scale. Lots of devs
Now introduce a network in between everything. Lots of hard dtuff, distributed systems are hard
Leaky abstractions
- Have to build stuff into microservice to deal with problems of the network
- In multiple libraries and languages
- Can we fix it?
Sidecar Pattern
- The sidecar does all the hard stuff instead of making the microservice itself do it.
- Talks TCP. Able to work with all languages
Proxies as sidecars
- SPOF
- Sidecar is attached to each MS
Flexability and Power
- Single place where we can do everything
- Traffic going in: TLS termination, metrics, quota
- Traffic out of workloads: Authentication, TLS connections
Istio
- Open platform
- Not always microservices
- Uniform observability
- Operational Agility
- Policy driven Security
How istio works
- Proxies + control plane
- Pilot in control plane pushes config to proxies, keeps track of them, looks up stuff in k8s cluster
- Mixer – policy check and telemetry
- Citidel – cert authority to proxies
- Control plane has to run on k8s
- Proxies run using envoy
- Zipkin built in
- All done automatically for kubernetes environments ( admission controller adds sidecar )
Adding a VM to a service mesh
- Enable the mesh expansion, connect the networks
- Add the gateway IP to the VM
- Get a cert and copy to the VM
- Install proxy and node agent
- Traffic from cluster -> VM .
  - Add the service to DNS in the cluster,
  - Create a ServiceEntry on the cluster
- Traffic from VM -> Cluster service
  - Add Service and IP to /etc/host on the VM
Sample Application – Hipster Shop
- productcatalogservice is outside of kubernetes
- headless service in kubernetes
- manually created service entry in k8s
- Experimental istio commands to simplify process to single command

DevOpsDays NZ 2019 – Day 1 – Session 1

Brooke Treadgold – Back to Basics

Transformation Lead ANZ Bank
Not originally from a Tech background
Tech has a lot of buzzwords and acronyms that make it an exclusive club. Improvements relay on people from other parts of the business that aren’t in that club
These people have to care about it and understand it.
Had to use terms that everybody in the business understood and related to.
Case for change – What top orgs do:
- 208 times more frequent deployments
- 2604 times faster to recover from incidents
- 7 times lower change failure rate
What you need
- High Priority -> Access to people to do the work
- Needed tangible goal (weekly releases) to get people to focus (and pay)
Making change a reality
- Risk Management
  - You can just stop doing the reports
  - You need to gain their trust in order to get influence
  - Have to take them along the way with the changes
- Empathy
- Influence
History at ANZ
- First pipeline replace just one document
  - Explained to change managment team how the pipeline could replace the traditional plan
- Rethink of Change Plan and Outcome Reports
  - Other teams needed these for confidence in the change
  - Found out what people actually cared about, found better ways to provide that information (confidence) it an automated way
- Security Assessment
  - Traditionally required a big document filled in and signed off
  - Found that this was only required for “Significant” changes
  - Got a definition of what significant means so didn’t need to do this.
- High Risk Change Records
  - Lots of paperwork for High Risk changes
  - Decided that these are not high risk changes so lots less work
  - Templated them so a lot easier to do

Charles Korn – Dockerised local build and testing environments made easy

Go Script – Single script that a consistence place in all you repos that does the basic function. install, help, run, deploy
batect – tool he wrote
- dockerized dev environment plus a Go Script
Dev environment
- Build env: code to an artifact
- Testing Environments. Fake stuff, lots of different levels
Build Environment
- Container with the build tools. Mount our code directory into this
- Isolation brings consistency and repeatability. No more “works on my machine”
- Clean container every single time we run a build
- CI agents just need docker since teams will provide the container
- Ease of Onboarding. Just get git and docker installed
- Ease of change. Environment and tasks defined in yaml and versioned like everything else. New version downloaded. Kept in sync with actual code
Test Environments
- You can run local tests
- Consistently runs test on CI
- Have to launch multiple containers for more complex tests, using built in docker definitions and health checks and networking
Path to Production
- If deploying docker then can use same image
- But works with stuff that isn’t deployed as docker too
What about docker compose?
- Better performance
- Model – tasks are a first class citizen – Doesn’t feel like you are fighting the too.
- Better UI and developer experience. Updates managed automatically
- Cleans up better after each run
- It just works. Works with proxies better. Works with file permissions better.
How to get started?
- start small, work incrementally
- Start with the build enviroment
- With the Test env work though one piece at a time.
- Reuse components
- Take advantage for other people’s images. Lots of mocks for cloud services.
- Docker has library of health check scripts
- Bunch of sample scripts for batect
github.com/charleskorn/batect

Audiobooks – July 2019

The Return of the King by J.R.R Tolkien. Narrated by Rob Inglis. Excellent although I should probably listen slower next time. 10/10

Why Superman Doesn’t Take Over the World: What Superheroes Can Tell Us About Economics by J. Brian O’Roark

A good idea for a theme but author didn’t quite nail it. Further let down in audiobook format when the narrator talked to invisible diagrams. 6/10

A Fabulous Creation: How the LP Saved Our Lives by David Hepworth

Covers the years 1967 (Sgt Peppers) to 1982 (Thriller) when the LP dominated music. Lots of information all delivered in the authors great style. 8/10

The Front Runner by Matt Bai

Nominally a story about the downfall of Democratic presidential front-runner Gray Hart in 1987. Much of the book is devoted to how norms of political coverage changed at that moment due to changes in technology & culture. 8/10

A race like no other: 26.2 Miles Through the Streets of New York by Liz Robbins

Covering the 2007 New York marathon it follows the race with several top & amateur racers. Lots of digressions into the history of the race and the runners. Worked well 8/10

1983: Reagan, Andropov, and a World on the Brink by Taylor Downing

An account of how escalations in the cold war in 1983 nearly lead to Nuclear War, with the Americans largely being unaware of the danger. Superb 9/10

The High cost of Free Parking (2011 edition) by Donald Shoup.

One of the must-read books in the field although not a revelation for today’s readers. Found it a little repetitive (23 hours) and talking to diagrams and equations doesn’t work in audiobook format. 6/10

Audiobooks – June 2019

Robot Visions by Isaac Asimov

A collection of short Robot stores and very short essays. Lots of classic stories although the essays are mostly forgettable. 7/10

Foreigner by Robert J. Sawyer

An alien counterpart of Sigmund Freud psychoanalyzes her race’s equivalent of Galileo. 3rd in the trilogy. I like it enough. 7/10

In Your Defence: Stories of Life and Law by Sarah Langford

An English Barrister describes 11 cases she has worked on. The lives and cases are mostly tragic but the writing is very compelling. 8/10

The Unthinkable: Who Survives When Disaster Strikes and Why by Amanda Ripley

A wide tour of the various ways people react in disasters for ignoring to freezing. Lots of interesting stories, some investigations into the psychology and some practical advice. 8/10

The Fellowship of the Ring by J.R.R Tolkien. Narrated by Rob Inglis.

The first time I’ve ever listened to this version. Excellent in every way. 10/10

Podcasting: The Ultimate Guide to Record, Produce, and Launch Your Podcast and Build Raving Fans by Martin C. Glover

A quick (40 minutes) intro to podcasting, some do’s and don’ts for perspective podcasters. Worth a listen if you are new to the topic and considering. 6/10

Nothing is real: The Beatles Were Underrated And Other Sweeping Statements About Pop by David Hepworth

A collection of essays, many about the Beatles but covering lots of other Pop-Music topics. A lot of good ones in there. 7/10

Safely to Earth: The Men and Women Who Brought the Astronauts Home by Jack Clemons

A memoir of a engineer who worked on the Shuttle and Apollo programs about his time there and what he worked on including the shuttle software. 7/10

The Two Towers by J.R.R Tolkien. Narrated by Rob Inglis.

10/10

Audiobooks – May 2019

Springfield Confidential: Jokes, Secrets, and Outright Lies from a Lifetime Writing for The Simpsons by Mike Reiss

Great book. Simpsons insider stories, stuff about show business, funny jokes. 9/10

Combat Crew: The Story of 25 Combat Missions Over Europe From the Daily Journal of a B-17 Gunner by John Comer

Interesting 1st-hand account (with some borrowings from others in unit). Good details and atmosphere from missions and back at base/leave 8/10

Far-Seer by Robert J. Sawyer

“An allegory about Galileo on a planet of intelligent dinosaurs”. 1st in a Trilogy by one of my favorite authors. Balanced between similarities & differences from humans. 7/10

Working Actor: Breaking in, Making a Living, and Making a Life in the Fabulous Trenches of Show Business by David Dean Bottrell

Lots of advice for aspiring actors along with plenty of interesting stories from the author’s career. 8/10

Becoming by Michelle Obama

A good memoir. Lots of coverage of her early life, working career and the White House. Not exhaustive and it skips ahead at time. But very interesting and inspirational. 8/10

Fossil Hunter by Robert J. Sawyer

2nd in the Trilogy. The main human analog here is Darwin with a murder-mystery and God checked in for fun. 7/10

The Wright Brothers by David McCullough

Well written as expected and concentrates on the period when the brothers were actively flying which is the most interesting but avoids their legal battles & some other negatives. 8/10

Audiobooks – April 2019

Enlightenment Now: The Case for Reason, Science, Humanism, and Progress by Steven Pinker

Amazing good book, well argued and lots of information. The only downside is he talks to some diagrams [downloadable] at times. Highly Recommend. 9/10

A History of Britain, Volume : Fate of Empire 1776 – 2000 by Simon Schama

I didn’t enjoy this all that much. The author tried to use various lives to illustrate themes but both the themes and biographies suffered. Huge areas also left out. 6/10

Where Did You Get This Number? : A Pollster’s Guide to Making Sense of the World by Anthony Salvanto

An overview of (mostly) political polling and it’s history. Lots of examples for the 2016 US election campaign. Light but interesting. 7/10

Squid Empire: The Rise and Fall of the Cephalopods by Danna Staaf

Pretty much what the titles says. I got a little lost with all the similarly names species but the general story was interesting enough and not too long. 6/10

Apollo in the Age of Aquarius by Neil M. Maher

The story of the back and forth between NASA and the 60s counterculture from the civil rights struggle and the antiwar movement to environmentalism and feminism. Does fairly well. 7/10

Audiobooks – March 2019

An Economist Gets Lunch: New Rules for Everyday Foodies by Tyler Cowen

A huge amount of practical advice and how and where to find the best food both locally and abroad. Plus good explanations as to why. 8/10

The Not-Quite States of America: Dispatches from the Territories and Other Far-Flung Outposts of the USA by Doug Mack

Writer tours the not-states of the USA. A bit too fluffy most of the time & too much hanging with US expats. Some interesting bits. 6/10

Shattered: Inside Hillary Clinton’s Doomed Campaign by Jonathan Allen & Amie Parnes

Chronology of the campaign based on background interviews with staffers. A ready needs a good knowledge of the race since this is assumed. Interesting enough. 7/10

Rush Hour by Iain Gatel

A history of commuting (from the early railway era), how it has driven changes in housing, work and society. Plus lots of other random stuff. Very pleasant. 8/10

Audiobooks – February 2019

Tamed: Ten Species that Changed our World by Alice Roberts

Plenty of content (14 hours) and not too dumbed down. About 8 of the 10 species are the ones you’d expect. 8/10

It Won’t Be Easy: An Exceedingly Honest (and Slightly Unprofessional) Love Letter to Teaching by Tom Rademacher

A breezy little book about the realities of teaching (at least in the US). Interesting to outsiders & hopefully useful to those in the profession. 7/10

The Hobbit by J. R. R Tolkien, Read by Rob Inglis

A good audio-edition of the book. Unabridged & really the default one for most people. I alternated chapters of this with the excellent Prancing Pony Podcast commentaries on those chapters. 9/10

The Life of Greece: The Story of Civilization, Volume 2 (The Story of Civilization series) by Will Durant

32 hours on the history of Ancient Greece. Seemed to cover just above everything. Written in the 1930s so probably a little out-of-date in places. 7/10

Audiobooks – January 2019

The Grandmaster: Magnus Carlsen and the Match That Made Chess Great Again by Brin-Jonathan Butler

Not a lot about the match. The author rolls out a bunch of random chess stories and profiles instead. 4/10

The Next American City: The Big Promise of Our Midsize Metros by Mick Cornett

The four-term Mayor of Oklahoma City goes over projects OC and other mid-sized cities implemented to improve their cities & fight back against the large metros. 8/10

21 Lessons for the 21st Century by Yuval Noah Harari

Apparently a lot of expanded essays but still a lot of interesting stuff in there. The good ones are great and the bad ones are okay. 7/10

Chasing the Demon: A Secret History of the Quest for the Sound Barrier, and the Band of American Aces Who Conquered It by Dan Hampton

Covers some early aircraft and aerodynamics history, then the lives of pilots who would break the sound barrier & then the actual event (or events!). 7/10

Linux.conf.au 2019 – Friday – Lightning talks and Conference Close

Closing Stuff

Special Badge given out

Projects from Junior Group from Club Penguin
Rusty Wrench award to Joshua Hesketh

Lightning Talks

3 minutes each
Martin Kraft
- Digital trust and trust in the real world
- In real world it is wired into our brains
- Aunt’s Laptop. Has Trusted CAs, Debian.
- Doesn’t know what lock on browser means
- Imaging that trust is a competition that happens in real time, that takes interactions, mood, random stuff.
- Maybe when you visit a good vs bad website the browser looks visably different
- Machine Learning
Brimly Collings-Stone
- Maori language not available on AAC outputs
- Need a device that speaks Maori and represents Maori grammar accurately
Mathew Sherborn
- RSI
- Got it in the past, tried various keyboards
- Type-Matrix but it broke
- ErgoDox – open source keyboard
- Mascot.com – Keyboard in batch orders
- Like the ErgoDox-E – $500 but good – web app to program
- Change the Dvorak keyboard with special keyboard
Emma Springkmeier
- What do I do when it all goes wrong
- Potentially stressful situations – phone calls, meetings.
- eg last year’s lightning talk
- What I do to cope
- Talk to friends, explain how I feel to others, listening to calming music, breathing techniques ( 4s in, 4s hold, 4 out, 4 holding, repeat )
Karl Kitcher
- Secretary of the NZ Open Source Society
- Charity since 2008
- Reducing in interest in the recent years
- Open source is not so prevalent, people not really caring, trying to maintain the momentium
- Open vs Fauxpem
- nzoss.nz – signup to the mailing list
- Various services to projects
Leon Wright
- About Leon’s badge
- Twitter bot hooked to hug detector in his badge
- 2017 badge detects hugs
- 2018 version 2 . So good twitter shadow banned his account
- 2019 – Docker containers and other crazy stuff
Talia White
- At LCA since 2018 – Was only 8. Now 12
- Ordered a robot kit for ardiano
- Made various projects
- Don’t give up, struggled to start with coding, got better
Brenda Wallace
- Works for the NZ Govt
- Sometimes abigious
- Going to publish for some legislation as python rules
- rules.nz
- eg Social welfare rules,
- Unit tests
Paul Gunn Stephen
- GDP per km of coastline
- %coastline length for area
- Means hard to get Tsunami warning systems
- Cheaper
- ETC Lali system approach
- Every Village has a local warning system
- Redundant system
E Dunham
- You should speak at conferences
- 54th talk in 5 years
- Promotes your company
- Intersection: What you know, what conference needs and what the attendees needs
- Find conference want to attend
- Write abstract
- Submit a lot, get rejected a lot
- Each reject is how you dodged a bullet
Charell
- CVE-2019-3462
- Bug in apt that allows injection of bad content
- Why https
- Attestation
- apt-transport-https – enable
Jen Zajac
- Project scaffolding eg Cookiecutter, yoeman
- Lots of generating options
- Creates templates for a project
Hugh Blemmings
- Ardionu and Beagleboard
- Cool but not high performance
- A True open and HP computer
- Open Hardware, Open software stack, no bin blobs, No unexpected software, No cost/perf penality
- openpowerfoundation.org
Benno Rice
- Cobol
- Over 50 years old
- Not used much
- What Language is the new Cobol?
- PHP is the new COBOL
- Perl is the new COBOL
- Python2 ?
- Javascript ?
- C ?
- Y2K – Maybe the real Cobol is the maintenance we incurred along the way
- Maybe you should support software before it bites you back

Closing Stuff

652 people attended
2.4TB transferred over the SSID
3113 Coffee vouchers

Lots of sponsors and suppliers and staff thanked

Linux.conf.au 2020 is in …. Gold Coast

Linux.conf.au 21st birthday!
Gold Coast convention and Exhibition centre
13 – 17th January 2020