stackconf 2021 | Why you should take care of infrastructure drift

•

0 likes•42 views

This document discusses infrastructure drift and the driftctl tool. It begins with an agenda for a presentation on learning from infrastructure-as-code (IaC) users about the causes and consequences of drift and stories/demos of drift. It then provides context about the presenter and defines infrastructure drift. The rest of the document discusses why drift is important, examples of drift stories, how the driftctl tool can be used to detect and filter drift, and how it integrates with DevSecOps workflows.

Software

DevSecOps, IaC Drift &
Driftctl
Stackconf 2021, June 16th

Agenda
● Learning from IaC users (causes, consequences, solutions)
● Stories & Live Demos
● Q&A

TL;DR
Almost everyone has experienced infrastructure drift recently.
There's security implications to not knowing about drifts.
We built driftctl to help.

whoami
Stephane Jourdan:
● @sjourdan (Twitter, GitHub, GitLab,…)
● 20 years (Dev)Ops
● Co-founded 3 tech companies (🇨🇦 | 🇪🇺) and 1 sound studio.
● “Infrastructure-as-Code Cookbook” author
● Driftctl tool co-founder! cloudskiff/driftctl

Definition
Infrastructure Drift / ˈɪn frəˌstrʌk tʃər drɪft /
Noun
1. happens when the reality and the expectations don’t match.
Synonyms for Infrastructure Drift
1. omg

drift?
AWS account
Expected state Actual state
Diff?
© @christophetd

Understanding drift
Infrastructure As Code
Managed resources
Unmanaged resources
Cloud Infrastructure
Bash scripts
Manual changes via the AWS console
That one product you can only deploy
with CloudFormation
Lambda functions dynamically
creating/updating
infrastructure

Why is it so important?
➔ Companies are massively adopting
infrastructure automation
➔ Drift is a blind spot for DevSecOps
➔ Drift introduces compliance and
security issues
➔ Parity between code and cloud is a
prerequisite to shifting security to the
left (moving security sooner in the
development process)

Blind Spots
How can you know about misconfigurations
If you don't even know about existing resources?

How a simple lambda with read-only access ended
up with rogue Administrative access and keys
- without anyone noticing
Quick AWS IAM Story

How someone opened up everything to anyone on
IPv4 & IPv6
- without anyone noticing
Quick AWS Security Group Story

How a scripting issue created a billing nightmare
- With only billing noticing
Quick AWS S3 Story

$ driftctl scan --output json://./output.json
$ jq '.coverage' < output.json
75
JSON Output

$ driftctl scan --filter "Type=='aws_security_group_rule'"
Scanning resources: ⣯ (51)
Found unmanaged resources:
aws_security_group_rule:
- Type: ingress, SecurityGroup: sg-00c1621e81e5b17c1, Protocol: All,
Ports: All, Source: 0.0.0.0/0
Driftctl Filters

$ head .driftignore
aws_iam_user.terraform
[...]
$ driftctl gen-driftignore
Driftctl Ignore

Show GitOps ❤️
- Circle CI Orb
- GitHub Action
- Gitlab CI
- ...
CI Integration

driftctl
Our own open-source solution for drift management
■ AWS & GitHub Support (more to come)
■ Terraform State support (local/S3/HTTP)
■ Filtering & Ignore support
■ Written in Go
■ Apache 2.0 License
cloudskiff/driftctl driftctl.com/d

TL;DR (Closing)
Almost everyone has experienced infrastructure drift recently.
We built driftctl to help.

driftctl
Our own open-source solution for drift management

Why
- Even the best teams didn’t automate everything
- Scripts / Lambdas / Microservices are authenticated
- Customers and bosses do exist (with admin credentials)

What's hot

Talk by Marco Bizzantino: In my talk I will demonstrate how monitoring works with the DevOps approach. Within an organisation, different people with different roles need to have a complete view over the whole infrastructure. One of the greatest benefits of Icinga is its ability to integrate with various tools and modules to satisfy the company’s requests. An example is OpenShift monitoring. I will point out the most important parts of monitoring OpenShift infrastructure while maintaining it’s complexity. In my approach I will show how we combine Icinga, Prometheus, Grafana and Elasticsearch for an overall OpenShift monitoring solution. Additional examples will show the benefits of using Icinga’s Business Process modelling to add more value to the result.

DevOps monitoring: Best Practices using OpenShift combined with Icinga & Big ...

Icinga

Kubernetes enables teams to strike a balance between velocity and security. It abstracts away just enough of the infrastructure layer to enable developers to deploy freely without sacrificing governance and risk controls. However, configuration mistakes are easy to make and can lead to DoS attacks or security breaches. Fortunately, Kubernetes has some great tools for hardening your clusters. Join Fairwinds VP of Products, Joe Pelletier, and Director of Open Source, Robert Brennan, as they discuss five of the tools you should use to secure your clusters. Here are the first three: Kubernetes Ingress Policy for DoS Protection RBAC Network Policy Join us for the event to learn more about these tools and their benefits.

5 Kubernetes Security Tools You Should Use

DevOps.com

CWIN17 london becoming cloud native part 2 - guy martin docker

Capgemini

DevOps teams are looking to manage security risk without slowing down application delivery. Image scanning is critical to integrate into DevOps, but how can you get started? Join Sysdig’s security team as they share practical guidance and demonstrate five (5) key steps to adopt in your image scanning workflow. You’ll walk away with a short, impactful checklist and be on your way to a more secure environment. Specifically, you’ll hear: Key areas where you should embed scanning: CI/CD pipelines, registries, Kubernetes admission controller, Open Policy Agent (OPA) Do’s and don'ts of selecting an appropriate base OS image What to look for when scanning your Dockerfile How to flag vulnerabilities quickly across large multi-cloud Kubernetes deployments Why customers prefer a SaaS-based scanning solution

Image Scanning Best Practices for Containers and Kubernetes

DevOps.com

Edge Orchestration & Federated Kubernetes Clusters - Open Networking Summit 2018

Cloudify Community

Running a Cost-Effective DynamoDB-Compatible Database on Managed Kubernetes S...

DevOps.com

Intro - Cloud Native

Albert Suwandhi

cncf overview and building edge computing using kubernetes

Krishna-Kumar

The starting point for this project was a MapReduce application that processed log files produced by the support portal. This application was running on Hadoop with Ruby Wukong. At the time of the project start it was underperforming and did not show good scalability. This made the case for redesigning it using Spark with Scala and Java. Initial review of the Ruby code revealed that it was using disk IO excessively, in order to communicate between MapReduce jobs. Each job was implemented as a separate script passing large data volumes through. Spark is more efficient in managing intermediate data passed between MapReduce jobs – not only it keeps it in memory whenever possible, it often eliminates the need for intermediate data at all. However, that alone not brought us much improvement since there were additional bottlenecks at data aggregation stages. The application involved a global data ordering step, followed by several localized aggregation steps. This first global sort required significant data shuffle that was inefficient. Spark allowed us to partition the data and convert a single global sort into many local sorts, each running on a single node and not exchanging any data with other nodes. As a result, several data processing steps started to fit into node memory, which brought about a tenfold performance improvement.

StampedeCon 2015 Keynote

Ken Owens

Compass digital ocean’s customer advisory group 2021_10

Pierre Mavro

Enabling Microservices Frameworks to Solve Business Problems

Ken Owens

Cloud Automation with ProActive

Brian AMEDRO

Application Centric Microservices Architecture

Ken Owens

Audience: All levels About: Chris has spent most of his career in Open Source and Open Standards to develop mission critical enterprise solutions for customers around the world. In this session, you will learn from his experience what Red Hat’s perspective is on the current state of affairs in the OpenStack community and the path we see ahead that Red Hat is putting its efforts in. You will also learn about industry specific use cases such as Telco and FSI that are major influencers for the direction of OpenStack based on Red Hat’s customer interactions. OpenStack is not a product that tries to solve any one business problem in particular, but a technology that aims to be usable for many – what are the required steps to make sure that your enterprise is ready for the OpenStack transformation. Speaker Bio: Chris Wright – CTO, Red Hat Chris Wright is Vice President and Chief Technologist at Red Hat where he is leading engineers who work on cloud computing, distributed storage, software defined networking and network functions virtualization, containers, machine learning, and continuous delivery. During his more than 20 years as a software engineer he has worked in the telecom industry on high availability and distributed systems and in the Linux industry on security, virtualization, and networking. He has been a Linux developer for over 15 years, most of that time spent deep in the Linux kernel. He is passionate about open source software serving as the foundation for next generation IT systems. He lives in sunny Portland, Oregon where he is happily working with open source projects such as OpenDaylight, Open vSwitch, OPNFV, OpenStack, Open Container Initiative, and Cloud Native Computing Foundation. Chris is currently a board member of OpenDaylight and OPNFV. OpenStack Australia Day - Sydney 2016 https://events.aptira.com/openstack-australia-day-sydney-2016/

From Community to Enterprise and Back Again! Chris Wright, Red Hat

OpenStack

Cloud Native Summit 2019 Summary

Everett Toews

An important use-case for Vault is to provide short lived and least privileged Cloud credentials. In this webinar we will review specifically how Vault's Azure Secrets Engine can provide dynamic Azure credentials. We will cover details on how to configure the Azure Secrets Engine in Vault and use it in an application. If you are using Azure now or in the near future, join us for some patterns on maintaining a high security posture with Vault's dynamic credentials model!

Dynamic Azure Credentials for Applications and CI/CD Pipelines

Mitchell Pronschinske

KubeCon + CloudNativeCon Barcelona and Shanghai 2019 - Highlights

Krishna-Kumar

APIdays Paris 2018 - From real-life challenges to industrial IoT solutions, i...

apidays

APIdays Paris 2018 - Cloud computing - we went through every steps of the Gar...

apidays

The Future of Energy - Decentral energy distribution in a digital world

Eficode

What's hot (20)

DevOps monitoring: Best Practices using OpenShift combined with Icinga & Big ...

5 Kubernetes Security Tools You Should Use

CWIN17 london becoming cloud native part 2 - guy martin docker

Image Scanning Best Practices for Containers and Kubernetes

Edge Orchestration & Federated Kubernetes Clusters - Open Networking Summit 2018

Running a Cost-Effective DynamoDB-Compatible Database on Managed Kubernetes S...

Intro - Cloud Native

cncf overview and building edge computing using kubernetes

StampedeCon 2015 Keynote

Compass digital ocean’s customer advisory group 2021_10

Enabling Microservices Frameworks to Solve Business Problems

Cloud Automation with ProActive

Application Centric Microservices Architecture

From Community to Enterprise and Back Again! Chris Wright, Red Hat

Cloud Native Summit 2019 Summary

Dynamic Azure Credentials for Applications and CI/CD Pipelines

KubeCon + CloudNativeCon Barcelona and Shanghai 2019 - Highlights

APIdays Paris 2018 - From real-life challenges to industrial IoT solutions, i...

APIdays Paris 2018 - Cloud computing - we went through every steps of the Gar...

The Future of Energy - Decentral energy distribution in a digital world

Similar to stackconf 2021 | Why you should take care of infrastructure drift

AWS re:Invent 2016 Fast Forward

Shuen-Huei Guan

Microservices Application Tracing Standards and Simulators - Adrians at OSCON

Adrian Cockcroft

Speaker 1: Rod Soto Speaker 2: Jose Hernandez This presentation shows how to use Splunk to provide the analyst with a comprehensive vision of AWS/GCP/Azure security posture. Presenters will outline how to ingest the audit data provided by open source tool Cloud Security Suite into Splunk to analyze cloud vulnerability, harden multi-cloud deployments and visualize multi-cloud threat surface. Presenters will also demonstrate use cases based on Splunk knowledge objects (Tables, Dashboards, Alerts, Field extractions, Lookups, etc), in order to take advantage of the information provided by various supporting tools like Scout2 and G-Scout projects for cloud API auditing.

Using Splunk or ELK for Auditing AWS/GCP/Azure Security posture

CloudVillage

Using Splunk/ELK for auditing AWS/GCP/Azure security posture

Jose Hernandez

While the adoption of DevOps makes teams move faster with reduced dependency on central operations, it can constrain teams who lack the skills to self-manage the full application and infrastructure stack. The way to overcome this challenge is creating an internal platform and treating it as a world-class product offering. “Applying product management to internal platforms means establishing empathy with internal consumers (read: developers) and collaborating with them on the design. Platform product managers establish roadmaps and ensure the platform delivers value to the business and enhances the developer experience”, via ThoughtWorks Technology Radar. In this talk, Henning Jacobs will walk you through how Zalando adopted a customer-first mindset with regards to its developer tooling. He will show the effect on developer satisfaction when internal platforms are given the same respect as external product offerings. Henning will furthermore tell his story about how Zalando moved from a classical infrastructure team to a product mindset with strong focus on building a world-class developer experience. Henning shares both their learnings and challenges going through this transition, and the impact it has on the daily life of Zalando’s customers (developers). This talk was given in Aarhus on 4th of June 2019.

Why we don’t use the Term DevOps: the Journey to a Product Mindset - Destinat...

Henning Jacobs

STIX Patterning: Viva la revolución!

treyka

FOSDEM 2021 - Infrastructure as Code Drift & Driftctl

Stephane Jourdan

What’s new in Microsoft ALM 2013, hosted in Windows Azure, VISUAL STUDIO ONLI...

VISEO

OWASP ZAP Workshop for QA Testers

Javan Rasokat

Shmoocon 2013 - OpenStack Security Brief

openfly

Hashitalks 2021 Infrastructure Drift & Driftctl

Stephane Jourdan

AWS Lambda has changed the way we deploy and run software, but this new serverless paradigm has created new challenges to old problems - how do you test a cloud-hosted function locally? How do you monitor them? What about logging and config management? And how do we start migrating from existing architectures? In this talk Yan and Scott will discuss solutions to these challenges by drawing from real-world experience running Lambda in production and migrating from an existing monolithic architecture.

Serverless in production, an experience report (FullStack 2018)

Yan Cui

IstSec'14 - İbrahim BALİÇ - Automated Malware Analysis

BGA Cyber Security

Serverless in production, an experience report

Yan Cui

How We Analyzed 1000 Dumps in One Day - Dina Goldshtein, Brightsource - DevOp...

DevOpsDays Tel Aviv

Once you start working with distributed Big Data systems, you start discovering a whole bunch of problems you won’t find in monolithic systems. All of a sudden to monitor all of the components becomes a big data problem itself. In the talk we’ll mention all of the aspects that you should take in consideration when monitoring a distributed system once you’re using tools like: Web Services, Apache Spark, Cassandra, MongoDB, Amazon Web Services. Not only the tools, what should you monitor about the actual data that flows in the system? And we’ll cover the simplest solution with your day to day open source tools, the surprising thing, that it comes not from an Ops Guy.

Monitoring Big Data Systems Done "The Simple Way" - Codemotion Milan 2017 - D...

Demi Ben-Ari

Once you start working with Big Data systems, you discover a whole bunch of problems you won’t find in monolithic systems. Monitoring all of the components becomes a big data problem itself. In the talk we’ll mention all of the aspects that you should take in consideration when monitoring a distributed system using tools like: Web Services,Spark,Cassandra,MongoDB,AWS. Not only the tools, what should you monitor about the actual data that flows in the system? We’ll cover the simplest solution with your day to day open source tools, the surprising thing, that it comes not from an Ops Guy.

Demi Ben-Ari - Monitoring Big Data Systems Done "The Simple Way" - Codemotion...

Codemotion

Cloud State of the Union for Java Developers

Burr Sutter

Us 17-krug-hacking-severless-runtimes

Ravishankar Somasundaram

Scalable Open-Source IoT Solutions on Microsoft Azure

Maxim Ivannikov

Similar to stackconf 2021 | Why you should take care of infrastructure drift (20)

AWS re:Invent 2016 Fast Forward

Microservices Application Tracing Standards and Simulators - Adrians at OSCON

Using Splunk or ELK for Auditing AWS/GCP/Azure Security posture

Using Splunk/ELK for auditing AWS/GCP/Azure security posture

Why we don’t use the Term DevOps: the Journey to a Product Mindset - Destinat...

STIX Patterning: Viva la revolución!

FOSDEM 2021 - Infrastructure as Code Drift & Driftctl

What’s new in Microsoft ALM 2013, hosted in Windows Azure, VISUAL STUDIO ONLI...

OWASP ZAP Workshop for QA Testers

Shmoocon 2013 - OpenStack Security Brief

Hashitalks 2021 Infrastructure Drift & Driftctl

Serverless in production, an experience report (FullStack 2018)

IstSec'14 - İbrahim BALİÇ - Automated Malware Analysis

Serverless in production, an experience report

How We Analyzed 1000 Dumps in One Day - Dina Goldshtein, Brightsource - DevOp...

Monitoring Big Data Systems Done "The Simple Way" - Codemotion Milan 2017 - D...

Demi Ben-Ari - Monitoring Big Data Systems Done "The Simple Way" - Codemotion...

Cloud State of the Union for Java Developers

Us 17-krug-hacking-severless-runtimes

Scalable Open-Source IoT Solutions on Microsoft Azure

Recently uploaded

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of Winnipeg back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal. Attraction Spells

%+27788225528 love spells in Huntington Beach Psychic Readings, Attraction sp...

masabamasaba

WSO2CON 2024 Slides - Open Source to SaaS

WSO2

WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation

WSO2

This presentation covers the following topics: What is logging? The purpose of logging: Debugging The purpose of logging: Security The purpose of logging: Stats & analytics Traditional logging Traditional logging: Advantages Traditional logging: Disadvantages The solution: Large-scale logging Large-scale logging: Core principles Large-scale logging: Solution types Large-scale logging: Cloud vs on-prem Large-scale logging: Operational complexity Large-scale logging: Security Large-scale logging: Costs Large-scale logging: On-prem comparison - Elasticsearch - Grafana Loki - VictoriaLogs On-prem comparison: Setup and operation On-prem comparison: Costs On-prem comparison: Full-text search support On-prem comparison: How to efficiently query 100TB of logs? On-prem comparison: Integration with CLI tools VictoriaLogs for large-scale logging VictoriaLogs demo instance - Ingestion rate: 3600 messages / minute - The number of log messages: 1.1 billion - Uncompressed log messages’ size: 1.5TB - Compressed log messages’ size: 23GB - Compression ratio: 47x - Memory usage: 150MB VictoriaLogs CLI integration demo - Which errors have occurred in all the apps during the last hour? - How many errors have occurred during the last hour? - Which apps generated the most of errors during the last hour? - The number of per-minute errors for the last 10 minutes - Status codes for the last hour - Non-200 status codes for the last week - Top client IPs for the last 4 weeks with 404 and 500 response status codes - Per-month stats for the given IP across all the logs Large-scale logging solution MUST provide excellent CLI integration VictoriaLogs: (temporary) drawbacks VictoriaLogs: Recap - Easy to setup and operate - The lowest RAM usage and disk space usage (up to 30x less than Elasticsearch and Grafana Loki) - Fast full-text search - Excellent integration with traditional command-line tools for log analysis - Accepts logs from popular log shippers (Filebeat, Fluentbit, Logstash, Vector, Promtail, Grafana Agent) - Open source and free to use!

Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024

VictoriaMetrics

WSO2Con2024 - From Code To Cloud: Fast Track Your Cloud Native Journey with C...

WSO2

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal.

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

masabamasaba

%in kempton park+277-882-255-28 abortion pills for sale in kempton park

masabamasaba

MarTech Trend 2024 Book : Marketing Technology Trends (2024 Edition) How Data...

Jittipong Loespradit

WSO2CON 2024 - Does Open Source Still Matter?

WSO2

Announcing Codolex 2.0 from GDK Software

Jim McKeeth

Modeling languages are generally applied for developing systems and software – both internally, with domain-specific languages, and with standardized languages targeting a general purpose and a wide audience. Way too often these languages are weakly created and defined leading to poor quality: Language definitions tend to contain errors and inconsistencies; notations do not recognize the communication and problem-solving needs of humans; standardization organizations push exchange formats that do not fully work and offer certificates that do not measure mastery of the language. We describe common problems in language development and point them out with examples from known cases. To overcome these problems, we suggest several solutions to improve language development, including using modeling languages specifically designed to define modeling languages, continuous testing and prototyping, and keeping language users in the loop.

What Goes Wrong with Language Definitions and How to Improve the Situation

Juha-Pekka Tolvanen

WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...

WSO2

%in ivory park+277-882-255-28 abortion pills for sale in ivory park

masabamasaba

Craft an AI & Machine Learning Pitch with our Editable Professional PowerPoint Template. Ignite your AI & Machine Learning pitch with our cutting-edge PowerPoint template tailored for the industry. Perfect for AI conferences, investor presentations, sales pitches to tech-focused companies, training sessions, and educational programs. - 20+ editable slides: Get a variety of options to choose from for your presentation. - Time-saving solution: Download, replace text/images with a few clicks. - User-friendly customization: Easy to use and personalize. - Modern and attractive design: Captivating visuals, sleek layout. - Tailored to your requirements: Fully alterable for customization. - Well-organized slides: Complete control over content. - Thematic specificity: Reflects healthcare industry with relevant graphics. - Showcase your business idea: Communicate value proposition effectively.

AI & Machine Learning Presentation Template

Presentation.STUDIO

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal. Attraction Spells

%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...

masabamasaba

WSO2Con204 - Hard Rock Presentation - Keynote

WSO2

ADR, or Architecture Decision Record, is a valuable tool in software development for several reasons. It provides a centralized location for documenting and tracking architectural decisions, aiding both current and future team members. ADRs enhance communication among team members by documenting the rationale behind architectural decisions, especially beneficial during onboarding of new team members or when revisiting decisions. They serve as a knowledge base, enabling teams to learn from past decisions and refine their decision-making process. Additionally, ADRs contribute to transparency by helping stakeholders understand the reasons behind specific architectural choices. As with any other tool or process, introducing them into an organization can face several obstacles, and overcoming these challenges is crucial for successful implementation. In this talk I go through some common problems and our way of solving them.

Architecture decision records - How not to get lost in the past

Papp Krisztián

VTU technical seminar 8Th Sem on Scikit-learn

AmarnathKambale

%in Stilfontein+277-882-255-28 abortion pills for sale in Stilfontein

masabamasaba

%in Benoni+277-882-255-28 abortion pills for sale in Benoni

masabamasaba

Recently uploaded (20)

%+27788225528 love spells in Huntington Beach Psychic Readings, Attraction sp...

WSO2CON 2024 Slides - Open Source to SaaS

WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation

Large-scale Logging Made Easy: Meetup at Deutsche Bank 2024

WSO2Con2024 - From Code To Cloud: Fast Track Your Cloud Native Journey with C...

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

%in kempton park+277-882-255-28 abortion pills for sale in kempton park

MarTech Trend 2024 Book : Marketing Technology Trends (2024 Edition) How Data...

WSO2CON 2024 - Does Open Source Still Matter?

Announcing Codolex 2.0 from GDK Software

What Goes Wrong with Language Definitions and How to Improve the Situation

WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...

%in ivory park+277-882-255-28 abortion pills for sale in ivory park

AI & Machine Learning Presentation Template

%+27788225528 love spells in Toronto Psychic Readings, Attraction spells,Brin...

WSO2Con204 - Hard Rock Presentation - Keynote

Architecture decision records - How not to get lost in the past

VTU technical seminar 8Th Sem on Scikit-learn

%in Stilfontein+277-882-255-28 abortion pills for sale in Stilfontein

%in Benoni+277-882-255-28 abortion pills for sale in Benoni

stackconf 2021 | Why you should take care of infrastructure drift

1. DevSecOps, IaC Drift & Driftctl Stackconf 2021, June 16th

2. Agenda ● Learning from IaC users (causes, consequences, solutions) ● Stories & Live Demos ● Q&A

3. Story ● ❤️ GitOps ● 🥰Users ● 😱 Drift

4. TL;DR Almost everyone has experienced infrastructure drift recently. There's security implications to not knowing about drifts. We built driftctl to help.

5. whoami Stephane Jourdan: ● @sjourdan (Twitter, GitHub, GitLab,…) ● 20 years (Dev)Ops ● Co-founded 3 tech companies (🇨🇦 | 🇪🇺) and 1 sound studio. ● “Infrastructure-as-Code Cookbook” author ● Driftctl tool co-founder! cloudskiff/driftctl

6. Definition Infrastructure Drift / ˈɪn frəˌstrʌk tʃər drɪft / Noun 1. happens when the reality and the expectations don’t match. Synonyms for Infrastructure Drift 1. omg

8. Understanding drift Infrastructure As Code Managed resources Unmanaged resources Cloud Infrastructure Bash scripts Manual changes via the AWS console That one product you can only deploy with CloudFormation Lambda functions dynamically creating/updating infrastructure

9. Why is it so important? ➔ Companies are massively adopting infrastructure automation ➔ Drift is a blind spot for DevSecOps ➔ Drift introduces compliance and security issues ➔ Parity between code and cloud is a prerequisite to shifting security to the left (moving security sooner in the development process)

10. Blind Spots How can you know about misconfigurations If you don't even know about existing resources?

11. Stories!

12. How a simple lambda with read-only access ended up with rogue Administrative access and keys - without anyone noticing Quick AWS IAM Story

13. How someone opened up everything to anyone on IPv4 & IPv6 - without anyone noticing Quick AWS Security Group Story

14. How a scripting issue created a billing nightmare - With only billing noticing Quick AWS S3 Story

15. $ driftctl scan --output json://./output.json $ jq '.coverage' < output.json 75 JSON Output

16. $ driftctl scan --filter "Type=='aws_security_group_rule'" Scanning resources: ⣯ (51) Found unmanaged resources: aws_security_group_rule: - Type: ingress, SecurityGroup: sg-00c1621e81e5b17c1, Protocol: All, Ports: All, Source: 0.0.0.0/0 Driftctl Filters

17. $ head .driftignore aws_iam_user.terraform [...] $ driftctl gen-driftignore Driftctl Ignore

18. Show GitOps ❤️ - Circle CI Orb - GitHub Action - Gitlab CI - ... CI Integration

19. driftctl Our own open-source solution for drift management ■ AWS & GitHub Support (more to come) ■ Terraform State support (local/S3/HTTP) ■ Filtering & Ignore support ■ Written in Go ■ Apache 2.0 License cloudskiff/driftctl driftctl.com/d

20. TL;DR (Closing) Almost everyone has experienced infrastructure drift recently. We built driftctl to help.

21. driftctl Our own open-source solution for drift management

22. Why - Even the best teams didn’t automate everything - Scripts / Lambdas / Microservices are authenticated - Customers and bosses do exist (with admin credentials)

stackconf 2021 | Why you should take care of infrastructure drift

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to stackconf 2021 | Why you should take care of infrastructure drift

Similar to stackconf 2021 | Why you should take care of infrastructure drift (20)

Recently uploaded

Recently uploaded (20)

stackconf 2021 | Why you should take care of infrastructure drift