September 2021 cloud-native news

Hello from all of us at Sysdig!

September has been a busy month in the cloud-native community. We, at Sysdig, were involved in Kubernetes Community Days UK. Check out the sessions on their YouTube channel in case you missed it.

Don’t miss our cloud-native highlights!

Sign up for our monthly Cloud-native News.

Ping us @sysdig or on our open-source Sysdig Slack group to share your feedback and suggest topics for future issues! Previous editions are in the archive.

The news

Industry buzz

NSA & CISA Kubernetes Security Guidance Review

Read this helpful review of the ​​Cybersecurity Technical Report released by NSA and CISA, which analyzes the whole document and advises how it should be followed.

Common AWS mistakes

Don’t miss this great summary of the most common mistakes when using AWS, helping you avoid performance issues and save money.

Considering operational cost as a developer

Take a look at this interesting story about an application developer and their journey from just using a data store, to taking into account its operational cost from the beginning. This was key to avoiding extra costs when the application started to scale.

S3 security best practices

Check out the top 10 controls for securing your data in S3 to build strong protection mechanisms for your data.

Get the essential Cloud Workload Protection Platform guidance

Download The Report →

Best practices to ensure SOC 2 compliance

Read the guide →

Community tips

Docker to Podman migration guide

See how easy it is to try Podman in your current Docker environment, letting you evaluate the possibility of migrating from Docker to Podman.

Building a Kubernetes operator

Learn how to create operators in Kubernetes in six steps, allowing you to customize your cluster so it fits more of your requirements.

Paring Falco with Flux and Fission

Read how to set up a Kubernetes Response Engine based on Flux v2 or Fission, with Falco and Falcosidekick.

Tips on how to use Terraform

Don’t miss this fantastic article talking about the common issues when using Terraform to deploy cloud provider’s infrastructure or services.

Authenticate to GCP from other cloud providers

Learn how to authenticate to GCP from other providers, like AWS or Azure, using a Service Account to achieve keyless API authentication.

What’s New with Sysdig?

Sysdig just announced new security and compliance capabilities for Google Cloud.

Monitoring Redis with Prometheus

Learn how easy it is to configure a Prometheus exporter to monitor Redis, and also identify the top 5 metrics you should look at.

High severity CVE-2021-25741 in Kubelet

If exploited, this vulnerability can provide access to files and directories outside of the volume, including the host filesystem. Discover how to remediate and mitigate it.

File Integrity monitoring best practices

An attacker can escape the container by modifying certain files, like the runc binary. Discover how by monitoring these files, we can react immediately to those compromise attempts.

Recent releases and ecosystem updates

Most Sysdig products received updates in the last few days: Sysdig Secure and the Sysdig Cloud Connector, Sysdig Agents, our CLI and tools, and much more. Read all about the interesting new features and ecosystem updates on our blog.

Stay safe. Meet us online:

Kubernetes Monitoring Best Practices
Sept. 30 | 10am Pacific | 1pm Eastern

Learn More →

Align Your Cloud Security Plan with the Cybersecurity Exec Order
Oct. 7 | 10am Pacific | 1pm Eastern

Learn More →

KubeCon, CloudNativeCon & Co-located Events
Oct. 11 – 15

Learn More →

Google Cloud Next
Oct. 12 – 14

Register Now →

Securing Google Cloud and Containers
Oct. 14 | 10am Pacific | 1pm Eastern

Learn More →

ONUG Fall 2021
Oct. 20 – 21

Register Now →