Hello from all of us at Sysdig!
September has been a busy month in the cloud-native community. We, at Sysdig, were involved in Kubernetes Community Days UK. Check out the sessions on their YouTube channel in case you missed it.
Don’t miss our cloud-native highlights!
Sign up for our monthly Cloud-native News.
Ping us @sysdig or on our open-source Sysdig Slack group to share your feedback and suggest topics for future issues! Previous editions are in the archive.
- Kafka 3.0 was released.
- GitHub Actions will support OpenID Connect.
- Elastic 7.15 was released.
- Announced extended support for Istio 1.9.
- NGINX Ingress Controller 1.0 was released.
- Docker Desktop is no longer free for enterprise users.
- New Google Cloud region announced in Berlin.
NSA & CISA Kubernetes Security Guidance Review
Read this helpful review of the Cybersecurity Technical Report released by NSA and CISA, which analyzes the whole document and advises how it should be followed.
Common AWS mistakes
Don’t miss this great summary of the most common mistakes when using AWS, helping you avoid performance issues and save money.
Considering operational cost as a developer
Take a look at this interesting story about an application developer and their journey from just using a data store, to taking into account its operational cost from the beginning. This was key to avoiding extra costs when the application started to scale.
S3 security best practices
Check out the top 10 controls for securing your data in S3 to build strong protection mechanisms for your data.
Get the essential Cloud Workload Protection Platform guidance
Best practices to ensure SOC 2 compliance
Docker to Podman migration guide
See how easy it is to try Podman in your current Docker environment, letting you evaluate the possibility of migrating from Docker to Podman.
Building a Kubernetes operator
Learn how to create operators in Kubernetes in six steps, allowing you to customize your cluster so it fits more of your requirements.
Paring Falco with Flux and Fission
Read how to set up a Kubernetes Response Engine based on Flux v2 or Fission, with Falco and Falcosidekick.
Tips on how to use Terraform
Don’t miss this fantastic article talking about the common issues when using Terraform to deploy cloud provider’s infrastructure or services.
Authenticate to GCP from other cloud providers
Learn how to authenticate to GCP from other providers, like AWS or Azure, using a Service Account to achieve keyless API authentication.
What’s New with Sysdig?
Sysdig just announced new security and compliance capabilities for Google Cloud.
Monitoring Redis with Prometheus
Learn how easy it is to configure a Prometheus exporter to monitor Redis, and also identify the top 5 metrics you should look at.
High severity CVE-2021-25741 in Kubelet
If exploited, this vulnerability can provide access to files and directories outside of the volume, including the host filesystem. Discover how to remediate and mitigate it.
File Integrity monitoring best practices
An attacker can escape the container by modifying certain files, like the runc binary. Discover how by monitoring these files, we can react immediately to those compromise attempts.
Recent releases and ecosystem updatesMost Sysdig products received updates in the last few days: Sysdig Secure and the Sysdig Cloud Connector, Sysdig Agents, our CLI and tools, and much more. Read all about the interesting new features and ecosystem updates on our blog.
Stay safe. Meet us online:
Kubernetes Monitoring Best Practices
Sept. 30 | 10am Pacific | 1pm Eastern
Align Your Cloud Security Plan with the Cybersecurity Exec Order
Oct. 7 | 10am Pacific | 1pm Eastern
KubeCon, CloudNativeCon & Co-located Events
Oct. 11 – 15
Google Cloud Next
Oct. 12 – 14
Securing Google Cloud and Containers
Oct. 14 | 10am Pacific | 1pm Eastern
ONUG Fall 2021
Oct. 20 – 21