Identify and optimize public IPv4 address usage on AWS | Amazon Web Services
Networking & Content Delivery Identify and optimize public IPv4 address usage on AWS Update: February 1, 2024 – AWS now charges for public IPv4 addresses provided by AWS. This blog post has more details on this topic. Today AWS announced new charges for AWS-provided public IPv4 addresses beginning February 1, 2024. In this blog post, we introduce two new features launching today to help you track
Online shopping gets personal with Recommendations AI | Google Cloud Blog
With the continuing shift to digital, especially in the retail industry, ensuring a highly personalized shopping experience for online customers is crucial for establishing customer loyalty. In particular, product recommendations are an effective way to personalize the customer experience as they help customers discover products that match their tastes and preferences. Google has spent years deliv
Deploy Stateful Docker Containers with Amazon ECS and Amazon EFS | Docker
Deploy Stateful Docker Containers with Amazon ECS and Amazon EFS At Docker, we are always looking for ways to make developers’ lives easier either directly or by working with our partners. Improving developer productivity is a core benefit of using Docker products and recently one of our partners made an announcement that makes developing cloud-native apps easier. AWS announced that its customers
関連キーワード Linux | セキュリティ | 仮想化 | 脆弱性 | Docker コンテナが稼働しているホストシステムに、コンテナ経由で攻撃を仕掛ける「コンテナエスケープ」の脅威は絵空事ではない。オープンソースのコンテナランタイム(コンテナの実行に必要なソフトウェア)の筆頭格「runc」に見つかった「CVE-2019-5736」など、コンテナエスケープを可能にする脆弱(ぜいじゃく)性は実際に存在するからだ。セキュリティ担当者は、コンテナエスケープにつながる脆弱性に対処する上で、以下の3つのポイントをよく理解しておく必要がある。 利用中のクラウドサービスへの影響 対策として利用できる構成オプション(会員限定) コンテナオーケストレーションツールの潜在的リスク(会員限定) 併せて読みたいお薦め記事 コンテナのセキュリティ対策 「コンテナ」「オーケストレーター」のセキュリティを脅かす4大脆
Git clone over gRPCClone git repositories over gRPC to simplify your backend infrastructure Git supporting HTTPS and SSH for cloning always felt sufficient, until it didn't. It works perfectly fine for developers cloning a repository! But when we were building the infrastructure to power Encore's new web-based editor, we wanted to programmatically clone Git repositories, that plugged easily into t
.NET Conf 2023 The biggest .NET virtual event is back, November 14-16! Announcing .NET Core 3.0 We’re excited to announce the release of .NET Core 3.0. It includes many improvements, including adding Windows Forms and WPF, adding new JSON APIs, support for ARM64 and improving performance across the board. C# 8 is also part of this release, which includes nullable, async streams, and more patterns.
クラウドをめぐる10の誤解
ガートナーの米国本社発のオフィシャルサイト「Smarter with Gartner」と、ガートナー アナリストらのブログサイト「Gartner Blog Network」から、@IT編集部が独自の視点で“読むべき記事”をピックアップして翻訳。グローバルのITトレンドを先取りし「今、何が起きているのか、起きようとしているのか」を展望する。 クラウドコンピューティングには誤解がつきまとっている。それらがもたらす恐れが企業の足を引っ張ったり、イノベーションを妨げたり、不安をかき立てたりする場合がある。この5年間、クラウドコンピューティングはより一般的に普及したが、当初に出回った誤解の一部がいまだに流布している。新しい誤解も現れている。 「クラウドコンピューティングの核心は機能がサービスとして提供されることにあり、サービスプロバイダーと利用者には明確な境界がある」と、Gartnerのディスティン
The history and future roadmap of the AWS CloudFormation Registry | Amazon Web Services
AWS DevOps Blog The history and future roadmap of the AWS CloudFormation Registry AWS CloudFormation is an Infrastructure as Code (IaC) service that allows you to model your cloud resources in template files that can be authored or generated in a variety of languages. You can manage stacks that deploy those resources via the AWS Management Console, the AWS Command Line Interface (AWS CLI), or the
Wanna listen to this story instead? Check out this week's Better Offline podcast, "The Man That Destroyed Google Search," available on Apple Podcasts, Spotify, and anywhere else you get your podcasts. This is the story of how Google Search died, and the people responsible for killing it. The story begins on February 5th 2019, when Ben Gomes, Google’s head of search, had a problem. Jerry Dischler,
SREの本田(@mov_vc)です。 Kaizen Platformではインフラ構築にPulumiを採用し始めています。今回は、Pulumiの基本的な説明+ECS環境をPulumiで構築した手順をまとめました。結論から言うとPulumi、かなり便利なので、導入を考えているよ〜という人はぜひ読んでみてください。 TL;DR 汎用言語で書ける TypeScript, JavaScript, Pythonで記述できます。 依存関係解決してくれる リソース間に依存関係があってもPulumiさんがよしなにやってくれます。 WebUIやべーじゃん WebUIはこんな感じでプロジェクト、環境一覧画面があり、イケてます。 作業履歴とかもWebUIで確認できる 環境ごとのstate情報、Pulumi作業履歴などが確認できます。 開発めっちゃ活発 リリースサイクルが週1ペース。ちゃんと寝てる??? ぷ…Pul
Applies to: Windows Server 2022, Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, Windows Server 2012 Attacks against computing infrastructure have increased over the last decade in all parts of the world. We live in an age of cyber-warfare, cybercrime, and hacktivism. As a result, organizations of all sizes all over the world have had to deal with information leaks, theft of inte
This is a guest post from Docker Captain Elton Stoneman, a Docker alumni who is now a freelance consultant and trainer, helping organizations at all stages of their container journey. Elton is the author of the book Learn Docker in a Month of Lunches, and numerous Pluralsight video training courses – including Managing Apps on Kubernetes with Istio and Monitoring Containerized Application Health w
Examining the Deception infrastructure in place behind code.microsoft.com
The domain name code.microsoft.com has an interesting story behind it. Today it’s not linked to anything but that wasn’t always true. This is the story of one of my most successful honeypot instances and how it enabled Microsoft to collect varied threat intelligence against a broad range of actor groups targeting Microsoft. I’m writing this now as we’ve decided to retire this capability. In the pa
Software Package Management with AWS CodeArtifact | Amazon Web Services
AWS News Blog Software Package Management with AWS CodeArtifact Software artifact repositories and their associated package managers are an essential component of development. Downloading and referencing pre-built libraries of software with a package manager, at the point in time the libraries are needed, simplifies both development and build processes. A variety of package repositories can be use
NEW – Using Amazon ECS Exec to access your containers on AWS Fargate and Amazon EC2 | Amazon Web Services
Containers NEW – Using Amazon ECS Exec to access your containers on AWS Fargate and Amazon EC2 Today, we are announcing the ability for all Amazon ECS users including developers and operators to “exec” into a container running inside a task deployed on either Amazon EC2 or AWS Fargate. This new functionality, dubbed ECS Exec, allows users to either run an interactive shell or a single command agai
Today we’re excited to announce the release of TypeScript 5.5! If you’re not familiar with TypeScript, it’s a language that builds on top of JavaScript by making it possible to declare and describe types. Writing types in our code allows us to explain intent and have other tools check our code to catch mistakes like typos, issues with null and undefined, and more. Types also power TypeScript’s edi
DevOps Topologies : DevOps 文化を築くベストプラクティスな組織構造とは - kakakakakku blog
DevOps 文化を築くときに知っておくと便利なサイト「DevOps Topologies」を読んだ.「アンチパターン = DevOps Anti-Types」な組織構造(計7種類)と「ベストプラクティス = DevOps Team Topologies」な組織構造(計9種類)が紹介されている.サイトではそれぞれの組織構造の解説と関係性を図解した絵が載っていてわかりやすい!本記事ではサイトを翻訳するのではなく,あくまで個人的なメモとしてまとめる.なお,日本語訳も参考程度に載せておいた! web.devopstopologies.com 目次 1. DevOps Anti-Types Anti-Type A: Dev and Ops Silos(Dev と Ops のサイロ化) Anti-Type B: DevOps Team Silo(DevOps チームのサイロ化) Anti-Type
GitOps for Kubernetes | Caylent
Cloud-native applications are dominating the market with their improved performance and high efficiency. While there are more resources to support cloud-native applications running as microservices, managing complex cloud architecture is still a challenge. The more microservices you run, the more tasks you will have to deal with in order to keep the cloud environment healthy and running smoothly.
For this article, we’ll dig into some of the options for Local Kubernetes Clusters if you are developing on a Mac. When doing microservices development, eventually you will want to start to test integrated services together. And there are several options available to run these tests: Dedicated Clusters – Larger teams typically have dev environments and you can either run lots of little clusters or
AWS Lambda warms up your functions, such that 50%-85% of Lambda Sandbox initializations don't increase latency for users. In this article we'll define Proactive Initialization, observe its frequency, and help you identify invocations where your cold starts weren't really that cold. July 13, 2023 This post is both longer and more popular than I anticipated, so I’ve decided to add a quick summary: T
ヤフー株式会社は、2023年10月1日にLINEヤフー株式会社になりました。LINEヤフー株式会社の新しいブログはこちらです。LINEヤフー Tech Blog こんにちは。ヤフーでプライベートIaaS(Infrastructure as a Service)の構築・運用を担当している高橋です。 IaaSはサーバやストレージ、ネットワークなどのリソースを仮想的に定義してサービスとして提供することを指します。ヤフーでは社内のプラットフォームやユーザに提供するサービスの運用のためIaaSを社内で構築・提供しています。 本記事ではヤフー内のIaaSをかげで支えるKubernetesのアップデート事情について紹介します。 ヤフーのIaaSの構成 IaaSに関連する仮想マシン、そして仮想マシンを動かすためのハイパーバイザーやネットワークといったリソースを管理するためにOpenStackというOSSが
Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of Other Companies
Ever since I started learning how to code, I have been fascinated by the level of trust we put in a simple command like this one: pip install package_nameSome programming languages, like Python, come with an easy, more or less official method of installing dependencies for your projects. These installers are usually tied to public code repositories where anyone can freely upload code packages for
An Engineer's Hype-Free Observations on Web3 (and its Possibilities)
The Web3 ecosystem has been variously described as a collective hallucination, a massive grift, an environmental disaster, a decentralized renaissance, and the future of the Internet. That’s a lot to live up (and down) to. Here in the PSL Studio, our veteran engineering team (hi, nice to meet you!) has been building fun new Web3 projects. Along the way, we’ve been taking notes on what we’ve learne
5分で理解するAWS CDK - Qiita
はじめに 本記事はAWS CDKについてキャッチアップすることを目的に、AWS CDKの概念や、ウォークスルーとしてAWSが公開しているWORKSHOPについて記載しています。 AWS Cloud Development Kit (AWS CDK) (以下、CDK)はTypeScript及びPythonなどのプログラミング言語を使用して、AWSリソースを定義し、Terraformの様にInfrastructure as Code(以降、IaC)を実現する手段として、クラウドインフラのリソースをプロビジョニングすることができます。 TerraformはGo言語で書かれた公式のAWS SDKを用いて、Terraform実行時にAWSのAPIを呼び出して、環境を構築しています。 Terraformは1つのプロバイダーに依存することなく、他のプロバイダーのクラウドインフラを扱えることから、汎用性だ
Systemd support is now available in WSL! The Windows Subsystem for Linux (WSL) can now run systemd inside of your WSL distros, empowering you to do more with your Linux workflows on your Windows machine. This post will cover: What is systemd? What can you do with it? How is this change possible in WSL? How can you get systemd on your machine? For a summary, check out the video below: What is syste
米シスコシステムズとHashiCorpは提携を発表し、HashiCorpの「Terraform Cloud Business」をシスコが同社のCisco Intersightプラットフォームとともに販売しサポートすることを発表しました。 We're excited to announce our expanded partnership with @HashiCorp, to deliver Infrastructure as Code for hybrid cloud environments. #Intersighthttps://t.co/ml8dpS4fpE pic.twitter.com/RCf29VoNS8 — Cisco Data Center and Cloud (@ciscoDC) March 24, 2021 To help organizations solve th
インターンシップ体験記 〜Cobalt StrikeのC2サーバ追跡〜 - NTT Communications Engineers' Blog
はじめに こんにちは、NTTコミュニケーションズの現場受け入れ型インターンシップに参加した奥です。 現在は大学でLinuxマルウェアの動的解析について研究しています。 今回私は2023年2月6日から2月17日の2週間、イノベーションセンターのNetwork Analytics for Security(通称NA4Sec)プロジェクトに参加し、 Cobalt Strikeを悪用した攻撃事例の調査、またCobalt Strikeのペイロード配布に利用される攻撃インフラの発見・追跡を体験しました。 この記事では、インターンシップ参加の経緯やインターンシップ期間中に取り組んだ内容について紹介します。 インターンシップ参加の経緯 私がこのインターンシップに応募したのは、夏に他社のインターンシップに参加した際に、他の学生たちがNTTのインターンシップを推していた記憶があり、応募しておけばよかった..と
Workers Durable Objects Beta: A New Approach to Stateful Serverless
Workers Durable Objects Beta: A New Approach to Stateful Serverless09/28/2020 We launched Cloudflare Workers® in 2017 with a radical vision: code running at the network edge could not only improve performance, but also be easier to deploy and cheaper to run than code running in a single datacenter. That vision means Workers is about more than just edge compute -- we're rethinking how applications
Blog Home Archive Sections Some of my Favorites (Collections) Management Tips Speaker Tips Developer Relations Thoughts Interop Briefs Some of my Favorites (Individual posts) O/R-M is the Vietnam of Computer Science The Fallacies of Enterprise Computing SSCLI 2.0 Internals Recommended reading list Functional Java On Finding learning The Value of Failure Programming Promises; a Programmer's Hippocr
Mark Zuckerberg just shared the following with Meta employees: Today I’m sharing some of the most difficult changes we’ve made in Meta’s history. I’ve decided to reduce the size of our team by about 13% and let more than 11,000 of our talented employees go. We are also taking a number of additional steps to become a leaner and more efficient company by cutting discretionary spending and extending
地道に積み上げるSRE 目的合意から進めたSREの探求と実践|グロービス・デジタル・プラットフォーム
今回の記事では、SREとは何なのかについて根本から考えながら活動してきた、グロービス SREチームの探求と実践について紹介します。 はじめにグロービス・デジタル・プラットフォーム SREチームでチームリーダーを務めている沼田(@chroju)です。 突然ですがSREとはどう定義されるでしょうか。この問い、存外に難しいのではないかと感じています。インフラエンジニアは「インフラ領域を担当しているから」そう呼ばれますが、ではSREは「サイト信頼性を担当しているから」そう呼ばれるのでしょうか。サイト信頼性を担当する、とは、具体的にはどういうことなのでしょうか。 SREチームの業務内容や責任領域は広範囲に渡り、おそらく会社によって様々な形を取っているのではないかと思います。2021年9月に日本語版が発売された『SREの探求』は、まさにそういった様々なSREの実践をまとめた書籍であり、冒頭の「はじめに
Command R+ is a state-of-the-art RAG-optimized model designed to tackle enterprise-grade workloads, and is available first on Microsoft Azure Today, we’re introducing Command R+, our most powerful, scalable large language model (LLM) purpose-built to excel at real-world enterprise use cases. Command R+ joins our R-series of LLMs focused on balancing high efficiency with strong accuracy, enabling b
Front-of-the-front-end and back-of-the-front-end web development
Front-of-the-front-end and back-of-the-front-end web development The Great Divide is real, and I’m pleased that the terms “front-of-the-front-end” and “back-of-the-front-end” have gained traction ever since I quipped about them on the Shop Talk Show. A few of my clients have actually moved away from a culture of “we only hire full-stack developers” and have instead adopted the labels “front-of-the
Introducing Amazon Redshift Serverless – Run Analytics At Any Scale Without Having to Manage Data Warehouse Infrastructure | Amazon Web Services
AWS News Blog Introducing Amazon Redshift Serverless – Run Analytics At Any Scale Without Having to Manage Data Warehouse Infrastructure We’re seeing the use of data analytics expanding among new audiences within organizations, for example with users like developers and line of business analysts who don’t have the expertise or the time to manage a traditional data warehouse. Also, some customers h
CompanyProductEverything new from Universe 2021Since last year’s GitHub Universe, we’ve shipped more than 20,000 improvements to GitHub for developers, open source communities, and enterprise teams. Here’s a comprehensive overview of what we’re announcing at Universe this week. Since last year’s GitHub Universe, we’ve shipped more than 20,000 improvements to GitHub for developers, open source comm
Executive Perspectives The Future of Sales and Marketing Is Here February 2022 Executive Perspectives 1. Metaverse market proxied by 'extended reality' - a term referring to all real-and-virtual combined environments and human-machine interactions generated by computer technology and wearables. Note: Augmented reality (AR) adds digital elements to a live view often by using the camera on a smartph
Update for Apache Log4j2 Security Bulletin (CVE-2021-44228)
AWS is aware of the recently disclosed issues relating to the open-source Apache “Log4j2" utility (CVE-2021-44228 and CVE-2021-45046). Responding to security issues such as this one shows the value of having multiple layers of defensive technologies, which is so important to maintaining the security of our customers’ data and workloads. We've taken this issue very seriously, and our world-class te
Migrate to User-Agent Client Hints Stay organized with collections Save and categorize content based on your preferences. Strategies to migrate your site from relying on the user-agent string to the new User-Agent Client Hints. The User-Agent string is a significant passive fingerprinting surface in browsers, as well as being difficult to process. However, there are all kinds of valid reasons for
Kubernetesエキスパートが注目する「Platform Engineering」とは何か? 一体何が新しいのか? 近年、多くの企業が取り組もうとしている「クラウドネイティブ」なインフラ構築やアプリ開発の領域では、コンテナやKubernetes、アジャイルやDevOpsなど、新しいテクノロジーやコンセプトが次々と登場し、進化を続けています。組織がそうした進化に追従しながら、継続的に「クラウドネイティブ」のメリットを得られるようにするための考え方として、今「Platform Engineering」が注目されています。今回は、ヤフーとサイバーエージェントでKubernetesのエキスパートとして、社内のプライベートクラウド整備に尽力する2人に、Platform Engineeringの考え方や、それに基づいて、実際に自社のプラットフォームをどう進化させているか、今後どうしていきたいかとい
AWS News Blog New for App Runner – VPC Support With AWS App Runner, you can quickly deploy web applications and APIs at any scale. You can start with your source code or a container image, and App Runner will fully manage all infrastructure including servers, networking, and load balancing for your application. If you want, App Runner can also configure a deployment pipeline for you. Starting toda
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
コンテナ経由でホストを攻撃 「コンテナエスケープ」に備える3大ポイント
Simplify your backend with Git clone of gRPC – Encore Blog
Announcing .NET Core 3.0 - .NET Blog
The Man Who Killed Google Search
PulumiでECS環境を構築する - Kaizen Platform 開発者ブログ
Best Practices for Securing Active Directory
Getting Started with Istio Using Docker Desktop | Docker
Announcing TypeScript 5.5 - TypeScript
Desktop K8s in 2021 - DZone
Understanding AWS Lambda Proactive Initialization
ヤフーのIaaSを支えるKubernetesクラスタのアップデート苦労話
Systemd support is now available in WSL!
シスコとHashiCorpが提携。シスコがTerraformとシスコ製品を統合、販売へ
You Want Modules, Not Microservices
Mark Zuckerberg’s Message to Meta Employees | Meta
Introducing Command R+: A Scalable LLM Built for Business
Everything new from Universe 2021
PowerPoint Presentation
Migrate to User-Agent Client Hints | Articles | web.dev
Kubernetesエキスパートが注目する「Platform Engineering」とは何か? 一体何が新しいのか?
New for App Runner – VPC Support | Amazon Web Services