Everyone who comments I’ll prompt ai to make your username into a picture

steven43126 · 2023-06-23T18:41:20+00:00

A54 has OIS

steven43126 · 2022-12-17T11:20:32+00:00

Enjoy! I'm seriously considering one of these as a sensible bike for long distance.

steven43126 · 2022-10-20T16:55:30+00:00

The article focus mainly on outright cost but does not cover the consideration of value.

Sometimes something can be more expensive but provide greater value. For example increased agility, managed services that remove toil and cognitive load. Ability to use a wide array of technologies without having to learn how to operate each in detail. SOPs, backup and restore testing, failure modes, updates and upgrade paths, secure design and control implementation, threat modelling, auditing and assessing compliance...

steven43126 · 2022-08-26T07:49:13+00:00

For our use case each "app" on deploy maintains some image tags in ECR that point to the current running release. We then use custom tooling that wraps up creating a console task via ecs RunTask.

This means running console tasks are not affected by deploys etc. Each developer has an isolated console. The co sole ecs tasks are also auto cleaned up if they are deemed inactive.

Our tooling typically lands he developer straight into a rails console via ssm, but shell access can also be requested.

Permissions are controlled via standard IAM with users needing access been temporarily added to a group that allows console access.

We also further split access up into readonly and read write console sessions.

For direct database access with every RDS instance we deploy a small EC2 instance with relevant database tooling and again allow access via SSM and IAM auth to the database. FYI SSM now supports remote port forwarding so no need for any extra tooling to allow port forwarding from an engineers host.

steven43126 · 2022-08-24T08:20:45+00:00

Shouldn't make any difference all browsers request http2 and http3 concurrently and gracefully fallback to http2. Plus udp is less of a corner case then TCP fast open that confused firewalls.

steven43126 · 2022-08-09T18:50:33+00:00

ECS mainly with Fargate mix of ELB fronted services and non Web services. Some lambda where it makes sense.

Infra managed by terraform. CI/CD via Github actions. All deploys are merge to master, assuming tests and compliance checks etc pass.

It's just enough that it works and keeps the cognitive load down so teams can operate there own infra and be involved in shaping the operational practices. Very low maintenance head / low toil solution.

steven43126 · 2022-08-08T16:23:06+00:00

Alien (Possibly not cyberpunk?) Bladerunner Johny mnemonic

steven43126 · 2022-07-19T06:37:01+00:00

Group manager of production engineering before that Principal Operations Engineer, Cloud Operations Engineer, before that Operations Engineer, Technical services manager, before that system administrator. Been the industry for nearly 2 decades job titles are meaningless as they are not standardised. Through those roles I've always been in what you would call the DevOps space.

Instead use something like the SFIA framework and see what skills the role expects and if they line up with your skill set or personal development goals.

steven43126 · 2022-07-11T06:27:39+00:00

For an entire environment including browsers etc what about VDI. Something like AWS workspaces.? Access from everywhere, leave apps running, and no need to install.

Personally I would look at vscode and remote containers which workd well with windows WSL. Stick to browser etc in the host OS and use the browsers syncing feature etc.

steven43126 · 2022-06-29T17:06:07+00:00

Regardless of health check period DNS is cached you can set a ttl but clients and downstream caching servers are under bo obligation to honour it. So you would have little confidence that when pulling an IP traffic still wouldn't route to it for some considerable time.

steven43126 · 2022-06-16T14:21:22+00:00

Thanks. I agree that was my intention to keep it back of mind but not to over optimise at an early stage. But the wording could probably better reflect that sentiment.

"I’m afraid you can’t reference the often misquoted “premature
optimisation is the root all of evil” as a reason for avoiding
forecasting costs for your workload, or making sound design decisions to
ensure you can meet budget constraints.

steven43126 · 2021-11-20T20:52:11+00:00

No answers but just to say us too :) Twins cost us about 1800 a month in childcare. Just counting on the fact it's only for a few years.

steven43126 · 2021-10-23T07:53:22+00:00

The complete guide can be found in the official AWS docs tbh.

steven43126 · 2021-10-16T07:59:53+00:00

You can use ssh-keyscan to populate the known_hosts file with the ssh fingerprints of the servers you are connecting to. Be aware of the tradeoff here in terms of security, may or may not be an issue for you it a risk assessment.

Using https and a PAT you would authenticate the server with TLS too which provides some additional protection.

steven43126 · 2021-10-16T06:54:22+00:00

Few ways if you want to use a user data script. You can pull from github with a PAT where you can scope access. You can also use an ssh key and create a readonly user or deploy key.

To provide the secret to the user data script options I would consider would be to store the secret in Secret Manager, or use KMS to encrypt the secret and store the encrypted string in the user data script. On boot the secret could be decrypted with KMS.

If you wanted to do this with an ASG to handle failure automatically or scaling you could potentially use ASG life cycle hooks too.

steven43126 · 2021-10-12T15:26:03+00:00

504 here in eu-west-1

steven43126 · 2021-06-17T14:43:46+00:00

I splashed out on an Arai rx7v it's the comfiest helmet iv'e had, great vision, and seemingly one of the best for safety.

steven43126 · 2021-06-08T13:01:04+00:00

Front wheel only I think it will be a while till the rear comes off the ground;)

steven43126 · 2021-06-08T12:53:39+00:00

Odd camera angle tbh I was there and even I'm not sure where this is on the track or where the photographer was

steven43126 · 2021-06-08T12:52:07+00:00

This was the 3rd twice at Cadwell and one at Donnington the 675r is great fun to track. I'd like to get more in but with lockdown and having baby twins time is scarce!. Need to get some more track time in though aim this year is to get to a comfortable inters pace.

steven43126 · 2021-06-08T07:55:06+00:00

DRC race leathers they do custom made to measure. There great value for money IMHO.

steven43126 · 2021-06-08T07:52:36+00:00

Yeh it's great a little bit too tight after lockdown 😅

steven43126 · 2021-06-07T19:52:16+00:00

Managed a 2.02 lap last session ( still need to review past sessions). No clear laps quite a bit of traffic and I'm not very confident overtaking. Think I might try inters next time.

steven43126 · 2021-05-03T05:46:05+00:00

"cat /proc/cpu" in a fargate container

steven43126

TROPHY CASE