Highest Voted Questions - DevOps Stack Exchange

9

votes

1 answer

Is there any way I can rotate AWS KMS keys every time interval < 1 year?

According AWS KMS, keys can be rotated once every year. However, there is no way I can define a custom time period for that. However, I can keep changing the same in the bucket's policy manually. So, is there anyway I can automate that?

asked Mar 01 '17 at 07:00

Dawny33

2,816
3
23
62

9

votes

2 answers

Does load balancer F5 support CasC (Configuration as Code)?

Using CasC with F5 would allow for versioned and optionally dynamic network endpoint configuration, saving time and reducing risks. Does this tool support this? Are Single Configuration Files (SCF, F5 term) the vehicle to do that?

asked Jun 24 '17 at 11:42

Ta Mu

6,772
5
39
82

9

votes

3 answers

What is Systems Thinking?

The "First Way" in Gene Kim's explanation of DevOps requires "Systems Thinking" https://itrevolution.com/the-three-ways-principles-underpinning-devops/ Where can one learn the ability for "Systems Thinking"? What are some of the resources that can…

terminology

asked Jun 23 '17 at 11:49

Evgeny Zislis

8,963
5
38
72

9

votes

2 answers

How to change PagerDuty incident name?

I have AWS Cloudwatch hooked up with PagerDuty. Whenever an alert goes out, it goes to PagerDuty, which then sends us a message in Slack. The problem is, this is what it shows in the chat: Triggered #3362: Maximum CPUUtilization of 53.6…

asked Jun 22 '17 at 16:13

Tam N.

191
2

9

votes

4 answers

What courses would be useful for a DevOps Engineer?

I am a 'DevOps Engineer' based in the UK. I have 2.5/3 years experience in the IT field; starting out as an apprentice now a mid-level engineer learning/practicing Linux/Windows System Administration, Continuous Delivery (Jenkins), Continuous…

learning

asked Jun 06 '17 at 13:26

jto

378
1
6
19

9

votes

2 answers

Application calling AWS internal load balancer in same subnet is timing out

Some background: I've created a moderately complex network using Amazon's vpc. It's a three-tiered network across two availability zones. Each layer has a subnet in zone-a and zone-b. The presentation layer is at the top, there’s an application…

asked Jun 05 '17 at 17:24

David Meents

193
1
6

9

votes

3 answers

Hosted CI/CD for iOS that's not in the US?

TL;DR: Do you know of any hosted CI/CD providers for iOS, who have their datacenter/build-boxes in Asia, or at least Europe? (Bonus points if they provide both build and deploy, but build is the MVP.) Back-story: We're running CI/CD at-scale for…

asked Jun 05 '17 at 08:28

XML

226
1
5

9

votes

1 answer

How can I manage changes in desired capacity due to scaling policies in AutoScaling Group state?

How can I manage changes in desired capacity due to scaling policies in AutoScaling Group state in terraform? Specifically, suppose I provision an aws_autoscaling_group resource with terraform with a desired_capacity of 4 and a scaleup policy on…

asked Mar 01 '17 at 02:21

Anthony Neace

1,484
1
12
17

9

votes

3 answers

Is there an ansible module that check whether a port is not in LISTEN state?

The Ansible module index has been consulted, but no module was found that checks whether a port is available? Is there a module that supports this? What does available mean? Available means that a port, e.g. 80 is not in LISTEN state. The following…

asked Jun 02 '17 at 13:04

030

13,235
16
74
173

9

votes

1 answer

What is the difference between using brackets (`[` `]`) and just specifying the command in the CMD option in Dockerfiles?

Why does CMD ["mysqld"] result in: db_1 | 2017-05-14T16:34:11.829163Z 0 [Note] mysqld (mysqld 5.7.18) starting as process 1 ... db_1 | 2017-05-14T16:34:11.833159Z 0 [Note] InnoDB: PUNCH HOLE support available db_1 | 2017-05-14T16:34:11.833190Z…

dockerfile

asked May 14 '17 at 16:41

030

13,235
16
74
173

9

votes

4 answers

Pros/cons of discontinuing a DevOps workflow?

I'm trying to evaluate whether or not it is a good idea to move away from a devops-style workflow to the traditional dev-then-ops (not sure what you call that). We are a small 5 person department tucked away within a 4000 employee traditional media…

asked May 10 '17 at 20:05

doub1ejack

207
1
3

9

votes

1 answer

Is there any way to break long command into multi lines in GitlabCI

I have a very long command in .gitlab-ci.yml file to ssh to jump host then use rsync to sync files from my repo to destination host (it does not have public ip so I need to access it via jump host). Here is my .gitlab-ci: image:…

gitlab

asked Mar 12 '20 at 06:28

Chau Giang

223
1
2
6

9

votes

2 answers

Javascript based alternative to Fabric

Is there a similar DevOps tool to fabric with JavaScript as its scripting language? I'm specifically interested in the remote execution side. Most of the tools I've found rely on python (e.g fabric) or Ruby (e.g. Capistrano, Chef). However, in my…

deployment

asked Apr 27 '17 at 21:48

Henry

201
1
7

9

votes

1 answer

Running a command as a specific user on an ec2 using ssm

Background I want to automatically configure an EC2 via a build, using the aws cli and ssm. The (manual) setup for the container looks something like this: Create an EC2 Run a shell script as root Run a shell script as a specific user Question Is…

asked Jan 06 '20 at 13:21

Max Colledge

195
1
6

8

votes

2 answers

What are best practices of structuring encrypting variables since Ansible 2.3.0?

This document indicates that since Ansible 2.3 it should be possible to encrypt certain vars using a !vault | prefix instead of putting a variable and keys in a vault file and encrypt it completely. notsecret: myvalue mysecret: !vault | …

ansible-vault

asked Apr 23 '17 at 15:42

030

13,235
16
74
173

Most Popular