Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

Open source was supposed to be the great equalizer – free software, built by the people, for the people. But as big corporations get more involved, the lines between community-driven innovation and corporate control keep blurring. Are we witnessing the golden age of open source, or its slow transformation into just another business model? Let’s take a look at five key developments shaping the future of open-source business models.

1. IBM acquires HashiCorp: Open Source for sale?
   IBM has completed its acquisition of HashiCorp, absorbing one of the biggest names in open-source infrastructure. HashiCorp’s transition to a Business Source License (BSL) sparked controversy in 2023, and now, under IBM, the future of tools like Terraform and Vault is uncertain. Will IBM embrace the open-source spirit or tighten its grip?
   https://newsroom.ibm.com/2025-02-27-ibm-completes-acquisition-of-hashicorp,-creates-comprehensive,-end-to-end-hybrid-cloud-platform
   
2. Nextcloud vs. Microsoft: A fight for Fair Play
   Nextcloud has long been a vocal critic of Microsoft’s monopolistic tactics. Now, its CEO alleges that Microsoft offered them money to withdraw an EU antitrust complaint. If true, this would be a stark example of how big tech uses financial muscle to silence competition – leaving smaller open-source projects fighting an uphill battle (in German):
   https://dnip.ch/2025/02/24/nextcloud-chef-microsoft-wollte-uns-dafuer-bezahlen-dass-wir-die-beschwerde-zurueckziehen/
   
3. Who pays for Open Source?
   Perforce is demanding that open source users “pay their fair share” while itself contributing nothing back to the very open source projects that power Puppet Enterprise, says Ben Ford. The Puppet community – responsible for foundational tools, modules, and even securing major deals for Puppet – has been the real driving force behind the company’s success, yet Perforce continues to exploit this goodwill without acknowledgment or reciprocity. This blatant hypocrisy not only alienates the community but also undermines the fundamental give-and-take that makes open source sustainable.
   https://overlookinfratech.com/2025/02/28/paying-their-fair-share/
   
4. Mozilla’s controversial Terms of Use rewrite
   After a wave of backlash, Mozilla is rewriting Firefox’s Terms of Use. This incident highlights a broader tension in open-source projects: balancing user trust with financial survival. Mozilla’s struggle reflects a growing concern – how do you keep open-source principles intact while still paying the bills?
   https://techcrunch.com/2025/03/03/mozilla-rewrites-firefoxs-terms-of-use-after-user-backlash/
   
5. The future of web browsers & Open Source
   Web browsers are one of the most critical pieces of software, yet their development is increasingly controlled by corporate interests. This article explores the future of browsers in a world dominated by Google – and whether open-source alternatives stand a chance.
   https://www.bitecode.dev/p/web-browsers-and-our-future-as-developers

Open-source software is at a crossroads. The ideals of free and open collaboration are clashing with financial realities and corporate influence. Will companies find sustainable ways to fund open source without compromising its principles, or will we see more projects swallowed by big tech?

Should open-source projects accept corporate funding, even if it risks corporate influence? How can open-source developers ensure long-term financial sustainability? Are we heading toward a future where open-source software is just another corporate tool? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions about Open Source: #152, #170, #191, #194, #214, #234, #235, #256

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every week, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

In the vast digital wilderness, open source communities stand as beacons of collaboration in an increasingly fragmented tech landscape. Behind every line of code lies a community of passionate developers, volunteers, and visionaries working to create technology that empowers rather than restricts. As 2025 unfolds, we’re witnessing significant shifts in how these communities navigate challenges, celebrate victories, and sometimes bid farewell to beloved projects.

1. Codeberg takes a stand against digital hostility
   The Codeberg team has published a powerful manifesto reaffirming their commitment to maintaining a safe, inclusive space for developers. Their thoughtful stance demonstrates how open source platforms are increasingly recognizing their responsibility not just to host code, but to cultivate communities where everyone can thrive regardless of background. This bold declaration comes at a crucial moment when digital spaces face mounting pressure from polarizing forces.
   https://blog.codeberg.org/we-stay-strong-against-hate-and-hatred.html
   
2. Goodbye K-9 Mail
   After nearly 15 years of dedication, development, and leadership, cketti, an open source developer living in Berlin, is stepping into a new chapter. His journey with K-9 Mail began with a simple bug fix and grew into a full-time passion, culminating in the release of Thunderbird for Android. Along the way, he worked with an incredible community and team, shaping an app that has served millions.
   https://cketti.de/2025/02/26/goodbye-k9mail/
   
3. Forgejo’s monthly progress: Git self-hosting evolves
   The Forgejo team continues to build momentum with their January 2025 update showcasing impressive improvements to their self-hosted Git service. Their steady progress represents how community-driven alternatives to centralized platforms can innovate while maintaining strong principles of user freedom and data sovereignty. Each refinement strengthens the case for organizations seeking to maintain control over their development infrastructure.
   https://forgejo.org/2025-01-monthly-update/
   
4. Nextcloud levels up with Hub 10 release
   Nextcloud’s latest Hub 10 announcement unveils significant enhancements to their popular open source collaboration platform. This major update reinforces their position as a privacy-focused alternative to corporate cloud services, bringing advanced features without compromising on user control. The release demonstrates how open source solutions continue to narrow the feature gap with proprietary offerings while providing superior flexibility and data ownership.
   https://nextcloud.com/blog/nextcloud-hub10/
   
5. Docker Hub drops pull consumption fees
   Displaying corporate responsiveness to developer concerns, Docker has reversed course on their controversial pull consumption fee plans. Their decision acknowledges the role that frictionless image sharing plays in maintaining an open source ecosystem where innovation can flourish without artificial barriers. By increasing free tier pull limits rather than restricting them, Docker signals its commitment to the grassroots developers who helped establish containers as essential infrastructure.
    https://linuxiac.com/docker-hub-drops-pull-consumption-fees/

These five developments showcase the resilience and dynamism of open source communities as they navigate the complexities of 2025’s digital landscape. From principled stands against toxicity to strategic pivots in business models, these stories reflect a movement that continues to evolve while staying true to core values of accessibility, user empowerment, and collaborative innovation. Though some beloved projects may sunset, the broader ecosystem remains vibrant and forward-looking.

How might Docker’s reversal on pull consumption fees influence other companies considering monetization strategies for services that open source communities depend on? What responsibility do commercial entities have to the open source ecosystems they benefit from when making business decisions? With increasing corporate involvement in open source, how important are community-governed platforms like Codeberg and Forgejo to maintaining the movement’s original values? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions about Open Source: #152, #170, #191, #194, #214, #234, #235

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every week, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

We trust our devices with everything – banking details, personal conversations, even our identities. But what if that trust is misplaced? Recent findings expose shocking vulnerabilities in widely used encryption systems, software, and even the hardware we rely on daily. From BitLocker flaws to HTTPS interception, security isn’t as airtight as we’d like to believe. Let’s dive into five eye-opening cases that challenge what we think we know about cybersecurity.

1. Practical HTTPS interception – A hacker’s dream?
   Let’s Encrypt’s biggest weakness? Cleartext verification. This article reveals how attackers can trick Let’s Encrypt into issuing TLS certificates for domains they don’t own, all by intercepting ACME-HTTP-01 challenges. With the right network access, they can decrypt HTTPS traffic – shattering the very trust TLS is built on.
   https://blog.thc.org/practical-https-interception
   
2. BitLocker screwed without a screwdriver
   Microsoft’s BitLocker encryption is designed to protect your data, but researchers found a way to bypass it – without even touching a keyboard. This vulnerability shows how physical access alone can compromise entire encrypted systems, making ‘disk encryption’ a lot less foolproof than you might hope.
   https://neodyme.io/en/blog/bitlocker_screwed_without_a_screwdriver/
   
3. Removing Jeff Bezos from my bed – smart homes, dumb security
   Ever wonder if your smart home devices are spying on you? This experiment dives into the bizarre world of Amazon smart devices, showing how removing an Alexa from your home doesn’t necessarily mean Amazon stops collecting data on you. Digital privacy? That’s an illusion.
   https://trufflesecurity.com/blog/removing-jeff-bezos-from-my-bed
   
4. Smuggling data through Emojis – Steganography, but make it fun
   Who knew you could hide sensitive information inside an emoji? This article explores how cybercriminals (and clever researchers) use emojis to smuggle data, bypassing security measures in ways most people never see coming. It’s encryption – but adorable! 😎󠅉󠅟󠅥󠄐󠅓󠅢󠅑󠅓󠅛󠅕󠅔󠄐󠅤󠅘󠅕󠄐󠅓󠅟󠅔󠅕󠄑󠄐󠄸󠅕󠅢󠅕󠄐󠅩󠅟󠅥󠄐󠅗󠅟󠄪󠄐󠅘󠅤󠅤󠅠󠅣󠄪󠄟󠄟󠅧󠅧󠅧󠄞󠅩󠅟󠅥󠅤󠅥󠅒󠅕󠄞󠅓󠅟󠅝󠄟󠅧󠅑󠅤󠅓󠅘󠄯󠅦󠄭󠅛󠅙󠄷󠄴󠅦󠄽󠄡󠄤󠄻󠅧󠅗
   https://paulbutler.org/2025/smuggling-arbitrary-data-through-an-emoji/
   
5. Microsoft’s security scanners are breaking the rules – again!
   Microsoft’s email security scanners are now not only following links in emails but also executing JavaScript and triggering POST requests – something previously considered unacceptable due to its potential side effects. This new behavior is silently breaking single-use sign-on and email confirmation links, forcing developers to rethink authentication flows. The lack of transparency from major tech players like Microsoft raises concerns about unchecked power and shifting cyber norms.
   https://berthub.eu/articles/posts/shifting-cyber-norms-microsoft-post/

Cybersecurity isn’t just about strong passwords and encrypted messages – it’s a constant battle between convenience and true digital safety. As tech giants push their own security solutions and vulnerabilities keep emerging, users are left wondering: Is anything truly safe anymore? The reality is, we need to rethink how we approach security, because hackers and corporations alike are always one step ahead.

Would you still trust BitLocker or similar disk encryption tools after seeing how easily they can be bypassed? Are smart devices a necessary convenience, or an unnecessary security risk? Should governments or big tech be responsible for fixing cybersecurity flaws, or should users take full control of their own security? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions about security: #8, #17, #22, #27, #32, #44, #54, #62, #76, #84, #93, #106, #117, #128, #142, #145, #164, #169, #182, #203, #223, #227, #228, #231

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every week, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

In today’s data-driven world, databases are the backbone of modern applications, powering everything from real-time analytics to scalable cloud services. From open-source innovations to cutting-edge database-as-a-service (DBaaS) platforms, the landscape of data management is evolving at breakneck speed. Join us as we dive into the latest trends, tools, and techniques shaping the future of databases.

1. DBDB.io
   Ever wondered which database is the right fit for your project? DBDB.io is your ultimate guide, offering a comprehensive comparison of database systems to help you make informed decisions. Whether you’re exploring SQL, NoSQL, or NewSQL, this database directory has you covered.
   https://dbdb.io/
   
2. InfluxDB 3 open-source public alpha
   Time-series data is the lifeblood of IoT, monitoring, and analytics. InfluxDB 3’s open-source public alpha brings a new era of performance and scalability to time-series databases, empowering developers to handle massive data streams with ease.
   https://www.influxdata.com/blog/influxdb3-open-source-public-alpha/
   
3. Read replicas in PostgreSQL and MySQL
   Scaling databases doesn’t have to be a headache. Learn how read replicas in PostgreSQL and MySQL can distribute query loads, improve performance, and ensure high availability for your applications.
   https://www.exoscale.com/syslog/read-replicas-postgresql-mysql/
   
4. Microsoft DocumentDB repository
   Here’s a treasure trove of tools, SDKs, and resources for developers working with the DocumentDB API – now part of Azure Cosmos DB. Whether you’re building scalable cloud applications or diving into NoSQL databases, this repo has you covered!
   https://github.com/microsoft/documentdb
   
5. DBaaS external integrations
   Database-as-a-service (DBaaS) platforms are becoming the go-to solution for seamless data management. Discover how integrating external services with DBaaS can streamline workflows and unlock new possibilities for your applications.
   https://www.exoscale.com/syslog/dbaas-external-integrations/

The world of databases is more dynamic than ever, with innovations like time-series databases, NoSQL solutions, and DBaaS platforms reshaping how we manage and leverage data. As we continue to push the boundaries of scalability, performance, and integration, one thing is clear: the future of data management is bright – and full of opportunities. What will you build next?

What challenges have you faced when choosing or scaling a database for your projects? How do you see the role of open-source databases evolving in the next five years? Have you experimented with DBaaS platforms? What has been your experience with integrating external services? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions about Databases and Storage: #111, #115, #138, #155, #158, #199, #219, #236

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every week, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

For too long, Europe has been dependent on foreign tech giants, relying on US-based cloud providers and data infrastructures that expose businesses and citizens to regulatory and security risks. The latest political shifts, tariffs, and legal disputes only emphasize the urgency for Europe to reclaim control over its digital future. With increasing concerns over data privacy, security regulations, and technological sovereignty, the time has come for Europe to stand on its own feet. But are we ready for it?

1. US cloud soon illegal? Trump punches first hole in EU-US data deal
   The recent actions by the US administration threaten the already fragile EU-US data transfer agreements. With the US undermining legal frameworks like the Privacy Shield, European businesses could soon find themselves unable to store data legally on US cloud services, pushing the EU to find alternative solutions:
   https://noyb.eu/en/us-cloud-soon-illegal-trump-punches-first-hole-eu-us-data-deal
   
2. Stricter security requirements demanded for cloud providers (in German)
   In Switzerland, unlike internet providers, hosting and cloud providers are not subject to legal cybersecurity requirements. The Security Policy Commission of the National Council wants to change this by introducing new legal frameworks that would hold these providers accountable for preventing misuse of their services:
   https://www.inside-it.ch/strengere-security-auflagen-fuer-cloud-anbieter-gefordert-20250129
   
3. CEO of Swiss tech company Proton criticizes Europe (in German)
   Proton’s CEO is openly critical of Europe’s slow response to the dominance of US tech giants. He argues that if Europe doesn’t act quickly, it risks falling further behind in technological development and losing control over its digital economy:
   https://www.watson.ch/schweiz/international/942046607-ceo-von-schweizer-tech-firma-proton-kritisiert-europa
   
4. Infomaniak opens new data center (in German)
   Swiss company Infomaniak is taking matters into its own hands by launching a new data center, reinforcing the push for European cloud independence. This move highlights that some companies are already leading the way in ensuring that European data stays in Europe:
   https://www.inside-it.ch/infomaniak-eroeffnet-neues-rechenzentrum-20250127
   
5. Prantl claims: Competitors are not opponents (in German)
   A shift in mindset may be necessary for Europe to compete effectively. Instead of treating each other as rivals, European tech companies need to collaborate and strengthen their collective presence against the overwhelming power of US and Chinese firms:
   https://www.inside-it.ch/prantl-behauptet-mitbewerber-sind-keine-konkurrenten-20250127
   
6. JUST IN: https://www.theguardian.com/technology/2025/feb/10/elon-musk-open-ai-bid
   Well fancy that! But did you realize that we have a good European ChatGPT alternative too?
   https://mistral.ai/en/news/all-new-le-chat

Europe faces a defining moment in its digital history. If we want to secure our data, build competitive tech industries, and maintain digital sovereignty, we must act now. The good news? Some companies and regulators are already taking the first steps. The real question is: Will the rest of Europe follow, or will we continue to play catch-up?

How can European businesses transition away from US-based cloud providers without compromising efficiency? Should European governments take stronger action to regulate and support local cloud alternatives? What role should European consumers play in demanding data sovereignty from tech providers? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS²: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Happy New Year and welcome to another VSHN.timer! Every Monday, we share five links about Kubernetes, OpenShift, CI/CD, and DevOps – insights pulled straight from our chat system that inspire us, make us laugh, or help us work smarter.

The digital world is evolving, transforming the very core of how we communicate and innovate. From cities upgrading their websites to ambitious attempts for digital sovereignty in Europe, the race to stay ahead never ends. This post delves into some interesting recent advances in digital transformation projects that demonstrate how innovation and collaboration are shaping the future of our digital infrastructure. Here’s a closer look at what is happening:

1. Zurich to overhaul 160 municipal websites
   The canton of Zurich has ambitious plans to bring its 160 municipal websites into the digital age with a unified, open-source content management system (CMS). The project demands top-tier security, including private cloud hosting, encrypted data, and safeguards against cyberattacks, ensuring resilience and reliability for every community. With a Request for Information (RFI) open until January 13, 2025, and a public tender launching in spring, this initiative is set to redefine digital access across the canton (in German):
   https://www.inside-it.ch/zuerich-will-160-gemeinde-websites-erneuern-20241206
   
2. Swiss Software Festival highlights local innovation
   Will you be joining too? Switzerland’s vibrant software community will come together for a celebration of innovation and collaboration at the Swiss Software Festival in Basel on June 24, 2025. This event showcases groundbreaking projects and underscores the importance of fostering a thriving digital ecosystem to drive technological advancements. It’s a reminder that progress happens when talent and vision converge:
   https://www.swissmadesoftware.org/en/swiss-software-festival.html
   
3. Citrix acquires Strong Network
   In a significant move to bolster its capabilities, Citrix has acquired Lausanne-based startup Strong Network. Founded in 2020, Strong Network specializes in cloud development environments. Citrix’s acquisition of Strong Network enhances its ability to provide secure cloud development solutions, enabling more efficient and cost-effective creation, deployment, and access to mission-critical applications (in German):
   https://www.inside-it.ch/citrix-kauft-lausanner-startup-strong-network-20241212
   
4. Gaia-X: A vision for Europe’s digital sovereignty
   The Gaia-X initiative seeks to redefine Europe’s digital landscape by fostering secure, decentralized, and transparent data ecosystems. As Switzerland eyes its role in this ambitious project, the potential benefits for businesses and citizens alike are immense. Could this be Europe’s last chance to claim a seat at the global digital table (in German)?
   Part 1: https://dnip.ch/2024/12/16/gaia-x-letzte-chance-fuer-europas-digitale-souveraenitaet-und-wie-die-schweiz-profitieren-koennte-teil-1/
   Part 2: https://dnip.ch/2024/12/17/gaia-x-letzte-chance-fur-europas-digitale-souveranitat-und-wie-die-schweiz-profitieren-konnte-teil-2/

Digital transformation isn’t just about technology; it’s about empowering communities, fostering collaboration, and reshaping the way we interact with the world. Whether through municipal modernization, celebrating local talent, strategic acquisitions, or ambitious European initiatives, the drive to innovate is undeniable. The question is: how will we participate in this evolving digital landscape?

What role do you think public-private partnerships play in driving digital transformation? How important is digital sovereignty in today’s interconnected world? What are some ways your community or organization could benefit from modernized digital infrastructure? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: Do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS²: Would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every week, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

In the current digital landscape, privacy and security are more crucial than ever. With data breaches, privacy violations, and cyber threats on the rise, individuals and companies must prioritize the protection of sensitive and private data. In this VSHN.timer we dig into the constantly changing world of confidentiality and security, providing insights into the most recent trends and tactics to protect data and user privacy.

1. Ecosia and Qwant build European search infrastructure
   Ecosia and Qwant are creating a European alternative to big tech search engines by investing in infrastructure that respects user privacy. Their initiative emphasizes non-tracking and environmentally responsible digital services, significantly shifting towards data protection in the search industry (in German):
   https://www.inside-it.ch/ecosia-und-qwant-bauen-europaeische-such%C2%ADmaschinen-infra%C2%ADstruktur-20241112
   
2. Reverse engineering iOS 18 inactivity
   iOS 18’s inactivity reboot is like a security guard for your phone. After 3 days of no activity, it forces the phone to restart, ensuring that all encryption keys stay secure in case someone tries to hack it.
   This post explores the intricate process of reverse engineering iOS 18’s inactivity feature, shedding light on its potential security implications. It reveals how inactivity timers might be leveraged to enhance privacy, challenging traditional methods of app monitoring:
   https://naehrdine.blogspot.com/2024/11/reverse-engineering-ios-18-inactivity.html?m=1
   
3. The new Obsidian Web Clipper
   Obsidian Web Clipper is a powerful, privacy-focused browser extension that lets you capture and save web content as durable, offline Markdown files. With easy annotation, highlights, and metadata capture, it turns browsing into a seamless research tool. Designed to protect against link rot and web changes, it offers customizable templates and smart saving rules. Open-source and free, Web Clipper is perfect for organizing everything from recipes to research, keeping your content private, secure, and always accessible:
   https://obsidian.md/blog/save-the-web/
   
4. The evolving world of data privacy: Trends and strategies
   This article explores the critical trends in data privacy and strategies organizations can adopt to stay compliant with global regulations, including GDPR and emerging privacy laws in regions like California, India, and China​:
   https://www.isaca.org/resources/news-and-trends/industry-news/2024/the-evolving-world-of-data-privacy-trends-and-strategies
   
5. Web Security: shaping the secure Web
   Seth Dobbs’ blog post highlights W3C’s ongoing work to ensure web security through standards development, reviews, and developer guidance. Emphasizing security as a human right, the post discusses efforts to combat phishing and other threats while promoting digital identity solutions for greater privacy. It also introduces the Security Web Application Guidelines (SWAG) group and the importance of decentralized identities:
   https://www.w3.org/blog/2024/web-security-shaping-the-secure-web/

How do you balance convenience and privacy when choosing online services? What strategies do you currently use to protect your personal data online? Do you think current privacy regulations go far enough to protect users from security breaches? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions about Security here: #8, #17, #22, #27, #32, #44, #54, #62, #76, #84, #93, #106, #117, #128, #142, #145, #164, #169, #182, #203, #223, #227, #228, #231

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

Last Thursday we celebrated the 10th anniversary of VSHN with a lavish party where the next ten years were heralded in with food and drink, games and karaoke.

Speaking of which, do you know what else was released just a week prior to VSHN’s birthday? Kubernetes (K8s, https://en.wikipedia.org/wiki/Kubernetes)! It seems that some truly great seeds were planted back in September 2014!

So that’s why in this VSHN.timer we’ll once again be looking at Kubernetes, the universally popular open-source container orchestration system for automating software deployment, scaling, and management.

1. What the heck is K8s?
   If you have been living under a rock for the past 10 years, here’s Kubernetes explained in 100 seconds:
   https://youtu.be/PziYflu8cB8?si=Kn7GOZQQ5sVDiMJD
   
2. Dynamic Kubernetes API Server for CozyStack
   Kubernetes continues to evolve, offering unprecedented flexibility for developers and operators alike. This post dives into how CozyStack leverages a dynamic Kubernetes API server to enhance performance and customization, making it a perfect fit for cloud-native environments. Discover how this innovation reshapes the way we interact with Kubernetes APIs:
   https://kubernetes.io/blog/2024/11/21/dynamic-kubernetes-api-server-for-cozystack
   
3. You have built a Kubernetes
   Welcome to a cautionary tale for anyone who’s ever thought “I’ll just keep it simple and avoid Kubernetes.” In this amusing yet relatable journey, we follow a well-meaning developer who, in an effort to sidestep the complexities of container orchestration, ends up creating a tangled web of shell scripts and custom solutions:
   https://www.macchaffee.com/blog/2024/you-have-built-a-kubernetes
   
4. Comprehensive container tools by Red Hat
   Red Hat is doubling down on its commitment to Kubernetes by contributing a full suite of container tools to the Cloud Native Computing Foundation. These tools promise to simplify containerized application development and operations, paving the way for a more efficient cloud-native ecosystem:
   https://www.redhat.com/en/blog/red-hat-contribute-comprehensive-container-tools-collection-cloud-native-computing-foundation
   
5. Exoscale SKS: simplified Kubernetes management
   Managing Kubernetes clusters doesn’t have to be complex. Exoscale’s Scalable Kubernetes Service (SKS) offers a streamlined approach to cluster management, making it accessible to businesses of all sizes. Dive into how Exoscale is turning Kubernetes management into a breeze for developers and IT teams alike:
   https://www.exoscale.com/syslog/exoscale-sks

What has been your most memorable experience (good or bad) working with Kubernetes over the last 10 years? How do you balance Kubernetes‘ powerful capabilities with its inherent complexity in your projects? What innovations or tools do you think have had the most significant impact on Kubernetes‘ ecosystem recently? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions about Kubernetes: #4, #8, #11, #14, #16, #19, #23, #37, #46, #49, #59, #64, #74, #82, #97, #99, #102, #109, #118, #126, #142, #146, #163, #187, #211, #226

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

The cloud computing realm is a constantly shifting landscape, akin to a high-stakes game of chess where the pieces are data centers, serverless functions, and edge devices. Organizations must stay nimble, adaptable, and well-informed to come out on top. In this blog post, we’ll dive into the latest cloud developments equipping you with the insights needed to make your cloud strategy soar.

1. US Clouds under Trump: Trust no one!
   This article sounds the alarm on the growing trust issues surrounding US-based cloud services under the Trump administration. It’s a cautionary tale that reminds us to always keep a skeptical eye on our cloud providers, lest we find ourselves in a data-driven minefield:
   https://dnip.ch/2024/11/08/vogt-am-freitag-us-clouds-unter-trump-trau-schau-wem (in German)
   
2. Get out of the Cloud!
   The cloud may have once been the promised land, but it seems that some organizations are now looking to break free from its grasp – at least partially. This report from IDC delves into the reasons behind this trend, shedding light on the cost, security, and compliance concerns that are driving companies to rethink their cloud strategies:
   https://www.heise.de/en/news/IDC-Many-companies-want-partly-out-of-the-cloud-10001934.html
   
3. GNOME Infrastructure Migration to AWS
   The GNOME project’s decision to migrate their infrastructure to Amazon Web Services (AWS) is a fascinating case study in the ever-evolving cloud landscape. This blog post takes us behind the scenes, revealing the rationale and process behind this strategic move, which could inspire other organizations to follow suit:
   https://www.dragonsreach.it/2024/11/16/gnome-infrastructure-migration-to-aws
   
4. Coolify!
   Coolify is a one-stop-shop for hosting your apps, databases, and services without the hassle of managing servers. This open-source PaaS platform promises cost savings, total data control, and a user-friendly interface – positioning it as a compelling alternative to the Heroku’s and Netlify’s of the cloud world. Whether you’re looking to cut costs or take back ownership of your digital infrastructure, Coolify could be the self-hosted solution you’ve been searching for:
   https://coolify.io
   
5. postmarketOS shares lessons from its GitLab transition
   postmarketOS has successfully migrated from gitlab.com to a self-hosted instance at gitlab.postmarketos.org, a journey filled with lessons learned that may benefit other free software projects considering a similar move. The reasoning behind the migration centered around concerns over gitlab.com’s evolving requirements, which posed barriers for potential contributors. The migration process was not without its challenges, but the team persevered to deliver a seamless transition:
   https://postmarketos.org/blog/2024/10/14/gitlab-migration

The cloud computing frontier is a dynamic and ever-changing landscape, but with the right insights and strategies, you can navigate it with confidence. By staying informed, adaptable, and open to new technologies, you can position your organization for success in the digital age, leaving your competitors in the dust.

What keeps you up at night when it comes to managing your organization’s cloud infrastructure? Are you exploring ways to strike the perfect balance between the benefits of cloud computing and the need for data sovereignty and control? (indeed an exciting question, which our own Tobias Brunner also raised at the last Cloud Native Computing Meetup: https://youtu.be/8WuAGeSHIao) Which cloud-native technologies or approaches are you most excited about, and how do you plan to leverage them to drive innovation in your business? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS²: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

Web development is a vibrant and rapidly changing field that shapes how we interact with the digital world. With an ever-growing array of frameworks and tools at their disposal, developers are constantly seeking innovative solutions to enhance user experiences and streamline their workflows. In this post, we’ll explore various perspectives on popular web development frameworks, including exciting alternatives to established platforms and the challenges that developers face in this dynamic landscape.

1. Why World War WordPress will end with a Zombie Fork
   Darnell Clayton paints a vivid picture of the ongoing conflicts within the WordPress community, suggesting that the fragmentation of this once-unified platform may lead to a „zombie fork.“ This thought-provoking piece examines the implications of these divisions and what they mean for the future of WordPress and its users:
   https://darnell.day/why-world-war-wordpress-will-end-with-a-zombie-fork
   
2. WordPress alternatives
   After reading the previous post, this one would be logical. This insightful article dives into a treasure trove of WordPress alternatives, showcasing platforms that cater to diverse needs and preferences. From minimalist site builders to robust content management systems, David Darnes highlights the unique features and benefits of each option, empowering developers and users to make informed choices for their web projects:
   https://darn.es/wordpress-alternatives
   
3. Why I’m over GraphQL
   In this candid reflection, Matt Bessey reveals his growing frustration with GraphQL, highlighting its complexities and performance pitfalls. He advocates for simpler alternatives that can deliver the same functionality without the overhead, sparking a conversation about the balance between power and usability:
   https://bessey.dev/blog/2024/05/24/why-im-over-graphql
   
4. Cursed knowledge from Immich
   The Immich website invites readers to explore a collection of intriguing insights dubbed „cursed knowledge“. While the specifics may be shard to grasp, the concept promises to challenge conventional thinking and spark curiosity, making it a fascinating stop for those interested in the quirks of application development:
   https://immich.app/cursed-knowledge
   
5. A list of text-only news sites
   In an age of information overload, this article curates a list of text-only news websites that offer a refreshing, distraction-free reading experience. Perfect for those seeking clarity and focus, these sites prioritize content over flashy design, making them a valuable resource for news enthusiasts:
   https://greycoder.com/a-list-of-text-only-new-sites

As web development continues to evolve, staying informed about the latest frameworks and tools is crucial for developers aiming to create impactful digital experiences. By exploring alternatives and understanding the challenges within the community, developers can make more informed decisions that elevate their projects and delight users.

What web development frameworks have you found most effective in your projects, and why? Have you ever faced challenges with a specific framework, and how did you overcome them? What features do you believe are essential in a web development framework to improve user experience? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS²: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Tomorrow, Tuesday, is International Internet Day. Since 2005, the world celebrates this day on an annual basis. The festivities take place on October 29th because it commemorates a watershed moment in internet history: the day in 1969 when the first electronic message was sent from one machine to another. It recalls a time when obtaining and sharing information was not as straightforward as conducting a Google search or making a video call.

Charley Kline, a junior researcher, sent a message with the word ‚login‘ from a UCLA computer to one at the Stanford Research Institute. Unfortunately, only the letters L and O were sent before the entire system crashed. Since then, the Internet has evolved into one of the most vital aspects of our lives, and most of us cannot fathom life without it.

Today’s VSHN.timer is therefore dedicated to the Internet. So, without further ado:

1. Gareth Edwards explores the surprising intersection of international geopolitics and the digital domain, diving into how Britain’s handover of the Chagos Islands to Mauritius might spell the end of the .io domain. As tech and gaming companies like GitHub and itch.io have popularized this suffix, its potential disappearance raises questions about the stability of online infrastructure. Through historical precedents, Edwards reveals how physical borders – and their shifts – have lasting impacts on the digital space, reminding tech founders to think beyond the virtual world when choosing domains:
   https://every.to/p/the-disappearance-of-an-internet-domain
   
2. But of course there are at least three opinions on any given topic. So despite what you just read above, Andrew Allemann assures .io domain holders that their domains are likely safe, even as Britain prepares to hand the British Indian Ocean Territory over to Mauritius. While ICANN has policies to retire country code domains when territories change hands, Allemann argues that removing the popular .io would be disruptive to the domain system’s stability, making such a move unlikely. Instead, he suggests that .io’s management could remain with its current registry or transition to Mauritius, with minimal impact on users – aside from possible fee adjustments:
   https://domainnamewire.com/2024/10/09/io-domain-names-arent-going-away
   
3. DuckDuckGo has launched AI Chat, a free and private way to access popular AI chatbots like OpenAI’s GPT-4o mini, Anthropic’s Claude 3 Haiku, and open-source models such as Meta Llama 3.1. True to DuckDuckGo’s privacy mission, AI Chat is fully anonymous, meaning no chats are saved or traced back to users, with providers storing interactions temporarily under strict agreements. Accessible via duck.ai or directly within DuckDuckGo search, AI Chat lets users toggle easily between AI-generated responses and traditional search, adding flexibility for exploring new topics securely:
   https://spreadprivacy.com/ai-chat
   
4. Speaking of DuckDuckGo: Do you already know DuckDuckGo Lite? It’s a minimalist version of the well-known privacy-focused search engine, designed for quick and lightweight browsing. It provides essential search features while minimizing data load, ideal for users needing speed and privacy on limited internet connections:
   https://lite.duckduckgo.com/lite
   
5. Have you heard of the Social Web Foundation? it aims to cultivate a vibrant, inclusive Fediverse. They’re committed to growing its user base, enriching online interactions, and unlocking new creative possibilities. A healthy Fediverse is key, supporting free expression while empowering users to tailor their experience and filter unwanted content. Financial sustainability is crucial, so they’re exploring diverse funding models – from ad-supported frameworks to non-profit backing – to keep providers and developers thriving. Ultimately, they envision a multi-polar Fediverse, where no single entity dominates, fostering a balanced and innovative online community for everyone:
   https://socialwebfoundation.org
   
   Speaking of the Fediverse: Are you following us on Mastodon yet?
   https://mastodon.vshn.social/@vshn

How do you feel about the potential risks and rewards of using country-code domains like .io or .ai for your online presence? Do you think privacy-focused tools, like DuckDuckGo’s anonymous AI chat, will influence how people interact with the Internet? What role do you believe decentralized platforms like the Fediverse should play in the future of social media? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS²: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

Linux and UNIX systems continue to be the backbone of many servers, infrastructures, and enterprise technologies. With their flexibility, robustness, and open-source nature, they offer developers and system administrators an extensive toolkit for performance optimization, security, and innovation. This post explores a few recent developments in the Linux and UNIX ecosystem, from security exploits to performance monitoring and hardware innovations.

1. Attacking UNIX via CUPS – Part I
   The Common UNIX Printing System (CUPS) is widely used across UNIX and Linux systems. This article highlights vulnerabilities found in CUPS, showcasing how attackers can exploit these flaws to compromise UNIX systems. It’s a deep dive into the intricacies of UNIX security and provides insights into safeguarding against such vulnerabilities:
   https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I
   
2. How to See GPU Usage on Linux
   Monitoring GPU usage on Linux can be challenging, but it’s essential for performance optimization, especially in environments utilizing hardware acceleration or graphics-intensive applications. This guide outlines tools and techniques for keeping track of your system’s GPU usage, making it easier to ensure that resources are being utilized efficiently:
   https://www.geekersdigest.com/how-to-see-gpu-usage-on-linux
   
3. Running Linux on Intel 4004
   The Intel 4004, the first commercially available microprocessor, holds a special place in tech history. A developer has taken on the challenge of running Linux on this piece of hardware, showcasing the adaptability and scalability of Linux even on legacy processors. This project highlights Linux’s lightweight nature and versatility:
   https://dmitry.gr/?r=05.Projects&proj=35.%20Linux4004
   
4. OpenSSH 9.9 Released
   OpenSSH 9.9 is here, offering cutting-edge security enhancements and preparing for a quantum-resistant future. This release introduces hybrid post-quantum key exchange along with improved controls for managing connections and faster NTRUPrime code. With a range of bug fixes and performance optimizations, OpenSSH 9.9 sets the stage for enhanced security in a post-quantum world:
   https://linuxiac.com/openssh-9-9-released
   
5. Valkey 8.0 – In-Memory Database for Linux
   Valkey 8.0 introduces new functionalities for this in-memory database solution, designed for high performance and low-latency operations. Perfect for applications requiring real-time data processing, this release demonstrates the continual innovation within Linux’s database systems, providing greater speed and flexibility:
   https://linuxiac.com/valkey-8-0-in-memory-database

Linux and UNIX systems continue to evolve, with advancements in security, performance, and adaptability. Whether it’s optimizing hardware usage, addressing vulnerabilities, or pushing the limits of hardware compatibility, these systems remain indispensable in the tech landscape.

Have you faced any challenges monitoring or optimizing hardware usage on Linux or UNIX systems? How do you prioritize security patches like those in OpenSSH 9.9 in your infrastructure? What unique projects have you worked on that push the limits of Linux or UNIX in unconventional ways? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions about Linux here: #45, #55, #72, #96, #105, #125, #161, #184, #206, #229

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every week, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

As you know, VSHN.timer is your go-to for no-nonsense, fact-driven content! 😎 We keep it real – and usually keep it short, too! But every now and then, we like to shake things up with something a little more controversial. Guess what? Today’s one of those days, and we’re here to ruffle some feathers!

That’s why here are five links to tasty, subjective blog articles in which the author raves on about some well assorted chaoses!

1. In this fiery post, Tommy Johnston spills the tea on why he’s ditching Stripe for good. After being ghosted by their support team with copy-paste replies and zero real help, his business came to a screeching halt. From a simple misunderstanding to full-blown chaos, Tommy’s tale is a rollercoaster of frustration, miscommunication, and lessons learned. If you rely on Stripe, buckle up—you might want a backup plan!
   https://www.tommy-johnston.com/blog/stripe-support-disaster
   
2. Ever felt like you were being held hostage by your own home’s air conditioning system? That’s precisely what happened to one frustrated homeowner when their tablet-controlled Advantage Air system threw in the towel just six months past warranty. Join them on a wild DIY adventure as they ditch the outrageous $1,697 quote for a new control system and transform a vintage Galaxy Tab 4 into a trusty air con sidekick!
   https://blog.hopefullyuseful.com/blog/advantage-air-ezone-tablet-diy-repair
   
3. Get ready to dive into the intriguing world of software licensing, where open source meets proprietary pitfalls! With another company making headlines by switching their software license, the age-old question resurfaces: Does a license change really boost financial fortunes? Buckle up as we explore the trends, challenges, and mixed outcomes faced by companies navigating this turbulent terrain!
   https://redmonk.com/rstephens/2024/08/26/software-licensing-changes-and-their-impact-on-financial-outcomes
   
4. While we’re on the topic: Is the Open Source Bubble about to burst? While open source software isn’t a flashy tech hype bubble like the metaverse, it certainly faces its own set of growing pains. With a surge in contributions and a staggering economic impact, the stakes have never been higher. But beneath this shiny surface, cracks are forming that could shake the very foundations of the community:
   https://tarakiyee.com/is-the-open-source-bubble-about-to-burst
   
5. In August, watchTowr Labs took a wild ride, hijacking parts of the global .mobi domain! What started as a “well-intentioned” quest to expose vulnerabilities in WHOIS clients spiraled into an adventure beyond anyone’s wildest dreams! 😅 Buckle up for the ride!
   https://labs.watchtowr.com/we-spent-20-to-achieve-rce-and-accidentally-became-the-admins-of-mobi

How did you like the articles? Could you not help smiling or raising your eyebrows? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions about Open Source: #152, #170, #191, #194, #214, #234, #235

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

New technological advancements and developments are constantly reshaping the way we live, work, and interact with the digital realm. And some innovations also generate exciting stories to tell on top of that! In this VSHN.timer, let’s look at five exciting technological challenges and their tales.

1. Voyager 1 team accomplishes tricky thruster swap
   NASA’s Voyager 1 probe has overcome a major issue with its thrusters, crucial for keeping the spacecraft pointed toward Earth to receive commands and send data. A 47-year-old fuel tube, clogged with silicon dioxide, reduced the efficiency of its thrusters. After careful planning, engineers successfully switched to a different set of thrusters. Despite challenges posed by the spacecraft’s age, like reduced power and cold temperatures, they safely warmed up the thrusters by reallocating power, ensuring Voyager 1 remains on its interstellar journey, gathering data from beyond the solar system:
   https://blogs.nasa.gov/voyager/2024/09/10/voyager-1-team-accomplishes-tricky-thruster-swap
   
2. What’s new in Unicode 16.0
   The Unicode Consortium has just released Unicode 16.0, introducing eight new emojis including a face with bags under its eyes, a splatter, and a harp. While these emojis will roll out to devices over the next year, the update also adds over 5000 non-emoji characters, including scripts from West Africa and Nepal, and nearly 4000 new Egyptian hieroglyphs. Keep an eye out for your favorite emojis to appear across platforms in 2025!
   https://blog.emojipedia.org/whats-new-in-unicode-16-0
   
3. WebP: The webpage compression format
   This blog post discusses the challenges of improving website performance through compression, specifically the hurdles of compressing content on GitHub Pages. The author starts by highlighting the limitations of GitHub Pages, which lacks support for the Brotli compression algorithm, forcing them to rely on less efficient gzip compression. The author then explores a series of compression alternatives, including using WebP, a format that offers significant size reductions over gzip for certain types of data:
   https://purplesyringa.moe/blog/webp-the-webpage-compression-format
   
4. The secret inside one million checkboxes
   In „The secret inside one million checkboxes“ the creator of a simple checkbox website is stunned to discover a group of brilliant teens using binary code to craft secret messages within the platform. What began as a quirky experiment turned into a technical playground, leading to intricate drawings, animations, and even a Discord community. The creativity and ingenuity of these young developers left the creator both emotional and deeply inspired:
   http://eieio.games/essays/the-secret-in-one-million-checkboxes
   
5. Tigris
   Tigris is a globally distributed, S3-compatible object storage service designed to provide low latency and seamless data access worldwide. Launched in public beta on Fly.io, Tigris allows developers to store and retrieve data using familiar S3 libraries, ensuring efficient and reliable performance across multiple regions. With Tigris, applications can achieve global data consistency and local-read performance effortlessly:
   https://www.tigrisdata.com

How do you think space exploration advancements, like those made by Voyager 1, will influence future missions? What role do you see image compression formats, like WebP, playing in the future of web development and mobile optimization? How can small design elements, like checkboxes, impact user experience in larger, more complex digital systems? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS²: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every week, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

Cloud computing isn’t just a tool – it’s a backbone of innovation. From powering global enterprises to enabling developers to scale their projects effortlessly, the cloud is redefining what’s possible in technology. Whether it’s the rise of European cloud initiatives like Gaia-X, the expansion of cloud infrastructure across new regions, or the challenges of running a SaaS business single-handedly, the cloud is at the center of it all.

In the articles below, we’ll dive into the latest trends, challenges, and breakthroughs in cloud computing. Let’s turn our focus to European cloud projects first, a topic that has been grossly neglected in the past:

1. Lidl vs. AWS – The age of EuroCloud
   This article discusses Lidl’s effort to challenge AWS with its cloud initiative, part of a broader trend of European companies investing in local cloud infrastructure:
   https://horovits.medium.com/lidl-is-taking-on-aws-the-age-of-eurocloud-b237258e3311
   
2. „Gaia-X is an expensive distraction“
   Gaia-X, the European cloud initiative, was mentioned in the previous text. This critical article argues that it’s a costly and ineffective project, diverting attention from more practical solutions:
   https://berthub.eu/articles/posts/gaia-x-is-an-expensive-distraction
   
3. Exoscale Block Storage now available in Frankfurt
   In addition to the new players, also established European cloud service providers have news to report: Here’s the announcement about the expansion of Exoscale’s block storage services to Frankfurt, boosting cloud infrastructure options in Europe:
   https://changelog.exoscale.com/en/block-storage-now-in-frankfurt
   
4. Forgejo update
   As a software developer, is it important to you where and by whom your code is stored? Wouldn’t a European code collaboration platform based on Open Source software be a tempting offer? Visit codey.ch for more information!
   There is also news about the underlying software Forgejo which recently transitioned from the MIT license to the GNU GPL v3+, solidifying its commitment to Free Software and avoiding the Open Core model seen in other platforms like GitLab and Gitea:
   https://forgejo.org/2024-08-monthly-update
   
5. Running a one-man SaaS for 9 years
   This article offers a deep dive into the personal journey of managing and growing a cloud-based SaaS business single-handedly over nearly a decade. The author Pēteris Caune, a long time Python developer from Valmiera, Latvia, reflects on the unique challenges faced, from technical hurdles to business scalability issues, and shares the strategies that enabled sustained growth and customer satisfaction:
   https://blog.healthchecks.io/2024/07/running-one-man-saas-9-years-in
   

Do you believe European cloud projects like Gaia-X can compete effectively with giants like AWS and Google Cloud? What strategies do you think are crucial for managing and scaling a cloud-based business successfully? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS²: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

The line separating genius from chaos in the rapidly evolving discipline of software development can often be very razor-thin. Imperfect codebases, while not flawless, often offer unique insights, fresh perspectives, and a touch of nostalgia that polished ones can’t replicate. Don’t miss point 5 on this!

Each of the following links opens a window into the captivating realm of software development, from the rise of a unified Python packaging system to the unexpected elegance found in a messy old codebase. Whether you’re here for the war stories or the technical wisdom, there’s something for everyone.

1. uv: Unified Python Packaging
   uv is a fast Python package manager written in Rust, initially released as a drop-in replacement for pip. Recently, it has expanded to offer comprehensive project management, tool management, Python installation, and script execution, making it a unified and high-performance solution for Python development:
   https://astral.sh/blog/uv-unified-python-packaging
   
2. Zed: Linux’s new code editor
   This blog post announces the arrival of the Zed code editor on the Linux platform, expanding its reach beyond macOS. It highlights Zed’s focus on speed, collaborative features, and a minimalistic interface designed to enhance developer productivity. The post also touches on the community-driven nature of Zed’s development, inviting Linux users to experience the editor’s blend of performance and usability while contributing feedback to refine its future updates:
   https://zed.dev/blog/zed-on-linux
   
3. A new git collaboration service
   The website „pr.pico.sh“ introduces Pico, a new git collaboration tool designed to simplify self-hosting and streamline collaboration by combining aspects of mailing lists and pull requests. It aims to create an efficient workflow where contributors and code owners interact via patches and SSH, bypassing the complexities of email and web-based code review systems. The tool boasts a minimal setup with a single binary for hosting and leverages local development environments for code reviews and collaboration:
   https://pr.pico.sh
   
4. Docs as Code
   This guide on Write the Docs explores the concept of treating documentation like software. It emphasizes using the same tools and processes for docs that are used in software development, such as version control, continuous integration, and issue tracking. By adopting this approach, teams can enhance collaboration, improve documentation quality, and maintain up-to-date content efficiently. The guide provides practical advice, examples, and best practices for implementing Docs as Code, making it an invaluable resource for modern technical writers and developers alike:
   https://www.writethedocs.org/guide/docs-as-code
   
5. The Ugliest Beautiful Codebase
   In this blog post, Jimmy Miller reflects on his first software job, where he encountered a legacy codebase that was simultaneously the worst and best he ever worked with. The post dives into the quirks and challenges of a massive, tangled system, including tables that exceeded SQL Server’s column limits, bizarre workarounds like „SequenceKey“, and a shipping bug buried under layers of empty methods. Despite the chaos, the lack of rigid structure allowed for creative problem-solving, making it a strangely rewarding experience:
   https://jimmyhmiller.github.io/ugliest-beautiful-codebase

Still have some energy left? Why not head over to GitHub Roast and put your colleagues‘ work through the ringer? 🙂
See you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions on programming: #18, #30, #33, #47, #50, #77, #88, #101, #103, #122, #137, #160, #174, #198, #218

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better…

…well, that would be the case if not a substantial part of VSHNeers were on their well-deserved summer holidays and our chat system wasn’t suffering from a lull as a result. That’s why this week we’re not sharing any gems from the chat, but instead five computer themed songs that you can load into your heavy rotation while relaxing on the beach:

„Computer World“ by Kraftwerk
The title track from their 1981 album, celebrating the rise of computers:

„Algorithm“ by Muse
A 2018 song from the album „Simulation Theory,“ exploring themes of technology and AI:

„Computer Games“ by Mi-Sex
A 1979 song that directly talks about computer games and the rise of video gaming culture:

„Computer City“ by Perfume
A 2006 J-pop song by the techno-pop group Perfume, celebrating the digital age and cityscapes powered by computers:

„Computerstaat“ by Abwärts
A 1980 German punk song that critiques the computerization of society:

Turn up the volume, enjoy the summer days and see you next week for another edition of VSHN.timer.

PS: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS²: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

Paris is hosting the Olympic Games for the third time in history. After 1900 and 1924, the sporting elite is battling it out in the French capital in 2024. Did you know that surfing broke the record for the farthest competition to be held outside the host city? (in Tahiti, 15,000km from Paris) Or that one of the newly added disciplines at the Paris Games is breaking (breakdancing)? And that the Olympic Games achieved gender equality in athlete numbers for the first time ever this year?

We are following the action closely and keeping our fingers crossed for our athletes and teams. The medal table currently looks like this:

While we’re on the subject of listicles, we’ve put together a few exciting ones that are more in keeping with the theme of this blog:

1. The Top 100 Tech Companies 2024:
   This list ranks the leading technology companies worldwide in 2024, showcasing their financial performance. The ranking highlights industry giants and rising stars across various tech sectors, emphasizing their contributions to the global tech landscape:
   https://coveragely.com/blog/metrics-and-analysis/the-top-100-tech-companies-2024
   
2. Top 10 Opportunities for Technology Companies in 2024
   EY identifies the top ten growth opportunities for tech companies in 2024, focusing on areas such as artificial intelligence, cybersecurity, and sustainable technology. The report provides strategic insights for companies to capitalize on emerging trends and drive innovation:
   https://www.ey.com/en_us/insights/tmt/top-10-opportunities-for-technology-companies-in-2024
   
3. Top 10 Technology Trends for 2024
   This article outlines the most influential technology trends for 2024, including advancements in AI, the rise of quantum computing, and the convergence of IT and security teams. It provides an overview of how these trends shape industries and impact global technology development:
   https://technologymagazine.com/top10/top-10-technology-trends-for-2024
   
4. Top 10 In-Demand Programming Languages for 2024
   Crossover lists the programming languages that are most sought after in 2024, such as Python, JavaScript, and Rust. The guide explains the strengths and ideal use cases for each language, helping developers and tech teams stay competitive in the evolving tech landscape:
   https://www.crossover.com/blog/top-10-in-demand-programming-languages-for-2024
   
5. Most Innovative Companies
   Fast Company’s list of the most innovative companies celebrates organizations that have made significant impacts through creativity and innovation. It covers a variety of sectors, highlighting how these companies are addressing contemporary challenges and pushing boundaries in their respective fields:
   https://www.fastcompany.com/most-innovative-companies/list

But now back to the topic mentioned at the outset: Are you following the Olympic Games? Do you have your heart set on a particular country or athletes and are they performing above your expectations? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timers here: https://www.vshn.ch/en/vshn-blog/category/vshn-timer

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

In a world where everything’s online, keeping our privacy and security intact has never been more crucial. With cyber threats constantly changing, we need to stay sharp and adapt. Today we dive into the latest incidents and breakthroughs in privacy and security, sharing how these challenges are tackled and what you can do to boost your digital safety.

1. CrowdStrike apology gift card
   In response to the widely publicised disruption we wrote about last week, CrowdStrike offered a $10 (!) gift voucher to affected partners as an apology – a gesture they say is aimed at improving customer relations and acknowledging the inconvenience caused. We’re sure the $10 was adequate compensation!
   https://techcrunch.com/2024/07/24/crowdstrike-offers-a-10-apology-gift-card-to-say-sorry-for-outage
   
2. OpenSSH vulnerability discovered
   The Hacker News highlights a newly discovered vulnerability in OpenSSH, a widely used tool for secure remote login. This security flaw could potentially allow attackers to execute unauthorized commands on affected systems. Regular security updates and vigilance are critically needed, even when using widely adopted open-source tools, as demonstrated in the report:
   https://thehackernews.com/2024/07/new-openssh-vulnerability-discovered.html
   
3. Twilio’s Authy app breach
   Another report from The Hacker News reveals a security breach in Twilio’s Authy app, a popular two-factor authentication tool. The breach exposed sensitive user data, raising concerns about the security of even well-regarded security applications. This incident underscores the importance of strong security measures and ongoing monitoring to safeguard user information:
   https://thehackernews.com/2024/07/twilios-authy-app-breach-exposes.html
   
4. Access to deleted and private GitHub Repo Data
   TruffleSecurity’s blog exposes a critical flaw in GitHub’s handling of deleted and private repository data. This vulnerability allows unauthorized access to sensitive information that was presumed to be secure. Unfortunately, many seem to have thought wrong!
   https://trufflesecurity.com/blog/anyone-can-access-deleted-and-private-repo-data-github
   
5. Proton Docs privacy-focused Editor
   The Verge reviews Proton Docs, a new document editor from Proton designed with privacy at its core. Unlike mainstream alternatives, Proton Docs ensures that user data remains private and secure, addressing growing concerns over data privacy in cloud-based applications. This tool represents a significant step forward in providing secure, privacy-centric productivity solutions​:
   https://www.theverge.com/2024/7/3/24190732/proton-docs-document-editor-privacy-google

How confident are you in the privacy and security measures of the software and platforms you use daily? What steps do you take to ensure your data remains secure when using online services and applications?In light of recent security breaches, do you believe companies are doing enough to protect user information? What improvements would you suggest? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions on security: #8, #17, #22, #27, #32, #44, #54, #62, #76, #84, #93, #106, #117, #128, #142, #145, #164, #169, #182, #203, #223, #227, #228, #231

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.

Welcome to another VSHN.timer! Every Monday, 5 links related to Kubernetes, OpenShift, CI / CD, and DevOps; all stuff coming out of our own chat system, making us think, laugh, or simply work better.

What a crazy weekend it was! For many employees, the end of work on Friday came unexpectedly early due to the faulty CrowdStrike update, while countless IT administrators have been putting in extra shifts over the last few days to get Windows systems up and running again. Thousands of travellers were stranded at airports, banks were down and even surgeries had to be postponed. The overall economic damage caused by these outages cannot yet be quantified, but will probably run into the billions.

What has this incident taught us? That extensive testing of updates before rollout is essential!
This may be one of the most serious IT failures of all time, but CrowdStrike and Microsoft are by no means the only companies to have suffered such mishaps. Here are five incidents that illustrate this.

1. British Airways
   A sudden surge of power after an outage wreaked havoc on British Airways‘ data center servers, triggering a colossal IT meltdown that stranded 75,000 passengers on May 27, 2017:
   https://www.theguardian.com/business/2017/may/31/ba-it-shutdown-caused-by-uncontrolled-return-of-power-after-outage
   
2. Google
   In 2020, Google experienced a significant service outage that, although only lasting around forty-five minutes, had a global impact. Gmail, YouTube, Google Calendar, and Google Home apps all crashed, along with third-party applications relying on Google for authentication. The root cause of the issue was insufficient storage capacity for the company’s authentication services:
   https://www.theguardian.com/technology/2020/dec/14/google-suffers-worldwide-outage-with-gmail-youtube-and-other-services-down
   
3. Dyn
   One of the biggest distributed denial of service (DDoS) attacks in history hit Dyn, a key backbone provider, in 2016. The assault came in three relentless waves, overpowering the company’s servers and leaving many internet users unable to access popular platforms like Twitter, Spotify, and Netflix:
   https://mse238blog.stanford.edu/2018/07/clairemw/the-2016-dyn-attack-and-its-lessons-for-iot-security
   
4. AWS
   In December 2021, Amazon Web Services (AWS) suffered a major outage that lasted several hours, disrupting operations for prominent companies like Netflix, Disney, Spotify, DoorDash, and Venmo. Amazon attributed the issue to an automation error that caused multiple systems to malfunction. The outage also blocked access to some cloud services, highlighting that even the largest and most secure cloud providers are not immune to downtime:
   https://www.pcmag.com/news/heres-why-a-vital-aws-region-went-down-on-dec-7
   
5. Meta
   On October 4, 2021, Meta’s hugely popular social media platforms – Instagram, Facebook, and WhatsApp – went dark for an astonishing six hours. A routine maintenance task gone wrong disconnected all Facebook data centers worldwide, impacting over 10 million users globally:
   https://engineering.fb.com/2021/10/05/networking-traffic/outage-details
   

Were you affected by the CrowdStrike incident? Or did you once contribute to a failure yourself? How do you ensure that updates are rolled out safely? Get in touch with us, and see you next week for another edition of VSHN.timer.

PS: check out our previous VSHN.timer editions about security: #8, #17, #22, #27, #32, #44, #54, #62, #76, #84, #93, #106, #117, #128, #142, #145, #164, #169, #182, #203, #223, #227, #228, #231

PS²: do you prefer reading VSHN.timer in your favorite RSS reader? Subscribe to this feed.

PS³: would you like to receive VSHN.timer every Monday in your inbox? Sign up for our weekly VSHN.timer newsletter.