{"id":303,"date":"2021-08-31T14:40:03","date_gmt":"2021-08-31T14:40:03","guid":{"rendered":"https:\/\/fde.cat\/?p=303"},"modified":"2021-08-31T14:40:03","modified_gmt":"2021-08-31T14:40:03","slug":"sre-weekly-issue-268","status":"publish","type":"post","link":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-268\/","title":{"rendered":"SRE Weekly Issue #268"},"content":{"rendered":"

View on sreweekly.com<\/a><\/p>\n

\n

A message from our sponsor, StackHawk:<\/h2>\n

Join StackHawk Tuesday May 4 at 9 am PT for a hands-on technical workshop! By the end of the session, you will have three types of security testing running in your GitHub pipeline. Register:
\nhttp:\/\/sthwk.com\/technical-workshop<\/a><\/p>\n<\/div>\n

Articles<\/h2>\n
\n
Manageable On-Call for Companies without Money Printers<\/a><\/div>\n
\n

The SRE book has a chapter covering on-call, but it\u2019s best suited for huge-scale companies. What should the rest of us do?<\/p>\n

Utsav Shah<\/p>\n<\/div>\n<\/div>\n

\n
Breaking the top five myths around chaos engineering<\/a><\/div>\n
\n

If you\u2019re feeling hesitant about chaos engineering, or you\u2019re trying to convince someone who is, this might be useful. The myths are:<\/p>\n

Myth #1: Chaos engineering is testing in production
\nMyth #2: Chaos engineering is about randomly breaking things
\nMyth #3: Chaos engineering is only for large, modern distributed systems
\nMyth #4: We don\u2019t need more chaos \u2013 we already have plenty!
\nMyth #5: Chaos engineering is only for very mature teams\/products<\/p>\n

Mikolaj Pawlikowski<\/p>\n<\/div>\n<\/div>\n

\n
Seeing Like an SRE: Site Reliability Engineering as High Modernism<\/a><\/div>\n
\n

Drawing parallels to the high modernism movement during the cold war, this article raises interesting questions about the direction SRE is going, and system administration in general.<\/p>\n

Laura Nolan \u2014 USENIX<\/p>\n<\/div>\n<\/div>\n

\n
Is faster actually safer? How software physics beats human psychology <\/a><\/div>\n
\n

Riffing off of a tweet by Charity Majors, this article explores the idea that moving faster can actually be safer, despite an urge one may feel to slow down.<\/p>\n

Bruce Johnston<\/p>\n<\/div>\n<\/div>\n

\n
NTSB Aircraft Accident Report: Eastern Air Lines, May 5, 1983<\/a><\/div>\n
\n

An extreme oversimplification of this incident would be: multiple engine failure on a plane subsequent to a maintenance error on all engines. This accident is cited<\/a> as a reason to have separate mechanics work on each engine, in hopes of avoiding duplicated errors.<\/p>\n

US National Transportation Safety Board (multiple authors)<\/p>\n<\/div>\n<\/div>\n

\n
How we ship code faster and safer with feature flags<\/a><\/div>\n
\n

[\u2026] in order to ship new features and improvements faster while lowering the risk in our deployments, we have a simple but powerful tool: feature flags.<\/p>\n

Alberto Gimeno \u2014 GitHub<\/p>\n<\/div>\n<\/div>\n

\n
Reverse debugging at scale<\/a><\/div>\n
\n

This one blew my mind. By recording instruction execution traces in a ring buffer, they\u2019re able to reconstruct enough information to step through the execution leading up to a crash \u2014 even though they weren\u2019t running the application under a debugger!<\/p>\n

Walter Erquinigo, David Carrillo-Cisneros, Alston Tang \u2014 Facebook<\/p>\n<\/div>\n<\/div>\n

\n
The Plane Paradox: More Automation Should Mean More Training<\/a><\/div>\n
\n

Automation is supposed to take some of the load off of the human operator, right? But in reality, humans need to build a mental model of what the automation is doing in order to use it safely and effectively.<\/p>\n

Shem Malmquist \u2014 WIRED<\/p>\n<\/div>\n<\/div>\n

Outages<\/h2>\n

YouTube<\/a>
\nMicrosoft Teams<\/a>
\nSRE WEEKLY<\/p>\n","protected":false},"excerpt":{"rendered":"

View on sreweekly.com A message from our sponsor, StackHawk: Join StackHawk Tuesday May 4 at 9 am PT for a hands-on technical workshop! By the end of the session, you will have three types of security testing running in your GitHub pipeline. Register: http:\/\/sthwk.com\/technical-workshop Articles Manageable On-Call for Companies without Money Printers The SRE book… Continue reading SRE Weekly Issue #268<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","footnotes":""},"categories":[8],"tags":[],"class_list":["post-303","post","type-post","status-publish","format-standard","hentry","category-sre","entry"],"jetpack_featured_media_url":"","jetpack-related-posts":[{"id":311,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-271\/","url_meta":{"origin":303,"position":0},"title":"SRE Weekly Issue #271","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com A message from our sponsor, StackHawk: Join StackHawk on Tuesday, May 25 for a hands-on authenticated security testing workshop. Follow along as we walk through three common authentication scenarios step-by-step. Register: http:\/\/sthwk.com\/auth-workshop Articles Naming names in incident writeups Should you keep things anonymous (\u201can engineer\u201d), or should\u2026","rel":"","context":"In "SRE"","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":255,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-252\/","url_meta":{"origin":303,"position":1},"title":"SRE Weekly Issue #252","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com A message from our sponsor, StackHawk: Interested in how you can automate application security testing with GitHub Actions? Check out this on demand webinar from StackHawk and Snyk and see how simple it is to get started. https:\/\/sthwk.com\/stackhawk-snyk Articles Building On-Call Culture at GitHub Their on-call started\u2026","rel":"","context":"In "SRE"","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":327,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-277\/","url_meta":{"origin":303,"position":2},"title":"SRE Weekly Issue #277","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com A message from our sponsor, StackHawk: Planelty saved weeks of work by implementing StackHawk instead of building an internal ZAP service. See how: https:\/\/sthwk.com\/planetly-stackhawk Articles FINRA Orders Record Financial Penalties Against Robinhood Financial LLC Remember all those Robinhood outages? The US financial regulatory agency is making Robinhood\u2026","rel":"","context":"In "SRE"","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":256,"url":"https:\/\/fde.cat\/index.php\/2021\/02\/03\/sre-weekly-issue-251\/","url_meta":{"origin":303,"position":3},"title":"SRE Weekly Issue #251","date":"February 3, 2021","format":false,"excerpt":"View on sreweekly.com Happy new year! A message from our sponsor, StackHawk: Still looking for a good new years resolution? How about adding application security testing to your CI\/CD pipeline with StackHawk. Get started with our free account. https:\/\/sthwk.com\/freeplan Articles Writing Runbook Documentation When You\u2019re An SRE Tips and tricks\u2026","rel":"","context":"In "SRE"","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":350,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-284\/","url_meta":{"origin":303,"position":4},"title":"SRE Weekly Issue #284","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com Like last week, I prepared this week\u2019s issue in advance, so no Outages section.\u00a0 Have a great week! A message from our sponsor, StackHawk: Trying to automate application and API security testing? See how StackHawk and Burp Suite Enterprise stack up: https:\/\/sthwk.com\/burp-enterprise Articles Alerting on SLOs like\u2026","rel":"","context":"In "SRE"","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":269,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-257\/","url_meta":{"origin":303,"position":5},"title":"SRE Weekly Issue #257","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com A message from our sponsor, StackHawk: Keeping your APIs secure requires thoughtful design and testing. Learn how to protect your REST, SOAP and GraphQL APIs from security vulnerabilities with StackHawk http:\/\/sthwk.com\/api-protection Articles Sometimes alerts have inobvious reasons for existing This one really got me thinking. Make sure\u2026","rel":"","context":"In "SRE"","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/posts\/303","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/comments?post=303"}],"version-history":[{"count":1,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/posts\/303\/revisions"}],"predecessor-version":[{"id":407,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/posts\/303\/revisions\/407"}],"wp:attachment":[{"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/media?parent=303"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/categories?post=303"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/tags?post=303"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}