{"id":311,"date":"2021-08-31T14:40:03","date_gmt":"2021-08-31T14:40:03","guid":{"rendered":"https:\/\/fde.cat\/?p=311"},"modified":"2021-08-31T14:40:03","modified_gmt":"2021-08-31T14:40:03","slug":"sre-weekly-issue-271","status":"publish","type":"post","link":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-271\/","title":{"rendered":"SRE Weekly Issue #271"},"content":{"rendered":"<p><a href=\"https:\/\/sreweekly.com\/sre-weekly-issue-271\/\" title=\"Permalink to SRE Weekly Issue #271\" class=\"email_only\">View on sreweekly.com<\/a><\/p>\n<div class=\"sreweekly-sponsor-message\">\n<h2>A message from our sponsor, StackHawk:<\/h2>\n<p>Join StackHawk on Tuesday, May 25 for a hands-on authenticated security testing workshop. Follow along as we walk through three common authentication scenarios step-by-step.<\/p>\n<p>Register:<br \/>\n<a href=\"http:\/\/sthwk.com\/auth-workshop\">http:\/\/sthwk.com\/auth-workshop<\/a><\/p>\n<\/div>\n<h2>Articles<\/h2>\n<div class=\"sreweekly-entry\">\n<div class=\"sreweekly-title\"><a href=\"https:\/\/surfingcomplexity.blog\/2021\/05\/22\/naming-names-in-incident-writeups\/\">Naming names in incident writeups<\/a><\/div>\n<div class=\"sreweekly-description\">\n<p>Should you keep things anonymous (\u201can engineer\u201d), or should you say exactly who did what? Here\u2019s a solid argument for the latter.<\/p>\n<p>Lorin Hochstein<\/p>\n<\/div>\n<\/div>\n<div class=\"sreweekly-entry\">\n<div class=\"sreweekly-title\"><a href=\"https:\/\/which-50.com\/how-systems-complexity-reduces-uptime\/\">How Systems Complexity Reduces Uptime<\/a><\/div>\n<div class=\"sreweekly-description\">\n<p>This article explores the downsides to a design composed of independent parts such as with microservices.<\/p>\n<p>Ephraim Baron<\/p>\n<\/div>\n<\/div>\n<div class=\"sreweekly-entry\">\n<div class=\"sreweekly-title\"><a href=\"https:\/\/www.infoq.com\/presentations\/uber-user-simulation\/\">User Simulation for Rapid Outage Mitigation <\/a><\/div>\n<div class=\"sreweekly-description\">\n<p>Uber designed a tool they call Blackbox to perform simulated user requests and measure availability. I was struck by the candid discussion of complexity \u2014 no one person can understand how all of Uber\u2019s microservices go together.<\/p>\n<p>Carissa Blossom \u2014 Uber<\/p>\n<\/div>\n<\/div>\n<div class=\"sreweekly-entry\">\n<div class=\"sreweekly-title\"><a href=\"https:\/\/devops.com\/nobl9-makes-slo-specification-open-source\/\">Nobl9 Makes SLO Specification Open Source<\/a><\/div>\n<div class=\"sreweekly-description\">\n<p>They\u2019ve made a YAML specification and validator for expressing SLOs in a machine-readable format.<\/p>\n<p>Mike Vizard \u2014 Devops.com<\/p>\n<\/div>\n<\/div>\n<div class=\"sreweekly-entry\">\n<div class=\"sreweekly-title\"><a href=\"http:\/\/www.brendangregg.com\/blog\/2021-05-23\/what-is-observability.html\">What is Observability<\/a><\/div>\n<div class=\"sreweekly-description\">\n<p>A new spin: this one makes the distinction between \u201cexperimental tools\u201d that affect the state of the system, and \u201cobservability tools\u201d that are read-only.<\/p>\n<p>Brendan Gregg<\/p>\n<\/div>\n<\/div>\n<div class=\"sreweekly-entry\">\n<div class=\"sreweekly-title\"><a href=\"https:\/\/rootly.io\/blog\/the-incident-review-4-odd-incidents-caused-by-animals\">The Incident Review: 4 Odd Incidents Caused by Animals<\/a><\/div>\n<div class=\"sreweekly-description\">\n<p>\u201cContributing factors: moose and squirrel.\u201d<\/p>\n<p>JJ Tang \u2014 Rootly<\/p>\n<\/div>\n<\/div>\n<div class=\"sreweekly-entry\">\n<div class=\"sreweekly-title\"><a href=\"https:\/\/tech.okcupid.com\/when-debuggers-lie-700e40f11891\">When Debuggers Lie<\/a><\/div>\n<div class=\"sreweekly-description\">\n<p>Every once in awhile, I need to pull out gdb. In times like those, it\u2019s useful to have this kind of thing floating around in the back of my mind.<\/p>\n<p>Brendon Scheinman \u2014 okcupid<\/p>\n<\/div>\n<\/div>\n<h2>Outages<\/h2>\n<p><a href=\"https:\/\/status.slack.com\/2021-05\/33aed870657e30a0\">Slack<\/a><br \/>\n<a href=\"https:\/\/www.independent.co.uk\/news\/world\/americas\/colonial-pipeline-cyberattack-shutdown-b1849644.html\">Colonial Pipeline<\/a><\/p>\n<p>The same major US oil pipeline mentioned here last week is still having network issues.<\/p>\n<p><a href=\"https:\/\/www.benzinga.com\/markets\/cryptocurrency\/21\/05\/21198280\/major-crypto-exchanges-binance-and-coinbase-down-as-crypto-selloff-intensifies-gas-fees-sk\">Binance and Coinbase<\/a><br \/>\n<a href=\"https:\/\/9to5google.com\/2021\/05\/18\/youtube-playback-error-outage-may18\/\">YouTube<\/a><br \/>\n<a href=\"https:\/\/www.11alive.com\/article\/travel\/long-lines-at-atlanta-airport-after-server-issue-affects-check-ins-around-the-country\/85-b502967d-8abe-4c04-aaa2-75fb7b2595cc\">Sabre<\/a><\/p>\n<p>Sabre is a backend service provider used by a lot of airlines.<\/p>\n<p><a href=\"https:\/\/status.azure.com\/en-us\/status\/history\/\">Azure web portal<\/a><\/p>\n<p>There\u2019s an interesting followup post about a DNS issue.<\/p>\n<p>SRE WEEKLY<\/p>\n","protected":false},"excerpt":{"rendered":"<p>View on sreweekly.com A message from our sponsor, StackHawk: Join StackHawk on Tuesday, May 25 for a hands-on authenticated security testing workshop. Follow along as we walk through three common authentication scenarios step-by-step. Register: http:\/\/sthwk.com\/auth-workshop Articles Naming names in incident writeups Should you keep things anonymous (\u201can engineer\u201d), or should you say exactly who did&hellip; <a class=\"more-link\" href=\"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-271\/\">Continue reading <span class=\"screen-reader-text\">SRE Weekly Issue #271<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","footnotes":""},"categories":[8],"tags":[],"class_list":["post-311","post","type-post","status-publish","format-standard","hentry","category-sre","entry"],"jetpack_featured_media_url":"","jetpack-related-posts":[{"id":303,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-268\/","url_meta":{"origin":311,"position":0},"title":"SRE Weekly Issue #268","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com A message from our sponsor, StackHawk: Join StackHawk Tuesday May 4 at 9 am PT for a hands-on technical workshop! By the end of the session, you will have three types of security testing running in your GitHub pipeline. Register: http:\/\/sthwk.com\/technical-workshop Articles Manageable On-Call for Companies without\u2026","rel":"","context":"In &quot;SRE&quot;","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":350,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-284\/","url_meta":{"origin":311,"position":1},"title":"SRE Weekly Issue #284","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com Like last week, I prepared this week\u2019s issue in advance, so no Outages section.\u00a0 Have a great week! A message from our sponsor, StackHawk: Trying to automate application and API security testing? See how StackHawk and Burp Suite Enterprise stack up: https:\/\/sthwk.com\/burp-enterprise Articles Alerting on SLOs like\u2026","rel":"","context":"In &quot;SRE&quot;","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":255,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-252\/","url_meta":{"origin":311,"position":2},"title":"SRE Weekly Issue #252","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com A message from our sponsor, StackHawk: Interested in how you can automate application security testing with GitHub Actions? Check out this on demand webinar from StackHawk and Snyk and see how simple it is to get started. https:\/\/sthwk.com\/stackhawk-snyk Articles Building On-Call Culture at GitHub Their on-call started\u2026","rel":"","context":"In &quot;SRE&quot;","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":254,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-253\/","url_meta":{"origin":311,"position":3},"title":"SRE Weekly Issue #253","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com A message from our sponsor, StackHawk: How do you know if your GraphQL API is secure? Watch StackHawk CSO Scott Gerlach walk through how to run application security tests for GraphQL-backed apps. http:\/\/sthwk.com\/graphql-webinar Articles May 30 SSL incident TLS can be such a headache. This was an\u2026","rel":"","context":"In &quot;SRE&quot;","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":269,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-257\/","url_meta":{"origin":311,"position":4},"title":"SRE Weekly Issue #257","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com A message from our sponsor, StackHawk: Keeping your APIs secure requires thoughtful design and testing. Learn how to protect your REST, SOAP and GraphQL APIs from security vulnerabilities with StackHawk http:\/\/sthwk.com\/api-protection Articles Sometimes alerts have inobvious reasons for existing This one really got me thinking. Make sure\u2026","rel":"","context":"In &quot;SRE&quot;","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":327,"url":"https:\/\/fde.cat\/index.php\/2021\/08\/31\/sre-weekly-issue-277\/","url_meta":{"origin":311,"position":5},"title":"SRE Weekly Issue #277","date":"August 31, 2021","format":false,"excerpt":"View on sreweekly.com A message from our sponsor, StackHawk: Planelty saved weeks of work by implementing StackHawk instead of building an internal ZAP service. See how: https:\/\/sthwk.com\/planetly-stackhawk Articles FINRA Orders Record Financial Penalties Against Robinhood Financial LLC Remember all those Robinhood outages? The US financial regulatory agency is making Robinhood\u2026","rel":"","context":"In &quot;SRE&quot;","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/posts\/311","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/comments?post=311"}],"version-history":[{"count":1,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/posts\/311\/revisions"}],"predecessor-version":[{"id":399,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/posts\/311\/revisions\/399"}],"wp:attachment":[{"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/media?parent=311"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/categories?post=311"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/fde.cat\/index.php\/wp-json\/wp\/v2\/tags?post=311"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}