talk & speaker

Bologna
 | 

Distillato di Abnormal DevOps Iterations

Abnormal DevOps Iterations è un podcast dove vengono invitati ospiti e personalità del mondo IT e DevOps. Pur essendo piuttosto giovane, il primo episodio è dell'Ottobre 2024, ha già avuto come ospiti personaggi come Patrick Debois e Kris Buytaert (tra i fondatori del movimento DevOps), Luke Kanies e Adam Jacob (creatori rispettivamente di Puppet e Chef), Manuel Pais (autore di Team Topologies) e molti altri. In questa presentazione facciamo una sintesi dei principi e concetti più interessanti espressi dagli ospiti di Abnormal DevOps Iterations. Un compendio, denso, brillante e profondo, di opinioni, riflessioni e pensieri sul mondo IT e DevOps da parte di protagonisti illuminati e attori della comunità DevOps.

Alessandro Franceschi

More Op than Dev. Since last century.

Alessandro Franceschi is working in IT since 1995 when he founds a Linux-based Internet Service Provider in Italy. In 2007, he starts using Puppet (version 0.21) while working as a sysadmin at the Bank of Italy. Over the years he develops the example42 Puppet modules and deliveres Puppet training and consulting over the world. In 2012 he is one of the organisers of DevOps days in Rome, pioneering DevOps principles in Italy. Now, he does things with Puppet, wonders what to do and guesses what's to come.

Leveraging PostgreSQL 17's JSONB for Enhanced Data Modeling and Performance

JSONB has been part of PostgreSQL since the ancient version 9.4. PostgreSQL 17's lates JSONB improvements provides a flexible and efficient way to store and query semi-structured data. Its indexing capabilities and optimized storage mechanisms make it ideal for handling large volumes of complex data, such as configuration settings, user profiles, and log data. While NoSQL databases like MongoDB have gained popularity, recent breaking changes and performance issues have raised concerns about their long-term suitability as a primary data storage solution. PostgreSQL's mature ecosystem, strong community support and proven reliability offer a compelling alternative for handling complex data workloads. The audience will learn about the JSONB functionalities available in PostgreSQL and the latest improvements making it a powerful allied to write applications at scale.

Federico Campoli

Freelance PostgreSQL consultant

Federico is a freelance consultant with long experience on PostgreSQL. He started his career as Oracle DBA in 2004 and fell in love with PostgreSQL in 2007. Previously he worked as data engineer for Transferwise. After several years spent in the UK he is now back in Italy. He’s an amateur jazz guitarist.

Automate or stagnate: surviving the era of continuous updates

Keeping versions of softwares up-to-date is becoming a challenge, especially when tools fail to keep up with the constantly evolving ecosystems. We explore the limits and risks of lack of automations around dependency management and the journey towards building robust update pipelines using the open source updatecli tool.

Giovanni Toraldo

DevOps Engineer @ Hyland

Open Source enthusiast, software developer, writer and public speaker. Sometimes I get teleported into the 14th century.

Linux user namespaces: a blessing and a curse

Unprivileged Linux user namespaces is a rather controversial topic in the security community, Linux Kernel community and in software engineering in general. On one side it allows building unprivileged and sandboxed services and applications, which would otherwise require elevated privileges to successfully run and provide features to their users. Not granting privileges to such applications follows the least privilege principle and makes our systems more secure. On the other side, this mechanism has been repeatedly used in various vulnerabilities and exploits as a starting attack vector, multiplying the damage and impact of these exploits. And since it became so popular within the offensive industry, many Linux distributions and security guidances started recommending disabling this feature altogether. There is an ongoing debate whether unprivileged user namespaces provide more security or make the system more vulnerable. In this presentation we will review how user namespaces might help building sandboxed secure applications. But we will also show how a recently discovered Linux kernel bug turned into a security vulnerability just because user namespaces are available on the system. Finally, we will give recommendations on how to get the best of both worlds: allow well-behaved applications to utilize user namespaces for better security, while blocking the feature for potentially malicious users/code.

Ignat Korchagin

Cloudflare, Linux Guru

Ignat is a systems engineer at Cloudflare working mostly on Linux, platforms and hardware security. Ignat’s interests are cryptography, hacking, and low-level programming. Before Cloudflare, Ignat worked as a senior security engineer for Samsung Electronics’ Mobile Communications Division. His solutions may be found in many older Samsung smart phones and tablets. Ignat started his career as a security researcher in the Ukrainian government’s communications services.

Observing Python applications with OpenTelemetry

In this talk we'll see the options we have to add observability to Python applications with OpenTelemetry without touching our application code. In OpenTelemetry this is called autoinstrumentation or zero-code instrumentation. We'll see: - The OpenTelemetry operator, a Kubernetes operator to manage collection and inject autoinstrumentation to the pods - OpenTelemetry Python own autoinstrumentation solution based on the opentelemetry-instrument wrapper We'll evaluate the differences between the two solutions highlighting their strong and weak spots. We are also taking a look on the work done inside the OpenTelemetry project around GenAI. You may have noticed than a ton of GenAI code is written in Python :)

Riccardo Magliocchetti

Senior Software Engineer @ Elastic

Riccardo is a Python software developer. In the years has contributed to quite a different range of open source software and run a bunch of local meetups. These days is working on OpenTelemetry and is a maintainer for the OpenTelemetry Python SIG.

To cloud, or not to cloud?

Traditionally, the cloud has been the go-to choice for applications demanding elasticity, scalability, and cost-efficiency. However, what if you could achieve these benefits without the complexities of cloud infrastructure? Kamal aims to democratize cloud-like deployment experiences. You can effortlessly deploy web applications on various platforms, from budget-friendly cloud providers like Digital Ocean, Hetzner, and OVH to self-managed bare-metal servers.

Roberto Franchini

Principal Software Engineer @ ArcadeData

A passionate software engineer, I've dedicated over 20 years to crafting elegant solutions. My journey has taken me from the monolithic era to the microservices revolution, from the manual toil of bare-metal deployments to the automated magic of cloud-native architectures. I've delved into the depths of data engineering, building high-performance data pipelines, and I've mastered the intricacies of database systems. And all this will be lost like tears in the rain.