EKS Pod Identity is a feature that enables applications running on EKS to securely access AWS services, such as AWS Secrets Manager, without the need for hardcoding or managing access credentials. Instead, EKS Pod Identity uses IAM roles to grant permissions to pods, allowing them to interact with AWS services seamlessly. In my last post, … Read More
Lear how to fetch metrics and create custom endpoints for a Prometheus ServiceMonitor to scrape using the prometheus_client library in Python.
When Kubernetes first hit the scene for container orchestration, devops engineers all asked, “Can I run my database in here?” We quickly learned the answer, “Hell no!”
Two months ago I didn’t give much thought to controlling a program’s access to the Internet. Then Log4Shell happened. This post looks at three ways that you can control what an in-VPC application is allowed to talk to.