This Week I Learned - Week #41 2020
This Week I Learned -
* 20+ best practices to set up networking for workloads migrated to Azure
* Advisor Score measures how well you’re adopting Azure best practices, comparing and quantifying the impact of the Advisor recommendations you’re already following, and the ones you haven’t implemented yet. Think of it as a gap analysis for your deployed Azure workloads. Advisor Score provides customers with a prioritized list of recommendations specifying the exact impact an individual recommendation will have on their overall score. This helps customers overcome “recommendation fatigue” with a unifying system to compare and prioritize recommendations and gives customers the ability to track their progress over time.
* Both load balancer & reverse proxy sit between clients and servers, accepting requests from the former and delivering responses from the latter. Whereas deploying a load balancer makes sense only when you have multiple servers, it often makes sense to deploy a reverse proxy even with just one web server or application server.
* Azure Application Gateway is a managed web traffic load balancer and HTTP(S) full reverse proxy that can do secure socket layer (SSL) encryption and decryption. WAF protects inbound traffic to the web workloads, and the Azure Firewall inspects inbound traffic for the other applications. Network design options that combine both Azure Application Gateway & Azure Firewall services -
* Service endpoints secure the listening service. With Service Endpoints, the source address must be in an Azure Virtual Network subnet.
* Flexera acquired RightScale in 2018 and RISC Networks (which built CloudScape) in 2019. For the third straight year, Flexera has been ranked in the Gartner Magic Quadrant 's Leaders quadrant for Software Asset Management Tools (July 2020).
* CloudScape features:
- Agentless discovery of assets and business services
- Technical and business assessment for cloud migration
- Recommendations to optimize and use automated policies to reduce spend and risk
- Application dependency mapping
- Cloud migration prioritization
- IaaS cost modeling
- Asset and software lifecycle analysis
- Enables ITSM/CMDB updates
* Selenium is an umbrella project for a range of tools and libraries that enable and support the automation of web browsers. At the core of Selenium is WebDriver, an interface to write instruction sets that can be run interchangeably in many browsers.
* wit.ai allows developers to build applications and devices that users can talk or text to.
* Dialogflow, formerly api.ai, is a chatbot development platform acquired by Google in 2016.
* Cloud Run is based on knative, which is an open source project that uses kubernetes underneath to produce a serverless user experience. If all you need to do is write code, and that code can be run in containers easily, serverless may be a good option for you. The serverless approach has some limitations/considerations around application architecture. Such as dealing with stateful apps. Stateless microservices tend to work best, though there is more to it than that.
* Google has been developing and using containers to manage our applications for over 12 years. Everything at Google runs in containers.
* Buildpacks is an open-source technology to create secure, production-ready container images from source code and without a Dockerfile. Buildpacks are distributed and executed in OCI images called builders. Each builder can have one or more buildpacks.
* Choosing between Istio & Traffic Director - Istio is a service mesh for Kubernetes and the control plane runs in the cluster. Traffic director is Google own dedicated service mesh solution that provides a managed control plane and can manage traffic at global scale for any services, whether running on Kubernetes or not as long as they either have an Envoy proxy or are using gRPC. Choose Istio if you don't mind that your control plane runs inside of your cluster and if you want to ensure your mesh is portable to other Kubernetes environments / cloud providers. Choose Traffic Director if you don't mind using Google specific APIs for a managed control plane for control of your application at massive scale.
* Amazon famously uses a Service-oriented architecture where a service often maps 1:1 with a team of 3 to 10 engineers.
* A Zero Trust approach should extend throughout the entire digital estate and serve as an integrated security philosophy and end-to-end strategy. The guiding principles of Zero Trust are to:
- Verify explicitly
- Use least privileged access
- Assume breach.
* Targeted attacks usually follow a timeline similar to the above image with:
* Research on company (Using social media, open-source intelligence sources, data from previous attacks) and preparing for the attack.
* Elevation of privilege attack (typically using credential theft, but also abuse of administrative/management tools and configuration weaknesses).
* Attackers typically extracting data for illicit purposes and going undetected for 200+ days. This is a general observation based on our incident response team’s experience, which is similar to what is reported by others in the industry. Precise numbers are difficult to produce because evidence of the initial “Patient 0” host is frequently lost after such a long period of time.
* Microsoft Defender Antivirus is a built-in antimalware solution that provides next generation protection for desktops, portable computers, and servers.
* Azure Advanced Threat Protection is a component of Microsoft Threat Protection and a cloud-based security solution that leverages your on-premises Active Directory.
* Chief Information Security Officer (CISO) is typically the head of the governance committee who determines policies and procedures. Compliance Officer understands and interprets regulations, which ones apply to the organization, and what kind of controls are needed.
* The unknowns are many in sales and often no one person knows all the answers . What’s worse – you often can’t even ask the right questions. That was the hardest challenge for me personally to overcome. Learning to ask for help early and often , and trusting others to build a solution with me. Sales is all about making change happen . Of all the tools in sales – the ability to tell a story is what I find the most powerful . Stories are magical when told well – they get people to focus, helps them switch contexts and feel inspired. Numbers and facts don’t have the same effect on people. Proper deal qualification, perfecting your pitch, relationship building, story telling and prioritizing time on high potential bets can help a budding sales person become successful
* The youngest Medicine Nobel Laureate is Frederick Banting, who discovered insulin. He was just 32 years old when he was awarded the prize. In 1923, Banting and John Macleod received the Nobel Prize in Medicine. Banting shared the honours and award money with his colleague, Charles Best. That same year, the Government of Canada granted Banting a lifetime annuity to continue his work. On January 23rd, 1923 Banting, Best, and Collip were awarded the American patents for insulin and the method used to make it. They sold the patent to the University of Toronto for $1 each. Banting notably said: “Insulin does not belong to me, it belongs to the world.” He joined the army in 1915 a day after his graduation and was awarded the Military Cross in 1919, for heroism shown on the battlefield by serving wounded soldiers despite injuries.
* On 28 April 2010, the Ministry of Road Transport and Highways officially published a new numbering system for the National Highway network in the Gazette of the Government of India. North South highways are in Blue with even numbers. East West highways are in Red and are odd numbered. Look at 44 and 27
* Electronic Services Delivery (ESD)/eSeva/MeeSeva Portal, the "Integrated Service Delivery Gateway" for citizens of Telangana is maintained by a JV of eCentric Solutions (P) Ltd, VUPADHI Techno Services (P) Ltd & IT Serve Global (P) Ltd
* During the Cold War, an American (insurance) lawyer James Donovan is recruited to defend an arrested Soviet spy in court, and then help the CIA facilitate an exchange of the spy for the Soviet captured American U2 spy plane pilot, Francis Gary Powers and an American student, Frederic L. Pryor, arrested in East Berlin. In 1962, Frederic L. Pryor received his Ph.D. in Economics from Yale University. Following the successful conclusion of the Powers-Abel exchange, James Donovan was asked by President Kennedy (John F. Kennedy) to undertake further negotiations on behalf of the U.S. In the summer of 1962, he was sent to Cuba, to discuss with Fidel Castro, the terms of release of 1,113 prisoners held after the Bay of Pigs invasion. When Donovan finished negotiations, he had secured the release of 9,703 men, women and children. Bridge of Spies is a historical docudrama based on that event, directed by Steven Spielberg.
* The biopic On the Basis of Sex (2018) is the true story of Ruth Bader Ginsburg, her struggles for equal rights, and the early cases of a historic career that lead to her nomination and confirmation as U.S. Supreme Court Associate Justice.
* Jennifer Doudna, an American biochemist known for her pioneering work in CRISPR gene editing, has been awarded the 2020 Nobel Prize in Chemistry along with French professor and researcher in microbiology, genetics and biochemistry, Emmanuelle Charpentier "for the development of a method for genome editing". CRISPR/Cas 9 technique allows "editing" the genome by "cutting and pasting" DNA sequences. In 2011, Charpentier met Jennifer Doudna at a research conference and they began a collaboration. Working with Jennifer Doudna's laboratory, Charpentier's laboratory showed that CRISPR/Cas9 could be used to make cuts in any DNA sequence desired.
* Krait bites typically occur at night and are not painful, so many patients do not notice the snake bite and continue sleeping, which delays medical care.
Comments
Post a Comment