Why developers will take charge of security, tests in prod
-
Developers owning security? Testing in production? Are you mad!? A DevSecOps expert makes the case for why a shift is inevitably coming.
Our industry always has room for more bad ideas
-
Developers owning security? Testing in production? Are you mad!? A DevSecOps expert makes the case for why a shift is inevitably coming.
Our industry always has room for more bad ideas
It's kind of already happened. Maybe it's different many places, but I really doubt it. I'd expect he may get into how network engineers don't know, understand, or care to understand the apps they are chucking into clouds and data centers. It's always been a developer and a network engineer together, everywhere I have been, to diagnose/resolve issues. The latter because they have keys to the kingdom, mostly, and the former because they know what knobs to turn once inside.
-
Developers owning security? Testing in production? Are you mad!? A DevSecOps expert makes the case for why a shift is inevitably coming.
Our industry always has room for more bad ideas
-
It's kind of already happened. Maybe it's different many places, but I really doubt it. I'd expect he may get into how network engineers don't know, understand, or care to understand the apps they are chucking into clouds and data centers. It's always been a developer and a network engineer together, everywhere I have been, to diagnose/resolve issues. The latter because they have keys to the kingdom, mostly, and the former because they know what knobs to turn once inside.
But tests on prod?!?
TTFN - Kent
-
But tests on prod?!?
TTFN - Kent
Kent Sharkey wrote:
But tests on prod?!?
What's the difference with test on customers or on users?
M.D.V. ;) If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about? Help me to understand what I'm saying, and I'll explain it better to you Rating helpful answers is nice, but saying thanks can be even nicer.
-
Kent Sharkey wrote:
But tests on prod?!?
What's the difference with test on customers or on users?
M.D.V. ;) If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about? Help me to understand what I'm saying, and I'll explain it better to you Rating helpful answers is nice, but saying thanks can be even nicer.
True, but we should act better than Microsoft, shouldn’t we? ;P
TTFN - Kent
-
But tests on prod?!?
TTFN - Kent
Maybe wonky... Kind of depends on some kind of risk assessment matrix. We run some postmen against at least one API as a part of the deployment pipe and it happens in every environ. If they don't pass, rolling the deploy back immediately is two clicks. At the same time, the ingress point is the same, but the traffic is being routed to two sets of servers. The load balancer will know if one doesn't respond and send the request to the other. To the user, this should be nearly/totally invisible, even if we broke it.
-
True, but we should act better than Microsoft, shouldn’t we? ;P
TTFN - Kent
If it only were MS :sigh:
M.D.V. ;) If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about? Help me to understand what I'm saying, and I'll explain it better to you Rating helpful answers is nice, but saying thanks can be even nicer.