Sign up to save your podcasts
Or
Share 206: The TCP Podcast Ponders Security Copilot or Vaporware – You Decide!
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
206: The TCP Podcast Ponders Security Copilot or Vaporware – You Decide!
This week on the podcast, Justin, Jonathan and Ryan are joined by Matt Kohn and can be found chatting about all things microservices and containers – including new Security Copilot features. In our cloud journeys, we discuss just what defines a microservice (spoiler: the guys actually agree for once) and whether or not those microservices require containers. Also on the agenda, IS Kubernetes the new Monolith?
News this Week:
@4:00 – HashiCorp has announced quite a few updates for Terraform, including a number of innovations for the cloud version. This includes:
-A *new version of the UI (*not actually new if you use the cloud version) and a new cross organizational provider, which will allow users to share via a private registry across an organization.
-They introduced Projects, which will give the ability to organize workspaces and ownership boundaries within Terraform.
-An Auth update will give enhanced integration between Terraform and GitHub.com
-But wait, there’s more from HashiCorp! Among the updates is a new and improved pipeline model called the TFE Taskworker. This will let Terraform offer features like OPA support, dynamic provider credentials, and drift detection.
From Justin: “And OPA is exactly what you thought – they’re getting rid of Sentinel. No. They’re not. They’re giving you OPA AND Sentinel so you can use either/or or both of them.”
Terraform Enterprise adds projects, drift detection, and more
AWS
@7:57 In AWS News – We discussed a few weeks ago the new app migration service from AWS; well, they’ve added three new features!
-Import/Export: You can use the App Migration Service to import source environment inventory list from a CSV file (snazzy!) as well as exporting that same data for reporting purposes, offline reviews, and update integration.
– New dashboard for server migration metrics and added 8 additional predefined actions, such as converting licenses to Amazon licensing.
– ALB’s now support TLS 1.3 (Did anyone else realize they hadn’t already offered that update?)
Matt: “I think what scares me more is the Windows update version; they have a runbook that will just do the upgrade for you. I feel like that **definitely** will never end well.”
AWS Application Migration Service Major Updates: Import and Export Feature, Source Server Migration Metrics Dashboard, and Additional Post-Launch Actions
GCP
@14:04 – Nothing of interest from GCP this week. Still trying to get Bard to work, go figure. Google recently discussed their “shared agenda for sensible AI progress” which is essentially an “if you can’t beat ‘em – regulate ‘em” ideology.
SIDENOTE: Weird Amazon returns policies
SIDENOTE: AI Startup Replika – it goes where you think it does. (Hint: Where the internet ALWAYS goes.)
Azure
@ 20:19 – Moving on to Azure – Microsoft’s inaugural Security event says they are “bringing the power of AI to security” but *are* they? The announcement doesn’t tell us much, but it essentially marries GPT to Security Copilot. But is this really a product they need to be selling? The guys discuss what GOOD AI integration would look like for InfoSec.
Ryan: “I can’t get the image out of my head of Clippy wearing a badge saying ‘Would you like to open a Sev1 incident’?”
Justin: “Just because you have the big partnership with Open AI for billions of dollars doesn’t mean every one of your products ha
View all episodes
By Justin Brodley, Jonathan Baker, Ryan Lucas and Matthew Kohn
4.9
3333 ratings
This week on the podcast, Justin, Jonathan and Ryan are joined by Matt Kohn and can be found chatting about all things microservices and containers – including new Security Copilot features. In our cloud journeys, we discuss just what defines a microservice (spoiler: the guys actually agree for once) and whether or not those microservices require containers. Also on the agenda, IS Kubernetes the new Monolith?
News this Week:
@4:00 – HashiCorp has announced quite a few updates for Terraform, including a number of innovations for the cloud version. This includes:
-A *new version of the UI (*not actually new if you use the cloud version) and a new cross organizational provider, which will allow users to share via a private registry across an organization.
-They introduced Projects, which will give the ability to organize workspaces and ownership boundaries within Terraform.
-An Auth update will give enhanced integration between Terraform and GitHub.com
-But wait, there’s more from HashiCorp! Among the updates is a new and improved pipeline model called the TFE Taskworker. This will let Terraform offer features like OPA support, dynamic provider credentials, and drift detection.
From Justin: “And OPA is exactly what you thought – they’re getting rid of Sentinel. No. They’re not. They’re giving you OPA AND Sentinel so you can use either/or or both of them.”
Terraform Enterprise adds projects, drift detection, and more
AWS
@7:57 In AWS News – We discussed a few weeks ago the new app migration service from AWS; well, they’ve added three new features!
-Import/Export: You can use the App Migration Service to import source environment inventory list from a CSV file (snazzy!) as well as exporting that same data for reporting purposes, offline reviews, and update integration.
– New dashboard for server migration metrics and added 8 additional predefined actions, such as converting licenses to Amazon licensing.
– ALB’s now support TLS 1.3 (Did anyone else realize they hadn’t already offered that update?)
Matt: “I think what scares me more is the Windows update version; they have a runbook that will just do the upgrade for you. I feel like that **definitely** will never end well.”
AWS Application Migration Service Major Updates: Import and Export Feature, Source Server Migration Metrics Dashboard, and Additional Post-Launch Actions
GCP
@14:04 – Nothing of interest from GCP this week. Still trying to get Bard to work, go figure. Google recently discussed their “shared agenda for sensible AI progress” which is essentially an “if you can’t beat ‘em – regulate ‘em” ideology.
SIDENOTE: Weird Amazon returns policies
SIDENOTE: AI Startup Replika – it goes where you think it does. (Hint: Where the internet ALWAYS goes.)
Azure
@ 20:19 – Moving on to Azure – Microsoft’s inaugural Security event says they are “bringing the power of AI to security” but *are* they? The announcement doesn’t tell us much, but it essentially marries GPT to Security Copilot. But is this really a product they need to be selling? The guys discuss what GOOD AI integration would look like for InfoSec.
Ryan: “I can’t get the image out of my head of Clippy wearing a badge saying ‘Would you like to open a Sev1 incident’?”
Justin: “Just because you have the big partnership with Open AI for billions of dollars doesn’t mean every one of your products ha
More shows like The Cloud Pod
View all
Software Engineering Radio - the podcast for professional software developers
272 Listeners
Risky Business
360 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
627 Listeners
The Changelog: Software Development, Open Source
283 Listeners
Freakonomics Radio
32,202 Listeners
Heavy Networking
325 Listeners
The Cloudcast
153 Listeners
The Vergecast
3,667 Listeners
LINUX Unplugged
265 Listeners
Software Engineering Daily
625 Listeners
AWS Podcast
202 Listeners
Kubernetes Podcast from Google
181 Listeners
The Stack Overflow Podcast
64 Listeners
Hard Fork
5,422 Listeners
Oxide and Friends
47 Listeners