Ship It! Cloud, SRE, Platform Engineering

How to keep a secret

Listen Later

Rob Barnes (a.k.a. Devops Rob) and Rosemary Wang (author of Infrastructure as Code - Patterns & Practices) are joining us today to talk about infrastructure secrets.

What do Rosemary and Rob think about committing encrypted secrets into a repository? How do they suggest that we improve on storing secrets in LastPass? And if we were to choose HashiCorp Vault, what do we need to know?

Thank you Thomas Eckert for the intro. Thank you Nabeel Sulieman (ep. 46) & Kelsey Hightower (ep. 44) for your gentle nudges towards improving our infra secrets management.

Join the discussion

Changelog++ members save 5 minutes on this episode because they made the ads disappear. Join today!

Sponsors:

  • FireHydrantThe reliability platform for every developer. Incidents impact everyone, not just SREs. FireHydrant gives teams the tools to maintain service catalogs, respond to incidents, communicate through status pages, and learn with retrospectives. Small teams up to 10 people can get started for free with all FireHydrant features included. No credit card required to sign up. Learn more at firehydrant.io
  • MongoDBAn integrated suite of cloud database and services — They have a FREE forever tier, so you can prove to yourself and to your team that they have everything you need. Check it out today at mongodb.com/changelog
  • Chronosphere – Chronosphere is the observability platform for cloud-native teams operating at scale. When it comes to observability, teams need a reliable, scalable, and efficient solution so they can know about issues well before their customers do. Teams choose Chronosphere to help them move faster than the competition. Learn more and get a demo at chronosphere.io.
  • SentryWorking code means happy customers. That’s exactly why teams choose Sentry. From error tracking to performance monitoring, Sentry helps teams see what actually matters, resolve problems quicker, and learn continuously about their applications - from the frontend to the backend. Use the code SHIPIT and get the team plan free for three months.

    • Featuring:

    • Rosemary Wang – GitHub, LinkedIn, X
    • Rob Barnes – GitHub, LinkedIn, X
    • Gerhard Lazu – Website, GitHub, LinkedIn, X

    Show Notes:

    • Bitnami Sealed Secrets
    • age CLI
    • Mozilla SOPS
    • Experimental LastPass provider for Kubernetes Secrets Store
    • HashiCorp Vault
    • 📖 Infrastructure as Code, Patterns and Practices - Rosemary Wang, July 2022
    • 🎬 Cloud Identity with HashiCorp Vault - Rob Barnes, DevOps Exchange London, March 2022
    • 🎬 Developing a Secrets Engine for HashiCorp Vault - Rosemary Wang, August 2021

      • Something missing or broken? PRs welcome!

      ...more
      View all episodesView all episodes
      Download on the App Store
      Ship It! Cloud, SRE, Platform EngineeringBy Changelog Media
      • 4.5
      • 4.5
      • 4.5
      • 4.5
      • 4.5

      4.5

      19 ratings

      More shows like Ship It! Cloud, SRE, Platform Engineering

      View all
      Pivot by New York Magazine

      Pivot

      9,000 Listeners

      Syntax - Tasty Web Development Treats by Wes Bos & Scott Tolinski - Full Stack JavaScript Web Developers

      Syntax - Tasty Web Development Treats

      984 Listeners

      Kubernetes Podcast from Google by Abdel Sghiouar, Kaslin Fields

      Kubernetes Podcast from Google

      181 Listeners

      Practical AI by Practical AI LLC

      Practical AI

      189 Listeners

      Hard Fork by The New York Times

      Hard Fork

      5,421 Listeners

      Fork Around And Find Out by Justin Garrison & Autumn Nash

      Fork Around And Find Out

      16 Listeners