2020-10-12 | By Kamil Szczygieł | In Code

How to structure Terraform code for scale?

Terraform is one of the most popular tools to describe infrastructure as code. Being able to incorporate typical software development patterns into infrastructure results in better predictability, higher quality, and lowers the chance of a human error. You can implement continuous integration pipelines that will ensure that the infrastructure code is properly structured, follows all coding guidelines and security compliance requirements in your organization. To go even further, you can develop unit tests to increase the chance of finding an error before it will be applied to the real…

Continue reading

2020-10-04 | By Kamil Szczygieł | In Code

What are the common things to watch out for with Terraform?

Delivering high-quality Terraform code is something we are proud of doing at sysdogs on our daily basis. Through the past years, we have gained a lot of knowledge and experience doing that for a variety of customers all over the world, from a variety of industries, trying to do our best to support other teams with best-quality infrastructures. This article's intention is to be a comprehensive list of bullet points, pinning things that should be avoided. This is a completely blameless post though, try to keep it as a checklist of things you should keep in mind while writing Terraform code. Use…

Continue reading

2020-08-26 | By Kamil Zabielski | In Security

How to secure SSH?

It is 2020, and we can say for sure, that ssh-server [1] is still one of the most popular services on Linux systems. During various meetings, I was often asked: How to secure SSH? Even though this question seems trivial, it is not. There are a lot of things to remember to accomplish well-designed service security. Secure shell is used not only for a remote-shell, per se. Many other technologies depend on it, for various reasons. I have decided to answer the above question once and forever, and maintain the freshness of this answer, so that you can always refer to this document, as an up-to…

Continue reading

2020-08-24 | By Stanisław Szymański | In Container

Could you explain the basics of Docker?

Developers and non-operation teams often ask us to (as quickly as possible of course) teach them, how to handle certain tools, native to our workflows. We have decided to write a comprehensive article with frequently asked questions on Docker, as it is very often that they have to work on Docker with us, hand-to-hand. Our plan is to update this article as feedback comes, with even more answers. What is Docker? Docker [1] is a container runtime that uses Linux isolation layers such as namespaces, cgroups and capabilities. It may be compared to several other engines such as OpenVZ or LXC. What…

Continue reading