Podcasts about code monkeys

It's finally sinking in. Your software project is FAKE agile. Is there anything you can really do about it? The sad reality is that more companies have fake agile software development processes than those that are authentic. You can fight tooth and nail to try and change the system, or you can accept when there's nothing you can do. Being a truly agile software company is not usually something any individual programmer or manager can change. It has to start from the top. If the company doesn't do agile budgeting and have a culture of adapting to feedback, they are a typical feature factory focused on output over outcomes. In this episode, I offer some practical ways to let to of your frustration and do the best job you can given the circumstances. If you're the type of software engineer, manager, or any other tech job role that considers themselves a change agent - you may be challenged by this one. But this episode isn't for everyone. It's for those of us who are experiencing mental health issues, burnout, and anger over our software project being fake agile. I hope it offers some relief. Join my Patreon:  https://thrivingtechnologist.com/patreon TechRolepedia, a wiki about the top 25 roles in tech:  https://thrivingtechnologist.com/techroles The Healthy Software Development career guide:  https://thrivingtechnologist.com/guide Learn about one-on-one coaching with Jayme:   https://thrivingtechnologist.com/coaching You can also watch this episode on YouTube.  RELATED EPISODES Spot a Fake Agile Team in Under 7 Minutes! https://youtu.be/H6GdK-dChtY An Agile Budget Keeps You From Being a Code Monkey https://youtu.be/pG4wNLopMZA Is Your "Agile" Backlog Really a Waterfall Project? https://youtu.be/OosYzkP-pLk Can User Stories Make Software Projects Late? https://youtu.be/NavlPobhj7A Are Programmers Really To Blame For Bad Estimates? https://youtu.be/m5A1Wg8hYGo Chapter markers / timelinks: (0:00) Introduction (1:30) How to Cope With FAKE Agile Development (3:25) 1. Stop Forcing Change (5:10) 2. Exercise (7:25) 3. Become a Requirements Lawyer (10:33) 4. Charge for Changes (13:12) 5. Protect Your Reputation (15:12) 6. Define Your Own Success (21:54) Episode Groove Visit me at thrivingtechnologist.com Find me on X as @jaymeedwards Find me on LinkedIn as jaymeedwards

If you want a lasting career in software development, you've got to be wiser than your average coder. There's a lot of advice that promotes short-term thinking around programming, and if you aren't careful you can burn your bridges before you reach the finish line. In this episode, I share what I've learned about why most programmers don't last in their career. There are 8 laws to a lasting career as a programmer. If you follow these laws, you'll not only move ahead much faster than most programmers - you'll be able to develop software in a healthy way! Download my free Career Guide here:  https://healthysoftwaredeveloper.com/guide/ Get free access to TechRolepedia here:  https://healthysoftwaredeveloper.com/techroles/ Need help with your career? Learn about career coaching:   https://healthysoftwaredeveloper.com/coaching/ You can also watch this episode on YouTube.  Chapter markers / timelinks: (1:33) 8 Laws to a Lasting Programming Career (1:52) 1. Embrace the Imposter (3:08) 2. Make Technology Stupid Simple (4:27) 3. Buffer and Delay Commitments (7:21) 4. Skip the Leveling Grind (9:29) 5. Pick Your Battles (11:18) 6. Always Be Networking (12:40) 7. Know When You're The Code Monkey (14:27) 8. Get Out While You Can (17:50) Episode Groove Visit me at healthysoftwaredeveloper.com Find me on X as @jaymeedwards Find me on LinkedIn as jaymeedwards  

What if my company forces me to become a code monkey?

Today the guys run over Runbeck, clowns running the elections, Gates in Arizona, Arizona ballot issues, Maricopa Attorney phone call, how to control the cheat, Marc Elias with Petty memories, Code Monkey 2 Runbeck dig, Gaetz hits back at the establishment, 2020 Election integrity hearing, Trump speaks on Special Counsel , and much much more...

About DanDan Moore is head of developer relations for FusionAuth, where he helps share information about authentication, authorization and security with developers building all kinds of applications.A former CTO, AWS certification instructor, engineering manager and a longtime developer, he's been writing software for (checks watch) over 20 years.Links Referenced: FusionAuth: https://fusionauth.io Twitter: https://twitter.com/mooreds TranscriptAnnouncer: Hello, and welcome to Screaming in the Cloud with your host, Chief Cloud Economist at The Duckbill Group, Corey Quinn. This weekly show features conversations with people doing interesting work in the world of cloud, thoughtful commentary on the state of the technical world, and ridiculous titles for which Corey refuses to apologize. This is Screaming in the Cloud.Corey: This episode is sponsored in part by our friends at AWS AppConfig. Engineers love to solve, and occasionally create, problems. But not when it's an on-call fire-drill at 4 in the morning. Software problems should drive innovation and collaboration, NOT stress, and sleeplessness, and threats of violence. That's why so many developers are realizing the value of AWS AppConfig Feature Flags. Feature Flags let developers push code to production, but hide that that feature from customers so that the developers can release their feature when it's ready. This practice allows for safe, fast, and convenient software development. You can seamlessly incorporate AppConfig Feature Flags into your AWS or cloud environment and ship your Features with excitement, not trepidation and fear. To get started, go to snark.cloud/appconfig. That's snark.cloud/appconfig.Corey: This episode is sponsored in part by our friends at Sysdig. Sysdig secures your cloud from source to run. They believe, as do I, that DevOps and security are inextricably linked. If you wanna learn more about how they view this, check out their blog, it's definitely worth the read. To learn more about how they are absolutely getting it right from where I sit, visit Sysdig.com and tell them that I sent you. That's S Y S D I G.com. And my thanks to them for their continued support of this ridiculous nonsense.Corey: Welcome to Screaming in the Cloud. I'm Corey Quinn. I am joined today on this promoted episode, which is brought to us by our friends at FusionAuth by Dan Moore, who is their head of DevRel at same. Dan, thank you for joining me.Dan: Corey, thank you so much for having me.Corey: So, you and I have been talking for a while. I believe it predates not just you working over at FusionAuth but me even writing the newsletter and the rest. We met on a leadership Slack many years ago. We've kept in touch ever since, and I think, I haven't run the actual numbers on this, but I believe that you are at the top of the leaderboard right now for the number of responses I have gotten to various newsletter issues that I've sent out over the years.And it's always something great. It's “Here's a link I found that I thought that you might appreciate.” And we finally sat down and met each other in person, had a cup of coffee somewhat recently, and the first thing you asked was, “Is it okay that I keep doing this?” And at the bottom of the newsletter is “Hey, if you've seen something interesting, hit reply and let me know.” And you'd be surprised how few people actually take me up on it. So, let me start by thanking you for being as enthusiastic a contributor of the content as you have been.Dan: Well, I appreciate that. And I remember the first time I ran across your newsletter and was super impressed by kind of the breadth of it. And I guess my way of thanking you is to just send you interesting tidbits that I run across. And it's always fun when I see one of the links that I sent go into the newsletter because what you provide is just such a service to the community. So, thank you.Corey: The fun part, too, is that about half the time that you send a link in, I already have it in my queue, or I've seen it before, but not always. I talked to Jeff Barr about this a while back, and apparently, a big Amazonian theme that he lives by is two is better than zero. He'd rather two people tell him about a thing than no one tells him about the thing. And I've tried to embody that. It's the right answer, but it's also super tricky to figure out what people have heard or haven't heard. It leads to interesting places. But enough about my nonsense. Let's talk about your nonsense instead. So, FusionAuth; what do you folks do over there?Dan: So, FusionAuth is an auth provider, and we offer a Community Edition, which is downloadable for free; we also offer premium editions, but the space we play in is really CIAM, which is Customer Identity Access Management. Very similar to Auth0 or Cognito that some of your listeners might have heard of.Corey: If people have heard about Cognito, it's usually bracketed by profanity, in one direction or another, but I'm sure we'll get there in a minute. I will say that I never considered authentication to be a differentiator between services that I use. And then one day I was looking for a tool—I'm not going to name what it was just because I don't really want to deal with the angry letters and whatnot—but I signed up for this thing to test it out, and “Oh, great. So, what's my password?” “Oh, we don't use passwords. We just every time you want to log in, we're going to email you a link and then you go ahead and click the link.”And I hadn't seen something like that before. And my immediate response to that was, “Okay, this feels like an area they've decided to innovate in.” Their core business is basically information retention and returning it to you—basically any CRUD app. Yay. I don't think this is where I want them to be innovating.I want them to use the tried and true solutions, not build their own or be creative on this stuff, so it was a contributor to me wanting to go in a different direction. When you start doing things like that, there's no multi-factor authentication available and you start to wonder, how have they implemented this? What corners have they cut? Who's reviewed this? It just gave me a weird feeling.And that was sort of the day I realized that authentication for me is kind of like crypto, by which I mean cryptography, not cryptocurrency, I want to be very clear on, here. You should not roll your own cryptography, you should not roll your own encryption, you should buy off-the-shelf unless you're one of maybe five companies on the planet. Spoiler, if you're listening to this, you are almost certainly not one of them.Dan: [laugh]. Yeah. So, first of all, I've been at FusionAuth for a couple of years. Before I came to FusionAuth, I had rolled my own authentication a couple of times. And what I've realized working there is that it really is—there a couple of things worth unpacking here.One is you can now buy or leverage open-source libraries or other providers a lot more than you could 15 or 20 years ago. So, it's become this thing that can be snapped into your architecture. The second is, auth is the front door to application. And while it isn't really that differentiated—I don't think most applications, as you kind of alluded to, should innovate there—it is kind of critical that it runs all the time that it's safe and secure, that it's accessible, that it looks like your application.So, at the same time, it's undifferentiated, right? Like, at the end of the day, people just want to get through authentication and authorization schemes into your application. That is really the critical thing. So, it's undifferentiated, it's critical, it needs to be highly available. Those are all things that make it a good candidate for outsourcing.Corey: There are a few things to unpack there. First is that everything becomes commoditized in the fullness of time. And this is a good thing. Back in the original dotcom bubble, there were entire teams of engineers at all kinds of different e-commerce companies that were basically destroying themselves trying to build an online shopping cart. And today you wind up implementing Shopify or something like it—which is usually Shopify—and that solves the problem for you. This is no longer a point of differentiation.If I want to start selling physical goods on the internet, it feels like it'll take me half an hour or so to wind up with a bare-bones shopping cart thing ready to go, and then I just have to add inventory. Authentication feels like it was kind of the same thing. I mean, back in that song from early on in internet history “Code Monkey” talks about building a login page as part of it, and yeah, that was a colossal pain. These days, there are a bunch of different ways to do that with folks who spend their entire careers working on this exact problem so you can go and work on something that is a lot more core and central to the value that your business ostensibly provides. And that seems like the right path to go down.But this does lead to the obvious counter-question of how is it that you differentiate other than, you know, via marketing, which again, not the worst answer in the world, but it also turns into skeezy marketing. “Yes, you should use this other company's option, or you could use ours and we don't have any intentional backdoors in our version.” “Hmm. That sounds more suspicious and more than a little bit frightening. Tell me more.” “No, legal won't let me.” And it's “Okay.” Aside from the terrible things, how do you differentiate?Dan: I liked that. That was an oddly specific disclaimer, right? Like, whenever a company says, “Oh, yeah, no.” [laugh].Corey: “My breakfast cereal has less arsenic than leading brands.”Dan: Perfect. So yeah, so FusionAuth realizes that, kind of, there are a lot of options out there, and so we've chosen to niche down. And one of the things that we really focus on is the CIAM market. And that stands for Customer Identity Access Management. And we can dive into that a little bit later if you want to know more about that.We have a variety of deployment options, which I think differentiates us from a lot of the SaaS providers out there. You can run us as a self-hosted option with, by the way, professional-grade support, you can use us as a SaaS provider if you don't want to run it yourself. We are experts in operating this piece of software. And then thirdly, you can move between them, right? It's your data, so if you start out and you're bare bones and you want to save money, you can start with self-hosted, when you grow, move to the SaaS version.Or we actually have some bigger companies that kickstart on the SaaS version because they want to get going with this integration problem and then later, as they build out their capabilities, they want the option to move it in-house. So, that is a really key differentiator for us. The last one I'd say is we're really dev-focused. Who isn't, right? Everyone says they're dev-focused, but we live that in terms of our APIs, in terms of our documentation, in terms of our open development process. Like, there's actually a GitHub issues list you can go look on the FusionAuth GitHub profile and it shows exactly what we have planned for the next couple of releases.Corey: If you go to one of my test reference applications, lasttweetinaws.com, as of the time of this recording at least, it asks you to authenticate with your Twitter account. And you can do that, and it's free; I don't charge for any of these things. And once you're authenticated, you can use it to author Twitter threads because I needed it to exist, first off, and secondly, it makes a super handy test app to try out a whole bunch of different things.And one of the reasons you can just go and use it without registering an account for this thing or anything else was because I tried to set that up in an early version with Cognito and immediately gave the hell up and figured, all right, if you can find the URL, you can use this thing because the experience was that terrible. If instead, I had gone down the path of using FusionAuth, what would have made that experience different, other than the fact that Cognito was pretty clearly a tech demo at best rather than something that had any care, finish, spit and polish went into it.Dan: So, I've used Cognito. I'm not going to bag on Cognito, I'm going to leave that to—[laugh].Corey: Oh, I will, don't worry. I'll do all the bagging on Cognito you'd like because the problem is, and I want to be clear on this point, is that I didn't understand what it was doing because the interface was arcane, and the failure mode of everything in this entire sector, when the interface is bad, the immediate takeaway is not “This thing's a piece of crap.” It's, “Oh, I'm bad at this. I'm just not smart enough.” And it's insulting, and it sets me off every time I see it. So, if I feel like I'm coming across as relatively annoyed by the product, it's because it made me feel dumb. That is one of those cardinal sins, from my perspective. So, if you work on that team, please reach out. I would love to give you a laundry list of feedback. I'm not here to make you feel bad about your product; I'm here to make you feel bad about making your customers feel bad. Now please, Dan, continue.Dan: Sure. So, I would just say that one of the things that we've strived to do for years and years is translate some of the arcane IAM Identity Access Management jargon into what normal developers expect. And so, we don't have clients in our OAuth implementation—although they really are clients if you're an RFC junkie—we have applications, right? We have users, we have groups, we have all these things that are what users would expect, even though underlying them they're based on the same standards that, frankly, Cognito and Auth0 and a lot of other people use as well.But to get back to your question, I would say that, if you had chosen to use FusionAuth, you would have had a couple of advantages. The first is, as I mentioned, kind of the developer friendliness and the extensive documentation, example applications. The second would be a themeability. And this is something that we hear from our clients over and over again, is Cognito is okay if you stay within the lines in terms of your user interface, right? If you just want to login form, if you want to stay between lines and you don't want to customize your application's login page at all.We actually provide you with HTML templates. It's actually using a language called FreeMarker, but they let you do whatever the heck you want. Now, of course, with great power comes great responsibility. Now, you own that piece, right, and we do have some more simple customization you can do if all you want to do is change the color. But most of our clients are the kind of folks who really want their application login screen to look exactly like their application, and so they're willing to take on that slightly heavier burden. Unfortunately, Cognito doesn't give you that option at all, as far as I can tell when I've kicked the tires on it. The theming is—how I put this politely—some of our clients have found the theming to be lacking.Corey: That's part of the issue where when I was looking at all the reference implementations, I could find for Cognito, it went from “Oh, you have your own app, and its branding, and the rest,” and bam, suddenly, you're looking right, like, you're logging into an AWS console sub-console property because of course they have those. And it felt like “Oh, great. If I'm going to rip off some company's design aesthetic wholesale, I'm sorry, Amazon is nowhere near anywhere except the bottom 10% of that list, I've got to say. I'm sorry, but it is not an aesthetically pleasing site, full stop. So, why impose that on customers?”It feels like it's one of those things where—like, so many Amazon service teams say, “We're going to start by building a minimum lovable product.” And it's yeah, it's a product that only a parent could love. And the problem is, so many of them don't seem to iterate beyond that do a full-featured story. And this is again, this is not every AWS service. A lot of them are phenomenal and grow into themselves over time.One of the best rags-to-riches stories that I can recall is EFS, their Elastic File System, for an example. But others, like Cognito just sort of seem to sit and languish for so long that I've basically given up hope. Even if they wind up eventually fixing all of these problems, the reputation has been cemented at this point. They've got to give it a different terrible name.Dan: I mean, here's the thing. Like, EFS, if it looks horrible, right, or if it has, like, a toughest user experience, guess what? Your users are devs. And if they're forced to use it, they will. They can sometimes see the glimmers of the beauty that is kind of embedded, right, the diamond in the rough. If your users come to a login page and see something ugly, you immediately have this really negative association. And so again, the login and authentication process is really the front door of your application, and you just need to make sure that it shines.Corey: For me at least, so much of what's what a user experience or user takeaway is going to be about a company's product starts with their process of logging into it, which is one of the reasons that I have challenges with the way that multi-factor auth can be presented, like, “Step one, login to the thing.” Oh, great. Now, you have to fish out your YubiKey, or you have to go check your email for a link or find a code somewhere and punch it in. It adds friction to a process. So, when you have these services or tools that oh, your session will expire every 15 minutes and you have to do that whole thing again to log back in, it's ugh, I'm already annoyed by the time I even look at anything beyond just the login stuff.And heaven forbid, like, there are worse things, let's be very clear here. For example, if I log in to a site, and I'm suddenly looking at someone else's account, yeah, that's known as a disaster and I don't care how beautiful the design aesthetic is or how easy to use it is, we're done here. But that is job zero: the security aspect of these things. Then there's all the polish that makes it go from something that people tolerate because they have to into something that, in the context of a login page I guess, just sort of fades into the background.Dan: That's exactly what you want, right? It's just like the old story about the sysadmin. People only notice when things are going wrong. People only care about authentication when it stops them from getting into what they actually want to do, right? No one ever says, “Oh, my gosh, that login experience was so amazing for that application. I'm going to come back to that application,” right? They notice when it's friction, they noticed when it's sand in the gears.And our goal at FusionAuth, obviously, security is job zero because as you said, last thing you want is for a user to have access to some other user's data or to be able to escalate their privileges, but after that, you want to fade in the background, right? No one comes to FusionAuth and builds a whole application on top of it, right? We are one component that plugs into your application and lets you get on to the fundamentals of building the features that your users really care about, and then wraps your whole application in a blanket of security, essentially.Corey: I'll take even one more example before we just drive this point home in a way that I hope resonates with folks. Everyone has an opinion on logging into AWS properties because “Oh, what about your Amazon account?” At which point it's “Oh, sit down. We're going for a ride here. Are you talking about amazon.com account? Are you talking about the root account for my AWS account? Are you talking about an IAM user? Are you talking about the service formerly known as AWS SSO that's now IAM Identity Center users? Are you talking about their Chime user account? Are you talking about your repost forum account?” And so, on and so on and so on. I'm sure I'm missing half a dozen right now off the top of my head.Yeah, that's awful. I've been also developing lately on top of Google Cloud, and it is so far to the opposite end of that spectrum that it's suspicious and more than a little bit frightening. When I go to console.cloud.google.com, I am boom, there. There is no login approach, which on the one hand, I definitely appreciate, just from a pure perspective of you're Google, you track everything I do on the internet. Thank you for not insulting my intelligence by pretending you don't know who I am when I log into your Cloud Console.Counterpoint, when I log into the admin portal for my Google Workspaces account, admin.google.com, it always re-prompts for a password, which is reasonable. You'd think that stuff running production might want to do something like that, in some cases. I would not be annoyed if it asked me to just type in a password again when I get to the expensive things that have lasting repercussions.Although, given my personality, logging into Gmail can have massive career repercussions as soon as I hit send on anything. I digress. It is such a difference from user experience and ease-of-use that it's one of those areas where I feel like you're fighting something of a losing battle, just because when it works well, it's glorious to the point where you don't notice it. When authentication doesn't work well, it's annoying. And there's really no in between.Dan: I don't have anything to say to that. I mean, I a hundred percent agree that it's something that you could have to get right and no one cares, except for when you get it wrong. And if your listeners can take one thing away from this call, right, I know it's we're sponsored by FusionAuth, I want to rep Fusion, I want people to be aware of FusionAuth, but don't roll your own, right? There are a lot of solutions out there. I hope you evaluate FusionAuth, I hope you evaluate some other solutions, but this is such a critical thing and Corey has laid out [laugh] in multiple different ways, the ways it can ruin your user experience and your reputation. So, look at something that you can build or a library that you can build on top of. Don't roll your own. Please, please don't.Corey: This episode is sponsored in part by Honeycomb. When production is running slow, it's hard to know where problems originate. Is it your application code, users, or the underlying systems? I've got five bucks on DNS, personally. Why scroll through endless dashboards while dealing with alert floods, going from tool to tool to tool that you employ, guessing at which puzzle pieces matter? Context switching and tool sprawl are slowly killing both your team and your business. You should care more about one of those than the other; which one is up to you. Drop the separate pillars and enter a world of getting one unified understanding of the one thing driving your business: production. With Honeycomb, you guess less and know more. Try it for free at honeycomb.io/screaminginthecloud. Observability: it's more than just hipster monitoring.Corey: So, tell me a little bit more about how it is that you folks think about yourselves in just in terms of the market space, for example. The idea of CIAM, customer IAM, it does feel viscerally different than traditional IAM in the context of, you know, AWS, which I use all the time, but I don't think I have the vocabulary to describe it without sounding like a buffoon. What is the definition between the two, please? Or the divergence, at least?Dan: Yeah, so I mean, not to go back to AWS services, but I'm sure a lot of your listeners are familiar with them. AWS SSO or the artist formerly known as AWS SSO is IAM, right? So, it's Workforce, right, and Workforce—Corey: And it was glorious, to the point where I felt like it was basically NDA'ed from other service teams because they couldn't talk about it. But this was so much nicer than having to juggle IAM keys and sessions that timeout after an hour in the console. “What do you doing in the console?” “I'm doing ClickOps, Jeremy. Leave me alone.”It's just I want to make sure that I'm talking about this the right way. It feels like AWS SSO—creature formerly known as—and traditional IAM feels like they're directionally the same thing as far as what they target, as far as customer bases, and what they empower you to do.Dan: Absolutely, absolutely. There are other players in that same market, right? And that's the market that grew up originally: it's for employees. So, employees have this very fixed lifecycle. They have complicated relationships with other employees and departments in organizations, you can tell them what to do, right, you can say you have to enroll your MFA key or you are no longer employed with us.Customers have a different set of requirements, and yet they're crucial to businesses because customers are, [laugh] who pay you money, right? And so, things that customers do that employees don't: they choose to register; they pick you, you don't pick them; they have a wide variety of devices and expectations; they also have a higher expectation of UX polish. Again, with an IAM solution, you can kind of dictate to your employees because you're paying them money. With a customer identity access management solution, it is part of your product, in the same way, you can't really dictate features unless you have something that the customer absolutely has to have and there are no substitutes for it, you have to adjust to the customer demands. CIAM is more responsive to those demands and is a smoother experience.The other thing I would say is CIAM, also, frankly, has a simpler model. Most customers have access to applications, maybe they have a couple of roles that you know, an admin role, an editor role, a viewer role if you're kind of a media conglomerate, for an example, but they don't have necessarily the thicket of complexity that you might have to have an eye on, so it's just simpler to model.Corey: Here's an area that feels like it's on the boundary between them. I distinctly remember being actively annoyed a while back that I had to roll my marketing person her own entire AWS IAM account solely so that she could upload assets into an S3 bucket that was driving some other stuff. It feels very much like that is a better use case for something that is a customer IAM solution. Because if I screw up those permissions even slightly, well, congratulations, now I've inadvertently given someone access to wind up, you know, taking production down. It feels like it is way too close to things that are going to leave a mark, whereas the idea of a customer authentication story for something like that is awesome.And no please if you're listening to this, don't email me with this thing you built and put on the Marketplace that “Oh, it uses signed URLs and whatnot to wind up automatically federating an identity just for this one per—” Yes. I don't want to build something ridiculous and overwrought so a single person can update assets within S3. I promise I don't want to do that. It just ends badly.Dan: Well, that was the promise of Cognito, right? And that is actually one of the reasons you should stick with Cognito if you have super-detailed requirements that are all about AWS and permissions to things inside AWS. Cognito has that tight integration. And I assume—I haven't looked at some of the other big cloud providers, but I assume that some of the other ones have that similar level of integration. So yeah, so that my answer there would be Cognito is the CIAM solution that AWS has, so that is what I would expect it to be able to handle, relatively smoothly.Corey: A question I have for you about the product itself is based on a frustration I originally had with Cognito, which is that once you're in there and you are using that for authentication and you have users, there's no way for me to get access to the credentials of my users. I can't really do an export in any traditional sense. Is that possible with FusionAuth?Dan: Absolutely. So, your data is your data. And because we're a self-hosted or SaaS solution, if you're running it self-hosted, obviously you have access to the password hashes in your database. If you are—Corey: The hashes, not the plaintext passwords to be explicitly clear on this. [laugh].Dan: Absolutely the hashes. And we have a number of guides that help you get hashes from other providers into ours. We have a written export guide ourselves, but it's in the database and the schema is public. You can go download our schema right now. And if—Corey: And I assume you've used an industry standard hashing algorithm for this?Dan: Yeah, we have a number of different options. You can bring your own actually, if you want, and we've had people bring their own options because they have either special needs or they have an older thing that's not as secure. And so, they still want their users to be able to log in, so they write a plugin and then they import the users' hashes, and then we transparently re-encrypt with a more modern one. The default for us is PDK.Corey: I assume you do the re-encryption at login time because there's no other way for you to get that.Dan: Exactly. Yeah yeah yeah—Corey: Yeah.Dan: —because that's the only time we see the password, right? Like we don't see it any other time. But we support Bcrypt and other modern algorithms. And it's entirely configurable; if you want to set a factor, which basically is how—Corey: I want to use MD5 because I'm still living in 2003.Dan: [laugh]. Please don't use MD5. Second takeaway: don't roll your own and don't use MD5. Yeah, so it's very tweakable, but we shipped with a secured default, basically.Corey: I just want to clarify as well why this is actively important. I don't think people quite understand that in many cases, picking an authentication provider is one of those lasting decisions where migrations take an awful lot of work. And they probably should. There should be no mechanism by which I can export the clear text passwords. If any authentication provider advertises or offers such a thing, don't use that one. I'm going to be very direct on that point.The downside to this is that if you are going to migrate from any other provider to any other provider, it has to happen either slowly as in, every time people log in, it'll check with the old system and then migrate that user to the new one, or you have to force password resets for your entire customer base. And the problem with that is I don't care what story you tell me. If I get an email from one of my vendors saying “You now have to reset your password because we're migrating to their auth thing,” or whatnot, there's no way around it, there's no messaging that solves this, people will think that you suffered a data breach that you are not disclosing. And that is a heavy, heavy lift. Another pattern I've seen is it for a period of three months or whatnot, depending on user base, you will wind up having the plug in there, and anyone who logs in after that point will, “Ohh you need to reset your password. And your password is expired. Click here to reset.” That tends to be a little bit better when it's not the proactive outreach announcement, but it's still a difficult lift and it adds—again—friction to the customer experience.Dan: Yep. And the third one—which you imply it—is you have access to your password hashes. They're hashed in a secure manner. And trust me, even though they're hashed securely, like, if you contact FusionAuth and say, “Hey, I want to move off FusionAuth,” we will arrange a way to get you your database in a secure manner, right? It's going to be encrypted, we're going to have a separate password that we communicate with you out-of-band because this is—even if it is hashed and salted and handled correctly, it's still very, very sensitive data because credentials are the keys to the kingdom.So, but those are the three options, right? The slow migration, which is operationally expensive, the requiring the user to reset their password, which is horribly expensive from a user interface perspective, right, and the customer service perspective, or export your password hashes. And we think that the third option is the least of the evils because guess what? It's your data, right? It's your user data. We will help you be careful with it, but you own it.Corey: I think that there's a lot of seriously important nuance to the whole world of authentication. And the fact that this is such a difficult area to even talk about with folks who are not deeply steeped in that ecosystem should be an indication alone that this is the sort of thing that you definitely want to outsource to a company that knows what the hell they're doing. And it's not like other areas of tech where you can basically stumble your way through something. It's like “Well, I'm going to write a Lambda to go ahead and post some nonsense on Twitter.” “Okay, are you good at programming?” “Not even slightly, but I am persistent and brute force is a viable strategy, so we're going to go with that one.” “Great. Okay, that's awesome.”But authentication is one of those areas where mistakes will show. The reputational impact of losing data goes from merely embarrassing to potentially life-ruining for folks. The most stressful job I've ever had from a data security position wasn't when I was dealing with money—because that's only money, which sounds like a weird thing to say—it was when I did a brief stint at Grindr where people weren't out. In some countries, users could have wound up in jail or have been killed if their sexuality became known. And that was the stuff that kept me up at night.Compared to that, “Okay, you got some credit card numbers with that. What the hell do I care about that, relatively speaking?” It's like, “Yeah, it's well, my credit card number was stolen.” “Yeah, but did you die, though?” “Oh, you had to make a phone call and reset some stuff.” And I'm not trivializing the importance of data security. Especially, like, if you're a bank, and you're listening to this, and you're terrified, yeah, that's not what I'm saying at all. I'm just saying there are worse things.Dan: Sure. Yeah. I mean, I think that, unfortunately, the pandemic showed us that we're living more and more of our lives online. And the identity online and making sure that safe and secure is just critical. And again, not just for your employees, although that's really important, too, but more of your customer interactions are going to be taking place online because it's scalable, because it makes people money, because it allows for capabilities that weren't previously there, and you have to take that seriously. So, take care of your users' data. Please, please do that.Corey: And one of the best ways you can do that is by not touching the things that are commoditized in your effort to apply differentiation. That's why I will never again write my own auth system, with a couple of asterisks next to it because some of what I do is objectively horrifying, intentionally so. But if I care about the authentication piece, I have the good sense to pay someone else to do it for me.Dan: From personal experience, you mentioned at the beginning that we go back aways. I remember when I first discovered RDS, and I thought, “Oh, my God. I can outsource all this scut work, all of the database backups, all of the upgrades, all of the availability checking, right? Like, I can outsource this to somebody else who will take this off my plate.” And I was so thankful.And I don't—outside of, again, with some asterisks, right, there are places where I could consider running a database, but they're very few and far between—I feel like auth has entered that category. There are great providers like FusionAuth out there that are happy to take this off your plate and let you move forward. And in some ways, I'm not really sure which is more dangerous; like, not running a database properly or not running an auth system properly. They both give me shivers and I would hate to [laugh] hate to be forced to choose. But they're comparable levels of risk, so I a hundred percent agree, Corey.Corey: Dan, I really want to thank you for taking so much time to talk to me about your view of the world. If people want to learn more because you're not in their inboxes responding to newsletters every week, where's the best place to find you?Dan: Sure, you can find more about me at Twitter. I'm @mooreds, M-O-O-R-E-D-S. And you can learn more about FusionAuth and download it for free at fusionauth.io.Corey: And we will put links to all of that in the show notes. I really want to thank you again for just being so generous with your time. It's deeply appreciated.Dan: Corey, thank you so much for having me.Corey: Dan Moore, Head of DevRel at FusionAuth. I'm Cloud Economist Corey Quinn. If you've enjoyed this podcast, please leave a five-star review on your podcast platform of choice, whereas if you've hated this podcast, please leave a five-star review on your podcast platform of choice, along with an angry, insulting comment that will be attributed to someone else because they screwed up by rolling their own authentication.Corey: If your AWS bill keeps rising and your blood pressure is doing the same, then you need The Duckbill Group. We help companies fix their AWS bill by making it smaller and less horrifying. The Duckbill Group works for you, not AWS. We tailor recommendations to your business and we get to the point. Visit duckbillgroup.com to get started.Announcer: This has been a HumblePod production. Stay humble.

Universal sues Nintendo over Donkey Kong Spielberg signs with Atari Tron disappoints These stories and many more on this episode of the VGNRTM This episode we will look back at the biggest stories in and around the video game industry in July 1982. As always, we'll mostly be using magazine cover dates, and those are of course always a bit behind the actual events. Mads from the Retro Asylum is our cohost. You can find his other fine podcasts here: http://retroasylum.com and https://playthroughpod.com/ Get us on your mobile device: Android: https://www.google.com/podcasts?feed=aHR0cHM6Ly92aWRlb2dhbWVuZXdzcm9vbXRpbWVtYWNoaW5lLmxpYnN5bi5jb20vcnNz iOS: https://podcasts.apple.com/de/podcast/video-game-newsroom-time-machine And if you like what we are doing here at the podcast, don't forget to like us on your podcasting app of choice, YouTube, and/or support us on patreon! https://www.patreon.com/VGNRTM Send comments on twitter @videogamenewsr2 Or Instagram https://www.instagram.com/vgnrtm Or videogamenewsroomtimemachine@gmail.com Links: 7 Minutes in Heaven: Pepper II Video Version - https://www.patreon.com/posts/70739326 https://www.mobygames.com/game/pepper-ii https://flyers.arcade-museum.com/?page=flyer&db=videodb&id=778&image=1 Corrections: June 1982 Ep - https://www.patreon.com/posts/69476654 https://jaleco.fandom.com/wiki/Naughty_Boy http://www.hardcoregaming101.net/brute-force/ Jim Trucano - AMOA - https://www.patreon.com/posts/48912975 https://en.wikipedia.org/wiki/Pong https://www.youtube.com/watch?v=EK7H6gI1py0 https://www.arcade-museum.com/game_detail.php?game_id=10086 https://youtu.be/bTUrWYv2vtU https://en.wikipedia.org/wiki/Vectrex https://de.wikipedia.org/wiki/Adventure_Vision https://en.wikipedia.org/wiki/Little_Professor 1982: US Army enlists Atari https://www.nytimes.com/1982/07/10/us/briefing-006748.html?searchResultPosition=14 https://www.mobygames.com/game/bradley-trainer Zaxxon commercial Replay July 1982, pg. 112 https://youtu.be/u3NUO2GFGAI https://www.mobygames.com/game/arcade/zaxxon Sega Gremlin opens new factory Play Meter July 1, 1982 pg 17 https://en.wikipedia.org/wiki/Gremlin_Industries Jim Trucano - AMOA - https://www.patreon.com/posts/48912975 Ms Pacman set to match Pacman Play Meter 1 July 1982 pg 17 https://en.wikipedia.org/wiki/Ms._Pac-Man Bally and Atari both buy into Namco Games People Pay Late July 1982 pg 10 https://en.wikipedia.org/wiki/Namco Nintendo seeks to expand US operations Games People Pay Late July 1982 pg 5 https://en.wikipedia.org/wiki/Nintendo Coca-Cola buys Gottlieb Play Meter July 1, 1982, pg 22 https://en.wikipedia.org/wiki/Gottlieb Universal sues over Donkey Kong Games People Pay Late July 1982 pg 4 https://en.wikipedia.org/wiki/Donkey_Kong#Legacy https://en.wikipedia.org/wiki/RKO_Pictures Showbiz and Pizza Time reach a settlement Play Meter July 15, 1982 pg 22 https://en.wikipedia.org/wiki/Chuck_E._Cheese May 1980 jump - https://www.patreon.com/posts/may-2020-37289753 Fuzzy Wuzzy Wizards want a piece of the pizza action Play Meter July 1 1982 pg 14 https://law.resource.org/pub/us/case/reporter/F2/820/820.F2d.362.85-3705.html https://tokencatalog.com/token_record_forms.php?action=DisplayTokenRecord&td_id=521569&inventory_id=584463&attribution_id=538537 Alladin's Castle continues aggressive expansion Games People Pay Late July 1982 pg 10 https://en.wikipedia.org/wiki/Namco#Expansion_into_other_markets_(1989%E2%80%931994) Not everyone is happy with home PacMan Games People Pay Late July 1982 pg 7 https://www.mobygames.com/game/pac-man https://www.youtube.com/watch?v=smmjCGpa1V0 Coin op operators see costs jump Vending Times Census of the Industry July 1982, pg. 60 Vancouver bans minors Play Meter 15 July 1982 pg 20 Sega goes to court in England Play meter July 15, 1982, pg 22 March 1982 Ep - https://www.patreon.com/posts/march-1982-64415756 Colecovision launches! https://en.wikipedia.org/wiki/ColecoVision 5200 hits inventory snag Video Game Update July 1982 pg 1 https://en.wikipedia.org/wiki/Atari_5200 AVGN 5200 video - https://youtu.be/AknyR-kRvLc Emerson Arcadia debuts at CES Video Game Update July 1982 pg 2 https://www.youtube.com/watch?v=xaUw3_OR_q8 https://en.wikipedia.org/wiki/Arcadia_2001 Games by Apollo goes big on advertising https://www.nytimes.com/1982/07/23/business/advertising-video-game-client-to-benton-bowles.html?searchResultPosition=2 https://en.wikipedia.org/wiki/Games_by_Apollo Activision earnings way up! Playthings July 1982 pg 11 KC Munchkin is back! Play Meter July 15, 1982 pg 22 https://www.mobygames.com/game/kcs-krazy-chase Avalon Hill gets VCS fever https://archive.org/details/cgw_5/page/n5/mode/1up https://www.mobygames.com/browse/games/avalon-hill-game-company/offset,75/so,1d/list-games/ Joel Billings - SSI - https://www.patreon.com/posts/36827469 More new companies enter the scene Video Game Update July 1982 pg 2 Spielberg goes Atari Video Game Update July 1982 pg 1 https://en.wikipedia.org/wiki/Code_Monkeys https://www.mobygames.com/game/atari-2600/et-the-extra-terrestrial_ https://www.mobygames.com/game/atari-2600/raiders-of-the-lost-ark https://youtu.be/-UFYpnE_Ob0 Atari announces Swordquest scavenger hunt Video Game Update July 1982 pg 1 https://www.mobygames.com/game-group/swordquest-series Video game price war feared Play Things July 1982 Mattel loses suit over Odyssey patents https://www.nytimes.com/1982/07/27/business/mattel-patent-suit.html?searchResultPosition=16 https://en.wikipedia.org/wiki/Magnavox_Odyssey#Lawsuits Dragon 32 is coming https://archive.org/details/your-computer-magazine-1982-07/page/n16/mode/1up https://en.wikipedia.org/wiki/Dragon_32/64 https://en.wikipedia.org/wiki/Motorola_6809 Jon Freeman and Anne West fall leave Automated Simulations https://archive.org/details/cgw_5/page/n5/mode/1up https://en.wikipedia.org/wiki/Epyx Sinclair loses more key staff https://archive.org/details/sinclair-user-magazine-004/page/n51/mode/2up https://archive.org/details/your-computer-magazine-1982-07/page/n37/mode/1up https://en.wikipedia.org/wiki/Jupiter_Ace https://en.wikipedia.org/wiki/ZX_Spectrum https://en.wikipedia.org/wiki/SAM_Coup%C3%A9 Wall Street downgrades Apple's future https://www.nytimes.com/1982/07/08/business/market-place-apple-fighting-to-stay-ahead.html?searchResultPosition=9 https://en.wikipedia.org/wiki/Apple_Lisa https://en.wikipedia.org/wiki/Macintosh https://en.wikipedia.org/wiki/Apple_II https://en.wikipedia.org/wiki/Apple_III Atari gets big order from Dade county https://www.nytimes.com/1982/07/15/business/atari-contract.html?searchResultPosition=1 https://ataripodcast.libsyn.com/antic-interview-420-brenda-laurel-atari-research Randall Kottwitz muses on laserdisc https://archive.org/details/softside-magazine-46/page/n5/mode/1up Randal Kottwitz - SoftSide - MacUser - https://www.patreon.com/posts/63640307 Tron flops with both critics and analysts https://www.nytimes.com/1982/07/09/movies/stock-decline-after-screening-of-tron-irks-disney-studio.html?searchResultPosition=1 https://www.boxofficemojo.com/title/tt0084827/?ref_=bo_se_r_2 https://www.boxofficemojo.com/month/august/1982/?sort=grossToDate&ref_=bo_md__resort#table https://www.nytimes.com/1982/07/07/movies/et-at-87-million-hit-of-summer-box-office.html?searchResultPosition=20 https://www.nytimes.com/1982/07/14/movies/ex-disney-animators-try-to-outdo-their-mentor.html?searchResultPosition=6 https://www.nytimes.com/1982/07/09/movies/disney-tron.html?searchResultPosition=1 https://youtu.be/DREG0dOW8jw https://youtu.be/cISmv0IGoQQ https://youtu.be/2BE3NqTRfLc Arcades eat into MAD magazine numbers Games People Pay Late July 1982 pg 12 https://www.comichron.com/titlespotlights/mad.html https://en.wikipedia.org/wiki/Mad_(magazine) https://www.mobygames.com/game/spy-vs-spy Video games and cable tv erode broadcast audience https://www.nytimes.com/1982/07/21/business/advertising-tv-ad-prices-are-raised.html?searchResultPosition=22 Recommended Links: The History of How We Play: https://thehistoryofhowweplay.wordpress.com/ Gaming Alexandria: https://www.gamingalexandria.com/wp/ They Create Worlds: https://tcwpodcast.podbean.com/ Digital Antiquarian: https://www.filfre.net/ The Arcade Blogger: https://arcadeblogger.com/ Retro Asylum: http://retroasylum.com/category/all-posts/ Retro Game Squad: http://retrogamesquad.libsyn.com/ Playthrough Podcast: https://playthroughpod.com/ Retromags.com: https://www.retromags.com/ Sound Effects by Ethan Johnson of History of How We Play. Copyright Karl Kuras Find out on the VGNRTM tron, atari, apple, macintosh, sinclair, spectrum, commodore, c64, dragon32, mattel, odyssey, magnavox, swordquest, vcs, activision, kc munchkin, games by apollo, colecovision, sega, arcade, fuzzy wuzzy wizerds, chuck e cheese, donkey kong, nintendo, gottlieb, pacman, ms pacman, zaxxon, gremlin, bradley trainer    

In this week's episode, the guys review the 2007 show Code Monkeys. A first-of-its-kind on a first-of-its-kind network....what could go wrong?Visit the Patreon and Website!Smells Like HumansLike spending time with funny friends talking about curious human behavior. Listen on: Apple Podcasts SpotifySupport the show

Get started with Educative! Follow this URL for 10% off: https://educative.io/educativelee Swizec Teller started his career coding PHP websites for $5/hour, now he leads teams at hyper growth startups in Silicon Valley. Along the way he learned a new senior mindset focused on business outcomes and ownership. He learned what makes these startup engineers special. Why they make those crazy salaries despite not being any better at writing code. Now he wants to share that with the world at SeniorMindset.com. Watch the YouTube HERE: https://youtu.be/GCh2-rx2thU   ABOUT OUR GUEST   Swizec Teller is a software engineer, author, educator, and indie hacker from Slovenia. His career in San Francisco changed how he thinks about coding and he wants to share those lessons. Visit Educative to start your journey into code ►► https://educative.io Explore the Edpresso platform and become a contributor! ►► https://educative.io/edpresso Don't forget to subscribe to Educative Sessions on YouTube! ►► https://www.youtube.com/c/EducativeSessions   ABOUT EDUCATIVE   Educative (educative.io) provides interactive and adaptive courses for software developers. Whether it's beginning to learn to code, grokking the next interview, or brushing up on frontend coding, data science, or cybersecurity, Educative is changing how developers continue their education. Stay relevant through our pre-configured learning environments that adapt to match a developer's skill level. Educative provides the best author platform for instructors to create interactive and adaptive content in only a few clicks.   More Videos from Educative Sessions: https://www.youtube.com/c/EducativeSessions/   Episode 109: "From Eastern European Code Monkey to Silicon Valley Leader" with Swizec Teller of Tia | Educative Sessions

It's come to this: Mike and Tracy exchange horse-themed gifts. Two hearts, two bodies, one soul; when there was one set of tracks in the sand, those were clearly horse tracks. Look at the shape of the shoes. I was carrying you on my back.

July 23 - August 5, 2007 This week Ken welcomes old friend, animation writer Marly Halpern-Graser back to the show. Ken and Marly discuss the last time he was on the show, SEVEN years ago, Marly's new MCU podcast with his brother, Thai food, Ken and Marly's tradition of getting Italian food in L.A., the influence of Sleeping Beauty on Italian Horror films, Aquaman, how much people get paid in Hollywood, pitching shows, when Marly first moved to L.A., Heroes, Lost, the 2007 Sci-Fi TV boom,  I Hate My 30s, VH1's original programming, BBC America showing Star Trek, Doctor Who, getting into Tom Baker, how Ken was the "put together" stand up in the 00s, Zebro, Chocolate Cake City, making online content in the early days of the internet, Shark Week, Snakes on a Plane, Back to the Future/Brokeback Mountain mashups, San Diego Comic Con, Emerson College, Kevin Bright, Hulu, how much it costs to set somebody on fire, making Nazis the heroes, The Gifted, watch parties, the weird sad end of Stan Lee, the mystery of why Ken has never been on the Warner Bros lot, Loonatics, Legion of Superheroes, The Batman, living in an apartment building for child actors, being more open minded about TV, Ken re-writing the New Mutants movie, Siskel & Ebert, confusing Batman '89 and Batman '66, Ken never watching the Jon Stewart era of The Daily Show, Steven Segal movies, when Jeremy Piven got punched in the dick at a comedy club in Boston, why videos of bad people getting hurt are always funny, the grape stomping news blooper, when Superboy fought Spider-Man, The Greatest Open Mic in the History of the World, Right Now Kapow, feeling thrilled and then instantly embarrassed when Graham Linehan gave you a compliment, Buckaroo Banzai, how there are five new Spongebobs this week, Code Monkeys, Ned's Declassified School Survival Guide, The Naked Brothers Band, real life superheroes, The Simpsons, MoreMAX, HBO II, Entourage, Flight of the Conchords, how hard Joey failed, and how Ken is probably responsible for The Mighty Boosh airing on Adult Swim.

bleeptrack heißt im bürgerlichen Leben Sabine Wieluch. Die studierte Medieninformatikerin wollte kein Code Monkey werden und machte sich 2021 als Creative Technologist selbständig. Sie erstellt Kunst durch Code, u. a. für den KI-Salon Heilbronn. Sabine Wieluch ist die erste Originalteile-Gästin, die weder in Heilbronn und der Region geboren wurde, aufgewachsen oder zugezogen ist. Als erste Creative Technologist der Stadt ist sie trotzdem ein Heilbronner Original. Im Podcast erzählt bleeptrack, woher ihre Begeisterung für Technik und Code kommt, wie man einer Maschine beibringt, künstlerisch und kreativ zu werden, weshalb KI Menschen braucht und wie es zu ihrem Kontakt unnd Engagement in Heilbronn kam. Und was sie lieber analog als digital macht. Audio: Philipp Seitz (www.philipp-seitz.de) Werbung wegen Namensnennung! Unterstützer und Möglichmacher dieses Podcasts ist das Autozentrum Hagelauer als Premium-Freund dieses Podcasts.  Neuwagen und Elektromobilität vom #HeilbronnerOriginal​ gibts hier: www.hagelauer.de  #originals​ #podcast​ #heilbronn​ #heilbronncity #42heilbronn #kisalonheilbronn #bleeptrack #creativetechnologist #code #codeart

Phil_Not_the_Doctor wants you to know that inside every bathroom there is a poop-encrusted tube of air that blows the ever increasing layers of poop stuck to the inside of the tube out into the yard. He also said to say that the intro song is by Henrik. The background music is Regan by My Parents Favorite Music. The ending song is Code Monkey by Johnathan Coulton. SUPPORT THE PLA: For extra weekly shows, join PLA's Patreon or subscribe on Spotify. Watch live shows on Twitch. Get PLA stickers from our Zazzle store. Get PLA t-shirts in our Spreadshirt store or our TeePublic store. You can find other merch on our Bandcamp page. Buy important things for us at PLA's wishlist or Brad's wishlist or just support us in other ways and tell every last person you know about the shows. JOIN THE COMMUNITY: Add PLA on Facebook, add Snow Plow Show on Facebook, add PLA on Twitter, add PLA on Tumblr, add PLA on YouTube, add PLA Shows on YouTube, PLA on Twitch, PLA on Instagram, join a Prank Call Discord, the PLA Reddit, add RBCP on Instagram, add RBCP on Twitter, add RBCP on YouTube, add @phonelosersofamerica on Tik Tok, add PLA on IGTV, leave a voice message for the show at 814-422-5309, call into live shows at 845-470-0336. --- Support this podcast: https://anchor.fm/hobosode/support

[קישור לקובץ mp3] שלום וברוכים הבאים לפודקאסט מספר 425 [?To Early] של רברס עם פלטפורמה! היום ה-1 בנובמבר 2021, השעה היא פחות או יותר 2100 בערב ואנחנו נמצאים באולפן הביתי שלנו אשר בכרכור - אהלן אורי! הקדמה ארוכה . . .היום אנחנו מתכבדים לארח את שמעון - אהלן שמעון! - (שמעון) אהלן, כיף להיות פה, תודה רבה - (רן) איזה יופי שבאת וברוך הבא . . . - (שמעון) עשיתי את המסע מתל אביב, אני בטח לא היחיד פה שעולה לרגל . . . - (רן) בסוף עוד תקנה פה בית . . . (אורי) . . . והצטרפת ל-425 הרגלים . . .(רן) אז שמעון - ברוך הבא! שמעון מחברת Datree, והיום אנחנו הולכים לדבר בעיקר על Kubernetes ועל איך עושים רגולציה למפתחים, אבל תיכף נדבר על זה בצורה קצת יותר . . .(שמעון) זו מילה נוראית . . . (רן) בקטע טוב! . . . איך בעצם שומרים על Policy שפוי, ככה שה-Production שלנו לא יפול ויתרסק - כשאנחנו מדברים ספציפית על Kubernetes, אבל אולי גם נכליל את זה.ולפני שנצלול לנושא - נושא עמוק וטכני ומעניין - ספר לנו קצת עליך, שמעון:(שמעון) נעים מאוד, קוראים לי שמעון, אני בן 33 מתל אביבמה שנקרא “התקנתי את הלינוקס הראשון שלי” בגיל 12, ומאז התאהבתי ב-Open Source - אני זוכר, זה היה אז Red Hat 6 . . . לאחר מכן, פתחתי את החברה הראשונה שלי בגיל 15 - בתחום של Web Hosting ושרתי משחק [Game Servers]זה בתקופה שלפני ה-Cloud . . . .ו-Fast Forward: שירתתי בצבא, הייתי חוקר עבירות מחשבעבדתי אצל שי אגסי ב-Better Placeהייתי ב-Intel Security - מה שהיה Mcafee - אז יש לי קצת רקע ב-Securityולפני שפתחנו את Datree, הייתי ה-General Manager של חטיבת פיתוח התשתיות של Iron Source - היה מאוד מעניין לעשות Scale לחברה מ-30 עובדים ל-1,000 עובדים, עם תשתיות פיתוח ל-400 מתכנתים.ושם הרגשתי הרבה מאוד מה-Challeng-ים שאנחנו פותרים היום ב-Datree.(רן) אוקיי, אז אתה אומר שגדלתם מ-30 ל-400, פחות או יותר?(שמעון) מ-30 ל-1,000 - זה בכללי, עובדים; [מבחינת] מתכנתים הגענו ל-400, אני חושב.(רן) בסדר, אז 400 מפתחים עובדים כנראה על Cluster די גדול - ומישהו צריך לנהל את ה-Cluster הזה ולדאוג לזה שהוא יהיה “בריא” - וכנראה שיש כמה Cluster-ים כאלה. אולי לצערך או לשמחתך - זה היה התפקיד שלך, בין השאר . . . או שאתה ניהלת את הכוח שעשה את זה.(שמעון) כן . . . .שמע, אתה יודע - בחברה, לצורך העניין, כמו Iron Source, יש לך הכל: ECS ו-Fargate ו-Kubernetes ו-EC2 רגיל ו-Bare Metal באיזה Co-location . . . . יש הכל אז באמת מהבחינה הזאת, יצא לי לעבוד עם הרבה מאוד סוגים של תשתיות.אגב - גם AWS וגם GCP וגם Azure, כי אתה בסוף . . . היה לנו גם GitHub, גם GitLab וגם Bitbucket - לא כי רצינו, אלא כי אתה רוכש חברות ודברים נכנסים . . .(אורי) Iron Source גדלה הרבה מרכישות, ו . . .(שמעון) נכון - ואגב, זה היה אחד מה-Challenge-ים, שאין אחידות - הכל . . . אני לא אגיד “ג'ונגל”, אבל “רב-גוני” . . . .(אורי) אהה . . . (רן) ג'ונגל . . . ג'ונגל.(אורי) Iron Source, יאמר לזכותם, ואולי זה גם חלק מהיופי של לעשות רכישות ולתת לכולם להמשיך לרוץ קדימה . . . (שמעון) חד משמעית, זה היה מקום מדהים - מאוד מאוד שמחתי לעבוד שם והיו Challenge-ים מאוד מאוד מעניינים.ובאמת ככה יום אחד התעוררתי - ובלילה, אחד המתכנתים עשה טעות והכניס Misconfiguration שהגיעה ל-Production . . . זה קרה פה לכל המאזינים, כנראה - מ-Secrets שדלפו לאיזשהו GitHub Repo או Misconfiguration, בין אם זה Kubernetes או -EC2 או לא משנה במה אתם משתמשים - וזה הגיע ל-Production.וזה בסדר - אני כל הזמן עושה טעויות, אנשים טועים, אבל אחד ה-Challenge-ים הכי גדולים היה “אוקיי, סבבה - Fool me Once זה בסדר, Full me twice זה בעיה שלי . . .”איך אני אגרום עכשיו ל-400 מתכנתים לא לעשות את אותה הטעות שוב.(רן) אה, אין שום בעיה - שולחים אימייל! : “חבר'ה - בבקשה לא לעשות Misconfiguration!”(שמעון) אתה צוחק, אבל אני ראיתי הרבה ארגונים ששולחים מייל . . . “חברים, מעכשיו משתמשים בגירסא הזאת, מעכשיו משתמשים ב-Container-ים האלה”.מן הסתם, זה די מגוחך וזה לא עובד.ניסיתי כל מיני דברים . . . ניסיתי את ה-Email . . . אני מאוד פעיל בקהילותאני אחד מה-Co-Organizers של CNCF Tel Avivאני AWS Community Hero, אז אני מוביל את ה-Meetup הכי גדול בעולם של Amazon . . .יש לנו 8,000 אנשיםאמרתי בואו נעשה Meetup! עשינו Meetup, הסברתי על Secure Development ומה לעשות ואיך ולמה - אבל ברור שזה לא עובדזה חייב להיות in-flow ב-Development Process של המפתחים . . .(אורי) דרך אגב - יש מצב שאתה Community Hero בגלל שמישהו עשה טעות בקונפיגורציה, ודרך זה AWS נותנת לך את התארים . . .(שמעון) יכול להיות . . .(רן) הייתה פעם סדרה, אני לא יודע אם אתם זוכרים, בשם “גיבורים בעל כורחם” . . . אז הנה - דוגמא.(אורי) זה בהמשך ל-Darwin Awards . . . (רן) לא, “גיבורים בעל כורחם” הייתה סדרה אמיתית, בדרך כלל על חיילים שהגיעו לכל מיני מצבים מאוד קשים ואז נאלצו להראות את הגבורה שלהם - אז כמו שהם לא בחרו להיכנס לשם, גם אתה לא בחרת להיכנס לשם אבל יצאת בגבורה . . .(שמעון) כן, זה מה שקרה . . .אז באמת, אחרי 4 וחצי שנים נפלאות ומדהימות ב-Iron Source, יצאתי לדרך עם השותף של - אייר זילברמן - ופתחנו את Datree.מה שאנחנו עושים היום זה עוזרים למנוע מ-Misconfigurations להגיע ל-Production - בסביבת Kubernetesנכון, זו בעיה הרבה יותר רחבה מ-Kubernetes, וצריך אותה בכל מקום - אבל אין מה לעשות, אתה סטארטאפ ואתה צריך להתמקדאולי זה כבר לפרק אחר - עשינו שינוי מ-Top-Down ל-Bottom-Up, ל-Product-led Growth [אייר כבר עשה את הפרק הזה . . . ] - והיה לנו חשוב לעשות Flow מאוד ברור ומאוד פשוט - אתה מגיע לאתר והדבר הראשון ששאתה רואה מול הפנים שלך זה Copy-Paste של curl לטרמינל ואתה מתקין את ה-CLI . . .בשבוע שעבר חצינו את רף ה-5,000 Star-ים . . .(רן) מזל טוב! . . .(שמעון) תודה רבה, אנחנו באמת מאוד גאיםוככה יצאנו לדרך - כדי לעזור למתכנתים לעשות את הדבר הנכון.(רן) אוקיי, אז Kubernetes - למי שלא היה באיזור הזה בשנים האחרונות - Kubernetes זה Cluster Management, או Orchestrator יותר נכון. בעצם, אם יש לכן תוכנה שרצה בתוך Container - נניח Docker, לא ניהיה ספציפיים - ויש לכם אלפים כאלה, אז צריך משהו שינהל את אותם - שירים אותם, שיעשה להם Healing, שיפרוש אותם, שישים את הגרסאות הנכונות וכו' - ו-Kubernetes הוא זה שעושה את זה.עכשיו, למי שעדיין מכיר Kubernetes - כדאי שתכירו YAML או JSON - בעצם, Kubernetes פועל ע”י קבצים, קבצי-ענק לפעמים, של JSON-ים או YAML-ים שבאמצעותם אתם מקנפגים (Configure) - אתם אומרים “את ה-Product הזה תשים פה”, “את ה-Service הזה תשים שם” וכו'. ואז נשאלת השאלה- ?What could go wrong(שמעון) אז אני חושב שאולי באמת נדבר על המהפיכה שקרתה פה, כי אני חושב שזה משהו שהוא בקנה מידה של המצאת ה-VM, לטעמי.כי אנחנו חיינו גם - אז באנו ופתאום הגיעו ה-Cloud-ים ואז היה את ה-API של AWS ואת ה-API של GCP ואת ה-API של איזשהו Bare-Metal שאתה משתמש - וניהיה פה מגדל בבל.ואז קמו והקימו את ה-Cloud Native Foundation, את ה-CNCF, ואמרו: “חברים, בואו נעשה שכבה אחידה, שנוכל לדבר בינינו” - ותריץ את זה על Bare-Metal או AWS או GCP או Azure או איפה שתרצהאבל שתיהיה לנו שפה אחידה - כי זה לא הגיוני שאנחנו, בשביל לפתח מוצר, צריכים לתמוך בכל כך הרבה דברים.עכשיו, כשעשו את זה - זה כבר היה בתקופה שהיא יחסית מאוחרת, ויכלו לבוא ולהכיל את ה-Modern Practices בתוך זהאז למשל, בתוך Kubernetes אין UI שאתה יכול לעשות לו Launch Instance, פשוט אין דבר כזהאין שום כפתור שאפשר ללחוץ - יש רק קבצים, לצורך העניין YAML-ים, שלוקחים ועושים להם Apply - ובעצם שולחים אותם לשרת ואומרים “היי! הנה ה-Instructions set של מה שאני רוצה שיקרה!”.ואני חושב שזו מהפכה - כי זה מביא אותך לעולמות של GitOps, זה מביא אותך לעולמות שהכל מתועד, על כל שינוי שקורה אתה יכול לדעת מי שינה אותו ולמה שינה אותו ואיך להחליף אותווזה באמת שם לנו Even Playing Field מסויים - שלטעמי זה ממש הדור הבא . . . . לא רק לטעמי - ניתן לראות מה קורה בעולם.(רן) זה למעשה כלי שנותן לך לתאר את סביבת ה-Production שלך בצורה . . . כקונפיגורציה (Configuration), בצורה שהיא דיסקרפטיבית (Descriptive) - אתה לא צריך להריץ Script-ים כדי שיעבירו אותך למצב הזה, אלא אתה פשוט אומר “הנה, זה המצב - תעשה Apply, תכיל את זה” - וזה נשמע כמו פתרון מצויין, אבל עדיין יש לי תחושה שיש פה כמה צרות שמתחבאות פה בפנים . . .(אורי) יש תמיד את המתח הזה, בין האם אני עושה UI ומאחורי ה-UI אני יכול לשמור על . . . אני יכול להפעיל חוקים או למנוע אפשרויות מסויימות ב-UI - ואז זה שומר עלי; או שאני נותן לעשות את ה-Description באמת בקובץ ועל הקובץ הזה יש לי בעצם Audit של מי עשה ומה עשה ואני יכול לתחקר אחורה - אבל זה הכל שאלה של . . .(שמעון) Flexibility? . . .(אורי) . . . האם זה מניעה או האפשרות אחר כך לתעד . . . או Full Flexibility והיכולת לתחקר אחורה.(שמעון) Simplicity vs. Flexibility, אני קורא לזה . . .ובאמת, חד-משמעית, הלכו All-in על Flexibility - מה שמוריד את ה-Simplicity פשוט לאפס . . . ובדיוק מה שדיברנו פה - זה מביא להמון המון בעיות.אבל לפני שניכנס לבעיות ספציפיות ב-Kubernetes, אני חושב שגם מאוד חשוב לדבר על עוד Transition אחד שקרה - וזה שבהרבה ארגונים התחילו לשבור את החומה . . . אם לפני כמה שנים שברנו את החומה של של ה-QA ושל ה-Dev, אז היום שוברים את החומה של ה-Ops ושל ה-Devיש לנו את העולם של לפתח בצורה אג'יילית (Agile) ו-DevOps-ית - ובהרבה ארגונים הולכים או עשו “You built it - You run it - and you operate it” . . .“אני, ה-DevOps, לא אקום בארבע בבוקר כי אתם כתבם באגים - אתם תקומו בארבע בבוקר ואתם תסדרו את זה”עכשיו, מן הסתם יש לזה יתרונות, כי זה נותן לנו Speed of Delivery, אתה לא צריך לחכות לאף איש DevOps, אתה לא צריך להיות תלוי באף אחד, יש לך Full Ownershipמצד שני . . . (רן) זה נותן Accountability, שזה דבר מאוד חשוב . . . אתה אחראי: אתה עשית פאשלה, אז אתה גם אחראי לתקן אותה.(שמעון) חד-משמעית - אבל מצד שני . . . .(אורי) וואי, אתם מדברים מה-זה-2015 . . . (רן) כן, אנחנו רק משחזרים את ההיסטוריה . . .(שמעון) בדיוק, אנחנו קצת במסע בזמן (רן) . . . תיכף נגיע ל-2021 . . . (שמעון) . . . ומנגד, מן הסתם, וואלה - אולי אני ה- Java Payment Engineer הכי טוב שיש, אבל מה לי ול-Docker-ים? מה לי ול-Kubernetes? אני לא מומחה בדבר הזה, ופתאום אני נאלץ לבוא ולגעת בדברים האלה, שאני לא כל כך מבין בהם הרבה.וגם לא הגיוני לצפות עכשיו מכל מפתח Java - או לא יודע, כל מפתח בכלל - שיהיה Expert תשתיות של Kubernetes, זה פשוט לא . . .(אורי) או שלפחות יהיה מודע לתשתית . . . (שמעון) נכון.(רן) אוקיי, אז פה אנחנו מתחילים לראות את הבעיה, זה קצה הקרחון . . . בואו נצלול פנימה, נראה כמה קירות בקרחון הזה.(שמעון) אז בוא ניכנס יותר עמוק לעולם הבעיה ב-Kubernetes ואז נדבר על עולמות הפתרונות השונים.אז באמת קראנו מאות פוסט-מורטמים (Post-Mortem) של Outages ב-Kubernetes - ואני חייב להגיד שרוב הטעויות . . .ואגב גם ניתן לקרוא היום - למשל State of Security Report של Red Hat 2021, מראה שבאמת בכל הארגונים ה-Number 1 Concern זה Misconfigurations . . . .זה לא Security incidents ולא שיפרצו לי - זה שאנחנו נדפוק את עצמנו . . . בגדול, זה ה-Number 1 Challenge עכשיו . . .ומה שקורה זה קצת מה שדיברנו - בגלל ש-Kubernetes בנוי ל-Flexibility, אז אני יכול לעשות הכל - אבל אז אני אומר “טוב, אני אביא Container ואני אקח איזה Copy & Paste של איזה Template פשוט - ואני אריץ שם, לא יודע - RabbitMQ, וביחד עם ה-Service שלי ועוד איזשהו Redis ויריץ אותו . . .אמממה? שכחתי ש-RabbitMQ, ב-Default שלו, עושה Consume לכל ה-Memory שהוא יכול, כי הוא עושה לזה Queueing . . .ולא שמתי Memory-Limit בתוך ה-Kubernetes YAML שלי ל-Workload הזה.ועכשיו אני בבעיה, כי יש לי “Pod סורר”, שלקח עכשיו את כל ה-Memory של כל ה-Node - ועכשיו אני יכול לחוות Outage . . .עכשיו, אתה - כ”מפתח קלאסי”, נקרא לזה - אולי אתה לא חשוף לזהאולי אתה גם רגיל לעבוד בעולמות הוירטואליזציה (Virtualization) או ה-EC2, כשאתה יודע שכל דבר רץ על Instance ולכל דבר יש את ה-Boundaries שלואבל מה לעשות - פה לא . . . פה אתה יכול להריץ Kubernetes על ה-Bare-Metal אפילו, ופה ה-Docker יכול לרוץ Native . . .וזו רק דוגמא אחת - יכול להיות שלא שמתי Liveness Probe או Readiness Probe . . . והדוגמאות הן עוד מאוד ארוכות . . . (רן) עכשיו, בעיקרון הייתי יכול גם לפני זה לקחת RabbitMQ ולהתקין אותו בצורה לא נכונה . . . אבל זה היה קשה יותר. עכשיו זה ממש קל - זה להעתיק YAML ולשים אותו בפנים - וזה עובד. לפני זה הייתי צריך לעבוד קשה, ורוב הסיכויים שאם הייתי עובד קשה, אז גם הייתי מבין איך נכון לעשות את זה, ועולה מראש על הטעויות שלי.פה זה כל כך קל, שזה פשוט להעתיק YAML מ-Stack Overflow והנה - לכאורה זה עובד . . . עד אשר מגיעה השעה 3 בלילה - ואז זה מפסיק לעבוד . . . (שמעון) נכון . . . שמע, יש דברים כמו . . . דברים שקרו נגיד ל-Targetשמו CronJob וה-Restart Policy שלו, אופס . . . עשו טעות וראו שזה כל הזמן עושה Restartאממה - ה-Pod הזה, היה בו איזה Error - אז הופ! עשו Spin ל-4,500 Pod-ים עם ה-Cron הזה, שדפק להם את כל ה-Cluster.עכשיו, זו טעות קטנה, של “האם אני עושה Restart Always או Never או Kill” - אלו דברים מאוד מאוד פשוטים, לכאורה . . . .ופתאום אין לנו את ה-Guard Rails, שאולי היו לנו פעם עם ה-Ops - פתאום כל Developer שולח את זה ל-Cluster ו-טאק! אללה-באב-אללה, לך תדע מה יהיה . . .(רן) אז למעשה Kubernetes מצד אחד נתן . . . ייצר הזדמנות. עכשיו מאוד קל לפרוש דברים, מאוד קל לשבור את החומות בין Ops לבין Dev - אורי, עכשיו עברנו את 2015 אז אני מתנצל, אבל בנוסף . . . (אורי) התעוררתי . . .(רן) . . . אבל בנוסף, הוא גם נותן לנו, אולי, הזדמנות עכשיו גם לייצר רגולציה - מילה שאתה לא אוהב - או לייצר Safety, אוקיי? אבל בעצם, אם לפני זה כל אחד היה צריך לייצר את ה-Safety הזה בעצמו, ע”י Whatever-כל-מיני-כלבי-שמירה מסוגים שונים או כל מיני Script-ים כאלה שהיית כותב לעצמך, אז היום יש לך אפשרות לייצר את זה בצורה שמתאימה לכולם - זה קצת אולי מדבר עם ה-CNCF שעליו דיברת מקודם.אז מה עשה העולם, כשהוא ראה את הדברים האלה?(שמעון) שאלה מעולה . . . אז בעצם מה קרה? ניתן לראות שני סוגים של Approaches שנלקחו ע”י חברות - ה-Approach הראשון היה “טוב, זה קורה חברים, אין מה לעשות - מעכשיו כל שינוי ב-Kubernetes ב-YAML, ב-Helm Charts - מעכשיו ה-DevOps צריך לחתום על זה”, לעבור על זה . . .ואז במקום שה-DevOps יתעסקו ב-Customization, ב-Performance, בדברים שהם רוצים - הם נהיים מעיין “Human Debugger” ל-YAML, והם צריכים עכשיו - מסכנים, 20 DevOps-ים על 500 מפתחים - צריכים לעבור בראש, לעשות ביד Debugging ל-YAML-ים של מתכנתים . . .(רן) “ועדת DevOps” - הכי אוקסימורון שיש . . . “לך תעבור את הועדה” . . . (אורי) השאלה היא גם אם שליחה כזאת של קונפיגורצית Kubernetes קוראית כל הזמן? זה לא כמו כשמפתח שולח קוד . . . האם זה באמת קורה כל הזמן או שזה קורה לעיתים רחוקות ואז אולי זו לא בעיה . . . .(רן) למה שזה לא יקרה כל הזמן? אתה רוצה לשנות כמות זיכרון, אתה רוצה לשנות מספר Pod-ים, אתה כל הזמן . . .(שמעון) . . . אתה רוצה להריץ Service חדש, אולי מספר Service-ים . . .(אורי) בסדר, זה . . . כמה זה קורה עם המפתח? רוב העבודה שלו זה לפתח . . . אם פעם בכמה זמן הוא צריך לשנות את הקונפיגורציה (Configuration) של ה-Pod שלו אז בסדר . . . (שמעון) פה אני אקח אותך בחזרה ל-2015 . . . (אורי) אני רק אגיד - זה ברור שזה פחות . . . יש לו פחות עצמאות, אוקיי? אבל השאלה היא האם זה באמת קורה כל כך הרבה . . . (שמעון) שאלה טובה . . . האם זה קורה פחות מקוד רגיל? חד משמעית, אני בטוח.אבל אני אקח אותך שוב למסע בזמן ל-2015, נושא לעוס מכל כיוון - microServices vs. Monolith וכו' - אז כנראה שהאמת היא איפשהו באמצע.אבל בסוף אנחנו רואים, בארגונים שמשתמשים במערכות שלנו שאני יכול לדבר עליהם - עשרות ומאות של Service-ים . . .וגם אוהבים לעשות את ה-Separation of Concern - אומרים “אוקיי, יש לי משהו, אז במקום לדחוף אותו עכשיו לתוך אותו ה-Service ולהעמיס עליו עוד יותר - בוא נעשה Service נפרד!”אממה - בכל פעם שאתה עושה Service נפרד, יש לו קונפיגורציות משלו, דאטה משלו, אולי Databases משלו, אולי Cache-ים משלוואז ניהית לך פה “ערימה של Infrastructure” [על הדשא?], שאם פעם ב-Monolith היה לנו Monolith ענק עם שכבה דקה של Infrastructure - עכשיו יש לנו אפליקציה עם שכבה דקה של אפליקציה ומלא מלא Infrastructure מסביבה - כפול 500 כאלה . . .(רן) אני אעשה . . . דרך אגב, אורי - אני יכול לענות לך על השאלה של “עד כמה זה קורה?”: תקרא את ה-Post-Mortem-ים ותראה כמה זה קורה . . . קורה הרבה.(אורי) זה בסדר, אבל אתה יודע - תקרא את ה-Post-Mortem-ים של טעויות קוד . . . (רן) כן, אבל אתה יודע - אנחנו מנסים למצוא את היחס הנכון . . .אבל אנחנו רואים שזה קורה, זאת אומרת - זה קורה.(אורי) אני לא מתווכח עם זה שזה קורה - זה קורה, ויש תמיד את הצורך הזה בעצמאות, אבל חשוב לשים את ה . . .(שמעון) אני חושב שהשאלה, אורי, היא גם מה ה-Cost? - אם אני עשיתי עכשיו טעות והשתמשתי ב-Type הלא נכון או אני לא יודע מה יש בתוך הקוד שלי, לעומת אם אני עכשיו לא שמתי את ה-Memory Limit או את ה-Liveness Probe לא נכון, וזה יכול להשפיע לי על כל ה-Workload שלי ב-Clusterואולי זו הנקודה - להגיד מה ה-Blast Radius של טעות בקונפיגורציה של Kubernetes.(רן) אז פתרון אחד היה “וועדת ה-DevOps” הזו, שכולנו פסלנו . . . אוקיי, אילו עוד פתרונות?(שמעון) פתרון אחר זה הצד השני לחלוטין - זה “טוב, יאללה, אין מה לעשות, זה מה שיקרה” . . .(רן) “אכלתם אותה, חבר'ה . . . יש לכם Kubernetes, יש לכם YAML - תסתדרו”.(שמעון) נכון . . .(אורי) השאלה היא רק מי משלם את השיק . . .(שמעון) נכון - ואגב, אפרופו אתה אומר שיק, זה אחד ה-Use Case-ים באופן מעניין, כשאנחנו עוד מעט נגיע לדבר על הנושא של פוליסות, אבל לשים מעיין Cost Center - יש אנשים שמרימים מיליון דברים . . . וואלה, של מי זה? מה זה? מה זה עושה פה? מי ה-Owner? איזה צוות זה? מה קורה פה כאילו? [מי נתן את ההוראה?!](אורי) אני יכול להגיד שב-Outbrain, ברגע שנכנסנו ל-Kubernetes, הבנו שיש כמובן את העניין הזה של ה-Cost ופשוט פיתחנו Visibility לכל Cost - כל צוות יודע מה ה-Cost של ה-Service-ים שלו, כמה עולה לו כל Service, והם יכולים . . . פעם (Once) שאתה מודד את זה, את יכול לקחת Action.(שמעון) אבל השאלה היא איך אתה יודע שהמתכנת שהעלה את ה-Service הבא לא שכח לשים Label? . . .ואז המערכת שאוספת פשוט לא תצליח “לאסוף את ה-Owner” . . . .(אורי) אז במקום הזה, אנחנו בעצם בודדנו את המפתח מהתשתית ויש לו Pipeline שלם, והוא מבחינתו רואה “Service” . . .(רן) אז יש פה בעצם את פתרון מספר שלוש . . . דיברנו על שני פתרונות: אחד זה היה “וועדת DevOps” , שתיים זה “קחו אולר שוויצרי ותתחרעו עליו” - ושלוש זה לייצר אבסטרקציה: לא לחשוף להם את Kubernetes As-is, אלא ליצור שכבה שמפשטת את זה. [368 Kubernetes and Dyploma at outbrain](שמעון) בדיוק - ואגב, אני מאמין שבמובן מסויים, Datree איפשהו משחקת שם על ה-Abstraction Layer הזומילה שאני דווקא אוהב זה דווקא סוג של Guard Rails מסויימים - שוב פעם, במשחק שבין Flexibility ל-Simplicity.יש ארגונים שפשוט המפתח, בסופו של דבר, לא רואה שמאחורה זה Kubernetes YAML - הם עושים את ה”שמעון-YAML”, ויש להם שם ערכים מסויימים שחשופים אליהםזה Memory ו-CPU ו-Whatever-מה-שאני-רוצהאגב, יש כאלה שגם אם לא נתת את ה-YAML הפנימי שלנו - ה-Outbrain.yaml או ה-AppsFlyer.yaml - אז אתה לא יכול לעשות את ה-Deployment.ואז זה בעצם לקחו ופשוט . . . כי הרי יש אינסוף של פרמוטציות בקונפיגורציות (Permutations, Configurations) ב-Kubernetes, אז הלכו ועשו איזושהי Abstraction Layer על זה.(רן) אז במשרעת הזאת, שבין Flexibility ל-Simplicity, אז לקחו את זה לכיוון של Simplicity.(שמעון) נכון.(רן) וזה יכול לעבוד לחלק מהחברות, אבל כמו שאמרת יש לזה את החסרון של “אוקיי, לפעמים אתה רוצה לעשות משהו קצת אחר”.(שמעון) נכון(אורי) עכשיו, יש בעניין הזה שתי אפשרויות - אתה יכול לשים ממש אפליקציית ניהול מעל זה ולשים בפנים את כל ה”בדיקות נכונות” על ה-Input-ים שמגיעים מהאפליקציה, ויש פתרון של לבנות Compiler, אוקיי? . . . אתה עדיין יכול לשים Kubernetes YAML, אבל אני אריץ לך עליו . . . Debugger או . . .(שמעון) Linter אולי . . . (אורי) . . .שמפעיל את ה-Rules ש . . .(שמעון) יפה, בדיוק(רן) איזשהו מנוע . . . תיכף נגיע לזה, אני רואה שזה על קצה הלשון שלך - איזשהו מנוע-חוקים שאומר “זה בסדר - אבל זה לא בסדר”, אוקיי . . . “מותר לך להרים 50 Pod-ים, אסור לך להרים 51”“מותר לך להקצות 250Mb זכרון - אסור לך להקצות מילימטר יותר”אז איך עושים את זה?(שמעון) אז זה לוקח אותנו קדימה - דיברנו קצת על ה-Cloud Native Foundation, ויש שם הרבה פרויקטים, אני מאוד ממליץ.לאחד הפרויקטים קוראים Open Policy Agent (OPA) - הופה-היי . . . זה בעצם פרויקט שהוא, בבסיסו, ב-Core, זה Policy Agent, שאגב משתמשים בו להרבה Use-Case-יםיש חברות שמשתמשות בו בכלל ל-Authorization, כש-microService מדבר עם איזשהו microService אחרוכיש שם איזשהו User שרוצה לבצע פעולה, אז הוא פונה ל-Service ושואל אותו “האם שמעון יכול לעשות פעולת Delete - כן או לא?”ובעצם מפרידים את ה-Logic Layer של ה-Decision Making מהבחינה הזאת, לבין האפליקציה עצמה.(רן) וה-Scenario הזה לא קשור ל-Kubernetes?(שמעון) לא . . . אני נותן דוגמא אחת כדי שנבין את הזה . . .בגדול, ל-Open Policy Agent יש שתי צורות של הרצה שלו - או כ-HTTP Server שאתה פונה אליואו שאתה יכול להביא אותו כ-Library, שאתה פשוט מדבר איתו.עכשיו, ה-Interface של הדבר הזה הוא שפה דקלרטיבית (Declarative) שקוראים לה Rego, שהיא Inspired ע”י שפה בשם Datalogוה-Emphasis בשפה הזו הוא What you see is what you getזאת אומרת שאין שם איזה-שהם אובייקטים מטורפים או לולאות מטורפות או דברים דינאמיים . . .הפוך - מנסים כמה שיותר שיהיה דיסקריפטיבי (Descriptive) ו-Fair, אני אגיד שזו שפה לא-הכי-קלה שיש . . . היא מצד אחד . . . נכון, היא דיסקריפטיבית, אבל מצד שני זה קצת “מקשה על העין”.(רן) כן - ועכשיו צריך מישהו שישמור עליך מפני השפה הזאת, כי גם שם אתה יכול לעשות שגיאות . . .(שמעון) נכון . . . . אז בעצם זה לוקח אותנו למקום שאתה יכול לתת פוליסות - ולפוליסות האלה אפשר לפנות ולשאול האם אני יכול לבצע פעולה או לא לבצעהוא פשוט שואל אותי - “מה אתה אומר?”נותן לך Input של Data, נותן לך Input של Rule-ים - תבדוק לי ותגיד לי האם זה בסדר או לא בסדר.ואז, כדי להיכנס טיפה יותר עמוק, יש את Conftest ו-Gatekeeperכש-Conftest - כשמו כן הוא: Configuration Test שמבוסס על Open Policy Agentוהוא כבר נבנה ב-Use Case של לעשות בדיקות על Configuration Filesכשאחד ה-Configuration Files, מן הסתם, זה Kubernetes YAMLsואתה ממש יכול לרשום שם “תבדוק לי האם קיימים Label-ים, והאם יש Label מסוג Cost או Team? ואם לא - אז תיכשל!”ואז בעצם מה שעושים זה שבתהליך ה-CI/CD או כ-pre-commit Hook או מה שזה לא יהיה, אנחנו מריצים את הטסטים האלה.אז זה צד אחד, זה Conftestהצד השני זה Gatekeeper - כש-Gatekeeper זה אותו דבר, מריץ את ה-Rego Policies - אבל זה עובד כ-Admission Webhook Controller בתוך Kubernetes.קצת דומה למערכות הפעלה - System Callsבעצם, כשמתרחשת פעולה . . . .(רן) רגע, שנייה, בוא - אני אעצור אותך . . . יש פה הרבה מושגים ואני רוצה לפרוט אותם.אז קודם כל, ה-Conftest - זה משהו שאם אני מבין נכון ירוץ ב-CI או באיזשהו Pipeline שבו אתה . . .אוקיי - שינית קוד של Kubernetes, נגיד ששינית YAML או . . . אפילו אם יש לך איזשהו כלי, נגיד כמו מה שיש ב-Outbrain - אבל בסופו של דבר הוא שינה את הקונפיגורציה של Kubernetesקודם כל תריץ על זה Conftest - ואם הוא יגיד שזה בסדר אז תמשיך הלאהלצורך העניין - “תמיד חייב להיות Label של Cost”, שתדע לאיזו קבוצה זה שייך.ו-Admissions זה כבר סיפור אחר - זו חיה שכבר חיה בתוך Cluster של Kubernetes . . . [עמק החיות המוזרות?](שמעון) . . . כי אתה יכול לשאול אותי “שמעון - אבל מה אם יש לי בנדיטים? מה אם הם עושים kubectl - Apply בום-טראח לתוך ה-Cluster, ולא עובדים עם GitOps ולא עוברים בתוך ה-Pipeline?”אז לשם זה יש באמת את Gatekeeper, שאני לא יודע עד כמה אנחנו רוצים לחפור עמוק אבל זה שוב פעם כמו במערכות הפעלה, כשיש לך System Calls - אז זה לצורך העניין ככה ה-Antivirus עובד - יש איזשהו Executable שרוצה לרוץ, המערכת הפעלה קוראת ל-Antivirus ואומרת “אתה שומע, חביבי - זה בסדר? זה לא בסדר?”והוא הולך ומריץ בדיקה ואומר לו “בסדר” או “לא, תעשה לזה Block”.בדיוק אותו הדבר - רק על Kubernetes(רן) אוקיי, אז אפשר לחשוב על זה כמו על ה-Bouncer בכניסה למועדון לילה, שבא ומסתכל הטיפוסים - “אתה בסדר, אתה נכנס” או “אתה לא בסדר, אתה לא נכנס” - וגם זה על בסיס איזושהי Policy [יותר Profiling . . .]. גם זה, דרך אגב, OPA?(שמעון) כן, גם זה מבוסס OPA וגם זה מבוסס על פוליסות ב-Rego(רן) אוקיי, אז ההבדל המשמעותי זה ש-Conftest רץ בזמן, נקרא לזה “על יבש” - הוא רץ על הקונפיגורציה, אבל Gatekeeper רץ בזמן ה-Execution, ככה שגם אם ניסית לעקוף איכשהו את ה-Conftest אז הוא יעצור אותך בכניסה.(שמעון) מדויק(רן) אוקיי, ובאופן טיפוסי אתה רואה חברות משתמשות בשניהם, באיזשהו אופן? עם קונפיגורציה משותפת? אולי איזשהו שילוב של מה שאורי הזכיר מקודם, של אבסטרקציה מעל? מה קורה בשטח?(שמעון) אז מה שקורה בשטח זה דה-פאקטו היום ניהייה סטנדרט Across the board ה-Open Policy Agent ואני רואה הרבה חברות שמשתמשות ב-Conftest ו-Gatekeeperאבל איפה ה-Challenge?אז אתה אומר לי “שמעון, שכנעת אותי! שמעתי ברברסים, נשמע מדהים!”יאללה - הולך, נכנס, מוריד Conftest - אבל אז אתה מוצא את עצמך בוהה, מול מסך ריק - ואתה אומר : רגע, אבל אילו פוליסות אני אשים?” . . . .מה - אני אחכה ל-Outage הבא כדי לדעת אילו Policies לשים? זה אחד . . . ושתיים - אתה אומר “יש לי Git Repositories 500, אז מה - עכשיו אני אעשה 500 Commit-ים ל-Conftest הזה?”“ועכשיו אני רוצה לשנות Policy - אז מה, אני אעשה 500 Pull-Request-ים?”אז פתאום אתה אומר “רגע - אני צריך איזושהי דרך Central-יסטית לנהל את זה”ואז מה שקורה זה שהיום, בעיקר ארגונים, הולכים ובונים את ה-Layer הזה, של(א) להבין איזה חוקים לשיםו-(ב) של צורה לשלוט בזה . . . בצורה מבוזרת - ובונים את זה בעצמם.שזה גם מביא איזשהו Dashboard שמראה אילו Locations יש, מה בעצם קרה, מה רץ איפה ולמה . . .שאגב - זה בדיוק Datree . . . בנינו בדיוק את מה שהרבה חברות בונות - פשוט אנחנו נותנים את כ-Service.(רן) אז Datree . . . דרך אגב - מאיפה השם? עוד לא דיברנו על זה . . . אבל Datree זה ”כלי שבא ועוזר לך לנהל את ה-OPA שלך” [אחד ה-One-liners אם לא ה-] - זאת אומרת, יש לך פוליסה, אתה מבין בגדול מה אתה רוצה לעשות - אבל עכשיו לך תכיל את זה על 500 Repositories וכו' - וזה מה ש-Datree עושה.אז מאיפה השם?(שמעון) אז זה כמו Data-Tree . . . למפות, אתה יודע . . .בגדול, אנחנו Abstraction Layer מעל הדבר הזה - אתה עושה brew install datree ויש לך Datreeאתה לא צריך להתעסק עם שום “OPA-ות שמופות” . . .אין לך כלום מאחורה.ודבר ראשון מגיע לך, Built-in, שלושים חוקים, שהם, נקרא לזה “נכתבו בדם”מתוכם 21 מופעלים ב-Default ו-9 כבויים.ואתה יכול להריץ את זה על Helm Chart-ים שלך או על Kubernetes YAML-יםלאחר מכן, אתה יכול להיכנס ל-Dashboard שלנו ולהפעיל או לכבות כל Policy - ולהתחיל ליצור פוליסות שונות.כי אתה יכול לשאול אותי “שמעון! אז הדלקתי פה, שמתי Memory Limit 4Gb - ועכשיו באו אלי הצוות של ה-AI ואמרו לי ‘מה זה 4Gb? אני לא מתעורר ב-4Gb! תן לי 50Gb! . . . “רגע - צוות כזה צריך ככה וצוות כזה צריך ככה . . . אתה פתאום צריך הרבה חוקים והרבה פרמוטציות של הרבה Policies . . .זה פתאום מתחיל להסתעף . . .ואתה אומר “מה עם ה-Global Policies, שאני מכיל אותן לכל הארגון? אולי אני חייב Liveness ו-Readiness פה בכל Workload?”אבל עכשיו, הדברים שהם קונפיגורביליים (Configurable) ספציפית פר-Service - הם צריכים לדעת את ה-Context של ה-Service הספציפי.ובעצם, כאן אנחנו נכנסים - אנחנו נותנים לך, במקום אחד, לבוא ולהגדיר את הדברים האלהכמובן שאנחנו גם תומכים בלכתוב Custom Rulesאגב, אנחנו תומכים בלכתוב Custom Rules גם לא ב-OPA - כי דיברנו עם הרבה מהלקוחות שלנו והם אמרו “שמע, זה פשוט מסובך . . .כאילו, תן לי, אתה יודע, תן לי לעשות איזה YAML פשוט . . .”אז לקחנו את JSON Schema - זה RFC Specification, שיש לו מימושים ב-JSON-ים וב-YAML-ים שונים, ובעצם אתה יכול להגדיר חוקים בצורה פשוטה וקלה, ואנחנו מורידים ממך את כל העול הזה.(רן) איפה, לתפיסתך צריך לעבור הגבול - אם צריך לעבור גבול, לצורך העניין - בין ה-Operations לבין הפיתוח? ואני מצטער שאני חוזר ל-2015, אבל בואו נעשה את השאלה הזו רלוונטית . . .נגיד, לדוגמא - האם ה-Operations הם אלו שצריכים להיות אחראים על ה-Policies והפיתוח הם אלה שלוקחים את זה משם? האם ה-Operations הם אלו שצריכים להיות אחראים לא רק על ה-Policies אלה גם על ה-Cluster עצמו ועל כל מיני . . . ועל הגדרות גנריות, ולתת למפתחים רק כמה Call-Back-ים מסויימים, לצורך העניין “את מספר הפורט אתה תקבע, אני אקבע את כל השאר” או “את כמות הזכרון אתה תקבע, את כל השאר אני אקבע” . . . זאת אומרת - איפה לדעתך צריך באמת להיות הגבול בין תחום האחריות של צוות ה-Operations לבין צוות הפיתוח?(שמעון) שאלה מעולה - אני חושב שאני אתחיל בתשובה של “כמובן שזה תלוי . . .”, אני לא כזה מבוגר אבל אני קצת פחות ילד ויודע שהתשובה היא תמיד, מה שנקרא “זה תלוי” . . .אני יכול להגיד מה אני רואה בארגונים - אז דבר ראשון, אני רואה בבירור מובהק שכל ארגון, יש בו את ה-DevOps, יש בו סט אחד של פוליסות שהוא כאילו Company-wide Policiesשאומר “תשמע, בלי Health Checks ב-Container, בלי Liveness Probe, בלי Readiness Probe - חברים, אי אפשר”.“בלי Cost Center Label אני לא יכול” . . .“אני לא יכול” - וזה ברמות של, כאילו . . . ב-Iron Source היה לנו את “ה-Iron Hunter” שהיה הולך ומוצא כל Resource שלא היה מתוייג ופשוט הורג אותו . . . .אמרנו “חברים, הולך להיות פה Hunter - אנחנו מודיעים על זה מראש, יש לכם שלושה חודשים . . .”(רן) “אל תתפשו בלי . . . “(שמעון) לא, אמיתי - זה היה הורג Resource-ים . . . תקשיב, זה משוגע לחלוטין, אבל כאילו הגענו למצב שזה פשוט לא היה . . . לא הייתה ברירה.אז זה דבר ראשון.דבר שני - עכשיו אני מתחיל להיכנס פנימה, ואני חושב שזה גם דיבור שהוא מאוד כזה Cultural - האם יש לך צוות Cental-יסטי אחד וכל השאר מתכנתים? האם יש לך DevOps Ambassadors בתוך כל צוות, שיכולים לקחת את ה-Ownership הזה בשביל הצוות ולעבוד עם ה-DevOps?זה מתחיל להיות כאילו . . . זה מאוד נוגע ב-Culture של הארגון, וזה לא גרידא-טכנולוגי.(רן) מעולה, אוקיי . . .(אורי) אני רואה את זה . . . בכל דבר אתה יכול להגיד “בוא נעביר למפתח גם אחריות על KPI כזה ו-KPI אחר”, אתה יודע . . . מפתחים מאוד אוהבים את ה-Craftsmanship שיש להם, אוהבים את היעילות. אתה יכול להגיד . . . ויש כאלה שמניעים את ה-Business KPIs והם אוהבים את זה וסבבה.זו הרבה שאלה של איפה את שם Cost, אוקיי? ו-Cost אל מול Revenue - לפעמים שווה לי שמשהו יהיה יקר אבל הוא מזיז קדימה Business KPIs בצורה הרבה יותר גדולה.לפעמים צריך איזו “יד כללית” כזאת, שתסתכל על הכל ברמה קצת יותר . . . “אוקיי, יש לנו סוג של מומחיות בתשתית, יש לנו מומחיות של Cost Optimization בתשתית - תנו לנו לעזור לכם”.(שמעון) חד-משמעית . . . אני יודע גם שאתה נותן כאן הרבה את הדוגמאות של Cost, אני עבדתי גם בחברה שהיא Ad-Tech, אני מבין מאוד את העולם של ה-Cost.אני חושב שה-Ownership על ה-Cluster צריך להיות על ה-Bare-Metal של ה-Cluster, או נקרא לזה על הקונפיגורציות שלו - כן צריך להיות על ידי צוות מרכזי.והנושא הכמה-שיותר-אפליקטיבי צריך להיות בצד של המפתחים - ואז יש איזשהו “את האמת באמצע”.להגדיר בכמה אחוז CPU Memory זה עושה Scale-up לעוד Pod-ים? וואלה, זו גם שאלה אפליקטיבית . . .זו שאלה מאוד מאוד אפליקטבית, ולא משנה כמה תשתיות יגידו “לא, אתם מבזבזים פה Resource-ים!”יכול להיות שאם אני מרים אותו ב-90% CPU אז הוא “נחנק” ולא מצליח לעשות Serving ולא - אני צריך להרים עוד ב-70%.אז צריך להבין פה את ה-Balance משני הצדדיםאני כן מסכים, במובן מסויים, עם “היד הכללית המכוונת” - זה כמו שאולי לא צריך ללכת overboard על “You Own it, You Run it- ולכו תסתדרו לבד”, ואולי מהצד השני לא צריך לנעול הכל, ואתה עכשיו פה “Code Monkey”, מחליף מכפתור אדום לירוק.אבל אם . . . אני כן מאמין וכן חושב שזה היה שינוי ממש טוב שיש Ownership לצוותים אפליקטיביים - שהם קמים בלילה, שהם חושבים על “איך אני עושה לזה Scale, איך אני עושה לזה Load Balancing”, והם לא תקועים רק בחלל האפליקטיבי הזה שלהם.מה שאני שומע ממתכנתים זה שהם אומרים “תשמע, ה-Guard Rails האלה ממש עוזרים לי”כי אני יודע, תחשוב על זה משני הצדדים - ה-DevOps משקשקים כי הם אומרים “מכניסים פה שינויים לתשתית שהם לא יודעים מה הם עושים!” וה-Developers משקשקים כי הם אומרים “אני עושה פה שינויים וגם אני לא יודע בדיוק מה אני עושה” - ושני הצדדים כאילו רועדים בשתי הפינותודווקא לבוא ולתת כלים שאומרים “רגע, חברים - בואו, נעשה את הבדיקות, נעזור לכם, ניתן לכם איזשהם Guard Rails שיחזיקו לכם את היד משני הצדדים” יכולים להעלות את ה-Trust משני הכיוונים.(אורי) ואתה יודע - בדרך כלל, ה-Guard Rails השאלה מכסים 90-95% מהצרכים של ה-Developers, שנמצאים בתוך ה-Guard Rails.ויקרה, כן - פעם בכמה זמן, כשמישהו צריך זה . . . אז הוא ידבר עם איש DevOps שיפתח לו את מה שצריך - ולא קרה כלום.(שמעון) נכון . . .(רן) מה - הם מדברים?!(אורי) לפעמים . . . ב-Guard Rails.(רן) טוב, שמעון - היה מרתק. יש עוד נושאים שלא כיסינו שהיית רוצה לכסות לפני שאנחנו מסיימים?(שמעון) לא . . . אני חושב שעשינו כיסוי טוב.(רן) מעולה! מגייסים?(שמעון) כמובן! אנחנו מגייסים, גם למשרות טכניות בכל התפקידים וגם למשרות Go-to-Market.(רן) איך נראה ה-Stack הטכנולוגי שלכם? זאת אומרת, חוץ מ-Kubernetes שהזכרת, מה עוד קורה שם?(שמעון) אז ה-CLI ב-Go, ה-Backend שלנו זה TypeScript ו-Next.js, הכל על AWS בעיקר, יש גם קצת Azureיש Container-ים, הכל CI/CD ו-Deployment ל-Production אוטומטי.מאוד כיף! Building by Developers, for Developers - אבל For Real . . .כאילו - אנשים אשכרה באים להתראיין אצלנו וזה “אחי - לך ל-GitHub, לך תתקין את זה” . . . מבחינתי זה אחד הדברים שאותי, כאילו, מדליקים.(רן) ואתם בתל אביב . . . אי שם . . .(שמעון) כן . . .(אורי) לא נורא . . .(רן) שיהיה בהצלחה, תודה שבאת.(שמעון) איזה כיף - תודה רבה!(רן) להתראות האזנה נעימה ותודה רבה לעופר פורר על התמלול!

#29: Andrew Cuomo Breakdown, Anti-American Olympic Athletes vs Tamyra Mensah-Stock, election fraud, punishment for election fraud, Code Monkey Z, More fraudulent elections to come, How to do your part, Rand Paul on delta variant and more!

Real News Live presents; "Toxically Masculine Tuesday" with host Mike Bara and TV's Blake Walley! The Latest News, Current Events and More!

The Activision Blizzard scandal and the horrific stories that have come out of it, along with many others lately, have begun to really make me question my love of what AAA gaming has become has a whole. I discuss that and what we as consumers can (and probably) won't do to try and cause change. NOTE: The audio book I talked about in this episode is called Chaos Monkeys, not Code Monkeys. You can buy it here.

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Proin ultrices diam auctor urna venenatis gravida. Aenean ullamcorper consequat libero suscipit condimentum. Donec fringilla leo turpis, in congue diam molestie ac. Aliquam id tempus nulla. Etiam non enim iaculis, vulputate ante at, aliquet ex. Sed ligula ante, consequat sit amet commodo ac, pretium vel libero. Integer a est turpis. Vestibulum eleifend magna eu dolor vulputate pharetra. Pellentesque placerat eros ac quam blandit accumsan. Vivamus id eros purus. Praesent mollis, diam ut pellentesque eleifend, sapien tortor venenatis velit, vel ultricies eros orci quis ante. Nulla scelerisque justo enim, vitae vehicula nisl dapibus eu. Nullam in nisi turpis. Cras congue, purus nec rhoncus congue, augue arcu mattis augue, non vestibulum eros elit non tortor. Sed commodo metus id blandit mollis. Curabitur convallis, sapien vel viverra semper, tortor ligula mollis enim, vitae convallis diam dolor vel justo. Vestibulum ante ipsum primis in faucibus orci luctus et ultrices posuere cubilia Curae; Nulla efficitur ligula nec euismod tincidunt. Sed sit amet velit dolor. Morbi eu ante suscipit, sodales urna eu, tincidunt augue. Curabitur sed condimentum nunc. Nulla magna tortor, dictum ac purus sit amet, iaculis condimentum erat. Vestibulum ante ipsum primis in faucibus orci luctus et ultrices posuere cubilia Curae; Vivamus id auctor lacus. Nulla pulvinar eros eu justo fermentum, ac mattis odio elementum. Links Referenced in the Show: Indy In-Tune can be found here:   |   |      Subscribe Join our mailing list and automatically receive weekly updates containing a summary of the weekly music calendar, blog posts, reviews, show notes and links to new shows. * indicates required Email Address *  First Name  Last Name     

Happy 420! Welcome to my first episode. MyMaria777 was awesome enough to sit down with me a few weeks back. This was before all of the online controversy. She didn't know, she was going to be coming out of her anonymous closet, today, when we spoke. But, we did talk about it eventually happening. Code Monkey's, heartbreak, 17th letters, online dating, losing a father, synchronicities, being The Architect of your own timeline and then some. She even makes me blush, which is pretty hard to do. For all things MyMaria777, go to MyMaria777.comFollow on Instagram MyMariaa777. Or, @MyMaria777 on Twitter.

Video content can be found here: https://www.youtube.com/channel/UC0BAd8tPlDqFvDYBemHcQPQ/

אנו מתקרבים לעולם בו מתמטיקה, ספרות, אנגלית וכולי יאמרו באותה נשימה עם תכנות כמקצועות ליבה. כמעט בכל תחום תעסוקה, ידע בסיסי בתכנות הוא אלמנטרי. אבל עולם התכנות המודרני עשיר בשפות ופלטפורמות מכל סוג: מי מהן מתאימה כדי להכיר לילדנו את עולם התוכנה? בפרק זה של עושים תוכנה דיברנו עם ישי פינצ'ובר (ממייסדי Code Monkey) על הכלים והפלטפורמות הזמינות לנו היום ללימוד תוכנה, יתרונותיהן וחסרונותיהן.האזנה נעימה,רן לוי. (לא, זו לא טעות!)https://www.ads.ranlevi.com/2021/02/01/overwolf-osimtocha-programming-kids/

Video content can be found here: https://www.youtube.com/channel/UC0BAd8tPlDqFvDYBemHcQPQ/

Lottie Woods was in her early twenties when she was sent, alone, to meet a powerful buyer for a high street fashion brand in Guangzhou, China.They went out for a drink. The next morning, they had a meeting. In this interview with Olly, she recounts what happened in between.Along the way, she reveals the pressures of designing garments for the ‘fast fashion’ sector, the challenges of raising ethical standards, and the fallout from one fateful evening in a country she didn’t know, in a language she couldn’t speak.---Lottie is now a freelance designer, working with ethical brands, and blogs about slow fashion and sustainable awareness at intotheeco.comIf YOU have a story you would like to share on the show, do what Lottie did - head to our website, modernmann.co.uk, and click ‘Feedback’.And, if you have been affected by this conversation - know that there is always someone you can talk to in confidence. A good place to start is Safeline [https://www.safeline.org.uk/].---Meanwhile, in this month’s Zeitgeist, Ollie Peart takes his first awkward steps into the world of videogame development. Is a month long enough for him to develop a story that’s ‘credible, coherent and dramatically meaningful’? Has the opportunity afforded by a sprained ankle and a third month of lockdown given him enough time to to make a genuinely playable 2D platformer? (Spoiler: yes. If you head to our website, you can PLAY THE MAC VERSION NOW!).Thanks to ‘sprite’ designer Mr Gordo, Unity’s ‘Global Head of Evangelism Content’ Mike Geig, and online videos from Brakeys and Code Monkey for helping Ollie on his journey.If YOU would like to challenge Ollie to try out a trend in a future edition of the show, head to our website now and click ‘Feedback’.The Zeitgeist is remote-recorded on fabulous Yeti X microphones provided by our sponsors, Blue Microphones. Get yours here: https://www.blue-designs.co.uk/products/yeti-x/?utm_campaign=BL_FY21Q1-WILD-Blue_OPX_EN-UK&utm_source=Twitter&utm_medium=paid_social&utm_content=Post---Elsewhere, in this month’s Foxhole, Alix Fox has advice on Zoom-based dating, ‘Buddha machines’, lockdown libidos and low-effort BDSM for those who fancy an X-rated session but need to catch some ZZZzzzs.Such enquiries this month led her to consult professional Dominants Master Dominic and Moira Mona, and also the advice issued by the Faculty for Sexual and Reproductive Health for those using Long-Acting Reversible Contraceptives, like coils and implants, during the Covid crisis.If YOU have a question of sex you’d like to chuck Alix’s way, visit our website, and fill out the form on the ‘Feedback’ page. You can remain anonymous if you like.---Our record of the month is ‘Begin Again’, by Mercury-nominated songwriter Nick Mulvey. It’s part of an EP of the same name, released on June 5th. You can find a Spotify playlist of every song we’ve ever featured on our website, modernmann.co.uk.---In these uncertain times, it is YOUR SUPPORT of this show that makes it possible for us to still make you a fresh new podcast each month - please DONATE if you can. Just click ‘Beer Money’ on our website.Wanna be a Mannbassador? Buy us a beer, or leave us a review on Apple Podcasts - and then send us an email to tell us about yourself. Links on our website.---Stay safe, keep well, and we’ll see you with something new on July 1st!Host: Olly Mann. Producer: Matt Hill. Contributors: Ollie Peart, Alix Fox, Lottie Woods, Nick Mulvey. Theme Music: Django Django. Graphic Design: Jenny Mann Design. Copyright: Olly Mann / Rethink Audio 2020.modernmann.co.uk See acast.com/privacy for privacy and opt-out information.

So we've got all the answers to the questions you've been asking on this episode, and also J, so you'd be a loon not to listen. --- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app Support this podcast: https://anchor.fm/fromthehip/support

I'm talking today about creativity, definitions of success, making sacrifices to do hard things, the movie Whiplash, and what it means to be a failed writer. Also, a visit from a neighbor!This is the video of Code Monkey I watched (https://www.youtube.com/watch?v=5W_wd9Qf0IE)First Cup of Coffee is part of the Frolic Podcast Network. You can find more outstanding podcasts to subscribe to at Frolic.media/podcasts!Support the show (http://paypal.me/jeffekennedy)

Worin unterscheiden sich Wireframes von Prototypen? Wann nutzt man was? Sind Prototypen nur eine Entwurfsvorlage für Code Monkeys unterm Wasserfall? Diese Fragen und mehr besprechen Lucas Dohmen und Roman Stranghöner in der neuen Folge.

Lewis talks with Jonathan Schor, Co-founder and CEO Code Monkey, Tel Aviv-based educational coding company. They spoke about education technology, his thoughts on education, coding, and on getting kids interested in coding. Jonathan shared his story on how he started his business, and how his software has been acquired by Beijing-based education and technology enterprise TAL Education Group.

How do you share all of the cool things that your students are doing? There are many tech tools that can get you started with sharing student work. It is so fun to see students proud of what they have done! While there are many to choose from, this week we focus on three of […] The post Wix, Weebly & QR Code Monkey appeared first on Tech Tools for Teachers.

Comedian, co-host of Drinks With Larry (@drinkswithlarry) and neighborhood ninja Aaron DeTaurean joins us this week to deliver his default setting: energy. Aaron takes us through his tips and tricks to getting energy, keeping energy and using energy. Listen to this episode to find out exactly why you're exhausted all the time and SPOILER ALERT: it's because you're doing EVERYTHING WRONG. We also learn about the best way to put out a fire and we chat about the greatest animated series to ever be taken off the air: Code Monkeys. Shoutouts: -Pete Milk (@patrick_melk) -OKPants (@okpants) -Above Below Entertainment (@abovebelowent)

Today’s conversation is with Kendra Zzyzwyck.  Kendra and I play Code Monkey by Jonathan Coulton.  You can find this and all his other tunes on his website, jonathancoulton.com. Kendra also has a podcast.  If you love the TV series “Charmed” (or even if you don’t!) you will enjoy Charmed Chats. Go to our YouTube channel to listen to the playlist for this episode, which includes music by Jonathan Coulton, Molly Lewis, and Paul & Storm - and you can also see a clip of the Ukulele Melee. Want to support the show? Please subscribe to the podcast, and give us a review on iTunes.  You can donate to the show on our website ukuleleisthenewblack.com, where you can also buy merch!  This helps keeps the show running, including making sure all the music we cover is legal. And follow the show on Facebook, Twitter, and Instagram. The music played in this episode is licenced under a Podcasts (Featured Music) agreement with APRA AMCOS.

Ep61 is with Andy Sipes & Matt Mariska. They are the showrunners for Dallas & Robo, a new YouTube Red Exclusive Animated Series by Mike Roberts which stars John Cena & Kat Denning. We talk about their careers, working on Code Monkeys all the way to their new show and working with John Cena. We share stories and had a great time at the Glendale Library. Get a FREE trial of Youtube Red and check out Dallas & Robo!   Here's the trailer: https://www.youtube.com/watch?v=VhKEspn8mJg Pick up Supercon: The Movie written by Andy Sipes, Dana Snyder & Zak Knutson featuring appearance by myself and Andy.  http://a.co/bvCn81V   Don't forget to like, share & subscribe and follow us on social media! Instagram: @rocknrollbeerguy Twitter: @RnRBeerGuy Intro & Outro: "Dallas & Robo Theme" by The Sadies RRBG Logo: Art of Kyle Willis Sponsors:  One Effin Ink Go to http://www.1effinink.com/effinradart to pick up your official RRBG shirts & hoodies. You can customize the type of shirt, the color & the ink. Support the podcast and pick one up today!

Work in progress Jenny The Sweater (Windfall by the amazing and wonderful Melissa Kemmerer) Ginny's Cardigan by Mari Chiba from the unofficial harry potter knits special issue of interweave  zigzagular socks by prairie girl susie Safe Harbor socks by Amy Rapp in Yarn Geek Rocketeer Weezie Vanilla socks using Berroco Sox Master Knitter mitten More vanilla socks in Berroco Comfort Sock Ilene Bag by Hannah Mason in FibraNatura Flax Cait Curious (Socks of Wonderland by Lisa Ross) in Hedgehog Fibres Twist Sock Longline Cardigan by Joji Locatelli in madelinetosh Euro Sock Firedrake socks by Sarah Wartofsky in Wisdom Yarns Angora Lace & Knit Picks Stroll Plotting and Scheming Jenny Fimo (polymer clay) accessories (Mentioned Charmed & Dangerous, Sucre Sucre) Weezie #spin15aday organize the stash Cait Herbology OWL plans Maybe Wintery Octagon Mandala blanket by Tatsiana Kupryianchyk or Dahlia Pillow by Sylwia Kawczynska cabled yarn Ta da!! Cait Helen Joyce Dress by Taiga Hilliard for Lily in Cascade Ultra Pima Safe Harbor socks by Amy Rapp in handspun Targhee from Essential Fiber Revenge of the knits/ 99 problems and a stitch ain’t one Jenny the Ginny sweater rip-out Cait seed stitch is like ribbing - drop a needle size! Oooh, Shiny! Weezie Emporeio by the AMAZING Mona C. NicLeoid Cait Jeanette's Scarf by Brenda McCunn Jenny Frabjous Fibers yarn in the exclusive LYS Day colorway Fluff n Stuff Cait Electric Eel Mini Spinner was painted and named! Imaginary Internet Points Weezie Better be... Hufflepuff! Jenny Better be... Gryffindor! Cait Better be... Ravenclaw! Through to Round 4 of Sock Madness (Mentioned Harry Dresden books, Crazy Harry the Muppet, Casey the Code Monkey, Jared Flood, and Boo Knits) In the Deep End Crafting in warm weather Light weight yarn Plant fibers Small projects lace? weaving Juno sweater by yellowcosmo Medallion Lace Cardigan by Shiri Mor Mark's Scarf from Rent Tahki cotton Featherweight Cardigan by Hannah Fettig amigurumi Events/News Kentucky Sheep and Fiber Festival, Lexington, May 19 & 20 Another Pints & Purls soon? Wampa Stomp Shearing Day, Cox's Creek, KY, May 26 Hoosier Hills Fiber Festival, Franklin, IN, June 1 & 2 Southern Indiana Fiber Festival, Corydon, IN, October 20 & 21   The Charmed Knitters are participants in the Amazon Services LLC Associates Program, an affiliate program designed to provide a means for sites to earn advertising fees by advertising and linking to amazon.com.

When programmers feel like robots and people are jaded, the software project budget is often the culprit.

MSM 369: Code Monkey, Retrieve this (Moodle can help) Jokes You Can Use: Middle School Science Minute by Dave Bydlowski (k12science or davidbydlowski@mac.com) Journey North http://learner.org/jnorth http://k12science.net/Podcast/Podcast/Entries/2017/9/25_Middle_School_Science_Minute__Journey_North.html From the Twitterverse: #mschat every Thursday at 8:00 pm Eastern Standard Time. And as Troy says, “The Twitter never stops!” Strategies: Retrieval Practice: The Most Powerful Learning Strategy You’re Not Using https://www.cultofpedagogy.com/retrieval-practice/ 10 Things I Wish I Knew My First Year Of Teaching https://www.teachthought.com/pedagogy/10-things-i-wish-i-knew-my-first-year-of-teaching/ Resources: QR Code Monkey https://www.qrcode-monkey.com/ 37 Insanely Smart School Teacher Hacks https://www.buzzfeed.com/peggy/insanely-smart-school-teacher-hacks?utm_term=.gia375NM6#.bpJE47Nyx Reading Strategies That Work, According To Science https://www.weareteachers.com/science-backed-reading-strategies/ Web Spotlight: Michigan Historical Society Resource NBC Learn Video Resources. http://www.nbclearn.com/portal/site/learn/resources This is Your Brain on Art https://www.washingtonpost.com/graphics/2017/lifestyle/your-brain-on-art/?utm_term=.6545ebdd77f4

Happy anniversary, Tandem Fam! Join us this week as we celebrate Tandem Canon's first birthday and reflect on our favorite games, moments, and our goals for the future. We also discuss E3, Destiny 2's latest trailers, Lego Star Wars: The Force Awakens, Assassin's Creed: Unity, Overwatch, and Oh Sir! The Insult Simulator! Let's level up!

In this special E.T. Extravaganza we review, what is commonly referred to as "The Worst Game Ever Made", E.T. The Extra Terrestrial for the Atari 2600.  We also review the Documentary covering the larger than life myth of the game, and its impact on the crash of the gaming industry "Atari: Game Over" (2014) Directed by Zack Penn. Finally a review the movie that started it all, Steven Spielberg's, 1982 classic "E.T. The Extra Terrestrial. The movie so nice, they named it twice. And then just for giggles we discuss cult 8-bit animated series "Code Monkeys" from G4TV, created by Adam De La Pena. In which a certain episode lampoons the circumstances of the creation of the legendarily bad game. 

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Proin ultrices diam auctor urna venenatis gravida. Aenean ullamcorper consequat libero suscipit condimentum. Donec fringilla leo turpis, in congue diam molestie ac. Aliquam id tempus nulla. Etiam non enim iaculis, vulputate ante at, aliquet ex. Sed ligula ante, consequat sit amet commodo ac, pretium vel libero. Integer a est turpis. Vestibulum eleifend magna eu dolor vulputate pharetra. Pellentesque placerat eros ac quam blandit accumsan. Vivamus id eros purus. Praesent mollis, diam ut pellentesque eleifend, sapien tortor venenatis velit, vel ultricies eros orci quis ante. Nulla scelerisque justo enim, vitae vehicula nisl dapibus eu. Nullam in nisi turpis. Cras congue, purus nec rhoncus congue, augue arcu mattis augue, non vestibulum eros elit non tortor. Sed commodo metus id blandit mollis. Curabitur convallis, sapien vel viverra semper, tortor ligula mollis enim, vitae convallis diam dolor vel justo. Vestibulum ante ipsum primis in faucibus orci luctus et ultrices posuere cubilia Curae; Nulla efficitur ligula nec euismod tincidunt. Sed sit amet velit dolor. Morbi eu ante suscipit, sodales urna eu, tincidunt augue. Curabitur sed condimentum nunc. Nulla magna tortor, dictum ac purus sit amet, iaculis condimentum erat. Vestibulum ante ipsum primis in faucibus orci luctus et ultrices posuere cubilia Curae; Vivamus id auctor lacus. Nulla pulvinar eros eu justo fermentum, ac mattis odio elementum. Links Referenced in the Show: Indy In-Tune can be found here:  |  |     Subscribe Join our mailing list and automatically receive weekly updates containing a summary of the weekly music calendar, blog posts, reviews, show notes and links to new shows. * indicates required Email Address * First Name Last Name            

Justin Randell Brooke, Joshua Hoover, and Nick Pupo from Halt and Catch Fire discuss working on the show, personal projects they've been working on, how they all met, and tell us a little about the upcoming season!

PHPArch November Issue is out! Martin Fowler and "Not Just a Code Monkey", and a long long talk about ethics.

Where does the fat go when you lose weight? by Ian Woolf Famelab 2015 talks: Solving bacteria's identity crisis by Sabgeeta Bhatia, Lebeckia: a perennial for deep sandy soils by Sofie De Meyer, Measuring health outcomes that are more than the absence of disease by Jennifer Hunter. Production checked by Charles Willock, Produced and hosted by Ian Woolf Code Monkey by Jonathan Coulton Support Diffusion by making a contribution

Ciguatera disrupts genes by Ian Woolf, Rob Ireland talks about the Sunswift solar racing car, ready for commuters? Production checked by Charles Willock, Produced and hosted by Ian Woolf Code Monkey by Jonathan Coulton Support Diffusion by making a contribution

We've got the one and only Code Monkey himself, Jonathan Coulton, who sat down just recently with Pat and Bryan to talk about his career, all of the projects that have led him to become the singer/songwriter/NPR-host that he is today. Find out how his podcast/albums Thing a Week helped him break out into the wide-world of full-time musician, why Artificial Heart is his best album yet, and what he brings to co-hosting the NPR quiz show Ask Me Another. http://nerdyshow.com/2015/03/flame-on-episode-78-jonathan-coultonLearn more about your ad choices. Visit megaphone.fm/adchoices See acast.com/privacy for privacy and opt-out information.

Who doesn't like a good in-joke now and again?  Certainly I'm guilty of it, possibly to an extent that it's make Indy In-Tune a bit more exclusive than it has any right to be.  On the other hand, it creates a heightened level of comradery between those who are "in" (or want to be "in") on the joke.  ("Seriously, why are you guys all wearing matching track suits?")  It's not like our humor and references are so esoteric you need a wiki in order to explain them (a la Frank Zappa), I'm just saying that if you miss a Saturday or one of our live events, you're probably going to have some catching up to do.  Or, you could just roll your eyes and listen to the music like so many people who have come and gone from my life over the past nine years.  It seems to me that as long as you have great music to fall back on, you've got a little leeway to be just a bit cerebral and self-indulgent.  This is Internet radio, after all, not Bob and Tom.This week's guest, code(monkey); is a brilliant example of this mastery of both the properly-used in-joke and of making people who write blog posts grab their style guides to figure out whether the closing parenthetical comma is necessary if the name of the band contains parenthesis and has a semi-colon at the end. (The jury seems to be out, by the way, especially if it's used in a run-on sentence.)  Whether or not you get all of their marketing material or the humor on their web page (which is really what cemented my love for these guys -- well that and they named themselves after my third favorite Jonathan Coulton song), you really can't argue with good music, and the fact is that they are talented singer/songwriters who have developed a refreshingly unique (if somewhat off-kilter) sound that blends the lyrical depth of folk, the accessibility of rock, and the disenfranchised, emotional punch of metal.  While you might be tempted to assume, without listening, that the music is of the same cerebral humor as the image, give this episode a listen, I think you'll agree these guys are pretty serious about their craft. Links Referenced in the Show: Coming soon.

You can listen to this episode on our Comic Issues channel at Anchor.fm! This week Andrew is back! Taking a break from his duties as Father, Husband, and Code Monkey, Andrew comes to the podcast to talk about the current Star Wars rumors.  Together Anthony and Andrew express the confidence in J. J. Abrams for... The post Comic Issues #184 – The Andrew Strikes Back first appeared on Pixelated Geek.

Loosen your belt, this one's a chef's tasting! We recap comics-related happenings from SXSW 2014 and since, from Greg Pak, Jonathan Coulton, and Code Monkey to ComiXology Submit, The Bunker, and Doc Unknown to the digital/app/API revolution we welcome with open arms.

This week on the Major Spoilers Podcast: Grant Morrison's The Invisibles, The Rocketeer and the Spirit, My Little Pony gets carded, He-Man, Code Monkey, and more! NEWS My Little Pony gets collectible card game LINK REVIEWS STEPHEN Rocketeer/Spirit Pulp Friction #2 (W) Mark Waid (A) Loston Wallace (CA) Paul Smith The most pulp-tastic crossover of all time continues! What is the TV Terror that threatens all of Los Angeles-and how can the Rocketeer and the Spirit hope to combat such a futuristic menace? Plus-it's the Peevey/Dolan team, together again at last! [rating:3.5/5] MATTHEW He-Man and the Masters of the Universe 7
 Writer: Dan Abnett
 Artist: Rafael Kayanan
 Publisher: DC Comics
 A new adventure begins here! With Eternia still occupied by the Horde, He-Man and King Randor lead a small group of Masters on a quest to find the one object that might free Eternia! Join new writer Dan Abnett as he takes He-Man and the Masters of the Universe into their next great chapter! [rating:3/5] RODRIGO Broken Cortex #1 
 [rating:2/5] ZACH Code Monkey Saves the World [rating:3.5/5] Major Spoilers Poll of the Week This week we got our first look at the trailer for the Doctor Who 50th Anniversary episode, and while we got to see some of the villains, we wonder if we got to see the best villains in the montage. It’s time to take the Doctor Who Villain fight to the next level, as we pit the Daleks against the Sontarans in a battle for the ages! FIGHT! Who would win in a fight to the death? [poll id="307"] Discussion: The Invisibles The Invisibles is a comic book series that was published by the Vertigo imprint of DC Comics from 1994 to 2000. It was created and scripted by Scottish writer Grant Morrison, and drawn by various artists throughout its publication. The plot follows (more or less) a single cell of The Invisible College, a secret organization battling against physical and psychic oppression using time travel, magic, meditation, and physical violence. Contact us at podcast@majorspoilers.com Call the Major Spoilers Hotline at (785) 727-1939. A big Thank You goes out to everyone who downloads, subscribes, listens, and supports this show. We really appreciate you taking the time to listen to our ramblings each week. Tell your friends about the podcast, get them to subscribe and, be sure to visit the Major Spoilers site and forums.

This week on the Major Spoilers Podcast: Grant Morrison's The Invisibles, The Rocketeer and the Spirit, My Little Pony gets carded, He-Man, Code Monkey, and more! NEWS My Little Pony gets collectible card game LINK REVIEWS STEPHEN Rocketeer/Spirit Pulp Friction #2 (W) Mark Waid (A) Loston Wallace (CA) Paul Smith The most pulp-tastic crossover of all time continues! What is the TV Terror that threatens all of Los Angeles-and how can the Rocketeer and the Spirit hope to combat such a futuristic menace? Plus-it's the Peevey/Dolan team, together again at last! [rating:3.5/5] MATTHEW He-Man and the Masters of the Universe 7
Writer: Dan Abnett
Artist: Rafael Kayanan
Publisher: DC Comics
A new adventure begins here! With Eternia still occupied by the Horde, He-Man and King Randor lead a small group of Masters on a quest to find the one object that might free Eternia! Join new writer Dan Abnett as he takes He-Man and the Masters of the Universe into their next great chapter! [rating:3/5] RODRIGO Broken Cortex #1
 [rating:2/5] ZACH Code Monkey Saves the World [rating:3.5/5] Major Spoilers Poll of the Week This week we got our first look at the trailer for the Doctor Who 50th Anniversary episode, and while we got to see some of the villains, we wonder if we got to see the best villains in the montage. It’s time to take the Doctor Who Villain fight to the next level, as we pit the Daleks against the Sontarans in a battle for the ages! FIGHT! Who would win in a fight to the death? [poll id="307"] Discussion: The Invisibles The Invisibles is a comic book series that was published by the Vertigo imprint of DC Comics from 1994 to 2000. It was created and scripted by Scottish writer Grant Morrison, and drawn by various artists throughout its publication. The plot follows (more or less) a single cell of The Invisible College, a secret organization battling against physical and psychic oppression using time travel, magic, meditation, and physical violence. Contact us at podcast@majorspoilers.com Call the Major Spoilers Hotline at (785) 727-1939. A big Thank You goes out to everyone who downloads, subscribes, listens, and supports this show. We really appreciate you taking the time to listen to our ramblings each week. Tell your friends about the podcast, get them to subscribe and, be sure to visit the Major Spoilers site and forums.

Code Monkey

Recorded via Skype so sound isn't the best but at least it's published! We wanted to dedicate this episode to our friend and colleague, Steve Weicht, who lost a very short battle to cancer. He was one of our early listeners and we will miss his friendship. Piggybackr https://www.piggybackr.com/ Parents Willing to Buy Mobile Devices for Learning http://blogs.edweek.org/edweek/marketplacek12/2013/05/post_5.html Digital Footprint of 3 Different Generations http://edudemic.com/2013/05/your-digital-footprint/ Hopscotch http://www.gethopscotch.com/ Tynker http://www.tynker.com/ SNAP! http://snap.berkeley.edu/ LearnStreet http://www.learnstreet.com/ Socrative - Images for questions (unlock by completing a survey) http://www.socrative.com/garden/?p=1331 Google Forms can now include images and new field types http://googlesystem.blogspot.com/2013/05/add-images-to-google-forms.html Become Better at Searching http://www.makeuseof.com/tag/become-better-at-finding-stuff-with-search-engines-boolean-search-logic-explained/ Teacher’s Guides to Technology and Learning http://edudemic.com/guides/ Summer Reading Professionals (http://www.edutopia.org/blog/summer-read-recommendations-elena-aguilar) Professionals (http://www.edutopia.org/blog/summer-read-recommendations-elena-aguilar) Middle School (http://www.weareteachers.com/hot-topics/special-reports/10-novels-every-middle-schooler-should-read) Kids (http://www.weareteachers.com/community/blogs/weareteachersbookclub/book-club/2013/04/09/21-must-read-mystery-books-for-kids) Flashlight Worthy Books (http://www.flashlightworthybooks.com/) Subtext (http://www.subtext.com/summer-reading) Free PD! Aldine ISD (Thank you Brad!) http://www.aldine.k12.tx.us/tcca/ Apps Easy Studio- Free (iPad) https://itunes.apple.com/us/app/easy-studio-animate-shapes!/id593847174?mt=8 Tellagami- Free (iPad) https://itunes.apple.com/us/app/tellagami/id572737805?mt=8 Don’t forget you can find us on , the iTunes store, Stitcher, and now on AudioBoo - We have a new channel! http://audioboo.fm/channel/techchicktips Connect with us via Facebook, Twitter, and Pinterest!

This week's Talking Comics is all about Iron Man 3!  We begin with a non spoiler general discussion and then that’s followed by a much more spoilery talk about the film, so if you haven’t seen it yet, make sure to pay attention to when we tell you to tune out. We start off the show with lots of news talk including the latest sales figures, talks of Michael B. Jordan as Johnny Storm, some David Tennant rumours and more. Then we talk about lots of comics get discussed this week, including: X-Factor, Red She-Hulk, The Movement, Dazzler, Firestar, Cloak and Dagger, Marvel Girl, Valkyrie, Ms. Marvel, Rescue, Avengers Arena, The Dream Merchant, Superior Spider-Man, Ten Grand, Habibi, Thanos Rising, Age of Ultron, Hawkeye and more. We also mention a bunch of Kickstarter projects, the links for which can be found here:  Lady Sabre & The Pirates of the Ineffable Aether Vol. 1, Amy Reeder's  Rocket Girl, Grek Pak's potential upcoming comic book based on songs by Jonathan Coulton,  Code Monkey. Annnnnnnnnnd... we say it on the show, but just in case you missed it, the Talking Comics crew on Twitter are: Bobby: @ bobbyshortle Steve: @ dead_anchoress Stephanie: @ hellocookie And Bob's email is  bobreyer@talkingcomicbooks.com FYI: the crew have gone all superhero on the world, thanks to the wonderful  Hanie Mohd. Like them? Make sure to follow her and let us know what you think of our new superhero pictures.

Jake & Slim sat down LIVE via satellite with Jonathan Coulton & Greg Pak about [Code Monkey](http://www.kickstarter.com/projects/gregpak/code-monkey-save-world), missing songs, stretch goals, Twitter wool, JoCo Cruise, and what they're reading!

On this episode of the podcast Eric is joined by Jonathan Coulton and greg Pak to talk about their awesome kickstarter "Code Monkey Save the World" They talk about how the project came to be, working with Monkeybrain comics and Comixology, PAX East, Valve/Steam, Greg's upcoming Superman/Batman with Jae lee and so much more! Code Monkey kickstarter! Greg on twitter! Jonathan on twitter! Jonathan's website! Greg's website! Follow me on twitter! Like the shows facebook page! Check out my awesome webcomic, New Comic Day! Subscribe to my youtube! Subscribe via itunes! Kirby Krackle!

This week: The best Girl Scout Badge Ever. Asscreed - now with MORE ARR! We have found Every FPS Map Ever Made, but for real! JoCo and the Code Monkey shall save us all. STAR WARS OVERLOAD INBOUBND ( also - LENS FLARE! ). And, in case you were wondering, yes, your 9 year old is making all the decisions in your life. All this, plus SUMMER MOVIES, BAYBEE! Show notes and Research Thread available here: http://media.vtwproductions.com/forum/index.php?board=40.0

Jonathan Coulton wrote a song called "Code Monkey". His friend, comic book writer Greg Pak, made a joke on Twitter about how they should make it into a comic. He wasn't joking.

This week we deliver the promised ECC mash-up of JoCo's "Code Monkey," some other ECC, the question-and-answer session with Stang plus a Wei-Phat ManDee duet from Starwood 30 (2010), some Puzzling Evidence and colLarge. The second half of the show is live from the WCSB studio with Lonesome Cowboy Dave calling in to discuss War #3 in Libya. Stang reads some revealing sections from Moamar Gadhafi's "THE GREEN BOOK" as well as a short new rant by Uncle Dr. Onan Canobite. The upcoming 14 X-Day is discussed at some length. The show ends with an extremely catchy song by International Espionage! probably recorded at the DEVOtional of 2010. Special thanks to Paul Mavrides for the Gadhafi-head (from 1987!) and to Rev. Carter LeBlanc for Gadhafi's "THE GREEN BOOK." New 14 X-Day promo pages (adults only):http://www.subgenius.com/bigfist/fun/devivals/14XDay/14X-Day.htmlA nice shot of the Gadhafi-Head Football discussed on the show, from 13X-Day:http://www.subgenius.com/bigfist/fun/devivals/13XDay/13XDay-photos/1StangDoe/2Friday_July2/pic-html/1043-BIOU-AnnaD-Ghadaffi.htmlThere are some photos of Starwood 30 at Wisteria at:http://www.subgenius.com/bigfist/fun/devivals/14XDay/Wisteria-Starwood2010/index.html

Chris Lobban (a.k.a. Maelwys) joins Charlie to talk about the amazing work he's done on the website, our need for programming help, Infinite Diversity and the new achievement system.

Apple press conference creates mud, invites others to roll in it. Newsweek finds 10 new ways Facebook can ruin your life. ComicCon is hot in San Diego. Twitter users in New York are moody at midnight. This week on the show, Chris Skaggs, founder of Soma Games and Code Monkeys joins us to talk the App Economy, mobile, and building a brand one app at a time. Our Evernote friend Andrew Sinkov joins us to recap big changes that hit the platform last week.

Der Internetanschluss in der Wohnung ist inzwischen gang und gäbe, aber wie sieht es aus, wenn man unterwegs ist? Surfen im Zug, Mails beantworten auf der Alp, all das ist heutzutage möglich. Aber wie hat sich das eigentlich entwickelt? XTaran und Venty beleuchten die rasante Entwicklung der mobilen Datenübertragung. Trackliste Jonathan Coulton – Code Monkey TmX – Last Ninja 1 Remix Makke – Anarchy in the kitchen Nächste Sendung: Samstag, 5. Dezember 2009, 19:00 Uhr Linuxday 2009 :: Der Linuxday in Dornbirn GPG Keysigningparty 2009 :: LUGS Keysigningparty 2009 in Zürich OpenRheinRuhr :: Der Grund für die Vorproduktion Packet Radio :: Wikipedia Eintrag über Packet Radio Pager :: Bilder von Pagern, auch dem erwähnten Motorola Echo Natel :: Nationales Auto-TELefon IrDA :: Infrared Data Association Wireless FAQ :: FAQ zu WAP und WML WAP Symlink :: Symlink über WAP lesen SMS :: Short Message Service Warum nur 160 Zeichen :: Spiegel-Artikel über die Gründe, warum SMS nur 160 Zeichen lang sind. GSM Association :: GSM Abdeckungskarten und Informationen GPRS :: General Packet Radio Service EDGE :: Enhanced Datarates for Global Evolution HSCSD :: High Speed Circuit Switched Data UMTS/HSPA :: Universal Mobile Telecommunication System / High Speed Packet Access Bluetooth :: Offizielle Bluetooth Technologie Seite USB :: Universal Serial Bus Ogo :: Der Ogo, die Mutter der mobilen Datenübertragung Nokia N900 :: Nokia N900 Mobile Multimedia Computer Maemo :: Maemo Infoseite von Nokia Symlink Artikel von 2001 :: Erfahrungsbericht mit mobilem Internet von 2001 File Download (59:44 min / 73 MB)

Der Internetanschluss in der Wohnung ist inzwischen gang und gäbe, aber wie sieht es aus, wenn man unterwegs ist? Surfen im Zug, Mails beantworten auf der Alp, all das ist heutzutage möglich. Aber wie hat sich das eigentlich entwickelt? XTaran und Venty beleuchten die rasante Entwicklung der mobilen Datenübertragung. Trackliste Jonathan Coulton – Code Monkey TmX – Last Ninja 1 Remix Makke – Anarchy in the kitchen Nächste Sendung: Samstag, 5. Dezember 2009, 19:00 Uhr Linuxday 2009 :: Der Linuxday in Dornbirn GPG Keysigningparty 2009 :: LUGS Keysigningparty 2009 in Zürich OpenRheinRuhr :: Der Grund für die Vorproduktion Packet Radio :: Wikipedia Eintrag über Packet Radio Pager :: Bilder von Pagern, auch dem erwähnten Motorola Echo Natel :: Nationales Auto-TELefon IrDA :: Infrared Data Association Wireless FAQ :: FAQ zu WAP und WML WAP Symlink :: Symlink über WAP lesen SMS :: Short Message Service Warum nur 160 Zeichen :: Spiegel-Artikel über die Gründe, warum SMS nur 160 Zeichen lang sind. GSM Association :: GSM Abdeckungskarten und Informationen GPRS :: General Packet Radio Service EDGE :: Enhanced Datarates for Global Evolution HSCSD :: High Speed Circuit Switched Data UMTS/HSPA :: Universal Mobile Telecommunication System / High Speed Packet Access Bluetooth :: Offizielle Bluetooth Technologie Seite USB :: Universal Serial Bus Ogo :: Der Ogo, die Mutter der mobilen Datenübertragung Nokia N900 :: Nokia N900 Mobile Multimedia Computer Maemo :: Maemo Infoseite von Nokia Symlink Artikel von 2001 :: Erfahrungsbericht mit mobilem Internet von 2001 File Download (59:44 min / 73 MB)

Tonight we have a lecture on "Letter to Misawa". This lectures is about many things, but one thing is for sure it does address the three obstacles and four devils. Perhaps because it does so it might explain why it has taken 5 months to write 3 times, why cables went missing right before we started the show and a myriad of others obstacles emerged! Some of tonights themes include: Practicing correctly involves transforming the negativity in the world around you Three obstacles and four devils What is the devil king of the 6th heaven anyway? Nikko takes it to the man Self reliant faith The Gohonzon certifies that Buddhahood exists Some experience of overcoming obstacles What do you want to break through? Why is the Soka Gakkai different? Its a full show and along with the shout outs we play three tracks tonight from the Podsafe Music Network (http://www.mevio.com) We play Code Monkey by Jonathan Coulton (http://music.podshow.com/music/listeners/artistdetails.php?BandHash=97007092b961d7e9a7d77c2614ee0086) who sings Code Monkey http://www.jonathancoulton.com/ http://itunes.apple.com/WebObjects/MZStore.woa/wa/viewAlbum?id=211036259&s=143444 And we play two tracks from Adrina Thorpe (http://music.podshow.com/music/listeners/artistdetails.php?BandHash=a892daf89e5efee9bd4705bbf8c092fc) who sings Coming Home and Fly Fly Fly She is also on iTunes! http://itunes.apple.com/WebObjects/MZStore.woa/wa/viewAlbum?id=64954602&s=143444 In response to the many requests for TShirts we are now able to offer them for almost half the previous price and twice the quality! Thanks Polly Earnest and Helen Steyner of PressOffers.com who have created the shop for us! Thank you for all your support, encouragement, comments and input! It is such great good fortune to be able to do this podcast.

Broken Pixels' second season is here! This week Seanbaby, Shane, and Crispin play the Sega CD game Wirehead from MGM Interactive and the Code Monkeys, a FMV game full of bad acting and horrible gameplay. The boys show no mercy during Wirehead's awesome FMV action.

Broken Pixels' second season is here! This week Seanbaby, Shane, and Crispin play the Sega CD game Wirehead from MGM Interactive and the Code Monkeys, a FMV game full of bad acting and horrible gameplay. The boys show no mercy during Wirehead's awesome FMV action.

This is our "Hello World" podcast. We are learning what works and what doesn't.In this show, we discuss AppleTV and the Take 2 software update, along with methods of using media from your own personal collection and from other sources such as Amazon, Apple iTunes Store, etc. Other talk included misc chatter on the Mac Mini, the new light as a feather MacBook Air, and the two latest Apple input devices - The Mighty Mouse and the new Apple Chicklet Keyboards. Since we love our HD video, we touched on the death of HD-DVD, BluRay and it's uncontested reign in the HD Video market, and what else there is to come in HD content delivery. Next, we talked about some video games, our fave topic. Burnout Paradise and it's open world, Call of Duty 4, and Xbox Live Arcade's N+ were tabled at this point. We took a few moments to also talk about Portal 2, Gears of War 2 announcements, the way cool IDC finalist game, Crayon Physics Deluxe and more. And to break up the chat, we've included a song from Jonathan Coulton called Code Monkey, which you are sure to enjoy.

THE FREDCAST CYCLING PODCAST For the week of March 26, 2007 IN THIS WEEK'S NEWS: • Australian cyclist Damian McDonald Killed in Car Crash • Unibet changes name to Canyon in France • Andreas Kloden Wins Tirreo-Adriatico • Oscar Freire wins Milan-San Remo • ProTour Standings • Pro Cycling Salaries • Tour of Georgia news • Google gives bikes to staffers • Lebron James buys-in to Cannondale • Portland might offer bicycle rentals • Kids Dynacraft bike recall • News of the Weird! IN THIS WEEK'S FEATURES: • Listener emails and voice mails on Cycling doctors, code monkeys, iPods, and cycling in France. • Shoutouts • Upcoming Rides and Events including: US Open Cycling Championships, Rosarito-to-Ensenada, Pinot Pedal, Cyclist Dogwood Tour, and the Great Western Bicycle Rally The FredCast is sponsored by Cambria Bicycle Outfitter

Episode #5.5 of THAT'S WHAT SHE SAID finds both Matt and Ian lost in a sea of confusion... if a show airs no new episode, is there anyone around to hear the podcast? It's rerun day here folks, but we've still got a good handful of tidbits to dissect, news to go through, and e-mails to ridicule. From Jim's iPod this week, Jonathan Coulton with "Code Monkey"... Incidental music provided by the Podshow Podsafe Music Network. Email us at TWSSpodcast @ gmail.com, or leave a comment on our blog page at thatswhatshesaid.libsyn.com. iTunes reviews are always appreciated! Help spread the word!