Last night, Docker London launched us into the summer with their May edition, and as usual they didn’t fail to deliver with their line-up of talks which presented by Alex Ellis, Kai Davenport and Luke Marsden and last but not least Jorge Salermo Sanz.
After being fuelled with pizza and beverages, we all quickly moved into our seats. With a full house in attendance you could really feel the energy in the room which is always nice to see!
The night powered up with ‘Serverless beyond the hype’ a talk by Alex Ellis founder of OpenFaas. Most people know the basics Serverless is a modern architectural pattern for designing systems which lets teams focus on shipping small reusable chunks of code which can be packaged, monitoring and scaled all in the same way. Alex created OpenFaaS a framework for building serverless functions with Docker and Kubernetes. With OpenFaaS any process can be packaged as a function be it Node.JS, Golang or C, enabling you to consume a range of web events without repetitive coding. Learn more about OpenFaaS at https://github.com/openfaas/workshop.
If you would like to learn about serverless architecture in general have a look at our scenarios https://www.katacoda.com/courses/serverless
The second talk of the night ‘Bringing data into the circle of control - Data management is killing your velocity!’ was brought to you by the dynamic duo of Kai Davenport and Luke Marsden from Dotmesh. We all know that data management issues cause tremendous pain throughout the software development life cycle and that with the increased adoption of Cloud Native computing practices the issue has only gotten worse as applications are now changing faster and employing multiple databases behind their microservices.
We were lucky last night, as Kai and Luke introduced to us DotMesh, an opensource tool that they developed that solves issues caused by data management. Dotmesh captures snapshots from stateful Docker and Kubernetes applications as ‘databots’ and allows you to label, store and share them as you would with version-controlled code. It used in development to manage state in your environments allowing you to quickly provision and switch between saved states. Dotmesh is also used in CI to speed up test runs by caching state and to free up CI pipelines by capturing the state for local debugging. If you liked the demo you saw last night have a go on https://dotmesh.com/try-dotmesh/.
The evening was wrapped up by Jorge Salermo Sanz from Sysdig his talk was on ‘Docker Continuous Security, looking inside your docker containers at run-time’. Continuous security Is the addressing of security concerns and testing in the Continuous Delivery pipeline and is as much a part of continuous delivery as operations, testing, or security is a part of the DevOps culture. While there have been many improvements around securing containers, there is still a large gap in monitoring the behaviour of containers in production.
This is where Sysdig Falco steps in, Falco is an open source behavioural activity monitor for containerized environments. It can detect and alert on anomalous behaviour at the application, file, system, and network level.
Thanks to Jorge, we got to understand how behavioural security differs from existing security solutions, what Sysdig can actually detect, building and customising rules for your docker and kubernetes applications, and how Forensics analysis can occur with Sysdig inspect even when the container no longer exists. If you are looking to get a better understanding of how Sysdig Falco works have a look at https://www.katacoda.com/sysdig/ scenario and play with it yourself.