SlideShare a Scribd company logo

DevOps for a Dummy

R
Rory Gibson

This document discusses the development of CTX, a cloud search tool for digital teams. It was created as a side project by Rory Gibson to address knowledge management needs in 2017. CTX uses Elastic Search with a Postgres backend and is built using Clojure and ClojureScript. It emphasizes security, configuration management using Ansible, and continuous delivery via CircleCI. Future plans include multi-cluster support and providing encryption keys.

Technology
1 of 14
1
2
3
4
5
6
7
8
9
10
11
12
13
14
DevOps for a Dummy* Rory Gibson, CTX * yes I know DevOps is a cultural thing. But I like bad puns.
 Developer, architect, consultant, agile person, CTO  Not a sysadmin  “DevOps groupie”  Mostly interested in getting things done. Who?
 Wanted to have a side project  But wanted to make it have a purpose - a “side hustle”  Existing idea that I couldn’t shake  What does knowledge management look like in 2017 (post-Slack)?  $DEITY save us from SharePoint and Confluence What?
CTX – cloud search for digital teams https://getctx.io
 Solo founder aiming for revenue, not just a fun tech project  Time poor  Need efficiency  Use sharp tools (Tim Ewald)  Automate (but don’t polish the wheel-nuts)  Use what you know  Reduce incidental complexity Principles
 Search index  Some kind of relational storage  Simple backend  Easy-to-change front end  Secure  CM, CI & CD from the beginning  Configuration management Basic outline  Elastic Search  Postgresql  Clojure  ClojureScript  Lots to learn!  CircleCI  Ansible
 Everyone defaults to AWS in startup land  But experience says it’s worth modeling your costs  Example: image processing service  2x high memory + 2x high CPU per AZ  £1000/m+ on AWS per AZ  But only £150/m with physical tin and some thought.  Shop around  Hetzner  Online  ScaleWay Hosting choices
 Encrypt all traffic (VPC / VPN)  Encryption at rest  SSL everywhere  Principle of least privilege  Keys > passwords  Just because you’re paranoid…  If you don’t have it, you can’t lose it Security – “other people’s data”  PeerVPN  EncFS  Let’s Encrypt & Caddy  harden everything  fettle SSH  fail2ban  Auth0, Metadata Service on hosts
 Clojure makes this easy  Use the same tool in CM & CI  Automated after the git push  Notifications everywhere Dev / deploy workflow  Uberjar  Ansible playbook  GitHub & CircleCI  Slack
DevOps for a Dummy
 Simple masterless model  … so it’s easy to run from CircleCI (or Jenkins or whatever)  Works over SSH and relies on OpenSSH config  …which means things like a bastion host are trivial  Declarative configuration – not scripting  Doesn’t hide the underlying Unix concepts  Ansible Vault for secret management Ansible
DevOps for a Dummy
 Single large cluster  Shared security  Centrally controlled encryption  Ingest to immediate import  Shared commodity cloud Where next?  Multi-cluster  Isolated environments  Provide your own keys  Lambda architecture  Enterprise deployments
 Any questions?  Email: rg@rorygibson.me  twitter, github, Sheffield.Digital slack: @rorygibson  CTX  twitter @getctx  or visit https://getctx.io  Beta testers wanted! Q&A

More Related Content

PPTX
Fuster-clucking with Mesos and Kubernetes
Samuel Marks
 
ODP
Portuguese Cloud Computing Architects - 2nd Meeting
Vitor Domingos
 
PDF
Cloud Native Practice
Philip Zheng
 
PDF
What we talk about when we talk about DevOps
Ricard Clau
 
PDF
(Ebook) Python for DevOps: Learn Ruthlessly Effective Automation by Noah Gift...
betshanumo
 
PDF
Top AWS DevOps course in Hyderabad
ManiSri4
 
PDF
Python for DevOps Learn Ruthlessly Effective Automation 1st Edition Noah Gift
shanitlicai
 
PDF
Greenfields tech decisions
Trent Hornibrook
 
Fuster-clucking with Mesos and Kubernetes
Samuel Marks
 
Portuguese Cloud Computing Architects - 2nd Meeting
Vitor Domingos
 
Cloud Native Practice
Philip Zheng
 
What we talk about when we talk about DevOps
Ricard Clau
 
(Ebook) Python for DevOps: Learn Ruthlessly Effective Automation by Noah Gift...
betshanumo
 
Top AWS DevOps course in Hyderabad
ManiSri4
 
Python for DevOps Learn Ruthlessly Effective Automation 1st Edition Noah Gift
shanitlicai
 
Greenfields tech decisions
Trent Hornibrook
 

Similar to DevOps for a Dummy (20)

PPTX
DevOps on AWS
CloudHesive
 
PDF
Austin Web Architecture
joaquincasares
 
PDF
PDF DevOps with OpenShift 1st Edition Mike Hepburn download
xalanaunnuk
 
PDF
OpenStack in the Enterprise - Are You Ready? - Maish Saidel-Keesing
Cloud Native Day Tel Aviv
 
PDF
Run stuff, Deploy Stuff, Jax London 2017 Edition
Kris Buytaert
 
PDF
The Return of the Dull Stack Engineer
Kris Buytaert
 
PPTX
Alfresco DevCon 2019: Interaxo - A journey to Cloud Native
Asgeir Frimannsson
 
PDF
Halifax DevOps - Meet-up - July.19 2017
Kyle Bassett
 
PDF
Flight East 2018 Presentation–A DevOps State of Mind: Continuous Security wit...
Synopsys Software Integrity Group
 
PPTX
Considerations for Operating an OpenStack Cloud
All Things Open
 
PDF
Moby is killing your devops efforts
Kris Buytaert
 
PDF
Python for DevOps Learn Ruthlessly Effective Automation 1st Edition Noah Gift
ykwaooxdxr546
 
PDF
Openstack Operations Guide 1st Edition Tom Fifield Diane Fleming
molaxmeizu
 
PDF
DevSecOps: The Open Source Way
Gordon Haff
 
PDF
Devops
mohammad moinuddin
 
PDF
Best devops course syllabus pdf 2025.pdf
mayra0232020
 
PDF
CoreOS and cloud provider integration: simple cloud-init example at Exoscale
Antoine COETSIER
 
PDF
AWS System Administration Best Practices for Sysadmins in the Amazon Cloud 1s...
koidemoreaqb
 
PDF
Be DevOps Ready
Malinda Kapuruge
 
PPTX
London Hashicorp Meetup #22 - Congruent infrastructure @zopa by Ben Coughlan
Ben Coughlan
 
DevOps on AWS
CloudHesive
 
Austin Web Architecture
joaquincasares
 
PDF DevOps with OpenShift 1st Edition Mike Hepburn download
xalanaunnuk
 
OpenStack in the Enterprise - Are You Ready? - Maish Saidel-Keesing
Cloud Native Day Tel Aviv
 
Run stuff, Deploy Stuff, Jax London 2017 Edition
Kris Buytaert
 
The Return of the Dull Stack Engineer
Kris Buytaert
 
Alfresco DevCon 2019: Interaxo - A journey to Cloud Native
Asgeir Frimannsson
 
Halifax DevOps - Meet-up - July.19 2017
Kyle Bassett
 
Flight East 2018 Presentation–A DevOps State of Mind: Continuous Security wit...
Synopsys Software Integrity Group
 
Considerations for Operating an OpenStack Cloud
All Things Open
 
Moby is killing your devops efforts
Kris Buytaert
 
Python for DevOps Learn Ruthlessly Effective Automation 1st Edition Noah Gift
ykwaooxdxr546
 
Openstack Operations Guide 1st Edition Tom Fifield Diane Fleming
molaxmeizu
 
DevSecOps: The Open Source Way
Gordon Haff
 
Devops
mohammad moinuddin
 
Best devops course syllabus pdf 2025.pdf
mayra0232020
 
CoreOS and cloud provider integration: simple cloud-init example at Exoscale
Antoine COETSIER
 
AWS System Administration Best Practices for Sysadmins in the Amazon Cloud 1s...
koidemoreaqb
 
Be DevOps Ready
Malinda Kapuruge
 
London Hashicorp Meetup #22 - Congruent infrastructure @zopa by Ben Coughlan
Ben Coughlan
 
Ad

Recently uploaded (20)

PDF
Developing a website for English-speaking practice to English as a foreign la...
IAESIJAI
 
PPT
What is a Computer? Input Devices /output devices
GulJan8
 
PDF
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
PPTX
observCloud-Native Containerability and monitoring.pptx
anupsingh76937
 
PDF
A novel scalable deep ensemble learning framework for big data classification...
IAESIJAI
 
PDF
A Late Bloomer's Guide to GenAI: Ethics, Bias, and Effective Prompting - Boha...
Mindy Bohannon
 
PPTX
Final SEM Unit 1 for mit wpu at pune .pptx
anishtilekar08
 
PDF
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
PDF
Unlock new opportunities with location data.pdf
Precisely
 
PPTX
Chapter 5: Probability Theory and Statistics
RandyFin
 
PDF
NewMind AI Weekly Chronicles – August ’25 Week III
NewMind AI
 
PDF
DP Operators-handbook-extract for the Mautical Institute
LeonelMejiaLarios
 
PPTX
MicrosoftCybserSecurityReferenceArchitecture-April-2025.pptx
SilvioHayashi
 
PPTX
Modernising the Digital Integration Hub
Daniel Toomey
 
PDF
Hybrid model detection and classification of lung cancer
IAESIJAI
 
PPTX
The various Industrial Revolutions .pptx
bandileshozi3
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PPT
Geologic Time for studying geology for geologist
ssuser738f5a
 
PPTX
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
PDF
Five Habits of High-Impact Board Members
OnBoard
 
Developing a website for English-speaking practice to English as a foreign la...
IAESIJAI
 
What is a Computer? Input Devices /output devices
GulJan8
 
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
observCloud-Native Containerability and monitoring.pptx
anupsingh76937
 
A novel scalable deep ensemble learning framework for big data classification...
IAESIJAI
 
A Late Bloomer's Guide to GenAI: Ethics, Bias, and Effective Prompting - Boha...
Mindy Bohannon
 
Final SEM Unit 1 for mit wpu at pune .pptx
anishtilekar08
 
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
Unlock new opportunities with location data.pdf
Precisely
 
Chapter 5: Probability Theory and Statistics
RandyFin
 
NewMind AI Weekly Chronicles – August ’25 Week III
NewMind AI
 
DP Operators-handbook-extract for the Mautical Institute
LeonelMejiaLarios
 
MicrosoftCybserSecurityReferenceArchitecture-April-2025.pptx
SilvioHayashi
 
Modernising the Digital Integration Hub
Daniel Toomey
 
Hybrid model detection and classification of lung cancer
IAESIJAI
 
The various Industrial Revolutions .pptx
bandileshozi3
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
Geologic Time for studying geology for geologist
ssuser738f5a
 
Tartificialntelligence_presentation.pptx
ry7r52mzb4
 
Five Habits of High-Impact Board Members
OnBoard
 
Ad

DevOps for a Dummy

  • 1. DevOps for a Dummy* Rory Gibson, CTX * yes I know DevOps is a cultural thing. But I like bad puns.
  • 2.  Developer, architect, consultant, agile person, CTO  Not a sysadmin  “DevOps groupie”  Mostly interested in getting things done. Who?
  • 3.  Wanted to have a side project  But wanted to make it have a purpose - a “side hustle”  Existing idea that I couldn’t shake  What does knowledge management look like in 2017 (post-Slack)?  $DEITY save us from SharePoint and Confluence What?
  • 4. CTX – cloud search for digital teams https://getctx.io
  • 5.  Solo founder aiming for revenue, not just a fun tech project  Time poor  Need efficiency  Use sharp tools (Tim Ewald)  Automate (but don’t polish the wheel-nuts)  Use what you know  Reduce incidental complexity Principles
  • 6.  Search index  Some kind of relational storage  Simple backend  Easy-to-change front end  Secure  CM, CI & CD from the beginning  Configuration management Basic outline  Elastic Search  Postgresql  Clojure  ClojureScript  Lots to learn!  CircleCI  Ansible
  • 7.  Everyone defaults to AWS in startup land  But experience says it’s worth modeling your costs  Example: image processing service  2x high memory + 2x high CPU per AZ  £1000/m+ on AWS per AZ  But only £150/m with physical tin and some thought.  Shop around  Hetzner  Online  ScaleWay Hosting choices
  • 8.  Encrypt all traffic (VPC / VPN)  Encryption at rest  SSL everywhere  Principle of least privilege  Keys > passwords  Just because you’re paranoid…  If you don’t have it, you can’t lose it Security – “other people’s data”  PeerVPN  EncFS  Let’s Encrypt & Caddy  harden everything  fettle SSH  fail2ban  Auth0, Metadata Service on hosts
  • 9.  Clojure makes this easy  Use the same tool in CM & CI  Automated after the git push  Notifications everywhere Dev / deploy workflow  Uberjar  Ansible playbook  GitHub & CircleCI  Slack
  • 11.  Simple masterless model  … so it’s easy to run from CircleCI (or Jenkins or whatever)  Works over SSH and relies on OpenSSH config  …which means things like a bastion host are trivial  Declarative configuration – not scripting  Doesn’t hide the underlying Unix concepts  Ansible Vault for secret management Ansible
  • 13.  Single large cluster  Shared security  Centrally controlled encryption  Ingest to immediate import  Shared commodity cloud Where next?  Multi-cluster  Isolated environments  Provide your own keys  Lambda architecture  Enterprise deployments
  • 14.  Any questions?  Email: rg@rorygibson.me  twitter, github, Sheffield.Digital slack: @rorygibson  CTX  twitter @getctx  or visit https://getctx.io  Beta testers wanted! Q&A