Aurynn ShawThe smallest unit of scaling on Cloud Island is a VPS, and no I don't like that either.
Once v2.0 is finished, I'm gonna start digging into Nomad and see about a v3.0
Joel Wirāmu, Pauling@aurynn Do you have a moment to talk about our lord and saviour OpenShift ;) - out of curiosity there are a couple of community charts and kubes crds but no full blown operator for mastodon.
@jwp I'm not going to deploy k8s or try to run k8s
@aurynn then don't. Use it as a Managed service and get on with the cool stuff of deploying into it. But going back to operators - mastadon's almost a perfect use case for one when I look at it. Back to the conversation yesterday - Operators basically give you 'App-store' experience of installing complex apps into kubes. Thinking about the first time I attempted to do Kafka vs now with the operator ...
@aurynn But also I can install OpenShift with the assisted installer quicker than I can install RHEL (with a reasonably fast internet connection) these days. It's quite a different experience than it was a few years ago and miles better than anything OOO/OpenStack ever managed from an infra deployment and management perspective.
@aurynn I started a conversation with Jane Edmonds at Catalyst cloud I need to follow up with about offering OpenShift on Baremetal. It's unfortunate that we can't support the Ubuntu/Apparmour OpenStack hypervisor due to several severe issues with the security context model in apparmour. But Baremetal OS should be something Catalyst can do - and then offer as a MS.
@jwp Until I have a good handle on how to secure k8s, I'm not going to put it in prod
@aurynn 100% - kinda why we do so well with OpenShift in the Market vs all the other dist's
@jwp well, as openshift is k8s ... until I understand securing it, I won't put it in prod
@aurynn is and isn't. It's a secured validated set of stuff beyond just the scheduler and Control plane. Security and User Developer centrist. Turns out building a secure container platform is X hard.
@jwp that's the thing, right? I don't know what the security model is, I don't know what tradeoffs are made, or what the risk profile is. You can't managed solution that stuff away.
meowy catgirl
cjonesy@aurynn Nomad is pretty great. I always get excited when I hear people mention it! Best of luck on implementing!
mcneely