Architecture Weekly #182 - 27th May 2024
Welcome to the new week! Let’s start with the security. We always put it as the last point, but should we? And I’m not even mentioning this humble newsletter, but in general. Security can be annoying. If you’re in a rush, do you really want to use this 2-Factor Authentication? If you have a tight budget, maybe you can cut the corners on security? If you want to onboard new clients quickly, maybe you could also make the process faster by lowering the security standards? That last part was the case for Snowflake, one of the emerging cloud data platforms. Yes, was, because they just faced one of the biggest data breaches. Kevin Beaumont did a coverage of it. Let’s start with this one:
That’s also one of the issues I described in Form a wall! And other concerns about security. Cloud magically won’t help us. If Snowflake were trying to cut corners by making access to the demo servers faster and not requiring their users to at least setup MFA, then the question would not be IF but WHEN they’re breached. Such a breach sounds terrible for the data platform. Well, they recently added AI to the description. Maybe that will help them… Of course, it won’t. This is the new surface of the threats. Read another coverage from Kevin where he shows how easily this can happen thanks to Windows 11 Copilot: Or check out a nice walkthrough by Zeev Kalyuzhner from the Wix: Btw. we’re bombarded by the financial numbers generated by NVidia. Some are saying that they’re the biggest company now. They managed to jump from the quick cryptocurrency bubble to the Generative AI/LLM bubble. So this may be true, but… …but recent Dell financial results may show a scratch on this crystal view. They recently put a lot of money into jumping into the Generative AI server delivery; they even managed to deploy many servers for that need, yet the figures stayed the same. Most of their profit is coming from the same sources as before. This may mean that either server market for GenAI has terribly low margins. Is it true, or is it just anecdotal evidence? We’ll see, but it’s worth watching this trend. As with any other technology, it’s sad, but the truth is that enterprise adoption is critical. And if Dell cannot have a proper enterprise adoption, then it’s not great info for the GenAI market. Read more: It sounds like Cloud Providers decided to show all the users that they can kick you off and delete your data when they want. We covered Google mishaps, and now Cloudflare made a move. Yet, this time, it wasn’t accidental but an intentional move: The case is fishy from both sides. The cut-off company is an online casino. They were using Cloudflare for services that are not allowed in many countries. It’s a neverending battle between governments and companies like that with blocking IPs, DNSes, etc. Cloudflare (probably) didn’t want to get their services blacklisted. They offer a “bring your own IP” option in Enterprise services, and that’s what they were offering for the company. Yet, the company still preferred to pay 200$ instead of 10 000 a month. Here, things have become bad for Cloudflare. They should be explicit about it if they want to cut off the company because of the legal policies. It seems that online gambling was bad for Cloudflare until they started paying more. Then it would be acceptable. Pecunia non olet. Of course, the newsletter author is overselling and showing only one side. But what we saw in his blog article is again a story of their terrible sales department. Also, let’s be frank, they didn’t want to drop this gambling business only because of the moral parts. They also have a story of supporting worse cases. What we can learn from this story is that nothing is free, even if the vendor says that. Each thing has its limits, and if we’re successful, we will need to pay more. And the more is dependant on the scale of our success. Prepare your business model for that. If you’re not getting a boost from vendor lock, use standards; they will help you move elsewhere. If it’s getting you a boost, invest in the proper backups of your configurations and at least think about the migrate-out strategies. Use boring tech. And don’t do shady business. Because it seems that there are days when even casinos are not always winning. I’ll post in the next releases if there’s an answer from Cloudflare. Speaking about boring tech, if you’re looking for inspiration, check a nice article from Mark Seemann about the fundamentals: It’s a nice walkthrough, not made in a boomer “I-can’t-keep-up-anymore-so-you-should-also-not-to” style. It shows how Mark selects the skills and technologies and the criteria he uses. Of course, select your own set. Evergreens is also relational database indexing strategies. I just found this online book, and it looks great: Coming back to the security, check how cookies and tokens work: Documenting your code properly: Still, we should keep an eye on new trends, such as platform engineering. Google released article on common myths: Or server-side UI components: I think that Dan did a great job explaining why, even though they look like the old thing, it’s not precisely circling back, but more a spiral and a next step of evolution. Check also other links! Cheers Oskar p.s. I invite you to join the paid version of Architecture Weekly. It already contains the exclusive Discord channel for subscribers (and my GitHub sponsors), monthly webinars, etc. It is a vibrant space for knowledge sharing. Don’t wait to be a part of it! p.s.2. Ukraine is still under brutal Russian invasion. A lot of Ukrainian people are hurt, without shelter and need help. You can help in various ways, for instance, directly helping refugees, spreading awareness, and putting pressure on your local government or companies. You can also support Ukraine by donating, e.g. to the Ukraine humanitarian organisation, Ambulances for Ukraine or Red Cross. Architecture
DevOpsFrontendDatabase
TestingAWSJava.NET
Coding LifeIndustry
Security
TriviaYou're currently a free subscriber to Architecture Weekly. For the full experience, upgrade your subscription. |
Older messages
Papers We Love #2 - How do committees invent? (Melvin E. Conway)
Monday, June 3, 2024
Watch now (73 mins) | Hey! 😀 In the 2nd edition of Papers We Love, we tackled the famous article Mel Conway's article where he introduced his law. You probably already know the quote: Organizations
Architecture Weekly #181 - 27th May 2024
Monday, June 3, 2024
Boy, is it a new week already? It is, so let's see what #ArchitectureWeekly brought to you this time! We started with a discussion about Mel Conway's law, its wide impact and whether we could
Architecture Weekly #180 - 20th May 2024
Monday, May 20, 2024
We started with an invitation to discuss Conway's Law. Then, we discussed recent Cloud provider mishaps. Well, one AWS mishap on the bill for a DDoSed S3 bucket and a nightmare from Google Cloud
Architecture Weekly #179 - 13th May 2024
Monday, May 13, 2024
This release has a few themes. We started with event-driven (yeah, surprise!), discussing the potential errors and ways to handle them. Then we checked if serverless cold-starts are THAT scary and
Architecture Weekly #178 - 6th May 2024
Monday, May 6, 2024
This time, we discussed biases. Biases on the perspective on our technologies, so not seeing their evolutions. We also checked how biases can impact our knowledge, collaboration and eventually also the
You Might Also Like
💡 Can Renters Have a Smart Home? — Getting the SteamOS Beta on Steam Deck
Saturday, September 28, 2024
Also: Your Google Doc Can Now Have a Stylish Cover, and More! How-To Geek Logo September 28, 2024 Did You Know If Johnny Depp hadn't been available to play Willy Wonka in Charlie and the Chocolate
Meta's new empire: VR, AR and AI - Sync #486
Saturday, September 28, 2024
Plus: Mira Murati leaves OpenAI; Microsoft to revive a nuclear plant for its AI data centre; bioengineered trees that capture more carbon; stem cell therapy for diabetes; and more! ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏
The Paywall’s Final Frontier 🔒
Saturday, September 28, 2024
Could CNN's planned paywall be a harbinger for free online news? Here's a version for your browser. Hunting for the end of the long tail • September 28, 2024 The Paywall's Final Frontier
Feature | The Best Visualizations from September on Voronoi 🏆
Saturday, September 28, 2024
See the most popular, most discussed, and most liked visualizations on our new data storytelling app Voronoi from September View Online | Subscribe In December 2023, we publicly launched Voronoi, our
Daily Coding Problem: Problem #1570 [Medium]
Saturday, September 28, 2024
Daily Coding Problem Good morning! Here's your coding interview problem for today. This problem was asked by Epic. The "look and say" sequence is defined as follows: beginning with the
Will Data Centers Ruin Your Neighborhood?
Saturday, September 28, 2024
Top Tech Content sent at Noon! A dev conference with discussions, workshops, and 1:1 feedback sessions Read this email in your browser How are you, @newsletterest1? 🪐 What's happening in tech today
🐍 New Python tutorials on Real Python
Saturday, September 28, 2024
Hey there, There's always something going on over at Real Python as far as Python tutorials go. Here's what you may have missed this past week: Python Virtual Environments: A Primer In this
ALERT - Critical Linux Printing System Flaws Could Allow Remote Command Execution
Saturday, September 28, 2024
THN Daily Updates Newsletter cover [Watch LIVE] Building a Successful Data Security Posture Management Program Learn From the Leaders: Early DSPM Adopters Reveal Their Data Security Success Secrets
Monitor Your Heart Health Every Day
Saturday, September 28, 2024
Withings is reducing the price of BPM Connect to $99.95 in the US, reaffirming our dedication to accessible health tech. With nearly half the adult population affected by high blood pressure, we're
📧 Breaking It Down: How to Migrate Your Modular Monolith to Microservices
Saturday, September 28, 2024
Breaking It Down: How to Migrate Your Modular Monolith to Microservices Read on: my website / Read time: 9 minutes The .NET Weekly is brought to you by: Integrate e-signatures into your workflows