Cloud vs. on-premises is about shaping risk

TL;DR: moving to the public cloud consolidates many small risks into few large ones. A recent GCP cloud outage ( highlights an issue with running more and more parts of the internet on the same infrastructure: as more computing resources consolidate in large cloud providers' data centres, the risk of a significant, global outage of … Continue reading Cloud vs. on-premises is about shaping risk

Azure diaries: can’t access KeyVault

Context: as a tenant administrator you can't inspect KeyVault contents created by other people ("you are unauthorized to view these contents"). Solution: assign yourself appropriate permissions like this: Locate the KeyVault in the Azure portal: go to "Access policies"click "+Add Access Policy"Key permissions: everything under "Key Management Operations" and "Cryptographic Operations"Accordingly for key and certificate … Continue reading Azure diaries: can’t access KeyVault

docker-proxy port in use

Quick one: you're starting a container through docker-compose and it says a port is in use. You "netstat -plutn" it and find out, that port is in use by docker-proxy. Github user rdavaillaud knows what's going on: stop dockerremove all internal docker network: rm /var/lib/docker/network/files/start docker

Cloud-specific software architecture patterns

This post is about software application architecture patterns that simplify application design by leveraging cloud features. New: Download the cloud pattern cheat sheet   Packaged configuration Packaged configuration cue cardWhatConfiguration is packaged with deployment artefactsMotivationSimplify system, increase resilience by removing runtime dependency on configuration serviceHowConfiguration is managed in configuration repository, CI/CD combines generic application artefact … Continue reading Cloud-specific software architecture patterns