259: If Only All My Disasters Could Be Managed

May 16, 2024 01:00:41
259: If Only All My Disasters Could Be Managed
259: If Only All My Disasters Could Be Managed

May 16 2024 | 01:00:41


Show Notes

Welcome to episode 259 of the Cloud Pod podcast – where the forecast is always cloudy! This week your hosts Justin, Matthew, and Jonathan and Ryan (yes, all 4!) are covering A LOT of information – you’re going to want to sit down for this one. This week’s agenda includes unnecessary Magic Quadrants, SecOps, Dataflux updates, CNAME chain struggles, and an intro into Phi-3 – plus so much more! 

Titles we almost went with this week:

A big thanks to this week’s sponsor:

Big thanks to Sonrai Security for sponsoring today’s podcast

Check out Sonrai Securities’ new Cloud Permission Firewall. Just for our listeners, enjoy a 14 day trial at https://sonrai.co/cloudpod 

General News 

00:33 Dropbox dropped the ball on security, hemorrhaging customer and third-party info 

03:06 Jonathan- “It’s unfortunate that it was compromised. It was their acquisition, wasn’t it – ‘HelloSign’ that actually had the defect, not their main product at least.”

05:44 VMware Cloud on AWS – here today, here tomorrow 

07:38 Justin – “So basically what was happening on Friday was that people were getting wind that Amazon was going to be able to resell VMware. And people were panicking about that. And yeah, right. So if you didn’t get that deal done before this happened, sorry, you’re now negotiating with Broadcom directly.”

AI Is Going Great (Or, How ML Makes All It’s Money) 

08:14 Better See and Control Your Snowflake Spend with the Cost Management Interface, Now Generally Available

10:59 Jonathan – “Yeah, at least they have budgets though. They can enforce spending limits per account or group of people. So you can stop a row gap from going off and spending millions of dollars over a weekend doing things you shouldn’t be doing.”


11:40 Stop the CNAME chain struggle: Simplified management with Route 53 Resolver DNS Firewall 

14:15 Ryan – “I can’t imagine this not coming up during a beta test or early adopter test. Like this is a very common, you know, Amazon workload is, is going to see, you’d think they’d hit this day one with that testing. It’s crazy.”

15:55 Jonathan – “DNAMES, it’s a way of mapping subdomains into parts of other domains. So you could map…let me think of an example. You can map multiple subdomains into a different namespace, effectively.”

17:36 Amazon EC2 simplifies visibility into your active AMIs

17:49 Amazon EC2 now protects your AMIs from accidental deregistration  

19:07 Build RAG applications with MongoDB Atlas, now available in Knowledge Bases for Amazon Bedrock 

19:46 Jonathan – “I had a chat with the Mongo sales guy not that long ago about this actually. It’s pretty cool. I don’t, yeah, it’s definitely an OS2 feature. I don’t think, you know, it’s, it’s if you want a vectored engine, I don’t think MongoDB will be your first choice if you weren’t already using it, but it’s a great, it’s a great additional feature if you’ve already got it in the stack.”

20:12 Introducing file commit history in Amazon CodeCatalyst  

21:11 AWS CodePipeline supports stage level manual and automated rollback  

21:29 Justin – “Now, if only it was really that easy of just rolling back a stage like no big deal, like, oh yeah, I rolled back. That assumes, of course, a lot of assumptions about your application… If it’s a static web application, yes, 100 % accurate. If this is a DB deployment, 100 % inaccurate and do not do this without understanding the risks to your business.”

22:52 How an empty S3 bucket can make your AWS bill explode

JeffBarr Twitter

JeffBarr Twitter update #2   

25:55 Ryan – “I was more impressed with Amazon’s reaction to this in terms of like, you know, like they haven’t fixed it. Apparently this is not a new issue. It’s been reported before, but just the amount of attention that’s got and how quickly there was a response. And then now, you know, a follow -up with, with an, you know, next coming week, sort of ETA, which is, I thought, was pretty impressive given the timescale that we’re talking about.”


28:26 Auto-upgrades for Config Sync in GKE Enterprise now in preview

29:12 Ryan – “I wish, I mean, I still go back to like, I wish Kubernetes was simple enough where this wasn’t as big of a deal. Like it should be able to auto upgrade between versions and, and that shouldn’t break everything, but it does. It breaks everything. I’ve seen it. I don’t understand why it breaks everything when you update Kubernetes. It’s frustrating.”

29:49 Justin – “I mean, the problem is there’s so much complexity in Kubernetes and so much deprecation of old legacy APIs right now that I just don’t feel like the API is that stable. So breaking changes is just the nature of the beast.”

30:26 Google is a Leader in the 2024 Gartner® Magic Quadrant for Cloud AI Developer Services

32:28 Jonathan – “I wonder why Amazon lacked complete vision, honestly. I guess it depends, I mean, from what perspective are they reporting on this? Because, you know, in my mind, I think what Amazon has done is very smart. They have all the tools to use any model you want, and they didn’t pay a cent in building their own models. You know, Mesa paid for Llama, Anthropic paid for Claude. There’s a whole bunch of models you can use on Amazon. Plus, they do have the vision services to do with the natural language services, things like that. But they didn’t pay any money.”

37:13 Introducing Dataflux Dataset for Cloud Storage to accelerate PyTorch AI training

37:38 Maintain business continuity across regions with BigQuery managed disaster recovery

38:53 Matthew – “I like the ability to give Google more money with capacity reservations in your DR region so that when the first region fails and everyone goes and launches in the DR region, you still have your reservation capacity.”

39:29 Justin – “What I want is the cloud providers to provide transparency of like, what’s the spot market percentage in a given data center? Because if the spot market is, you know, equivalent of like 30 or 40% of the workload in that region, those people are all dead in DR. So we’re taking their capacity and I don’t think I’m too worried about it, but, you know, there’s some transparency that the cloud providers could provide, but then they’ll just sell you this guaranteed capacity at an upcharge.”

41:33 Introducing Google Threat Intelligence: Actionable threat intelligence at Google scale

42:29 Introducing Google Security Operations: Intel-driven, AI-powered SecOps    

43:33 Justin – “I think anything we can help security people with is a win. So I don’t know all the threat intelligence, it sounds like threat noise in a lot of ways, because when you win with too many signals, it’s just all noise at some point, and yes, it could be valid, like your dark web monitoring, Ryan. But it also could just be noise, because I’m like, I don’t know who’s data got hacked to get my email address this time. It’s only the 15th this week, so who knows?”


44:59 Azure Governance Update – Management Groups

45:37 Matthew – “Essentially in the past, when you have your organization structure, there was no top level. So if you wanted to apply a policy to everything, you had to apply to all the subfolders. This was one of those things that over time was just, Hey, best practices, you just set this up. And now this is just Microsoft saying, here you go. We’re setting it up for you.”

47:30 Azure Virtual Network Manager user-defined route (UDR) management now in public preview

48:50 Introducing Phi-3: Redefining what’s possible with SLMs 

50:23 Jonathan – “As soon as you start training models to beat the benchmarks, they cheat, you know, and it doesn’t become meaningful anymore. I think asking a, you know, you see questions, plenty of questions online, like, you know, apart from Europe, which are the concerns that begin with an A? Like obviously Europe doesn’t begin with an A, but many models just gloss over that, ignore the error in the question and answer the questions the best they can. And so… I think things like that are the real tests to catch these models out. Also some funny stuff.”

51:36 Prioritizing security above all else 

56:23 Matthew – “The product teams don’t always consider that. Product managers don’t always consider a feature. They need the next shiny thing out there. So where do they end up sitting and does the product team and does then Microsoft get dinged on their next quarterly earning of, hey, last time you released 50 features and this time you released 40 features. What happened? Oh, well, we were fixing all of our security holes. Well, it’s not really a good story either.”

General Availability: Microsoft Azure now available from new cloud region in Mexico 


57:12 Announcing Oracle Database 23ai : General Availability 

58:05 Jonathan – “AI for data, AI for developers and AI for more money.”


And that is the week in the cloud! Go check out our sponsor, Sonrai and get your 14 day free trial. Also visit  our website, the home of the Cloud Pod where you can join our newsletter, slack team, send feedback or ask questions at theCloud Pod.net or tweet at us with hashtag #theCloud Pod

Other Episodes

Episode 129

August 13, 2021 01:03:57
Episode Cover

129: The Cloud Pod ditches our m1.small instances

On The Cloud Pod this week, the team is back in full force and some are sporting fresh tan lines. Also, it’s earnings season,...


Episode 105

February 24, 2021 00:37:13
Episode Cover

Episode 105: The Cloud Pod’s heart is a Flutter with Space Edge

On The Cloud Pod this week, Jonathan is getting his beauty sleep so you’ll have to make do with the comic stylings of Justin,...



October 31, 2019 40m48s
Episode Cover

CloudWatch detects The Cloud Pod as an Anomaly – Ep 44

Peter goes Absent With Out Leave – AWOL. Redhat can’t save IBM’s earnings, AWS starts detecting anomalies, Google adds 100-Gbps direct connect links to...