Language Selection

English French German Italian Portuguese Spanish

Server

​Cloud Foundry embraces Kubernetes

Filed under
Server
OSS

Cloud Foundry, a prominent open-source Platform-as-a-Service (PaaS) cloud, isn't giving up on BOSH its tool chain for release engineering, deployment, and life-cycle management of large scale distributed services. But Cloud Foundry is making it easier to use Kubernetes both independently and as part of BOSH.

The Cloud Foundry Foundation is doing this by accepting two new projects: Eirini and CF Containerization. This comes after last year's adoption of Cloud Foundry Container Runtime (CFCR), which started Cloud Foundry's integration of Kubernetes. CRCR makes it possible to deploy and manage Kubernetes clusters using the BOSH release engineering tool chain.

Read more

Also: The Linux Foundation – Open Networking Summit Europe: Integrate | Automate | Accelerate

5 alerting and visualization tools for sysadmins

​IBM mainframe containers grow more secure

Filed under
Server
Security

Of course, you can do a wee bit more with Secure Service Containers (SSC) on IBM LinuxONE and Z mainframes than you could on a 360 mainframe with a maximum of 1MB of memory. IBM Cloud Private is a Platform as a Service (PaaS) environment for developing and managing containerized applications. It's built on top of the Kubernetes container orchestrator Kubernetes.

Read more

IBM Nabla Containers, Kubernetes 1.12 and Platform9 Open Sources Its Kubernetes Etcd Support Tool

Filed under
Linux
Server
OSS
  • A New Method of Containment: IBM Nabla Containers

    In the previous post about Containers and Cloud Security, I noted that most of the tenants of a Cloud Service Provider (CSP) could safely not worry about the Horizontal Attack Profile (HAP) and leave the CSP to manage the risk. However, there is a small category of jobs (mostly in the financial and allied industries) where the damage done by a Horizontal Breach of the container cannot be adequately compensated by contractual remedies. For these cases, a team at IBM research has been looking at ways of reducing the HAP with a view to making containers more secure than hypervisors. For the impatient, the full open source release of the Nabla Containers technology is here and here, but for the more patient, let me explain what we did and why. We’ll have a follow on post about the measurement methodology for the HAP and how we proved better containment than even hypervisor solutions.

    The essence of the quest is a sandbox that emulates the interface between the runtime and the kernel (usually dubbed the syscall interface) with as little code as possible and a very narrow interface into the kernel itself.

  • Kubernetes 1.12 Arrives With TLS and Better Cloud Integrations

    The Kubernetes project has been hurtling at breakneck speed towards the boring. As the popular open source container orchestration platform has matured, it’s been the boring features which have come front and center, many of which focus on stability and reliability. For the Kubernetes 1.12 release on Thursday, those working on the project and on the various special interest groups (SIGs) initially laid out over 60 proposed features. A little over half of those made it to the final release, with many more being pushed back or delayed, as usual.

    Amongst the changes that made it into this release are such additions as the general availability of TLS bootstrapping, the ability to use the Kubernetes API to restore a volume from a volume snapshot data source, a newly beta version of the KubeletPluginsWatcher, and some groundwork which is being put in place to solve scheduling challenges that confront large clusters

  • Platform9 Open-Sources etcdadm, Enabling the Kubernetes Community to Easily Create and Manage Secure etcd Clusters, Anywhere

    Platform9, the leader in SaaS-managed hybrid clouds, today announced etcdadm – a new open source project available under the Apache v2.0 license...

  • Platform9 Open Sources Its Kubernetes Etcd Support Tool

    Platform9 pushed its etcdadm support tool out into the open source community via GitHub in an effort to generate momentum behind automating the configuration, deployment, and management of etcd clusters used by Kubernetes to store control plane information. Those tasks are currently either part of more broadly-focused efforts put on the shoulders of a Kubernetes user, or cobbled together by developers.

    Etcd is the primary storage location for Kubernetes and needs to be established before Kubernetes can be run on a system. Arun Sriraman, Kubernetes technical lead manager at Platform9, explained in a video that etcd is the “backbone for Kubernetes storage.”

Open-source boffins want to do for the IoT edge what Kubernetes did for containers

Filed under
Linux
Server
OSS

Two high-profile open-source collaborations are putting their heads together to work out how to take Kubernetes, more familiar in hyperscale environments, out to Internet of Things edge computing projects.

The Kubernetes IoT Edge Working Group is the brainchild of the Cloud Native Computing Foundation (CNCF) and the Eclipse Foundation.

Speaking to The Register, CNCF's Chris Aniszczyk said the idea of using Kubernetes as a control plane for IoT is "very attractive".

That sums up the brief of the working group, he said, "to take the concept of running containers, and expand that to the edge".

Read more

Release of Kubernetes 1.12

Filed under
Server
OSS
  • Kubernetes 1.12 Released

    Today, the Kubernetes Project released version 1.12. The big updates in this version are the general availability of TLS bootstrapping, a maturing story around scaling, and better multitenancy. Head on over to the CoreOS Blog to check out the full details of this release.

  • Welcome to Kubernetes 1.12

    Today, we celebrate this week’s release of Kubernetes 1.12, which brings a lot of incremental feature enhancements and bug fixes across the release that help close issues encountered by enterprises adopting modern containerized systems. Each release cycle, we’re frequently asked about the theme of the release. There are always exciting enhancements to highlight, but an important theme to note is trust and stability.

    The Kubernetes project has grown immensely over the last few years and has come to be respected as a leader in container orchestration and management solutions. With that stature comes the responsibility to build APIs and tools that are well-tested, easy to maintain, highly performant, and scalable; qualities that are trusted and stable. In each of the upcoming release cycles, we expect to continue to see a community effort around prioritizing the maturation and stabilization of existing functionality over the delivery of new features.

Postgres 11 - a First Look

Filed under
Server
OSS

Postgres 11 is almost here, in fact the latest beta shipped today, and it features a lot of exciting improvements. If you want to get the full list of features it is definitely worth checking out the release notes, but for those who don’t read the release notes I put together a run down of some what I consider the highlight features.

Read more

PostgreSQL 11 Beta 4 Released With JIT Compilation Disabled By Default

Filed under
Server
OSS

The fourth and likely last beta release of PostgreSQL 11 is now available.

One of the headlining features of PostgreSQL 11 was the new LLVM JIT compiler option but as of a few days ago it's been disabled by default due to some performance problems and at this stage seeming to really only help long and complex queries. But for those wanting to try out this just-in-time support can easily enable it with a configuration option in this beta as well as for the final release.

Read more

PostgreSQL 11: something for everyone

Filed under
Server
OSS

PostgreSQL 11 had its third beta release on August 9; a fourth beta (or possibly a release candidate) is scheduled for mid-September. While the final release of the relational database-management system (currently slated for late September) will have something new for many users, its development cycle was notable for being a period when the community hit its stride in two strategic areas: partitioning and parallelism.

Partitioning and parallelism are touchstones for major relational database systems. Proprietary database vendors manage to extract a premium from a minority of users by upselling features in these areas. While PostgreSQL has had some of these "high-tier" items for many years (e.g., CREATE INDEX CONCURRENTLY, advanced replication functionality), the upcoming release expands the number considerably. I may be biased as a PostgreSQL major contributor and committer, but it seems to me that the belief that community-run database system projects are not competitive with their proprietary cousins when it comes to scaling enterprise workloads has become just about untenable.

Read more

PostgreSQL adopts a code of conduct

Filed under
Server
OSS

The PostgreSQL community has, after an extended discussion, announced the adoption of a code of conduct "which is intended to ensure that PostgreSQL remains an open and enjoyable project for anyone to join and participate in".

Read more

How Kubernetes' Founder is Building an Un-Distribution at Heptio

Filed under
Server
Interviews
OSS

Unlike other software vendors that are part of the Kubernetes community, Heptio doesn't want to build a software distribution of Kubernetes. Rather, the Heptio Kubernetes Service (HKS) is about support and services to help organizations deploy and manage upstream Kubernetes. It's an approach that Heptio has referred to as being an Un-Distribution.

"Our goal with the whole idea of the un-distribution is we want to provide the best parts of a distribution without necessarily some of the downsides that come along with that," Beda said.

Beda said that generally what happens with a distribution of an open source project is that a software vendor takes the upstream code, cleans it up so it's fit for enterprise consumption and then shipping a combination of tools that are prove to work well together.

"Upstream Kubernetes doesn't need a lot of clean up, because the community is so strong and we want to keep it that way," he said.

As such, a lot of the work that Heptio is involved with is all upstream with effort to make Kubernetes easier to install and use. Beda said that Heptio is putting a lot of effort into the kubeadm installer effort from the upstream project as well as the cluster API effort. As part of HKS, Beda said that Heptio is developing a set of validated designs, which integrate best practices for deployment.

Read more

Syndicate content

More in Tux Machines

Samsung Linux on DeX beta hands-on: do almost everything on your phone

Among the various Linux on Android implementations, Samsung’s Linux on DeX definitely looks the most polished ready to use solution, even if it’s still in beta form. Although it uses a two-year-old version of Ubuntu, there is already a lot that can be done from that. Plus, just like Android users, Linux users can be pretty creative and only time will tell if they’ll be able to use Linux on DeX to make almost any Linux distro work. Read more

Android Leftovers

A Look At The GCC 9 Performance On Intel Skylake Against GCC 8, LLVM Clang 7/8

With GCC 9 embarking upon its third stage of development where the focus ships to working on bug/regression fixes in preparation for releasing the GCC 9.1 stable compiler likely around the end of Q1'2019, here is a fresh look at the GCC 9 performance with its latest development code as of this week compared to GCC 8.2.0 stable while using an Intel Core i9 7980XE test system running Ubuntu Linux. For good measure are also fresh results from LLVM Clang 7.0 stable as well as LLVM Clang 8.0 SVN for the latest development state of that competing C/C++ open-source compiler. Read more

This under-$6 SBC runs Linux on RISC-V based C-SKY chip

Hangzhou C-SKY has launched a “C-SKY Linux Development Board” for $5.60 and up, featuring a RISC-V derived, 574MHz C-SKY GX6605S CK610M SoC, 64MB DDR2, an HDMI port, and 2x USB 2.0 ports. Last month, Hangzhou C-SKY Microsystems Co. announced Linux 4.20~5.0 kernel support for its new RISC-V based C-SKY CK810 SoC design. Now, Hangzhou C-SKY has launched a development board that runs Linux on a similar CK610M SoC. The C-SKY Linux Development Board sells for 39-40 Yuan ($5.60 to $7.05) on Taobao and $19.50 to $21.50 on AliExpress. Read more