Language Selection

English French German Italian Portuguese Spanish

Kubernetes: Looking for Bugs, New Study and SUSE's Stake

Filed under
Server
OSS
  • Announcing the Kubernetes bug bounty program

    We aimed to set up this bug bounty program as transparently as possible, with an initial proposal, evaluation of vendors, and working draft of the components in scope. Once we onboarded the selected bug bounty program vendor, HackerOne, these documents were further refined based on the feedback from HackerOne, as well as what was learned in the recent Kubernetes security audit. The bug bounty program has been in a private release for several months now, with invited researchers able to submit bugs and help us test the triage process. After almost two years since the initial proposal, the program is now ready for all security researchers to contribute!

    What’s exciting is that this is rare: a bug bounty for an open-source infrastructure tool. Some open-source bug bounty programs exist, such as the Internet Bug Bounty, this mostly covers core components that are consistently deployed across environments; but most bug bounties are still for hosted web apps. In fact, with more than 100 certified distributions of Kubernetes, the bug bounty program needs to apply to the Kubernetes code that powers all of them. By far, the most time-consuming challenge here has been ensuring that the program provider (HackerOne) and their researchers who do the first line triage have the awareness of Kubernetes and the ability to easily test the validity of a reported bug. As part of the bootstrapping process, HackerOne had their team pass the Certified Kubernetes Administrator (CKA) exam.

  • Kubernetes: a secure, flexible and automated edge for IoT developers

    Cloud native software such as containers and Kubernetes and IoT/edge are playing a prominent role in the digital transformation of enterprise organisations. They are particularly critical to DevOps teams that are focused on faster software releases and more efficient IT operations through collaboration and automation. Most cloud native software is open source which broadens the developer pool contributing and customising the software. This has led to streamlined versions of Kubernetes with low footprints which are suited for IoT/edge workloads.

  • What’s New with SUSE CaaS Platform?

    SUSE CaaS Platform continues its steady pace of advancement, delivering new capabilities targeted at improving the Kubernetes platform operator experience. In addition to updating to Kubernetes 1.16, the SUSE CaaS Platform also now enables operators to consolidate operations across multi-cluster, multi-cloud, and multi-platform environments; to simplify cluster and application management with a web-based console; and to optimize system performance with powerful monitoring and management capabilities.

    Customer centricity was once again at the heart of feature considerations and enhancements for SUSE CaaS Platform. Over the past couple of weeks, we heard an increasing desire from our customers for key capabilities like the need for a unified management console and the need for more powerful data visualization. We listened to you, and your needs, and let that be our guide for development.

More in Tux Machines

MX Linux Now Has a Raspberry Pi Edition You Can Try Right Now

Meet the MX-Fluxbox Raspberry Pi respin, a special edition of this lightweight and very popular Debian-based GNU/Linux distribution that aims to combine the goodness of MX Linux and the lightweight of the Fluxbox window manager with the educational flexibility of the official Raspberry Pi OS. The Fluxbox environment is accompanied by elements from the renowned GNOME, Xfce and LXDE desktop environment to make things even more fun. On top of that, you’ll find all your favorite apps, such as the Mozilla Firefox ESR web browser, Claws Mail email client, VLC media player, Thunar file manager, FeatherPad text editor, as well as Geany and Thonny IDEs. Read more

exGENT Live Distro Makes Gentoo Linux Fun to Use in 2021 with the LXQt Desktop

About eight months since the last update to the exGENT distribution, which aims to offer the Linux community a live and installable operating system based on Gentoo. I’ve highlighted live and installable because Gentoo no longer generates regular live ISO images you can try without installing the system. The exGENT 2021 release makes things even more interesting since it uses the latest Linux 5.10 LTS kernel series, which automatically translates to better hardware support and support for newer hardware. However, the kernel included in the live system is Linux 5.6.7 and Linux kernel 5.10 LTS will be used in the installed system. Read more

Android Leftovers

Why KubeEdge is my favorite open source project of 2020

I believe edge computing, which "brings computation and data storage closer to the location where it is needed to improve response times and save bandwidth," is the next major phase of technology adoption. The widespread use of mobile devices and wearable gadgets and the availability of free city-wide WiFi in some areas create a lot of data that can provide many advantages if used properly. For example, this data can help people fight crime, learn about nearby activities and events, find the best sale price, avoid traffic, and so on. Gartner says the rapid growth in mobile application adoption requires an edge infrastructure to use the data from these devices to further progress and improve quality of life. Some of the brightest minds are looking for ways to use the rich data generated from our mobile devices. Take the COVID-19 pandemic, for example. Edge computing can gather data that can help fight the spread of the virus. In the future, mobile devices might warn people about the potential for community infection by providing live updates to their devices based on processing and serving data collected from other devices (using artificial intelligence and machine learning). Read more