• Secure authentication with Red Hat AMQ 7.7 and ApacheDS LDAP server

  In this article, we will integrate Red Hat AMQ 7.7 with the ApacheDS LDAP server. However, any version of the AMQ 7.x series can be integrated with the steps mentioned in this article.

  For this example integration, we’ll use Apache Directory Studio, which is an LDAP browser and directory client for ApacheDS. You will learn how to set up the ApacheDS LDAP server from scratch, and how to integrate the new LDAP configuration changes that are required in AMQ 7.7. Finally, we’ll test the integration with an AMQ 7.7 shell-based client, using Hawtio as a graphical user interface (GUI). This will be helpful to system administrators and developers as they can quickly create a proof of concept for LDAP and AMQ integration. This will help in enabling role-based access control(RBAC) for accessing AMQ 7.7.

• Red Hat Insights delivers easier RHEL management with Red Hat knowledge base integration and enhanced customer portal applications

  As a system administrator, working quickly and efficiently is important. There is a good chance that you manage a large estate of Red Hat Enterprise Linux systems and that it continues to grow in complexity. In this post, we'll look at some ways Red Hat Insights can help you deal with that complexity.

  Red Hat Insights, an operational efficiency and vulnerability risk management service that provides continuous, in-depth analysis of registered RHEL systems, is included in your Red Hat Enterprise Linux subscription. Some users have referred to Insights as "like having an extra pair of eyes" to help you identify and manage risks to security, compliance, and operations across your evolving environments.

  Now, we’ve added three new integrations between Insights and the Red Hat Customer Portal to help you become even more productive.

• IBM-backed Grillo open sources earthquake early-warning system through The Linux Foundation

  Earlier today, The Linux Foundation announced it will host a new initiative to accelerate the standardization and deployment of earthquake early-warning (EEW) systems for earthquake preparedness around the world. Created by Grillo with support from IBM, USAID, the Clinton Foundation, and Arrow Electronics, the OpenEEW project includes the core components of the Grillo EEW system composed of integrated capabilities to sense, detect, and analyze earthquakes and to alert communities.

  IBM was originally connected to Grillo through the Clinton Foundation at a convening of the Clinton Global Initiative (CGI) Action Network. Now, IBM is assisting Grillo by adding the OpenEEW earthquake technology into the Call for Code deployment pipeline supported by The Linux Foundation.

  We sat down with Call for Code Chief Technology Officer Daniel Krook and IBM Developer Advocate Pedro Cruz to learn more about OpenEEW.

• IBM, Grillo, and the Linux Foundation partner on early earthquake detection systems

  The Linux Foundation — in partnership with IBM and startup Grillo — today announced an initiative called OpenEEW to accelerate the deployment of open source earthquake early warning (EEW) detection systems around the world. The organizations say OpenEEW will incorporate sensing, detection, and analysis components from Grillo’s EEW platform, along with a Docker software version of the detection component that can be deployed to Kubernetes and Red Hat OpenShift on IBM Cloud.

  An estimated 3 billion people live with the threat of earthquakes globally. According to the U.S. Geological Survey, in California, there’s a 94% chance that an earthquake will not be just a foreshock. Yet only a few countries — like Mexico, Japan, Turkey, Romania, China, Italy, portions of the U.S., and Taiwan — have EEWs, in part because they can cost upwards of $1 billion.

• The Linux Foundation, Grillo and IBM Announce New Earthquake Early-Warning Open Source Project

  The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced it will host Grillo’s OpenEEW project in collaboration with IBM to accelerate the standardization and deployment of earthquake early-warning systems (EEWs) for earthquake preparedness around the world. The project includes the core components of the Grillo EEW system comprised of integrated capabilities to sense, detect and analyze earthquakes as well as alert communities. OpenEEW was created by Grillo with support from IBM, USAID, the Clinton Foundation and Arrow Electronics.

  Earthquakes often have the most severe consequences in developing countries, due in part to construction and infrastructure issues. Timely alerts have the potential to help save lives in the communities where earthquakes pose the greatest threat. EEW systems provide public alerts in countries including Mexico, Japan, South Korea and Taiwan, but nearly three billion people globally live with the threat of an earthquake and don’t have access to nation-wide systems, which can cost upwards of one billion U.S. dollars. OpenEEW wants to help reduce the costs of EEW systems, accelerate their deployments around the world and has the potential to save many lives.

  “The OpenEEW Project represents the very best in technology and in open source,” said Mike Dolan, Senior Vice President and GM of Projects at the Linux Foundation. “We’re pleased to be able to host and support such an important project and community at the Linux Foundation. The open source community can enable rapid development and deployment of these critical systems across the world.”

• [S5:E3] Command Line Heroes: What Kind Of Coder Will You Become?

• Fedora 33 Moving Closer To LTO-Optimizing Packages
  

  Going back to last year Fedora has been working to enable link-time optimizations by default for their packages. That goal wasn't achieved for Fedora 32 but for Fedora 33 this autumn they still have chances of marking that feature off their TODO list. 

  LTO'ing the Fedora package set can offer not only performance advantages but in some cases smaller binaries as well. This is all about applying the compiler optimizations at link-time on the binary as a whole for yielding often sizable performance benefits and other optimizations not otherwise possible. LTO is great as we often show in benchmarks, especially in the latest GCC and LLVM Clang compilers. 

• Zamir SUN: Report for session 1 of FZUG @ Nest with Fedora

  Last month, Alick suggested the Fedora Zhongwen User Group (FZUG) can do a online meetup during Nest with Fedora. And based on the survey, people registered for two time slots, the first one is 9:00 PM Saturday evening UTC+8 which is not a good time for Alick, so I take up the coordinating role for this session.

  As for the tool, we decided to use Jitsi, as it should work fine for most of us and do not have any limitations. What’s more, it’s totally open source.

  During the meeting, I firstly introduced Nest with Fedora and it’s previous offline version, Flock to Fedora, to the attendees. It’s interesting to see that during the past years, we not only have new users in China, but also new contributors. One attendee shares that his motivation of being a packager is that deploying packages for their research in the lab is cumbersome before. So he decided to package all into Fedora and then he can just simply install them on every machine. It is good to know that people contribute back because they want to solve their own problems. Maybe this can be a talking point to attract more contributors in the future.

  After the self introduction, we continue by sharing our interesting stores with Linux. That is a lot of fun.

• Jon Chiappetta: Last piece of relay software needed for my home bridged network

  If you are running a bridged/relayd network with macs on it you may need to also forward the multicast broadcasts (mDNS related) that allow the devices to automatically discover each other. On the WRT wifi client side, there is a pkg called avahi-daemon and you can configure to operate in “reflector” mode to forward these broadcasts across the specified interfaces. Running this service along with the dhcprb C program which takes care of layer 2 arp requests & dhcp gateway forwarding has been pretty smooth so far!

• Nominations open for 2021 Red Hat Innovation Awards

  Red Hat, Inc., the world's leading provider of open source solutions, today announced that it is accepting nominations for the 2021 Red Hat Innovation Awards.

  Since 2007, the Red Hat Innovation Awards have recognized organizations from around the world and across industries for the transformative projects and outstanding results they have experienced with Red Hat's open source solutions. Open source has helped transform technology from the datacenter to the cloud and the Red Hat Innovation Awards showcase its transformative impact in organizations around the world.

• Red Hat Virtualization 4.4 brings new features for managing virtual machines

  Red Hat today introduced a new version of its virtualization platform, Red Hat Virtualization 4.4, that will help customers more easily manage their applications and give its hybrid cloud strategy a boost in the process.

  Red Hat Virtualization is an alternative to VMware Inc.’s vSphere. The platform runs on the IBM Corp. subsidiary’s widely used enterprise Linux distribution, RHEL, and provides features for managing large fleets of virtualized applications.

  Red Hat Virtualization 4.4 has been updated with support for the latest release of RHEL that Red Hat launched in April. That release, officially RHEL 8.2, introduced performance improvements as well as monitoring features that make it easier to identify security and reliability issues. Red Hat Virtualization customers can now take advantage of those enhancements by upgrading the operating system installations in their deployments.

• Critical API security risks: 10 best practices [Ed: By Security Evangelist and Strategist, Red Hat]

  With the meteoric rise of microservices and the rush to build more applications more quickly, APIs are being used more than ever to connect services and transfer data. But with a growing number of smaller application "pieces" trying to communicate with each other, APIs (your own and those from third parties) are becoming increasingly challenging to secure.

• Red Hat Launches Remote Certification Exams

• A deep dive into Keycloak

  DevNation Tech Talks are hosted by the Red Hat technologists who create our products. These sessions include real solutions plus code and sample projects to help you get started. In this talk, you’ll learn about Keycloak from Stian Thorgersen and Burr Sutter.

  Keycloak is an open source identity and access management solution for modern applications and services. You might already be familiar with it and are curious about its capabilities and features, but if you aren’t, don’t worry. In this video tutorial, we’ll give you a great introduction to Keycloak and go through most of the capabilities and features that help you secure your applications and services. You’ll discover how to easily enable two-factor authentication, integrate with external user stores like LDAP, delegate authentication to other identity providers, and use many more of the other cool and useful features Keycloak brings to the table.

• Kubernetes is the future: But what does this future look like?

  When industry influencers and CIOs talk about the future of computing, they typically aren’t only discussing hardware advancements or cloud-based software. Increasingly, these conversations center on transformation through application innovation, providing new predictive services to customers that are driven by an integrated user experience. This could be something like inspecting customer data patterns to promote new banking services, analyzing health indicators to proactively recommend treatment or an immersive interface for personalized interactions.

  Whatever the end product, it’s about gaining a competitive advantage in an ever-evolving, highly-competitive marketplace through technological advancement. Enter containers. Containers enable these applications to evolve faster, increase developer velocity and bring a greater level of portability and consistency regardless of underlying infrastructure.

  Gartner predicts that, by 2022, more than 75% of global organizations will be running containerized applications in production, which is a significant increase from fewer than 30% in 2019.1

• Fedora 33 To Offer Stratis 2.1 For Per-Pool Encryption

  While Fedora 33 is slated to default to the Btrfs file-system for desktop spins, for those on Fedora Server 33 or otherwise not using the defaults will have Stratis Storage 2.1 as another option.

  Red Hat's Stratis Storage has been their effort to improve the Linux storage stack while building upon LVM, Device Mapper, and XFS for offering ZFS/Btrfs-like features. Stratis continues making great progress and is ultimately committed to by Red Hat as part of their Linux storage play, potentially with it being used by default come Red Hat Enterprise Linux 9. Meanwhile the Fedora community has been dabbling with Btrfs on the desktop side for Fedora 33 and thankfully both technologies continue to be fostered by Fedora.

• Document APIs with open source OpenAPI Comment Parser

  Whether you’re building an application or website, great documentation is crucial to the success of your service. Developers need instructions on how to use your API and they need a way to try it out. Good documentation handles both.

  The OpenAPI Specification is an open standard for defining and documenting your API. The OpenAPI Specification enables the generation of great documentation, but creating an OpenAPI spec takes a lot of time and effort to create and keep up-to-date. Often, the OpenAPI spec ends up a large, forgotten, thousandl-ine file.

  To help make it as easy as possible to document an API, today we are launching the OpenAPI Comment Parser. The goal of OpenAPI Comment Parser is to give developers a way to generate this OpenAPI spec from comments inline with their code. When the OpenAPI spec lives inside the code, developers are much more likely to keep it up-to-date as their code changes.

• Total cost of ownership: The hidden part of the iceberg

  It seems like these days, everyone is talking about Containers, Kubernetes, microservices, serverless, cloud-native computing, and the Journey to Cloud or multicloud. These key technologies have many advantages, but you should be aware of some of the hidden costs associated with moving to the cloud so that you can plan in advance and avoid any surprises along the way.

• Cockpit 225 and Cockpit Podman 21

  Cockpit is the modern Linux admin interface. We release regularly. Here are the release notes from Cockpit version 223 and Cockpit Podman version 21.

  [...]

  When a virtual machine is not running and Cockpit makes a snapshot, only the disk contents will be saved. When a virtual machine is running, Cockpit will snapshot both the disk and memory state.

To a veteran user of other distributions, Fedora can be a challenge. Many things are not where you expect them to be. The default LVM volume allocations are a bit tricky. And packages including the kernel are frequently upgraded. So why switch after years of using other distributions?

In my case, for a variety of technical and political reasons, Fedora was the best option if I wanted to continue using Linux as my daily driver. If you are making the transition from another distribution, here are some observations and tips to get you started.