Today, we’re announcing a new, no-cost program tailored for the needs and requirements of projects, foundations and more: Red Hat Enterprise Linux (RHEL) for Open Source Infrastructure. Joining a growing set of no-cost and low-cost programs, RHEL for Open Source Infrastructure provides a simpler, clearer and documented process for projects, communities, standards bodies and other not-for-profit software groups engaged with open source to gain access to RHEL subscriptions. While we plan to continue to refine this latest program, we wanted to outline what is available now for interested parties.

Also: Red Hat Announces Free "RHEL For Open-Source Infrastructure"

• 6 resources and 3 tips to help you enter the world of Linux containers

  Here are some tips, ideas, and resources to help you develop your container vocabulary and start working with this useful technology.

• Bringing manufacturing to the edge with Red Hat OpenShift

  We are excited to announce today that Siemens is using Red Hat OpenShift to help its customers leverage the open hybrid cloud for edge deployments in the manufacturing industry. Let's take a look at why this is important for Siemens and why the approach is important for the industry at large.

  With Red Hat OpenShift for MindSphere, Siemens industrial IoT as a service solution, manufacturers will be able to run MindSphere across the hybrid cloud, including on-premise, for speed and agility in factory floor operations, as well as in the cloud for seamless product support, updates and enterprise connectivity. With MindSphere on Red Hat OpenShift, manufacturers will have control over factory floor data processed at the edge, as well as the agility and flexibility they require to meet expectations for higher quality products.

  [...]

  Red Hat OpenShift has long provided a control plane across the hybrid cloud but we have also focused efforts around updating OpenShift to better meet the unique needs of edge-specific deployments like Siemens'.

  A few of the latest edge related updates include three-node cluster support, which brings the capabilities of the industry’s leading enterprise Kubernetes platform to bear at the network’s edge in a smaller footprint. We’ve also added remote worker nodes.

  Remote worker nodes enable IT organizations to place single worker nodes in remote locations that can then be managed by centralized supervisor nodes at a larger site, such as a core or regional datacenter. This provides an additional topology choice to organizations pursuing Kubernetes innovation at the edge.

• Defense in depth with Red Hat Insights

  Vulnerability and patch management can be time-consuming and painful. Standard practices for vulnerability management rely on scanning for vulnerabilities and rescanning to confirm that patches have been applied. Unfortunately, this can lead to false positives and can be time consuming. In this post we will discuss how Red Hat Insights complements vulnerability management processes by providing deeper visibility to the risks associated with vulnerabilities based on your environment.

  Not only does Red Hat Insights identify vulnerabilities but it prioritises them based on any mitigations already in place and gives immediate validation when a patch is applied. This additional validation can serve as defense in depth security strategy, as Insights helps you monitor policy, identify vulnerabilities and validate that appropriate mediations are in place remediation.

• How your career goals can focus your open source contributions

  One of the quiet secrets of open source software projects is how much direct experience you can gain from domains and disciplines beyond software development. And the reverse is true—if you have non-developer skills and job experience, you are valuable to open source projects.

  There are relatively common forms that a contribution might end up taking when submitted to an open source project. We can examine from an outside perspective how your skills and career development goals map to these types of contributions.

  While conversation around technology sometimes focuses on the code and developers, it is a maxim of open source software projects that contribution is more than just code. This is evident when you study a project’s success holistically from within its ecosystem. A skilled project manager or user interface designer, for example, is just as likely as a software developer to provide the ideas and efforts behind a major success.

• Scaling with partners in 2021: How partner momentum is driving Red Hat success

  Taking a page from Red Hat president and CEO, Paul Cormier’s post, I’d like to take a moment to recognize what the past year has meant for the partner ecosystem and where we go from here. Not for the first time, we heard Paul explain the importance of partners in Red Hat’s story:

  "The channel is what made Red Hat. Without our partner ecosystem, Red Hat would be a very different company."

  Partners are the connective tissue between Red Hat and customers. This has remained true throughout most of Red Hat’s history, this was true in 2020, and it will be our truth as we grow in 2021 together. Red Hat and our partners proved to be resilient this past year, but what stands out to me is the momentum fueled by partners in a time filled with uncertainty and challenges.

• New “How Do You Fedora” video series to interview members of the community

  A common answer to the question “What’s your favorite part about Fedora?” is often “the community”. Well, what’s so special about it?

  The Fedora community shares the common values of the “Four Foundations”: Freedom, Friends, Features and First. Beyond that, although there are many great minds, not all of them think alike! Everyone contributes different approaches to problems, interesting ideas, and diverse perspectives. There is a place in Fedora for anyone who wants to help.

  That’s why we’re launching a new video series on the Fedora Youtube channel profiling some of Fedora’s various contributors and how they use Fedora. The goal is to get to know some community members better, especially in a time where in-person community events might not be practical.

• Sharing supplemental groups with Podman containers

  Rootless Podman containers is a really cool feature that allows users to run almost all containers in their home directory without requiring any additional privileges.

  Rootless containers take advantage of the user namespace, as I explained in this blog.

  Sometimes the user namespace and other container security layers like SELinux make it more difficult to share content inside the container. We have seen many users who want to share system directories into their containers but fail with permission errors. These directories are usually shared via some group access, which allows the user to read/write content in the directories.

• Developer Diaries: The Case of the Miscoded Credentials

  Cloud development practices and environments are evolving faster than ever. As developers, we are no strangers to adapting to the changing technology landscape. However, with a landscape that changes this often, it’s easy for us to get caught using the techniques we’ve used in the past to create the applications of the future.

  In this video, we talk out a problem in Upkar’s code where a 505 error that occurred due to miscoded credentials and ultimately discuss how we tackle problems like these with some vital app modernization tools.

• Introducing Red Hat Vulnerability Scanner Certification

  As container and Kubernetes adoption in production has grown, concerns regarding container security, monitoring, data management and networking remain. In order to address these challenges, organizations must lay a secure foundation for modern workloads. Red Hat is an established leader in security for enterprise open source solutions - container security is Linux security. Red Hat Enterprise Linux and Red Hat OpenShift offer a layered approach to securing containers and integrating security throughout the container lifecycle to support mission critical environments. We are continuously evolving to set new standards for security (e.g. DevSecOps) to support our partners and customers across open hybrid cloud.

  Today, we’re introducing the Red Hat Vulnerability Scanner Certification: a new certification to validate how security software partners use Red Hat security-related data for Red Hat products. This enables partners to deliver more reliable, consistent reporting to customers for containers to minimize false positives and other discrepancies. As a result, customers using Red Hat Certified partner security solutions can experience a more accurate process for assessing vulnerability risks of Red Hat products and packages including Red Hat Universal Base Images (UBI).

• The history of open source risk reporting

  This year Red Hat released our 10th Product Security risk report, which reviews the vulnerabilities that affected our products during the previous year. Software, and our customers’ environments, have gotten more complex — and so has the IT security landscape.

  With so much information on Common Vulnerabilities and Exposures (CVEs), our users have found it helpful to have one source of information about the risks posed to Red Hat technologies. And because Red Hat offers a full portfolio of technologies beyond Linux, we’ve expanded and improved the risk report to better reflect the issues that our customers care about. Now, let’s take a brief history lesson about how open source risk reporting has changed over the years.

• Red Hat Software Now Available On IBM Power Systems

  IBM has announced availability of Red Hat software on IBM Power Systems as well as new IBM Power Systems hardware.

  IBM Power Systems now features Red Hat OpenShift on IBM Power Virtual Server leveraging OpenShift’s baremetal installeri, Red Hat Runtimes, and newly certified Red Hat Ansible Content Collections.

  Providing clients an optimized, production-level OpenShift platform to modernize traditional environments with cloud-native applications, the IBM Power Private Cloud Rack combines on-premises hardware, a complete software stack of IBM and Red Hat technology, and installation from IBM Systems Lab Services to deliver 49% lower cost per request as compared to similarly equipped x86-based platformsii.

  Today’s announcements include enhancements to IBM Power System’s capacity to scale compute capacity across the hybrid cloud on Linux, IBM i, and AIX.

• Two new Call for Code for Racial Justice projects just went open source [Ed: IBM has the audacity to claim to combat the very thing it has long contributed to]

  In response to the murders of George Floyd, Ahmaud Arbery, Breonna Taylor, and too many others, Call for Code for Racial Justice launched in October of 2020. The initiative provides developers with the opportunity to build open source solutions to address three focus areas: Police & Judicial Reform and Accountability, Diverse Representation, and Policy & Legislation Reform. The initiative builds upon Call for Code, which was created in 2018 and has grown to over 400,000 developers and problem-solvers across 179 countries, in partnership with Creator David Clark Cause, Founding Partner IBM, Charitable Partner United Nations Human Rights, and the Linux Foundation.

• New Open Source Projects to Confront Racial Justice [Ed: Jason Perlow from IBM and Microsoft is trying to help IBM hide its highly racist practices, which it profited from]

  Today the Linux Foundation announced that it would be hosting seven projects that originated at Call for Code for Racial Justice, an initiative driven by IBM and Creator David Clark Cause to urge the global developer ecosystem and open source community to contribute to solutions that can help confront racial inequalities.

  Launched by IBM in October 2020, Call for Code for Racial Justice facilitates the adoption and innovation of open source projects by developers, ecosystem partners, and communities across the world to promote racial justice across three distinct focus areas: Police & Judicial Reform and Accountability; Diverse Representation; and Policy & Legislation Reform.

  The initiative builds upon Call for Code, created by IBM in 2018 and has grown to over 400,000 developers and problem solvers in 179 countries, in partnership with Creator David Clark Cause, Founding Partner IBM, Charitable Partner United Nations Human Rights, and the Linux Foundation.

• The Linux Foundation and IBM Announce New Open Source Projects to Promote Racial Justice

• The Linux Foundation and IBM Announce New Open Source Projects to Promote Racial Justice

  The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced it will host seven projects from Call for Code for Racial Justice, an initiative driven by IBM and Creator David Clark Cause to urge the global developer ecosystem and open source community to contribute to solutions that can help confront racial inequalities.

  Call for Code for Racial Justice launched in October 2020, and facilitates the adoption and innovation of open source projects by developers, ecosystem partners, and communities across the world to promote racial justice across three focus areas: Police & Judicial Reform and Accountability; Diverse Representation; and Policy & Legislation Reform. The initiative builds upon Call for Code, which was created in 2018 and has grown to over 400,000 developers and problem solvers across 179 countries, in partnership with Creator David Clark Cause, Founding Partner IBM, Charitable Partner United Nations Human Rights, and the Linux Foundation.

  “Open source technology has an important role to play in addressing the greatest challenges of our time, and that includes racial justice,” said Mike Dolan, senior vice president and GM of Projects at the Linux Foundation. “We are excited to host and support these projects at the Linux Foundation, and look forward to how they will develop and deploy through contributions from the open source community.”