Language Selection

English French German Italian Portuguese Spanish


Servers: IBM/Red Hat and Uptime Records

Filed under
Red Hat
  • 10 Years of OpenStack – Julia Kreger at Red Hat
  • Keeping Kubernetes secrets secret

    DevNation Tech Talks are hosted by the Red Hat technologists who create our products. These sessions include real solutions plus code and sample projects to help you get started. In this talk, you’ll learn how to manage Kubernetes secrets from Alex Soto Bueno and Burr Sutter.

    Everyone is talking about microservices and serverless architecture, and how to deploy them using cluster managers like Kubernetes. But, what about the secrets (such as certificates, passwords, SSH, and API keys)? The current trend increases the number of secrets required to run our services. This fact places a new level of maintenance on our security teams.

    How can we share and manage these secrets for our services in dynamic scenarios where instances are started automatically, or where there are multiple instances of the same services for scalability reasons? Are you keeping up?

  • A teenage aspiring SysOp in the age of the text-only BBS

    This was when I got into "computer things." I was a young teenager in 1993 when my dad brought home his first PC—a Gateway 2000 486/SX with a whopping 4MB of RAM, and a whole 320MB hard drive. It ran MS-DOS 6.21 and Windows (for workgroups) 3.11.

    In those days, computers just weren't that fast. That little 486 had trouble running Doom; forget about the multimedia experience that is today's internet. So, the majority of what you could do online was text. On top of that, the internet was still a very new thing, and not everyone could get access to it. Broadband was not a thing. Couple that with the fact that my dad was a telco guy, and knew that the internet was pretty much the wild west at the time—I wasn't allowed anywhere near it. That, however, just made me want to explore it that much more.

  • Most Reliable Hosting Company Sites in August 2020 [Ed: Almost everything GNU/Linux]

    The most reliable hosting company site in August 2020 belonged to, with no failed requests and the fastest average connection time. has now had the most reliable hosting company site three times in 2020. The company provides a range of services including cloud hosting, dedicated servers, colocation and managed services from four locations across the US, Europe and Asia.

    Swishmail appeared in second place, also responding to all of Netcraft's requests in August. Swishmail provides business email services alongside hosting solutions.

    Rackspace, Bigstep and EveryCity appear in third, fourth and fifth places. Rackspace had the second fastest average connection time and has appeared in the top 10 six times in 2020. Bigstep offers "bare metal" cloud hosting to provide the flexibility of cloud hosting but without the associated overhead and performance reductions of virtualization. EveryCity has appeared in the top 10 seven times in 2020 and is the only site that uses SmartOS.

How Raspberry Pi and Kubernetes work together

Filed under

Raspberry Pi and Kubernetes are both “cool” technologies cut from different cloths. But have you considered using them together?

The Raspberry Pi is hardware, a single-board computer with an ARM-compatible CPU, while Kubernetes is software for running and managing containers.

They’re both popular: the Raspberry Pi hit the 30 million units shipped milestone near the end of 2019, and apparently has seen a new sales surge this year. Kubernetes adoption is growing leaps and bounds, too. The nature of their popularity differs, though.

The Raspberry Pi has become commonly associated with computer science education, especially in K-12 education, since their relative affordability makes these devices accessible. In general, the Raspberry Pi lends itself to the kinds of tinkering and project-based work that cultivates the curiosity and learning that draws many people to technology in the first place.

Read more

Also: GMK brings referral contest as Nucbox Indiegogo campaign attains 1800% funding

Istio and Kubernetes Development

Filed under
  • Istio 1.7: Development Stays on Track Despite Controversies

    The August release of Istio 1.7 indicates that the continuing controversy around the open source service mesh project's governance hasn't affected ongoing development.

  • Introducing Structured Logs

    Logs are an essential aspect of observability and a critical tool for debugging. But Kubernetes logs have traditionally been unstructured strings, making any automated parsing difficult and any downstream processing, analysis, or querying challenging to do reliably.

    In Kubernetes 1.19, we are adding support for structured logs, which natively support (key, value) pairs and object references. We have also updated many logging calls such that over 99% of logging volume in a typical deployment are now migrated to the structured format.

  • Warning: Helpful Warnings Ahead

    As Kubernetes maintainers, we're always looking for ways to improve usability while preserving compatibility. As we develop features, triage bugs, and answer support questions, we accumulate information that would be helpful for Kubernetes users to know. In the past, sharing that information was limited to out-of-band methods like release notes, announcement emails, documentation, and blog posts. Unless someone knew to seek out that information and managed to find it, they would not benefit from it.

    In Kubernetes v1.19, we added a feature that allows the Kubernetes API server to send warnings to API clients. The warning is sent using a standard Warning response header, so it does not change the status code or response body in any way. This allows the server to send warnings easily readable by any API client, while remaining compatible with previous client versions.

  • Kubernetes Networking With EndpointSlices

    EndpointSlices are an exciting new API that provides a scalable and extensible alternative to the Endpoints API. EndpointSlices track IP addresses, ports, readiness, and topology information for Pods backing a Service.

    In Kubernetes 1.19 this feature is enabled by default with kube-proxy reading from EndpointSlices instead of Endpoints. Although this will mostly be an invisible change, it should result in noticeable scalability improvements in large clusters. It also enables significant new features in future Kubernetes releases like Topology Aware Routing.

Postfix vs. Sendmail

Filed under

Postfix and Sendmail are in the same category of Mail Transfer Agents. When selecting the MTA (Mail Transfer Agent) for your system, to choose the best option that meets your needs, you must consider a few important features, such as performance, security, documentation, and feasibility.

Read more

Servers Leftovers

Filed under


  • COVID-19 Pandemic Forces Reckoning with Cloud Costs

    While cloud applications are both more accessible and more resilient than on-premises applications, the cost of migrating applications to the cloud is substantial. In the wake of the economic downturn brought on by the pandemic, there’s naturally now a lot more focus on those costs. To help IT organizations better assess those costs, the Linux Foundation has launched the FinOps Foundation, a consortium dedicated to identifying best practices to rein in IT costs.


  • Announcing the General Availability of Bottlerocket, an open source Linux distribution built to run containers

    As our customers increasingly adopt containers to run their workloads, we saw a need for a Linux distribution designed from the ground up to run containers with a focus on security, operations, and manageability at scale. Customers needed an operating system that would give them the ability to manage thousands of hosts running containers with automation.

    Meet Bottlerocket, a new open source Linux distribution that is built to run containers. 


  • KubeCon + CloudNativeCon Europe 2020

    This year I managed to partecipate to KubeCon + CloudNativeCon Europe 2020. As you can imagine, the conference did not happen in real life, but it was converted to an online conference. More virtual conferences I attend to, more I understand the limits and the advantages of them compared to real conferences. In this particular conference, I realized that one of the biggest problems I have with virtual conferences is that, during the conference, the conference events and talks add to your usual events and meetings, making it impossible to follow all events you wanted to follow.


  • Increasing the Kubernetes Support Window to One Year

    Starting with Kubernetes 1.19, the support window for Kubernetes versions will increase from 9 months to one year. The longer support window is intended to allow organizations to perform major upgrades at a time of the year that works the best for them.

    This is a big change. For many years, the Kubernetes project has delivered a new minor release (e.g.: 1.13 or 1.14) every 3 months. The project provides bugfix support via patch releases (e.g.: 1.13.Y) for three parallel branches of the codebase. Combined, this led to each minor release (e.g.: 1.13) having a patch release stream of support for approximately 9 months. In the end, a cluster operator had to upgrade at least every 9 months to remain supported.

    A survey conducted in early 2019 by the WG LTS showed that a significant subset of Kubernetes end-users fail to upgrade within the 9-month support period.

  • Introducing IDE support for Apache Camel K Modeline

    Apache Camel K is a lightweight integration framework built on Apache Camel that runs natively on Kubernetes. Camel K is designed explicitly for serverless and microservices architectures and allows you to run an integration written in Camel DSL on your cloud.

    Since Apache Camel K 1.0.0, it has been possible to specify the configuration options for starting an integration route using Apache Camel K Modeline. Just place a single comment line, // camel-k:, at the top of your config file. Using this method allows you to specify a relatively complex integration project in a single file.

    Until now, you could only access these configuration options through the command line. In this article, I introduce the new IDE support for Apache Camel K’s Modeline configuration.

  • 10 Years of OpenStack – Shane Wang at Intel

    Storytelling is one of the most powerful means to influence, teach, and inspire the people around us. To celebrate OpenStack’s 10th anniversary, we are spotlighting stories from the individuals in various roles from the community who have helped to make OpenStack and the global Open Infrastructure community successful.

Securedrop Worktstation and how can you help

Filed under

The second half of the event was a live demo of the new SecureDrop Workstation project.

SecureDrop is an open source whistleblower submission system that media organizations and NGOs can install to securely accept documents from anonymous sources. It was originally created by the late Aaron Swartz and is now managed by Freedom of the Press Foundation. SecureDrop is available in 20 languages.

The current SecureDrop is dependent heavily on air-gapped Tails systems. This means increased security but also means a lot of time in accessing the submissions by the journalists. SecureDrop Workstation is the next generation system coming up to help in reducing this and also provide much smoother user experience without giving up the security.

Read more

LXD 4.5 has been released

Filed under

The LXD team is very excited to announce the release of LXD 4.5!

This is another pretty busy release for LXD with the main highlight no doubt being the addition of OVN to our networking options.

On top of that, we have some welcome improvements to our container support with both the bpf syscall interception and the new allocation logic for pts devices.

And lastly, good improvements to clustering and to security with the improved remote storage work and the new AppArmor profiles.

Read more

Kubernetes 1.19: Accentuate the Paw-sitive

Filed under

Finally, we have arrived with Kubernetes 1.19, the second release for 2020, and by far the longest release cycle lasting 20 weeks in total. It consists of 33 enhancements: 12 enhancements are moving to stable, 18 enhancements in beta, and 13 enhancements in alpha.

The 1.19 release was quite different from a regular release due to COVID-19, the George Floyd protests, and several other global events that we experienced as a release team. Due to these events, we made the decision to adjust our timeline and allow the SIGs, Working Groups, and contributors more time to get things done. The extra time also allowed for people to take time to focus on their lives outside of the Kubernetes project, and ensure their mental wellbeing was in a good place.

Contributors are the heart of Kubernetes, not the other way around. The Kubernetes code of conduct asks that people be excellent to one another and despite the unrest in our world, we saw nothing but greatness and humility from the community.

Read more

Happy 10th anniversary, OpenStack!

Filed under

OpenStack has transformed the open source industry since it launched 10 years ago. It was an endeavor to bring greater choice in cloud solutions by combining NASA's Nova with Rackspace's Swift object storage and has since grown into a strong base for open infrastructure.

In 2010, "the cloud" was barely a thing, and having a standardized, open source platform for public and private clouds was a dream. A decade later, OpenStack is a cloud platform that critical industries rely on. As evidence of its massive market base, 451 Research projects a US$ 7.7 billion OpenStack market by 2023, with the most growth in Asia (36%), Latin America (27%), Europe (22%), and North America (17%).

Within a year, the fledgling OpenStack community grew from a couple-dozen developers to nearly 250 unique contributors to its first release, dubbed Austin. Fast-forward to 2020: OpenStack now ranks among the top three most active open source projects in the world and is the most widely deployed open source cloud infrastructure software.

Read more

Nextcloud Desktop Client Gets End-to-End Encryption, New User Interface

Filed under

End-to-end encryption is probably one of the most requested features in Nextcloud, the most popular on-premises file share and collaboration platform. With the release of Nextcloud Desktop Client 3.0, Nextcloud has become the first vendor to offer an enterprise-grade end-to-end encryption solution designed with file sync and share in mind.

Thanks to end-to-end encryption, users no longer need to manually exchange encryption keys, share large encrypted volumes or long and complex passwords when share files securely. Nextcloud’s solution works on a per-folder level to ensure local encryption of all files and features a fully secure key management system with Cryptographic Identity Protection in the form of server-signed certificates.

Read more

Syndicate content

More in Tux Machines

JDK 16: What’s coming in Java 16

Although not due to arrive until March 2021, Java Development Kit (JDK) 16 has begun to take shape, with proposed features including concurrent thread-stack processing for garbage collection, support for C++ 14 language features, and an “elastic metaspace” capability to more quickly return unused class metadata memory to the OS. JDK 16 will be the reference implementation of the version of standard Java set to follow JDK 15, which arrived September 15. The six-month release cadence for standard Java would have JDK 16 arriving next March. Read more

Linux Kernel Latest Developments and New Linux Foundation Report

  • AMD Ryzen 9 3900XT CPUFreq Governor Comparison With Linux 5.9

    One of the most frequent questions received at Phoronix in recent times is whether the "schedutil" governor is ready for widespread use and if it can compare in performance to, well, the "performance" governor on AMD Linux systems. Here are some benchmarks of an AMD Ryzen 9 3900XT using the latest Linux 5.9 development kernel in looking at the performance differences between the CPUFreq governor options of Ondemand, Powersave, Performance, and Schedutil.

  • Intel Engineers Begin Landing Open-Source Support For TDX, Intel Key Locker

    Last month Intel published a whitepaper on TDX as Trust Domain Extensions as a means of better securing virtual machines. TDX allows for isolating VMs from the hypervisor and other non-VMM system software. Intel TDX builds off other recent work around MKTME memory encryption and other features. We are now beginning to see that software side support roll-out along with the also-new Key Locker instructions.

  • HPE Preparing SGI UV5 Support For The Linux Kernel

    Recent hardware enablement work on the Linux kernel is HPE bringing up UV5 support. Succeeding the SGI UV4 support is now UV5 under the ownership of HPE. UV5 is the latest iteration of their x86_64 based supercomputer architecture.

  • Linux 5.10 To Support Nitro Enclaves For Security-Critical Applications

    The kernel support for Nitro Enclaves landed this week in char-misc-next ahead of the Linux 5.10 cycle kicking off next month. Nitro Enclaves is a capability of Amazon AWS' EC2 cloud for protecting highly sensitive data. Nitro Enclaves provide additional isolation and security by punting the sensitive work/data off to an isolated virtual machine without persistent storage access and other reductions to possible attack surfaces while also providing cryptographic attestation for ensuring only trusted/authorized code is running.

  • Linux Foundation Adds Entry-Level Certification

    The Linux Foundation has announced the development of a new entry-level certification exam to complement their existing Linux Foundation Certified Sysadmin (LFCS) and Linux Foundation Certified Engineer (LFCE) exams. This new certification, the Linux Foundation Certified IT Associate (LFCA), targets people just moving into systems administration.

  • How open-source software transformed the business world [Ed: Today ZDNet deletes GNU and Free software from history, citing this 'report' from LF (made using proprietary software)]

    The Linux Foundation goes into many examples, but I'm going to focus on telecommunications and networking since it's a field I know well. 

  • Software-defined vertical industries: transformation through open source

    What do some of the world’s largest, most regulated, complex, centuries-old industries such as banking, telecommunications, and energy have in common with rapid development, bleeding-edge innovative, creative industries such as the motion pictures industry? They’re all dependent on open source software.  That would be a great answer and correct, but it doesn’t tell the whole story. A complete answer is these industries not only depend on open source, but they’re building open source into the fabric of their R&D and development models. They are all dependent on the speed of innovation that collaborating in open source enables. 

More IBM/Red Hat Leftovers

  • Red Hat OpenShift named as most widely deployed multicloud container platform

    US-based enterprise open source software solution provider Red Hat Inc’s Red Hat OpenShift has been named as the most widely deployed multicloud container platform, boosting powerful development and unified operations experiences across many public and on-premises platforms. In a statement today, Red Hat said OpenShift was evaluated by Forrester Research in The Forrester Wave: Multicloud Container Development Platforms, Q3 2020.

  • Ceph scales to 10 billion objects

    Ceph, the open source integrated file, block and object storage software, can support one billion objects. But can it scale to 10 billion objects and deliver good and predictable performance? Yes, according to Russ Fellows and Mohammad Rabin of the Evaluator Group who set up a Ceph cluster lab and, by using a huge metadata cache, scaled from zero to 10 billion 64KB objects. In their soon-to-be published white paper commissioned by Red Hat, “Massively Scalable Cloud Storage for Cloud Native Applications”, they report that setting up Ceph was complex – without actually using that word. “We found that, because of the many Ceph configuration and deployment options, it is important to consult with an experienced Ceph architect prior to deployment.”

  • What I learned as an engineering intern at Red Hat

    Interning at Red Hat has been one of the most challenging summers of my life, but it's been well worth it. Being an engineering intern working on Red Hat OpenShift's GitOps workflow has forced me to grow and learn more than ever before. My internship position on March 4th. A very short time later, COVID-19 caused companies to cancel their internships all over the United States. Thankfully, Red Hat announced that internships would go on in a virtual format.The Early Talent team made the necessary arrangements to make sure that our experience was impacted as little as possible by this change.

  • Start contributing to open source Call for Code projects

    Jumping into the open source world can be intimidating for the uninitiated. Don’t let fear of the unknown stop you from getting involved in open source. In this blog post, we cover some of the basics you need to know before contributing your first line of code. [...] Now that you understand that basic gist of open source, let’s go a little deeper. While some open source projects are small developer tools that help you accomplish a single task, other open source projects are large, complicated pieces of software that have interconnected parts. In these larger projects, different teams or working groups focus on developing specific parts of the technology, collaborating on the technology, peer reviewing and testing the code, and contributing their changes to the core tech.

  • Build Smart on Kubernetes World Tour: Developers’ path to platform freedom

    Without a doubt, Kubernetes is one of hottest open tech projects today and has been so for many years now. The reason for its durable, not-so-secret success? It’s the ability to containerize code, which frees developers from the constraint of writing code for one platform only and instead gives you the freedom of write-once, deploy-anywhere development. And why is this important? Enterprises know that the fastest route to app modernization depends on the ability to develop solutions that protect current tech investments, which likely run across multiple cloud platforms on and off premises. In other words, success depends on your ability to build solutions once and deploy them across multiple hybrid cloud platforms. Yep, containers tech delivers all of that and more. With that baseline, I’m writing to let you know that when it comes to learning Kubernetes, the IBM Developer advocates team has you completely covered with the Build Smart on Kubernetes World Tour. Since we launched the World Tour back in the fall of 2019, the team has delivered literally hundreds of free hands-on workshops globally to teach developers about the power of Kubernetes. It’s all part of the IBM Developer Way, delivering on our sole mission to teach the world’s developers about open tech through hands-on workshops and supporting content such as blog posts, tutorials, and videos. With the recent launch of new content on the Build Smart on Kubernetes World Tour site, it feels like a good time to provide a quick virtual tour of all that the site offers. Visit the updated site to find more than just upcoming tour events, but also self-paced learning options. You can now choose whether you learn at your own pace by viewing recorded content, register for upcoming live events, or, even better, both. I’m going to review each section to show you the details.

  • Mainframe Modernization Continues at Phoenix Software

    Tomorrow, Friday September 25, 2020, Phoenix Software International, Inc., will release (E)JES V6R0, an update to its z/OS system management product. This release includes enhancements to further modernization initiatives introduced in previous releases as well as brand new features that bring the accessibility of z/OS resources and tasks to other platforms. Concurrent with this release, Phoenix Software is also launching a new online documentation library within its secure customer support portal.

  • Poste Italiane Speeds Up Cloud-Native Application Development by 80% Using Red Hat’s Open Hybrid Cloud Technologies

    Red Hat, Inc., the world's leading provider of open source solutions, today announced that Poste Italiane Group ("Poste Italiane" or the "Group") is building an innovation platform based on Red Hat’s open hybrid cloud portfolio, including Red Hat OpenShift. The platform is intended to support more and deeper connections with ecosystem partners, provide a more seamless customer experience to the Group’s 35 million customers along with access to an extensive, timely product and services portfolio, and support Italy’s growing digital economy.

  • Red Hat Advances Cloud-Native Analytics with New Kubernetes-Based Data Services

    Red Hat, Inc., the world's leading provider of open source solutions, today announced the release of Red Hat OpenShift Container Storage 4.5, delivering Kubernetes-based data services for modern, cloud-native applications across the open hybrid cloud. Tightly integrated with Red Hat OpenShift Container Platform, the industry’s leading enterprise Kubernetes platform, Red Hat OpenShift Container Storage 4.5 is designed to help organizations enable a more seamless data services architecture for applications.

Screencasts and Audiocasts: KaOS 2020.09, Bandwhich, BSD Now, Ubuntu Podcast

  • KaOS 2020.09 Run Through

    In this video, we are looking at KaOS 2020.09. Enjoy!

  • Bandwhich: Bandwidth Tracking So Simple Anyone Can Use It

    Sometimes you might need to check out what conenctions are being made to and from your computer and while you could always try and work out how an application like Wireshark works sometimes that's a bit over kill and you just want a rough idea of what's happening and that's where a tool like Bandwhich, a very simple bandwidth tracking tool becomes useful.

  • BSD Now #369: Where rc.d belongs

    High Availability Router/Firewall Using OpenBSD, CARP, pfsync, and ifstated, Building the Development Version of Emacs on NetBSD, rc.d belongs in libexec, not etc, FreeBSD 11.3 EOL, OPNsense 20.7.1 Released, MidnightBSD 1.2.7 out, and more.

  • Ubuntu Podcast from the UK LoCo: S13E27 – Find a penny, pick it up

    This week we’ve been spying on our children and playing games on Twitch. We discuss the Ubuntu Community Council revival, GNOMEs new versioning scheme, Geary adding encryption support, Plasma 5.20, Xfce 4.16, Ubuntu Touch OTA-13 and Microsoft Edge coming Linux. We also round up our picks from the wider tech news.