Language Selection

English French German Italian Portuguese Spanish

Server

Helping People Quit Microsoft GitHub

Filed under
Development
Server
Microsoft

This short article covers resources and helps to people who want to quit MS GitHub and move away to a better one --ethical, Free Software-based and user-controlled--. This includes examples of popular projects already moved, alternatives you could choose, self-host solutions, repository transfer guides, our community services, and further information, all presented in short format. In this article of course I mentioned several names like GitLab and Kallithea as alternatives and GNOME and Trisquel projects as examples. I hope this simple article could lighten your burdens in migrating away your source code repository. Happy hacking!

Read more

IBM/Red Hat/Fedora: Fedora/GitLab, OpenStack, CodeTheCurve, Istio

Filed under
Red Hat
Server
  • An uproar over the Fedora Git forge decision

    After a lengthy requirements-gathering thread on the fedora-devel mailing list back in January, things went rather quiet until the March 28 posting of "CPE Weekly", which is a newsletter that covers the activities of the Red Hat Community Platform Engineering (CPE) team. That is the organization behind the Git forge effort; tucked into the end of the newsletter was the "announcement" that the team had chosen GitLab as the forge for Fedora and CentOS, while still continuing to run Fedora Pagure with community assistance for projects that want to use it as their Git host.

    There was, it seems, a plan to announce the decision on the Fedora Community Blog (and on Blog.CentOS.org). But, as noted by CPE manager Leigh Griffin, that did not happen due to "unavailability and illness" of a volunteer who was going to do it, which meant the first mention of the decision ended up in the already scheduled newsletter. The net result, as Neal Gompa pointed out, was that "the delivery of this decision sucked".

    Beyond that, though, Gompa went through the user stories that had been gathered as part of the decision-making process at great length; he said that many of them could not be satisfied with any open-source solution, so in some sense he is not surprised that CPE looked beyond Pagure. But many of the requirements identified also make it clear that the open-source GitLab Community Edition (CE) would not fulfill the needs listed, so he thinks that CPE is really aiming for the proprietary Ultimate/Gold edition.

    As might be guessed, Griffin largely disagreed with much of Gompa's point-by-point analysis; he also said that no decision had been made on which of GitLab's offerings would be used. The requirements were gathered from multiple stakeholders within Red Hat, including Fedora, CentOS, Enterprise Linux (RHEL), and CPE itself, but were generally not really evaluated, just collected: "It was not our place to question valid use cases or requirements from our stakeholders."

  • Running Red Hat OpenStack Platform 16 with multiple Cells

    Improving scaling capabilities of Red Hat OpenStack Platform is an important part of product development. One of the features that helps to simplify the management of resources is called Cells. Simply put: Cells makes this easier by taking a distributed approach to management to support large scale deployments. In this post we'll look at how to use OpenStack Platform 16 with Cells.

    Previously our team of performance and scale engineers described the process to scale OSP to more than 500 nodes. With Red Hat OpenStack Platform 16 we introduced full support for Nova’s Cells v2 feature that helps operators manage more compute resources within the same region than was possible before.

  • CodeTheCurve: Top 40 winners announced

    On April 6, UNESCO launched its call for applications for CodeTheCurve — a hackathon that’s all about empowering youth to fight back against COVID-19 through technological innovation. With nearly 200 applications received from scores of countries worldwide, its main collaborators, IBM and SAP, shared the selected teams on April 20. Forty teams from more than 30 countries were selected across three themes:

  • Google Cloud CEO: Istio is going to a foundation [Ed: Istio is a joint project launched by IBM, Google, and Lyft]

    Google Cloud CEO Thomas Kurian has ended years of confusion by telling Protocol that Google will eventually donate its open-source project Istio to a foundation at some point in the near future.

    In an exclusive interview with Protocol on Tuesday, Kurian said that the company is evaluating which foundation's governance policies will best suit Istio, one of Google's most prominent open-source projects. But he added that the company is still "working through which foundation to grant it to."

    [...]

    Nicholas Chaillan, chief software officer for the U.S. Air Force, told Protocol in January that his organization — a prominent user of both Kubernetes and Istio — would have to drop support for the technology this year if Google didn't donate the project to a foundation.

    While the Cloud Native Computing Foundation has been seen by many as the natural home for Istio given its history with Kubernetes, Kurian cast a wider net in his interview with Protocol on Tuesday. "Some [foundations] have the right governance models, and some of them don't," he said, adding that Google will choose a foundation that ensures community participation will drive the project forward.

Servers: Kubernetes, Nginx and More

Filed under
Server
  • Two-phased Canary Rollout with Open Source Gloo

    Every day, my colleagues and I are talking to platform owners, architects, and engineers who are using Gloo as an API gateway to expose their applications to end users. These applications may span legacy monoliths, microservices, managed cloud services, and Kubernetes clusters. Fortunately, Gloo makes it easy to set up routes to manage, secure, and observe application traffic while supporting a flexible deployment architecture to meet the varying production needs of our users.

    Beyond the initial set up, platform owners frequently ask us to help design the operational workflows within their organization: How do we bring a new application online? How do we upgrade an application? How do we divide responsibilities across our platform, ops, and development teams?

  • NetApp to make stateful applications easier to do in Kubernetes

    Most web applications are stateless. These don't save client data from one session for the client's next session. A stateful app is one that saves client data from one session to the next. There are advantages to both approaches. But it's not been easy to run stateful applications in containers. NetApp wants to fix that with Project Astra, a Kubernetes storage and container platform.

    In Kubernetes' early days, it was usually used to run web-based stateless services. If you needed stateful services, such as a database, you had to run them in virtual machines (VM) or as cloud-based services. Now, with the rise of the Kubernetes-based hybrid cloud, users want to deploy stateful apps on top of Kubernetes orchestrated containers.

  • Nginx 1.18 Stable Released With Many Fixes, Improvements

    Nginx 1.18 is out this week as their newest stable branch succeeding the Nginx 1.16 series for this versatile HTTP server and reverse proxy / load balancer / HTTP cache / mail proxy.

  • Choosing a Linux Solution for the Intelligent Edge

Jitsi in the News

Filed under
Server
OSS
Web

Server: BigBlueButton, New Mainframe Models and IBM Snubs Security

Filed under
Server
  • BigBlueButton review

    However, the software must be installed on an Ubuntu Linux server, and its installation and ongoing maintenance requires a strong working knowledge of this operating system. Therefore, many schools instead use third-party BigBlueButton managed web hosting companies that install, host, and maintain their BigBlueButton installation for them.

  • New Mainframe Models

    In these days of lockdown and spending all day at home, it’s always good to have news of a new baby in the family. And that’s what we got last week. IBM has shared with its extended mainframe family (and the rest of the world) the news about its two new mainframe products, the z15 Model T02 and LinuxONE III Model LT2.

    The z15 platform was originally launched last September, with the z15 Model T01 and LinuxONE III LT1. Their outstanding feature was the ability for data to be ‘encrypted everywhere’, both in transit and at rest and without impacting system performance. This uses the, so called, Data Privacy Passports. Other standout features were increased physical compute capacity, high availability options, and support for container-based development and applications (using the Red Hat OpenShift Container Platform).

    [...]

    Perhaps the biggest talking point with these models is IBM Secure Execution for Linux, a hardware-based security technology that creates isolated Trusted Execution Environments (TEEs) that restrict access to business critical or sensitive data, but still allow administrators and developers to perform their jobs. Secure Execution is a way to mitigate insider threats to enterprise data. Basically, Secure Execution provides a KVM-based virtual machine that is fully isolated and protected from the hypervisor with encryption keys that only the IBM Z hardware and firmware have access to.

  • IBM == Insecure Business Machines: No-auth remote root exec exploit in Data Risk Manager drops after Big Blue snubs bug report

    IBM has acknowledged that it mishandled a bug report that identified four vulnerabilities in its enterprise security software, and plans to issue an advisory.

    IBM Data Risk Manager offers security-focused vulnerability scanning and analytics, to help businesses identify weaknesses in their infrastructure. At least some versions of the Linux-powered suite included four exploitable holes, identified and, at first, privately disclosed by security researcher Pedro Ribeiro at no charge. Three are considered to be critical, and one is high risk.

    [...]

    IBM however did say that it had fumbled the report. "A process error resulted in an improper response to the researcher who reported this situation to IBM," a company spokesperson told The Register. "We have been working on mitigation steps and they will be discussed in a security advisory to be issued."

    Ribeiro dismissed IBM's response in an email to The Register. "Well, what can I say," he said. "It's a joke right? I think it's pretty sad that I have to disclose a zero-day and shame them publicly to get them to patch critical vulnerabilities in a security product, while they sell themselves as an elite company providing security services."

An Overview to Libreho.st - Alternative World's Hosters Community

Filed under
Server

Librehost or Libreho.st is a group of libre hosters. They are Google-like free online service providers but unlike Google they are committed to Free Software and User's Privacy. They provide many internet services alternative to Gafam for free and without ads. Some of them offer paid server hostings too but with commitment to use GNU/Linux inside. You can sign up at Librehost to get free services --for example-- alternative to Gmail, Twitter, WhatsApp, and Zoom. Characteristics of Librehost are they love decentralization; enable everybody to join open standard communication and gather within Fediverse. For us who seek Gafam alternatives after 2013 Global Surveillance, we now find Librehost. This article tries to introduce Librehost to public by showing several services freely available from them everybody could instantly try. Enjoy!

Read more

Servers: XenServer, OpenStack, Cartesi, SUSE and Red Hat

Filed under
Red Hat
Server
SUSE
  • XCP-ng celebrates six-figure download milestone

    XCP-ng, the crowdfunded effort to deliver an open-source version of XenServer, has passed the 100,000-download mark.

    Founder Olivier Lambert has described the milestone as “only the beginning but it's a symbolic level, and it tells a lot about how many people have been convinced to use XCP-ng!”

    And not just people: in January 2020 the Xen Project adopted XCP-ng as an incubation project. Xena advisory board chair George Dunlap likened the decision to do so as akin to RedHat teaming up with CentOS – it may look like internal competition but having two projects with the same goal in proximity is mutually beneficial.

  • Interoperability of Open-source Tools: The Emergence of Interfaces

    Katie Gamanji works as a Cloud Platform Engineer at Condé Nast. Previously, she worked on maintaining and automating site delivery on OpenStack-based infrastructure, which transitioned into a role with a focus on designing, deploying and evolving a Kubernetes centric infrastructure.

  • Cartesi creates Linux infrastructure for blockchain DApps

    Cartesi is a DApp infrastructure.

    DApps (sometimes called Dapps) are from the blockchain universe and so, logically, the apps part stands for application (obviously) and the D part stands for decentralised (only obvious once you know that we’re talking distributed immutable language here).

    According to the guides section at blockgeeks, DApps are open source in terms of code base, incentivised (in terms of who validates it) and essentially decentralised so that all records of the application’s operation must be stored on a public and decentralised blockchain to avoid pitfalls of centralisation.

    So then, Cartesi is a DApp infrastructure that runs an operating system (OS) on top of blockchains.

  • SUSE’s Bridge Between Kubernetes & Cloud Foundry: Thomas Di Giacomo

    Why did SUSE contribute its project to Cloud Foundry? How is KubeCF going to further bring Kubernetes and Cloud Foundry together? We sat down with Thomas Di Giacomo, President of Engineering and Innovation at SUSE, to get answers to these questions.

  • ZTE collaborates with Red Hat to quickly deploy open 5G Networks

    The collaboration includes a new reference architecture aimed at enabling telcos to more effectively deploy virtual network functions (VNFs) on Red Hat openStack platform, Red Hat’s highly-scalable and agile Infrastructure-as-a-Service (IaaS) solution on ZTE’s hardware.
    The collaboration combines the open source innovation available in Red Hat openStack platform with ZTE’s Cloud Core Network components. It offers a replicable and cost-effective network solution that can speed integration time by 5 times based on internal Red Hat testing.

  • How Edge Is Different From Cloud – And Not

    As the dominant supplier of commercial-grade open source infrastructure software, Red Hat sets the pace and it is not a surprise that IBM was willing to shell out an incredible $34 billion to acquire the company. It is no surprise, then, that Red Hat has its eyes on the edge, that amorphous and potentially substantial collection of distributed computing systems that everyone is figuring out how to chase.

    To get a sense of what Red Hat thinks about the edge, we sat down with Joe Fernandes, vice president and general manager of core cloud platforms at what amounts to the future for IBM’s software business. Fernandes has been running Red Hat’s cloud business for nearly a decade, starting with CloudForms and moving through the evolution of OpenShift from a proprietary (but open source) platform to one that has become the main distribution of the Kubernetes cloud controller by enterprises. Meaning those who can’t or won’t roll their own open source software products.

AWS and GNU/Linux

Filed under
Server
Ubuntu
  • Ubuntu Begins Offering A Rolling Release Kernel For The Amazon Cloud

    Canonical is transitioning Ubuntu's support in the Amazon AWS environment to have a rolling-release model for its kernel albeit other packages will remain under their traditional stable release update handling. At least though it's good they will be more punctually offering new kernel versions in the cloud

    This new rolling kernel model is being offered in the name of providing "the latest upstream bug fixes and performance improvements around task scheduling, I/O scheduling, networking, hypervisor guests and containers to our users."

  • Q&A with Amazon's Deepak Singh Regarding Bottlerocket, Containers and EC2

    AWS announced a Linux based operating system called Bottlerocket.
    InfoQ caught up with Deepak Singh, VP of compute services at AWS, regarding details about the announcement.

    Deepak Singh covers the motivation for a new Linux-based operating system and how it builds on the lessons learned from operationalizing Amazon Linux, primarily dealing with security and performance issues.

    He talks about how these issues are addressed in Bottlerocket and the roadmap which goes beyond the current Kubernetes support.

Real sysadmins don't sudo

Filed under
Server
Security

A few months ago, I read a very interesting article that contained some good information about a Linux feature that I wanted to learn more about. I won’t tell you the name of the article, what it was about, or even the web site on which I read it, but the article just made me shudder.

The reason I found this article so cringe-worthy is that it prefaced every command with the sudo command. The issue I have with this is that the article is allegedly for sysadmins, and real sysadmins don’t use sudo in front of every command they issue. To do so is a gross misuse of the sudo command. I have written about this type of misuse in my book, “The Linux Philosophy for SysAdmins.” The following is an excerpt from Chapter 19 of that book.

In this article, we explore why and how the sudo tool is being misused and how to bypass the configuration that forces one to use sudo instead of working directly as root.

Read more

Announcing Oracle Solaris 11.4 SRU20

Filed under
OS
Server

We've just released SRU 20 for Oracle Solaris 11.4, the April 2020 CPU. It is available via 'pkg update' from the support repository or by downloading the SRU from My Oracle Support Doc ID 2433412.1.

Read more

Also: Oracle Punts Its Twentieth Update To Solaris 11.4

Syndicate content

More in Tux Machines

Septor 2020.5

Tor Browser is fully installed (10.0.2) System upgrade from Debian Buster repos as of October 21, 2020 Update Linux Kernel to 5.9.0-1 Update Thunderbird to 78.3.1-2 Update Tor to 0.4.4.5 Update Youtube-dl to 2020.09.20 Read more

Incremental backup with Butterfly Backup

This article explains how to make incremental or differential backups, with a catalog available to restore (or export) at the point you want, with Butterfly Backup. Read more

Regressions in GNU/Linux Evolution

  • When "progress" is backwards

    Lately I see many developments in the linux FOSS world that sell themselves as progress, but are actually hugely annoying and counter-productive. Counter-productive to a point where they actually cause major regressions, costs, and as in the case of GTK+3 ruin user experience and the possibility that we'll ever enjoy "The year of the Linux desktop". [...] We live in an era where in the FOSS world one constantly has to relearn things, switch to new, supposedly "better", but more bloated solutions, and is generally left with the impression that someone is pulling the rug from below one's feet. Many of the key changes in this area have been rammed through by a small set of decision makers, often closely related to Red Hat/Gnome/freedesktop.org. We're buying this "progress" at a high cost, and one can't avoid asking oneself whether there's more to the story than meets the eye. Never forget, Red Hat and Microsoft (TM) are partners and might even have the same shareholders.

  • When "progress" is backwards

Graphics: Vulkan, Intel and AMD

  • NVIDIA Ships Vulkan Driver Beta With Fragment Shading Rate Control - Phoronix

    This week's Vulkan 1.2.158 spec release brought the fragment shading rate extension to control the rate at which fragments are shaded on a per-draw, per-primitive, or per-region basis. This can be useful similar to OpenGL and Direct3D support for helping to allow different, less important areas of the screen be shaded less than areas requiring greater detail/focus. NVIDIA on Tuesday released the 455.26.02 Linux driver (and 457.00 version for Windows) that adds this fragment shading rate extension.

  • Intel Begins Adding Alder Lake Graphics Support To Their Linux Driver - Phoronix

    Intel has begun adding support for Alderlake-S to their open-source Linux kernel graphics driver. An initial set of 18 patches amounting to just around 300 lines of new kernel code was sent out today for beginning the hardware enablement work on Alderlake-S from the graphics side. Yes, it's only a few hundred lines of new driver code due to Alder Lake leveraging the existing Gen12/Tigerlake support. The Alder Lake driver patches similarly re-use some of the same workarounds and changes as set for the 14nm Rocket Lake processors with Gen12 graphics coming out in Q1.

  • AMD Linux Driver Preparing For A Navi "Blockchain" Graphics Card - Phoronix

    While all eyes are on the AMD Radeon RX 6000 "Big Navi" graphics cards set to be announced next week, it also looks like AMD is preparing for a Navi 1x "Blockchain" graphics card offering given the latest work in their open-source Linux driver. Patches posted today provide support for a new Navi graphics card referred to as the "navi10 blockchain SKU." The Navi 10 part has a device ID of 0x731E. From the AMDGPU Linux kernel driver perspective, the only difference from the existing Navi 10 GPU support is these patches disable the Display Core Next (DCN) and Video Core Next (VCN) support with this new SKU not having any display support.