Language Selection

English French German Italian Portuguese Spanish


Server: Containers, Kubernetes, Varnish 6.0, HHVM 3.25.0, 3.24.4, and 3.21.8

Filed under
  • Container Isolation Gone Wrong

    One of the main advantages of embracing containers is "lightweight virtualization." Since each container is just a thin layer around the containerized processes, the user gains enormous efficiencies, for example by increasing the container density per host, or by spinning containers up and down at a very fast pace.

    However, as the troubleshooting story in the article will show, this lightweight virtualization comes at the cost of sharing the underlying kernel among all containers, and in some circumstances, this can lead to surprising and undesirable effects that container users typically don't think about.

    This troubleshooting tale is rather involved. I've started from the basics and worked up to the more complex material in the hope that readers at all levels can get value out of it.

  • Introducing Agones: Open-source, multiplayer, dedicated game-server hosting built on Kubernetes

    In the world of distributed systems, hosting and scaling dedicated game servers for online, multiplayer games presents some unique challenges. And while the game development industry has created a myriad of proprietary solutions, Kubernetes has emerged as the de facto open-source, common standard for building complex workloads and distributed systems across multiple clouds and bare metal servers. So today, we’re excited to announce Agones (Greek for "contest" or "gathering"), a new open-source project that uses Kubernetes to host and scale dedicated game servers.

  • Varnish 6.0 Released

    It's that time of March again, and Varnish 6.0.0 is here.

  • HHVM 3.25.0, 3.24.4, and 3.21.8

    HHVM 3.25 is released! This release contains new features, bug fixes, performance improvements, and supporting work for future improvements. Packages have been published in the usual places.

  • HHVM 3.25 Released, Now Defaults To PHP7 Mode

    Facebook developers working on the HHVM Hack/PHP language stack have released version 3.25 of the HipHop Virtual Machine.

    HHVM 3.25's PHP support now defaults to PHP7 rather than the PHP5 mode, which is now in an unsupported state. As expressed previously, Facebook will be focusing more on their Hack language support than PHP7 thanks to all the upstream improvements with PHP 7 especially on the performance front. But the large compatibility with PHP7 will happen to continue at least for the time being. With HHVM 3.25 includes support for PHP7 Throwable/Error/Exception hierarchy, changes to visibility modifiers, and other compatibility work.

Server: Kubernetes, Apache Cassandra, and OpenStack Queens

Filed under
  • Container orchestration top trumps: Let's just pretend you don't use Kubernetes already

    Container orchestration comes in different flavours, but actual effort must be put into identifying the system most palatable.

    Yes, features matter, but so too does the long-term viability of the platform. There's been plenty of great technologies in the history of the industry, but what's mattered has been their viability, as defined by factors such as who owns them, whether they are open source (and therefore sustained by a community), or outright M&A.

    CoreOS, recently bought by Red Hat, offered Fleet. Fleet, alas for Fleet users, was discontinued because Kubernetes "won".

  • 6 ways Apache Cassandra prepares you for a multi-cloud future

    The incentives for enterprises to pursue a multi-cloud deployment strategy—a cloud-agnostic infrastructure, greater resilience, the flexibility that comes from not being reliant on any single vendor, to name just a few—have never been more compelling, and they are constantly increasing. Yes, the technological feat of implementing and managing deployments that straddle multiple clouds comes with some challenges. But as the need for this future-ready architecture increases, Apache Cassandra is a uniquely primed open source database solution for enabling such deployments.

  • How Containers Work in OpenStack Queens

    There are many different ways in which containers are used and enabled throughout the open-source OpenStack cloud platform. With the OpenStack Queens platform, which was released on Feb. 28, there are even more options than ever before.

    OpenStack has been supporting containers for several years, beginning with the nova-docker driver in the OpenStack Nova compute project that has now been deprecated. Among the different OpenStack container efforts in 2018 are Zun, Magnum, Kuryr, Kolla, LOCI, OpenStack-Helm and Kata containers.

  • The cost of hosting in the cloud

    Should we host in the cloud or on our own servers? This question was at the center of Dmytro Dyachuk's talk, given during KubeCon + CloudNativeCon last November. While many services simply launch in the cloud without the organizations behind them considering other options, large content-hosting services have actually moved back to their own data centers: Dropbox migrated in 2016 and Instagram in 2014. Because such transitions can be expensive and risky, understanding the economics of hosting is a critical part of launching a new service. Actual hosting costs are often misunderstood, or secret, so it is sometimes difficult to get the numbers right. In this article, we'll use Dyachuk's talk to try to answer the "million dollar question": "buy or rent?"

Servers/Containers: Kubernetes, Former Docker CEO, and Linux Foundation Boosting Microsoft

Filed under

Server: Supercomputing, Kubernetes and More

Filed under
  • Supercomputing under a new lens: A Sandia-developed benchmark re-ranks top computers

    A Sandia National Laboratories software program now installed as an additional test for the widely observed TOP500 supercomputer challenge has become increasingly prominent. The program’s full name — High Performance Conjugate Gradients, or HPCG — doesn’t come trippingly to the tongue, but word is seeping out that this relatively new benchmarking program is becoming as valuable as its venerable partner — the High Performance LINPACK program — which some say has become less than satisfactory in measuring many of today’s computational challenges.

  • Bright Computing adds support for OpenHPC

    Today Bright Computing announced it has joined the Linux Foundation and will participate in the OpenHPC Community project. The latest release of Bright Cluster Manager provides the ability for Bright customers to easily integrate OpenHPC libraries and packages for use within a Bright cluster.

  • Kubernetes Becomes The First Project To Graduate From The Cloud Native Computing Foundation
  • Usenet, Authentication, and Engineering (or: Early Design Decisions for Usenet)

    A Twitter thread on trolls brought up mention of trolls on Usenet. The reason they were so hard to deal with, even then, has some lessons for today; besides, the history is interesting. (Aside: this is, I think, the first longish thing I've ever written about any of the early design decisions for Usenet. I should note that this is entirely my writing, and memory can play many tricks across nearly 40 years.)

  • The true costs of hosting in the cloud

    Should we host in the cloud or on our own servers? This question was at the center of Dmytro Dyachuk's talk, given during KubeCon + CloudNativeCon last November. While many services simply launch in the cloud without the organizations behind them considering other options, large content-hosting services have actually moved back to their own data centers: Dropbox migrated in 2016 and Instagram in 2014. Because such transitions can be expensive and risky, understanding the economics of hosting is a critical part of launching a new service. Actual hosting costs are often misunderstood, or secret, so it is sometimes difficult to get the numbers right. In this article, we'll use Dyachuk's talk to try to answer the "million dollar question": "buy or rent?"

  • Memcached DDoS Attacks Slow Down as Patching Ramps Up

    Days after the largest distributed denial-of-service attack in internet history, the attack size of memcached DDoS attacks is now on the decline.

    On March 5, Netscout Arbor Networks reported a 1.7-Tbps DDoS attack that was driven by the amplification of misconfigured memcached servers. While there were some initial fears that the attacks would continue to grow in size, the opposite has happened.

    "We're still seeing lots of them, but their average size is considerably smaller due to ongoing cleanup and mitigation efforts," Steinthor Bjarnason, senior network security analyst at Netscout Arbor, told eWEEK.

Kubernetes News

Filed under
  • Kubernetes Graduates CNCF Incubator, Debuts New Sandbox

    Though the Kubernetes container orchestration system has been widely deployed at scale in production around the world, it wasn't until March 6 that the project graduated from the Cloud Native Computing Foundation's (CNCF) incubator.

    The CNCF's process brings projects in as incubated projects and then aims to move them through to graduation, which implies a level of process and technology maturity. Kubernetes was the founding project for the CNCF, which was launched back in July 2015.

    Google contributed Kubernetes to the CNCF in an effort to help build a more diverse community of contributors and to spur adoption.

  • Kubernetes Ingress: NodePort, Load Balancers, and Ingress Controllers

    A fundamental requirement for cloud applications is some way to expose that application to your end users. This article will introduce the three general strategies in Kubernetes for exposing your application to your end users, and cover the various tradeoffs of each approach. I’ll then explore some of the more sophisticated requirements of an ingress strategy. Finally, I’ll give some guidelines on how to pick your Kubernetes ingress strategy.

  • Aqua Expands Container Security Platform With MicroEnforcer

    Aqua Security launched version 3.0 of its namesake container security platform on March 7, refocusing the product on providing Kubernetes cloud-native enterprise security controls.

    Aqua originally focused on just Docker container deployments, but with the new 3.0 update it is providing a series of capabilities that are aligned with Kubernetes deployments. Kubernetes provides container orchestration capabilities and has also been embraced by Docker Inc., which now also integrates Kubernetes as an option for its users.

    Looking beyond just Kubernetes, Aqua 3.0 also has a new capability called the MicroEnforcer, which is aimed at emerging forms of lightweight container deployments, such as the AWS Fargate service.

  • You got your VM in my container

    Containers and Kubernetes have been widely promoted as "disruptive" technologies that will replace everything that preceded them, most notably virtual machine (VM) management platforms such as vSphere and OpenStack. Instead, as with most platform innovations, Kubernetes is more often used to add a layer to (or complement) VMs. In this article, and in a presentation at SCALE16x, we'll be exploring two relatively new projects that aim to assist users in combining Kubernetes with virtualization: KubeVirt and Kata Containers.

    Most organizations still have large existing investments in applications that run on virtualized hosts, infrastructure that runs them, and tools to manage them. We can envision this being true for a long time to come, just as remnants of previous generations of technology remain in place now. Additionally, VM technology still offers a level of isolation that container-enablement features, like user namespaces, have yet to meet. However, those same organizations want the ease-of-use, scalability, and developer appeal of Kubernetes, as well as a way to gradually transition from virtualized workloads to containerized ones.

​Kubernetes graduates to full-pledged, open-source program

Filed under

At the Open Source Leadership Summit (OSLS), the Cloud Native Computing Foundation (CNCF), which sustains and integrates open-source, cloud native technologies such as Prometheus and containerd, and Chen Goldberg, Google Cloud's director of engineering, announced that Kubernetes is the first project to graduate from the CNCF.

That may sounds a little odd since Kubernetes is already the dominant cloud container orchestration program. But, for the CNCF, graduation has a particular meaning. To graduate, a project must must show it has been adopted by multiple organizations, have a documented, structured governance process, and show a strong commitment to community success and inclusivity.

Read more

Also: Microservices 101

PostgreSQL 10: a Great New Version for a Great Database

Filed under

PostgreSQL has long claimed to be the most advanced open-source relational database. For those of us who have been using it for a significant amount of time, there's no doubt that this is true; PostgreSQL has consistently demonstrated its ability to handle high loads and complex queries while providing a rich set of features and rock-solid stability.

But for all of the amazing functionality that PostgreSQL offers, there have long been gaps and holes. I've been in meetings with consulting clients who currently use Oracle or Microsoft SQL Server and are thinking about using PostgreSQL, who ask me about topics like partitioning or query parallelization. And for years, I've been forced to say to them, "Um, that's true. PostgreSQL's functionality in that area is still fairly weak."

Read more

Late Coverage of OpenStack Queens

Filed under
  • New OpenStack Queens release provides support for GPUs, containers to meet edge, NFV and machine learning workload demands

    The OpenStack community released on Wednesday Queens, the 17th version of the open source cloud infrastructure software. A packed release resulting from a six-month development cycle, Queens offers advancements benefiting for both enterprises with mission-critical workloads as well as organizations investing in emerging use cases like containers, NFV, edge computing and machine learning. The software now powers 60 public cloud data centers and thousands of private clouds at a scale of more than six million physical cores.

  • OpenStack Queens, RedDrop Android Spyware, Oracle's VirtualBox and More

    OpenStack Queens was released yesterday. The 17th version of the open-source cloud infrastructure software "offers a packed release with advancements benefiting not only enterprises with mission-critical workloads but also organizations investing in emerging use cases like containers, NFV, edge computing and machine learning".

  • ​Open-source cloud royalty: OpenStack Queens released

    The cloud is growing faster than ever, and OpenStack, the open-source cloud for the enterprise, is growing with it.

    By next year, 60 percent of enterprise workloads will run in the cloud, according to 451 Research's Voice of the Enterprise: Cloud Transformation, Workloads and Key Projects survey. While much of that growth is in the public cloud, OpenStack enterprise adoption is expanding, with enterprises in nearly all businesses turning to private and hybrid cloud models for their mission-critical workloads. Indeed, as OpenStack moves toward making more than $6 billion in 2021, OpenStack's private clouds are expected to deliver more revenue than its public cloud implementations.

OpenStack’s Latest Release

Filed under

Server: Benchmarks, IBM and Red Hat

Filed under
  • 36-Way Comparison Of Amazon EC2 / Google Compute Engine / Microsoft Azure Cloud Instances vs. Intel/AMD CPUs

    Earlier this week I delivered a number of benchmarks comparing Amazon EC2 instances to bare metal Intel/AMD systems. Due to interest from that, here is a larger selection of cloud instance types from the leading public clouds of Amazon Elastic Compute Cloud, Microsoft Azure, and Google Compute Engine.

  • IBM's Phil Estes on the Turbulent Waters of Container History

    Phil Estes painted a different picture of container history at Open Source 101 in Raleigh last weekend, speaking from the perspective of someone who had a front row seat. To hear him tell it, this rise and success is a story filled with intrigue, and enough drama to keep a daytime soap opera going for a season or two.

  • Red Hat CSA Mike Bursell on 'managed degradation' and open data

    As part of Red Hat's CTO office chief security architect Mike Bursell has to be informed of security threats past, present and yet to come – as many as 10 years into the future.

    The open source company has access to a wealth of customers in verticals including health, finance, defence, the public sector and more. So how do these insights inform the company's understanding of the future threat landscape?

  • Red Hat Offers New Decision Management Tech Platform

    Red Hat (NYSE: RHT) has released a platform that will work to support information technology applications and streamline the deployment of rules-based tools in efforts to automate processes for business decision management, ExecutiveBiz reported Thursday.

Syndicate content

More in Tux Machines

2018 Affiliate and Individual Member Election Results

The OSI would like to thank all of those who ran for the Board. Volunteering to serve the OSI and support the Open Source community is a tremendous commitment in time and energy--we truly appreciate their willingness to contribute to our continued success and participate in our ongoing work to promote and protect open source software, communities, and development as well as the ideals and ethos inherent to the open source movement. The winners of the 2018 Board of Directors elections are, VM Brasseur (elected by the Individual Membership) Chris Lamb (elected by the Affiliate Membership) Faidon Liambotis (elected by the Affiliate Membership) Josh Simmons (elected by the Individual Membership) Read more

Today in Techrights

Security Leftovers

Games and Wine: Dark Old Sun, Surviving Mars, Wine-Staging 3.4, Wine 3.4

  • Varied shoot 'em up Dark Old Sun adds Linux support, lots of different enemies and upgrades to try
    For those who can't get enough shoot 'em up action, Dark Old Sun [Steam] recently added Linux support and it looks pretty varied. It originally released on March 8th, with Linux support arriving only a few days later on the 16th.  It has three different game modes: An Arcade/Story mode with 6 different stages, a Challenge mode and a Survival mode where you face off against waves of enemies and random events.
  • Surviving Mars already has a fix out for the Linux text problem, plus more thoughts
  • Looking for a Battle Royale game that works on Linux? 2D browser-based is one
    I know, a bunch of you are probably already running away due to it being browser-based, but I find that really quite interesting. is actually not bad at all. Basic of course, since it's a top-down 2D game that runs directly in the browser, but that's also what makes it so interesting. You can play it on basically anything and if you want to team up with someone, it generates a link for you to send them and away you go. You can also play with strangers on a team as well, which also works surprisingly well with the simple emotes system to give them a thumbs up, or a sad face.
  • Wine-Staging 3.4 Released With MS Office Anti-Aliased Fonts, BattlEye Fixes
    Fresh off the release of Wine 3.4 on Friday, the maintainers corralling the Wine-Staging releases have now put out their second modern release. Wine-Staging 3.4 was released minutes ago since Alistair Leslie-Hughes managed to take-over the Wine-Staging maintenance and get out the recent v3.3 release. They have continued re-basing their patches against Wine upstream, more than 1000 in total. They are also working to upstream those patches where appropriate.
  • Wine 3.4 released with more Vulkan support
    Another Wine development release with Wine 3.4 that continues to add in more Vulkan support making another exciting release.