Language Selection

English French German Italian Portuguese Spanish


Server: Containers, Kubernetes, Varnish 6.0, HHVM 3.25.0, 3.24.4, and 3.21.8

Filed under
  • Container Isolation Gone Wrong

    One of the main advantages of embracing containers is "lightweight virtualization." Since each container is just a thin layer around the containerized processes, the user gains enormous efficiencies, for example by increasing the container density per host, or by spinning containers up and down at a very fast pace.

    However, as the troubleshooting story in the article will show, this lightweight virtualization comes at the cost of sharing the underlying kernel among all containers, and in some circumstances, this can lead to surprising and undesirable effects that container users typically don't think about.

    This troubleshooting tale is rather involved. I've started from the basics and worked up to the more complex material in the hope that readers at all levels can get value out of it.

  • Introducing Agones: Open-source, multiplayer, dedicated game-server hosting built on Kubernetes

    In the world of distributed systems, hosting and scaling dedicated game servers for online, multiplayer games presents some unique challenges. And while the game development industry has created a myriad of proprietary solutions, Kubernetes has emerged as the de facto open-source, common standard for building complex workloads and distributed systems across multiple clouds and bare metal servers. So today, we’re excited to announce Agones (Greek for "contest" or "gathering"), a new open-source project that uses Kubernetes to host and scale dedicated game servers.

  • Varnish 6.0 Released

    It's that time of March again, and Varnish 6.0.0 is here.

  • HHVM 3.25.0, 3.24.4, and 3.21.8

    HHVM 3.25 is released! This release contains new features, bug fixes, performance improvements, and supporting work for future improvements. Packages have been published in the usual places.

  • HHVM 3.25 Released, Now Defaults To PHP7 Mode

    Facebook developers working on the HHVM Hack/PHP language stack have released version 3.25 of the HipHop Virtual Machine.

    HHVM 3.25's PHP support now defaults to PHP7 rather than the PHP5 mode, which is now in an unsupported state. As expressed previously, Facebook will be focusing more on their Hack language support than PHP7 thanks to all the upstream improvements with PHP 7 especially on the performance front. But the large compatibility with PHP7 will happen to continue at least for the time being. With HHVM 3.25 includes support for PHP7 Throwable/Error/Exception hierarchy, changes to visibility modifiers, and other compatibility work.

Server: Kubernetes, Apache Cassandra, and OpenStack Queens

Filed under
  • Container orchestration top trumps: Let's just pretend you don't use Kubernetes already

    Container orchestration comes in different flavours, but actual effort must be put into identifying the system most palatable.

    Yes, features matter, but so too does the long-term viability of the platform. There's been plenty of great technologies in the history of the industry, but what's mattered has been their viability, as defined by factors such as who owns them, whether they are open source (and therefore sustained by a community), or outright M&A.

    CoreOS, recently bought by Red Hat, offered Fleet. Fleet, alas for Fleet users, was discontinued because Kubernetes "won".

  • 6 ways Apache Cassandra prepares you for a multi-cloud future

    The incentives for enterprises to pursue a multi-cloud deployment strategy—a cloud-agnostic infrastructure, greater resilience, the flexibility that comes from not being reliant on any single vendor, to name just a few—have never been more compelling, and they are constantly increasing. Yes, the technological feat of implementing and managing deployments that straddle multiple clouds comes with some challenges. But as the need for this future-ready architecture increases, Apache Cassandra is a uniquely primed open source database solution for enabling such deployments.

  • How Containers Work in OpenStack Queens

    There are many different ways in which containers are used and enabled throughout the open-source OpenStack cloud platform. With the OpenStack Queens platform, which was released on Feb. 28, there are even more options than ever before.

    OpenStack has been supporting containers for several years, beginning with the nova-docker driver in the OpenStack Nova compute project that has now been deprecated. Among the different OpenStack container efforts in 2018 are Zun, Magnum, Kuryr, Kolla, LOCI, OpenStack-Helm and Kata containers.

  • The cost of hosting in the cloud

    Should we host in the cloud or on our own servers? This question was at the center of Dmytro Dyachuk's talk, given during KubeCon + CloudNativeCon last November. While many services simply launch in the cloud without the organizations behind them considering other options, large content-hosting services have actually moved back to their own data centers: Dropbox migrated in 2016 and Instagram in 2014. Because such transitions can be expensive and risky, understanding the economics of hosting is a critical part of launching a new service. Actual hosting costs are often misunderstood, or secret, so it is sometimes difficult to get the numbers right. In this article, we'll use Dyachuk's talk to try to answer the "million dollar question": "buy or rent?"

Servers/Containers: Kubernetes, Former Docker CEO, and Linux Foundation Boosting Microsoft

Filed under

Server: Supercomputing, Kubernetes and More

Filed under
  • Supercomputing under a new lens: A Sandia-developed benchmark re-ranks top computers

    A Sandia National Laboratories software program now installed as an additional test for the widely observed TOP500 supercomputer challenge has become increasingly prominent. The program’s full name — High Performance Conjugate Gradients, or HPCG — doesn’t come trippingly to the tongue, but word is seeping out that this relatively new benchmarking program is becoming as valuable as its venerable partner — the High Performance LINPACK program — which some say has become less than satisfactory in measuring many of today’s computational challenges.

  • Bright Computing adds support for OpenHPC

    Today Bright Computing announced it has joined the Linux Foundation and will participate in the OpenHPC Community project. The latest release of Bright Cluster Manager provides the ability for Bright customers to easily integrate OpenHPC libraries and packages for use within a Bright cluster.

  • Kubernetes Becomes The First Project To Graduate From The Cloud Native Computing Foundation
  • Usenet, Authentication, and Engineering (or: Early Design Decisions for Usenet)

    A Twitter thread on trolls brought up mention of trolls on Usenet. The reason they were so hard to deal with, even then, has some lessons for today; besides, the history is interesting. (Aside: this is, I think, the first longish thing I've ever written about any of the early design decisions for Usenet. I should note that this is entirely my writing, and memory can play many tricks across nearly 40 years.)

  • The true costs of hosting in the cloud

    Should we host in the cloud or on our own servers? This question was at the center of Dmytro Dyachuk's talk, given during KubeCon + CloudNativeCon last November. While many services simply launch in the cloud without the organizations behind them considering other options, large content-hosting services have actually moved back to their own data centers: Dropbox migrated in 2016 and Instagram in 2014. Because such transitions can be expensive and risky, understanding the economics of hosting is a critical part of launching a new service. Actual hosting costs are often misunderstood, or secret, so it is sometimes difficult to get the numbers right. In this article, we'll use Dyachuk's talk to try to answer the "million dollar question": "buy or rent?"

  • Memcached DDoS Attacks Slow Down as Patching Ramps Up

    Days after the largest distributed denial-of-service attack in internet history, the attack size of memcached DDoS attacks is now on the decline.

    On March 5, Netscout Arbor Networks reported a 1.7-Tbps DDoS attack that was driven by the amplification of misconfigured memcached servers. While there were some initial fears that the attacks would continue to grow in size, the opposite has happened.

    "We're still seeing lots of them, but their average size is considerably smaller due to ongoing cleanup and mitigation efforts," Steinthor Bjarnason, senior network security analyst at Netscout Arbor, told eWEEK.

Kubernetes News

Filed under
  • Kubernetes Graduates CNCF Incubator, Debuts New Sandbox

    Though the Kubernetes container orchestration system has been widely deployed at scale in production around the world, it wasn't until March 6 that the project graduated from the Cloud Native Computing Foundation's (CNCF) incubator.

    The CNCF's process brings projects in as incubated projects and then aims to move them through to graduation, which implies a level of process and technology maturity. Kubernetes was the founding project for the CNCF, which was launched back in July 2015.

    Google contributed Kubernetes to the CNCF in an effort to help build a more diverse community of contributors and to spur adoption.

  • Kubernetes Ingress: NodePort, Load Balancers, and Ingress Controllers

    A fundamental requirement for cloud applications is some way to expose that application to your end users. This article will introduce the three general strategies in Kubernetes for exposing your application to your end users, and cover the various tradeoffs of each approach. I’ll then explore some of the more sophisticated requirements of an ingress strategy. Finally, I’ll give some guidelines on how to pick your Kubernetes ingress strategy.

  • Aqua Expands Container Security Platform With MicroEnforcer

    Aqua Security launched version 3.0 of its namesake container security platform on March 7, refocusing the product on providing Kubernetes cloud-native enterprise security controls.

    Aqua originally focused on just Docker container deployments, but with the new 3.0 update it is providing a series of capabilities that are aligned with Kubernetes deployments. Kubernetes provides container orchestration capabilities and has also been embraced by Docker Inc., which now also integrates Kubernetes as an option for its users.

    Looking beyond just Kubernetes, Aqua 3.0 also has a new capability called the MicroEnforcer, which is aimed at emerging forms of lightweight container deployments, such as the AWS Fargate service.

  • You got your VM in my container

    Containers and Kubernetes have been widely promoted as "disruptive" technologies that will replace everything that preceded them, most notably virtual machine (VM) management platforms such as vSphere and OpenStack. Instead, as with most platform innovations, Kubernetes is more often used to add a layer to (or complement) VMs. In this article, and in a presentation at SCALE16x, we'll be exploring two relatively new projects that aim to assist users in combining Kubernetes with virtualization: KubeVirt and Kata Containers.

    Most organizations still have large existing investments in applications that run on virtualized hosts, infrastructure that runs them, and tools to manage them. We can envision this being true for a long time to come, just as remnants of previous generations of technology remain in place now. Additionally, VM technology still offers a level of isolation that container-enablement features, like user namespaces, have yet to meet. However, those same organizations want the ease-of-use, scalability, and developer appeal of Kubernetes, as well as a way to gradually transition from virtualized workloads to containerized ones.

​Kubernetes graduates to full-pledged, open-source program

Filed under

At the Open Source Leadership Summit (OSLS), the Cloud Native Computing Foundation (CNCF), which sustains and integrates open-source, cloud native technologies such as Prometheus and containerd, and Chen Goldberg, Google Cloud's director of engineering, announced that Kubernetes is the first project to graduate from the CNCF.

That may sounds a little odd since Kubernetes is already the dominant cloud container orchestration program. But, for the CNCF, graduation has a particular meaning. To graduate, a project must must show it has been adopted by multiple organizations, have a documented, structured governance process, and show a strong commitment to community success and inclusivity.

Read more

Also: Microservices 101

PostgreSQL 10: a Great New Version for a Great Database

Filed under

PostgreSQL has long claimed to be the most advanced open-source relational database. For those of us who have been using it for a significant amount of time, there's no doubt that this is true; PostgreSQL has consistently demonstrated its ability to handle high loads and complex queries while providing a rich set of features and rock-solid stability.

But for all of the amazing functionality that PostgreSQL offers, there have long been gaps and holes. I've been in meetings with consulting clients who currently use Oracle or Microsoft SQL Server and are thinking about using PostgreSQL, who ask me about topics like partitioning or query parallelization. And for years, I've been forced to say to them, "Um, that's true. PostgreSQL's functionality in that area is still fairly weak."

Read more

Late Coverage of OpenStack Queens

Filed under
  • New OpenStack Queens release provides support for GPUs, containers to meet edge, NFV and machine learning workload demands

    The OpenStack community released on Wednesday Queens, the 17th version of the open source cloud infrastructure software. A packed release resulting from a six-month development cycle, Queens offers advancements benefiting for both enterprises with mission-critical workloads as well as organizations investing in emerging use cases like containers, NFV, edge computing and machine learning. The software now powers 60 public cloud data centers and thousands of private clouds at a scale of more than six million physical cores.

  • OpenStack Queens, RedDrop Android Spyware, Oracle's VirtualBox and More

    OpenStack Queens was released yesterday. The 17th version of the open-source cloud infrastructure software "offers a packed release with advancements benefiting not only enterprises with mission-critical workloads but also organizations investing in emerging use cases like containers, NFV, edge computing and machine learning".

  • ​Open-source cloud royalty: OpenStack Queens released

    The cloud is growing faster than ever, and OpenStack, the open-source cloud for the enterprise, is growing with it.

    By next year, 60 percent of enterprise workloads will run in the cloud, according to 451 Research's Voice of the Enterprise: Cloud Transformation, Workloads and Key Projects survey. While much of that growth is in the public cloud, OpenStack enterprise adoption is expanding, with enterprises in nearly all businesses turning to private and hybrid cloud models for their mission-critical workloads. Indeed, as OpenStack moves toward making more than $6 billion in 2021, OpenStack's private clouds are expected to deliver more revenue than its public cloud implementations.

OpenStack’s Latest Release

Filed under

Server: Benchmarks, IBM and Red Hat

Filed under
  • 36-Way Comparison Of Amazon EC2 / Google Compute Engine / Microsoft Azure Cloud Instances vs. Intel/AMD CPUs

    Earlier this week I delivered a number of benchmarks comparing Amazon EC2 instances to bare metal Intel/AMD systems. Due to interest from that, here is a larger selection of cloud instance types from the leading public clouds of Amazon Elastic Compute Cloud, Microsoft Azure, and Google Compute Engine.

  • IBM's Phil Estes on the Turbulent Waters of Container History

    Phil Estes painted a different picture of container history at Open Source 101 in Raleigh last weekend, speaking from the perspective of someone who had a front row seat. To hear him tell it, this rise and success is a story filled with intrigue, and enough drama to keep a daytime soap opera going for a season or two.

  • Red Hat CSA Mike Bursell on 'managed degradation' and open data

    As part of Red Hat's CTO office chief security architect Mike Bursell has to be informed of security threats past, present and yet to come – as many as 10 years into the future.

    The open source company has access to a wealth of customers in verticals including health, finance, defence, the public sector and more. So how do these insights inform the company's understanding of the future threat landscape?

  • Red Hat Offers New Decision Management Tech Platform

    Red Hat (NYSE: RHT) has released a platform that will work to support information technology applications and streamline the deployment of rules-based tools in efforts to automate processes for business decision management, ExecutiveBiz reported Thursday.

Syndicate content

More in Tux Machines

lkml: remove eight obsolete architectures

In the end, it seems that while the eight architectures are extremely different, they all suffered the same fate: There was one company in charge of an SoC line, a CPU microarchitecture and a software ecosystem, which was more costly than licensing newer off-the-shelf CPU cores from a third party (typically ARM, MIPS, or RISC-V). It seems that all the SoC product lines are still around, but have not used the custom CPU architectures for several years at this point. Read more

If you hitch a ride with a scorpion… (Coverity)

I haven’t seen a blog post or notice about this, but according to the Twitters, Coverity has stopped supporting online scanning for open source projects. Is anybody shocked by this? Anybody? [...] Not sure what the story is with Coverity, but it probably has something to do with 1) they haven’t been able to monetize the service the way they hoped, or 2) they’ve been able to monetize the service and don’t fancy spending the money anymore or 3) they’ve pivoted entirely and just aren’t doing the scanning thing. Not sure which, don’t really care — the end result is the same. Open source projects that have come to depend on this now have to scramble to replace the service. [...] I’m not going to go all RMS, but the only way to prevent this is to have open tools and services. And pay for them. Read more

Easily Fund Open Source Projects With These Platforms

Financial support is one of the many ways to help Linux and Open Source community. This is why you see “Donate” option on the websites of most open source projects. While the big corporations have the necessary funding and resources, most open source projects are developed by individuals in their spare time. However, it does require one’s efforts, time and probably includes some overhead costs too. Monetary supports surely help drive the project development. If you would like to support open source projects financially, let me show you some platforms dedicated to open source and/or Linux. Read more

KDE: Kdenlive, Kubuntu, Elisa, KDE Connect

  • Kdenlive Café #27 and #28 – You can’t miss it
    Timeline refactoring, new Pro features, packages for fast and easy install, Windows version and a bunch of other activities are happening in the Kdenlive world NOW!
  • Kubuntu 17.10 Guide for Newbie Part 9
    This is the 9th article, the final part of the series. This ninth article gives you more documentations to help yourself in using Kubuntu 17.10. The resources are online links to certain manuals and ebooks specialized for Kubuntu basics, command lines usage, software installation instructions, how to operate LibreOffice and KDE Plasma.
  • KDE's Elisa Music Player Preparing For Its v0.1 Released
    We have been tracking the development of Elisa, one of several KDE music players, since development started about one year ago. Following the recent alpha releases, the KDE Elisa 0.1 stable release is on the way. Elisa developers are preparing the Elisa v0.1 release and they plan to have it out around the middle of April.
  • KDE Connect Keeps Getting Better For Interacting With Your Desktop From Android
    KDE Connect is the exciting project that allows you to leverage your KDE desktop from Android tablets/smartphones for features like sending/receiving SMS messages from your desktop, toggling music, sharing files, and much more. KDE Connect does continue getting even better.
  • First blog & KDE Connect media control improvements
    I've started working on KDE Connect last November. My first big features were released yesterday in KDE Connect 1.8 for Android, so cause for celebration and a blog post! My first big feature is media notifications. KDE Connect has, since it's inception, allowed you to remotely control your music and video's. Now you can also do this with a notification, like all Android music apps do! So next time a bad song comes up, you don't need to switch to the KDE Connect app. Just click next on the notification without closing you current app. And just in case you don't like notifications popping up, there's an option to disable it.