SC Magazine: Enterprise use of open source increasing, but more vulnerability checks needed.

According to a recent study from Black Duck Software and North Bridge, less than 3% of businesses don’t use open source in any capacity. Despite this strength, the study also revealed a lack of monitoring for security vulnerabilities. Read the full article from SC Magazine and an interview on the topic with Bill Weinberg of Black Duck on

via News

​Ubuntu 15.04 container-friendly Linux for cloud and servers arrives soon

Canonical, which has become a quiet cloud power, is releasing its next container-friendly Linux on April 23rd.

via ZDNet | Linux and Open Source RSS

​VMware buys into Linux containers with Lightwave and Photon

VMware is now a Linux distributor and invested more than ever in containers.

via ZDNet | Linux and Open Source RSS

Ubuntu 15.04: OpenStack Advancements with Kilo and Snappy Core

Ubuntu 15.04 for cloud and servers will be available for download from Canonical on Thursday, 23 April. For cloud users, this release delivers the new, Snappy Ubuntu Core for transactional systems, such as cloud container hosts, smart devices, and a new container-based hypervisor, LXD, which Canonical says sets a new benchmark for density and performance. With updated developer tools and the latest frameworks, languages, databases and packages, this is a significant release for Ubuntu professionals and developers.

We covered the Snappy core here, and what this minimalist take on Ubuntu can do for Docker deployments and platform-as-a-service environments. Amazon, Microsoft and others are all working with the Snappy core. 

LXD, the next-generation hypervisor for containers, is now available in Ubuntu 15.04. LXD provides the full experience of virtual machines, the security of a hypervisor, and bare-metal performance and density, according to Canonical.

“LXD eliminates the very high virtualisation penalty of traditional hypervisors, making Linux-on-Linux workloads much faster and much more dense,” said Mark Shuttleworth.

“Containers are the new frontier in virtualisation and cloud. We are delighted to lead with LXD and the integration of containers into OpenStack.”

 Early adopters include institutions with many Linux virtual machines running common code such as Tomcat applications under low load. LXD offers much higher density than KVM in these situations as the underlying hypervisor can consolidate common processes more efficiently, Canonical claims.

In addition, workloads which are traditionally run on bare metal, such as Hadoop, perform at native speeds under LXD without the 15-20% overhead of KVM, the company says.

“LXD support in OpenStack means big data specialists can now use OpenStack APIs for provisioning, and get bare metal performance for their analytics,” said Mark Baker, product manager for OpenStack in Ubuntu.

LXD is aimed at providing a full “virtual machine” experience inside which administrators can run tools like Docker.

“LXD and Docker work together. LXD provides a full system container, like a virtual machine, and Docker provides the application container for processes,” said Baker.

 ‘Snappy’ Ubuntu Core is the new, transactional version of Ubuntu designed for lightweight cloud container hosts running Docker and for smart devices. It contains all the code and updates of Ubuntu, but is packaged with the new ‘snappy’ system, enabling guaranteed updates with rollback for both the OS and applications installed on it.

“Snappy Ubuntu Core offers everything developers love about Ubuntu together with transactional updates,” says Dustin Kirkland, product manager for Ubuntu Server at Canonical. “Snap packages deliver apps securely to devices and cloud hosts, with isolation of application data and the guarantee that an update can be rolled back.”

This first version of Snappy Ubuntu Core features secure app containment and Docker 1.6 (1.5 in main release), and is available on major public clouds and for ARM and x86 devices on a range of popular boards for IoT.

Notably, Canonical claims that 64 percent of production OpenStack users are building on top of Ubuntu. According to the company:

"Telecommunication leaders such as AT&T, NTT and Deutsche Telekom, large enterprises including Time Warner and SKY, and service providers such as NEC and Yahoo! Japan have adopted Ubuntu OpenStack as their preferred platform for cloud. Canonical’s professional services teams work with them to achieve the highest levels of scalability and efficiency from OpenStack."

"Ubuntu will be the world’s first OpenStack distribution to make the newest ‘Kilo’ release available to users, a significant step forward in scalability for virtual networks on OpenStack."

"In Kilo, Neutron is updated to include Distributed Virtual Routing (DVR) to enable Neutron to scale more efficiently, and a preview of “DNS as a service” from the new ‘Designate’ component."

"Cloud federation also takes a big step forward in Kilo with Ubuntu OpenStack now able to share identity across cloud regions. This enables enterprises with multiple OpenStack implementations to manage identity much more efficiently, and simplifies the path to hybrid cloud computing with OpenStack on-premise and public OpenStack clouds. Canonical is committed to cloud federation both with other Ubuntu OpenStack clouds, and with the distributions of other companies."


Ubuntu Server 15.04 is available for download at from 23 April 2015.




Related Activities

Related Software

Related Blog Posts

via OStatic blogs

Mesosphere Tackles Container Security with VMware’s new FOSS Tools

Yesterday, I covered the news that VMware has announced two new open source projects focused on enterprise adoption of cloud-native applications — Project Lightwave, an identity and access management project for enterprise-scale and security to cloud-native applications; and Project Photon, a lightweight Linux operating system built for cloud-native applications.

In the wake of that announcement, some of the folks working with Mesosphere alerted me to an interesting Mesosphere blog post on how VMware’s tools can help enterprises tackle the security angle on running containers at scale. It sheds light on how promising the VMware open source tools may be, and what kinds of challenges enterprises are facing with containers and data center tools.

From Mesosphere’s perspective, VMware brings much-needed security to the container party, and Mesosphere is taking advantage of their new projects to bring VM-level security isolation to containers running on its Datacenter Operating System (DCOS). If you’re not familiar with Mesosphere’s Datacenter Operating System, we covered it here, and did an interview on it with Mesosphere’s Ben Hindman. 

According to Mesosphere’s leaders, the tech industry now needs a new type of operating system to automate the various tools used in the agile IT era.  They argure that developers and operators don’t need to focus on individual virtual or physical machines but can easily build and deploy applications and services that span entire datacenters.

In Mesosphere’s post on VMware’s announcement, company leaders write:

"For many large organizations, VMware is the gold standard when it comes to running applications in virtual environments. Its technology is secure, integrated with everything and proven to work in enterprise datacenters. So as VMware makes its foray into the world of application containers — with two new open source projects, no less — Mesosphere is proud to be an important part of the story."

"Users can deploy our Datacenter Operating System on top of Project Photon, essentially bringing VM-level isolation to containers running on a platform — DCOS — that’s proven to scale across thousands of physical nodes. Apache Mesos, the core of DCOS, already runs at scale in companies such as Twitter, Netflix and Yelp, and natively supports big data technologies such as Hadoop, Spark and Cassandra."

"By integrating Project Lightwave with the Mesosphere DCOS, enterprises can deploy large-scale container workloads and be confident that these workloads are authorized and that the users deploying them have the rights to do so. For example, when datacenter operators install new DCOS services, such as Cassandra or Kafka, they will have to verify their identity and the service itself will have a certificate that authenticates the binary. Everything running on your DCOS will have been authenticated with Lightwave, so you know there is nothing unauthorized running on your system. Lightwave will help prevent employees and intruders from accessing data and applications they don’t have access to, or from launching containers in unauthorized manners or locations."

 “Just like on my laptop, the programs and files I am allowed to open are governed by my identity. The same is true in the datacenter,” said Benjamin Hindman, Chief Architect and Co-Founder at Mesosphere. “The sets of services I run are governed by the policies set by the enterprise. So: when I run commands on the command line, DCOS can be checking my permissions with Lightwave.”

Further, Mesosphere is working with VMware to integrate DCOS with the Open Virtual Network project that was announced in January. OVN is related to Open vSwitch, and will allow for Layer 2 and Layer 3 network virtualization capabilities such as security groups.

The collaboration between Mesosphere and VMware on OVN will eventually allow Mesosphere customers to enact fine-grained isolation at the network level, according to Mesosphere."It’s a complicated time in the world of IT," the blog post emphasizes. "While high-profile security breaches and cyberattacks increase in prevalence, companies want to take advantage of new methods for building, deploying and scaling their applications. We’re happy to help them do it without fear they’re mortgaging the future of their businesses."


Related Activities

Related Software

Related Blog Posts

via OStatic blogs

How To Upgrade To Ubuntu 15.04 Vivid Vervet From Ubuntu 14.10 Utopic Unicorn

It’s just two more days for the Ubuntu 15.04 release. Yes, the final version of Ubuntu 15.04, codenamed Vivid Vervet will be available for download on coming April 23. As you may know, Ubuntu…

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

via Unixmen

Creation of Virtual Machine in Linux using KVM

KVM the Kernel based Virtual Machine is an open source virtualization infrastructure for the Linux Kernel. It requires a processor with hardware virtualization extension and has been ported to…

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

via Unixmen


Get every new post delivered to your Inbox.