The rapid rise of Linux containers as an enterprise-ready technology in 2015, thanks in no small part to the technology provided by the Docker project, should come as no surprise: Linux containers offer a broad array of benefits to the enterprise, from greater application portability and scalability to the ability to fully leverage the benefits of composite applications.
But these benefits aside, Linux containers can, if IT security procedures are not followed, also cause serious harm to mission-critical operations. As Red Hat’s Lars Herrmann has pointed out, containers aren’t exactly transparent when it comes to seeing and understanding all of their internal code. This means that tools and technologies to actually see inside a container are critical to enterprises that want to deploy Linux containers in mission-critical scenarios.
Continue reading “Schrodinger’s Container: How Red Hat is Building a Better Linux Container Scanner”
Woah. 2015 went by really quickly. I do suppose it’s not all that surprising as time flies… especially when you’re having fun or… getting older (you pick). In fact, we’ve already put 2 percent of 2016 behind us! That said, before we get too deep into “the future”, and in consideration of Janus having not one but two faces, let’s take a quick trip down memory lane…
Without a doubt, 2015 was an exciting year for all things “container”, especially here at Red Hat.
To recap, the year started off with a bang when we announced the general availability of Red Hat Enterprise Linux Atomic Host alongside Red Hat Enterprise Linux 7.1. Then – less than two months later
Continue reading “Looking Back on Containers in 2015”
Next week from 16-17 November, many of us are heading to Barcelona for DockerCon Europe 2015. If you’re heading to Barcelona as well, you can learn how developers, operations, DevOps and sysadmins are using Linux containers. From use cases to roadmaps to tutorials and advanced technical
talks, DockerCon will offer attendees a deep dive into the technology.
Continue reading “Must-See: Vincent Batts Next Week at DockerCon Europe”
In Architecting Containers Part 1 we explored the difference between the user space and kernel space. In Architecting Containers Part 2 we explored why the user space matters to developers, administrators, and architects. In today’s post we will highlight a handful of important ways the choice of the user space can affect application deployment and maintenance.
While there are many ways for a given container architecture to affect and/or influence your application, the user space provides tooling that is often overlooked, namely
Continue reading “Architecting Containers Part 3: How the User Space Affects Your Application”
Next week, hundreds of Kubernetes enthusiasts are heading to San Francisco for KubeCon 2015, the first Kubernetes community conference. Why should you attend?
- Witness a variety of expert deep technical talks on containers and orchestrating them with Kubernetes. For example, OpenShift architect Clayton Coleman is presenting “Application Development on a Cloud-Native Platform” at 1:50 p.m. PST, on Monday, November 9, 2015. In the session, Clayton will cover workflow and tooling for application developers using Kubernetes as a development platform while still allowing developers to manage the lower level components of the system. This talk will show enhancements to core Kubernetes objects, and how they are being moved into the Kubernetes core over time.
- Learn about the future of Platform-as-a-Service.
PaaS isn’t static; it involves a constantly progressing set of technologies to enable a better approach to building and running applications. Ashesh Badani, general manager, OpenShift at Red Hat, is being joined by Google’s Craig McLuckie and others for a panel discussion around the future of Platform-as-a-Service (PaaS). Ashesh is responsible for Red Hat’s PaaS business. Check it out on Tuesday, November 10, 2015 at 11:30 a.m. PST.
- Get inspired about building highly scalable microservices-based applications.
KubeCon is your opportunity to dig deeper into how to implement microservices. Red Hatter Christian Posta helps you to make microservices a reality with “Microservices aren’t just for unicorns: meet fabric8.io”. At 9 a.m. PST on Wednesday, November 11, 2015, Christian will walk attendees through building microservices with Fabric8 on top of Kubernetes.
- Connect with other Kubernetes enthusiasts, including Red Hatters. Come by Red Hat’s booth (#1) connect with us on container security, orchestration, storage, management, and more. In addition, events outside the main conference track will allow attendees to interact with other Kubernetes enthusiasts.
If you are passionate about building highly scalable microservices-based apps, containerizing traditional apps, and/or are just getting started with Kubernetes, this is an event you won’t want to miss. For more information on KubeCon or to register for the event, please visit https://kubecon.io/.
The format of container images is at the center of industry attention because it is so important to the adoption of containers. With the advent of the Open Container Initiative (OCI), it seems appropriate to compare container images to network protocols. Before TCP/IP became the defacto standard network protocol stack, each vendor was left to devise their own. Some leveraged IPX/SPX, while others standardized on AppleTalk. This made it difficult to create robust tooling. Much like network protocols, standardizing the bit level format of a container image, allows the industry to focus on higher level business problems, and more importantly, their respective solutions.
Continue reading “What is Deep Container Inspection (DCI) and Why is it Important?”
Given the recent massive spike in interest in Linux Containers, you could be forgiven for wondering, “Why now?”. It has been argued that the increasingly prevalent cloud computing model more closely resembles hosting providers than traditional enterprise IT, and that containers are a perfect match for this model.
Despite the sudden ubiquity of container technology, like so much in the world of open source software, containerization depends on a long series of previous innovations, especially in the operating system. “One cannot resist an idea whose time has come.” Containers are such an idea, one that has been a long time coming.
Continue reading “The History of Containers”
If you’re looking at running Linux containers, you should be heading to ContainerCon in Seattle next week. Co-located with LinuxCon and CloudOpen, ContainerCon is where leading contributors in Linux containers, the Linux kernel, and related projects will get together to educate the community on containers and related innovations.
Red Hatters are contributing to over 40 sessions on this year’s agenda, including a keynote from Red Hat VP of Engineering Matt Hicks. In “Revolutionizing Application Delivery with Linux and Containers,” Matt will focus on how Linux containers are changing the way that companies develop, consume and manage applications and will emphasize how open source communities and projects like Docker and Kubernetes are delivering this next wave of enterprise application architecture.
If you’re attending ContainerCon, check out Matt’s keynote and some of the sessions below:
Continue reading “See You at ContainerCon in Seattle”
Perhaps you’ve been charged with developing a container-based application infrastructure? If so, you most likely understand the value that containers can provide to your developers, architects, and operations team. In fact, you’ve likely been reading up on containers and are excited about exploring the technology in more detail. However, before diving head-first into a discussion about the architecture and deployment of containers in a production environment, there are three important things that developers, architects, and systems administrators, need to know
Continue reading “Architecting Containers Part 1: Why Understanding User Space vs. Kernel Space Matters”
The promise of Docker is that it simplifies application deployment, allows greater application density on hosts, and features a portable format that offers unparalleled flexibility over standard packaging. But one thing Docker doesn’t get you is the simplicity of `yum install foo` to install an application. Nor can Docker define or process a directed graph of container orchestration dependencies. We aim to change that.
Continue reading “Announcing “Yum + RPM for Containerized Applications” — Nulecule & Atomic App”