As a follow-up to my introduction of simple signing, I’m excited to announce that Red Hat is now serving signatures for Red Hat Container Catalog Images!
In May, Red Hat announced the Container Health Index, providing an aggregate safety rating for container images in our public registry. As part of our commitment to delivering trusted content, we are now serving signed images. This means that customers can now configure a Red Hat Enterprise Linux host to cryptographically verify that images have come from Red Hat when they are pulled onto the system. This is a significant step in advancing the security of container hosts, providing assurance of provenance and integrity and enabling non-repudiation. Non-repudiation simply means that the signer cannot deny their signature—a key security principle for digital transactions.
Continue reading “Signed Images from the Red Hat Container Catalog”
Red Hat Enterprise Linux Atomic Host is a small footprint, purpose-built version of Red Hat Enterprise Linux that is designed to run containerized workloads. Building on the success of our last release, Red Hat’s Atomic-OpenShift team is excited to announce the general availability of Red Hat Enterprise Linux Atomic Host 7.2.6. This release features improvements in rpm-ostree, cockpit, skopeo, docker, and the atomic CLI. The full release notes can be found here. This post is going to explore a major new feature
Continue reading “Announcing Red Hat Enterprise Linux Atomic Host 7.2.6”
It’s been a busy few weeks for us on the Atomic Host team, and we’re excited to announce the release of Red Hat Enterprise Linux Atomic Host 7.2.5! This is a big one too. For those not familiar with our release cadence, we release a new version of Atomic Host every six weeks. This enables us to balance the reliability of Red Hat Enterprise Linux with exciting new features and capabilities from our Project Atomic upstream community in a production ready, supportable manor.
Now, let’s walk through some key new features in Atomic Host:
Continue reading “What’s New in Red Hat Enterprise Linux Atomic Host 7.2.5”
Severity analysis of vulnerabilities by experts from the information security industry is rarely based on real code review. In the ‘Badlock’ case, most read our CVE descriptions and built up a score representing a risk this CVE poses to a user. There is nothing wrong with this approach if it is done correctly. CVEs are analyzed in isolation; as if no other issue exists. In the case of a ‘Badlock‘ there were eight CVEs. The difference is the fact that one of them was in a foundational component used by most of the code affected by the remaining seven CVEs. That very specific CVE was
Continue reading “How Badlock Was Discovered and Fixed”
In a previous blog post we took a look at the Red Hat Container Development Kit (CDK) and how it can be used to build and deploy applications within a development environment that closely mimics a production OpenShift cluster. In this post, we’ll take an in-depth look at what a production OpenShift cluster looks like — the individual components, their functions, and how they relate to each other. We’ll also check out how OpenShift supports scaling up and scaling out applications in a production environment.
Continue reading “OpenShift Enterprise in Production”
Over the last couple years, microservices and containers have started to redefine the software development landscape. The traditional large Java or C# application has been replaced with multiple smaller components (microservices) which coordinate to provide the required functionality. These microservices typically run inside containers, which provide isolation and portability.
This approach has numerous benefits including being able to scale and replace microservices independently as well as reducing the complexity of individual components. However, it also brings more complexity to the system level; it takes extra effort and tooling to manage and orchestrate the microservices and their interactions.
This post will describe how Red Hat technology and services can be used to develop, deploy and run an effective microservice-based system.
Continue reading “The Red Hat Ecosystem for Microservice and Container Development”
Woah. 2015 went by really quickly. I do suppose it’s not all that surprising as time flies… especially when you’re having fun or… getting older (you pick). In fact, we’ve already put 2 percent of 2016 behind us! That said, before we get too deep into “the future”, and in consideration of Janus having not one but two faces, let’s take a quick trip down memory lane…
Without a doubt, 2015 was an exciting year for all things “container”, especially here at Red Hat.
To recap, the year started off with a bang when we announced the general availability of Red Hat Enterprise Linux Atomic Host alongside Red Hat Enterprise Linux 7.1. Then – less than two months later
Continue reading “Looking Back on Containers in 2015”
This morning, Red Hat announced the general availability of OpenShift Enterprise 3.1 as well as a public preview of Red Hat Atomic Enterprise Platform. Red Hat’s updated container offerings are:
- OpenShift Enterprise 3.1, the latest version of Red Hat’s application platform designed to build, deploy and run stateful and stateless applications on private and public cloud infrastructure.
- Red Hat Atomic Enterprise Platform Public Preview, an optimized container infrastructure platform for deploying, running and managing containers across the enterprise.
Both enable enterprises to develop, integrate, deploy, and manage a variety of applications consistently across a more secure, container-optimized infrastructure. If you’re looking to adopt container-based architectures, OpenShift and Atomic allow you to use Docker-formatted Linux containers to create microservices-based applications and modernize traditional workloads – all with the security of a consistent foundation based on Red Hat Enterprise Linux.
Continue reading “Announcing OpenShift Enterprise 3.1 and Red Hat Atomic Enterprise Platform Public Preview”
Six years ago, we worked closely with Microsoft to deliver on a significant and widespread customer request: the ability for our respective operating systems to function as guests on each other’s hypervisor. This was then codified by the certification of Hyper-V as a supported hypervisor for use with Red Hat Enterprise Linux and the certification of Red Hat products as supported hypervisors for use with Windows which both companies have maintained for the past six years.
More than half a decade later, customers are now asking Red Hat and Microsoft to have Red Hat Enterprise Linux as a supported guest in the Azure Cloud. We both heard you! Thanks to a deep commitment by both companies, this day has arrived and, together, we are responding to another important customer ask with full support.
As the game show host says, “But wait! there’s more!” In March 2014, we announced that we were bringing Microsoft .NET capabilities to OpenShift Origin. We now expect that Microsoft .NET capabilities will grow past OpenShift Origin to include
Continue reading “Red Hat Enterprise Linux on Azure? .NET as an RPM and Container from Red Hat? Sweet!”
Back in April, we provided an in-depth look into atomic updating and announced the first of many atomic updates. Since then, Red Hat Enterprise Linux Atomic Host has continued to evolve, along with the asynchronous kernel errata. What’s changed in the last few months? Let’s take a look.
Continue reading “Recent Updates to the Atomic CLI”