Native Computing Foundation (CNCF) held its conference,
KubeCon + CloudNativeCon,
in December 2017. There were 4000 attendees at this gathering in Austin, Texas,
all the previous KubeCons before, which shows the rapid growth of the
community building around the tool that was announced by Google in
2014. Large corporations are also taking a larger part in the
community, with major players in the industry joining the CNCF, which is a project of the Linux
Foundation. The CNCF now features three of the largest cloud
hosting businesses (Amazon, Google, and Microsoft), but also emerging
companies from Asia like Baidu and Alibaba.
By corbet Linaro has announced the 17.12 release of its “Enterprise Reference
Platform” distribution. “The goal of the Linaro Enterprise Reference Platform is to provide a fully
tested, end to end, documented, open source implementation for ARM based
Enterprise servers. The Reference Platform includes kernel, a community
supported userspace and additional relevant open source projects, and is
validated against existing firmware releases.”
By ris Security updates have been issued by Debian (tiff), openSUSE (firefox, fossil, GraphicsMagick, and libheimdal), Red Hat (rh-java-common-lucene and rh-java-common-lucene5), and Ubuntu (libxml2).
By corbet For various reasons related to accounting and security, there is recurring
interest in having the kernel identify the container that holds any given
process. Attempts to implement that functionality tend to run into the
same roadblock, though: the kernel has no concept of what a “container” is,
and there is seemingly little desire to change that state of affairs. A
solution to this problem may exist in the form of a neglected
patch called “ptags”, which enables the attachment of arbitrary tags to
Social networking is often approached by the free-software community with a
certain amount of suspicion—rightly so, since commercial social networks
almost always generate revenue by exploiting user data in one way or
attempts at a free-software approach to social networking have so far not met
widespread success, the new ActivityPub federation protocol and its
implementation in the free-software microblogging system Mastodon are gaining
popularity and already show some of the advantages of a community-driven
By ris Fedora 25 has reached its end of life. There will be no more updates.
Users are advised to upgrade.
By ris Security updates have been issued by Debian (chromium-browser, evince, pdns-recursor, and simplesamlphp), Fedora (ceph, dhcp, erlang, exim, fedora-arm-installer, firefox, libvirt, openssh, pdns-recursor, rubygem-yard, thunderbird, wordpress, and xen), Red Hat (rh-mysql57-mysql), SUSE (kernel), and Ubuntu (openssl).
By corbet Worth a read: this
APNIC blog entry from Mark Nottingham on the near-term evolution of
various Internet protocols. “The newest change on the horizon is DOH — DNS over HTTP. A significant amount of research has shown that networks commonly use DNS as a means of imposing policy (whether on behalf of the network operator or a greater authority).
Circumventing this kind of control with encryption has been discussed for a while, but it has a disadvantage (at least from some standpoints) — it is possible to discriminate it from other traffic; for example, by using its port number to block access.
DOH addresses that by piggybacking DNS traffic onto an existing HTTP connection, thereby removing any discriminators.”
By corbet “Load tracking” refers to the kernel’s attempts to track how much load each
running process will put on the system’s CPUs. Good load tracking can
yield reasonable predictions about the near-future demands on the system;
those, in turn, can be used to optimize the placement of processes and the
selection of CPU-frequency parameters. Obviously, poor load tracking will
lead to less-than-optimal results. While achieving perfection in load tracking
seems unlikely for now, it appears that it is possible to to do better than
current kernels do. The utilization estimation
patch set from Patrick Bellasi is the latest in a series of efforts to
make the scheduler’s load tracking work well with a wider variety of
By ris Artifex Software, Inc. and Hancom, Inc. have announced
a confidential agreement to settle their legal dispute. The case filed by
Artifex concerned the use of Artifex’s GPL licensed Ghostscript in Hancom’s
office product. “While the parties had their differences in the interpretation of the open source license, the companies were able to reach an amicable resolution based on their mutual respect for and recognition of the copyright protection and the open source philosophy.”