Containers

In the world of containers, there is a desperate need to be able to scan container images for known vulnerabilities and configuration problems, and as we proliferate containers and bundled applications into the enterprise, many groups and companies have started to build container scanning tools. Even Red Hat has been building a scanning tool based on the tried and true OpenSCAP project, but there were several problems we saw time and again. The problems with existing container scanning tools included...

I've been working with some of our teams recently on microservices and how we can assist our customers and communities with best practices and recommendations, whether they're Java EE developers, Vert.x coders, writing Node.js applications or something else. If you've read any of my previous articles then you'll know I have a few thoughts on microservices, and yet there are many things I still feel I need to get straight in my own head. That's why I love talking with...

Recent: Red Hat was invited to be part of Eclipse Che keynote at EclipseCon 2016 and Pete Muir gave a quick look at working with OpenShift and Eclipse Che. When we create software today , we often hit a brick wall and waste many hours because creating copies of another system is far too hard. We create copies for many reasons - a few common examples are: replicating production issues; asking another developer for help; running test suites; copying the...

Cloud based technology offers the ability to build, deploy and scale applications with ease; however, deploying to the cloud is only half of the battle. How cloud applications are monitored becomes a paramount concern with operations teams. When issues arise, teams and their monitoring systems must be able to detect, react, and rectify the situation. CPU, system memory, and disk space are three common indicators used to monitor applications, and are typically reported by the operating system. However, for Java...

Introduction The GNU Toolchain is a collection of programming tools produced by the GNU Project. The tools are often packaged together due to their common use for developing software applications, operating systems, and low level software for embedded systems. This blog is part of a regular series covering the latest changes and improvements in the components that make up this Toolchain. Apart from the announcement of new releases however, the features described here are at the very bleeding edge of...

A recent blog post, 10 things to avoid in docker containers , describes ten scenarios you should avoid when dealing with docker containers. However, recommendation # 3 - Don’t create large images and the sentence "Don’t install unnecessary packages or run “updates” ( yum update) that download files to a new image layer" has generated quite a few questions. Some of you are wondering how a simple yum update can create a large image. In an attempt to clarify the...

So you finally surrendered to containers and discovered that they solve a lot of problems and have a lot of advantages: First: Containers are immutable - The OS, library versions, configurations, folders, and application are all wrapped inside the container. You guarantee that the same image that was tested in QA will reach the production environment with the same behaviour. Second: Containers are lightweight - The memory footprint of a container is small. Instead of hundreds or thousands of MBs...

Everything on a computer system eventually ends up being run as a sequence of machine instructions. People want to keep things simple and understandable even if that is not really the way that things work. The simple programmer's model of a Reduced Instruction Set Computer (RISC) processor executing those machine language instruction is a loop of the following steps each step finished before moving on the the next step: Fetch instruction Decode instruction and fetch register operands Execute arithmetic computation...

Occasionally, there's a need for a new GNU C Library for a given application to run. For example, some versions of the Google Chrome browser started to warn users on Red Hat Enterprise Linux 7 that future versions of Chrome would not support their operating system. The Chromium source code contained a version check, flagging all versions of the GNU C Library (glibc) older than 2.19 as obsolete. This check has since been relaxed to 2.17 (the version in Red...

Here are Red Hat's Session and speakers at DevNexus 2016 in Atlanta this week. Join us at these sessions plus stop by our booth for some good swag! MONDAY, FEBRUARY 15 Docker for Java EE Developers(ALL DAY WORKSHOP) Abstract: Containers are enabling developers to package their applications in new ways that are portable and work consistently everywhere: on your machine, in production, in your data center, and in the cloud. And Docker has become the de facto standard for those...

Docker has become the de facto standard for defining and running containers in the Linux® operating system. Kubernetes is Red Hat's choice for container orchestration. OpenShift, built upon Docker, Kubernetes, and other open source software projects, provides Platform-as-a-Service (PaaS) for the ultimate in deploying applications within containers. Learn how to deploy applications in containers using Docker, Kubernetes, and OpenShift Enterprise by Red Hat®. Deploying Containerized Applications Technical Overview (DO080) is Red Hat's new, no-cost, video course that will teach you...

Red Hat Container Development Kit (CDK) is a pre-built container development environment based on Red Hat Enterprise Linux to help you get started developing container-based applications quickly. The containers you build can be easily deployed on any Red Hat container host or platform, including: Red Hat Enterprise Linux, Red Hat Enterprise Linux Atomic Host, and our platform-as-a-service solution, OpenShift Enterprise 3. Get started with containers on Mac OS X, Microsoft Windows, or Linux To save you from having to assemble...

Is it this? (Editor's note: don't get it? ^^ See [1]) No, it is... Gopher image is reproduced from work created and shared by Google and Renee French on golang.org page and used according to terms described in the Creative Commons 3.0 Attribution License. What is golang? Or rather Go language? It is relatively young, conceived in 2007, released to public in 2009 and with go1 release in 2012, compiled statically typed garbage collected language designed by Robert Griesemer, Rob...

When working with container-based applications, admins and developers need a place to store and share container images, a way to deploy them, as well as a way to monitor and administer them once they’re deployed. Atomic Registry provides a place to store and share Docker formatted container images that are saved as images that can be shared with others, and the self-service and admin interfaces make it easy to manage container images on Red Hat Atomic Enterprise Platform. Join Red...

2015 is coming to a close and it’s always fun to reflect on all that has changed, grown, and news that almost make you wonder if pigs can now fly. Our team has greatly expanded, the community is growing, we are now accepting content contributors from around the world...so much to pick from. As you can tell it’s been a busy year and here are just some of top highlights. Here we go and in no particular order: 1) A...

Red Hat Software Collections (RHSCL) 2.0 brings Perl 5.20 as a Docker image. This allows you to deploy Perl applications easily. The basic idea is to combine your application code from Git tree and Red Hat's rhscl/perl-520-rhel7 base image into an application image that will run your application in mod_perl environment. Your application can either be a simple Common Gateway Interface (CGI) script or a full-fledged Perl Web Server Gateway Interface (PSGI) application. Following this step-by-step procedure will show you...

In Architecting Containers Part 1 we explored the difference between the user space and kernel space. In Architecting Containers Part 2 we explored why the user space matters to developers, administrators, and architects. In today’s post we will highlight a handful of important ways the choice of the user space can affect application deployment and maintenance. While there are many ways for a given container architecture to affect and/or influence your application, the user space provides tooling that is often...

New RHSCL-based Docker images that are now in beta let you easily build your own application containers even without writing any Dockerfiles. Here is an example of a Ruby on Rails application built with the Ruby 2.2 image using the PostgreSQL 9.4 image as a database backend. For building the application image we will use a tool called source-to-image (s2i, formally sti) which is a program that can build your application image on top of s2i images. For example the...

OpenShift Enterprise by Red Hat was designed to be application architecture agnostic. In addition to running traditional stateful and/or legacy-type workloads, OpenShift Enterprise seamlessly provides support for modern, stateless Twelve-Factor applications. This document provides a guide on how to optimize the architecture and deployment of your Twelve-Factor applications on OpenShift Enterprise. Note: The Twelve-Factor app is a methodology for building apps in modern cloud environments. Read more at http://12factor.net/. Factor Relationship Codebase One codebase tracked in revision control, many deploys...

“As a part of the Red Hat Software Collections offering, Red Hat provides a number of container images, which are based on the corresponding Software Collections. These include application, daemon, and database images. The provided images, currently available in the Beta version” (for more information see https://access.redhat.com/articles/1752723) Red Hat Software Collections allows you to run newer versions of software on a stable Red Hat Enterprise Linux. These new images combine this feature with the benefits of containers. In this post...

I'm very happy to announce that Docker images based on collections from Red Hat Software Collections (RHSCL) 2.0 are in beta testing. The images are available from the Red Hat Container Registry, and we've got the set of collections for language, databases and web servers covered - a complete list is below. If you've not tried out the Docker package from RHEL7 Extras, you need to enable the Extras channel, install the docker page, and start the docker service; an...

Background I’ve been working with the CTO of a online video game company to develop a container architecture for his business. The goal is to simplify the deployment of new applications as well as make it easier to go back and change code on older applications. The desired state is environmental parity across the infrastructure -- this will simplify the assignment of work on different applications to different developers. From developer laptops to production servers, the code will just work...

In Architecting Containers Part 1 we explored the difference between user space and kernel space. In this post, we will continue by exploring why the user space matters to developers, administrators, and architects. From a functional perspective, we will explore the connection that both ISV applications and in-house application development have to the user space. Read the entire article: Architecting Containers Part 2: Why the User Space Matters | Red Hat Enterprise Linux Blog

This is a guest post written by Red Hat's own Gunnar Hellekson. I tend to pay attention to what Gunnar has to say and recommend the same. "There are three big challenges that lay between containers-as-toy and containers-as-infrastructure: Containers demand a lot more automation than you have now. Containers make you an operating system vendor. Containers drive organizational changes." Source: Red Hat: Containers for Grown-Ups - Tools Advisor