TL;DR – Last Week’s Container News (02/02/18-02/09/18)

Is Serverless Right for You?

A recent article in The New Stack discusses serverless computing (“a way to deploy single functions which are activated only when a specific trigger is called”), and explores when it’s appropriate to use serverless.

According to the article, there are a number of questions to consider before deciding to go serverless. Among them:

  • Is the app a small building block (or can it be broken up into small blocks)?
  • Do the “blocks” have “well-defined inputs and outputs?”
  • Can existing dev / build tools be used?
  • Does the serverless platform support:
    • Receiving connections from client?
    • “Interacting with the target datastore?”
    • A language you know?

Red Hat CoreOS Acquisition — Implications for Ecosystem

Red Hat’s plans to buy CoreOS may have implications for the broader ecosystem, according to an article in The New Stack.

The article speculates that container runtime development may proceed with “perhaps more emphasis on the Kubernetes container runtime interface (CRI-O),” and that Red Hat may bundle CoreOS container registry Quay into their larger container offering. The article also explores how market adoption rates for OpenShift, but concludes that OpenShift “will continue to look up at Amazon Web Serivces, Azure and Google in terms of how and where Kubernetes is deployed.”

Switch (CNCF Founding Member) Announces Major Solar Project

Our friends at Switch just announced the construction of the “single largest solar project portfolio in the United States.”

Switch is a technology infrastructure corporation known for their world-renowned data centers. They were among the founding members of the Cloud Native Computing Foundation (CNCF).

Their Gigawatt 1 solar project will be built here in Nevada and will produce “among the lowest priced solar power in the world.” The project will generate enough energy for “nearly one million homes.”

Please join us in congratulating Switch on this major project!

Tips for Driving IT Transformation

A recent article in InformationWeek points out that “over 60% of organizations have no formal transformation strategy.” This despite the real threat of becoming “stranded by organizational inertia.” What’s more, the article points out that 7 out of 10 change initiatives fail (mostly due to employee resistance and lack of leadership support). The article explores some remedies, including seeking close alignment with line-of-business peers and educated people about why change is needed. Check out the article for more tips.  

CNCF Adopts Vitess Project

The Cloud Native Computing Foundation (CNCF) recently adopted Vitess as their 16th hosted project. According to The New Stack, Vitess is meant to “shard large MySQL databases across multiple servers,” essentially solving the MySQL scalability problem. Vitess was originally developed at YouTube.

Cloud Dominating Data Center Traffic

Accounting for 88% of data center traffic, cloud is already the dominant force in the data center. Cisco expects this trend to continue, projecting cloud to grow to 95% of data center traffic by 2021. Check out eWeek’s coverage of Cisco’s report

Doing DevOps Securely

A recent article by The New Stack explores how DevOps speeding up the software development lifecycle (SDLC) has “undermined traditional approaches to AppSec.” According to the article, limiting security risks in a new area of accelerated application delivery will require some automation. The article explores how to make “DevSecOps” work with the right practices and tooling.

Kubernetes Deployment & Security eBook

The New Stack has shared a free ebook on “Kubernetes Deployment & Security Patterns.” The ebook features an analysis of “how organization and deployment size dictate Kubernetes challenges,” a comparison of various development environments, and an exploration of “security patterns that apply across all Kubernetes deployments.”

Fixing the Docker / UFW Security Flaw

According to a recent article shared on TechRepublic, using Docker on Linux may be a security issue if your system firewall has been “relegated to Uncomplicated Firewall” (UFW). This is because Docker bypasses UFW and “directly alters iptables, such that a container can bind to a port.” As a result, any UFW rules you may have set will not apply to Docker containers. Check out the linked article for more on this security flaw, including how to fix it.


About the Author: