Google Announces Kubernetes 1.0
Google has announced the Kubernetes container orchestration system has reached the v1.0 milestone. Kubernetes runs within a "Google-style infrastructure stack" to manage and orchestrate a container-based data center environment. The 1.0 version number is a major step that means the developers believe they have met their initial objectives, although they acknowledge that much work remains to complete their vision of a universal container-based toolset.
According to Google, the most significant feature of the new release is "API stability, meaning developers can build on top of the core Kubernetes tools without worrying about upcoming releases pulling the rug out from under their work."
The announcement reports that the project has had over 14,000 commits and includes contributions from 400 developers, including coders from Red Hat, CoreOS, IBM, Intel, Microsoft, VMware, and other companies.
Linux Foundation Launches New Cloud Native Computing Project
The Linux Foundation has announced the launch of a new nonprofit organization dedicated to advancing "the state of the art for building cloud native applications and services." The new Cloud Native Computing Foundation will "… create and drive the adoption of a new set of common container technologies driven and informed by technical merit and end user value and inspired by Internet-scale computing."
Founding members include a number of leading Internet companies, such as AT&T, Cisco, CoreOS, Docker, eBay, Google, IBM, Intel, Red Hat, Twitter, VMware, and others. The goal of the group is to define APIs and standards that will lead to better and more open technology for containers and cloud computing.
According to Linux Foundation executive director Jim Zemlin, "The Cloud Native Computing Foundation will help facilitate collaboration among developers and operators on common technologies for deploying cloud-native applications and services. By bringing together the open source community's very best talent and code in a neutral and collaborative forum, the Cloud Native Computing Foundation aims to advance the state of the art of application development at Internet scale."
See the Cloud Native Computing Foundation website for more information:
Emergency Fix for OpenSSL
The OpenSSL project announced a new release to the encryption toolkit to address a "certificate forgery" issue. The problem affects OpenSSL versions 1.0.2c, 1.0.2b, 1.0.1n, and 1.0.1o. According to the security advisory (CVE-2015-1793), the vulnerable OpenSSL versions will "…attempt to find an alternative certificate chain if the first attempt to build such a chain fails. An error in the implementation of this logic can mean that an attacker could cause certain checks on untrusted certificates to be bypassed…"
The OpenSSL team released versions 1.0.2d and 1.0.1p on July 9 to fix the problem.
ARIN Is Running out of IPv4 Addresses
The American Registry for Internet Numbers (ARIN) has officially invokes its "Policy for Unmet Requests," which means organizations requesting IPv4 address blocks will receive a block size smaller than they qualify for, or, they have the option to go on a waiting list for unmet requests.
IPv4 address depletion has been predicted for years. Technologies such as DHCP and private address ranges have delayed the final days, but the end is near for new IPv4 addresses. ARIN's announcement should add still more attention to the need for Internet users to become familiar with IPv6.
According to ARIN Chief Information Officer Richard Jimmerson, 21 organizations were on the waiting list as of July 20, and ARIN expects the number to grow quickly.
New Adobe Flash Problem
Researchers at FireEye have uncovered yet another attack affecting the Adobe Flash Player plugin. The zero-day vulnerability (CVE-2015-3113) is apparently already being used in phishing attacks, with attackers sending spam email containing links that trigger the exploit.
Adobe has released emergency patches, and all users are advised to install the patches as soon as possible. According to Adobe, the attack is a high-priority problem for Windows and OS X systems. The risk is lower with Linux; however, Linux systems are not immune.
This latest problem is part of a long list of recent exploits involving the Flash Player. Some experts are venturing out beyond the usual "install the patch" advice and are indicating that it might be time to learn to live without Adobe Flash.
Linux Foundation and Docker Announce Open Container Project
Docker and the Linux Foundation have joined forces to create a new organization for developing and maintaining container standards. The Open Container Project (OCP) will "promote and promulgate a set of common, minimal industry standards around container technology."
The OCP will attempt to bring container vendors into a common standards process, to prevent fragmentation and build a community emphasis into the quest for better container tools and technologies. The Linux Foundation will play host to the group. To jump-start the project, Docker will donate draft specifications and "existing code around an image format and container runtime."
A broad coalition of partners have also signed up to be part of the effort, including Amazon Web Services, Cisco, CoreOS, EMC, Google, HP, IBM, Microsoft, Red Hat, VMware, and several other vendors.