InfoQ Homepage Containers Content on InfoQ
-
Migrating from Self-Managed Kubernetes to AWS EKS Using Terraform at Blue Matador
Blue Matador migrated their self-managed Kubernetes cluster to AWS EKS to take advantage of a better security model, a managed control plane, and lesser costs, using Terraform to automate the setup.
-
Google Kubernetes Engine Enhancements: Upgrade Channels, Windows Container Support and Stackdriver
At the recent KubeCon EU in Barcelona, Google announced that it will offer three new release channels for its Google Kubernetes Engine (GKE): Rapid, Regular, and Stable. With these channels, Google Cloud Platform (GCP) users can choose whether they want the freshest release or the most stable one — or quickly evaluate the latest updates in a development environment.
-
Kubernetes Future: VMs, Containers, or Hypervisor?
In competing visions of the future of Kubernetes, Paul Czarkowski, principal technologist at Pivotal, predicts that VMs will replace containers, and Joe Fernandes, a VP at Red Hat, considers that VMs usage is evolving for Kubernetes rather than replacing containers. In addition, Chris Short, Red Hat's principal product marketing manager, said that Kubernetes is close to replacing the hypervisor.
-
CRI-O: An Open Source Container Runtime for Kubernetes
The Cloud Native Computing Foundation (CNCF) accepted CRI-O as an incubation-level hosted project on April 8th. CRI-O, created by Red Hat, is an Open Container Initiative container runtime for Kubernetes that provides an alternative to Docker.
-
HashiCorp Releases Nomad 0.9 with Additional Scheduling Features
HashiCorp has released version 0.9 of Nomad, their distributed scheduler platform. This release includes enhancements to the scheduling features that determine how Nomad places applications across the infrastructure. The other major release is the groundwork for a plugin-based feature strategy to enable easier integrations with a number of technologies.
-
Security Landscape of the Docker Ecosystem and Best Practices
As part of its annual State of Open Source Security Report, security firm Snyk issued a specific report focusing on Docker security that shows vulnerabilities in container images are widespread. InfoQ has spoken with Liran Tal, Snyk developer advocate.
-
Running Serverless Containers on Google Cloud Run
Google Cloud Run, now available in beta, allows you to run serverless applications based on Docker containers that are automatically activated when an HTTP request comes in. Google Cloud Run is a fully managed platform and is based on KNative, which allows you to easily port your applications to any other platforms using Kubernetes clusters.
-
Amazon Expands Its Machine Learning Offering with AWS Deep Learning Containers
Recently, Amazon introduced AWS Deep Learning Containers (AWS DL Containers), which are Docker images pre-installed with deep learning frameworks allowing customers to deploy custom machine learning environments quickly.
-
Vector Performance Monitoring Tool Adds eBPF, Unified Host-Container Metrics Support
Vector, the open source performance monitoring tool from Netflix, added support for eBPF based tools using a PCP daemon, a unified view of container and host metrics, and UI improvements.
-
Debugging Microservices Running in Containers: Tooling Review at KubeCon NA
At KubeCon NA held in Seattle in December 2018, several tools for debugging containerised microservices were presented throughout the conference sessions and the sponsored booths demonstrations. A notable separation appears to be occurring within the market, between "active" and "passive" debugging tools. Two examples within these categories are Rookout and Squash, respectively.
-
RunC Bug Enables Malicious Containers to Gain Root Access on Hosts
Security researchers have discovered a critical bug in runC - a lightweight CLI tool for spawning containers according to the OCI specification - which allows the attackers to escape the container and gain administrative privileges on the host, rendering it vulnerable.
-
Amazon Announces AWS PrivateLink Support for Its ECR and ECS Services
In a recent blog post, Amazon announced AWS PrivateLink support for its Elastic Container Registry (ECR) and Elastic Container Service (ECS). With AWS PrivateLink support customers can create endpoints for ECS and ECR appearing as elastic network interfaces with a private IP address in their Virtual Private Cloud (VPC).
-
New Docker Hub Merges Together Docker Cloud and Docker Store
Docker has released a new Docker Hub experience that combines the previous Docker Store, Docker Cloud, and Docker Hub functionality into one location. This provides users with a single experience for finding, storing, and sharing container images. Verified and certified images and plugins are now available through Docker Hub. They have also released improvements to the automated build feature.
-
Amazon Introduces AWS Cloud Map: "Service Discovery for Cloud Resources"
In a recent blog post, Amazon introduced a new service called AWS Cloud Map which discovers and tracks cloud resources. With the rise of microservice architectures, it has been increasingly difficult to manage dynamic resources in these architectures. But, using AWS Cloud Map, developers can monitor the health of databases, queues, microservices, and other cloud resources with custom names.
-
DigitalOcean Launches Managed Kubernetes Service
Cloud provider DigitalOcean recently opened up access to their new Kubernetes-as-a-Service offering. This fully-managed service is now available in every DigitalOcean region.