SELinux is a mechanism that implements mandatory access controls in Linux systems. This article shows how to create a SELinux policy that confines a standard service: Limit its network interfaces, Restrict its system access, and Protect its secrets. Mandatory access control By default, unconfined processes use discretionary access controls (DAC). A user has all the permissions over its objects, for… Read more →
The RDO community is pleased to announce the general availability of the RDO build for OpenStack Pike for RPM-based distributions, CentOS Linux 7 and Red Hat Enterprise Linux. RDO is suitable for building private, public, and hybrid clouds. Pike is the 16th release from the OpenStack project, which is the work of more than 2300 contributors from around the world… Read more →
TL;DR: Sign up here for the video interviews at the PTG in Denver next month. Earlier this year, at the PTG in Atlanta I did video interviews with some of the Red Hat engineering who were there. You can see these videos on the RDO YouTube channel. Or you can see the teaser video here: This year, I’ll be expanding… Read more →
Ada Lee talks about OpenStack Security, Barbican, Novajoin, and TLS Everywhere in Ocata, at the OpenStack PTG in Atlanta, 2017.
Introducing Opstools-ansible Ansible Ansible is an agentless, declarative configuration management tool. Ansible can be used to install and configure packages on a wide variety of targets. Targets are defined in the inventory file for Ansible to apply the predefined actions. Actions are defined as playbooks or sometime roles in the form of YAML files. Details of Ansible can be found… Read more →
It can be intimidating trying to get involved in an open source project. Particularly one as huge and complicated as OpenStack. But we want you to join us on the RDO project, so we’re trying to make it as easy as possible to get started. To that end, we’ve started the EasyFix initiative. EasyFix is a collection of "easy" tickets… Read more →
Zuul is a program used to gate a project’s source code repository so that changes are only merged if they pass integration tests. This article presents some of the new features in the next version: ZuulV3 Distributed configuration The configuration is distributed accross projects’ repositories, for example, here is what the new zuul main.yaml configuration will look like: – tenant:… Read more →
Here are the two presentations from the Pune OpenStack Meetup earlier this week: Contributing to OpenStack (Presentation slides HERE) Neutron deep dive
I’m happy to annouce version 0.44.2 of rdopkg RPM packaging automation tool has been released. While a changelog generated from git commits is available in the original 0.44 release commit message, I think it’s also worth a human readable summary of the work done by the rdopkg community for this release. I’m not sure about the format yet, so I’ll… Read more →
There’s a number of upcoming events where RDO enthusiasts will be present. Mark your calendar! Join us for Test Day! Milestone 3 of the Pike cycle was released last week, and so it’s time to test the RDO packages. Join us on Thursday and Friday of next week (August 10th and 11th) for the Pike M3 test day. We’ll be… Read more →
Here’s some of the great blogs from the RDO community which you may have missed in recent weeks: Using NFS for OpenStack (glance,nova) with selinux by Fabian Arrotin As announced already, I was (between other things) playing with Openstack/RDO and had deployed some small openstack setup in the CentOS Infra. Then I had to look at our existing DevCloud setup…. Read more →
Julie Pichon talks about her work on TripleO in the Ocata release of OpenStack, at the OpenStack PTG in Atlanta.
OpsTools for RDO CentOS SIG In the CentOS community there are Special Interest Groups (SIG) that focus on specific issues such as cloud, storage, virtualization, or operational tools (OpsTools). These special interest groups are created to either to create awareness or to tackle the development of that subject with focus. Among the groups there is the Operational tools group (OpsTools)… Read more →
Beth Elwell talks about her work on OpenStack Horizon in the Ocata cycle, at the OpenStack PTG in Atlanta.
Miguel Ãngel Ajo talks about the work done on the OpenStack Neutron Quality of Service plugin in the Ocata release, at the OpenStack PTG in Altanta.