Running cloud-based always-on systems is inherently complex. Microsoft recently experienced a 5 hour outage with Visual Studio Online, rendering their service unusable to developers. Microsoft's Brian Harry has provided a candid retrospective on what went wrong and how his team his correcting the failure.
In their latest Patch Tuesday, Microsoft issued 9 bulletins covering a total of 37 common vulnerabilities and exposures (CVE) spread across some of their products.
Lyft, a "ridesharing" start-up, replaced Puppet with SaltStack as its infrastructure configuration management tool. Ansible was the other contender as Ryan Lane, a Lyft engineer, explained in his recent article. In the end, SaltStack came on top when Lyft considered each tool's ease of use, maturity, performance and the surrounding community.
CoreOS has announced the acquisition of Quay.io and the launch of the CoreOS Enterprise Registry, a private, behind-the-firewall Docker registry, based on Quay.io hosted service.
Microsoft has announced an end-of-life schedule for .NET 4.0 thru 4.5.1. After January 12 of 2016, all technical support, including security and non-security updates, will be discontinued. Developers and users will need to either go back to.NET 3.5 SP 1 or upgrade to 4.5.2.
Leading application performance monitoring vendor AppDynamics released version 3.9 of their flagship "Application Intelligence Platform" monitoring tool. Highlights of the release include big data analysis and machine learning to provide intuitive, scalable performance monitoring. InfoQ spoke to Maneesh Joshi, head of product marketing and strategy at AppDynamics
Cloudera recently released an update over Project Rhino and data at-rest encryption in Apache Hadoop. Project Rhino is an effort of Cloudera, Intel and Hadoop community to bring a comprehensive security framework for data protection. InfoQ recently talked to Steven Ross from Cloudera team to learn more about the project.
IBM Research Division has published a paper comparing the performance of container and virtual machine environments, using Docker and KVM, highlighting the cost of using Docker with NAT or AUFS, and questioning the practice of running containers inside of virtual machines.
Flocker is a volume and container management system for Docker based on ZFS. It allows for stateful containers, such as databases, to be moved between virtual or physical hosts. This provides a capability that is analogous to the live migration features of some virtual machine hypervisors. Version 0.1 has been released by ClusterHQ as an Apache 2.0 open source project.
Heroku is trying to make it easier to turn source code into a running application. The Heroku Button – a simple bit of HTML or Markdown that triggers a deployment from a public GitHub repository to Heroku’s public cloud – sets up Heroku as an attractive destination for quickly previewing, hosting, and extending open source web applications.
QCon SF Update (Nov 3-7, 2014): Walmart Labs, Netflix, Twitter Talks Confirmed; Registrations up 50%
With registrations up 50% and 24/100 speakers confirmed, the 8th annual QCon San Francisco (Nov 3-7, 2014) is expected to draw over 1,000 team leads, architects, engineering directors, and project managers for three days of practitioner-delivered talks. The tracks-to-days schedule has been published along with the confirmed list of tutorials. Register before Aug 23rd and save $600.
CoreOS has announced the first CoreOS stable release, CoreOS 367.1.0, including Linux 3.15.2 and Docker 1.0.1, and supported across several platforms through the CoreOS Managed Linux product.
Terraform is a new tool to build, change and version infrastructure, such as VMs, network switches or containers. It comes from the creators of Vagrant, the popular tool for managing development environments. Terraform's main selling point is its ability to combine and compose different service providers resources in a declarative and agnostic way.
Jeff Lindsay, creator of Dokku and early Docker contributor, discussed in an interview by CenturyLink the Docker related projects he is working on, and how they aim to solve the problems involved in a next generation Docker-based service oriented architecture.
Responding to recent concerns that hackers could upload rogue versions of common libraries to Maven Central, Sonatype has released a patch that closes a security vulnerability, enabling SSL by default.