About Joe Brockmeier

Joe Brockmeier works for Red Hat as the Editorial Director, Red Hat Blogs. Passionate fan of Linux and open source, Vim, music, art, cats, and polar bears. Not necessarily in that order.

Red Hat Summit Community Track Day Two

Summit logo Wednesday was another fine day at Red Hat Summit 2016 in San Francisco at the Moscone Center. After a really fun keynote that included deploying a mobile game that something like 800 attendees played live, it was time for breakout sessions.

What follows is a nearly stream-of-consciousness grab of the highlights of the sessions from day two.

Continue reading

Community Track at Red Hat Summit Call for Proposals

This year at Red Hat Summit, we will have a track to highlight some of the excellent work being done in upstream communities that Red Hat participates in and sponsors. If you’re working on, or using, one of our key projects we’d love to hear about it!

The Open Source and Standards (OSAS) team would like to feature interesting case studies that show how our communities are using projects like CentOS, Ceph, Fedora, Foreman, Gluster, oVirt, Project Atomic, RDO, and others. We’re also interested in presentations that show off work happening in the upstreams, to demonstrate the innovation that happens first upstream.

Continue reading

Introducing the OSAS Community Dashboard

Red Hat’s Open Source and Standards (OSAS) group, working with Bitergia, is capturing interesting data from some of the upstream projects with which Red Hat is deeply involved. On this page, you’ll find various vital signs from projects like oVirt, RDO, ManageIQ, and Gluster.

It’s useful for folks who are familiar with an open source project to be able to see, at a glance, the general trends for things like mailing list activity, IRC discussions, or how many bugs/issues are being opened and closed.

Continue reading

How to Run a FOSDEM Devroom

FOSDEM is one of the world’s biggest gatherings of free and open source developers, and it takes a lot of work to put the entire thing together. Almost magically, the event is staffed and managed by volunteers and put on free of cost to the attendees. If you were one of the thousands of folks attending FOSDEM this past weekend in Brussels, you might have found yourself sitting in a devroom thinking, "Hey, I’d like to put one of these together next year!" If so, read on.

Continue reading

Infrastructure.Next Returning to Ghent and SCALE

Once again, we’re pleased to be running Infrastructure.Next events in Ghent and alongside the Southern California Linux Expo. Tickets for Ghent and SCALE are available now on Eventbrite, don’t miss out!

This is our second year running Infrastructure.Next. We had a great turnout last year, and are building on the previous events with feedback from last year’s event. This year we’ll have more case studies and deep dives, less introductory content.

Naturally, we’re also going to spend some time talking about Linux containers, so you’ll be able to get your Docker on and hear about how containers fit into the picture today – and where they’ll be tomorrow. We’ll be featuring talks on:

  • Docker
  • Project Atomic
  • OpenStack
  • Ansible

And, of course, we’ll be discussing how you can use these tools together and get the most out of open source in your environment.

Schedule to Come

We’re still putting the last touches on the schedule. But, as with last year, we’ve got a stellar line-up of speakers ranging from ones who are in the trenches on some of the most relevant open source projects, to folks working in today’s data center. We’ll have a focus on clouds, orchestration, and containers this year – so if Docker is on your radar, or if you’re interested in setting up a private cloud, you won’t want to miss this event.

Fedora Council Elections Start Today

The Fedora Project recently changed its governance model and has begun to set up a Council that will replace the Fedora Board.

As John Rose noted on Fedora Magazine, the Board is working on an orderly transition from the old model to the Council model, and part of that is electing two new members for the Council.

The nomination period concluded last week, and elections began today and run through November 25th. (Voting closes at 00:00 UTC November 26th.)

The candidates are:

Continue reading

Upcoming Events and Calls for Papers

Doing exciting work with open source cloud, containers, virtualization, or other interesting technologies? Want to show it off to other folks in the FOSS community from around the world? Then don’t miss these opportunities to get the word out about your work!

Linux.conf.au Clouds, Containers, and Orchestration Miniconf

Linux.conf.au is consistently a fantastic event. Year after year it delivers a great selection of talks and miniconferences. This year I’m running the Clouds, Containers, and Orchestration miniconf, and looking for presentations by November 25th. Here’s the short synopsis:

"Software-defined everything," DevOps, and cloud are driving open source further and faster than we might have imagined possible just a decade ago. Most recently, Docker containers and orchestration have opened up all kinds of new opportunities to develop, deploy, and manage software from the developer's desktop well into production.

Continue reading

Critical Bash Security Vulnerability: Update Your Systems Today

This morning a critical vulnerability was announced in GNU Bash. This vulnerability affects versions of CentOS, Fedora, and Red Hat Enterprise Linux (RHEL). 

The Vulnerability

Huzaifa Sidhpurwala has an excellent post on the Red Hat Security Blog that explains the vulnerability and potential attacks. 

In a nutshell:

the vulnerability arises from the fact that you can create environment variables with specially-crafted values before calling the bash shell. These variables can contain code, which gets executed as soon as the shell is invoked. The name of these crafted variables does not matter, only their contents.

If you’re wondering "does this affect me?" here’s the quick way to find out, as Ryan Lerch pointed out in the Fedora Magazine post:

env x='() { :;}; echo OOPS' bash -c /bin/true

If the shell returns "OOPS" then you’re vulnerable. If it returns an error, then you have an updated bash

Getting Updates

If you’re running these operating systems, you’ll want to update immediately. More information about RHEL updates is on the customer portal. CentOS has an announcement for each release, CentOS 5, CentOS 6, and CentOS 7. Fedora Magazine also has information on the vulnerabiltiy, and information on how to get the updates immediately from Koji.