Kubernetes:

• Backup for GKE – concepts – Part 1 – how it works,
• Partial Helm values encryption using AWS KMS with ArgoCD,
• Using the Kyverno CLI to Write Policy Test Cases,
• Can eBPF Agent in Kubernetes Be the Key to Better Observability?
• Upgrading Kubernetes – A Practical Guide,
• Policy Matters! A Policy Working Group Introduction and Deep Dive (34min),
• Step by Step Guide: How to create a Dynamic Service Endpoint via K8S API,
• kubectl flags you have probably never heard of,
• How to secure Kubernetes Ingress?
• Ingress in Google Kubernetes Products,
• Kubernetes 1.27: updates on speeding up Pod startup,
• Cloud Native Security Talks,
• Having fun with seccomp profiles on the edge,
• Free eBook: Cloud Native Infrastructure with Azure,
• Preventing DoS Kubernetes using Falco and Calico,
• Building a Kubernetes purple teaming lab,
• SSO Authentication for Applications in Kubernetes,
• Devpod: Improving Developer Productivity at Uber with Remote Development,

OpenShift:

• OpenShift Container Platform 4.13 Documentation,
• RedHat Openshift 4: How to reset CRI-O storage,
• A simple guide to replacing a failed Control Plane node,
• Subreconciler pattern in action: A convenient way to improve the code readability of your Go Operator,
• No More Coding Headaches: Getting straight to Application Creation with the Joget DX Operator on OpenShift,
• GitOps approach to configure OpenShift clusters managed by Red Hat Advanced Cluster Management for Kubernetes,
• Commands Kubernetes should adopt from Red Hat OpenShift,
• How to secure microservice applications with role-based access control? (6/7),
• How to secure microservice applications with role-based access control? (7/7),
• How to use the new OpenShift quick starts to deploy JBoss EAP,
• The GitLab OpenShift Operator is Certified!
• AI/ML Models Batch Training at Scale with Open Data Hub,
• Red Hat Device Edge RPM-OSTree updates,
• Application Clustering in OpenShift Virtualization,
• A Guide to Downtime Minimization for Stateful Applications,
• Provisioning DevOps on OpenShift using Helm in 5 steps, from zero to hero,
• Solving the Access Issue for the `kubeadmin` User in Red Hat OpenShift Data Science Project. Unable to access Settings page,
• SAS Viya on Red Hat OpenShift – Part 1: Reference Architecture and Deployment Considerations,
• SAS Viya on Red Hat OpenShift – Part 2: Security and Storage Considerations,
• How to a Scale Single Node OpenShift Cluster,
• How to design probes for Telco (low-latency) workloads in OpenShift,
• Red Hat OpenShift Service on AWS (ROSA) – Who does what?
• How to use OpenShift Data Science for fraud detection,
• Try To Pull Yourself Up By Your Bootstraps – Without Falling Over…,
• Deploying Zettaset XCrypt product suite to Red Hat OpenShift Service on AWS by using Red Hat Advanced Cluster Management for Kubernetes governance policies,

Containers:

• Confidential Containers Made Easy (33min),
• Rootfs Overlay in gVisor,
• Digging Into Runtimes – runc,
• Digging into the OCI Image Specification,
• Debugging Distroless Images,
• Build lean Node.js container images with UBI and Podman,

Service Mesh:

• Using Geneve Tunnels to Implement Istio Ambient Mesh Traffic Interception,
• Real-World GitOps with Flux, Flagger, and Linkerd,
• Understanding gRPC Load Balancing in Kubernetes with istio,
• A Deep Dive into Azure Kubernetes Service and Istio Ambient for sidecar-less microservices integration (part 1),
• A Deep Dive into Azure Kubernetes Service and Istio Ambient for sidecar-less microservices integration (part 2),

RHEL:

• Manage configuration complexity with Red Hat Enterprise Linux 8.8,
• Red Hat advances with new Enterprise Linux releases,
• Powering innovation: How ROSA provides a fully-integrated AWS-native application platform,
• How to deploy JBoss EAP on an Azure virtual machine,
• Know before you go: Red Hat Summit 2023,
• Rocky Linux 9.2 Available Now,
• Rocky Linux 9.2 Released With Intel Arc Graphics Support, AArch64 64kb Page Size Kernel,
• Going to Red Hat Summit? Here’s where to find Red Hat Research and Emerging Technologies,
• Here’s where to find Red Hat Advanced Cluster Management for Kubernetes at Red Hat Summit 2023,
• Learn about Edge Automation at Red Hat Summit and AnsibleFest 2023,
• AlmaLinux 8.8 – Now Available,
• Where to find Red Hat at OpenInfra Summit 2023 in Vancouver,
• How to use RHEL application compatibility guidelines,
• Optimizing 5G N6 interface services with F5 and Red Hat,
• RHEL 9.2 edge image configuration,

Certifications:

• Certifications for the cloud-native world,
• Free learning material to boost your cloud-native knowledge,
• Kubernetes Jobs Market Trend Report 2023 Q1,
• Take your first steps with Rust,
• 40% off any CNCF certification exam with code MAYSPRING40,
• Mind map for AWS Core services,

Miscellaneous:

• Database Sharding Explained,
• Make use of Btrfs snapshots to upgrade Fedora Linux with easy fallback,
• Kafka vs Redpanda Performance – Do the claims add up?
• The benefits of Fedora 38 long double transition in ppc64le,
• Inside Datadog’s $5M Outage (Real-World Engineering Challenges #8),
• SHA-1 gets SHAttered,
• Confidential computing use cases.

Kubernetes:

• AWS provider for the Secrets Store CSI Driver allows you to fetch secrets and mount them into Kubernetes pods,
• Customize the kubeadm image repository,
• Comparing Resource Consumption in K0s vs K3s vs MicroK8s,
• KubeConEU 2023 videos,
• KubeCon Trip Report,
• Kubernetes Security Part 1 – Security Contexts,
• Kubernetes Security Part 2 – Network Policies,
• Solving the mystery of pods health checks failures in Kubernetes,
• How to configure Kubernetes memory limits for Java application,
• The problem of state, running linked data services in Kubernetes,
• Aligning with Kata Confidential Containers to achieve zero trust operator deployments with AKS,
• Four Pillars Of Observability in Kubernetes,
• Redpanda — Kubernetes Deployment Architecture,
• Kubernetes 1.27: StatefulSet Start Ordinal Simplifies Migration,
• Reducing Pod Volume Update Times,
• Series: Monitoring and Tracing Kubernetes Services with Otel,
• Kubernetes OOM and CPU Throttling,
• Introduction to Continuous Delivery and GitOps using Argo CD,
• Who’s killing my pods?
• OPA Gatekeeper on Kubernetes,
• Conftest | kubernetes,
• Encrypting Kubernetes Secrets at Rest,
• Kubesec for Static Analysis,
• Access Kubernetes Objects Data From /Proc Directory,
• Give Users and Groups Access to Kubernetes Cluster Using RBAC,
• Service Account | Kubernetes,
• Kubernetes Admission Controller,
• Pod Security Admission Controller — Namespace Level,
• Pod Security Admission Controller — Cluster Level,
• KubeShark: Wireshark for Kubernetes,
• Kubernetes TLS Demystified,
• Set OpenAPI patch strategy for Kubernetes Custom Resources – Kustomize,
• The life of a DNS query in Kubernetes,
• Kong: Setup The Most Popular API Gateway on Kubernetes Cluster,
• Setting up and running a Kubernetes cluster locally with Podman Desktop,
• Kubernetes: Cluster Cost Monitoring – Kubernetes Resource Report and Kubecost,
• KSOC Releases the First Kubernetes Bill of Materials (KBOM) Standard,
• OpenTelemetry Operator,
• Kubernetes 1.27: Avoid Collisions Assigning Ports to NodePort Services,

OpenShift 4.13:

• What’s New in OpenShift 4.13 [Technical Product Update] (91min),
• What’s New OpenShift 4.13 – Developer Edition (41min),

OpenShift:

• Openshift4 on vSphere add more Datastore expandable,
• OpenShift 4.12 — NetFlow export to PRTG,
• Implementing MTLS with Apache and OpenSSL on OpenShift,
• Way too many alerts? Which alerts are important?
• Forwarding ROSA logs to S3,
• Embracing the Open Hybrid Multi-Cloud connecting overlay networking from ARO and ROSA clusters,
• How to set up event-driven microservices using Knative Eventing,
• A Guide to Automatically reconnecting managed clusters when restoring a Red Hat Advanced Cluster Management for Kubernetes 2.7 hub cluster,
• Deploying, Installing and Configuring the Mendix Operator on Red Hat OpenShift,
• Backup OpenShift applications using the OpenShift API for Data Protection with Multicloud Object Gateway,
• Manage Kubernetes Operators with ArgoCD,
• ODF-Nano lets you deploy OpenShift Data Foundation on your Laptop (CRC),
• Implementing Multi-Layer Container and Kubernetes Security for Automated DevSecOps,
• OpenShift V4 Workshop Labs,
• Red Hat Hybrid Cloud Workshop,
• How to set up and demonstrate Quarkus GrumpyCat GitOps demo,
• Make the most out of Kyverno & Openshift — RBAC edge case,
• Mini-HowTo — Check Pod’s Special SCC needs before you upgrade to OCP 4.11+,
• Run OpenShift on AWS,
• Build and manage Red Hat Device Edge images with Ansible,
• What’s new in Red Hat’s migration toolkit for applications 6.1,
• How to install Single Node OpenShift 4.13 on Apple Silicon Mac (M1/M2) with Assisted Installer,
• How to install Single Node OpenShift 4.13 on Apple Silicon Mac (M1/M2) with UPI,
• FIPS on Red Hat Device Edge with MicroShift,

Containers:

• Mini HowTo — the ultimate Container-tool image for Openshift,
• Seccomp — Secure Computing Mode | Kubernetes | Docker,
• Container Sandboxing | gVisor,
• AppArmor For Docker | Kubernetes,
• A Guide to Docker Multi-Stage Builds,
• Podman Desktop for Java Development,
• Release Notes – Podman Desktop 0.15,
• Welcome to the v1.7.1 release of containerd!
• Alpine Linux 3.18.0 Released,

Service Mesh:

• Announcing Linkerd 2.13 with circuit breaking, dynamic request routing, FIPS, health monitoring, and more,
• Why service mesh and API management are better together,
• Installing Istio multicluster deployment with Terraform,
• Cut Service Mesh Overhead by 90% or More with Istio Ambient Mesh,
• OSM Project to be archived,
• Welcome to Linkerd, Open Service Mesh adopters!
• Istio Ambient Waypoint Proxy Made Simple,
• Avoiding ISTIO Proxy while calling a service,
• Istio Traffic Shifting,

RHEL 9.2:

• Red Hat Delivers Latest Releases of Red Hat Enterprise Linux,
• How the new RHEL 9.2 improves the developer experience,
• Speed innovation with new features in Red Hat Enterprise Linux 9.2 and 8.8,
• What’s new in the web console in RHEL 9.2 and 8.8,
• Red Hat Enterprise Linux for SAP Solutions 9.2 – Just Use It,
• AlmaLinux 9.2 – Now Available,

RHEL:

• Red Hat Satellite 6.12.4 has been released,
• Data scientists’ dream team: Red Hat and Intel AI and Machine Learning,
• The future of Red Hat security data,
• Red Hat OpenShift or Red Hat OpenStack Platform: When to use What and Why?
• Confidential computing primer,
• Attestation in confidential computing,
• Red Hat Satellite 6.13 is now available,
• Red Hat Customer Portal launches redesigned product pages,
• Pre-creating users and roles in Keycloak,
• How to create execution environments using ansible-builder,
• Sustainable supply chains: challenges, drivers and architectures,
• Introducing AlmaLinux Accounts,
• Learn about Event-Driven Ansible at Red Hat Summit and AnsibleFest 2023,
• Red Hat sees increasing momentum for APAC 5G and Edge Technology Lab with Intel and HPE,

Certifications:

• [RedHat] EX280v4.10 example,
• Elevate your Red Hat Summit experience with Power Training,
• Red Hat EX294 Exam (RHCE) Preparations,
• RHCSA 7/8 Practice Questions repository,
• How to Get Certified Kubernetes Security Specialist 2023,
• labs.iximiuz.com is now in open beta,

Miscellaneous:

• sudo & su Being Rewritten In Rust For Memory Safety,
• Free eBook: Linux Kernel Module Programming Guide,
• Sunsetting OpenCensus,
• Python’s Missing Batteries: Essential Libraries You’re Missing Out On,
• How to debug C++ lambda expressions with GDB,
• Scaling up the Prime Video audio/video monitoring service and reducing costs by 90%,
• Collection of online security resources,
• 6 Github alternatives that are open source and self-hosted,
• Linux command: lsof (List Open Files),
• Linux: System Calls and Strace,
• So many bad takes — What is there to learn from the Prime Video microservices to monolith story,
• Take Ansible validated content to the next level with Event-Driven Ansible,
• New C features in GCC 13,
• New AWS storage type for Fedora Linux,
• Trying different desktop environments using “rpm-ostree rebase”,
• Push protection is generally available, and free for all public repositories,
• Use FIDO U2F security keys with Fedora Linux.

Kubernetes:

• 7 Things You Need to Know About Using Helm,
• Create temporary environment from Pull Request with ArgoCD ApplicationSet,
• 12 Scanners to Find Security Vulnerabilities and Misconfigurations in Kubernetes,
• Liveness Probes: Feel the Pulse of the App,
• Reduce cross-AZ traffic costs on EKS using topology aware hints,
• Announcing the general availability of Azure CNI Overlay in Azure Kubernetes Service,
• SUSE Expands Open, Interoperable Strategy with the Latest Version of Rancher,
• Strengthen Your Kubernetes Security with SecurityContext Settings,
• The Cilium Story: Why we created Cilium,
• KubeBrain: a project that aims to replace etcd with a pluggable storage engine for Kubernetes,
• GitOps at Scale,
• Finout Gets a Handle on Kubernetes Costs,
• A Detailed Brief About Offence and Defence on Cloud Security – Etcd Risks,
• Google Secret Manager Provider for Secret Store CSI Driver,
• Kyverno — Verify Kubernetes control plane images,
• #BrokenSesame: Accidental ‘write’ permissions to private registry allowed potential RCE to Alibaba Cloud Database Services,
• Manage Multiple Kubernetes Clusters with ArgoCD,
• Kubernetes Hacks and Tricks — #8 Pod Preemption, Eviction and Priority classes,
• Kubernetes Ingress Vs Gateway API,
• Autoscaling Ingress controllers in Kubernetes,
• Devpod: Improving Developer Productivity at Uber with Remote Development,
• Preventing DoS Kubernetes using Falco and Calico,
• Keycloak the Open Source Identity and Access Management for Modern Applications (11min),
• Reduce Amazon EKS cost by scaling node groups to zero,
• Draino: Automatically cordon and drain Kubernetes nodes based on node conditions,
• Automatic Reliability Testing For Cluster Management Controllers,
• Kubernetes-Native Synthetic Monitoring with Kuberhealthy,
• The State of Kubernetes Security in 2023,
• Azure Key Vault to Kubernetes (akv2k8s for short) makes it simple and secure to use Azure Key Vault secrets, keys and certificates in Kubernetes,
• Lightweight Kubernetes Distributions,
• Building Trust in the Software Supply Chain,
• How we reduced our Prometheus infrastructure footprint by a third,
• How OpenTelemetry Works with Kubernetes,
• etcd: getting 30% more write/s,
• When is a CPU not a CPU? Benchmark of Kubernetes Providers and Node Efficiency,
• Thousands of Unsecured Kubernetes Clusters Exposed on the Internet,
• Kube-reqsizer: A Kubernetes controller for automatically optimizing pod requests based on their continuous usage,
• Kyverno Generate Policies! New and Improved,
• KubeCon: Five biggest trends from the Kubernetes love fest in Amsterdam,
• Kubernetes Improves Environmental Impact, Even for Small Companies,
• Aligning with Kata Confidential Containers to achieve zero trust operator deployments with AKS,
• Create Kubernetes secrets from Vault for a secure GitOps based workflow,
• Scanning secrets in environment variables,
• OPA v0.52.0 just dropped!
• SUSE Unveils Rancher 2.7.2, Enhanced Kubernetes Management,
• octosql to evaluate etcd snapshot on MAC,

OpenShift:

• Your Guide to Continuous Delivery with OpenShift GitOps and Kustomize,
• Serverless on OpenShift with Knative, Quarkus and Kafka,
• Using Policy Dependencies to Apply Resources in a Specific Order,
• First Look: MicroShift 4.13 with RHEL 9.2 Beta on Arm,
• Case Study: CERN’s Journey with OpenShift and OKD (23min) / slides,
• Sustainability with Project Kepler (9min) / https://sustainable-computing.io,
• Sustainable computing with Kepler (34min),
• Case Study: Addressing Customer Workload Isolation and Tenancy with OLM (14min),
• Case Study: Using OpenShift Serverless to Kickstart Cloud Native Adoption and Patterns (18min),
• How to deploy multicluster applications with OpenShift and GitOps,
• Zero-Touch Provisioning Of Edge Devices Using Microshift And RHEL For Edge,
• How to install Red Hat OpenShift Local on your laptop,
• How to debug OpenShift operators on a live cluster using dlv,
• OpenShift Extended Update Support (EUS),
• Installing OpenShift on VMWare and Deploying a Sample Application – Part 1,
• Installing OpenShift on VMWare and Deploying a Sample Application – Part 2,
• Installing OpenShift on VMWare and Deploying a Sample Application – Part 3,
• What’s New in Red Hat OpenShift Virtualization 4.12,
• Connecting overlay networks of ROSA clusters with Submariner,
• Openshift Update Service — Upgrading clusters the right way,
• Amadeus IT Group Talks Observability & OpenShift at OpenShift Commons Gathering, Amsterdam,
• Deploy an application in Red Hat OpenShift on your laptop,
• How to add public Ingress to a PrivateLink ROSA cluster,
• Track your OpenShift costs more easily on Azure with new and improved capabilities in Red Hat Cost Management,
• Red Hat Insights Upgrade Risks for Red Hat OpenShift,

Containers:

• Container security fundamentals part 3: Capabilities,
• Lease dynamic IPs with Netavark,
• Transform your container workflow with Podman Desktop,
• New release: Podman v4.5!
• Exit Codes In Containers & Kubernetes – The Complete Guide,
• Transform your container workflow with Podman Desktop,
• Using Nix with Dockerfiles,
• Fun with container images – Bypassing vulnerability scanners,
• Optimize container images for NGINX and Apache HTTPd,
• Introducing hirte, a deterministic multi-node service controller,
• Buildah version 1.30.0 Release Announcement,
• Releasing Systrap – A high-performance gVisor platform,

Service Mesh:

• Cilium Mesh – One Mesh to Connect Them All,
• Istio-based service mesh add-on for Azure Kubernetes Service (preview),
• Istio-based service mesh add-on for Azure Kubernetes Service – Preview,
• Testing the Kubernetes Gateway API with the Istio-based service mesh add-on for Azure Kubernetes Service,
• Sidecars, eBPF and the Future of Service Mesh,
• Kiali support for Istio Ambient Mesh (Alpha),

RHEL:

• The Konveyor project dials in on replatforming and refactoring for 2023,
• Node.js 20,
• Ford’s community-first approach to CI/CD,
• How to build RHEL images for edge deployments,
• Red Hat Enterprise Linux achieves significant performance gains with Intel’s 4th Generation Xeon Scalable Processors,
• Perfect order: Delivering the right products at the right time in the right quantity,
• Building Pantheon Desktop Environment,
• Red Hat’s Digital Communities team layoffs may lead to end of highly successful publications,
• AlmaLinux 8.8 Beta – Now Available,
• AlmaLinux 9.2 Beta – Now Available,

Certifications:

• Free course: Introduction to Cilium,
• Kubernetes: Service Networking,
• Kubernetes: DNS,
• Kubernetes: Ingress,
• Kubernetes: High-level Steps for Deploying Kubernetes with Kubeadm,
• Linux debugging, profiling and tracing training,
• Free Kubernetes courses: KubeCampus.io,
• Red Hat’s OpenShift Certification Pathways evolve to meet the growing demand for cloud-native skills,

Fedora 38:

• Fedora Linux 38 is here!
• Fedora 38 Arrives With Unrestricted Flathub Access,
• Announcing Fedora Linux 38,
• What’s new in Fedora Workstation 38,
• How to rebase to Fedora Linux 38 on Silverblue,

Miscellaneous:

• Implementing up-to-date images with automated EC2 Image Builder pipelines,
• How to secure microservice applications with role-based access control? (4/7),
• How to secure microservice applications with role-based access control? (5/7),
• Enhancing cloud-native security: Argo and Prometheus undergo software supply chain audits,
• A visual introduction to Load Balancing,
• SimulatedRides: How Lyft uses load testing to ensure reliable service during peak events,
• QEMU 8.0 Released With 32-bit x86 Host Support Deprecated,
• Making a Linux home server sleep on idle and wake on demand — the simple way,
• Introducing npm package provenance,
• Ensuring Serverless Success: A Guide to Service Level Agreement (SLA) Definitions and Guidelines,
• Edubuntu 23.04 is released!
• Ubuntu 23.04 “Lunar Lobster” Now Available For Download,
• Implementing C++20 semaphores
• Stop using Telnet to test ports,
• Learn KubeVirt and Node.js with all new learning paths from Kube by Example,
• Test TCP ports with Python and Scapy,
• OpenJDK 8u372 to feature cgroup v2 support,
• Use Redfish to manage servers automatically,
• No wizardry needed to use Ansible’s magic variable ‘hostvars’,
• Introduction to encryption for embedded Linux developers,
• Exposing Local Web-socket connection Securely with FRP & Caddy,
• Changes to the ELN kernel RPM NVR,
• Linux bcache with writeback cache (how it works and doesn’t work),
• OpenStack RDO Antelope Released,
• Heterogenous vs. unified observability solutions: How to choose,
• Quarkus 3 has landed,
• eBPF Observability Tools Are Not Security Tools,
• Provide high availability and scaling to your Samba instances,
• Keylime’s durable attestation makes security auditable,
• Anaconda Installer Partitioning and Storage Survey Results.

Kubernetes v1.27:

• Kubernetes v1.27 release announcement,
• Kubernetes v1.27: Chill Vibes,
• What’s new for security in Kubernetes 1.27,
• MicroK8s 1.27 is out!

Kubernetes:

• Creating TLS Certificates for K8s components with OpenSSL,
• How To Use Server-Side Apply in K8S Operators,
• Kube-Prometheus-Stack and ArgoCD 2.5 – Server-Side Apply to the Rescue!
• Installation and integration of Hashicorp Vault on Kubernetes,
• A Detailed Talk about K8S Cluster Security from the Perspective of Attackers (Part 1),
• A Detailed Talk about K8S Cluster Security from the Perspective of Attackers (Part 2),
• Let’s talk about Kubelet authorization,
• Vault Secrets Operator: A new method for Kubernetes integration,
• The 2-Minute Test For Kubernetes Pod Security,
• Welcome to Kubernetes Goat,
• Securing Kubernetes Clusters using Kyverno Policy Engine,
• Tuning JVM containers for better CPU and memory utilisation in K8s environment,
• Keycloak with PostgreSQL on Kubernetes,
• AKS Networking Deep Dive: Kubenet vs Azure-CNI vs Azure-CNI (overlay),
• quickNotes: Handling Ingress in GKE,
• vcluster + Dapr Cost Optimizations,
• How TLS Certificates Work,
• Survey Shows Companies Moving away from DIY Kubernetes,
• Multi-tenancy in Kubernetes,
• K3s-ansible: The easiest way to bootstrap a self-hosted High Availability Kubernetes cluster,
• Curl as a Network Protocol Testing Tool,
• Pod rebalancing and allocations in kubernetes,

OpenShift:

• How to Configure a Squid Proxy and SSH Tunnel on RHEL 8 to access OpenShift Console from your local machine,
• How to Configure Default Storage Class in OpenShift?
• OpenShift – Your New Favorite IDE,
• Accessing the Ceph CLI with OpenShift Data Foundation,
• How to Resolve Jupyter Notebook Spawning Issues in Red Hat OpenShift Data Science, couldn’t parse image reference “:py3.8-v1”,
• Running Quarkus and Camel Quarkus on Microshift,
• OpenShift Cluster Storage Management,
• How to build a home Kubernetes lab with MicroShift and GitOps,
• Identify all pods which are not running on OpenShift/Kubernetes,
• Red Hat OpenShift sandboxed containers for debugging with elevated privileges,
• How to deploy single sign-on as code using GitOps,
• Using OpenTelemetry and Grafana Tempo with Your Own Services/Application,
• Deploy React applications to OpenShift,
• How to run Doom in a container: Doom on OpenShift,
• Agones Dedicated Game Server Platform on OpenShift,
• Using Red Hat Advanced Cluster Management and OpenShift GitOps to manage OpenShift Virtualization,
• What’s new in OpenShift 4.12,
• Explaining OpenShift Router Configurations,
• Comparing Red Hat OpenShift models for Cloud RAN deployments,
• How to deploy Open Policy Agent for API authorization,
• Running containerized workloads with virtio/vDPA,
• Sigstore – Signature Sorcery,
• Deploying confidential containers on the public cloud,
• Enabling Kubernetes self-service the operator way,

Containers:

• Check for Container Image Vulnerabilities with Trivy,
• How we achieved a 6-fold increase in Podman startup speed,
• Release Notes – Podman Desktop 0.14,

Service Mesh:

• Istio Ambient Mesh in Azure Kubernetes Service: A primer,

RHEL:

• Finding Red Hat Cloud images quickly,
• (Re)Introducing Quay.io: Welcome!
• Understanding your options when connecting RHEL systems to Red Hat,
• Red Hat Satellite 6.12.3 has been released,
• Fastest road from CentOS Linux to Red Hat Enterprise Linux,
• Loss and waste management in supply chains,
• How to upgrade Red Hat Ansible Automation Platform,
• How to use Convert2RHEL to migrate CentOS to RHEL,
• End dates are coming for CentOS Stream 8 and CentOS Linux 7,
• The next evolution of Red Hat’s Developer options,
• Demystifying risk using CVEs and CVSS,
• How to get started with Ansible Private Automation Hub,
• RHEL Subscription Manager (2023),

Certifications:

• CKA practice exercises,
• K8s practice training,
• Kubernetes Certified Administrator,
• Certified Kubernetes Security Specialist – CKSS,
• CKS Exam Study Guide: Resources to Pass Certified Kubernetes Security Specialist,
• My experience passing Certified Kubernetes Security Specialist (CKS) exam,
• Kubernetes: Container Network Interface(CNI),

Miscellaneous:

• Microsoft Semantic Kernel for AI Dev: A Chat with John Maeda,
• How to adjust memory allocation for virtual machines using Virsh,
• Living with a Logitech MX Master 3 mouse on my Fedora OS,
• Please don’t use GPT for Security Guidance,
• HAProxy Stats, Sockets, and Stick Tables,
• Lab Basics – Architecture and Core,
• Find mistakes in your playbooks with Ansible Lint,
• How to build next-gen applications with serverless infrastructure,
• Tips for handling localized ranges in regular expressions,
• Learn Gawk by playing a fun word game,
• 8 open source ‘Easter eggs’ to have fun with your Linux terminal,
• Fedora Websites 3.0 Release!
• Canonical Livepatch gets even better – Now supporting Hardware Enablement Kernels,
• Signing your Git Commits with SSH Keys,
• Monitor and troubleshoot applications with Glances and InfluxDB,
• Why you should use io_uring for network I/O,
• BGP Management with Ansible Validated Content using the network.bgp collection,
• Streamline Your Ansible Module Development with Content Builder,
• DISA releases the first Ansible STIG,
• Use rpmautospec in Fedora Linux,
• My advice for building maintainable, clean architecture.

Kubernetes:

• Reduce Amazon EKS cost by scaling node groups to zero,
• Comparing Kubernetes operators for PostgreSQL. Part 2: CloudNativePG,
• Kubernetes Hacks and Tricks — #1 Immutable ConfigMaps and Secrets,
• Kubernetes Hacks and Tricks — #2 Optional ConfigMaps and Secrets in Pods,
• Kubernetes Hacks and Tricks — #3 List all downloaded images on worker nodes,
• Kubernetes Hacks and Tricks — #4 Find worker node info from Pod spec info,
• Kubernetes Hacks and Tricks — #5 Pod DNS Policy and DNS Config options,
• Kubernetes Hacks and Tricks — #6 Find Pods running from deprecated registry,
• Kubernetes Hacks and Tricks — #7 Pod and Container Resource and QoS classes,
• KUI: A Better Way to Manage Kubernetes Resources,
• Getting Started with Kubernetes Networking,
• Enhancing Kubernetes Security with Kyverno, RuntimeClass, and Kata Containers,
• Okteto: Develop your applications directly in your Kubernetes Cluster,
• OpenTelemetry Operator: Tracing made easy,
• Kubernetes: Authorization Part2- RBAC,
• Multi-cluster management for Kubernetes with Cluster API and Argo CD,
• Kubernetes Validating Admission Policies: A Practical Example,
• Under-documented Kubernetes Security Tips,
• Signing and Automating Policy Exceptions with Kyverno,
• Supply Chain Security on Amazon Elastic Kubernetes Service (Amazon EKS) using AWS Key Management Service (AWS KMS), Kyverno, and Cosign,
• Kubernetes Security Optimisation: SecOps Best Practices for Robust Container Platforms,
• Policies as Code in Kubernetes using jsPolicy,
• When K8s pods are stuck mounting large volumes,
• WebAssembly on Kubernetes: everything you need to know,
• Kubernetes 1.27 – What’s new?
• Vcluster to the Rescue,
• Architect event-driven autoscaling for serverless Java with Kubernetes,
• Kubernetes Patterns: The path to cloud native,
• Kubernetes in Kubernetes with vcluster,

OpenShift:

• Ask an OpenShift Admin (E97) | Control Plane Machine Sets; Infra node management (119min),
• OpenShift 4.12 Traffic Analysis with ElastiFlow,
• Schedule announced for OpenShift Commons Gathering EU April 18,
• Access k8s API from POD without automountServiceAccountToken option enabled,
• Provisioning OpenShift clusters using GitOps with ACM,
• Configuring Openshift cluster with ApplicationSets using Helm+Kustomize and ACM Policies,
• How JBoss EAP 8 Beta simplifies external database config,
• Deploy a Kafka Connect container using Strimzi,
• How to access the Developer Sandbox for Red Hat OpenShift,
• Try Camel K in the Developer Sandbox for Red Hat OpenShift,
• Application Data Replication,
• Implement digital signatures to verify software supply chain integrity,
• Scaling Memory for High-Performance Workloads: Huge Pages and Transparent Huge Pages in OpenShift,
• Openshift Local (aka CRC) install and customize on Fedora (any Linux),
• How API burn rate alerts are calculated in Red Hat OpenShift,

Days Of DevOps – OpenShift:

• What does Red Hat OpenShift bring to the party? An Overview
• Understanding the OpenShift Architecture, Installation Methods and Process
• Deploying Red Hat OpenShift on VMware vSphere
• Deploying applications and getting a handle on Security Constraints Context (SCC)
• Looking at OpenShift Projects – Creation, Configuration and Governance
• Understanding Authentication, Role-Based Access Control (RBAC) and Auditing in Red Hat OpenShift: Control and Secure Your Cluster
• Compliance and Vulnerability Scanning provided by Red Hat OpenShift Operators

Containers:

• Automate container and pod deployments with Podman and Ansible,
• 5 things to know about Podman Desktop for a Docker user,
• Release Notes – Podman Desktop 0.13,
• Looking for a k3OS Alternative? Choosing a Container OS for Edge K8s,
• Copying Container Images Between Container Registries,

Service Mesh:

• Istio service mesh doyen departs Google, touts Ambient Mesh,

RHEL:

• Ansible Validated Content: Introduction to infra.osbuild Collection,
• How to configure SOAP web services with Apache Camel,
• The developer’s guide to Red Hat Summit 2023,
• Top new features in Red Hat Enterprise Linux 8.8 and 9.2 Beta,
• Red Hat Customer Portal launches new UX for search,
• Ansible Automation Platform … You’re using it wrong,
• Automate PostgreSQL database deployment using RHEL System Roles,
• Update and upgrade JBoss EAP with Ansible,
• What’s New: Cloud Automation with amazon.cloud 0.3.0,

Certifications:

• How to pass the Certified Kubernetes Security Specialist exam with a flying score?

Miscellaneous:

• Application modernization: Effectively building and testing changes to existing software,
• Microsoft’s CBL-Mariner Linux Distribution Continues Cultivating More Packages,
• How to secure microservice applications with role-based access control? (1/7),
• How to secure microservice applications with role-based access control? (2/7),
• How to secure microservice applications with role-based access control? (3/7),
• Introducing Microsoft Security Copilot: Empowering defenders at the speed of AI,
• Amazon just opened up its Sidewalk network for anyone to build connected gadgets on,
• JVM Performance Comparison for JDK 17,
• GCompris 3.2 release announcement,
• How to work with a list of dictionaries in Ansible,
• 4 essentials to prevent OS command injection attacks,
• Automate Fedora IoT configuration on a Raspberry Pi 4 with Ansible,
• Display your application data with Streamlit,
• Achieve multiactive data replication in PostgreSQL with Spock,
• Introducing Socket AI – ChatGPT-Powered Threat Analysis,
• Join us at ArgoCon EU,
• Do advanced Linux disk usage diagnostics with this sysadmin tool,
• Monitor your infrastructure with Streamlit,
• A leaner <iostream> in libstdc++ for GCC 13,
• Growth of AI Through a Cloud Lens.

Kubernetes:

• Managing many Helm Charts with Kluctl,
• Kubernetes FinOps: A Platform Engineer’s Perspective,
• From Pod Security Policies to Pod Security Standards – a Migration Guide,
• Understand the difference between Deployments and ReplicaSet,
• Kubernetes: DaemonSets,
• Blue-Green Deployment using Kubernetes,
• kcp: Kubernetes-like control plane,
• Is Cluster API Really the Future of Kubernetes Deployment?
• How To Inject Secrets in Pods To Improve Security with Hashicorp Vault in 5 Minutes,
• Shhhh… Kubernetes Secrets Are Not Really Secret!
• Installation and integration of Hashicorp Vault on Kubernetes,
• In Whom We Trust,
• An OPA Gatekeeper gotcha when enforcing policy on all resource kinds,
• etcdadm: a command-line tool for operating an etcd cluster,
• Kubernetes Removals and Major Changes In v1.27,
• Helm for Kubernetes. GitOps with Argo CD,
• Let’s talk about anonymous access to Kubernetes,
• Trivy-Operator – Improve Container Runtime Security,
• Where does the kubelet mount volumes?
• How to use Kubernetes events for effective alerting and monitoring,
• Popeye: a Kubernetes cluster resource sanitizer,
• GitOps: Multi-Tenancy with Argo CD,
• Getting Started With Falco,
• Microsoft Adds Support for Pod Sandboxing to Azure Kubernetes Service,
• Kubernetes Meets Event-Driven Ansible,
• Liveness Probes: Feel the Pulse of the App,
• Network policies are not the right abstraction (for developers),
• A container with common utilities for debugging your cluster,
• Let’s Encrypt Certificate using Cert-Manager on Kubernetes (HTTP Challenge),
• Vault with Secrets Store CSI Driver on Kubernetes,

OpenShift:

• Your guide to TAP devices in OpenShift pods,
• Your guide to VLANs based on container namespaced interfaces in OpenShift pods,
• OpenShift/Kubernetes Chaos Stories,
• Azure Red Hat OpenShift releases multi-version support, OpenShift 4.11 for ARO and more,
• Agent-based OpenShift installation,
• Openshift Essentials and Modern App Dev on Kubernetes,
• From Single Node to Multi-Node – Building a Resilient OpenShift Home Lab,
• Guide: Install OKD 4.12 using IPI on Nutanix CE 2.0,
• How to easily deploy OpenShift on Azure using a GUI, Part 1,
• How to easily deploy OpenShift on Azure via GitOps, Part 2,
• How to enable cross-cluster networking in Kubernetes with the Submariner add-on,
• New reference architecture: Deploying Ansible Automation Platform 2 on Red Hat OpenShift,
• OpenShift compared to the Sidero Platform,
• IPv6 in Kubernetes & OpenShift,
• A Guide to multi-cluster GitOps with Policy Generator and Kustomize,
• A Guide to OpenShift Compliance Operator Best Practices,
• A guide to Kubeflow, MPI and OpenFOAM with OpenShift Pipelines,
• GitOps for organizations: provisioning and configuring OpenShift clusters automatically,
• Save power with per-pod power management for latency-sensitive workloads,
• How I created a Red Hat OpenShift cluster on tiny hardware,
• How to gather baseline metrics on Kubernetes resource utilization,

Containers:

• Container security fundamentals part 2: Isolation & namespaces,
• Top 6 Threat Detection Tools for Containers,
• Container Security Checklist: From the image to the workload,
• Bit-for-bit reproducible builds with Dockerfile,
• Storing sensitive data using Podman secrets: Which method should you use?
• Hirte: A new state machine for managing systemd based services and containers on multi-node systems,
• How to create multidomain web applications with Podman and Nginx,
• Podman machine for Microsoft HyperV – Step 1,
• Build Your Own Grype Database,
• 10 tips for writing secure, maintainable Dockerfiles,

Service Mesh:

• Service Mesh — Istio vs Linkerd,
• Understanding Istio and Open Policy Agent (OPA),
• How Kiali caches Prometheus data,
• Traffic in ambient mesh: Istio CNI and node configuration,
• Traffic in ambient mesh: Redirection using iptables and GENEVE tunnels,
• Traffic in ambient mesh: Ztunnel, eBPF configuration, and waypoint proxies,
• Kiali releases 1.58 to 1.65: Features update,

RHEL:

• 4 good habits for building Ansible Automation Platform execution environments,
• How to use automation controller to install MS SQL,
• Enhancing/Maximizing your Scaling capability with Automation Controller 2.3,
• A tutorial on Middleware Automation Collections,
• Automate execution environment builds with Ansible Automation Platform,
• Red Hat Satellite 6.11.5 has been released,
• Supply chain optimization,
• The supply chain optimization imperative,
• A sysadmin’s guide to SELinux: 42 answers to the big questions,
• Red Hat Donates Kepler Tool for Tracking Power Usage to CNCF,
• Build a golden image for your RHEL homelab with Image Builder,
• Optimizing development with the time to merge tool,
• Red Hat Named a Leader in Infrastructure Automation by Industry Research Firm,
• Developing your RHEL image builder strategy,
• Red Hat Summit 2023 session catalog and agenda builder now available,
• How to back up and restore Red Hat Ansible Automation Platform,
• How to deploy RHEL in the cloud: Pay as you go vs. bring-your-own-subscription,

Certifications:

• OSCP Reborn – 2023 Exam Preparation Guide,
• Curated list of hacking environments where you can train your cyber skills legally and safely,
• Passing the CKAD: My Experience and Study Tips,
• Passing the CKS exam: My Experience and Study Tips,
• Tips for passing your next IT certification exam,
• OpenShift Interview Questions,

Miscellaneous:

• Open Policy Agent v0.50.0 release announcement,
• Kafka and Its Alternatives: A high-level comparison of Proprietary and Open-Source Solutions,
• Handle exceptions in Ansible Playbooks with block and rescue,
• How to install Fedora IoT on Raspberry Pi 4,
• How to Check SRIOV NIC Card and Map Network Interface Name which is using it?
• Announcing Fedora Linux 38 Beta,
• Fedora 38 Beta now available,
• GPT-4 overview,
• How to cache Ansible facts with MongoDB,
• Amazon Linux 2023, a Cloud-Optimized Linux Distribution with Long-Term Support,
• Announcing TypeScript 5.0,
• Endor Labs Station 9’s Top 10 Open Source Security Risks,
• You’ll Soon Be Using Vulnerability Exploitability eXchange,
• SLSA++: a Survey of Software Supply Chain Security Practices and Beliefs,
• Google Perspectives on Security Volume One: Securing Software Supply Chains,
• Linking Traces with Continuous Profiling using Pyroscope,
• Bringing Rust to the Xen Project,
• ChatGPT Now Available in Preview on Microsoft’s Azure OpenAI Service,
• Cohere vs. OpenAI in the Enterprise: Which Will CIOs Choose?
• Rust Support Is Being Built into the GNU GCC Compiler,
• Create a libvirt network with Open vSwitch,
• Providing Terraform with that Ansible Magic,
• Introducing wazero from Tetrate,
• How to investigate 7 common problems in production (nodejs),
• 7 steps for implementing security automation in your IT architecture,
• How to enable OpenTelemetry traces in React applications,
• NetworkManager: Limiting Bond Subordinate devices by MAC Address,
• Test GitHub projects with GitHub Actions and Testing Farm,
• Orange Pi 5 Is A Great & Very Fast Alternative To The Raspberry Pi 4,
• Use sysfs to restart failed PCI devices (WiFi cards, sound cards, etc.).

Kubernetes:

• odo, a tool to simplify development on Kubernetes,
• The Truth about “kubectl get all”,
• Introducing KWOK: Kubernetes WithOut Kubelet,
• Preserving Authorship in a GitOps World with Kyverno,
• Secure your CI/CD Pipelines with Sigstore and Kyverno — Signing and Verifying Image,
• Six critical blindspots while securing Argo CD,
• Restricting cluster-admin Permissions,
• Policies as Code in Kubernetes using jsPolicy,
• Kubernetes traffic discovery,
• Top 10 most used policies for Kyverno,
• Streamlining Kubernetes Management with Kyverno and ArgoCD,
• Cilium for Kubernetes networking: Why we use it and why we love it,
• How to architect an application for portability with a Kubernetes platform,
• My first experience with Kyverno,
• Exploring ephemeral containers in kubernetes,
• Getting To SLSA Level 2 with Tekton and Tekton Chains,
• Open-source tools for securing your kubernetes cluster,
• k8s.gcr.io Redirect to registry.k8s.io – What You Need to Know,
• The Good and the Bad of Kubernetes Container Orchestration,
• KubeEdge – CNCF’s First SLSA 3 Project,
• AKS vs EKS vs GKE,
• Our advice for configuring Knative Broker for Apache Kafka,

OpenShift:

• Deploying Helm-Based ACM Applications,
• Unlocking value with the Silicom Time Sync Operator,
• GPU instance types available for ROSA,
• Running Knative services on AWS spot instances,
• Using Let’s Encrypt certificates on managed clusters with OpenShift Hive,
• A breakdown of using GitOps with Azure Red Hat OpenShift,
• Tekton & Shipwright – The Future of Building in OpenShift?
• Connecting GitHub Container Registry with Azure Red Hat OpenShift,
• 5 global environment variables provided by OpenShift GitOps,
• Back To Where It All Started – Let’s Build an OpenShift Home Lab,
• Effortlessly And Efficiently Provision OpenShift Clusters With OpenShift Virtualization,
• How to use Confidential Containers without confidential hardware,
• Customize your Kubernetes – OpenShift gets composable,
• MuleSoft workloads on OpenShift Container Platform (OCP),
• Extracting TLS CA Certificates from Kubeconfig File,
• Guide: Install OpenShift 4.12 using IPI on Nutanix CE 2.0,
• Keeping the SAP core clean with ROSA,
• How to do blue/green and canary deployments with Argo Rollouts,

Containers:

• What is Podman Desktop? A developer’s introduction,
• PCI Container Orchestration Guidance for Kubernetes,
• Introduction to Podman,
• Announcing public preview of confidential containers on Azure Container Instances,
• Troubleshooting Podman Machine,
• Trivy v0.38.0 is released!
• How RHEL image builder has improved security and function,
• Deploying a multi-container application using Podman and Quadlet,
• Why I Will Never Use Alpine Linux Ever Again,
• Containerd 1.7.0 release announcement,
• 5 Podman features that can benefit your IT architecture,
• How to run containers on Mac with Podman,

Service Mesh:

• Linkerd and Ingress Controllers: Bringing the Outside World In,
• The Future of Service Mesh is Networking,
• Merbridge overview,
• What Is mTLS?
• WTF is Cilium?
• Istio Ambient Service Mesh Merged to Istio’s Main Branch,
• Istio service mesh, a start to finish tutorial with Side Car architecture and an analysis + comparison of the Ambient mesh architecture,

RHEL:

• The State of Customer and Partner Experience at Red Hat 2022: See your feedback in action,
• How the Kepler project is working to advance environmentally-conscious efforts,
• Red Hat Smart Management for your Red Hat OpenStack Platform cloud,
• Beyond the STIG: What does “security leadership” really mean?
• Delivering highly resilient IT operations with event-driven automation,
• Red Hat Satellite 6.12 and remote execution: Now featuring pull mode,
• 6-step tutorial on installing Ansible 2.3 on RHEL 9.1,
• CentOS Community Newsletter, February 2023,
• Containerizing SAP HANA Express on Red Hat Enterprise Linux,
• RHEL 8 QCOW KVM,
• RHEL 9 QCOW2 Guest Images in KVM,

Certifications:

• CKAD Exercices,

Miscellaneous:

• Get Started with eBPF,
• Introducing Service Weaver: A Framework for Writing Distributed Applications,
• How to cache Ansible facts with Redis,
• Troubleshoot RDS connectivity issues with Ansible validated content,
• 6 things architects need to know about 6G wireless networks,
• 4 cool new projects to try in Copr for March 2023,
• The most important Linux commands that nobody teaches you,
• Software Supply Chains Achilles Heel,
• How to create NFS share on Azure Blob Storage,
• How to use a YubiKey with Fedora Linux,
• 3 fundamental tools to troubleshoot Linux performance problems,
• How to configure an Ansible dynamic inventory for virtual machines,
• Overhauling memory tuning in OpenJDK containers updates,
• How to encrypt Bash shell variables with Ansible Vault,
• Microsoft is harnessing the power of the cloud to make the promise of quantum at scale a reality,
• Announcing Rust 1.68.0,
• Using ansible_vault_setup.sh to Set Up a Vault Password for Ansible-Navigator,
• The Fedora Project FOSDEM 23 Experience,
• Fedora Linux editions part 3: Labs,
• Big data basics: What sysadmins need to know,
• Inject external data in policy evaluations with Conftest.

Kubernetes:

• Configuring AKS to read secrets and certificates from Azure KeyVaults,
• GitOps for multi-cluster K8s environments,
• What David Flanagan Learned Fixing Kubernetes Clusters,
• An Introduction to Talos Linux: The New Kubernetes Operating System,
• Which JDK to Choose on Kubernetes,
• Kyverno, Kubernetes Native Policy Management,
• Multiple sources for Argo CD applications,
• Claudie: Cloud-agnostic managed Kubernetes,
• Cgroups – Deep Dive into Resource Management in Kubernetes,
• Kubernetes Security Compliance Frameworks,
• ArgoCD-vault-eplacer: An Argo CD plugin to replace placeholders in Kubernetes manifests with secrets stored in Hashicorp Vault,
• Kyverno Pt. 1: Deep Dive (37min),
• Kyverno Pt. 2: Deep Dive (47min),
• Cosign 2.0 Released!
• Amazon EKS Upgrade Journey From 1.24 to 1.25,
• Change OpenShift Data Foundation OSDs disk flavor (dimension),
• KubeShark: Wireshark for Kubernetes,
• Lesson learned while scaling Kubernetes cluster to 1000 pods in AWS EKS,
• Create and Release Your Own Helm Chart,
• Scanning container vulnerabilities and publishing the results using Trivy in Azure DevOps,

OpenShift:

• Managing Secrets in Kubernetes (54min),
• Ask an OpenShift Admin (E93) | Openshift Logging and Observability (67min) / slides,
• Episode XII: Scalable & Exposable iPAM with Multus,
• How to deploy JBoss EAP for Red Hat OpenShift Service on AWS (ROSA),
• Your Guide to security hardening OpenShift using the compliance operator,
• Updating the Pull Secret to Access an OpenShift Internal Registry,
• As time passes, our IT World is continuously changing…,
• External Cloud Provider Support in OpenShift on OpenStack,
• Scaling Model Serving with Red Hat OpenShift Data Science,
• Managing OCP Infrastructures Using GitOps (Part 3),
• Benchmarking Red Hat OpenShift Virtualization for latency-sensitive workloads,
• Run .Net 7 code on Red Hat OpenShift Container Platform on MacOS,
• OpenShift to MicroShift Resource Mapping,
• Serving and Monitoring Models across Clusters,
• 5 Reasons to Upgrade from OpenShift Container Platform to OpenShift Platform Plus,
• Dynamically manage Kubernetes applications to improve network latency,
• Installing NGINX Ingress Operator on Azure RedHat OpenShift,
• Red Hat collaborates with NVIDIA to offer GPU-based 5G vRAN solutions with Red Hat OpenShift,
• Using GitOps to Deploy Bare Metal OpenShift Hosted Control Plane Clusters,
• Connect Prometheus alerts to IT service management (ITSM) workflows,
• How to use continuous integration with Jenkins on OpenShift,
• How to employ continuous deployment with Ansible on OpenShift,
• How a manual intervention pipeline restricts deployment,

Containers:

• Configure a container to start automatically as a systemd service,
• Build a Grafana dashboard to visualize data using Ansible and Podman,
• Container security fundamentals: Exploring containers as processes,

Service Mesh:

• Ambient mesh available in Istio’s main branch,
• Performance Optimization for Istio,
• How to integrate Istio with AWS Private Certificate Authority,
• Experiment: Migrating OpenTracing-based application in Go to use the OpenTelemetry SDK,

RHEL:

• New warnings and errors in Clang 15,
• Red Hat Ansible Automation Platform now available on Google Cloud Marketplace,
• 5 steps to install Microsoft SQL on RHEL8 via automation,
• Security by design: Security principles and threat modeling,
• Using Red Hat Insights as a source of events for Event-Driven Ansible automation,
• Sustainability, the cloud native way,
• Red Hat Introduces New Partner Subscriptions to Enable Ecosystem Innovation and Customer Success,
• Learn how to use the Red Hat Enterprise Linux (RHEL) web console,
• 21 things every Red Hat Satellite user should know,
• 5G architecture: Frequently asked questions answered,
• Cloud RAN mobile architecture: 6 questions answered,
• Mastering Git with university students,

Miscellaneous:

• Migrating to AWS CloudFront,
• NAT between identical networks using VRF,
• Automate your SSO with Ansible and Keycloak,
• How we redesigned the Keycloak UI to increase efficiency,
• Microsoft Pluton TPM CRB Functionality Merged Into Linux 6.3,
• Free eBook: Learn Vim the Smart Way,
• Free eBook: Rust Atomics and Locks,
• The complete guide to OpenTelemetry in Golang,
• Our advice for installing Node.js modules using npm registry,
• Episode XIII: 6G, Field of Dreams,
• Network automation with Ansible validated content,
• 6 tutorials for modern app development,
• rpmdistro-repoquery: a cross-distribution repoquery tool,
• Avoiding pitfalls when using cURL in CI/CD pipelines,
• EXT4 Scores A Nice Direct I/O Performance Improvement With Linux 6.3,
• Maximize your hybrid cloud mastery with the Ansible validated content.

Kubernetes:

• Protect Your Mission-Critical Pods From Eviction With PriorityClass,
• Sigstore’s cosign and policy-controller with GKE, Artifact Registry and KMS,
• Overview of Azure Kubernetes Services Networking Models,
• What is a kubeconfig file?
• Kubewarden UI 1.0.0 is released!
• How to verify container images with Kyverno using KMS, Cosign, and Workload Identity,
• kubeaudit helps you audit your Kubernetes clusters against common security controls,
• First post: Creating a simple web app to list kubernetes resources,
• Saving costs in Google Kubernetes Engine using Spot VMs,
• Under-documented Kubernetes Security Tips,
• Best Practices for Java Apps on Kubernetes,
• K8s ASA: Watching and Caching,
• Running CockroachDB TPC-C benchmark on GKE,
• Notes from Cloud Native SecurityCon 2023,
• Temporary Policy Exceptions with Kyverno,
• Enforcing Kubernetes Best Practices using Kyverno and Argo CD,
• A Guide to Running Sigstore Locally,
• Testing Production Kubernetes Controllers,
• How To Inject Secrets in Pods To Improve Security with Hashicorp Vault in 5 Minutes,
• Cilium 1.13 – Gateway API, mTLS datapath, Service Mesh, BIG TCP, SBOM, SNI NetworkPolicy,
• Deploy RabbitMQ with Kubernetes and Persistent Volumes,
• Kubernetes Infrastructure At Medium,

OpenShift:

• Check Out the new Network Observability Support in OpenShift 4.12,
• Running kubectl from pod kubernetes/Openshift,
• Streamline creating container instances with Red Hat OpenShift and Git,
• Establish secure routes and TLS termination with wildcard certificates,
• Azure Red Hat OpenShift for Microsoft Azure Government Now Available,
• Introducing a Game-Changing New Way to Deploy OpenShift Clusters in Disconnected Environments,
• In-depth OpenShift Monitoring for 4.12,
• Moving beyond digital transformation with Apollo GraphQL and Red Hat OpenShift,
• Tekton vs. Jenkins: What’s better for CI/CD pipelines on Red Hat OpenShift?
• How JBoss EAP 8-Beta makes deployment on OpenShift easier,
• Use Keycloak SSO and TLS to build secure routes,
• Introducing: Control plane machine management and 1-click scaling,
• Red Hat Advanced Cluster Management for Kubernetes 2.7 maintains its commitment to security at the edge,
• OpenShift 4.12: Ingress Node Firewall Operator,
• Insights recommendations as alerts,
• Application Tracing using Open Telemetry and Jaeger on Openshift,
• ACM Add-Ons (VolSync),
• Quarkus Application Monitoring using Prometheus on Openshift,
• How to use the Topology Aware Lifecycle Manager,
• Announcing GCP  support for OpenShift Window Containers,
• ACM Add-Ons (Submariner),
• 3scale — Publishing an API as Custom Resource Definition,
• Securing APIs in Red Hat 3scale API Management with Red Hat Single Sign-On,
• Bring Your Own Directory Service,
• How to run Camel on Spring Boot in Red Hat Developer Sandbox,
• OpenShift 4 Lifecycle Enhancements: Introducing an extended update support phase,
• Navigating Kubernetes/OpenShift API deprecations and removals,
• Meet Red Hat Device Edge with MicroShift,
• Debugging Prometheus on OpenShift the Hard Way,
• HowTo install Loki [S3 persistent storage] & NetObserv Operator on Openshift 4 (4.10–4.12),
• How to use Loki from Grafana Cloud with Openshift Network Observability,
• Identifying recently started pods with Prometheus and Grafana on OKD,
• How to Configure an OpenShift node as an IPv6 router in an O-RAN LLS-C1 configuration,
• How to accelerate workloads with NVIDIA GPUs on Red Hat Device Edge,
• Create Rsyslog Service in Kubernetes,
• Juniper Networks’ CN2 Achieves Red Hat OpenShift Certification,
• SNO on Spot,
• Build smaller container images using S2I,
• How we provision Ansible Automation Platform in 10 minutes with a custom Operator,
• Persistent data on Red Hat OpenShift at the edge,

Containers:

• How to deploy Microsoft SQL Server 2022 containers on Red Hat Enterprise Linux (Part 2),
• The container name resolution conundrum,
• Buildah version 1.26.0 Release Announcement,
• Podman checkpoint,
• Remote container development with VS Code and Podman,
• Rootless Systemd in Rootless Podman,
• Default Podman network subnets,
• How to use new container events and auditing features in Podman 4.4,
• Make systemd better for Podman with Quadlet,
• Release Notes – Podman Desktop 0.12,

Service Mesh:

• Solo.io Gloo Platform: Application Networking Introduction (26min),
• Solo.io Gloo Platform: Application Networking in the Real World (35min),
• Solo.io Sidecar-Less Service Mesh (23min),
• What’s a Zero-Trust Tunnel? Exploring Security and Simpler Operations with Istio Ambient Mesh (37min),
• Service Mesh for Developers,
• Use service mesh and mTLS to establish secure routes and TLS termination,
• SPIRE: A case for attestable workload identity,
• How the Istio Service Mesh Became Critical Infrastructure for Cloud Native Applications,
• eBPF enhanced HTTP observability — L7 metrics and tracing,
• Announcing Istio 1.17,
• gRPC to REST transcoding with OpenShift and Service Mesh,

RHEL:

• Bringing faster updates to Ansible Automation Platform,
• Securing open source development: A supply chain perspective,
• Red Hat Satellite 6.12.2 has been released,
• Automate Microsoft SQL Server Always On availability groups on Red Hat Enterprise Linux,
• Planning our migration to Ansible Automation Platform 2,
• Manage automation controller Configuration as Code (CaC) with Ansible,
• What are RHEL in-place upgrades?
• What’s new in the web console in RHEL 9.1 and 8.7,
• Migrating to Ansible Automation Platform 2: How we did it,
• Manage automation controller active and passive multisite architecture with Ansible,
• Enable Extensions on Azure Arc Connected Machines with Ansible Automation Platform,
• How I built a homelab with Red Hat Enterprise Linux (RHEL),
• How to architect multicluster DevSecOps,
• SAP automation: Integrating NetApp and SAP LaMa with Red Hat Ansible Automation Platform,
• How to convert CentOS Linux to RHEL in-place on AWS,
• Project Wisdom Demo: AI-assisted Ansible (6min),

Certifications:

• Red Hat Updates Certification Exam Retake Policy to Broaden the Red Hat Certified Community,
• Taking education upstream with Red Hat Academy,

Miscellaneous:

• The Future of Observability,
• AWS Multi-Region Fundamentals,
• How to improve application security using _FORTIFY_SOURCE=3,
• Google announces the response to ChatGPT: Bard,
• Deploy Quarkus Applications with Databases in Kubernetes,
• Can ChatGPT write Ansible playbooks that work?
• Linux 6.1 Officially Promoted To Being An LTS Kernel,
• Creating custom Event-Driven Ansible source plugins,
• Advanced Testing with Quarkus,
• Test Ansible using policy as code with Conftest,
• Introduction to YAMLPath,
• Create encrypted backups of your workstation with an Ansible playbook,
• How debugging Go programs with Delve and eBPF is faster,
• Apache Kafka Patterns and Anti-Patterns,
• 5 things developers should know about edge computing,
• Canonical Promotes Ubuntu’s Real-Time “RT” Kernel To General Availability,
• A comparison of ActiveMQ and Kafka,
• Horizontally scaling Kafka consumers with rendezvous hashing,
• How Rust went from a side project to the world’s most-loved programming language,
• Working with Btrfs – Compression.

Kubernetes:

• Be Lean, Go Far: leveraging Kubernetes for an elastic right-sized platform,
• How to generate code using Fabric8 Kubernetes Client,
• Addressing Bandwidth Exhaustion with Cilium Bandwidth Manager,
• OpenEBS ZFS CSI Driver: a CSI driver for provisioning Local PVs backed by ZFS,
• Kubernetes Capacity and Resource Management: It’s Not What You Think It Is,
• Deploy s3gw in Digital Ocean,
• Manage Secrets on Kubernetes with ArgoCD and Vault,
• Kubernetes Cluster Configuration and Vulnerability Scan,
• Backup, Restore and Migrate Kubernetes Cluster resources using Velero,
• Progressive Rollouts in Kubernetes,
• Official benchmarking tool for etcd clusters,
• Continuous Deployments of Kubernetes Applications using Argo CD GitOps & Helm Charts,
• The life of a DNS query in Kubernetes,
• What Are the Hardest Parts of Kubernetes to Learn?
• Kubernetes Authentication – Comparing Solutions,
• Crossplane v1.11 is now available!
• Kubernetes OWASP Top 10: Insecure Workload Configurations,
• Comparing the Top Eight Managed Kubernetes Providers,
• Kyverno 1.9 Released,
• 6 kubectl plugins you must try,
• How to configure Kubernetes memory limits for Java application,
• 10 Things I wish I’d known before building a Kubernetes CRD controller,
• GitOps: Multi-Tenancy with Flux and Kubernetes,
• Auditing RBAC – Redux,

OCP 4.12:

• Red Hat Adds New Security and Compliance Capabilities to Red Hat OpenShift,
• What’s New in Red Hat OpenShift 4.12?
• 3 improvements to the OpenShift 4.12 developer experience,
• Red Hat OpenShift Update Extends Reach of Operators for Kubernetes,
• Red Hat gives an ARM up to OpenShift Kubernetes operations,
• What’s New in Red Hat OpenShift Monitoring 4.12 & Logging 5.6?
• Introducing the Security Profiles Operator for OpenShift,

OpenShift:

• OpenShift Pipelines 1.9 Released,
• How to deploy a web service on OpenShift,
• Enabling Kubernetes feature gates in OpenShift,
• What’s New In Red Hat Advanced Cluster Security,
• Deploying Red Hat OpenShift Service on AWS,
• Planning your migration from Red Hat OpenShift 3 to 4,
• Run the Canary Deployment pattern on Kubernetes,
• AI on OpenShift,
• Advanced Cluster Management Updates (Part 1 of 2),
• Advanced Cluster Management Updates (Part 2 of 2),
• Managing OCP Infrastructures Using GitOps (Part 2),
• Lost your SSH-access to your Openshift nodes? This is what you have to do,
• Reference Architecture: Red Hat OpenShift Container Platform on Lenovo Servers,
• 4 steps to run an application under OpenShift Service Mesh,
• 3 ways to encrypt communications in protected environments with Red Hat OpenShift,
• Episode XI: Latency-Driven Service Orchestration,
• Expanding Your Openshift Cluster’s VLAN: A Step-by-Step Guide for Overcoming IP Address Limitations,
• Dynamic Plugins Now Available,
• Developing an OpenShift Dynamic Console Plugin,

OpenShift peer-pods:

• Red Hat OpenShift sandboxed containers: Peer-pods solution overview,
• Red Hat OpenShift sandboxed containers: Peer-pods technical deep dive,
• Red Hat OpenShift sandboxed containers: Peer-pods hands-on,

Containers:

• It’s Time to Forget About Docker,
• Containers without Docker (podman, buildah, and skopeo),
• Containerize your assembly language code,
• Understanding rootless Podman’s user namespace modes,
• Universal Base Images FAQ updated,
• Release Notes – Podman Desktop 0.11,
• HPC containers at scale using Podman,
• Running WebAssembly Workloads on Container Runtimes,
• Podman v4.4, Buildah v1.29 released!
• Buildah version 1.29.0 Release Announcement,

Service Mesh:

• Service Mesh Deployment Best Practices for Security and High Availability,
• Istio publishes results of 2022 security audit,
• mTLS and Linkerd,
• Unlocking the Power of Service Mesh – Part 1, Part 2, Part 3, Part 4, Part 5,

RHEL:

• Stratis Storage 3.5 Released With Encrypted Cache Support,
• Introducing the new Red Hat Enterprise Linux download experience,
• How to use Red Hat Insights malware detection service,
• Getting started with RHEL for Workstations on AWS,
• How to deploy Microsoft SQL Server 2022 containers on Red Hat Enterprise Linux (Part 1),
• Beyond the STIG: What hardening really means,
• Ansible Automation Platform 2.3 Configuration as Code Improvements,
• Set up GitLab CI and GitLab Runner to configure Ansible automation controller,
• Set up base configurations for Ansible automation controller using GitLab CI,
• Red Hat Announces Intent to Reach Net-Zero Operational Greenhouse Gas Emissions by 2030,
• Ansible Automation Platform Moving Towards Smarter Inventory,
• CSAF VEX documents now generally available,
• Red Hat Launches Ansible Automation Platform on Google Cloud,

Certifications:

• The Ultimate Guide to obtaining the Certified Kubernetes Administrator (CKA),

Miscellaneous:

• Fundamentals of Network Automation with Ansible Validated Content using the network.base collection,
• How ChatGPT will change cybersecurity,
• Measuring your DevSecOps journey,
• How to install containerized applications on Fedora Silverblue,
• MinIO Replication Best Practices,
• Workshop Getting started with Camel Quarkus,
• ip vs. ifconfig: Which do you use?
• Using .NET 7 on Fedora Linux,
• 5 great Perl scripts to keep in your sysadmin toolbox,
• Distributed tracing with OpenTelemetry in your Go/Python microservices,
• error: rpmdbNextIterator: skipping in Fedora 38+,
• Automatically decrypt your disk using TPM2,
• How we added support for the C++23 assume feature in GCC,
• From CSVs to live dashboards: How we modernized our data access platform,
• CVE-2022-4254: FreeIPA PKINIT certificate mapping vulnerability,
• Putty-like SSH port forwarding on Linux and MacOS,
• General availability of SLSA 3 Container Generator for GitHub Actions,
• Announcing Issuance of Federal Information Processing Standard (FIPS) 186-5, Digital Signature Standard,
• Enable organization-level CI/CD controls in Ansible automation controller using configuration as code,
• 3 questions to guide your quantum applications strategy,
• Fedora now has frame pointers.