Researchers for the Security Intelligence Response Team at Akamai on Tuesday issued a high-risk threat advisory for XOR DDoS proliferation. The XOR DDoS Trojan is used to hijack Linux servers to build a botnet for distributed denial-of-service attacks with SYN and DNS floods, researchers tracking the malware said. The massive Linux-based botnet can take down websites under a flood of DDoS traffic.
Microsoft on Thursday announced that it is building its own Linux distribution to manage cloud networks. Through the Azure Cloud Switch, or ACS, Microsoft aims to help network operators rapidly add the network features they need, while avoiding changes that would increase risk and complexity, said Kamala Subramaniam, principal architect for Azure Networking.
Red Hat on Wednesday announced the release of Red Hat Enterprise Linux OpenStack Platform 7. Platform 7’s availability follows by three months the latest release of OpenStack. Key to its new features are improved deployment and management tools that simplify installation. The new feature set eases day-to-day management tasks. Platform 7 is based on the OpenStack community’s Kilo release.
Open source seeded the cloud, 451 Research found five years ago — and those seeds have grown. Open source now plays an even more prevalant and important role — not only in cloud computing, but also in other, related areas, such as big data, DevOps and application containers. One can consider any layer of cloud computing — Infrastructure as a Service, for example — and see the impact.
Suse Linux has announced a partnership to extend support for 64-bit ARM server processors. The goal is to give Suse Linux Enterprise 12 users greater flexibility and cost efficiencies with respect to their infrastructures. This expansion makes available to seven partners a version of Suse Linux Enterprise 12 that lets them develop, test and deliver products to the market using 64-bit ARM chips.
The results of a recent survey on container usage trends suggest that a deployment surge is likely within the next two years — but also that companies have serious concerns about container security, certification and skills. The survey, commissioned by Red Hat and conducted by TechValidate, assessed enterprise adoption plans for application containers.
Red Hat and Samsung Business Services on Tuesday announced a strategic alliance to deliver the next generation of mobile solutions for the enterprise. The alliance, announced at the Red Hat Summit 2015, combines the strengths of each company — Samsung’s mobile device portfolio and Red Hat’s open source middleware, mobile and cloud technologies.
Linbit on Tuesday announced the release of DRBD9, its new distributed replicated block device product. DRBD9 provides enterprise Linux users with synchronous server storage replication including support for native remote direct memory access and OpenStack integration. “It was six years of work and an 80 percent code rewrite to make it happen,” said Linbit Business Development Manager Greg Eckert.
The community around Docker and containers is drawing interest from large enterprise and service provider end users, as well as involvement from dozens of vendors, including those pursuing various container alternatives. 451 Research has published some new research and analysis on this nascent open source software community in its latest long-format report.
Crowdstrike on Wednesday made public its discovery of yet another long-buried Linux vulnerability. “Venom,” as it has been dubbed, was unearthed by the firm’s senior security researcher, Jason Geffner. It is listed as vulnerability CVE-2015-3456. Venom exists in the virtual floppy drive code used by virtualization platforms based on QEMU, or quick emulator. It has been around since 2004.
EMC on Wednesday announced it will release its commercial ViPR software storage controller technology as an open source project called “CoprHD.” The ViPR software controller puts the control functionality and the data services into separate operational planes, allowing different data services to be layered onto a set of storage hardware products and cloud storage.
VMware last week released details about two new open source projects — Project Lightwave and Project Photon — that aim to bridge the divide between the company’s virtualization software and other vendors’ containers. Both projects integrate into VMware’s unified platform for the hybrid cloud, allowing the company to create a consistent environment for cloud-native and traditional applications.
Black Duck Software and North Bridge Venture Partners on Thursday published the results of The Ninth Annual Future of Open Source Survey. The number of companies using some open source products or developing software built with open source components is at an all-time high, it found. The results reflect the increasing enterprise adoption of open source and participation in the OSS community.
Red Hat last week made Red Hat Enterprise Linux 7 Atomic Host generally available, following a four-month live beta test. “The beta release was very successful,” said Lars Herrmann, senior director of product strategy at Red Hat. Feedback from customers and partners “helped us refine several features and tools” for the GA version. Atomic Host is a lean OS designed to run Docker containers.
Pivotal on Wednesday announced its decision to open source all of the core components of its big data platform, becoming the first big data industry player to do so. The company also announced its participation in the Open Data Platform, which seeks to encourage more enterprise collaboration, along with the adoption of modern, scalable data architectures.
Good Technology on Tuesday announced a merger of its app container and app ecosystem with the Samsung KNOX enterprise security platform for Android. The product merger is aimed at eliminating virus and malware concerns that come with Android adoption in the enterprise. The hardened security for Android targets the OS’s deployment with U.S. government and Department of Defense agencies.
Security questions recently have been raised about Docker, a promising technology for running applications in the cloud. Docker is an open source initiative that allows applications to be run in containers for flexibility and mobility only dreamt of in the past. “Since the 70s, programmers have been talking about reusable code and the ability to migrate applications,” noted IDC analyst Al Gillen.
Is OpenStack best deployed as a server distribution, a service from a cloud provider, or something else? At the OpenStack Summit in Paris last month, seven developers participating in a panel discussion failed to reach a consensus. One reason for the debate over deployment methodology is the lack of any clear product designation. OpenStack is more an entity than a product.
Four days after Shellshock was disclosed, Incapsula’s Web application firewall deflected more than 217,000 attempted exploits on more than 4,100 domains. The company recorded upwards of 1,970 attacks per hour, from more than 890 IPs around the world. Shellshock was expected to be far worse than the Heartbleed flaw, which was expected to impact about 17 percent of the secure Web servers worldwide.
We’re hearing more from vendors about how new features, functionality, rewrites and releases are being driven by customers — by their direct experience using the software and competing in their various industries. We’re also hearing from customers and users, including the enterprise market, that increasingly they are involved and thus empowered in open source software communities.