Flathub and Red Hat
-
Robert McQueen: Flathub: Pros and Cons of Direct Uploads
I attended FOSDEM last weekend and had the pleasure to participate in the Flathub / Flatpak BOF on Saturday. A lot of the session was used up by an extensive discussion about the merits (or not) of allowing direct uploads versus building everything centrally on Flathub’s infrastructure, and related concerns such as automated security/dependency scanning.
My original motivation behind the idea was essentially two things. The first was to offer a simpler way forward for applications that use language-specific build tools that resolve and retrieve their own dependencies from the internet. Flathub doesn’t allow network access during builds, and so a lot of manual work and additional tooling is currently needed (see Python and Electron Flatpak guides). And the second was to offer a maybe more familiar flow to developers from other platforms who would just build something and then run another command to upload it to the store, without having to learn the syntax of a new build tool. There were many valid concerns raised in the room, and I think on reflection that this is still worth doing, but might not be as valuable a way forward for Flathub as I had initially hoped.
-
Red Hat Official ☛ Unveiling the Power of Automation: Introducing the latest VMware and Red Hat Ansible Certified Collection
Are useful in environments with multiple vCenter Servers or distributed infrastructures. They allow you to centrally manage and distribute content across different vCenter Servers, ensuring consistency and ease of management.
-
Red Hat Official ☛ Patch management needs a revolution, part 5: How open source and transparency can force positive change
There is an intersection between “compliance” and “security” but it’s wise to realize that compliance does not equal security. Compliance, when done well, can be a driving force in improving the processes and technologies in use in an environment to improve overall security posture. But, a focus on “check the box” security, which is compliance dressed up like security without a fundamental understanding of how security practices and processes should be applied to decrease risk in an environment, is detrimental. This is analogous to someone deciding that rotating passwords was a good idea and then 26 years later coming back and saying “well, that didn’t help.” It was expensive,
-
Red Hat Official ☛ Running Windows 11 and 2022 Server Virtual Machines in Red Hat OpenShift with persistent vTPM [Ed: ICBM helps Microsoft oppress computer and server users]
To support operating systems like Windows 11 that require a TPM, libvirt provides a virtual TPM (vTPM) that can be configured with a virtual machine (VM) to provide the appearance of a hardware TPM. Red Hat OpenShift Virtualization has supported vTPM as an option since Red Hat OpenShift 4.13, with the persistent storage capability added in OpenShift 4.14.