The hottest new version of kubernetes110 this year

  • Detail

The first new version of kubernetes 1.10 was released this year. Kubernetes, a hot container management platform, released its first revised version of kubernetes 1.10 this year. The first feature is that the volume plug-in of CSI (container STO, please feel free to use the rage interface) as the standard storage interface of kubernetes is also independent from kubernetes, so that third-party storage manufacturers can use or integrate it into third-party storage products. The local storage function has also entered the beta version

the first kubernetes 1.10 version of this year was released. The built-in container debugging mechanism that developers will love

kubernetes, a hot container management platform, released kubernetes 1.10 for the first time this year. The first feature is that the volume plug-in of CSI (container reciprocating single screw extruder's biggest feature is to realize the storage interface of high filling processing of different materials), which is to be used as the standard storage interface of kubernetes, is also independent from kubernetes, so that third-party storage manufacturers can use or integrate it into third-party storage products. The local storage function has also entered the beta version

secondly, it starts to support external voucher sources (alpha version), which also means that it can be integrated into Iam services of cloud providers or with self built voucher systems, such as AD. This is also the key mechanism to bring kubernetes clusters into the overall security management of the enterprise. The third key function is to switch and enable coredns during installation, which can become the service discovery function of kubernetes. It is currently in beta

in addition, the TLS bootstrap function has also entered the stable version. This function allows kubelet in the k8s cluster to automatically establish TLS security credentials to strengthen the security of container access. After entering the stable version, it can be used in more critical environments or formal environments

the new function that developers will love is the container debugging mechanism. Debugging is a trouble when developing container applications. In the past, you had to build your own container to install the container debugging tool. Now it is built directly in kubernetes, which can provide relevant debugging shell tools, and debug will also become one of the new instructions. However, it is still alpha version at present, and the debugging mechanism will not enter the stable version until the next 1.11 version

other minor updates, such as enhanced support for windows containers, can also support Hyper-V environment deployment on an experimental basis. Now you can also establish a pod security policy to manage the access of pods and containers in more detail

CNCF reveals the big survey of China's container market

recently, CNCF foundation announced the latest survey results of the development of China's container market. At present, 6% of respondents have deployed more than 5000 containers, and 60% of users have deployed 50 ~ 250 containers. Chinese container users are mostly used for development, and only 32% of respondents have used container technology in the formal environment

not surprisingly, kubernetes is the first choice for Chinese developers to manage containers, with 35% of respondents adopting it, but the proportion of using Microsoft azure container service to manage container clusters is also as high as 19%, ranking second. Docker swarm also has 16% users. In terms of container import difficulties, Chinese users believe that the complexity of use and deployment is the biggest challenge. Different from that, European and American users regard security as the biggest difficulty in deploying containers

in addition, this survey also examined the popularity of cloud providers in China. Alibaba cloud still ranks first (55%) in China's cloud platform market, AWS ranks second with 30%, while openstack cloud services rank third with 28%, Microsoft azure only 12%, and Google cloud platform only 6%

cncf open source releases the cross cloud CI platform to make kubernetes easier to support hybrid clouds

cncf foundation unveiled a cross cloud CI (continuous integration) platform that strengthens kubernetes at the open road conference. CNCF staff also showed how to use the CI platform to automatically distribute an ONAP system deployed on kubernetes to expand the load capacity of ONAP, an open source road service

Dan Kohn, executive director of CNCF, stressed that this free cross cloud CI platform can be used to accelerate the application of kubernetes clustering in hybrid Cloud Architecture. In terms of long-term goals, he pointed out that CNCF hopes to deploy any road service to kubernetes, so it needs to develop this kind of cross cloud deployment mechanism first

this cross cloud CI platform also provides a dashboard function, test system, and status repository server. Gitab is a major contributor to this cross cloud CI platform, and hashicorp also supports the development of configuration management tools. It is currently released under Apache 2.0 license

eight common ways to strengthen the security of kubernetes

techbeacon technology author recently sorted out eight common ways to strengthen the security of kubernetes. For example, the first is the suggestion from Maya kaczorowski, Google cloud Product Manager: completely close kubernetes' page user interface. The reason is that this page management interface uses a highly privileged account. For example, in Google's kubernetes engine service, this function has been disabled since version 1.7 to reduce the risk

other seven security enhancements, such as locking the management service, ensuring the closeness of the certificate location, using trusted content (such as trusted image file source), re establishing the image file after updating, never executing the container with root permission, making good use of the exclusive security mechanism of Linux container, encrypting kubernetes etcd, etc

cloud Devops platform cloudbees can also support openshift and provide advanced ci/cd services

enterprise level Devops service platform cloudbees recently announced that its enterprise version of Jenkins will support the red hat openshift container management platform. In addition, it can also support kubernetes through the Jenkins X project to reduce the number of VMS that need to be deployed

cloudbees CEO Sascha labourey estimated that after cloudbees Jenkins supports openshift, it can help enterprises connect Devops processes in series, especially the continuous delivery process (continuous other new mechanism of new medical materials and preparation technology us delivery) can be connected across the internal private cloud and public cloud. Cloudbees enterprise subscription service can provide 7-day x24 hour enterprise level Jenkins expert support

gitlab's continuous integration and delivery tool will support GitHub

gitlab, an enterprise code escrow service, has recently been revised. One of the most important changes is that continuous integration (CI) and continuous delivery (CD) also support external code repositories such as GitHub or bitbucket, and can be used for free until March next year

continuous integration refers to the synchronization of project changes to the trunk of the project, and continuous delivery is the process of converting code into usable software. These are originally the strengths of gitlab, while GitHub uses third-party services

the on-site wear experiment is to install the samples made of parts on the machine

this announcement means that gitlab users can create a ci/cd project connected to the GitHub code repository on this site. When the code is published to GitHub, gitlab will automatically execute ci/cd and send the results back to GitHub

a new helper of open source license management, GitHub released the open source suite dependency checking tool licensed

GitHub opened its own tool licensed to check suite dependencies, so as to help the open source community simplify the licensing process in the same way

licensed can be used in any git repository to query, cache, and check the authorization metadata of dependencies for multiple projects, Multilingual Types, and suite managers

the licensing of many Suites requires subsequent projects to publish dependency files. GitHub points out that using licensed can accelerate this, automate the creation and issuance of licensing, and provide a detailed list of open source resources for projects. Of course, licensed can also be used to check any dependencies between the project and the suite, and automatically generate a report to warn users of the parts that should be paid attention to or violate the license

Copyright © 2011 JIN SHI