Bitnami Engineering Portal

Articles

Page 1 of 8

Practicing what we preach, benefiting from a move to Kubernetes

by Raquel Campuzano Godoy

During 2018, Bitnami has been changing how we approach and utilize infrastructure to deliver our services, moving from a "single server per project" approach to one where we use Kubernetes. Doing so not only makes management easier, but also allows us to respond more quickly to infrastructure vulnerabilities. It also gives us the ability to utilize Bitnami Kubernetes Production Runtime (BKPR) and...

Read more

Production Ready Packaging with CNAB and Bitnami Kubernetes Production Runtime (BKPR)

by Miguel Martinez Trivino

Last week, our friends at Microsoft launched Cloud Native Application Bundle (CNAB) and duffle, a CLI tool to manage CNAB bundles. CNAB is an open source, cloud-agnostic specification for packaging and running distributed applications. Because of our experience in application packaging, they asked Bitnami to partner with them to explore the benefits and limitations of the initial version.

Our goal...

Read more

Package and launch trusted apps on Kubernetes with Stacksmith and Kubeapps. Part 2: Setting Up and Using Service Catalog in Kubernetes Cluster

by Wojciech Kocjan

This is the second of two blog posts which cover the whole process of defining a set of trusted applications and providing tools for your users to deploy said applications in a Kubernetes cluster using both Stacksmith and Kubeapps.

The first part of this blog post, Part 1: Creating a Trusted Set of Applications, introduces the concept of having a trusted set of applications and how it can help...

Read more

Package and launch trusted apps on Kubernetes with Stacksmith and Kubeapps. Part 1: Creating a Trusted Set of Applications

by Wojciech Kocjan

Companies with large IT infrastructures need an end-to-end way to manage what is running in their environment. At Bitnami, we understand this challenge very well. In this article, we will show how creating a set of trusted applications simplifies managing compliance and governance in your environment. And we’ll show you how this can be applied to your Kubernetes clusters.

The process starts by...

Read more

Why non-root containers are important for security

by Raquel Campuzano Godoy

As you probably already know, Docker containers typically run with root privileges by default. This allows for unrestricted container management, which means you can do things like install system packages, edit config files, bind privileged ports, etc. This is really useful for development purposes, but can expose you to high risk once you put your containers into a production environment.

Why...

Read more

Announcing the Bitnami Kubernetes Production Runtime (BKPR)

by Angus Lees

At Bitnami, we have been using Kubernetes internally, and publishing applications targeting Kubernetes (such as Kubeapps!) for a few years now. Over that time, we have seen a recurring "gap" in the ecosystem from both directions:

  • As an application publisher, there are common cluster features that an application often requires (like functional Ingress, TLS, logging, monitoring). Explaining...

Read more

How Bitnami continuously scans container images to fix CVE-reported security issues

by David Barranco

As a developer, if you are running a development set of containers to create proof of concepts or production workloads, you are probably aware of the amount of CVEs that may affect your container operating system packages.

Since its beginnings, Bitnami has worked to make sure every asset it publishes is up-to-date, not only everything related to the application versions, but also in security matter...

Read more

Implementing SLOs using Prometheus and Grafana

by JuanJo Ciarlante

Online services should aim to provide a service availability that matches business requirements. A key part of this process should involve different teams in an organization, for example, from the business development team to the engineering team.

To verify how a service complies with these targets, it should be possible to define "thresholds" with measurable "achievements" of these, for example...

Read more

Add Robust, Scalable Messaging to Your Application with Bitnami's RabbitMQ Terraform Template for Oracle Cloud

by Vikram Vaswani

RabbitMQ is a general purpose message broker that is designed for consistent, highly-available messaging scenarios (both synchronous and asynchronous). To enable quick and easy deployment of RabbitMQ, Bitnami offers a number of different solutions: a single RabbitMQ cloud instance, a multi-node RabbitMQ cloud cluster (for Google Cloud Platform and Microsoft Azure), a RabbitMQ Docker container, a...

Read more

Deploy a Scalable MongoDB Replica Set on Oracle Cloud with Bitnami's MongoDB Terraform Template

by Vikram Vaswani

Bitnami offers a number of different solutions to help you deploy MongoDB in a a scalable, secure manner. In previous blog posts, I've discussed the MongoDB with Replication solution, which can be deployed on multiple virtual machines, and the MongoDB Helm chart, which can be deployed on Kubernetes.

But these aren't the only options. If you're an Oracle Cloud user, you can also deploy MongoDB on...

Read more

Next page