Page 2 of 9
The Bitnami Kubernetes Production Runtime (BKPR) is a curated collection of services running on top of your existing Kubernetes cluster with the aim of automating the configuration of public access, logging and monitoring, and management of DNS records and TLS certificates. Read the Bitnami Kubernetes Production Runtime announcement to learn more about the motivation behind the development of BKPR...
Read moreDuring 2018, Bitnami has been changing how we approach and utilize infrastructure to deliver our services, moving from a "single server per project" approach to one where we use Kubernetes. Doing so not only makes management easier, but also allows us to respond more quickly to infrastructure vulnerabilities. It also gives us the ability to utilize Bitnami Kubernetes Production Runtime (BKPR) and...
Read moreLast week, our friends at Microsoft launched Cloud Native Application Bundle (CNAB) and duffle, a CLI tool to manage CNAB bundles. CNAB is an open source, cloud-agnostic specification for packaging and running distributed applications. Because of our experience in application packaging, they asked Bitnami to partner with them to explore the benefits and limitations of the initial version.
Our goal...
Read moreThis is the second of two blog posts which cover the whole process of defining a set of trusted applications and providing tools for your users to deploy said applications in a Kubernetes cluster using both Stacksmith and Kubeapps.
The first part of this blog post, Part 1: Creating a Trusted Set of Applications, introduces the concept of having a trusted set of applications and how it can help...
Read moreCompanies with large IT infrastructures need an end-to-end way to manage what is running in their environment. At Bitnami, we understand this challenge very well. In this article, we will show how creating a set of trusted applications simplifies managing compliance and governance in your environment. And we’ll show you how this can be applied to your Kubernetes clusters.
The process starts by...
Read moreAs you probably already know, Docker containers typically run with root privileges by default. This allows for unrestricted container management, which means you can do things like install system packages, edit config files, bind privileged ports, etc. This is really useful for development purposes, but can expose you to high risk once you put your containers into a production environment.
Why...
Read moreAt Bitnami, we have been using Kubernetes internally, and publishing applications targeting Kubernetes (such as Kubeapps!) for a few years now. Over that time, we have seen a recurring "gap" in the ecosystem from both directions:
As an application publisher, there are common cluster features that an application often requires (like functional Ingress, TLS, logging, monitoring). Explaining...
As a developer, if you are running a development set of containers to create proof of concepts or production workloads, you are probably aware of the amount of CVEs that may affect your container operating system packages.
Since its beginnings, Bitnami has worked to make sure every asset it publishes is up-to-date, not only everything related to the application versions, but also in security matter...
Read moreOnline services should aim to provide a service availability that matches business requirements. A key part of this process should involve different teams in an organization, for example, from the business development team to the engineering team.
To verify how a service complies with these targets, it should be possible to define "thresholds" with measurable "achievements" of these, for example...
Read moreRabbitMQ is a general purpose message broker that is designed for consistent, highly-available messaging scenarios (both synchronous and asynchronous). To enable quick and easy deployment of RabbitMQ, Bitnami offers a number of different solutions: a single RabbitMQ cloud instance, a multi-node RabbitMQ cloud cluster (for Google Cloud Platform and Microsoft Azure), a RabbitMQ Docker container, a...
Read more