Game-Changing Secure Architecture: Exploring the Impact of Canonical's Distroless on Enterprise Linux Deployments | ZDNET
Game-Changing Secure Architecture: Exploring the Impact of Canonical’s Distroless on Enterprise Linux Deployments | ZDNET
Vicki Jauron, Babylon and Beyond Photography/Getty Images
Canonical has announced plans to offer customized Docker container Long Term Support (LTS) Linux images via its Everything LTS service. These custom “distroless” Linux images are set to come with 12 years of security support for Linux, and any included open-source application or dependency within the container.
Canonical CEO Mark Shuttleworth didn’t mince his words: “Everything LTS means CVE maintenance for your entire open-source dependency tree, including open source that is not already packaged as a deb in Ubuntu.” This shift is a game-changer for enterprises and ISVs looking to meet stringent regulatory requirements with complex open-source stacks.
Also: Thinking about switching to Linux? 10 things you need to know
Shuttleworth said Canonical will deliver “distroless or Ubuntu-based Docker images to your spec, which we will support on RHEL, VMware, Ubuntu or major public cloud K8s. Our enterprise and ISV customers can now count on Canonical to meet regulatory maintenance requirements with any open source stack, no matter how large or complex, wherever they want to deploy it.”
Newsletters
ZDNET Tech Today
ZDNET’s Tech Today newsletter is a daily briefing of the newest, most talked about stories, five days a week.
Subscribe
Although Shuttleworth implied Canonical, which is Ubuntu Linux’s parent company, would support Red Hat Enterprise Linux (RHEL) , it appears he meant Canonical would support these new Linux images on Red Hat OpenShift as well as all other Kubernetes distributions and cloud platforms .
Specifically, Canonical will back its images on all of Canonical’s Kubernetes offerings – MicroK8s or Charmed Kubernetes -- and support VMware on Tanzu Kubernetes Grid or vSphere with Kubernetes or Ubuntu virtual machines (VMs) on the vSphere cluster. On public clouds, Canonical plans to support containers on Azure, AWS, Google Cloud, IBM, and Oracle public cloud Kubernetes offerings.
Also: Sparky Linux is a blazing-fast distro that can keep your older machines running for years
With these new Open Container Initiative images, Canonical is embracing the “distroless” container paradigm in which images contain just enough of the operating system and software to run a specific application. These hardened, minimal containers have a reduced attack surface, making them much more secure than conventional Linux VMs or containers. Distros that use this approach include Alpine Linux, Fedora CoreOS, and Wolfi.
These new “chiseled” containers are built on Ubuntu with Chisel . This program chisels Debian packages into a file system containing only the minimal collections of files needed for the container to function properly.
Also: Why I use the Linux tree command daily - and what it can do for you
Canonical says that Ubuntu Pro subscriptions will include the right to run unlimited Everything LTS containers and that it will support VMware, OpenShift, and public cloud Kubernetes hosts at the same price as Ubuntu Pro hosts.
The Ubuntu Pro service will now include thousands of new open-source upstream components, including the latest AI/ML dependencies and tools. Canonical plans to maintain the 2,000 widely used AI/ML libraries and tools, including heavy hitters such as PyTorch , TensorFlow , and Rapids , as source code instead of as Debian/Ubuntu deb packages .
Canonical has also partnered with Microsoft to create chiseled containers, which are a mere 100MB, for the .NET community. A self-contained .NET application runtime base image is only 6MB when compressed.
Also: Canonical turns 20: Shaping the Ubuntu Linux world
Canonical also promises its average time for fixing critical CVE security issues will take less than 24 hours. Canonical is positioning itself as the go-to partner for organizations that want rock-solid security and cutting-edge, open-source tech.
At the same time, Canonical appears to be distancing itself from its Ubuntu brand. Ubuntu is still key, but meeting customer demands for tiny, ultra-secure images is coming first. This is a bold move by Shuttleworth in the ever-evolving market for enterprise Linux and cloud computing.
Linux
The best Linux laptops for consumers and developers
Want to save your aging computer? Try these 5 Linux distributions
The best distros for beginners
How to enable Linux on your Chromebook (and why you should)
- The best Linux laptops for consumers and developers
- Want to save your aging computer? Try these 5 Linux distributions
- The best distros for beginners
- How to enable Linux on your Chromebook (and why you should)
Also read:
- [New] In 2024, Virtual Studio Compiling the Best DJ Visuals for Download
- [Updated] The Least Expensive SkyVault Service for Big Files
- [Updated] Unveiling the Art of Podcast RSS Mastery
- 2024 Approved Perfecting Your Sound Palette with Audacity Crossfading
- 2024 Approved Pioneering Editing Snapseed for the Newcomer
- 2024 Approved Unleashing Creative Stories Zoom Techniques on Snapchat
- Asus Unleashes Stunning OLED Display in Their Latest Laptop: A Comprehensive Review by a Seasoned Tech Expert
- Bass Brilliance New Device Overview
- Decision Guide: Is Getting an iPad Worth It?
- Explore the Ultimate Guide: Discover 2022'S Finest Outdoor Camping Chairs, as Endorsed by ZDNet
- In 2024, How To Bypass iCloud Activation Lock On iPod and iPhone 12 Pro The Right Way
- In 2024, Stealthy Sound Suppression Techniques for Fade-Out
- Optimal Outlooks Ideal Laptops to Render HD Videos Quickly
- Quick Catch-Up Effective Methods for Skipping Edgenuity Courses for 2024
- Tap Into the Latest Gaming and App Splash of Win11 for 2024
- Unlocking Visual Clarity Bypassing Background in Photopea for 2024
- Unraveling RTMP Streams Overcoming Premiere's Export Hurdle for 2024
- Title: Game-Changing Secure Architecture: Exploring the Impact of Canonical's Distroless on Enterprise Linux Deployments | ZDNET
- Author: Donald
- Created at : 2024-12-25 17:12:44
- Updated at : 2024-12-27 16:59:55
- Link: https://some-tips.techidaily.com/game-changing-secure-architecture-exploring-the-impact-of-canonicals-distroless-on-enterprise-linux-deployments-zdnet/
- License: This work is licensed under CC BY-NC-SA 4.0.