openstack

Walt Disney said it best:

After a recent OpenStack-Ansible (OSA) deployment on CentOS, I found that keepalived was not starting properly at boot time:

The latest release of the Red Hat Enterprise Linux Security Technical Implementation Guide (STIG) was published last week.

I’ve been working through some patches to OpenStack-Ansible lately to optimize how we configure yum repositories in our deployments.

I merged some initial Debian support into the openstack-ansible-security role and ran into an issue enabling AppArmor.

I opened up a noVNC console to a virtual machine today in my OpenStack cloud but found that the console wouldn’t take keyboard input.

Although OpenStack-Ansible doesn’t fully support CentOS 7 yet, the support is almost ready.

DISA’s final release of the Red Hat Enterprise Linux (RHEL) 7 Security Technical Implementation Guide (STIG) came out a few weeks ago and it has plenty of improvements and changes.

NOTE: The opinions shared in this post are mine alone and are not related to my employer in any way.

My OpenStack cloud depends on Ubuntu, and the latest release of OpenStack-Ansible (what I use to deploy OpenStack) requires Ubuntu 16.

When I came back from the holiday break, I found that the openstack-ansible-security role wasn’t passing tests any longer.

Thanks to everyone who attended my talk at the OpenStack Summit in Barcelona!

OpenStack’s compute service, nova, manages all of the virtual machines within a OpenStack cloud.

I ran into an interesting problem recently in my production OpenStack deployment that runs the Mitaka release.

The OpenStack Zuul system has gone through some big changes recently, and one of those changes is around how you monitor a running CI job.

The 2016 Red Hat Summit is underway in San Francisco this week and I delivered a talk with Robyn Bergeron earlier today.

Lots of work has gone into the openstack-ansible-security Ansible role since I delivered a talk about it last month at the OpenStack Summit in Austin.

NOTE: This post is a work in progress.

When you’re ready to commit code in an OpenStack project, your patch will eventually land in a Gerrit queue for review.

Today is the second day of the OpenStack Summit in Austin and I offered up a talk on host security hardening in OpenStack clouds.

The blog posts have slowed down a bit lately because I’ve been heads down on a security project at work.

I started supernova a little over three years ago with the idea of making it easier to use novaclient.

I’ve added some grouped environment support for supernova tonight.

I was shocked to see Robyn Bergeron’s email today about Seth Vidal’s passing.

Python’s virtual environment capability is extremely handy for situations where you don’t want the required modules for a particular python project to get mixed up with your system-wide installed modules.

Troy Toman delivered a great keynote this morning about OpenStack and how Rackspace uses it:

It’s no secret that I’m a fan of Twitter and OpenStack.

While working on multiple nova (OpenStack Compute) environments at Rackspace, I found myself thrashing between multiple terminal windows where I had exported environment variables for python-novaclient to use.

My work at Rackspace has changed a bit in the last few weeks and I’ve shifted from managing a team of engineers to a full technical focus on OpenStack Nova.