Re-thinking Linux Distributions [Langdon White]
As the power pendulum swings towards developers and open source, from sys-admins and proprietary software, respectively, Linux Distributions are faced with a challenge. How do they get more relevant to the new power brokers?
Over the years, application and web developers have made it clear they are uninterested in packaging their applications if it requires them to do things beyond their normal languages and tool-chains. They are also not particularly interested in consuming their dependencies via distribution packaging tools if it requires a lag in availability, the developers packaging the libraries, and/or learning the packaging software tools beyond the most rudimentary level. Developers have also made it clear that the way software is packaged, normally targeted at production installations, is very cumbersome when using it for development (e.g. the perennial 'setenforce 0').
Many people interpret the above as "developers don't care about security or the trustworthiness of their dependencies." However, this is a mistake. Developers do not ever want to be the person listed as the problem when a major breach occurs. On the flip side, their "bosses" (actual bosses, software communities, professors, etc) set and enforce deadlines that do not allow for the time to muck about with things not directly related to their application development.
What can distributions do? Well, how about they stop providing a distribution. Instead, they can provide an operating system and a set of content. Where the "things" found in the operating system part are packaged in the traditional manner and provide all the traditional guarantees. However, the "content" is provided in the native formats developers are used to and the guarantees, where possible, are provided through other mechanisms.
This talk will discuss the work taking place in the Fedora, CentOS, and Red Hat EL communities to address these challenges.
Slides: http://bit.ly/1TgwQd2
Видео Re-thinking Linux Distributions [Langdon White] канала RedHatCzech
Over the years, application and web developers have made it clear they are uninterested in packaging their applications if it requires them to do things beyond their normal languages and tool-chains. They are also not particularly interested in consuming their dependencies via distribution packaging tools if it requires a lag in availability, the developers packaging the libraries, and/or learning the packaging software tools beyond the most rudimentary level. Developers have also made it clear that the way software is packaged, normally targeted at production installations, is very cumbersome when using it for development (e.g. the perennial 'setenforce 0').
Many people interpret the above as "developers don't care about security or the trustworthiness of their dependencies." However, this is a mistake. Developers do not ever want to be the person listed as the problem when a major breach occurs. On the flip side, their "bosses" (actual bosses, software communities, professors, etc) set and enforce deadlines that do not allow for the time to muck about with things not directly related to their application development.
What can distributions do? Well, how about they stop providing a distribution. Instead, they can provide an operating system and a set of content. Where the "things" found in the operating system part are packaged in the traditional manner and provide all the traditional guarantees. However, the "content" is provided in the native formats developers are used to and the guarantees, where possible, are provided through other mechanisms.
This talk will discuss the work taking place in the Fedora, CentOS, and Red Hat EL communities to address these challenges.
Slides: http://bit.ly/1TgwQd2
Видео Re-thinking Linux Distributions [Langdon White] канала RedHatCzech
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Developing for success in the Cloud [James Mernin]Immutable infrastructure, containers & the future of microservices [Adam Miller]Code Analysis and Distribution Profiling [Pavel Odvody]Linux Device Model [Carlos Maiolino]CLI tools in Python + interesting/useful packages [Martin Pavlásek]SilverWare: Microservices [Martin Swiech, Martin Večeřa]Docker versus Systemd [Dan Walsh]Getting Started with OpenStack Heat [Jay Dobies]Changing the releng landscape [Dennis Gilmore]On value types or Why reference locality matters [Ladislav Thon]Using Fedora for IoT with atomic [Peter Robinson]Automated testing of graphical applications using OpenCV and Tesseract [Richard Marko]Avocado and Jenkins: Test Automation and CI [Lukáš Doktor, Yash Mankad]OpenQA [Ondřej Holeček]Ipsilon: how can you use it to deploy identity management [Patrick Uiterwijk]The State of Project Atomic (with Docker news deep dive) [Joe Brockmeier, Tomas Tomecek]Pulp - juicy software repository management [Ina Panova]Rapid UI development with QML [Daniel Vrátil]How to build the fastest multilingual VM [Petr Chalupa]Smart VM Scheduling [Martin Sivák]