Podman Community Meeting - October 6, 2020
Podman Community Meeting - October 6, 2020
By Tom Sweeney GitHub
The first Podman Community Meeting is coming up at 11:00 a.m. Eastern on October 6th, 2020. We plan to hold the meeting on Bluejeans and will be holding them going forward on the first Tuesday of every month. All are welcome and it's free of charge! The agenda after the break and hope to see a lot of you there.
Podman Community Meeting - October 6, 2020
The first Podman Community meeting will be on Tuesday October 6 at 11:00 a.m. Eastern. It will be a video conference using BlueJeans and all of the details are on this post.
DevConf US 2020 Containers Technologies Talk
DevConf US 2020 Containers Technologies Talk
By Tom Sweeney GitHub
In case you missed Kedar Kulkarni's excellent talk at DevConf.US 2020, "Docker, Podman, Buildah, Skopeo, and what else?", check out the video on YouTube. There were also a number of other interesting talks at DevConf.US 2020 that you might be interested in, you'll be able to find links to the talks at the DevConf.US site above.
DevConf US 2020 Containers Technologies Talk
By Tom Sweeney GitHub
In case you missed Kedar Kulkarni's excellent talk at DevConf.US 2020, "Docker, Podman, Buildah, Skopeo, and what else?", check out the video on YouTube. There were also a number of other interesting talks at DevConf.US 2020 that you might be interested in, you'll be able to find links to the talks at the DevConf.US site above.
Podman Security Announcement
Podman Security Issue
Today, we're releasing updates to fix CVE-2020-14370, a security issue in Podman. This is a medium-severity information disclosure vulnerability that affects containers created using Podman’s Varlink API or the Docker-compatible version of its REST API. If two or more containers are created using these APIs, and the first container had environment variables added to it when it was created, all subsequent containers created using the Varlink or Docker-compatible REST APIs will also have these environment variables added. This effect does not persist after restarting the Podman API service.
Podman v2.0.5 and higher contain a fix for the CVE. If you use either of these APIs, please update to Podman v2.0.5 or later. We will also be patching the long-term support v1.6.4 release used in RHEL and CentOS.
Podman Posts of Interest
Podman Posts of Interest
By Brent Baude GitHub
- Brian Smith - Rootless containers using Podman - Watch this two-part video series on understanding root inside and outside of containers and how user namespaces work.
- Jack Wallen - How to install Podman support in Cockpit - Learn how to add Cockpit support to manage images and containers.
- Dan Walsh - SELinux changes for KVM-separated (Kata) containers - Understanding SELinux types that improve security in container engines such as Podman and CRI-O.
- Brian Smith - Scanning containers for vulnerabilities with OpenSCAP and Podman - Containers are no more secure than physical machines. Find out how to scan yours for vulnerabilities.
- Brian Smith - (Video)Managing Containers in Podman with systemd Unit Files
- Mrivik - (asciinema)GIMP working on rootless Podman container
Podman Posts of Interest
I've run across a number of posts over the past few weeks concerning Podman and have been busy getting other work done. So now I have a few moments and thought I'd add some links to the posts. Enjoy!
- Brian Smith - Rootless containers using Podman - Watch this two-part video series on understanding root inside and outside of containers and how user namespaces work.
- Jack Wallen - How to install Podman support in Cockpit - Learn how to add Cockpit support to manage images and containers.
- Dan Walsh - SELinux changes for KVM-separated (Kata) containers - Understanding SELinux types that improve security in container engines such as Podman and CRI-O.
- Brian Smith - Scanning containers for vulnerabilities with OpenSCAP and Podman - Containers are no more secure than physical machines. Find out how to scan yours for vulnerabilities.
- Brian Smith - (Video)Managing Containers in Podman with systemd Unit Files
- Mrivik - (asciinema)GIMP working on rootless Podman container
Podman remote clients for macOS and Windows
In a recent blog post on the Red Hat Enable Sysadmin site, Podman remote clients for macOS and Windows, Brent Baude and Ashley Cui walk you through setting up a remote client on either Windows or macOS to let you manage your containers and images on your Linux backend. The post covers installation, ssh setup, creating the initial connection and finally how to use the client. Give it a quick look!
Podman remote clients for macOS and Windows
Podman remote clients for macOS and Windows
By Brent Baude GitHub
In a recent blog post on the Red Hat Enable Sysadmin site, Podman remote clients for macOS and Windows, Brent Baude and Ashley Cui walk you through setting up a remote client on either Windows or macOS to let you manage your containers and images on your Linux backend. The post covers installation, ssh setup, creating the initial connection and finally how to use the client. Give it a quick look!