Welcome to the Cloud 66 Changelog. Please take a quick look at the latest changes that have gone out this week!
Container Stack v1 - update
Back in November, we announced that we were planning to sunset our CSv1 product and enforce migration to CSv2. Since then, we have received many messages from you asking to postpone this; we hear you!
To accommodate your requests we have changed our plan - we are going to keep CSv1 going for the foreseeable future and run, operate and support it alongside CSv2.
Thank you again for your feedback!
DigitalOcean Droplet Update
Great news, we have updated our available DigitalOcean droplets in line with their size changes announcement: https://blog.digitalocean.com/new-droplet-plans/
Now that the dust is starting to settle lets review!
What you need to know
What are the vulnerabilities?
The essence of both vulnerabilities is that a program running on a computer can read memory it is not supposed to. This is not an arbitrary code execution issue, but rather that the CPU can be tricked by a malicious program to expose memory that it wouldn’t otherwise have access to. Second, due to the way the CPU is being tricked, the exposed memory can only be retrieved relatively slowly2. In summary:
1) A CPU needs to be running untrusted code in order to be attackable
2) The direct consequence of an attack is unrestricted, read-only access to all system memory
3) Memory is not exposed at a very fast rate
See the full article by Canonical.
Your Stack/Server Status
Cloud 66 will automatically apply server kernel updates when they are released upstream (via security channels). Important to note however that due to the nature of the kernel updates, a SERVER REBOOT IS REQUIRED. For obvious reasons we will not automatically reboot your application servers - so please schedule a server reboot at a time that best suits you.
To aid you with the server reboots, you can use the handy toolbelt reboot command (see Toolbelt Help)
cx stacks reboot -s <stack>
More information about the upstream Ubuntu kernel patches.
Ubuntu 12.04 Users
As Ubuntu 12.04 has reached its end-of-life it will not have any security patches made available - as such, any existing Ubuntu 12.04 users should consider scaling up newer servers.
- CLOUD 66 BLOG
If you are thinking about containers, check out our blog post about 8 Components You Need to Run Containers in Production. It includes a review of micro-services industry and vendors that help you build the best container infrastructure, as well as our feedback based on our experience.
- CLOUD 66 EVENTS
RailsConf, 17-19 April 2018 in Pittsburgh
We are a proud sponsor of RailsConf 2018. The world’s largest and longest-running gathering of Ruby on Rails enthusiasts, practitioners, and companies. We hope to see you there!
- CLOUD 66 SLACK COMMUNITY:
Get involved by taking part in our Cloud 66 Slack Community.
You can also access it via Cloud 66 dashboard.