Skip to main content
“At CoreOS we are building a company based on open source technologies, meaning we believe at the heart of the company in openness and acceptance. We believe people of all backgrounds are better together than separate, and diversity builds stronger communities. We believe in building a world class team, and celebrating our difference along the way. In addition to open source, security and privacy are a part of everything we do; keeping people and the information they share online protected. As we work to secure the internet, we work equally hard to honor all parts of the human spirit, and create an environment where all human beings can thrive.” – Alex Polvi, CEO of CoreOS

This post is by CoreOS principal security engineer, Matthew Garrett, known for his work in the open source security community. We wish him well in his next endeavor.

Container Linux by CoreOS ships dm-verity, a technology that builds on trusted boot and secure boot to make it impossible for attackers to modify the underlying filesystem containing the OS. This security mechanism is enabled by default, helping ensure that the whole system is in a trustworthy state.

A core part of Container Linux is the automated image-based update strategy. Each Container Linux install has three partitions that are used by the OS:

2017 is the year Kubernetes becomes the backbone of distributed systems. In 2016, the Kubernetes community greatly expanded as more people understood the potential of container orchestration.

Premiered at Tectonic Summit 2016, learn more about how the industry is viewing the future of Kubernetes.

A new year and a new milestone release of etcd. Hot on the heels of 17 bugfix releases to etcd 3.0, two alphas, and two release candidates, the etcd team is proud to announce etcd 3.1. This edition of etcd features performance, reliability, and API enhancements over the 3.0 series. It also introduces the first iteration of the etcd v3 gRPC proxy, a smart proxy for offloading client requests away from the core cluster.

Announcing CoreOS Fest 2017

We are happy to announce that the third

CoreOS etcd’s first commits happened some three and a half years ago, and a lot has changed since that initial version 0 of the etcd API. etcd version 3, introduced last summer, offers a streamlined, gRPC-based API and dramatic performance improvements over both competitive solutions and its own prior versions, while maintaining the distributed reliability and rolling upgrade capabilities that make etcd manageable in production.

Docker just released docker 1.12.6 with a fix for a vulnerability in RunC (CVE-2016-9962). The security advisory states:

CoreOS is back from the holidays and a successful Tectonic Summit! We’re kicking off the year with team members at conferences like ShmooCon, FOSDEM and Container World. Join us in making 2017 a great year for containers.

This was originally posted at Gopher Academy Advent 2016 blog series.

Subscribe to CoreOS Blog