Thursday Feb 16, 2017

Training Thursdays: DTrace for Comprehensive Tracing and Diagnostics

DTrace is a comprehensive, advanced tracing tool for troubleshooting systematic problems in real time.  DTrace allows administrators, integrators and developers to dynamically and safely observe live systems for performance issues in both applications and the operating system itself.

DTrace is one of the many topics you can learn about in the Oracle Linux advanced administration training. You can take these courses as follows.

Oracle Linux 7: Advanced Administration

  • Training-on-Demand: Start training straight away, following lectures at your own pace through streaming video and booking time to get hands-on experience when suits your schedule.
  • Live-Virtual Event: Attend a live event from your own desk, no travel required. Events are added to the schedule to suit different time-zones. Events on the schedule include 20 and 27 March and 24 April 2017 in English and 15 May 2017 in French.
  • In-Class Event: Travel to an education center to attend a class. In-class events on the schedule include:

 Location  Date  Delivery Language
Brisbane, Australia
20 March 2017 English
Sao Paulo, Brazil
8 May 2017 Brazilian Portuguese
Hamburg, Germany
27 March 2017 German
Munich, Germany
6 March 2017 German
Milan, Italy
3 April 2017 Italian
Johannesburg, South Africa
6 March 2017 English
Miami, FL, United States 24 April 2017 English
Belmont, CA, United States 8 May 2017 English
Columbus, OH, United States 22 May 2017 English
Roseville, MN, United States 22 May 2017 English

Oracle Linux 5 & 6 Advanced Administration

  • Training-on-Demand: Start training straight away, at your own pace.
  • Live-Virtual Event: Events on the schedule include 13 March and 24 April 2017.
  • In-Class Event: Travel to an education center to attend a class. In-class events on the schedule include:

 Location  Date  Delivery Language
Sao Paulo, Brazil 19 June 2017 Brazilian Portuguese
Munich, Germany 8 May 2017 German
Auckland, New Zealand 27 March 2017 English
Pretoria, South Africa 26 June 2017 English
Irving, TX, United States 22 May 2017 English

Resources:

Monday Feb 13, 2017

Monday Spotlight: It's About Security - Oracle Exadata SL6

Well, not really.  If you read my co-worker Gurmeet's Blog, you’ll see the Exadata SL6 is one incredible machine.  However, I want to talk about a very important aspect of the Exadata SL6 that I don’t think is getting enough play: its security features.

We’ve been fighting the security battle for years now and it has become a booming business estimated at $445 billion in 2016.  You could even say that hackers are the new mafia.  But that’s just the business side of cyberattacks.  There’s also state-sponsored cyberattacks.  It’s really cyberwarfare and it’s playing out every day around the globe with every credit card transaction, every mobile phone call and every social media interaction.  Somewhere, someone is being cyberattacked while you read this.  It’s estimated that it costs the healthcare industry $200,000[1][2] every minute of every day worldwide.

Now, I’m not trying to be alarmist.  But we need to talk about this. For decades, we’ve worked hard to protect our data centers by attempting to keep people out.  And that worked for a while.

It’s much like the castles and keeps of the middle ages. Build a big, strong wall and keep the bad guys out.  However, much like those castles and keeps, building a strong wall around the data center has failed.  The castles had large doors or gates which had their own vulnerabilities.  So, they built moats. But even then, there were bridges so that the people could get in and out.  For today’s data center, we have layers of firewalls and Web servers.  And just like those bridges and gates, today’s Web servers are the gateways to commerce.

Just like the keeps and castles of yesteryear, the strategy of “build a strong wall” has failed. Back then, spies, disguised infiltrators and even “backdoors” did the castles in.  Today, we have IoT and laptops and software bugs.  You can’t protect the perimeter enough when the very devices your people are using are the infiltration mechanisms. 

So, we have to protect the entire data center.  There are three areas that need to be addressed or “Pillars of Protection”.  These are people, platform and data. 

People are the most obvious risk and also might be the hardest to protect against.  Overly simple passwords and social engineering attacks, as well as spam, make it all too easy to get access to user accounts.  There are mechanisms to protect against this, but I’m going to leave that for another day. 

Protecting the platform is critical. Software security vulnerabilities (CVEs) are going to be there.  We’ve seen many of them recently. Dirty COW being a particularly bad one.  So, you are now constantly patching CVEs in your data center.  But there are a few of problems with that.

1.)   You aren’t patching all your severs.  I know this because the vulnerabilities being exploited are more than a year old every single year.[3]

2.)   When you do patch it takes more than 3 months to do it. This is what our customers have told us.

3.)   Once you’ve patched, you’ve finally closed the door on a vulnerability that has likely been there and exploitable for years. Heartbleed was there for 10 years before it was discovered.

Chasing CVEs and patching them is a no win scenario.  We need to think about mitigating whole classes of vulnerabilities so we can stay secure while we fix the root cause of the vulnerability.  As it turns out, just 4 types of vulnerabilities make up about 2/3rds of all vulnerabilities[4].  Two of these, Code execution and overflow, can be stopped by what we call Silicon Secured Memory (SSM). 

Silicon Secured Memory is a part of the Security in Silicon on the SPARC processor that is built into the Oracle Exadata SL6.   SSM colors memory as it is allocated and then verifies that the way the memory is being accessed has the same color as the memory is currently colored.  This means that a buffer overread or overwrite attack like Heartbleed can’t happen.  Certain types of code execution attacks can also be prevented with SSM as the act of writing to memory without the correct color will not be allowed.

Now, no hardware feature can be of use unless the software running on that system utilizes it.  That’s why we’ve built the Oracle Database to take advantage of SSM on the Exadata SL6.

So, Exadata SL6 excels at protecting itself and the software stack from overflow and execution attacks. And it does this with minimal performance overhead. 

The third pillar of protection is the data. You have to protect it.  It’s what the cybercriminals and state sponsored bad actors are after.  However, encrypting data is expensive.  It’s expensive in that it consumes a large number of processor cycles to encrypt and decrypt it.  This means that you have to choose between performance or security.  This has been a long time struggle.  You had to decide what data absolutely needed to be encrypted and the impact of that on your business and expenses as the performance penalty meant buy more or bigger systems. 

With the Exadata SL6, you no longer have to choose between performance and protection.  The SPARC M7 processors in the Exadata SL6 each have 32 decryption engines that can decrypt at the speed of memory. This allows you to simply encrypt all your data, and do it without the performance penalty.  Combining the M7 crypto engines with Oracle Database Transparent Data Encryption means that protecting your database and deciding which data in the database to encrypt has never been easier. Just encrypt all of it.

The Exadata SL6 database servers run the Oracle Linux operating system making them simple to deploy in environments that are standardized on Linux. 

The Exadata SL6 brings more than just 2x performance at the same price.  It brings new security capabilities; securing your data easily.

Thursday Feb 09, 2017

Training Thursdays: Oracle Linux, Same On the Cloud as On-Premise

With Oracle Linux, you can use the same operating system on-premise and in the cloud, avoiding complicated migrations and permitting hybrid environments.

Learn about what Oracle Linux 7 brings you by taking the Oracle Linux 7: What's New for Administrators course. You can take this course as a:

  • Live-Virtual Event: Attend a live event from your own desk, no travel required. Events are added to the schedule to suit different time-zones. Events on the schedule include 15 March, 26 April and 31 May 2017.
  • In-Class Event: If you want to travel to an education center to attend a class, register your interest in a date and location.

Resources:

Thursday Feb 02, 2017

Training Thursdays: Oracle Linux and Cloud Computing

Oracle Linux is a key part of your journey to cloud. Alongside a wide range of core administration tasks, learn about the Linux images available on the Oracle Cloud, how to create an Oracle Instance on the Cloud, and much more by taking any of the following Oracle Linux system administration courses:

These courses are available in three formats:

  • Training-on-Demand: Start training within 24 hours of registration, following lecture material at your own pace.
  • Live-Virtual Event: Attend a live event from your own desk, no travel required.
  • In-Class Event: Travel to an education center to attend an event.

Resources:

Thursday Jan 26, 2017

Training Thursdays: Installing Oracle Linux as First Step

To get started on Oracle Linux, the first step is to learn to install this operating system. By taking the Oracle Linux System Administration training you can learn how to:

  • Obtain Oracle Linux operating system software
  • Describe the Anaconda installer
  • Install Oracle Linux
  • Describe the Firstboot utility

If you are using Oracle Linux 7, you can take the Oracle Linux 7: System Admin course in the following formats:

  • Training-on-Demand: Start training within 24 hours, following lecture material through streaming video at your own pace and booking time to get hands-on experience when suits your schedule.
  • Live-Virtual Event: Attend a live event from your own desk, no travel required. Choose from a selection of events on the schedule to suit different time-zones including 6 and 27 February, 6 March, 3, 10, 17, and 24 April and 15 May 2017.
  • In-Class Event: Travel to an education center to take a class. Below is a selection of in-class events already on the schedule.
 Location  Date  Delivery Language
 Brisbane, Australia
 27 February 2017  English
 Perth, Australia
 6 March 2017  English
 Sao Paolo, Brazil
 20 February 2017  Brazilian Portuguese
 Cairo, Egypt
 19 February 2017  Arabic
 San Salvador, El Salvador
 22 May 2017  Spanish
 London, England
 3 April 2017  English
 Paris, France
 27 February 2017  French
 Berlin, Germany
 27 February 2017  German
 Hamburg, Germany
 27 February 2017  German
 Munich, Germany 
 15 May 2017  German
Milan, Italy
10 April 2017 Italian
Rome, Italy
6 February 2017 Italian
Turin, Italy
13 February 2017 Italian
Dehli, India
24 January 2017 English
Wellington, New Zealand
13 February 2017 English
Makati City, Philippines
8 May 2017 English
Pasig City, Philippines
13 February 2017 English
Singapore
17 April 2017 English
Johannesburg, South Africa 27 February 2017 English
Bangkok, Thailand 27 February 2017 English
Belmont, CA, United States 13 February 2017 English
Orlando, FL, United States 13 March 2017 English
Reston, VA, United States 17 April 2017 English

If you are using an earlier version of Oracle Linux, take the Oracle Linux 5 & 6 System Administration course in the following formats:
  • Training-on-Demand: Start self-paced training within 24 hours.
  • Live-Virtual Event: Attend a live event from your own desk, no travel required. Events are added to the schedule to suit different time-zones.
  • In-Class Event: Travel to an education center to take a class. Below is a selection of in-class events already on the schedule.

 Location Date
Delivery Language
Brussels, Belgium 3 April 2017 English
Helsinki, Finland
6 February 2017 English
Munich, Germany
24 April 2017 German
Tokyo, Japan
13 February 2017 Japanese
Utrecht, Netherlands 3 April 2017 English
Pretoria, South Africa 5 June 2017 English
Chicago, IL, United States 27 February 2017 English
Belmont, CA, United States 3 April 2017 English
Reston, VA, United States 1 May 2017 English

Resources:

Thursday Jan 19, 2017

Training Thursdays: Stability and Performance with Oracle OpenStack

Oracle OpenStack for Oracle Linux delivers the stability and performance customers expect for enterprise solutions and also aligns and integrates with Oracle products and total cloud strategy. Learn more about Oracle OpenStack for Oracle Linux by taking the Oracle OpenStack for Oracle Linux: Getting Started seminar.

You can take this one-day seminar as a:

  • Live-Virtual Event: Attend a live event from your own desk, no travel required. Events are added to the schedule to suit different time-zones.
  • In-Class Event: Travel to an education center to take this class.

Resources:

Thursday Jan 12, 2017

Training Thursdays: Container Technology in Oracle Linux

Learn about popular container technology available in Oracle Linux

  • LXC provides application and operating system isolation without the need of a hypervisor.
  • Docker provides a means of building and packaging applications into lightweight containers.

To learn about these technologies and much more, take the Oracle Linux 7: Advanced Administration course. You can take this course in the following formats:

  • Training-on-Demand: Start training within 24 hours of registration, following streaming video of expert instructors at your own pace and booking time to get hands-on exercises when suits your schedule.
  • Live-Virtual Event: Attend a live event from your own desk, no travel required. Events are added to the schedule to suit different time-zones. Live-Virtual events on the schedule include 16 January, 6 and 13 February, 27 March and 24 April 2017.
  • In-Class Event: Travel to an education center to take this class. In-Class events on the schedule include:

 Location  Date  Delivery Language
 Brisbane, Australia
 20 March 2017  English
 Paris, France
 20 February 2017  French
 Hamburg, Germany
 27 March 2017  German
 Munich, Germany
 6 March 2017  German
 Milan, Italy
 3 April 2017  Italian
 Turin, Italy
 6 March 2017  Italian
 Johannesburg, South Africa
 6 March 2017  English
 Reston, VA, United States  30 January 2017  English
 Columbus, OH, United States  20 February 2017  English
 Roseville, MN, United States  20 February 2017  English
 Miami, FL, United States  24 April 2017  English
 Belmont, CA, United States  8 May 2017  English

If you are using an earlier version of Linux, take the Oracle Linux 5 & 6 Advanced Administration course in the following formats:

  • Training-on-Demand: Start training within 24 hours at your own pace.
  • Live-Virtual Event: Live-Virtual events on the schedule include 13 February, 13 March, and 24 April 2017.
  • In-Class Event: Travel to an education center to take this class. In-Class events on the schedule include:

 Location  Date  Delivery Language
 Munich, Germany  13 February 2017  German
 Auckland, New Zealand  27 March 2017  English
 Johannesburg, South Africa  6 February 2017  English
 Pretoria, South Africa  26 June 2017  English
 Irving, TX, United States  22 May 2017  English

Resources:

Thursday Jan 05, 2017

Training Thursdays: Oracle Linux is Modern and Open Source

Happy New Year and best wishes to all for 2017.

Oracle Linux is modern, open source, and all changes are submitted to the mainline Linux. The Oracle Linux distribution is a truly open operating system - source code, patches, ISOs and errata all Free to use and distribute.

The latest version of Oracle Linux is Oracle Linux 7. Those familiar with Linux can come up to speed on Oracle Linux 7 by taking the Oracle Linux 7: What's New for Administrators course. You can take this course in the following formats:

  • Live-Virtual Event: Attend a live event from your own desk, no travel required. Events are added to the schedule to suit different time-zones. Events already on the schedule include 18 January, 15 March, 26 April and 31 May 2017.
  • In-Class Event: Travel to an education center to take this class. In-class events already on the schedule include:

 Location  Date  Delivery Language
Berlin, Germany 30 January 2017  German
Hamburg, Germany 30 January 2017  German
Utrecht, Netherlands 23 January 2017  English

To register for an event or to learn more about the Oracle Linux curriculum, go to http://oracle.com/education/linux

Monday Dec 19, 2016

MONDAY SPOTLIGHT: Patching User Space with Oracle Ksplice

Oracle Ksplice is a powerful tool that allows administrators to increase the speed of deployment of critical patches and helps eliminate downtime.

The Ksplice enhanced client extends the ability of Ksplice to enable in-memory patching of critical user space libraries in Oracle Linux. The ability to patch these libraries in-memory without rebooting not only increases system security but also reduces costly system downtime. Recent exploits such as Heartbleed can be patched automatically without administrator intervention, maintenance windows or downtime. 

Before you enable Ksplice, you need to disable any prelinking of binaries that may have occurred. Oracle Linux 6 systems come with the prelink tool installed by default which must be removed to prevent conflicts with the Ksplice enhanced client.  Oracle Linux 7 systems do not have prelink installed by default.

# prelink –au
# yum remove prelink

Installation of the Ksplice enhanced client is simple for Oracle Linux servers that are registered to the Unbreakable Linux Network (ULN).

Login to the ULN web interface, select the system you want to enable Ksplice on, then click on Manage Subscriptions.  Next, enable the Ksplice-aware user space packages channel for that server.

After enabling the Ksplice-aware user space packages channel, use yum to install the Ksplice enhanced client on the server:

# yum install –y ksplice

Once the Ksplice client is installed, retrieve your access key for Ksplice from ULN and add it to the Ksplice configuration by editing /etc/uptrack/uptrack.conf.

Next, use yum to install the Ksplice aware versions of the user space packages installed on your server, without updating any other packages on the system, by running following command:

# yum --disablerepo=* --enablerepo=ol7_x86_64_userspace_ksplice update

A single reboot is required to activate the newly installed Ksplice aware libraries. After you reboot the system once, you will then be able to apply any future patches to both the kernel and critical user space libraries without rebooting. 

In addition to patching both kernel and critical user space packages, Ksplice can also be used as a diagnostic tool by Oracle Support to load diagnostic kernels without rebooting the system. 

The following white paper provides the workflow of using Ksplice as a diagnostic tool with Oracle Support: 


The full Ksplice User Guide can be found here: 


Are you ready to take back your weekends and increase the security of your systems with Ksplice?

Thursday Dec 15, 2016

Training Thursdays: What Students Say About Oracle Linux Curriculum

The Oracle Linux curriculum contains courses that are very popular with students. Here is what students have to say about the Oracle Linux system administration courses:

  • Highly enjoyable and informative
  • The contents of this course corresponded exactly to my expectations.
  • I got a good understanding of Oracle Linux through this training.
  • This training helped me fill my knowledge gaps.
  • This training was a great experience and very applicable to my new job responsibilities.
  • The labs corresponded very well to what we covered in the lectures
  • This training struck the right balance between practical learning and volume of topics.
  • Very good practical environment. This course was relevant to my job function.

Join these satisfied students by delving into the Oracle Linux curriculum. Learn more about the courses, delivery formats and schedules at http://oracle.com/education/linux.

Monday Dec 12, 2016

MONDAY SPOTLIGHT: Updated Docker images for Oracle Linux

Docker is becoming even more popular for customers and users to optimise their deployment processes, particularly when integrated into a Continuous Integration (CI) and Continuous Delivery (CD) pipeline. Docker forms the basis of several Oracle Cloud products, including the Oracle Developer Cloud, Oracle Application Container Cloud and Oracle Container Cloud.

As part of Oracle's ongoing commitment to security, we regularly release updates to the official Oracle Linux base images hosted on the Docker Hub and in the official Oracle GitHub repository. In the past month, we have released 5 updates across the Oracle Linux 5, 6 and 7 images to cover several CVEs that have been fixed.

Learn more about ensuring your Docker images are built using the latest images provided by Oracle. 

[Read More]

Thursday Dec 08, 2016

Training Thursdays: Learn about Oracle OpenStack for Oracle Linux

Oracle OpenStack for Oracle Linux maintains the flexibility of OpenStack, while allowing you to deploy different configurations and integrate with a range of software and hardware vendors.

The, JUST RELEASED, Oracle OpenStack for Oracle Linux: Getting Started seminar is ideal for those new to OpenStack. You can take this one-day seminar as a:

  • Live-Virtual Event: Attend a live event from your own desk, no travel required. Events are added to the schedule to suit different time-zones.
  • In-Class Event: Travel to an education center to take this class.

Be the first to influence the schedule for this course by registering your interest here. To learn more about the Oracle Linux curriculum, go to http://oracle.com/education/linux.

Monday Dec 05, 2016

MONDAY SPOTLIGHT: Journey to Cloud with Oracle Private Cloud Appliance

Many customer are using Oracle Linux and Oracle VM in private clouds integrated with Oracle Enterprise Manager Cloud Control. With the update release of Oracle Enterprise Manager Cloud Control 13c R2 (13.2.0.0), customers have greater benefits to manage Oracle LinuxOracle VM, and Oracle Private Cloud Appliance within their existing or future private clouds.

Read  How to Manage Oracle Private Cloud Appliance with Oracle Enterprise Manager 13c Cloud Control.

[Read More]
About

Get the latest updates on strategy, products, events, news, customers, partners and all things Oracle Linux! Connect with Oracle's Linux experts.

Stay Connected

Twitter


Facebook

Search


Archives
« February 2017
SunMonTueWedThuFriSat
   
1
3
4
5
7
8
11
12
14
15
17
18
19
20
21
22
23
24
25
26
27
28
    
       
Today