Operations | Monitoring | ITSM | DevOps | Cloud

The CVE-2021-33909, named Sequoia, is a new privilege escalation vulnerability that affects Linux’s file system. It was disclosed in July, 2021, and it was introduced in 2014 on many Linux distros; among which we have Ubuntu (20.04, 20.10 and 21.04), Debian 11, Fedora 34 Workstation and some Red Hat products, too. This vulnerability is caused by an out-of-bounds write found in the Linux kernel’s seq_file in the Filesystem layer.

As a developer, you’re going to be making changes to a codebase. That’s why, as Harold Abelson put it, “Programs must be written for people to read.” If a codebase is not clearly formatted, debugging becomes more difficult than it should be. Though usually overlooked, little changes like reformatting and proper indentation of your code can obviously differentiate a professional developer’s code base from someone just learning.

John Pagliuca, CEO of N-able, has taken issue in the press multiple times with the term digital transformation, preferring the term digital evolution. I agree that evolution is a better term. Digital transformation implies a one-time event; digital evolution acknowledges the ongoing nature of these changes. In short, the market will continue to change. How you adapt dictates whether you come out far ahead or remain with the status quo.

In December 2020, we blogged about security issues in Go’s encoding/xml with critical impact on several Go-based SAML implementations. Coordinating the disclosure around those issues was no small feat; we spent months emailing the Go security team, reviewing code, testing and retesting exploits, coming up with workarounds, implementing a validation library, and finally reaching out to SAML library maintainers and 20 different companies downstream.

A year ago, in July of 2020, I started my SysAdmin Day post  with the words, Here we are, 12 months later, and a lot has changed, but life (and tech) continue to be extraordinarily not-normal. The challenges we face as IT pros in general and SysAdmins in particular push us to our limits daily, and there’s no hiding or sugar-coating it. In the face of all this, I’d like to offer some new thoughts for my SysAdmin family to help process the year that was and navigate the challenges to come.

JFrog customers will soon enjoy end-to-end, holistic security across their software lifecycle — from development to devices — as the technology of recently-acquired Vdoo gets integrated into the JFrog DevOps Platform. That was the pledge made by JFrog and Vdoo leaders during their first joint webinar, in which they explained why JFrog acquired Vdoo, how the platform’s security and compliance capabilities will expand, and what’s the integration timeline.

It’s no secret that the past year and a half has been challenging for all departments across organizations. One unsung hero? IT. IT is quite literally responsible for keeping the lights on in a work environment that has shifted primarily online.

Cox Automotive is a global company with over 40,000 auto dealer clients across five continents. The company, which houses Kelly Blue Book, Autotrader, and 25 other brands, was built through acquisitions. Its IT Operations team is tasked with bringing them together under the Cox Automotive umbrella and ensuring “a good, consistent experience” for its customers worldwide.

Today we’re announcing the general availability of Icinga Web v2.7.6, v2.8.4 and v2.9.2. All are standard bugfix releases and include fixes found by the community since the latest releases. You can find all issues related to this release on our Roadmap. Please make sure to also check the respective upgrading section in the documentation. This release is accompanied by the minor releases v2.7.6 and v2.8.4 which include the fix for the flattened custom variables.

2020 heralded a year of increased complexity and customer demands, which isn’t going away. In this new normal, organizations will still be tasked with keeping up this break-neck pace. So, what did digital operations look like in 2020 compared to 2019?