by Scott McBrien (Red Hat)
My name is Scott McBrien. I work for the Red Hat Training Curriculum Development Team and was the project leader for the development of the Red Hat Server Hardening (RH413) course. Before joining the Red Hat Training Curriculum Development Team, I worked as both a Red Hat training instructor and consultant. I hope that my field experiences show through in our new class.
When I first started thinking of writing a security focused class, I tried to think about what story would make a compelling course that I, and other systems administrators, would like to attend. One of the topics that I have seen grow to be pervasive in the systems administration community is Security Policy Compliance. Many of us have had the lovely experience of having someone from another team, or an outside consultant, come in to run some type of scanning software against our machine, and say “You’re not in compliance with SECURITY-STANDARD”. In my experience, the systems administrator is told to fix the deficiency without a lot of direction from the person telling them that there’s a problem, or worse, they are given instructions by someone who is not an expert on the technology, which fixes the audit deficiency, but down the line causes problems. A situation that I see over and over again is systems administrators being told to install non-supported software on their Red Hat Enterprise Linux machines because the version they have is “old” or “vulnerable”. In reality, Red Hat does a lot of work to publish updates to Red Hat Enterprise Linux (and other products) so that an administrator can use supported, packaged software from Red Hat and not have software open to known vulnerabilities. Red Hat’s update management and application of updates is the first topic in “Red Hat Server Hardening”.
Continue reading “Behind Red Hat Server Hardening (RH413)”
by Christian Stankowic
If you’re maintaining multiple Red Hat Enterprise Linux systems (or equivalent offsets like CentOS or Scientific Linux) your administration work with the particular hosts will gain in a routine. Because even the best administrator might forget something it would be advantageously to have a central software and configuration management solution. Chef and Puppet are two very mighty and popular mangement tools for this application. Depending on your system landscape and needs these tools might also be oversized though – Red Hat Package Manager (RPM) can emerge as a functional alternative in this case.
It is often forgotten that RPM can be used for sharing own software and configurations as well. If you’re not managing huge system landscapes with uncontrolled growth of software and want to have a easy-to-use solution, you might want to have a look at RPM.
I’m myself using RPM to maintain my whole Red Hat Enterprise Linux system landscape – this article will show you how easy RPM can be used to simplify system management.
Continue reading “GUEST POST: Software and configuration management made easy with RPM”
by Iain Gray, vice president, global services, Red Hat
Today is an exciting day for Red Hat as we announce our new Red Hat Certificate of Expertise in Infrastructure-as-a-Service and expanded training in support of Red Hat’s OpenStack technology.
We launched Red Hat Enterprise Linux OpenStack Platform at the Red Hat Summit in June as a core part of our open hybrid cloud strategy. There is a huge amount of excitement about OpenStack both at Red Hat and from our customers. In terms of company focus, it truly is “the next Linux.” Our goal is to bring our enterprise experience to the Infrastructure-as-a-Service (IaaS) market and provide an OpenStack platform that our customers can trust.
We are committed to providing services that help our customers use OpenStack to get their products to market faster. We recently launched a range of IaaS-focused offerings. From cloud migration strategy consulting, to Red Hat Enterprise Linux OpenStack Platform product-pilot implementation services, through complete IaaS-based solution development, we can support our customers through every stage in their cloud journey. Red Hat OpenStack Administration (CL210), a course we introduced earlier this year, helps customers build their teams’ readiness to adopt and use this new technology.
Today, we complement and expand these offerings by introducing the Red Hat Certificate of Expertise in Infrastructure-as-a-Service and expanding the Red Hat OpenStack Administration course to cover new capabilities in the latest release and to provide preparation for the Red Hat Certificate of Expertise in Infrastructure-as-a-Service Exam (EX210).
Continue reading “Red Hat announces new OpenStack certification”
by Randy Russell (Red Hat)
I am pleased to announce our newest certification, Red Hat Certificate of Expertise in Server Hardening. This new Certificate of Expertise will take the place of the Red Hat Certificate of Expertise in Security: Network Services and Red Hat Certificate of Expertise in Directory Services and Authentication. Red Hat Certified Professionals working towards earning Red Hat Certified Security Specialist (RHCSS), Red Hat Certified Datacenter Specialist (RHCDS) or Red Hat Certified Architect are able to visit our Certification FAQ to learn more about how this new Certificate of Expertise fits into these programs. Why are we introducing this new credential and replacing long-standing ones with it?
Every year, Las Vegas plays host to DEF CON® Hacking Conference, which is routinely described as the world’s biggest hacker conference. Most people attend to learn about security exploits so that they can protect themselves and others. At last year’s conference many speakers within the DEF CON community spoke about the important of asking questions, engaging with others while at the conference and sharing knowledge.
One speaker, who is particular well-established, likewise made such a statement. He then went on to say that in order to speak to him, there were requirements. He then proceeded to enumerate, accompanied by slides, the vast array of skills and knowledge one needed in order to be worthy to step into his presence. His rigorous list would be an excellent checklist for someone who wanted to have a heavy-duty, information assurance consulting practice. However, many of us must think about security and implement practices that address specific risk factors with appropriate levels of time, effort and money. It is not our role to contemplate the vast everythingness of everything. We need to ensure that we have taken appropriate steps on systems within our care. In short, we need focus within that deep, broad ocean called security.
Continue reading “Announcing the Red Hat Certificate of Expertise in Server Hardening”
We’re a little late posting these but here are a few photos from the reception honoring our Red Hat Certified Professionals at McGreevy’s in Boston on June 12, 2013.
Continue reading “Photos: Red Hat Certified Professional Reception at Summit”
At Red Hat Summit last week in Boston, Rafael Guimarães was awarded this year’s prestigious Red Hat Certified Professional of the Year. A native of Brazil, Guimarães is a Red Hat Certified Engineer (RHCE) and JBoss Certified Application Administrator (JBCAA) at Petrobras, the largest oil company in Brazil and one of the largest in the world. This is his story.
Continue reading “VIDEO: Rafael Guimarães, 2013 Red Hat Certified Professional of the Year”
by Randy Russell and Pete Hnath (Red Hat)
Cloud computing represents a major shift in enterprise IT architecture that requires companies to rethink their strategy. Red Hat is bringing to market a full portfolio of training and certification offerings that enable customers to evaluate Red Hat’s cloud technologies and understand how to deploy them successfully.
Customers seeking to build an open Infrastructure-as-a-Service (IaaS) cloud may look to Red Hat OpenStack as their foundation. OpenStack is emerging as a leading platform for IaaS cloud architectures and has attained broad industry support. Red Hat is excited to announce the immediate availability of Red Hat OpenStack Administration (CL210), which provides architects and system administrators with a hands-on course to learn how to install, configure, and manage a Red Hat OpenStack deployment. Later this summer Red Hat will also introduce the Red Hat certificate of expertise in OpenStack IaaS, which will validate a professional’s ability to successfully deploy and administrate an OpenStack based IaaS cloud.
For customers looking to deliver an open Platform-as-a-Service (PaaS) cloud, OpenShift Enterprise by Red Hat may be the solution. OpenShift gives application developers self-service access so they can easily deploy applications on demand. Red Hat is pleased to announce the immediate availability of OpenShift Enterprise Administration (CL280), a heavily lab-based 2-day course that guides the student through the steps to install, configure and manage an OpenShift based PaaS cloud.
Continue reading “Red Hat Training and certifications help build your path to the cloud”
by Sean Millichamp
Sean Millichamp was crowned worldwide Red Hat Certified Professional of the Year in June 2012 at Red Hat Summit. With Rafael Guimaraes officially set to be the next recipient of the award at next week’s Summit event in Boston, Sean offers us a look back at his past 12 months since winning the esteemed title.
It’s been a little over a year now since Red Hat selected me as the 2012 Worldwide Red Hat Certified Professional of the Year and what a year it has been! The whole experience was (and continues to be) amazing.
Initially, I didn’t tell too many people when Red Hat notified me that I had won. As with any contest there is some requisite legal paperwork (permission to use your name, etc.) that has to be cleared and so I only told my family, my boss, and a couple of other co-workers who knew I had submitted an entry, but that didn’t last long. The news passed quickly from my boss, to the company VP, to the CEO and then to the entire executive and sales teams. I still had not announced it to my surrounding coworkers but when a fairly continuous stream of people began walking up to me to shake my hand I found myself repeatedly explaining to those around me why I was being congratulated and what the award was – all the while caught somewhere between my more typically modest self and extreme bubbling pride.
In fact, I think my employer, Secure-24, was every bit as excited about this award as I was. If this seems unusual you need only to understand our business. We are a managed hosting company: IT is our business. The majority of our employees are either technical or work to directly support technical resources. So, when a senior engineer on one of their main product platforms wins a top award with a key partner – it was a sales/marketing dream come true. Our marketing team even issued a press release about it!
Continue reading “Guest Post: My time as Red Hat Certified Professional of the Year”