This article is an extensive guide on building high available clusters with Ansible and Openstack. It is written by CloudVPS cloud admin Remy van Elst and was published last week on his personal blog raymii.org.
We'll build a Highly available cluster consisting out of two load balancers, two database servers and two application servers. This is all done with Ansible, the cluster nodes are all on Openstack. Ansible is a super awesome orchestration tool and Openstack is a big buzzword filled software suite for datacenter virtualization.
At the lanch of CloudVPS Compute on the 19th of May 2014 the initial prices and cloud server sizes (flavors) were estimated on a conservative basis. Now we have actual usage data we can provide our customers with more capacity or lower prices. Today we have increased the CPU capacity of most flavors on offer. In the near future you can expect us to lower the cost of extra volumes.
As of today we've added FreeBSD to our available OpenStack images. This is a bare install of FreeBSD 10.0-RELEASE x86-amd64. It is prepared with BSD Cloudinit so that ssh keys and resizes work with Openstack.
We also added a Fedora 20 image. This is the official Fedora 20 64 bit Cloud Image, taken directly from cloud.fedoraproject.org. The image is configured with cloud-init, and so will take advantage of the OpenStack metadata services for provisioning ssh keys. Note that the root account is disabled, but sudo access is granted to a special login user. For Fedora 19 and newer releases, this user is 'fedora'.
We have recently added a suite in Equinix AM3 as one of our main points of presence. We decided to add a second Equinix managed location to our growing network because of the positive experiences we have had with the company as a customer in Equinix AM2. Also important is that AM3 is the top datacenter in the Netherlands both in terms of sustainability and resilience.
Equinix is the largest datacenter group in the world with a focus on the quality of their service. They currently manage more than 100 datacenters in countries around the world.
This blog is written by CloudVPS developer Koert van der Veer, it was published earlier this month on his personal blog.
There are a ton of CMS systems for personal blogs. Wordpress is probably the most popular one, but there are many others. These CMSs tend to have an online admin panel, protected by a password. Creating a blog entry is usually pretty easy, although when you're a bit picky about the appearance of your post, you'll end up editing HTML.
While these systems are perfect for non-techsavvy users, they have one major weakness: both the software and the content need to be on the same server. This means that the software you use is exposed to the entire internet. Just google wordpress vulnerability to get a sense of the implications. Moreover, you'll need a server configured for some script language, usually PHP, which has both cost and performance implications. Lastly, if your blog gets slashdotted, there is often no good way to scale your blog, as there are many dynamic components.
If nice wysiwyg editing is not among your requirements, you could decide to switch to a static blog system. In this blog I'll be using the CloudVPS objectstore as a storage medium, but there are many alternatives for that, too.
CloudVPS has launched the first OpenStack-based public European cloud today. With CloudVPS Compute, cloud users can create and manage large networks of cloud servers, simply and on demand, within an enterprise-class infrastructure. The new service speaks to the needs of businesses and software developers wary of vendor lock-in, who are seeking an open cloud service where clients are not tied to one single provider. With Compute, CloudVPS offers an open and privacy aware alternative for US-based services such as Amazon Web Services and Microsoft Azure. In most scenario’s CloudVPS Compute will be significantly cheaper than the US based services as well.
See below the text of the article by the CloudVPS CEO about the worrying European privacy situation that was published in de Volkskrant on May 5th.
An American judge has decided that Microsoft is to hand over customer data to American criminal investigation services, even if this data is stored on servers outside of the United States. Another disheartening blow to the weak privacy protection European citizens enjoy. Why does the European Union nevertheless engage with American parties like HP in deploying a protected European cloud? And why is the so called ‘privacy certificate’ for Microsoft not recalled immediately?
CloudVPS has been nominated for the Computable Awards in the category ‘Cloud Provider of the Year’. We have been nominated by the professional judges because of our efforts in creating the first European OpenStack cloud and our free worldwide Content Delivery Network spread out over 93 locations.
Popular ICT magazine Computable yesterday announced the sixty nominated parties for the Computable Awards 2014, the most important ICT awards in the Netherlands. These are projects, organisations and people that have contributed a significantly to the ICT landscape over the last year according to Computable readers. There are five nominated parties in the Best Cloud Provider segment, with Microsoft and Amazon Web Services amongst them. The winners are determined by an independent professional jury and by the party getting the maximum number of votes. A public vote will be taken until the 15th of October 2014.
Another day, another major vulnerability in an important piece of software. Wordpress, one of the most widespread CMS’es in the world, has recently released a new version in order to close a vulnerability which allows attackers unauthorized access to your environment.
When a user logs into Wordpress so-called ‘authentication cookies’ are created and placed on your computer. These authentication cookies contain information regarding the user and authentication and are used for providing access. However, it now seems those authentication cookies can be forged by an attacker, thereby granting full access to your environment.
This morning a vulnerability in OpenSSL was disclosed, which allows secure connections to be intercepted.
The OpenSSL package is used for setting up encrypted connections such as SSL and TLS. You may know these connections as SSH connections to your server or the encrypted HTTPS connections in your browser. You may know these connections as the encrypted connections in your webbrowser indicated by a green lock-icon.
Today a vulnerability called the Heartbleed Bug was disclosed which allows malicious parties to eavesdrop on your encrypted connection, making the encryption ineffective. This also means that transmitted passwords can be captured.