PTS2021

Fedora CoreOS, a container focused OS to securely deploy and run applications
2021-07-06, 14:00–14:35, Zoom room

Fedora CoreOS is an automatically updating, minimal, monolithic, container-focused operating system, designed for clusters but also operable standalone, optimized for Kubernetes but also great without it. It aims to combine the best of both CoreOS Container Linux and Fedora Atomic Host, integrating technology like Ignition from Container Linux with rpm-ostree and SELinux hardening from Project Atomic. Its goal is to provide the best container host to run containerized workloads securely and at scale.

This talk will describe how Fedora CoreOS is built and maintain and will explain what makes it particularly well suited to securely host modern applications in containers.

This talk will be illustrated by several examples: how to easily run a Matrix server on a single node, how to deploy Nomad on three nodes and how to use it as part of a Kubernetes distribution (OKD or Typhoon).

Timothée Ravier is a Linux system and security engineer interested in safe programming languages and container focused operating systems. He is currently working at Red Hat as a CoreOS engineer. He created and maintains Fedora Kinoite, an rpm-ostree based variant of Fedora with the KDE Plasma desktop and is packaging KDE applications in Flatpaks for Flathub and Fedora.