You are here
Maintenance release: bugfixes, security updates, and better Amazon EC2 support
We've just pushed out a maintenance release for the 2009.10 appliance batch featuring:
- Bugfixes for all outstanding issues (we're out of beta baby!)
- Security updates
- Simplified free subscription to Amazon EC2 AMIs
- New and improved Amazon EC2 AMIs
With the new Ubuntu 10.04 LTS release (Lucid Lynx) coming out in a couple of weeks this is the last TurnKey release batch based on the Ubuntu 8.04 series.
Note that Ubuntu 8.04 is a Long Term Support release which will continue to be supported by Canonical with security updates for another 3 years (until April 2013).
Unfortunately, unlike Canonical we don't have the resources to support multiple versions of Ubuntu simultaneously. So with this maintenance release we bid 8.04 a fond farewell. We're cleaning house and sweeping all the bugs and outstanding issues out of the way before we begin rebuilding the appliance library from the ground up on top of a brand new distribution.
Fixing all the bugs from the previous release before rebuilding on a new distribution isn't just neat and tidy, it's good engineering!
Bugfixed and out of beta
We've fixed all the major issues reported by the community and are proud to remove the beta label from nearly all the appliances in the library.
Many thanks to everyone who provided feedback and helped us track down bugs. Most of the issues were minor, but a couple (cough Zimbra cough) were nasty!
Security updates
-
Pre-installed all security updates that have come out since our last release batch. Existing installations have already been auto-updated, so you don't need to do anything.
-
We now install security updates on first boot
Previously appliances were configured to install security updates daily but we've realized that isn't good enough! We need to install security updates on first boot to prevent a window of vulnerability from opening between the time a fresh appliance is deployed and until the cron job that installs the security updates runs.
On the other hand, installing security updates can take a few minutes and isn't critical in all usage scenarios (e.g., a local development VM) so when the appliance first boots the user is given a time-limited option to skip installation of the security updates.
Subscription to Amazon EC2 AMIs now easy and free
-
Unified subscription (the easy part): we've created a single unified subscription that includes global access to all TurnKey appliance AMIs in all regions. Previously you had to subscribe to each appliance separately which was unnecessarily complicated.
-
Free (as in beer): we've decided to let users try out TurnKey on EC2 for free while we solicit more feedback from the community on pricing here.
In the future a reasonable mark-up on usage fees could be a great way to support development and allow users to each share a small part of the burden in keeping the project sustainable. But the devil is in the details, so we want your feedback on that!
New and improved Amazon EC2 AMIs
The latest batch of Amazon EC2 images now features:
-
Support for the us-west-1 region: meaning TurnKey images are now available in all EC2 regions under a new bucket naming scheme:
- turnkeylinux-us-east-1
- turnkeylinux-us-west-1
- turnkeylinux-eu-west-1
- Support for automating EC2 instance setup: via a new user-data scripts mechanism (blog post).
- EBS auto-mounting support: replaces the old buggy ebsmount init script in previous images (blog post).
One more thing...
In the next few weeks we'll be launching a private beta of the TurnKey Hub, a web service we're building to make it super simple for users to deploy and manage TurnKey appliances in the cloud. If you're interested in receiving an invitation, register here.
Comments
what? is this an example of
what? is this an example of security #fail?
== FLOSS'er ==
What is? Is what?
Huh?!? Not really quite clear what you're saying!? Is what an example of security?
Well done guys!
Once again fantastic job! Congrats on getting the appliances out of beta!
Although I'm really looking forward to testing out the 10.04 based releases, I think this final 8.04 based release speaks volumes about your professionalism as a release team! Good work!
Also whilst TKL won't offically be supporting TKL 8.04 based releases post 10.04 based release, I'm sure people looking for some help may have some luck on the Support Forums. And as Liraz stated Ubuntu Server 8.04 is supported by Canonical for another 12mths. Perhaps once 10.04 based appliances are available, some of these releases (the ones that only include components from the supported repos) could still be available for download? Or perhaps that will overcomplicate things?
I really like your new initial security update function (theoretically anyway as I haven't tested it). This demonstrates that TKL is commited not just to easy to use appliances but also maximising real world security.
The Amazon improvements sound quite monumental in terms of making this technology more user (noob) friendly. The TKL hub sounds very interesting and I'm tempted to stick my hand up for an invite although I've never used Amazon and not sure when I will. Although if I could somehow set it up to boot on demand when required (ie so not paying for it sitting there idle when not needed) then I think I could find a use for a private cloud web app server for my work. We have a web app we use in house (which runs in a VM on our server) but due to our (slow upload) internet connection it is painful when used offsite (which doesn't happen much - but can be useful). Thoughts anyone?
As I mentioned above, I'm tempted to apply for a TKL Hub beta account but I'm not sure if I'd actually use it, so you guys may not get a lot of value from my involvement....
But as for beta testing 10.04 based releases, count me in! I can't promise how much time I'll be able to spend, but more than happy to do what I can. At the very least I can install some of them and note any obvious gotchas. I have just aquired a number of old PCs - which I plan on refurbishing and selling cheap with Linux pre-installed (perhaps Ubuntu if its not too heavy on them) - so they may make good TKL test bed candidates in the meantime?
Thanks for the feedback!
You know, I kind of suspected we would get the most meaningful feedback on the release from you.
A few thoughts regarding some of the points you've raised:
You're welcome!
I really enjoy my involvement with TKL and its good to give a little something back (although I often wish I could do more).
Responses to your responses :)
Thoughts
Hardy/8.04 + Lucid/10.04: We're thinking of maybe adding a download link to the updates in the changelog. That way if you want an old version you can just click on the version you want and then scroll down to download it from SF.
Bug testing: We probably won't keep Lucid based appliances in SF for too long (e.g., more than a month or so). Maybe we'll advertise their availability in a side link (e.g., "Beta Lucid build") on the template to get more people to download them and give us feedback. As soon as it looks like there are no major showstoppers, we'll push them out. It'll be a judgement call. There's no fixed schedule.
Sounds good
I think the idea of burying the link to the old appliance revisions in the changelog is a good plan, that way they are still easily available to those who are keen, but not immediately obvious where they may cause confusion.
Also links to beta appliances on appliance pages sounds like a smart plan.
64-bit?
Really been eagerly waiting for this.
Any news on 64-bit systems in the upcoming LTS?
== FLOSS'er ==
Unfortunately I don't think so
I can't speak for Alon & Liraz but my understanding is that while it is on the agenda, it's highly unlikely any 64 bit appliances will make it into the next release.
It's not really relevant to your question, but there is word on the street that there is a chance that a Debian based Core appliance may make it into the next batch of releases.
dang!
thanks.
Good to know, but sad that it's not making the cut (not even the basic core?).
Guess I'll have to wait for the next LTS.
== FLOSS'er ==
You won't have to wait for the next LTS
sweet!
sweet!
== FLOSS'er ==
Pages
Add new comment