Oracle Linux Role in DevSecOps

By Erik Benner August 17, 2023

DevOps has been in existence for a while in technology world. DevSecOps is the new enhanced process that includes security with widely used DevOps process. It integrates security from the get-go of development cycle. We are going to look each of the aspect of DevSecOps in relation to Oracle Linux here.

Oracle Linux is same OS on-premises and on cloud with all features & tools available. This allows developer to develop the applications without requiring any changes while migrating between on premises and cloud infrastructure. Oracle Linux supports development tools like openJDK, NodeJS, Python, Go and Ruby programming languages and EPEL repository that includes access to packages for some of the widely used softwares. These can be installed easily by enabling right repositories across different Oracle Linux release. Python is already integrated and comes preinstalled with Oracle Linux images. Oracle Linux also supports Kubernetes management for containers and popular container
technologies like docker, Podman and Kata containers. Oracle Linux supports development and management of cloud native applications as well. This is possible using Oracle Cloud Native Environment suite of open software technologies.

Oracle provides unique feature Ksplice which allows zero-downtime patching kernel and some critical user-space components like glibc & openssl. Oracle Linux provides variety of services for security validations and tools to check and implement security standards. One of these services is a set of cryptographic libraries and applications that are validated by Federal Information Processing Standards (FIPS). Oracle Linux also follows Security Technical Implementation Guides (STIGs) managed by National Institute of Standards and Technology (NIST). Oracle provides OpenSCAP to scan Oracle Linux for security vulnerabilities and implement security standards like STIG. Here is an example of the scan report of a system running Oracle Linux 7.

One of the recently release for Oracle Linux is Oracle Linux Automation Manager based on opensource projects Ansible & AWX. It is a leading full stack automation technology integrating development, security, and operations components of DevSecOps. It provides browser-based interface, command line interface and API interface to manage infrastructure. It helps you with deploying, upgrading, and updating software and configuring systems using playbooks. OLAM plays very important role in infrastructure management for an organization having small to large environments.

Oracle Linux Manager (OLM) , formerly known as, Spacewalk is an opensource and has proved as a tool to manage all physical and virtual systems from small to large organizations. It allows you to manage system packages and errata on all Linux systems. It also integrates OpenSCAP to run security checks against the systems. It helps automate kickstart installations, system configuration and maintenance tasks for Oracle Linux systems. Oracle Enterprise Manager (OEM) is a management platform that provides intuitive GUI to manage not just Oracle Linux deployment but also all Oracle deployments. It supports complete lifecycle management for on-premises and cloud deployments. Oracle Linux is core part of OCI. It also runs on all engineered systems like Exadata, PCA etc. Oracle Linux is proven for the best database performance optimization.

As we have seen here, Oracle Linux plays important role in DevSecOps world as an open-source operating system. Mythics provides Technical Account Manager (TAM) services for Oracle Linux to customers. Moreover, as a customer you get access to tailored knowledge base that includes topics from various Linux technologies like Oracle Linux Automation Manager (OLAM), Migration to Oracle Linux automation, OpenSCAP, Oracle Linux Manager (OLM) etc.