<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>English on Empowering European Innovation</title><link>https://beta.safespring.eu/tags/english/</link><description>Recent content in English on Empowering European Innovation</description><generator>Hugo</generator><language>en-GB</language><copyright>2025 Safespring</copyright><lastBuildDate>Fri, 10 Jul 2026 16:26:39 +0200</lastBuildDate><atom:link href="https://beta.safespring.eu/tags/english/index.xml" rel="self" type="application/rss+xml"/><item><title>Safespring Kubernetes Engine demos</title><link>https://beta.safespring.eu/demo/kubernetes/</link><pubDate>Sat, 20 Jun 2026 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/kubernetes/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Learn how Safespring Kubernetes Engine works in practice, from provisioning a managed cluster to connecting with kubectl and understanding the operational boundaries around the service.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;These demos are aimed at teams evaluating Kubernetes on Safespring or preparing to run workloads on the platform. Each chapter card opens the same walkthrough at the selected timestamp, so you can jump directly to the part you need.&lt;/p&gt;



&lt;br&gt;
&lt;a href='https://beta.safespring.eu/contact/#contact-form' target='_self' class='button'&gt;Contact us&lt;/a&gt;
&lt;br&gt;</description></item><item><title>Introduction to Safespring Cloud Platform</title><link>https://beta.safespring.eu/demo/compute/</link><pubDate>Fri, 19 Apr 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/compute/</guid><description>&lt;h1 id="contact-us"&gt;Contact us&lt;/h1&gt;
&lt;div class="ingress"&gt;&lt;p&gt;
Why choose a Swedish IaaS provider that upholds stringent data compliance standards for your software solutions?
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;At Safespring, we provide a cloud service that supports your business&amp;rsquo;s need for operational flexibility while maintaining a commitment to Sweden&amp;rsquo;s data privacy and compliance requirements. Our platform allows for efficient deployment, management, and scaling of applications.&lt;/p&gt;
&lt;h3 id="what-to-expect-from-a-meeting-with-us"&gt;What to Expect from a Meeting with Us&lt;/h3&gt;
&lt;ul&gt;
&lt;li&gt;Insights into our cloud services and solutions tailored for SaaS companies&lt;/li&gt;
&lt;li&gt;A walkthrough of how our platform can support your business&amp;rsquo;s digital transformation&lt;/li&gt;
&lt;li&gt;Guidance on optimizing your cloud strategy to better suit your specific business needs&lt;/li&gt;
&lt;/ul&gt;



&lt;br&gt;
&lt;a href='https://beta.safespring.eu/contact/#contact-form' target='_self' class='button'&gt;Contact us&lt;/a&gt;
&lt;br&gt;

&lt;div&gt;&lt;/div&gt;
&lt;div style="margin-bottom:100px;"&gt;
&lt;/div&gt;

&lt;h2 id="deepen-your-expertise-with-safespring-openstack"&gt;Deepen Your Expertise with Safespring OpenStack&lt;/h2&gt;
&lt;div class="ingress"&gt;&lt;p&gt;
Through focused demonstrations, we cover essential tasks and configurations necessary for managing and optimizing the Safespring OpenStack environment.
&lt;/p&gt;</description></item><item><title>Digital control is not a product</title><link>https://beta.safespring.eu/perspectives/digital-radighet-ar-inte-en-produkt/</link><pubDate>Wed, 01 Jul 2026 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/digital-radighet-ar-inte-en-produkt/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
When CivSec published the report Digital rådighet och strukturella beroenden in May 2026, it gave a clear definition to the concept: an organization's actual ability to control information, systems and decisions over time, even when suppliers, contracts or legal conditions change.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;The report places digital control alongside NIS2, the AI Act, DORA and the Swedish Cybersecurity Act (2025:1506).&lt;sup id="fnref:1"&gt;&lt;a href="#fn:1" class="footnote-ref" role="doc-noteref"&gt;1&lt;/a&gt;&lt;/sup&gt; It also points to the gap between what the regulatory frameworks already make possible and what organizations actually require when they procure, document and govern their digital environments.&lt;/p&gt;</description></item><item><title>Introduction to Safespring Kubernetes Engine</title><link>https://beta.safespring.eu/demo/introduction-to-safespring-kubernetes-engine/</link><pubDate>Sat, 20 Jun 2026 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/introduction-to-safespring-kubernetes-engine/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This demo walks through the full first-cluster flow in Safespring Kubernetes Engine: from signing in to the portal and creating a cluster to connecting with kubectl and removing the demo cluster when it is no longer needed.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;The walkthrough starts in the Safespring self-service portal, where environments are used to group resources. From an empty environment, the demo creates a new Kubernetes cluster and shows the choices made during provisioning, including data center, control plane sizing and worker node sizing.&lt;/p&gt;</description></item><item><title>Safespring positions itself for continued growth: Appoints Johan Harrysson as new CEO</title><link>https://beta.safespring.eu/perspectives/safespring-positions-itself-for-continued-growth-appoints-johan-harrysson-as-new-ceo/</link><pubDate>Thu, 05 Feb 2026 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/safespring-positions-itself-for-continued-growth-appoints-johan-harrysson-as-new-ceo/</guid><description>&lt;p&gt;&lt;img
 src="https://beta.safespring.eu/img/people/harrysson/safespring-harrysson-1.jpg"
 width="2000" height="1333"
 alt="Johan Harrysson, CEO at Safespring"
 
 loading="lazy"
/&gt;

&lt;em&gt;Download &lt;a href="https://beta.safespring.eu/img/people/harrysson/safespring-harrysson-2.jpg"&gt;high-resolution image&lt;/a&gt;.&lt;/em&gt;&lt;/p&gt;
&lt;p&gt;The Swedish cloud provider Safespring announces today that it is strengthening its management team. Johan Harrysson has been recruited as the new Chief Executive Officer (CEO) in a strategic move to lead the company forward following strong growth over the past five years.&lt;/p&gt;
&lt;p&gt;Johan Harrysson, with experience as CEO of fast-growing companies in regulated industries, is a familiar name to the company, as he previously held the role of CCO (Chief Commercial Officer) at Safespring.&lt;/p&gt;</description></item><item><title>The EU just defined Sovereign Cloud, here is our score</title><link>https://beta.safespring.eu/perspectives/the-eu-just-defined-sovereign-cloud-here-is-our-score/</link><pubDate>Thu, 06 Nov 2025 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/the-eu-just-defined-sovereign-cloud-here-is-our-score/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
On 20 October 2025, the European Commission published a reference for grading European clouds: the Cloud Sovereignty Framework.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Inspired by initiatives from France&lt;sup id="fnref:1"&gt;&lt;a href="#fn:1" class="footnote-ref" role="doc-noteref"&gt;1&lt;/a&gt;&lt;/sup&gt;, Germany&lt;sup id="fnref:2"&gt;&lt;a href="#fn:2" class="footnote-ref" role="doc-noteref"&gt;2&lt;/a&gt;&lt;/sup&gt;, and European regulations&lt;sup id="fnref:3"&gt;&lt;a href="#fn:3" class="footnote-ref" role="doc-noteref"&gt;3&lt;/a&gt;&lt;/sup&gt;, as well as international practices in export controls, supply chain resilience, and security auditability, this framework&lt;sup id="fnref:4"&gt;&lt;a href="#fn:4" class="footnote-ref" role="doc-noteref"&gt;4&lt;/a&gt;&lt;/sup&gt; offers a new approach to objectify a topic that has been hard to quantify and compare.&lt;/p&gt;
&lt;p&gt;This new framework echoes the white paper that the EuroStack industry initiative published just weeks prior, titled ”&lt;em&gt;A Proposed Framework for a &amp;lsquo;Buy European&amp;rsquo; Regulation of Strategic Digital Procurement&lt;/em&gt;”&lt;sup id="fnref:5"&gt;&lt;a href="#fn:5" class="footnote-ref" role="doc-noteref"&gt;5&lt;/a&gt;&lt;/sup&gt;.&lt;/p&gt;</description></item><item><title>EuroStack’s Second Open Letter: Buy, Sell and Fund European!</title><link>https://beta.safespring.eu/perspectives/eurostacks-second-open-letter-buy-sell-and-fund-european/</link><pubDate>Wed, 07 May 2025 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/eurostacks-second-open-letter-buy-sell-and-fund-european/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
On 6 May 2025, the EuroStack Industry Group, now over 200 strong, sent its second open letter to President von der Leyen, EVP Virkkunen and EVP Séjourné. Safespring is proud to stand with our peers in calling for the full deployment of the EuroStack by 2030. 
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Europe’s digital ecosystem is at a crossroads: continue as a “digital colony” dependent on US and Chinese providers, or build our own, sovereign infrastructure. The data are clear, over 80 % of large European enterprises’ cloud and software spending still flows to US giants, leaking jobs and value out of our economy. Even the major US vendors themselves now hedge against geopolitical risk with hollow promises to sue their own governments rather than secure our digital sovereignty.&lt;/p&gt;</description></item><item><title>When you want, need or are forced to leave an American cloud provider</title><link>https://beta.safespring.eu/perspectives/when-you-want-need-or-are-forced-to-leave-an-american-cloud-provider/</link><pubDate>Wed, 26 Mar 2025 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/when-you-want-need-or-are-forced-to-leave-an-american-cloud-provider/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
In today’s geopolitical landscape where USA quickly tries to become more like China and Russia, customers to American cloud providers are faced with difficult decisions.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;&lt;strong&gt;Do you want to leave?&lt;/strong&gt; Maybe you feel that USA is too far gone destroying their democracy, or that things in general are going haywire.&lt;/p&gt;
&lt;p&gt;&lt;strong&gt;Do you need to leave?&lt;/strong&gt; Maybe your customer demands that your service is free from American connections or your employees refuse to work with American cloud providers or the Trans-Atlantic Data Privacy Framework disappears. If you are in the public sector or primarily sell to the public sector then you may need to reassess whether you can store and process personal data and/or secret information.&lt;/p&gt;</description></item><item><title>Why Safespring supports EuroStack</title><link>https://beta.safespring.eu/perspectives/why-safespring-supports-eurostack/</link><pubDate>Mon, 17 Mar 2025 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/why-safespring-supports-eurostack/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
At Safespring we have, for almost 10 years, been developing and selling cloud services that respects that the customers’ data only belong to the customer and that European digital sovereignty is necessary for Europe to thrive.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;In the current global political landscape it is obvious that Europe’s dependency on USA and China when it comes to IT products and services is disastrous for Europe’s future. Europe therefore needs to act swiftly to regain control over it’s own destiny.&lt;/p&gt;</description></item><item><title>Is it possible to replace VMware? There might be...</title><link>https://beta.safespring.eu/deep-dive/is-it-possible-to-replace-vmware-there-might-be.../</link><pubDate>Thu, 20 Feb 2025 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/is-it-possible-to-replace-vmware-there-might-be.../</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
With Broadcom's acquisition of VMware, many companies and organizations that have built their infrastructure on VMware have faced an unpleasant surprise: a new subscription-based model and overall higher prices.
&lt;/p&gt;&lt;/div&gt;
&lt;div class="accordion-box"&gt;
 &lt;button type="button" class="accordion" id="accordion-1-button" aria-expanded="false" aria-controls="accordion-1-panel"&gt;TL;DR&lt;/button&gt;
 &lt;div class="panel content-body" id="accordion-1-panel" role="region" aria-labelledby="accordion-1-button" aria-hidden="true" inert&gt;
 &lt;h3&gt;TL;DR&lt;/h3&gt;
&lt;ol&gt;
&lt;li&gt;Broadcom’s acquisition of VMware has sparked concerns over subscription-based pricing and higher costs.&lt;/li&gt;
&lt;li&gt;While VMware excels at on-premises virtualization, Safespring offers a cloud-native alternative based on OpenStack (virtualization), Ceph (storage), and containers.&lt;/li&gt;
&lt;li&gt;It’s not a direct drop-in replacement; instead, Safespring enables modernization of IT infrastructure with tools for network security, resilient services (via Elastic IPs and Server Groups), and flexible VPN options like WireGuard.&lt;/li&gt;
&lt;li&gt;Built on open-source technologies, Safespring’s solutions avoid lock-in, empower administrators with hands-on control, and ensure predictable, transparent pricing over time.&lt;/li&gt;
&lt;/ol&gt;
&lt;br&gt;
&lt;a href='#conclusion' target='_self' class='button'&gt;Let&amp;#39;s talk&lt;/a&gt;
&lt;br&gt;
 &lt;div class="pb-2"&gt;&lt;/div&gt;
 &lt;/div&gt;
&lt;/div&gt;
&lt;h2 id="the-vmware-offering"&gt;The VMware Offering&lt;/h2&gt;
&lt;p&gt;For more than 20 years, VMware has been the most successful player in the market for virtualization solutions. VMware has offered flexibility (through virtualization) and other features and products to ease the workload of system administrators. Through good design choices, many customers have been able to migrate old physical systems directly into VMware. With robust monitoring, backend storage, and software-defined networking (SDN) solutions, VMware has enabled systems to be set up in a resilient and redundant way, requiring minimal changes to the actual software configuration of the systems. Additionally, VMware includes built-in network security features.&lt;/p&gt;</description></item><item><title>Embracing change: A Glimpse into Safespring's Engineering plans for 2025</title><link>https://beta.safespring.eu/perspectives/embracing-change-a-glimpse-into-safesprings-engineering-plans-for-2025/</link><pubDate>Mon, 17 Feb 2025 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/embracing-change-a-glimpse-into-safesprings-engineering-plans-for-2025/</guid><description>&lt;p&gt;Hello everyone,&lt;/p&gt;
&lt;p&gt;I&amp;rsquo;m thrilled to share some exciting updates from Safespring&amp;rsquo;s engineering department. Since becoming Head of Engineering during September 2024, I&amp;rsquo;ve had the privilege of leading our teams that have been working tirelessly to enhance our infrastructure and capabilities.&lt;/p&gt;
&lt;p&gt;It’s now almost 6 months since I took this role and I’m incredibly happy to share many exciting announcements and insights today!&lt;/p&gt;
&lt;div class="accordion-box"&gt;
 &lt;button type="button" class="accordion" id="accordion-0-button" aria-expanded="false" aria-controls="accordion-0-panel"&gt;TL;DR&lt;/button&gt;
 &lt;div class="panel content-body" id="accordion-0-panel" role="region" aria-labelledby="accordion-0-button" aria-hidden="true" inert&gt;
 &lt;h3&gt;TL;DR&lt;/h3&gt;
&lt;p&gt;So you want the short version? Safespring’s engineering team is making big moves in 2025!&lt;/p&gt;</description></item><item><title>Safespring’s Cloud Services Now Available Through OCRE 2024</title><link>https://beta.safespring.eu/perspectives/safesprings-cloud-services-now-available-through-ocre-2024/</link><pubDate>Mon, 03 Feb 2025 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/safesprings-cloud-services-now-available-through-ocre-2024/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
As of February 3, 2025, Safespring’s cloud services are officially available through the OCRE 2024. This means that researchers and institutions can now procure our services more easily, with pre-negotiated terms and competitive pricing.
&lt;/p&gt;&lt;/div&gt;
&lt;div class="note-dotted" style="--note-accent: #32CD32;"&gt;
 &lt;p class="note-dotted-title note-dotted-title--custom"&gt;
 &lt;span class="note-dotted-icon" aria-hidden="true"&gt;&lt;svg class="fa-icon fa-solid fa-exclamation" aria-hidden="true" focusable="false" data-fa-symbol="fa-solid-exclamation"&gt;
 &lt;use href="#fa-solid-exclamation" xlink:href="#fa-solid-exclamation"&gt;&lt;/use&gt;
&lt;/svg&gt;
&lt;/span&gt;
 &lt;span&gt;TL;DR&lt;/span&gt;
 &lt;/p&gt;
 &lt;div class="note-dotted-content"&gt;&lt;p&gt;OCRE 2024 is a framework agreement that simplifies cloud service procurement for research and education institutions with pre-negotiated terms and competitive pricing.&lt;/p&gt;
&lt;/div&gt;
&lt;/div&gt;
&lt;p&gt;Safespring has been a trusted provider of cloud services for the research and education sector since its founding. Our mission is to empower innovation by offering high-performance computing, managed container platforms, scalable storage, and flexible backup solutions—all designed to meet the needs of modern research environments.&lt;/p&gt;</description></item><item><title>Future-Ready Automated Services in the Higher Education Sector</title><link>https://beta.safespring.eu/deep-dive/future-ready-automated-services-in-the-higher-education-sector/</link><pubDate>Thu, 21 Nov 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/future-ready-automated-services-in-the-higher-education-sector/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
The higher education sector is standing at the crossroads of technology. Innovation must go on to meet new demands, but cost optimization and an ever-growing need for flexibility and security can be hard to deal with.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;During a recent webinar with SIKT, “Virtualization and IT Infrastructure in the Higher Education Sector,” I had the opportunity to delve into how automation, open standards, and digital sovereignty can reshape IT operations for universities and colleges.&lt;/p&gt;</description></item><item><title>Driving Open Science Forward: Safespring’s Role in the EOSC EU Node Launch</title><link>https://beta.safespring.eu/perspectives/driving-open-science-forward-safesprings-role-in-the-eosc-eu-node-launch/</link><pubDate>Fri, 11 Oct 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/driving-open-science-forward-safesprings-role-in-the-eosc-eu-node-launch/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
We’re excited to share that the technical launch of the EOSC EU Node took place on 10 October 2024, and our CEO, Fredric, was present at the event in Brussels.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;This milestone brings Europe one step closer to a fully operational platform for advancing Open Science and fostering collaboration across the research community.&lt;/p&gt;
&lt;p&gt;Safespring is proud to be part of this important initiative aimed at building trusted infrastructure for open science across Europe. Read more about the event and its impact here: &lt;a href="https://open-science-cloud.ec.europa.eu/news/technical-launch-european-open-science-cloud-eosc-eu-node-sets-stage-successful-deployment"&gt;Technical Launch of the European Open Science Cloud (EOSC) EU Node&lt;/a&gt;.&lt;/p&gt;</description></item><item><title>Escaping the VMware trap?</title><link>https://beta.safespring.eu/deep-dive/escaping-the-vmware-trap/</link><pubDate>Fri, 30 Aug 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/escaping-the-vmware-trap/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Broadcom's acquisition of VMware has had significant impacts on customers,
causing concern and prompting some to consider alternatives. This post will
address these challenges and describe one solution to the challenges.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;These changes, after Broadcom&amp;rsquo;s acquisition of VMware, have led to higher long-term
costs for many customers, especially smaller businesses that may see dramatic
increases in their annual renewal fees.&lt;/p&gt;
&lt;div class="note-dotted" style="--note-accent: #32CD32;"&gt;
 &lt;p class="note-dotted-title note-dotted-title--custom"&gt;
 &lt;span class="note-dotted-icon" aria-hidden="true"&gt;&lt;svg class="fa-icon fa-solid fa-exclamation" aria-hidden="true" focusable="false" data-fa-symbol="fa-solid-exclamation"&gt;
 &lt;use href="#fa-solid-exclamation" xlink:href="#fa-solid-exclamation"&gt;&lt;/use&gt;
&lt;/svg&gt;
&lt;/span&gt;
 &lt;span&gt;Key effects of Broadcom&amp;#39;s acquisition of VMware&lt;/span&gt;
 &lt;/p&gt;</description></item><item><title>Self-Service Access to Open Source Infrastructure using NATS &amp; Huma</title><link>https://beta.safespring.eu/deep-dive/self-service-access-to-open-source-infrastructure-using-nats-huma/</link><pubDate>Fri, 24 May 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/self-service-access-to-open-source-infrastructure-using-nats-huma/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
I recently had the opportunity to present at OpenInfra Day Sweden 2024, and I'm excited to share the insights and developments from our team at Safespring.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Over the past three months, we&amp;rsquo;ve been working on a new tool designed to enhance self-service access to open source infrastructure for our B2B and European research community customers. This tool leverages the power of NATS and Huma technologies.&lt;/p&gt;
&lt;p&gt;&lt;span class="inline-rubrik"&gt;Safespring’s Mission&lt;/span&gt;
 Safespring aims to become the platform of choice for European cloud computing. We are dedicated to providing secure, compliant cloud services across multiple data centers in the Nordics, including Oslo, Stockholm, and Luleå. Our offerings adhere to GDPR and European security standards, ensuring top-notch security for our users.&lt;/p&gt;</description></item><item><title>Greetings from OpenInfra Days Gothenburg 2024!</title><link>https://beta.safespring.eu/perspectives/greetings-from-openinfra-days-gothenburg-2024/</link><pubDate>Tue, 07 May 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/greetings-from-openinfra-days-gothenburg-2024/</guid><description>&lt;p&gt;Hello everyone,&lt;/p&gt;
&lt;p&gt;I&amp;rsquo;m Jon Ander Novella de Miguel, and I had the pleasure of representing Safespring at the OpenInfra Days held in Gothenburg on May 7, 2024. Although we missed seeing many of you there, I’m excited to share the essence of our session and how Safespring is pushing the boundaries of open source infrastructure.&lt;/p&gt;
&lt;h3 id="our-presentation-enhancing-infrastructure-with-nats-and-huma"&gt;Our Presentation: Enhancing Infrastructure with NATS and Huma&lt;/h3&gt;
&lt;p&gt;Our talk, &amp;ldquo;Using NATS and Huma to Enhance Open Source Infrastructure,&amp;rdquo; focused on how these technologies are integral to fostering a robust, secure, and flexible digital environment, especially for B2B and European research communities. We&amp;rsquo;re committed to providing solutions that not only meet current demands but also anticipate future challenges.&lt;/p&gt;</description></item><item><title>Creating and Managing SSH Keys in OpenStack</title><link>https://beta.safespring.eu/demo/creating-and-managing-ssh-keys-in-openstack/</link><pubDate>Fri, 19 Apr 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/creating-and-managing-ssh-keys-in-openstack/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Join us in this detailed demonstration where we guide you through the process of creating SSH keys for secure access to the OpenStack environment.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Starting with the basics, this video covers the generation of an RSA SSH key using the &lt;code&gt;ssh-keygen&lt;/code&gt; command, including optional passphrase settings for enhanced security.&lt;/p&gt;
&lt;p&gt;We then proceed to illustrate how to handle the public key by uploading it to the OpenStack platform and managing key pairs within the system.&lt;/p&gt;</description></item><item><title>Implementing Server Groups in OpenStack</title><link>https://beta.safespring.eu/demo/implementing-server-groups-in-openstack/</link><pubDate>Fri, 19 Apr 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/implementing-server-groups-in-openstack/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This video tutorial delves into the concept of server groups within OpenStack, a critical feature for ensuring that instances, particularly in high-availability setups like database clusters, do not run on the same physical hardware. &lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Safespring Cloud Architect, Gabriel, explains the distinction between different policies like affinity, anti-affinity, soft affinity, and soft anti-affinity, emphasizing the importance of anti-affinity for scenarios requiring true redundancy.&lt;/p&gt;
&lt;p&gt;By walking through the creation of a server group named &amp;lsquo;DB Cluster&amp;rsquo; with an anti-affinity policy, the video demonstrates how to configure and deploy instances that are guaranteed to operate on separate compute nodes.&lt;/p&gt;</description></item><item><title>Launching an Instance from an Image in OpenStack</title><link>https://beta.safespring.eu/demo/launching-an-instance-from-an-image-in-openstack/</link><pubDate>Fri, 19 Apr 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/launching-an-instance-from-an-image-in-openstack/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This video provides a step-by-step guide on launching a new instance in OpenStack using an image as the source.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Starting from the Safespring portal, the tutorial covers the entire process, from naming your instance and selecting the appropriate image and flavor to configuring network settings and security groups.&lt;/p&gt;
&lt;p&gt;You will learn how to choose between different storage and compute options, set up network connectivity including IPv4 and IPv6 addresses, and ensure your instance is secure through proper security group settings.&lt;/p&gt;</description></item><item><title>Mastering Security Groups in OpenStack</title><link>https://beta.safespring.eu/demo/mastering-security-groups-in-openstack/</link><pubDate>Fri, 19 Apr 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/mastering-security-groups-in-openstack/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This tutorial offers an in-depth look at setting up and managing security groups within OpenStack, crucial for controlling access to instances across various network configurations.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Beginning with an overview of security groups&amp;rsquo; role in defining what can interact within the OpenStack environment, the video guides viewers through creating and applying security groups named &amp;ldquo;frontend&amp;rdquo; and &amp;ldquo;backend&amp;rdquo; to manage web and database servers respectively.&lt;/p&gt;
&lt;p&gt;The session demonstrates how to configure security rules that enable HTTPS and MySQL traffic, utilizing the capability to reference other security groups instead of specific IP addresses for scalability and ease of management.&lt;/p&gt;</description></item><item><title>Starting and Managing Instances from Volumes in OpenStack</title><link>https://beta.safespring.eu/demo/starting-and-managing-instances-from-volumes-in-openstack/</link><pubDate>Fri, 19 Apr 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/starting-and-managing-instances-from-volumes-in-openstack/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This tutorial delves into the process of launching an OpenStack instance using a volume instead of the default image source, providing a more robust data storage solution.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;The video begins by explaining the benefits of using volumes, particularly their ability to store data in multiple copies, reducing the risk of data loss due to hardware failures.&lt;/p&gt;
&lt;p&gt;Viewers will be guided through the steps of creating a bootable volume from an image, selecting storage types for performance or cost efficiency, and configuring the instance with appropriate network and security settings.&lt;/p&gt;</description></item><item><title>Understanding Instance Types and Storage Options in Safespring</title><link>https://beta.safespring.eu/demo/understanding-instance-types-and-storage-options-in-safespring/</link><pubDate>Fri, 19 Apr 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/understanding-instance-types-and-storage-options-in-safespring/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This tutorial video dives into the variety of instance types, also known as "flavors," available on the Safespring platform.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;You will learn the key differences between &lt;code&gt;B2&lt;/code&gt; and &lt;code&gt;L2&lt;/code&gt; flavors, focusing on their storage capabilities. The video highlights how &lt;code&gt;B2&lt;/code&gt; flavors require an external volume for boot operations, whereas &lt;code&gt;L2&lt;/code&gt; flavors include built-in storage suitable for operating systems but with a caveat on data persistence and security.&lt;/p&gt;
&lt;p&gt;This guide is essential for users looking to make informed decisions about instance configurations and understanding the implications of each flavor for their specific needs in cloud environments.&lt;/p&gt;</description></item><item><title>Understanding Network Configurations in OpenStack</title><link>https://beta.safespring.eu/demo/understanding-network-configurations-in-openstack/</link><pubDate>Fri, 19 Apr 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/understanding-network-configurations-in-openstack/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This instructional video provides a detailed overview of network configurations available on the Safespring OpenStack platform.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;This tutorial demonstrates the practical use of jump hosts to securely access instances that are not directly reachable from external networks.&lt;/p&gt;
&lt;p&gt;Starting with a setup that includes instances in both public and default networks, the video shows the step-by-step process of transferring necessary SSH keys to a public jump host, enabling secure shell access to a backend instance located in a less accessible network.&lt;/p&gt;</description></item><item><title>Utilizing Jump Hosts for Secure Access in OpenStack</title><link>https://beta.safespring.eu/demo/utilizing-jump-hosts-for-secure-access-in-openstack/</link><pubDate>Fri, 19 Apr 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/demo/utilizing-jump-hosts-for-secure-access-in-openstack/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This tutorial demonstrates the practical use of jump hosts to securely access instances that are not directly reachable from external networks.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Starting with a setup that includes instances in both public and default networks, the video shows the step-by-step process of transferring necessary SSH keys to a public jump host, enabling secure shell access to a backend instance located in a less accessible network.&lt;/p&gt;
&lt;p&gt;The guide emphasizes the role of security groups and network settings in ensuring secure and controlled connectivity across different network layers.&lt;/p&gt;</description></item><item><title>Kubernetes Project Onboarding Guide</title><link>https://beta.safespring.eu/deep-dive/kubernetes-project-onboarding-guide/</link><pubDate>Mon, 08 Apr 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/kubernetes-project-onboarding-guide/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Welcome to Project Onboarding - a transformative approach to simplifying namespace management in Kubernetes for multi-tenant environments.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;This tool is crafted for IT architects, DevOps engineers, and technical teams eager to integrate company-specific workflows into Kubernetes, fostering a seamless, efficient namespace management system. Project Onboarding stands at the intersection of innovation and simplicity, offering a robust solution to the complexities often encountered in Kubernetes namespace management.&lt;/p&gt;
&lt;div class="note-dotted" style="--note-accent: #32CD32;"&gt;
 &lt;p class="note-dotted-title note-dotted-title--custom"&gt;
 &lt;span class="note-dotted-icon" aria-hidden="true"&gt;&lt;svg class="fa-icon fa-solid fa-exclamation" aria-hidden="true" focusable="false" data-fa-symbol="fa-solid-exclamation"&gt;
 &lt;use href="#fa-solid-exclamation" xlink:href="#fa-solid-exclamation"&gt;&lt;/use&gt;
&lt;/svg&gt;
&lt;/span&gt;
 &lt;span&gt;GitHub repository&lt;/span&gt;
 &lt;/p&gt;</description></item><item><title>Install the OpenStack Cinder CSI driver for Kubernetes</title><link>https://beta.safespring.eu/deep-dive/install-the-openstack-cinder-csi-driver-for-kubernetes/</link><pubDate>Wed, 13 Mar 2024 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/install-the-openstack-cinder-csi-driver-for-kubernetes/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Have you configured your OKD or OpenShift cluster with the platform option set to "none" and, as a result, are missing the OpenStack Cinder CSI Driver Operator?
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;This guide is designed to help you effortlessly integrate the Cinder CSI Volume Provisioner into your OKD or OpenShift cluster. It&amp;rsquo;s designed to streamline the process, making the integration seamless and hassle-free.&lt;/p&gt;
&lt;p&gt;Moreover, this guide is not exclusive to OpenShift or OKD environments; it can be easily adapted for use in vanilla Kubernetes setups with a simple modification. A key highlight for OKD and OpenShift users is the inclusion of Security Context Constraints (SCC) cluster role bindings in the Helm chart&amp;rsquo;s templates directory. This critical feature enables the Cinder CSI pods to run with privileged access, aligning them with OpenShift&amp;rsquo;s security practices and ensuring their optimal functionality within your cluster&amp;rsquo;s security framework.&lt;/p&gt;</description></item><item><title>Automating cloud resources with Python and Pulumi: Separating config from code</title><link>https://beta.safespring.eu/deep-dive/automating-cloud-resources-with-python-and-pulumi-separating-config-from-code/</link><pubDate>Tue, 19 Sep 2023 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/automating-cloud-resources-with-python-and-pulumi-separating-config-from-code/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
In infrastructure code (and other code, too) it is a good practice
to separate the program logic from its input data (configuration). That way,
in order to change the state of our infrastructure, we only need to change the
input data and not the program unless the logic of the program changes.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;In the &lt;a href="https://beta.safespring.eu/deep-dive/automating-cloud-resources-with-python-and-pulumi-basic-provisioning/"&gt;previous blog post&lt;/a&gt;, we went through a basic setup of Pulumi with
the Python template for using it to manage OpenStack resources in Safespring.
This is a good starting point to understand the basics of how one can use Python
together with Pulumi to declaratively manage infrastructure resources without
having to write all resource graph management from the ground and up, which, of
course, also would be possible with Python or any modern programming language
for that matter.&lt;/p&gt;</description></item><item><title>Automating cloud resources with Python and Pulumi: Basic provisioning</title><link>https://beta.safespring.eu/deep-dive/automating-cloud-resources-with-python-and-pulumi-basic-provisioning/</link><pubDate>Mon, 11 Sep 2023 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/automating-cloud-resources-with-python-and-pulumi-basic-provisioning/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Efficient consumption of cloud services is all about automating the up and
down-scaling of resources according to the ever-changing needs. The list of
tools, their properties and their fitness for the purpose can be daunting.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;On top of that comes the changing landscape in licensing and subscription,
sometimes with astonishing effects on your existing cloud strategy, recently
exemplified by Hashicorp&amp;rsquo;s unexpected license change to the Business Source
License (BSL). In this landscape, we must always be prepared to adapt and
change, thus, it is good to have acquaintance with both old established tools
and some alternatives. This post is the first in a series on how to utilize
Pulumi to automate service consumption towards the Safespring cloud APIs.&lt;/p&gt;</description></item><item><title>Creating a multi-cloud web service from scratch</title><link>https://beta.safespring.eu/deep-dive/creating-a-multi-cloud-web-service-from-scratch/</link><pubDate>Wed, 07 Jun 2023 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/creating-a-multi-cloud-web-service-from-scratch/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Explore the power of infrastructure as code (IAC) with this guide on
creating a scalable web application using multiple OpenStack sites.
Learn how to utilize Terraform for infrastructure provisioning, Ansible
for system configuration, and how these tools, in combination with DNS
round-robin, can offer a dynamic and scalable solution for your web services.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;In previous posts, we have shown the power of combining Terraform for
infrastructure provisioning and Ansible for configuring operating systems on
the instances in the infrastructure. In this blog post, we take it one step
further. We will show a minimal example of how to scale up web service backends
across multiple sites and use an API programmable DNS servcie (Gandi) to
maintain A records for those backends, effectively scaling the service by means
of DNS round-robin (RR).&lt;/p&gt;</description></item><item><title>Automating backup node enrollment with Cloutility API-client</title><link>https://beta.safespring.eu/deep-dive/automating-backup-node-enrollment-with-cloutility-api-client/</link><pubDate>Wed, 26 Apr 2023 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/automating-backup-node-enrollment-with-cloutility-api-client/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
In this tutorial, we will explore Safespring's cloutility-backup-client library written in Go. We will write a small, easily deployable, tool to automate the enrollment procedure of backup nodes and take a deeper look at a few of the methods available in the cloutility-api-client library.
&lt;/p&gt;&lt;/div&gt;
&lt;div class="note-dotted" style="--note-accent: #32CD32;"&gt;
 &lt;p class="note-dotted-title note-dotted-title--custom"&gt;
 &lt;span class="note-dotted-icon" aria-hidden="true"&gt;&lt;svg class="fa-icon fa-solid fa-exclamation" aria-hidden="true" focusable="false" data-fa-symbol="fa-solid-exclamation"&gt;
 &lt;use href="#fa-solid-exclamation" xlink:href="#fa-solid-exclamation"&gt;&lt;/use&gt;
&lt;/svg&gt;
&lt;/span&gt;
 &lt;span&gt;Recommended reading&lt;/span&gt;
 &lt;/p&gt;
 &lt;div class="note-dotted-content"&gt;&lt;p&gt;Dive deeper into the world of open-source backup client management by checking out our recent article on &lt;a href="https://beta.safespring.eu/deep-dive/creating-an-open-source-backup-client-library/"&gt;Creating an Open-Source Backup Client Library.&lt;/a&gt; Happy reading!&lt;/p&gt;</description></item><item><title>Creating an open-source backup client library</title><link>https://beta.safespring.eu/deep-dive/creating-an-open-source-backup-client-library/</link><pubDate>Sun, 23 Apr 2023 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/creating-an-open-source-backup-client-library/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
At Safespring, we are passionate about open source technologies. Our platform relies on multiple open source products, and we are committed to giving back to the community whenever possible.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Sometimes, however, we find ourselves in need of a solution that does not yet exist. As was the case when we wanted to create a tool to simplify the enrollment process for backup clients to our backup solution.&lt;/p&gt;
&lt;p&gt;Safesprings backup solution is based on IBM Spectrum Protect fronted by Auwau&amp;rsquo;s Cloutility software. This combination provides a powerful enterprise-grade backup solution and Cloutility provides both customer portal and a rich API. However, we were unable to find an existing client library that could be used to consume the Cloutility API.&lt;/p&gt;</description></item><item><title>Important update regarding the EOL of the legacy platform in STO1</title><link>https://beta.safespring.eu/deep-dive/important-update-regarding-the-eol-of-the-legacy-platform-in-sto1/</link><pubDate>Tue, 18 Apr 2023 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/important-update-regarding-the-eol-of-the-legacy-platform-in-sto1/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
As the legacy platform in STO1 is reaching its end of life, we hope that you're getting along with the migration to the new platform.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;According to our project tracking, most of you have already migrated to the new platform or are in the progress of doing so.&lt;/p&gt;
&lt;p&gt;For those who haven&amp;rsquo;t started yet, we would like to encourage you to do so as soon as possible and get in touch with us if you need any assistance. All steps necessary to migrate your instances can be found in our &lt;a href="https://docs.safespring.com/new/migrate-from-legacy/"&gt;migration guide&lt;/a&gt;.&lt;/p&gt;</description></item><item><title>CLOUD Act and FISA 702</title><link>https://beta.safespring.eu/perspectives/cloud-act-fisa-702/</link><pubDate>Wed, 22 Mar 2023 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/cloud-act-fisa-702/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
The CLOUD Act (Clarifying Lawful Overseas Use of Data Act) and FISA 702 (Foreign Intelligence Surveillance Act, Section 702) are U.S. laws that can create data protection and privacy risks when using U.S. cloud services.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Both laws can affect companies and organizations outside the United States, including European organizations that handle sensitive data such as personal data and patient data.&lt;/p&gt;
&lt;p&gt;In practice, this can mean that a European organization using U.S. cloud services may be exposed to requests or surveillance from U.S. authorities. That can create legal uncertainty and potential conflicts with GDPR, especially when data is sensitive or when the organization needs to demonstrate control over where data is processed and who can access it.&lt;/p&gt;</description></item><item><title>Repartitioning Root Filesystem on NVMe Instances</title><link>https://beta.safespring.eu/solution-brief/repartitioning-root-filesystem-on-nvme-instances/</link><pubDate>Thu, 02 Mar 2023 13:58:58 +0100</pubDate><guid>https://beta.safespring.eu/solution-brief/repartitioning-root-filesystem-on-nvme-instances/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
The default root filesystem on an NVMe instance in the l2-series on Safespring's platform comes with an ext4 filesystem, but in some cases, users may need to create additional partitions or use a different filesystem.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Sometimes you would like to repartition this disk into several partitions if the application you want to run demands a separate partition or a certain filesystem that is not the default ext4 that the root filesystem from the cloud image is running by default. One application that demands this is MongoDB so if your aiming at setup a MongoDB cluster you will need to perform this on your cluster nodes.&lt;/p&gt;</description></item><item><title>Important Update Regarding Retirement of Legacy Platform in STO1</title><link>https://beta.safespring.eu/deep-dive/important-update-regarding-retirement-of-legacy-platform-in-sto1/</link><pubDate>Thu, 26 Jan 2023 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/important-update-regarding-retirement-of-legacy-platform-in-sto1/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Dear valued customers, We would like to inform you that our legacy platform in sto1 will be shut down on May 1st.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;You will not be able to create new instances on this platform after March 1st 2023 and there will only be best effort support available starting April 1st 2023. These are hard dates that we will be adhering to, so it is important that you take necessary steps to migrate to our new platform.&lt;/p&gt;</description></item><item><title>Safespring Backup: A complete rehaul of the user portal</title><link>https://beta.safespring.eu/solution-brief/safespring-backup-a-complete-rehaul-of-the-user-portal/</link><pubDate>Thu, 12 Jan 2023 13:58:58 +0100</pubDate><guid>https://beta.safespring.eu/solution-brief/safespring-backup-a-complete-rehaul-of-the-user-portal/</guid><description>&lt;h2 id="introduction"&gt;Introduction&lt;/h2&gt;
&lt;div class="ingress"&gt;&lt;p&gt;
Safespring Backup is based on the very well-established Spectrum Protect from IBM. It has many strengths, such as high security, excellent scalability and data lifecycle automation.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Spectrum Protect can protect countless Terabytes of data with minimal administration effort.&lt;/p&gt;
&lt;p&gt;Backups are encrypted in transit with TLS 1.2 but can also be configured to be encrypted client side for even higher security automatically.&lt;/p&gt;
&lt;p&gt;Being a well-proven solution for large enterprises, Spectrum Protect definitely can handle the scale of large service provider setups such as Safespring&amp;rsquo;s. Where it somewhat lacks is flexible administration with the handling of user accounts and role assignments. Since backups generally are handled by a designated team in a large organisation, this drawback is something that is shared with many other backup solutions on the market and, therefore, not a specific problem for Spectrum Protect.&lt;/p&gt;</description></item><item><title>Useful (perhaps) Openstack API tricks for enabling more automation</title><link>https://beta.safespring.eu/deep-dive/useful-perhaps-openstack-api-tricks-for-enabling-more-automation/</link><pubDate>Tue, 20 Sep 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/useful-perhaps-openstack-api-tricks-for-enabling-more-automation/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Safespring promote as much automation as possible using standard tools
like Terraform and Ansible. Sometimes, however, it is necessary to dig one step
deeper in order to find some missing pieces of information in order to create a complete automation.
&lt;/p&gt;&lt;/div&gt;
&lt;h2 id="introduction-problem-statement"&gt;Introduction (Problem statement)&lt;/h2&gt;
&lt;p&gt;In the Safespring platform, the S3 compatible storage service and the OpenStack
based compute service are now integrated. It means that once you have access to the
compute platform you also can fetch credentials for accessing the integrated S3
service through the web GUI and/or the command line interface (CLI).&lt;/p&gt;</description></item><item><title>Using a jump host for persistent access to Safespring's APIs</title><link>https://beta.safespring.eu/deep-dive/using-a-jump-host-for-persistent-access-to-safesprings-apis/</link><pubDate>Tue, 06 Sep 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/using-a-jump-host-for-persistent-access-to-safesprings-apis/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Using a jump host is good practice for increased security and a simple solution when you don’t have a fixed IP-adress but need access to Safespring’s APIs.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Automation tools like Terraform require access to several of OpenStack&amp;rsquo;s APIs
which we&amp;rsquo;re currently exposing only to whitelisted IPs for security reasons.
This is a practice we share with several other small and independent cloud
providers like ourselves. With many engineers working remote and not having a
fixed IP, submitting a support ticket each time your public IP changes might
feel tedious and unnecessary in 2022. However, using a jump host is not only a
simple solution to this problem but also good practice for most automation
scenarios where security is critical.&lt;/p&gt;</description></item><item><title>Setting up a minimal Kubernetes cluster on Safespring using Kubespray</title><link>https://beta.safespring.eu/deep-dive/setting-up-a-minimal-kubernetes-cluster-on-safespring-using-kubespray/</link><pubDate>Mon, 22 Aug 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/setting-up-a-minimal-kubernetes-cluster-on-safespring-using-kubespray/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
Kubespray is a
comprehensive tool that covers a lot of different use cases. In this post we
will focus on the necessary config to install a minimal K8S cluster for test
and experiment on Safespring.
&lt;/p&gt;&lt;/div&gt;
&lt;h2 id="prerequisites"&gt;Prerequisites&lt;/h2&gt;
&lt;ol&gt;
&lt;li&gt;This blog post assumes that you use the open source Terraform CLI. Terraform CLI
is just a binary program that you download from the &lt;a href="https://releases.hashicorp.com/terraform/"&gt;releases page&lt;/a&gt;,
for your architecture/platform. Here you also find checksums for the files to
verify their integrity. There is also the official &lt;a href="https://www.terraform.io/docs"&gt;Terraform documentation&lt;/a&gt;.&lt;/li&gt;
&lt;li&gt;A basic understanding of Ansible playbooks and inventories is also necessary.&lt;/li&gt;
&lt;li&gt;Some basic usage of the &lt;a href="https://docs.safespring.com/new/api/"&gt;OpenStack CLI&lt;/a&gt; will also be required.&lt;/li&gt;
&lt;/ol&gt;
&lt;h2 id="kubespray-introduction"&gt;Kubespray introduction&lt;/h2&gt;
&lt;p&gt;&lt;a href="https://github.com/kubernetes-sigs/kubespray"&gt;Kubespray&lt;/a&gt; is a composition of Ansible playbooks,
inventory, provisioning tools, and domain knowledge for generic OS/Kubernetes
clusters configuration management tasks. It is widely used, has a lot of
flexibility using parameters and is actively maintained.&lt;/p&gt;</description></item><item><title>From zero to continuous compliance with Terraform, Ansible and Rudder</title><link>https://beta.safespring.eu/deep-dive/from-zero-to-continuous-compliance-with-terraform-ansible-and-rudder/</link><pubDate>Wed, 29 Jun 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/from-zero-to-continuous-compliance-with-terraform-ansible-and-rudder/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This blog post will look at how we can build even further on
previously demonstrated concepts to create sets of servers that are
continuously monitored and kept in compliance using Rudder, a state of the art
configuration management tool.
&lt;/p&gt;&lt;/div&gt;
&lt;div class="disclaimer-dotted"&gt;
 &lt;p class="disclaimer-dotted-title"&gt;update&lt;/p&gt;
&lt;p&gt;Updated to fix an inconsistency on 2022-08-22&lt;/p&gt;
&lt;/div&gt;
&lt;div class="note-dotted" style="--note-accent: #32CD32;"&gt;
 &lt;p class="note-dotted-title note-dotted-title--custom"&gt;
 &lt;span class="note-dotted-icon" aria-hidden="true"&gt;&lt;svg class="fa-icon fa-solid fa-exclamation" aria-hidden="true" focusable="false" data-fa-symbol="fa-solid-exclamation"&gt;
 &lt;use href="#fa-solid-exclamation" xlink:href="#fa-solid-exclamation"&gt;&lt;/use&gt;
&lt;/svg&gt;
&lt;/span&gt;
 &lt;span&gt;Read more&lt;/span&gt;
 &lt;/p&gt;
 &lt;div class="note-dotted-content"&gt;&lt;p&gt;If you found this post useful, be sure to check out the rest of the series on using Terraform and Ansible for resource provisioning and compliance. In particular, you might also enjoy:&lt;/p&gt;</description></item><item><title>Integrating Terraform and Ansible</title><link>https://beta.safespring.eu/deep-dive/integrating-terraform-and-ansible/</link><pubDate>Mon, 23 May 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/integrating-terraform-and-ansible/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This is part three in the series about Safespring's Terraform modules. This blog
post will look at how we can integrate Ansible and Terraform in order to configure
services on top of the instances provisioned with Terraform, using Terraform state as
Ansible inventory.
&lt;/p&gt;&lt;/div&gt;
&lt;div class="note-dotted" style="--note-accent: #32CD32;"&gt;
 &lt;p class="note-dotted-title note-dotted-title--custom"&gt;
 &lt;span class="note-dotted-icon" aria-hidden="true"&gt;&lt;svg class="fa-icon fa-solid fa-exclamation" aria-hidden="true" focusable="false" data-fa-symbol="fa-solid-exclamation"&gt;
 &lt;use href="#fa-solid-exclamation" xlink:href="#fa-solid-exclamation"&gt;&lt;/use&gt;
&lt;/svg&gt;
&lt;/span&gt;
 &lt;span&gt;Read more&lt;/span&gt;
 &lt;/p&gt;
 &lt;div class="note-dotted-content"&gt;&lt;p&gt;If you found this post useful, be sure to check out the rest of the series on using Terraform and Ansible for resource provisioning and compliance. In particular, you might also enjoy:&lt;/p&gt;</description></item><item><title>Flexible provisioning of resources with Safespring's new Terraform modules</title><link>https://beta.safespring.eu/deep-dive/flexible-provisioning-of-resources-with-safesprings-new-terraform-modules/</link><pubDate>Mon, 11 Apr 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/flexible-provisioning-of-resources-with-safesprings-new-terraform-modules/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This is part two in the series about Safespring's Terraform modules. This blog
post will look at the new and more general Safespring modules for compute
instances and security groups.&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;We will also look at how we can use it to provision sets of instances
in different configurations allowing only the necessary connections using
security groups. The next post will be about using Ansible and
from terraform/OpenStack to configure services on the provisioned
instances.&lt;/p&gt;</description></item><item><title>The Safespring network model explained</title><link>https://beta.safespring.eu/deep-dive/the-safespring-network-model-explained/</link><pubDate>Thu, 24 Mar 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/the-safespring-network-model-explained/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This blog post will explain the different aspects of the Safespring network
stack from a user perspective.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;If you come from other platforms that use the legacy
«layer 2 bridging» approach (with software-defined switches, routers,
floating IP addresses, etc.), please read the full post to understand the
implications. It does not work the way you think :-). Prerequisites for
understanding this post are basic knowledge of CIDR notation, IP protocols
(TCP,UDP,ICMP), and IP-based access control.&lt;/p&gt;</description></item><item><title>SSH key best practices for OpenStack cloud instances</title><link>https://beta.safespring.eu/deep-dive/ssh-key-best-practices-for-openstack-cloud-instances/</link><pubDate>Thu, 17 Mar 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/ssh-key-best-practices-for-openstack-cloud-instances/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
For Linux-/Unix-based cloud instances, the initial root access to the instances is enabled employing SSH keys. In this post, we'll go through some best practices and things to keep in mind when managing ssh-keys to enable root access to instances.
&lt;/p&gt;&lt;/div&gt;
&lt;h2 id="summary-tldr"&gt;Summary (TL;DR)&lt;/h2&gt;
&lt;ul&gt;
&lt;li&gt;The poorly named &amp;ldquo;OpenStack keypair&amp;rdquo; contains no secrets, only an SSH pubkey.&lt;/li&gt;
&lt;li&gt;SSH keypairs are not the same as an OpenStack keypair.&lt;/li&gt;
&lt;li&gt;SSH keypairs should be created in a trusted environment on the user&amp;rsquo;s computer. It should be of type RSA. The private key should be kept in an encrypted secret store and never be exposed outside the user&amp;rsquo;s local site/environment.&lt;/li&gt;
&lt;li&gt;An &amp;ldquo;OpenStack keypair&amp;rdquo; is tied to the user creating it, not a specific project.&lt;/li&gt;
&lt;li&gt;Nobody cares about SSH host keys, but they should.&lt;/li&gt;
&lt;/ul&gt;
&lt;h2 id="background"&gt;Background&lt;/h2&gt;
&lt;p&gt;When you provision instances in any cloud platform, you get a virtual server with a base operating system like Centos, Ubuntu, Debian, FreeBSD, etc., based on which cloud image the instance is provisioned from. You can use images available in the Infrastructure as a Service (IaaS) platform or upload your own, as long as the image is prepared for being used with the IaaS-platform you use. In Safespring&amp;rsquo;s case, the image must be made for the OpenStack IaaS.&lt;/p&gt;</description></item><item><title>Faster S3 and other news from Safespring</title><link>https://beta.safespring.eu/perspectives/faster-s3-and-other-news-from-safespring/</link><pubDate>Wed, 16 Mar 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/perspectives/faster-s3-and-other-news-from-safespring/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
This article is a collection of the latest news from Safespring. Consider subscribing to our newsletter to get the latest updates directly to your inbox.
&lt;/p&gt;&lt;/div&gt;
&lt;h2 id="kristian-is-our-contact-for-everyone-in-the-academic-sector"&gt;Kristian is our contact for everyone in the academic sector&lt;/h2&gt;
&lt;p&gt;Safespring is a significant supplier of infrastructure as a service to the academic sector in Norway and Sweden. Through customers such as prominent universities and colleges, we have gained extensive experience in secure projects focusing on cloud services such as virtual servers, Kubernetes, and large-scale storage.&lt;/p&gt;</description></item><item><title>CPU performance improvement on Windows</title><link>https://beta.safespring.eu/deep-dive/cpu-performance-improvement-on-windows/</link><pubDate>Thu, 17 Feb 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/cpu-performance-improvement-on-windows/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
In this blog post, we'll go through some virtual machine optimizations. We optimized CPU performance improvement on Windows due to poor application performance for one of our customers.
&lt;/p&gt;&lt;/div&gt;
&lt;h2 id="background"&gt;Background&lt;/h2&gt;
&lt;p&gt;We were recently contacted by a client using Windows 2019 server operating system. They experienced higher CPU load and slower response times when using our platform than other IaaS-solutions.&lt;/p&gt;
&lt;p&gt;Our general internal experience with Windows is that it had stable performance across compute/hypervisor hosts and that it got better performance when we installed newer hardware (as expected). We had never tested against other cloud providers. Thus, we were unaware of the problem.&lt;/p&gt;</description></item><item><title>Dead easy provisioning using the Safespring Terraform modules</title><link>https://beta.safespring.eu/deep-dive/dead-easy-provisioning-using-the-safespring-terraform-modules/</link><pubDate>Mon, 10 Jan 2022 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/dead-easy-provisioning-using-the-safespring-terraform-modules/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
In this blog post, we'll showcase just how easy it is by the example of our community Terraform modules.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;It has never been easier to provision compute and block storage resources in Safespring&amp;rsquo;s infrastructure platform. Modules can be sourced directly from GitHub using a minimum of Terraform code.&lt;/p&gt;
&lt;div class="note-dotted" style="--note-accent: #32CD32;"&gt;
 &lt;p class="note-dotted-title note-dotted-title--custom"&gt;
 &lt;span class="note-dotted-icon" aria-hidden="true"&gt;&lt;svg class="fa-icon fa-solid fa-exclamation" aria-hidden="true" focusable="false" data-fa-symbol="fa-solid-exclamation"&gt;
 &lt;use href="#fa-solid-exclamation" xlink:href="#fa-solid-exclamation"&gt;&lt;/use&gt;
&lt;/svg&gt;
&lt;/span&gt;
 &lt;span&gt;Read more&lt;/span&gt;
 &lt;/p&gt;
 &lt;div class="note-dotted-content"&gt;&lt;p&gt;If you found this post useful, be sure to check out the rest of the series on using Terraform and Ansible for resource provisioning and compliance. In particular, you might also enjoy:&lt;/p&gt;</description></item><item><title>Security advisory regarding the Log4j critical vulnerability</title><link>https://beta.safespring.eu/deep-dive/security-advisory-regarding-the-log4j-critical-vulnerability/</link><pubDate>Mon, 13 Dec 2021 00:00:00 +0000</pubDate><guid>https://beta.safespring.eu/deep-dive/security-advisory-regarding-the-log4j-critical-vulnerability/</guid><description>&lt;div class="ingress"&gt;&lt;p&gt;
A vulnerability in &lt;span class="text-tooltip"&gt;Log4j
 &lt;span class="text-tooltiptext shadow-1"&gt;Log4j is a small internal module that handles logging for Java programs.&lt;/span&gt;
&lt;/span&gt;
 was announced on the 10th of December 2021. Reports worldwide show that the vulnerability is used actively and successfully in attacks.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Log4j is a Java-based logging utility widely used in popular software systems.&lt;/p&gt;
&lt;h3 id="key-takeaways"&gt;Key Takeaways&lt;/h3&gt;
&lt;ul&gt;
&lt;li&gt;This has no consequences for Safesprings systems.&lt;/li&gt;
&lt;li&gt;Safespring customers should stop their services that might be affected.&lt;/li&gt;
&lt;/ul&gt;
&lt;div style="margin-bottom:50px;"&gt;&lt;/div&gt;
&lt;h2 id="what-weve-done-so-far"&gt;What we&amp;rsquo;ve done so far&lt;/h2&gt;
&lt;div class="ingress"&gt;&lt;p&gt;
Fortunately, this has no consequences for our systems, and no services are down.
&lt;/p&gt;</description></item><item><title>OpenShift runs smoothly on Safespring's platform</title><link>https://beta.safespring.eu/solution-brief/openshift-runs-smoothly-on-safesprings-platform/</link><pubDate>Tue, 07 Dec 2021 13:58:58 +0100</pubDate><guid>https://beta.safespring.eu/solution-brief/openshift-runs-smoothly-on-safesprings-platform/</guid><description>&lt;p&gt;&lt;img
 src="https://beta.safespring.eu/img/safespring_key-points-openshift-3.svg"
 width="432" height="285"
 alt="Safespring OpenShift benefits"
 
 loading="lazy"
/&gt;
&lt;/p&gt;
&lt;div class="ingress"&gt;&lt;p&gt;
Containers require flexibility. Safespring's platform is created for scalability, high security and is optimized for OpenShift cluster resource requirements.
&lt;/p&gt;&lt;/div&gt;
&lt;p&gt;Safespring&amp;rsquo;s Compute service gives you all the resources you need to run OKD, the open source version of Kubernetes based on Red Hat OpenShift.&lt;/p&gt;
&lt;p&gt;Are you running OpenShift on-prem today? With a Swedish cloud service as the basis for your OKD cluster, you get both the scalability and security of a managed infrastructure platform. Let your developers focus on OpenShift and pay only for the resources you consume.&lt;/p&gt;</description></item></channel></rss>