What’s new at CIQ?
We’re a team of scientists, Linux geeks, technologists, pilots, designers and more with a mission to make infrastructure something you never have to think about.
OpenHPC on Rocky Linux: Painless HPC cluster management
OpenHPC has quietly become the Swiss Army knife of HPC deployments - but substitute tiny scissors and a toothpick for a complete stack of pre-integrated scientific computing tools that actually work…
All Things Open 2025 Recap: Strengthening the future of open source
CIQ had the pleasure of sponsoring All Things Open this year. What is All Things Open? In their own words, "All Things Open is a technology conference focusing on the tools, processes and people…
Linux Security: a comparison of manual vs pre-hardening of the operating system
It’s quite possible that your security team is losing a race they can't possibly win. In 2018, attackers needed about 63 days between discovering a vulnerability and exploiting it in the wild. By 202…
How to Enable Kdump in Warewulf Nodes
Introduction Kdump utilizes kexec to swiftly boot into a dump-capture kernel whenever a memory dump of the system kernel is required, such as during a system panic. This process preserves the system…
Azure Confidential Compute Recovery: Failed Volume Unlock or Secure Boot Violation
It’s happened to all of us at one point: while tweaking your system, you’ve accidentally installed a wrong kernel version, and now your system is failing to boot. This is usually a pretty quick fix…
Weekly newsletter
No spam. Just the latest releases and tips, interesting articles, and exclusive interviews in your inbox every week.
Read about our privacy policy.
Deploy fast or deploy secure, and how to do both
Enterprise security teams face an impossible choice: hold your infrastructure deployments until you can ensure they are secure, or maintain operational agility at the expense of security posture. The…
The Fuzzball Workflow Catalog
Off-the-shelf portability Inside CIQ we have a common lament: that in traditional HPC every system is “serial number 1.” The idea is that every HPC cluster is, to a certain extent, bespoke and unique…
Running Nextflow Pipelines on Fuzzball: First Release of the nf-fuzzball Plugin
Nextflow is a widely used workflow orchestration tool in bioinformatics. It enables users to build portable and reproducible workflows based on containers and a plugin interface that allows creation…
CIQ's Partnership with NVIDIA: Transforming Enterprise GPU Infrastructure
CIQ recently announced a partnership that transforms how the entire AI/ML/HPC industry can access and operationalize GPU acceleration: CIQ integrates the NVIDIA CUDA Toolkit within our commercial…
The real danger of systemd-coredump CVE-2025-4598
TL;DR: A critical vulnerability in systemd-coredump remains unfixed in Enterprise Linux 9, allowing attackers to steal password hashes and cryptographic keys within seconds - but Rocky Linux from CIQ…
Introducing Warewulf Pro
Since 2001, the open source Warewulf platform has been a reliable foundation for HPC (High Performance Computing) systems. Whether you’re deploying a small cluster for a single research team or a…
How the hardened_malloc library protects processes from security exploitation on Rocky Linux from CIQ - Hardened
Introduction Rocky Linux from CIQ - Hardened (RLC-H) is a hardened version of Rocky Linux that includes a security-focused general purpose memory allocator which implements secure heap allocation…