What’s new at CIQ?
We’re a team of scientists, Linux geeks, technologists, pilots, designers and more with a mission to make infrastructure something you never have to think about.
Ansible audit trails don't belong in your SIEM
Ansible audit data ends up in the SIEM because that is where compliance infrastructure already lives. The SIEM did not earn the job. It was the only available option. Ansible logs serve two distinct…
What FedRAMP CR26 means for your Linux infrastructure, and what to do before January 2027
Federal agencies and defense contractors managing Linux-based Authorization to Operate (ATO) packages have nine months to re-map their compliance posture under a new FedRAMP framework. The FedRAMP PMO…
FIPS-validated cryptography and post-quantum support in one Enterprise Linux distribution
CMMC Level 2 takes effect November 10, 2026. Eight weeks later, on January 1, 2027, CNSA 2.0 requires post-quantum algorithm support for all new National Security Systems acquisitions. Both deadlines…
Migrate Amazon Linux 2 to RLC Pro: Free toolkit and 60-day plan
Amazon Linux 2 reaches end of life on June 30, 2026. A significant portion of AWS Linux customers are still running AL2. If your organization is among them, you have enough time to migrate properly…
Leaving Amazon Linux 2: AL2023 or Enterprise Linux?
Amazon Linux 2 reaches end of life on June 30, 2026. Most teams running AL2 will look at AL2023 as the natural successor and for some workloads, it is. The right next platform depends on why you were…
Monthly newsletter
No spam. Just the latest releases and tips, interesting articles, and exclusive interviews in your inbox every month.
Read about our privacy policy.
Three cryptographic deadlines, five months apart: What to do before 2027
September 21, 2026. November 2026. January 2027. Three regulatory deadlines, five months apart, each with a distinct cryptographic requirement for Linux infrastructure. They form a dependency sequence…
NIST 800-171 is a grant eligibility issue for R1 Universities
More than 110 security controls now stand between universities and their next DoD contract renewal. Under the Cybersecurity Maturity Model Certification (CMMC) framework, universities that handle…
What the FIPS 140-2 sunset means for DoD contractors on Enterprise Linux
On September 21, 2026, NIST moves every FIPS 140-2 certificate to Historical status. The modules keep running, but NIST's CMVP (Cryptographic Module Validation Program) defines ‘Historical’ as modules…
Ten years of Apptainer/Singularity: A look back at the big bang of HPC containers
Previously published in HPC Wire, April 14, 2026. Read the article. This year marks the ten-year anniversary of Singularity, the project that became Apptainer, and it is worth pausing to recognize…
How to deploy RLC Pro on Google Cloud
Google was one of the first hyperscalers to sponsor the Rocky Linux project, and CIQ and Google have partnered to deliver optimized Rocky Linux images built specifically for Google Compute Engine (GCE…
Fuzzball HPC workflows now run natively on Google Cloud
Fuzzball now deploys natively on Google Cloud Platform (GCP), joining AWS and on-prem bare metal as a first-class deployment target. A computational chemist can move a GROMACS simulation from AWS to…