What’s new at CIQ?
We’re a team of scientists, Linux geeks, technologists, pilots, designers and more with a mission to make infrastructure something you never have to think about.
Copy Fail is a local privilege escalation exploit. Here is what CIQ did about it.
CVE-2026-31431 affects kernels built since 2017 and has a working public exploit in circulation. Patched kernels are available now for every CIQ-supported Rocky Linux variant. The vulnerability: CVE…
From default to defended. Taking command of your Linux security stack.
Your cloud provider's OS responsibility ends at image delivery. Everything above that belongs to your team. Server hacking (direct server compromise incidents) accounted for 45% to 56% of all reported…
Why Rocky Linux? Enterprise Linux, built to last
Enterprise Linux is the backbone of the modern internet. It powers the servers that run your cloud workloads, your AI training jobs, your financial transactions, and your telecom networks. It is…
The infrastructure AI actually requires
Spoiler alert: we've been doing it for decades! Every era of technological revolution follows a single, predictable pattern: the tools outpace the infrastructure. A critical gap appears, often…
How to run your own LLM on Fuzzball in minutes
Running your own language model can be a complex and imposing prospect: compute provisioning, GPU allocation, model downloads, service wiring, storage configuration, and authentication, with no…
Monthly newsletter
No spam. Just the latest releases and tips, interesting articles, and exclusive interviews in your inbox every month.
Read about our privacy policy.
LinuxFest Northwest 2026 trip report
LinuxFest Northwest has been earning its reputation consistently for 27 years now, and this year was no exception. Bellingham delivered: beautiful spring weather, a walkable waterfront, and a…
When the infrastructure matches the science
In CIQ’s recent blog post marking ten years of Apptainer, CIQ traced how Singularity gave research scientists something they had never had before: a software environment that kept pace with the…
The AI engineer era has an infrastructure problem. Here is what solves it.
In 2023, a newsletter called Latent Space published a piece that named something real. The post was called "The Rise of the AI Engineer," and its central argument was that a new class of engineer had…
Ansible audit trails don't belong in your SIEM
Ansible audit data ends up in the SIEM because that is where compliance infrastructure already lives. The SIEM did not earn the job. It was the only available option. Ansible logs serve two distinct…
What FedRAMP CR26 means for your Linux infrastructure, and what to do before January 2027
Federal agencies and defense contractors managing Linux-based Authorization to Operate (ATO) packages have nine months to re-map their compliance posture under a new FedRAMP framework. The FedRAMP PMO…
FIPS-validated cryptography and post-quantum support in one Enterprise Linux distribution
CMMC Level 2 takes effect November 10, 2026. Eight weeks later, on January 1, 2027, CNSA 2.0 requires post-quantum algorithm support for all new National Security Systems acquisitions. Both deadlines…