Collaborate Disseminate
I am working on an application running in/on a hosted Kubernetes cluster. All services are built using a Java based stack.
For a new feature it is required to temporarily store notifications (email address, notification text) in database.
… Continue reading Encryption and storing/managing private key in hosted cluster
The Scarleteel threat targets AWS Fargate environments for data theft and more malicious types of attacks such as cryptojacking and DDoS. Learn how to mitigate this threat. Continue reading Scarleteel Threat Targets AWS Fargate, Launches DDoS and Cryptojacking Campaigns
I am reviewing a kubernetes environment. I can see that the host docker/containerd socket is mounted into the containers. Do we really need docker in docker in production environments? What are the security consequences of it?
Note: Its no… Continue reading Docker in docker usecases and alternatives [closed]
I am trying to mount a secret in the pod securely. I have created the secrets with defaultMode: 0400 and runAsUser:1000. However when i am trying to access the secret in the container after doing exec in it, the secret file is owned by roo… Continue reading Mounting secrets with proper access control in kubernetes pods
I am trying integrate our service with SSO. I have generated the ClientID and ClientSecret.
Is it a good security practice to store the ClientID and ClientSecret as a configmap? If not, what are the alternatives for storing and using them?… Continue reading How to store ClientID and ClientSecret in a K8 Env
Technologies like Kubernetes and K3S are synonymous with the success of cloud native computing and the power of open source. It is no accident they have steamrolled the competition. As enterprises look to secure cloud-native environments, open source i… Continue reading Cloud-native security hinges on open source
The importance of software bills of materials (SBOMs) has grown substantially in recent years as organizations recognize the need for greater transparency in the software supply chain. This focus on SBOMs is a response to increasing cybersecurity threa… Continue reading How to create SBOMs for container images
Commentary: Networking has long been the holdout for enterprises looking to go cloud native, but Cilium Mesh promises to seamlessly blend legacy infrastructure with cloud-native infrastructure.
The post Cilium Mesh: A new way to extend Kubernetes benef… Continue reading Cilium Mesh: A new way to extend Kubernetes benefits across on-premises and cloud networking
APEX Navigator for Kubernates and more join Dell’s hybrid and multicloud software-as-a-service family.
The post Dell brings more cloud products under APEX umbrella appeared first on TechRepublic.
Continue reading Dell brings more cloud products under APEX umbrella
Kubernetes Security Operations Center (KSOC) released the first-ever Kubernetes Bill of Materials (KBOM) standard. Available in an open-source CLI tool, this KBOM enables cloud security teams to understand the scope of third-party tooling in their envi… Continue reading Kubernetes Bill of Materials (KBOM) open-source tool enhances cloud security response to CVEs