Collaborate Disseminate
Currently I am working on an application that requires secret keys to encrypt and sign information generated by the client and transmited over the wire, these keys are granted per user.
Currently when the user logs in, the keys are downloa… Continue reading In a web application, what would you consider the best way to store secret keys obtained via an SDK?
I’ve spent a few weeks on GCP and GKE (Kubernetes) trying to figure out how to store customer secrets. The secrets are used by some application even when the user is not logged on so I want to ensure no human can reach to them.
A lot of pl… Continue reading Keeping customer secrets safe from sysadmins and devs in Kubernetes
Inside our Azure Active Directory, we have 2 options to secure our calls to the Active Directory App:
Secret
Certificate
Which option is more secure and why? Inside our applications which will be calling this App, it either needs to s… Continue reading Which is more secure: Certificate or Secret inside our Azure Active Directory App, and why? [duplicate]
Instead of keeping Secrets in Kubernetes manifests, store them separately. Portainer makes this quite simple; I’ll show you how in this tutorial.
The post How to create and manage Kubernetes Secrets in Portainer appeared first on TechRepublic.
Continue reading How to create and manage Kubernetes Secrets in Portainer
Are there fundamental underlying differences in how secrets and passwords should be managed?
I’m curious of the technical/cryptographic differences between secret managers and password managers are. If I get all philosophical about it the … Continue reading Whats the difference between secret and password managers?
On an ec2 box I am running a service that reads vars from a config file. One var’s value is stored in AWS System Manager as a SecureString. I want to use that value in the text file securely.
I can export the value via the cli with aws ssm… Continue reading Using AWS System Manager Parameter Store SecureString in config file in ec2
I have two desktop apps, each authenticate against our server using OIDC in order to call our web api. Currently the users need to login independently in each application.
I noticed when using Microsoft Office apps on my mac, that I can lo… Continue reading How can I share web-platform credentials across multiple desktop apps on Windows?
I have a free edition of Thycotic Secret Server for learning purposes. Rotating AD and Windows passwords is working great. RHEL, however, is another story.
Within Secret Server, I’ve added a new Unix Account (SSH) account. Put root in the … Continue reading Receiving "Connection Failed – Connection lost due to error 96258" error while trying to RHEL root password with Thycotic Secret Server [closed]
I’ve been having a discussion with a developer about storing sensitive information in environment variables. Specifically within a containerised environment such as Azures Container apps.
Background information
In container apps you are a… Continue reading Secret security in containerised environment
(This question is based on a comment I made on How Vault agent solves Secret Zero challenge in Kubernetes?)
We are planning to run some of our software in a Kubernetes cluster running on bare metal (i.e. not using a cloud provider). We nee… Continue reading How to secure Kubernetes secrets on bare metal?