Security
2024
How to Check TLS Configuration of URLs with Curl and Bash Script
·4 mins
Azure
Security
If you are working in an Azure environment and you are using Azure Availability Tests you might run into the following Health Advisory event:
OpenSSH CVE-2024-6387 Vulnerability and your AKS VMSS node images
·11 mins
Kubernetes
Aks
Security
Azure
Recently a new vulnerability in OpenSSH has been identified and the first question that popped into my mind was: How do I make sure my nodes are not affected by _this vulnerability?
Decoding Software Security: A Guide to Assessing Requirements with the STRIDE model
·8 mins
Security
Coffee-Reads
For this coffee read, I wanted to write about the STRIDE model and how, when working in your day to day job, you can use it to break down a functionality or requirement you may have and identify potential security threats.
2023
Azure Application Gateway WAF config vs WAF policy
·7 mins
Azure
Terraform
Security
Recently, I had to enable WAF on our Azure Application Gateway.
Kube-bench and Popeye: A Power Duo for AKS Security Compliance
·31 mins
Kubernetes
Security
In today’s world, security is a top priority for any organization or at least it should be.
2021
KongPlugin CORS: fixing Access-Control-Allow-Origin header missing error
·6 mins
Kong
Kubernetes
Security
In our current environment we have Kong as our Ingress controller in front of our applications.