Scott Lowe

JANUARY 15, 2021

The content this time around seems to be a bit more security-focused, but I’ve still managed to include a few links in other areas. This article by Joshua Fox outlines how and when to use each of the various types of firewalls offered by AWS. Operating Systems/Applications. Here’s hoping you find something useful!

Linux 60

Linux Firewall Open Source Vmware 60

SecureWorld News

JULY 30, 2020

In February 2020, UK security researchers discovered a vulnerability in free, open source, automation servers that would allow cybercriminals to amplify a Distributed Denial of Service attack by 100. Configure network firewalls to block unauthorized IP addresses and disable port forwarding.

Network 53

Network Internet Firewall Open Source 53

Dataconomy

NOVEMBER 7, 2023

To set up a web application firewall (WAF), you will need to: Choose a WAF solution. There are many different WAF solutions available, both commercial and open source. The most popular WAF solutions of 2023 are as follows: Cloudflare WAF Imperva WAF F5 WAF Akamai Kona Security AWS WAF Deploy the WAF solution.

Firewall 41

Firewall Applications Examples Load Balancer 41

Scott Lowe

AUGUST 6, 2021

I saw this blog post about Curiefense , an open source Envoy extension to add WAF (web application firewall) functionality to Envoy. This post on using SPIFFE/SPIRE, Kubernetes, and Envoy together shows how to implement mutual TLS (mTLS) for a simple application. Operating Systems/Applications.

Open Source 60

Open Source Load Balancer WAN Architecture 60

Linux Academy

MARCH 28, 2019

To ensure ongoing security site reliability engineers must work hand-in-hand with the CISO’s (Chief Information Security Officer) office to implement Kubernetes security. Kubernetes out-of-the-box doesn’t exactly default to a secure enterprise grade cluster. Implement Pod Security Policy. Server Hardening.

Policies 68

Policies Linux Security Virtualization 68

CTOvision

FEBRUARY 4, 2015

This popular gathering is designed to enable dialogue about business and technical strategies to leverage today’s big data platforms and applications to your advantage. Data Security—What’s New and What’s Next? Chief Security Architect, Office of the CTO, Cloudera. Security Spotlight: Focus on HIPAA and PCI Compliance.

Fractional CTO 150

Fractional CTO CTO CTO Hire Big Data 150

CTOvision

JANUARY 18, 2015

This popular gathering is designed to enable dialogue about business and technical strategies to leverage today’s big data platforms and applications to your advantage. Data Security—What’s New and What’s Next? Chief Security Architect, Office of the CTO, Cloudera. Security Spotlight: Focus on HIPAA and PCI Compliance.

Program Management 150

Program Management Fractional CTO CTO Programming 150

ForAllSecure

AUGUST 11, 2020

Simply put, DevSecOps is a method for folding security in throughout the software development lifecycle. It’s that evolution that needs to include security. Dr. Brumley says originally that meant you verify that the software meets the requirements, but with DevSecOps, it also means that it is secure. What is DevSecOps?

Software Development 52

Software Development Software Software Analysis 52

ForAllSecure

AUGUST 11, 2020

Simply put, DevSecOps is a method for folding security in throughout the software development lifecycle. It’s that evolution that needs to include security. Dr. Brumley says originally that meant you verify that the software meets the requirements, but with DevSecOps, it also means that it is secure. What is DevSecOps?

Software Development 52

Software Development Software Software Analysis 52

ForAllSecure

AUGUST 11, 2020

Simply put, DevSecOps is a method for folding security in throughout the software development lifecycle. It’s that evolution that needs to include security. Dr. Brumley says originally that meant you verify that the software meets the requirements, but with DevSecOps, it also means that it is secure. What is DevSecOps?

Software Development 52

Software Development Software Software Analysis 52

Galido

JUNE 30, 2016

VMI stands for Virtual Mobile Infrastructure and basically, it provides end users with a highly effective and an efficient way to have access to delicate mobile applications and information without much hassle. As a result, it offers extra security for data and devices.

Mobile 81

Mobile Virtualization Operating Systems Applications 81

Scott Lowe

AUGUST 11, 2016

In this post you’ll find a collection of links to articles discussing the major data center technologies—networking, hardware, security, cloud computing, applications, virtualization…you name it! (If Michael Endrizzi, a self-proclaimed Check Point fanatic, spent some time working with VMware NSX’s security features earlier this year.

Vmware 60

Vmware Hardware Storage Linux 60

Scott Lowe

MARCH 2, 2017

Skydive is (in the project’s own words) an “open source real-time network topology and protocols analyzer.” Tony Sangha took PowerNSX (a set of PowerShell cmdlets for interacting with NSX) and created a tool to help document the NSX Distributed Firewall configuration. Operating Systems/Applications. What’s that?

Linux 60

Linux Devops Open Source Virtualization 60

Scott Lowe

MARCH 17, 2016

Matt Oswalt recently unveiled (and open sourced) a framework called ToDD, which stands for “Testing on Demand: Distributed”. Russell Pope at Kovarus recently wrote about using security groups to manage the VMware NSX distributed firewall. Operating Systems/Applications. Read more about it here. Servers/Hardware.

Vmware 60

Vmware Linux Network Open Source 60

SecureWorld News

FEBRUARY 19, 2024

Its relative simplicity of use, SEO friendliness, customization potential, flexibility, and built-in security setup are just some of the reasons why web developers and marketing professionals choose it to power their websites. However, even experienced coders can make mistakes when assessing and bolstering a site's security.

How To 83

How To Backup Firewall Open Source 83

Scott Lowe

JUNE 20, 2016

Using eBPF, Plumgrid has created in-kernel virtual network functions (VNFs) that do things like bridging, routing, network address translation (NAT), and firewalling. Route aggregation is leveraged wherever possible, and Calico programs IPTables on each host to handle security policies. Project Calico. Pricing is capacity-based.

Meeting 60

Meeting Linux Storage Network 60

Dataconomy

APRIL 13, 2023

VNC has also opened up new possibilities for remote collaboration, enabling teams to work together on projects even when they are in different parts of the world. In this article, we will delve deeper into the world of Virtual Network Computing, exploring its history, technology, and various applications. and the open-source community.

Virtualization 36

Virtualization Network Linux Windows 36

ForAllSecure

APRIL 3, 2019

Software security is a global challenge that is slated to grow worse. The application attack surface is growing by 111 billion new lines of software code every year, with newly reported zero-day exploits rising from one-per-week in 2015 to one-per-day by 2021, according to the Application Security Report from Cybersecurity Ventures.

Programming 52

Programming Software Software Research 52

Scott Lowe

APRIL 8, 2013

Greg Ferro examines a potential SDN use case (an OpenFlow use case) in the form of enterprise firewall migrations. That’s a no-no from a security perspective—see here to learn why. Mike Foley shared recently that the release candidate of the vSphere 5 Security Hardening Guide has been released. Check it out here.

Storage 111

Storage Vmware WAN Virtualization 111

SecureWorld News

MAY 14, 2023

Plus, it is readily available to anyone on an open-source basis. The silver lining is that the pillar of this CMS, known as WordPress Core, is well secured against exploitation. Contrary to a common belief, WordPress security isn't limited to the use of hard-to-guess access credentials and turnkey malware scanners.

Security 65

Security Malware Authentication Internet 65

ForAllSecure

APRIL 3, 2019

Software security is a global challenge that is slated to grow worse. The application attack surface is growing by 111 billion new lines of software code every year, with newly reported zero-day exploits rising from one-per-week in 2015 to one-per-day by 2021, according to the Application Security Report from Cybersecurity Ventures.

Programming 40

Programming Software Software Research 40

ForAllSecure

APRIL 3, 2019

Software security is a global challenge that is slated to grow worse. The application attack surface is growing by 111 billion new lines of software code every year, with newly reported zero-day exploits rising from one-per-week in 2015 to one-per-day by 2021, according to the Application Security Report from Cybersecurity Ventures.

Programming 40

Programming Software Software Research 40

CIO Business Intelligence

JULY 11, 2023

Companies should be able to run the software within their own firewalls, under their full set of security and privacy controls, and in compliance with country-specific data residency laws, without ever sending any data outside their networks. This does not mean that organizations must give up the advantages of cloud computing.

Applications 95

Applications Artificial Intelligence Healthcare Pharmaceuticals 95

Scott Lowe

NOVEMBER 7, 2014

I really appreciate Jay’s focus on what’s beneficial to the users of OpenStack: the cloud operators, the end users/consumers, and the developers building applications on top of OpenStack. Operating Systems/Applications. you’ll need to be sure to unblock WMI in the Windows Firewall. Want to install ESXi 5.5

Vmware 69

Vmware Linux Storage Virtualization 69

CIO Business Intelligence

JUNE 15, 2022

1 – Security. While many newcomers to the cloud assume that hyperscalers will handle most of the security, the truth is they don’t. Arranged for security between your workloads and your client environment? Secured sets of connections for remote client access or remote desktop environments?

Cloud 145

Cloud Open Source Applications Storage 145

CIO Business Intelligence

FEBRUARY 28, 2024

Even in its infancy, gen AI has become an accepted course of action and application, and the most common use cases include automation of IT processes, security and threat detection, supply chain intelligence, and automating customer service and network processes, according to a report released by IBM in January.

Fractional CTO 131

Fractional CTO Open Source Enterprise Enterprise 131

Scott Lowe

SEPTEMBER 24, 2021

Well, let’s see…stuff on Envoy, network automation, network designs, M1 chips (and potential open source variants!), a bevy of security articles (including a couple on very severe vulnerabilities), Kubernetes, AWS IAM, and so much more! Are open source M1-style chips a possibility? Networking.

Open Source 107

Open Source Cloud Network Storage 107

ForAllSecure

MARCH 24, 2021

How could open source software be vulnerable for so long? Years ago, I was the lead security software reviewer at ZDNet and then at CNET. The password protected password file clearly was not secure. ” Of course, the security company freaked out, called the editor and chief, threatened to pull their advertising. .”

Open Source 52

Open Source Operating Systems Software Software 52

ForAllSecure

MARCH 24, 2021

How could open source software be vulnerable for so long? Years ago, I was the lead security software reviewer at ZDNet and then at CNET. The password protected password file clearly was not secure. ” Of course, the security company freaked out, called the editor and chief, threatened to pull their advertising. .”

Open Source 52

Open Source Operating Systems Software Software 52

Scott Lowe

OCTOBER 23, 2020

My list of links and articles from around the web seems to be a bit heavy on security-related topics this time. ” Speaking of Linux networking…Marek Majkowski of Cloudflare digs deep into conntrack , used for stateful firewalling functionality. Welcome to Technology Short Take #132! I hope you find something useful!

Open Source 60

Open Source Vmware Disaster Recovery Linux 60

ForAllSecure

MAY 17, 2023

A lot of SMBs do not have security operations centers or SOCs. They have IT contractors who can provision laptops and maintain a certain level of compliance and security. They can provide that additional security, remotely. They have those security capabilities. In a way and then you consume the outcomes.

Internet 40

Internet Insurance Security Virtualization 40

Scott Lowe

SEPTEMBER 24, 2021

Well, let’s see…stuff on Envoy, network automation, network designs, M1 chips (and potential open source variants!), a bevy of security articles (including a couple on very severe vulnerabilities), Kubernetes, AWS IAM, and so much more! Are open source M1-style chips a possibility? Networking.

Open Source 60

Open Source Cloud Network Storage 60

Data Center Knowledge

JULY 17, 2013

Paul Speciale is Chief Marketing Officer at Appcara , which is a provider of a model-based cloud application platform. Numerous IT management tools are available today for use with the cloud, but the rubber meets the road at the level of the application because this is what a user will actually “use.” Cloud Application Management.

Data Center 203

Data Center Cloud Data Applications 203

Scott Lowe

DECEMBER 10, 2015

We all know that security is more than just a host-based firewall, but a host-based firewall can be part of an overall security strategy. This article provides a good introductory overview of Linux iptables commands for configuring host-based firewall rules on your Linux systems. Operating Systems/Applications.

Windows 60

Windows Firewall Linux Architecture 60

Scott Lowe

FEBRUARY 10, 2015

This time around, the content is a bit heavier on cloud management and applications/operating systems, but still lots of good content all the way around (I hope, anyway). Jason Edelman has posted a self-compiled list of networking projects that are open source ; this is a useful list, so thanks for compiling it Jason!

Open Source 60

Open Source Vmware Network IBM 60

ForAllSecure

MAY 2, 2023

More and more criminals are identified through open source intelligence (OSINT). Find out what Daniel looks for and how he does digital forensics using social media and other open source resources. And they did, relatively quickly, using something known as Open Source Intelligence, or OSINT. You find clues.

Open Source 40

Open Source Media Social Hotels 40

ForAllSecure

MARCH 30, 2022

In this episode I’ll talk with two security researchers who simply followed the rabbit. Vamosi: Cloud security is relatively new and as such it probably hasn’t gotten as much attention as it deserves. It was a pretty serious vulnerability; a 9 out of 10 in security. And I'm a security researcher at Wiz.

Firewall 52

Firewall Virtualization Authentication Linux 52