Scott Lowe

OCTOBER 8, 2021

There’s some networking stuff, a few security links, and even a hardware-related article. Jimmy Mankowitz talks in some detail about using NSX-T in vSphere with Tanzu to secure applications. Operating Systems/Applications. Welcome to Technology Short Take #146! Networking. ” Who will be correct?

IPv6 60

IPv6 Storage Hardware Vmware 60

Scott Lowe

MAY 3, 2019

Keybase discusses some challenges with encrypted chat applications and how their architecture avoids some of those challenges. This past week Microsoft and VMware announced Azure VMware Solutions, which allows customers to run the VMware software stack on Azure (an arrangement similar in nature to VMware Cloud on AWS, as I understand it).

Vmware 60

Vmware Open Source Intel Applications 60

Scott Lowe

JANUARY 27, 2023

I’ve got another collection of links to articles on networking, security, cloud, programming, and career development—hopefully you find something useful! Security Adrian Mouat reviews some of the security-focused changes in Go 1.20. Welcome to Technology Short Take #164! Well worth reading, in my opinion.

Programming 90

Programming Open Source Cloud Devops 90

Scott Lowe

JUNE 24, 2022

Tetragon is Isovalent’s newly open-sourced security framework. I think the headline (“defeats ’the last line of security’”) is a bit sensationalist, but I guess that’s the world we live in. Tzah Pahima shares additional details on the so-called Azure “SynLapse” security vulnerability.

Vmware 74

Vmware Linux Storage Virtualization 74

Scott Lowe

JUNE 18, 2021

Patrick Kremer walks through using Postman to implement BGP route filtering with VMware Cloud on AWS. John Gruber’s post on “Secure Intent” on Apple devices was, for me at least, an informative read. Hari Rana has a detailed discussion of security concerns regarding Flatpak (a packaging format for Linux applications).

Vmware 60

Vmware Hardware Load Balancer Apple 60

Scott Lowe

APRIL 6, 2017

Humair Ahmed of VMware shares some details on a new control plane resiliency feature recently added to VMware NSX: Controller Disconnected Operation (CDO) mode. Konstantin Ryabitsev has a series going on securing a SysAdmin Linux workstation. Operating Systems/Applications. Yes, please! (I

Vmware 60

Vmware Linux Storage Network 60

Scott Lowe

OCTOBER 28, 2022

Alejandro Villanueva shares 26 AWS security best practices to adopt in production. William Lam writes about the beta for VMware Cloud Consumption Interface (CCI). Operating Systems/Applications. Looks like some significant bandwidth increases could be on the horizon; see this article for more details. Using Auth0?

Open Source 79

Open Source Apple Vmware Cloud 79

Scott Lowe

JANUARY 15, 2021

The content this time around seems to be a bit more security-focused, but I’ve still managed to include a few links in other areas. Rory McCune points out that Kubernetes is a router , and users should not rely on the fact that pods are not accessible from the outside by default as any form of a security barrier. Networking.

Linux 60

Linux Firewall Open Source Vmware 60

Scott Lowe

APRIL 15, 2022

Although Linux is often considered to be superior to Windows and macOS with regard to security, it is not without its own security flaws. I, personally, would posit that Linux can be more secure than other platforms, but it requires proper configuration and can still be undone by a loose nut behind the keyboard.

Linux 74

Linux Load Balancer IPv6 Licensing 74

Fountainhead

MARCH 18, 2013

Two recent announcements lead me to making an interesting business strategy observation about two opposing approaches to dominating these markets: VMwares recent announcement that it intends to venture into the public cloud ( assessment courtesy of James Staten ). VMware: A Strategy Expanding from Enterprise to Public.

Strategy 210

Strategy Cloud Vmware Data Center 210

Scott Lowe

DECEMBER 9, 2022

These are worth a read if security and compliance are your jam (see here , here , here , here , here , here , and here ). Chris Farris shares some tips for securing GitHub organizations. Operating Systems/Applications. I suspect more are in the works, so stay tuned to his site! See here for more details.

Devops 87

Devops Virtualization Engineering Storage 87

Scott Lowe

JANUARY 6, 2023

This could be bad—a wormable vulnerability that could allow attackers to remotely execute code by exploiting potentially any Windows application protocol that provides authentication, including (potentially) SMTP or HTTP. Operating Systems/Applications. Get more details in this article. Virtualization.

Network 74

Network Vmware Cloud Operating Systems 74

Scott Lowe

AUGUST 11, 2016

In this post you’ll find a collection of links to articles discussing the major data center technologies—networking, hardware, security, cloud computing, applications, virtualization…you name it! (If Thinking of using a hardware VTEP (VXLAN Tunnel Endpoint) with VMware NSX? and Trend Micro’s Deep Security in this article.

Vmware 60

Vmware Hardware Storage Linux 60

Scott Lowe

FEBRUARY 11, 2021

I’ve got a wide range of topics for you this time around—eBPF, Falco, Snort, Kyverno, etcd, VMware Code Stream, and more. Kaizhe Huang examines Falco versus AuditD from a host intrusion detection system (HIDS) perspective. A major security flaw in sudo has been discovered; more details available here. Networking.

Vmware 60

Vmware Storage Study Network 60

Scott Lowe

NOVEMBER 10, 2017

VMware recently released an updated to PowerCLI (version 6.5.3), and with it comes a set of cmdlets that provide low-level access to the NSX-T REST API. Major Hayden talks about ansible-hardening , a new role that grew out of an OpenStack-related security role. Here’s a quick note about AWS security groups and traffic flows.

Vmware 60

Vmware Storage Engineering Network 60

Scott Lowe

DECEMBER 22, 2018

My colleague Josh Rosso has a post up on securing communication to the Kubernetes controller manager and Kubernetes scheduler. Operating Systems/Applications. Dave Taylor provides s ome tips for configuring VMware Fusion for Linux usage. Both posts are a bit high-level, but a useful read nevertheless.

Vmware 60

Vmware Linux Hardware Case Study 60

Scott Lowe

JULY 22, 2022

In particular, the “Career/Soft Skills” section is a bit bigger than usual this time around, as is the “Security” section. Phil Stokes of SentinelOne describes some of the early security changes found in macOS “Ventura” (i.e., Operating Systems/Applications. Networking.

System 79

System Open Source Cloud Policies 79

Scott Lowe

DECEMBER 8, 2016

Jake Bennett discusses strengthening your AWS security posture by protecting application credentials and rotating EC2 and IAM keys. Gert van Dijk has a great article on upgrading your SSH keys to take advantage of new key types and enhanced security. Blueprints that demonstrate VMware-Chef integration. Good times.

Vmware 60

Vmware Storage Intel Virtualization 60

Scott Lowe

APRIL 27, 2018

VMware has released a PowerCLI preview/fling for NSX-T; Kyle Ruddy has a write-up here. Cilium, the open source project working to bring eBPF-powered networking and security to Kubernetes environments, has hit the 1.0 Sysdig has a Kubernetes security guide available that may be worth reviewing. Operating Systems/Applications.

Vmware 60

Vmware Storage Open Source Security 60

Scott Lowe

JUNE 2, 2016

Anthony Burke has written a script that uses VMware NSX to protect VMware Log Insight instances. The first article provides a blueprint for migrating applications to VMware NSX ; the second article supplies some tips for creating filtering policies in VMware NSX. Operating Systems/Applications.

Vmware 60

Vmware Virtualization Linux Windows 60

Scott Lowe

FEBRUARY 16, 2017

The rise of the disaggregated network operating system (NOS) marches on: this time, it’s Big Switch Networks announcing expanded hardware support in Open Network Linux (ONL) , upon which its own NOS is based. Humair Ahmed takes a closer look at some Cross-VC NSX security enhancements that landed in the recent NSX 6.3 Networking.

Vmware 60

Vmware Linux Storage Load Balancer 60

Scott Lowe

FEBRUARY 24, 2018

VMware recently released a reference design guide for NSX-T; see here for more details. This doesn’t make me feel very secure. Dimitri de Swart has a write-up on LAMP stacks made easy with VMware and Puppet. Operating Systems/Applications. I hope it proves useful! Networking. Larry Smith Jr.

Vmware 60

Vmware Load Balancer Network Open Source 60

Scott Lowe

JANUARY 19, 2018

This is pretty cool: a WYSIWYG topology designer for VMware NSX. The VMware Cloud-Native Apps group has a breakdown of some of the new features/functionality found in the 1.9 Richard Boswell has a series going on VMware Integrated OpenStack (VIO) and resource schedulers that is (so far) pretty good. Servers/Hardware. or higher).

Vmware 60

Vmware Open Source Linux Cloud 60

Scott Lowe

NOVEMBER 30, 2018

Troy Hunt has a good article on security measures other than just passwords , explaining some of the differences between multi-factor authentication and multi-step authentication (for example). Operating Systems/Applications. For those of us in the IT field, we are definitely living in interesting times.

Vmware 60

Vmware Authentication Virtualization Storage 60

Scott Lowe

MAY 22, 2015

Welcome to Technology Short Take #51, another collection of posts and links about key data center technologies like networking, virtualization, cloud management, and applications/operating systems. There’s a lot of talk about container security, but now there’s something you can actually do about it. Networking.

Vmware 60

Vmware Network Virtualization IPv6 60

Scott Lowe

NOVEMBER 6, 2020

This time around, I have a collection of links featuring the new Raspberry Pi 400, some macOS security-related articles, information on AWS Nitro Enclaves and gVisor, and a few other topics. How did I not know about Network Time Security (NTS)? Here’s a post on using NTS to secure NTP on Fedora. Networking.

SMB 60

SMB Cloud Fashion Vmware 60

Scott Lowe

MARCH 17, 2016

I recently came across a couple useful troubleshooting guides, one for Open vSwitch (OVS) and OpenStack Neutron and one for VMware NSX. Russell Pope at Kovarus recently wrote about using security groups to manage the VMware NSX distributed firewall. Operating Systems/Applications. Servers/Hardware.

Vmware 60

Vmware Linux Network Open Source 60

Scott Lowe

MAY 27, 2022

Researchers have uncovered a potential security flaw in Apple Silicon CPUs; more details in this 9to5Mac article. I’m not sure how I feel about security researchers calling this flaw “not that bad.” Via Teri Radichel , I saw this article from Google Project Zero about zero-click security vulnerabilities in Zoom.

Virtualization 79

Virtualization Storage Network Programming 79

Scott Lowe

SEPTEMBER 27, 2019

The Kubernetes project recently underwent a security audit; more information on the audit, along with links to the findings and other details, is available here. Daniel Sagi of Aqua Security explains the mechanics behind a Pod escape using file system mounts. Operating Systems/Applications.

Load Balancer 60

Load Balancer Cloud Applications Vmware 60

Scott Lowe

OCTOBER 29, 2021

AnandTech takes a closer look at Apple’s A15 SoC (system on a chip), which debuted in the iPhone 13. William Lam shares some information on using kube-vip with VMware’s new Tanzu Community Edition (TCE). Operating Systems/Applications. Chris Evans shares his take on VMware’s Project Capitola.

Vmware 74

Vmware Cloud Network Hardware 74

Scott Lowe

JULY 21, 2016

Here’s a pair of articles ( one here and one here ) that describe the port connections required between the various components in a VMware NSX deployment. These posts are a bit slanted toware VMware vSphere environments, but very detailed, very thorough, and very useful. William Lam has a quick look at ContainerX on VMware vSphere.

Vmware 60

Vmware Linux Storage Hardware 60

Scott Lowe

NOVEMBER 25, 2020

Adrian’s operational review readiness template is another great post as well. Operating Systems/Applications. You may have heard of eBPF, the Linux technology that is reshaping Linux applications (and in some ways reshaping Linux itself). VMware finally splits VMware Tools out from vSphere.

Linux 60

Linux Vmware Open Source Examples 60

Scott Lowe

AUGUST 27, 2021

Teri Radichel uses some basketball analogies to explain why defensive (proactive) security strategies are more desirable than reactive security strategies. Operating Systems/Applications. (And since Kevin didn’t define TDP—shame, shame!—see —see this post for an explanation.). So useful.).

Linux 90

Linux Load Balancer Malware Virtualization 90

Scott Lowe

FEBRUARY 1, 2019

Maarten Goet has a few recommendations on securing Kubernetes on Microsoft Azure. Lior Kamrat has an article on securing Azure Container Registry for CI/CD pipelines using Azure service principals. Christopher Damerau explains how to use Ansible to manage VMware resources. Operating Systems/Applications.

Network 60

Network Resources Devops Vmware 60

Scott Lowe

JANUARY 17, 2020

Guiliano Bertello introduces PowerVCF , a PowerCLI module aimed at interacting with the SDDC Manager and VMware Cloud Foundation (VCF) stack. (If The next day, the Microsoft Security Response Center confirmed the vulnerability. Now I really want to see hardware security key support in the desktop and mobile apps!

Load Balancer 60

Load Balancer Vmware Windows Cloud 60

Scott Lowe

FEBRUARY 9, 2018

Sam McGeown has a nice diagram of the communications channels between the various VMware NSX components. I’m not really sure if this belongs in networking or not (how does one classify OS kernel-level work on networking and security?), Security is a many-faceted area, and one facet is appropriately protecting credentials.

Vmware 60

Vmware Linux Network Storage 60

Galido

MAY 1, 2019

Technology is the application of scientific knowledge for practical purposes, especially in industry. It involves advances in computer technology, machinery, and equipment developed from the application of scientific knowledge and a branch of knowledge dealing with engineering or applied sciences. Security Tech Blogs.

Resources 107

Resources Mobile Data Center Security 107