Security

Cloudogu integrates exclusive gamification and e-learning plugin from Secure Code Warrior into SCM Manager

Cloudogu GmbH has integrated a free plugin into its SCM Manager (tool for source code management). It contextually displays learning materials such as training videos and exercises on security topics from Secure Code Warrior in pull requests. This enables developers and reviewers to find and fix insecure code early in the development process. Secure Code Warrior provides a learning platform that helps developers write secure code in the shortest possible time.

08.08.2023

See Post

Blogpost

Kubernetes AppOps Security Part 6: Pod Security Policies (2/2) - Exceptions and Troubleshooting

Pod Security Policies (PSP) allow to use cluster wide settings that are used for all new containers. In comparison to the Security Context, the usage of PSPs not as easy, but especially for large organizations with large clusters it can be beneficial to use them, because they reduce the necessity for manual configuration.

28.10.2020

See Post

Blogpost

Kubernetes AppOps Security Part 5: Pod Security Policies (1/2) – Good Practices

Pod Security Policies (PSP) allow to use cluster wide settings that are used for all new containers. In comparison to the Security Context, the usage of PSPs not as easy, but especially for large organizations with large clusters it can be beneficial to use them, because they reduce the necessity for manual configuration.

30.09.2020

See Post

Blogpost

Backup and Restore with Cloudogu EcoSystem

With the Cloudogu EcoSystem you can easily and efficiently create backups for your entire toolchain, without any additional work. The backup and restore Dogu secures the data of your tools and allows you to easily restore it in case you need to.

27.08.2020

See Post

Blogpost

Kubernetes AppOps Security Part 4: Security Context (2/2) – Background

A container is basically a normal Linux process that runs isolated from the rest of the system via certain kernel components. This makes containers lighter but more vulnerable than virtual machines (VMs). To reduce this vulnerability to attack, the container runtimes offer a variety of settings whose default values strike a compromise between usability and security.

19.05.2020

See Post

Blogpost

Kubernetes AppOps Security Part 3: Security Context (1/2) – Good Practices

The virtual construct of a “container” is a normal Linux process at its core that largely runs in isolation from the rest of the system using certain kernel components. This makes containers lighter but more vulnerable than virtual machines (VMs). To reduce this vulnerability to attack, the container runtimes offer a variety of settings whose default values strike a compromise between usability and security.

17.03.2020

See Post

Blogpost

Docs As Code – Continuous Delivery of Presentations with reveal.js and Jenkins – Part 2

The first part of this series demonstrated the use cases and benefits of delivering presentations with reveal.js. They are Docs As Code, and therefore they can be subjected to versioning management and of course delivered via Continuous Delivery. Furthermore, we demonstrate how the Jenkins pipelines can be used to deploy to GitHub Pages using a model concrete implementation. This article demonstrates additional alternatives for deployment (Sonatype Nexus and Kubernetes), while the general structure of the `Jenkinsfile` remains the same.

11.02.2020

See Post

Blogpost

Kubernetes AppOps Security Part 2: Using Network Policies (2/2) - Advanced Topics and Tricks

In a Kubernetes cluster, everything (nodes, pods, Kubelets, etc.) can communicate with each other by default. If an attacker succeeds in exploiting a security vulnerability in one of the applications, he can easily expand his attack to all underlying systems in the same cluster. You can restrict this vulnerability using the on-board network policy features found in Kubernetes.

21.01.2020

See Post

Blogpost

Kubernetes AppOps Security Part 1: Using Network Policies (1/2) – Basics and Good Practices

If you deploy applications on a managed Kubernetes cluster, operations is responsible for security, right? Not really! Even though Kubernetes abstracts from hardware, its API offers many possibilities for developers to improve security for the applications that are operated on it, by not just using the default settings. This post explains for which attack vectors network policies can offer protection and it will also show pragmatic good practices based on practical examples.

29.10.2019

See Post

All articles for topic "Security"

Cloudogu integrates exclusive gamification and e-learning plugin from Secure Code Warrior into SCM Manager

Kubernetes AppOps Security Part 6: Pod Security Policies (2/2) - Exceptions and Troubleshooting

Kubernetes AppOps Security Part 5: Pod Security Policies (1/2) – Good Practices

Backup and Restore with Cloudogu EcoSystem

Kubernetes AppOps Security Part 4: Security Context (2/2) – Background

Kubernetes AppOps Security Part 3: Security Context (1/2) – Good Practices

Docs As Code – Continuous Delivery of Presentations with reveal.js and Jenkins – Part 2

Kubernetes AppOps Security Part 2: Using Network Policies (2/2) - Advanced Topics and Tricks

Kubernetes AppOps Security Part 1: Using Network Policies (1/2) – Basics and Good Practices