“Securing Microservice APIs: Sustainable and Scalable Access Control” by Matt McLarty, Rob Wilson, and Scott Morrison Identification: “Service consumers and intermediaries must be able to send API request messages that include multiple identities along with optional attributes that detail those identities, and they must be able to accept API requests that include multiple identities and […]
Read more "Mini-Book: Securing Microservice APIs"“DevOps Handbook: How to Create World-Class Agility, Reliability, & Security in Technology Organizations” By Gene Kim, Jez Humble, Patrick Debois, & John Willis Two conflicting goals: “Respond to the rapidly changing competitive landscape” “Provide stable, reliable, and secure service to the customer” “organizations adopting DevOps are able to linearly increase the number of deploys per […]
Read more "Book: DevOps Handbook"I had the fortune to listen to Ken Beer and Ryan Treat’s talk on keys and certificates. Here are my notes: Keys Key hierarchy: A technique to improve manageability of a larger number of keys and security by encrypt keys with another set of keys. Envelop encryption: Data keys for applications are encrypted by […]
Read more "Talk: Keys on AWS and Certificates"I’ve used rsnc before and appreciated its features. Today, I’ve renewed my interest and leveraged this example to transfer some files over ssh.
Read more "rsync over ssh"The links that I included on this topic earlier are broken. So, here is a new one and it worked for me.
Read more "Howto SSH without a password"A person asked me this question today, here is my response base on the notes that I had for Solaris system administration certification. Yes. The notes are still handy. 😉 To rlogin/rcp/rsh to a machine without enter a password, you should have $HOME/.rhosts file defined on the target machine if you are trying to login […]
Read more "How to rlogin/rcp/rsh to a machine without enter a password?"The best way to configure HTTPS/SSL on Sun Java System Application Server 8.1/8.2 is using the command line. The command you should use is asadmin create-ssl. See also this documentation. Special thanks to Bernhard T. for the tip.
Read more "A tip on configuring HTTPS/SSL on Sun Java System Application Server 8.1/8.2"This HowTo assums the following: * You have an instance of Sun Java System Web Server 6.1 on Solaris OS (SPARC/x64) * The machine has a static IP * You have root access to install and configure the software. * All steps are presented in the form of examples with the assumption that you will […]
Read more "Howto setup SSL on Sun Java System Web Server 6.1 on Solaris"Project Liberty hosted an Idenity Web services workshop and here are my notes: Project Liberty announced OpenLiberty, an open source initiative focusing on “a wide range of new relying party (identity-consuming) applications”. This effort certainly looks like an attempt expand potential addressable market for identity enabled services. Beyond the basic Circle of Trust (CoT), there […]
Read more "Notes from Liberty 2.0 Workshop"For the obvious security reason that I didn’t want to login to a remote server as root. At the same time, the GUI based app required me to run as root. So, I first ran ssh -X non-root_user@server command as usual. Then I ran “su” command without the dash “-” before I started the GUI […]
Read more "How do I forward a remote GUI app to localhost as root without login to server as root?"
Dave's Blogs 
You must be logged in to post a comment.