Trình bày các công nghệ CLOUD một cách dễ hiểu.
![[DevSecOps] Scan Terraform](https://nimtechnology.com/wp-content/uploads/2023/07/image-38.png?v=1690449390)
Mình copy bài này:https://spacelift.io/blog/what-is-tfsec More and more organizations are adopting IaC to codify their infrastructure requirements and streamline the maintenance processes around it. While Terraform is one of the dominant technologies today in the space of Infrastructure as Code (IaC), there is still a lot of scope of improvement. One such opportunity is its SecOps…
![[Renovate] Automate Dependency Management With Renovate From Mend](https://nimtechnology.com/wp-content/uploads/2023/07/image-36.png?v=1690108355)
Renovate is an automation tool for keeping your projects up-to-date. It automates the detection of outdated dependencies, the update of dependencies, and the creation of the Merge/Pull Request to get those updates integrated into your project. Self-host Renovate Bot https://jerrynsh.com/12-tips-to-self-host-renovate-bot/ https://github.com/renovatebot/docker-renovate/tree/main/docs
Link mua Fanhttps://vi.aliexpress.com/item/1005005574646350.html?gatewayAdapt=glo2vnm Hỗ trợ CPUhttps://huyneverdie.com/danh-sach-cpu-socket-lga-2011-3-x99/ Main Huanazhi can not use RAM ECC Có một lần Server của mình bị hết pin bios thế là không hiểu vì sao nó không nhận ram ECC nữa và lỗi là do Bios bị outdate Tiếp theo mình theo hướng dẫn của video dưới dây để upgrade bios:…
Read More “[Physical] HUANANZHI TF AD3 GREEN F8T8 COOLER MOS FAN” »
![[DevSevOps] How to Install OpenVAS](https://nimtechnology.com/wp-content/uploads/2023/07/image-29.png?v=1689671880)
I refer to: https://infosecwriteups.com/how-to-install-openvas-52b6337ba29a If you’re starting off in cybersecurity you may have heard of vulnerability scanners. A vulnerability scanner is a software or program that identifies security vulnerabilities or weaknesses in a system, application or network. It’s used by both attackers and defenders to figure out the security posture of the target system. In…
![[DevSecOps] Anonymous Authentication in Kubernetes](https://nimtechnology.com/wp-content/uploads/2023/07/image-19.png?v=1689218719)
Nguồn: https://krolcloud.com/blog/anonymous-authentication-in-kubernetes/?fbclid=IwAR1U9U6yzxJoF6tKwUQgkHAyqpB-mL8RMJ_ot8SLaXzseHKPEfZEMfDKHi4 Kubernetes Anonymous Users Let’s uncover the details of Kubernetes 💥anonymous users and how 💥RBAC tooling works with anonymous access. By default, every request to the Kubernetes API that isn’t otherwise associated with a specific user is treated as coming from an anonymous user. This can be startling at first glance, with some wondering…
Read More “[DevSecOps] Anonymous Authentication in Kubernetes” »
![[Grafana] How to publish Grafana Dashboard for the community.](https://nimtechnology.com/wp-content/uploads/2023/07/image-14.png?v=1689132623)
https://community.grafana.com/t/trying-to-share-dashboard-with-community-gives-404-error-how-to-share/72790/11và chúng ta sẽ phải chờ 24h thì mới sem được online nhé!
![[Monitoring] How to monitor EBS on AWS via Prometheus](https://nimtechnology.com/wp-content/uploads/2023/07/image-10.png?v=1689092381)
Như các bạn cũng đã biết thì Prometheus không thể collect trực tiếp metrics của Cloudwatch. Mình sẽ cài 1 thằng là cloudwatch-exporter để collect metrics.Bạn có thể sử dụng bài viết bên dưới Look into the helpful metrics. Bài này mình sẽ tập trung nhiều vào việc là tìm ra các metrics có ích…
Read More “[Monitoring] How to monitor EBS on AWS via Prometheus” »
![[Zeus] Retention Project](https://nimtechnology.com/wp-content/uploads/2023/06/image-30.png?v=1688093094)
Step 1: — (Done) Đây là phần đầu tiên. Đã tạo Pull Request: https://github.com/mrnim94/zeus/pull/1Đang review suggestions của PR Explainer BotĐã merged No vulnerability: Step 2: Replace the old aws credentials on k8s. (Done) Step2 cũng đã được merged: https://github.com/mrnim94/zeus/pull/10 Pull Request cũng không có Vulnerability. Step 3: Restart the deployments and any workloads to use…
![[DevSecOps] K8s Runtime Attack Scenarios Introduction](https://nimtechnology.com/wp-content/uploads/2023/06/image-29.png?v=1688093044)
Bài này hay quá nên là mình đã lưu lại.Link bài gốc ở đây: https://systemweakness.com/k8s-runtime-attack-scenarios-2f12816a400b Hello, I created this article to collect my articles about Container Runtime Attack scenarios that I created for K8s and similar environments. You can think of this article as a kind of starting point for other articles. If you don’t…
Read More “[DevSecOps] K8s Runtime Attack Scenarios Introduction” »
![[Kubernetes] Taints and Tolerations](https://nimtechnology.com/wp-content/uploads/2023/06/image-26.png?v=1687939023)
Taints and tolerations được sử dụng để hạn chế các Pod nào đó có thể di chuyển đến Node nào đó trên cluster.Taints được apply cho các nodes, để biểu thị rằng các Pods không nên được scheduled trên node đó nếu pods đó không được gắn tolerations.Tolerations được set trên pods để biểu thị rằng…
