Chris Aniszczyk's (zx) diatribe
work. life. open source. diatribes.
Sysdig and Falco now powered by eBPF. | Sysdig
sysdig.comHow to instrument the Linux kernel for system call tracing using eBPF and how Sysdig leverages eBPF for visibility and security.
STRIDE threat modeling on Kubernetes pt.2/6: Tampering
In the previous post of this little series we talked about preventing spoofing on Kubernetes. Today we’ll talk about the T of STRIDE: Tampering. Tampering is the act of changing something in a malicious way, to gain extra privileges or for denial of service. Generally for preventing tampering is important to: limit the access to critical components; control the access to critical components; Furthermore, it’s important to watch for evidence of tampering.
Cloud Native Predictions for 2021 and Beyond
I hope everyone had a wonderful holiday break as the first couple weeks of January 2021 have been pretty wild, from insurrections to new COVID strains. In cloud native land, the CNCF recently relea…