Join Cloudflare India Forum in Bangalore on 6 June 2019!
Please join us for an exclusive gathering to discover the latest in cloud solutions for Internet Security and Performance.
Cloudflare Bangalore Meetup
Thursday, 6 June, 2019: 15:30 - 20:00
Location: the Oberoi (37-39, MG Road, Yellappa Garden, Yellappa Chetty Layout, Sivanchetti Gardens, Bengalore)
We will discuss the newest security trends and introduce serverless solutions.
We have invited renowned leaders across industries, including big brands and some of the fastest-growing startups. You will learn the insider strategies and tactics that will help you to protect your business, to accelerate the performance and to identify the quick-wins in a complex internet environment.
Speakers:
- Vaidik Kapoor, Head of Engineering, Grofers
- Nithyanand Mehta, VP of Technical Services & GM India, Catchpoint
- Viraj Patel, VP of Technology, Bookmyshow
- Kailash Nadh, CTO, Zerodha
- Trey Guinn, Global Head of Solution Engineering, Cloudflare
Agenda:
15:30 - 16:00 - Registration and Refreshment
16:00 - 16:30 - DDoS Landscapes and Security Trends
16:30 - 17:15 - Workers Overview and Demo
17:15 - 18:00 - Panel Discussion - Best Practice on Successful Cyber Security and Performance Strategy
18:00 - 18:30 - Keynote #1 - Future edge computing
18:30 - 19:00 - Keynote # 2 - Cyber attacks are evolving, Continue reading
Upcoming Webinars and Events (June 2019)
I’m always amazed at how fast the time flies. I have no idea where May disappeared to, it seems like it was only yesterday when I was writing about webinar plans in 2019… and yet it’s only a month till ipSpace.net Summer Break™.
During June 2019 I’ll continue updating Designing the Private Cloud Infrastructure webinar, and start a new pet project: How Networks Really Work – I’m literally minutes away from traveling to a quiet spot in the middle of nowhere where I’ll work on the materials. In between these webinars you’ll find me in Zurich where I’ll run Microsoft Azure Networking workshop on June 12th in parallel with SIGS Technology Conference.
As you might expect we have plenty of things already lined up for autumn 2019… more about that in a week or two.
LDAP Search Active Directory
Use the ldapsearch command to query Microsoft Active Directory.LDAP Search Active Directory
I recently had to migrate authentication for a service from FIPA to Active Directory. It was a bit of fluffing around because the directory structure in FIPA did not exactly align with the directory structure in AD. In this post I will demonstrate how to use the ldapsearch command to search...Nvidia EGX Launches With Partners Including Red Hat, Cisco, AWS
The edge platform has more than 40 early-access customers including BMW, Foxconn, GE Healthcare,...
Copyright 2019 SDxCentral, LLC; For non-commercial use
Sprint’s 5G Network Goes Live in 4 Cities
Sprint made good on its promise to deliver 5G services in Atlanta, Dallas, Houston, and Kansas City...
Copyright 2019 SDxCentral, LLC; For non-commercial use
MapR Slashes Jobs as it Looks to Stay Afloat
The company pushed back against published reports that it was shutting down and that the job cuts...
Copyright 2019 SDxCentral, LLC; For non-commercial use
5G Is AT&T’s No. 3 Priority
The operator’s top five priorities are the FirstNet buildout, LTE Advanced deployments, 5G,...
Copyright 2019 SDxCentral, LLC; For non-commercial use
Upcoming Course: How Routers Really Work
My newest course on Safari through Pearson is coming up in just a few weeks:
VPC native GKE clusters – Container native LB
This blog is last in the series on VPC native GKE clusters. In this blog, I will cover Network endpoint groups(NEG) and Container native load balancing. For the first part on GKE ip addressing, please refer here and the second part on VPC native clusters, please refer here. Container load balancing and Network endpoint groups(NEG) … Continue reading VPC native GKE clusters – Container native LBVPC native GKE clusters – IP aliasing
This blog is second in the series on VPC native GKE clusters. In this blog, I will cover overview of IP aliasing, IP alias creation options and creating VPC native clusters using alias IPs. For the first blog on GKE ip addressing, please refer here. OverviewIP aliases allows a single VM to have multiple internal … Continue reading VPC native GKE clusters – IP aliasingVPC native GKE clusters – IP address management
This blog was written by me after a long gap of close to 7 months. Many reasons including busy work schedule, some health issues in the middle and a little bit of laziness contributed to this. I hope to be a more active blogger going forward. In this blog series, I will cover the following … Continue reading VPC native GKE clusters – IP address managementMy Data engineer certification notes
This blog is more of a quick reference notes rather than a real blog. I shared this with few Google internal folks and since they found it useful, I thought I will share these notes in the blog as well. Please note that the Data engineer exam format changed a little from March 29, 2019. … Continue reading My Data engineer certification notesA10 Networks ACOS Critical Insecure Cookie Vulnerability 1 of 2
The following summarizes an HTTP persistence cookie vulnerability that I identified in A10’s ACOS ADC software. This issue was disclosed to A10 Networks in June 2016 and has since been resolved.
This vulnerability results in information disclosure about names of service-groups and IPs of real servers, as well as the ability to manipulate the content of the cookies.
SUMMARY OF VULNERABILITY
The ACOS documentation for HTTP persistence cookies notes that “For security, address information in the persistence cookies is encrypted.” However, the address information is not “encrypted”; rather, the real server IP and port information is weakly obfuscated and is easily decoded, exposing information about the internal network. The simplicity of the obfuscation also makes it trivial to manually create a cookie which ACOS would decode and honor.
Additionally, cookies configured using the service-group command option have the service-group’s full name included in the persistence cookie as plain text. This vulnerability applies to HTTP/HTTPS VIP types that have been configured to use a cookie-based persistence template.
SOFTWARE VERSIONS TESTED
This vulnerability was discovered and validated initially in ACOS 2.7.2-P4-SP2 and reconfirmed most recently in ACOS 4.1.1-P3.
VULNERABLE VERSIONS
This behavior has been core to Continue reading
CrowdStrike Sets IPO Share Price, Targets $414 Million
The endpoint security unicorn plans to sell 18 million shares at between $19 and $23 each when it...
Copyright 2019 SDxCentral, LLC; For non-commercial use
IPv6 Buzz 027: Making The Leap To Enterprise IPv6
Today's IPv6 Buzz podcast discusses key approaches to getting IPv6 deployed in the enterprise. Guest Enno Rey talks about how to identify quick wins, being liberal and flexible as you deploy, and more. The IPv6 crew also talks about IPv6 security, and Enno shares highlights from his recent RIPE78 presentation.
The post IPv6 Buzz 027: Making The Leap To Enterprise IPv6 appeared first on Packet Pushers.
IPv6 Buzz 027: Making The Leap To Enterprise IPv6
Today's IPv6 Buzz podcast discusses key approaches to getting IPv6 deployed in the enterprise. Guest Enno Rey talks about how to identify quick wins, being liberal and flexible as you deploy, and more. The IPv6 crew also talks about IPv6 security, and Enno shares highlights from his recent RIPE78 presentation.Gogo Plans to Launch 5G in the Sky in 2021
The In-flight broadband services provider aims to use unlicensed spectrum in the 2.4 GHz band and...
Copyright 2019 SDxCentral, LLC; For non-commercial use