AWS IAM was used extensively by Stedi to enforce role-based access control for customers. A vulnerability was discovered in AWS STS where role trust policy statements were evaluated incorrectly, allowing unauthorized access to AWS accounts. Stedi shared their discovery process and collaboration with.. read more  

An analysis of security posture across a range of applications written in various programming languages found that Java services are disproportionately affected by vulnerabilities, with a high percentage of services vulnerable to critical, high-severity issues introduced by third-party libraries. Vu.. read more  

Establishing internal network infrastructure: Configuring a robust internal network infrastructure is key to efficient data center operations. This involves setting up switches, routers, and firewalls to manage data flow and protect against intrusions. Redundancy is critical for ensuring high availa.. read more  

The supercomputer Fugaku, developed by Japan's RIKEN Center for Computational Science, is now available on the Amazon Web Services (AWS) Cloud for easier access. Fugaku has been used for various societal needs, from COVID-19 simulations to drug discovery and economic forecasting... read more  

$200 infra to serve your startup till 100k monthly users in 15 minutes. Self-hosted Postgres, caddyserver and docker-compose FTW... read more  

Next month will mark the 16th anniversary of the disclosure of a major vulnerability in the Debian OpenSSL package that resulted in predictable private keys. In 2008, a solution was implemented at Engine Yard to address slow SSH login times for GitHub users, involving patching OpenSSH to lookup keys.. read more  

Bloom filters, native OpenTelemetry support, and more!.. read more  

Big fan of self-hosted tools, indie hackers prefer self-hosted offerings for complete control and flexibility, even though maintenance and security can be challenging. However, tools like Docker have simplified the self-hosting process, making it more accessible even for developers without extensive.. read more  

Two years ago, a benchmark compared two different versions of the Go performance. Recently, the benchmark was rerun with the missing Go version and new releases, including Profile-guided optimization (PGO) additions... read more  

Part two of a multi-part series on Netflix's efforts to rebuild their video processing pipeline with microservices. The blog dives into the details of building a video encoding service on the Cosmos platform, aiming to modernize Netflix's media processing pipeline for improved flexibility and effici.. read more