Introduction to Azure Security

DevOps Security or DevSecOps is a set of practices and tools that bring together software development (Dev), IT operations (Ops), and security (Sec) to increase an organization’s ability to deliver applications and services securely. DevOps presents new risks that create security challenges that cannot typically be addressed by conventional security management solutions and practices. One of the prominent security challenges in DevOps environments is privileged access management. DevOps processes require human and machine privileged credentials which are quite powerful and highly susceptible to
cyber-attacks. So strong security practices should be inserted throughout the application lifecycle to reduce vulnerabilities, improve security posture and mitigate risk.

Continue reading “Introduction to Azure Security”

BigBulls Game Series- Patching MongoDB using Ansible

MongoDB is the most popular NoSQL and an open-source document-oriented database. The term NoSQL means ‘non-relational’.This simply means mongo does not base on a table-like relational database structure. It is moreover a schemaless database. In Mongo information is stored in JSON-style documents.

Continue reading “BigBulls Game Series- Patching MongoDB using Ansible”

EC2 STORE OVERVIEW- Difference B/W AWS EBS And Instance Store

Introduction to EC2 Storage-

Amazon EC2 provides you with flexible, cost-effective, and easy-to-use data storage options for your instances. EC2 basically provides two types of block-level storage. Instances can either be launched with Elastic block storage volume (EBS volume) or Instance store-backed volumes as to their root volumes. Each option has a unique combination of performance and durability. But Aws recommends using EBS storage-backed AMIS as they get launched faster and provide persistent storage. 

Continue reading “EC2 STORE OVERVIEW- Difference B/W AWS EBS And Instance Store”

Your Guide for Patching Elastic Search!

What is Patching?

A patch is a set of updates to a server or its supporting data designed to update, fix and improve, including fixing security vulnerabilities and other bugs. They may be applied to program files on a storage device or in computer memory. Patches may be permanent or temporary. 
In a brief overview, you need to perform the following tasks for patch management: 
 1. Create a patch catalog.
 2. Analyze the target to determine the patches that need to deploy.
 3. Deploy the required patches to targets requiring remediation.
 4. Analyze the targets again to ensure each server has the correct patch.

Continue reading “Your Guide for Patching Elastic Search!”