Articles from ADMIN Issue 79
When facing the challenge of packaging your application in a container, take into account your needs in terms of handling and security and investigate sensible options for hosting your own registry.
Containers offer great flexibility, but the data they contain often needs to be backed up. Stateful applications that store their information in a container's persistent volume can be backed up in a variety of ways, but not all of them are easy.
Manage your on-premises servers with Windows Admin Center in Azure.
The OSSEC free intrusion detection and host-based intrusion prevention system detects and fixes security problems in real time at the operating system level with functions such as log analysis, file integrity checks, Windows registry monitoring, and rootkit detection. It can be deployed virtually anywhere and supports the Linux, Windows, and macOS platforms.
Restoring identity is an important part of disaster recovery, since it lays the foundation for restoring normality and regular operations. We look into contingency measures for hybrid directory services with Entra ID, the Graph API, and its PowerShell implementation.
The Ralph open source asset management system and configuration database keep things simple when it comes to managing data centers, but without compromising flexibility.
GitOps applies DevOps practices through infrastructure automation of version control repositories. We look at why it is so popular and why it is often used in the context of Kubernetes.
We look at the Border Gateway Protocol, how it routes packets through the Internet, its weaknesses, and some hardening strategies.
Targeted attacks such as distributed denial of service, with thousands of computers attacking your servers until one of them caves in, cannot be prevented, but they can be effectively mitigated.
Disconnect OpenSSH user sessions after a certain period of inactivity with the systemd-logind service.