%term

It's Time to Get Rid of Passwords in Our Infrastructure

Nov 19, 2021 By Alexander Klizhentas In Teleport

Passwords are everywhere. Sometimes they are obvious — hardcoded in the code or laying flat in the file. Other times, they take the form of API keys, tokens, cookies or even second factors. Devs pass them in environment variables, vaults mount them on disk, teams share them over links, copy to CI/CD systems and code linters. Eventually someone leaks, intercepts or steals them. Because they pose a security risk, there is no other way to say it: passwords in our infrastructure have to go.

Read Post

Teleport

Read more about It's Time to Get Rid of Passwords in Our Infrastructure

TPM vs HSM - What's the Difference?

Nov 16, 2021 By Ev Kontsevoy In Teleport

Hardware security modules (HSM) and trusted platform modules (TPM) seemingly do the same thing: they manage secret keys and enable data protection. But what does “managing secrets” mean, and what’s the difference between the two? Before diving deeper, let’s explore why computers need help with managing their secrets.

Read Post

Teleport

Read more about TPM vs HSM - What's the Difference?

Forwarding Access Logs using FluentD

Nov 11, 2021 By Teleport In Teleport

https://goteleport.com/docs/setup/guides/fluentd/

0:00 Intro

0:35 Forwarding events with Fluentd

6:54 Setting up ElasticSearch

11:02 Setting up FluentD

14:02 Viewing events in LogStash

View Video

Teleport

Read more about Forwarding Access Logs using FluentD

Just-In-Time Access Requests for Your DevOps Workflow

Nov 11, 2021 By Steven Martin In Teleport

Customers are increasingly looking for just-in-time access to infrastructure. Imagine there is a production outage and a senior SRE needs to login to a production server to diagnose and fix the issue. In this organization, on-call SREs have elevated access to production systems, but when they are off-duty, their privileges are reduced. When the Pager Duty alert goes off, our on-call SRE ssh’s into the server but after several minutes of looking, can’t diagnose the issue.

Read Post

Teleport

Read more about Just-In-Time Access Requests for Your DevOps Workflow

DevOps Access Controls for CI/CD, GitOps, and More

Nov 4, 2021 By Allen Vailliencourt In Teleport

Over the last few years, the term DevOps and DevSecOps (which stand for Developer Operations and Developer Security Operations respectively) have become synonymous with companies trying to become more agile and less monolithic.

Read Post

Teleport

Read more about DevOps Access Controls for CI/CD, GitOps, and More

Sharpen your security skills with open source! Introduction to modern infrastructure access

Oct 29, 2021 By Teleport In Teleport

Secure access to complex computing environments is hard to get right. Introducing the open source identity-aware access proxy: Teleport. It is used by engineers at smart companies Nasdaq and Google, to easily access all to their computing resources — SSH servers, Kubernetes clusters, or databases. For security professionals, Teleport uses short-lived certificates, audit logs, and session recordings to make it easier to achieve high security standards and compliance.

View Video

Teleport

Read more about Sharpen your security skills with open source! Introduction to modern infrastructure access

Infosec for startups

Oct 28, 2021 By Teleport In Teleport

SOC2, Crypto and Building a security practice In this episode we go deep into SOC2, Cryptography and how to get started building a security practice. Key topics on Access Control Podcast: Episode 12 - Cryptography for Startups.

View Video

Teleport

Read more about Infosec for startups

Ghosts of Past Employees

Oct 28, 2021 By Ben Arent In Teleport

This blog post started as a seasonal message from our Newsletter. We’ve expanded it to be appropriate for the rest of the year. With more employees changing jobs in 2021 than ever before, there are likely to be a few skeletons in the closet.

Read Post

Teleport

Read more about Ghosts of Past Employees

Getting started with Teleport DigitalOcean 1-Click Droplet

Oct 21, 2021 By Teleport In Teleport

Marketplace Link: https://marketplace.digitalocean.com/apps/teleport

View Video

Teleport

Read more about Getting started with Teleport DigitalOcean 1-Click Droplet

An Engineer's Perspective on Onboarding

Oct 21, 2021 By Nick Brennan In Teleport

Before I joined the security industry, I was an end user. Coming in with that first-hand experience equips me to talk about secure remote access from multiple perspectives: as a vendor and as a practitioner. This lets me see the technologies available and also understand the drivers and issues engineering orgs face adopting them, particularly with onboarding engineers. I’ve been a support engineer for over 20 years, across Operations and System & Database Administration.

Read Post

Teleport

Read more about An Engineer's Perspective on Onboarding

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

It's Time to Get Rid of Passwords in Our Infrastructure

TPM vs HSM - What's the Difference?

Forwarding Access Logs using FluentD

Just-In-Time Access Requests for Your DevOps Workflow

DevOps Access Controls for CI/CD, GitOps, and More

Sharpen your security skills with open source! Introduction to modern infrastructure access

Infosec for startups

Ghosts of Past Employees

Getting started with Teleport DigitalOcean 1-Click Droplet

An Engineer's Perspective on Onboarding

Monthly Archive

Follow Us