Episode 398
Kubernetes Firewalln't
Last week in security news: Orca Security keeps finding vulnerabilities in Azure, this week’s S3 Bucket Negligence Award, and more!
June 16, 20226m 43s
Audio is streamed directly from the publisher (dts.podtrac.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Links:
- Azure’s continuing security woes
- The Meeting Owl videoconference device apparently had significant security problems
- Brandon Sherman writes about how Temporal structures its access control strategy with regard to AWS
- This week's S3 Bucket Negligence Award goes to Mobike.
- Cloud Functions or Cloud Run launched from any GCP organization can bypass Google Kubernetes Engine (GKE) Authorized Networks restrictions
- Proof of someone migrating to SSO and disabling IAM users entirely.
- AWS blog post about IAM policy types: How and when to use them
- Tailscale
Topics
cloudawsamazondevopslast week in aws984841