Security

Avoid Using Same SSH Private Key For All Your Servers

The more projects you handle, the more servers you manage. But when you ssh to servers of different projects, are you using the same private key?

And how secured you feel about this? Let’s imagine. One day, your powerful private key gets compromised somehow. Boom! All your servers, and all your projects are in danger.

Check out this post. And get improved for all your projects, in just five minutes!

Avoid Using Same SSH Private Key For All Your Servers


(more…)

Manage SSH Key File With Passphrase

Any serious DevOps will only ssh by key file. Not with password, right? And mostly our powerful key file can unlock many critical envs. Have you ever uploaded your private key to other envs, like jumpbox? What if your key is magically stolen by hackers somehow?
Time to protect your sensitive ssh key by passphrase. And live with it, headache-free.

Manage SSH Key File With Passphrase


(more…)

Use Nmap To Automate Insecure Ports Check

While go cloud is a prevailing trend, security is something we can’t afford to ignore. People hate malicious access. Periodically check all widely open TCP Ports is one good practice to secure our system in cloud. Obviously DB ports can’t be exposed to the whole internet. Our internal REST API also need to be protected.

We should make sure firewall is properly configured. What’s more important, we need to be always on top of these security holes with minimum efforts. So let’s automate the audit process of insecure TCP Ports.

Use Nmap To Automate Insecure Ports Check


(more…)