docker-bench-security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
We use Docker to save effort, not the other way around. Try docker-bench-security to avoid common pitfalls using Docker. It’s provided by Docker, Inc. Totally free and constantly polished.
Enclosed is all you need to know, in order to understand and use the tool.
Using a single command, we can easily upload any files from our computers or servers to a web server. Then our friends or colleagues can download them directly from web browsers. Isn’t that cool?
Worry about the security? We can encrypt files before transfer. Also we can claim the maxinum downloads of those files, or expire download link in several days.
Here we go! transfer.sh: easy and fast file sharing from the command-line. Zero Initial Setup and Super Easy to use.
DevOps involves tons of softwares, technologies and methodologies. You finally get familiar with Nagios, but more and more people are talking about Sensor now. When you start to try OpenStack, Docker seems to be compelling. Sound familiar? It’s really hard to be on top of it!
Here are some practical tips to follow the latest DevOps trend with minimum time.
Rubocop is a static code check tool for ruby. Very handy and powerful.
Here is a list of Common Rubocop Errors, for your reference. You can simply search by your Rubocop error message in this post. And get your code improved quickly.
Running daemon services in foreground helps for trouble shooting. Also a very useful trick for container environments.
Here is the general practice. And some real examples of popular services, like Apache, MySQL and Jenkins.
If you are in China or temporarily visit China, it’s hard to open Google, Gmail, Slideshare, Twitter, etc. Internet Censorship is fine. But… I strongly suggest there should be one exception. We, as developers, should be able to access. It’s a must to do a better job.
Here I provide a free VPN service. The password will be rotated periodically. Unfortunately I can’t afford to make a bigger commitment. It should be good for temporary use. Right? Good news is you will have a Docker image to easily run the service in your own server. Check it now!
For DevOps, installation is one of our major tasks. People may wonder package installation is pretty straight-forward and easy now. Just run commands like apt-get, yum, brew, etc. Or simply leave it to containers.
Is it really that easy? Here is a list of headache and hidden costs. Discuss with us, DevOps gurus!
Like most versatile engineers, we host websites of side projects in EC2 or DigitalOcean. It might be Boostrap, php, python, nodejs, or anything charming.
We definitely want to have a quick setup, and keep routine maintenance minimum. Here are some pratical tips. Check it out!
Any serious DevOps will only ssh by key file. Not with password, right? And mostly our powerful key file can unlock many critical envs. Have you ever uploaded your private key to other envs, like jumpbox? What if your key is magically stolen by hackers somehow?
Time to protect your sensitive ssh key by passphrase. And live with it, headache-free.