Lately I’ve been talking a lot about the supply chain risk. You import some software, and are suddenly importing their business model and practices. Well, we’ve just had another ‘shenanigan’ unveiled. And its got some good drama. https://github.com/dominictarr/event-stream/issues/116 In a nutshell…
Don's Blog Technology run (almost) amuck
Tag: supply-chain
Pytosquatting, Supply Chain Risk, and the Slovak National Security Bureau
So most of you will have the Slovak ‘NBU’ on your RSS speed-dial, but I found I was a bit behind on my reading of it. As I was catching up, skcsirt-sa-20170909-pypi caught my eye. In a nutshell, its around…
Software supply chain risk management robots
It finally happened to you. A developer used ‘import A’. A pulled in B, B pulled in C, D. D pulled in E… and somewhere along that chain evil lurked. Now all your bits are belong to l33t hackerz.…
login | 
(RSS)|Create Account|Update email pref
In the lower right you might see a red bell / push notification indicator, click it to enable push notifications (or link below this box).
See the previous archives
(RSS)|Create Account|Update email pref In the lower right you might see a red bell / push notification indicator, click it to enable push notifications (or link below this box).
See the previous archives
- db on CORS’ing the complexity: idempotent and caching meets Vary: Origin for CORSturns out that doesn't matter... this is a decision made client-side. The 'vary: origin' instructs the client to consider origin
- Jayme Snyder on CORS’ing the complexity: idempotent and caching meets Vary: Origin for CORSWhat of the cache control response headers?
- db on PCI-e bifurcation explainedhttps://www.win-raid.com/t4252f16-GUIDE-Adding-Bifurcation-Support-to-ASUS-X-UEFI-BIOS.html seems to talk about this (the link you found) My desktop is also p9x79-based, but i'm retiring it as
- Aleksey on PCI-e bifurcation explainedHello! I really liked your article and the explanation in it! I have the same problem only P9X79 Delux motherboard.
- Aleksey on PCI-e bifurcation explainedHello! I really liked your article and the explanation in it! I have the same problem only P9X79 Delux motherboard.
db on CORS’ing the complexity: idempotent and caching meets Vary: Origin for CORSturns out that doesn't matter... this is a decision made client-side. The 'vary: origin' instructs the client to consider origin
Jayme Snyder on CORS’ing the complexity: idempotent and caching meets Vary: Origin for CORSWhat of the cache control response headers? 
Aleksey on PCI-e bifurcation explainedHello! I really liked your article and the explanation in it! I have the same problem only P9X79 Delux motherboard.
- Kustomizing Kustomize: Releasing Our Tools
- Declarative GitFlow: restrict kustomize to master branch
- Defense in Depth: Securing your new Kubernetes cluster from the challenges that lurk within
- Cloud Security Blasphemy: Secrets in git
- Keep your certificates young and fresh
- We are all-in on the TLS: the HSTS preload
- Git ransomware: beware the misdirection
- Covert Exfiltration, Cloud Native
- Moving into a new (cloud) neighbourhood? Check its reputation!
- Docker Hub Hack: Secure Your Supply Chain
Top