Remove information exposure: nginx banner

Remove information exposure: nginx banner

Information exposure. Many servers send a helpful banner out with the specific name and version of the software. This can in turn attract low-level attacks that use tools like Shodan.io to find vulnerable hosts. CWE-200 suggests we need to remove the information...

Kustomizing Kustomize: Releasing Our Tools

Kustomizing Kustomize: Releasing Our Tools

Declarative. It becomes a way of life. We have chosen kustomize to safely build our inventory of YAML, including Istio and Cert-Manager. But, it has proven incredibly non-DRY. After some refactoring etc, I made a few Generators and Transformers to cover some of the...

Subscribe for updates

We'd love to stay in touch. There are two groups you might consider, the 'Announcements' are infrequent things we have to say about our progress, and 'Blog' is a more frequent set of updates (that you can also get via web-push notifications by clicking the bell in the lower-right).

Don't worry, you can unsubscribe anytime, and we don't sell or transfer this list. It's just between us.