Linkdump 2/2018

Created:
Last Update:

Author: Christoph Stoettner
Read in about 2 min · 274 words

Fountain pen and a notebook

Photo by Aaron Burden | Unsplash

And the second linkdump with contents I read that week.

  • I don’t like the idea, sounds very 1984:

Wi-Fiber is creating safer cities by combining wireless tech, smart streetlights

Next two points, some details on Nginx, Load Balancing and differences to Apache.

Comments
Error
There was an error sending your comment, please try again.
Thank you!
Your comment has been submitted and will be published once it has been approved.
Success!
Your comment has been posted successfully.

Comments

Loading comments...

Leave a Comment

Your email address will not be published. Required fields are marked with *

Suggested Reading
Card image cap

Most of the LDAP connections from IBM WebSphere Application Server are configured with TLS. So you need to have the root certificate in the WebSphere truststore to connect.

Created:
Last Update:
Read in about 2 min
Card image cap

Some time back, I stumbled upon a flaw in HCL Connections 7 and 8 that allowed for user enumeration. This flaw could be exploited by anonymous users.

Created: Read in about 2 min
Card image cap

Elasticsearch in HCL Connections Componentpack is secured with Searchguard and needs certificates to work properly. These certificates are generated by bootstrap during the initial container deployment with helm.

These certificates are valid for 10 years (chain_ca.pem) or 2 years (elasticsearch*.pem) and stored in the Kubernetes secrets elasticsearch-secret, elasticsearch-7-secret. So when your HCL Connections deployment is running for 2 years, the certficates stop working.

Created: Read in about 3 min