PodParley PodParley
PodParley
Episode 3: Cloud Configuration Pitfalls episode artwork

EPISODE · Jun 24, 2019 · 51 MIN

Episode 3: Cloud Configuration Pitfalls

from SilverLining IL · host MarkeTech Group

Attendees Guest: Evgeny Zislis Guest title:  CTO Company:  ProdOPS Abstract Over 90% of IaaS/PaaS security incidents happens on consumer fault. Cloud platforms are complicated, with steep learning curve and it is easy to make mistakes. In this podcast, we talk with Evgeny Zislis, CTO for ProdOPS about the common IaaS/PaaS security mistakes and misconfigurations, categorize them and talk about measures to reduce those mistakes and identify them on time.  Timing: 0:00 – 2:10 - intro and introducing our guest 2:10 -   31:05 - What are the common cloud misconfiguration and mistakes  Improper security group configuration Object storage negligence - open buckets on s3 Insecure storing of API/Access Keys - config file in open Github repo is not the best place to store access keys Vulnerable servers exposed (exposing your 5 years old, not updated linux server is not recommended) Fail to segregate different services into different accounts / vpc / subnets Everyday use of root account and relying on one account only 31:05 -  34:20  Avoiding cloud misconfigurations:  the process angle 34:20 -  38:33 Avoiding cloud misconfigurations:  the people angle 38:33 -  49:00 Avoiding cloud misconfigurations:  the technology angle    49.00 – 52:00 Summary and conclusions

What this episode covers

Attendees Guest: Evgeny Zislis Guest title:  CTO Company:  ProdOPS Abstract Over 90% of IaaS/PaaS security incidents happens on consumer fault. Cloud platforms are complicated, with steep learning curve and it is easy to make mistakes. In this podcast, we talk with Evgeny Zislis, CTO for ProdOPS about the common IaaS/PaaS security mistakes and misconfigurations, categorize them and talk about measures to reduce those mistakes and identify them on time.  Timing: 0:00 – 2:10 - intro and introducing our guest 2:10 -   31:05 - What are the common cloud misconfiguration and mistakes  Improper security group configuration Object storage negligence - open buckets on s3 Insecure storing of API/Access Keys - config file in open Github repo is not the best place to store access keys Vulnerable servers exposed (exposing your 5 years old, not updated linux server is not recommended) Fail to segregate different services into different accounts / vpc / subnets Everyday use of root account and relying on one account only 31:05 -  34:20  Avoiding cloud misconfigurations:  the process angle 34:20 -  38:33 Avoiding cloud misconfigurations:  the people angle 38:33 -  49:00 Avoiding cloud misconfigurations:  the technology angle    49.00 – 52:00 Summary and conclusions

NOW PLAYING

Episode 3: Cloud Configuration Pitfalls

0:00 51:19

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

Share this episode

Similar Episodes

Nostr-&-Bitcoin

Feb 8, 2025 ·3m

Recap Q1 - Zombie pod

Apr 19, 2023 ·38m

Gemini, Africa e previsioni fosche

Jan 19, 2023 ·32m

Crypto Winter, ARKK e Twitter

Dec 27, 2022 ·33m

Twitter cambia proprietario e Meta ciuccia duro.

Nov 6, 2022 ·42m

Aggiornamento Mercati e positività

Oct 24, 2022 ·34m

Similar Podcasts

On va refaire le monde X "En mode coach" Lola Bon. J’ai décidé d’aborder des sujets dont on ne parle pas, par peur du jugement de l’autre, par pudeur, par insignifiance, ou par manque d’envie.Le sexe est pourtant partout. Il fait partie intégrante des relations humaines, qu’elles soient amoureuses, amicales, professionnelles, cordiales ou même fortuites. Et pourtant, on n’en parle pas, ou pas assez, ou juste pas de la bonne manière.Moi, je veux parler du sexe, du vrai, celui qui est là, devant nous, et qu’on ignore…Bienvenue sur : On va refaire le monde X En mode coach. Le comptoir de la psychologie Le comptoir de la psychologie Je suis Jo, psychologue clinicienne et j'ai crée ce podcast afin de rendre accessible les différents reliefs de la psychologie. Il s'agit d'un travail de construction et de déconstruction pour apprendre et s'ouvrir autour des différents thèmes que logent la psychologie et la psychanalyse. J'aborde le métier du psychologue et de sa rencontre mais aussi ses outils, concepts, représentations, symptômes etc... Pour me soutenir, j'ai crée une page Patreon : https://www.patreon.com/lecomptoirdelapsychologie Merci beaucoup pour vos contributions ainsi que vos encouragements, vos retours ❤️ Bonnes écoutes :-) Contact : [email protected] Hébergé par Acast. Visitez acast.com/privacy pour plus d'informations. Babel Radio Popolare Il podcast della trasmissione Babel di Radio Popolare Incassaforte Pod Incassaforte Incassaforte Pod: il podcast di Personal Finance che vi aiuta a risparmiare.

Frequently Asked Questions

How long is this episode of SilverLining IL?

This episode is 51 minutes long.

When was this SilverLining IL episode published?

This episode was published on June 24, 2019.

What is this episode about?

Attendees Guest: Evgeny Zislis Guest title:  CTO Company:  ProdOPS Abstract Over 90% of IaaS/PaaS security incidents happens on consumer fault. Cloud platforms are complicated, with steep learning curve and it is easy to make mistakes. In this...

Can I download this SilverLining IL episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!