msandbu

Azure Resource Manager Rate limiting and a hint of DDOS?

Ever gotten this error message when trying to update a resource in Azure? We recently encountered this in one environment where we had multiple virtual machines within a single subscription, and we couldn’t perform any operations on the VMs. Within Azure, there are different limits within a subscription on how many API calls you can …

Azure Resource Manager Rate limiting and a hint of DDOS? Read More »

OpenAI – Use cases and Automation

A Couple of days ago, the people at OpenAI released ChatGPT which is an AI-based system optimized for dialogue. The service is available for free preview here –> ChatGPT (openai.com)  The service itself uses large language models trained by OpenAI and uses deep learning to generate natural language text based on the input. The service has support for …

OpenAI – Use cases and Automation Read More »

DevSecOps and Securing the Developer Experience

For the last decade, I’ve worked a lot with building virtual apps and desktops from a lot of different providers, going from Citrix, VMware, Microsoft, and even old 2X and Dell vWorkspace even… The focus was always providing in most cases a centralized secure workspace for end-users, which needed to access their applications whether it be …

DevSecOps and Securing the Developer Experience Read More »

Azure Deployment Environments – Self-service Azure

One of the things that we have been trying to solve repeatedly is a way to provide self-service mechanisms for developers when it comes to building public cloud services. Where we want to provide developers with a predefined service catalog that contains different packaged services or even a full environment that they can order on-demand. …

Azure Deployment Environments – Self-service Azure Read More »

Security Vulnerability in OpenSSL CVE-2022-3602 (RCE) and CVE-2022-3786 (DOS)

Earlier today a new Security Vulnerability was disclosed in the popular OpenSSL (libssl) Library (affecting products using OpenSSL 3.0.0-3.0.6.) which affects most software companies in the world. The OpenSSL team released an updated version of the library today 3.0.7. OpenSSL CVE-2022-3602 (RCE) and CVE-2022-3786 (DOS) published earlier today and was fixed in the release 3.0.7 NOTE: …

Security Vulnerability in OpenSSL CVE-2022-3602 (RCE) and CVE-2022-3786 (DOS) Read More »

Microsoft Premium V2 SSD – CSI v2 and AKS PVC Resizing

Microsoft has recently released Premium SSD P2 Disk. This new feature is highlighting a change in the underlying architecture of the storage service in Azure. Before this v2 release, the performance of a disk was always associated with the size of the disk. With the v2 release, there are numerous improvements to the disk service. …

Microsoft Premium V2 SSD – CSI v2 and AKS PVC Resizing Read More »

Azure DDoS IP Protection

Last week during Ignite 2022, Microsoft released a public preview of a new DDoS feature called IP-based protection which is aimed at protecting DDoS attacks on layer 4 (namely TCP SYN Flood attacks) When looking at the statistics for Q3 this year from the blog from Cloudflare, the most predominant form of DDoS attacks is …

Azure DDoS IP Protection Read More »

Scroll to Top