security

How to SSH Properly | SSH Security Best Practices By Gus Luxton - Jan 25, 2021
What are SSH security best practices? How to SSH properly and improve the security of your SSH model using nothing but OpenSSH?
What is Microservice? What is Kubernetes for? By Ev Kontsevoy - Jan 25, 2021
What is a microservice? What is Kubernetes for? In this post, we try to explain microservices, containers and Kubernetes in 10 minutes
Secure SSH Access for Supercomputers By Virag Mody - Jan 13, 2021
Managing shell level access access is difficult enough when you know your users. So how do you implement secure access to a revolving door of users?
Consolidating Identity-Based Access By Virag Mody - Dec 10, 2020
Unify indentity access controls across the entire stack with a single place to define, enforce, view, and manage global authorization.
The Twitter Hack By Virag Mody - Nov 11, 2020
The Twitter hack was not orchestrated by a sophisticated operation coordinated by a nation state. Twitter was hacked by an average teenager who was too young to have his own license.
Best Practices for Secure Infrastructure Access By Virag Mody - Sep 10, 2020
This paper talks about how companies can secure infrastructure access by basing decisions on identity, not trusting private networks, and centralizing auditing/monitoring.
What is OIDC | How OIDC Works By Virag Mody - Aug 6, 2020
What is OIDC? This blog post compares two common authentication methods (OIDC and SAML) and discusses how OIDC works in relation to OAuth.
SOC 2 Certification - Table Stakes for B2B SaaS By Travis Gary - Jul 29, 2020
In this blog post we aim to provide some clarity on what SOC 2 is, what to expect from the certification process based on our own experiences preparing for our Teleport Cloud launch
VPNs and Zero Trust - Evolution of Remote Access By Kevin Nisbet - Jun 3, 2020
Compare Zero Trust with “traditional” network security models focusing on the access portions of networks
SELinux Support for Kubernetes in Gravity 7.0 By Dmitri Shelenin - May 20, 2020
Learn how we built SELinux support for Gravity 7.0, issues we had, and useful tips. Also learn how we are confining Kubernetes services and workloads.
Developer Friendly Solid Infrastructure Security By Ev Kontsevoy - May 6, 2020
How SaaS companies approach the trade-off between having solid cloud infrastructure security and upsetting their own engineers by overdoing it
How to SSH into a Self-driving Vehicle By Ben Arent - Apr 30, 2020
You can SSH into self-driving robots using a reverse SSH tunnel, but this method only scales so far, and it requires more than 50 steps to set up.
Overview of Zero Trust and How to Get Started By Virag Mody - Apr 23, 2020
Evolution from perimeter based security to Zero Trust security - how it protects modern organizations, remote workforces, and web applications.
Applying the Principles of Zero Trust to SSH By Steven Martin - Mar 17, 2020
The Zero Trust approach to SSH and security is based not on where you are, but who you are, making it possible to access resources in cloud-native, hybrid cloud, or legacy environments securely.
BPF to transform SSH Sessions to Structured Event By Russell Jones - Feb 27, 2020
Teleport’s Enhanced Session Recording feature can add vital extra visibility into commands being run on your systems.
Getting Visibility Across Your Cloud Environments By Jordan Marin - Oct 21, 2019
Most monitoring tools are great for a high-level view of how your applications and infrastructure are performing, but have many gaps when it comes to security. In this blog, we look at two areas where visibility is typically lacking: SSH and Kubernetes.
SAML 2.0 | How SAML 2.0 Authentication Works? By Russell Jones - Jul 29, 2019
Find out how SAML 2.0 Authentication works. SAML implements corporate single sign-on (SSO) solutions and acts as the single source of identity.
How Uber, Facebook, and Netflix Do SSH By Jon Silvers - Jul 16, 2019
How are some big, well-known companies approaching SSH? We took a look at three who are setting an example for others to follow.
IoT Security, FedRAMP Support By Jon Silvers - Jun 18, 2019
Today we’re announcing a new milestone with Teleport 4.0 - IoT Security, FedRAMP Support
Wormhole: Network Security for Kubernetes By Kevin Nisbet - May 30, 2019
Discussion on Wormhole - networking plugin for Kubernetes. How do Kubernetes solutions trust the underlying network? - What about WireGuard/Wormhole?
SSH Handshake Explained | What is SSH Handshake? By Russell Jones - May 9, 2019
Secure Shell (SSH) is a widely used Transport Layer Protocol to secure connections between clients and servers. In this post we explain how SSH handshake works.
WireGuard for Kubernetes: Introducing Wormhole By Kevin Nisbet - Apr 29, 2019
We are excited to announce the new open source project: Teleport Wormhole, a Kubernetes network plugin that combines the simplicity of flannel with encrypted networking from WireGuard.
Restricted Shell | Restricted commands for SSH By Russell Jones - Mar 13, 2019
How to restrict SSH sessions to specific commands? How to have a restricted shell for some users? In this article we cover some common ways to answer these questions.
How to Use Certificate Pinning to Improve UX By Russell Jones - Feb 26, 2019
An overview of Teleport's SSH certificate authority pinning capability and discussion of how HTTP public key pinning (HPKP) can be used to improve SSH CA user experience.
Open Source Serverless Solutions for Kubernetes By Abraham Ingersoll - Feb 21, 2019
The universe of serverless-wielding software architects and Kubernetes cluster operators has started to collide and, yet again, Google is in the driver's seat. In this article we'll wander down the CNCF's Serverless Landscape in chronological order, quickly discovering that Knative is the sweet mamba jamba of open source lambda competitors.
The Kubernetes Kustomize KEP Kerfuffle By Abraham Ingersoll - Jan 29, 2019
In this post we'll explore K8s community decision making process by looking underneath the hood of the 'kerfluffe' of Google LLC being called out by Samsung SDS engineers for skipping 'graduation criteria' while merging the new 'kustomize' subcommand into upstream 'kubectl'.
Vulnerability in xterm.js By Alexey Kontsevoy, Russell Jones - Jan 21, 2019
The recently discovered xterm.js vulnerability shows how bugs are hard to kill as technology evolves.
SSH using Github team membership via OAuth2 + 2FA By Ev Kontsevoy - Jan 24, 2018
In this post we show you how to use Github as an identity manager to control who has access to your server infrastructure through SSH
How to record SSH sessions with OpenSSH servers By Ev Kontsevoy - Jan 18, 2018
In this blog post we show how to record SSH sessions with OpenSSH sshd using Teleport as a recording proxy
SSH into AWS using Github for RBAC By Sasha Klizhentas - Apr 25, 2017
How do you let your employees access company AWS infrastructure using their Github credentials? How do you restrict parts of your infrastructure to certain Github teams? How do you configure SSH to use Github credentials? This blog post covers it all.
Managing Kubernetes: Part I. SSH certificates By Ev Kontsevoy - Oct 4, 2016
Part 1 of the series of articles about managing Kubernetes clusters across multiple teams, regions or organizations.

Teleport Articles

Articles about "security"