Security

10 tips for writing secure, maintainable Dockerfiles

Anthony Gimei

March 23, 2023

Learn how to write a secure and maintainable Dockerfile with these 10 tips and best practices.

Our advice for configuring Knative Broker for Apache Kafka

Matthias Wessendorf

March 8, 2023

This article discusses configuration best practices and recommendations for the Knative Broker implementation for Apache Kafka, which is now GA.

5 global environment variables provided by OpenShift GitOps

Gerald Nunn

March 6, 2023

Learn about 5 global-level environment variables that OpenShift GitOps offers organizations to tailor their experience.

Learn about the RHEL image builder improved functionality and security, now available in RHEL 9.1 and 8.7.

Create groups so your automation hub users have appropriate system permissions, or grant view-only access to unauthorized users.

Discover how to improve application and library security at the source with _FORTIFY_SOURCE macro defined to 3 and how it impacts performance.

How to prevent broken access control

Sandipan Roy

December 8, 2022

Learn techniques to secure applications and prevent break-ins and data theft.

Cryostat 2.2's new JMX credentials keyring

Andrew Azores

December 7, 2022

In Cryostat 2.2, security credentials are more flexible and can be reused across many different applications.

As we head into Thanksgiving, we want to share some of the top tutorials, announcements, and guides that our developer community has engaged with the most.

Learn about static application security testing (SAST) and how it improves software security.

Interactions between libraries can cause embarrassing crashes during shutdown, but OpenSSL provides a robust shutdown procedure.

Discover 10 essential solutions and tools to mitigate security risks throughout each step of the API life cycle.

File-based Kafka Connect scenarios with end-to-end encryption

Hans-Peter Grahsl

October 11, 2022

Learn how Kryptonite for Kafka's SMT can help you encrypt and decrypt individual field records in a granular way when building data integration scenarios on top of Kafka Connect.

Discover how flexible array members offer convenience and improve performance, and how compiler complexities are mitigated.

End-to-end field-level encryption for Apache Kafka Connect

Hans-Peter Grahsl

September 27, 2022

This article introduces end-to-end encryption for data integration scenarios built on top of Apache Kafka using Kafka Connect together with the open-source library Kryptonite for Kafka.

Hashes and encryption are fundamental to data center administration, collaborative software development, and more.

Discover the gains and costs of GCC’s enhanced runtime buffer overflow protection. Level 3 _FORTIFY_SOURCE preprocessor macro may detect more buffer overflows, but there’s a cost.

See site reliability engineering (SRE) principles in action and learn how to improve the operability of your code base with this developer coloring book.

Discover how Red Hat Ansible Automation Platform provides better security by automating intrusion detection, edge security, firewalls, and more.

Find recent articles on observability, containerizing .NET applications, tips for building security into your Node.js development process, and more.

Discover how to improve the security of your Software-as-a-Service deployment at the hardware, OS, container, Kubernetes cluster, and network levels.

Secure Kubernetes certificates with cert-manager and Dekorate

Jose Carvajal Hilario + 2

July 19, 2022

Dekorate simplifies the management of custom resources for cert-manager certificates in the cloud. Learn an easier way to generate cert-manager custom resources.

Security policies can be deployed through CI/CD and Red Hat Advanced Cluster Security for Kubernetes. Read on to learn how.