RESOLVING APPLICATION INSIGHTS PERFORMANCE COUNTERS COLLECTION ISSUE FOR .NET APPLICATIONS
If you’re using Application Insights SDK in your .NET applications and you want to gather performance counters like disk, memory or CPU usage, you have two main approaches that you can follow: EventCounters: this is a future-proof, cross-platform alternative to classic performance counters that natively supports collection of system and custom counters both from .
Read moreSCANNING AZURE VMS, AZURE ARC-ENABLED SERVERS AND ACR IMAGES FOR VULNERABILITIES WITH MICROSOFT DEFENDER AND QUALYS
What is Defender for Cloud’s integrated Qualys? Implement scanning of Azure VMs and Azure Arc-enabled servers What about Azure Container Registry (ACR) and AKS? Additional resources In the modern reality with tens of security vulnerabilities that are being disclosed daily you need to continuously implement a variety of security controls in order to ensure that your systems are strongly protected.
Read moreTAKEAWAYS FROM ATTENDING KUBECON+CLOUDNATIVECON EUROPE 2023, WEARING MANY HATS
Trends and session highlights Takeaways and tips from… Attendee Speaker CNCF Ambassador KCD Organizer Summing it up… Last month, 18th-21st of April, KubeCon+CloudNativeCon Europe was happening in Amsterdam in the Netherlands, and it was HUGE! With a fully sold out event, with more than 10000 in-person participants, 5000+ online participants and 20 parallell tracks, it has been the largest conference I’ve attended in-person so far.
Read moreCREATING CUSTOM AZURE POLICY FOR KUBERNETES TO DISALLOW NON-COMPLIANT IMAGE REGISTRIES
There are cases where you may need to explicitly ensure that specific container image registries are blacklisted from being used in your Kubernetes clusters. Let me provide you with a very recent and relevant example. From 3rd April 2023, k8s.gcr.io legacy image registry is officially frozen which means that no images, future Kubernetes versions and patch releases for earlier Kubernetes versions will be pushed to this registry.
Read moreKEEPING AKS CLUSTERS CONTINUOUSLY SECURE WITH AZURE POLICY
AzPolicy 💜 K8s: Introduction and highlights AzPolicy 💜 K8s: Practical walkthrough Azure Policy add-on Microsoft Defender for Containers Enforce Azure Policy definitions Azure Portal Azure CLI Terraform (IaC) Create and enforce custom Azure Policy definitions Azure Policy Remediation Additional resources 🐇This blog post is also a contribution to Azure Spring Clean 2023 where during 5 weekdays of March, 13th-17th, community contributors share learning resources that highlight best practices, lessons learned, and help with some of the more difficult topics of Azure Management.
Read more[🎄.NET ADVENT CALENDAR🎄] STRENGTHENING SECURITY POSTURE OF CONTAINERIZED .NET APPLICATIONS WITH CHISELED UBUNTU CONTAINERS
Introduction Container Security - pitfalls and must do’s Containers and root user Running containers as unprivileged user Rootless Containers Running containers with unprivileged user in Kubernetes Supply chain and third-party dependencies Summary on mitigating common container security pitfalls Chiseled Ubuntu Containers && .NET Example: Porting Cat Encyclopedia app to .
Read more[🎄AZURE ADVENT CALENDAR🎄] EXPLORING UPGRADE STRATEGIES IN AZURE KUBERNETES SERVICE
Why upgrading AKS clusters is important? Cluster and Node OS image upgrade process AKS cluster upgrade flow AKS Auto-upgrade Enabling AKS auto-upgrade in IaC Azure CLI Terraform Bicep Auto-upgrade considerations Additional resources 🎄This blog post is also a contribution to Azure Advent Calendar where during December, experts from the tech community share their knowledge through contributions of a specific technology in the Azure domain.
Read moreAPPLYING DOCKERFILE BEST PRACTICES WITH HADOLINT
Hadolint - Introduction and benefits Installation and execution options for Hadolint Azure DevOps GitHub Actions Local development (VSCode Extension) Additional resources In this blog post I would like to take a look at how we can ensure that Dockerfiles we create are of high quality and are following best practices in the industry.
Read moreAZURE DEVOPS AUDITING - PART 1 - OVERVIEW AND STREAMING TO AZURE MONITOR LOGS
Azure DevOps Auditing - overview and why you would use it Enable Azure DevOps Auditing Azure DevOps UI Azure DevOps REST API Overview of enabled Azure DevOps Auditing page Configure Azure DevOps log streaming to Azure Monitor logs Azure DevOps UI Azure DevOps REST API Accessing and querying Azure DevOps Audit logs with Log Analytics Additional resources Next steps In July 2019, as part of Sprint 154, Microsoft introduced support for auditing in Azure DevOps and this is a feature that you really should look into if you haven’t set it up or maybe haven’t heard about it yet.
Read moreMONITORING KUBERNETES API DEPRECATIONS WITH PLUTO
What is Pluto? Installing and Running Pluto In-cluster Helm Chart scanning CI/CD -> Azure DevOps CI/CD -> GitHub Actions Local files Alternative tools Additional resources If you’ve worked with Kubernetes for a while you should have seen that version lifecycle that Kubernetes has is pretty aggressive. Kubernetes is being actively developed which means that new releases come out pretty frequently - and all of us who are using Kubernetes, be it a managed or a self-hosted distribution, must adapt and adjust.
Read more