This interesting case come from one of my client from US few months ago. It took me sometimes to figure out how subnet, interface, and route work in AWS EC2. The knowledge then mixed with my experience of route configuration in Linux system using iproute2.

The client uses clearlinux project from Intel as operating system. The OS itself is highly optimized, so the default tools configured are mostly basic stuff. They already have production system running and would like to implement this requirement to production. So the message is pretty clear: “resolution must be stable, and no reboot required”.

It…


There are many articles discussing about Kubernetes Ingress, TLS (with annotation), Letsencrypt, and Cloudflare. But it’s a bit rare to find one that explain the best practices of using all of them into one deployment in details.

This article will try to elaborate more about them into real deployment.

Scenario

Assuming that we have following requirement where all component has been running successfully (pods, services).


I borrow the content of this blog post from books written by Yevgeni Brikman titled “Terraform: Up & Running, 2nd Edition”. There are many occurrence in my professional life lately where DevOps word stated by others but unfortunately most of them doesn’t really understand what the real meaning is.

So instead of explaining over-and-over again, it is better to put the words here. My understanding of DevOps is aligned to what has been described by Yevgeni, so let me shamelessly share here as blog content (btw, his book on Terraform is very good. Recommended to read!)

Software Delivery

Software isn’t done when…


Beberapa minggu terakhir saya melakukan riset terkait dunia freelancing seperti range salary untuk role-role tertentu, strategi lolos interview, dsb. Riset ini merupakan lanjutan dari riset kecil-kecilan saya pada dunia edukasi vokasi.

Apa sih sebenarnya objektivitas dari pendidikan vokasi?

Membekali siswa dengan keterampilan tertentu agar dapat digunakan langsung dalam dunia kerja

Pendidikan vokasi ini berbeda dengan tipe pendidikan jenjang SD-SMP-SMA-Kuliah. Pihak penyedia pendidikan vokasi diharapkan memiliki kemampuan melakukan serangkaian analisa agar dapat memperbesar kesempatan peserta belajarnya berhasil masuk dunia kerja.

  • Skillset apa yang sangat dibutuhkan oleh dunia kerja?
  • Apakah materi yang diajarkan sudah inline dengan kebutuhan industrinya?
  • Apakah talenta yang dipersiapkan…

If your job currently involve analysing security threats and their risk for the company or organisation, with the purpose of determining which vulnerabilities need to be fixed first as priority, this publication from Kenna Security is worth to read.

They tried, scientifically, formulating insights to predict and prioritise the security threats based on published vulnerabilities (CVE) data taken from 2019.

There are no (and shouldn’t be) single answer of — which or how — vulnerability management carried out, every organisation are unique, so understanding the concept and adopting them to your own organisation is a better approach.


Ketika mempresentasikan hasil audit atau pentest kepada stakeholder terutama higher management termasuk C-Level, kira-kira dari dua pernyataan berikut manakah yang lebih mudah dipahami oleh mereka?

Yang pertama,

Hasil dari audit menyatakan 100 aset masuk kategori kritikal, 350 masuk kategori medium, dan 500 masuk kategori minimum. Khusus untuk kritikal solusinya adalah harus segera di patch, jika tidak maka akan beresiko di hack dan merugikan perusahaan anda”.

Yang kedua,

Hasil dari audit menyatakan resiko total loss yang akan dialami oleh perusahaan anda sebesar 3.5 Milyar. Dengan mekanisme kontrol yang telah diimplementasikan saat ini resiko total loss tersebut menjadi 1.5M, …


Menjelang momentum seperti Pilkada biasanya ada hal yang seringkali berulang: satu pihak ingin punya ‘alat’ untuk evil things, pihak lain ingin punya ‘alat’ untuk melacak evil things.

Kedua pihak bersedia membayar cukup mahal. Itu sebabnya banyak yang memanfaatkan momentum tersebut untuk mendulang $$$.

Momentum politik biasanya menjadi salah satu trigger. Triger lain adalah kebutuhan bisnis pada sektor privat. Namun intinya sama. Terlebih sejak era more-things-digital 5–10 tahun terakhir dimana perangkat seperti gadget ataupun hape menjadi target utama karena memegang banyak rahasia seseorang.

Pada tulisan kali ini dibahas metodologi untuk mendapatkan source code Malware sehingga bisa memproduksi Malware buatan sendiri khususnya…


https://www.wallpaperup.com/67364/computers_programming_python.html

I am sure this question quite often asked by most people especially when dealing with python project. Most of the apps currently include automation script, “run and it should work”. However, the environment where the apps run would be dynamic. That means there are chance the automation process would be failing.

Once that happened, we tend to do troubleshooting. Troubleshooting would take more time if you don’t understand the basic of how stuff works. So, through this article I want to show how python setuptools work from different angle.

When I says different angle, that means from the point where…


Tulisan ini bisa dibilang lanjutan dari tulisan sebelumnya tentang berkarir dalam industri IT security. Bagi yang belum membaca bisa dilihat pada link berikut ini.

IT Security Solution Architect saya rasa masih cukup jarang di Indonesia. Role tersebut kurang lebih mirip dengan Solution Architect (SA) namun untuk ranah IT / Cyber Security. IT Security Solution Architect mutlak dibutuhkan baik bagi pihak penyedia solusi (Principle, Solution Integrator), ataupun end-user.

Untuk Principle — IMHO, cukup mudah. Bagi yang belum tau terminologinya, Principle berarti pihak pembuat produk seperti contohnya Cisco, IBM, Palo Alto, dsb. Karena requirement yang datang biasanya sudah ditetapkan. Contohnya, seorang arsitek…

Muhammad Sahputra

Lifelong Learner

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store