최신 AWS 서울 리전 출시 소식 – AWS Cloud WAN, Amazon EMR Serverless 및 SageMaker Canvas 등

2022-10-07 KENNETH 0

최신 AWS 서울 리전 출시 소식 – AWS Cloud WAN, Amazon EMR Serverless 및 SageMaker Canvas 등 AWS는 200여개가 넘는 클라우드 서비스를 빠르게 서울 리전에 선보이도록 노력하고 있습니다. 지난 9월에도 다양한 신규 서비스가 서울 리전에 출시되었기에 여러분에게 정리해서 다시 한번 알려드립니다. Amazon DevOps Guru for RDS 서울 리전 출시 (9월 27일) Amazon DevOps Guru for RDS는 개발자 및 데브옵스 엔지니어가 Amazon RDS의 다양한 데이터베이스 관련 문제를 빠르게 탐지, 진단 및 해결하도록 설계된 새로운 기계 학습 기반 기능입니다. DevOps Guru for RDS가 데이터베이스 관련 문제(예: 리소스 과다 사용, 특정 SQL 쿼리의 잘못된 동작)를 탐지하면 서비스는 즉시 사용자에게 알리고 진단 정보, 문제 범위에 대한 세부 정보, 지능형 권장 사항을 제공하여 고객의 신속한 문제 해결을 지원합니다. DevOps Guru for RDS를 사용하면 수동 단계, 기계 학습 전문 지식, 심오한 데이터베이스 전문 지식이 없어도 데이터베이스의 성능 병목 현상 및 운영 문제를 모니터링할 수 있습니다. Amazon [ more… ]

No Image

Announcing Windows 11 Insider Preview Build 25217

2022-10-07 KENNETH 0

Announcing Windows 11 Insider Preview Build 25217 Hello Windows Insiders, today we are releasing Windows 11 Insider Preview Build 25217 to the Dev Channel. TL;DR Developers can start building and testing 3rd party widgets on the latest Insider Preview builds in the Dev Channel and the WinAppSDK 1.2 preview 2 release. Details and links below. This build includes a few input-related changes and fixes. Some Insiders are seeing a sneak peek of a new video calling experience for Chat on Windows 11. Details below. We are beginning to roll out a Microsoft Store update that includes a few improvements including highlight games included with Game Pass. What’s new Developers can start building 3rd party widgets We are excited to announce support for 3rd party widgets as part of the WinAppSDK 1.2 preview 2 release. Our team has been working hard [ more… ]

Secure API Access with NGINX and Azure Active Directory

2022-10-07 KENNETH 0

Secure API Access with NGINX and Azure Active Directory APIs play a critical role in application connectivity, but they are also vulnerable to attacks. In the past, with monolithic apps, there was only one entry point to secure. In microservices architectures, a single app often consists of many microservices connected via APIs, and each of those APIs could have hundreds of endpoints. This makes the potential attack surface for APIs huge, with every new API creating an entry point in your security perimeter. There are many strategies to secure your APIs. One of the most fundamental is access control. Simply put, you must verify the user’s identity (authentication, or AuthN) and confirm that they can access certain resources (authorization, or AuthZ). Implementing OpenID Connect (OIDC) is one of the most common access control approaches used for APIs. You can get [ more… ]

No Image

USN-5661-1: LibreOffice vulnerabilities

2022-10-06 KENNETH 0

USN-5661-1: LibreOffice vulnerabilities It was discovered that LibreOffice incorrectly validated macro signatures. If a user were tricked into opening a specially crafted document, a remote attacker could possibly use this issue to execute arbitrary macros. (CVE-2022-26305) It was discovered that Libreoffice incorrectly handled encrypting the master key provided by the user for storing passwords for web connections. A local attacker could possibly use this issue to obtain access to passwords stored in the user’s configuration data. (CVE-2022-26306, CVE-2022-26307) Source: USN-5661-1: LibreOffice vulnerabilities

No Image

USN-5660-1: Linux kernel (GCP) vulnerabilities

2022-10-06 KENNETH 0

USN-5660-1: Linux kernel (GCP) vulnerabilities It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-33655) Moshe Kol, Amit Klein and Yossi Gilad discovered that the IP implementation in the Linux kernel did not provide sufficient randomization when calculating port offsets. An attacker could possibly use this to expose sensitive information. (CVE-2022-1012, CVE-2022-32296) Norbert Slusarek discovered that a race condition existed in the perf subsystem in the Linux kernel, resulting in a use-after-free vulnerability. A privileged local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-1729) It was discovered that the device-mapper verity (dm-verity) [ more… ]