Skip to main content
  1. Tags/

security

2023


2019


Deploy a secure instance of Elasticsearch on Kubernetes

·5 mins
It’s easy to deploy Elasticsearch on Kubernetes. You get yourself a copy of the Elastic Helm Charts and you run helm install. Job well done… or not? The default Elasticsearch configuration doesn’t enable any encryption or security mechanism, that doesn’t sound really safe! In this blog post, I’ll explain how you secure your Elasticsearch instance by enabling encryption (SSL transport and HTTP over SSL) and native authentication.

2016


Password complexity and blacklist in Symfony (optionally with FOSUserBundle)

·3 mins
Password strength is a more and more important subject for (web) applications. I guess we have all read at least one time about user accounts got hijacked because the user used a password like ‘1234567890’ and ‘qwerty’. As developer, we can prevent this pretty easy by adding validation on the user password.