Eric Chiang

@erchiang

Dim sum enthusiast. security engineer . prev . he/him

Vrijeme pridruživanja: studeni 2009.

Tweetovi

Blokirali ste korisnika/cu @erchiang

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @erchiang

  1. Prikvačeni tweet
    10. pro 2019.

    My team has been working a lot with TPM hardware lately and found some pretty critical issues with the spec. Here's our 90-day disclosure of a vulnerability report we sent to . "Verifying TPM Boot Events and Untrusted Metadata"

    Poništi
  2. proslijedio/la je Tweet
    31. sij
    Odgovor korisnicima

    I like the ones you can set on crushed ice, so you can have minikubes

    Poništi
  3. 31. sij
    Poništi
  4. proslijedio/la je Tweet
    30. sij

    Say hello to OpenSK: a fully open-source security key implementation -

    Poništi
  5. proslijedio/la je Tweet
    29. sij

    when insta models get you to buy makeup they’re called influencers, but when tech bros get you to buy kubernetes they’re called thoughtleaders 🤔🤔🤔

    Prikaži ovu nit
    Poništi
  6. proslijedio/la je Tweet
    21. sij

    Week has passed... If you said 20+ you were right. 30 on dashboard (open+pending) My local instance has 70(!): All reachable by unpriv users That's not all. To find more we need to fix these first, otherwise it just keep crashing

    Poništi
  7. proslijedio/la je Tweet

    Completely over the moon to announce that I'll be serving as a Program Co-Chair for / , along with , starting at KubeCon Shanghai 2020. This community and the people in it mean the world to me, so I'm truly humbled by the opportunity!

    Prikaži ovu nit
    Poništi
  8. 17. sij

    If you're looking for who to bribe to get a kubecon talk accepted, look no further.

    Prikaži ovu nit
    Poništi
  9. 17. sij

    Shout out to who's been kill it lately and is going to be a program co-chair for 2020

    Prikaži ovu nit
    Poništi
  10. proslijedio/la je Tweet
    15. sij

    Today is my last day . It's been real. Encrypting all the things, securing the containers, kicking ass and taking names. I'll miss the intelligent and kind people, the huge impact, the crazy scale, and the tacos 🌮. Will share more on what's next when I'm ready 😊

    Poništi
  11. proslijedio/la je Tweet
    14. sij
    Poništi
  12. 13. sij

    There are a handful of apps that need operators (e.g. databases). For the rest, please, please provide an option to deploy from static manifests. If a component requests permissions to create RBAC cluster roles and bindings, how can a security reviewer reasonably assess that?

    Prikaži ovu nit
    Poništi
  13. 13. sij

    Things learned last week: Kubernetes operators are a huge pain for security reviews. You basically have to reverse engineer the app to figure out what holes it'll open in your cluster.

    Prikaži ovu nit
    Poništi
  14. 6. sij

    Wrote something personal, but figured I'd post it here. Hovering around 1000 followers, I don't want to give anyone the impression that I've got everything figured out. "Keep it Simple, Stupid"

    Poništi
  15. proslijedio/la je Tweet
    2. sij

    Linux user namespaces do a lot more than just remapping user & group IDs. This is the best overview I've seen:

    Poništi
  16. 2. sij

    Also, if you've ever wondered what my team does, I gave a talk at the Linux Security Summit last year about some of the problems we tackle, and how we go about solving them.

    Prikaži ovu nit
    Poništi
  17. 2. sij

    Great thing about working with on Linux security: upstreaming is always the goal.

    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet

    Some data brokers basically have done nothing to comply with CCPA. CONFI-CHEK , which also owns Enformion has NO WAY for you to opt out of the sale of your data, and they literally sell data as a business.

    Prikaži ovu nit
    Poništi
  19. proslijedio/la je Tweet
    17. pro 2019.

    So, earlier today, Google published a whitepaper on 🌟BeyondProd🌟, about how Google does cloud-native security. Here’s a summary thread /1

    Prikaži ovu nit
    Poništi
  20. proslijedio/la je Tweet
    12. pro 2019.

    [1/3] Hey Tweeps! A few months ago and I started to build better tools for decision automation. We've been in stealth mode so far, but we're about to launch our first MVP. We're looking for software developers and decision scientists to try it.

    Prikaži ovu nit
    Poništi
  21. 11. pro 2019.

    Fastest gun in the west. Go get your kubernetes 1.17

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·