This document summarizes iOS patch analysis techniques. It discusses how iOS rootfs was encrypted prior to iOS 10, but is now unencrypted, making analysis easier. It also describes extracting specific frameworks from iOS update files and using the tool Diaphora to find code differences between updates and identify vulnerabilities. The document advocates collaborating through tools like Slack and GitHub to analyze iOS updates.
RoR Workshop - Web applications hacking - Ruby on Rails exampleRailwaymen
Web Applications Hacking – Ruby on Rails example. Attack web applications by using SQL attacks, CSRF, XSS. You will learn how to extract information by generating API json / xml and how to use cookies to code injection.
A Brief Introduction to Software Configuration ManagementMd Mamunur Rashid
Configuration management (CM) is the process of identifying, organizing, and controlling software changes. It aims to minimize confusion and maximize productivity by minimizing mistakes during software development. CM manages changes throughout the development process by identifying work products, establishing change control processes, and generating reports. It is important for project success and controlling quality, as uncontrolled changes can delay delivery. CM involves activities like identifying changes, controlling changes, and reporting changes. It utilizes tools like version control systems and bug trackers.
R.I. Pienaar gave an introduction to Docker at the Malta DevOps conference in September 2016. He discussed how Docker allows building, shipping and running applications by packaging them into standardized units called containers. This provides efficiency by eliminating redundancy between environments. He demonstrated how to build Docker images, run containers, store images in a registry, and observe containers using Docker's API. Pienaar also showed a weather service demo and provided links for further information on Docker.
This document summarizes a presentation about new features in Puppet 4. It discusses Puppet 4's major internal rewrite and formal language specification. Some key features covered include native data types and merging, improved iteration capabilities, resource defaults, and using facts as native data structures. It also overviewed updated functions, native modules, lookup strategies, and the all-in-one packaging of Puppet 4 agents.
R.I.Pienaar gave a presentation on monitoring using Sensu. He discussed Sensu's architecture and configuration, including how to define checks, clients, and handlers. He also demonstrated how to write custom checks in Ruby, reuse existing checks, and integrate Sensu with other tools like Uchiwa, Graphite, and Grafana. Finally, he provided several links for additional Sensu resources.
The document discusses building internal tooling for large-scale continuous delivery. It describes implementing continuous delivery for over 100,000 nodes by developing an overlay manager framework that uses a common package format, configuration repository, and CLI tool. The framework allows configuring and deploying components across large fleets within minutes with a 98%+ success rate.
Christian Strappazzon - Presentazione Python Milano - Codemotion Milano 2017Codemotion
PyMI: siamo un gruppo di Sviluppatrici, Sviluppatori, Appassionati e Appassionate di Python a Milano. Ci incontriamo una volta al mese in Mikamai/LinkMe. Abbiamo degli eventi ricorrenti e molto apprezzati: "Pillole di Python" e "PyBirra". * Presentazione del gruppo * Python Blueprint: the language, the tools, the packages and the ecosystem.
This document summarizes iOS patch analysis techniques. It discusses how iOS rootfs was encrypted prior to iOS 10, but is now unencrypted, making analysis easier. It also describes extracting specific frameworks from iOS update files and using the tool Diaphora to find code differences between updates and identify vulnerabilities. The document advocates collaborating through tools like Slack and GitHub to analyze iOS updates.
RoR Workshop - Web applications hacking - Ruby on Rails exampleRailwaymen
Web Applications Hacking – Ruby on Rails example. Attack web applications by using SQL attacks, CSRF, XSS. You will learn how to extract information by generating API json / xml and how to use cookies to code injection.
A Brief Introduction to Software Configuration ManagementMd Mamunur Rashid
Configuration management (CM) is the process of identifying, organizing, and controlling software changes. It aims to minimize confusion and maximize productivity by minimizing mistakes during software development. CM manages changes throughout the development process by identifying work products, establishing change control processes, and generating reports. It is important for project success and controlling quality, as uncontrolled changes can delay delivery. CM involves activities like identifying changes, controlling changes, and reporting changes. It utilizes tools like version control systems and bug trackers.
R.I. Pienaar gave an introduction to Docker at the Malta DevOps conference in September 2016. He discussed how Docker allows building, shipping and running applications by packaging them into standardized units called containers. This provides efficiency by eliminating redundancy between environments. He demonstrated how to build Docker images, run containers, store images in a registry, and observe containers using Docker's API. Pienaar also showed a weather service demo and provided links for further information on Docker.
This document summarizes a presentation about new features in Puppet 4. It discusses Puppet 4's major internal rewrite and formal language specification. Some key features covered include native data types and merging, improved iteration capabilities, resource defaults, and using facts as native data structures. It also overviewed updated functions, native modules, lookup strategies, and the all-in-one packaging of Puppet 4 agents.
R.I.Pienaar gave a presentation on monitoring using Sensu. He discussed Sensu's architecture and configuration, including how to define checks, clients, and handlers. He also demonstrated how to write custom checks in Ruby, reuse existing checks, and integrate Sensu with other tools like Uchiwa, Graphite, and Grafana. Finally, he provided several links for additional Sensu resources.
The document discusses building internal tooling for large-scale continuous delivery. It describes implementing continuous delivery for over 100,000 nodes by developing an overlay manager framework that uses a common package format, configuration repository, and CLI tool. The framework allows configuring and deploying components across large fleets within minutes with a 98%+ success rate.
Christian Strappazzon - Presentazione Python Milano - Codemotion Milano 2017Codemotion
PyMI: siamo un gruppo di Sviluppatrici, Sviluppatori, Appassionati e Appassionate di Python a Milano. Ci incontriamo una volta al mese in Mikamai/LinkMe. Abbiamo degli eventi ricorrenti e molto apprezzati: "Pillole di Python" e "PyBirra". * Presentazione del gruppo * Python Blueprint: the language, the tools, the packages and the ecosystem.
Puppet Performance Profiling - CM Camp 2015ripienaar
This talk will cover the basic life cycle of a Puppet Catalog from compilation request to report processing. It will explore the performance of some of the life cycle steps and show how you might instrument these steps using tools Puppet make available.
Along the way it will provide hints and tips on how to write performant facts and manifests.
R.I.Pienaar gave a presentation on external data in Puppet 4. The presentation covered hierarchical data lookup using Hiera and the new lookup() function. It discussed automatic parameter lookup, CLI usage of lookup(), data in modules, and tips/tricks like using lookup() to include classes. The presentation positioned external data as configuration for code and emphasized the pluggable and hierarchical nature of lookup in Puppet 4.
PuppetConf. 2016: External Data in Puppet 4 – R.I. PienaarPuppet
Here are the slides from R.I. Pienaar's PuppetConf 2016 presentation called External Data in Puppet 4. Watch the videos at https://www.youtube.com/playlist?list=PLV86BgbREluVjwwt-9UL8u2Uy8xnzpIqa
Containers Roadshow: How to Develop Containers for the EnterpriseHonza Horák
Introduction of how we do Docker containers development in Red Hat. The talk shares some best practices and gotchas that we realized during databases packaging as linux containers.
With Apache Cassandra being a massively scalable open source NoSQL database and with the amount of data that we create and copy annually which is doubling in size every two years, it is expected to reach 44 zettabytes, or 44 trillion gigabytes, we can assume that sooner or later a DBA will be handling a Cassandra database in their shop. This beginner/intermediate-level session will take you through my journey of an Oracle DBA and my first 100 days of starting to administer a Cassandra Cluster, show several demos and all the roadblocks and the success I had along this path.
The document discusses profiling Puppet performance, including profiling Facter facts, catalog compilation, and the agent run. It shows how to use tools like 'facter --timing', 'puppet apply --profile', and processing reports to identify slow areas. Specific optimizations discussed include caching external facts, avoiding repeated Hiera lookups, and profiling resources by type and time.
R.I. Pienaar gives an introduction to MCollective at the San Francisco and Silicon Valley joint Puppet User Group, May 2013.
Silicon Valley PUG: http://www.meetup.com/SiPMUG/
SF PUG: http://www.meetup.com/SFPMUG/#past
Open Source Infrastructure / Development & Security > How to make it work? Kangaroot
Beginning of November 2017; Kangaroot was present at the IT & Digital Leaders / Noord Infosec Dialogue Benelux. Peter Dens explained how open source is used and gave some insights on containers and how to leverage you DevOps into a more secure environment.
Python offers several tool and public services that simplify starting and maintaining an open source project. This presentation show cases some of the most helpful one and explains the process, beginning with an empty folder and finishing with a published PyPI package.
Developing and Deploying PHP with DockerPatrick Mizer
The document discusses using Docker for developing and deploying PHP applications. It begins with an introduction to Docker, explaining that Docker allows applications to be assembled from components and eliminates friction between development, testing and production environments. It then covers some key Docker concepts like containers, images and the Docker daemon. The document demonstrates building a simple PHP application as a Docker container, including creating a Dockerfile and building/running the container. It also discusses some benefits of Docker like portability, separation of concerns between developers and DevOps, and immutable build artifacts.
This document provides step-by-step instructions for building a simple orchestrator. It begins by setting up the basic components including RabbitMQ as a messaging broker and Celery workers. Step 1 demonstrates executing a simple AWS resource by adding a task to the queue. Step 2 adds a MongoDB database to store resources outside of the queue. Step 3 builds a service level on top by allowing resources like AWS instances and Docker containers to be orchestrated together through a YAML file.
- What are Internal Developer Portal (IDP) and Platform Engineering?
- What is Backstage?
- How Backstage can help dev to build developer portal to make their job easier
Jirayut Nimsaeng
Founder & CEO
Opsta (Thailand) Co., Ltd.
Youtube Record: https://youtu.be/u_nLbgWDwsA?t=850
Dev Mountain Tech Festival @ Chiang Mai
November 12, 2022
"Puppet at Pinterest", by Ryan Park, Operations Engineer at Pinterest. Talk from PuppetConf 2012.
Video of "Puppet at Pinterest": http://youtu.be/aU-bCbBq8zs
Learn more about Puppet: http://bit.ly/QQoAP1
Abstract: A case study of how Pinterest uses Puppet to manage its infrastructure. Pinterest has hundreds of Amazon EC2 virtual servers and uses Puppet Dashboard as the “source of truth” about its server inventory. Pinterest built a REST API for this database, which powers tools and automated scripts that integrate Puppet with internal systems and with Amazon Web Services.
Speaker Bio: Ryan Park leads operations and infrastructure at Pinterest, one of 2012’s fastest growing web sites. Pinterest’s entire infrastructure is in the cloud, built atop hundreds of Amazon EC2 virtual server instances. Ryan introduced Puppet to their infrastructure as soon as he joined the company, and they now use Puppet as the primary tool for managing their infrastructure. Prior to joining Pinterest, Ryan was the Head of Operations at PBworks, an online team collaboration service.
What's new in Docker - InfraKit - Docker Meetup Berlin 2016Patrick Chanezon
This document provides an overview of Docker and its products and initiatives:
1. Docker provides tools for container isolation using Linux kernel features like namespaces and cgroups. It also utilizes image layers for packaging applications.
2. Docker's products focus on the developer experience through tools like Docker for Mac/Windows, as well as orchestration with Swarm mode and services in Docker 1.12.
3. For operations, Docker provides tools to integrate with load balancers, templates, and other infrastructure through products like Docker Universal Control Plane and Docker Cloud. Docker is building tools to program infrastructure as code.
This document discusses Python packaging tools like setuptools and pip. It notes that setuptools is the core API that most packaging tools use for building, packaging, metadata, and dependency management. Pip is an implementation of the setuptools programming interface and is useful for finding, installing, and managing dependencies. The document recommends using Gradle as a build orchestrator to resolve dependencies, run builds, tests, and publishing. It proposes ways to integrate Python packaging metadata with Gradle.
Your data is much safer at home than it is letting some corporation "take care of it" for you, right? Security reviews for some of the top vendors' devices reveal many interesting findings. Like everything else, there are bugs. But knowing what kinds of bugs and how the vendors have responded will allow you to better understand the impact of plugging these devices into your network. Jeremy will show you just how low access control and least privilege are their list of priorities. He'll also explore the amount of test collateral and debug interfaces sloppily left shipping to consumers. From remote roots to stealing social network tokens to just plain weird stuff, he'll expand on how it's not just about what they do, but also what they don't do. And, he'll give you some useful guidelines on how to close the gaps yourself.
OlinData Puppet Presentation for MOSC 2012Walter Heck
Walter Heck gave a presentation on Puppet at the 2012 Malaysia Open Source Conference. He introduced OlinData, which provides Puppet consulting and training, and discussed how Puppet allows for scalable, accountable, and versioned infrastructure configuration compared to manual methods. Heck also covered OlinData's Puppet training schedule and consulting services to help companies implement and improve their Puppet usage.
OlinData Puppet Presentation for MOSC 2012OlinData
Walter Heck gave a presentation on Puppet at the 2012 Malaysia Open Source Conference. He introduced OlinData, which provides Puppet consulting and training, and discussed how Puppet allows for scalable, accountable, and versioned infrastructure configuration compared to manual methods. Heck also covered OlinData's Puppet training schedule and consulting services to help companies implement and improve their Puppet usage.
This document provides an introduction and overview of Docker, including its rapid growth and adoption, key benefits for developers and operations teams, technical underpinnings, ecosystem support, use cases, and future plans. Docker provides a way to package applications into lightweight containers that are portable and can run on any infrastructure. It solves issues around dependency management and consistency across environments.
HCL Notes and Domino License Cost Reduction in the World of DLAUpanagenda
Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-and-domino-license-cost-reduction-in-the-world-of-dlau/
The introduction of DLAU and the CCB & CCX licensing model caused quite a stir in the HCL community. As a Notes and Domino customer, you may have faced challenges with unexpected user counts and license costs. You probably have questions on how this new licensing approach works and how to benefit from it. Most importantly, you likely have budget constraints and want to save money where possible. Don’t worry, we can help with all of this!
We’ll show you how to fix common misconfigurations that cause higher-than-expected user counts, and how to identify accounts which you can deactivate to save money. There are also frequent patterns that can cause unnecessary cost, like using a person document instead of a mail-in for shared mailboxes. We’ll provide examples and solutions for those as well. And naturally we’ll explain the new licensing model.
Join HCL Ambassador Marc Thomas in this webinar with a special guest appearance from Franz Walder. It will give you the tools and know-how to stay on top of what is going on with Domino licensing. You will be able lower your cost through an optimized configuration and keep it low going forward.
These topics will be covered
- Reducing license cost by finding and fixing misconfigurations and superfluous accounts
- How do CCB and CCX licenses really work?
- Understanding the DLAU tool and how to best utilize it
- Tips for common problem areas, like team mailboxes, functional/test users, etc
- Practical examples and best practices to implement right away
Puppet Performance Profiling - CM Camp 2015ripienaar
This talk will cover the basic life cycle of a Puppet Catalog from compilation request to report processing. It will explore the performance of some of the life cycle steps and show how you might instrument these steps using tools Puppet make available.
Along the way it will provide hints and tips on how to write performant facts and manifests.
R.I.Pienaar gave a presentation on external data in Puppet 4. The presentation covered hierarchical data lookup using Hiera and the new lookup() function. It discussed automatic parameter lookup, CLI usage of lookup(), data in modules, and tips/tricks like using lookup() to include classes. The presentation positioned external data as configuration for code and emphasized the pluggable and hierarchical nature of lookup in Puppet 4.
PuppetConf. 2016: External Data in Puppet 4 – R.I. PienaarPuppet
Here are the slides from R.I. Pienaar's PuppetConf 2016 presentation called External Data in Puppet 4. Watch the videos at https://www.youtube.com/playlist?list=PLV86BgbREluVjwwt-9UL8u2Uy8xnzpIqa
Containers Roadshow: How to Develop Containers for the EnterpriseHonza Horák
Introduction of how we do Docker containers development in Red Hat. The talk shares some best practices and gotchas that we realized during databases packaging as linux containers.
With Apache Cassandra being a massively scalable open source NoSQL database and with the amount of data that we create and copy annually which is doubling in size every two years, it is expected to reach 44 zettabytes, or 44 trillion gigabytes, we can assume that sooner or later a DBA will be handling a Cassandra database in their shop. This beginner/intermediate-level session will take you through my journey of an Oracle DBA and my first 100 days of starting to administer a Cassandra Cluster, show several demos and all the roadblocks and the success I had along this path.
The document discusses profiling Puppet performance, including profiling Facter facts, catalog compilation, and the agent run. It shows how to use tools like 'facter --timing', 'puppet apply --profile', and processing reports to identify slow areas. Specific optimizations discussed include caching external facts, avoiding repeated Hiera lookups, and profiling resources by type and time.
R.I. Pienaar gives an introduction to MCollective at the San Francisco and Silicon Valley joint Puppet User Group, May 2013.
Silicon Valley PUG: http://www.meetup.com/SiPMUG/
SF PUG: http://www.meetup.com/SFPMUG/#past
Open Source Infrastructure / Development & Security > How to make it work? Kangaroot
Beginning of November 2017; Kangaroot was present at the IT & Digital Leaders / Noord Infosec Dialogue Benelux. Peter Dens explained how open source is used and gave some insights on containers and how to leverage you DevOps into a more secure environment.
Python offers several tool and public services that simplify starting and maintaining an open source project. This presentation show cases some of the most helpful one and explains the process, beginning with an empty folder and finishing with a published PyPI package.
Developing and Deploying PHP with DockerPatrick Mizer
The document discusses using Docker for developing and deploying PHP applications. It begins with an introduction to Docker, explaining that Docker allows applications to be assembled from components and eliminates friction between development, testing and production environments. It then covers some key Docker concepts like containers, images and the Docker daemon. The document demonstrates building a simple PHP application as a Docker container, including creating a Dockerfile and building/running the container. It also discusses some benefits of Docker like portability, separation of concerns between developers and DevOps, and immutable build artifacts.
This document provides step-by-step instructions for building a simple orchestrator. It begins by setting up the basic components including RabbitMQ as a messaging broker and Celery workers. Step 1 demonstrates executing a simple AWS resource by adding a task to the queue. Step 2 adds a MongoDB database to store resources outside of the queue. Step 3 builds a service level on top by allowing resources like AWS instances and Docker containers to be orchestrated together through a YAML file.
- What are Internal Developer Portal (IDP) and Platform Engineering?
- What is Backstage?
- How Backstage can help dev to build developer portal to make their job easier
Jirayut Nimsaeng
Founder & CEO
Opsta (Thailand) Co., Ltd.
Youtube Record: https://youtu.be/u_nLbgWDwsA?t=850
Dev Mountain Tech Festival @ Chiang Mai
November 12, 2022
"Puppet at Pinterest", by Ryan Park, Operations Engineer at Pinterest. Talk from PuppetConf 2012.
Video of "Puppet at Pinterest": http://youtu.be/aU-bCbBq8zs
Learn more about Puppet: http://bit.ly/QQoAP1
Abstract: A case study of how Pinterest uses Puppet to manage its infrastructure. Pinterest has hundreds of Amazon EC2 virtual servers and uses Puppet Dashboard as the “source of truth” about its server inventory. Pinterest built a REST API for this database, which powers tools and automated scripts that integrate Puppet with internal systems and with Amazon Web Services.
Speaker Bio: Ryan Park leads operations and infrastructure at Pinterest, one of 2012’s fastest growing web sites. Pinterest’s entire infrastructure is in the cloud, built atop hundreds of Amazon EC2 virtual server instances. Ryan introduced Puppet to their infrastructure as soon as he joined the company, and they now use Puppet as the primary tool for managing their infrastructure. Prior to joining Pinterest, Ryan was the Head of Operations at PBworks, an online team collaboration service.
What's new in Docker - InfraKit - Docker Meetup Berlin 2016Patrick Chanezon
This document provides an overview of Docker and its products and initiatives:
1. Docker provides tools for container isolation using Linux kernel features like namespaces and cgroups. It also utilizes image layers for packaging applications.
2. Docker's products focus on the developer experience through tools like Docker for Mac/Windows, as well as orchestration with Swarm mode and services in Docker 1.12.
3. For operations, Docker provides tools to integrate with load balancers, templates, and other infrastructure through products like Docker Universal Control Plane and Docker Cloud. Docker is building tools to program infrastructure as code.
This document discusses Python packaging tools like setuptools and pip. It notes that setuptools is the core API that most packaging tools use for building, packaging, metadata, and dependency management. Pip is an implementation of the setuptools programming interface and is useful for finding, installing, and managing dependencies. The document recommends using Gradle as a build orchestrator to resolve dependencies, run builds, tests, and publishing. It proposes ways to integrate Python packaging metadata with Gradle.
Your data is much safer at home than it is letting some corporation "take care of it" for you, right? Security reviews for some of the top vendors' devices reveal many interesting findings. Like everything else, there are bugs. But knowing what kinds of bugs and how the vendors have responded will allow you to better understand the impact of plugging these devices into your network. Jeremy will show you just how low access control and least privilege are their list of priorities. He'll also explore the amount of test collateral and debug interfaces sloppily left shipping to consumers. From remote roots to stealing social network tokens to just plain weird stuff, he'll expand on how it's not just about what they do, but also what they don't do. And, he'll give you some useful guidelines on how to close the gaps yourself.
OlinData Puppet Presentation for MOSC 2012Walter Heck
Walter Heck gave a presentation on Puppet at the 2012 Malaysia Open Source Conference. He introduced OlinData, which provides Puppet consulting and training, and discussed how Puppet allows for scalable, accountable, and versioned infrastructure configuration compared to manual methods. Heck also covered OlinData's Puppet training schedule and consulting services to help companies implement and improve their Puppet usage.
OlinData Puppet Presentation for MOSC 2012OlinData
Walter Heck gave a presentation on Puppet at the 2012 Malaysia Open Source Conference. He introduced OlinData, which provides Puppet consulting and training, and discussed how Puppet allows for scalable, accountable, and versioned infrastructure configuration compared to manual methods. Heck also covered OlinData's Puppet training schedule and consulting services to help companies implement and improve their Puppet usage.
This document provides an introduction and overview of Docker, including its rapid growth and adoption, key benefits for developers and operations teams, technical underpinnings, ecosystem support, use cases, and future plans. Docker provides a way to package applications into lightweight containers that are portable and can run on any infrastructure. It solves issues around dependency management and consistency across environments.
HCL Notes and Domino License Cost Reduction in the World of DLAUpanagenda
Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-and-domino-license-cost-reduction-in-the-world-of-dlau/
The introduction of DLAU and the CCB & CCX licensing model caused quite a stir in the HCL community. As a Notes and Domino customer, you may have faced challenges with unexpected user counts and license costs. You probably have questions on how this new licensing approach works and how to benefit from it. Most importantly, you likely have budget constraints and want to save money where possible. Don’t worry, we can help with all of this!
We’ll show you how to fix common misconfigurations that cause higher-than-expected user counts, and how to identify accounts which you can deactivate to save money. There are also frequent patterns that can cause unnecessary cost, like using a person document instead of a mail-in for shared mailboxes. We’ll provide examples and solutions for those as well. And naturally we’ll explain the new licensing model.
Join HCL Ambassador Marc Thomas in this webinar with a special guest appearance from Franz Walder. It will give you the tools and know-how to stay on top of what is going on with Domino licensing. You will be able lower your cost through an optimized configuration and keep it low going forward.
These topics will be covered
- Reducing license cost by finding and fixing misconfigurations and superfluous accounts
- How do CCB and CCX licenses really work?
- Understanding the DLAU tool and how to best utilize it
- Tips for common problem areas, like team mailboxes, functional/test users, etc
- Practical examples and best practices to implement right away
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on integration of Salesforce with Bonterra Impact Management.
Interested in deploying an integration with Salesforce for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
Ivanti’s Patch Tuesday breakdown goes beyond patching your applications and brings you the intelligence and guidance needed to prioritize where to focus your attention first. Catch early analysis on our Ivanti blog, then join industry expert Chris Goettl for the Patch Tuesday Webinar Event. There we’ll do a deep dive into each of the bulletins and give guidance on the risks associated with the newly-identified vulnerabilities.
Programming Foundation Models with DSPy - Meetup SlidesZilliz
Prompting language models is hard, while programming language models is easy. In this talk, I will discuss the state-of-the-art framework DSPy for programming foundation models with its powerful optimizers and runtime constraint system.
Freshworks Rethinks NoSQL for Rapid Scaling & Cost-EfficiencyScyllaDB
Freshworks creates AI-boosted business software that helps employees work more efficiently and effectively. Managing data across multiple RDBMS and NoSQL databases was already a challenge at their current scale. To prepare for 10X growth, they knew it was time to rethink their database strategy. Learn how they architected a solution that would simplify scaling while keeping costs under control.
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdfChart Kalyan
A Mix Chart displays historical data of numbers in a graphical or tabular form. The Kalyan Rajdhani Mix Chart specifically shows the results of a sequence of numbers over different periods.
Have you ever been confused by the myriad of choices offered by AWS for hosting a website or an API?
Lambda, Elastic Beanstalk, Lightsail, Amplify, S3 (and more!) can each host websites + APIs. But which one should we choose?
Which one is cheapest? Which one is fastest? Which one will scale to meet our needs?
Join me in this session as we dive into each AWS hosting service to determine which one is best for your scenario and explain why!
A Comprehensive Guide to DeFi Development Services in 2024Intelisync
DeFi represents a paradigm shift in the financial industry. Instead of relying on traditional, centralized institutions like banks, DeFi leverages blockchain technology to create a decentralized network of financial services. This means that financial transactions can occur directly between parties, without intermediaries, using smart contracts on platforms like Ethereum.
In 2024, we are witnessing an explosion of new DeFi projects and protocols, each pushing the boundaries of what’s possible in finance.
In summary, DeFi in 2024 is not just a trend; it’s a revolution that democratizes finance, enhances security and transparency, and fosters continuous innovation. As we proceed through this presentation, we'll explore the various components and services of DeFi in detail, shedding light on how they are transforming the financial landscape.
At Intelisync, we specialize in providing comprehensive DeFi development services tailored to meet the unique needs of our clients. From smart contract development to dApp creation and security audits, we ensure that your DeFi project is built with innovation, security, and scalability in mind. Trust Intelisync to guide you through the intricate landscape of decentralized finance and unlock the full potential of blockchain technology.
Ready to take your DeFi project to the next level? Partner with Intelisync for expert DeFi development services today!
Trusted Execution Environment for Decentralized Process MiningLucaBarbaro3
Presentation of the paper "Trusted Execution Environment for Decentralized Process Mining" given during the CAiSE 2024 Conference in Cyprus on June 7, 2024.
zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...Alex Pruden
Folding is a recent technique for building efficient recursive SNARKs. Several elegant folding protocols have been proposed, such as Nova, Supernova, Hypernova, Protostar, and others. However, all of them rely on an additively homomorphic commitment scheme based on discrete log, and are therefore not post-quantum secure. In this work we present LatticeFold, the first lattice-based folding protocol based on the Module SIS problem. This folding protocol naturally leads to an efficient recursive lattice-based SNARK and an efficient PCD scheme. LatticeFold supports folding low-degree relations, such as R1CS, as well as high-degree relations, such as CCS. The key challenge is to construct a secure folding protocol that works with the Ajtai commitment scheme. The difficulty, is ensuring that extracted witnesses are low norm through many rounds of folding. We present a novel technique using the sumcheck protocol to ensure that extracted witnesses are always low norm no matter how many rounds of folding are used. Our evaluation of the final proof system suggests that it is as performant as Hypernova, while providing post-quantum security.
Paper Link: https://eprint.iacr.org/2024/257
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAUpanagenda
Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-und-domino-lizenzkostenreduzierung-in-der-welt-von-dlau/
DLAU und die Lizenzen nach dem CCB- und CCX-Modell sind für viele in der HCL-Community seit letztem Jahr ein heißes Thema. Als Notes- oder Domino-Kunde haben Sie vielleicht mit unerwartet hohen Benutzerzahlen und Lizenzgebühren zu kämpfen. Sie fragen sich vielleicht, wie diese neue Art der Lizenzierung funktioniert und welchen Nutzen sie Ihnen bringt. Vor allem wollen Sie sicherlich Ihr Budget einhalten und Kosten sparen, wo immer möglich. Das verstehen wir und wir möchten Ihnen dabei helfen!
Wir erklären Ihnen, wie Sie häufige Konfigurationsprobleme lösen können, die dazu führen können, dass mehr Benutzer gezählt werden als nötig, und wie Sie überflüssige oder ungenutzte Konten identifizieren und entfernen können, um Geld zu sparen. Es gibt auch einige Ansätze, die zu unnötigen Ausgaben führen können, z. B. wenn ein Personendokument anstelle eines Mail-Ins für geteilte Mailboxen verwendet wird. Wir zeigen Ihnen solche Fälle und deren Lösungen. Und natürlich erklären wir Ihnen das neue Lizenzmodell.
Nehmen Sie an diesem Webinar teil, bei dem HCL-Ambassador Marc Thomas und Gastredner Franz Walder Ihnen diese neue Welt näherbringen. Es vermittelt Ihnen die Tools und das Know-how, um den Überblick zu bewahren. Sie werden in der Lage sein, Ihre Kosten durch eine optimierte Domino-Konfiguration zu reduzieren und auch in Zukunft gering zu halten.
Diese Themen werden behandelt
- Reduzierung der Lizenzkosten durch Auffinden und Beheben von Fehlkonfigurationen und überflüssigen Konten
- Wie funktionieren CCB- und CCX-Lizenzen wirklich?
- Verstehen des DLAU-Tools und wie man es am besten nutzt
- Tipps für häufige Problembereiche, wie z. B. Team-Postfächer, Funktions-/Testbenutzer usw.
- Praxisbeispiele und Best Practices zum sofortigen Umsetzen
TrustArc Webinar - 2024 Global Privacy SurveyTrustArc
How does your privacy program stack up against your peers? What challenges are privacy teams tackling and prioritizing in 2024?
In the fifth annual Global Privacy Benchmarks Survey, we asked over 1,800 global privacy professionals and business executives to share their perspectives on the current state of privacy inside and outside of their organizations. This year’s report focused on emerging areas of importance for privacy and compliance professionals, including considerations and implications of Artificial Intelligence (AI) technologies, building brand trust, and different approaches for achieving higher privacy competence scores.
See how organizational priorities and strategic approaches to data security and privacy are evolving around the globe.
This webinar will review:
- The top 10 privacy insights from the fifth annual Global Privacy Benchmarks Survey
- The top challenges for privacy leaders, practitioners, and organizations in 2024
- Key themes to consider in developing and maintaining your privacy program
Introduction of Cybersecurity with OSS at Code Europe 2024Hiroshi SHIBATA
I develop the Ruby programming language, RubyGems, and Bundler, which are package managers for Ruby. Today, I will introduce how to enhance the security of your application using open-source software (OSS) examples from Ruby and RubyGems.
The first topic is CVE (Common Vulnerabilities and Exposures). I have published CVEs many times. But what exactly is a CVE? I'll provide a basic understanding of CVEs and explain how to detect and handle vulnerabilities in OSS.
Next, let's discuss package managers. Package managers play a critical role in the OSS ecosystem. I'll explain how to manage library dependencies in your application.
I'll share insights into how the Ruby and RubyGems core team works to keep our ecosystem safe. By the end of this talk, you'll have a better understanding of how to safeguard your code.
2. R.I.Pienaar | rip@devco.net | http://devco.net | @ripienaar
Who am I?
• Malta since December 2015
• Consultant for 20+ years
• Government, Finance, Health, Social Media,
Fortune 50, Startups
• DevOps, Automation, Architect,
Development
• Open Source @ github.com/ripienaar
• Linux since Kernel 99 alpha p11
19. R.I.Pienaar | rip@devco.net | http://devco.net | @ripienaar
Puppet
• 10 years old
• Commercially owned Open Source
• Client Server or Standalone Architecture
• Used by 10s of 1000s of companies
• Useful to small and large companies, even
single servers
• 4 400 reusable modules, write your own
27. R.I.Pienaar | rip@devco.net | http://devco.net | @ripienaar
Puppet Nodes
node “dev1.example.net” {
include roles::lamp_dev
}
class roles::lamp_dev {
include profile::lamp_webserver
include profile::lamp_mysqlserver
}
class profile::lamp_webserver {
include php
include apache
}
class profile::lamp_mysqlserver {
include mysql
}
28. R.I.Pienaar | rip@devco.net | http://devco.net | @ripienaar
Puppet Facts
$ facter
…
os => {
architecture => "x86_64",
distro => {
codename => "Core",
description => "CentOS Linux release 7.2.1511 (Core)",
id => "CentOS",
release => {
full => "7.2.1511",
major => "7",
minor => "2"
},
specification => ":core-4.1-amd64:core-4.1-noarch"
},
family => "RedHat",
hardware => "x86_64",
name => "CentOS",
release => {
full => "7.2.1511",
major => "7",
minor => "2"
},
selinux => {
enabled => false
}
}
…
29. R.I.Pienaar | rip@devco.net | http://devco.net | @ripienaar
Puppet Facts
class site::common {
if $facts[“os”][“family”] == “RedHat” {
include site::redhat_common
} elsif $facts[“os”][“family”] == “Debian” {
include site::debian_common
} else {
fail(“Unknown operating system family”)
}
}
31. R.I.Pienaar | rip@devco.net | http://devco.net | @ripienaar
Puppet Site Policies
site::vhost{“example.com”: }
Day to Day Usage
$client_sites = [“example1.com”, “example2.com”]
site::vhost{$client_sites: }
site::vhost{“example.com”:
aliases => [“www.example.com”, “www.other.com”],
owner => “acme”,
allow_override => “All”,
options => “Indexes”
}
32. R.I.Pienaar | rip@devco.net | http://devco.net | @ripienaar
Puppet Site Policies
Policy Set by Web Team - Creates Utility
define site::vhost ( $port, $owner, $group, … ) {
apache::vhost{$name:
port => $port,
docroot => “/srv/www/${name}/html”,
docroot_owner => $owner,
docroot_group => $group,
}
bacula::backup_policy{$name: …}
sensu::monitor{$name: …}
}
33. R.I.Pienaar | rip@devco.net | http://devco.net | @ripienaar
Puppet Testing
Learning from Development - Unit Testing
describe “site::vhost” do
let(:title) { “example.com” }
it {
is_expected to contain_apache__vhost(“example.com”)
.with (
“port” => “80”,
“docroot” => “/srv/www/example.com/html”
…
)
}
end
34. R.I.Pienaar | rip@devco.net | http://devco.net | @ripienaar
Puppet Testing
Learning from Development - Integration Testing
describe package(“httpd”) do
it { should be_installed }
end
describe service(“httpd”) do
it { should be_enabled }
it { should be_running }
end
describe file(“/srv/www/example.com/html”) do
it { should exist }
it { should be_directory }
it { be_owned_by “root” }
end