Technical insights and best practices for Security & Compliance
Manual security hardening is a liability in 2019. Learn how to automate CIS-level compliance on Norwegian infrastructure using Ansible and OpenSCAP to keep the auditors happy.
Manual security audits are a liability in 2019. Learn how to automate compliance on Norwegian VPS infrastructure using Ansible and OpenSCAP to satisfy Datatilsynet and sleep better at night.
Firewalls are no longer enough. Learn how to architect a Zero-Trust environment using mTLS, SSH CAs, and identity proxies while keeping your data compliant with Norwegian regulations.
The 'castle-and-moat' security model is dead. Learn how to implement a Zero-Trust architecture using WireGuard, Nginx mTLS, and SSH CAs on your Linux infrastructure, keeping your data compliant with Norwegian standards.
Hope is not a strategy. We deconstruct the mechanics of Disaster Recovery in 2019, from Master-Slave replication in MySQL 5.7 to real-time filesystem syncing with lsyncd, ensuring your RTO stays low and your data stays in Norway.
Containerization has transformed deployment, but default configurations are a security nightmare. We dive into essential hardening techniques for Docker and Kubernetes, from dropping capabilities to enforcing strict RBAC, specifically tailored for Norwegian compliance standards.
Containers aren't magic security boxes. From the recent runC vulnerability to kernel isolation, we break down how to secure your stack using 2019's best practices, leveraging strict KVM boundaries and immutable infrastructure principles.
VPNs are just glorified backdoors. In 2019, the only secure network is one that assumes it's already breached. Here is how to build a Zero-Trust environment on CoolVDS using Nginx mTLS and strict iptables.
Manual security hardening is a liability in 2019. Learn how to implement CIS benchmarks using Ansible and OpenSCAP to satisfy Datatilsynet requirements while maintaining high-velocity deployments.
With the recent runc vulnerability shaking the DevOps world, it is time to harden your Docker stack. We analyze kernel isolation, immutable infrastructure, and why Norwegian data sovereignty matters for your cluster.
The 'castle and moat' security strategy is obsolete. Learn how to implement Zero Trust principles using mTLS, granular iptables, and KVM isolation in a post-GDPR world.
The 'castle and moat' security strategy is obsolete. Learn to implement a pragmatic Zero-Trust architecture using mTLS, SSH hardening, and strict iptables on KVM infrastructure.
Manual server hardening is a liability in 2019. Learn how to automate security compliance using Ansible and OpenSCAP, and why infrastructure sovereignty in Norway is your best defense against Datatilsynet audits.
Default Docker configurations are a security nightmare waiting to explode. We break down how to lock down your container infrastructure, navigate Norwegian GDPR requirements, and why strict kernel isolation on CoolVDS is your last line of defense.
Manual security audits are a liability in 2019. Learn to automate CIS-level hardening on CentOS 7 using OpenSCAP and Ansible, keeping the Norwegian Datatilsynet happy and your infrastructure secure.
Manual security audits are a liability. Learn how to automate server hardening using Ansible and OpenSCAP on Norwegian infrastructure to satisfy Datatilsynet without sacrificing DevOps velocity.
Hardware redundancy is not a backup strategy. In this guide, we tear down a robust Nordic DR plan using KVM, off-site replication, and GDPR-compliant architecture standard for 2019.
It is December 2018. GDPR is enforced. Is your infrastructure resilient enough to handle a total site failure without violating Datatilsynet regulations? We break down the RTO/RPO math, MySQL replication strategies, and why sovereignty matters.
It's late 2018. GDPR is here. Is your Disaster Recovery plan compliant? A pragmatic CTO's guide to replication, failover, and keeping data on Norwegian soil.
The 'castle and moat' security strategy failed. In a post-GDPR world, we explore building a Zero-Trust architecture using Nginx mTLS, SSH Certificates, and strict KVM isolation.
Firewalls are no longer enough. Learn how to implement Mutual TLS (mTLS), hardened SSH CAs, and granular access controls to survive modern threats. A technical deep-dive for Norwegian DevOps teams.
Docker containers are not virtual machines. If you are treating them as such, you are one kernel panic away from disaster. Here is the battle-hardened guide to locking down Docker and Kubernetes in a post-GDPR world.
Perimeter security is dead. In the wake of the Equifax breach and GDPR, relying on a single VPN gateway is professional negligence. Learn how to implement SSH Certificate Authorities, mTLS with Nginx, and true network isolation on CoolVDS.
The May 25th deadline has passed, but the real work has just begun. We strip away the legal jargon and dive into the technical reality of automating server hardening with Ansible to satisfy the Norwegian Datatilsynet without slowing down your release cycles.
It is August 2018, and the old 'castle-and-moat' security strategy is failing. Here is how to implement a Zero-Trust architecture using Nginx mTLS, SSH hardening, and strict iptables rules on a Linux VPS.
The GDPR grace period is over. Manual security hardening is a liability. Learn to automate compliance using Ansible and OpenSCAP, ensuring your infrastructure meets Datatilsynet standards without destroying your velocity.
The panic of May 25th is over, but the liability remains. Learn how to automate server hardening using Ansible and OpenSCAP on Norwegian infrastructure to satisfy Datatilsynet without burning out your DevOps team.
The May 25th deadline has passed, but compliance is a continuous process. Learn how to automate security auditing using Ansible and OpenSCAP on Linux infrastructure, specifically tailored for Norwegian data privacy requirements.
It is August 2018. The GDPR grace period is over. Learn how to use Ansible and OpenSCAP to automate compliance on Norwegian VPS infrastructure without breaking the bank.
Hope is not a strategy. In 2018, data loss isn't just an operational failure; it's a legal catastrophe. Here is how to architect a compliant, bulletproof DR plan using Norwegian infrastructure.