Mihail MilevSoftware security needs reflectionIn a world hurtling forward at breakneck speed, software security depends on the developer's ability to stop and reflect on the code4 min read·Apr 21, 2024----
Mihail MilevKubernetes and Smack: doing it without recompilationIn this blog post M. Milev shows how to use the Linux security module Smack with containerd and runc without recompilation3 min read·Oct 8, 2021----
Mihail MilevKubernetes authentication using SAML2.0In this blog post Mihail Milev presents a simple way to enable SAML2.0 authentication for the Kubernetes endpoint8 min read·Jul 26, 2021----
Mihail MilevSecuring Kubernetes with SMACK — solving the problems of the PoCIn this follow-up post, Mihail Milev refines his Kubernetes SMACK PoC and introduces code patches for making your own, secure K8s cluster8 min read·Jul 5, 2021----
Mihail MilevUsing SMACK to secure K8s containers and nodes — a proof of conceptIn this post Mihail Milev demonstrates a proof of concept for securing Kubernetes containers and nodes using the SMACK Linux Security…13 min read·Jun 28, 2021----
Mihail MilevSolving AppArmor’s change_onexecIn this post Mihail Milev shows how to solve AppArmor’s block of change_onexec operations1 min read·May 6, 2021----
Mihail MilevSELinux is not hard. SELinux is hard to understandIn this article Mihail Milev tries to eliminate the myth, that SELinux is hard and offers a simple look at how it works6 min read·Apr 4, 2021--1--1
Mihail MilevNo pod to pod communication on CentOS 8, Kubernetes with CalicoThe explanation why there is no pod to pod communication in Kubernetes with Calico CNI on top of CentOS 8 and how to solve the problem4 min read·Mar 8, 2021----
Mihail MilevConditional Playbook Import in AnsibleHow to import playbooks in Ansible using variables in var files using jinja24 min read·Feb 10, 2021----
Mihail MilevMitigating malware risks with SELinuxSimple real-life scenario how SELinux could help mitigate the risk of malware or ransomware on a Linux machine14 min read·Feb 2, 2021--1--1