I have installed the Docker image selenium/standalone-chrome in an Azure Container Instance and I can access it from the public IP as I want, but I would like to secure it with a username and a password.
I think the I have to add vnet to my Azure setup to secure it.
but I would like to hear if some of you knows a command in the image, that I could call to add a username and password to the Selenium Grid?
Related
I need to implement ubuntu ssh login via keycloak users (users present in keycloak instance) and control the user access management via keycloak. How can I achieve this ?
When I make a GCP cloud run instance anyone can to that link. I am using it for an API for my website. I do not want joe blow opening F12 and following the HTTP requests to my API. I use API keys and stuff however I want my link to be protected to only certain IP addresses or at least lock it behind a username and password. How can I do this with cloud run on GCP?
Cloud Run exposes a public URL by default. You can make it public (let allUsers invoke your endpoint) or restricted (only authorized user can invoke)
The problem with the second solution is that only the Google accounts (Workspace or Gmail) can be added and so restrict your user to use that type of credentials.
So, the solution is to make your API public. You can implement security mechanism in it to software control the authN and authZ of your user, but you aren't protected against DDOS attacks.
Therefore, Cloud Armor enters in the game. You have to create a Load Balancer and to put your Cloud Run service as backend of it. Then activate Cloud Armor. You will be able to check the IP source of the requester, but also to protect your service against attacks.
I configured freeradius which use ldap as a backend database.(in ldap, i stored password in ssha)
Because ldap does not support mschap, I Use eap-ttls with pap for authentication.
In freeradius server, when I run freeradius in debug mode, I see username and password of client in cleartext.freeradius output
so, as I said before, because I use ldap as a backend database, I can't use mschap (which is the only secure way I know for client to send his password). I just want to know is there another way to send password that is not visible in output of freeradius?
I Found this options in windows, but I don't know if they are useful for my case or not.
windows interface configuration
Thanks.
I am a newbie for Web Host Manager(WHM). My client has 2 websites hosted on same server. He has given me the credentials for cPanels and WHM. Now when I want to change some setting or access any configuration file from SSH using the user created for a specific account, it blocks me to do so saying this user account does not have privilege to do so. Is there a way I can get a root user privilege?
It's not possible to assign all root privileges to any normal cPanel account. If you have WHM access then login your WHM and enable shall access for that particular account which you want to access through SSH and after that you can login SSH with that user details.
I've seen articles such as this one about pulling from private repos and the "best" way to do it. What I understand is, if I want to automate any infrastructure to pull my docker images from dockerhub I need to:
Have a user I can login with.
Save the users creds in some application that will spin up my infrastructure (be it EC2 User data, a config file for ansible, or ENV variables in some API).
When the machine spins up it uses this user's credentials to login and place a token on the machine. All is well.
I'm wondering if there is any functionality to use application keys / tokens instead of needing to tie this to a user. It seems like it would be more secure/convenient if I could manage application keys to do have access to my user/organization's DockerHub account. Then I could yank the keys or change my password and not worry about the sky falling.
Is something like this available, coming, or is there a solution I haven't come across yet?
Thanks!