BT

Node Security Project Aims at Making Node.js More Secure

by Sergio De Simone on  Jun 25, 2014

Node Security Project has been quietly working at improving Node.js security for a few months now. The project has the goal of auditing Node.js existing module base to help "improve Node landscape and provide confidence to developers and enterprises about the state of security in Node.js land."

Hortonworks Acquires XA Secure to Strengthen Security in Enterprise Hadoop

by Abhishek Sharma on  Jun 23, 2014

Hortonworks recently acquired the data security company XA Secure to help the organization in providing comprehensive security to Hortonworks Data Platform (HDP). Security features would be available across all Hadoop workloads from batch, interactive SQL and real–time.

Waratek Release Early Version of their Application Security

by Ben Evans on  Jun 22, 2014

Waratek released an early adopter version of Waratek Application Security for Java, to protect older Java applications from vulnerabilities in legacy Java versions.

Hadoop Summit 2014 Day One - On the Path to Enterprise Grade Hadoop

by Jeevak Kasarkod on  Jun 04, 2014

Hadoop Summit Day One report covers the important trends and changes from last year's summit. It also covers the important announcements of the day in relation to this year's trending topics. This report focuses on the platform specific innovations and announcements and not the broader partner ecosystem, which will be covered in the next few days.

LibreSSL, OpenSSL Replacement: The First 30 Days

by Sergio De Simone on  May 19, 2014

LibreSSL is the OpenBSD group's response to the Heartbleed security vulnerability that was discovered a few weeks ago in OpenSSL. LibreSSL aims at fully pruning/refactoring OpenSSL to provide a secure and stable code base, fix long standing bugs, introduce modern programming practices, and redesign portability. After one month of work, it is time for a status update.

Docker Release Candidate for 1.0

by Chris Swan on  May 13, 2014

Docker version 0.11 has been released, which is the first release candidate for 1.0. The release doesn’t just focus on stability, and includes a number of new networking, security and administration features.

How to Do Just Enough Up-front Design

by Abel Avram on  May 09, 2014 3

This article includes advice for doing enough up-front architectural design to provide the needed structure to start a project, aligning the team with the architect’s vision and assessing the possible risks.

Heartbleed’s Aftermath: OpenBSD Developers Start Purifying OpenSSL

by Jeff Martin on  Apr 21, 2014

OpenSSL's Heartbleed vulnerability has brought the project under the intense scrutiny of the OpenBSD development team. The team began a massive cleanse and repair of the OpenSSL codebase last week with impressive results.

A Roundup of Cloudera Distribution Containing Apache Hadoop 5

by Alex Giamas on  Apr 18, 2014

Cloudera recently released the latest version of its software distribution, CDH5. Almost 20 months after the last major version, CDH4 seems like ages in the Big Data world. We take a look at new features this release brings and the future direction of Cloudera after the latest round of investment from Intel and Google Ventures.

Improving Node.js’ SSL Performance at PayPal

by Abel Avram on  Apr 17, 2014

Trevor Livingston, a software engineer working for PayPal, has outlined in a recent post a number of suggestions to improve the outbound SSL performance of Node.js.

Android 4.1.1 Vulnerable to Reverse Heartbleed

by Sergio De Simone on  Apr 15, 2014

Google announced last week that Android 4.1.1 is susceptible to the Heartbleed OpenSSL bug. While Android 4.1.1 is, according to Google, the only Android version vulnerable to Heartbleed, it remains in use in millions of smartphones and tablets. Android 4.1.1 devices have been shown to leak significant amount of data in a "reverse Heartbleed" attack.

Rails 4.1 Improves Boot Time and Responsive Layouts

by Mirko Stocker on  Apr 09, 2014

Rails 4.1 can now preload your application to improve startup time and comes with improvements for Action Pack, Active Record, and Action Mailer.

Heartbleed allows dumping client and server memory remotely

by Alex Blewitt on  Apr 09, 2014 1

The recently disclosed Heartbleed bug allows a remote client to query the contents of a remote SSL server's memory when using vulnerable versions of OpenSSL, disclosing passwords and other secure credentials to eavesdroppers. Application sites like Yahoo! Mail and Amazon Web Services have been affected. Read on to find out more about what the bug entails,and what you should do.

Patterns and Anti-Patterns for Scalable and Available Cloud Architectures

by Jonathan Allen on  Apr 02, 2014

More than anything else, architectural choices matter when designing a system with high scalability and availability. Using Azure customers as an example, Microsoft talks about the patterns and anti-patterns they see with their Azure customers and how it affects the four facets of system architecture.

Microsoft Beefs Up Cloud Identity Services as Part of Mobile Push

by Richard Seroter on  Mar 31, 2014

As part of launching an Enterprise Mobility Suite, Microsoft announced that Azure Active Directory Premium was set to hit General Availability. Microsoft Azure Active Directory Premium extends the free identity management and single sign-on service with additional group-management capabilities, rebranding options, security analytics, and more.

General Feedback
Bugs
Advertising
Editorial
InfoQ.com and all content copyright © 2006-2014 C4Media Inc. InfoQ.com hosted at Contegix, the best ISP we've ever worked with.
Privacy policy
BT