Andreas MoorJan 31

Shadow AI: Risiken und zentrale Proxy-Lösungen

Warum du Shadow AI kennen solltest Als Sysadmin arbeitete du mit Servern und Containern – AI erweitert das auf unkontrollierte KI-Nutzung (Shadow AI), die Security-Lücken und Kosten verursacht. Zentrale Proxys zentralisieren AI-Traffic für Governance, ohne tiefe Programmierkenntnisse. Das Problem: Shadow AI und Integrationen Shadow AI meint AI-Modelle (z.B. ChatGPT-ähnliche LLMs), die Teams heimlich deployen – ohne Security-Checks, was Datenlecks, Compliance-Verstöße und […]

https://andreas-moor.de/shadow-ai-risiken-und-zentrale-proxy-loesungen/

Beth PariseauJan 15
IBM's planned Sovereign Core product proposes a #controlplane for #AIapps that doesn't rely on any single #publiccloud provider, which will appeal to some large enterprises, analysts said. My latest, on #IBM's #hybridcloud twist for #sovereignAI: https://www.techtarget.com/searchitoperations/news/366637343/IBM-prepares-hybrid-cloud-twist-for-sovereign-AI
IBM prepares hybrid cloud twist for sovereign AI

IBM Sovereign Core proposes a control plane for AI apps that doesn't rely on any single public cloud provider, which will appeal to some large enterprises, analysts said.

TechTarget
Reddit Tech VN BotJan 6

Tôi đã tạo Ctrl – nền tảng điều khiển thực thi cho các hệ thống tác nhân tự động trong môi trường rủi ro cao. Ctrl chặn và đánh giá rủi ro các lệnh gọi công cụ, áp dụng chính sách (cho phép/từ chối/phê duyệt), ghi lại mọi hành động vào cơ sở dữ liệu SQLite. Hỗ trợ tích hợp dễ dàng với LangChain + MCP. Phù hợp cho các tác nhân thực hiện hành động thực tế. #Ctrl #AgentSystem #AISafety #LowCode #ControlPlane #HệThốngTácNhân #AnToànAI #CôngCụMở

https://www.reddit.com/r/LocalLLaMA/comments/1q5ezpy/i

Andreas MoorDec 11

Kubernetes-Cluster „einfach“ erklärt

Warum du Kubernetes-Cluster kennen solltest Stell dir vor, du bist mitten in deiner Sysadmin-Ausbildung und hast Linux-Grundlagen wie Befehle, Dateisysteme und Prozesse im Griff, aber Container und Orchestrierung klingen noch fremd. Kubernetes-Cluster sind der nächste Schritt: Sie helfen dir, viele Anwendungen automatisch auf mehreren Linux-Servern zu starten, zu überwachen und zu reparieren, ohne dass du alles manuell per SSH machen musst. Das spart Zeit und verhindert Ausfälle, […]

https://andreas-moor.de/kubernetes-cluster-einfach-erklaert/

Reddit Tech VN BotNov 19

🚨📢 Tin mới! 📢🚨
Nhóm pgEdge_Postgres đã phát triển một PostgreSQL Control Plane để đơn giản hóa việc quản lý các cụm PostgreSQL đa vùng. Đây là một bước tiến lớn cho cộng đồng nguồn mở!
🔗 Kiểm tra mã nguồn tại đây: https://github.com/pgEdge/control-plane
🌐 Thảo luận thêm tại: https://www.reddit.com/r/opensource/comments/1p1kbk6/
#PostgreSQL #ControlPlane #OpenSource #pgEdge #QuảnLýCụm #ĐaVùng

https://www.reddit.com/r/opensource/comments/1p1kbk6/we_wanted_to_make_management_of_crossregion/

GitHub - pgEdge/control-plane: pgEdge Postgres Control Plane

pgEdge Postgres Control Plane. Contribute to pgEdge/control-plane development by creating an account on GitHub.

GitHub
Cyfinoid ResearchSep 22

Decouple and Conquer: Understanding Control and Data Planes Across Technology

The article emphasizes the importance of separating control planes from data planes in various systems, including networking, version control, cloud infrastructure, and CI/CD pipelines. This distinction enhances security, accountability, and threat modeling. Overlapping planes can create vulnerabilities, underscoring the need for clear boundaries and independent audit procedures for effective monitoring and protection.

https://cyfinoid.com/decouple-and-conquer-understanding-control-and-data-planes-across-technology/

Open Source JobHubFeb 4, 2025
Featured Job from @openuk #SOOCon25 Job Board: ControlPlane is searching for a Senior Cloud Native Security Consultant. Apply online and browse all open positions on #OSJH
https://opensourcejobhub.com/categories/soocon25/
#jobs #career #OpenSource #CloudNative #security #FOSS #ControlPlane
Fabian BaderNov 13, 2024

Great writeup that demonstrates that Intune is really powerful and you should not manage your PAW devices from the same environment they manage.

#Security #Intune #ControlPlane #RedTenant

https://cloud.google.com/blog/topics/threat-intelligence/abusing-intune-permissions-entra-id-environments

Abusing Intune Permissions for Lateral Movement and Privilege Escalation in Entra ID Native Environments | Google Cloud Blog

We demonstrate a novel way how adversaries can move laterally and elevate privileges within Microsoft Entra ID.

Google Cloud Blog
Show threadAaron LongchampsMay 17, 2024

It lives! And that's a good stopping point for tonight.

The fix was related to the error message I got before, which is good. I ran this command:

kubeadm init phase upload-certs --upload-certs

which then provided me with a certificate key.

From there, I could join the cluster with the join command and another argument for --certificate-signing-key. The full k8s control plane join command looked like this:

kubeadm join k-control-plane-1.homelab:6443 --token abcdef.01234567890123456 --discovery-token-ca-cert-hash sha256:<snip> --control-plane --certificate-key <key>

#kubernetes #controlplane #homelab #ubuntu #selfhosted

Dotan Horovits #CNCFAmbassadorFeb 22, 2024

Encouraging to see #controlplane committing to maintaining the #fluxcd project. After #weaveworks shut down recently, I had concerns about the sustainability of the #opensource project. I hope more will join them.

https://www.linkedin.com/posts/horovits_opensource-activity-7166549024555175938-IVd4?utm_source=share&utm_medium=member_desktop

#continuousdelivery #cicd #gitops

Dotan Horovits 🇮🇱🎗 on LinkedIn: #opensource

Encouraging to see ControlPlane committing to maintaining the Flux CD project. After Weaveworks shut down recently, I had concerns about the sustainability of…