Security Archives - Page 3 of 4

Security Matters – How OVHcloud covers the European landscape of security standards

Desirée Wisniewski / 2021-11-09 / Europe, OVHcloud, Security, Stardards / Accelerating with OVHcloud

Cloud Security is not only a mayor topic for companies, customers in the public sector but also for the politicians. Since there is still no EU-wide uniform regulation of corresponding safety standards, the individual member states rely on their own laws and regulations. That means: The compliance of the companies must also adjust to the […]

Security Matters – How OVHcloud covers the European landscape of security standards Read More »

Microsoft Exchange Server Vulnerabilities

Julien Levrard / 2021-03-04 / Microsoft, Security / Accelerating with OVHcloud

On March 2nd, Microsoft published a security patch for 4 vulnerabilities on Microsoft Exchange Server. Security researchers detected that those vulnerabilities are actively exploited for targeted attacks. The vulnerable version are: Microsoft Exchange Server 2010 Microsoft Exchange Server 2013 Microsoft Exchange Server 2016 Microsoft Exchange Server 2019 All OVHcloud Exchange managed services have been patched

Microsoft Exchange Server Vulnerabilities Read More »

The Bastion – Part 4 – A new era

Stéphane Lesimple / 2020-10-29 / DevOps, Open Source, Security, The Bastion / Uncategorized

This is the last article in the series about The Bastion. In the previous parts, we covered the principles of The Bastion, and talked about how delegation was at the core of the system. Then we explained how Security was at the heart of the design principles, in a detailed but hopefully not too-long article.

The Bastion – Part 4 – A new era Read More »

The Bastion – Part 3 – Security at the core

Stéphane Lesimple / 2020-10-23 / DevOps, Security, The Bastion / Uncategorized

In previous parts, we’ve covered the basic principles of the bastion. We then explained how delegation was at the core of the system. This time, we’ll dig into some governing principles of how The Bastion is written. In a nutshell, the main purpose of the bastion is to ensure security, auditability and reliability in all

The Bastion – Part 3 – Security at the core Read More »

An introduction to DNSSEC

Eric Vergne / 2020-10-16 / DNS, Security / Uncategorized

DNS (Domain Name System) is the “phone book” of the internet – meaning that it translates a human-readable domain name (like ovhcloud.com) into a computer-readable IP (54.39.46.56). The DNS was designed when the internet first started. At that time, the Internet was not as big, or critical as it is today.DNS, therefore, was designed on

An introduction to DNSSEC Read More »

OVHcloud Predictor, part 1

Alexandre Kalatzis / 2020-10-05 / DevOps, Security, Web Hosting / Uncategorized

In our previous article concerning the CVE-2017-9841 vulnerability, we presented our web application firewall (WAF) implemented with NAXSI. Usually, a WAF is run directly on the web server. At OVHcloud, we chose to run our web application firewall upstream, on a very powerful software layer that is specific to our web hosting infrastructures. These are

OVHcloud Predictor, part 1 Read More »

The OVHcloud SSH Bastion – Part 2: delegation dizziness

Stéphane Lesimple / 2020-09-11 / DevOps, Security, The Bastion / Uncategorized

This is the second part of a blog series, here is part one. We’ve previously found that the bastion is not your usual SSH jumphost (in fact, we found it is not a jumphost at all) and we discussed how the delegation was one of the core features we’d originally needed. So, let’s dive into

The OVHcloud SSH Bastion – Part 2: delegation dizziness Read More »

The OVHcloud Bastion – Part 1

Stéphane Lesimple / 2020-06-03 / DevOps, Security, The Bastion / Uncategorized

Bastion? Are we talking about the indie game? Not this time! (albeit it’s a good game!). At OVHcloud, a fair amount of our infrastructures are built on top of Linux boxes. We have a lot of different flavours; such as Debian, Ubuntu, Red Hat… and the list goes on. We even had good old Gentoos

The OVHcloud Bastion – Part 1 Read More »

Confinement and remote working — don’t overlook your data security

Michel Paulin / 2020-04-03 / OVHcloud Thinking, Security / Uncategorized

With confinement measures now being enforced in an increasing number of countries, we can really see the extent to which technology helps us combat isolation. Technology is what enables us to continue studying, stay in touch with those we care about, and keep ourselves entertained. We are even seeing the emergence of new ways to

Confinement and remote working — don’t overlook your data security Read More »

Protect Yourself, And Protect Your IT Infrastructure

Sebastien Meriot / 2020-03-26 / Security / Uncategorized

On 20th March 2020, ENISA (the European Union Agency for Cybersecurity) published an article calling for vigilance from both companies and individuals, following scam attempts that are capitalising on the COVID-19 healthcare crisis. Various organisations such as ANSSI (the National Cybersecurity Agency of France), the NCSC (National Cyber Security Center), and CISA (Cybersecurity And Infrastructure

Protect Yourself, And Protect Your IT Infrastructure Read More »