Securing DevOps Show & Tell: Mozilla Sops

Поделиться
HTML-код
  • Опубликовано: 22 дек 2024

Комментарии • 23

  • @VikingMan44
    @VikingMan44 2 года назад +5

    Very useful. My architect is asking me to create the secrets for my application. He told me to use a tool called sops. Thank you for helping me understand what it is for and how it works.

  • @patricknelson
    @patricknelson 4 года назад +3

    This really is an excellent introduction! Thanks for “taking the edge off” to make it so much more approachable. I’m considering it for Kubernetes, so the article from Frederic Hemberger was super helpful too; I’m glad you ended with that. 😊

  • @code_flair
    @code_flair Месяц назад

    Very insightful video tutorial for handling secrets 👏

  • @MehdiHacks
    @MehdiHacks 5 лет назад +5

    At 08:59 you say "Message Access Control" for MAC. Isn't it "Message authentication code" or I'm missing something here?

  • @lgrullon854
    @lgrullon854 3 месяца назад

    This is very useful explanation video, thank you

  • @VasyChristmas
    @VasyChristmas 3 месяца назад

    Very useful guide. Can sops encrypt .env file values? Case: My containers work with environment variables, I need to encrypt them in .env file and pass them through container in decrypted state when container initializes.

  • @lkr_master
    @lkr_master Год назад

    Do you have more videos planned for SOPS?

  • @alex.khalilov
    @alex.khalilov Год назад

    Thank you, so cool explanation.

  • @tainoroyal6585
    @tainoroyal6585 5 лет назад

    Thanks for taking the time to explain this

  • @nicolasafonso8916
    @nicolasafonso8916 5 лет назад

    Quite a good introductory video.

  • @diegolagosmorales2536
    @diegolagosmorales2536 3 года назад

    thx so much, fantastic tutorial

  • @eliascoleiii5173
    @eliascoleiii5173 3 года назад

    Very accessible, thank you!

  • @michalbigos791
    @michalbigos791 4 года назад

    Very useful, great stuff

  • @lokeshjain3425
    @lokeshjain3425 5 лет назад +1

    Great Video. I have one query though. How do I make my PGP key available for SOPS encryption/decryption every time I build my docker image?I can't include it in the docker file or as part of ENV variables. That defeats the whole purpose. where do I store keep my pgp keys?

    • @okjacob
      @okjacob 5 лет назад +1

      docker has a new flag called `secrets` github.com/moby/moby/issues/13490 medium.com/@tonistiigi/build-secrets-and-ssh-forwarding-in-docker-18-09-ae8161d066

    • @salembeats
      @salembeats 2 года назад +1

      The PGP method is intended for simple personal use on your own machine, or for last-ditch backup. It’s not really intended for more involved scenarios with VMs, CI, and so on. There may be a good direct answer to your immediate question, but I think the better answer to the more general question is: Use a method other than PGP as your primary intended method.

  • @theoliverbarnes
    @theoliverbarnes 5 лет назад +2

    I think this might be the blog post that 404s on the video: frederic-hemberger.de/articles/manage-kubernetes-secrets-with-sops/

  • @joemalone8685
    @joemalone8685 2 года назад

    Could you clarify where the foo:bar actually comes into play in the process? Specifically, what role does foo play?

    • @TheMattSturgeon
      @TheMattSturgeon Год назад

      foo, bar and baz are conventional example names used in software. In his example "foo" was a "key", aka the name of some item, while "bar" was the item to be encrypted.

  • @RenannPrado
    @RenannPrado 4 года назад

    Awesome!

  • @mifowu6647
    @mifowu6647 6 месяцев назад

    You're a legend

  • @DungTran-lm2nx
    @DungTran-lm2nx 5 лет назад +3

    Thank for not being on full screen all time.

  • @bjo004
    @bjo004 4 года назад

    Great video. Please show an Azure Demo.