security-configuration
Safeguard articles tagged "security-configuration" — guides, analysis, and best practices for software supply chain and application security.
5 articles
Secure Defaults, Explained
Secure defaults mean the out-of-the-box configuration is the safe one, and weakening it requires a deliberate opt-in. Here's why the default state decides most real-world security outcomes.
Apache Web Server Hardening Guide for Production Environments
Apache httpd still serves millions of websites. Its default configuration exposes information, accepts weak TLS, and enables features you probably do not need.
Kubernetes Ingress Security Configuration: Getting It Right
Ingress controllers are the front door to your Kubernetes cluster. Misconfigurations here expose everything behind them.
Harbor Registry Security Configuration: A Complete Hardening Guide
Harbor is the most popular open-source container registry. Its security features are powerful but require deliberate configuration to be effective.
NGINX Security Configuration Guide for Production Deployments
NGINX powers a third of the internet. Its default configuration is optimized for getting started, not for production security. Here is the gap.