2017 blog posts

The Art of Scaling Containers: Discovery

Five Predictions for 2018 You Can Pretty Much Bank On

Lori MacVittie decided to put down in digital ink what the data and technology cycle is showing will be pretty much a given in 2018.

How does a WAF mitigate vulnerabilities?

Another Year of re:Invent, Another Year of Advances for F5 on AWS

F5's Chad Whalen reflects on the significant advancements F5 has made with AWS following an amazing week at AWS re:Invent.

Security Rule One: You’re probably violating it right now

Security Rule Zero: A Warning about X-Forwarded-For

Open Source Spotlight: F5 Announces It Will Commit More than Code

HTTP Rising: Telemetry, Tracking, and Terror in Container Environs

Cloud Can’t Protect You Against Yourself

How to Win at Multi-Cloud: Standardize then Automate to Innovate

Open Source Spotlight: F5 Infrastructure as Code and Multi-Cloud Manageability

Speed and Scale: F5 BIG-IP as Ingress control for Kubernetes

The Risks of Running HTTP are Increasing but Manageable

Whether we like it or not, HTTP is the de facto application transport protocol of the modern age. We use it everywhere. It’s as ubiquitous as IP and TCP, and serves much the same purpose. Its only goa...

The New OSI Network Stack: Containers and Half-Layers

Back in 1983, a group of like-minded folks in the computer and telecom industries got together to create a detailed specification they called the Open Systems Interconnection (OSI).

Open Source Spotlight: OpenStack LBaaS Enhanced Service Definitions

Why CVEs Should Be Given Priority One for Resolution

When considering vulnerabilities, remember application security is a stack. You may have heard me say this before, but sometimes we need a reminder that modern applications are never deployed alone.

Where does a WAF fit in the data path?

The data path contains multiple insertion points at which a WAF can be deployed. But that doesn’t mean every insertion point is a good idea.

How Container Orchestration Environments Impact Health Monitoring

How F5’s WAF Earned its AWS Security Competency

Dear NetOps: Security Rule Zero Applies to You Too

Okay, NetOps. As you’re getting all automated up and scripting your hearts out, it’s time for a gentle reminder about security. I’m not talking about firewalls and WAF or other security services you m...

F5 BIG-IP Availability on IBM Cloud for VMware Solutions

For most enterprises, the concept of cloud is well in the process of crossing the “chasm” from early adoption to early majority.

Automation: Managing F5 BIG-IP Configurations Using Puppet

Example-driven Insecurity Illustrates Need for WAF

Learning online is big. Especially for those who self-identify as a developer. If you take a peek at Stack Overflow’s annual developer survey...

Solace and F5: Partnering for Better IoT

Making Multi-Cloud Manageable: F5 Application Connector Now Available for Microsoft Azure

Bots are the Bane of Turing Security Test

Open Source Spotlight: Auto Scaling Mesos

Ceding Control of IoT for the Sake of Security

We are, I think it’s safe to say, universally delighted by technology. The mundane is transformed into the magical by the mere introduction of technology. The novelty wears off after a time, of course...

Vulnerable Stuff Running in Containers Still Vulnerable Stuff

It has been said – and not just by me – that encrypted malicious code is still malicious code. The encryption does nothing to change that...

Maslow’s Hierarchy of Automation Needs