Uncategorized

Chris Becker
Site Reliability Engineer Betterment

How to Change the MySQL root Password

April 3, 2020

MySQL is an open-source relational database, made famous by its ease-of-use and simple setup on modern Linux and Windows operating systems. On an unmodified MySQL install, the root user account does not have a password. This is extremely insecure! As a systems administrator, we know that the easiest way to compromise a system is using the default unchanged password with

Read more
Chris Becker
Site Reliability Engineer Betterment

Managing Access to Ephemeral Infrastructure At Scale

April 3, 2020

Managing a static fleet of strongDM servers is dead simple. You create the server in the strongDM console, place the public key file on the box, and it’s done! This scales really well for small deployments, but as your fleet grows, the burden of manual tasks grows with it. With the advent of automated scaling solutions for our cloud environment

Read more
Chris Becker
Site Reliability Engineer Betterment

Creating a User in MongoDB

February 14, 2020

MongoDB is a document-oriented cross-platform database that makes storing and retrieving complex data easy and fast. It uses a JSON-like structure for the documents, which is familiar to anyone working with modern applications. Adding a New User MongoDB provides an internal method, db.createUser(), that is used for making new users in the system. Unlike traditional SQL databases, MongoDB users are

Read more

What Would My SOC 2 Dashboard Look Like?

October 25, 2019

As your organization pursues your SOC 2 certification, organization is critical.  You will be busy actively managing dozens of ongoing daily tasks, which can bury you in minutiae.  But at the same time, you need to keep your high-level compliance goals in focus in order to successfully move your certification over the finish line.  In this post, we will look

Read more

How Betterment Secures Server Access – Automate the Boring Stuff

July 30, 2019

Chris Becker, SRE, Betterment Chris Becker is an SRE at Betterment. Previously, he did similar work on Warby Parker's Infrastructure team. At Betterment, he earned the label APT (advanced persistent threat) thanks to consistently tripping alarms with his peculiar scripts and commands. In this talk, he discusses how Betterment's approach to server access controls evolved as the team grew exponentially.

Read more
Avatar
Contributor

Identity Federation on AWS and Azure Instances

May 15, 2019

Why? That’s a good starting question to start with, what’s the goal? Here we’re talking about managing access to instances on AWS and Azure in a unified way and there’s a bunch of possibilities, including (not exhaustive): Local users from a csv list with a script Local users using a configuration management tool Using a central directory (NIS, AD, LDAP)

Read more

Director of IT & Operations at Chef on What it Means to be Secure

April 11, 2019

ShareAbout Token SecurityAt Token Security our goal is to teach the core curriculum for modern DevSecOps. Each week we will deep dive with an expert so you walk away with practical advice to apply to your team today. No fluff, no buzzwords.About This EpisodeThis week we are joined by Ben Rockwood, Director of IT & Operations at Chef who shares

Read more