Bozho's tech blog

  • Developer tips
  • Opinions

Elasticsearch – Scalability and Multitenancy [slides]

Bozho January 26, 2021

Last week I gave a talk in a local tech group about my experience with Elasticsearch at LogSentinel, and how we achieve multitenancy and scalability. Obviously, the topic of scalabilityContinue reading

Content-Security-Policy Nonce with Spring Security

Bozho January 6, 2021

Content-Security-Policy is important for web security. Yet, it’s not mainstream yet, it’s syntax is hard, it’s rather prohibitive and tools rarely have flexible support for it. While Spring Security doesContinue reading

Releasing Often Helps With Analyzing Performance Issues

Bozho December 26, 2020

Releasing often is a good thing. It’s cool, and helps us deliver new functionality quickly, but I want to share one positive side-effect – it helps with analyzing production performanceContinue reading

Syntactic Sugar Is Not Always Good

Bozho December 11, 2020

This write-up is partly inspired by a recent post by Vlad Mihalcea on LinkedIn about the recently introduced text blocks in Java. More about them can be read here. Now,Continue reading

Creating a CentOS Startup Screen

Bozho November 25, 2020

When distributing bundled software, you have multiple options, but if we exclude fancy newcomers like Docker and Kubernetes, you’re left with the following options: an installer (for Windows), a packageContinue reading

Let’s Kill Security Questions

Bozho November 20, 2020

Security questions still exist. They are less dominant now, but we haven’t yet condemned them as an industry hard enough so that they stop being added to authentication flows. ButContinue reading

My Advice To Developers About Working With Databases: Make It Secure

Bozho November 3, 2020

Last month Ben Brumm asked me for the one advice I’d like to give to developers that are working with databases (in reality – almost all of us). He publishedContinue reading

Discovering an OSSEC/Wazuh Encryption Issue

Bozho October 12, 2020

I’m trying to get the Wazuh agent (a fork of OSSEC, one of the most popular open source security tools, used for intrusion detection) to talk to our custom backendContinue reading

OpenSSL Key and IV Padding

Bozho October 10, 2020

OpenSSL is an omnipresent tool when it comes to encryption. While in Java we are used to the native Java implementations of cryptographic primitives, most other languages rely on OpenSSL.Continue reading

ElasticSearch Multitenancy With Routing

Bozho September 28, 2020

Elasticsearch is great, but optimizing it for high load is always tricky. This won’t be yet another “Tips and tricks for optimizing Elasticsearch” article – there are many great onesContinue reading

Posts navigation

« 1 2 3 4 5 … 38 »
My projects

LogSentinel – a next-gen SIEM

SentienlDB – a GDPR-compliant datastore

Computoser – algorithmic music

GitHub profile

Search
About me
  • LinkedIn
  • Web CV
  • CV (pdf)


profile for Bozho at Stack Overflow, Q&A for professional and enthusiast programmers

RSS Recent posts
  • Nothing Is Secure [slides]
  • Internally And Externally Facing Honeypots
  • A Security Issue in Android That Remains Unfixed – Pull-down Menu On Lock Screen
  • The Lack Of Native MFA For Active Directory Is A Big Sin For Microsoft
  • Open APIs – Public Infrastructure in the Digital Age
  • On Disinformation and Large Online Platforms

DZone MVB Java Code Geeks
Posts by date
April 2023
M T W T F S S
 12
3456789
10111213141516
17181920212223
24252627282930
« Mar    
License
Creative Commons License
This work by Bozhidar Bozhanov is licensed under a Creative Commons Attribution 3.0 Unported License.
Categories
  • Developer tips
  • Opinions

Copyright 2023 Bozho's tech blog | Designed by CodeGearThemes

Powered by WordPress