Protect Kubernetes Apps from SQL Injection

Logo
Presented by

Jenn Gile, Senior Manager of Product Marketing, NGINX

About this talk

You work in IT for a popular local store that sells a variety of goods, from pillows to bicycles. They're about to launch their first online store, but before launch they've asked a security expert to pen test the site before it goes public. Unfortunately, the security expert found a problem! The online store is vulnerable to SQL injection. The security expert was able to exploit the site to obtain sensitive information from your database, including user names and passwords! Your team has come to you - the Kubernetes engineer - to save the day. Luckily, you know that SQL injection - as well as other vulnerabilities - can be mitigated using Kubernetes traffic management tools. You already deployed an Ingress controller to expose the app, and in a single configuration you're able to ensure this vulnerability can't be exploited. Now the online store can launch on time. Well done! In this lab you will: ◆ Exploit an application vulnerable to SQL injection ◆ Use an NGINX sidecar container to block certain requests ◆ Configure NGINX Ingress Controller to filter requests Technologies Used: ◆ NGINX Ingress Controller: https://bit.ly/3vpPkRw ◆ NGINX Open Source: https://nginx.org/ ◆ Helm: https://helm.sh" Try this demo for yourself! ⬡ https://bit.ly/3rVAz74 Get Started with NGINX Ingress Controller ⬡ https://bit.ly/35BHoSi Free eBook: Taking Kubernetes from Test to Production ⬡ https://bit.ly/3HpvaJL
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (289)
Subscribers (26444)
NGINX helps companies deliver their sites and applications with performance, reliability, security, and scale. NGINX offers an award-winning, comprehensive application delivery platform in use on more than 300 million sites worldwide. Watch this webinars how to ensure flawless digital experiences through features such as advanced load balancing, web and mobile acceleration, security controls, application monitoring, and management.