Friday, October 13, 2023

Migrated Most of Workloads from AWS to Azure, decommissioning SimplePass

 In early September, I have mentioned about migration servers from AWS to Azure - Internal maintenance, server migration. This effort has been completed. The following workloads have been migrated from AWS to Azure:

1) https://www.alightservices.com

2) PodDB - https://poddb.alightservices.com

3) Few simple redirects i.e my own domains that redirect to  https://www.alightservices.com

4) https://www.simplepro.site - My own static web page - one page.


The following workloads are being decommissioned:

1) SimplePass - https://simplepass.alightservices.com


I think I should say the past 24 hours, I wore "system admin" hat. I am NOT boasting but in my one-man startup, I do everything. Sometimes "dba", "security architect", "technical architect", "product owner", "project manager", "developer" etc... My weakest point in the entire software development cycle - QA / testing, I do some normal sanity tests / unit tests.

Now, this task is complete, the next few days, I would be wearing - "security architect", "developer" hats. I am trying to implement an almost impenetrable VPN system. I would leak the details of the VPN system or show a demo in 2 weeks.

I have discussed the concepts in the past in the technical blog:

https://www.alightservices.com/2023/09/06/securing-the-cloud-using-multiple-layers-of-security/

https://www.alightservices.com/2023/08/13/how-to-get-alerts-for-ssh-openvpn-logins-on-aws-ec2-or-any-other-debian-ubuntu-based-servers/

https://www.alightservices.com/2023/08/06/how-to-easily-install-openvpn-and-some-easy-c-code-snippets-for-process-class/

https://www.alightservices.com/2023/08/03/a-method-for-randomizing-vpn-security-for-cloud-based-workloads-alight-technology-and-services-limited/

In other words, I am developing a system where VPN's server cert, client cert, client password are for one-use only, once connected and disconnected, the same .ovpn file or certs or password cannot be used for connecting.

And monitoring software watches cloud network security groups, if connected to VPN, the ports are allowed until disconnect. If disconnected, ports are automatically closed.

For example, I have been using AWS CodeBuild + Jenkins for some CI/CD. I don't want public access of Jenkins, although web traffic, Jenkins is not supposed to have public internet access, should be accessible only via VPN. Similalrly SSH / RDP etc...

Why am I so worried about cyber-security?

I have been targeted, harassed and hacked several times by a gang of R&AW/Mafia cyber-criminals for the over 6 years, 2 - 3 murder attempts, defamation. They even stalked, blackmailed, identity theft, identity distortion, invasion of privacy etc... In January of 2022, someone gained access to VPN for few minutes, and I got an alert and terminated the VPN server within 3 - 4 minutes, based on logs, no harm was done, but I did report to the ICO - Internet Commissioners Office.


-

Mr. Kanti Kalyan Arumilli

B.Tech, M.B.A

https://www.facebook.com/kanti.arumilli

https://www.linkedin.com/in/kanti-kalyan-arumilli/

https://www.threads.net/@kantiarumilli

https://www.instagram.com/kantiarumilli/

https://www.youtube.com/@alighttechnologyandservicesltd

https://www.youtube.com/@kantikalyanarumilli

https://twitter.com/KantiKalyanA/

https://kantikalyan.medium.com/

https://www.facebook.com/ALightTechnologyAndServicesLimited/

https://www.linkedin.com/company/alight-technology-and-services-limited/

Founder & CEO, Lead Full-Stack .Net developer

ALight Technology And Services Limited

Phone / SMS / WhatsApp on the following 3 numbers:

+91-789-362-6688, +1-480-347-6849, +44-07718-273-964

+44-33-3303-1284 (Preferred number if calling from U.K, No WhatsApp)

No comments:

Post a Comment

WebVeta has been accepted into Athena.vc, actual details not finalized yet!

  My Software as a Service (SaaS) product, WebVeta , has been accepted into Athena.vc . Athena.vc is a venture capitalist firm with a stron...