I am pleased to introduce you to BrowZer, a new group of open source components that collectively enable you and your organization, enterprises and self-hosting enthusiasts alike, in the cloud or at home, to operate private-to-the-internet web applications while still easily providing secure access for your authorized internet-based remote users.
I work with Golang every day as a developer on the OpenZiti project. In learning Go, I've hit various stumbling blocks, settled on some best practices and hopefully gotten better at writing Go code. This series exists to share some of the 'Aha!' moments I've had overcoming obstacles and finding solutions that sparked joy.
I wanted a way to check on my house (mainly my dogs) while I was away. So, I did what any trendy person would do and bought an IP camera with pan and tilt, which was great. A quick sign-up to their proprietary app, and I could view live video of my pups tearing apart my house from anywhere in the world.
Published by Clint on behalf of Spencer Griebel
This summer, I had the pleasure of working at NetFoundry, a company that is trying to keep the world secure by providing and supporting a totally free and open source, zero trust overlay network called OpenZiti. OpenZiti is on GitHub, you can go and fork it right now and run your own network if you like. Since I worked for NetFoundry, I was able to use their SaaS offering for free and let them manage the OpenZiti overlay (which you could also do too if interested, they have a free tier).
The title of this post may not have the same ring as Taco Tuesday, so let me explain.
The OpenZiti team I am a part of loves creating things. Art. Music. Certainly innovative software. But making something is not as simple as it sounds. Regardless of the experience level anyone has, putting a creation "out there" might involve vulnerability, self doubt, and indecision.
For most creatives, the process of making something is enjoyable. The flip-side is that showing it to others, especially at web scale, can be a painful process where we (and our project) are laid bare, open to criticism.
This phenomenon could be among the reasons preventing, or slowing, us all from writing and sharing technical articles.
Perhaps you are dealing with this issue as well, and are holding yourself back, not writing about your work.
If so, here are some thoughts concerning how I have managed to overcome my fear, and have transitioned into actually enjoying producing technical blog content, as a vehicle to share and collaborate on the software I build.
In the late 2000s, I was a software engineer in the telecom industry, working on large data pipelines that would aggregate billing data from any carrier. The older the carrier, the more likely we would write a web scrapper to automate data retrieval. The new carriers had Web APIs. It was exciting and abundantly clear that these servers were exposed publicly on the internet.
In this article we will look at what is VoIP (voice over IP), why it is inherently vulnerable to network based attacks, and how we can stop these attacks by closing inbound ports using open-source OpenZiti.
This will include a how-to guide on standing up an OpenZiti network and using OpenZiti tunnelers to connect IP phones from anywhere in the world using a Asterisk PBX server.
If you have read through the entire series up to here, welcome! If you have not, please consider reading the whole series:
If you have read through the entire series up to here, welcome! If you have not, please consider reading the whole series:
This article makes implicit heavy use of part 2 and part 3 of this series.
If you have read through the entire series up to here, welcome! If you have not, please consider reading the whole series:
In the series, we have covered public-key cryptography, where we learned about public keys, private keys, and their uses for encryption and signing. Using keys to sign data will play an essential role in this article. It is vital that the reader understand that signatures verify both the content of the data and its source. For a refresher, see part two of this series.