Three penguins breaking stuff and (sometimes) fixing it.
Sharing practical experiences and lessons learned from securing cloud environments. Exploring Kubernetes, OpenStack, AWS, Azure, EntraID, and more.
Welcome to Penwins
Welcome to Penwins! So you’re probably wondering: why penguins? Well, we’re three friends and former Linux sysadmins who’ve been securing (and occasionally breaking) cloud infrastructure for years. After countless late-night debugging sessions, cryptic error messages, and that one time we accidentally locked ourselves out of production (don’t ask), we figured we should write this stuff down. What You’ll Find Here What our bosses want us to talk about: Kubernetes Security: Best practices, network policies, RBAC configurations OpenStack Security: Securing private cloud deployments AWS & Azure: Cloud-native security implementations Identity Management: EntraID, LDAP, and IAM strategies Infrastructure as Code: Terraform, security scanning, and automation But this isn’t your typical “10 Best Practices” blog. We’re here to share: ...