https://intent.me/en-us/categories/security/ Recent content in Security on Intent Hugo -- 0.155.1 en-us Thu, 28 May 2026 18:59:25 +0800 https://intent.me/en-us/blog/tech/iiot-emqx-rootless-deployment-postmortem/ Thu, 28 May 2026 18:59:25 +0800 https://intent.me/en-us/blog/tech/iiot-emqx-rootless-deployment-postmortem/ A postmortem of an IIoT ingress deployment failure: under Podman Rootless, EMQX 5.8 exposed unstable Erlang IPC, HOCON schema validation failures, a blocked security-group port, and M2M requests rejected by CSRF middleware. This post covers the confirmed causes, fixes, and validation path. https://intent.me/en-us/blog/tech/jwt-at-rt-redis-hardening-postmortem/ Mon, 23 Mar 2026 10:00:00 +0800 https://intent.me/en-us/blog/tech/jwt-at-rt-redis-hardening-postmortem/ A security hardening postmortem for JWT AT/RT architecture: treating Redis reservation as completed and implementing RT rotation, replay detection, and revocable sessions. https://intent.me/en-us/blog/tech/https-upgrade-403-postmortem/ Tue, 17 Mar 2026 12:00:00 +0800 https://intent.me/en-us/blog/tech/https-upgrade-403-postmortem/ A postmortem on a persistent 403 after HTTPS migration, traced to both missing CSRF allowlist updates and Podman Rootless image namespace isolation.