Security on Patoune-IThttps://www.patoune-it.fr/en/tags/security/Recent content in Security on Patoune-ITHugoenThu, 28 May 2026 10:00:00 +0200Shortening patch cycles: why 48h is no longer optional for critical CVEshttps://www.patoune-it.fr/en/mythos/2026-05-28-patch-cycles-48h/Thu, 28 May 2026 10:00:00 +0200https://www.patoune-it.fr/en/mythos/2026-05-28-patch-cycles-48h/The most critical vulnerabilities are being exploited within hours. Here is how to restructure your patch cycles to respond in under 48 hours.Connecting to an Azure database without direct access using socat and kubectl port-forwardhttps://www.patoune-it.fr/en/posts/2026-05-27-azure-db-kubectl-portforward/Wed, 27 May 2026 10:00:00 +0200https://www.patoune-it.fr/en/posts/2026-05-27-azure-db-kubectl-portforward/<p>In professional environments, Azure databases (PostgreSQL, MySQL, SQL Server…) are often exposed exclusively via a <strong>Private Endpoint</strong>: they are only reachable within the Azure private network, with no public IP. The result: from your development workstation, it is impossible to connect directly using a client like DBeaver or <code>psql</code>.</p> <p>However, the AKS cluster (Azure Kubernetes Service) running in the same VNet does have access. This guide explains how to leverage that fact to create a secure tunnel to the database, without modifying any network rules or opening a single public port.</p>