DEV Community

Aidas Petryla
Aidas Petryla

Posted on

1 1 1 1 1

šŸ”Simple Yet Crucial step to avoid security incidentsšŸ’”

Recently Iā€™ve experienced a GitLab security incident.
Had a pretty new GitLab version (~2 months old), but there were a few security patches released. Apparently, I was missing one of them.

I noticed GitLab throwing 500 errors randomly and later 502 consistently. Looking at the server Iā€™ve noticed some processes run by ā€œgitā€ user, which shouldn't be running, consuming all CPU. Processes were restarting after killing them. Updating GitLab to the newest version resolved the issue.

Keeping software up-to-date can sometimes be a cumbersome process. But security incidents in sensitive systems can be very costly. Luckily, this time it wasnā€™t the case. I hope this reminder will save others from uncomfortable situations.

Top comments (0)

Billboard image

The Next Generation Developer Platform

Coherence is the first Platform-as-a-Service you can control. Unlike "black-box" platforms that are opinionated about the infra you can deploy, Coherence is powered by CNC, the open-source IaC framework, which offers limitless customization.

Learn more