Switching Android smartphones complicates restoring Work or School account credentials, requiring re-signing into accounts and possibly resetting MFA.
[HOWTO] Restore credentials of Work or School account(s) in Microsoft Authenticator App
Software Composition Analysis in SonarQube Advanced Security for SonarQube Cloud
On the 15th of September, 2025, Sonar finally released the long-awaited Software Composition Analysis (SCA) to SonarQube Advanced Security for SonarQube Cloud! Software Composition Analysis (SCA) is an ideally automated process that analyzes software codebases to identify or detect embedded open-source software/components. The identified/detected dependencies form the basis for the following features that SCA tools... Continue Reading →
[HOWTO] Set Minimum TLS Cipher Suite of Azure App Service using Terraform
An application’s pentest revealed weak SSL/TLS cipher suites in Azure App Services. To enhance security, non-forward-secrecy cipher suites must be disabled. Utilizing Terraform and the azapi provider, a workaround was implemented to configure the Minimum TLS Cipher Suite, enforcing modern cryptographic standards.
[HOWTO] Rotate Azure Key Vault secrets used by an ASP.NET Core Web API with Terraform on every deployment
The blog post details the process of rotating secrets stored in Azure Key Vault with each application deployment, utilizing Infrastructure as Code (IaC) principles via Terraform. It emphasizes the importance of secret rotation to minimize risks from leaks. An ASP.NET Core Web API is demonstrated as the application example, alongside procedural GitHub Actions for deployment.
[HOWTO] Integrate SonarCloud analysis in an Azure DevOps YAML pipeline
This post is about the integration of SonarCloud analysis in Azure DevOps YAML pipelines starting from a basic scenario that analyzes a repository containing a .NET Core 7 solution and ending up with a more complex scenario that analyzes a repository that additionally contains a React application and Terraform files.
[HOWTO] Access Azure SQL Database with Microsoft SQL Server Management Studio 18 using AAD Authentication
As announced in my initial post, here is my first technical post - published just before the end of the year. A few weeks ago I wanted to access a Azure SQL database with a specific AAD user through Microsoft SQL Server Management Studio 18 using Azure Active Directory (AAD) authentication. To do so, I... Continue Reading →
blog.rufer.be 