28. Magento-Meetup am 05.12.2018 in Wien: GitLab CI and Docker system live-hack

The last meetup of this year was held in Vienna, featuring two interesting talks by two speakers doing their first Magento Meetup Austria talk. Welcome to the family!

For our first talk, Stephan came all the way from Mannheim to tell us about building a Continuous Delivery Pipeline for Magento:

Continuous Delivery Pipeline as code is key helping you to ensure longterm maintainability. Treating your pipeline as code helps you to version it in your SCM of choice, makes changes easily traceable and lets anyone on your team make required changes.

In this session I will show you how we build and maintain our Continuous Delivery pipeline using tools like GitLab CI, Docker, Nexus and Traefik. Together we will take a deep dive into the GitLab CI Build Pipelines to build and deploy docker containers to dev, stage and production environments.

Stephan did his talk in English as some attendees did not speak German.

In our second talk, Wolfgang lead us on the road to root access in a Magento setup:

Dieser Vortrag zeigt die Sicht eines Angreifers. Anhand eines Livehacks wird ein Server mit mehreren Magento Docker-Containern Schritt für Schritt eingenommen. Damit soll aufgezeigt werden, wie die Verkettung vieler “kleiner” Fehler zu einem schwerwiegenden Sicherheitsrisiko führen kann. Der Weg führt dabei vom Development-Container bis hin zum root-Account im Docker-Host.

Wolfgangs talk was in German.