2000 - 2019

Java User Group München

sponsored by

sponsored by 2:team new media GmbH




Zeit: Beginn 19:00 (Einlass i. d. R. ab 18:30)
Ort: Hotel Eden-Wolff, Arnulfstraße 4, 80335 München

Du möchtest einen Vortrag bei JUGM halten?

Wir freuen uns über eine Nachricht an ah@jugm.de von dir.


Nächste Meetings:


Zwei Vorträge!

Zero downtime deployment with Kubernetes, Spring Boot and Flyway


Securing the JVM, neither for fun nor for profit but do you have a choice?

Nicolas Frankel

1. Kubernetes allows a lot. After discovering its features, it’s easy to think it can magically transform your application deployment process into a painless no-event. For Hello World applications, that is the case. Unfortunately, not many of us do deploy such applications day-to-day.
You need to think about application backward compatibility, possible rollback, database schema migration, etc. I believe the later is one of the biggest pain point. In this talk, I’ll demo how to update a Spring Boot app deployed on a Kubernetes cluster with a non-trivial database schema migration with the help of Flyway, while keeping the service up during the entire update process.

2. The Java API allows a lot: sending packets over the network, compiling code, etc.
If you put an application in an production environment, you need to make sure it doesn’t do more than it’s supposed to do.
Consider a Java application in a private banking system.
A new network administrator is hired, and while going around, he notices that the app is making network calls to a unknown external endpoint.
After some investigation, it’s found that this app has been sending for years confidential data to a competitor (or a state, or hackers, whatever).
This is awkward. Especially since it could have been avoided.
Code reviews are good to improve the hardening of an application, but what if the malicious code was planted purposely?
Some code buried in a commit could extract code from binary content, compile it on the fly, and then execute the code in the same JVM run...
By default, the JVM is not secured! Securing the JVM for a non-trivial application is complex and time-consuming but the risks of not securing it could be disastrous.
In this talk, I’ll show some of the things you could do in an unsecured JVM.
I’ll also explain the basics of securing it, and finally demo a working process on how to do it.



nach oben

Wiki der JUGM


Am 12.07.2012 fand mit ca. 40 Teilnehmern das Gründungstreffen der Softwerkskammer München statt. Link siehe unten.

Homepage zum Buch:

Besuchen Sie auch:

Android Usergroup München

GoogleTechnologyUserGroup München

Groovy,Grails und Griffon Usergroup München

JBoss User Group München

MongoDB Usergroup München

PHP Usergroup München

JUG Augsburg

JUG Deutschland

JUG Stuttgart

Softwerkskammer München



JUGM Job-Börse