Latest Posts
Building OpenTelemetry Collection in Apache NiFi with Netty
OpenTelemetry provides an common specification that supports software observability across numerous platforms and services. With the introduction of ListenOTLP in versions 2.0.0-M1 and 1.24.0, Apache NiFi enables a number of filtering, transformation, and routing use cases. Built on the Netty framework, ListenOTLP provides complete support for the telemetry types and encoding strategies defined in OpenTelemetry Protocol 1.0.0.
Modernizing Streaming Encryption with age in Apache NiFi
Apache NiFi 2.0.0-M1 and 1.24.0 introduced new Processors supporting the age-encryption.org/v1 specification. Built on the Jagged framework implementation, the EncryptContentAge and DecryptContentAge Processors perform streaming cipher operations using the ChaCha20-Poly1305 algorithm. The age specification supports key agreement using the elliptic curve X25519 function, providing a modern solution for automated encryption and decryption with standard key pairs.
Firsthand Analysis of Apache NiFi Vulnerability CVE-2023-34468
Recent reporting on Apache NiFi vulnerability CVE-2023-34468 has highlighted significant concerns related to potential remote code execution. Although upgrading to the latest version of Apache NiFi remains the recommended solution, a closer evaluation of the vulnerability shows important details glossed over in published analysis. Exploiting H2 database connection strings requires both authentication and sufficient authorization, the importance of which is missing from recent reporting.