June 7th, 2018 | 44 mins 23 secs
azure ad, datacenter, drupal, drupalgeddon2, drupalgeddonm, linux filesystem forensics, orkney, routersploit, sysadmin podcast, techsnap, ticketfly, underwater data center, vpnfilter, wordpress, zip slip vulnerability
Microsoft puts a data center under the ocean, and they might be onto something. The Zip Slip vulnerability sneaks into your software, and VPNFilter turns out to be more complicated than first known.
June 1st, 2018 | 51 mins 29 secs
containerd, docker, gdpr, ghostery, git security vulnerability, google bug bounty, kubernetes, router malware, routing-protocol, signalling system 7, snoopsnitch, ss7, sysadmin podcast, techsnap, vpnfilter
We explain how the much hyped VPNFilter malware actually works, and its rather surprising sophistication.
May 23rd, 2018 | 44 mins 43 secs
ddos, dhcp flaw, electron exploit, meltdown, red hat, signal, spectre, speculative store bypass, sysadmin podcast, upnp, variant 4
We’ll explain how Speculative Store Bypass works, and the new mitigation techniques that are inbound.
May 15th, 2018 | 36 mins 47 secs
cfb gadgets, cisco webex, efail, encrypted emails, exfiltration channels, gnupg, hp-35, kubernetes, on-premises, openpgp, s/mime, sysadmin podcast
The EFail hype-train has hit hypersonic speed, we’ll tap the breaks and explain who disclosed it, what it is, what it’s not, our recommendations, and early reactions.
May 8th, 2018 | 37 mins 4 secs
ecc, freenas, gpu, iot, logitech harmony hub, rowhammer, supermicro, sysadmin podcast, techsnap, unixsurplus, zfs memory requirements
Our FreeNAS build is complete and Allan’s back to cover the final details. Plus the new GPU attack against Android phones, and a perfect example of poor IoT security.
May 2nd, 2018 | 48 mins 32 secs
allan jude, benchmarking, chipsec, freebsd, honeypot, linuxfest northwest, micah lee, network bottlenecks, qnx, remote exploit, sysadmin podcast, techsnap, uefitool, volkswagen vulnerabilities, zfs compression
We catch up with Allan Jude and he shares stories of hunting network bottlenecks, memories of old firewalls, and some classic ZFS updates.
April 24th, 2018 | 38 mins 54 secs
atlanta ransomware, balena, chrome 66, docker, fresco logic fl2000, moby, nintendo switch, rtl-sdr, shofel2, spoofing cell networks, symantec ssls, sysadmin podcast, techsnap, tegra x1, vmware vulnerabilities, zabbix
Hardware flaws that can’t be solved, human errors at the physical layer, and spoofing cellular networks with a $5 dongle.
April 18th, 2018 | 37 mins 43 secs
alternatives, collectd, icinga, metric collection, nagios, nagios downsides, nagios plugins, nagios remote plugin executor, nagios usage examples, netdata, nrpe, proactive maintenance, prometheus, sensu, server monitoring introduction, sysadmin podcast, techsnap, what to monitor
We cover all the bases this week in our TechSNAP introduction to server monitoring.
April 12th, 2018 | 35 mins 13 secs
branchscope attack, how to get a sysadmin job, it career tips, post-mortem, sysadmin podcast, techsnap, things to learn, travis ci outage, zero-width characters
Getting started or getting ahead in IT is a moving target, so we’ve crowd sourced some of the best tips and advice to help.
April 5th, 2018 | 35 mins 11 secs
cloudformation, infrastructure as code, myfitnesspal, panera bread leak, secuirty news, sysadmin podcast, techsnap, terraform hcl, terraform introduction, total meltdown, under armour hack
It’s a TechSNAP introduction to Terraform, a tool for building, changing, and versioning infrastructure safely and efficiently.
March 29th, 2018 | 32 mins 49 secs
android malware, apfs encryption, atlanta ransomware, etcd, giovanni collazo, macos high sierra, plaintext password, shodan, sysadmin podcast, techsnap, zero-day exploit
Embarrassing flaws get exposed when the logs get reviewed, Atlanta city government gets shut down by Ransomware, and the cleverest little Android malware you’ll ever meet.
March 22nd, 2018 | 29 mins 9 secs
amd platform security processor, amd psp, epyc, ethereum dns rebinding attack, expedia, fallout, firefox master password, orbitz, rdp vulnerability, ryzenfall, sysadmin podcast, techsnap
We cut through the noise and explain in clear terms what’s really been discovered. The botched disclosure of flaws in AMD products has overshadowed the technical details of the vulnerabilities, and we aim to fix that..
March 15th, 2018 | 31 mins 49 secs
acme, amplification attack, aws, cisco hardcoded password, cve 2018-1057, ddos, fail2ban replacement, let’s encrypt, netflix, project nimble, s3scanner, samba 4, slingshot, sysadmin podcast, techsnap, wildcard ssl
Netflix has a few tricks we can learn from, and the story of clever malware that was operating undetected since 2012.
March 1st, 2018 | 36 mins 28 secs
apple, aws, cloud storage, cve tracking, devops, encryption, icloud, iron.io, lambda, open-lambda, openwhisk, private browsing, pwned passwords, serverless architecture, sysadmin podcast, techsnap, troy hunt, veil
The term serverless gets thrown around a lot, but what does it really mean? What are the benefits and the drawbacks? It’s a TechSNAP introduction to Serverless Architecture.
February 22nd, 2018 | 31 mins 53 secs
firefox lockdown, ibrs, indirect branch restricted speculation, inspec, kernel page table isolation, kpti, meltdown, patch status, pcid, process context identifier, spectre, tesla cryptojacking, windows analytics
New variants, bad patches, busted microcode and devastated performance. It’s a TechSNAP Meltdown and Spectre check up.
February 15th, 2018 | 37 mins 23 secs
air-gapped, asa, blockchain, cisco, containers, docker, microsoft did, remote code execution, skype update flaw, sysadmin podcast, techsnap, telegram zero-day, xml parser
The problems containers can’t solve, nasty security flaws in Skype and Telegram, and Cisco discovers they have a bigger issue on their hands then first realized.