Jim Salter is an author, public speaker, small business owner, mercenary sysadmin, and father of three—not necessarily in that order. He got his first real taste of open source by running Apache on his very own dedicated FreeBSD 3.1 server back in 1999, and he's been a fierce advocate of FOSS ever since. He's the author of the Sanoidhyperconverged infrastructure project. He's contributed to websites such as Ars Technica on everything from Wi-Fi to NAS distributions to next-gen filesystems.
June 23rd, 2019 | 43 mins 33 secs
backdoor, crypto, cryptocurrency, device removal, devops, dram, ecc, encryption, firefox, freebsd, linux, memory, mozilla, mss, networking, openzfs, ping of death, ram, rambleed, raw send, rowhammer, sack panic, sandbox, sandbox escape, security, ssd, targeted attack, tcp, techsnap, trim, zero day, zfs
A new vulnerability may be the next 'Ping of Death'; we explore the details of SACK Panic and break down what you need to know.
June 11th, 2019 | 30 mins 47 secs
automatic updates, backups, bluekeep, brute force, devops, firewalls, goldbrute, hard drive, industrial control systems, internet worm, microsoft, nas, network security, nsa, out of support, password security, patching, patching policies, rdp, remote desktop, remote desktop protocol, rosewill, security, ssd, storage, supermicro, techsnap, terminal services, updates, vulnerabilities, wannacry, windows, windows update, windows xp, worm
We explore the risky world of exposed RDP, from the brute force GoldBrute botnet to the dangerously worm-able BlueKeep vulnerability.
May 25th, 2019 | 33 mins 49 secs
apache, apache bench, apache mpms, benchmarking, cdn, concurrency, devops, event loop, http, lighttpd, mod_php, multi-processing modules, networking, nginx, performance, php, prefork, scalability, static sites, sysadmin, techsnap, threadpool, threads, varnish, w3 total cache, web hosting, web servers, wordpress
We turn our eye to web server best practices, from the basics of CDNs to the importance of choosing the right multi-processing module.
May 10th, 2019 | 46 mins 32 secs
availability, cryptography, devops, dhcp, disaster recovery, ethernet, firewall, high availability, ipsec, kubernetes, layer 3, lfnw, linux, mesh network, openvpn, quantum computers, reliability, router, rpo, rto, security, simplicity, ssh, subspace, switch, sysadmin podcast, tcp, techsnap, tinc, tunnel, udp, vlan, vpn, wintun, wireguard, zinc
We’re back from LinuxFest Northwest with an update on all things WireGuard, some VLAN myth busting, and the trade-offs of highly available systems.
April 25th, 2019 | 31 mins 33 secs
atomic, atomic snapshot, copy on write, crash consistent, cron, data integrity, devops, filesystems, functional filesystem, linked list, openzfs, policy based, replication, rsync, sanoid, snapshot management, snapshots, syncoid, sysadmin podcast, techsnap, toml, warstories, zfs, zfs on linux, zol
We continue our take on ZFS as Jim and Wes dive in to snapshots, replication, and the magic on copy on write.
April 11th, 2019 | 47 mins 35 secs
ashift, backups, cddl, checksum, copy on write, copyleft, data integrity, devops, ecc, filesystems, freebsd, gpl, hard disks, hard drives, iops, linux, openzf s, raid, raidz, snapshots, solaris, ssd, sun microsystems, sysadmin podcast, techsnap, throughput, ubuntu, vdez, zfs, zfs on linux, zfs on root, zol
Jim and Wes sit down to bust some ZFS myths and share their tips and tricks for getting the most out of the ultimate filesystem.
March 28th, 2019 | 32 mins 33 secs
asus, asus live update firmware, asus malware, backdoor, badusb, bios, c runtime, cccleaner, command and control server, compiler, devops, fwupd, gigabyte, hardware manufacturers, intel management engine, ken thompson, linux, linux vendor firmware service, mac address, machine learning, malware, microcontroller, node, npm, package managers, pypi, python, reflections on trusting trust, shadowhammer, shadowpad, ssd firmware, supply chain, supply chain attacks, sysadmin podcast, techsnap, uefi, unsupervised learning, windows
We break down the ASUS Live Update backdoor and explore why these kinds of supply chain attacks are on the rise.
March 15th, 2019 | 38 mins 48 secs
ai, algorithms, bias, chatbot, civicplus, classification, computer vision, conceptnet, data, devops, expert systems, glove, machine learning, natural language processing, neural networks, passwords, plaintext offenders, privacy, programming, python, racism, reinforcement learning, robyn speer, scikit-learn, server builds, supervised learning, sysadmin podcast, tay, techsnap, unsupervised learning, word2vec, zo
Machine learning promises to change many industries, but with these changes come dangerous new risks. Join Jim and Wes as they explore some of the surprising ways bias can creep in and the serious consequences of ignoring these problems.
February 28th, 2019 | 31 mins 23 secs
1password, bcrypt, brute force, burp intruder, compliance, cracking, cryptographic hash, cryptography, devops, encryption, entropy, ethics, hashing algorithms, keepass, lastpass, offline encryption, owasp, password manager, password salt, passwords, pbkdf2, pci-dss, pivot, plaintext, power company, rainbow tables, scrypt, security, security research, sedc, software development, standards, sysadmin podcast, techsnap, utility
We reveal the shady password practices that are all too common at many utility providers, and hash out why salts are essential to proper password storage.
February 14th, 2019 | 40 mins 39 secs
bandwidth, bitorrent, bufferbloat, collectd, command line, firehol, fireqos, firewall, gre, home networking, iptables, latency, monitoring, mpls, munin, nagios, netdata, network discipline, networking, networking engineering, openvpn, prometheus, qdisc, qos, queing discipline, queues, rate limit, routing, sane defaults, tc, tcp, traffic control, traffic shaping, udp, vpn, wireguard, wondershaper
Join Jim and Wes as they battle bufferbloat, latency spikes, and network hogs with some of their favorite tools for traffic shaping, firewalling, and QoS.
January 31st, 2019 | 27 mins 11 secs
avx, cddl, checksum, clone, data integrity, devops, floating point, fpu, freebsd, gpl, hardware acceleration, header, journaling, kernel module, kernel preemption, lfnw, linux, multitasking, openzfs, oracle, raid, simd, snapshot, software license, storage, sysadmin podcast, techsnap, vectorized instructions, zfs, zfs on linux, zol, zvol
Jim and Wes are joined by OpenZFS developer Richard Yao to explain why the recent drama over Linux kernel 5.0 is no big deal, and how his fix for the underlying issue might actually make things faster.
January 20th, 2019 | 33 mins 21 secs
acme, acme v2, apache, automation, bgp, caddy, certbot, csr, devops, dns, domain verification, dovecot, dv, eff, encryption, ev, exim, extended verification, http, https, ietf, isrg, let’s encrypt, mail server, mozilla, networking, nginx, postfix, public key cryptography. x.509, security, ssl, ssl certificates, startssl, sysadmin podcast, techsnap, tls, tls certificates, tls-sni-01, traefik
We welcome Jim to the show, and he and Wes dive deep into all things Let’s Encrypt.