Inquisitive nonsense and other such things.
November 29th, 2018 | 21 mins 17 secs
allan jude, amazon, aws, bgp, devops, dive, docker, evilginx2, fargate, firecracker, kvm, lambda, lsi, mitm, networking, openbgpd, openbsd, proxy, qemu, raid, ripe, rpki, rust, security, sennheiser, serverless, ssl, sysadmin podcast, techsnap, tls, venom, virtual machines, virtualization
We break down Firecracker Amazon’s new open source kvm powered, virtual machine monitor, and explore what makes it different than the options on the market now.
November 22nd, 2018 | 34 mins 55 secs
algo, devops, ipsec, jim salter, linux, networking, private networking, security, ssh, sysadmin podcast, techsnap, vpn, wireguard
WireGuard has a lot of buzz around it and for many good reasons. We’ll explain what WireGuard is specifically, what it can do, and maybe more importantly, what it can’t.
November 15th, 2018 | 43 mins 46 secs
ars technica, bcmupnp_hunter, bgp, bgp hijack, bgp leak, bgp security, botnet, broadcom, china telecom, devops, encryption, format string vulnerability, google, homebrew router, http, http-over-quic, http/3, jim salter, mainone, networking, quic, router, router security, rpki, sanoid, security, spam, sysadmin, techsnap, tls, udp, upnp, wifi, wireguard
Wes is joined by special guest Jim Salter to discuss Google's recent BGP outage and the future of HTTP.
October 25th, 2018 | 36 mins 57 secs
bcc, bpf, bpfilter, bpftrace, bytecode, containers, devops, dtrace, ebpf, instrumentation, kernel, kprobe, linus, linux, lwn, meetbsd, monitoring, networking, observability, pipecut, pipeline, seccomp, security, shell, sysadmin, tcpdump, techsnap, tracing, ultimate plumber, up, virtual machine, xdp
We explain what eBPF is, how it works, and its proud BSD production legacy.
October 11th, 2018 | 33 mins 37 secs
amy marrich, ansible, containers, cri, ipfs, kata containers, kubernetes, magnum, openstack, openstack training artichect, phishing, private cloud, rachel kroll, rfc, rocky, sysadmin, techsnap, uber, writing things down, zun, zuul
We bring in Amy Marrich to break down the building blocks of OpenStack. There are nearly an overwhelming number of ways to manage your infrastructure, and we learn about one of the original tools.
October 4th, 2018 | 34 mins 57 secs
bare metal kubernetes, cloud build, container security, google cloud, iot, kubedirector, kubernetes, kubespy, matt ulasien, ntp, roughtime, sysadmin podcast, techsnap, timekeeping
We bring on our Google Cloud expert and explore the fundamentals, demystify some of the magic, and ask what makes Google Cloud different.
September 27th, 2018 | 23 mins 9 secs
clonezilla, cloudflare, esni, hassh, https, kubeadm, kubernetes, kubernetes the hard way, minikube, salesforce, sni, ssh, sysadmin podcast, techsnap, will boyd
Kubernetes expert Will Boyd joins us to explain the top 3 things to know about Kubernetes, when it’s the right tool for the job, and building highly available production grade clusters.
September 21st, 2018 | 37 mins 14 secs
Jon the Nice Guy joins Wes to discuss all things IPFS. We'll explore what it does, how it works, and why it might be the best hope for a decentralized internet.
September 13th, 2018 | 51 mins 48 secs
TechSNAP progenitor and special guest Allan Jude joins us to talk mobile security, hand out some SSH tips and tricks, and discuss why security shaming works so well.
September 6th, 2018 | 44 mins 56 secs
500 mile email, android, attachments, bgp, china, cia, crypto, cryptography, cve, cvss, devops, diffy, election security, elections, email, espionage, firewall, google, isp, linux, manga, netflix, nsa, openssh, podcast, security, security keys, speck, ssh, tcp, tcp rst, usa, wireshark
We’re joined by a special guest to discuss the failures of campaign security, the disastrous consequences of a mismanaged firewall, and the suspicious case of Speck.
August 29th, 2018 | 23 mins 53 secs
advanced local procedure call, apache, cloudflare, cloudflare resolver, cve-2018-11776, dns over https, doh, mozilla, netdata, sandboxescaper, struts, sysadmin podcast, techsnap, windows 10, zero-day
To make DNS more secure, we must move it to the cloud! At least that’s what Mozilla and Google suggest. We breakdown DNS-over-HTTPS, why it requires a “cloud” component, and the advantages it has over traditional DNS.
August 16th, 2018 | 32 mins 31 secs
cabot, conpty, cpu, foreshadow, hyperthreading, inprivate, intel, l1 cache, l1 terminal fault, l1tf, meltdown, nagios, page tables, pty, sgx, sms, spectre, speculative execution, sysadmin podcast, techsnap, two factor auth, virtualization, windows, windows console
Microsoft’s making radical changes to Windows 10, and a new type of speculative execution attack on Intel’s processors is targeting cloud providers.
August 10th, 2018 | 29 mins 16 secs
buffer overflow, eric holmes, freebsd, github audit, gitrob, homebrew, linux, segmentsmack, sysadmin podcast, techsnap, trufflehog, uefi remote attack, undersea data center
Take down a Linux or FreeBSD box with just 2kpps of traffic, own Homebrew in 30 minutes, and infiltrate an entire network via the Inkjet printers.
August 2nd, 2018 | 31 mins 56 secs
bgp, cisco, duo security, netspectre, nice, s3, sms, spectre, sysadmin podcast, techsnap, telegram, two-factor authentication, verizon leak
Reddit’s Two Factor procedures fail, while Google’s prevents years of attacks. We’ll look at the different approaches, and discuss the fundamental weakness of Reddit’s approach.
August 1st, 2018 | 29 mins 15 secs
cryptoware, facebook, malware, oom, oomd, open source jobs, out-of-memory, psi, ransomeware, samsam, sysadmin podcast, techsnap
Some new tools will give you better insights into your system under extreme load, and we flash back to the days of AOL and discuss the new way social hackers are spreading malware.
July 26th, 2018 | 35 mins 8 secs
apple, bluetooth bug, broadcom, cloudfront, diffie-hellman key exchanges, domain fronting, duplicati, https, https encrypted tunnel, intel, off-site backups, qualcomm
We’ll explain what Domain Fronting is, how activists can use it to avoid censorship, and why large organizations are compelled to disable it.