February 28th, 2019 | 31 mins 23 secs
1password, bcrypt, brute force, burp intruder, compliance, cracking, cryptographic hash, cryptography, devops, encryption, entropy, ethics, hashing algorithms, keepass, lastpass, offline encryption, owasp, password manager, password salt, passwords, pbkdf2, pci-dss, pivot, plaintext, power company, rainbow tables, scrypt, security, security research, sedc, software development, standards, sysadmin podcast, techsnap, utility
We reveal the shady password practices that are all too common at many utility providers, and hash out why salts are essential to proper password storage.
January 20th, 2019 | 33 mins 21 secs
acme, acme v2, apache, automation, bgp, caddy, certbot, csr, devops, dns, domain verification, dovecot, dv, eff, encryption, ev, exim, extended verification, http, https, ietf, isrg, let’s encrypt, mail server, mozilla, networking, nginx, postfix, public key cryptography. x.509, security, ssl, ssl certificates, startssl, sysadmin podcast, techsnap, tls, tls certificates, tls-sni-01, traefik
We welcome Jim to the show, and he and Wes dive deep into all things Let’s Encrypt.
January 10th, 2019 | 26 mins 9 secs
active directory, aws, azure, azure sphere, azure stack, cloud, command line, devops, file sync, hybrid cloud, linux, microsoft, mssql, networking, powershell, powershell core, security, sysadmin podcast, techsnap, virtualization, vpc, vpn, windows
Wes is joined by a special guest to take a look back on the growth and development of Azure in 2018 and discuss some of its unique strengths.
January 3rd, 2019 | 22 mins 22 secs
allan jude, automation, aws, bitcoin, cloud, devops, dropbox, flash, freebsd, information density, jim salter, networking, psn breach, security, security breach, sony, ssl, sysadmin podcast, techsnap, tls, wordpress
In a special new year’s episode we take a moment to reflect on the show’s past, its future, and say goodbye to an old friend.
December 12th, 2018 | 27 mins 28 secs
ceph, christmas, chromium, chromium os, cloud native, cloudevent, cncf, container vulnerability, containers, control plane, crossplane, cve, cve-2018-1002105, devops, elasticsearch, etcd, event driven, faas, gitlab, google, helm, helm hub, holiday, http, ibm, istio, k8s, knative, kube-apiserver, kubecon, kubernetes, metrics, multicloud, networking, openwhisk, rbac, red hat, rook, security, security vulnerability, security.christmas, serverless, storage, sysadmin podcast, techsnap, traefik, websocket
A security vulnerability in Kubernetes causes a big stir, but we’ll break it all down and explain what went wrong.
November 29th, 2018 | 21 mins 17 secs
allan jude, amazon, aws, bgp, devops, dive, docker, evilginx2, fargate, firecracker, kvm, lambda, lsi, mitm, networking, openbgpd, openbsd, proxy, qemu, raid, ripe, rpki, rust, security, sennheiser, serverless, ssl, sysadmin podcast, techsnap, tls, venom, virtual machines, virtualization
We break down Firecracker Amazon’s new open source kvm powered, virtual machine monitor, and explore what makes it different than the options on the market now.
November 22nd, 2018 | 34 mins 55 secs
algo, devops, ipsec, jim salter, linux, networking, private networking, security, ssh, sysadmin podcast, techsnap, vpn, wireguard
WireGuard has a lot of buzz around it and for many good reasons. We’ll explain what WireGuard is specifically, what it can do, and maybe more importantly, what it can’t.
November 15th, 2018 | 43 mins 46 secs
ars technica, bcmupnp_hunter, bgp, bgp hijack, bgp leak, bgp security, botnet, broadcom, china telecom, devops, encryption, format string vulnerability, google, homebrew router, http, http-over-quic, http/3, jim salter, mainone, networking, quic, router, router security, rpki, sanoid, security, spam, sysadmin, techsnap, tls, udp, upnp, wifi, wireguard
Wes is joined by special guest Jim Salter to discuss Google's recent BGP outage and the future of HTTP.
October 25th, 2018 | 36 mins 57 secs
bcc, bpf, bpfilter, bpftrace, bytecode, containers, devops, dtrace, ebpf, instrumentation, kernel, kprobe, linus, linux, lwn, meetbsd, monitoring, networking, observability, pipecut, pipeline, seccomp, security, shell, sysadmin, tcpdump, techsnap, tracing, ultimate plumber, up, virtual machine, xdp
We explain what eBPF is, how it works, and its proud BSD production legacy.
September 6th, 2018 | 44 mins 56 secs
500 mile email, android, attachments, bgp, china, cia, crypto, cryptography, cve, cvss, devops, diffy, election security, elections, email, espionage, firewall, google, isp, linux, manga, netflix, nsa, openssh, podcast, security, security keys, speck, ssh, tcp, tcp rst, usa, wireshark
We’re joined by a special guest to discuss the failures of campaign security, the disastrous consequences of a mismanaged firewall, and the suspicious case of Speck.