Displaying Episode 11 - 20 of 25 in total of TechSNAP with the tag “security”.
-
410: Epyc Encryption
August 23rd, 2019 | 50 mins 7 secs
amd, amd epyc, amd psp, amd rome, bluekeep, bluetooth, bruteforce, certificate lifespace, comet lake, cpu, cpu benchmarks, ctftool security, devops, encryption, entropy, ev certs, extended validation, https, ice lake, intel, intel me, jupiter broadcasting, knob, knob attack, memory encryption, rdp, security, sem, sev, sgx, ssl, ssl certifications, sysadmin podcast, techsnap, text services framework, tls, virtualization, vulnerabilities, windows, worms
It's CPU release season and we get excited about AMD's new line of server chips. Plus our take on AMD's approach to memory encryption, and our struggle to make sense of Intel's Comet Lake line.
-
409: Privacy Perspectives
August 9th, 2019 | 39 mins 14 secs
ad-blocking, adblock plus, advertising, amiunique, apple, bleee, bluetooth, bluetooth le, browser fingerprinting, canvas, chrome, devops, encryption, encryption debate, facebook, firefox, ghostery, google, incognito, ios, iphone, jupiter broadcasting, mozilla, openvpn, panopticlick, privacy, privacy badger, private browsing, security, sysadmin podcast, techsnap, ublock, ublock origin, vpn, webgl, whatsapp, wireguard
We examine why it's so difficult to protect your privacy online and discuss browser fingerprinting, when to use a VPN, and the limits of private browsing.
-
406: SACK Attack
June 23rd, 2019 | 43 mins 33 secs
backdoor, crypto, cryptocurrency, device removal, devops, dram, ecc, encryption, firefox, freebsd, linux, memory, mozilla, mss, networking, openzfs, ping of death, ram, rambleed, raw send, rowhammer, sack panic, sandbox, sandbox escape, security, ssd, targeted attack, tcp, techsnap, trim, zero day, zfs
A new vulnerability may be the next 'Ping of Death'; we explore the details of SACK Panic and break down what you need to know.
-
405: Update Uncertainty
June 11th, 2019 | 30 mins 47 secs
automatic updates, backups, bluekeep, brute force, devops, firewalls, goldbrute, hard drive, industrial control systems, internet worm, microsoft, nas, network security, nsa, out of support, password security, patching, patching policies, rdp, remote desktop, remote desktop protocol, rosewill, security, ssd, storage, supermicro, techsnap, terminal services, updates, vulnerabilities, wannacry, windows, windows update, windows xp, worm
We explore the risky world of exposed RDP, from the brute force GoldBrute botnet to the dangerously worm-able BlueKeep vulnerability.
-
403: Keeping Systems Simple
May 10th, 2019 | 46 mins 32 secs
availability, cryptography, devops, dhcp, disaster recovery, ethernet, firewall, high availability, ipsec, kubernetes, layer 3, lfnw, linux, mesh network, openvpn, quantum computers, reliability, router, rpo, rto, security, simplicity, ssh, subspace, switch, sysadmin podcast, tcp, techsnap, tinc, tunnel, udp, vlan, vpn, wintun, wireguard, zinc
We’re back from LinuxFest Northwest with an update on all things WireGuard, some VLAN myth busting, and the trade-offs of highly available systems.
-
398: Proper Password Procedures
February 28th, 2019 | 31 mins 23 secs
1password, bcrypt, brute force, burp intruder, compliance, cracking, cryptographic hash, cryptography, devops, encryption, entropy, ethics, hashing algorithms, keepass, lastpass, offline encryption, owasp, password manager, password salt, passwords, pbkdf2, pci-dss, pivot, plaintext, power company, rainbow tables, scrypt, security, security research, sedc, software development, standards, sysadmin podcast, techsnap, utility
We reveal the shady password practices that are all too common at many utility providers, and hash out why salts are essential to proper password storage.
-
395: The ACME Era
January 20th, 2019 | 33 mins 21 secs
acme, acme v2, apache, automation, bgp, caddy, certbot, csr, devops, dns, domain verification, dovecot, dv, eff, encryption, ev, exim, extended verification, http, https, ietf, isrg, let’s encrypt, mail server, mozilla, networking, nginx, postfix, public key cryptography. x.509, security, ssl, ssl certificates, startssl, sysadmin podcast, techsnap, tls, tls certificates, tls-sni-01, traefik
We welcome Jim to the show, and he and Wes dive deep into all things Let’s Encrypt.
-
394: All About Azure
January 10th, 2019 | 26 mins 9 secs
active directory, aws, azure, azure sphere, azure stack, cloud, command line, devops, file sync, hybrid cloud, linux, microsoft, mssql, networking, powershell, powershell core, security, sysadmin podcast, techsnap, virtualization, vpc, vpn, windows
Wes is joined by a special guest to take a look back on the growth and development of Azure in 2018 and discuss some of its unique strengths.
-
393: Back to our /roots
January 3rd, 2019 | 22 mins 22 secs
allan jude, automation, aws, bitcoin, cloud, devops, dropbox, flash, freebsd, information density, jim salter, networking, psn breach, security, security breach, sony, ssl, sysadmin podcast, techsnap, tls, wordpress
In a special new year’s episode we take a moment to reflect on the show’s past, its future, and say goodbye to an old friend.
-
392: Keeping up with Kubernetes
December 12th, 2018 | 27 mins 28 secs
ceph, christmas, chromium, chromium os, cloud native, cloudevent, cncf, container vulnerability, containers, control plane, crossplane, cve, cve-2018-1002105, devops, elasticsearch, etcd, event driven, faas, gitlab, google, helm, helm hub, holiday, http, ibm, istio, k8s, knative, kube-apiserver, kubecon, kubernetes, metrics, multicloud, networking, openwhisk, rbac, red hat, rook, security, security vulnerability, security.christmas, serverless, storage, sysadmin podcast, techsnap, traefik, websocket
A security vulnerability in Kubernetes causes a big stir, but we’ll break it all down and explain what went wrong.