2.5 Admins

Another example of the downsides of abstraction, whether AI can ever be truly “open source”, and the security benefits and drawbacks of different types of VPN.   Plug Support us on patreon and get an ad-free RSS feed with early episodes sometimes   News/discussion Hackers infect ISPs with malware that steals customers’ credentials Debate over “open source AI” term brings new push to formalize definition   Free consulting We were asked about whether VPNs are a security measure.                 See our contact page for ways to get in touch.  

The discussion dives into AMD's controversial patch for Ryzen 3000 CPUs and scrutinizes the benchmarking of Ryzen 9000 processors. The hosts touch on the difficulties of balancing innovation and stability in kernel development and the challenges of integrating Bcachefs. Cybersecurity compliance issues at Georgia Tech reveal stark consequences for institutions failing to meet security standards. Plus, practical advice is offered on monitoring home networks, especially with the surge of IoT devices.

The discussion kicks off with vulnerabilities in outdated SSH implementations, sparking debate about secure protocols. A staggering incident reveals how a weak RSA key enabled control of a massive virtual power plant. The hosts delve into the intricacies of file synchronization tools and advocate for strong encryption practices. They also explore self-hosted photo management solutions, emphasizing the importance of backups and data control in the cloud. Tune in for insights on enhancing security and navigating modern tech challenges!

Discover how to exploit a Windows security flaw that reverts systems to outdated versions. Delve into a critical IPv6 vulnerability with a high CVSS score and the challenges of inadequate mitigation guidance from Microsoft. Explore alarming CPU vulnerabilities in AMD and Intel chips, including the sync close bug and damaging firmware issues. Learn about the complexities of using Samba on Linux within Active Directory, with practical insights on managing file permissions and access controls.

A serious vulnerability exposes over 200 device models, raising alarms about Secure Boot security. Amazon is fervently pushing to monetize Alexa after losing substantial funds since its launch. Listeners receive valuable tips on how to evaluate open-source software on GitHub, ensuring safe usage. The conversation also emphasizes the importance of using trusted Linux distribution repositories over direct installs, enhancing software management and security.

Jake Williams, a cybersecurity expert renowned for his insights on ransomware, dives into the chaos sparked by a faulty CrowdStrike update that left Windows users in a blue screen frenzy. He shares the hilariously awkward ESXi vulnerability that ransomware gangs are eagerly exploiting. The conversation also touches on the complexities of memory management and the challenges of kernel vulnerabilities. Plus, Jake provides actionable advice on optimizing storage performance with SAS drives and PCIe cards, ensuring your system runs smoother.

Discover how a Bitcoin mine affects a Texas town's health, debate on paying for Windows 10 extended support, and learn about managing router redundancy for better network stability.

A widely-used login system is still using MD5 which is bad news, miscreants took over some domains when they moved from Google to Squarespace, Linksys’ sloppy app isn’t a huge problem but is a bad sign, and why backing up an Android phone in one go is pretty much impossible without root.   Plug Support us on patreon and get an ad-free RSS feed with early episodes sometimes   News New Blast-RADIUS attack breaks 30-year-old protocol used in networks everywhere Squarespace migration linked to DNS hijacking, claims report Linksys Velop routers send Wi-Fi passwords in plaintext to US servers   Free Consulting We were asked about backing up Android phones.       Automox Check out the brand new Autonomous IT podcast. Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts.             See our contact page for ways to get in touch.  

Topics include new UK smart devices law for security, learning ZFS, SMB vs other file sharing methods, and backing up secrets. They explore cost-efficient solutions for off-site data backup and discuss OnePassword Extended Access Management for enhanced security.

Topics in this podcast include Microsoft's failed underwater data center experiment, warnings about compromised WordPress plugins, an Australian ISP's data breach, and tips for remoting into desktop Linux for optimal performance.