2.5 Admins

A widely-used login system is still using MD5 which is bad news, miscreants took over some domains when they moved from Google to Squarespace, Linksys’ sloppy app isn’t a huge problem but is a bad sign, and why backing up an Android phone in one go is pretty much impossible without root.   Plug Support us on patreon and get an ad-free RSS feed with early episodes sometimes   News New Blast-RADIUS attack breaks 30-year-old protocol used in networks everywhere Squarespace migration linked to DNS hijacking, claims report Linksys Velop routers send Wi-Fi passwords in plaintext to US servers   Free Consulting We were asked about backing up Android phones.       Automox Check out the brand new Autonomous IT podcast. Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts.             See our contact page for ways to get in touch.  

Topics include new UK smart devices law for security, learning ZFS, SMB vs other file sharing methods, and backing up secrets. They explore cost-efficient solutions for off-site data backup and discuss OnePassword Extended Access Management for enhanced security.

Topics in this podcast include Microsoft's failed underwater data center experiment, warnings about compromised WordPress plugins, an Australian ISP's data breach, and tips for remoting into desktop Linux for optimal performance.

Vulnerabilities in Asus hardware make us think there should be some regulations about what can be sold as a router, a VPN feature that we hadn’t heard of is removed from Windows, and why we don’t believe that Microsoft will ever take security as seriously as they claim.   Plug Support us on patreon and get an ad-free RSS feed with early episodes sometimes   News/discussion High-severity vulnerabilities affect a wide range of Asus router models Dear Asus router user: You’ve been pwned, thanks to easily exploited flaw Microsoft to remove DirectAccess from Windows, recommends switching to Always On VPN Microsoft fixes hack-me-via-Wi-Fi Windows security hole CVE-2024-30078 Microsoft in damage-control mode, says it will prioritize security over AI Pluralistic: Microsoft pinky swears that THIS TIME they’ll make security a priority             Tailscale Tailscale is an easy to deploy, zero-config, no-fuss VPN that allows you to build simple networks across complex infrastructure. Go to tailscale.com/25a and try Tailscale out for free for up to 100 devices and 3 users, with no credit card required.   Automox Check out the brand new Autonomous IT podcast. Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts.             See our contact page for ways to get in touch.  

In this special episode, Jim and Allan offer free consulting on hard drive availability, USB-C durability, ZFS performance on VPS, cold storage with 2.5" form factor, gaining knowledge, disk enclosure issues, and monitoring Windows servers. They touch on topics like data backup strategies, access control with Tailscale, risks of NVMe SSD enclosures, and setting alerts for Windows Server CPU temperature.

How to prepare for your loved ones to have the access they need if the worst unexpectedly happens, Joe’s weird issues with wireless access points, and dealing with email accounts that shouldn’t exist.   Plug Support us on patreon and get an ad-free RSS feed with early episodes sometimes   News/discussion After you die, your Steam games will be stuck in legal limbo EAP225 AC1350 wireless access point   Free Consulting We were asked about dealing with email accounts that shouldn’t exist.           Tailscale Tailscale is an easy to deploy, zero-config, no-fuss VPN that allows you to build simple networks across complex infrastructure. Go to tailscale.com/25a and try Tailscale out for free for up to 100 devices and 3 users, with no credit card required.   1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at 1password.com/25a         See our contact page for ways to get in touch.  

Microsoft is tightening up SMB security in Windows which might break access to your old NAS, a Cogent root-server mysteriously goes out of sync without them spotting it, and protecting hard drives from electromagnetic pulses.   Plug Support us on patreon and get an ad-free RSS feed with early episodes sometimes   News Installing Windows 11 24H2 might mean binning that old NAS A root-server at the Internet’s core lost touch with its peers. We still don’t know why   Free Consulting We were asked about protecting hard drives from electromagnetic pulses.             Tailscale Tailscale is an easy to deploy, zero-config, no-fuss VPN that allows you to build simple networks across complex infrastructure. Go to tailscale.com/25a and try Tailscale out for free for up to 100 devices and 3 users, with no credit card required.             See our contact page for ways to get in touch.  

Linux kernel developers infected with malware for 2 years, Exchange Server moving to subscription model, struggles with zfsbootmenu and IPv6, discussion on learning unfamiliar topics.

Microsoft’s new Copilot+ feature will record everything you are doing on your computer for some reason, but it will only work on new Arm hardware for now. Plus Apple’s weird iOS bug that restored deleted files and photos, and sharing files over the Internet from a NAS on your LAN.   Plugs Support us on patreon and get an ad-free RSS feed with early episodes sometimes Allan was on Linux Dev Time   News New Windows AI feature records everything you’ve done on your PC Microsoft’s “Copilot+” AI PC requirements are embarrassing for Intel and AMD Apple needs to explain that bug that resurfaced deleted photos   Free Consulting We were asked about sharing files over the Internet from a NAS on your LAN.             Tailscale Tailscale is an easy to deploy, zero-config, no-fuss VPN that allows you to build simple networks across complex infrastructure. Go to tailscale.com/25a and try Tailscale out for free for up to 100 devices and 3 users, with no credit card required.   Automox Check out the brand new Autonomous IT podcast. Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts.             See our contact page for ways to get in touch.  

Why Windows 10 might be gaining users at Windows 11’s expense, an old DHCP option is a potential risk for VPN users, we should probably say “renting” rather than “buying”domains, and avoiding tracking when using IPv6.   Plugs Support us on patreon and get an ad-free RSS feed with early episodes sometimes Jim was on Late Night Linux again   News Has Windows 11 really lost marketshare to Windows 10? Novel attack against virtually all VPN apps neuters their entire purpose   Free Consulting We were asked about avoiding tracking when using IPv6.           Tailscale Tailscale is an easy to deploy, zero-config, no-fuss VPN that allows you to build simple networks across complex infrastructure. Go to tailscale.com/25a and try Tailscale out for free for up to 100 devices and 3 users, with no credit card required.   Kolide Kolide ensures that if a device isn’t secure it can’t access your apps.  It’s Device Trust for Okta. Visit kolide.com/25a to learn more.         See our contact page for ways to get in touch.