All Jupiter Broadcasting Shows

Ell sits down with Bryson Bort to discuss pentesting with Scythe, Red Team vs Blue Team operations, and the benefits that a Purple Team might have on the industry.Special Guest: Bryson Bort.Links:ScytheScythe on TwitterScythe Blog: The Purple Team - Organization or Exercise?Security BSidesDEF CONWarGames - WikipediaJupiter Extras: Threat Hunting 101

Bruce Schneier puts his name behind Solid, Firefox starts to roll out DNS over HTTPS as default, and Microsoft's Linux first device ships to customers. Plus a birthday gift to Raspberry Pi users, Collabora comes to mobile, and more.Links:Collabora brings smooth editing to Android and iOS — This release fully integrates the iOS and Android apps into our Collabora Office product family. The Story of Collabora Office for PhonesFirefox continues push to bring DNS over HTTPS by default for US users — The rollout will continue over the next few weeks to confirm no major issues are discovered as this new protocol is enabled for Firefox’s US-based users.Firefox now defaults to DNS-over-HTTPS for US netizens and some are dischuffed about this The Facts: Mozilla’s DNS over HTTPsSecuring Firefox with WebAssembly — RLBox, a new sandboxing technology.Inrupt, Tim Berners-Lee's Solid, and Me — I have joined a company called Inrupt that is working to bring Tim Berners-Lee's distributed data ownership model that is Solid into the mainstream. Building a World-Class Team at InruptMicrosoft's Azure Sphere, its Linux-based microcontroller plus cloud service, hits general availability — Microsoft is making its Azure Sphere secure IoT service generally available after several years of testing and previews.A birthday gift: 2GB Raspberry Pi 4 now only $35 — The fall in RAM prices over the last year has allowed us to cut the price of the 2GB variant of Raspberry Pi 4 to $35.The Raspberry Pi 4 gets a RAM upgrade

Brent sits down with Brandon Bruce, Director of Customer Support at Linux Academy. We explore the world of support, how his former role as professional chef informs his "Kitchen Brigade" approach to building a support team, analytics data's ability to reveal surprising user experience patterns, and more.Special Guest: Brandon Bruce.Links:Linux AcademyHow To Train Your Customers: Changing the Course of Support - BSides San Antonio TXBSidesSATX - BSides San Antonio, TXBrigade de cuisine, Kitchen Brigade - WikipediaHeat by Bill Buford - Goodreads — An Amateur's Adventures as Kitchen Slave, Line Cook, Pasta-Maker, and Apprentice to a Dante-Quoting Butcher in TuscanyKitchen Confidential by Anthony Bourdain - Goodreads — Adventures in the Culinary UnderbellyMedium Raw by Anthony Bourdain - Goodreads — A Bloody Valentine to the World of Food and the People Who CookLinux Bible by Christopher Negus, Christine Bresnahan - GoodreadsBSidesBCS - BSides Bryan/College StationSCaLE - Southern California Linux ExpoBrandon Bruce - @Netcromancer on TwitterBrent Gervais - @brentgervais on Twitter

Whether open source needs to be a complete experience, a deep need for conflict, preferred social media, and our favorite emoji. 00:00:30 Why do you prefer Twitter over Facebook? 00:07:57 Can Linux on the desktop ever succeed without a full ecosystem? 00:18:32 Hoodies: zip or no zip? 00:22:26 Do people really want all the drama to calm down? 00:29:40 What's your most commonly used emoji?

Meet FuryBSD, NetBSD 9.0 has been released, OpenBSD Foundation 2019 campaign wrapup, a retrospective on OmniOS ZFS-based NFS fileservers, NetBSD Fundraising 2020 goal, OpenSSH 8.2 released, and more.## Headlines Meet FuryBSD: A New Desktop BSD Distribution At its heart, FuryBSD is a very simple beast. According to the site, “FuryBSD is a back to basics lightweight desktop distribution based on stock FreeBSD.” It is basically FreeBSD with a desktop environment pre-configured and several apps preinstalled. The goal is to quickly get a FreeBSD-based system running on your computer. You might be thinking that this sounds a lot like a couple of other BSDs that are available, such as NomadBSD and GhostBSD. The major difference between those BSDs and FuryBSD is that FuryBSD is much closer to stock FreeBSD. For example, FuryBSD uses the FreeBSD installer, while others have created their own installers and utilities. As it states on the site, “Although FuryBSD may resemble past graphical BSD projects like PC-BSD and TrueOS, FuryBSD is created by a different team and takes a different approach focusing on tight integration with FreeBSD. This keeps overhead low and maintains compatibility with upstream.” The lead dev also told me that “One key focus for FuryBSD is for it to be a small live media with a few assistive tools to test drivers for hardware.” Currently, you can go to the FuryBSD homepage and download either an XFCE or KDE LiveCD. A GNOME version is in the works. NetBSD 9.0 The NetBSD Project is pleased to announce NetBSD 9.0, the seventeenth major release of the NetBSD operating system. This release brings significant improvements in terms of hardware support, quality assurance, security, along with new features and hundreds of bug fixes. Here are some highlights of this new release. News Roundup OpenBSD Foundation 2019 campaign wrapup Our target for 2019 was CDN$300K. Our community's continued generosity combined with our corporate donors exceeded that nicely. In addition we received the largest single donation in our history, CDN$380K from Smartisan. The return of Google was another welcome event. Altogether 2019 was our most successful campaign to date, yielding CDN$692K in total. We thank all our donors, Iridium (Smartisan), Platinum (Yandex, Google), Gold (Microsoft, Facebook) Silver (2Keys) and Bronze (genua, Thinkst Canary). But especially our community of smaller donors whose contributions are the bedrock of our support. Thank you all! OpenBSD Foundation 2019 Fundraising Goal Exceeded A retrospective on our OmniOS ZFS-based NFS fileservers Our OmniOS fileservers have now been out of service for about six months, which makes it somewhat past time for a retrospective on them. Our OmniOS fileservers followed on our Solaris fileservers, which I wrote a two part retrospective on (part 1, part 2), and have now been replaced by our Linux fileservers. To be honest, I have been sitting on my hands about writing this retrospective because we have mixed feelings about our OmniOS fileservers. I will put the summary up front. OmniOS worked reasonably well for us over its lifespan here and looking back I think it was almost certainly the right choice for us at the time we made that choice (which was 2013 and 2014). However it was not without issues that marred our experience with it in practice, although not enough to make me regret that we ran it (and ran it for as long as we did). Part of our issues are likely due to a design mistake in making our fileservers too big, although this design mistake was probably magnified when we were unable to use Intel 10G-T networking in OmniOS. On the one hand, our OmniOS fileservers worked, almost always reliably. Like our Solaris fileservers before them, they ran quietly for years without needing much attention, delivering NFS fileservice to our Ubuntu servers; specifically, we ran them for about five years (2014 through 2019, although we started migrating away at the end of 2018). Over this time we had only minor hardware issues and not all that many disk failures, and we suffered no data loss (with ZFS checksums likely saving us several times, and certainly providing good reassurances). Our overall environment was easy to manage and was pretty much problem free in the face of things like failed disks. I'm pretty sure that our users saw a NFS environment that was solid, reliable, and performed well pretty much all of the time, which is the important thing. So OmniOS basically delivered the fileserver environment we wanted. NetBSD Fundraising 2020 goal Is it really more than 10 years since we last had an official fundraising drive? Looking at old TNF financial reports I noticed that we have been doing quite well financially over the last years, with a steady stream of small and medium donations, and most of the time only moderate expenditures. The last fundraising drive back in 2009 was a giant success, and we have lived off it until now. OpenSSH 8.2 released February 14, 2020 OpenSSH 8.2 was released on 2020-02-14. It is available from the mirrors listed at https://www.openssh.com/. OpenSSH is a 100% complete SSH protocol 2.0 implementation and includes sftp client and server support. Once again, we would like to thank the OpenSSH community for their continued support of the project, especially those who contributed code or patches, reported bugs, tested snapshots or donated to the project. More information on donations may be found at: https://www.openssh.com/donations.html Beastie Bits FreeNAS vs. Unraid: GRUDGE MATCH! Unix Toolbox Rigs of Rods - OpenBSD Physics Game NYCBug - Dr Vixie Hamilton BSD User group will meet again on March 10th](http://studybsd.com/) BSD Stockholm - Meetup March 3rd 2020 Feedback/Questions Shirkdog - Question Master One - ZFS + Suspend/resume Micah Roth - ZFS write caching Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv Your browser does not support the HTML5 video tag.

Self-Hosted IRC solutions are better than ever. Alan Pope joins us to make a case for the classic way to communicate online and tells us about a modern client for the web, mobile, and desktop you run on your server. Plus, follow up on the new Self-Hosted wiki, and more.Special Guest: Alan Pope.Links:World's Worst Best Drone Retrieval Device - YouTube — Having some fun watching my local flying crew/friends use the World's Worst Best Drone Retrieval Device.You don't need a UI for docker containers — You really don't. Managing small deployments of containers from the command line is easier, faster and 'commit-able'. We're not talking about vast fleets of  containers here but in this article I'll cover how I use docker-compose to manage over 30 docker containers in a simple, scalable and faster way than if you were using a UI.awesome-selfhosted: A list of Free Software network services and web applications which can be hosted locally. — A list of Free Software network services and web applications which can be hosted locally. Selfhosting is the process of hosting and managing applications instead of renting from Software-as-a-Service providersLinux Server Image StatusQuasseldroid IRC Client — Quassel makes IRC fun again – open a client anywhere, connect to your core, and have all your favourite channels and networks right there.The Lounge — A web-based IRC client for the modern world! Once configured and started, users can access it from their browser or mobile device.Install theloungeirc for Linux using the Snap StoreIRCCloudSelf-Hosted Show Wiki — Here you will find an open source, living and breathing repository of resources that we talk about on the Self Hosted podcast.

A radical new way to do SSH authentication, special guest Jeremy Stott joins us to discuss Zero Trust SSH. Plus community news, a concerning issue for makers, an Arch server follow up, and more.Special Guests: Alex Kretzschmar, Brent Gervais, Martin Wimpress, and Neal Gompa.Links:The makers of Jif peanut butter team up with Giphy to try to settle the GIF/Jif debate once and for all Manjaro Linux on Twitter: After several months of development we are happy to announce Manjaro Linux 19.0 release, named Kyria! Get in the C: Raspberry Pi 4 can handle a wider range of USB adapters thanks to revised design’s silent arrival Brunch with Brent: Heather Ellsworth Keep the conversation going join us on Telegram Alex’s Blog: FAA Remote ID Proposal FPVFC FAQ on FAA Remote ID NPRM - December 2019 Proposed Rule: Remote Identification of Unmanned Aircraft Systems Introducing the Uber SSH Certificate Authority - Uber Security + Privacy - Medium bless: Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function How Uber, Facebook, and Netflix Do SSH stoggi/sshrimp: 🦐SSH Certificate Authority in a Lambda (on the barbie) “Zero Trust SSH” - Jeremy Stott (LCA 2020) - YouTube linux.conf.au 2020 | Presentation: Zero Trust SSH Keybase SSH hallow: A SSH Certificate Authority designed for use with AWS native environments BeyondCorp: A New Approach to Enterprise Security – Google Research collascii - A collaborative ascii canvas Ly - a TUI display manager ChrisLAS Cast Ubuntu Podcast

Wes and Ell sit down with James Smith to have an honest conversation about what skills are needed to start a career and be successful in Tech and Information Security.Special Guest: James Smith.Links:OverTheWire Wargames — The wargames offered by the OverTheWire community can help you to learn and practice security concepts in the form of fun-filled games.The Five Pillars of an Information/Cyber Security Professional — "Mastering the basics will make you exceptional."Security Certification Progression Chart 2020Cyber Security Skills Roadmap — Explore this interactive training roadmap to find the right courses for your immediate cyber security skill development and for your long-term career goals.

Microsoft Defender for Linux is in preview, Mozilla's VPN has a secret advantage, and why the community is calling out NPM Inc. Plus a new report about open source security, and more.Links:Microsoft: Linux Defender antivirus now in public preview — We're aiming to protect the modern workplace environment across everything that it is, being Microsoft or non-Microsoft.Microsoft Threat Protection stops attack sprawl and auto-heals enterpriseMicrosoft's Word, Excel and PowerPoint now live under one AppMicrosoft Works - WikipediaFirefox releases an Android app for its VPN service — The Firefox Private Network VPN is powered by Mullvad VPN. Mullvad VPN claims that it won’t log and monitor user data, unlike many other VPN services. The Private Internet Access Android app is being open sourcedIVPN applications are now open sourceTom Scott video about VPNsAndroid 11 Developer Preview — All the changes we found from Android 10 so far.npm struggling to fund FOSS devs — Funding free software is 'still a very unsolved problem' says co-founderThe Linux Foundation and Harvard’s Lab for Innovation Science Release Census for Open Source Software Security — New analysis identifies most widely used software and uncovers critical questions for the future of securing one of the world’s greatest shared resourcesThe Linux Foundation identifies most important open-source software components and their problems — In its latest study, the Linux Foundation's Core Infrastructure Initiative discovered just how prevalent open-source components are in all software and their shared problems and vulnerabilities.Most-used libraries revealedThe Linux Foundation and Harvard’s Lab for Innovation Science release census for open-source software security — Census II (run by Harvard) wanted to look at language-level packages. Their report discusses some of the challenges. One challenge of many is that the JavaScript environment strongly encourages tiny modules, with around 1/2 of all JavaScript packages having at most one function. As a result, when you start counting dependencies, there are far more dependencies in JavaScript (because each module does so little), and so JavaScript tends to dominate.

We explore the potential of heat-assisted magnetic recording and get excited about a possibly persistent L2ARC. Plus Jim's journeys with Clear Linux, and why Ubuntu 18.04.4 is a maintenance release worth talking about.Links:Ubuntu 18.04.4 LTS: here's what's new — It's not as shiny and exciting as entirely new versions, of course, but it does pack in some worthwhile security and bugfix upgrades, as well as support for more and newer hardware.18.04.4 - Ubuntu WikiMobaXterm — Enhanced terminal for Windows with X11 server, tabbed SSH client, network tools and much more.Linux distro review: Intel’s own Clear Linux OS — There's not much question that Clear Linux is your best bet if you want to turn in the best possible benchmark numbers. The question not addressed here is, what's it like to run Clear Linux as a daily driver? We were curious, so we took it for a spin.Clear Linux* Project — Clear Linux OS is an open source, rolling release Linux distribution optimized for performance and security, from the Cloud to the Edge, designed for customization, and manageability.swupd — Documentation for Clear Linux* projectclr-boot-manager: Kernel & Boot Loader ManagementCannot compile zfs for 5.5-rc2 · Issue #9745 · zfsonlinux/zfsPersistent L2ARC might be coming to ZFS on Linux — The primary ARC is kept in system RAM, but an L2ARC device can be created from one or more fast disks. In a ZFS pool with one or more L2ARC devices, when blocks are evicted from the primary ARC in RAM, they are moved down to L2ARC rather than being thrown away entirely. In the past, this feature has been of limited value, both because indexing a large L2ARC occupies system RAM which could have been better used for primary ARC and because L2ARC was not persistent across reboots.Persistent L2ARC by gamanakis · Pull Request #9582 · zfsonlinux/zfs — This feature implements a light-weight persistent L2ARC metadata structure that allows L2ARC contents to be recovered after a reboot. This significantly eases the impact a reboot has on read performance on systems with large caches.LINUX Unplugged 303: Stateless and Dateless — We visit Intel to figure out what Clear Linux is all about and explain a few tricks that make it unique.LINUX Unplugged Blog: Clear Linux OS 2019HAMR don’t hurt ’em: laser-assisted hard drives are coming in 2020 — Although the 2012 "just around the corner" HAMR drives seem to have been mostly vapor, the technology is a reality now. Seagate has been trialing 16TB HAMR drives with select customers for more than a year and claims that the trials have proved that its HAMR drives are "plug and play replacements" for traditional CMR drives, requiring no special care and having no particular poor use cases compared to the drives we're all used to.HAMR Milestone: Seagate Achieves 16TB Capacity on Internal HAMR Test UnitsWestern Digital debuts 18TB and 20TB near-MAMR disk drivesPreviously on TechSNAP 341: HAMR Time — We've got bad news for Wifi-lovers as the KRACK hack takes the world by storm; We have the details & some places to watch to make sure you stay patched. Plus, some distressing revelations about third party access to your personal information through some US mobile carriers. Then we cover the ongoing debate over HAMR, MAMR, and the future of hard drive technology & take a mini deep dive into the world of elliptic curve cryptography.