This week Dave and Gunnar talk about: from Tinder with love, from China with hair bands, and from law enforcement with malware Fail-Safe Got six The CoreOS bet D&G Joke Kit of the Week: Police Hand out Malware-Infected USBs as Prize in Cyber-Security Quiz You will love this conversation with Jaron Lanier, but I can’t describe it Ripple, a Tinder spin-off backed by Match, launches app for professional networking See also: I asked Tinder for my data. It sent me 800 pages of my deepest, darkest...
Feb 08, 2018•32 min
This week Dave and Gunnar talk about: security awareness meets art, the Supreme Court meets fantasy sports, your Party loyalty meets your credit score, and some Russians meet in San Francisco LEDE is the new OpenWRT Both the OpenWrt and LEDE projects are happy to announce their unification under the OpenWrt name Kernel Side-Channel Attacks - CVE-2017-5754 CVE-2017-5753 CVE-2017-5715 Can You Mine Cryptocurrency With a Tesla? A Feasibility Study The Windup Girl The Secret History of the Russian Co...
Jan 18, 2018•45 min
This week Dave and Gunnar talk about: bots that want to be your lawyer, bots that want to waste scammers’ time, bots that want to be your therapist, and bots that want to be your friend Tracksmith Nvidia's AI Creates Artificial Human Faces from Celebrity Photos This Chatbot Will Help You Sue Anyone NDA Lynn : an AI lawyerbot who can review your NDA Send scam emails to this chatbot and it’ll waste their time for you Using chatbots against voicespam: analyzing Lenny’s effectiveness Check the YouTu...
Dec 19, 2017•41 min
This week Dave and Gunnar talk about a communications device nobody wants, domain names nobody wants, TV standards nobody wants, and pictures Facebook wants Open Technology Fund Bully stick D&G Creepy Thing of the Week: This Little Girl Is Not What She Seems The Experience Tube Sexysenator.com, americanjerks.com, toddlerjail.com and other unregistered domains D&G Ad Optimization Experience of the Week: FCC Approves Next-Gen ATSC 3.0 TV Standard Facebook’s New Captcha Test: 'Upload A Clea...
Dec 05, 2017•32 min
This week Dave talks with Adrian Keward about Ansible use in public sector and lessons learned from public sector customers around the globe Welcome Adrian Keward ! British Army Talks DevOps at AnsibleFest London 2017 Ansible helps the US Army with Hurricane Harvey relief Network Rail Red Hat Government Symposium 2017 Red Hat Forum Tokyo Around the world .. but not in 80 Days – Government approaches to Open Source around the world – Part One Around the world .. but not in 80 Days – Government ap...
Nov 21, 2017•15 min
This week Dave and Gunnar talk about: Game Boys in your medical devices, unicode in your domain names, cryptocurrency miners in your browser, and commercial software in your national security systems Just sayin’: 13 'brain belts' where the world's smartest people reside Vogue: 6 Reasons Akron, Ohio, Should Be On Your Radar Pocket Tom Bihn Tristar and Daylight combo Hyatt Regency DFW International Airport 465k patients told to visit doctor to patch critical pacemaker vulnerability Meanwhile: Game...
Oct 31, 2017•40 min
This week Dave and Gunnar talk about repurposing voices, videos, keystrokes, and pacemaker programming Same Waze, Bigger Screen: Waze for Android Auto is Here D&G This Week in Biometrics: Japanese researchers spin up toilet paper gyroscopes for science HT Jim Wildman : Breaking News LyreBird : Copy the voice of anyone HP laptops covertly log user keystrokes, researchers warn Radio Controlled Pacemakers Are Easily Hacked Events have reminders before they are scheduled to begin, but should the...
Aug 31, 2017•40 min
This week Dave and Gunnar talk with Mark Thacker about RHEL 7.4 security and storage, and how to kill a feature Red Hat Enterprise Linux 7.4 bolsters security functionality and performance, Linux container features and automation capabilities for complex IT environments RHEL 7.4 launched Aug. 1, 2017 ( RHEL 7.4 Release Notes for Security here ) Network Bound Disk Encryption USBGuard (See Lucy’s excellent blog post on this) Audit enhancements for human readability (ausearch --format text) OpenSCA...
Aug 22, 2017•39 min
This week Dave and Gunnar talk with Mark Thacker about technical product management and getting things done in open source and proprietary organizations Gopher Sun Microsystems Quantum Corporation Help Wanted: We’re hiring Senior Product Manager, Storage Strategic Partner Product Manager, Business We Give Thanks Mark Thacker for being our special guest star! Special Guest: Mark Thacker....
Aug 15, 2017•13 min
This week Dave and Gunnar talk about things that are ostensibly helpful, but actually dangerous: robotic tutors, voice modulators, autocomplete, and the hellscape of Android VPN apps Creeper sauce is back! Gunnar can’t wait for the delivery of his Tom Bihn Tristar Human vs. robot ping pong Hushme Lets You Talk On The Phone Privately While Pretending To Be Bane Researchers Issue Security Warnings About Several Popular Android VPN Apps The browser setting everyone should turn off now Is The Future...
Aug 01, 2017•41 min
This week Dave and Gunnar talk about: power with stomach fluids (and blood), networks with light, and communication networks without people AirPods The World of Yesterday by Stephan Zweig ( The Grand Budapest Hotel ) Gut juice could power the next generation of health gadgets Self-driving potato Morbid Battery Uses Blood Electrolyte Networking by flickering lights gets some commercial traction Malware Lets a Drone Steal Data by Watching a Computer’s Blinking LED Malware Uses Router LEDs to Steal...
Jul 25, 2017•37 min
Two million recordings of families imperiled by cloud-connected toys' crappy MongoDB CloudPets' woes worsen: Webpages can turn kids' stuffed toys into creepy audio bugs Exploit code has been open sourced here Speaking of remote control… Watch: The first pro football team where fans called the plays. Here's what happened. Satan enters roll-your-own ransomware game Ransomware for Dummies: Anyone Can Do It Dave got published 4x How agencies can take a page out of industry's open playbooks How to ge...
Apr 25, 2017•23 min
Container lab w/Dan Walsh and Bob Kozdemba: A practical introduction to container security Container infrastructure trends: Optimizing for production workloads Container standards Open Container Initiative OCI Image Format Specification Containers image skopeo Containers storage runc buildah - a tool for building OCI images cri-o Hansel and Gretel Special Guest: Dan Walsh....
Apr 18, 2017•24 min
Here goes Old Man Egts again on fingerprints… China to Start Fingerprinting Foreign Visitors Taxi Drones Preparing To Take Off In Dubai Why Japanese people are wrapping themselves up in cloth Airmule Pays You to Let TSA-Certified Shippers Use Your Luggage Space The Airport Jacket: Wearable Luggage For The Frequent Flyer Related? Crypto Countdown Case Cutting Room Floor Upgrade Your Vacation Goals With These Vintage-Style Posters for Time Travelers Artist Put iTunes Terms & Conditions Into Co...
Mar 07, 2017•14 min
This week Dave and Gunnar talk about self destructive behavior and playing with dolls. Subscribe via RSS or iTunes . MalDuino : Crowdfunded BadUSB USB Killer now lets you fry most Lightning and USB-C devices for $55 Related: USB killer compilation Related: How it Works Mission possible: Self-destructing phones are now a reality Hack a Furby to Rickroll Your Friends Through Its Creepy Eyeball Menu German parents told to destroy Cayla dolls over hacking fears Lauren in MagPi: NASA Boot Cuff Surfac...
Feb 28, 2017•20 min
Or you could just use noseprints Heartbeat Could Be Used as Password to Access Electronic Health Records Bruce Schneier says : My guess is that there isn't nearly enough entropy in the reproducible biometric, but I might be surprised. The article's suggestion to use it as a password for health records seems especially problematic. "I'm sorry, but we can't access the patient's health records because he's having a heart attack." With heart-firming embrace, squishy device keeps blood pumping Watch ...
Feb 14, 2017•25 min
Steelers to release 360 game day experience Runkeeper TextExpander These Tiny Jelly Robots Can Precisely Deliver Medicine in the Body . Japan researchers warn of fingerprint theft from ‘peace’ sign New Fingerprinting Techniques Identify Users Across Different Browsers on the Same PC Ultrasound Tracking Could Be Used to Deanonymize Tor Users Cartapping: How Feds Have Spied On Connected Cars For 15 Years D&G Mailbag: @PetrosinoKyle says : this ( Kids Will Soon Be Able to Write Code With Lego )...
Jan 24, 2017•41 min
For HPC, Red Hat Offers Much More than just Linux Red Hat Summit sciences reception ← contact Dan for invite! OpenHPC CCIX OpenStack Scientific Working Group For Singularity see D&G #130 with Jamie Duncan ! Red Hat IaaS Suite for Science and Research Special Guest: Dan McGuan....
Jan 17, 2017•24 min
This week Dave and Gunnar talk about holding your TV for ransom, unwitting cryptocurrency miners, writing email with military precision. 2017 FIRST Robotics Competition STEAMWORKS Game Animation 1Password HealthKit Hacker’s Company Handing Out Code That Can Turn Any Car Into A Self-Driving Vehicle New Scheme: Spread Popcorn Time Ransomware, get chance of free Decryption Key Android Ransomware Infects LG Smart TV Almost related: LG's latest audio product is a speaker you wear around your neck You...
Jan 10, 2017•58 min
Use Red Hat solutions on Azure Introducing Red Hat Cloud Access for Microsoft Azure Government Congrats! Microsoft is the organization with the most open source contributors on GitHub for 2016! Red Hat Cloud Access for Red Hat Certified Cloud Providers like Azure and Azure Government Bi-directional support Red Hat Enterprise Linux guests supported on Microsoft Hyper-V Microsoft Windows and Windows Server guests supported on Red Hat Hypervisors Microsoft Azure Support Added To Red Hat CloudForms ...
Jan 03, 2017•20 min
Electronic Frontier Foundation (EFF) Related: All proceeds from the sale of The Open Organization will be donated to the Electronic Frontier Foundation Dragon Con Lost Wonder Workshop Dash Scratch and Scratch Jr. FIRST Kindle Fire Coby’s recommended reading list Visible Ops Private Cloud: From Virtualization to Private Cloud in 4 Practical Steps Anything by Clayton Christensen D&G (and Coby) Term of the Week: The Dinocorn We Give Thanks Coby Holloway for being our special guest star! Special...
Dec 27, 2016•28 min
You Can Now Use LastPass On Multiple Devices for Free D&G Joke Kit of the Week: Introducing Cold Medicine That Comes in K-Cup Form Freaky Expanding Pill Stays in Your Gut for Days to Deliver Drugs Motorola gets more Lenovo-y: Microsoft apps will be pre-loaded on Lenovo and Motorola Android devices Chinese IoT Firm Siphoned Text Messages, Call Records New Chrome extension automatically negotiates with Comcast for rate discounts Unrelated: Hellekson Law (!) How I got tech support scammers infe...
Dec 20, 2016•36 min
OpenShift Ansible Tower CloudForms Red Hat OpenStack Platform SC16 2016 Formula 1 Petronas Malaysia Grand Prix Singularity Dmac ! Slurm Jeremy Eder on D&G ! Shadowbox We Give Thanks Jamie Duncan for being our special guest star! Special Guest: Jamie Duncan....
Dec 13, 2016•30 min
Agencies Try a Tool That Digs Up What Google Doesn't The Enterprisers Project on machine learning biases Beware of biases in machine learning: One CTO explains why it happens To reduce biases in machine learning start with openly discussing the problem Uber driverless cars in Pittsburgh We Take a Ride in the Self-Driving Uber Now Roaming Pittsburgh Uber’s self-driving cars are already getting into scrapes on the streets of Pittsburgh Video of what it looks like: Steelers go for a driverless ride...
Nov 01, 2016•50 min
This week Dave and Gunnar talk about: DDoS attack on DynDNS, DDoS Coin, and a USB killstick. Gunnar recommends following @MachinePix and @TheJoinery_jp on Twitter Your Nexus phone will soon automatically connect to open Wi-Fi networks Stealing login credentials from a locked PC or Mac just got easier USBee stings air-gapped PCs: Wirelessly leak secrets with a file write Now you can buy a USB stick that destroys anything in its path Someone Is Putting Malicious USB Sticks in Australian Mailboxes ...
Oct 25, 2016•30 min
This week Dave talks with Dan Walsh about CRI-O (née OCID) and forking. “No, I said *skopeo*.” Running production applications in containers: Introducing OCID by Dan Walsh and Mrunal Patel CRI-O Project Open Container Initiative Cloud Native Computing Foundation skopeo libVirt Maha Shaikh wants to study more on forking XFree86 vs. X.org Project Atomic Docker Patches Forking Docker Not We Give Thanks Dan Walsh for being our special guest star! Special Guest: Dan Walsh....
Oct 18, 2016•26 min
This week Dave and Josh Bressers pregame Red Hat Defense in Depth 2016! October 6: Red Hat Defense in Depth Josh’s secure supply chain talk USBGuard Josh’s Red Hat security roadmap talk w/public sector spin Steve Grubb on application whitelisting with fapolicyd (File Access Policy Daemon) Robin Price and Martin Preisler ’s OpenSCAP lab Lucy Kerner on compliance automation with OpenSCAP , Ansible , Satellite , and CloudForms Dan Walsh on container security w/ coloring books Subscribe to Josh and ...
Sep 27, 2016•16 min
This week Dave and Gunnar talk about: DEFCON, United Airlines security case study, and a chaser of meeting hygiene. Moomin Små Grodorna OpenWRT FTW RHV 4 ! Sub-$400, open source, Raspberry Pi-powered screening device for retinal diseases ‘Faceless Recognition System’ Can Identify You Even When You Hide Your Face DNS Tunneling: Getting The Data Out Over Other Peoples’ WiFi Police in D’s hometown giving out “good tickets” FREE DRINKS FROM THE POLICE!! Surprise! Scans Suggest Hackers Put IMSI-Catch...
Sep 20, 2016•34 min
This week Dave catches up with Patrick Casey , Stephen Braswell , and Boris Kurktchiev of the Carolina CloudApps team on they help UNC faculty, students, and administrators get apps up and running faster with OpenShift ! Carolina CloudApps 450 apps on 4 container hosts Almost 600 users Andrew File System Carolina Stories is a collection of stories about people, innovations and milestones at the University of North Carolina at Chapel Hill, due in part to private support (and it’s powered by OpenS...
Sep 13, 2016•41 min
This week is an encore presentation of the Red Hat Summit 2016 Government Luncheon where Dave talks with Chris Hample of Booz Allen Hamilton, Amitava Shee of University of Michigan, and Jeff Blank of the National Security Agency about the power of participation in government and education. Project Jellyfish University of Michigan MedBus Examples of NSA on GitHub National Security Agency Information Assurance Directorate RedhawkSDR SIMP Common Criteria We Give Thanks Chris Hample of Booz Allen Ha...
Sep 06, 2016•48 min
