Episode 18 – Docker!

Welcome to Episode 18!

News
https://www.theguardian.com/technology/2017/jul/03/facebook-track-browsing-history-california-lawsuit
https://www.theguardian.com/technology/2017/jul/03/notpetya-malware-attacks-ukraine-warrant-retaliation-nato-researcher-tomas-minarik
http://m.windowsitpro.com/cloud/report-openstack-superfan-walmart-tells-partners-avoid-aws-cloud
http://thehackernews.com/2017/06/windows10-controlled-folder-access-ransomware-protection.html?m=1
https://tisiphone.net/2017/06/28/why-notpetya-kept-me-awake-you-should-worry-too/
http://blog.girlscouts.org/2017/06/girl-scouts-and-palo-alto-networks.html

Announcements

LV Hackers – Wednesday night

Chat

We got feedback!  Chris listens too much (we’re worried!), and Alister (Check out his podcast too, the Admin Admin podcast) lives across the pond!

OLED Microservice – https://github.com/gangrif/oled-microservice

Main topic

D O C K E R

Where can you find us?
https://www.ironsysadmin.com
https://www.patreon.com/ironsysadmin
https://www.facebook.com/ironsysadmin
https://www.ironsysadmin.com/youtube
https://www.twitter.com/ironsysadmin
Apple iTunes
Stitcher!

Intro and Outro music credit: Tri Tachyon, Digital MK 2
http://freemusicarchive.org/music/Tri-Tachyon/

Episode 17 – Sensitive Data

Welcome to Episode #17

News
http://www.zdnet.com/article/microsoft-warns-of-destructive-cyberattacks-issues-new-windows-xp-patches/
https://www.androidcentral.com/galaxy-s8-update-gets-rid-black-navigation-bar
https://motherboard.vice.com/en_us/article/the-right-to-repair-movement-is-forcing-apple-to-change
https://fossbytes.com/sambacry-malware-linux/
http://www.ibtimes.co.uk/apple-employees-caught-selling-customers-personal-data-chinese-black-market-1625333
https://blog.qualys.com/securitylabs/2017/06/19/the-stack-clash

Announcements
Stickers!

Chat

Main topic
Access to “private” data as a sysadmin
User’s privacy?

Where can you find us?
https://www.ironsysadmin.com
https://www.patreon.com/ironsysadmin
https://www.facebook.com/ironsysadmin
https://www.ironsysadmin.com/youtube
https://www.twitter.com/ironsysadmin
Apple iTunes
Stitcher!

Intro and Outro music credit: Tri Tachyon, Digital MK 2
http://freemusicarchive.org/music/Tri-Tachyon/

Episode 16 – Health

Welcome to Episode 16

News
https://lists.samba.org/archive/samba-announce/2017/000406.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-7494
https://www.engadget.com/2017/06/02/if-hacking-back-is-law-what-could-possibly-go-wrong/
https://www.theverge.com/2017/6/1/15720814/nasa-curiosity-rover-mars-petrified-mud-lake-gale-crater-habitable-microbial-life
https://news.slashdot.org/story/17/06/05/2040216/videotapes-are-becoming-unwatchable-as-archivists-work-to-save-them
https://tech.slashdot.org/story/17/06/05/1730204/microsoft-leak-reveals-new-windows-10-workstation-edition-for-power-users

Announcements
LV Hackers this week. https://www.meetup.com/LVHackers/events/240111155/

Chat
undrground.org/hmd2016

Main topic
Health, it’s important.
Keep Moving
Fitness trackers
Standing desks?
expensive equipment, chairs, beds, whatnot, may be worth the money.

Where can you find us?
www.ironsysadmin.com
patreon.com/ironsysadmin
https://www.facebook.com/ironsysadmin
https://www.youtube.com/channel/UCsLgL5c-US8XWPuXHHszNzA
https://www.twitter.com/ironsysadmin
Apple iTunes
Stitcher!

Intro and Outro music credit: Tri Tachyon, Digital MK 2
http://freemusicarchive.org/music/Tri-Tachyon/

Episode 15 – WannaCry!

Welcome to Episode 15

News
WannaCry?
http://thehackernews.com/2017/05/wannacry-ransomware-decryption-tool.html
http://thehackernews.com/2017/05/smb-windows-hacking-tools.html
https://insights.hpe.com/articles/you-can-build-your-own-lte-network-over-wi-fi-frequencies-well-not-quite-yet-1705.html
https://boingboing.net/2017/05/22/facebook-offering-vulnerable.html

Announcements
Jason has a new mic!

Chat
Strong beer
Old fashioned mix?
Main topic
Protecting against ransomeware
Recovering from ransomeware
Where can you find us?
www.ironsysadmin.com
https://www.facebook.com/ironsysadmin
https://www.youtube.com/channel/UCsLgL5c-US8XWPuXHHszNzA
https://www.twitter.com/ironsysadmin
Apple iTunes
Stitcher!

Intro and Outro music credit: Tri Tachyon, Digital MK 2
http://freemusicarchive.org/music/Tri-Tachyon/

Episode 14 – Sec in your devops!

Welcome to Episode 14

News
http://thehackernews.com/2017/05/windows-rce-exploit.html
http://fortune.com/2017/05/07/android-listening
https://www.forbes.com/sites/thomasbrewster/2017/05/03/massive-google-gmail-phish-many-victims/#6af6ce8342a1
https://arstechnica.com/security/2017/05/mac-users-installing-popular-dvd-ripper-get-nasty-backdoor-instead

Announcements
Derbycon tickets are on sale!  And gone
Chat
Main topic
Devops for security

Securing your devops

Where can you find us?
www.ironsysadmin.com
https://www.facebook.com/ironsysadmin
https://www.youtube.com/channel/UCsLgL5c-US8XWPuXHHszNzA
https://www.twitter.com/ironsysadmin
Apple iTunes
Stitcher!

Intro and Outro music credit: Tri Tachyon, Digital MK 2
http://freemusicarchive.org/music/Tri-Tachyon/

Episode 13 – Incident Response.

Welcome to Episode 13

News
https://arstechnica.com/security/2017/04/chrome-firefox-and-opera-users-beware-this-isnt-the-apple-com-you-want/
this is horrifying.
https://developers.slashdot.org/story/17/04/23/0339211/flawed-online-tutorials-led-to-vulnerabilities-in-software
https://tech.slashdot.org/story/17/04/23/0027207/should-archiveorg-ignore-robotstxt-directives-and-cache-everything
http://everythingsysadmin.com/2017/04/dnscontrol-blogpost.html
Announcements
Pareon donors are awesome!
Chat
Kubernetes, Amazon ECS.  Jeepin!

Main topic
Incident Response
https://en.wikipedia.org/wiki/Incident_management_(ITSM)

Intro and Outro music credit: Tri Tachyon, Digital MK 2
http://freemusicarchive.org/music/Tri-Tachyon/

Episode 12 – Disaster!

Welcome to Episode 12!

News
https://www.digitalocean.com/company/blog/update-on-the-april-5th-2017-outage/
https://www.theregister.co.uk/2017/04/06/microsoft_windows_10_creators_update/?mt=1491577380488
https://thehackernews.com/2017/03/samsung-galaxy-s8-facial-unlocking.html
https://medium.com/@shadowbrokerss/dont-forget-your-base-867d304a94b1
https://arstechnica.com/security/2017/04/booby-trapped-word-documents-in-the-wild-exploit-critical-microsoft-0day/

Chat
Kubernetes
Jeeps!
What’s this mastodon thing?

Main topic
DR!

Intro and Outro music credit: Tri Tachyon, Digital MK 2
http://freemusicarchive.org/music/Tri-Tachyon/

 

Episode 11 – OpenStack!

Welcome to Episode 11!

News
https://www.undrground.org/node/178
https://www.cnet.com/news/samsung-galaxy-s8-launch-note-7-note-8-battery-blowup-what-change/
http://time.com/4709302/alcohol-heart-disease-risk/  BECAUSE BEER IS GOOD FOR YOU!
https://arstechnica.com/tech-policy/2017/03/senate-votes-to-let-isps-sell-your-web-browsing-history-to-advertisers

Announcements
Ep12, live stream and stuffs.

Chat
openshift origin  http://www.openshift.org

Main topic
Open all the stacks with @fultonj
So what the heck is openstack?
Why wouldn’t i just use Amazon EC2?
What’s Trible-O?
HyperConverge!
Ceph

Intro and Outro music credit: Tri Tachyon, Digital MK 2
http://freemusicarchive.org/music/Tri-Tachyon/

 

Watch this episode on Youtube. https://youtu.be/V9kSZKp31Tc

Episode 10 – Trouble in the Cloud

Welcome to Episode 10

News
https://www.bloomberg.com/news/articles/2017-03-08/microsoft-pledges-to-use-arm-server-chips-threatening-intel-s-dominance
https://mspoweruser.com/firefox-52-will-last-version-firefox-windows-xp-vista/
https://www.cnet.com/news/look-out-windows-android-is-catching-up/
https://www.wired.com/2017/03/atari-chip-set-off-bitter-war-among-neuroscientists/?mbid=nl_3817_p2&CNDID=21798766
http://www.nature.com/nature/journal/v543/n7644/full/nature21371.html
https://nakedsecurity.sophos.com/2016/08/18/nists-new-password-rules-what-you-need-to-know/
https://xkcd.com/936/

Announcements
Feedback
@Gangrif and @Xenophage make a great pair that will titillate ones’s ears! They cover things in the ops and
infosec news categories and topics that are relatable or at least interesting to discuss. It’s not your typical
format of a podcast, but that is what makes it refreshing.

Keep up the great content guys!

Patreon, you guys are awesome
$10 tier.
The face!

Youtube stream for this episode! https://youtu.be/EeD5y34oKNY

Chat

Main topic
Trouble in the cloud, The 2/28/2017 US East 1 S3 outage
https://aws.amazon.com/message/41926/
An Amazon employee was troubleshooting a problem with their S3 billing mechanisms.
A mistake made in an established playbook, took down systems that were not intended to be taken down
The downtime which was intended only for billing systems, took down systems essential in both reads and writes to he S3 API.
This required that some systems be rebooted.
Reboots on the Index and Placement subsystems (two of the systems mentioned as accidentally rebooted) had not been performed for years
Due to the dependencies between these systems, the restarts took quite some time.
The downtime caused some backlog of requests, and these needed to be processed when the systems were once again operational

Remediation
The core issues here were the amount of systems un-intentionally taken offline, and the fact that systems that depended on eachother were taken down at the same time.
Amazon has made changes to their tools to help pervent systems from dropping below service affecting thresholds.
They are also working to remove some of the inter-dependencies.

On top of everything, the the S3 status page depended on the health of the S3 service in order to operate.
This made it difficult for customers to view the status of S3.

Intro and Outro music credit: Tri Tachyon, Digital MK 2
http://freemusicarchive.org/music/Tri-Tachyon/

Episode 9 – Linux Hardening

Welcome Episode 9

News
https://bugs.chromium.org/p/project-zero/issues/detail?id=1139
http://fortune.com/2017/02/21/google-site-search-discontinued/ (sorry for the obnoxious auto-play)
https://www.cyberscoop.com/cellebrite-iphone-6-ufed-samsung-galaxy-facebook-messenger-snapchat/
https://www.bloomberg.com/news/articles/2017-02-23/social-media-is-driving-americans-insane

Announcements
http://www.patreon.com/ironsysadmin
Plans for ironsysadmin.com
https://www.meetup.com/LVHackers/events/237389393/

Chat
http://www.liverpoolecho.co.uk/news/liverpool-news/signs-your-child-computer-hacker-12626527
https://newbiedm.com/rpgkids/


Main topic
Basic Linux Security
build environment
updates
local firewall
disable root ssh logins
Is sudo a blessing, a risk, or a curse?
Totally a facebook post.

Intro and Outro music credit: Tri Tachyon, Digital MK 2
http://freemusicarchive.org/music/Tri-Tachyon/