Podcasts about dirty pipe

This week in the Security News: Crypto Miners Using Tox P2P Messenger as Command and Control Server, 8-year-old Linux Kernel flaw DirtyCred is nasty as Dirty Pipe, & Janet Jackson music video given CVE for crashing laptops, & more! Segment Resources: Use code "securityweekly" to save 10% off Hack Red Con tickets at https://www.hackredcon.com/   Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw753

This week in the Security News: Crypto Miners Using Tox P2P Messenger as Command and Control Server, 8-year-old Linux Kernel flaw DirtyCred is nasty as Dirty Pipe, & Janet Jackson music video given CVE for crashing laptops, & more! Segment Resources: Use code "securityweekly" to save 10% off Hack Red Con tickets at https://www.hackredcon.com/   Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw753

There's a lot of worry about "fakes" especially in a world rapidly adopting AI/ML, so it's time for solutions. "Solid" is the W3C open standard, extending HTTPS, to upgrade the Web with security paradigms that solve for data integrity. Distributed systems naturally break through digital moats, free control through proper ownership, thus helping expand and achieve the best of the Internet. Segment Resources: https://solidproject.org/ https://github.com/inrupt https://www.flyingpenguin.com/?p=29523 https://alltechishuman.org/davi-ottenheimer https://www.schneier.com/blog/archives/2020/02/inrupt_tim_bern.html https://events.inrupt.com/dublin   This week in the Security News: Crypto Miners Using Tox P2P Messenger as Command and Control Server, 8-year-old Linux Kernel flaw DirtyCred is nasty as Dirty Pipe, & Janet Jackson music video given CVE for crashing laptops, & more! Segment Resources: Use code "securityweekly" to save 10% off Hack Red Con tickets at https://www.hackredcon.com/   Visit https://www.securityweekly.com/psw for all the latest episodes! Visit https://securityweekly.com/acm to sign up for a demo or buy our AI Hunter! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly   Show Notes: https://securityweekly.com/psw753

There's a lot of worry about "fakes" especially in a world rapidly adopting AI/ML, so it's time for solutions. "Solid" is the W3C open standard, extending HTTPS, to upgrade the Web with security paradigms that solve for data integrity. Distributed systems naturally break through digital moats, free control through proper ownership, thus helping expand and achieve the best of the Internet. Segment Resources: https://solidproject.org/ https://github.com/inrupt https://www.flyingpenguin.com/?p=29523 https://alltechishuman.org/davi-ottenheimer https://www.schneier.com/blog/archives/2020/02/inrupt_tim_bern.html https://events.inrupt.com/dublin   This week in the Security News: Crypto Miners Using Tox P2P Messenger as Command and Control Server, 8-year-old Linux Kernel flaw DirtyCred is nasty as Dirty Pipe, & Janet Jackson music video given CVE for crashing laptops, & more! Segment Resources: Use code "securityweekly" to save 10% off Hack Red Con tickets at https://www.hackredcon.com/   Visit https://www.securityweekly.com/psw for all the latest episodes! Visit https://securityweekly.com/acm to sign up for a demo or buy our AI Hunter! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly   Show Notes: https://securityweekly.com/psw753

Twitter Edits You 2022-04-06. Twitter reverts change that left blank spaces in place of deleted embedded tweets. How does Kevin Marks code his website? Elon Musk Sued Over Delay in Disclosing Twitter (TWTR) Stake. Elon Musk cancels town hall with Twitter employees after declining Twitter board seat. In major reversal, Elon Musk won't join Twitter board. Ukrainian power grid 'lucky' to withstand Russian cyber-attack. TikTok's Russia strategy: Censorship, loopholes and propaganda. Internet 'algospeak' is changing our language in real time, from 'nip nops' to 'le dollar bean'. The mystery of ⍼, a Unicode character of unknown purpose. How to Protect Children From Big Tech Companies. Gilbert Gottfried Was the Voice of Clippy. Big Tech Is Pouring $925 Million Into Carbon Removal. Intel sets 2040 net zero goal for carbon emissions. Amazon's IMDb TV changes its name to Freevee. CNN+ struggles to lure viewers in its early days, drawing fewer than 10,000 daily users. Mark Zuckerberg Security Costs $26.8 Million for Meta. Google quietly launches its awaited 'Switch to Android' app on iOS. Google Fi drops prices for its unlimited plans and adds more data. Google now lets you search for things you can't describe — by starting with a picture. Google joins Samsung in working with iFixit on a self-repair program. Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. DALL·E 2 can create original, realistic images and art from a text description. New York's NFT vending machine. Newmark puts $50 million into "cyber civil defense". Roomba sucks up dogs tail. 10 Audiobooks Narrators You Need To Follow on TikTok. How to Be Perfect: The Correct Answer to Every Moral Question by Michael Schur. Allow Me to Retort: A Black Guy's Guide to the Constitution by Elie Mystal. The Sandman: Book of Dreams by Stefano Massini. The Lehman Trilogy. Our Country Friends by Gary Shteyngart. The Sentence by Louise Erdrich. Picks: Stacey - Echo by Thomas Olde Heuvelt Jeff - Shein $100b valuation Kevin - ElectricityMap.org: Carbon intensity energy map Kevin - indieblog.page: Random indieweb page Kevin - Web3 is going just great Hosts: Leo Laporte, Jeff Jarvis, and Stacey Higginbotham Guest: Kevin Marks Download or subscribe to this show at https://twit.tv/shows/this-week-in-google. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: nureva.com eightsleep.com/twig itpro.tv/twit promo code TWIT30

Twitter Edits You 2022-04-06. Twitter reverts change that left blank spaces in place of deleted embedded tweets. How does Kevin Marks code his website? Elon Musk Sued Over Delay in Disclosing Twitter (TWTR) Stake. Elon Musk cancels town hall with Twitter employees after declining Twitter board seat. In major reversal, Elon Musk won't join Twitter board. Ukrainian power grid 'lucky' to withstand Russian cyber-attack. TikTok's Russia strategy: Censorship, loopholes and propaganda. Internet 'algospeak' is changing our language in real time, from 'nip nops' to 'le dollar bean'. The mystery of ⍼, a Unicode character of unknown purpose. How to Protect Children From Big Tech Companies. Gilbert Gottfried Was the Voice of Clippy. Big Tech Is Pouring $925 Million Into Carbon Removal. Intel sets 2040 net zero goal for carbon emissions. Amazon's IMDb TV changes its name to Freevee. CNN+ struggles to lure viewers in its early days, drawing fewer than 10,000 daily users. Mark Zuckerberg Security Costs $26.8 Million for Meta. Google quietly launches its awaited 'Switch to Android' app on iOS. Google Fi drops prices for its unlimited plans and adds more data. Google now lets you search for things you can't describe — by starting with a picture. Google joins Samsung in working with iFixit on a self-repair program. Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. DALL·E 2 can create original, realistic images and art from a text description. New York's NFT vending machine. Newmark puts $50 million into "cyber civil defense". Roomba sucks up dogs tail. 10 Audiobooks Narrators You Need To Follow on TikTok. How to Be Perfect: The Correct Answer to Every Moral Question by Michael Schur. Allow Me to Retort: A Black Guy's Guide to the Constitution by Elie Mystal. The Sandman: Book of Dreams by Stefano Massini. The Lehman Trilogy. Our Country Friends by Gary Shteyngart. The Sentence by Louise Erdrich. Picks: Stacey - Echo by Thomas Olde Heuvelt Jeff - Shein $100b valuation Kevin - ElectricityMap.org: Carbon intensity energy map Kevin - indieblog.page: Random indieweb page Kevin - Web3 is going just great Hosts: Leo Laporte, Jeff Jarvis, and Stacey Higginbotham Guest: Kevin Marks Download or subscribe to this show at https://twit.tv/shows/this-week-in-google. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: nureva.com eightsleep.com/twig itpro.tv/twit promo code TWIT30

Twitter Edits You 2022-04-06. Twitter reverts change that left blank spaces in place of deleted embedded tweets. How does Kevin Marks code his website? Elon Musk Sued Over Delay in Disclosing Twitter (TWTR) Stake. Elon Musk cancels town hall with Twitter employees after declining Twitter board seat. In major reversal, Elon Musk won't join Twitter board. Ukrainian power grid 'lucky' to withstand Russian cyber-attack. TikTok's Russia strategy: Censorship, loopholes and propaganda. Internet 'algospeak' is changing our language in real time, from 'nip nops' to 'le dollar bean'. The mystery of ⍼, a Unicode character of unknown purpose. How to Protect Children From Big Tech Companies. Gilbert Gottfried Was the Voice of Clippy. Big Tech Is Pouring $925 Million Into Carbon Removal. Intel sets 2040 net zero goal for carbon emissions. Amazon's IMDb TV changes its name to Freevee. CNN+ struggles to lure viewers in its early days, drawing fewer than 10,000 daily users. Mark Zuckerberg Security Costs $26.8 Million for Meta. Google quietly launches its awaited 'Switch to Android' app on iOS. Google Fi drops prices for its unlimited plans and adds more data. Google now lets you search for things you can't describe — by starting with a picture. Google joins Samsung in working with iFixit on a self-repair program. Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. DALL·E 2 can create original, realistic images and art from a text description. New York's NFT vending machine. Newmark puts $50 million into "cyber civil defense". Roomba sucks up dogs tail. 10 Audiobooks Narrators You Need To Follow on TikTok. How to Be Perfect: The Correct Answer to Every Moral Question by Michael Schur. Allow Me to Retort: A Black Guy's Guide to the Constitution by Elie Mystal. The Sandman: Book of Dreams by Stefano Massini. The Lehman Trilogy. Our Country Friends by Gary Shteyngart. The Sentence by Louise Erdrich. Picks: Stacey - Echo by Thomas Olde Heuvelt Jeff - Shein $100b valuation Kevin - ElectricityMap.org: Carbon intensity energy map Kevin - indieblog.page: Random indieweb page Kevin - Web3 is going just great Hosts: Leo Laporte, Jeff Jarvis, and Stacey Higginbotham Guest: Kevin Marks Download or subscribe to this show at https://twit.tv/shows/this-week-in-google. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: nureva.com eightsleep.com/twig itpro.tv/twit promo code TWIT30

Twitter Edits You 2022-04-06. Twitter reverts change that left blank spaces in place of deleted embedded tweets. How does Kevin Marks code his website? Elon Musk Sued Over Delay in Disclosing Twitter (TWTR) Stake. Elon Musk cancels town hall with Twitter employees after declining Twitter board seat. In major reversal, Elon Musk won't join Twitter board. Ukrainian power grid 'lucky' to withstand Russian cyber-attack. TikTok's Russia strategy: Censorship, loopholes and propaganda. Internet 'algospeak' is changing our language in real time, from 'nip nops' to 'le dollar bean'. The mystery of ⍼, a Unicode character of unknown purpose. How to Protect Children From Big Tech Companies. Gilbert Gottfried Was the Voice of Clippy. Big Tech Is Pouring $925 Million Into Carbon Removal. Intel sets 2040 net zero goal for carbon emissions. Amazon's IMDb TV changes its name to Freevee. CNN+ struggles to lure viewers in its early days, drawing fewer than 10,000 daily users. Mark Zuckerberg Security Costs $26.8 Million for Meta. Google quietly launches its awaited 'Switch to Android' app on iOS. Google Fi drops prices for its unlimited plans and adds more data. Google now lets you search for things you can't describe — by starting with a picture. Google joins Samsung in working with iFixit on a self-repair program. Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. DALL·E 2 can create original, realistic images and art from a text description. New York's NFT vending machine. Newmark puts $50 million into "cyber civil defense". Roomba sucks up dogs tail. 10 Audiobooks Narrators You Need To Follow on TikTok. How to Be Perfect: The Correct Answer to Every Moral Question by Michael Schur. Allow Me to Retort: A Black Guy's Guide to the Constitution by Elie Mystal. The Sandman: Book of Dreams by Stefano Massini. The Lehman Trilogy. Our Country Friends by Gary Shteyngart. The Sentence by Louise Erdrich. Picks: Stacey - Echo by Thomas Olde Heuvelt Jeff - Shein $100b valuation Kevin - ElectricityMap.org: Carbon intensity energy map Kevin - indieblog.page: Random indieweb page Kevin - Web3 is going just great Hosts: Leo Laporte, Jeff Jarvis, and Stacey Higginbotham Guest: Kevin Marks Download or subscribe to this show at https://twit.tv/shows/this-week-in-google. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: nureva.com eightsleep.com/twig itpro.tv/twit promo code TWIT30

Twitter Edits You 2022-04-06. Twitter reverts change that left blank spaces in place of deleted embedded tweets. How does Kevin Marks code his website? Elon Musk Sued Over Delay in Disclosing Twitter (TWTR) Stake. Elon Musk cancels town hall with Twitter employees after declining Twitter board seat. In major reversal, Elon Musk won't join Twitter board. Ukrainian power grid 'lucky' to withstand Russian cyber-attack. TikTok's Russia strategy: Censorship, loopholes and propaganda. Internet 'algospeak' is changing our language in real time, from 'nip nops' to 'le dollar bean'. The mystery of ⍼, a Unicode character of unknown purpose. How to Protect Children From Big Tech Companies. Gilbert Gottfried Was the Voice of Clippy. Big Tech Is Pouring $925 Million Into Carbon Removal. Intel sets 2040 net zero goal for carbon emissions. Amazon's IMDb TV changes its name to Freevee. CNN+ struggles to lure viewers in its early days, drawing fewer than 10,000 daily users. Mark Zuckerberg Security Costs $26.8 Million for Meta. Google quietly launches its awaited 'Switch to Android' app on iOS. Google Fi drops prices for its unlimited plans and adds more data. Google now lets you search for things you can't describe — by starting with a picture. Google joins Samsung in working with iFixit on a self-repair program. Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. DALL·E 2 can create original, realistic images and art from a text description. New York's NFT vending machine. Newmark puts $50 million into "cyber civil defense". Roomba sucks up dogs tail. 10 Audiobooks Narrators You Need To Follow on TikTok. How to Be Perfect: The Correct Answer to Every Moral Question by Michael Schur. Allow Me to Retort: A Black Guy's Guide to the Constitution by Elie Mystal. The Sandman: Book of Dreams by Stefano Massini. The Lehman Trilogy. Our Country Friends by Gary Shteyngart. The Sentence by Louise Erdrich. Picks: Stacey - Echo by Thomas Olde Heuvelt Jeff - Shein $100b valuation Kevin - ElectricityMap.org: Carbon intensity energy map Kevin - indieblog.page: Random indieweb page Kevin - Web3 is going just great Hosts: Leo Laporte, Jeff Jarvis, and Stacey Higginbotham Guest: Kevin Marks Download or subscribe to this show at https://twit.tv/shows/this-week-in-google. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsors: nureva.com eightsleep.com/twig itpro.tv/twit promo code TWIT30

Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. Unlimited Google Photos backup returns as exclusive Google One tier for T-Mobile customers. Google joins Samsung in working with iFixit on a self-repair program. Essential's never-released smart speaker surfaces running Android on its circular display. Essential Inc never released smart speaker prototype unique. The Vivo X Fold has a fingerprint reader on both screens. Exclusive: OnePlus working on its first foldable smartphone; will be identical to OPPO Find N. Google Lens 'multi-search' lets you ask questions about photos, now in beta on Android and iOS. Go beyond the search box: Introducing multi-search. Google Play will hide and block downloads for outdated apps starting later this year. Google Play pilot program will let Japanese gamers play real claw machines to win real prizes. An issue with Google Messages category sorting. How do I share location in Android Auto? A frustration with Google Maps Discovery. Read our show notes here: https://bit.ly/3O8nrEt Hosts: Jason Howell, Ron Richards, and Huyen Tue Dao Subscribe to All About Android at https://twit.tv/shows/all-about-android. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsor: itpro.tv/allaboutandroid promo code AAA30

Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. Unlimited Google Photos backup returns as exclusive Google One tier for T-Mobile customers. Google joins Samsung in working with iFixit on a self-repair program. Essential's never-released smart speaker surfaces running Android on its circular display. Essential Inc never released smart speaker prototype unique. The Vivo X Fold has a fingerprint reader on both screens. Exclusive: OnePlus working on its first foldable smartphone; will be identical to OPPO Find N. Google Lens 'multi-search' lets you ask questions about photos, now in beta on Android and iOS. Go beyond the search box: Introducing multi-search. Google Play will hide and block downloads for outdated apps starting later this year. Google Play pilot program will let Japanese gamers play real claw machines to win real prizes. An issue with Google Messages category sorting. How do I share location in Android Auto? A frustration with Google Maps Discovery. Read our show notes here: https://bit.ly/3O8nrEt Hosts: Jason Howell, Ron Richards, and Huyen Tue Dao Subscribe to All About Android at https://twit.tv/shows/all-about-android. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsor: itpro.tv/allaboutandroid promo code AAA30

Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. Unlimited Google Photos backup returns as exclusive Google One tier for T-Mobile customers. Google joins Samsung in working with iFixit on a self-repair program. Essential's never-released smart speaker surfaces running Android on its circular display. Essential Inc never released smart speaker prototype unique. The Vivo X Fold has a fingerprint reader on both screens. Exclusive: OnePlus working on its first foldable smartphone; will be identical to OPPO Find N. Google Lens 'multi-search' lets you ask questions about photos, now in beta on Android and iOS. Go beyond the search box: Introducing multi-search. Google Play will hide and block downloads for outdated apps starting later this year. Google Play pilot program will let Japanese gamers play real claw machines to win real prizes. An issue with Google Messages category sorting. How do I share location in Android Auto? A frustration with Google Maps Discovery. Read our show notes here: https://bit.ly/3O8nrEt Hosts: Jason Howell, Ron Richards, and Huyen Tue Dao Subscribe to All About Android at https://twit.tv/shows/all-about-android. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsor: itpro.tv/allaboutandroid promo code AAA30

Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. Unlimited Google Photos backup returns as exclusive Google One tier for T-Mobile customers. Google joins Samsung in working with iFixit on a self-repair program. Essential's never-released smart speaker surfaces running Android on its circular display. Essential Inc never released smart speaker prototype unique. The Vivo X Fold has a fingerprint reader on both screens. Exclusive: OnePlus working on its first foldable smartphone; will be identical to OPPO Find N. Google Lens 'multi-search' lets you ask questions about photos, now in beta on Android and iOS. Go beyond the search box: Introducing multi-search. Google Play will hide and block downloads for outdated apps starting later this year. Google Play pilot program will let Japanese gamers play real claw machines to win real prizes. An issue with Google Messages category sorting. How do I share location in Android Auto? A frustration with Google Maps Discovery. Read our show notes here: https://bit.ly/3O8nrEt Hosts: Jason Howell, Ron Richards, and Huyen Tue Dao Subscribe to All About Android at https://twit.tv/shows/all-about-android. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsor: itpro.tv/allaboutandroid promo code AAA30

Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. Unlimited Google Photos backup returns as exclusive Google One tier for T-Mobile customers. Google joins Samsung in working with iFixit on a self-repair program. Essential's never-released smart speaker surfaces running Android on its circular display. Essential Inc never released smart speaker prototype unique. The Vivo X Fold has a fingerprint reader on both screens. Exclusive: OnePlus working on its first foldable smartphone; will be identical to OPPO Find N. Google Lens 'multi-search' lets you ask questions about photos, now in beta on Android and iOS. Go beyond the search box: Introducing multi-search. Google Play will hide and block downloads for outdated apps starting later this year. Google Play pilot program will let Japanese gamers play real claw machines to win real prizes. An issue with Google Messages category sorting. How do I share location in Android Auto? A frustration with Google Maps Discovery. Read our show notes here: https://bit.ly/3O8nrEt Hosts: Jason Howell, Ron Richards, and Huyen Tue Dao Subscribe to All About Android at https://twit.tv/shows/all-about-android. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsor: itpro.tv/allaboutandroid promo code AAA30

Latest Android 12 QPR3 Beta includes fix for Dirty Pipe exploit on Pixel 6. Unlimited Google Photos backup returns as exclusive Google One tier for T-Mobile customers. Google joins Samsung in working with iFixit on a self-repair program. Essential's never-released smart speaker surfaces running Android on its circular display. Essential Inc never released smart speaker prototype unique. The Vivo X Fold has a fingerprint reader on both screens. Exclusive: OnePlus working on its first foldable smartphone; will be identical to OPPO Find N. Google Lens 'multi-search' lets you ask questions about photos, now in beta on Android and iOS. Go beyond the search box: Introducing multi-search. Google Play will hide and block downloads for outdated apps starting later this year. Google Play pilot program will let Japanese gamers play real claw machines to win real prizes. An issue with Google Messages category sorting. How do I share location in Android Auto? A frustration with Google Maps Discovery. Read our show notes here: https://bit.ly/3O8nrEt Hosts: Jason Howell, Ron Richards, and Huyen Tue Dao Subscribe to All About Android at https://twit.tv/shows/all-about-android. Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Sponsor: itpro.tv/allaboutandroid promo code AAA30

So you think Linux is secure? In this video we'll escalate our privileges on Linux to become root. // MENU // 0:00:00 ▶️ Introduction 0:01:15 ▶️ Jump to the demo 0:01:38 ▶️ About Alexis, background and experience 0:07:38 ▶️ Starting HackerSploit 0:08:47 ▶️ Alexis and Linux 0:11:03 ▶️ Which is the preferred Linux distribution? 0:12:01 ▶️ Recommended Linux distribution for beginners 0:12:33 ▶️ LinuxJourney.com 0:12:01 ▶️ Favourite hacking distribution 0:13:51 ▶️ The PenTester Framework 0:15:21 ▶️ Best method to install a distribution 0:16:46 ▶️ Recommendations 0:18:29 ▶️ Recommended distribution for real-world pentesting 0:21:44 ▶️ Starting YouTube channel 0:22:18 ▶️ Windows vs MacOS vs Linux 0:23:30 ▶️ Recommended laptop 0:27:16 ▶️ Other advice 0:28:38 ▶️ Recommended certifications 0:30:46 ▶️ Recommended pre-requisite skills 0:33:13 ▶️ HackerSploit Linux Essential for Hackers 0:34:01 ▶️ HackerSploit Windows 0:34:26 ▶️ HackerSploit Networking Fundamentals 0:35:11 ▶️ Get your fundamentals right 0:35:29 ▶️ Dirty Pipe exploit presentation 0:43:52 ▶️ Dirty Pipe exploit demo 0:55:14 ▶️ Exploit 1 0:57:03 ▶️ Exploit 2 1:00:23 ▶️ Learning how to change scripts 1:02:14 ▶️ Recommended script language 1:04:00 ▶️ Thoughts on Golang 1:04:44 ▶️ Recommendations for learning languages 1:05:41 ▶️ Closing thoughts // HackerSploit Linux exploit scripts // Dirty Pipe Github page: https://github.com/AlexisAhmed/CVE-20... Dirty Pipe Blog: https://dirtypipe.cm4all.com/ CVE details: https://cve.mitre.org/cgi-bin/cvename... // Hackersploit Videos // Pentesters Framework: https://www.youtube.com/watch?v=Bx3RL... Linux for hackers: https://www.youtube.com/watch?v=T0Db6... Windows for hackers: Nmap series: https://www.youtube.com/watch?v=5MTZd... Linux exploitation: https://www.youtube.com/watch?v=i-dQw... Windows exploitation: https://www.youtube.com/watch?v=Bzmlj... // Books // Privilege Escalation Techniques: https://amzn.to/3xcPHjf Automate the boring the stuff with Python: https://amzn.to/3LQA5Gl // MY STUFF // https://www.amazon.com/shop/davidbombal // SOCIAL // Discord: https://discord.com/invite/usKSyzb Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube: https://www.youtube.com/davidbombal // HackerSploit // LinkedIn: https://www.linkedin.com/in/alexisahmed/ YouTube: https://www.youtube.com/c/HackerSploit Twitter: https://twitter.com/HackerSploit Academy: https://hackersploit.academy/ // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com linux kali linux kali linux hack linux hacking hacker linux exploit linux privilege escalation linux hack linux dirty pipe linux dirty pipe explained linux dirty pipe cve linux dirty pipe exploit linux privilege escalation ethical hacking linux priv esc priv escalation linux hackersploit hacking linux exploit linux dirty pipe dirty pipe linux dirty pipe cve linux vulnerability linux security linux exploits linux kernel linux kernel vulnerablity dirty pipe vulnerability #linux #linuxhack #hacking

With privilege escalation vulnerabilities like Dirty Pipe posing potentially critical impacts, it is more important than ever to learn how adversaries exploit these flaws. Security researcher Carlos Polop joins us on this episode of 401 Access Denied to discuss his valuable contribution to the penetration testing community: Privilege Escalation Awesome Scripts Suite (PEASS). Gain insights on how pen testers can leverage LinPEAS and WinPEAS to exploit vulnerabilities in CTF environments. Plus, hear how you can contribute to Carlos' research. Follow Carlos! ~Twitter  Check Out Carlos' Book: ~HackTricks Follow Carlos on GitHub and submit pull requests: ~Github  Join Carlos' Discord Community: ~CarlosPolop's Hacking Society  Follow us on Social!! ~Cybrary Twitter ~Delinea Twitter ~Instagram ~Facebook ~YouTube ~Cybrary LinkedIn ~Delinea LinkedIn

Got suggestions, complaints, or feedback? Tell us at podcast@secureideas.com or reach out on Twitter:        twitter.com/sweaney       twitter.com/RonJonArod twitter.com/hotdogggitty twitter.com/secureideas Episode Links: FBI Warns Of Preliminary Russian Cyber Activity Against American Companies White House Says Reports of an American Cyberwar With Russia Are Greatly Exaggerated DIY Volunteers Are Repairing Ukraine's Destroyed Internet Infrastructure War Is Calling Crypto's ‘Neutrality' Into Question Ransomware Payments, Demands Rose Dramatically in 2021 This is how much the average Conti hacking group member earns a month Researcher uses Dirty Pipe exploit to fully root a Pixel 6 Pro and Samsung S22 Pandemic Leaves Firms Scrambling for Cybersecurity Specialists Join our Professionally Evil Slack Team at www.professionallyevil.com   Our real jobs pay for our time to do this, so if you have opportunities around penetration testing or risk management, we'd love the chance to work with you!

A lot of news has been released lately about the Dirty Pipe vulnerability in the Linux OS. How is this related to UNIX? Listen in to hear Rik Farrow, the world's most experienced and knowledgeable expert on UNIX and Linux, explain! Rik will provide his advice about careers in UNIX and Linux security, and answer a wide range of questions Rebecca has received from listeners about these topics. A few of the questions covered include: • How many versions of UNIX are there? • What makes Linux different than UNIX? • Which has more security capabilities; UNIX, Linux, Windows, Android or iOS? • How many web servers run UNIX? Or Linux? Why? • Basically, what is the Dirty Pipe vulnerability? • What types of devices are impacted by Dirty Pipe? • How to avoid being a victim of the Dirty Pipe exploit? • What about running shell scripts? Can that be done securely? Tune in to hear Rik provide valuable insights to these and many more questions. See more about Rik Farrow at http://rikfarrow.com/about/ #UNIX #Linux #DirtyPipe #Cybersecurity #PersonalData #RiskManagement #Privacy #TechCareers #SecurityCareers

A lot of news has been released lately about the Dirty Pipe vulnerability in the Linux OS. How is this related to UNIX? Listen in to hear Rik Farrow, the world's most experienced and knowledgeable expert on UNIX and Linux, explain! Rik will provide his advice about careers in UNIX and Linux security, and answer a wide range of questions Rebecca has received from listeners about these topics. A few of the questions covered include: • How many versions of UNIX are there? • What makes Linux different than UNIX? • Which has more security capabilities; UNIX, Linux, Windows, Android or iOS? • How many web servers run UNIX? Or Linux? Why? • Basically, what is the Dirty Pipe vulnerability? • What types of devices are impacted by Dirty Pipe? • How to avoid being a victim of the Dirty Pipe exploit? • What about running shell scripts? Can that be done securely? Tune in to hear Rik provide valuable insights to these and many more questions. See more about Rik Farrow at http://rikfarrow.com/about/ #UNIX #Linux #DirtyPipe #Cybersecurity #PersonalData #RiskManagement #Privacy #TechCareers #SecurityCareers

Ein neuer Monat, ein neues CVE! Dirty Pipe beschäftigt uns am Anfang des Monats, bevor zwei Jubiläen für Freude sorgen. Der Raspberry Pi wurde 10 Jahre alt - und - haben wir euch eigentlich schon erzählt, dass wir seit 20 Jahren ArchLinux nutzen? Uyuni führt lang ersehnte Ubuntu-Errata ein, während sich Red Hat für Automotive einsetzt. Die brandneuen openSUSE-, SLE- und Fedora-Betas stehen vor der Tür und Oracle unternimmt nach langer Zeit einen Schritt um Solaris wiederzubeleben. Asahi Linux präsentiert ein erstes Alpha-Image für Apple M1-Geräte und setzt damit einen beachtlichen Meilenstein. Links zur Episode: Ubuntu 20.04.4 unterstützt Framework-Notebook offiziell: https://community.frame.work/t/ubuntu-20-04-4-lts-on-the-framework-laptop/5702SVA Focus On auf Twitter: https://twitter.com/sva_focusonCVE-2022-0847: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0847Dirty Pipe: https://www.heise.de/news/Linux-Dirty-Pipe-beschert-Root-Rechte-6541556.htmlWeiterführende Dirty Pipe-Details: https://dirtypipe.cm4all.com/Intel kauft Linutronix: https://www.linux-magazin.de/news/linutronix-intel-uebernimmt-x86-maintainer-des-linux-kernel/Intel investiert in der EU: https://www.tagesschau.de/wirtschaft/unternehmen/intel-magdeburg-101.htmlSVA Podcast-Episode zum 30.Linux-Jubliäum mit Linutronix-CTO Thomas Gleixner: https://ageofdevops.de/index.php/podcast/e22/Uyuni 2022.02: https://www.uyuni-project.org/doc/2022.02/release-notes-uyuni-server.htmlRaspberry Pi wird 10 Jahre alt: https://projects-raspberry.com/raspberry-pi-celebrates-its-10th-birthday/Astro Pi: https://astro-pi.org/CentOS AutoSD: https://www.phoronix.com/scan.php?page=news_item&px=CentOS-AutoSD-AnnouncedAlmaLinux 8.5 nun auf POWER stabil: https://almalinux.org/blog/almalinux-for-powerpc-85-stable-now-available/AlmaLinux auf Azure: https://dev.to/almalinux/almalinux-now-available-on-microsoft-azure-azure-sponsors-almalinux-2895AMD unterstützt AlmaLinux: https://www.phoronix.com/scan.php?page=news_item&px=AMD-Joins-AlmaLinuxNavy Linux macht doch weiter: https://twitter.com/navylinux/status/1497988150907576320RPM Fusion für EL9: https://twitter.com/rpmfusion_team/status/1497136341045460992EPEL Office Hours: https://discussion.fedoraproject.org/t/join-us-for-the-epel-office-hours-every-month/37235Oracle Solaris 11.4 CBE-Ankündigung: https://blogs.oracle.com/solaris/post/announcing-the-first-oracle-solaris-114-cbeOracle Solaris 12 verschwindet von der Roadmap (2017): https://www.theregister.com/2017/01/18/solaris_12_disappears_from_oracles_roadmap/OpenIndiana-Projekt: https://www.openindiana.org/Oracle Solaris 11.4 CBE-Repositoriy: http://pkg.oracle.com/solaris/release/en/index.shtmlopenSUSE Leap 15 SP4-Beta: https://get.opensuse.org/testing/SUSE Linux Enterprise Server 15 SP4 Public Beta: https://www.suse.com/c/suse-linux-enterprise-15-service-pack-4-public-beta-is-out/openSUSE Leap 15 SP4-Roadmap: https://en.opensuse.org/openSUSE:Roadmap#Schedule_for_openSUSE_Leap_15.4SUSE Tick-Tock-Modell: https://www.suse.com/c/how-suse-builds-its-enterprise-linux-distribution-part-4/SUSE-Musikvideos: https://www.youtube.com/playlist?list=PL6sYHytyKN2-X93TurF3JptW8qSVm0DzASUSECON digital: https://susecon.com/NVIDIA-Leak: https://www.computerbase.de/2022-03/lapsuss-nvidia-ransom-hack/NVIDIA-Zertifikate werden missbraucht: https://www.tomshardware.com/news/nvidia-driver-code-signing-malwareFedora 36-Changeset: https://fedoraproject.org/wiki/Releases/36/ChangeSetOpen Source-Treiber für PowerVR Rogue: https://twitter.com/alyssarzg/status/1499777071186391043Asahi Linux Alpha-Image: https://asahilinux.org/2022/03/asahi-linux-alpha-release/Asahi Linux für Apple M1 Ultra: https://twitter.com/marcan42/status/1501271229763706882Pine QuartzPro64: https://www.pine64.org/2022/03/15/march-update-introducing-

Ein neuer Monat, ein neues CVE! Dirty Pipe beschäftigt uns am Anfang des Monats, bevor zwei Jubiläen für Freude sorgen. Der Raspberry Pi wurde 10 Jahre alt - und - haben wir euch eigentlich schon erzählt, dass wir seit 20 Jahren ArchLinux nutzen? Uyuni führt lang ersehnte Ubuntu-Errata ein, während sich Red Hat für Automotive einsetzt. Die brandneuen openSUSE-, SLE- und Fedora-Betas stehen vor der Tür und Oracle unternimmt nach langer Zeit einen Schritt um Solaris wiederzubeleben. Asahi Linux präsentiert ein erstes Alpha-Image für Apple M1-Geräte und setzt damit einen beachtlichen Meilenstein. Links zur Episode: Ubuntu 20.04.4 unterstützt Framework-Notebook offiziell: https://community.frame.work/t/ubuntu-20-04-4-lts-on-the-framework-laptop/5702SVA Focus On auf Twitter: https://twitter.com/sva_focusonCVE-2022-0847: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0847Dirty Pipe: https://www.heise.de/news/Linux-Dirty-Pipe-beschert-Root-Rechte-6541556.htmlWeiterführende Dirty Pipe-Details: https://dirtypipe.cm4all.com/Intel kauft Linutronix: https://www.linux-magazin.de/news/linutronix-intel-uebernimmt-x86-maintainer-des-linux-kernel/Intel investiert in der EU: https://www.tagesschau.de/wirtschaft/unternehmen/intel-magdeburg-101.htmlSVA Podcast-Episode zum 30.Linux-Jubliäum mit Linutronix-CTO Thomas Gleixner: https://ageofdevops.de/index.php/podcast/e22/Uyuni 2022.02: https://www.uyuni-project.org/doc/2022.02/release-notes-uyuni-server.htmlRaspberry Pi wird 10 Jahre alt: https://projects-raspberry.com/raspberry-pi-celebrates-its-10th-birthday/Astro Pi: https://astro-pi.org/CentOS AutoSD: https://www.phoronix.com/scan.php?page=news_item&px=CentOS-AutoSD-AnnouncedAlmaLinux 8.5 nun auf POWER stabil: https://almalinux.org/blog/almalinux-for-powerpc-85-stable-now-available/AlmaLinux auf Azure: https://dev.to/almalinux/almalinux-now-available-on-microsoft-azure-azure-sponsors-almalinux-2895AMD unterstützt AlmaLinux: https://www.phoronix.com/scan.php?page=news_item&px=AMD-Joins-AlmaLinuxNavy Linux macht doch weiter: https://twitter.com/navylinux/status/1497988150907576320RPM Fusion für EL9: https://twitter.com/rpmfusion_team/status/1497136341045460992EPEL Office Hours: https://discussion.fedoraproject.org/t/join-us-for-the-epel-office-hours-every-month/37235Oracle Solaris 11.4 CBE-Ankündigung: https://blogs.oracle.com/solaris/post/announcing-the-first-oracle-solaris-114-cbeOracle Solaris 12 verschwindet von der Roadmap (2017): https://www.theregister.com/2017/01/18/solaris_12_disappears_from_oracles_roadmap/OpenIndiana-Projekt: https://www.openindiana.org/Oracle Solaris 11.4 CBE-Repositoriy: http://pkg.oracle.com/solaris/release/en/index.shtmlopenSUSE Leap 15 SP4-Beta: https://get.opensuse.org/testing/SUSE Linux Enterprise Server 15 SP4 Public Beta: https://www.suse.com/c/suse-linux-enterprise-15-service-pack-4-public-beta-is-out/openSUSE Leap 15 SP4-Roadmap: https://en.opensuse.org/openSUSE:Roadmap#Schedule_for_openSUSE_Leap_15.4SUSE Tick-Tock-Modell: https://www.suse.com/c/how-suse-builds-its-enterprise-linux-distribution-part-4/SUSE-Musikvideos: https://www.youtube.com/playlist?list=PL6sYHytyKN2-X93TurF3JptW8qSVm0DzASUSECON digital: https://susecon.com/NVIDIA-Leak: https://www.computerbase.de/2022-03/lapsuss-nvidia-ransom-hack/NVIDIA-Zertifikate werden missbraucht: https://www.tomshardware.com/news/nvidia-driver-code-signing-malwareFedora 36-Changeset: https://fedoraproject.org/wiki/Releases/36/ChangeSetOpen Source-Treiber für PowerVR Rogue: https://twitter.com/alyssarzg/status/1499777071186391043Asahi Linux Alpha-Image: https://asahilinux.org/2022/03/asahi-linux-alpha-release/Asahi Linux für Apple M1 Ultra: https://twitter.com/marcan42/status/1501271229763706882Pine QuartzPro64: https://www.pine64.org/2022/03/15/march-update-introducing-the-quartzpro64/Linuxnews - Jolla erneut in misslicher Lage: https://linuxnews.de/2022/03/jolla-erneut-in-misslicher-lage/Jolla sucht dringend neuen Besitzer/Investor: https://forum.sailfishos.org/t/jolla-urgently-looking-for-new-ownership/10522/3Vodafone und Canonical arbeiten an "Cloud Smarpthone": https://www.phoronix.com/scan.php?page=news_item&px=Canonical-Vodafone-CSAnbox Cloud-Projekt: https://anbox-cloud.io/Ubuntu-Blog über Vodafone-Projekt: https://ubuntu.com/blog/vodafone-cloud-smartphone-based-on-anbox-cloud

Triden Group's Security Squad #podcast is back and ready to talk about everything cybersecurity! This week the squad covers the latest on privilege escalation attacks, backup fidelity, and the #DirtyPipe #Linux vulnerability. Now on #YouTube, #Spotify, and #Applepodcasts. #TridenGroup #SecuritySquad #CyberSecurity

Neste episódio falaremos sobre uma vulnerabilidade no Linux que permite a escrita em arquivos somente para leitura. Ajude o Segurança Legal a continuar existindo. Visite nossa campanha de financiamento coletivo e nos apoie! ShowNotes Brasil The Dirty PipeContinue reading

In the 21st episode of Enterprise Linux Security, Jay and Joao discuss the recent "Dirty Pipe" vulnerability, as well as Nvidia's recent breach.

[Referências do Episódio] - Novo wiper: o CaddyWiper - https://twitter.com/ESETresearch/status/1503436420886712321?s=20&t=-e0lYmMDKzpwkzs-8m2D6A - QNAP é vulnerável à Dirty Pipe - https://www.qnap.com/en-us/security-advisory/qsa-22-05 - Nova ameaça da NSA - https://www.globaltimes.cn/page/202203/1254856.shtml - Campanha de trojan bancário brasileiro em Portugal - https://seguranca-informatica.pt/brazilian-trojan-impacting-portuguese-users-and-using-the-same-capabilities-seen-in-other-latin-american-threats/ - Ataque contra a Rosneft na Alemanha - https://www.welt.de/politik/deutschland/article237518665/Rosneft-Deutsche-Tochter-wurde-Ziel-eines-Cyberangriffs.html - Ataques de DDoS contra Israel - https://www.haaretz.com/israel-news/.premium-israeli-government-sites-crash-in-cyberattack-1.10674433 - Backdoor B1txor20 - https://blog.netlab.360.com/b1txor20-use-of-dns-tunneling_cn/ - CVE-2022-25636 no Netfilter - https://nickgregory.me/linux/security/2022/03/12/cve-2022-25636/#exploitation - Atualização geral da Apple - https://support.apple.com/en-us/HT201222 [Ficha técnica] Roteiro e apresentação: Carlos Cabral Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia Projeto gráfico: Julian Prieto

This week in the AppSec News: Dirty Pipe vuln hits the Linux Kernel, AutoWarp vuln hits Azure Automation, TLStorm hits critical infrastructure, & hacking the Mazda RX8 ECU!   Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw188

This week in the AppSec News: Dirty Pipe vuln hits the Linux Kernel, AutoWarp vuln hits Azure Automation, TLStorm hits critical infrastructure, & hacking the Mazda RX8 ECU!   Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw188

Josh and Kurt talk about the Linux Kernel Dirty Pipe security vulnerability. This bug is an amazing combination of amazing complexity, incredible simplicity, and a little bit of luck. The discovery is amazing, the analysis is enlightening. There's almost no way a bug like this could be found outside of open source. Show Notes Dirty Pipe Writeup

On this episode of This Week in Linux: Linux 5.17 Kernel, Mesa 22.0, Budgie Desktop 10.6, Blender 3.1, Wine 7.4, Google Plans Their Own Version Of Wine, Zorin OS 16.1, Arch Linux 20th Anniversary, Heroic Games Launcher Now On Flathub, Xbox Game Studios Talks About Steam Deck, Dirty Pipe Vulnerability, and Firefox 98. All that […]

As the kinetic war (and cyberwar) between Ukraine and Russia marches on, a new Linux exploit wreaks havoc on all Linux (and therefore Android) systems. Patch it!

In this episode, Javvad and Erich chat about the Lapsus$ ransomware group and the attacks on NVIDIA and Samsung, Android malware and more!  Stories from the show: Chinese phishing actors consistently targeting EU diplomats https://www.bleepingcomputer.com/news/security/chinese-phishing-actors-consistently-targeting-eu-diplomats/  Samsung Confirms Lapsus$ Ransomware Hit, Source Code Leak https://threatpost.com/samsung-lapsus-ransomware-source-code/178791/ That Android antivirus could actually be malware https://www.techradar.com/news/that-android-antivirus-could-actually-be-malware  'Dirty Pipe' Linux vulnerability discovered https://www.zdnet.com/article/dirty-pipe-linux-vulnerability-discovered-fixed/  A Risk Question https://twitter.com/jwgoerlich/status/1501941528628891648?s=20&t=IpRD0oVurIpM4x3zoR1Pdw  

ShadowTalk host Chris alongside Ivan and Austin bring you the latest in threat intelligence. This week they cover: * New Linux Vulnerability "Dirty Pipe" * Ransomware Landscape in 2022 So Far * Coinbase Blocks More than 25,000 Addresses Linked to Russia ***Resources from this week's podcast*** Exploring SIM Swapping Services On Cybercriminal Forums https://www.digitalshadows.com/blog-and-research/exploring-sim-swapping-services-on-cybercriminal-forums/ Can Cryptocurrency Be Used To Bypass The Impact Of Sanctions Being Applied Against Russia? https://www.digitalshadows.com/blog-and-research/can-cryptocurrency-be-used-to-bypass-the-impact-of-sanctions-being-applied-against-russia/ New Linux bug gives root on all major distros, exploit released https://www.bleepingcomputer.com/news/security/new-linux-bug-gives-root-on-all-major-distros-exploit-released/ FBI: Ragnar Locker ransomware breached 52 US critical infrastructure orgs https://www.itpro.co.uk/security/ransomware/365375/fbi-ragnar-locker-ransomware-us-critical-infrastructure Coinbase blocks over 25,000 Russian-linked crypto addresses https://www.bleepingcomputer.com/news/security/coinbase-blocks-over-25-000-russian-linked-crypto-addresses/ Subscribe to our threat intelligence email: https://info.digitalshadows.com/SubscribetoEmail-Podcast_Reg.html Also, don't forget to reach out to - shadowtalk@digitalshadows.com - if you have any questions, comments, or suggestions for the next episodes.

It's a big week for kernel security vulnerabilities - we cover Dirty Pipe and fixes for the latest microarchitectural side channel issues, plus we bring you the first in a 3 part series on hardening your Ubuntu systems against malicious attackers.

Cédric Abonnel

Cédric Abonnel

Why Dirty Pipe is a dirty dog, the explosive adoption of Linux at AMD, and an important update on elementary OS.

Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/dirty-pipe-and-analyzing-memory-tagging.html No spot the vuln this week, but we do have a cool kernel bug, "Dirty Pipe", a look at a stack based overflow: BrokenPrint, and finally some discussion about memory tagging. [00:00:31] The Dirty Pipe Vulnerability [00:18:26] BrokenPrint: A Netgear stack overflow [00:30:21] Security Analysis of MTE Through Examples [BHIL2022] The DAY[0] Podcast episodes are streamed live on Twitch (@dayzerosec) twice a week: Mondays at 3:00pm Eastern (Boston) we focus on web and more bug bounty style vulnerabilities Tuesdays at 7:00pm Eastern (Boston) we focus on lower-level vulnerabilities and exploits. The Video archive can be found on our Youtube channel: https://www.youtube.com/c/dayzerosec You can also join our discord: https://discord.gg/daTxTK9 Or follow us on Twitter (@dayzerosec) to know when new releases are coming.

Why Dirty Pipe is a dirty dog, the explosive adoption of Linux at AMD, and an important update on elementary OS.

Why Dirty Pipe is a dirty dog, the explosive adoption of Linux at AMD, and an important update on elementary OS.

In this episode we answer your questions then explain that latest vulnerability in Linux! -- During The Show -- 00:50 Steve's Week iSCSI targets 01:50 Charlie asks about Liquid Sensor 12V Liquid Level Sensor Switch Relay Module (https://www.aliexpress.com/item/1005003118991336.html) Very DIY 05:20 Contact Sensors and Home Assistant Feedback - The Linux Trucker Moved to ESPHome ESPHome (https://esphome.io/) vs Tasmota (https://tasmota.github.io/docs/) Nextion Screens (https://nextion.tech/) Tasmotizer (https://github.com/tasmota/tasmotizer) 11:15 Experience from a Data Center - Ronald Rack ATS (https://www.apc.com/shop/us/en/products/RACK-ATS-230V-16A-C20-IN-8-C13-1-C19-OUT/P-AP4423) iLO = Energy Vampire Flashable Smart Plugs (http://www.amazon.com/dp/B09JZDSLNC/?tag=minddripmedia-20) 17:40 Containers & Home Assistant questions - Tyler Docker vs Podman Containerized UniFi Controller Home Assistant Core and Supervisor Home Assistant Backup/Migration Code Ready Containers (https://developers.redhat.com/products/codeready-containers/overview) Single Node OpenShift (https://upstreamwithoutapaddle.com/blog%20post/2022/01/16/Let-It-Sno.html) 24:40 Keith suggestion for the show Show for electricians going opensource? Please write back in! 27:50 Baby Monitor Feedback - Ciaran IR Light Exposure 29:45 Pick of the Week MD-to_PDF (https://www.npmjs.com/package/md-to-pdf) Markdown to PDF on the CLI cat file.md | md-to-pdf > path/to/output.pdf 32:43 Steve - WikiJS Wiki.JS (https://docs.requarks.io/) Markdown Wiki WYSIWYG Editor 36:09 News Wire Rocket Chat and Nextcloud (https://news.itsfoss.com/rocket-chat-nextcloud-collaboration/) AMDGPU Linux Driver Update (https://wccftech.com/amdgpu-linux-driver-update-allows-multiple-users-across-several-engines-to-execute-simultaneously/) Wii U Linux Patches (https://www.phoronix.com/scan.php?page=news_item&px=Wii-U-March-2022-Linux) CVE-2022-0492 High-Severity Container Escape Vulnerability Unit 42 (https://unit42.paloaltonetworks.com/cve-2022-0492-cgroups/) Hacker News (https://thehackernews.com/2022/03/new-linux-kernel-cgroups-vulnerability.html) Dirty Pipe (https://www.zdnet.com/article/dirty-pipe-linux-vulnerability-discovered-fixed/) Package Typo Squatting (https://www.computing.co.uk/news/4045953/researchers-warn-malicious-typosquatting-packages-open-source-repositories) Open Source Security Foundation gains 23 New Members (https://venturebeat.com/2022/03/01/the-open-source-security-foundation-gains-support-from-huawei-spotify-and-23-new-organizations/) LISH and OpenSSF List Top 1000 Libraries ZDnet (https://www.zdnet.com/article/the-top-1000-open-source-libraries/) DevOps.com (https://devops.com/linux-foundation-lists-top-open-source-libraries/) Steam Survey (https://www.phoronix.com/scan.php?page=news_item&px=Steam-Survey-February-2022) PolyCoder (https://venturebeat.com/2022/03/04/researchers-open-source-code-generating-ai-they-claim-can-beat-openais-codex/) Armbian 22.02 Released (https://www.theregister.com/2022/03/03/armbian_project_releases_version_2202/) Nitrux 2.0.1 (https://9to5linux.com/nitrux-2-0-1-switches-to-mesa-22-1-by-default-for-linux-gaming-ships-with-kde-plasma-5-24-lts) Budgie 10.6 Released (https://github.com/BuddiesOfBudgie/budgie-desktop/releases/tag/v10.6) 38:00 C Groups Vulnerability Containers Basics CVE-2022-0492 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-0492) How it works SELinux and AppArmor Protect you Network Name Spaces Learn SELinux (Do Not Shut it off) Permissive Mode Who is at risk Linux Name Spaces (https://www.redhat.com/sysadmin/7-linux-namespaces) PID Name Space (https://www.redhat.com/sysadmin/pid-namespace) UTS Name Space (https://www.redhat.com/sysadmin/uts-namespace) Mount Name Spaces (https://www.redhat.com/sysadmin/mount-namespaces) Building Container Name Spaces (https://www.redhat.com/sysadmin/building-container-namespaces) CGroups Series Part 1 (https://www.redhat.com/sysadmin/cgroups-part-one) Part 2 (https://www.redhat.com/sysadmin/cgroups-part-two) Part 3 (https://www.redhat.com/sysadmin/cgroups-part-three) Part 4 (https://www.redhat.com/sysadmin/cgroups-part-four) -- The Extra Credit Section -- For links to the articles and material referenced in this week's episode check out this week's page from our podcast dashboard! This Episode's Podcast Dashboard (http://podcast.asknoahshow.com/276) Phone Systems for Ask Noah provided by Voxtelesys (http://www.voxtelesys.com/asknoah) Join us in our dedicated chatroom #GeekLab:linuxdelta.com on Matrix (https://element.linuxdelta.com/#/room/#geeklab:linuxdelta.com) -- Stay In Touch -- Find all the resources for this show on the Ask Noah Dashboard Ask Noah Dashboard (http://www.asknoahshow.com) Need more help than a radio show can offer? Altispeed provides commercial IT services and they're excited to offer you a great deal for listening to the Ask Noah Show. Call today and ask about the discount for listeners of the Ask Noah Show! Altispeed Technologies (http://www.altispeed.com/) Contact Noah live [at] asknoahshow.com -- Twitter -- Noah - Kernellinux (https://twitter.com/kernellinux) Ask Noah Show (https://twitter.com/asknoahshow) Altispeed Technologies (https://twitter.com/altispeed) Special Guest: Steve Ovens.

A discussion with Elizabeth Biddlecome, Sam Bowne, Kaitlyn Handelman, Irvin Lemus, and Alan Wennersten. Links: https://samsclass.info/news/news_030822.html