Podcasts about heartbleed bug

Im April 2014 wurde ein Bug bekannt, der vom Experten Bruce Schneier als 11 auf der Skala von 1-10 bezeichnet wurde. Der Fehler, der als Heartbleed Bug bekannt wurde, betraf Millionen von Webseiten und erlaubte, vertrauliche Daten zu stehlen. Dazu gehörten Serverpasswörter oder private Schlüssel. Der Bug stecke in einer Erweiterung von OpenSSL - der de facto Standardbibliothek für sichere und verschlüsselte Kommunikation im Internet. Durch Heartbleed konnte man mit einem einfachen Aufruf bis zu 64k aus dem Hauptspeicher auslesen. Grund dafür war eine vergessene Überprüfung eines Parameters. Eigentlich ein Fehler, wie er täglich auftritt und normal genauso schnell wieder gefunden und behoben werden sollte. Doch bei Heartbleed dauerte es 27 Monate, bis der Fehler entdeckt und veröffentlicht wurde. Sprecher & Produktion: Wolfgang Schoch Musik: BACKPLATE von https://josephmcdade.com

Buscando uma nova estrutura de episódio, resolvemos falar sobre algumas coisas diferentes, numa estrutura um pouco diferente e mais informativa. Desta vez abordamos um assunto sobre infraestrutura na nuvem, algumas notícias e informações interessantes sobre iniciativas que fomentam o Open Source. O episódio está bem técnico, embora descontraído e com a estética periférica que sempre entregamos. Incentivo ao estudo sobre a computação na nuvem e ocupação de espaços com direito a convite para um evento que é interessante que cogitemos nossa participação para que nos capacitemos, esperamos que vocês gostem. Participantes: Junior Pereira Kaio Teixeira Matheus Hernandes Reginaldo Junior -------------------------------------------- Para registrar-se no Google Cloud OnBoard: 1) Acesse a URL http://bit.ly/gcquebradev 2) Veja qual treinamento escolher (você pode fazer os dois): - Core Infrastructure e/ou Big Data & Machine Learning 3) Clique no botão "REGISTRE-SE" ou role até o final da página. 4) Preencha o formulário: - No campo Treinamento escolha qual deles você quer fazer ou ambos. - No campo "Empresa/Instituição de Ensino" como QUEBRADEV, isso é importante para que você tenha sua reserva aceita de imediato, perifatécnicos estão tendo lugares exclusivos. Não se esqueça, no campo "Empresa/Instituição de Ensino" preencher como QUEBRADEV, isso garantirá sua vaga no evento! -------------------------------------------- Links: Entenda o Heartbleed Bug - https://www.youtube.com/watch?v=--g_RSzBWSM Heartbleed test - https://filippo.io/heartbleed/ Linux Foundation - https://canaltech.com.br/seguranca/Empresas-de-tecnologia-se-unem-a-Linux-Foundation-para-melhorar-seguranca/ Você sabe o que é machine learning? - https://canaltech.com.br/inovacao/voce-sabe-o-que-e-machine-learning-entenda-tudo-sobre-esta-tecnologia-104100/ Afinal, o que é Big Data? - http://marketingpordados.com/analise-de-dados/o-que-e-big-data-%F0%9F%A4%96/ MarI/O - Machine Learning for Video Games - https://www.youtube.com/watch?v=qv6UVOQ0F44 Musicas: Jay Z - Hard knock life NAS - One Time 4 Your Mind Group Home - The Legacy feat Guru Mobb Deep - Cradle To The Grave Das EFX - Kaught In Da Ak

GUEST BIO: My guest on today’s show is a full-stack developer, having recently joined Test Double which is an agency of highly skilled developers on a mission to improve how the world writes software. Prior to Test Double, he spent a decade working for 1Password where he focused his efforts on browser extensions and web page filling features. EPISODE DESCRIPTION: Phil’s guest on today’s IT Career Energizer podcast is Jamie Phelps. He is a full-stack developer at TestDouble. A firm that is working to improve the way the world writes software and wrangles code. Prior to that Jamie worked for Pier 1, 1Password and ran his own IT consultancy company. His areas of expertise include Ruby, Typescript, JavaScript, Go, Swift, Objective-C, and several other languages. KEY TAKEAWAYS: (1.06) – First, I want to ask you how you came to IT. You seem to have started your IT career a little later than average, so it would be interesting to hear how this transition happened. Jamie explains when he first attended university he studied music and religion. He went to graduate school to study the New Testament. When he went back to university to do his Ph.D. it dawned on him that he would probably be at school for another 3 to 5 years. During which time he would have to live very frugally, a realization that led to him switching to computer science. (2.12) – Can you please share a unique career tip with the I.T. career audience? Jamie’s most important piece of advice is to build a good network of people. Doing this stands you in good stead, especially later in your career. As you progress and become more senior the problems get bigger. So, it is always good to have people you can talk to. At some point, you will reach a stage where it is impossible to know absolutely everything. When that happens, you need a pool of experts you can trust and turn to for advice. (3.15) - How do you personally go about developing your network? Jamie mostly developed his network through Twitter. He also made a lot of connections while working at 1Password. Going to meetups and getting involved in IT communities have helped too. The people he met at these sorts of events shared his passion for the same tech. So, they were always there to back him up and help. Often, they had already faced and overcome the same or a very similar problem to the one he was facing. So, usually, he gets fast results when he consults with his trusted network. (4.53) – Can you tell us about your worst career moment? And what you learned from that experience. Fortunately, Jamie has not had a lot of bad career moments. But, he does remember one situation that made him feel bad. It happened when he was working for a firm that sold software. They realized that someone was using their website to see whether stolen credit cards were still active. Naturally, the moment the team realized they were being used in this way, they wanted to stop his activities. After a long weekend of time and effort, they finally managed to do so. But, it did not feel good to know that weaknesses in their system had played a role in helping someone to profit from his criminal activities. To make sure it did not happen again, they switched to a more robust payment provider. It taught Jamie that sometimes it is best to pay for an expert rather than always depend on your own abilities. (6.41) – So, in terms of what you learned from that, is it about making sure you select the right provider? What did you take away from that situation? Jamie explains that as well as looking for a good provider, in the first place, you need to periodically review your decisions. When they first set up their payment option it was the best that was available. But, eventually, they realized that the world had changed and that other providers now offered a far better option. You also need to be careful of the “not invented here” syndrome. It is all too easy to fall into the trap of thinking that something you write in-house is always going to be better than something an outside provider writes. In many cases, the opposite is true. (7.38) – What was your best career moment?  For Jamie that was writing a Rails program that later evolved into the Watchtower element of the 1password system. This software oversees user’s websites and tells them the moment a security breach is spotted. Jamie is very proud of building the first iteration of the system in Rails. He did it in response to the Heartbleed Bug, which hit in April 2014. It was a large SSL vulnerability that caused lots of damage. In response to the bug, 1Password asked Jamie to build something that would enable their clients to identify if their site had been hit by the bug. He is understandably proud of the fact that he was able to come up with the necessary system in just 3 days. (9.06) – Can you tell us what excites you about the future of the IT industry and careers? Jamie is really excited by the advancements in language compilers. They have given rise to a lot more robust programming languages. These advancements have provided us languages that are a lot safer to use. They have enabled programmers to be much more productive. Both of which have made it possible to achieve so much more. (10.18) - Do you think that's a trend that will continue? Jamie believes that advancements in computing power combined with further compiler enhancements mean that things will continue to improve. (10.59) – What drew you to a career in IT? Jamie had planned to pursue a career in academia and become a college professor. But, the statistics showed that actually becoming a professor was going to be very difficult. Not only that, getting the qualifications he needed to attempt to do so, would mean living on a meager salary, for many years. So, he switched to computing. (11.39) – What is the best career advice you have ever received? It was not advice that was given to Jamie directly. In fact, it was something he heard on a friend’s podcast. On one show his friend advised his audience to ask themselves if they wanted 10 times more of what was happening right now. If, when you are looking at what you are doing in your career, the answer is no, it is probably time to make a change. Jamie has followed that advice and it has helped his career. (12.20) - Conversely, what is the worst career advice you've ever received? At the time Jamie received his worst career advice he was working for a large firm with downtown offices. So, when he said he was going to leave and work for 1software, a Canadian startup, virtually nobody had heard of, people advised him not to do it. Fortunately, he did not listen and that is when his IT career took off. (13.37) – If you were to begin your IT career again, right now, what would you do? Jamie found this question hard to answer. He said that he does not really know what he would have done differently. This is because the positive directions his career has gone in have been largely accidental. So, he feels that if he had been able to make more informed decisions things may not have necessarily turned out as well as they have. (14.10) – What are you currently focusing on in your career? Right now, Jamie is working at catching up with the world of Ruby on Rails. He is also developing his consulting and soft skills. (14.38) – What is the number one non-technical skill that has helped you the most in your IT career? His ability to dig into documents, pull out the salient points and become productive quickly has really helped him in his IT career. Interestingly, these are the skills he learned while studying for the career in academia that he never pursued (15.16) - What do you do to keep your own IT career energized? Jamie finds that staying curious, keeps him interested, learning and moving forward. Sometimes the most mundane tasks lead to you learning about something really interesting and useful. For example, early in his career, he was working on a report that showed how many customers gave their phone number to the cashier. It was a pretty boring task. But, while doing it, he learned about The North American Numbering Plan (NANP). He was fascinated by how this organization that manages how the area codes and numbers for 24 North American countries works. (17.05) - What do you do in your spare time away from technology? Jamie enjoys playing Ultimate Frisbee. He also does a lot of camping, hiking, backpacking, and geocaching with his wife. (17.24) – Phil asks Jamie to share a final piece of career advice with the audience. Jamie’s advice is to find products or companies that you really believe in to work on and with. BEST MOMENTS: (2.58) JAMIE – "Make sure that you've built up that network of folks that you can rely on for their expertise." (3.21) JAMIE – "I developed a lot of my network through Twitter." (9.51) JAMIE – "The advancements in the compiler technology have given us languages that are safer to use, and also allow us to be more productive." (14.55) JAMIE – "Being able to dig into documentation, figure out what's salient, and be productive quickly, in an unfamiliar environment are skills that have helped my IT career." (17.52) JAMIE – "I would always choose the company or the product that I believe in more than maybe a salary or a title." CONTACT JAMIE: LinkedIn: https://www.linkedin.com/in/jxpx777/ Website: http://www.jamiephelps.com  

Beschreibung: In dieser Folge sprechen über den 35. Chaos Communication Congress (35c3) und besprechen einige technische Vorträge die uns besonders gut gefallen haben. Shownotes: Segfault.fm Episode 0x04 Tor Privacy-Handbuch: Tor Bad Exit Nodes Winter P. et al. (2014) Spoiled Onions: Exposing Malicious Tor Exit Relays. In: De Cristofaro E., Murdoch S.J. (eds) Privacy Enhancing Technologies. PETS 2014. Lecture Notes in Computer Science, vol 8555. Springer, Cham Metadata Investigation : Inside Hacking Team WP: Hacking Team Motherboard: Hacking Team Hacker Phineas Fisher Has Gotten Away With It WikiLeaks: Hacking Team 33c3: David Kriesel: SpiegelMining – Reverse Engineering von Spiegel-Online WP: Chaos Communication Congress Chaos Computer Club 32c3: Toilet Party WP: Haus am kölnischen Park (HAKP) Freakshow 229: Telefonischturm 35c3 Spende zwecks Diebstahl 34c3: Nougatbytes 11₂ - Die geekige Wort- & Bilderrätselspielshau ist zuЯück Haecksen-Schrein WP: Carol Shaw WP: River Raid 35c3: Linus Neumann and Thorsten Schröder: OpSec für Datenreisende - Du kannst alles hacken – du darfst dich nur nicht erwischen lassen SZ: Spur des Hackers Orbit führt Ermittler in Doxing-Szene 35c3: Michael Steigerwald: Smart Home - Smart Hack Segfault.fm Episode 0x01 ACM WiSec 35c3: Yaniv Balmas and Eyal Itkin: What the Fax 35c3: starbug and Julian: Venenerkennung hacken - Vom Fall der letzten Bastion biometrischer Systeme Chaos Computer Club hackt Apple TouchID 35c3: Joscha: The Ghost in the Machine - An Artificial Intelligence Perspective on the Soul Alternativlos 42 mit Joasch Bach über Life, the universe and everything 35c3: Ben Cartwright-Cox: A deep dive into the world of DOS viruses - Explaining in detail just how those little COM files infected and played with us back in the day Github: A Deep Dive into the world of MS-DOS viruses 35c3: Hanno Böck: The Rocky Road to TLS 1.3 and better Internet Encryption 35C3: Sebastian Schinzel: Attacking end-to-end email encryption - Efail, other attacks and lessons learned EFail Poddebniak et. al. (2018) Efail: Breaking S/MIME and OpenPGP Email Encryption using Exfiltration Channels in 27th USENIX Security Symposium, Baltimore 35c3: Inside the Fake Science Factories SCIgen - An Automatic CS Paper Generator DEFCON 26: Svea, Suggy, Till: Inside the Fake Science Factory 35c3: Ilja van Sprundel: Memsad - why clearing memory is hard CVE-2014-0160: Heartbleed Bug 35c3: Moritz Lipp, Michael Schwarz, Daniel Gruss and Claudio Canella: A Christmas Carol - The Spectres of the Past, Present, and Future 35c3: Hannes Mehnert: DNS - Hierarchical decentralized naming system used since 30 years 35c3: Martin Tschirsich: All Your Gesundheitsakten Are Belong To Us - ‘So sicher wie beim Online-Banking’: Die elektronische Patientenakte kommt - für alle 35c3: Martin Sonneborn: Meine Abenteuer im EU-Parlament

stdout.fm 13번째 로그에서는 Read the Docs, Write the Docs, 도커를 사용하는 이유에 대해서 이야기를 나눴습니다. 참가자: @seapy, @raccoonyy, @nacyo_t Home | Read the Docs Read the Docs 2018 Stats — Read the Docs Blog sphinx-doc/sphinx: Main repository for the Sphinx documentation builder reStructuredText Ruby-Doc.org: Documenting the Ruby Language realpython/python-guide: Python best practices guidebook, written for humans. Getting Started with Sphinx — Read the Docs 2.7 documentation ? Welcome to phpMyAdmin’s documentation! — phpMyAdmin 5.0.0-dev documentation The Hitchhiker’s Guide to Python! — The Hitchhiker’s Guide to Python Requests: HTTP for Humans™ — Requests 2.21.0 documentation Welcome to our community! — Write the Docs Write the Docs 2018 Stats — Write the Docs 테크니컬 라이팅 컨퍼런스: Write the Docs Prague 2018 방문기 - LINE ENGINEERING I want to run a Write the Docs conference, now what? — Write the Docs 파이콘 APAC 2016 - Write the Docs Seoul Meetup #1 왜 굳이 도커(컨테이너)를 써야 하나요? - 컨테이너를 사용해야 하는 이유 | 44bits.io Docker (Compose) 활용법 - 개발 환경 구성하기 Docker 1.3: signed images, process injection, security options, Mac shared directories - Docker Blog DEVIEW 2014 - Docker로 보는 클라우드 서버 운영의 미래 DEVIEW 2013 - 이렇게 배포해야 할까? - Lightweight Linux Container Docker 를 활용하여 어플리케이션 배포하기 Production-Grade Container Orchestration - Kubernetes AWS Fargate – 서버 또는 클러스터를 관리할 필요 없이 컨테이너를 실행 Cloud Application Platform | Heroku The Twelve-Factor App Kubernetes가 가져온 분산 시스템의 위협과의 싸움(Wantedly 사례, 일본어) - Speaker Deck Netlify: All-in-one platform for automating modern web projects. vaidik/sherlock: Easy distributed locks for Python with a choice of backends. whining - Ruby evolution is taking TOO long : ruby Rubyのまつもと氏、「気分を害することもある。だからどうか建設的であってほしい」 － Publickey Feature #6284: Add composition for procs - Ruby trunk - Ruby Issue Tracking System Yukihiro Matsumoto on Twitter: “20+ years ago, …” Younggun Kim on Twitter: “이유가 무엇이든 …” Publickey on Twitter: “ありがとうございます。…” Ruby is dead | A totally legit site based on science Is Ruby Dead? Using Ruby in 2019 - Jason Charnes Heartbleed Bug Spyware Disguises as Android Applications on Google Play - TrendLabs Security Intelligence Blog

Joined Jim Polito today to talk about a cloud bleed by a service called Cloudflare, where they recently had a massive memory leak exposing data from different sites using the service. And at this point, the best suggestion would be changing passwords from all the websites that you have logins with. To keep you on the safer side, make sure to use password managers. Link to related article below with my recommended password manager. --- Related articles: The Best Password Managers to Fight CloudBleed http://CraigPeterson.com/news/the-best-password-managers/11850 Incident report on memory leak caused by Cloudflare parser bug http://CraigPeterson.com/news/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/11859 --- More stories and tech updates at:www.craigpeterson.com Don't miss an episode from Craig. Subscribe and give us a rating: www.craigpeterson.com/itunes Follow me on Twitter for the latest in tech at: www.twitter.com/craigpeterson For questions, call or text: 855-385-5553

Um im digitalen Umfeld elektronischen Handel zu betreiben, benötigt man einen gesicherten Datenaustausch für Angebote, Verhandlungen und Verträge, aber letztlich auch eine Form von elektronischem Geld auf dem der Handel basiert. Ganz zentral ist dabei die moderne Kryptographie und insbesondere die Public Key-Verfahren, die durch mathematische Verfahren das ganze ermöglichen, soweit die Verfahren sicher, korrekt implementiert und richtig benutzt werden, und es nicht zu einem Fiasko wie dem Heartbleed-Bug kommt. Im Gespräch mit Gudrun Thäter erläutert Sebastian Ritterbusch die Mathematik hinter digitalem Geld und der Kryptowährung Bitcoin. Dazu geht es zunächst in die Zahlentheorie der Restklassenkörper und spezielle Restklassenringe . Mit dem kleinen Satz von Fermat versehen wir eine Einwegfunktion mit einer Falltür und kommen auf Hash-Funktionen und das RSA-Verfahren. Damit kann man auch digital Unterschreiben (sogar bei Bedarf blind signieren), wir diskutieren, wie Verträge durch einen Kollisionsangriff und dem Geburtstagsparadoxon gefälscht werden können, und wie damit erfolgreich ein Root-Zertifikat fingiert wurde. Für das zentral organisierte und anonyme digitale Geld benötigt man dann nur noch das Prinzip des geteilten Geheimnis. Leider kommt das Verfahren gegenüber weniger anonymen Verfahren heute kaum zum Einsatz, im Gegensatz zum Bitcoin-Verfahren, das sich wachsender Beliebtheit erfreut. Hier ersetzt ein Peer-to-Peer-Netzwerk und eine Hash-Kette die zentrale Instanz, und verhindert so das doppelte Ausgeben durch die gemeinsame Vergangenheit von Transaktionen, die über einen Merkle-Baum in die Block-Chain platzsparend integriert werden. Literatur und Zusatzinformationen D.Chaum, A.Fiat, M.Naor: Untraceable electronic cash, Proceedings on Advances in Cryptology, S. Goldwasser, Ed. Springer-Verlag New York, New York, NY, 319-327, 1990. S.Nakamoto: Bitcoin, A Peer-to-Peer Electronic Cash System, Whitepaper, The Cryptography Mailing List, 2008. A.Sotirov, M.Stevens, J.Appelbaum, A.Lenstra, D.Molnar, D.A.Osvik, B.Weger: MD5 considered harmful today, Creating a rogue CA certificate, Crypto 2009 Proceedings, 2009. Z.Durumeric, E.Wustrow, J.A.Halderman: ZMap - der IPv4-Scan J.A.Haldermann: Fast Internet-wide Scanning and its Security Applications, Vortrag 30C3, 2013. Heise.de, bbe: Virenscanner warnt vor Bitcoin-Blockchain, 17.5.2014. Heise.de, axk: Bitcoin: Erstmals gefährliche Konzentration der Mining-Leistung, 16.6.2014. Podcast: T.Pritlove und A.Bogk: CRE182, Elektronisches Geld Podcast: M.Richter und A.Bogk: Die Wahrheit 005, Bitcoins Podcast: F.Blue, X.Initrc, M.Malik: Death of a traveling salesman Podcast: D.Jäckel und A.Schildbach: Bitstaub, Ein Bitcoin Podcast Podcast: Bitcoin Austria: Bitcoin Update Podcast: M.Völter, G.Andresen: Omega Tau 59, Bitcoin

In this episode we discuss using google image search to see what a company is known for, Comixology, Atlassian valued at 3.3 billion, Heartbleed bug, Salesforce backups using Backupify, Salesforce.com's new industries unit, John's new office chair the Herman Miller Embody, are tools like Docker going to overshadow PAAS, and the agony of an African programmerComixologyAtlassian Valued at $3.3 Billion Selling Business Software Sans SalespeopleSalesforce Will Pay $690M To Expand Its SF HQ Into The New Salesforce TowerHeartbleed BugBackupify for Salesforce Now Provides One-Click RestoreSalesforce.com EVP Vivek Kundra to Head New Industries UnitDream On Salesforce, SAP Prez Unimpressed by Your ThreatsSalesforce.com is officially out of ideaHerman Miller Embody ChairSo … do you really need a PaaS?Agony of an African Programmer Download MP3 (51.8 MB, 01:11:27)

Live from RailsConf, Ben talks to Executive Director of The Turing School Jeff Casimir on Conf-stress, the lack of jobs in open source and the challenges of learning to run a business. Turing School of Software & Design Heartbleed Bug The E-Myth Revisited

Everyone has heard about it, but what is it really? Are we all really at risk? If so, what can we do about it? Kevin Shahbazi is the man with all the answers to theses questions and more.

Comic books: DC Trinity War and Forever Evil, Sinestro, Marvel's Original Sin, Mighty Avengers. AT & T takes on Google Fiber, DIY Graphene and some amazing uses for grapheme, Heartbleed Bug, Dean Trip: Something Terrible, Batman 75 year Anniversary Talk.

In dieser knackig kurzen Episode sprechen Tom und André wieder über aktuelle Themen. Zu Beginn erzählt André über seine Erfahrungen mit dem Schreiben von technischen Artikeln für diverse Magazine. Danach erklärt und schildert Tom seine Probleme und Chancen mit dem Heartbleed Bug der OpenSSL etwas in Mitleidenschaft gezogen hat. Zu guter Letzt quatschen André und Tom über André's Vagrant Blog Post. Heartbleed http://de.wikipedia.org/wiki/Heartbleed http://heartbleed.com http://de.wikipedia.org/wiki/Zwei-Faktor-Authentifizierung http://twofactorauth.org/ https://lastpass.com https://agilebits.com/onepassword http://www.apple.com/de/support/icloud/keychain/ Vagrant https://vagrantcloud.com http://www.vagrantup.com http://blog.andresteingress.com/2014/04/06/vagrant-solr-box/

Egyből egy könyvvel indítunk Morgi ajánlásában: Brandon Hackett: Az időutazás napja. Vizet találtak a Szaturnusz holdján az Enceladuson. Folytatódik a Cosmos ismeret terjesztő sorozat. Új részecskét találtak, amit senki nem tud megmagyarázni. LHC dokumentum film: Particle Fever. Chev könyv ajánlása: Leon Max Lederman: Az isteni a-tom. Amerika kapitány 2  a film és az Agents of S.H.I.E.L.D. sorozat össze fonodása. Pár mondat a Heartbleed Bug-ról. Flash ajánlásában egy jó kis zombis podcast: We’re Alive - A story of survival. Földközelben a mars! Fő téma: Mission to mars - A Mars-mentőakció Zene: Immediate Music - Destiny Of The Chosen

伊藤直也さんをゲストに迎えて、Heartbleed, Docker, Consul, RubyMotion, 環境構築などについて話しました。 Show Notes Heartbleed Bug xkcd: Heartbleed Explanation 三菱ＵＦＪニコス８９４人個人情報流出か OpenOpenSSL OpenBSD、怒りのコミット Docker Meetup Tokyo #2 Dockerアプリケーションのポータビリティを考える wercker docker DockerCon 2014 Consul - HashiCorp Serf vs. Consul Consul vs. ZooKeeper, doozerd, etcd - Consul Getting Started with etcd GopherCon 2014 Consul関連文書の参考訳、Serfとの違い等 | Pocketstudio.jp log3 RubyMotion @naoya_itoの火を噴いたシェルtips robbyrussell/oh-my-zsh Rebuild: 4: bkノート, Yak Shaving, Code Reviews Development Environment Conference - Shibuya.js Hack your bundle for fun and profit Dash - Documentation Browser, Snippet Manager - Kapeli

DJI Phantom drone flyaways, automatic website login using cookies, dangers of digital litter(old pics may resurface), password storage using one way hash algorithm, Profiles in IT (Barry Appelman, father of AIM Buddy List and TCP/IP pioneer), Heartbleed Bug author (CS German grad student, unpaid volunteer working on OpenSSL, error unintentional), flawed Internet security open software development (OpenSSL is underfunded, relies on unpaid volunteers, companies who benefit do not contribute enough, change needed), Nerd humor (these jokes seemed funny at 4am), first Earth-sized planet in habitable zone discovered (looking for life in the Universe, a major succcess for the NASA Kepler Science Telescope), Googles Easter eggs (seven identified, many more still uncovered, an Easter tradition), and and Space X launches (good news for NASA private space initiative, will supply cargo to ISS, manned flights will follow soon). This show originally aired on Saturday, April 19, 2014, at 9:00 AM EST on WFED (1500 AM).

DJI Phantom drone flyaways, automatic website login using cookies, dangers of digital litter(old pics may resurface), password storage using one way hash algorithm, Profiles in IT (Barry Appelman, father of AIM Buddy List and TCP/IP pioneer), Heartbleed Bug author (CS German grad student, unpaid volunteer working on OpenSSL, error unintentional), flawed Internet security open software development (OpenSSL is underfunded, relies on unpaid volunteers, companies who benefit do not contribute enough, change needed), Nerd humor (these jokes seemed funny at 4am), first Earth-sized planet in habitable zone discovered (looking for life in the Universe, a major succcess for the NASA Kepler Science Telescope), Googles Easter eggs (seven identified, many more still uncovered, an Easter tradition), and and Space X launches (good news for NASA private space initiative, will supply cargo to ISS, manned flights will follow soon). This show originally aired on Saturday, April 19, 2014, at 9:00 AM EST on WFED (1500 AM).

This week the YMB Team has two awesome discussions for you. First, we want to try to understand the Heartbleed Bug together. This is a very serious security issue that has affected a large portion of the internet, including Bitcoin. Some have even suggested that perhaps the government was involved in the bug and has ...The post YMB Podcast E16: Heartbleed and APIcoin.io appeared first on You, Me, and BTC. Keep up on Twitter and Facebook!

This week the YMB Team has two awesome discussions for you. First, we want to try to understand the Heartbleed Bug together. This is a very serious security issue that has affected a large portion of the internet, including Bitcoin. Some have even suggested that perhaps the government was involved in the bug and has ...The post YMB Podcast E16: Heartbleed and APIcoin.io appeared first on You, Me, and BTC. Keep up on Twitter and Facebook!

What is the Heartbleed Bug? There has been a great deal of confusion over the recent Heartbleed bug. Security experts have said it is not yet clear whether the scanning efforts are benign or are the work of cyber thieves keen to steal data. Security professionals and developers previously advised people to change all their passwords; however Google said logins for its services don't need to be changed unless they were used on other sites. Google contradicted other advice from Yahoo's blogging platform Tumblr, who told users they should change their passwords everywhere. The conflicting guidance is further complicated with experts telling users that updating passwords is useless unless a website has patched its servers - but it is not always obvious to the public when this has happened.

Linus ist wieder mal unterwegs aber dafür ist Andre Meister frisch von seiner Südostasienreise zurückgekehrt und führt durch die Themen der Sendung. Wir blicken auf das vielbeachtete und vieldiskutierte Urteil des Europäischen Gerichtshofs zur Vorratsdatenspeicherungs-Richtlinie der EU, diskutieren die Implikationen und Verdächtigungen rund um den fiesen Heartbleed-Bug und schütteln den Kopf über den ruppigen Start und die unklare Linie des NSA-Untersuchungsausschusses des Deutschen Bundestages. Zum Abschluss schauen wir noch auf die diesjährigen Preisträger der Big Brother Awards 2014.

The Heartbleed bug has been in the news for about a week now so you have probably heard about it, even if you don't know exactly what it is or what it means for you and your computer security.  Today we'll break it down into simple terms, as well as some recommendations about what action [...] Read more » The post What to do about the Heartbleed bug first appeared on The Computer Tutor.Download Ashford for WordPress

台北から、台湾立法院占拠、Dropbox Carousel、Heartbleed、WWDC、マイク、小籠包などについて話しました。 Show Notes OSDC.TW 2014 Sunflower Student Movement 零時政府 g0v.tw Introducing Carousel: A new gallery from Dropbox Accidental Tech Podcast: 60: The Great Odwalla Flavor Change of 2013 Rebuild SP1 Heartbleed Bug Heartbleed Challenge WWDC - Apple Developer OS X 10.9 Mavericks: The Ars Technica Review Microphones - Tatsuhiko Miyagawa's blog Samson Q2U

Today we talked about the Heartbleed Bug (and a list of passwords you should change [from Mashable, by the way]), the sale of Google Glass for one day, the IRS not sticking to a deadline, and 3D Printing for the masses brought to you by … Staples? We also have a little debate about those darned commercials. […]

Downloading Tech Talk podcast, FIOS broadband bandwidth (not guaranteed, slows at peak times), solving Squeezebox problems (rebooting, Wi-Fi connectivity, discontinued product line), spam (Gmail has been spam filter), Profiles in IT (Werner Hans Peter Vogels, Amazon CTO), Product of the Week (Alcohol Tester for iPhone, $20 from iPega) iPhone replacement (upgrade challenges), Heartbleed Bug (secure socket layer encryption, OpenSSL, introduced December 2011, patch released), worlds riches ex-hackers (many IT entrepreneurs are former hackers, founders of WhatsApp, Apple, Microsoft, Twitter, Facebook), Netflix plea for net neutrality rejected by FCC (expect Netflix surcharge by ISPs), and extending iPhone battery life (turn off background updates for apps and email push). This show originally aired on Saturday, April 12, 2014, at 9:00 AM EST on WFED (1500 AM). This show originally aired on Saturday, April 12, 2014, at 9:00 AM EST on WFED (1500 AM).

Downloading Tech Talk podcast, FIOS broadband bandwidth (not guaranteed, slows at peak times), solving Squeezebox problems (rebooting, Wi-Fi connectivity, discontinued product line), spam (Gmail has been spam filter), Profiles in IT (Werner Hans Peter Vogels, Amazon CTO), Product of the Week (Alcohol Tester for iPhone, $20 from iPega) iPhone replacement (upgrade challenges), Heartbleed Bug (secure socket layer encryption, OpenSSL, introduced December 2011, patch released), worlds riches ex-hackers (many IT entrepreneurs are former hackers, founders of WhatsApp, Apple, Microsoft, Twitter, Facebook), Netflix plea for net neutrality rejected by FCC (expect Netflix surcharge by ISPs), and extending iPhone battery life (turn off background updates for apps and email push). This show originally aired on Saturday, April 12, 2014, at 9:00 AM EST on WFED (1500 AM). This show originally aired on Saturday, April 12, 2014, at 9:00 AM EST on WFED (1500 AM).

Eike und ich sprechen über Feuer, Videospiele, Filme, Serien, den Heartbleed-Bug und vieles mehr. Ich habe leicht einen sitzen und das hört man. Genauso wie die Waschmaschine nebenan. Sorry dafür.

Bill Morgan talks about the Heartbleed bug; Naked FL woman McD's rampage; University says no to giving an honorary degree to a critic of Islam; The staff gets a talking to

Новости Chef Supermarket Sysdig — strace, tcpdump и lsof в одном флаконе, оффициальный сайт Новая консоль в Hosted Enterprise Chef DevOps проекты в Microsoft Windows Management Framework, Chocolatey, аналог ports или brew Шеф в ажуре Vagrant box для HyperV Puppet тоже в ажуре Анализ логов nginx с помощью Python Сборник статей по администрированию nginx Управление конфигурацией — это сложно Обсуждение Новый супермаркет Для тех, кто еще нет The Heartbleed Bug Битва систем управления конфигураций 26 апреля Интервью с Александром Плагины Саши для Puppet

The HeartBleed bug is running rampant on many major sites such as Chase and Yahoo while people are scrambling madly to find solutions. At the SOURCE Boston Conference this morning, I caught up with Melissa Elliot from VeraCode as she was examining the impact of the HeartBleed on Yahoo, using software from Jared Staffer of JSPenguin.org. I asked her to describe what she was seeing. Have a listen... About Melissa Elliot I am 0xabad1dea (the zero-x is silent), a professional application security researcher also known as Melissa Elliott. If my name breaks your website we have a personal problem. My long-term goal is to convince programmers that the security of everything from the global economy all the way up to online Pokémon battles is in their hands and they need to take that responsibility seriously. My primary means of interacting with the community is through my extremely active Twitter account.

El famoso bug Heartbleed, qué es, cómo nos afecta y qué podemos hacer para protegernos. Patreon: https://www.patreon.com/rcracking