Numerical label used to identify a network interface in an IP network
POPULARITY
If someone threatens you because they know your IP address, it's an empty threat.
Did you know one company has the monopoly on the .com top level domain? How did Verisign become the one DNS registry for .com, and why did some politicians recently challenge the company's practices?See omnystudio.com/listener for privacy information.
Q&A195: Nate's phone literally exploded. What's the plan to replace it and how does we use our phones? What changes have we noticed in our personal lives as a result of our privacy journeys? How would we summarize threat modeling? What are our thoughts on the risks of services that break TLS? Do we have recommendations for encrypted Slack alternatives for enterprise environments? Is a dedicated IP Address worth it? Join our next Q&A on Patreon: https://www.patreon.com/collection/415684?view=expandedWelcome to the Surveillance Report - featuring Techlore & The New Oil to keep you updated on the newest security & privacy news.❤️ Support us on Patreon: https://www.patreon.com/surveillancepod
Episode 1044 - The US Open travels to North Carolina to Pinehurst Number 2 this week. Scheffler, McIlroy, Schauffele, Hovland are all looking for a Major win. Live on Sky Sports Golf, we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a golf bet. Make sure to visit our website for our bet365 new customer offers guide. Coral Bet £5, Get £20 in Free Bets For new customers 18+ Coral are offering a Bet £5, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: 18+ Eligible UK+IRE players. Paypal & some deposit & bet types excl. Min first £5 bet within 14 days of account reg at min odds 1/2 = 4x £5 free bets. Free bets valid for 7 days, stake not returned. No cashout, restrictions + T&Cs apply #Ad Coral dets: coral new customer offer Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports sign up offer Betfred Bet £10, Get £50 in Free Bets For new customers only, 18+, Betfred are offering a Bet £10, Get £50 in Free Bets and Bonuses offer. Use promo code SUMMER50 when registering. Significant Terms: New customers only. Register with SUMMER50 between 31/05/24 – 14/07/24. First bet £10+ at Evens (2.0)+ on Sports within 7 days to get 3 x £10 in Sports Free Bets & 2 x £10 in Acca Free Bets within 10 hours of settlement. 7-day expiry. Eligibility & payment exclusions apply. Full T&Cs apply. Betfred dets: betfred new customer offer Here is our bet365 promo 10 30 guide and our ladbrokes promo code guide. Unibet + Ladbrokes are partners of the NCO Network read our unibet welcome offer and ladbrokes new customer offer guides. Read our pages bet365 bonus code william hill bonus code william hill welcome offer Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ 4) https://www.newcustomeroffer.co.uk/offers/bet365-new-customer-offers/ 5) https://www.newcustomeroffer.co.uk/promo-codes/betfred-promo-code-2024/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit GambleAware.org for more information and of course please bet responsibly.
Episode 1046 - UFC Fight Night from The Apex this Saturday night features Alex Perez vs Tatsuro Taira in the Flyweight division. Live on TNT Sports we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a bet. Make sure to visit our website for our bet365 new customer offer guide. Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports sign up offer Ladbrokes Bet £5, Get £20 in Free Bets For new customers only. 18+, Ladbrokes are offering a Bet £5, Get £20 in Free Bets. No promo code required when registering. Significant Terms: 18+ New UK+IRE customers. Paypal and certain deposit types and bet types excluded. Min £5 bet within 14 days of account reg at min odds 1/2 = 4 x £5 free bets. Free bets valid for 4 days on sports, stake not returned, restrictions apply. T&Cs apply. #Ad Ladbrokes dets: ladbrokes welcome offer William Hill Bet £10, Get £30 in Free Bets For new customers only, 18+, William Hill are offering a Bet £10, Get £30 in Free Bets. Use promo code R30 when registering Significant Terms: 18+. Play Safe. From 00:01 on 18.10.2022. £30 bonus. New customers only. Minimum £10 stake on odds of 1/2 (1.5) or greater on sportsbook (excluding Virtual markets). Further terms apply. #ad William Hill dets: william hill sign up offer Here is our bet365 10 for 30 guide and our betfred sign up offer guide. Read our ladbrokes bonus code and coral sign up offer guides. Read our pages bet365 bonus code betvictor bonus code betvictor welcome offer new customer offers Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit GambleAware.org for more information and of course please bet responsibly.
Episode 1038 - The Memorial Tournament in Ohio, is annual pilgrimage for Jack Nicklaus on the PGA Tour. Scheffler, McIlroy, Schauffele, Fleetwood, Burns, and Homa all play. Live on Sky Sports Golf, we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a golf bet. Make sure to visit our website for our bet365 new customer guide. Coral Bet £5, Get £20 in Free Bets For new customers 18+ Coral are offering a Bet £5, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: 18+ Eligible UK+IRE players. Paypal & some deposit & bet types excl. Min first £5 bet within 14 days of account reg at min odds 1/2 = 4x £5 free bets. Free bets valid for 7 days, stake not returned. No cashout, restrictions + T&Cs apply #Ad Coral dets: coral new customer offer Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports sign up offer Betfred Bet £10, Get £50 in Free Bets For new customers only, 18+, Betfred are offering a Bet £10, Get £50 in Free Bets and Bonuses offer. Use promo code SUMMER50 when registering. Significant Terms: New customers only. Register with SUMMER50 between 31/05/24 – 14/07/24. First bet £10+ at Evens (2.0)+ on Sports within 7 days to get 3 x £10 in Sports Free Bets & 2 x £10 in Acca Free Bets within 10 hours of settlement. 7-day expiry. Eligibility & payment exclusions apply. Full T&Cs apply. Betfred dets: betfred new customer Here is our 365bet guide and our ladbrokes promo code guide. Unibet + Ladbrokes are partners of the NCO Network read our unibet new customer offer and ladbrokes new customer offer guides. Read our pages bet365 bonus code uk william hill promo code william hill 30 free bet Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ 4) https://www.newcustomeroffer.co.uk/offers/bet365-new-customer-offers/ 5) https://www.newcustomeroffer.co.uk/offers/coral-new-customer-offers/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit GambleAware.org for more information and of course please bet responsibly.
Episode 1040 - UFC Fight Night from Louisville this Saturday night features Cannonier vs Imavov in the Middleweight division. Live on TNT Sports we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a bet. Make sure to visit our website for our bet365 new customer offer guide. Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports welcome offer Ladbrokes Bet £5, Get £20 in Free Bets For new customers only. 18+, Ladbrokes are offering a Bet £5, Get £20 in Free Bets. No promo code required when registering. Significant Terms: 18+ New UK+IRE customers. Paypal and certain deposit types and bet types excluded. Min £5 bet within 14 days of account reg at min odds 1/2 = 4 x £5 free bets. Free bets valid for 4 days on sports, stake not returned, restrictions apply. T&Cs apply. #Ad Ladbrokes dets: ladbrokes sign up offer William Hill Bet £10, Get £30 in Free Bets For new customers only, 18+, William Hill are offering a Bet £10, Get £30 in Free Bets. Use promo code R30 when registering Significant Terms: 18+. Play Safe. From 00:01 on 18.10.2022. £30 bonus. New customers only. Minimum £10 stake on odds of 1/2 (1.5) or greater on sportsbook (excluding Virtual markets). Further terms apply. #ad William Hill dets: william hill welcome offer Here is our bet365 10 for 30 guide and our betfred sign up offer guide. Read our ladbrokes promo code and coral sign up offer guides. Read our pages bet365 bonus code betvictor bonus code betvictor bet 10 get 40 new customer offers Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit GambleAware.org for more information and of course please bet responsibly.
Episode 1036 - UFC 302 comes from the Prudential Center, New Jersey this Saturday. Main event is Islam Makhachev vs Dustin Poirier for the Lightweight World Championship. Live on TNT Sports we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a bet. Make sure to visit our website for our bet365 new customer offer guide. Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: sign up offer boylesports Ladbrokes Bet £5, Get £20 in Free Bets For new customers only. 18+, Ladbrokes are offering a Bet £5, Get £20 in Free Bets. No promo code required when registering. Significant Terms: 18+ New UK+IRE customers. Paypal and certain deposit types and bet types excluded. Min £5 bet within 14 days of account reg at min odds 1/2 = 4 x £5 free bets. Free bets valid for 4 days on sports, stake not returned, restrictions apply. T&Cs apply. #Ad Ladbrokes dets: ladbrokes sign up offer William Hill Bet £10, Get £30 in Free Bets For new customers only, 18+, William Hill are offering a Bet £10, Get £30 in Free Bets. Use promo code R30 when registering Significant Terms: 18+. Play Safe. From 00:01 on 18.10.2022. £30 bonus. New customers only. Minimum £10 stake on odds of 1/2 (1.5) or greater on sportsbook (excluding Virtual markets). Further terms apply. #ad William Hill dets: william hill welcome offer Here is our bet365 promo code 10 30 guide and our betfred sign up offer guide. Read our ladbrokes promo code and coral welcome offer guides. Read our pages bet365 bonus code betvictor bonus code betvictor bet 10 get 40 william hill 30 free bet Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit GambleAware.org for more information and of course please bet responsibly.
Episode 1033 - The RBC Canadian Open in Hamilton, Ontario is this week's PGA Tour action. Fleetwood, Lowry, Burns, Conners, Hughes and Rai all play. Live on Sky Sports Golf, we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a golf bet. Make sure to visit our website for our bet365 opening offer guide. Coral Bet £5, Get £20 in Free Bets For new customers 18+ Coral are offering a Bet £5, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: 18+ Eligible UK+IRE players. Paypal & some deposit & bet types excl. Min first £5 bet within 14 days of account reg at min odds 1/2 = 4x £5 free bets. Free bets valid for 7 days, stake not returned. No cashout, restrictions + T&Cs apply #Ad Coral dets: coral sign up offer Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports sign up offer Betfred Bet £10, Get £50 in Bonuses For new customers only, 18+, Betfred are offering a Bet £10, Get £50 in Free Bets and Bonuses offer. Use promo code WELCOME50 when registering. Significant Terms: New customers only. Register (excl. 13/04/24) with WELCOME50. First bet £10+ at Evens (2.0)+ on Sports within 7 days to get Free Bets: £20 In-Play, £20 Acca & 50 x £0.20 (£10) Free Spins on Fishin' Frenzy within 10 hours of settlement. 7-day expiry. Eligibility & payment exclusions apply. Full T&Cs apply. Betfred dets: betfred welcome offer Here is our bet365 bonus30 guide and our ladbrokes bonus code guide. Unibet + Ladbrokes are partners of the NCO Network read our unibet sign up offer and ladbrokes new customer offer guides. Read our pages bet365 promo codes betvictor sign up offer william hill bet 10 get 30 Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ 4) https://www.newcustomeroffer.co.uk/offers/bet365-new-customer-offers/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit GambleAware.org for more information and of course please bet responsibly.
Episode 1028 - The Charles Schwab Challenge in Fort Worth, Texas is this week's PGA Tour action. Homa, Morikawa, Spieth and Finau all play. Live on Sky Sports Golf, we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a golf bet. Make sure to visit our website for our bet365 opening offer guide. Coral Bet £5, Get £20 in Free Bets For new customers 18+ Coral are offering a Bet £5, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: 18+ Eligible UK+IRE players. Paypal & some deposit & bet types excl. Min first £5 bet within 14 days of account reg at min odds 1/2 = 4x £5 free bets. Free bets valid for 7 days, stake not returned. No cashout, restrictions + T&Cs apply #Ad Coral dets: coral sign up offer Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports sign up offer Betfred Bet £10, Get £50 in Bonuses For new customers only, 18+, Betfred are offering a Bet £10, Get £50 in Free Bets and Bonuses offer. Use promo code WELCOME50 when registering. Significant Terms: New customers only. Register (excl. 13/04/24) with WELCOME50. First bet £10+ at Evens (2.0)+ on Sports within 7 days to get Free Bets: £20 In-Play, £20 Acca & 50 x £0.20 (£10) Free Spins on Fishin' Frenzy within 10 hours of settlement. 7-day expiry. Eligibility & payment exclusions apply. Full T&Cs apply. Betfred dets: betfred welcome offer Here is our 365bet bonus code 10 30 guide and our promo code ladbrokes guide. Unibet + Ladbrokes are partners of the NCO Network read our unibet new customer offer and ladbrokes sign up offer guides. Read our pages bet365 promo code betvictor sign up offer william hill 30 free bet Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ 4) https://www.newcustomeroffer.co.uk/offers/bet365-new-customer-offers/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit GambleAware.org for more information and of course please bet responsibly.
Episode 1020 - The second Major is upon us - the 2024 PGA Championship from Valhalla. The world's best are in Kentucky with Scheffler and McIlroy both arriving off wins. Live on Sky Sports Golf, we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a golf bet. Make sure to visit our website for our bet365 opening offer guide. Coral Bet £5, Get £20 in Free Bets For new customers 18+ Coral are offering a Bet £5, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: 18+ Eligible UK+IRE players. Paypal & some deposit & bet types excl. Min first £5 bet within 14 days of account reg at min odds 1/2 = 4x £5 free bets. Free bets valid for 7 days, stake not returned. No cashout, restrictions + T&Cs apply #Ad Coral dets: coral new customer offer Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports new customer offer Betfred Bet £10, Get £50 in Bonuses For new customers only, 18+, Betfred are offering a Bet £10, Get £50 in Free Bets and Bonuses offer. Use promo code WELCOME50 when registering. Significant Terms: New customers only. Register (excl. 13/04/24) with WELCOME50. First bet £10+ at Evens (2.0)+ on Sports within 7 days to get Free Bets: £20 In-Play, £20 Acca & 50 x £0.20 (£10) Free Spins on Fishin' Frenzy within 10 hours of settlement. 7-day expiry. Eligibility & payment exclusions apply. Full T&Cs apply. Betfred dets: betfred new customer offer Here is our bet365 promo code 10 30 guide and our bonus code ladbrokes guide. Unibet + Ladbrokes are partners of the NCO Network read our unibet new customer offer and ladbrokes new customer offer guides. Read our pages bet365 bonus code betvictor sign up offer coral promo code Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit BeGambleAware.org for more information and of course please bet responsibly.
Episode 1013 - The PGA Tour is at Quail Hollow for the Wells Fargo Championship which sees McIlroy, Schauffele, Cantlay and Max Homa all play. Live on Sky Sports Golf, we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a golf bet. Make sure to visit our website for our bet365 new customer guide. Coral Bet £5, Get £20 in Free Bets For new customers 18+ Coral are offering a Bet £5, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: 18+ Eligible UK+IRE players. Paypal & some deposit & bet types excl. Min first £5 bet within 14 days of account reg at min odds 1/2 = 4x £5 free bets. Free bets valid for 7 days, stake not returned. No cashout, restrictions + T&Cs apply #Ad Coral dets: coral new customer Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports new customer Betfred Bet £10, Get £50 in Bonuses For new customers only, 18+, Betfred are offering a Bet £10, Get £50 in Free Bets and Bonuses offer. Use promo code WELCOME50 when registering. Significant Terms: New customers only. Register (excl. 13/04/24) with WELCOME50. First bet £10+ at Evens (2.0)+ on Sports within 7 days to get Free Bets: £20 In-Play, £20 Acca & 50 x £0.20 (£10) Free Spins on Fishin' Frenzy within 10 hours of settlement. 7-day expiry. Eligibility & payment exclusions apply. Full T&Cs apply. Betfred dets: betfred new customer offer Here is our bet365 promo code 10 30 guide and our ladbrokes bonus code guide. Unibet + Ladbrokes are partners of the NCO Network read our unibet new customer offer and ladbrokes new customer offer guides. Read our pages bet365 bonus code 2024 betvictor sign up offer coral promo code Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit BeGambleAware.org for more information and of course please bet responsibly.
Episode 1007 - The PGA Tour is at TPC Craig Ranch for the CJ Cup Byron Nelson which sees Spieth, Tom Kim and Jason Day all play. Live on Sky Sports Golf, we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a golf bet. Make sure to visit our website for our bet365 new customer offer guide. Coral Bet £5, Get £20 in Free Bets For new customers 18+ Coral are offering a Bet £5, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: 18+ Eligible UK+IRE players. Paypal & some deposit & bet types excl. Min first £5 bet within 14 days of account reg at min odds 1/2 = 4x £5 free bets. Free bets valid for 7 days, stake not returned. No cashout, restrictions + T&Cs apply #Ad Coral dets: coral new customer offer Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports sign up offer Betfred Bet £10, Get £50 in Bonuses For new customers only, 18+, Betfred are offering a Bet £10, Get £50 in Free Bets and Bonuses offer. Use promo code WELCOME50 when registering. Significant Terms: New customers only. Register (excl. 13/04/24) with WELCOME50. First bet £10+ at Evens (2.0)+ on Sports within 7 days to get Free Bets: £20 In-Play, £20 Acca & 50 x £0.20 (£10) Free Spins on Fishin' Frenzy within 10 hours of settlement. 7-day expiry. Eligibility & payment exclusions apply. Full T&Cs apply. Betfred dets: betfred new customer offer Here is our bet365 promo code 10 30 guide and our ladbrokes bonus code guide. Unibet + Ladbrokes are partners of the NCO Network read our sign up offer unibet and ladbrokes new customer offer guides. Read our pages bet365 bonus code uk betvictor sign up offer coral promo code Top pages Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit BeGambleAware.org for more information and of course please bet responsibly.
Episode 1004 - UFC Fight Night from The Apex this Saturday night features Matheus Nicolau vs Alex Perez in the Flyweight division. Make sure to visit our website for our bet365 new customer offer guide. Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports welcome offer Ladbrokes Bet £5, Get £20 in Free Bets For new customers only. 18+, Ladbrokes are offering a Bet £5, Get £20 in Free Bets. No promo code required when registering. Significant Terms: 18+ New UK+IRE customers. Paypal and certain deposit types and bet types excluded. Min £5 bet within 14 days of account reg at min odds 1/2 = 4 x £5 free bets. Free bets valid for 4 days on sports, stake not returned, restrictions apply. T&Cs apply. #Ad Ladbrokes dets: ladbrokes new customer William Hill Bet £10, Get £30 in Free Bets For new customers only, 18+, William Hill are offering a Bet £10, Get £30 in Free Bets. Use promo code R30 when registering Significant Terms: 18+. Play Safe. From 00:01 on 18.10.2022. £30 bonus. New customers only. Minimum £10 stake on odds of 1/2 (1.5) or greater on sportsbook (excluding Virtual markets). Further terms apply. #ad William Hill dets: william hill new customer Here is our bet365 bet 10 get 30 guide and our betfred new customer offer guide. Read our ladbrokes bonus code 2024 and coral welcome offer guides. Read our pages bet365 promo code 2024 william hill promo code new customer offer bet365 maximum payout Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ 4) https://www.newcustomeroffer.co.uk/offers/bet365-new-customer-offers/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit BeGambleAware.org for more information and of course please bet responsibly.
Episode 1000 - The DP World Tour is in Japan for the ISPS Handa Championship which sees Bezuidenhout, Pavon and Nakajima all play. Live on Sky Sports Golf, we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a golf bet. Make sure to visit our website for our bet365 opening offer guide. Coral Bet £5, Get £20 in Free Bets For new customers 18+ Coral are offering a Bet £5, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: 18+ Eligible UK+IRE players. Paypal & some deposit & bet types excl. Min first £5 bet within 14 days of account reg at min odds 1/2 = 4x £5 free bets. Free bets valid for 7 days, stake not returned. No cashout, restrictions + T&Cs apply #Ad Coral dets: coral new customer offer Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports sign up offer Betfred Bet £10, Get £50 in Bonuses For new customers only, 18+, Betfred are offering a Bet £10, Get £50 in Free Bets and Bonuses offer. Use promo code WELCOME50 when registering. Significant Terms: New customers only. Register (excl. 13/04/24) with WELCOME50. First bet £10+ at Evens (2.0)+ on Sports within 7 days to get Free Bets: £20 In-Play, £20 Acca & 50 x £0.20 (£10) Free Spins on Fishin' Frenzy within 10 hours of settlement. 7-day expiry. Eligibility & payment exclusions apply. Full T&Cs apply. Betfred dets: betfred new customer offer Here is our bet365 promo 10 30 guide and our ladbrokes bonus code guide. Unibet + Ladbrokes are partners of the NCO Network read our unibet welcome offer and ladbrokes sign up offer guides. Read our pages bet365 bonus code 2024 betvictor sign up offer coral promo code Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/ladbrokes-new-customer-offer/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit BeGambleAware.org for more information and of course please bet responsibly.
In today's podcast, Christin Cifaldi, Director of Product Development & Analytics, explains what a demilitarized zone network (DMZ) is and how it secures the perimeter around internal LANs. She also discusses a few key items on access control, network segmentation, and IP spoofing prevention. Listen in to learn more.
Episode 995 - The PGA Tour is at Harbour Town Golf Links for the RBC Heritage which sees Scheffler, McIlroy and Aberg all play. Live on Sky Sports Golf, we highlight 3 of the best bookmaker new customer offers available right now, if you fancy a golf bet. Make sure to visit our website for our bet365 new customer promo guide. Coral Bet £5, Get £20 in Free Bets For new customers 18+ Coral are offering a Bet £5, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: 18+ Eligible UK+IRE players. Paypal & some deposit & bet types excl. Min first £5 bet within 14 days of account reg at min odds 1/2 = 4x £5 free bets. Free bets valid for 7 days, stake not returned. No cashout, restrictions + T&Cs apply #Ad Coral dets: coral new customer offer Boylesports Bet £10, Get £20 in Free Bets For new customers 18+ Boylesports are offering a Bet £10, Get £20 in Free Bets offer. No promo code is required when registering. Significant Terms: New UK customers (Excluding NI) only. Mobile exclusive. Min Deposit £10. Min stake £10. Min odds Evs. Free bet applied on 1st settlement of any qualifying bet. 30 days to qualify. Free bets expire in 7 days. Cashed out/Free Bets won't apply. Account & Payment method restrictions apply. 1 Free Bet offer per customer, household & IP Address only. 18+. T&Cs apply. Boylesports dets: boylesports sign up offer Betfred Bet £10, Get £50 in Bonuses For new customers only, 18+, Betfred are offering a Bet £10, Get £50 in Free Bets and Bonuses offer. Use promo code WELCOME50 when registering. Significant Terms: New customers only. Register (excl. 13/04/24) with WELCOME50. First bet £10+ at Evens (2.0)+ on Sports within 7 days to get Free Bets: £20 In-Play, £20 Acca & 50 x £0.20 (£10) Free Spins on Fishin' Frenzy within 10 hours of settlement. 7-day expiry. Eligibility & payment exclusions apply. Full T&Cs apply. Betfred dets: betfred new customer offer Here is our bet365 promo guide and our ladbrokes bonus code guide. Unibet + Ladbrokes are partners of the NCO Network read our unibet sign up offer and ladbrokes new customer guides. Read our pages bet365 bonus code uk betvictor sign up offer coral promo code Top pages 1) https://www.newcustomeroffer.co.uk/offers/betfred-new-customer-offers/ 2) https://www.newcustomeroffer.co.uk/promo-codes/bet365-bonus-code-uk/ 3) https://www.newcustomeroffer.co.uk/offers/boylesports-sign-up-offer/ Listeners & Subscribers 18+. Please be Gambleaware, you can visit BeGambleAware.org for more information and of course please bet responsibly.
If you feel like you have been checking out online porn without anyone knowing about it, well, then... here's a short primer about how computers work.
In Canada, your IP address has the right to remain silent. Elon Musk is suing OpenAI for not being Open. Apple faces a class action not allowing competitive access to backup services and the World Server Throwing Competition in March 2024 is accused of being too violent towards servers.
The Supreme Court rules police need a warrant to access IP addresses. Law enforcement says it will make parts of their job, like tracking down online child exploitation, much harder. A plan to help reduce mortgage payments for first-time buyers comes to an end. Also: Brian Mulroney will be remembered for free trade, the GST and the fight against apartheid, but he's also known as the green prime minister for his efforts to protect the environment by stopping acid rain and reducing CFCs. Plus: Thieves in Toronto are doubling up: stealing debit and credit machines, then using them to take much more.
Got a Minute? Checkout today's episode of The Guy R Cook Report podcast - the Google Doc for this episode is @ How To Easily Change Your IP Address by Resetting Your Router ----more---- Support this podcast Subscribe where you listen to podcasts I help goal oriented business owners that run established companies to leverage the power of the internet Contact Guy R Cook @ https://guyrcook.com The Website Design Questionnaire https://guycook.wordpress.com/start-with-a-plan/ In the meantime, go ahead follow me on Twitter: @guyrcookreport Click to Tweet Be a patron of The Guy R Cook Report. Your help is appreciated. Contact Guy R Cook https://theguyrcookreport.com/#theguyrcookreport Follow The Guy R Cook Report on Podbean iPhone and Android App | Podbean https://bit.ly/3m6TJDV Thanks for listening, viewing or reading the show notes for this episode. This episode of The Guy R Cook Report is on YouTube too @ This episode of The Guy R Cook Report Have a great new year, and hopefully your efforts to Entertain, Educate, Convince or Inspire are in play vDomainHosting, Inc 3110 S Neel Place Kennewick, WA 509-200-1429
Kelly Molson: Welcome to Skip the Queue, a podcast for people working in or working with visitor attractions. I'm your host, Kelly Molson. In this new monthly slot, Rubber Cheese CEO Paul Marden joins me to discuss different digital related topics. In this episode, we're discussing personalisation and what attractions can do to make their websites feel more tailored to their audience. You can subscribe on all the usual channels by searching Skip the Queue. Kelly Molson: Hello, hello. Welcome back to the podcast. Paul Marden: Hello again. Good, isn't it? Back here for a third time. Kelly Molson: It is good. You're lucky. Right, let's start the podcast as we do with this one. What attraction have you visited most recently and what did you love about it? Paul Marden: Yeah, I was pretty lucky the other day because I went to the National Maritime Museum, because I'm a Trustee of Kids in Museums and we had our Family Friendly Museum Awards and we held it in their lecture theatre at the Maritime Museum up in Greenwich. And I'd been to the Greenwich Museums before. I'd been to the top of the hill where the observatory is, but I've never been to the bottom of the hill, which is where Maritime Museum is. And so I'm just there with all the great and good of all of the museums around the country that have been shortlisted for the awards, which was brilliant. Paul Marden: But the bit that I really loved was that I was there in the daytime during the midweek, so peak school trip season, and it was just amazing to be in this place with all these school kids there doing their school trips, which is something I'm really passionate about, the value of those school trips. It was something that really got the kids lost out on when COVID hit and everybody was working online and then they went back to schools, but the schools had to be really careful about what they did and there were no school trips. That's such a magical part of being in primary school that they were just robbed of. So seeing all those kids in that amazing place was just wonderful. I got to rub shoulders with the great and the good. Paul Marden: I met some Skip the Queue alumni at the event as well, and I had a lovely cup of tea and a piece of cake in the cafe with our Project Manager, Becs. Did you imagine a better day? Kelly Molson: No, it's a perfect day. I was just thinking as you were talking about the school trips, it's like a rite of passage at school, isn't it, to be walking around a museum with a clipboard to draw a picture of it? Go and find X and draw a picture of it. I just got really vivid memories of doing that . Paul Marden: They were all just herring around, doing exactly that and loving life and buying their little rubbers in the shop and things like that. Kelly Molson: You should collect rubbers, kids. All the cool people do. Okay, I need to give a big shout out to National Trust. We are really lucky where we live. So we've got like a triangle of National Trust venues near us. So we've got Wimpole, Ickworth and Anglesey Abbey, all within like 25 minutes, half an hour, a little bit longer for Ickworth. Each one of them is incredible. They all have a different adventure. They've got great play areas, beautiful historic houses and beautiful walks. And we have spent a lot of time in the last two years at National Trust venues, walking, pushing the pram. But now Edie's toddling around, we're into the activity areas and all of them are phenomenal. Wimpole has just redone their outdoor play area, which we're yet to visit. Kelly Molson: We're just waiting for a dry day to get back over to that one. But it's just the membership. So I think the membership is such superb value for money. Paul Marden: It really is.Kelly Molson: I cannot speak more highly of it. It is such good value for money and we get 45678 times the amount of value from it every single year we have this membership, so much so that we gift it to people as well. Kelly Molson: We were really lucky. We got given some money for a wedding gift and we said, rather than think when people give you money, it's lovely, but you can put it in the bank and you forget about it. Or it just gets spent on stuff. And were like, “Right, if we get given money, we'll spend it on a thing and we can say we bought this thing with it.” And so that we bought the National Trust membership with it. Paul Marden: That's a cracking idea. Kelly Molson: Yeah, it was really good. Really good idea. But then it's such good value that we've then bought membership for my parents. Paul Marden: Really?Kelly Molson: Yeah. So I think it was like a joint. I think Father's Day and my mum's birthday are quite close together, so it might have been a joint one for that. They go and they go on their own and then they go and then they take Edie as well. And it's absolutely brilliant. So, yeah, well done, National Trust. Well done, Wimpole. Especially because pigs. Someone, the tiny person in my house, is very happy about pigs there. I don't mean myself, I mean Edie. And also, I just want to give a big shout out to one of the volunteers. I'm really sorry I didn't get the volunteer's name at Wimpole. He is one of the volunteers in the farm. Kelly Molson: I am a little bit frightened of horses. I think they're beautiful but really big. I saw an old next to the neighbour get kicked by a horse once. Paul Marden: You've literally been scarred for life. Kelly Molson: There's a block up there, but I'm a little bit frightened of horses. And there's a huge Shire horse at Wimpole who's a big old gentle giant. I think he's called Jack. But I am a bit frightened and I don't want that fear to rub off on Edie. And so I very bravely took Edie over to meet the Shire horse. But the volunteer was wonderful. This guy know told us loads of stuff about the horse and he was really great with Edie and she managed to stroke his nose and even I managed to stroke Jack's nose. So, yeah, thank you man whose name I didn't get. It was a really lovely experience and you helped put me at ease and my daughter at ease. So there you go. National Trust and the value of volunteers. Paul Marden: And National Trust volunteers, we've talked about this before. I've been to a couple that are local to me and they just tell the most amazing stories and they engage people in a way that to be so passionate about the thing that you care about and that you want to do that for free to help people to enjoy their experience is just amazing. And there are some, I mean, there are diamonds all over the place in all the museums and places that we visit, but there's plenty of them. When you work that Natural Trust membership, you get to meet a lot of volunteers, don't you? And they are amazing.Kelly Molson: Working it hard. Okay, let's get on to what we're going to discuss today. So we are talking about personalisation and what attractions can do to make their websites feel more personal. So this is an interesting one and I think that we've probably got to put our hands up and make a bit of an apology here. Very few people who took part in the 2023 Visitor Attraction Website Survey actually implement personalisation, but there's a lot of evidence that personalisation improves conversion rates. So there's some stats that I want to read out from the report. Only 6% of respondents personalised their website experience for customers, yet 85% of respondents thought personalisation was highly important. So, question for you, why do you think so many people think it's important, but so few are actually implementing it? Paul Marden: This is where we hold our hands up, isn't it? And we say, I think the answer to that is because we didn't ask the question properly. I've touched base with it. There was a very small set of people, as you say, 6% of people said that they were personalising their websites. But the language that we used in the question was a little bit confusing. And when I reached out to a handful of that 6%, they were like, "Oh, no, that's not what we thought you meant. What we thought you meant was that". So one person said to me, "You could personalise your experience at the venue by buying different things, not personalise the website experience." Yeah. And when you read the language of the question again with that answer in your head, it's obvious why they answered it in the way that they did. Paul Marden: So there's a lesson to be learned there about trialing the questionnaire, making sure that people understand what it is that we're saying and that we agree with the language of what we've used. The fact is, I think a lot of people didn't understand us. So the answers that we got back, the disparity, is clearly confusion based. But even if weren't confused, even if we had the data, my instinct is that there would be a big difference between the two. And that boils down to the fact that I think that personalisation is hard to do and that actually the reason why a lot of people aren't doing it is because it's hard and costly in some cases. But we need to get into the guts of that and understand why. Kelly Molson: Okay, so lesson learned for next year. We need to give more clarity over the questions that we ask. So thanks for the feedback, everybody. We will do that. What do we actually mean by personalisation then? Paul Marden: Yeah, that's a good question. I think that what we mean by personalisation is developing the website in a way that means that you show different contents to different audience members depending on different things. There's lots of different ways in which you can do that. There's a very simple perspective which is around not automatically showing different content to different people, but writing content for your different audiences and making that easily discoverable. It doesn't have to be technically complex. Paul Marden: Yeah. It's really about writing the right content for the right people and making it so that they can get from where they are to where they want to get to and get that right answer. Most of us do that intuitively. Most of us, when we're writing content as marketers, we do personalise the content to the end audience, even if we're not doing that in an automated way. Kelly Molson: I think with this, though, my interpretation of it is the next level onto that, which is, that's true personalisation, because I think those things, yes, that's a very simple way of looking at it, but that for me is not enough when it comes to how we answer this question. So it's the tracking behaviour and showing personal content that to me truly personalises an experience. I can think of things that we've done in the past in terms of tracking where someone tracking the IP of the person that's looking at the website and offering them up content that is in English, UK English or in American English for example. Paul Marden: Absolutely. So it could be about time of day, it's trite. I'm not going to convert somebody but saying good morning, good afternoon, good evening, based on where they are. We did another site a few years ago which showed videos of an experience in the daytime or an experience at nighttime, depending on when you were looking at the website, and then you could switch in between them, which was pretty cool. Kelly Molson: I like that. Paul Marden: Yeah. So you could do time of day, you could do location, like you say, interesting is understanding, building an understanding of somebody fitting an audience profile based on what they've looked at across the site, which gets a little bit creepy, doesn't it? If you're tracking and you use that tracking information without lots of care, you could look really creepy. But if you use it really carefully, then you can adapt the content of the site based on the more that somebody looks at the Schools section of your website and they look at news articles that are related to schools, maybe they're a teacher or maybe they're interested in running a school trip to your venue and you can adapt the recommendations that you make to them based on that understanding, that they show more interest in the educational aspects of what you're doing. Kelly Molson: So this leads us to really to what some of the benefits are. And ultimately, I think the more personalised the site is, the easier it gets for users to meet their needs. You're kind of getting them from the start to their goal quicker and hopefully makes their lives easier as well. Paul Marden: Yeah, absolutely. So I found some data. No, as you know, this came out of the report. Actually 80% of consumers. This was a stat that we pulled out in the report. Kelly Molson: It's from Hubspot. Paul Marden: Yeah. 80% of consumers are more likely to make a purchase from brands that offer a personalised experience. So from that perspective, personalised sites are more likely to convert. There was other stats that we didn't put into the report itself, Boston Consulting Group, found that brands that create personalised experiences, combining digital with customer data, so that the true personalisation you were talking about, increased revenue by 6% to 10%. That's pretty impressive. Kelly Molson: It is pretty impressive. But then that brings us to risk, doesn't it? And that kind of creepy aspect of this and whether it's. Is it okay, hon? Paul Marden: Yeah, I mean, the obvious one is privacy isn't know. We live in an age where people value their privacy and there's laws around that as well. So in the UK we've got GDPR, there are laws all over the world in relation to personal information and tracking somebody's behaviour around your site, what they do and what they look at and being able to associate that back to an individual themselves is definitely data that would be in the scope of the Data Protection Act in the UK and GDPR across Europe. So you have to be really careful about what data you're collecting, how you attribute it back to a natural human, and then what do you do to protect that data? Kelly Molson: And then you've got complexity of managing multiple sites, managing large volumes and multiple sources of data on top of that as well. Paul Marden: I alluded to that earlier on as my kind of. The reason why I think a lot of people don't do this is when you get into the true personalisation, when you're managing a website, there's a lot of content on there, you've got to think about what everybody needs. You got lots of people in the organisation wanting their content put onto the website. You're the editor and you're responsible for that thing. And then somebody says to you, "I think it's a bright idea. We've got twelve audiences and we want to have personalised content for all of those audiences.". And now you don't have one website to manage, you've got twelve websites to manage. Paul Marden: And when it goes wrong for one particular person, when the CEO is looking at the website and it shows them something really weird and they report it to the editor and the editor is like, “Yeah, how do I know what it was that went wrong? Because I don't have one website. I've got twelve websites that I've got to manage.” The level of complexity and the effort that you go into this, if you're not careful, if you're not doing this in a sensible way, it can become quite hard to manage and get your head around. Kelly Molson: I'm just thinking of the horror of trying to support that from an agency perspective as well. When you've got support tickets coming in and the support ticket from the client is. So this person is not happy because they've seen content that isn't okay for them or oh God. Paul Marden: Yeah, if not managed properly, you got this potential explosion of content. You've also got the potential for all of that personal data about the people that are going around the website to be trapped. So now you've got to manage a load of data in volumes that you'd never really thought of before. Where does the customer data come from? If you've got, do we want to show personalised information for people that are members? Where do we hold our membership information? Do we hold that in a CRM system? Okay, so now we need to plumb the CRM system into the website so the website knows if the visitor is a member or not. Do we show different information to somebody that is not a member but they have visited before or how do we know that? Paul Marden: Oh, we need to plumb in data from the ticketing system now. And this can be amazing. And that's how you arrive at that high conversion rate, is that you've enriched the experience with loads of knowledge about the person. It's not like somebody's walking into the gates of the place and you know nothing about them. All of a sudden they're walking into your website, they're interacting with your website and they're not just the same as everyone else, they're special and everybody wants to be special, but to get them to that special place you have to know a lot about them. It can be amazing when it's done well, but it's not trivial. Kelly Molson: So we always at this point, talk about who is doing it well. And this is a really difficult one. Tricky one, because ultimately we haven't asked the question properly in the survey. And because of the nature of personalisation, we don't know who's doing it. We don't know really. So what would be great is if you are an attraction, listening to this episode and you're out there and you are doing it well, we'd really love to talk to you. So we have these little slots that we have between Paul and I. We've got a load of things that we can talk about, but if there's an attraction out there that is doing personalisation really well, we can open up one of these slots for you to come on and have a chat with us and just talk about some of the things that you're doing. Kelly Molson: We'd love to hear some really good success stories for this and some case studies. So yeah, feel free to drop me an email and kelly@rubbercheese.com and let me know. So skipping over the fact that we've got no one to talk about who does it well. Hopefully we will soon. What are the steps that people can take? So what's the starting point? If you are thinking about personalisation, what does that journey look like? Paul Marden: Yeah, first of all, you need to understand the audience, don't you? Or the audience is. And just talking from our own perspective and our process that we follow, that's an early part of the kind of research that we do when we're building a new site is to dig into who the audience is and trying to understand them in as many ways as you possibly can. There's loads of stuff written about this online. There's some brilliant examples that I've looked at before far TfL, who share their audience personas and how much detail they've gone into understanding who the different people are that interact with the TfL website and what their goals are and what makes them special from the perspective of an attraction. You could think of families with young kids that are coming. Paul Marden: You could be thinking of maybe if you were a museum, the people that are running school trips, the teachers and so forth, that could be running it. Maybe the volunteers for your organisation or another audience member that you need to think about and understand who they are, what they look like in terms of their demographic information, the way they think and what they do and how they interact with the world, markers that you could use to be able to help target that. So figuring out that audience persona for each of the people that you want to target, I think, is a crucial job.Kelly Molson: Definitely the starting point. And sometimes that's done internally and sometimes we support with that externally. I think then you have to kind of think about the tools that you've got, what is available to you and how you can use them. And we focus on three main ones at Rubber Cheese, don't we? Paul Marden: Yeah, absolutely. So we focus on WordPress, Umbraco and HubSpot. And it's interesting because each of them have different functionalities in terms of personalisation. And it's been weird, isn't it, to try and think about the tool before you think about what you want to do, but really it's about not trying to put the cart before the horse. If you know what the tool can do, then you can figure out how you can use it. Kelly Molson: Yeah, and I think from a cost perspective as well, it's thinking about what you already have in place that you can manipulate rather than starting from scratch. Paul Marden: HubSpot is a good one to talk about because straight out of the box it's the most capable in terms of personalisation. And it's a bit obscure because a lot of people think of HubSpot as being a CRM package. They don't think of it as being a content management system website tool, but it has that functionality and that's kind of evolved over the last five years into a fully formed content management system.Paul Marden: But because you've got this bolted together CRM and content management system, they've obviously spotted that an opportunity for them and they've put those two things together. And so straight out of the box you can build out personalisation, you can create these what they call smart rules. To say in this section, I want to show this content dependent on this particular factor. So that's pretty awesome to get that straight out of the box I think. Kelly Molson: I struggle to get my head around that just because I do view HubSpot as our CRM. I'm in it constantly. It's my source of truth for all of my clients and networking contacts and suppliers. It's where my sales pipeline is. I can't get my head around it. It's a content management system as well. Paul Marden: Completely. But you can think of, when you're building out a website and it doesn't have to be built out in HubSpot itself. Sorry. In HubSpot's own content management system you can still do a lot of this using their CRM system bolted onto other content management systems. But you can create contacts as somebody becomes a real person. Then you could create that contact inside HubSpot and use the knowledge about that person on the website. You can use the deal functionality inside HubSpot to track when somebody has bought tickets for a place and when they've actually completed the deal. You end up with lots and lots of data going through HubSpot when you do all of that order information going through there. Paul Marden: But that's how you enrich it with the ability to target your existing customers with different content to prospective customers that have never bought from you before. Kelly Molson: What about Umbraco and WordPress? Because this is not something that they do like out of the box. Is it off the shelf? Paul Marden: No, absolutely. So Umbraco doesn't have it straight out of the box. There is a really capable personalisation system called uMarketingSuite which you can buy. It's like annual subscription product that bolts into Umbraco itself. It's been built so that when you're in there and managing all of your audience personas and the content that you want to adapt, it's all in that one package. So once you've got it in there, it does feel like it's all Umbraco because it's been designed in a really neat way. The challenge is you've got to buy it. It's a paid for add on, but the benefit that you get is well worth the investment. But it's not a cheap investment to make in that tooling. And also there's elements of the site needs to be built with that in mind. Kelly Molson: You can't just plug it on at the end and hope for the best. You've got to think about that long. Paul Marden: No, it's not a plug it on. You can retrospectively add it into a site. Yeah, but it will probably cost you more to add it afterwards than if you'd have thought about it at the beginning and done it. So it definitely can be added on later on. But if you think about it in advance and you do it all at the same time, the total cost of the project will probably be lower. Kelly Molson: Okay, so that's a good one to think about. If you are planning new website projects for the new year, you are really happy with the Umbraco platform. There's something to have a conversation around that. And then WordPress plugins. Paul Marden: Exactly. So as with everything WordPress related, hundreds of people have solved this problem. So there are lots and lots of plugins out there. There's a couple that I would mention that came up when I was doing some research around this. There's one called if so dynamic content. There's one called Logic Hop, both of which enable you to adapt your content based on certain rules that you define. So, pretty much like the smart rule functionality that's in HubSpot, you can achieve that natively inside WordPress once you add these plugins. And the cost of those plugins was negligible. Yeah, you're talking under 100 quid for a year worth of setting that up. Kelly Molson: Well, that's good to know. So what are we talking about in terms of budgets for stuff then? So there's effort involved in understanding your audiences first. So that's going to be something that you talk to your agency or you bring in an external or you do internally. You carry out your persona work, you really understand who your audience is. That cost is really variable. It could be workshop based. You might have all of this information internally anyway that you just kind of need the time to pull it all together. Paul Marden: Yeah, absolutely. And you can imagine that could be a day's effort to just pull together a few things that already exist. It could be several weeks worth of effort spread over a longer period of time. I was having a chat with Matt, our Creative Director, about this the other day and literally just scribbled on a piece of paper. But he was like, “Paul, you need to understand this.” At the one end of the spectrum you could spend a little time researching this stuff. At the other end of the spectrum you could spend a lot of time. And what do you get when you go in between the two? You make less assumptions the further down the road you go. So if you can deal with kind of a minimal research and making some broad assumptions, then that's a sensible thing to do.Paul Marden: But if you want the confidence of knowing that you're not making too many assumptions and there's lots of data underlying the things that you're saying, then obviously you need to invest more effort into that research to be able to find that out. Yeah, kind of obvious, but it helped when you drew me that kind of framer. Kelly Molson: So let's look at the tools then. So let's do HubSpot. We talked about HubSpot first. What's the cost involved in that? Because my assumption, I mean, I've used the free version of HubSpot for years. There's a paid version of HubSpot. My assumption was the paid version of HubSpot was really expensive. Paul Marden: So costing HubSpot is a complex thing because there's lots of different variables involved. There's lots of features. The more features you add, the more it costs. But in order to do this personalisation you need a pro version of their content management system and you're looking at about 350 quid a month to be able to do that. So what's that, about four and a half, 5000 pounds a year to buy that in? That is not just for that feature, that is for the whole of that HubSpot content management system and all of its hosting included as well. And it is top grade, highly secure or highly available infrastructure that you get bolted in that. So the cost of personalisation is not just the 350 quid a month, that is, the all in to get that pro package is 350 quid a month. Kelly Molson: And then there'll be dev costs on top of that to implement it. Paul Marden: Yeah, to a certain extent, actually a lot of the personalisation, because it's core to HubSpot, you can achieve a lot in a normally designed and built HubSpot site and then just manage the content in that. So let's say, you've got a panel where you want to show a particular piece of content that says, "Hey, you're back again." Because you're a returning user, you wouldn't necessarily need a developer to be able to make that available to you. Those smart rules would be built in by the content management system. So there's obviously going to be things that you want to do that. You will need to have a developer to be able to do that. Kelly Molson: You need someone that understands logic. This is not a job for me. Paul Marden: Well, in the right hands, you don't need a developer to be able to do a lot of the personalisation in HubSpot. Kelly Molson: All right, what about Umbraco? Paul Marden: Yeah, there are some free tools. There's something called personalisation groups. But if you want to go for uMarketingSuite, which I think is where you're getting into, really see it would be a proper personalisation territory with lots of great functionality, you're looking at about 400 quid a month for the package to be added into your Umbraco instance. So that's not comparing apples with apples when we look at the HubSpot cost, because that was an all in cost for the whole of the platform for HubSpot. Whereas for Umbraco uMarketingSuite is 400 quid a month to add it to your instance. And that depends on the amount of traffic on your site that does vary. Kelly Molson: And then WordPress is cheapest chips in comparison. So plugins, you're looking at costs of around about 150 pounds per year depending on what one you go to. Obviously you've either got somebody internally that can integrate that for you or you've got your dev costs on top of that. But if you've already got an existing website in WordPress, then actually could be something relatively inexpensive that you could start to try out. Paul Marden: Yeah, absolutely. And then on top of that you've got other personalisation systems that you could plug into any of these systems with your kind of Lamborghini style sets of functionality. These are starting costs for the packages we're talking about. Yeah, we're talking 150 quid a year for WordPress, but that would be basic personalisation. Kelly Molson: Yeah. Okay, good chat. So just to reiterate what we said earlier, sorry, we were idiots about the question and of course some confusion. Apologies, we'll do much better next time. But now you've listened to this episode, if you do have a story to share and you are doing some really interesting things, we would love to give you the platform to share that. So do drop me a line, kelly@rubbercheese.com and we will make that happen. All right, great. Same time next month. Paul Marden: Awesome. Kelly Molson: Thanks for listening to Skip The Queue. If you've enjoyed this podcast, please leave us a five star review. It really helps others find us. And remember to follow us on Twitter for your chance to win the books that have been mentioned. Skip the queue is brought to you by Rubber Cheese, a digital agency that builds remarkable systems and websites for attractions that helps them increase their visitor numbers. You can find show notes and transcriptions from this episode and more over on our website, rubbercheese.com/podcast.
Burton Kelso, The Technology Expert, is the weekly consumer products contributor for the Cybercrime Magazine Podcast. In this episode of Consumer Security, he joins host Sam White to share tips and tricks to help listeners avoid hackers and keep their devices and gadgets safe. For more tech tips from Burton, visit https://burtonkelso.com • For more on cybersecurity, visit us at https://cybersecurityventures.com
Ahoy! There's trouble in the South China Seas as Filipino organisations fail to secure their systems, we take a close look at Google IP protection, and we take a look at just how so much genetic profile data leaked out of 23andMe.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by Mark Stockley.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Philippines' cybersecurity failures exposed as hackers leak state secrets, people's data - South China Morning Post.IT admins are just as culpable for weak password use - Outpost24.Google Chrome wants to hide your IP address - MalwareBytes.The 23andMe data breach reveals the vulnerabilities of our interconnected data - The Conversation.23andMe User Data Stolen in Targeted Attack on Ashkenazi Jews - Wired.Worried about the 23andMe hack? Here's what you can do - Washington Post.Paris Police 1905 - BBC iPlayer.British Hen Welfare Trust.Art Musings - Art Musings podcast.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Kolide – Kolide ensures that if your device isn't secure it can't access your cloud apps. It's Device Trust for Okta. Watch the demo today!Vanta – Expand the scope of your security program with market-leading compliance automation… while saving time and money. Smashing Security listeners get 20% off!SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed!FOLLOW US:Follow us on Twitter at @SmashinSecurity, or
What's Your IP Address? | Dr. Ben Mayfield | Chapel Roswell by Chapel Roswell
While getting someone's name and address from their IP address is technically possible, it's also difficult and requires law enforcement's help.
We're back this week with the mythical three-peat of updates on topics we've discussed either recently or in the distant past. First, following up on last month's patron episode, we dig into our recent experiences with Wireguard and discuss why it's pretty much the only home VPN game in town. Next we dissect the lessons Will learned about operating an electric vehicle in extreme heat on this year's just-concluded sojourn to Palm Desert. Lastly, Brad does a quick update on cold brewing coffee after a couple weeks of experimenting with liquid ratios and excess caffeine. It's like three podcasts in one!Some Wireguard links that we mentioned:Wireguard home page: https://www.wireguard.com/Tailscale: https://tailscale.com/PiVPN: https://www.pivpn.io/Support the Pod! Contribute to the Tech Pod Patreon and get access to our booming Discord, your name in the credits, and other great benefits! You can support the show at: https://patreon.com/techpod
Episode 29: In this episode of Critical Thinking - Bug Bounty Podcast sit down with Assetnote Engineer Sean Yeoh, and pick his brain about what he's learned on his development journey. We talk about the place and importance of message brokers, and which ones we like best, as well as his engineering philosophy regarding bottleneck prevention and the importance of pursuing optimization. Don't miss this episode of terrific technical tips!Follow us on twitter at: @ctbbpodcastWe're new to this podcasting thing, so feel free to send us any feedback here: info@criticalthinkingpodcast.ioShoutout to YTCracker for the awesome intro music!------ Links ------Follow your hosts Rhynorater & Teknogeek on twitter:https://twitter.com/0xteknogeekhttps://twitter.com/rhynoraterToday's Guest:https://twitter.com/seanyeohAssetnotehttps://www.assetnote.io/https://twitter.com/assetnoteXKCD automation graphhttps://xkcd.com/1319/Github repositoryhttps://github.com/alex/what-happens-whenArticle about Queueshttps://archive.is/Nan4eNATShttps://nats.io/MongoDBhttps://www.mongodb.com/Timestamps:(00:00:00) Introduction(00:01:18) Story of Assetnote(00:05:20) Message Brokers and event-driven architectures(00:11:15) Preventing bottlenecks and pursuing optimization(00:21:35) Using a profiler(00:28:30) Choosing a Message Broker(00:33:00) Kubernetes and Conntrack Limits(00:37:13) Databases(00:46:30) Bug bounty tips: Sub-domain vs. IP Address(00:51:15) Engineering quandaries(00:53:38) DNS Wildcards
A newly purchased domain name and IP filings may allow NZ Rugby to stream their own games. NZ Rugby claimed the URL nzrplus.co.nz on April 11th, 2023. While not live yet, this indicates the organisation will broadcast games to fans directly. Spinoff founder Duncan Greive, who broke the original story, says NZR stated they weren't going to charge for games in the immediate term- but the current deal with Sky is due to expire. "I think it's that immediate term that's the telling part. Because the current deal with Sky runs through the end of 2025, and at that point they would have the ability, if they wished, to start selling them direct to fans." LISTEN ABOVESee omnystudio.com/listener for privacy information.
On today's episode we will talk about1- Public and Private IP address2- Technology Tap PremiumIf you are interested in subscribing to our premium content here is the link.https://www.buzzsprout.com/1473469/subscribePlease fill out this surveyhttps://www.surveymonkey.com/r/5KXZN6TIf you want to help me with my research please e-mail me.Professorjrod@gmail.comIf you want to join my question/answer zoom class e-mail me at Professorjrod@gmail.comArt By Sarah/DesmondMusic by Joakim KarudLittle chacha ProductionsJuan Rodriguez can be reached atProfessorJRod@gmail.com@Prof_JRodInstagram ProfessorJRodMake People Better PodcastScience fiction is becoming science fact. In 2018, the team behind this podcast...Listen on: Apple Podcasts SpotifySupport the showSupport the showThe Imposter Syndrome Network PodcastThe Imposter Syndrome Network (ISN) is a community of technology professionals who...Listen on: Apple Podcasts SpotifySupport the show
Benjamin Bull from the National Center on Sexual Exploitation talks about Utah's age verification act and about the dangers of pornography.
This week Nick and Bruno talk about IP Address, Lawn Care, Pool Fun, Food, Big Bootie Mix 19 and more....Watch this weeks episode here: video.ttbd.rocksTake this weeks sruvey here: survey.ttbd.rocks
There are literally thousands of VPN services on the market. Some are undeniably benign, but others offer a slate of features that are friendly to cyber criminals. Keeping your network safe from hackers requires you to understand the VPN market, and make decisions based on your company's appetite for risk. Fortunately, by analyzing IP address data associated with these devices, security professionals can get access to a wealth of VPN contextual data that helps them distinguish between perfectly legitimate providers and those that turn a blind eye toward crime. In today's world, it is vital for security professionals to know how to leverage IP address data and its contextual insights to protect enterprise networks.
In this episode of On-Premise IT Podcast, recorded at Tech Field Day event in California, delegates Aaron Conaway, Jeffry Powers and Michael Davis take the lid off the pain points of managing DNS and DHCP in large networks. © Gestalt IT, LLC for Gestalt IT: IP Address Management in a Modern Dynamic Network
The Personal Computer Show Wednesday February 8th 2023 PRN.live Streaming on the Internet 6:00 PM Eastern Time IN THE NEWS Microsoft ChatGPT has a new rival, Google Bard FTC Fines GoodRx $1.5M for Sending Medication Data to Facebook and Google Microsoft Is Silently Checking Your PC for Outdated Versions of Office There's a Color Film Shortage How Did the FBI Get a Tor User's IP Address? ITPro Series with Benjamin Rockwell Ways to Use Tech to Standout at the Office From the Tech Corner Concerns about Privacy and Security of the Internet of Things Patents Reveal Voice Assistants will Spy on You Causes Mistrust Technology Chatter with Benjamin Rockwell and Marty Winston Post CES Charging, Insect, Robots, more…
2023-01-31 Weekly News - Episode 182Watch the video version on YouTube at https://youtube.com/live/_iPdrW9iVa4Hosts: Gavin Pickin - Senior Developer at Ortus Solutions Daniel Garcia - Senior Developer at Ortus Solutions Thanks to our Sponsor - Ortus SolutionsThe makers of ColdBox, CommandBox, ForgeBox, TestBox and all your favorite box-es out there. A few ways to say thanks back to Ortus Solutions: Like and subscribe to our videos on YouTube. Help ORTUS reach for the Stars - Star and Fork our Repos Star all of your Github Box Dependencies from CommandBox with https://www.forgebox.io/view/commandbox-github Subscribe to our Podcast on your Podcast Apps and leave us a review Sign up for a free or paid account on CFCasts, which is releasing new content every week BOXLife store: https://www.ortussolutions.com/about-us/shop Buy Ortus's Books 102 ColdBox HMVC Quick Tips and Tricks on GumRoad (http://gum.co/coldbox-tips) Learn Modern ColdFusion (CFML) in 100+ Minutes - Free online https://modern-cfml.ortusbooks.com/ or buy an EBook or Paper copy https://www.ortussolutions.com/learn/books/coldfusion-in-100-minutes Patreon Support ( NOBLE )Goal 1 - We have 42 patreons providing 100% of the funding for our Modernize or Die Podcasts via our Patreon site: https://www.patreon.com/ortussolutions. Goal 2 - We are 37% of the way to fully fund the hosting of ForgeBox.io News and AnnouncementsCommandBox settings Sync FeatureA new CommandBox feature has been born to sync your config settings to your ForgeBox account! New commands:config sync pushconfig sync pullconfig sync diffFrom the ticket: CommandBox settings sync – like VSCode settings sync. BUT, I propose we use people's Forgebox account to tie the data to. This encourages people to: have ForgeBox accounts stay logged in everywhere https://ortussolutions.atlassian.net/browse/COMMANDBOX-1434 Ortus Community Forum now has Chat!The Community Forum recently got an update that includes a chat feature. There are notifications you can turn on so you see when people message you.The forum is pretty active these days which is great to see, a lot better content retention and search compared to slack.Give it the community forum a try!https://community.ortussolutions.com/ ICYMI - New updates released for Java 8, 11, 17, and 19 as of Jan 17 2023Here's a heads-up that some will want to hear about: there are new JVM updates released today (Jan 17, 2023) for the current long-term support (LTS) releases of Oracle Java, 8, 11, and 17, as well as the current interim update 19. (Note that prior to Java 9, releases of Java were known technically as 1.x, so 8 is referred to in resources below as 1.8.)https://www.carehart.org/blog/2023/1/17/java_updates_Jan_2023 ICYMI and CLARIFICATION: Beware that latest Oracle JDK installers will REMOVE older JDK installs of that versionHere's something new to beware if you may run the Oracle JDK installer for the recently updated Java 11 or 17, whether on Windows, macOS, or via RPM: the new Oracle jdk installer WILL REMOVE any older previous versions of that JVM version created by previous JDK installers of the same major version. (Note that this issue does not affect those who implement java by extracting it from a compressed file, like a zip or tar.gz.)Fortunately for some, this issue does NOT affect those running Java 8 or below, or Java 19 or abovehttps://www.carehart.org/blog/2023/1/23/beware_latest_oracle_JDK_installers_will_remove_older_JDK_installs Clarification from Charlie regarding the Podcast discussion of this post last week: Brad said that this behavior is “not new”, and I have to say: that's not correct. As the post goes on to clarify, this change IS documented in last week's release notes for the Oracle JVM. I've updated my post with this new paragraph at the top to clarify that point:Since I posted this last night, I've heard some people assert "this is not new behavior: Java's always popped up and offered to remove old versions". Those folks are misunderstanding something: that was true of past JRE installers (like in Java 8 and earlier, which don't exist for Java 11), but it was never the case for Oracle JDK installers (even for Java 8). THAT's what's new about the JDK 11 and 17 installers, and it's DOCUMENTED in the release notes, as I discuss below. But it may surprise those who never saw a JDK installer do that, thus this post. (The rest of this post remains unchanged.)Thanks Charlie for Clarifiying!ICYMI - CBWire Poll about a CFCasts SeriesI'm in the planning stage of developing an ongoing video series for CBWIRE on https://cfcasts.com/. I have several ideas and would like to put it out to the community to vote what you'd like to see most. All series would feature 5-7 minute bit-sized videos posted regularly (probably weekly) until the series is finished.https://community.ortussolutions.com/t/poll-cbwire-cfcasts-com-series/9513 New Releases and UpdatesICYMI - CBSecurity - V 3.0.0 This module will enhance your ColdBox applications by providing out-of-the-box security.Now with a cool Security Visualizer too!!!Change Log is packed - https://www.forgebox.io/view/cbsecurity#changeLog https://www.forgebox.io/view/cbsecurityWebinar / Meetups and WorkshopsOrtus Event Calendar for Googlehttps://calendar.google.com/calendar/u/0?cid=Y181NjJhMWVmNjFjNGIxZTJlNmQ4OGVkNzg0NTcyOGQ1Njg5N2RkNGJiNjhjMTQwZjc3Mzc2ODk1MmIyOTQyMWVkQGdyb3VwLmNhbGVuZGFyLmdvb2dsZS5jb20 Ortus Fridays are back in Full Effect in 2023 ICYMI - Ortus Webinar - Jan 20th 2023 - CBWIRE Coding Session - Let's build an app with CBWIRE with Grant Copley - 11 AM CST https://cfcasts.com/series/ortus-webinars-2023/videos/cbwire-live-coding-session-with-grant-copley Ortus Office Hours - Feb 3rd, 2023 - 11 AM CSTRegistrationhttps://us02web.zoom.us/meeting/register/tZYvcO-hrz8iHNS0C3o0aw2x3JMtmBrKwzfA Software Craftsmanship Book Club - Feb 10th, 2023 - 2 PM CST (Patreon exclusive) CFCasts Content Updateshttps://www.cfcasts.comRecent Releases Ortus Webinar - January - CBWIRE Live Coding Session https://cfcasts.com/series/ortus-webinars-2023/videos/cbwire-live-coding-session-with-grant-copley ITB 2022 - All videos released to subscribers - 30+!!!! 10 ish FREE 2023 ForgeBox Module of the Week Series - 1 new Video https://cfcasts.com/series/2023-forgebox-modules-of-the-week 2023 VS Code Hint tip and Trick of the Week Series - 1 new Video https://cfcasts.com/series/2023-vs-code-hint-tip-and-trick-of-the-week Coming Soon Brad with more CommandBox Videos - 27!!! More ForgeBox and VS Code Podcast snippet videos CBWire Series from Grant - Fill out the Poll here https://community.ortussolutions.com/t/poll-cbwire-cfcasts-com-series/9513 ColdBox Elixir from Eric Getting Started with ContentBox from Daniel Box-ifying a 3rd Party Library from Gavin Conferences and TrainingICYMI - CF Summit Online All the webinars, all the speakers from Adobe ColdFusion Summit 2022 – brought right to your screen. All sessions will soon be streamed online, for your convenience. Stay tuned for more! ICYMI - OPPORTUNITIES FOR BLOCKCHAIN TECHNOLOGY AND NFTS IN THE REAL WORLDMasha Edelen and Nick JuntillaJanuary 24 | 14:00 - 15:00pm EST (1 hour)Understanding the value and practical use cases of Non-Fungible Tokens in modern business applications. Learn how to get started using the blockchain and building your Web 3 strategy.https://www.youtube.com/watch?v=YAoLDEe49mM Website for CF Summit Onlinehttps://cfsummit-online.meetus.adobeevents.com/ ICYMI - VUE.JS NATION CONFERENCEJanuary 25th & 26th 2023Full Videos online already - Watched it - Very cool stuff!https://vuejsnation.com/ VUEJS AMSTERDAM 20239-10 February 2023, Theater AmsterdamWorld's Most Special and Largest Vue Conferencehttps://vuejs.amsterdam/ VueJS Live MAY 12 & 15, 2023ONLINE + LONDON, UKCODE / CREATE / COMMUNICATE35 SPEAKERS, 10 WORKSHOPS10000+ JOINING ONLINE GLOBALLY300 LUCKIES MEETING IN LONDONhttps://vuejslive.com/ Dev NexusApril 4-6th, 2023 in AtlantaGeorgia World Congress Center285 Andrew Young International Blvd NWAtlanta, GA 30313https://devnexus.com/ No Ortus speakers this year but Charlie Arehart is speaking- Congratulations Charlie!Into the Box 2023 - 10th EditionMay 17-19, 2023 The conference will be held in The Woodlands (Houston), TexasThis year we will continue the tradition of training and offering a pre-conference hands-on training day on May 17th and our live Mariachi Band Party! However, we are back to our Spring schedule and beautiful weather in The Woodlands! Also, this 2023 will mark our 10 year anniversary. So we might have two live bands and much more!!!Still time - call for speakers for the Into The Box Conference for 2023 is open until Jan 31sthttps://www.intothebox.org/blog/into-the-box-2023-call-for-speakers https://itb2023.eventbrite.com/ CFCamp is backJune, 22-23rd 2023Marriott Hotel Munich Airport, FreisingCall for Speakers is now open!https://www.papercall.io/cfcamp2023https://www.cfcamp.org/More conferencesNeed more conferences, this site has a huge list of conferences for almost any language/community.https://confs.tech/https://github.com/scraly/developers-conferences-agenda Blogs, Tweets, and Videos of the Week1/31/23 - Blog - Ben Nadel - A Simple Slide Show Using Hotwire And Lucee CFMLNow that I have my ColdFusion and Hotwire playground up and running, I can start to explore the features of the Hotwire framework. And, one of the most attractive features is the ability to update a portion of the page using a full-page render. This works by scoping DOM (Document Object Model) changes to a given element. To see this in action, I wanted to create a simple slide show using Lucee CFML.https://www.bennadel.com/blog/4398-a-simple-slide-show-using-hotwire-and-lucee-cfml.htm Creation Order: LiveView created for Phoenix's for the Elixir language LiveWire is Laravel for PHP HotWire is Ruby on Rails for Ruby CBWire is our LiveWire implementation for ColdBox for ColdFusion Check our January CBWire Webinar from Grant to see it in action HTMX is another option which has grown over time - mentioned by a few CFMLs like Greg Alexander 1/29/23 - Blog - Ben Nadel - OnRequestStart() / OnRequest() Methods Invoked Even If Requested Template Doesn't Exist In Lucee CFMLWhile setting up my ColdFusion and Hotwire Demos project, I stumbled upon an application behavior that is unique to Lucee CFML (as opposed to Adobe ColdFusion). Historically, with ColdFusion, attempting to request a .cfm file that doesn't exist would result in a "Missing Template" error; or, if defined, would trigger the onMissingTemplate() event handler. This was true regardless of the method defined in your Application.cfc framework component. In Lucee CFML, however, it seems that the onRequestStart() and onRequest() life-cycle method will be invoked even if the requested template doesn't exist. Which is awesome!https://www.bennadel.com/blog/4397-onrequeststart-onrequest-methods-invoked-even-if-requested-template-doesnt-exist-in-lucee-cfml.htm 1/29/23 - Blog - Ben Nadel - Setting Up My ColdFusion + Hotwire Demos PlaygroundA month ago, I started building a ColdFusion and Hotwire application as a learning experience. Only, once I finished the basic ColdFusion CRUD (Create, Read, Update, Delete) features, I didn't really know how to go about applying the Hotwire functionality. I realized that I bit off more than I could chew; and, I needed to go back and start learning some of the Hotwire basics before I could build an app using the "Hotwire way". As such, I've started a new ColdFusion and Hotwire Demos project, where I intended to explore stand-alone aspects of the Hotwire framework.https://www.bennadel.com/blog/4396-setting-up-my-coldfusion-hotwire-demos-playground.htm1/27/23 - Blog - Brad Wood - Improving Lucee's QoQ Support Again- now 200% fasterTwo years ago, I published this post detailing how I had refactored the Query of Query support in Lucee to be much better and also much faster:https://www.codersrevolution.com/blog/improving-lucees-query-of-query-support I removed the single-threaded HSQLDB callback for grouped/aggregate and distinct selects and tuned the performance. QoQ's are a bit of a polarizing feature in CFML. They've suffered in the past from poor support and poor performance which has caused a lot of people to avoid them. There are certainly places where queryMap(), queryFilter(), and queryReduce() are the best approach, but there are also times where you simply can't beat the readability and conciseness of an ordered, aggregated select. I know developers who tell me they never use "reduce" higher order functions because they are too confusing, but I've never met a developer who didn't understand "GROUP BY department"! https://www.codersrevolution.com/blog/improving-lucees-qoq-support-again-now-200-faster 1/26/23 - Blog - Charlie Arehart - Be aware that ColdFusion 2018 end-of-life (and end of updates) is coming July 2023Are you still running ColdFusion 2018? Did you know that its end-of-life is July 13, 2023? That's the date that "core" support ends--meaning, no more updates from Adobe after that, not even security fixes.As for CF2021, it gets updates into 2025, and the currently running pre-release of CF2023 is a great sign for the continued vitality of CF. But this looming deadline for CF2018 is a reminder that as the years roll on, we not only get new versions but we must say good-bye to old ones.Wondering what you can do? or when CF2021 or CF2023 support will end also? And what's the difference between "core" and "extended" support Adobe sells? (The extended support plan does NOT provide updates beyond this coming July.) For more on these, including official Adobe documentation that discusses such things, as well as my thoughts on migration, costs, various options to consider, and more, do read on.https://www.carehart.org/blog/2023/1/26/coldfusion2018_end_of_life_july_2023 CFML JobsSeveral positions available on https://www.getcfmljobs.com/Listing over 48 ColdFusion positions from 29 companies across 23 locations in 5 Countries.2 new jobs listed this weekFull-Time - ColdFusion Developer at India - India Jan 30https://www.getcfmljobs.com/jobs/index.cfm/india/ColdFusion-Developer-at-India/11552 Contract - Adobe ColdFusion Administrator at Alhambra, CA - United States Jan 26https://www.getcfmljobs.com/jobs/index.cfm/united-states/CFAdminstrator-at-CA/11551 Other Job LinksThere is a jobs channel in the CFML slack team, and in the Box team slack now tooBrian Polackoff posted yesterday morning in the cfml-general channel that he is looking for 2-3 advanced CF programmers. Check it out.“Morning everyone; can anyone tell me where to find 2-3 advanced Adobe Coldfusion programmers? Salaries will be in the range of ~125k to 150k USD? I'm open to FT or Contract with FT hours? Preferably in the USA but am open to other areas. Is there anyone on this list, a better list, or even a company that can provide match making services?” ForgeBox Module of the WeekWho.is IP Address lookup APIBy Pixl8 Interactive (Dominic Watson)Who.is IP Lookup API For CFML Application with Coldbox bindingsThis project provides CFML applications with a lightweight abstraction of the who.is IP lookup service https://ipwhois.io/A note on free vs paid-for account: you can use the API without an API key for "free" usage which includes 10,000 IP lookups per-month as of January 2023 - based on source IP and http referrer. Certain features are not available with the free tier and commercial usage is also not allowed. See the website for further details: https://ipwhois.io/.https://www.forgebox.io/view/cbwhois Lightweight means:No caching your application can and should take care of caching resultsNo error handling your application should handle any unexpected errors from the http call to the api. I'm lazy and this utility does the bare minimumVS Code Hint Tips and Tricks of the WeekSCSS EverywhereBy Gencer W. Genç CSS class name completion for the HTML'.class' and '#id' completion for HTML, Svelte, Latte, Slim, Liquid, TSX/JSX, Haml, Elixir, Smarty, PHP, ERB, Javascript, CSS and SCSS. Just declare class in your template or CSS/SCSS and see it in everywhere. (Both directions)Features Gives you autocompletion for CSS class definitions that can be found in your workspace (defined in CSS files or the in the file types listed in the Supported Language Modes section) Supports external stylesheets referenced through link elements in HTML files Command to manually re-cache the class definitions used in the autocompletion User Settings to override which folders and files should be considered or excluded from the caching process Incremental build. You do not need to re-cache everytime. Additional Slim, Haml, Smarty, Eex and Svelte template support Both-way SCSS support Separate class and id support Work in progress. Automatically parse all remote stylesheets from HTML, Svelte, Twig, Slim and ERB files. HTML, SCSS, SASS, CSS, Elixir, PHP, Vue, Slim, Haml, Latte and many more Awesome features FIND USAGES - find what files are using what css class - mind blown. Link to External Files Caching - pretty slick too. https://www.youtube.com/watch?v=sKrp2d1HUAMhttps://marketplace.visualstudio.com/items?itemName=gencer.html-slim-scss-css-class-completion Thank you to all of our Patreon SupportersThese individuals are personally supporting our open source initiatives to ensure the great toolings like CommandBox, ForgeBox, ColdBox, ContentBox, TestBox and all the other boxes keep getting the continuous development they need, and funds the cloud infrastructure at our community relies on like ForgeBox for our Package Management with CommandBox. You can support us on Patreon here https://www.patreon.com/ortussolutionsDon't forget, we have Annual Memberships, pay for the year and save 10% - great for businesses. Bronze Packages and up, now get a ForgeBox Pro and CFCasts subscriptions as a perk for their Patreon Subscription. All Patreon supporters have a Profile badge on the Community Website All Patreon supporters have their own Private Forum access on the Community Website All Patreon supporters have their own Private Channel access BoxTeam Slack Live Stream Access to streams like “Koding with the Kiwi + Friends” and Ortus Software Craftsmanship Book Club https://community.ortussolutions.com/ Top Patreons ( NOBLE ) John Wilson - Synaptrix Tomorrows Guides Jordan Clark Gary Knight Mario Rodrigues Giancarlo Gomez David Belanger Dan Card Jeffry McGee - Sunstar Media Dean Maunder Nolan Erck Abdul Raheen And many more PatreonsYou can see an up to date list of all sponsors on Ortus Solutions' Websitehttps://ortussolutions.com/about-us/sponsors Homework Gavin Go check out the Community Forum Daniel See you all at the Ortus Office Hours Stay warm and dry everyone!!!Thanks everyone!!! ★ Support this podcast on Patreon ★
Phillip Stutts has been part of over 1,500 winning political campaigns. He is also a marketing guru who has a partnership with the largest data collection, analytics and AI company in America. How is your data captured and used? Are American social media companies as bad as Chinese-controlled TikTok? See omnystudio.com/listener for privacy information.
Phillip Stutts has been part of over 1,500 winning political campaigns. He is also a marketing guru who has a partnership with the largest data collection, analytics and AI company in America. How is your data captured and used? Are American social media companies as bad as Chinese-controlled TikTok? See omnystudio.com/listener for privacy information.
2022-12-20 Weekly News - Episode 176Watch the video version on YouTube at https://youtu.be/Ez5BTHOjv84 Hosts: Gavin Pickin - Senior Developer at Ortus Solutions Brad Wood - Senior Developer at Ortus Solutions Thanks to our Sponsor - Ortus SolutionsThe makers of ColdBox, CommandBox, ForgeBox, TestBox and all your favorite box-es out there. A few ways to say thanks back to Ortus Solutions: Like and subscribe to our videos on YouTube. Help ORTUS reach for the Stars - Star and Fork our ReposStar all of your Github Box Dependencies from CommandBox with https://www.forgebox.io/view/commandbox-github Subscribe to our Podcast on your Podcast Apps and leave us a review Sign up for a free or paid account on CFCasts, which is releasing new content every week BOXLife store: https://www.ortussolutions.com/about-us/shop Buy Ortus's Books 102 ColdBox HMVC Quick Tips and Tricks on GumRoad (http://gum.co/coldbox-tips) Learn Modern ColdFusion (CFML) in 100+ Minutes - Free online https://modern-cfml.ortusbooks.com/ or buy an EBook or Paper copy https://www.ortussolutions.com/learn/books/coldfusion-in-100-minutes Patreon Support ( substantial )Goal 1 - We have 43 patreons providing 100% of the funding for our Modernize or Die Podcasts via our Patreon site: https://www.patreon.com/ortussolutions.Goal 2 - We are 39% of the way to fully fund the hosting of ForgeBox.io Patreon Sponsored Job Announcement - Tomorrows GuidesTomorrows Guides is a fast paced leader in the UK care sector, catering for care seekers across three areas: Care Homes, Nurseries and Home Care. We are often called the Trip Advisor of the care sector. Current Roles - More in the job section Senior Cf Developer – UK Only | Remote | Permanent | Circa £60k - https://app.occupop.com/shared/job/senior-coldfusion-developer-5925b/ Automation Test Engineer – UK Only | Remote | Permanent | Crica £40k - https://app.occupop.com/shared/job/automation-test-engineer-a6545/ News and AnnouncementsReal ColdFusion is in the NewsThe U.S. Department of Energy said Sunday it would announce a "major scientific breakthrough" this week, after media reported a federal laboratory had recently achieved a major milestone in nuclear fusion research. The Financial Times reported Sunday that scientists in the California-based Lawrence Livermore National Laboratory (LLNL) had achieved a "net energy gain" from an experimental fusion reactor.https://www.cbsnews.com/news/nuclear-fusion-energy-breakthrough-us-expected-announcement-zero-carbon-power/ Meet ColdFusion on Amazon Web ServicesBuild high-performing, enterprise-ready applications that scale dynamically to meet your business needs. Easily create interactive web applications by leveraging unique built-in HTML5 support. Make your websites more secure with formidable security standards. https://www.adobe.com/products/coldfusion-amazon-web-services.html 12 Days of Xmas - ITB 2022 Video Releases are in ProgressIt's that time of year again. Trees are lit, presents are being wrapped, and relatives are coming to visit. That's right, it's time again for the 12 days of Christmas-- 2022 ITB Video Release Edition! https://www.ortussolutions.com/blog/category/12-days-of-christmas-itb-2022-video-releasehttps://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-2-new-moduleshttps://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-3-moduleshttps://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-4-coldbox-modules-featureshttps://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-5-commandboxhttps://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-6-contentboxhttps://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-7-reactive-uis-cbwire-vuejs-and-alpinejshttps://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-8-modern-cfmlhttps://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-9-debugging-cfml-applications Adobe ColdFusion Fortuna AlphaSignup for the pre-releasehttps://www.adobeprerelease.com/beta/C0A219A0-A127-417A-D0D3-A7B5B3C5A0AE/participate/C3B4F4DC-8662-4610-D2B1-EE8FAD396648 Advent of Codehttps://adventofcode.com/CFML Slack Leaderboard: `1574707-be30db8f`Box Team Leaderboard: `26416-a4842ce2`ICYMI - CFML Blog Aggregator - CFBlogs.org 2.0 ReleasedThe new version of CFBlogs ColdFusion Blog Aggregator has been released.This version displays all of the blog posts in an attractive three-column card layout and displays the open graph image or a site image at the top of the post. The card images should allow the user to quickly convey the author of the post. Users can sort the grids by author by clicking on the card image.https://www.gregoryalexander.com/blog/2022/12/5/CFBlogsorg-20-Released ICYMI - ColdBox Master Class - Completely Free until the end of the Year!Want to learn about modern web apps in ColdFusion (CFML)? We have our ColdBox Master Class for FREE until the end of the year! A gift to the community, so we can all build amazing apps together! Watch all the videos! Binge Coding Anyone? Enjoy!https://www.cfcasts.com/series/cb-master-class?utm_source=podcast&utm_medium=PODCAST&utm_campaign=LM-PODCAST New Releases and UpdatesICYMI - MasaCMS Security Vulnerability FixIf you're on Masa CMS 7.3, you should update to version 7.3.10 immediately. This can be done by using the “Update Masa CMS Core” option in the menu of the Masa CMS Administrator or by applying a manual update.https://github.com/MasaCMS/MasaCMS/discussions/143 https://github.com/MasaCMS/MasaCMS/releases/tag/7.3.10 ICYMI - CommandBox 5.7.0 Released!We are pleased to announce the release of CommandBox 5.7.0, which comes with a handful of new features and some important library updates.https://www.ortussolutions.com/blog/commandbox-570-released ICYMI - CommandBox Docker v3.6.3 Images ReleasedToday we are pleased to announce the release of version 3.6.3 of our CommandBox Docker images.This release upgrades the CommandBox binary to 5.7.0. Read the Release Notes for this version here. Also added in this version, are new distro builds for the RHEL Universal Base Image. These images may be utilized by using the ubi9 in the image tag in the same way the alpine base images currently do. https://www.ortussolutions.com/blog/commandbox-docker-v363-images-released Webinar / Meetups and WorkshopsOrtus Event Calendar for Googlehttps://calendar.google.com/calendar/u/0?cid=Y181NjJhMWVmNjFjNGIxZTJlNmQ4OGVkNzg0NTcyOGQ1Njg5N2RkNGJiNjhjMTQwZjc3Mzc2ODk1MmIyOTQyMWVkQGdyb3VwLmNhbGVuZGFyLmdvb2dsZS5jb20 Ortus Fridays are back in Full Effect in 2023 Ortus Office Hours - Jan 6th, 2023 Software Craftsmanship Book Club - Jan 13th, 2023 Ortus Webinar - Jan 20th 2023 Koding with the Kiwi - Jan 27th, 2023 ICYMI - Docker - Community All-Hands 7 - Winter editionJoin the 7th the Community All-Hands, a quarterly online event that brings the Docker community together!This global meetup features community news, company and product updates, demos, and language-specific sessions.Thursday, December the 15th, 8:00 AM Pacific Time. A more interactive first day, featuring talks of exciting trends like WASM and Docker Extensions, interviews and the traditional Docker updates and Community Awards!Friday, December the 16th, 8:00 AM Pacific Time. Workshops day! Learn how to use Docker with your favorite programming language.https://docker.github.io/community-all-hands/ CFCasts Content Updateshttps://www.cfcasts.comRecent Releases ITB - 12 Days of Xmas - ITB 2022 - 9 days + counting Software Craftsmanship Book Club - Clean Code - Chapter 2 https://cfcasts.com/series/ortus-software-craftsmanship-book-club---clean-code/videos/ortus-software-craftsmanship-book-club-clean-code-2 ColdBox Master Class - Now FREE 2022 ForgeBox Module of the Week Series - 1 new Video https://cfcasts.com/series/2022-forgebox-modules-of-the-week 2022 VS Code Hint tip and Trick of the Week Series - 1 new Video https://cfcasts.com/series/2022-vs-code-hint-tip-and-trick-of-the-week Coming Soon More ForgeBox and VS Code Podcast snippet videos Box-ifying a 3rd Party Library from Gavin ColdBox Elixir from Eric Getting Started with ContentBox from Daniel Brad with more CommandBox Videos Conferences and TrainingCF Summit Online All the webinars, all the speakers from Adobe ColdFusion Summit 2022 – brought right to your screen. All sessions will soon be streamed online, for your convenience. Stay tuned for more! NATIVE MOBILE APPS WITH MONACA.IO & ADOBE COLDFUSION 2021Mark TakataDecember 22, 2022 | 12:00 - 13:00 EST (1 hour)Have you always wanted to build native mobile apps, but didn't want to learn Swift or ObjectiveC? Monaca.io uses the power of Apache Cordova and a richly featured online cloud IDE to help you build out native applications quickly and easily, with just basic JavaScript knowledge. In this talk Mark will build an Adobe ColdFusion 2021 powered back end using mySQL, exposed as an API, which will be consumed by a native mobile app written and built inside of the Monaca.io ecosystem.And many more in Dec and Jan… Website for CF Summit Onlinehttps://cfsummit-online.meetus.adobeevents.com/ VUE.JS NATION CONFERENCEJanuary 25th & 26th 2023https://vuejsnation.com/VUEJS AMSTERDAM 20239-10 February 2023, Theater AmsterdamWorld's Most Special and Largest Vue ConferenceCALL FOR PAPERS AND BLIND TICKETS AVAILABLE NOW!Call for Papers: https://forms.gle/GopxfjYHfpE8fKa57Blind Tickets: https://eventix.shop/abzrx3b5 https://vuejs.amsterdam/ Dev NexusApril 4-6th in AtlantaGeorgia World Congress Center285 Andrew Young International Blvd NWAtlanta, GA 30313USAApril 4th – 6th, 2023https://devnexus.com/ VueJS Live MAY 12 & 15, 2023ONLINE + LONDON, UKCODE / CREATE / COMMUNICATE35 SPEAKERS, 10 WORKSHOPS10000+ JOINING ONLINE GLOBALLY300 LUCKIES MEETING IN LONDONGet Early Bird Tickets: https://ti.to/gitnation/vuejs-london-2022 Watch 2021 Recordings: https://portal.gitnation.org/events/vuejs-london-2021https://vuejslive.com/ Into the Box 2023 - 10th EditionMay 17-19, 2023 The conference will be held in The Woodlands (Houston), TexasThis year we will continue the tradition of training and offering a pre-conference hands-on training day on May 17th and our live Mariachi Band Party! However, we are back to our Spring schedule and beautiful weather in The Woodlands! Also, this 2023 will mark our 10 year anniversary. So we might have two live bands and much more!!!We are pleased to announce the call for speakers for the Into The Box Conference for 2023 is now officially open. https://www.intothebox.org/blog/into-the-box-2023-call-for-speakers https://itb2023.eventbrite.com/CFCamp is backJune, 22-23rd 2023Marriott Hotel Munich Airport, FreisingCall for Speakers coming in the New yearhttps://www.cfcamp.org/ More conferencesNeed more conferences, this site has a huge list of conferences for almost any language/community.https://confs.tech/https://github.com/scraly/developers-conferences-agenda Blogs, Tweets, and Videos of the Week 12/20/22 - Blog - Ben Nadel - Paging Through Data Using LIMIT And OFFSET In MySQL And ColdFusionWhen I render a data-grid for a user, I usually use pagination to allow the user to iterate through some relatively finite amount of records. The other day, however, I had to build an administrative UI (user interface) that surfaced a tremendous amount of data - possibly hundreds-of-thousands of records. With so much data, standard pagination didn't seem like a meaningful solution. Instead, I switched over to using LIMIT and OFFSET in my MySQL, which allows the admin to page through the data one slice at a time. I don't use this technique that often, so I thought a ColdFusion demo would be fun.https://www.bennadel.com/blog/4371-paging-through-data-using-limit-and-offset-in-mysql-and-coldfusion.htm 12/19/22 - Blog - Jim Preist - TheCrumb - Counting Lines of Code with clocSooner or later your project manager will approach you mumbling something about metrics, lines of code and accountability.Much like tabs vs spaces there are people who are both for and against using lines of code as some sort of measurement. I won't get into that argument but I will show you a fantastic tool to make this easy: cloccloc counts blank lines, comment lines, and physical lines of source code in many programming languages.It's available for Windows, Mac and Linux.https://www.thecrumb.com/posts/2022-12-19-counting-lines-of-code/ 12/19/22 - Blog - Ortus Solutions - The 12 Days of Christmas - ITB 2022 Video Release— Day 8 - Modern CFMLToday, Day 8's Videos from Into the Box 2022 Conference, 5 sessions on modern CFML concepts, including using Java with your CFML Apps, Aspect Oriented Programming, Web Components, Feature Flags and using Queues in CFML with Rabbit MQ.https://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-8-modern-cfml 12/19/22 - Blog - Ortus Solutions - Form Validation with CBWIREForm validation is something we as developers have to deal with all the time, and there are plenty of ways to go about it, some elegant and others not so much. ColdBox has a validation module called cbValidation for powerful form validation. We have this available to us in CBWIRE as well, which allows us to build forms with instant validation and messaging for the user without any page refreshing.https://www.ortussolutions.com/blog/form-validation-with-cbwire 12/18/22 - Blog - Ben Nadel - Using INSERT INTO SELECT To Duplicate Rows In MySQL And Lucee CFMLLast week, as part of a duplication workflow, I had to duplicate a bunch of rows in one table while changing one of the column values (think, the conceptual "foreign key" column). To do this, I used MySQL's INSERT INTO SELECT syntax which provides a bulk INSERT API that is powered by a SELECT statement. I'd never actually done this in a production application before; so, I thought it might be worth a quick MySQL and ColdFusion demo.https://www.bennadel.com/blog/4370-using-insert-into-select-to-duplicate-rows-in-mysql-and-lucee-cfml.htm 12/16/22 - Blog - Ben Nadel - Breaking An IPv4 Address Range Up Into CIDR Ranges In Lucee CFML 5.3.9.141The other day, this blog was being attacked by a malicious actor in Australia. I identified 38 unique IP addresses that were all poking and prodding the application, looking for weaknesses. Thankfully, this caused zero issues for the site itself or its visitors. However, in the heat of the moment, as I was adding these IPs to Cloudflare's Web Application Firewall (WAF) rules, I realized that my understanding of how IP addresses work was quite lacking. I needed to create CIDR ranges for the WAF; but, wasn't sure how to do that. As such, I wanted to take a moment and play around with IP addresses, taking a given range and breaking it up into the tightest possible CIDR ranges in Lucee CFML.https://www.bennadel.com/blog/4369-breaking-an-ipv4-address-range-up-into-cidr-ranges-in-lucee-cfml-5-3-9-141.htm 12/16/22 - Blog - Ortus Solutions - The 12 Days of Christmas - ITB 2022 Video Release— Day 7 - Reactive UIs - CBWire, VueJS and AlpineJSToday, Day 7's Videos from Into the Box 2022 Conference, 4 sessions related to reactive UIs, which are reacted with CBWire, VueJS and AlpineJS.https://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-7-reactive-uis-cbwire-vuejs-and-alpinejs 12/15/22 - Blog - Ortus Solutions - The 12 Days of Christmas - ITB 2022 Video Release— Day 6 - ContentBox Today, Day 6's Videos from Into the Box 2022 Conference, 3 sessions related to ContentBox. Getting started with ContentBox 101, Headless CMS and then deploying to the cloud.https://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-6-contentbox 12/14/22 - Podcast - Working Code Podcast - Episode 105: No Effort DecemberWelcome to the start of No Effort December! As Adam explained to me, that's the time of the year in which we gather 'round the mics and talk about whatever the heck comes to mind. We just passed two years on the Working Code podcast - woot woot!, it's the holidays, and we've been peopling super hard with our families — we all need a little jolly, no-effort relaxation. On today's show, Carol wonders if she can use Hackathons as a means to "improve community outreach" - one of her team's new OKR (Objectives and Key Results). And, I discuss the difference between deploying on Friday vs. deploying during the holiday (and why these are not the same thing and why you shouldn't be a jerk-face to your co-workers).https://www.bennadel.com/blog/4368-working-code-podcast-episode-105-no-effort-december.htm 12/14/22 - Blog - Ortus Solutions - The 12 Days of Christmas - ITB 2022 Video Release— Day 5 - CommandBoxToday, Day 5's Videos from Into the Box 2022 Conference, 3 sessions related to CommandBox, hidden gems, building modules for CommandBox and Securing CommandBox servers for Production.https://www.ortussolutions.com/blog/the-12-days-of-christmas-itb-2022-video-release-day-5-commandbox CFML JobsSeveral positions available on https://www.getcfmljobs.com/Listing over 37 ColdFusion positions from 25 companies across 22 locations in 5 Countries.2 new jobs listed this weekFull-Time - ColdFusion Developer at Remote - United KingdomDec 16https://www.getcfmljobs.com/jobs/index.cfm/united-kingdom/ColdFusion-Developer-at-Remote/11541 Full-Time - ColdFusion Developer at Remote - United KingdomDec 14https://www.getcfmljobs.com/jobs/index.cfm/united-kingdom/ColdFusion-Developer-at-Remote/11540 Patreon Sponsored Job Announcement - Tomorrows GuidesTomorrows Guides is a fast paced leader in the UK care sector, catering for care seekers across three areas: Care Homes, Nurseries and Home Care. We are often called the Trip Advisor of the care sector. Our Product team consists of over 20 individuals across the UK working remotely to expand and improve our offering with regular expansion in teams year on year. We work with both Coldfuson 2021 and Node.js/React in the Azure cloud, while also using both MSSQL and MongoDB databases. Currently we are looking for Senior Coldfusion developers and Automation Testers with training paths to node.js available as well. We offer a wide variety of perks from our company wide £4k bonus scheme, and quarterly nights out with the whole company and the Product team to a 6% company pension contribution. Current Roles in detail All roles: https://www.tomorrows.co.uk/jobs.cfm Senior Cf Developer – UK Only | Remote | Permanent | Circa £60k - https://app.occupop.com/shared/job/senior-coldfusion-developer-5925b/ - Minimum three years' experience with ColdFusion- Database design, normalisation and ability to write/understand complex queries using MSSQL Server 2019- Familiarity with Git- Flexible skillset covering a wide range of development Automation Test Engineer – UK Only | Remote | Permanent | Crica £40k - https://app.occupop.com/shared/job/automation-test-engineer-a6545/- Minimum three years experience with automated testing- Experience with automated testing tools such as selenium- Experience with API test tools such as Postman/Fiddler etc Benefits of both roles:- £4,000 per annum discretionary company bonus scheme- 25 days annual leave + bank holidays- 6% employer pension contribution- Access to free perks and discounts through Perkbox- Long Service Awards- Cycle to Work Scheme- Company and Team nights outOther Job Links Ortus Solutions https://www.ortussolutions.com/about-us/careers There is a jobs channel in the CFML slack team, and in the box team slack now too ForgeBox Module of the WeekIPIFY API ModuleThis module allows you to tap into the ipify API: https://www.ipify.org/ : A Simple Public IP Address API, to get the IP address of where you made the call from; your public IP Address.https://www.forgebox.io/view/ipify VS Code Hint Tips and Tricks of the WeekLucee DebugBy David Rogers luceedebug is a step debugger for Lucee.There are two components:A Java agentA VS Code extensionThe java agent needs a particular invocation and needs to be run as part of JVM/CF server startup.The VS Code client extension is available as luceedebug when searching in the VS Code extensions panehttps://github.com/softwareCobbler/luceedebug https://marketplace.visualstudio.com/items?itemName=DavidRogers.luceedebug Thank you to all of our Patreon SupportersThese individuals are personally supporting our open source initiatives to ensure the great toolings like CommandBox, ForgeBox, ColdBox, ContentBox, TestBox and all the other boxes keep getting the continuous development they need, and funds the cloud infrastructure at our community relies on like ForgeBox for our Package Management with CommandBox. You can support us on Patreon here https://www.patreon.com/ortussolutionsDon't forget, we have Annual Memberships, pay for the year and save 10% - great for businesses. Bronze Packages and up, now get a ForgeBox Pro and CFCasts subscriptions as a perk for their Patreon Subscription. All Patreon supporters have a Profile badge on the Community Website All Patreon supporters have their own Private Forum access on the Community Website All Patreon supporters have their own Private Channel access BoxTeam Slack Live Stream Access to streams like “Koding with the Kiwi + Friends” and Ortus Software Craftsmanship Book Club https://community.ortussolutions.com/ Patreons John Wilson - Synaptrix Tomorrows Guides Jordan Clark Gary Knight Mario Rodrigues Giancarlo Gomez David Belanger Dan Card Jeffry McGee - Sunstar Media Dean Maunder Nolan Erck Wil De Bruin Abdul Raheen Don Bellamy Joseph Lamoree Jonathan Perret Jan Jannek Laksma Tirtohadi Brian Ghidinelli - Hagerty MotorsportReg Carl Von Stetten Jeremy Adams Didier Lesnicki Matthew Clemente Scott Steinbeck - Agri Tracking Systems Daniel Garcia Ben Nadel Richard Herbet Brett DeLine Kai Koenig Charlie Arehart Jason Daiger Shawn Oden Ross Phillips Matthew Darby Edgardo Cabezas Patrick Flynn Stephany Monge Kevin Wright John Whish Peter Amiri Cavan Vannice John Nessim Tia You can see an up to date list of all sponsors on Ortus Solutions' Websitehttps://ortussolutions.com/about-us/sponsors Thanks everyone!!! ★ Support this podcast on Patreon ★
Hello, and welcome to another episode of CISO Tradecraft -- the podcast that provides you with the information, knowledge, and wisdom to be a more effective cybersecurity leader. My name is G. Mark Hardy, and today we are going to discuss how nation state conflict and sponsored cyberattacks can affect us as non-combatants, and what we should be doing about it. Even if you don't have operations in a war zone, remember cyber has a global reach, so don't think that just because you may be half a world away from the battlefield that someone is not going to reach out and touch you in a bad way. So, listen for what I think will be a fascinating episode, and please do us a small favor and give us a "like" or a 5-star review on your favorite podcast platform -- those ratings really help us reach our peers. It only takes a click -- thank you for helping out our security leadership community. I'm not going to get into any geopolitics here; I'm going to try to ensure that this episode remains useful for quite some time. However, since the conflict in Ukraine has been ongoing for over two hundred days, I will draw examples from that. The ancient Chinese military strategist Sun Tzu wrote: “If you know the enemy and know yourself, you need not fear the result of a hundred battles. If you know yourself but not the enemy, for every victory gained you will also suffer a defeat. If you know neither the enemy nor yourself, you will succumb in every battle.” That's a little more detailed than the classic Greek aphorism, "know thyself," but the intent is the same even today. Let me add one more quote and we'll get into the material. Over 20 years ago, when he was Secretary of Defense, Donald Rumsfeld said: "As we know, there are known knowns; there are things we know we know. We also know there are known unknowns; that is to say we know there are some things we do not know. But there are also unknown unknowns—the ones we don't know we don't know. And if one looks throughout the history of our country and other free countries, it is the latter category that tends to be the difficult ones. So, knowledge seems extremely important throughout the ages. Modern governments know that, and as a result all have their own intelligence agencies. Let's look at an example. If we go to the CIA's website, we will see the fourfold mission of the Central Intelligence Agency: Collecting foreign intelligence that matters Producing objective all-source analysis Conducting effective covert action as directed by the President Safeguarding the secrets that help keep our nation safe. Why do we mention this? Most governments around the world have similar Nation State objectives and mission statements. Additionally, it's particularly important to understand what is wanted by "state actors" (note, I'll use that term for government and contract intelligence agents.). What are typical goals for State Actors? Let's look at a couple: Goal 1: Steal targeting data to enable future operations. Data such as cell phone records, banking statements or emails allow countries to better target individuals and companies when they know that identifying information. Additionally, targeting data allows Nation state organizations to understand how individuals are connected. This can be key when we are looking for key influencers for targets of interest. All targeting data should not be considered equal. Generally, Banking and Telecom Data are considered the best for collecting so be mindful if that is the type of company that you protect. State Actors target these organizations because of two factors:The Importance of the Data is the first factor. If one party sends a second party an email, that means there is a basic level of connection. However, it's not automatically a strong connection since we all receive emails from spammers. If one party calls someone and talks for 10 minutes to them on a phone call, that generally means a closer connection than an email. Finally, if one party sends money to another party that either means a really strong connection exists, or someone just got scammed. The Accuracy of the Data is the second factor. Many folks sign up for social media accounts with throw away credentials (i.e., fake names and phone numbers). Others use temporary emails to attend conferences, so they don't get marketing spam when they get home. However, because of Anti Money Laundering (or AML) laws, people generally provide legitimate data to financial services firms. If they don't, then they risk not being able to take the money out of a bank -- which would be a big problem. A second goal in addition to collecting targeting data, is that State Actors are interested in collecting Foreign Intelligence. Foreign Intelligence which drives policy-making decisions is very impactful. Remember, stealing secrets that no one cares about is generally just a waste of government tax dollars. If governments collect foreign intelligence on sanctioned activity, then they can inform policy makers on the effectiveness of current sanctions, which is highly useful. By reporting sanctioned activity, the government can know when current sanctions are being violated and when to update current sanctions. This can result in enabling new intelligence collection objectives. Examples of this include:A country may sanction a foreign air carrier that changes ownership or goes out of business. In that case, sanctions may be added against different airlines. This occurred when the US sanctioned Mahan Air, an Iran's airline. Currently the US enforces sanctions on more than half of Iran's civilian airlines. A country may place sanctions on a foreign bank to limit its ability to trade in certain countries or currencies. However, if sanctioned banks circumvent controls by trading with smaller banks which are not sanctioned, then current sanctions are likely ineffective. Examples of sanctioning bank activity by the US against Russia during the current war with Ukraine include:On February 27th sanctions were placed against Russian Banks using the SWIFT international payment systems On February 28th, the Russian Central Bank was sanctioned On March 24th, the Russian Bank Sberbank CEO was sanctioned On April 5th, the US IRS suspended information exchanges with the Russian tax authorities to hamper Moscow's ability to collect taxes. On April 6th, the US sanctioned additional Russian banks. These sanctions didn't just start with the onset of hostilities on 24 February 2022. They date back to Russia's invasion of Crimea. It's just that the US has turned up the volume this time. If sanctions are placed against a country's nuclear energy practices, then knowing what companies are selling or trading goods into the sanctioned country becomes important. Collecting information from transportation companies that identify goods being imported and exported into the country can also identify sanction effectiveness. A third goal or activity taken by State Actors is covert action. Covert Action is generally intended to cause harm to another state without attribution. However, anonymity is often hard to maintain.If we look at Russia in its previous history with Ukraine, we have seen the use of cyber attacks as a form of covert action. The devastating NotPetya malware (which has been generally accredited to Russia) was launched as a supply chain attack. Russian agents compromised the software update mechanism of Ukrainian accounting software M.E. Doc, which was used by nearly 400,000 clients to manage financial documents and file tax returns. This update did much more than the intended choking off of Ukrainian government tax revenue -- Maersk shipping estimates a loss of $300 million. FedEx around $400 million. The total global damage to companies is estimated at around $10 billion. The use of cyberattacks hasn't been limited to just Russia. Another example is Stuxnet. This covert action attack against Iranian nuclear facilities that destroyed nearly one thousand centrifuges is generally attributed to the U.S. and Israel. Changing topics a little bit, we can think of the story of two people encountering a bear. Two friends are in the woods, having a picnic. They spot a bear running at them. One friend gets up and starts running away from the bear. The other friend opens his backpack, takes out his running shoes, changes out of his hiking boots, and starts stretching. “Are you crazy?” the first friend shouts, looking over his shoulder as the bear closes in on his friend. “You can't outrun a bear!” “I don't have to outrun the bear,” said the second friend. “I only have to outrun you.” So how can we physically outrun the Cyber Bear? We need to anticipate where the Bear is likely to be encountered. Just as national park signs warn tourists of animals, there's intelligence information that can inform the general public. If you are looking for physical safety intelligence you might consider:The US Department of State Bureau of Consular Affairs. The State Department hosts a travel advisory list. This list allows anyone to know if a country has issues such as Covid Outbreaks, Civil Unrest, Kidnappings, Violent Crime, and other issues that would complicate having an office for most businesses. Another example is the CIA World Factbook. The World Factbook provides basic intelligence on the history, people, government, economy, energy, geography, environment, communications, transportation, military, terrorism, and transnational issues for 266 world entities. Additionally you might also consider data sources from the World Health Organization and The World Bank If we believe that one of our remote offices is now at risk, then we need to establish a good communications plan. Good communications plans generally require at least four forms of communication. The acronym PACE or Primary, Alternate, Contingency, and Emergency is often usedPrimary Communication: We will first try to email folks in the office. Alternate Communication: If we are unable to communicate via email, then we will try calling their work phones. Contingency Communication: If we are unable to reach individuals via their work phones, then we will send a Text message to their personal cell phones. Emergency Communication: If we are unable to reach them by texting their personal devices, then we will send an email to their personal emails and next of kin. Additionally, we might purchase satellite phones for a country manager. Satellite phones can be generally purchased for under $1,000 and can be used with commercial satellite service providers such as Inmarsat, Globalstar, and Thuraya. One popular plan is Inmarsat's BGAN. BGAN can usually be obtained from resellers for about $100 per month with text messaging costing about fifty cents each and calls costing about $1.50 per minute. This usually translates to a yearly cost of $1,500-2K per device. Is $2K worth the price of communicating to save lives in a high-risk country during high political turmoil? Let your company decide. Note a great time to bring this up may be during use-or-lose money discussions at the end of the year. We should also consider preparing egress locations. For example, before a fire drill most companies plan a meetup location outside of their building so they can perform a headcount. This location such as a vacant parking lot across the street allows teams to identify missing personnel which can later be communicated to emergency personnel. If your company has offices in thirty-five countries, you should think about the same thing, but not assembling across the street but across the border. Have you identified an egress office for each overseas country? If you had operations in Ukraine, then you might have chosen a neighboring country such as Poland, Romania, or Hungary to facilitate departures. When things started going bad, that office could begin creating support networks to find local housing for your corporate refugees. Additionally, finding job opportunities for family members can also be extremely helpful when language is a barrier in new countries. If we anticipate the Bear is going to attack our company digitally, then we should also look for the warning signs. Good examples of this include following threat intelligence information from: Your local ISAC organization. ISAC or Information Sharing Analysis Centers are great communities where you can see if your vertical sector is coming under attack and share your experiences/threats. The National Council of ISACs lists twenty-five different members across a wide range of industries. An example is the Financial Services ISAC or FS-ISAC which has a daily and weekly feed where subscribers can find situational reports on cyber threats from State Actors and criminal groups. InfraGard™ is a partnership between the Federal Bureau of Investigation and members of the private sector for the protection of US Critical Infrastructure. Note you generally need to be a US citizen without a criminal history to join AlienVault offers a Threat Intelligence Community called Open Threat Exchange which grants users free access to over nineteen million threat indicators. Note AlienVault currently hosts over 100,000 global participants, so it's a great place to connect with fellow professionals. The Cybersecurity & Infrastructure Security Agency or CISA also routinely issues cybersecurity advisories to stop harmful malware, ransomware, and nation state attacks. Helpful pages on their websites include the following:Shields Up which provides updates on cyber threats, guidance for organizations, recommendations for corporate Leaders and CEOs, ransomware responses, free tooling, and steps that you can take to protect your families. There's even a Shields Technical Guidance page with more detailed recommendations. CISA routinely puts out Alerts which identify threat actor tactics and techniques. For example, Alert AA22-011A identifies how to understand and mitigate Russian State Sponsored Cyber Threats to US Critical Infrastructure. This alert tells you what CVEs the Russian government is using as well as the documented TTPs which map to the MITRE ATT&CK™ Framework. Note if you want to see more on the MITRE ATT&CK mapped to various intrusion groups we recommend going to attack.mitre.org slant groups. CISA also has notifications that organizations can sign up for to receive timely information on security issues, vulnerabilities, and high impact activity. Another page to note on CISA's website is US Cert. Here you can report cyber incidents, report phishing, report malware, report vulnerabilities, share indicators, or contact US Cert. One helpful page to consider is the Cyber Resilience Review Assessment. Most organizations have an IT Control to conduct yearly risk assessments, and this can help identify weaknesses in your controls. Now that we have seen a bear in the woods, what can we do to put running shoes on to run faster than our peers? If we look at the CISA Shield Technical Guidance Page we can find shields up recommendations such as remediating vulnerabilities, enforcing MFA, running antivirus, enabling strong spam filters to prevent phishing attacks, disabling ports and protocols that are not essential, and strengthening controls for cloud services. Let's look at this in more detail to properly fasten our running shoes. If we are going to remediate vulnerabilities let's focus on the highest priority. I would argue those are high/critical vulnerabilities with known exploits being used in the wild. You can go to CISA's Known Exploited Vulnerabilities Catalog page for a detailed list. Each time a new vulnerability gets added, run a vulnerability scan on your environment to prioritize patching. Next is Multi Factor Authentication (MFA). Routinely we see organizations require MFA access to websites and use Single Sign On. This is great -- please don't stop doing this. However, we would also recommend MFA enhancements in two ways. One, are you using MFA on RDP/SSH logins by administrators? If not, then please enable immediately. You never know when one developer will get phished, and the attacker can pull his SSH keys. Having MFA means even when those keys are lost, bad actor propagation can be minimized. Another enhancement is to increase the security within your MFA functionality. For example, if you use Microsoft Authenticator today try changing from a 6 digit rotating pin to using security features such as number matching that displays the location of their IP Address. You can also look at GPS conditional policies to block all access from countries in which you don't have a presence. Running antivirus is another important safeguard. Here's the kicker -- do you actually know what percentage of your endpoints are running AV and EDR agents? Do you have coverage on both your Windows and Linux Server environments? Of the agents running, what portion have signatures updates that are not current? How about more than 30 days old. We find a lot of companies just check the box saying they have antivirus, but if you look behind the scenes you can see that antivirus isn't as effective as you think when it's turned off or outdated. Enabling Strong Spam Filters is another forgotten exercise. Yes, companies buy solutions like Proofpoint to secure email, but there's more that can be done. One example is implementing DMARC to properly authenticate and block spoofed emails. It's the standard now and prevents brand impersonation. Also please consider restricting email domains. You can do this at the very top. Today, the vast majority of legitimate correspondents still utilize one of the original seven top-level domains: .com, .org, .net, .edu, .mil, .gov, and .int, as well as two-letter country code top-level domains (called ccTLDs). However, you should look carefully at your business correspondence to determine if communicating with all 1,487 top-level domains is really necessary. Let's say your business is located entirely in the UK. Do you really want to allow emails from Country codes such as .RU, .CN, and others? Do you do business with .hair, or .lifestyle, or .xxx? If you don't have a business reason for conducting commerce with these TLDs, block them and minimize both spam and harmful attacks. It won't stop bad actors from using Gmail to send phishing attacks, but you might be surprised at just how much restricting TLDs in your email can help. Note that you have to be careful not to create a self-inflicted denial of service, so make sure that emails from suspect TLDs get evaluated before deletion. Disabling Ports and Protocols is key since you don't want bad actors having easy targets. One thing to consider is using Amazon Inspector. Amazon Inspector has rules in the network reachability package to analyze your network configurations to find security vulnerabilities in your EC2 Instances. This can highlight and provide guidance about restricting access that is not secure such as network configurations that allow for potentially malicious access such as mismanaged security groups, Access Control Lists, Internet Gateways, etc. Strengthening Cloud Security- We won't go into this topic too much as you could spend a whole talk on strengthening cloud security. Companies should consider purchasing a cloud security solution like Wiz, Orca, or Prisma for help in this regard. One tip we don't see often is using geo-fencing and IP allow-lists. For example, one new feature that AWS recently created is to enable Web Application Firewall protections for Amazon Cognito. This makes it easier to protect user pools and hosted UIs from common web exploits. Once we notice there's likely been a bear attack on our peers or our infrastructure, we should report it. This can be done by reporting incidents to local governments such as CISA or a local FBI field office, paid sharing organizations such as ISAC, or free communities such as AlienVault OTX. Let's walk through a notional example of what we might encounter as collateral damage in a cyberwar. However, to keeps this out of current geopolitics, we'll use the fictitious countries Blue and Orange. Imagine that you work at the Acme Widget Corporation which is a Fortune 500 company with a global presence. Because Acme manufactures large scale widgets in their factory in the nation of Orange, they are also sold to the local Orange economy. Unfortunately for Acme, Orange has just invaded their neighboring country Blue. Given that Orange is viewed as the aggressor, various countries have imposed sanctions against Orange. Not wanting to attract the attention of the Orange military or the U.S. Treasury department, your company produces an idea that might just be crazy enough to work. Your company is going to form a new company within Orange that is not affiliated with the parent company for the entirety of the war. This means that the parent company won't provide services to the Orange company. Additionally, since there is no affiliation between the companies then the legal department advises that there will not be sanction evasion activity which could put the company at risk. There's just one problem. Your company has to evict the newly created Orange company (Acme Orange LLC) from its network and ensure it has the critical IT services to enable its success. So where do we start? Let's consider a few things. First, what is the lifeblood of a company? Every company really needs laptops and Collaboration Software like Office 365 or GSuite. So, if we have five hundred people in the new Acme Orange company, that's five hundred new laptops and a new server that will host Microsoft Exchange, a NAS drive, and other critical Microsoft on premises services. Active Directory: Once you obtain the server, you realize a few things. Previous Acme admin credentials were used to troubleshoot desktops in the Orange environment. Since exposed passwords are always a bad thing, you get your first incident to refresh all passwords that may have been exposed. Also, you ensure a new Active Directory server is created for your Orange environment. This should leverage best practices such as MFA since Orange Companies will likely come under attack. Let's talk about other things that companies need to survive: Customer relations management (CRM) services like Salesforce Accounting and Bookkeeping applications such as QuickBooks Payment Software such as PayPal or Stripe File Storage such as Google Drive or Drop Box Video Conferencing like Zoom Customer Service Software like Zendesk Contract Management software like DocuSign HR Software like Bamboo or My Workday Antivirus & EDR software Standing up a new company's IT infrastructure in a month is never a trivial task. However, if ACME Orange is able to survive for 2-3 years it can then return to the parent company after the sanctions are lifted. Let's look at some discussion topics. What IT services will be the hardest to transfer? Can new IT equipment for Acme Orange be procured in a month during a time of conflict? Which services are likely to only have a SaaS offering and not enable on premises during times of conflicts? Could your company actually close a procurement request in a one-month timeline? If we believe we can transfer IT services and get the office up and running, we might look at our cyber team's role in providing recommendations to a new office that will be able to survive a time of turmoil. All laptops shall have Antivirus and EDR enabled from Microsoft. Since the Acme Orange office is isolated from the rest of the world, all firewalls will block IP traffic not originating from Orange. SSO and MFA will be required on all logins Backups will be routinely required. Note if you are really looking for effective strategies to mitigate cyber security incidents, we highly recommend the Australian Essential Eight. We have a link in our show notes if you want more details. Additionally, the ACME Orange IT department will need to create its own Incident Response Plan (IRP). One really good guide for building Cyber Incident Response Playbooks comes from the American Public Power Association. (I'll put the link in our show notes.) The IRP recommends creating incident templates that can be used for common attacks such as: Denial of Service (DoS) Malware Web Application Attack (SQL Injection, XSS, Directory Traversal, …) Cyber-Physical Attack Phishing Man in the middle attack Zero Day Exploit This Incident Response Template can identify helpful information such as Detection: Record how the attack was identified Reporting: Provide a list of POCs and contact information for the IT help desk to contact during an event Triage: List the activities that need to be performed during Incident Response. Typically, teams follow the PICERL model. (Preparation - Identification - Containment - Eradication - Recovery - Lessons Learned) Classification: Depending on the severity level of the event, identify additional actions that need to occur Communications: Identify how to notify local law enforcement, regulatory agencies, and insurance carriers during material cyber incidents. Additionally describe the process on how communications will be relayed to customers, employees, media, and state/local leaders. As you can see, there is much that would have to be done in response to a nation state aggression or regional conflict that would likely fall in your lap. If you didn't think about it before, you now have plenty of material to work with. Figure out your own unique requirements, do some tabletop exercises where you identify your most relevant Orange and Blue future conflict, and practice, practice, practice. We learned from COVID that companies that were well prepared with a disaster response plan rebranded as a pandemic response plan fared much better in the early weeks of the 2020 lockdown. I know my office transitioned to remote work for over sixty consecutive weeks without any serious IT issues because we had a written plan and had practiced it. Here's another one for you to add to your arsenal. Take the time and be prepared -- you'll be a hero "when the bubble goes up." (There -- you've learned an obscure term that nearly absent from a Google search but well-known in the Navy and the Marine Corps.) Okay, that's it for today's episode on Outrunning the Bear. Let's recap: Know yourself Know what foreign adversaries want Know what information, processes, or people you need to protect Know the goals of state actors:steal targeting data collect foreign intelligence covert action Know how to establish a good communications plan (PACE)Primary Alternate Contingency Emergency Know how to get out of Dodge Know where to find private and government threat intelligence Know your quick wins for protectionremediate vulnerabilities implement MFA everywhere run current antivirus enable strong spam filters restrict top level domains disable vulnerable or unused ports and protocols strengthen cloud security Know how to partition your business logically to isolate your IT environments in the event of a sudden requirement. Thanks again for listening to CISO Tradecraft. Please remember to like us on your favorite podcast provider and tell your peers about us. Don't forget to follow us on LinkedIn too -- you can find our regular stream of low-noise, high-value postings. This is your host G. Mark Hardy, and until next time, stay safe. References https://www.goodreads.com/quotes/17976-if-you-know-the-enemy-and-know-yourself-you-need https://en.wikipedia.org/wiki/There_are_known_knowns https://www.cia.gov/about/mission-vision/ https://www.cybersecurity-insiders.com/ukraines-accounting-software-firm-refuses-to-take-cyber-attack-blame/ https://www.wired.com/story/notpetya-cyberattack-ukraine-russia-code-crashed-the-world/ https://www.nationalisacs.org/member-isacs-3 https://attack.mitre.org/groups/ https://data.iana.org/TLD/tlds-alpha-by-domain.txt https://www.publicpower.org/system/files/documents/Public-Power-Cyber-Incident-Response-Playbook.pdf
00:00 - a whole new radio station01:00 - the hood harry potter02:00 - these fraud niggas is frauds04:45 - how does a scammer start08:25 - balance09:30 - computer genius11:30 - all in 13:00 - turo $20 = $10k come up16:00 - mad punchin: a day in the life18:00 - court dates more important than yo birthday19:50 - the gift of gab20:30 - RARE21:40 - you need yo own fishing pole to be in my pond24:00 - i don't even want no new bitches25:00 - 750k in 4 weeks27:00 - perc angle30:00 - allah sent me32:00 - this nigga done changed his face and all types of shit/ michelle obama a man??37:00 - aint no laws39:00 - scammer teams42:00 - protect the money45:00 - " fuck comfortable, safe nigga."48:00 - backdoor wide open49:45 - i will book a airbnb and sell everything in that bitch55:00 - i wanna be a pastor
Strap in ladies & gentlemen, we're coming in hot today! Flying solo & bringing the heat! Next Fri we'll have 2 special guests…yes PLURAL! Tune in on Mon to find out who the mystery guests will be. Alright LFG!Thank you, Andrea Amico (Privacy4Cars Founder) for posting this article earlier this week. He crushed it on the show earlier this year (Watch Here | Listen Here)! GM offers rebate on Cadillac Lyriq if drivers sign an NDA & agree to be tracked. Earlier this summer, GM quietly pushed the Lyriq Private Offer to certain customers. Carsdirect.com reported this on 6/30. They stopped short of saying who was eligible or why GM had such a deal going. A Cadillac dealer familiar w/the program told the Free Press that in exchange for the $5,500 rebate, the selected customers agreed to be part of an early adopters' study & give Cadillac access to their driving patterns. There are ~20 customers in the program. Things that make you go "Hmm..."Would you give up your privacy & have every moment tracked for $5,500? Not me.Speaking of invasion of privacy, remember when I said I would circle back to Coffeyville? After speaking w/Vasilios, Wikimotive's Zach Billing dropped his article that hit most of our LI accounts where he talked about how Google Analytics was now misreporting location for iOS users.Here is why you should always Work the Facts & NOT the ones that support your theory. In 2006, WIRED wrote about Coffeyville, KS, which isn't far from the geographic center of the lower 48 US. Read More It is a farmhouse IP address that has often been used when a true geolocation can't be found, leading to numerous hijinks with over 600 million IP addresses pointing to their residence!What if that was your home?Google Speed Test: Sounds simple enough right? Mine says my server is currently in Chicago. If I Google my IP, it shows it's 39 miles from Chicago. When my friend Dusty checks on his cell using 5G, it shows his server is in Chicago. He lives in OH. When checking his WiFi, it shows his server in Mansfield OH. Mansfield is a 2 hr drive from his house.Static, Dynamic IP, VPN: What about Dynamic (constantly changing/rotating IP address) or VPN (Virtual Private Network) where one's IP Address is hidden? Do you think maybe geo location may be a little more difficult/less accurate?Why should I care? Trying to market in OH, but your ad's being served in Chicago or even 2 hours away? You're marketing the wrong area! "We're still getting the ad in front of buyers!" Quality vs Quantity. How many stores is one passing before reaching your store? Really want to market that far out of your area? Are you ok with losing all the service $ of this customer for the next 3-5+ years? They're not coming back to service w/you, which means they'll statically not buy from you again.Chapters0:00 Start2:04 Special Guests Announcement on Monday3:31 GM Offers Rebate on Cadillac Lyriq If Drivers Sign NDA & Agree to be Tracked6:13 Coffeyville - No This Is Not the Newest Flavor at Starbucks & Why Marketers Should Care About This Farmhouse In Kansas8:48 Google Speed Test: Sounds Simple Enough, Right….Right?!10:22 Static IP, Dynamic IP, VPN: What Are They and How They Differ11:12 Why Should You Care About Any of This? Who Cares If The Information Is Hidden? My Ad Was Still Served to Some Buyer14:13 Working with Your Business Partners to Work The Facts and Interpret the Data Into Actionable ItemsConnect with BZ Consultants Group: https://qrco.de/bcqqFo
Philippe Humeau joins us this hour to talk about CrowdSec - an IDS/IPS that uses crowd sourced information to evaluate threats on your network! -- During The Show -- 01:00 New Red Hat CEO Matt Hicks New Red Hat CEO (https://www.redhat.com/en/about/press-releases/red-hat-names-matt-hicks-president-and-chief-executive-officer) 03:44 Remove all traces of a user on logout? - Wayne TailsOS (https://tails.boum.org/) Noah's hackish solution TempFS? RamDisk? SquashFS? 'Delete' isn't a thing (Inodes) PhotoRec (https://www.cgsecurity.org/wiki/PhotoRec) 09:30 Recommendations for hosting provider - Gary Gary's Site (https://www.shawanga.com/) Host Gator Self Host with Hugo Tied to Hosting provider 14:00 Listener responds about CAD on Linux - Heath FreeCAD (https://www.freecad.org/) LibreCAD (https://librecad.org/) TinkerCAD (https://www.tinkercad.com/) Run under Wine 15:30 More Info about Steve's Solar? - Ian Steve likes his EnPhase Solar (https://enphase.com/) setup Hacks Home Assistant Integration (https://github.com/briancmpbll/home_assistant_custom_envoy) 18:30 News Wire Linux Better on i9 Systems Ghacks (https://www.ghacks.net/2022/07/09/linux-is-performing-better-than-windows-11-according-to-this-benchmark-test/) UltimateXR XR Today (https://www.xrtoday.com/virtual-reality/ultimatexr-launches-free-open-source-unity-tool/) EMQX 5.0 EIN News (https://www.einnews.com/pr_news/580326713/emqx-5-0-released-the-ultra-scalable-open-source-mqtt-broker) Calibre 6.0 9 to 5 Linux (https://9to5linux.com/calibre-6-0-released-with-full-text-search-arm64-support-on-linux-qt-6-port) Budgie Desktop 10.6.2 Buddies of Budgie (https://blog.buddiesofbudgie.org/budgie-10-6-2-released/) Linux Mint 21 Beta 9 to 5 Linux (https://9to5linux.com/linux-mint-21-beta-is-now-available-for-download-heres-a-first-look) Debian GNU/Linux 11.4 9 to 5 Linux (https://9to5linux.com/debian-gnu-linux-11-4-bullseye-released-with-79-security-updates-and-81-bug-fixes) Kali Linux on Linode Help Net Security (https://www.helpnetsecurity.com/2022/07/11/linode-kali-linux/) Paladin Cloud Security-as-Code Virtualization Review (https://virtualizationreview.com/articles/2022/07/11/paladin-cloud.aspx) Android Zero Day XDA Developers (https://www.xda-developers.com/pixel-6-galaxy-s22-linux-kernel-vulnerability-root-android/) OrBit Malware Cyper Security News (https://cybersecuritynews.com/orbit-undetected-linux-malware/) CrowdSec Interview Philippe Ew-Mow from CrowdSec (https://www.crowdsec.net/) What is CrowdSec How CrowdSec works Domains and Hashes vs IP Address and Behavior How IPs are cleaned Reporting based on "identity" not IP Address IDS and IPS CrowdSec Agent and CrowdSec Console Open Source Cyber Threat Intelligence (CTI) CrowdSec API How does CrowdSec resolve IDS and IPS problems? Blocking Unique Attacks The 3 Tiers of Crowdsec CrowdSec and GDPR Using Crowdsec Bouncers (IPS) CrowdSec Best Practices Replay Mode Integration into Firewalls CrowdSec on OPNSense (https://www.crowdsec.net/blog/crowdsec-arrives-on-opnsense) Best place to get started/learn CrowdSec Docs (doc.crowdsec.net) 49:00 Thoughts on CrowdSec Noah has been playing with CrowdSec Can also identify and block malicious out going traffic 51:00 Interview with Matt Hicks Interview with Matt Hicks (YouTube) (https://www.youtube.com/watch?v=qWg5cRH9YQg) -- The Extra Credit Section -- For links to the articles and material referenced in this week's episode check out this week's page from our podcast dashboard! This Episode's Podcast Dashboard (http://podcast.asknoahshow.com/294) Phone Systems for Ask Noah provided by Voxtelesys (http://www.voxtelesys.com/asknoah) Join us in our dedicated chatroom #GeekLab:linuxdelta.com on Matrix (https://element.linuxdelta.com/#/room/#geeklab:linuxdelta.com) -- Stay In Touch -- Find all the resources for this show on the Ask Noah Dashboard Ask Noah Dashboard (http://www.asknoahshow.com) Need more help than a radio show can offer? Altispeed provides commercial IT services and they're excited to offer you a great deal for listening to the Ask Noah Show. Call today and ask about the discount for listeners of the Ask Noah Show! Altispeed Technologies (http://www.altispeed.com/) Contact Noah live [at] asknoahshow.com -- Twitter -- Noah - Kernellinux (https://twitter.com/kernellinux) Ask Noah Show (https://twitter.com/asknoahshow) Altispeed Technologies (https://twitter.com/altispeed) Special Guest: Steve Ovens.
Is Google robbing us of the ability to think for ourselves? Google is great when you need a fact. Like - which country exports the most octopus? China. How many pounds in a kilogram? 2.2. Whaddaya call a vet who specializes in salamanders? A herpetologist. Wonderful. Thank you Google. THE one question google is asked the most worldwide is this. Are you ready? What is my IP Address. Now computer trouble-shooting makes sense. But for the life of Jeff, he can't figure out why you would ask google a question that begins with the words “Should I.” Because that means you're entrusting your life to a machine. Yet millions and millions of times a day, people ask Google “Should I…” See omnystudio.com/listener for privacy information.
Weibo will display user location information based on IP addresses on all profiles and accounts, the EU will reportedly bring antitrust charges against Apple next week, and researchers look at if video conferencing makes us less creative. MP3 Please SUBSCRIBE HERE. You can get an ad-free feed of Daily Tech Headlines for $3 a monthContinue reading "Weibo Will Display User IP Address Locations – DTH"
Watch the live stream: Watch on YouTube About the show Sponsored by FusionAuth: pythonbytes.fm/fusionauth Special guest: Ian Hellen Brian #1: gensim.parsing.preprocessing Problem I'm working on Turn a blog title into a possible url example: “Twisted and Testing Event Driven / Asynchronous Applications - Glyph” would like, perhaps: “twisted-testing-event-driven-asynchrounous-applications” Sub-problem: remove stop words ← this is the hard part I started with an article called Removing Stop Words from Strings in Python It covered how to do this with NLTK, Gensim, and SpaCy I was most successful with remove_stopwords() from Gensim from gensim.parsing.preprocessing import remove_stopwords It's part of a gensim.parsing.preprocessing package I wonder what's all in there? a treasure trove gensim.parsing.preprocessing.preprocess_string is one this function applies filters to a string, with the defaults almost being just what I want: strip_tags() strip_punctuation() strip_multiple_whitespaces() strip_numeric() remove_stopwords() strip_short() stem_text() ← I think I want everything except this this one turns “Twisted” into “Twist”, not good. There's lots of other text processing goodies in there also. Oh, yeah, and Gensim is also cool. topic modeling for training semantic NLP models So, I think I found a really big hammer for my little problem. But I'm good with that Michael #2: DevDocs via Loic Thomson Gather and search a bunch of technology docs together at once For example: Python + Flask + JavaScript + Vue + CSS Has an offline mode for laptops / tablets Installs as a PWA (sadly not on Firefox) Ian #3: MSTICPy MSTICPy is toolset for CyberSecurity investigations and hunting in Jupyter notebooks. What is CyberSec hunting/investigating? - responding to security alerts and threat intelligence reports, trawling through security logs from cloud services and hosts to determine if it's a real threat or not. Why Jupyter notebooks? SOC (Security Ops Center) tools can be excellent but all have limitations You can get data from anywhere Use custom analysis and visualizations Control the workflow…. workflow is repeatable Open source pkg - created originally to support MS Sentinel Notebooks but now supports lots of providers. When I start this 3+ yrs ago I thought a lot this would be in PyPI - but no
Google Analytics is removing the IP address from its global product. We get into the data privacy whys, as well as what Google Analytics is building in its place, in this week's episode. Also: The EARN IT act and how American Express overhauled its attribution model in anticipation of loss of signal.
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
Scanning for Previous Oracle WebLogic Vulnerabilities https://isc.sans.edu/forums/diary/Scanning+for+Previous+Oracle+WebLogic+Vulnerabilities/27918/ Sorting Things Out - Sorting Data by IP Address https://isc.sans.edu/forums/diary/Sorting+Things+Out+Sorting+Data+by+IP+Address/27916/ https://gitlab.com/slackermedia/bashcrawl Telegram Does Not Remove Auto-Deleted Messages from Cache https://habr.com/en/post/580582/ Microsoft To Disable Excel 4.0 Macros By Default https://twitter.com/GelosSnake/status/1446192775087722497 https://m365admin.handsontek.net/macro-settings-update-to-disable-excel-4-0-macros-by-default/
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
Microsoft MSHTML Remote Code Execution Vulnerability CVE-2021-40444 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40444 ProntonMail/VPN Releasing User's IP Address https://protonmail.com/blog/climate-activist-arrest/ What's App End To End Encryption Questioned (but upheld) https://twitter.com/evacide/status/1435288900587589632?s=20 PRIVATELOG and STASHLOG Malware Store Payload in Common Log File System (CLFS) https://www.fireeye.com/blog/threat-research/2021/09/unknown-actor-using-clfs-log-files-for-stealth.html