Podcasts about linux vms

Testing the security of your Bluetooth devices, diffing databases, visualising MQTT data, running Linux VMs on an iPad or Iphone, org mode in Kate, and making point and click games. Plus whether we are too negative, or if we are just realistic.   Support us on patreon and get an ad-free RSS feed with early... Read More

Testing the security of your Bluetooth devices, diffing databases, visualising MQTT data, running Linux VMs on an iPad or Iphone, org mode in Kate, and making point and click games. Plus whether we are too negative, or if we are just realistic.   Support us on patreon and get an ad-free RSS feed with early... Read More

In this episode of the Blue Security Podcast, Andy and Adam discuss Defender for Servers, a cloud security solution offered by Microsoft. They explain that Defender for Servers is part of the larger Defender for Cloud umbrella and is designed to protect cloud infrastructure, specifically servers. They discuss the different plans available, including Plan 1 and Plan 2, which offer varying levels of endpoint protection and vulnerability management. They also highlight the inclusion of Cloud Security Posture Management (CSPM) in both plans. The hosts emphasize the vendor-agnostic nature of Defender for Servers, which can be used in AWS, GCP, and on-premises environments. Takeaways -Defender for Servers is part of the larger Defender for Cloud umbrella and is designed to protect cloud infrastructure, specifically servers. -There are two plans available for Defender for Servers: Plan 1 and Plan 2. Plan 1 offers endpoint protection, while Plan 2 includes additional features such as XDR, EDR, and regulatory compliance capabilities. -Both Plan 1 and Plan 2 include Cloud Security Posture Management (CSPM), which provides security recommendations and secure score assessments. -Defender for Servers is vendor-agnostic and can be used in AWS, GCP, and on-premises environments. It is available for both Windows and Linux VMs. -Defender for Servers is priced on a consumption-based model, allowing customers to pay only for what they use. ---------------------------------------------------- YouTube Video Link:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ⁠https://youtu.be/-jG2BFPS45o⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ---------------------------------------------------- Documentation: ⁠https://learn.microsoft.com/en-us/azure/defender-for-cloud/plan-defender-for-servers-select-plan https://learn.microsoft.com/en-us/defender-vulnerability-management/defender-vulnerability-management-capabilities#vulnerability-managment-capabilities-for-servers https://learn.microsoft.com/en-us/azure/defender-for-cloud/concept-cloud-security-posture-management ---------------------------------------------------- Contact Us: Website: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://bluesecuritypod.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Twitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/bluesecuritypod⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Linkedin: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/company/bluesecpod⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Youtube: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.youtube.com/c/BlueSecurityPodcast⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ----------------------------------------------------------- Andy Jaw Twitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/ajawzero⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ LinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/andyjaw/⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠andy@bluesecuritypod.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ---------------------------------------------------- Adam Brewer Twitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/ajbrewer⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ LinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/adamjbrewer/⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ Email: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠adam@bluesecuritypod.com

Ensure peak performance, security and compatibility with Azure for Red Hat Enterprise Linux. Leverage Azure Migrate to transition on-prem Linux VMs to Azure, for cloud-native or hybrid deployment. Deploy and orchestrate infrastructure with Azure Resource Manager templates, Terraform, and Ansible playbooks. Uncover cost-saving opportunities and performance optimization tools, and benefit from license portability, commitment-based discounts, and diverse compute options, including Azure Confidential Computing VMs, for enhanced scalability and efficiency. Experience flexibility with Azure, enabling RHEL workloads to run across global regions and edge locations, with Azure Arc providing centralized management and security for hybrid environments. Join Azure expert, Matt McSpirit, as he shares why Azure is the right place to run your Red Hat Enterprise Linux workloads.   ► QUICK LINKS: 00:00 - Why run Red Hat Enterprise Linux workloads on Azure? 01:10 - Integration 01:41 - Automated scripting or code-based options 02:09 - Beyond provisioning 02:31 - Customer support 03:07 - Efficiency- optimize your spend 04:28 - Increase performance and scalability 05:41 - Flexibility 06:26 - Update management 06:40 - Wrap Up   ► Link References: See the Forrester Consulting study at https://aka.ms/RHELTEI For additional information check out https://aka.ms/RedHatAzure      ► Unfamiliar with Microsoft Mechanics?  As Microsoft's official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft. • Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries • Talk with other IT Pros, join us on the Microsoft Tech Community: https://techcommunity.microsoft.com/t5/microsoft-mechanics-blog/bg-p/MicrosoftMechanicsBlog • Watch or listen from anywhere, subscribe to our podcast: https://microsoftmechanics.libsyn.com/podcast   ► Keep getting this insider knowledge, join us on social: • Follow us on Twitter: https://twitter.com/MSFTMechanics  • Share knowledge on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/ • Enjoy us on Instagram: https://www.instagram.com/msftmechanics/ • Loosen up with us on TikTok: https://www.tiktok.com/@msftmechanics

Ep 220Updated Matter 1.2 Specification Supports New Device Types and Brings Performance ImprovementsChristian Keil: “I love Twitter — after posting about TSMC last week, a former ASML technician reached out to me...”Apple unveils M3, M3 Pro, and M3 Max, the most advanced chips for a personal computerApple supercharges 24-inch iMac with new M3 chipApple unveils new MacBook Pro featuring M3 chipsPaul Haddad:M3 Pro has 150GB/s bandwidth vs 200 for the M2 Pro. I think that can be explained by using 3 6GB/12GB modules for the RAM vs 4 on the M2.Apple M3 Deep Dive: The Details Most Skipped OverAnandTech overviewBehind the scenes at Scary Fast: Apple's keynote event shot on iPhoneHere's what Apple really means when it says “shot on iPhone”Asahi Linux finds macOS bug that leaves machines unbootableAsahi Linux:We've just now realized that doing any manual version upgrades of macOS will always install the latest firmware.Running Intel Binaries in Linux VMs with RosettaTurn Speech Into Text With Audio Hijack 4.3's New Transcribe BlockYouTube Music Integration Comes to HomePodMicrosoft Word Celebrates Its 40th AnniversaryHoward Rheingold:Here lies a nearly-complete archive of Whole Earth publicationsZahvalniceSnimano 4.11.2023.Uvodna muzika by Vladimir Tošić, stari sajt je ovde.Logotip by Aleksandra Ilić.Artwork epizode by Saša Montiljo, njegov kutak na Devianartu.95 x 66 cmulje /oil on canvas2008.u privatnoj kolekciji /private collection

In today's episode, hosts Andy Leonard and Frank La Vigne catch up on their recent activities, including Frank's presentations at the Red Hat Summit Connect. They discuss the event and the focus on AI and government agencies. Frank also shares his experiences with a new product called Ansible Lightspeed with Watson code assist, which is enhancing the use of large language models.Moving on, Andy and Frank talk about their home lab projects. They both express their excitement for building a powerful system that allows them to explore AI capabilities locally. While Andy's lab is focused on AI, Frank is delving into the world of Red Hat OpenShift and containers to expand his knowledge. They discuss the importance of hands-on learning and the practicality of setting up a home lab.The conversation takes an interesting turn as they discuss Andy's initial miscalculation with the GPU size and his daughter starting college, leading to budget changes. Frank shares his hardware journey over the past year, including his experience with the Apple Silicon M2 computer and its incredible performance.Tune in to this episode of "Data Driven" to hear more about the Red Hat Summit, the latest developments in AI, and the adventures of building a home lab. So grab your favorite beverage, sit back, and get ready to dive into the world of data-driven insights!LinksRed Hat OpenShift AI in Higher Education Webinar https://qrcodes.at/aidata-edu-webinar-oct19Show Notes[00:00:45] Red Hat holds an annual summit, usually in Boston, featuring sessions for developers.[00:05:16] Recounting difficulty using AI engines, but eventually having success. Mistake of underestimating GPU capacity.[00:07:08] This 8 gig memory is supernatural, like a cool oasis at a conference.[00:09:48] The text discusses trying different operating systems on an old device, including Fedora and Chrome OS Flex.[00:15:17] This machine has 96 gigs and can run multiple VMs.[00:17:12] The author plans to install Hyper V on Windows Server to run multiple Linux VMs, eventually migrating to Red Hat Enterprise Linux. They are waiting for a developer license key.[00:19:46] The person is setting up a NAS to store and access files from different devices. They currently use OneDrive as a temporary solution.

Move on-premises VMware or Hyper-V workloads to the cloud with Azure Migrate. Discover and assess your VMs, generate a business case for moving Windows and Linux VMs into Azure, and use integrated tools to replicate and migrate your VMs into production running on Azure. Get Extended Security Updates until October 2026 along with upgrade rights to a supported Windows Server release if you're migrating Windows Server 2012 VMs to Azure.   Azure expert, Matt McSpirit, gives a quick overview of how to migrate your VMware virtual machines to Azure. ► QUICK LINKS: 00:00 - Introduction 00:31 - Prerequisites 01:12 - VM discovery 03:15 - Discovered servers 04:12 - New business case assessment 05:55 - Create an assessment to migrate VMs into Azure 06:54 - Replicate VMs into Azure 08:35 - Run test migrations 09:14 - Migrate VMs into production 09:47 - Wrap up ► Link References: Set up permissions in Azure at https://aka.ms/VMwarePrereqs Details to migrate complete VMware environments and run them in Azure at https://aka.ms/AVSmechanics For expert migration help go to https://azure.com/AMMP ► Unfamiliar with Microsoft Mechanics? As Microsoft's official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft. • Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries • Talk with other IT Pros, join us on the Microsoft Tech Community: https://techcommunity.microsoft.com/t5/microsoft-mechanics-blog/bg-p/MicrosoftMechanicsBlog • Watch or listen from anywhere, subscribe to our podcast: https://microsoftmechanics.libsyn.com/podcast ► Keep getting this insider knowledge, join us on social: • Follow us on Twitter: https://twitter.com/MSFTMechanics • Share knowledge on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/ • Enjoy us on Instagram: https://www.instagram.com/msftmechanics/ • Loosen up with us on TikTok: https://www.tiktok.com/@msftmechanics

This is a recap of the top 10 posts on Hacker News on July 10th, 2023.PG EssaysSpotify: https://open.spotify.com/show/2NodnpVFh51xjE6XxiJcLE?si=a5efbf1561c644a1Apple: https://podcasts.apple.com/gb/podcast/pg-essays/id1696269981(00:39): Firefox address barOriginal post: https://news.ycombinator.com/item?id=36666116&utm_source=wondercraft_ai(02:16): Tuition costs have risen 710% since 1983Original post: https://news.ycombinator.com/item?id=36669253&utm_source=wondercraft_ai(04:20): Thunderbird 115Original post: https://news.ycombinator.com/item?id=36664113&utm_source=wondercraft_ai(05:56): First U.S. ban on sale of cellphone location data might be comingOriginal post: https://news.ycombinator.com/item?id=36667848&utm_source=wondercraft_ai(07:17): New study reveals most classic video games are unavailableOriginal post: https://news.ycombinator.com/item?id=36668472&utm_source=wondercraft_ai(09:14): Self-hosted photo and video backups directly from your mobile phoneOriginal post: https://news.ycombinator.com/item?id=36673224&utm_source=wondercraft_ai(09:57): Lima: A nice way to run Linux VMs on MacOriginal post: https://news.ycombinator.com/item?id=36668964&utm_source=wondercraft_ai(11:26): Nitter is working againOriginal post: https://news.ycombinator.com/item?id=36665406&utm_source=wondercraft_ai(13:09): We replaced Firecracker with QEMUOriginal post: https://news.ycombinator.com/item?id=36666782&utm_source=wondercraft_ai(14:38): Apple VisionOS Simulator streaming wirelessly to Meta Quest headsetOriginal post: https://news.ycombinator.com/item?id=36668732&utm_source=wondercraft_aiThis is a third-party project, independent from HN and YC. Text and audio generated using AI, by wondercraft.ai. Create your own studio quality podcast with text as the only input in seconds at app.wondercraft.ai. Issues or feedback? We'd love to hear from you: team@wondercraft.ai

In this episode I talk with Brian Smith, Co-Found and CTO at SpyderBat. Spyderbat delivers cloud native runtime security to customers with unprecedented precision in intrusion prevention and mitigation. They secure Linux VMs and Kubernetes clusters at runtime and block attacks against cloud native workloads. They are making threat prevention and security operation automation available with their SaaS platform and UI through the use of Nano Agents leveraging eBPF for early, accurate, and thorough recognition of attacks. Brian and I talk about how SpyderBat is flipping the tables in the cyber security war by proactively reporting on suspicious activity... effectively spying on the bad guys and catching them unawares. SpyderBat was founded in 2019 and is head quartered out of Austin Texas. ☑️ But me a coffee? - https://ko-fi.com/gtwgt ☑️ Technology and Technology Partners Mentioned: Public Cloud, Microsoft, AWS, Azure, Kubernetes, Containers, Networking, Security, Linux, Kernel, eBPF ☑️ Raw Talking Points: Shift Left vs shift right security Scanning code and artefacts going into build Todays Threat Environment Runtime Security Bridging DevOps and SecOps eBPF and Nano Agents sandbox SaaS vs on Prem Real time mapping Zero Day, Supply Chain, Compromised Build, Misconfiguration Threats Human Factor? Spyderbat Labs - research arm What's the problem across containers and cloud workloads Automating security Intrusion Detection Sec and Op issues (SecOps Automation) Community account? Kubernetes and Container platforms and the need for security Solutions for AWS, Multi-cloud, Kubernetes Anything Linux - rPi Containerised Security and Guardrails during dev process Proactive vs reactive On the node... keep innovating ☑️ Web: https://www.spyderbat.com/ ☑️ Platform: https://www.spyderbat.com/the-spyderbat-platform/ ☑️ eBPF: https://ebpf.io/what-is-ebpf ☑️ Crunchbase: https://www.crunchbase.com/organization/spyderbat ☑️ Interested in being on #GTwGT? Contact via Twitter @GTwGTPodcast or go to https://www.gtwgt.com ☑️ Subscribe to YouTube: https://www.youtube.com/@GTwGTPodcast?sub_confirmation=1 ☑️ Music: https://www.bensound.com

Luc-Olivier and Yanik go over some WWDC22 sessions off the beaten path.Administrative note: As we have been doing for the past few years, we will be going on a brief summer hiatus after the release of the next episode, episode 188 on July 17th. We plan to return with episode 189 on September 11th.Related LinksFU: cohost.orgCreate macOS or Linux virtual machines (10002)Running Intel Binaries in Linux VMs with Rosetta | Apple Developer DocumentationBoost performance with MetalFX Upscaling (10103)Get more mileage out of your app with CarPlay (10016)CarPlay App Programming Guide | Apple Developer DocumentationAdopt desktop-class editing interactions (10071)

https://youtu.be/VkHTLgb1gOs A New Version of Outlook and the Productivity News This Week (If you're reading this in a podcast directory/app, please visit https://anythingbutidle.com for clickable links and the full show notes and transcript of this cast.) Enjoy! Give us feedback! And, thanks for listening! If you'd like to continue discussing any news from this episode, please click here to leave a comment down below (this jumps you to the bottom of the post). In this Cast | A New Version of Outlook Ray Sidney-Smith Augusto Pinaud Headlines & Show Notes | A New Version of Outlook Resources we mention, including links to them, will be provided here. Please listen to the episode for context. World's largest test of four-day work week begins in U.K. No need to be online: Is Asynchronous work the key to productivity? | PS News How to Choose the Ideal Number of Work Hours If we're so busy, why isn't anything getting done? | McKinsey Action is Everything — Joseph Wells -  There Is No Blueprint For Grief 7 Simple Steps to Skyrocket Your Energy Levels How to Successfully Balance a Full-Time Job and a Side Hustle Without Burnout iPhone and iPad users can now download Google TV from the Appstore PWAs on a Chromebook may soon support multiple in-app tabs Google Drive Revolutionized With Copy/Paste Function Google Drive will now show you your files location at a glance Chrome 102 has arrived check out whats new and improved ChromeOS 102 arrives with better note-taking, accessibility improvements and more Things You Never Knew Your Chromebook Could Do You need to try Bionic Reading on the Amazon Kindle Barnes & Noble introduces a cheap e-reader to compete with the Kindle Google is combining Meet and Duo into a single app for voice and video calls - The Verge Google Chat adds warning banners to protect against phishing attacks How YouTube built a better way to connect your TV and phone Business & Finance Segment The Worldwide Personal Development Industry is Expected to Reach $67 Billion by 2030 - ResearchAndMarkets.com | Business Wire Featured Story of the Week Heres how Microsofts new One Outlook email app will work Other News WWDC 2022 - Sketchnote Summary

Hakuro Matsuda さんをゲストに迎えて、WWDC, CarPlay, Passkey, M2, MacBook Air, iPad などについて話しました。 Show Notes WWDC22 - Apple inside Apple's iOS 16 remake of the iPhone's iconic Lock Screen Private Access Tokens: stepping into the privacy-respecting, CAPTCHA-less future we were promised Apple's Pay Later installment credit scheme will live under a new lending subsidiary Apple Maps iPadOS 16 beta has debug menu that enables new lock screen Tips to Use Google Photos with Your Family Apple CarPlay in iOS 16: Which Cars Will Support It? What is Android Automotive? チーズ牛丼 (ネットスラング) Moom Alfred Raycast Supporting Passkeys Web Authentication Powering discovery and trial with Immersive Stream for Games WeatherKit Rebuild: 219: Mass Murder of Apps (omo) Running Intel Binaries in Linux VMs with Rosetta USB-C will be mandatory for phones sold in the EU ‘by autumn 2024' Microsoft HoloLens boss Alex Kipman is out after misconduct allegations US will end Covid-19 testing requirement for air travelers entering the country 犬王 四畳半タイムマシンブルース 四畳半タイムマシンブルース | 森見 登美彦, 上田 誠 PSYCHO-PASS サイコパス Ghost in the Shell: SAC_2045 Ultraman Fellow Ode Brew Grinder OXO ON コーヒーグラインダー Holler Mountain Organic Coffee | Stumptown The Ratio Eight coffee maker

Ep 184Kako je Apple prezentovao novosti:Apple unveils an all-new Lock Screen experience and new ways to share and communicate in iOS 16watchOS 9 delivers new ways to stay connected, active, and healthymacOS Ventura adds powerful productivity tools and new Continuity features that make the Mac experience better than everApple unveils M2, taking the breakthrough performance and capabilities of M1 even furtherApple unveils all-new MacBook Air, supercharged by the new M2 chipiPadOS 16 takes the versatility of iPad even further with powerful new productivity and collaboration featuresApple provides developers with even more powerful technologies to push the app experience forwardApple announces winners of the 2022 Apple Design AwardsDeveloper Center vibe & Keynote streaming sceneZabeleške uživo34M registrovanih Apple developeraiOS -----Lock Screen customization, widgets. Like watch face customizationNotifications overhaul. Live Activities APIConnect custom lock screens with focusFocus filter API, to enable the usage in appsMessages: Edit send messages. Undo Send. Mark thread as unread.Shared with you API (do sada bilo samo u Messages)FaceTime shows share-play enabled apps.SharePlay inside Messages.18B dictation requests per month.Dictation works along with typingApp Intents API, to enable Sir Shortcuts in apps automatically.Live Text in video. Copy/select textLiveText APICoreML allows 40B ops in milliseconds, enables visual extraction of stuff from images (like dog from beach photo)Wallet: in-app ID APIShare hotel keys. IETF collaboration to make it open standard.Tap to pay, using just iPhone. Works with partnersᴘᴀʏ later, with API for apps. order tracking for stuff paid with ᴘᴀʏMaps: multi-stop routing, planning. Transit cards, payments, alert for low balance.MapKit API for city experiences, to integrate new maps in the 3rd party apps. LookAround API in MapKit. Server-side API (?) (edited)Apple News adds sports content.Family Sharing updates: easier management of kids' accounts. Simpler setup for new kid's device. Ask for screen time in Messages. Family checklist.Better way to share photos: iCloud share photo library, up to 5 people. Send camera shots directly into shared library. Automatic share option.Safety Check: quick way to disable / stop sharing personal stuff with someoneNew Home app.Added support for matter standard. Contributed HomeKit to it.CarPlay: next gen UI/API for larger in-car screens. Better integration with car features (temp, volume, drive data, car status etc) (edited)Kraj sledeće godine u novim automobilima. (Nema BMW-a na spisku)Personalized spatial audio for AirPods, using true depth camera.watchOS -------4 new WATCH facesNew fitness metrics, analyzing how body moves when running.Custom Interval training programs, multiple screens in Workout appFitness app in iOS 16, without apple watch. Uses only iPhone dataSleep Stages to analyze sleepHeart app tracking and keeps AFib historyMedications: add, log usage, notify, track. Scan the label, add scheduleMac hw ------M2 CPU line: 5nm 2ndgen, 20B transistors. Up to 24GB memory. Still 8-core, 4+418% more power on 15W than M1M2 has 2 more GPU cores, now 10+25% GPU power40% higher perf for neural over M1Re-designed MBA M2: silver, space greay, starlight and midnight. Audio TRRS, 2 TB4 ports, MagSafe, liquid retina display, 13.6in, 1080p camera. 4 speakers, 3 mics, spatial audio with Dolby AtmosFanless design. Wow.Fast charge, 67W adapter(mnogo me podseća na TiBook)13in Macbook Pro M2, 40% faster than M1Air 1199, Pro 1299. M1 Air is 999macOS ------13: VenturaStage Manager - new window management, per app or group of appsUpdated SpotlightUpdated Mail appSafari updated. Shared tab groups. Passkeys - can't be phished. Stay on device. Work in apps and web sites. fido alliance compatibleGaming. Metal 3 API.MetalFx upscaling, Appleov odgovor na FSR i DLSSFaceTime adds handoffDeskView + portrait from one cameraiPadOS ------(Craig Federighi, Bollywood style)Collaboration on one document (not a copy)Collaboration across apps (Messages, Safari etc)New app for collab: FreeformBackground download API. More gaming APIsWeatherKit, finally no more weather.com shitDesktop-class app's features across all apps / iPadOSReference Mode, for accurate color reproductionStageManager also on iPadOS (only for M1)Multi-screen supportOverlapping windows, auto-repositioning windows for open appsUp to 4 apps in Stage Manager group, 4+4 with external displayDevsNovi API documentation web siteXcode 14 konačno razdvojio IDE od SDKWeatherKit je API čija se upotreba plaća. Kažu ljudi, vrlo povoljno.CarPlay3 deluje vrlo obećavajuće.Fantastičan novi Charts framework, za SwiftUI.Swift Regex APIOnesFederico Viticci: my overview of the big changes coming in iOS and iPadOS 16.Mr. Macintosh: macOS Ventura hardware support MASSACRE!macOS 13 Ventura Lets You Use Your iPhone's Camera as a WebcamReincubate CamomacOS Ventura gives Linux VMs the ability to run x86 apps via RosettaSystem Preferences → SettingsJeff Johnson: Why Ventura System Settings is bad, part 2The Talk Show live from WWDC22Basic Apple Guy re-imagining in Feb 2022MJTsai overviewApple is financing all the lending for the Apple Pay Later service | AppleInsiderAR/VRRobert Scoble:Apple's WWDC will be the first of three different events that Apple is preparing for the next year introducing the world to augmented reality (a new form that we haven't seen yet).Paul Haddad: I wonder what kind of Apple device supports stereo video…FYI a 1024 x 1024 x 32 bit icon image is sixteen times larger than the entire memory space of the original Mac.20% popusta na Hyper proizvode (via Liquidator)ZahvalniceSnimljeno 11.6.2022.Uvodna muzika by Vladimir Tošić, stari sajt je ovde.Logotip by Aleksandra Ilić.Artwork epizode by Saša Montiljo, njegov kutak na Devianartu.47x63cm, ulje /oil on canvas2022.

This week we discuss work life balance, the State of Continuous Delivery Survey and recap WWDC. Plus, some thoughts on Buddha and parenting… Runner-up Titles The Buddha had no kids The Air Fryer is a PaaS. Rundown Work vs. Life Office workers get little reward for returning to the office – an idle factory is taboo (https://cote.io/2022/06/08/office-workers-get-little-reward-for-returning-to-work-an-idle-factory-is-taboo/) CEOs had a phenomenal year. Workers, less so (https://thehustle.co/05312022-CEO-vs-Worker-Pay/) Tesla monitored its employees on Facebook with help of PR firm during 2017 union push (https://www.cnbc.com/2022/06/02/tesla-paid-pr-firm-to-surveil-employees-on-facebook-in-2017-union-push.html) Elon Musk asks all Tesla employees to come back to the office or quit (https://electrek.co/2022/06/01/elon-musk-tesla-employees-come-back-office-or-quit/) Ford factory workers get 40-hour week (https://www.history.com/this-day-in-history/ford-factory-workers-get-40-hour-week) Survey Says State of Continuous Delivery (https://cd.foundation/wp-content/uploads/sites/78/2022/06/The-State-of-CD-Q1-2022.pdf) Chainguard raises $50M Series A for supply chain security (https://techcrunch.com/2022/06/02/chainguard-raises-50m-to-guard-supply-chains/) WWDC Apple WWDC 2022: the 16 biggest announcements (https://www.theverge.com/2022/6/6/23141939/apple-wwdc-2022-biggest-announcements-ios-16-macbook-air-macos-watchos) Create macOS or Linux virtual machines - WWDC22 - Videos (https://developer.apple.com/videos/play/wwdc2022/10002/) Apple will allow Linux VMs to run Intel apps with Rosetta in macOS Ventura (https://arstechnica.com/gadgets/2022/06/macos-ventura-will-extend-rosetta-support-to-linux-virtual-machines/) All the New Features Coming to Your Mac This Fall (https://www.wired.com/story/apple-ventura-macos-13-preview/) EU reaches deal to make USB-C a common charger for most electronic devices (https://www.engadget.com/eu-reaches-deal-to-make-usb-c-a-common-charger-for-most-electronic-devices-104605067.html) Relevant to your Interests Earnings HashiCorp quarter (https://siliconangle.com/2022/06/02/kubecost-launches-open-source-opencost-project-keep-lid-kubernetes-spending/https://twitter.com/jaminball/status/1532457687778312213?s=21&t=FiXLrZJc1LtYPQyeU27CEg) MongoDB quarter (https://twitter.com/jaminball/status/1532094080418607104) GitLab quarter (https://twitter.com/jaminball/status/1533906440695316480?s=21&t=K30ROu7mTJp1DgbvYxhDCA) Salesforce stock jumps as it raises profit forecast (https://www.cnbc.com/2022/05/31/salesforce-crm-earnings-q1-2023.html) Tech Valuations Tumble, but Business Software Stocks Are Cushioned by the Cloud (https://www.wsj.com/articles/tech-valuations-tumble-but-business-software-stocks-are-cushioned-by-the-cloud-11654164000?mod=djemalertNEWS) A Framework for Navigating Down Markets (https://future.com/framework-valuation-navigating-down-markets/) VMware Good thread (VMware history) (https://twitter.com/jdooley_clt/status/1528688334394077184) Broadcom buying VMware makes sense for IoT infrastructure (https://www.theregister.com/2022/05/26/broadcom_buying_vmware_makes_sense/) Broadcom plans 'rapid subscription transition' for VMware (https://www.theregister.com/2022/05/27/broadcom_vmware_subscriptions/) Broadcom buying VMware makes sense for IoT infrastructure (https://www.theregister.com/2022/05/26/broadcom_buying_vmware_makes_sense/) Brian Madden's brutal and unfiltered thoughts on the Broadcom / VMware deal (https://www.linkedin.com/pulse/brian-maddens-brutal-unfiltered-thoughts-broadcom-vmware-brian-madden/?trackingId=m%2FeClBkjQxSyYPzRVcnpHQ%3D%3D) Broadcom will tame the VMware beast (https://siliconangle.com/2022/05/27/broadcom-will-tame-vmware-beast/) VMware Blockchain (https://www.vmware.com/products/blockchain.html) Bolt, the payments start-up, has begun laying off employees. (https://www.nytimes.com/2022/05/25/business/bolt-layoffs.html) Layoffs.fyi - Tech Layoff Tracker and Startup Layoff Lists (https://layoffs.fyi/) Proton Is Trying to Become Google—Without Your Data (https://www.wired.com/story/proton-mail-calendar-drive-vpn/) OpenStack, except it's outer space, (https://twitter.com/Kemp/status/1530198772872933377) Microsoft confirms it's taking a 'new approach' with its game streaming device | Engadget (https://www.engadget.com/microsoft-confirms-its-taking-a-new-approach-to-its-game-streaming-device-090144247.html) How to do fun and interesting executive dinners, round tables, etc. – online and in-person (https://cote.io/2022/05/27/how-to-do-executive-dinners/) Over 380 000 open Kubernetes API servers | The Shadowserver Foundation (https://www.shadowserver.org/news/over-380-000-open-kubernetes-api-servers/) Twitter fined $150M for misusing 2FA data (https://www.techtarget.com/searchsecurity/news/252520746/Twitter-fined-150M-for-misusing-2FA-data) First she documented the alt-right. Now she's coming for crypto. (https://www.washingtonpost.com/technology/2022/05/29/molly-white-crypto/) Exclusive: Microsoft continues to iterate on an Xbox cloud streaming device codenamed 'Keystone' (https://www.windowscentral.com/gaming/xbox/exclusive-microsoft-continues-to-iterate-on-an-xbox-cloud-streaming-stick-codenamed-keystone) Microsoft won't lower software costs on AWS, Google clouds (https://www.techtarget.com/searchenterprisedesktop/news/252520735/Microsoft-wont-lower-software-costs-on-AWS-Google-clouds) A researcher's avatar was sexually assaulted on a metaverse platform owned by Meta, making her the latest victim of sexual abuse on Meta's platforms, watchdog says (https://www.businessinsider.com/researcher-claims-her-avatar-was-raped-on-metas-metaverse-platform-2022-5) Forget LinkedIn—Your Next Job Offer Could Come via Slack (https://www.wsj.com/articles/job-hunters-workers-use-slack-to-find-job-offers-fast-11653918510) Sheryl Sandberg will leave Meta after 14 years this fall (https://www.protocol.com/sheryl-sandberg-meta-coo) This crypto startup believes 'sex-to-earn' is the future of web3 (https://www.inputmag.com/tech/sexn-crypto-startup-sex-to-earn-web3-nfts) ExpressVPN rejects CERT-In directives, removes its India servers (https://economictimes.indiatimes.com/tech/technology/expressvpn-rejects-cert-in-directives-suspends-india-ops/articleshow/91956961.cms) MongoDB CTO on (no)SQL, Superapps, and Southeast Asia (https://future.com/mongodb-cto-cloud-providers-southeast-asia/) Google is combining Meet and Duo into a single app for voice and video calls (https://www.theverge.com/2022/6/1/23149832/google-meet-duo-combination-voice-video) This VR headset will measure a user's brain activity (https://www.pcgamer.com/this-vr-headset-will-measure-a-users-brain-activity) Tesla has to respond to increase in phantom braking complaints (https://electrek.co/2022/06/03/tesla-respond-increase-phantom-braking-complaints/) Amazon's retail CEO is resigning after 23 years (https://www.theverge.com/2022/6/3/23153327/amazon-ceo-consumer-retail-businesses-dave-clark-resigning) Zoom Hires Greg Tomb as President (https://www.globenewswire.com/news-release/2022/06/06/2457166/0/en/Zoom-Hires-Greg-Tomb-as-President.html?utm_source=newsletter&utm_medium=email&utm_campaign=newsletter_axioslogin&stream=top) Peloton hires Amazon Web Services executive Liz Coddington as new CFO in latest shakeup (https://techcrunch.com/2022/06/07/peloton-hires-amazon-executive-liz-coddington-new-cfo-latest-shakeup/) Musk accuses Twitter of 'resisting and thwarting' his right to information on fake accounts (https://www.cnbc.com/2022/06/06/musk-says-twitter-is-refusing-to-share-data-on-spam-accounts.html) ‘A new IBM': How the tech giant simplified its marketing (https://www.marketingweek.com/ibm-simplifying-marketing/) Coinbase extends hiring pause for 'foreseeable future' and plans to rescind some offers (https://www.cnbc.com/2022/06/02/coinbase-hiring-pause-for-foreseeable-future-and-will-rescind-offers.html) Evading the Big Blue Name Police (https://www.itjungle.com/2022/06/08/evading-the-big-blue-name-police/) IBM CEO explains why company offloaded Watson Health (https://www.theregister.com/2022/06/08/ibm_ceo_arvind_krishna_explains/) MongoDB fires up new cloud, on-premises releases (https://venturebeat.com/2022/06/07/mongodb-fires-up-new-cloud-on-premise-releases/) In reversal, Twitter plans to comply with Musk's demands for data (https://www.washingtonpost.com/technology/2022/06/08/elon-musk-twitter-bot-data/) OpenCost: Open Source Collaboration on Kubernetes Cost Standards (https://thenewstack.io/opencost-open-source-collaboration-on-kubernetes-cost-standards/) Kubecost launches open-source OpenCost project (https://siliconangle.com/2022/06/02/kubecost-launches-open-source-opencost-project-keep-lid-kubernetes-spending/) Datadog's 2022 State of Serverless repor (https://www.datadoghq.com/state-of-serverless/)t (https://www.datadoghq.com/state-of-serverless/) The IRS needs digital transformation (https://twitter.com/josephzeballos/status/1534189391328976897?s=21&t=uPoXtZtzX-q_GAtodVVbsg) Oracle quietly closes $28B deal to buy electronic health records company Cerner (https://techcrunch.com/2022/06/07/oracle-quietly-closes-28b-deal-to-buy-electronic-health-records-company-cerner/) Nonsense The Cast of HBO's 'Silicon Valley' Cast Explains What Real Startups Do (NSFW) (https://www.youtube.com/watch?v=5Y64UeNeiOM) WSJ News Exclusive | Justin Timberlake Sells Song Catalog to Blackstone-Backed Fund (https://www.wsj.com/articles/justin-timberlake-sells-song-catalog-to-blackstone-backed-fund-11653557400) Every person in the U.S. now receives an average of 65 packages a year. (https://twitter.com/mims/status/1529222322686672896) Spotify Podcasters Are Making $18,000 a Month With Nothing But White Noise (https://www.bloomberg.com/news/articles/2022-06-01/how-to-make-money-on-spotify-a-white-noise-podcast-could-bring-you-big-bucks) Flying ice cream? Unilever links with drone delivery service Flytrex (https://www.fooddive.com/news/flying-ice-cream-unilever-links-with-drone-delivery-service-flytrex/624541/) Texas to reclaim home of the largest Buc-ee's (https://www.kxan.com/news/texas/texas-to-reclaim-home-of-the-largest-buc-ees/) Sponsors Teleport — The easiest, most secure way to access infrastructure. (https://goteleport.com/?utm_campaign=eg&utm_medium=partner&utm_source=sdt) Listener Feedback / Jobs Tim wants you to work at Biogen as a Global DevOps Lead, Commercial & Medical IT (https://jobs.smartrecruiters.com/Biogen/743999821251393-global-devops-lead-commercial-medical-it) Walmart is hiring Principal Software Engineer - Linux Kernel in Sunnyvale, California (https://www.linkedin.com/jobs/view/2945555862) Ryan wants you to work at DataDog as the Vice President, Events and Field Marketing (https://www.datadoghq.com/careers/detail/?gh_jid=4252681) J&J Senior Algorithm Analytics Engineer in Redwood City, California | Medical Devices (https://jobs.jnj.com/jobs/2206008429W?lang=en-us) NYTimes is hiring a Staff Software Engineer - CI/CD Platform (https://nytimes.wd5.myworkdayjobs.com/Tech/job/New-York-NY/Staff-Software-Engineer---CI-CD-Platform_REQ-012710) Conferences FinOps X (https://events.linuxfoundation.org/finops-x/), June 20-21, 2022, Matt's there! DevOps Loop (https://devopsloop.io), June 22nd. Free! Coté put the agenda together. Open Source Summit North America (https://events.linuxfoundation.org/open-source-summit-north-america/), June 21-24, 2022, Matt's there! DevOpsDayLA (https://www.socallinuxexpo.org/scale/19x/devops-day-la) is happening at SCALE19x (https://www.socallinuxexpo.org/scale/19x), July, 29th, 2022 Discount code: DEVOP THAT Conference Wisconsin (https://that.us/call-for-counselors/wi/2022/), July 25, 2022 Discount code: SDTFriendsWI50 - $50 off 4-Day everything ticket Discount code:: SDTFriendsWI25 - $25 off 3-Day Camper ticket VMware Explore 2022, August 29 – September 1, 2022 (https://www.vmware.com/explore.html?src=so_623a10693ceb7&cid=7012H000001Kb0hQAC) SpringOne Platform (https://springone.io/?utm_source=cote&utm_medium=podcast&utm_content=sdt), SF, December 6–8, 2022 THAT Conference Texas Call For Counselors (https://that.us/call-for-counselors/tx/2023/) Jan 16-19, 2023, SDT news & hype Join us in Slack (http://www.softwaredefinedtalk.com/slack). Get a SDT Sticker! Send your postal address to stickers@softwaredefinedtalk.com (mailto:stickers@softwaredefinedtalk.com) and we will send you free laptop stickers! Follow us on Twitch (https://www.twitch.tv/sdtpodcast), Twitter (https://twitter.com/softwaredeftalk), Instagram (https://www.instagram.com/softwaredefinedtalk/), LinkedIn (https://www.linkedin.com/company/software-defined-talk/) and YouTube (https://www.youtube.com/channel/UCi3OJPV6h9tp-hbsGBLGsDQ/featured). Use the code SDT to get $20 off Coté's book, (https://leanpub.com/digitalwtf/c/sdt) Digital WTF (https://leanpub.com/digitalwtf/c/sdt), so $5 total. Become a sponsor of Software Defined Talk (https://www.softwaredefinedtalk.com/ads)! Recommendations Brandon: Apple Watch SE (https://www.apple.com/apple-watch-se/?afid=p238%7CsZvcBV5q2-dc_mtid_1870765e38482_pcrid_584606532877_pgrid_117189313172_pntwk_g_pchan__pexid__&cid=aos-us-kwgo-watch--slid---product-) for Tweens Coté: Matt Levine interview on (https://longform.org/posts/longform-podcast-490-matt-levine) The Longform podcast (https://longform.org/posts/longform-podcast-490-matt-levine). Photo Credits Banner (https://unsplash.com/photos/88IMbX3wZmI) ArtWork (https://unsplash.com/photos/5cFwQ-WMcJU)

0:00 Avert your eyes 0:08 EU agrees on USB-C mandate 1:16 Intel Arc GPU benchmark leaks 2:06 macOS Rosetta in Linux VMs 3:02 Vultr 3:36 QUICK BITS 3:42 Twitter to give Musk "firehose" 4:15 F-150 Lightning can charge Teslas 4:50 Crayta launches on Facebook Gaming 5:28 AI chatbot trained on 4chan 6:01 Taco Bell Defy News Sources: https://lmg.gg/Sx78T

Today's Headlines and the latest #cybernews from the desk of the #CISO: Microsoft September 2021 Patch Tuesday fixes 2 zero-days, 60 flaws, including PrintNightmare    OMIGOD: Azure users running Linux VMs need to update now SAP Patches Critical Vulnerabilities With September 2021 Security Updates Adobe Snuffs Critical Bugs in Acrobat, Experience Manager Travis CI Flaw Exposed Secrets From Public Repositories   Story Links: https://www.bleepingcomputer.com/news/microsoft/microsoft-september-2021-patch-tuesday-fixes-2-zero-days-60-flaws/ https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-remaining-windows-printnightmare-vulnerabilities/ https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-cve-2021-40444-mshtml-zero-day-bug/ https://www.zdnet.com/article/omigod-azure-users-running-linux-vms-need-to-update-now/ https://www.securityweek.com/sap-patches-critical-vulnerabilities-september-2021-security-updates https://threatpost.com/adobe-bugs-acrobat-experience-manager/169467/ https://www.databreachtoday.com/travis-ci-flaw-exposed-secrets-from-public-repositories-a-17535   “The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine   CyberWeek Georgia event on September 21st, 2021, get your pass now at https://www.cyberweekgeorgia.com   The Practitioner Brief is sponsored by: KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub  Attivo Networks: www.attivonetworks.com **** Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber James on Linkedin: https://www.linkedin.com/in/james-j-azar/ James on Parler: @realjamesazar Telegram: CyberHub Podcast Locals: https://cyberhubpodcast.locals.com ****** Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter ****** Website: https://www.cyberhubpodcast.com Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw Facebook: https://www.facebook.com/CyberHubpodcast/ Linkedin: https://www.linkedin.com/company/cyberhubpodcast/ Twitter: https://twitter.com/cyberhubpodcast Instagram: https://www.instagram.com/cyberhubpodcast Listen here: https://linktr.ee/cyberhubpodcast   The Hub of the Infosec Community. Our mission is to provide substantive and quality content that's more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Microsoft talks hybrid work, Teams A study of Microsoft employees shows how remote work puts productivity and innovation at risk Microsoft readies more Teams hybrid meeting features; frees up more LinkedIn remote-work courses Microsoft acquires student-tutor collaboration platform TakeLessons Microsoft No Longer Plans a Return to Office Date Brad Smith is Now the Vice Chairman of Microsoft Windows 11 Microsoft slammed the Magic Windows shut on Insiders testing Windows 11 Microsoft Says No to WOA Support on M1 Macs Analysis: Microsoft's Windows 11 Performance Claims Dev and Beta Channels Get New Windows 11 Builds Microsoft Releases New Dev Build of Windows 11 Mozilla Bypasses Default Apps Interface in Windows 11 The First Windows 11 Ad is ... Curious Microsoft accounts go passwordless Microsoft Account Goes Passwordless Microsoft Dev Microsoft Delays .NET MAUI to Mid-2022 Xbox You Can Now Stream Games From Consoles or the Cloud to Windows 10 Microsoft Announces More Game Pass Titles for September Tips and picks Tip of the week: Remove the password from your Microsoft account App pick of the week: Microsoft Authenticator Enterprise pick of the week: Patch your Linux VMs on Azure right now Codename pick of the week: Project Rocket Beer pick of the week: Grimm Pina Pop Sour Hosts: Leo Laporte, Mary Jo Foley, and Paul Thurrott Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com Check out Mary Jo's blog at AllAboutMicrosoft.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: BANDWIDTH.COM/WW

Microsoft talks hybrid work, Teams A study of Microsoft employees shows how remote work puts productivity and innovation at risk Microsoft readies more Teams hybrid meeting features; frees up more LinkedIn remote-work courses Microsoft acquires student-tutor collaboration platform TakeLessons Microsoft No Longer Plans a Return to Office Date Brad Smith is Now the Vice Chairman of Microsoft Windows 11 Microsoft slammed the Magic Windows shut on Insiders testing Windows 11 Microsoft Says No to WOA Support on M1 Macs Analysis: Microsoft's Windows 11 Performance Claims Dev and Beta Channels Get New Windows 11 Builds Microsoft Releases New Dev Build of Windows 11 Mozilla Bypasses Default Apps Interface in Windows 11 The First Windows 11 Ad is ... Curious Microsoft accounts go passwordless Microsoft Account Goes Passwordless Microsoft Dev Microsoft Delays .NET MAUI to Mid-2022 Xbox You Can Now Stream Games From Consoles or the Cloud to Windows 10 Microsoft Announces More Game Pass Titles for September Tips and picks Tip of the week: Remove the password from your Microsoft account App pick of the week: Microsoft Authenticator Enterprise pick of the week: Patch your Linux VMs on Azure right now Codename pick of the week: Project Rocket Beer pick of the week: Grimm Pina Pop Sour Hosts: Leo Laporte, Mary Jo Foley, and Paul Thurrott Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com Check out Mary Jo's blog at AllAboutMicrosoft.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: BANDWIDTH.COM/WW

Microsoft talks hybrid work, Teams A study of Microsoft employees shows how remote work puts productivity and innovation at risk Microsoft readies more Teams hybrid meeting features; frees up more LinkedIn remote-work courses Microsoft acquires student-tutor collaboration platform TakeLessons Microsoft No Longer Plans a Return to Office Date Brad Smith is Now the Vice Chairman of Microsoft Windows 11 Microsoft slammed the Magic Windows shut on Insiders testing Windows 11 Microsoft Says No to WOA Support on M1 Macs Analysis: Microsoft's Windows 11 Performance Claims Dev and Beta Channels Get New Windows 11 Builds Microsoft Releases New Dev Build of Windows 11 Mozilla Bypasses Default Apps Interface in Windows 11 The First Windows 11 Ad is ... Curious Microsoft accounts go passwordless Microsoft Account Goes Passwordless Microsoft Dev Microsoft Delays .NET MAUI to Mid-2022 Xbox You Can Now Stream Games From Consoles or the Cloud to Windows 10 Microsoft Announces More Game Pass Titles for September Tips and picks Tip of the week: Remove the password from your Microsoft account App pick of the week: Microsoft Authenticator Enterprise pick of the week: Patch your Linux VMs on Azure right now Codename pick of the week: Project Rocket Beer pick of the week: Grimm Pina Pop Sour Hosts: Leo Laporte, Mary Jo Foley, and Paul Thurrott Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com Check out Mary Jo's blog at AllAboutMicrosoft.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: BANDWIDTH.COM/WW

Microsoft talks hybrid work, Teams A study of Microsoft employees shows how remote work puts productivity and innovation at risk Microsoft readies more Teams hybrid meeting features; frees up more LinkedIn remote-work courses Microsoft acquires student-tutor collaboration platform TakeLessons Microsoft No Longer Plans a Return to Office Date Brad Smith is Now the Vice Chairman of Microsoft Windows 11 Microsoft slammed the Magic Windows shut on Insiders testing Windows 11 Microsoft Says No to WOA Support on M1 Macs Analysis: Microsoft's Windows 11 Performance Claims Dev and Beta Channels Get New Windows 11 Builds Microsoft Releases New Dev Build of Windows 11 Mozilla Bypasses Default Apps Interface in Windows 11 The First Windows 11 Ad is ... Curious Microsoft accounts go passwordless Microsoft Account Goes Passwordless Microsoft Dev Microsoft Delays .NET MAUI to Mid-2022 Xbox You Can Now Stream Games From Consoles or the Cloud to Windows 10 Microsoft Announces More Game Pass Titles for September Tips and picks Tip of the week: Remove the password from your Microsoft account App pick of the week: Microsoft Authenticator Enterprise pick of the week: Patch your Linux VMs on Azure right now Codename pick of the week: Project Rocket Beer pick of the week: Grimm Pina Pop Sour Hosts: Leo Laporte, Mary Jo Foley, and Paul Thurrott Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com Check out Mary Jo's blog at AllAboutMicrosoft.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: BANDWIDTH.COM/WW

Microsoft talks hybrid work, Teams A study of Microsoft employees shows how remote work puts productivity and innovation at risk Microsoft readies more Teams hybrid meeting features; frees up more LinkedIn remote-work courses Microsoft acquires student-tutor collaboration platform TakeLessons Microsoft No Longer Plans a Return to Office Date Brad Smith is Now the Vice Chairman of Microsoft Windows 11 Microsoft slammed the Magic Windows shut on Insiders testing Windows 11 Microsoft Says No to WOA Support on M1 Macs Analysis: Microsoft's Windows 11 Performance Claims Dev and Beta Channels Get New Windows 11 Builds Microsoft Releases New Dev Build of Windows 11 Mozilla Bypasses Default Apps Interface in Windows 11 The First Windows 11 Ad is ... Curious Microsoft accounts go passwordless Microsoft Account Goes Passwordless Microsoft Dev Microsoft Delays .NET MAUI to Mid-2022 Xbox You Can Now Stream Games From Consoles or the Cloud to Windows 10 Microsoft Announces More Game Pass Titles for September Tips and picks Tip of the week: Remove the password from your Microsoft account App pick of the week: Microsoft Authenticator Enterprise pick of the week: Patch your Linux VMs on Azure right now Codename pick of the week: Project Rocket Beer pick of the week: Grimm Pina Pop Sour Hosts: Leo Laporte, Mary Jo Foley, and Paul Thurrott Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com Check out Mary Jo's blog at AllAboutMicrosoft.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: BANDWIDTH.COM/WW

Microsoft talks hybrid work, Teams A study of Microsoft employees shows how remote work puts productivity and innovation at risk Microsoft readies more Teams hybrid meeting features; frees up more LinkedIn remote-work courses Microsoft acquires student-tutor collaboration platform TakeLessons Microsoft No Longer Plans a Return to Office Date Brad Smith is Now the Vice Chairman of Microsoft Windows 11 Microsoft slammed the Magic Windows shut on Insiders testing Windows 11 Microsoft Says No to WOA Support on M1 Macs Analysis: Microsoft's Windows 11 Performance Claims Dev and Beta Channels Get New Windows 11 Builds Microsoft Releases New Dev Build of Windows 11 Mozilla Bypasses Default Apps Interface in Windows 11 The First Windows 11 Ad is ... Curious Microsoft accounts go passwordless Microsoft Account Goes Passwordless Microsoft Dev Microsoft Delays .NET MAUI to Mid-2022 Xbox You Can Now Stream Games From Consoles or the Cloud to Windows 10 Microsoft Announces More Game Pass Titles for September Tips and picks Tip of the week: Remove the password from your Microsoft account App pick of the week: Microsoft Authenticator Enterprise pick of the week: Patch your Linux VMs on Azure right now Codename pick of the week: Project Rocket Beer pick of the week: Grimm Pina Pop Sour Hosts: Leo Laporte, Mary Jo Foley, and Paul Thurrott Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com Check out Mary Jo's blog at AllAboutMicrosoft.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: BANDWIDTH.COM/WW

Microsoft talks hybrid work, Teams A study of Microsoft employees shows how remote work puts productivity and innovation at risk Microsoft readies more Teams hybrid meeting features; frees up more LinkedIn remote-work courses Microsoft acquires student-tutor collaboration platform TakeLessons Microsoft No Longer Plans a Return to Office Date Brad Smith is Now the Vice Chairman of Microsoft Windows 11 Microsoft slammed the Magic Windows shut on Insiders testing Windows 11 Microsoft Says No to WOA Support on M1 Macs Analysis: Microsoft's Windows 11 Performance Claims Dev and Beta Channels Get New Windows 11 Builds Microsoft Releases New Dev Build of Windows 11 Mozilla Bypasses Default Apps Interface in Windows 11 The First Windows 11 Ad is ... Curious Microsoft accounts go passwordless Microsoft Account Goes Passwordless Microsoft Dev Microsoft Delays .NET MAUI to Mid-2022 Xbox You Can Now Stream Games From Consoles or the Cloud to Windows 10 Microsoft Announces More Game Pass Titles for September Tips and picks Tip of the week: Remove the password from your Microsoft account App pick of the week: Microsoft Authenticator Enterprise pick of the week: Patch your Linux VMs on Azure right now Codename pick of the week: Project Rocket Beer pick of the week: Grimm Pina Pop Sour Hosts: Leo Laporte, Mary Jo Foley, and Paul Thurrott Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com Check out Mary Jo's blog at AllAboutMicrosoft.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: BANDWIDTH.COM/WW

Microsoft talks hybrid work, Teams A study of Microsoft employees shows how remote work puts productivity and innovation at risk Microsoft readies more Teams hybrid meeting features; frees up more LinkedIn remote-work courses Microsoft acquires student-tutor collaboration platform TakeLessons Microsoft No Longer Plans a Return to Office Date Brad Smith is Now the Vice Chairman of Microsoft Windows 11 Microsoft slammed the Magic Windows shut on Insiders testing Windows 11 Microsoft Says No to WOA Support on M1 Macs Analysis: Microsoft's Windows 11 Performance Claims Dev and Beta Channels Get New Windows 11 Builds Microsoft Releases New Dev Build of Windows 11 Mozilla Bypasses Default Apps Interface in Windows 11 The First Windows 11 Ad is ... Curious Microsoft accounts go passwordless Microsoft Account Goes Passwordless Microsoft Dev Microsoft Delays .NET MAUI to Mid-2022 Xbox You Can Now Stream Games From Consoles or the Cloud to Windows 10 Microsoft Announces More Game Pass Titles for September Tips and picks Tip of the week: Remove the password from your Microsoft account App pick of the week: Microsoft Authenticator Enterprise pick of the week: Patch your Linux VMs on Azure right now Codename pick of the week: Project Rocket Beer pick of the week: Grimm Pina Pop Sour Hosts: Leo Laporte, Mary Jo Foley, and Paul Thurrott Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com Check out Mary Jo's blog at AllAboutMicrosoft.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: BANDWIDTH.COM/WW

Microsoft talks hybrid work, Teams A study of Microsoft employees shows how remote work puts productivity and innovation at risk Microsoft readies more Teams hybrid meeting features; frees up more LinkedIn remote-work courses Microsoft acquires student-tutor collaboration platform TakeLessons Microsoft No Longer Plans a Return to Office Date Brad Smith is Now the Vice Chairman of Microsoft Windows 11 Microsoft slammed the Magic Windows shut on Insiders testing Windows 11 Microsoft Says No to WOA Support on M1 Macs Analysis: Microsoft's Windows 11 Performance Claims Dev and Beta Channels Get New Windows 11 Builds Microsoft Releases New Dev Build of Windows 11 Mozilla Bypasses Default Apps Interface in Windows 11 The First Windows 11 Ad is ... Curious Microsoft accounts go passwordless Microsoft Account Goes Passwordless Microsoft Dev Microsoft Delays .NET MAUI to Mid-2022 Xbox You Can Now Stream Games From Consoles or the Cloud to Windows 10 Microsoft Announces More Game Pass Titles for September Tips and picks Tip of the week: Remove the password from your Microsoft account App pick of the week: Microsoft Authenticator Enterprise pick of the week: Patch your Linux VMs on Azure right now Codename pick of the week: Project Rocket Beer pick of the week: Grimm Pina Pop Sour Hosts: Leo Laporte, Mary Jo Foley, and Paul Thurrott Download or subscribe to this show at https://twit.tv/shows/windows-weekly Get episodes ad-free with Club TWiT at https://twit.tv/clubtwit Check out Paul's blog at thurrott.com Check out Mary Jo's blog at AllAboutMicrosoft.com The Windows Weekly theme music is courtesy of Carl Franklin. Sponsor: BANDWIDTH.COM/WW

Jussi's ground floor chart Azure Data Encryption at rest (Microsoft Docs) dm-crypt (Wikipedia) Get-AzVMDiskEncryptionStatus (Microsoft Docs) Securing your Linux VMs in Azure with Azure Disk Encryption (Jussi)

Look at Azure as a platform for running your Linux virtual machine and open source database workloads. Check out options for how you can lift and shift existing VMs and databases to Azure and modernize them using cloud native approaches. Matt McSpirit, from the Azure engineering team, joins Jeremy Chapman to show how Azure supports open source platforms across operating systems, with different Linux distros as well as their publishers and open source databases. Azure has been working with Red Hat, SUSE, Canonical, Flat Car, Elastic and HashiCorp, and open source databases like MySQL, Postgres, Cassandra, MariaDB for years. More than 60% of our marketplace solutions run on Linux, and we support open source native PaaS services, as well. Beyond the workload level, we contribute back to the upstream Linux and Kubernetes communities that many of the modern and cloud native architectures rely on. ► QUICK LINKS: 00:00 - Introduction 01:09 - Run Linux VMs in Azure 03:01 - Move an open source app from on-prem into Azure 06:04 - How to migrate VMs 07:36 - How to move database into Azure 10:52 - Repackage your VM to run as a container 12:40 - Configure an app 13:31 - Other options 14:48 - Wrap up ► Link References: To find information related to Linux running on Azure, check out https://azure.com/Linux Go to Azure migrate and test out a migration at https://aka.ms/azuremigrate Find the tools to migrate your data stores at https://aka.ms/datamigration Deploy Red Hat solutions on Azure at https://Azure.com/RedHat Run SUSE Linux on Azure at https://Azure.com/SUSE For more on Azure, go to https://Azure.com/AzureMigrate ► Unfamiliar with Microsoft Mechanics? We are Microsoft's official video series for IT. You can watch and share valuable content and demos of current and upcoming tech from the people who build it at #Microsoft. Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries?sub_confirmation=1 Join us on the Microsoft Tech Community: https://techcommunity.microsoft.com/t5/microsoft-mechanics-blog/bg-p/MicrosoftMechanicsBlog Watch or listen via podcast here: https://microsoftmechanics.libsyn.com/website ► Keep getting this insider knowledge, join us on social: Follow us on Twitter: https://twitter.com/MSFTMechanics Follow us on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/ Follow us on Facebook: https://facebook.com/microsoftmechanics/ 

Matt Crape (@MattThatITGuy) gave us a good introduction to Kubernetes by guiding us through building a simple K8s lab using K3s and Linux VMs. He explained basic concepts, used some of the recommended exercises and listed some of the resources that can be used to continue learning. All his code is available in GitHub: https://github.com/mattthatitguy

This week, cryptomining malware that launches Linux VMs on Windows and macOS, Oracle patches another actively-exploded WebLogic 0-day, LokiBot and NanoCore malware distributed in ISO image files, and an anonymous hacker that was exposed after dropping a USB drive while throwing a Molotov cocktail! In the expert commentary, we welcome Tyler Hudak, Practice Lead of Incident Response to talk about TrickBot malware!   Learn more about TrustedSec, visit: https://securityweekly.com/trustedsec Full Show Notes: https://wiki.securityweekly.com/HNNEpisode224   Visit https://www.securityweekly.com/hnn for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

This week, cryptomining malware that launches Linux VMs on Windows and macOS, Oracle patches another actively-exploded WebLogic 0-day, LokiBot and NanoCore malware distributed in ISO image files, and an anonymous hacker that was exposed after dropping a USB drive while throwing a Molotov cocktail! In the expert commentary, we welcome Tyler Hudak, Practice Lead of Incident Response to talk about TrickBot! Learn more about TrustedSec, visit: https://securityweekly.com/trustedsec Full Show Notes: https://wiki.securityweekly.com/HNNEpisode224 Visit http://hacknaked.tv to get all the latest episodes!

This week, cryptomining malware that launches Linux VMs on Windows and macOS, Oracle patches another actively-exploded WebLogic 0-day, LokiBot and NanoCore malware distributed in ISO image files, and an anonymous hacker that was exposed after dropping a USB drive while throwing a Molotov cocktail! In the expert commentary, we welcome Tyler Hudak, Practice Lead of Incident Response to talk about TrickBot malware!   Learn more about TrustedSec, visit: https://securityweekly.com/trustedsec Full Show Notes: https://wiki.securityweekly.com/HNNEpisode224   Visit https://www.securityweekly.com/hnn for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

This episode talks about the general availability (GA) of application consistent backup for Linux VMs running in Azure by using Azure Backup. This feature helps ensure that your application backup data is transactionally consistent

We review Meltdown and Spectre responses from various BSD projects, show you how to run CentOS with bhyve, GhostBSD 11.1 is out, and we look at the case against the fork syscall. This episode was brought to you by Headlines More Meltdown Much has been happened this week, but before we get into a status update of the various mitigations on the other BSDs, some important updates: Intel has recalled the microcode update they issued on January 8th. It turns out this update can cause Haswell and Broadwell based systems to randomly reboot, with some frequency. (https://newsroom.intel.com/news/intel-security-issue-update-addressing-reboot-issues/) AMD has confirmed that its processors are vulnerable to both variants of Spectre, and the the fix for variant #2 will require a forthcoming microcode update, in addition to OS level mitigations (https://www.amd.com/en/corporate/speculative-execution) Fujitsu has provided a status report for most of its products, including SPARC hardware (https://sp.ts.fujitsu.com/dmsp/Publications/public/Intel-Side-Channel-Analysis-Method-Security-Review-CVE2017-5715-vulnerability-Fujitsu-products.pdf) The Register of course has some commentary (https://www.theregister.co.uk/2018/01/12/intel_warns_meltdown_spectre_fixes_make_broadwells_haswells_unstable/) If new code is needed, Intel will need to get it right: the company already faces numerous class action lawsuits. Data centre operators already scrambling to conduct unplanned maintenance will not be happy about the fix reducing stability. AMD has said that operating system patches alone will address the Spectre bounds check bypass bug. Fixing Spectre's branch target injection flaw will require firmware fixes that AMD has said will start to arrive for Ryzen and EPYC CPUs this week. The Register has also asked other server vendors how they're addressing the bugs. Oracle has patched its Linux, but has told us it has “No comment/statement on this as of now” in response to our query about its x86 systems, x86 cloud, Linux and Solaris on x86. The no comment regarding Linux is odd as fixes for Oracle Linux landed here (https://linux.oracle.com/errata/ELSA-2018-4006.html) on January 9th. SPARC-using Fujitsu, meanwhile, has published advice (PDF) revealing how it will address the twin bugs in its servers and PCs, and also saying its SPARC systems are “under investigation”. Response from OpenBSD: (https://undeadly.org/cgi?action=article;sid=20180106082238) 'Meltdown, aka "Dear Intel, you suck"' (https://marc.info/?t=151521438600001&r=1&w=2) Theo de Raadt's response to Meltdown (https://www.itwire.com/security/81338-handling-of-cpu-bug-disclosure-incredibly-bad-openbsd-s-de-raadt.html) That time in 2007 when Theo talked about how Intel x86 had major design problems in their chips (https://marc.info/?l=openbsd-misc&m=118296441702631&w=2) OpenBSD gets a Microcode updater (https://marc.info/?l=openbsd-cvs&m=151570987406841&w=2) Response from Dragonfly BSD: (http://lists.dragonflybsd.org/pipermail/users/2018-January/313758.html) The longer response in four commits One (http://lists.dragonflybsd.org/pipermail/commits/2018-January/627151.html) Two (http://lists.dragonflybsd.org/pipermail/commits/2018-January/627152.html) Three (http://lists.dragonflybsd.org/pipermail/commits/2018-January/627153.html) Four (http://lists.dragonflybsd.org/pipermail/commits/2018-January/627154.html) Even more Meltdown (https://www.dragonflydigest.com/2018/01/10/20718.html) DragonflyBSD master now has full IBRS and IBPB support (http://lists.dragonflybsd.org/pipermail/users/2018-January/335643.html) IBRS (Indirect Branch Restricted Speculation): The x86 IBRS feature requires corresponding microcode support. It mitigates the variant 2 vulnerability. If IBRS is set, near returns and near indirect jumps/calls will not allow their predicted target address to be controlled by code that executed in a less privileged prediction mode before the IBRS mode was last written with a value of 1 or on another logical processor so long as all RSB entries from the previous less privileged prediction mode are overwritten. Speculation on Skylake and later requires these patches ("dynamic IBRS") be used instead of retpoline. If you are very paranoid or you run on a CPU where IBRS=1 is cheaper, you may also want to run in "IBRS always" mode. IBPB (Indirect Branch Prediction Barrier): Setting of IBPB ensures that earlier code's behavior does not control later indirect branch predictions. It is used when context switching to new untrusted address space. Unlike IBRS, IBPB is a command MSR and does not retain its state. DragonFlyBSD's Meltdown Fix Causing More Slowdowns Than Linux (https://www.phoronix.com/scan.php?page=article&item=dragonfly-bsd-meltdown&num=1) NetBSD HOTPATCH() (http://mail-index.netbsd.org/source-changes/2018/01/07/msg090945.html) NetBSD SVS (Separate Virtual Space) (http://mail-index.netbsd.org/source-changes/2018/01/07/msg090952.html) Running CentOS with Bhyve (https://www.daemon-security.com/2018/01/bhyve-centos-0110.html) With the addition of UEFI in FreeBSD (since version 11), users of bhyve can use the UEFI boot loader instead of the grub2-bhyve port for booting operating systems such as Microsoft Windows, Linux and OpenBSD. The following page provides information necessary for setting up bhyve with UEFI boot loader support: https://wiki.freebsd.org/bhyve/UEFI Features have been added to vmrun.sh to make it easier to setup the UEFI boot loader, but the following is required to install the UEFI firmware pkg: # pkg install -y uefi-edk2-bhyve With graphical support, you can use a vnc client like tigervnc, which can be installed with the following command: # pkg install -y tigervnc In the case of most corporate or government environments, the Linux of choice is RHEL, or CentOS. Utilizing bhyve, you can test and install CentOS in a bhyve VM the same way you would deploy a Linux VM in production. The first step is to download the CentOS iso (for this tutorial I used the CentOS minimal ISO): http://isoredirect.centos.org/centos/7/isos/x8664/CentOS-7-x8664-Minimal-1708.iso I normally use a ZFS Volume (zvol) when running bhyve VMs. Run the following commands to create a zvol (ensure you have enough disk space to perform these operations): # zfs create -V20G -o volmode=dev zroot/centos0 (zroot in this case is the zpool I am using) Similar to my previous post about vmrun.sh, you need certain items to be configured on FreeBSD in order to use bhyve. The following commands are necessary to get things running: ``` echo "vfs.zfs.vol.mode=2" >> /boot/loader.conf kldload vmm ifconfig tap0 create sysctl net.link.tap.uponopen=1 net.link.tap.uponopen: 0 -> 1 ifconfig bridge0 create ifconfig bridge0 addm em0 addm tap0 ifconfig bridge0 up ``` (replace em0 with whatever your physical interface is). There are a number of utilities that can be used to manage bhyve VMs, and I am sure there is a way to use vmrun.sh to run Linux VMs, but since all of the HowTos for running Linux use the bhyve command line, the following script is what I use for running CentOS with bhyve. ``` !/bin/sh General bhyve install/run script for CentOS Based on scripts from pr1ntf and lattera HOST="127.0.0.1" PORT="5901" ISO="/tmp/centos.iso" VMNAME="centos" ZVOL="centos0" SERIAL="nmda0A" TAP="tap1" CPU="1" RAM="1024M" HEIGHT="800" WIDTH="600" if [ "$1" == "install" ]; then Kill it before starting it bhyvectl --destroy --vm=$VMNAME bhyve -c $CPU -m $RAM -H -P -A -s 0,hostbridge -s 2,virtio-net,$TAP -s 3,ahci-cd,$ISO -s 4,virtio-blk,/dev/zvol/zroot/$ZVOL -s 29,fbuf,tcp=$HOST:$PORT,w=$WIDTH,h=$HEIGHT -s 30,xhci,tablet -s 31,lpc -l com1,/dev/$SERIAL -l bootrom,/usr/local/share/uefi-firmware/BHYVE_UEFI.fd $VMNAME kill it after bhyvectl --destroy --vm=$VMNAME elif [ "$1" == "run" ]; then Kill it before starting it bhyvectl --destroy --vm=centos bhyve -c $CPU -m $RAM -w -H -s 0,hostbridge -s 2,virtio-net,$TAP -s 4,virtio-blk,/dev/zvol/zroot/$ZVOL -s 29,fbuf,tcp=$HOST:$PORT,w=$WIDTH,h=$HEIGHT -s 30,xhci,tablet -s 31,lpc -l com1,/dev/$SERIAL -l bootrom,/usr/local/share/uefi-firmware/BHYVE_UEFI.fd $VMNAME & else echo "Please type install or run"; fi ``` The variables at the top of the script can be adjusted to fit your own needs. With the addition of the graphics output protocol in UEFI (or UEFI-GOP), a VNC console is launched and hosted with the HOST and PORT setting. There is a password option available for the VNC service, but the connection should be treated as insecure. It is advised to only listen on localhost with the VNC console and tunnel into the host of the bhyve VM. Now with the ISO copied to /tmp/centos.iso, and the script saved as centos.sh you can run the following command to start the install: # ./centos.sh install At this point, using vncviewer (on the local machine, or over an SSH tunnel), you should be able to bring up the console and run the CentOS installer as normal. The absolutely most critical item is to resolve an issue with the booting of UEFI after the installation has completed. Because of the path used in bhyve, you need to run the following to be able to boot CentOS after the installation: # cp -f /mnt/sysimage/boot/efi/EFI/centos/grubx64.efi /mnt/sysimage/boot/efi/EFI/BOOT With this setting changed, the same script can be used to launch your CentOS VM as needed: # ./centos.sh run If you are interested in a better solution for managing your Linux VM, take a look at the various bhyve management ports in the FreeBSD ports tree. Interview - newnix architect - @newnix (https://bsd.network/@newnix) News Roundup GhostBSD 11.1 - FreeBSD for the desktop (https://distrowatch.com/weekly.php?issue=20180108#ghostbsd) GhostBSD is a desktop oriented operating system which is based on FreeBSD. The project takes the FreeBSD operating system and adds a desktop environment, some popular applications, a graphical package manager and Linux binary compatibility. GhostBSD is available in two flavours, MATE and Xfce, and is currently available for 64-bit x86 computers exclusively. I downloaded the MATE edition which is available as a 2.3GB ISO file. Installing GhostBSD's system installer is a graphical application which begins by asking us for our preferred language, which we can select from a list. We can then select our keyboard's layout and our time zone. When it comes to partitioning we have three main options: let GhostBSD take over the entire disk using UFS as the file system, create a custom UFS layout or take over the entire disk using ZFS as the file system. UFS is a classic file system and quite popular, it is more or less FreeBSD's equivalent to Linux's ext4. ZFS is a more advanced file system with snapshots, multi-disk volumes and optional deduplication of data. I decided to try the ZFS option. Once I selected ZFS I didn't have many more options to go through. I was given the chance to set the size of my swap space and choose whether to set up ZFS as a plain volume, with a mirrored disk for backup or in a RAID arrangement with multiple disks. I stayed with the plain, single disk arrangement. We are then asked to create a password for the root account and create a username and password for a regular user account. The installer lets us pick our account's shell with the default being fish, which seemed unusual. Other shells, including bash, csh, tcsh, ksh and zsh are available. The installer goes to work copying files and offers to reboot our computer when it is done. Early impressions The newly installed copy of GhostBSD boots to a graphical login screen where we can sign into the account we created during the install process. Signing into our account loads the MATE 1.18 desktop environment. I found MATE to be responsive and applications were quick to open. Early on I noticed odd window behaviour where windows would continue to slide around after I moved them with the mouse, as if the windows were skidding on ice. Turning off compositing in the MATE settings panel corrected this behaviour. I also found the desktop's default font (Montserrat Alternates) to be hard on my eyes as the font is thin and, for lack of a better term, bubbly. Fonts can be easily adjusted in the settings panel. A few minutes after I signed into my account, a notification appeared in the system tray letting me know software updates were available. Clicking the update icon brings up a small window showing us a list of package updates and, if any are available, updates to the base operating system. FreeBSD, and therefore GhostBSD, both separate the core operating system from the applications (packages) which run on the operating system. This means we can update the core of the system separately from the applications. GhostBSD's core remains relatively static and minimal while applications are updated using a semi-rolling schedule. When we are updating the core operating system, the update manager will give us the option of rebooting the system to finish the process. We can dismiss this prompt to continue working, but the wording of the prompt may be confusing. When asked if we want to reboot to continue the update process, the options presented to us are "Continue" or "Restart". The Continue option closes the update manager and returns us to the MATE desktop. The update manager worked well for me and the only issue I ran into was when I dismissed the update manager and then wanted to install updates later. There are two launchers for the update manager, one in MATE's System menu and one in the settings panel. Clicking either of these launchers didn't accomplish anything. Running the update manager from the command line simply caused the process to lock up until killed. I found if I had dismissed the update manager once, I'd have to wait until I logged in again to use it. Alternatively, I could use a command line tool or use the OctoPkg package manager to install package updates. Conclusions Most of my time with GhostBSD, I was impressed and happy with the operating system. GhostBSD builds on a solid, stable FreeBSD core. We benefit from FreeBSD's performance and its large collection of open source software packages. The MATE desktop was very responsive in my trial and the system is relatively light on memory, even when run on ZFS which has a reputation for taking up more memory than other file systems. FreeBSD Looks At Making Wayland Support Available By Default (https://www.phoronix.com/scan.php?page=news_item&px=FreeBSD-Wayland-Availability) There's an active discussion this week about making Wayland support available by default on FreeBSD. FreeBSD has working Wayland support -- well, assuming you have working Intel / Radeon graphics -- and do have Weston and some other Wayland components available via FreeBSD Ports. FreeBSD has offered working Wayland support that is "quite usable" for more than one year. But, it's not too easy to get going with Wayland on FreeBSD. Right now those FreeBSD desktop users wanting to use/develop with Wayland currently need to rebuild the GTK3 tool-kit, Mesa, and other packages with Wayland support enabled. This call for action now is about allowing the wayland=on to be made the default. This move would then allow these dependencies to be built with Wayland support by default, but for the foreseeable future FreeBSD will continue defaulting to X.Org-based sessions. The FreeBSD developers mostly acknowledge that Wayland is the future and the cost of enabling Wayland support by default is just slightly larger packages, but that weight is still leaner than the size of the X.Org code-base and its dependencies. FreeBSD vote thread (https://lists.freebsd.org/pipermail/freebsd-ports/2017-December/111906.html) TrueOS Fliped the switch already (https://github.com/trueos/trueos-core/commit/f48dba9d4e8cefc45d6f72336e7a0b5f42a2f6f1) fork is not my favorite syscall (https://sircmpwn.github.io/2018/01/02/The-case-against-fork.html) This article has been on my to-write list for a while now. In my opinion, fork is one of the most questionable design choices of Unix. I don't understand the circumstances that led to its creation, and I grieve over the legacy rationale that keeps it alive to this day. Let's set the scene. It's 1971 and you're a fly on the wall in Bell Labs, watching the first edition of Unix being designed for the PDP-11/20. This machine has a 16-bit address space with no more than 248 kilobytes of memory. They're discussing how they're going to support programs that spawn new programs, and someone has a brilliant idea. “What if we copied the entire address space of the program into a new process running from the same spot, then let them overwrite themselves with the new program?” This got a rousing laugh out of everyone present, then they moved on to a better design which would become immortalized in the most popular and influential operating system of all time. At least, that's the story I'd like to have been told. In actual fact, the laughter becomes consensus. There's an obvious problem with this approach: every time you want to execute a new program, the entire process space is copied and promptly discarded when the new program begins. Usually when I complain about fork, this the point when its supporters play the virtual memory card, pointing out that modern operating systems don't actually have to copy the whole address space. We'll get to that, but first — First Edition Unix does copy the whole process space, so this excuse wouldn't have held up at the time. By Fourth Edition Unix (the next one for which kernel sources survived), they had wisened up a bit, and started only copying segments when they faulted. This model leads to a number of problems. One is that the new process inherits all of the parent's process descriptors, so you have to close them all before you exec another process. However, unless you're manually keeping tabs on your open file descriptors, there is no way to know what file handles you must close! The hack that solves this is CLOEXEC, the first of many hacks that deal with fork's poor design choices. This file descriptors problem balloons a bit - consider for example if you want to set up a pipe. You have to establish a piped pair of file descriptors in the parent, then close every fd but the pipe in the child, then dup2 the pipe file descriptor over the (now recently closed) file descriptor 1. By this point you've probably had to do several non-trivial operations and utilize a handful of variables from the parent process space, which hopefully were on the stack so that we don't end up copying segments into the new process space anyway. These problems, however, pale in comparison to my number one complaint with the fork model. Fork is the direct cause of the stupidest component I've ever heard of in an operating system: the out-of-memory (aka OOM) killer. Say you have a process which is using half of the physical memory on your system, and wants to spawn a tiny program. Since fork “copies” the entire process, you might be inclined to think that this would make fork fail. But, on Linux and many other operating systems since, it does not fail! They agree that it's stupid to copy the entire process just to exec something else, but because fork is Important for Backwards Compatibility, they just fake it and reuse the same memory map (except read-only), then trap the faults and actually copy later. The hope is that the child will get on with it and exec before this happens. However, nothing prevents the child from doing something other than exec - it's free to use the memory space however it desires! This approach now leads to memory overcommittment - Linux has promised memory it does not have. As a result, when it really does run out of physical memory, Linux will just kill off processes until it has some memory back. Linux makes an awfully big fuss about “never breaking userspace” for a kernel that will lie about memory it doesn't have, then kill programs that try to use the back-alley memory they were given. That this nearly 50 year old crappy design choice has come to this astonishes me. Alas, I cannot rant forever without discussing the alternatives. There are better process models that have been developed since Unix! The first attempt I know of is BSD's vfork syscall, which is, in a nutshell, the same as fork but with severe limitations on what you do in the child process (i.e. nothing other than calling exec straight away). There are loads of problems with vfork. It only handles the most basic of use cases: you cannot set up a pipe, cannot set up a pty, and can't even close open file descriptors you inherited from the parent. Also, you couldn't really be sure of what variables you were and weren't editing or allowed to edit, considering the limitations of the C specification. Overall this syscall ended up being pretty useless. Another model is posixspawn, which is a hell of an interface. It's far too complicated for me to detail here, and in my opinion far too complicated to ever consider using in practice. Even if it could be understood by mortals, it's a really bad implementation of the spawn paradigm — it basically operates like fork backwards, and inherits many of the same flaws. You still have to deal with children inheriting your file descriptors, for example, only now you do it in the parent process. It's also straight-up impossible to make a genuine pipe with posixspawn. (Note: a reader corrected me - this is indeed possible via posixspawnfileactionsadddup2.) Let's talk about the good models - rfork and spawn (at least, if spawn is done right). rfork originated from plan9 and is a beautiful little coconut of a syscall, much like the rest of plan9. They also implement fork, but it's a special case of rfork. plan9 does not distinguish between processes and threads - all threads are processes and vice versa. However, new processes in plan9 are not the everything-must-go fuckfest of your typical fork call. Instead, you specify exactly what the child should get from you. You can choose to include (or not include) your memory space, file descriptors, environment, or a number of other things specific to plan9. There's a cool flag that makes it so you don't have to reap the process, too, which is nice because reaping children is another really stupid idea. It still has some problems, mainly around creating pipes without tremendous file descriptor fuckery, but it's basically as good as the fork model gets. Note: Linux offers this via the clone syscall now, but everyone just fork+execs anyway. The other model is the spawn model, which I prefer. This is the approach I took in my own kernel for KnightOS, and I think it's also used in NT (Microsoft's kernel). I don't really know much about NT, but I can tell you how it works in KnightOS. Basically, when you create a new process, it is kept in limbo until the parent consents to begin. You are given a handle with which you can configure the process - you can change its environment, load it up with file descriptors to your liking, and so on. When you're ready for it to begin, you give the go-ahead and it's off to the races. The spawn model has none of the flaws of fork. Both fork and exec can be useful at times, but spawning is much better for 90% of their use-cases. If I were to write a new kernel today, I'd probably take a leaf from plan9's book and find a happy medium between rfork and spawn, so you could use spawn to start new threads in your process space as well. To the brave OS designers of the future, ready to shrug off the weight of legacy: please reconsider fork. Enable ld.lld as bootstrap linker by default on amd64 (https://svnweb.freebsd.org/changeset/base/327783) Enable ld.lld as bootstrap linker by default on amd64 For some time we have been planning to migrate to LLVM's lld linker. Having a man page was the last blocking issue for using ld.lld to link the base system kernel + userland, now addressed by r327770. Link the kernel and userland libraries and binaries with ld.lld by default, for additional test coverage. This has been a long time in the making. On 2013-04-13 I submitted an upstream tracking issue in LLVM PR 23214: [META] Using LLD as FreeBSD's system linker. Since then 85 individual issues were identified, and submitted as dependencies. These have been addressed along with two and a half years of other lld development and improvement. I'd like to express deep gratitude to upstream lld developers Rui Ueyama, Rafael Espindola, George Rimar and Davide Italiano. They put in substantial effort in addressing the issues we found affecting FreeBSD/amd64. To revert to using ld.bfd as the bootstrap linker, in /etc/src.conf set WITHOUTLLDBOOTSTRAP=yes If you need to set this, please follow up with a PR or post to the freebsd-toolchain mailing list explaining how default WITHLLDBOOTSTRAP failed for your use case. Note that GNU ld.bfd is still installed as /usr/bin/ld, and will still be used for linking ports. ld.lld can be installed as /usr/bin/ld by setting in /etc/src.conf WITH_LLD_IS_LLD=yes A followup commit will set WITHLLDIS_LD by default, possibly after Clang/LLVM/lld 6.0 is merged to FreeBSD. Release notes: Yes Sponsored by: The FreeBSD Foundation Followup: https://www.mail-archive.com/svn-src-all@freebsd.org/msg155493.html *** Beastie Bits BSDCAN2017 Interview with Peter Hessler, Reyk Floeter, and Henning Brauer (https://undeadly.org/cgi?action=article;sid=20171229080944) video (https://www.youtube.com/watch?v=e-Xim3_rJns) DSBMD (https://freeshell.de/~mk/projects/dsbmd.html) ccc34 talk - May contain DTraces of FreeBSD (https://media.ccc.de/v/34c3-9196-may_contain_dtraces_of_freebsd) [scripts to run an OpenBSD mirror, rsync and verify])(https://github.com/bluhm/mirror-openbsd) Old School PC Fonts (https://int10h.org/oldschool-pc-fonts/readme/) Feedback/Questions David - Approach and Tools for Snapshots and Remote Replication (http://dpaste.com/33HKKEM#wrap) Brian - Help getting my FreeBSD systems talking across the city (http://dpaste.com/3QWFEYR#wrap) Malcolm - First BSD Meetup in Stockholm happened and it was great (http://dpaste.com/1Z9Y8H1) Brad - Update on TrueOS system (http://dpaste.com/3EC9RGG#wrap) ***