POPULARITY
The new AIEWF website is live! CFPs close in 2 days and we will run our first New Engineer Orientation this weekend, get your tickets booked ASAP as they -will- sell out. Take the AI Engineering Survey and get >$2k in credits and free AIE WF tickets!One of the central tensions in the agents industry is that even while there are major decacorn agent labs like Sierra, Decagon, Notion and Cursor being built up, it is also true that it has never been easier to DIY agents, with a plethora of agent frameworks like LangGraph and Pydantic and Flue, and managed agents from Anthropic and Gemini and Amazon. There has been a wave of companies building their own background agents from Shopify to Stripe to Paradigm to Razorpay, and even Cognition's friends Ramp have built their own coding agent with other friend Modal.You'd think Cognition might feel a bit threatened, but they're not - even after all this, they were way oversubscribed for the $1B Series D they just announced:Walden Yan, coiner of context engineering and Chief Product Officer/Cofounder of Cognition, invited OpenInspect's Cole Murray to talk about why the Devin is in the Details.Full conversation live on the pod today: In retrospect, async agents were the most AGI pilled bet you could make in 2024 - the models weren't good enough yet to vibecode, and people didn't trust AI enough to let it rip, nobody (including early Cognition) was sure about the form factors. Now it is obvious:* The first wave of AI coding tools made the developer faster but remain heavily in the loop. Copilor and Cursor's tab autocomplete are prime examples However, the workflow was still heavily centered around and bottlenecked by the developer's local workflow: a developer in an IDE, watching the model, accepting or rejecting changes, and pushing code one interaction at a time.* The second wave was local agents: Claude Code, Windsurf, Cursor's agents pane: first one and increasingly many terminals all running concurrently.* The current Age of Async Agents points to a different future focused more on agent orchestration which drives end-to-end development.According to previous guest Steve Yegge, there are finer-grained 8 levels to agent adoption, but we have collapsed it into three.As Cursor's Michael Truell put it in The third era of AI software development:Cursor is no longer primarily about writing code. It is about helping developers build the factory that creates their software. This factory is made up of fleets of agents that they interact with as teammates: providing initial direction, equipping them with the tools to work independently, and reviewing their work.The agent should not sit solely inside the developer's flow. It should be setup to work in the background so that you can give it a task, a repo, a machine, a shell, a browser, tests, memory, and review loops to go do the work somewhere else.In less than a year, the sentiment has shifted from avoiding multi-agent systems:to suggesting approaches that actually work:From coining “context engineering” to building the infrastructure behind Devin's 7x PR growth and jump from 16% to 80% of commits across Cognition repos, Walden Yan has had a front-row seat to the background-agent shift. In this episode, Cognition co-founder and CPO Walden Yan joins swyx alongside Cole Murray, creator of OpenInspect, to unpack why everyone is building their own Devin, what changed after the December 2025 model inflection, and why “spec to pull request” is now becoming a real production workflow.We go deep on the architecture of background agents: harness-in-the-box vs out-of-the-box, why Devin separates the “brain” from the machine, why repo setup is still one of the hardest problems, why Docker is not always enough, and how full VMs, snapshots, scoped secrets, GitHub bots, Slack integrations, and video-based testing all fit together. Walden and Cole also dig into memory, MCP limitations, multi-agent orchestration, AI code review, SRE auto-triage, PMs shipping code from Slack, Windsurf 2.0, hybrid frontier/sub-frontier systems, and the real failure mode of uncontrolled vibe coding: your codebase regressing to your worst engineer.And as agents eat software… and software eats the world… you can draw the conclusion on what is next:We discuss:* Why the engineering world is waking up to background agents and cloud agents* The December 2025 model inflection that made spec-to-PR workflows practical* Devin's 7x merged PR growth and rise from 16% to 80% of commits* Why Cole built OpenInspect as an open-source background-agent system* The economics of $20/seat agent products and why monetization is tricky* What Cognition actually sells beyond Devin: infra, onboarding, integrations, and adoption* Harness in the box vs out of the box, and why architecture matters* Why Devin separates the brain from the machine for security and permissions* Repo setup, scoped secrets, Docker Compose, and agent-ready dev environments* Why full VMs matter when agents need to run real applications and test them* Android, macOS, Windows, nested virtualization, and machine-specific agent work* Why testing is much harder than “computer use”* Screenshots, video verification, and the “I know it works” merge moment* GitHub UX, Devin Review, AI reviewers, and agents responding to PR comments* Why MCP alone is not enough for first-class Slack and enterprise integrations* Memory, Knowledge, skills, Claude.md, and why retrieval is still unsolved* Devin's auto-generated memories and the challenge of memory pruning* Always-on agents as permanent PMs for issues, tickets, and product areas* Sub-agents, meta-Devin management, and what multi-agent systems actually add* Why pure auto-merge vibe coding breaks down after about two weeks* AI code smells, lint rules, reward hacking, and Semgrep for agent-written code* GitAI, inline context, and preserving the “why” behind code changes* Local testing, mock servers, older codebases, and preparing companies for agents* Windsurf 2.0 and the handoff between local foreground agents and cloud background agents* SRE auto-triage, support workflows, and agents as first responders* PMs, marketing, and non-engineers creating pull requests from Slack* AI agent budgets, $1k-$5k per engineer spend, and hybrid frontier/sub-frontier systems* The rise of autonomous coding factories and who Cognition is hiringWalden Yan* X: https://x.com/walden_yan* LinkedIn: https://www.linkedin.com/in/waldenyan/Cole Murray* X: https://x.com/_colemurray* LinkedIn: https://www.linkedin.com/in/colemurray/* OpenInspect / Background Agents: https://github.com/ColeMurray/background-agentsTimestamps00:00:00 Introduction00:00:43 Why Everyone Is Building Their Own Devin00:01:57 Devin's 2025 Ramp: 7x PR Growth and 80% of Commits00:03:49 OpenInspect and the Rise of Open-Source Background Agents00:07:59 What Cognition Actually Sells Beyond Devin00:09:56 Background Agent Architecture: Harness In vs Out of the Box00:12:08 Separating the Brain from the Machine00:14:07 Repo Setup, Secrets, Docker, and Full VMs00:19:13 Why Testing Is Harder Than Computer Use00:22:40 Video Verification and the “I Know It Works” Merge Moment00:23:19 GitHub UX, Devin Review, and AI Code Review00:25:42 MCP, Slack, and Enterprise Agent Integrations00:28:59 Memory, Knowledge, and Always-On Agents00:36:16 Sub-Agents, Multi-Agent Orchestration, and Meta-Devin00:43:55 Vibe Coding, Auto-Merge, and Codebase Decay00:48:38 Agent Infra, VPCs, Cloud Providers, and Fast VM Restore00:52:25 AI Code Smells, Reward Hacking, and Code Review Systems00:56:10 Making Codebases Agent-Ready00:58:30 Windsurf 2.0 and the Local-to-Cloud Agent Handoff01:01:15 SRE Auto-Triage, PMs Shipping Code, and Agent Use Cases01:04:32 Agent Budgets, Hybrid Models, and Autonomous Coding Factories01:06:51 Hiring at Cognition and OpenInspect Consulting01:07:45 OutroTranscriptIntroduction: Walden Yan, Cole Murray, and Context EngineeringSwyx [00:00:00]: All right, we're in the studio with Walden Yan, co-founder of Cognition, CPO.Walden [00:00:08]: Happy to be here.Swyx [00:00:09]: Which is a cool title. And coiner of context engineering.Walden [00:00:15]: Although I think there are many people who'd used the terms in various ways beforehand, but I did find that people, both internally and externally, enjoyed the upgrade from prompt engineering or model wrapping into maybe a more thoughtful way to build agents.Swyx [00:00:33]: For those who haven't caught up on that, I have on screen the Don't Build Multi-Agents post, which you should go read on and we might refer to, and Cole Murray, who created OpenInspect.Cole [00:00:43]: Great to be here.Swyx [00:00:43]: So let's talk about it. Everyone is building their own Devins. What's going on?The December Shift: From Handholding Models to Autonomous PRsCole [00:00:51]: So I think the engineering world is waking up to this idea of background agents, cloud agents, whatever you'd like to call it. And I think we saw a shift around the December timeframe of 2025, where the models Opus 4.5 and GPT 5.2, they reached a capability where we moved away from handholding the model and being able to actually more or less autonomously drive the model. And what I mean by that is that we could pretty much go from a specification to a completed pull request, assuming the spec was good enough, with very little friction. And that paradigm alone, I think, changed a lot of how we interact with agents, and opened this world where background agents became more practical.Swyx [00:01:41]: I think for Cole, everyone experienced this in December, but I feel like there was just this increasing ramp, right? There was this moment which was, I think, Sonnet 3.7, where, You guys rewrote Devin in one night or something. So describe 2025 or how it felt from your side.Walden [00:02:01]: In retrospect, we always thought it was ramping up, but then even now, over the last three, four months from today, it's been ramping up even faster. So it's almost funny to be talking about how, big of a leap Sonnet 3.7 was, and honestly, a lot of it was stripping out parts of Devin that were no longer needed with that jump in of intelligence. But I also just think that a lot of the recent leaps, especially, you look at, models like Opus and the latest GPT models, they are reaching levels of autonomy where people are actually finding that they actually can just be hands-off. And people who were once debating, “Oh, do I need to be in the weeds with my model in the IDE? Can I just completely move it off into the cloud?” That's a more serious conversation, and we've seen that in all of our growth charts. Internally there's this funny graph where our usage has, of PRs, our merged PRs, has grown 7X since I forget what it was called.Swyx [00:02:57]: I think Dev, maybe tweeted that. Yes.Walden [00:03:01]: it grew like 7X over, the last, I think it was, two months, three months, something like that. And then you see our engineering headcount growth. It's, gone up by, 10% or something.Swyx [00:03:11]: We were, we were afraid To release this. So this is Devin commit percentages on all Devin repos, was 16% in January and now 80% in March.Walden [00:03:25]: It's a big shift right now. And so it makes sense that a lot of people are now thinking about, buying Devin, but also maybe, trying to build their own and there's Lots of I have a lot of fun building Devin, so I can see why other people would want to build their own cloud agents as well. Matt, well, maybe it's good to hear, what initially inspired you to try to build OpenInspect?OpenInspect: Ramp, Cloud Agents, and Open SourceCole [00:03:49]: OpenInspect came about, through primarily my clients observing how they were using tools like Claude, OpenAI's Codex at the time, and seeing some of the friction that they were having with it. Primarily the Claude was being used through Slack, and a big issue they ran into was that the sessions that were launched were specific to whoever called it via Slack. And so if a PM was the one who invoked the session and they would then go to pass context to engineering can't see the session. And that in itself was a deal breaker because the PM, “Hey, engineering, can you jump in?” But there's nothing to jump in on unless they're copy-pasting out or the single response that came back. And so seeing some of these problems, I had built a similar architecture internally, just to experiment with, test out different ideas as this trend of moving off of localhost was starting to become, And as Ramp released their blog post, I had a lot of the pieces for this already in place, and just thought it would be funny to, see what Claude could do just purely from the blog post. And on my X account, there's actually a thread of where I live tweeted, going through thisCole [00:05:14]: comparing GPT and Claude as both of them are going through it.Swyx [00:05:17]: On the announcement thing or something else?Cole [00:05:19]: right after it got released. We can put it in the show notes. Yeah, it was helpful that I had already knew how to verify the system. I knew what I was looking for. I think Ramp did a great job of really illustrating, the technical aspects of how to build something. It was much more than just like, “Hey, we built a great system.” It was, “And here's how you can build it too.” And so, I resonated a lot with that, just with the problems that I was already seeing, and I thought that, looking around, I didn't really see anything in the open source community that, met this type of system. I think there's a lot that run, in localhost like Superset, Conductor, and many others.But nothing that was actually running in the cloud. And so, I built it, and I thought it was interesting to just open source it and allow anyone to then have a foundation that they can mix and match on top of.The Business of Background Agents: Open Source vs. DevinSwyx [00:06:16]: So literally after Devin was launched was, there was OpenDevin Which became All Hands. I don't know if you tried that orWalden [00:06:22]: I was going to say, one of the things that interested me a lot with OpenInspect was, you didn't try to go make it then something you monetize. There are a lot of, I think, these open source projects would then go and really try to, raise VSwyx [00:06:36]: That's why no OpenDevin. Yeah.Walden [00:06:38]: yeah, and how did you think about that? I thought that was very interesting.Cole [00:06:44]: I thought, and just what I had seen across my clients, was that having a background agent system is going to become a critical infrastructure within their company. And so because of that, I think that I wanted to open source it so that they could fork it and put in whatever customization they wanted. To that question though, I get asked all, “Oh, are you going to raise? Are you going to turn this into a service?”Walden [00:07:08]: I'm sure you've gotten offers.Cole [00:07:09]: but primarily I don't want to do that for a few reasons. One, I think that I don't want to compete for, $20 a seat. I think that is just a really difficult business. I think it's very easy to copy the main pieces of it. Again, I built this fairly quickly. And I think because you are not owning, I guess, the entire stack, it's hard to monetize. You have money being made at the sandbox layer with Daytona, E2b, many other players. You have money being made at the model layer. And you sit in this weird in-between gray area where what are you actually selling? You're selling, I guess, the infrastructure. You're selling, the integrations maybe.Swyx [00:07:55]: let's ask the guy. What are you What are you selling?Walden [00:07:59]: Well, yeah, there's multiple layers to this in practice, and actually it's funny you mentioned the infrastructure, ‘cause when we got started building Devin as well, we had to go figure out how to make the infrastructure as well because,Swyx [00:08:10]: You had to build this two years before everyone else,?Swyx [00:08:15]: Including, the model sideWalden [00:08:17]: It was not, it was not very polished at the start, when we just built it off of raw VMs from cloud providers like EC2, the boot up time was so slow, I think, And especially then, turning off the machines, saving them, and then to be able to bring them back up again when the, when you want Devin to wake up again later. It would just be out cold for like 10 minutes because that's just how long these systems took. They were not built for this repeated down and up usage. And so we actually had to go do all of that. And as a result now, one thing we offer when we go and sell Devin to people is, you don't have to worry about all the compute side of things. We'll make it work. We'll make it work in your cloud if you want it to. But aside from the product, and I want to go into the agents and the tuning of the intelligence part later, but I think a big part of what we do at Cognition as well is to just make sure that your company learns and uses and adopts these coding agents. ‘Cause I think for especially the largest enterprises in the world, you find that there is a lot of people who want to move over to using AI for their day-to-day workloads. But because of the way projects are planned, because, not everyone is literate in using AI in these ways, having a team of engineers who can actually go in and onboard you, set up all the integrations you need, the automations you need to really get to that level of, leverage with AI, is super helpful. And so We do that. We show thought partners to the customers that we work with as well.Swyx [00:09:56]: So let's talk about, architectural stuff. I think that's always, that is something that was the topic of conversation between the two of you. Is this, the mental model that you want to start with or something else? I'll just leave the floor open to you guys.Agent Architecture: Harness in the Box vs. Out of the BoxCole [00:10:11]: I think, maybe we can start here as just a general what are the pieces of a background agent system. And then maybe we can go into some of the nuances of, Decisions that you can make.Swyx [00:10:22]: But I guess I also Like, what, maybe what Walden is saying is the agent is like in this open code box, I guess. Right? This is infra, and then there's, that's the agent. And you had this discussion about whether you put the agent in here or in Out externally. Can you tease that out?Cole [00:10:39]: In a background agent systems, you have a decision to make of where the agent is actually going to run. This is typically described as the harness in the box or out of the box. With running the agent in the box, you're making some trade-offs by doing that. The negative trade-off you're making is primarily security. Because the agent is running in that box, unless you otherwise design it, all of your secrets need to go into that box as well. And given the nature of AI, it can be unpredictable, and you could very easily end up accidentally exfilling your secrets, or other unintended behavior. Now, the out of the box is the idea that we are going to have the actual agent running not directly in the sandbox, and we will have, quote-unquote, the brain of the agent running in some type of worker, control plane. That sandbox then is going to serve as the hands where the brain is basically operating and making tool calls into that environment to manipulate it. I guess other trade-off that you're making between the two systems is that, in my opinion, running it out of the box is much more complex because, you have state that has to be managed, whereas if you're running it in the box, all of the state of that agent is actually in the box, and yes, it's you could persist it elsewhere, but it's all localized and you have less concerns to worry about.Walden [00:12:08]: I think a lot of that, what you mentioned, is why we actually from the start built Devin to what we called separate the brain from the machine. The other thing that this allows you to do is reuse any existing infrastructure you have for dev boxes Perhaps. And so you don't have to worry as much about making a new type of dev box that has all the dependencies the brain needs, as you mentioned, the secrets the brain needs as well. One thing that we've seen some customers run into is, you have a GitHub app and you want Devin, your agent, whatever, be able to interact with GitHub through this application, but then you have different users with different actual permissions. If they are all interacting through the same GitHub app and there's no actual, separation between the system that decides, what it does and the actual secrets on the machine, then you run into an issue where, okay, it's hard to do the separation. But in practice, with Devin, it's much easier because we just say whatever you put on the machine, that is, the scope of basically what the user is free to do, what the agent is free to do. So only put the most scoped secrets on that machine, and then the brain is fully not accessible from the machine. So you don't have to worry about messing with the, any of the most secure parts of the brain if the user is free to do whatever they want with the machine.Swyx [00:13:31]: I was going to just bring, I have this, chart from OpenAI, where I don't know if this is, in the box, out of the box. That is something that they do use to describe it. And then also recently Anthropic did, managed agentsSwyx [00:13:44]: Which is, this is their thing. I don't know. It's all, it's all variations of the same pattern, right?Cole [00:13:49]: So this would be out of the box.Swyx [00:13:51]: Which, is preferable for them because it's less work?Cole [00:13:56]: I would say it's more work.Swyx [00:13:58]: It's more work?Cole [00:13:58]: But it, in my opinion, it is the better architecture of the two. It's just, you're taking on a bit of complexity by doing that.Repo Setup, Docker, and VM-Based Development EnvironmentsWalden [00:14:07]: One thing I've not seen a lot of other players do well is how do you manage what's actually on the box? And this can be complex for many reasons. Let's say you have a big repository that's changing and updating a lot with changing dependencies. How do you make sure that the working environment of the agent actually stays up to date, has all the credentials it needs to, let's say, run the app and test it, and all the things you want your autonomousSwyx [00:14:34]: So a repo setup.Walden [00:14:35]: Exactly. So in, internally At Cognition, we call this repo setup.Cole [00:14:39]: The hardest part ofWalden [00:14:40]: It's been a perennial problem since the start of the company, of how do we help people get this set up? Because not everyone just has, working cloud environments working out of the box. And do you find this to be a common problem withSwyx [00:14:53]: How do you solve it?Walden [00:14:53]: Your clients?Cole [00:14:54]: This is a very common problem, and through my consulting, this is a lot of what I help teams do. A lot of teams don't really have great developer environment setups, if any. A lot of the times it's, “Go talk to Bob and get the secrets,” and that obviously doesn't work when the agent needs to actually set this up. And so a lot of that, most teams are using Docker Compose or some type of microservices. And so for theSwyx [00:15:19]: Even in prod?Cole [00:15:20]: Not in prod. With the OpenInspect, you are using this primarily to interact, and make code changes. There is other use cases, but you can hook, whether through CLI, MCPs, other tools, you can then hook that into your production systems primarily for, SRE type use cases. But you are not, necessarily, trying to test your prod internal microservice through the system.Walden [00:15:48]: And you mentioned Docker Compose. I think one direction we saw some of our friends take early on was, using Docker containers as the level of abstraction for their models. There's lots of reasons, I think, why Docker containers are not great. One thing is, Docker container's not really a true security boundary, for one. But the other is, if you are running real applications, a lot of times those applications use Docker, and then you have to think about Docker in Docker, which is, really weird. And so I think part of, the really hard challenge of getting VMs to work, why did we do that? Well, it was because we realized that you actually needed, full VMs to be able to do these types of things. And especially nowadays where there's actually value in running the application and clicking around and sending you screen recordings of these things. The value just, keeps adding on top of that. But it is a decision I see people run into when they try to build their own systems, is, “Oh, do we, in addition to this, do we put the agent in the machine or out of the machine? Do we use Docker? Do we use something else?” What do you recommend people nowadays?Cole [00:16:57]: I think Docker is a good solution for maybe not running the agent, but running your infrastructure, because that is more or less the same setup your engineers are probably already using. If they're not, then I don't know what they're using. But they're probably already using Docker Compose.Swyx [00:17:14]: I've always had a small candle for web containers. I don't know if you guys have tried them before.Swyx [00:17:19]: To me, they were, supposed to be like Docker Light.Cole [00:17:22]: Is it?Swyx [00:17:22]: I don't know.Cole [00:17:22]: No, I haven't tried it. But yeah, I think any environment that you've set up that is a good experience for your developer naturally lends itself to being easy to set up for the agent. And once you figure out that local developer story, you've more or less solved the agent in a sandbox, environment setup. OpenInspect does have hooks as well, where you can, run a setup SH script that will pre-install everything. You can then pre-snapshot that build so it starts instantly, and then there is a second hook to actually then, restore the state of the sandbox when it comes back. And so you can already have all of those microservices running and basically get the same experience that you would on your machine within the sandbox.Testing Agents: Computer Use, Screenshots, and Real App WorkflowsWalden [00:18:08]: Another thing that we've been thinking a lot about is like Different VM service offerings. Have you had customers where they needed like macOS specific VMs or like Windows specificWalden [00:18:20]: VMs?Walden [00:18:22]: There are like many technologies in the world that only work on specific types of machines, right? If you're building a.NET application that has to run on Windows or like, maybe more commonly if you want to build iOS or macOS Does that workSwyx [00:18:32]: Does Commission supportSwyx [00:18:33]: Choices like that?Walden [00:18:35]: The fundamental architecture we do, because we do the separation, it does support, but the actual work in progress is happening right now on these. Another thing that we've actually recently added support now for, it's in beta, is doing Android development. To do that, we needed to support, I think, nested virtualization within our machines because the VM itself is like a, is a virtualized Firecracker instance, and then you had to then run another Android emulator inside. And there's like weird performance issues that like, it, which is why it's like still in beta. We have to think through these problems, but it unlocks a lot for anyone who wants to do Android development.Swyx [00:19:13]: I was trying to find like a reference video for the testing thing. I couldn't find it, but I think you worked on the testing, capability. Why call it testing and not like computer use or I don't know, it's, what's the general Category of problem?Walden [00:19:26]: I think that when people think about the ability of an AI to run your app and test it, I think they actually over-index on the computer use part of it because computer use in my mind is the literal, okay, you want what button you want to click. Can you emit the right coordinates to go click that button? I think testing is actually a really interesting likeWalden [00:19:48]: Problem-solving, challenge for these AIs because if you wanted to do arbitrary testing, imagine you make a change that spans the frontend and the backend, maybe, even some other like even more deeply nested service. To actually test that change, we have to reason through what-- how do you first run these applications to orchestrate with each other with the right version of the code? Then, okay, how do I trigger the feature or how do I make the thing actually happen? And this can get arbitrarily hard, maybe you have to be an admin. Maybe a certain thing has to be feature flagged on. Maybe, you have to like run two sessions and then send us a very specific word into one of them to trigger a specific behavior. And figuring out how do you do that requires a lot of code base context, requires, a lot of orchestration that we've specifically done. And in some cases, we found that you actually, no one frontier model can actually do this full end-to-end task itself.Walden [00:20:42]: We've seen cases where we actually had to orchestrate different frontier models together to solve this problem together. That is where we spend most of our time when we think about this testing problem, not so much the computer use part. Computer use for what it's worth has gotten a lot better with recent models and it's made that part of the job certainly easier.Swyx [00:20:58]: Especially with like even 4.7, that they released yesterday, apparently like way better in terms of the vision stuff, which is going to be encompassing computer use.Walden [00:21:08]: Having evals for all these as well is something that like takes a while to build up. And having the evals be right is tricky as well. Do you ever see like, clients who are building their own agents have to start standing up evals to make sure things don't regress?Swyx [00:21:25]: Not so much evals in the traditional sense, but specific to the testing part that has just gone in. I just added support for screenshots And in theory you can also do video. I need to put in a plugin to do that. But they do show up natively, and it was a very heavily requested feature, especially after Cursor's recording came out. I think that was very enlightening for everyone of like, “Oh, this is a very good feature to actually have.”, I think with Devin you guys have had this for a while.Swyx [00:21:57]: Oh, yeah. See how screenshots work. Yeah, I don't know if there's anything, super and not obvious. It's like once what feature to build, you can just prompt it and it Will mostly work.Walden [00:22:09]: I think to Walden's point, though, the computer use is a subset of the larger testing problem, and I think that's very specific to the code base that you're working and it's not something that, out of the box that you could just solve it. The-- you do need the code base context to actually know how to test it. And I think in the case of a background agent system, you fortunately do have that code base locally that what is changing and could then inspect it and use that to drive the model.Swyx [00:22:40]: For those who haven't seen it before, this is an example of how it works. You, after the PR is done, you click testing approved, and then it sends you back a video. What I really like is that it labels, It's very small here, but it actually labels what it's testing. And then it-- and then you actually see the cursor and everything. So I don't know, yeah, the engineering in this, just Whatever you want to show. ‘cause this is like, this is one of those like, oh, few of the AGI moments, right? ‘cause Once I look at this, I actually don't I wish I can just merge inside Of Slack instead of going to GitHub ‘cause I don't need to see the code. I know it works.Walden [00:23:19]: Maybe a new feature in Cursor. Yeah, the annotations at the bottom was also a big difference for me when I, when I added those.Swyx [00:23:27]: It's just like, what am I looking at? What are you trying to demonstrate?Walden [00:23:30]: Exactly. There's a surprisingly long tail of small details that ends up making a big difference for this end metric of like how fast do you actually merge the code in. One experience that we spent a lot of time tuning early on was what is the right experience on GitHub for these tools. Because I think, most tools out there when you build the agent, you'll think about, oh, it'll create the PR for you. We try to take that a step further and say, “Oh, what if we actually made sure you could interact Devin, with direct Devin directly on GitHub?” And so we made sure that you can comment on GitHub, and Devin would actually receive those comments and address them back. But there's actually quite a bit of tuning you have to do here because you can imagine that actually like-We recently have Devin Review, for example. Devin Review will post comments on his own PR And then Devin has to then goGitHub Workflows: Devin Review, Comments, and PR AutomationSwyx [00:24:23]: He answers his own comments, which is Really loopy. So like, yeah, I like that it just updates here that it's, that I have commented But usually it's just me saying like, “Hey, merged, fix any merge conflicts.”Walden [00:24:37]: The, so when Devin fixes his own comments, you might be scared that, oh, maybe I'll infinite loop. But we've put a lot of work into making sure it doesn't, both by making sure that the comments are high signal, but also that the agent is thoughtful about what comments it immediately goes and tries to fix, and what comments it's like, “Wait a second, I think you're wrong.” Actually, that's one of my favorite moments is when Devin tells me that I'm wrong, when I try to get it to do something different. But tuning that behavior, actually makes a big difference in terms of how useful the actual GitHub experience is.Cole [00:25:06]: I think to touch on that as well, I think having the AI reviewer integrated into the system is a critical part of this background system. OpenInspect does have that. It has a GitHub code reviewer that you can control the prompt. It does do comments as well. It doesn't do them automatically yet. The capability is there, but it's not fully used.Swyx [00:25:27]: So you have to ask for it?Cole [00:25:28]: you do, yeah. You can tag it on GitHub, and then whatever you named your, GitHub bot, it will then follow up on it. It will then, if you have merge conflicts or whatever you have asked it to resolve, it will then resolve it, but it doesn't do it automatically yet.Integrations: Slack, MCP, and First-Party Agent InterfacesWalden [00:25:42]: Well, I'm curious, what is, the most common thing that people end up requesting, that they still need on top of OpenInspect when you help them go implement it?Cole [00:25:52]: I think a lot of it comes down to actually integrating it into the company. It's one thing to have the background agent system set up, but if it isn't actually integrated into your larger ecosystem, it isn't that useful. It is useful to be able to kick off sessions, but what we really want to be able to do is hook it into all of our other systems, whether that is the production database with read-only credentials, the logs, a Confluence or internal knowledge-based system. I think that is where I see the huge leap for companies, and that can be a challenge for companies as well who are maybe not familiar with exactly how to approach it, especially if they're in environments that have more compliance type things where, access control can be pretty big and how do you deliberately think about these problems, I find to be, one of the problems that comes with a system like this.Walden [00:26:46]: The thing we found is So, MCPs, obviously it has been like this, really big explosion of, oh, you can go, integrate it with all these different things. But to actually get the integration right and the and get the right experience, oftentimes we found that we had to go build our own ad hoc things. I think Slack is a great example of this. You could give your agent a Slack MCP and okay, it can post messages back to you on Slack. But we actually use Devin like a coworker in Slack, and that's how it's been built from the ground up. But to do that, you actually need to, support webhooks that come back, right? And then Devin has to respond in a natural way and then hopefully don't spam your threads too much and annoy the people in your company. So you got to tune that experience just right. Especially when there's a lot of back and forths, we find that we actually have to go beyond the simple MCP integrations in these places.Swyx [00:27:39]: I just pulled up the MCP marketplace. I know this is a Fair amount of work. Is the answer to eventually take first party control of all the top MCPs? Is that theWalden [00:27:48]: I would love a world where you could have something that's more expressive than MCP. That, goes both ways, not just a set of tools, but a proper system that interacts back and lets it Have the right experience with all these interfaces.Swyx [00:28:03]: So there actually is sampling in the MCP spec, but nobody Uses it, right?Walden [00:28:07]: And so I think that's the other part is, actually we found that when the MCP spec starts to get too complicated, it starts to lose its original promise of Being like a simple one-step connect. Now then we have to go figure out how to support all these different variations of things and It starts to look a lot like just building the first party integrations in a lot of these cases now.Cole [00:28:29]: I think it matters, too, how critical it is to your company, right? If this is something that nearly every session is going through, it probably makes sense to own it so that you can make optimizations on top of it Versus just whatever is off the shelf.Swyx [00:28:43]: Awesome. Other than MCPs, what else, sorry, well, I don't know if that's Narrowing in too much on, integrations. But what else? What other elements of building OpenInspect or Devin that you guys really sink on?Memory and Knowledge: What Agents Should RememberCole [00:28:59]: I think, a problem that comes up very frequently is this idea of memories or knowledge base.Swyx [00:29:05]: Oh, boy. How do you solve it?Cole [00:29:08]: so not solved yet, is the short answer.Cole [00:29:11]: it's something, there's a open issue for it, someone asking about it.Swyx [00:29:16]: There's, I, D Wiki hasn't indexed anything about memory yet.Cole [00:29:20]: how I'm seeing it solved across my clients is primarily through skills. I find that skills can be a good gap within that or updating Claude MD, but I think memory as a whole is a pretty unsolved problem, and it is why I've been hesitant to add it. I think there is parts of memory and that can be addressed, but I think as a whole it's a very difficult retrieval problem.Swyx [00:29:44]: Oh my God. RAMP didn't write anything about memory? I see zero search results.Walden [00:29:50]: No. Memory can be quite tricky to get right because it's the retrieval, but also the generation of the memories that can be really tricky. You don't want it to just like Remember very specific details.Swyx [00:29:59]: Walk us through the Devin memory journey because I know there's been a journey.Walden [00:30:03]: the first version of memory that like stuck around for a while was A system we have called Knowledge. And the idea was we wanted it to pick up things over time and not need the user to be proactive about teaching Devin things. So, okay, any time you remind Devin, “Wait, no, that's not quite the way you're supposed to use Git”Like, we actually want Devin to say, “Hey, do you want me to actually just remember this for the future?” And for you to just basically quickly approve or reject and for it to build up over time. ‘Cause I find that, 95%, I think, or some crazy stat like that of the memories that Devin has are all through these auto-generated things. Very few people actually just want to sit down and write big docs on Here's how you're supposed to work with the technology, et cetera. The generation and the retrieval has been something that we've been trying to tune a lot over the years. Generation, you don't want it to remember something like, if you asked one time to like, “Oh, please open as a draft PR,” you don't want to be like, “Oh, everyone forever now should get their PRs as draft PRs.” But you do want some, conveyor. Maybe you want to say like, “Oh, Cole generally likes, things to be created as draft PRs.” Same with retrieval, if you have thousands of these memories, how do you actually make sure they're retrieved at the right time? And that can be quite tricky to do right without exploding the context with a bunch of useful yeah, useless information. Surprising amount of just, eval work to just make sure that, memory is, remains a reliable system as new models come and go.Cole [00:31:31]: Do you have anything that you could share on, memory pruning? And like the temporal aspect of memory?Swyx [00:31:36]: Deleting and forgetting?Walden [00:31:39]: The, today, the, So the things they could do is it could edit memories. And so if your memory used to say like, “Oh, Cole likes to open everything as like a draft PR,” then you can imagine, “No, don't do that.” And then it'll say, “Oh, do you want me to update the memory to be Cole now want everything as, open PRs?” I think that at the same time we don't know if this is going to be the final version of the system. Whatever we have here will probably, translate into the new system that we'll be coming up with. But I think one big difference between two years ago and today is these agents are really good at using anything that resembles a file system natively. And so part of us are, is thinking, “Oh, should we rebuild memories to feel more like a file system that we let the agent navigate on its own?” That's been an interesting exploration. Also similar ideas in the scale space.Swyx [00:32:35]: I am pulling up OpenClaude's memory thing right now. So memory, OpenClaude has like this like daily memory journal thing, right? And you can I mean, that is a file system you can grep through and is a source of truth. I don't know if it's the best. It's probably super noisy, but at least, if you lose something you can discover it or you can apply some, forgetting algorithm to, more ancient memories that don't get recalled again or something. I don't know.Walden [00:33:01]: One thing we've been trying to do to push the boundaries of how you use agents at your company is letting an agent basically have a very similar file, a memory.md or something, and just like be your permanent PM for a specific set of issues maybe. So we have like some Slack channels internally, maybe a Slack channel dedicated to, a specific product like DeepWiki maybe. And you can imagine that, or you want a Devin that never stops, it's just always awake, but it has this like memory dock that it can just maintain for itself about, okay, what are like the number one priorities of what we have to fix and prioritize? Who is responsible for some upcoming work? Maybe they'll even Devin will even tag you on some recurring basis. And so it's been an interesting move to see, okay, how can we actually use Devin for more than just engineering? Can we actually upstream above the engineering process and maybe it's just Devin creating tickets, which then maybe some humans do, but then maybe other Devins do.Swyx [00:34:00]: One of my more fun automations is go research competitors and just suggest stuff to me on a weekly basis. That's the automation. I can't find it right now, but basically it just like, “Look at competitors and suggest things.” “And here are three things that you've suggested that I don't want any more of,” and you just stick that in the prompts. But like I wish actually So for like when I, for example, when I reject a PR, I wish that it updated memory so that I can then just not have to go up, go back and update the scheduled, sync, but anyway, feature request.Walden [00:34:31]: what? We might change it soon. I guess OpenInspect, in the time you've been around, has there been anything you tried to implement but then you had to like undo and like do a different way?OpenInspect Architecture: Webhooks, Control Planes, and Agent StateCole [00:34:41]: Nothing yet, but something that is on my mind. The initial way that I built it was that each of the integrations lives as its own package. And so you have The Slack bot, which is what's handling the webhooks, and then is basically interacting with the control plane. As I'm seeing the system starting to be more integrated, specifically with the GitHub bot integration, I'm considering bringing that all into the central control plane because especially now I want to start, And a request that I'm getting is the ability to monitor, the actual, pull requests being merged, as well as just tracking ofSwyx [00:35:19]: What do I have open?Cole [00:35:21]: What do I have open? How many of these are getting merged? How many comments are showing up? To just understand the health of the system. And so in the case of a GitHub app, you only have one webhook. And so then it's a question of do I put that webhook in that GitHub bot package? That's weird. It doesn't really make sense to live there because that package is more for like the code reviewer. Or do I like centralize it? So that's something that's on my mind of, making that decision. I think the other one we touched on earlier is the harness in the box versus out of the box. I think long term the architecture will eventually come back out of the box. Some of the newer tools that I've added are calling back into the control plane so that you don't have the secrets in the sandbox. And so I think long term I probably will pull the actual, agent out of the box, but I think for now it's fine.Subagents and Multi-Agent Systems: When Parallelism Helps or HurtsSwyx [00:36:16]: Just, a quick question on pulling the agent out of the box. I'm One thing I'm very bullish on this year is agents calling other agents or spawning sub-agents or Whatever you want to call it. Does that make it harder or easier? I can't tell. Because if the harness is in the box, you can just spin up more boxes. If the harness is outside the box, then you're, it's less easy because you are, you have a unicorn pet of a, of a harness that's, living outside the box.Cole [00:36:45]: In theory it would be the same way, right? Whether, one agent has launched many, sub-sessions within it, OpenInspect, for example, can launch sub-sessions and actually create other environments and then monitor them. In the case where it is out of the box, that would basically just be an additional session that's running. And so that session is also running outside of the box. It's running in your worker plane, wherever you're running this. And then you really just have to think about how does your top level agent then interact with it. I do think it can be more complex, just ‘cause again, you have now a more difficult architecture. But I think if you figured it out once, it's probably fine.Swyx [00:37:26]: Well, then I'm just, throwing it open to you in terms of, I call this like meta Devin management. Which is like the, Devin's calling Devins or Devin scheduling Devins or querying trajectories or anything like that. What have you built or unshipped, anything?Cole [00:37:46]: I think one of the surprising things we've seen is that a lot of the ways that, these, separate agents work with each other, and you want them to, parallelize their work, has still mostly followed the same manager sub-agents regime. And a lot of people I think are excited about this world where you have swarms of agents that, talk with each other all over the place. We've actually given Devin an MCP so they can just go arbitrarily message other Devins And create new Devins, et cetera. But I guess, it somehow creates, a really chaotic world in that sense. And so we've still found that most practical use on a day-to-day basis has been one single Devin.Cole [00:38:33]: Figuring out how to segregate the work and get, have other Devins work on it in, a relatively isolated sense, each with their own boxes Not sharing machines, so there's, a very little room for conflict is the regime that you have to create today.Swyx [00:38:50]: I'll call out, the experiments from Cursor, right? This is Wilson Lin's work on Single agent to multi-agent, and you're obviously famously on the side of don't build multi-agent. But they went through the whole thing, only to arrive at, this Which is exactly what Devin has, I think.Cole [00:39:08]: I think there will be a revision to that post at some point AboutSwyx [00:39:12]: Tell us about itCole [00:39:12]: I think multi-agents were very much not at all possible a year ago. You do see more multi-agent experiments today, but you can argue, are they really multi-agents, or are they just just, tool calls,? There are people who, will create sub-agents to go look for XYZ file, XYZ implementation. Has really nice context management benefits because all of the tool calls and tokens that it spends then get collapsed back to just the answer for the main agent. There's a lot of benefits to doing this. We basically have Devin do this with Deep Bookie, make a call out to Deep Bookie, give you back the results, but that feels like a tool call,? It's not like these, two collaborators actually talking back with each, back and forth with each other. But I think the thing that gives me the most bullishness that multi-agents might actually be possible is actually what I said earlier about Devin will actually sometimes tell me I'm wrong and push back, and I think that demonstrates a level of maturity and communication today that makes a multi-agent world possible. One, can two agents who have seen different information come back to each other and actually figure out who is right, what is the correct implementation? They're not just, yes men. Claude, I guess is like, used to just say, what is it? “You're right,” or,Swyx [00:40:25]: “You're absolutely right.”Cole [00:40:26]: “You're absolutely right.” Yeah.Swyx [00:40:28]: The Have you seen, did you seeCole [00:40:29]: The age is overSwyx [00:40:30]: The Codex app troll in Topic? This is the Codex app. Inside of Settings, there's a little, there's a little Easter egg, right? So if you go to, the Themes or Appearance, right? There's all these, color codes, and the top is absolutely, and it's the Topic's colors. Which is such a troll. Anyway.Model Behavior: Pushback, Adversarial Prompts, and Agent SkepticismCole [00:40:53]: I love that Easter egg. Did you discover that yourself?Swyx [00:40:54]: No, it was, someone was, tweeting about it And I was like, I was like, “Is this true?” Because, sometimes people just tweet stuff to, get a rise out of you. But yeah, there you go, in Topic colors.Cole [00:41:06]: Yeah. So yeah, we're out of this regime where, it just says you're absolutely right, and they can have real conversations and real back and forths.Swyx [00:41:13]: You can prompt it as well to be more adversarial or whatever. Yeah. Okay. Yeah, that, I mean, to me, that is more intelligence, right? That is not just something that's, a dumb tool, it's actually pushing back on you I think. Yeah.Cole [00:41:24]: when you mentioned, of course, the blog posts. There was one blog they had where they fed a swarm of agents together and built a browser.Swyx [00:41:34]: That was I think that was the one.Cole [00:41:36]: You can have, likeSwyx [00:41:37]: I think it's the same oneCole [00:41:37]: Creation of it. We found a surprising success of, don't do a swarm or anything, just have one Devin, it does its own context management. Just let it keep running for a while and give it some crazy tasks. I think we asked it to, rebuild, a Windows OS system. And it managed to do it just like, going on for long enough. It'sSwyx [00:41:55]: Was this Andrew's thing?Cole [00:41:58]: there were lots of demos that we ended up not posting, ‘cause at some point we'd just be posting way too much a bunch of, Demos. But I love that because it shows that I think the multi-agent thing still has, a bit of exciting sexiness to it, which is maybe still beyond still, the actual delta it adds to the capabilities of these systems. But it's absolutely the future. I think we're heading in that direction and we can see the progress being made there already.Swyx [00:42:25]: If I were to, make one super minor pushback because I don't feel that confident about it yetCole [00:42:33]: Go for itSwyx [00:42:33]: But I've had Ryan Lopopolo from OpenAI on the pod And he's a super slop cannon, right? Oh my God, that's my coding agent being done. I downloaded this, Peon Ping. I don't know if you guys have heard this. It takes like-, sound packs from popular games like, Command and Conquer and Warcraft, and then it plays it whenever it's done. And so it's like, “Work,” or whatever, “At your command,” or something. Anyway, what I got from the Cursor code base and from Ryan's thing was that there's a slop cannon approach where you try to loosen the single agent's, bottleneck, and I feel like that is, probably an, a very important thing to try to figure out. I don't think anyone's, really solved it. Because then you just have more reviewer slop on top of the agent slop To try to wrangle it all. Ryan will probably very strongly object that I say that he hasn't solved it, but he thinks he's He thinks he's completely solved it. But I think it's still I think it's, very important, ‘cause, that is a bottleneck, right? I feel Devin is slow sometimes Because I'm like, well, yeah, this is very readable and very sensible, but also it is slower than it could be if I just, I want a button to just say, “Just ramp this up 1,000 next parallel, in parallel and just, see what happens,”? And I don't know if that's, feasible at some point in the future.Code Review, Entropy, and AI SlopWalden [00:43:55]: I And we've also run experiments internally where we've basically tried to build entire products, true products that we knew we would eventually ship, but for now, let's try to see if we can do it just by purely, vibe coding on top of each other, auto merge, no code review at all. And then there's this benchmark of how many weeks can you go onto this for Before you say, “We have the trashiest code base.”Walden [00:44:18]: “Let's actually rewrite it from scratch.”Swyx [00:44:19]: Start a new factory, yeah. What'd you find?Walden [00:44:21]: I think we found that the state-of-the-art in December was you can probably, run this for about two weeks. By the end of those two weeks, you'd find that, hey, you want to, change the color of a button. Well, it turns out this button is implemented in, 10 different places, and they, have All these different variations, and oh, you forgot one of them, and actually it's a slightly different color in one spot. And you're like, “Okay, this is too much to work with. Let's actually try to do code review at the same time.” And make sure that we're on top of our software, actually cleaning it up a bit And making sure it's done in a scalable way.Cole [00:44:54]: I think building on that, the idea of, you don't have to look at code, I think is generally a bad idea. And the meme that I have for thatWalden [00:45:03]: What timeline, all right, is Do you think that statement will be true on?Cole [00:45:06]: I think probably for a while it'll be true that you should continue to look at your code. A problem that I see a lot of teams run into that I work with who are embracing AI native, AI first coding, is The meme that I have is that your code base regresses to your worst engineer, because that engineer who is, very gung-ho about AI and is not auditing their code, their pattern starts cementing into the code, and now the AI is referencing their patterns. And so now their if/else block that, is 20 if/elses back and forth, the AI is seeing that as the pattern of how things are done and starts to then exponentially grow this slop. And I find to your point, a pretty good approach to that is having scheduled cleanup, whether by humans or through systems, that are looking for duplication. They then address that. You'll end up with like 12 helpers for how to format a date. And you need to address that, because otherwise it will continue to sprawl.Swyx [00:46:09]: Within balance, I think it's fine to have some duplication, and then sometimes To have garbage collection, right? Yeah. The What I've been, talking about with a lot of engineering leaders is that you want to be very strict about the boundaries between modules, and it's your job as an architect, as a CTO, whatever, to say like, “Okay, here's the hard contract between you guys and you guys. Whatever you do inside this black box is your business. You do whatever. But between these guys, let's be, really damn clear, and any movement must be signed off by a human or me,” or. Then, and like that's that. I don't know if you have any other modifications or advice.Walden [00:46:44]: Well, I guess generally on the topic of, where humans can be useful, I found that ‘cause, some of these, really deep infra problems, sometimes just having a human that just has, really deep expertise can make a big difference. I've actually seen this come into play when actually building agents. So we've had a few friends now, try building their own coding agents, and I think one same problem that I recurringly heard a lot of them run into was this problem of like, “Oh, Grep is really slow on our agents' machines.” And so a lot of them, I assume because they're using AI and they themselves don't have, super deep infra background knowledge, say, “Okay, we're going to go build our own custom Grep index. It's going to be really fast,” and use that as a way around this problem. When we ran into this problem About like, maybe like a year and a half ago when we were, in the early days of building Devin, we obviously didn't have AI then. We just asked our, how to, how to do this. You can just swap out a new Grep index, so.Infrastructure Details: Grep, File Systems, and SandboxesSwyx [00:47:45]: What do you mean you hand-coded Devin? What?Walden [00:47:48]: It's like, can you believe we hand-wrote this code? And we had, our infra people who are really amazing, they were looking into it and they're like, “Oh, what? We realized that actually the root cause of this problem is actually super simple, but like fine-grain detail,” which is that a lot of these virtual machines actually underlying them don't use real file systems. They use these, network file systems where things are actually cached over the network actually in S3. So when you're Grepping, you're actually making network calls Every time you're doing these things, and that's why Grep is extremely slow on these machines. And so again, goes back to, what is all of the crazy infra work that we had to do to actually get these machines working. If you try to do this yourself, there are tons of small details like this, and so we had to eventually go swap out that network file system. ButSwyx [00:48:35]: I think there's a write-up about it, right? Silas did one about the virtual file system.Walden [00:48:38]: Oh, that was a whole other thing. TheSwyx [00:48:39]: Oh, that's a different thingWalden [00:48:40]: The BlockDev file storage formatSwyx [00:48:42]: I'll bring it upWalden [00:48:42]: Which is, a file system format that we built so that the VMs could be spun up and down very quickly. Basically, the intuition behind this is-Imagine you have, a terabyte of disk, and your agent only, wrote, a hundred lines of code on top of that disk. How long does it, say, take to, save and re-bring up that disk? And most systems, because you're not optimizing for this case, it's just, on the order of a terabyte of work because you have to Save all of that and bring it back up. In our system, we try to build a file system that incrementally builds on top of each other. So every time you save and bring the machine back up, you're only doing work that is proportional to effectively the diff in the file system. And so this, shaves off a lot of time in the boot-up process of Devin. I think we This is actually now outdated. We have a newer system inside of Devin. But yeah, there's a lot of tiny details you have to get right here to actually get the day-to-day experience of Devin to be good.Swyx [00:49:39]: It's, not technically agents, but it is agent infra, and when you sell an agent as a company, you sell agent plus agent infra.Walden [00:49:46]: At least the way we do it be And the other The nice thing about having the agent infra being done together is, you We get to deploy Devin in whatever environment we want now. We don't need to wait for some underlying infra provider to also go and support VPC or on-prem or FedGovCloud, for instance. So we can actually go and figure out, okay, since we own the infrastructure, how can we get that set up for you?Cloud Providers: Modal, Daytona, and Enterprise SandboxesSwyx [00:50:12]: Whereas you're Cloudflare dependent.Cole [00:50:15]: so Cloudflare runs the control plane. The sandboxes, Modal is supported. A contributor just added Daytona. E2B is on the roadmap, and I think there's an abstraction in place that if any contributor wants to add a new provider, they can add that in.Walden [00:50:32]: Well, what are, How are the customers you work with Do they generally try to then go set up a contract with another one of these third-party providers? Do they try to do the VMs in-house?Cole [00:50:44]: most of them I see using Modal. I think Modal has a greatWalden [00:50:48]: Shout out Modal.Swyx [00:50:48]: Shout out Modal.Cole [00:50:50]: I think Modal has a great offering. It captures all of the sandbox pieces you need, snapshots being a pretty big piece of that, and given that they also offer GPUs, I think it's a pretty nice offering as a whole.Swyx [00:51:04]: no debate there.Walden [00:51:07]: Modal is great, especially, I think their container offering is, the most natural, and so especially if you are willing to, forego, the full VM requirements Modal is, a really vast place you can spin something up on.Swyx [00:51:20]: Is there a point So Modal's very Python, and I feel like most workload, has really shifted to JavaScript. I don't know if you guys Get the same feeling. So, okay, when I started Landspace and IE and all these things, I was like 50/50 Python and JS, right? That's roughly. I think that's wrong now. I think JS has won. I don't know if you guys Like, I Maybe I'm overstating it, and maybe for cognition, there's, C# and Java and what have you. But for, new greenfield apps, do you feel that Do you get that sense? Does it matter?Cole [00:51:52]: I think that most of the libraries that I see in this space are Python native first, especially in theCole [00:51:58]: Observability space. That said, I think that there is a pretty big appeal of having your entire system in one language. Especially when you have both your frontend and backend communicating, you can have one central type Which is very nice.Swyx [00:52:11]: That's my case against Modal, which is Then you have to run JS. You can run JS inside Modal. It's just, one extra step That, isn't native to the runtime. I don't know ifWalden [00:52:22]: I don't knowSwyx [00:52:23]: Reviews. Do you have numbers? I don't know.Walden [00:52:25]: the one thing I don't like about Python is whenever AI, whenever it writes Python, it always does, the weirdest patterns, andSwyx [00:52:32]: Oh, because it's, mixing two and three or what?Walden [00:52:34]: I think it's something mixing two and three, yeah. The I don't know if you see this. It always tries to do, has attribute on objects as likeCole [00:52:41]: Oh, my God.Walden [00:52:41]: But it's like But that you shouldn't be doing that. It should error if there wasSwyx [00:52:45]: Because it's training on library code?Cole [00:52:47]: I think it's more of, likeCole [00:52:48]: From what I've seen, it's more of, a reward hacking mechanism where it doesn't want to basicallyWalden [00:52:54]: It'll never error.Cole [00:52:54]: It doesn't want the code to fail. And so it Even when it knows it has the attribute, it'll call getattr on a, and for a lot of my clients who have moved towards more autonomous coding, we've put that in as a lint rule That if you do getattr, your pull request is going to fail.Slop Signatures: Comments, Backwards Compatibility, and TypesSwyx [00:53:12]: Ooh, this is a fun topic. Can you tell me more about this? What else is a sign of AI coding that you have to put guards in?Walden [00:53:21]: So we were talking just before this about Opus 4.7. One of the things this new model likes to do is it writes lots of comments. Not like, it'll, comment every line, but it'll write, paragraph, PRDs, on top of every function. But I will say, to its credit, these aren't slop, descriptions like they were before. “Oh, here's what this function does.” It's like, “Oh, here's actually the r
Achtung das ist die klassische Vatertagsfolge. Das heißt es war mal wieder Alkehol im Spiel. Die Gefahr von Flachwitzen ist daher sehr hoch. Wer nicht darauf steht kann die Folge gerne überspringen. Für alle anderen: Zum Vatertag gibt's Technik statt Bollerwagen: Wir sprechen über DNSSEC-Ärger bei der DENIC, Sicherheitslücken in Linux, BSD und DNSMasq sowie KI-gestützte Schwachstellenforschung. Dazu kommen Little Snitch, Smartglasses-Fails, DokuWiki mit Markdown, ein KI-Rewrite von Bun nach Rust, kostenlose Telefonzellen in Australien, End-of-Life-Software, DIY-Smartwatches, Bosch-E-Bikes mit Garmin und Bahnchaos bei internationalen Buchungen.
We all have data to rescue, you just don't realize it yet. This week we build our own custom live rescue distros, recover real data, and show you how to make your own.Sponsored By:Jupiter Party Annual Membership: Put your support on automatic with our annual plan, and get one month of membership for free!Managed Nebula: Meet Managed Nebula from Defined Networking. A decentralized VPN built on the open-source Nebula platform that we love.Support LINUX UnpluggedLinks:
Parce que… c'est l'épisode 0x745! Préambule Je suis en déplacement et je n'ai pas tous mes équipements habituels. Je n'ai pas encore trouvé l'équilibre entre la frugalité des choses que je mets dans ma valise et le maintien de la qualité de l'enregistrement. Shameless plug 14 au 17 avril 2026 - Botconf 2026 20 au 22 avril 2026 - ITSec Code rabais de 15%: Seqcure15 28 et 29 avril 2026 - Cybereco Cyberconférence 2026 9 au 17 mai 2026 - NorthSec 2026 3 au 5 juin 2026 - SSTIC 2026 19 septembre 2026 - Bsides Montréal 1 au 3 décembre 2026 - Forum INCYBER - Canada 2026 24 et 25 février 2027 - SéQCure 2027 Notes IA ou Ghost in the shell Mythos The ‘Vulnpocalypse': Why experts fear AI could tip the scales toward hackers Kevin Beaumont: “I've had a bunch of people ask…” - Cyberplace Kevin Beaumont: “Companion video https://youtu.…” - Cyberplace Kevin Beaumont: “I don't think anybody actually…” - Cyberplace Anthropic Teams Up With Its Rivals to Keep AI From Hacking Everything Anthropic Mythos model can find and exploit 0-days Anthropic limits access to Mythos, its new cybersecurity AI model Scoop: OpenAI plans new product for cybersecurity use We're Getting the Wrong Message from Mythos Anthropic's Mythos Will Force a Cybersecurity Reckoning—Just Not the One You Think Has Mythos just broken the deal that kept the internet safe? Japan relaxes privacy laws to make AI development easy The demise of software engineering jobs has been greatly exaggerated First man convicted under Take It Down Act kept making AI nudes after arrest Police corporal created AI porn from driver's license pics Trump-appointed judges refuse to block Trump blacklisting of Anthropic AI tech OpenAI Backs Bill That Would Limit Liability for AI-Enabled Mass Deaths or Financial Disasters Florida investigates OpenAI for role ChatGPT may have played in deadly shooting Californians sue over AI tool that records doctor visits Hacker Uses Claude and ChatGPT to Breach Multiple Government Agencies La guerre, la guerre, c'est pas une raison pour se faire mal! Iran intruders disrupting US water, energy facilities UK says it exposed Russian submarine activity near undersea cables Souveraineté ou vive le numérique libre! numerique.gouv.fr Privacy ou cachez ces informations que je ne saurais voir Why you can't trust Privacy & Security Report: US demands Reddit unmask ICE critic, summons firm to grand jury “Not Even Government Agencies” FBI Extracts Suspect's Deleted Signal Messages Saved in iPhone Notification Database I am the law Apple continues to roll out age verification around the world Greece to ban under-15s from social media from next year Reaffirming our commitment to child safety in the face of European Union inaction Senator launches inquiry into 8 tech giants for failures to adequately report CSAM Wisconsinites Can Keep Watching Porn After Governor Vetoes Age Verification Bill New Mexico's Meta Ruling and Encryption LinkedIn scanning users' browser extensions sparks controversy and two lawsuits UK government threatens tech bosses with jail time if they do not adequately fight nudification tools Red ou tout ce qui est brisé Quantum FTW? A Cryptography Engineer's Perspective on Quantum Computing Timelines Cloudflare fast-tracks post-quantum rollout as new research puts encryption on notice Why is the timeline to quantum-proof everything constantly shrinking? Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit FBI says cybercrime losses hit record $20.87B in 2025 Microsoft Abruptly Terminates VeraCrypt Account, Halting Windows Updates Un ransomware frappe le logiciel de dossiers patients de 80 % des hôpitaux néerlandais Why more Mac attacks now rely on social engineering Blue ou tout ce qui améliore notre posture Little Snitch for Linux Open source security at Astral Static code analysis in Kotlin Google rolls out Gmail end-to-end encryption on mobile devices Brocards for vulnerability triage Divers ou parce que j'ai aucune idée où les placer Dad stuck in support nightmare after teen lied about age on Discord Scoop: Meta removes ads for social media addiction litigation Collaborateurs Nicolas-Loïc Fortin Crédits Montage par Intrasecure inc Locaux réels par CitizenM Gare de Lyon
This week we're Apt to talk about Apt 3.2 and its new features. Linux 7.0 is about to release, Nano 9.0 is out, and Gparted has another update. Then, Project Glasswing promises to find and fix open source bugs, Little Snitch comes to Linux, and France is looking to jump on the Open Source OS train. For tips we have aptui for textual apt interface, alsabat for sound card testing, and the next installment of the Grafana walkthrough. You can find the show notes at https://bit.ly/4c29Exq and have a great week! Host: Jonathan Bennett Co-Hosts: Ken McDonald and Rob Campbell Download or subscribe to Untitled Linux Show at https://twit.tv/shows/untitled-linux-show Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.
This week we're Apt to talk about Apt 3.2 and its new features. Linux 7.0 is about to release, Nano 9.0 is out, and Gparted has another update. Then, Project Glasswing promises to find and fix open source bugs, Little Snitch comes to Linux, and France is looking to jump on the Open Source OS train. For tips we have aptui for textual apt interface, alsabat for sound card testing, and the next installment of the Grafana walkthrough. You can find the show notes at https://bit.ly/4c29Exq and have a great week! Host: Jonathan Bennett Co-Hosts: Ken McDonald and Rob Campbell Download or subscribe to Untitled Linux Show at https://twit.tv/shows/untitled-linux-show Join Club TWiT for Ad-Free Podcasts! Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit Club TWiT members can discuss this episode and leave feedback in the Club TWiT Discord.
In this episode, I explore the privacy implications of using AI apps like ChatGPT and Claude on mobile devices. I discuss why ChatGPT's requirement for Google Play Store login and audio recording storage led me to Claude on my GrapheneOS device. I also cover my daily app setup, Windows telemetry blocking with SimpleWall, macOS privacy with Little Snitch, and the potential of System76 Linux laptops.In this week's episode:Privacy comparison between ChatGPT and Claude AI appsChatGPT's audio recording storage and data export concernsGrapheneOS setup without Google Play Store loginUsing FUTO Keyboard and FUTO Voice for local transcriptionEssential privacy tools: SimpleWall for Windows and Little Snitch for macOSWindows Subsystem for Linux (WSL) for developersSystem76 Linux laptops as a privacy-focused alternativeShow Links:Anthropic Claude.ai Encryption - https://privacy.anthropic.com/en/articles/10458704...Duck.ai - https://duck.aiFuto Keyboard & Voice - https://futo.org/Aurora Store - https://auroraoss.com/aurora-storeSimpleWall (Windows Firewall) - https://github.com/henrypp/simplewallLittle Snitch (macOS) - https://www.obdev.at/products/littlesnitch/GeoSpy (OSINT Tool) - https://geospy.netSystem76 Linux Laptops - https://system76.com/Mental Outlaw YouTube Channel - https://www.youtube.com/@MentalOutlawDaVinci Resolve - https://www.blackmagicdesign.com/products/davinciresolveOSINT Defense & Security Framework - https://psysecure.com/services/odsf/“██████REDACTED███”- █████████Official Website: https://psysecure.com Podcast music: The R3cluse
Episodio 297. Skrillex no está muerto, dejó vestidos y emocionados a 63 piratas muy fans del Queen Pop mexicano de los años 60 y del piano a 4 manos. Es una tiradera creativa, diferente y melódica que me da un poquito de cringe pero me hace sentir cool porque ni zócalo, ni zócate.
Scott and Wes serve up listener questions on everything from SvelteKit's limits and the quirks of branded types in TypeScript to handling email queues and secure token storage in cookies. Plus, they get into app security, the evolution of checkout flows, and why QA teams can actually be game-changers for dev teams. Show Notes 00:00 Welcome to Syntax! 00:50 Catching up. 01:52 Brought to you by Sentry.io. 02:56 What are the limitations of SvelteKit? 06:41 Svelte 5 updates. 07:53 Branded types in TypeScript. EggHead.io Blog. 11:56 Queue applications and a ‘poor man's queue'. 17:20 The real value of a functional QA team. 21:34 Invoker commands. Invokers Explained. Denver Script Talk. 26:29 Growing security and permissions concerns. Little Snitch. 33:03 Stripe vs PayPal in 2024. 38:24 Christmas gift guide. 38:39 Websockets vs streams vs polling. 41:04 Storing access and refresh tokens in a cookie. 45:41 Shipping with TypeScript errors. 49:34 Sick Picks + Shameless Plugs. Sick Picks Scott: The Black Stuff Deodorant. Wes: Apple Watch Charging Brick. Shameless Plugs Scott: Syntax on YouTube. Hit us up on Socials! Syntax: X Instagram Tiktok LinkedIn Threads Wes: X Instagram Tiktok LinkedIn Threads Scott: X Instagram Tiktok LinkedIn Threads Randy: X Instagram YouTube Threads
This week Mark shares his travels from Germany and Manchester and dives into the latest ultra-thin M4 iPad Pro and its new updates. Mark and Rob also review the new Sonos Ace headphones and the latest BMW Mark is reviewing on his main channel. In event news, they discuss highlights from Google I/O 2024 and Microsoft's latest launches. Plus, Rob talks about Little Snitch 6 and showcases some brilliant musical talent… ➡️ Vincent Teoh / HDTVTest: https://www.youtube.com/@hdtvtest ➡️ Pixel 8a: https://geni.us/QSAO8Q4 ➡️ Sonos Ace headphones: https://geni.us/E047 ➡️ RetroArch retro games emulator for iOS, iPadOS and Apple TV: https://geni.us/RKzHyK ➡️ iPad Sheet Music app MusicNotes: https://geni.us/xrRC ➡️ Google I/O 2024 replay if you missed it: https://www.youtube.com/watch?v=XEzRZ35urlk ➡️ Project Astra Googly glasses demonstration: https://www.youtube.com/watch?v=nXVvvRhiGjI ➡️ Marc Rebillet: https://www.youtube.com/@MarcRebillet ➡️ Little Marc Rebillet queuing for an iPhone: https://www.youtube.com/watch?v=NnbL-Hm-xws ➡️ Microsoft Special Event replay if you missed it: https://www.youtube.com/watch?v=aZbHd4suAnQ ➡️ Humane putting itself up for sale barely a month after aiPin launch: https://geni.us/3EkbRJ9 ➡️ Udio AI Music generation: https://geni.us/uacfP ➡️ Little Snitch 6:https://geni.us/lStg ➡️ Windows equivalent of Little Snitch, Glassware: https://geni.us/xBAxL ➡️ Mr Mobile's Clicks keyboard case for iPhone: https://geni.us/zX8ZwRf ➡️ Ergotron HX monitor arm: https://geni.us/roOaKkj ➡️ Dell U4025QW 40” Ultrawide 120hz: https://geni.us/g7Nlgg If you'd like to get in touch with Rob and Mark, you can email them at contact@eightorsixteen.com. Eight or Sixteen is a Mark Ellis Media Limited production: https://markellisreviews.com
https://youtu.be/_0EiqiPuR4Qhttps://open.lbry.com/@NaomiBrockwell:4/Little-Snitch:7Our computers constantly talk to servers across the internet without us realizing, sharing information about our activities. Most of us don't even realize how many programs are silently connecting to the internet and sharing data. It usually happens without our explicit consent. But we can block these connections. On Mac, you can use a program called Little Snitch.In this video we look at the data is silently transmitted from our computer through things like telemetry, and show you how to use Little Snitch to regain control over the data leaving your computer.00:00 Your Computer's SECRET WHISPERS01:39 Data Leaving Your Computer04:02 Little Snitch Walkthrough10:13 Bazzell's Settings10:35 A Note About Alerts and Rules11:48 ConclusionUsing a reverse firewall like Little Snitch can be very revealing about how much data is silently being transmitted from our computer. Simply becoming aware of this can help us make better decisions with the tech we use.Our suggestions come from privacy expert Michael Bazzell, and we highly recommend you check out his site: https://inteltechniques.com/blog/2021/08/18/macos-telemetry-updateLittle Snitch can be found here: obdev.atThere is a similar product that apparently doesn't have the same granular functionality but is free called Lulu. I haven't tested it though, so you're on your own there!Brought to you by NBTV team members: Lee Rennie, Cube Boy, Sam Ettaro, Will Sandoval and Naomi BrockwellTo support NBTV, visit https://www.nbtv.media/support(tax-deductible in the US)NBTV's new eBook out now!Beginner's Introduction To Privacy - https://amzn.to/3WDSfkuBeware of scammers, I will never give you a phone number or reach out to you with investment advice. I do not give investment advice.Visit the NBTV website:https://nbtv.mediaSupport the show
Микола Сребнюк — https://www.linkedin.com/in/srebniuk/ Сергій Кривоблоцький – https://twitter.com/Krivoblotsky Юра Федоренко – https://t.me/callforward 0:00 Вітаємося 1:02 Подкаст відтепер українською
Heard about application firewalls and tools like Little Snitch on Mac, but not sure where to start? This episode, we're sitting down with David and Daniel from Safing to chat about their project, Portmaster.More about David Gunnarsson and Daniel Hovie:David's guest profile -- https://optoutpod.com/guests/david-gunnarsson/Daniel's guest profile -- https://optoutpod.com/guests/daniel-hovie/More about Safing.io and Portmaster:Website -- https://safing.io/Portmaster -- https://safing.io/portmaster/Privacy policy -- https://safing.io/privacy/Safing's business model --https://safing.io/business-model/Opt Out's Sponsors:Cake Wallet, an easy to use Monero mobile wallet -- https://optoutpod.com/sponsors/#cake-walletLocalMonero, an excellent and privacy-preserving way to buy and sell Monero -- https://optoutpod.com/sponsors/#localmoneroIVPN, an ethical, no-nonsense, non-logging VPN provider -- https://optoutpod.com/sponsors/#ivpnSupporting Opt Out:Donations -- https://optoutpod.com/about/#donationsLeave a review on your favorite podcast platform, if possible!Share it with your friends, family, and other communities!Support the show (https://optoutpod.com/about/#donations)
Links and vulnerability summaries for this episode are available at: https://dayzerosec.com/podcast/zoho-auth-bypass-a-bogus-bug-and-leaking-microsoft-bug-reports.html A few unique issues this week, routing issues in ManageEngine, a Little Snitch bypass, an undecodable characters leading to a denial of service. [00:00:37] CVE-2022-0329 and the problems with automated vulnerability management [00:19:45] [Omise] XSS via X-Forwarded-Host header [00:25:44] [FetLife] Specific Payload makes a Users Posts unavailable [00:31:03] How I could have read your confidential bug reports by simple mail? [00:36:38] Bypassing Little Snitch Firewall with Empty TCP Packets [00:45:06] ZohOwned :: A Critical Authentication Bypass on Zoho ManageEngine Desktop Central The DAY[0] Podcast episodes are streamed live on Twitch (@dayzerosec) twice a week: Mondays at 3:00pm Eastern (Boston) we focus on web and more bug bounty style vulnerabilities Tuesdays at 7:00pm Eastern (Boston) we focus on lower-level vulnerabilities and exploits. The Video archive can be found on our Youtube channel: https://www.youtube.com/c/dayzerosec You can also join our discord: https://discord.gg/daTxTK9 Or follow us on Twitter (@dayzerosec) to know when new releases are coming.
Things are worse than we ever thought, but that doesn't prevent us from taking a victory lap. Plus, Chris levels up his Mac skillz and gets his MacBook Pro under control.
DISCUSSED: Dan is actively gaslighting Merlin, and this can be proven; please stop stealing focus; praise for Ferris Bueller in general and the knees of Sloane Peterson in particular; passing thoughts on fear, procrastination, impostor syndrome, and solving the right problem; Merlin is delighted to discover a much-improved Little Snitch; Dan has thoughts on his Ford’s weird button; in gadget updates, Dan has found some useful headphones and has thoughts on trying to use his new Google dingus; finally, just in general, try to keep your hands away from the dragon’s mouth.
DISCUSSED: Dan is actively gaslighting Merlin, and this can be proven; please stop stealing focus; praise for Ferris Bueller in general and the knees of Sloane Peterson in particular; passing thoughts on fear, procrastination, impostor syndrome, and solving the right problem; Merlin is delighted to discover a much-improved Little Snitch; Dan has thoughts on his Ford’s weird button; in gadget updates, Dan has found some useful headphones and has thoughts on trying to use his new Google dingus; finally, just in general, try to keep your hands away from the dragon’s mouth.
DISCUSSED: Dan is actively gaslighting Merlin, and this can be proven; please stop stealing focus; praise for Ferris Bueller in general and the knees of Sloane Peterson in particular; passing thoughts on fear, procrastination, impostor syndrome, and solving the right problem; Merlin is delighted to discover a much-improved Little Snitch; Dan has thoughts on his Ford's weird button; in gadget updates, Dan has found some useful headphones and has thoughts on trying to use his new Google dingus; finally, just in general, try to keep your hands away from the dragon's mouth.
DISCUSSED: Dan is actively gaslighting Merlin, and this can be proven; please stop stealing focus; praise for Ferris Bueller in general and the knees of Sloane Peterson in particular; passing thoughts on fear, procrastination, impostor syndrome, and solving the right problem; Merlin is delighted to discover a much-improved Little Snitch; Dan has thoughts on his Ford’s weird button; in gadget updates, Dan has found some useful headphones and has thoughts on trying to use his new Google dingus; finally, just in general, try to keep your hands away from the dragon’s mouth.
DISCUSSED: Dan is actively gaslighting Merlin, and this can be proven; please stop stealing focus; praise for Ferris Bueller in general and the knees of Sloane Peterson in particular; passing thoughts on fear, procrastination, impostor syndrome, and solving the right problem; Merlin is delighted to discover a much-improved Little Snitch; Dan has thoughts on his Ford’s weird button; in gadget updates, Dan has found some useful headphones and has thoughts on trying to use his new Google dingus; finally, just in general, try to keep your hands away from the dragon’s mouth.
We break down the next-level features coming to a Linux near you in just a few weeks.
Wer ungefragtes Tracking oder das Übermitteln von Telemetriedaten an Softwareentwickler unterbinden möchte, benötigt eine Firewall. Patrick und Ben sprechen heute über Little Snitch für macOS, die kurzzeitigen Einschränkungen in Big Sur, die Menüleisten-App Trip Mode, und mehr.
This week we discuss IBM buying Instana, highlights from Kubecon and the rise of Substack. Plus, Coté updates us on his quest to live the iPad lifestyle. The Rundown IBM To Acquire Instana For Undisclosed Terms (https://www.nasdaq.com/articles/ibm-to-acquire-instana-for-undisclosed-terms-quick-facts-2020-11-18) Instana Crunch Base Overview (https://www.crunchbase.com/organization/instana) KubeCon Review Envoy Mobile Joins the CNCF (https://medium.com/@mike.schore/99aee4bdb32e) Open Source Web Engine Servo to be Hosted at Linux Foundation - The Linux Foundation (https://www.linuxfoundation.org/press-release/2020/11/open-source-web-engine-servo-to-be-hosted-at-linux-foundation/) Relevant to your Interests The Evolution of Cloud (https://greylock.com/jerry-chen-the-evolution-of-cloud/) 2020 State of DevOps Report | presented by Puppet, & CircleCi (https://puppet.com/resources/report/2020-state-of-devops-report/?mkt_tok=eyJpIjoiWldSbVpUbGtaVEZtWVRFMiIsInQiOiJhYWtBcEcxQ3Z2TitXcCtkbXJDZTBIbVcrb25qMEtTR1VvWXZNaDV2QmZEXC96ekJxZGxIRmxcL0JwaHdjN1FVYWMrUm9rRG8rYTE3QmozRlo4QU9IdFhvRWt3WUNvdDVvZWJSVmpLaFEzZnhNMllocGZNZUlUS0RmcVwvTDVZSEh3RSJ9) Amazon's Inferentia AI Chip Is Ready For Prime Time, Now Powers the Alexa Service (https://www.fool.com/investing/2020/11/12/amazons-inferentia-ai-chip-is-ready-for-prime-time/) FinOps Foundation launches Kubernetes Whitepaper with CNCF, adds vendor members, Densify, SoftwareOne, Virtasant and more... (https://www.finops.org/blog/finops-foundation-launches-kubernetes-whitepaper-with-cncf-adds-vendor-members-cloudcmx-densify-softwareone-and-virtasant/) Google Pay reimagined: pay, save, manage expenses and more (https://blog.google/products/google-pay/reimagined-pay-save-manage-expenses-and-more/?utm_source=newsletter&utm_medium=email&utm_campaign=newsletter_axioslogin&stream=top) New Zoom feature can alert room owners of possible Zoombombing disruptions (https://www.zdnet.com/article/new-zoom-feature-can-alert-room-owners-of-possible-zoombombing-disruptions/) Fast Facts Your Pa$$word doesn't matter (https://techcommunity.microsoft.com/t5/azure-active-directory-identity/your-pa-word-doesn-t-matter/ba-p/731984) 11 facts about real world container use (https://www.datadoghq.com/container-report/) Half of all containers are now managed by cloud provider and third-party registries (https://www.datadoghq.com/container-report/#10) Apple Apple to lower commissions for small businesses on App Store (https://www.axios.com/apple-to-lower-commissions-for-small-businesses-on-app-store-a385a49b-9558-411d-bd1b-6cb57f2d44cc.html) Safely open apps on your Mac (https://support.apple.com/en-us/HT202491?utm_source=newsletter&utm_medium=email&utm_campaign=newsletter_axioslogin&stream=top) Yeah, Apple’s M1 MacBook Pro is powerful, but it’s the battery life that will blow you away (https://techcrunch.com/2020/11/17/yeah-apples-m1-macbook-pro-is-powerful-but-its-the-battery-life-that-will-blow-you-away/) Mac users couldn’t launch apps this afternoon after Apple verification server issue (https://www.theverge.com/2020/11/12/21563092/apple-mac-apps-load-slow-big-sur-downloads-outage-down-issues) Nonsense Welcome to Slow Boring (https://www.slowboring.com/p/welcome-to-slow-boring) Zoom Is Temporarily Removing Its 40 Minute Limit on Video Calls for Thanksgiving Day (https://www.news18.com/news/tech/zoom-is-temporarily-removing-its-40-minute-limit-on-video-calls-for-thanksgiving-day-3083945.html) Sponsors strongDM — Manage and audit remote access to infrastructure. Start your free 14-day trial today at: strongdm.com/SDT (http://strongdm.com/SDT) Teleport provides consolidated access to all computing resources such as servers, Kubernetes clusters or internal applications across all environments. Watch a demo, download the free version, or sign up for cloud at goteleport.com (https://goteleport.com/) Listener Feedback Little Snitch (http://Little Snitch 4) from Jordy Mac users couldn’t launch apps this afternoon after Apple verification server issue (https://www.theverge.com/2020/11/12/21563092/apple-mac-apps-load-slow-big-sur-downloads-outage-down-issues) Conferences Mykel Alvis All Day DevOps Talk (https://youtu.be/cttjekzVEqU?t=1945) SDT news & hype Join us in Slack (http://www.softwaredefinedtalk.com/slack). Send your postal address to stickers@softwaredefinedtalk.com (mailto:stickers@softwaredefinedtalk.com) and we will send you free laptop stickers! Follow us on Twitch (https://www.twitch.tv/sdtpodcast), Twitter (https://twitter.com/softwaredeftalk), Instagram (https://www.instagram.com/softwaredefinedtalk/) and LinkedIn (https://www.linkedin.com/company/software-defined-talk/). Brandon built the Quick Concall iPhone App (https://itunes.apple.com/us/app/quick-concall/id1399948033?mt=8) and he wants you to buy it for $0.99. Use the code SDT to get $20 off Coté’s book, (https://leanpub.com/digitalwtf/c/sdt) Digital WTF (https://leanpub.com/digitalwtf/c/sdt), so $5 total. Become a sponsor of Software Defined Talk (https://www.softwaredefinedtalk.com/ads)! Recommendations Matt: Rewatching Veep (https://www.imdb.com/title/tt1759761/). Brandon: The Undoing (https://www.hbo.com/the-undoing?camp=GOOGLE%7cHTS_SEM%7cPID_p56310902692&keyword=the+undoing+hbo+show&utm_id=sa%7c71700000070858786%7c58700006239587173%7cp56310902692&utm_content=tun&gclid=Cj0KCQiA48j9BRC-ARIsAMQu3WSxjOpeoiBA6i3bBzeC-IL0JpPrwhoPrBOmtfTcNA37YokcAcnFo54aAtPnEALw_wcB&gclsrc=aw.ds) on HBO (https://www.hbo.com/the-undoing?camp=GOOGLE%7cHTS_SEM%7cPID_p56310902692&keyword=the+undoing+hbo+show&utm_id=sa%7c71700000070858786%7c58700006239587173%7cp56310902692&utm_content=tun&gclid=Cj0KCQiA48j9BRC-ARIsAMQu3WSxjOpeoiBA6i3bBzeC-IL0JpPrwhoPrBOmtfTcNA37YokcAcnFo54aAtPnEALw_wcB&gclsrc=aw.ds) and Serverless Data APIs (https://www.thecloudcast.net/2020/11/serverless-data-apis.html) from the Cloudcast Coté: Dithering (https://dithering.fm/)) podcast (https://dithering.fm/)) (https://dithering.fm/ (https://dithering.fm/)); Ted Laso. (https://tv.apple.com/show/umc.cmc.vtoh0mn0xn7t3c643xqonfzy?itscg=MC_20000&itsct=atvp_brand_omd&mttn3pid=a_google_adwords&mttnagencyid=1625&mttncc=US&mttnsiteid=143238&mttnsubad=OUS2019863_1-469980364686-c&mttnsubkw=106182847425_kwd-937070194980_rdMG7cVq_&mttnsubplmnt=) Photo Credit from Red Hat Container Coloring Book (https://developers.redhat.com/books/container-coloring-book-whos-afraid-big-bad-wolf) Photo Credit (https://unsplash.com/photos/wBzam0EPbXU)
[wired] Pues el investigador Dines Devados de la firma K7 Lab publicó el martes 30 de junio un nuevo ejemplo de ransomeware para Mac. El ransomeware que originalmente era llamado EvilQuest, ahora se está conociendo como ThiefQuest. Este ransomeware, según algunos investigadores de seguridad bien podría funcionar únicamente como ransomeware, pero también podría funcionar como un set de herramientas que realizan espoinaje a sus infectados. ThiefQuest abre un backdoor persistente en el equipo infectado, es resistente a reinicios y, entre otras cosas, realiza las siguientes monerías: Robar archivos Buscar passwords Buscar wallets de criptomonedas Keylogger para atrapar passwords y tarjetas de cŕedito El vector de transmisión de este ransomeware, según Thomas Reed de Malwarebytes, es el software pirata que se encuentra disponible en algunos torrents. Aplicaciones como Little Snitch, Dj software Mixed In Key y Ableton (Plataforma de producción musical). Aunque hasta el momento no se han podido identificar pagos a la wallet Bitcoin que los atacantes publican para el pago de rescate, no se descarta la posibilidad de que este rarísimo ransomeware incremente su cuota de mercado. Otra cosa interesante sobre este malware es que no ofrece una cuenta de correo electrónico para que las víctimas paguen rescate, así que eso hace dudar si realmente fue diseñado como ransomeware o si fue un addon que le agregaron al spyware. Peor aún, podría tener otras intenciones en realidad.
EvilQuest ransomware found in pirated versions of Little Snitch app. Out-of-band patches from Microsoft and Oracle. Extensive Chinese surveillance of Uighurs described. Hong Kong and the world react to China’s new National Security Law. The US FCC finds both Huawei and ZTE are threats to national security. Joe Carrigan on password stealers that target gaming. Our guest is Kiersten Todt from the Cyber Readiness Institute on how COVID-19 has changed small business security and what to expect going forward. And Britain rethinks its position on Huawei and 5G infrastructure. For links to all of today's stories check out our CyberWire daily news brief: https://www.thecyberwire.com/newsletters/daily-briefing/9/127
If you enjoy this podcast, consider buying me a coffee: https://adamstoner.com/support I was buoyed to see several Fun Kids podcasts nominated at the British Podcast Awards earlier this month. The Santa Daily, presented by Father Christmas in the countdown to December 25th is up in two categories: Best Daily, against the likes of Monocle 24's The Globalist, which has been waking me up every morning in lockdown, and even Today in Focus from The Guardian. Best Radio Podcast against Chris Moyles' Radio X and two picks from BBC Radio 4. I'm most proud of The Week Junior Show, the news podcast for children, fully punching its weight in the Best Current Affairs Podcast category with players like the Economist, LBC's James O'Brien from Global, and the Guardian. The results are to be announced in a livestream on July 11th. Gunning for next years' nominations, I'm still producing and editing Fun Kids' lockdown podcast, Stuck at Home. We also launched a brand new podcast, Sean and Robot's Comedy Circuit, which I did the artwork for, and re-launched an older channel with a newer concept, Story Quest. Here's what else I've been up to in May: My local, independent coffee shop re-opened ahead of schedule. It felt good to have a barista-prepared coffee for the first time in two months! The barbers better be next. Fresh bouquets from Bloom & Wild elevate any at-home office. These flowers come through letterboxes and last an impressive amount of time considering they've trundled around the postal system. I've been reading: If you read a lot, I've found a great Amazon alternative: Hive. Buy online, have your book delivered, and an independent bookshop of your choosing gets a percentage of your sale. I read hilarious Q&A between ‘You and Coronavirus' from the New York Times at the start of May. I've been digging into sneak-peaks from Love People, Use Things, a book from Joshua Fields Milburn and Ryan Nicodemus, publishing in 2021. Edward Snowden's autobiography, Permanent Record, about his life and the process behind the 2013 NSA revelations is as eye-opening as the information he blew the whistle on. The Hunger Games' prequel, The Ballad of Songbirds and Snakes, is pretty good. I was worried at first about its length and subject matter but like the original books, which were an allegory for the Iraq War, there's lessons to be learned in this one too. Common Sense For The 21st Century: Only Nonviolent Rebellion Can Now Stop Climate Breakdown And Social Collapse by Extinction Rebellion co-founder Roger Hallam is worth picking up and a lot of the lessons can be applied to other social crises too. Paul Jarvis, founder of privacy-friendly analytics group Fathom, has a good archive of email newsletters on his website covering an array of subjects including digital rights and creativity. His delivers weekly on a Sunday. I've been writing about: All of my blog posts – including this one! – are available as podcast episodes. Just search for my name, Adam Ayrton Stoner, in your podcast app of choice, or just tap here. On Tuesday, I wrote about how the problems we experienced pre-coronavirus will continue to exist after it. Climate change and social justice, but this post paid particular attention to the Black Lives Matter movement. On Wednesday 10th June, and written before the reigniting of the Black Lives Matter movement in the US, I put down some radical ideas for a future post-coronavirus. It mainly focuses on governance but the ideas are definitely geared towards creating more equal and just societies. Subscribe in your podcast app of choice to hear me read it when it's released. Earlier in the month, I wrote about how one might use blockchain technology to build uncensorable social media platforms. I don't have the technical know-how to do that but I have been working on ways to mirror tweets to the Ethereum chain; a bit like an immutable version of Politwoops, which tracks tweets politicians delete. I've been enjoying: As a longterm holder of the granddaddy of cryptocurrency, celebs like JK Rowling talking about it fills me with a sense of pride. I've been lax with the security around my crypto holdings for quite some time so purchased a Trezor hardware wallet to store Bitcoin and Ethereum. Battling with poor upload and download speeds, I purchased Little Snitch, a programme for your Mac that reveals all the connections other programmes on it are making and lets you block them at at will. If you use Adobe Creative Cloud, your jaw will hit the floor at just how many times your computer pings their servers. Weirdly, blocking those connections doesn't even affect the functionality of the programmes. That's all for now. Until next time. Your friend, Adam.
Bienvenidos a un nuevo episodio del Podcast Xavi74.com.es Podéis enviar los voicemails a este número de teléfono 668 692 387 que serán publicados en el podcast todas las dudas o feedback que reciba con vuestro permiso.Nos vemos en el próximo episodio de xavi74.com.es
These applications are One Trick Ponies. A One Trick Pony is a person or thing with only one unique feature, talent or area of expertise. In the scope of today’s episode, a One Trick Pony is an application that only does one thing, but it does that one thing very well. Here are sone One Trick Ponies I regularly use that could help you with your design business. 1) 1Password (Mac + Windows) 1Password is an application for managing passwords on Mac, Windows, IOS and Android. 1Password allows you to store all your strong hard to remember passwords in a secure location. All you have to do is remember one single password and let this password manager do the rest. 2) Squoosh (Web-based) Squoosh.app is a useful website to optimize and shrink the file size of your images without compromising quality. Drag an image onto the browser window, adjust the settings if needed, and download the smaller image file for use. 3) BackBlaze (Mac + Windows) BackBlaze is a set-it-and-forget-it backup solution for your computer. Install it and let it do its job unhindered and rest assured that your computer is continuously backed up. Should you ever need to restore your computer, you can easily do so from the online backup, or order a physical hard drive containing all your data shipped to you. 4) Carbon Copy Cloner (Mac only) Carbon Copy Cloner creates bootable copies of any hard drive. Create manual backups or schedule automated backups of any drive. Smart Updates saves time by only backing up files that have been added or modified since your last backup. Windows users, here are some alternatives to Carbon Copy Cloner. 5) Disk Inventory X - (Mac) Disk Inventory X is a free disk usage utility for Mac. It shows the sizes of files and folders in a unique graphical way. Quickly determine what is using up the most space on your hard drive. Disk Inventory X is based on WinDirStat for Windows. 6) Font Doctor (Mac + Windows) Diagnose and fix common font problems automatically with FontDoctor, FontDoctor locates and eliminates hard-to-find font issues that can cause problems on your computer. 7) Grammarly (Mac + Windows) Compose clear, mistake-free writing that makes the right impression with Grammarly's writing assistant. Grammarly works in all your favourite web browsers and applications. 8) Little Snitch (Mac Only) Little Snitch makes invisible internet connections visible so that you remain in control of who your computer is talking to. Keep track of your computer's network activity and take charge of who it does or doesn't communicate with. Windows users, here are some alternatives to Little Snitch. 9) MAMP (Mac + Windows) MAMP creates a local server environment on your Mac or Windows computer allowing you to run WordPress locally. MAMP is available in a Free and Pro version to match your needs. 10) Paparazzi! (Mac) Paparazzi! is a small Mac utility for taking screenshots of entire webpages, even the portions not visible on the screen. Enter the URL and tell Paparazzi! what format you want your screenshot, PNG, JPG, TIFF or PDF. Google Chrome screenshot feature. On Mac 1.Opt + Command + I 2.Command + Shift + P On Windows/Linux/Chrome OS 1.Ctrl + Shift + I 2.Ctrl + Shift + P These keyboard shortcuts will open Chrome's developer menu. Then Type "screenshot," and you'll see options for capturing portions of or the full webpage. Chrome will automatically save the screenshot to your Downloads folder! 11) PDFKey Pro (Mac + Windows) PDFKey Pro lets you easily unlock password-protected PDF files allowing you to open, edit and print them. 12) TNEF’s Enough (Mac) TNEF's Enough allows Mac Users to extract and read Microsoft TNEF stream files, often received as windmail.dat attachments. 13) VLC (Mac + Windows) VLS is a free cross-platform multimedia player that plays most multimedia files as well as DVDs, Audio Cds and VCDs. What One Trick Pony applications do you use? Let me know by leaving a comment for this episode. Resource of the week 4-Week Marketing Boost The Four Week Marketing Boost! is a free guide I created that will help you strengthen your marketing position, boost your brand’s awareness & social presence and ultimately ensure you are in tip-top shape to offer a best first impression to potential new clients. This guide is divided into 20 short actions that comfortably fit into your regular day and are designed to take as little time away from your client work as possible. Although you can complete these exercises quickly, it is recommended you tackle only one per day, spending no more than 30 minutes per task. After completing this four-week plan, you will be in a better position to present yourself to, and win over new clients. You can download the Four Week Marketing Boost for free by visiting marketingboost.net. Or, if you are in the U.S.A., you can text the word MARKETINGBOOST to 44222. Improve your business' image and create the best first impression possible to attract more clients.
Episode 028: JakeCUPP & Eddie Obtuse record this episode in CUPP’s car in front of Obuse’s house. Off the the bat starting the show off with Neon Moon mixed with Bob Ross references in the intro, and through the episode, the boys then reminence over times they use to chill and talk in the car back in the day. The topic discussions go from the Area 51 event this past week to Ash from Pokémon winning finally, conspiracy theories, the end of television with all these apps coming. Our main topic is the story of 6ix9ine’s testimony during the week. And to cap off the show Eddie pisses CUPP off with Logan Paul boxing match story that’s coming up.
Recorded 7th April 2019 This week was a bit slim on Apple news, or at least until the last minute... Then all of a sudden there were quite a few stories including MagSafe, an ML/AI hire, iTunes rumours and Apple ads on YouTube. Anyway to discuss all of these and whatever else we turn up along the way I am joined by Nick “Spligosh” Riley and original EAP host Mark Chappell. Also I have to give a big shout out to all the slackers who put in stories - I don't always thank them but every week members post possiible stories into the slack, and without them I would never find some of the great things they turn up. Thanks to all of them. GIVEAWAYS & OFFERS Listeners of this show can claim $10 off purchases of Luminar and/or Aurora HD 2019 use the coupon code EssentialApple at checkout for your extra discount! Get Photolemur 2 free by helping this YouTube video to 100,000 views. Why not come and join the Slack community? You can now just click on this Slackroom Link to sign up and join in the chatter! We can now also be found RadioPublic, PlayerFM and TuneIn as well as all the other places previously available. On this week's show: MARK CHAPPELL @oceanspeed on Twitter and sometimes puts Essential Apple related stuff on YouTube NICK RILEY @spligosh on Twitter very occasionally. Sometimes appears on Bart Busschots' Let's Talk Apple APPLE Sonnet eGFX Radeon RX 560 Breakaway Puck hits Apple Store, but you don't have to wait – AppleInsider Apple hires Google AI expert Ian Goodfellow to direct machine learning – VentureBeat Apple is exploring an updated version of MagSafe, one of its best charging inventions ever – Business Insider Apple's Ad About a Scrappy Group of Coworkers Is Honestly Better Than Most Sitcoms - AdWeek Actual video – YouTube This one is good too - “Homework” – YouTube Nexflix Removing AirPlay Support is a Strange and Somewhat Consumer Hostile Move – iPad Insight Rumor: macOS 10.15 may see iTunes broken up into multiple apps – Apple World Today We tend not to get into “rumours” too much but this is Steve Troughton-Smith we're hearing from here... TECHNOLOGY Bad Apple Demo on lots of hardware on YouTube as mentioned by Mark SECURITY & PRIVACY Cloudflare announces Warp: a new free VPN service for iOS – 9to5Mac Understanding Outline – Google's new DIY VPN service – VPN Pro Browser choice screen for Android must offer real alternatives – Cliqz This is an interesting look at the dependencies of browsers etc (based on Android, so hence no Safari etc) but interesting none the less) Russia blocks encrypted mail service provider ProtonMail – DataBreaches.net These Chinese sanitation workers have to wear location-tracking bracelets now – The Verge WORTH A CHIRP / ESSENTIAL TIPS LuLu - the open source Little Snitch “lite” – Objective-See The paid for Little Snitch is far more comprehensive though – Objective Development Privacy Pro SmartVPN by Disconnect JUST A SNIPPET For things that are not worth more than a flypast Apple patents system to help self-driving cars correct slipping tires – Motor Authority Nemo's Hardware Store (1:02:46) iRig Micro Amp – $150 US Direct. Available on Amazon US for $152 US - Not in the UK store at time of writing. Essential Apple Recommended Services: Ghostery - protect yourself from trackers, scripts and ads while browsing. 33mail.com – Never give out your real email address online again. Sudo – Get up to 9 “avatars” with email addresses, phone numbers and more to mask your online identity. Free for the first year and priced from $0.99 US / £2.50 UK per month thereafter... ProtonMail – End to end encrypted, open source, based in Switzerland. Prices start from FREE... what more can you ask? ProtonVPN – a VPN to go with it perhaps? Prices also starting from nothing! Fake Name Generator – So much more than names! Create whole identities (for free) with all the information you could ever need. Wire – Free for personal use, open source and end to end encryted messenger and VoIP. Pinecast – a fabulous podcast hosting service with costs that start from nothing. Essential Apple is not affiliated with or paid to promote any of these services... We recommend services that we use ourselves and feel are either unique or outstanding in their field, or in some cases are just the best value for money in our opinion. Social Media and Slack You can follow us on: Twitter / Slack / EssentialApple.com / Spotify / Soundcloud / YouTube / Facebook / Pinecast Also a big SHOUT OUT to the members of the Slack room without whom we wouldn't have half the stories we actually do – we thank you all for your contributions and engagement. You can always help us out with a few pennies by using our Amazon Affiliate Link so we get a tiny kickback on anything you buy after using it. If you really like the show that much and would like to make a regular donation then please consider joining our Patreon or using the Pinecast Tips Jar (which accepts one off or regular donations) And a HUGE thank you to the patrons who already do. This podcast is powered by Pinecast.
¿Es peligroso que se vaya la luz cuando estamos actualizando el firmware del NAS? ¿Qué es mejor, QuickConnet de Synology, myQNAPcloud de QNAP o usar un servicio DDNS? ¿Por qué no me da error al conectarme a mi NAS por HTTPS? ¿Es buena o mala idea hospedar una página web en mi NAS? Todas estas preguntas se repiten en la bandeja de entrada de mi correo, en el grupo de Telegram de NASeros o por las redes sociales. En este podcast respondo a estas preguntas para despejar dudas. Además tenéis el sorteo del sorteo de Little Snitch. Métodos de contacto NASeros: Web: https://naseros.com YouTube: https://www.youtube.com/c/naseros Grupo de Telegram: https://t.me/NASeros Facebook: https://www.facebook.com/naseros.es/ Instagram: NASeros_com Twitter: @NASeros_com Twitter personal: @macjosan iTunes: https://itunes.apple.com/es/podcast/naseros-podcast/id1019402412?mt=2 Si quieres colaborar con NASeros y sueles comprar en Amazon, puedes hacerlo desde este enlace: http://amzn.to/2ACEVn6
¿Es peligroso que se vaya la luz cuando estamos actualizando el firmware del NAS? ¿Qué es mejor, QuickConnet de Synology, myQNAPcloud de QNAP o usar un servicio DDNS? ¿Por qué no me da error al conectarme a mi NAS por HTTPS? ¿Es buena o mala idea hospedar una página web en mi NAS? Todas estas preguntas se repiten en la bandeja de entrada de mi correo, en el grupo de Telegram de NASeros o por las redes sociales. En este podcast respondo a estas preguntas para despejar dudas. Además tenéis el sorteo del sorteo de Little Snitch. Métodos de contacto NASeros: Web: https://naseros.com YouTube: https://www.youtube.com/c/naseros Grupo de Telegram: https://t.me/NASeros Facebook: https://www.facebook.com/naseros.es/ Instagram: NASeros_com Twitter: @NASeros_com Twitter personal: @macjosan iTunes: https://itunes.apple.com/es/podcast/naseros-podcast/id1019402412?mt=2 Si quieres colaborar con NASeros y sueles comprar en Amazon, puedes hacerlo desde este enlace: http://amzn.to/2ACEVn6
Réplica al podcast de Applelianos con Dekkar y Alex sobre troyanos. Cómo tratar de detectarlos una vez que los tienes dentro.También os cuento por qué a veces tenemos problemas de conexión con nuestros proveedores de internet de fibra (FTTH). Little Snitch: https://www.obdev.at/products/littlesnitch/index.html Métodos de contacto NASeros: Web: https://naseros.com YouTube: https://www.youtube.com/c/naseros Grupo de Telegram: https://t.me/NASeros Facebook: https://www.facebook.com/naseros.es/ Instagram: NASeros_com Twitter: @NASeros_com Twitter personal: @macjosan iTunes: https://itunes.apple.com/es/podcast/naseros-podcast/id1019402412?mt=2 Si quieres colaborar con NASeros y sueles comprar en Amazon, puedes hacerlo desde este enlace: http://amzn.to/2ACEVn6
Réplica al podcast de Applelianos con Dekkar y Alex sobre troyanos. Cómo tratar de detectarlos una vez que los tienes dentro.También os cuento por qué a veces tenemos problemas de conexión con nuestros proveedores de internet de fibra (FTTH). Little Snitch: https://www.obdev.at/products/littlesnitch/index.html Métodos de contacto NASeros: Web: https://naseros.com YouTube: https://www.youtube.com/c/naseros Grupo de Telegram: https://t.me/NASeros Facebook: https://www.facebook.com/naseros.es/ Instagram: NASeros_com Twitter: @NASeros_com Twitter personal: @macjosan iTunes: https://itunes.apple.com/es/podcast/naseros-podcast/id1019402412?mt=2 Si quieres colaborar con NASeros y sueles comprar en Amazon, puedes hacerlo desde este enlace: http://amzn.to/2ACEVn6
Eine Geschichte von Patrick W. und Andreas Z. sowie deren Werdegang was Text samt Editor anbelangt. Lieber Fluggast, wenn dir das Gehörte gefällt oder dir Sorgenfalten auf die edle Stirn fabriziert, dann haben wir etwas für dich: iTunes Bewertungen. Überbleibsel StevenBlack/hosts Command-R ≠ Option-Command-R ≠ Shift-Option-Command-R (How to reinstall macOS - Apple Support) Instapaper Highlights Exporter 1Password Autofill: WWDC18: Presents from Apple - AgileBits Blog Tim Cook: Apple felt strongly about privacy when ‘no one cared’ Little Snitch 4 - Group Subscriptions macOS Code-Signing Flaw Let Dodgy Apps Pose as Legit Apple Software YouTube Premium Artikel 13 Petition · Stoppt die Zensurmaschine – Rettet das Internet! #Uploadfilter · Change.org #SaveYourInternet - Fight the #censorshipmachine Wehr Dich gegen Online-Zensur in Europa! :: Civil Liberties Union for Europe Unternimm etwas - Create Refresh Google Drive File Stream defaults Apple Will Replace Faulty MacBook Keyboards Free of Charge Das neue Git Tower ist nun für Mac and Windows draußen. Leider ohne perpetual fallback model. transfer.sh Ey, dit Toar Da wir am Ausscheidungstag recorded haben… ↑ das ist der Satz der in Berlin nicht gefallen ist. Aber nun zu Interessanterem als das dröge WM-Geplapper. Pilot P: iPhone Editor Ich versuche das Smartphone möglichst selten zu benutzten. Finde ich gesund. Nicht nur wegen der Handhaltung, sondern auch wegen der Haupthirnausrichtung. Mehr dazu, wenn die iOS 12 Reports eintreffen bei euch. Ich nutzte eine Drafts 4 und Editorial Combo. Editorial ist dabei mein Nachschlage-Archiv. Nachdem letztens Jahr 1Writer irgendeinen Dropbox-Limit-Bug hatte, habe ich mir gedacht kickste die App und nutzt nur noch Editorial. 1Writer war cool, weil es viele Markup Display/Edit-Optionen hatte… und man konnte mehrer Ordner anlegen. Da ich in Editorial nicht schreibe, nutzte ich hauptsächlich 2 Workflows: Favorites und Folders. Das es TaskPaper unterstützt ist auch nett. Pilot P: macOS Editor The Archive ist genau das für mich: Ein Archiv und Ausgangspunkt. Dank einem kleinen Workaround kann ich nun diese Keyboard Maestro Palette nutzen, womit nvALT offiziell abgelöst ist bei mir. Schon nvALT war mein 24/7 Wiki. Konstant offen und stehts bereit dort etwas nachschlagen oder kurz nachzutragen. Neu ist halt die Zettelkasten-Methode von der mich Christian und Sascha überzeugt haben… wohl einer meiner Aha-Momente in 2018. Da ich auf die Vielseitigkeit von Plaintext baue, kommt mir auch kein abgekapseltes, schickes neues System wie Bear ins Haus. Ich finde es hervorragend Dateien vom Archiv aus in Sublime Text weiterzubearbeiten, gegebenenfalls in Calca oder TableFlip. Sonderfälle sind auch noch Kaleidoscope und Scrivener. Kurz: Es ist praktisch und ich kann von dort aus entscheiden, ob ich länger in Sublime weiterschreibe oder ein PDF oder eine LaTeX-Datei generiere. Sublime Text Nach Jahren des kostenlosen Kostens - was bei Sublime Text ja geht - habe ich am 16. Juli 2014 um 10.58 Uhr mir endlich eine Lizenz für $70 geholt. Das war glaube ich auch der Tag an dem ich mich von FoldingText getrennt habe. Was ich schätze ist, das Sublime 100% nativ läuft und schnell(er) startet (als z.B. VS Code oder Atom). Ich schließe und öffne ST3 gefühlt 300x am Tag. VS Code RegEx-Kurs Da VS Code die größte Verlockung für mich ist, und ich mein ST3-Setup dort schon zu einem guten Teil gespiegelt habe, hier ein Hinweis zum Gebrauch von Suchen mit regulären Ausdrücken: VS nutzt da 2 verschiedene Fundamente. In der Seitenleiste wird keine “lookahead syntax” unterstützt. Ist doof, da man dort offene Projekte durchsuchen kann. In der Dateiansicht geht das. Näheres hier. RegExRX Regex Oyster Build Scripts öffnen in Marked, VS Code, CodeRunner zum debuggen in iTerm dirket laufen lassen ==> CodeRunner Alternative Projekt-Dateien Kommandos um Jekyll direkt zu kompilieren oder Keyboard Firmware oder NPM Skripte oder was auch immer auf Projektbasis zu kompilieren (oder sonstwohin umzuleiten oder zu transformieren). Beispiel Ubercast: { "build_systems": [ { "cmd": [ "bash", "/Users/mmmh/Scripts/bin/iterm", "cd /Users/mmmh/Sites/derubercast.com/ && npm run" ], "name": "Publish Podcast", "selector": "text.html.markdown", "word_wrap": true, "working_dir": "/Users/mmmh/Sites/derubercast.com/" } ], "folders": [ { "path": "." } ] } Sonstiges Darf natürlich nicht fehlen, wie in jeder App, eine GUI-Erweiterung per Keyboard Maestro Palette: Sublime Text 3 Keyboard Maestro Palette mit Origami, Bookmarks und Spell Check. SublimeText Plugins 2017 habe ich ausgemistet und upgedated. Muss man halt immer mal tun. Hier die ausbeute. (Ich lasse das jetzt mal so 1:1 wie es aus meinem Archiv kommt.): Currently testing SublimeCodeIntel (so far not needed, only adds bloath) Highlighter (if it doesn’t work, delete it) Tools Text Pastry incremental numbers - command: as 1 AlignTab (Kontextmenü), alternative: VAlign, Alignment Convert Color to hsl, rgba, (Kontextmenü) ASCII Replacer Ersetzt Sachen wie “” mit richtigen Zeichen (Kontexmenü) Highlight Dodgy Chars Highlights non-ascii characters Origami (Alternatives: More Layouts) URLEncode FoldComments: COMMAND-SHIFT-C SFTP All Autocomplete: Extend Sublime autocompletion to find matches in all open files of the current window URLEncode DeleteLines (https://packagecontrol.io/packages/Delete%20Lines “Fixes ST default behavior”) Webdev DashDoc Look up in Dash: CTRL-H ColorHighlighter ColorHelper (tooltips) SublimeLinter incl. clang, scss, json, php Emmet GitGutter not really needed. FoldComments HTML-CSS-JS Prettify Add-Ons Clickable URLs (underline URLs, open with shortcut) SideBarEnhancements Local History Creates Versions of Files BracketHighlighter Swap Quotes, Select ToggleMinimapOnScroltl I need to reconfigure this. PackageRescourceViewer to Edit packages Marked App Menu Open Finder AdvancedNewFile AutoFoldCode Gist (needs to be removed, since it doesn’t support what I need) Statusbar Path Statusbar Path Writing Typewriter only for scrolling WordCount Smart Title Case Dictionaries (https://packagecontrol.io/packages/Dictionaries) (sometimes has problems) Markdown Extended for YAML and GFM fenced code block support Markdown Table Formatter SmartMarkdown (just for the folding if my memory serves me correct) Writing Style LaTeX LaTeXBox LaTexTools ####### Syntax Highlighting Unicode Character Highlighter Dotflies Ini SCSS LESS Used to be installed MarkdownEditing VAlign { "keys": ["alt+ctrl+a"], "command": "valign" }, ApplySyntax ASCII Comment Snippets Auto Semi-Colon useful in JavaScript Glue Sidebar: Open Folder SublimeManpage Table Editor Writing Style Unmanged Packages Refresh File (selfmade, WIP) CodeRunner App Menu (selfmade) VS Code App Menu (selfmade) Favorite Themes (folder with ★ themes) PyV8 (because Emmet needs it) zzz A File Icon zzz Maybe / Potential to be installed soon 2018-05-07: PowerCursors (https://packagecontrol.io/packages/PowerCursors) AutoFileName (https://packagecontrol.io/packages/AutoFileName) GhostText (https://packagecontrol.io/packages/GhostText) Edit text fields in the browser from Sublime Text Edit Preferences (https://packagecontrol.io/packages/Edit%20Preferences) Filter Lines (https://github.com/davidpeckham/sublime-filterlines) RegexExplainTip (https://packagecontrol.io/packages/RegexExplainTip) 2017: … UI Themes/Themes Seit geraumer Zeit nutze ich Boxy als UI-Theme. Man kann es relativ gut anpassen. Farbschemas wechseln bei mir öfters, gerade für Dateiformate, die ich oft benutzte. Hier mein Sammelsurium zum ausprobieren: Colorsublime also check out the plug-in daylerees/colour-schemes Dayle Rees Colour Scheme Previews thinkpixellab/flatland kkga/spacegray EleazarCrusader/nexus-theme buymeasoda/soda-theme jamiewilson/predawn Spacegray — A Hyperminimal UI Theme for Sublime Text gzhihao/bamboo-theme: A theme for Sublime Text 3 Big List of Sublime Text Themes - Tyler Longren tonylegrone/terminal-sublime UI Themes DA UI ayu Best sublime text themes to use in 2017 Monokai Pro for Sublime Text Enki Theme - Packages - Package Control
Problems with Mac OS if you're a Mac user. Craig explains an eleven-year-long vulnerability and why it has not been fixed. DNA data breaches. Craig discusses why it is such a big deal and why we have to be worried about it. Cryptocurrency is in the news again. Craig tells you why this blows his mind. Police can unlock iPhones. (Well they brute force attack it -- so if you have a 15 number password it will take them over 200 years) Hey, you heard the police can unlock iPhone's right. Well looks like there's a new feature that might stop them. Also, ambulance chasers they've been around a long time. Well, we're going to talk about a new type a digital ambulance chasers. Do you drive a BMW car? They've been found to have more than a dozen security flaws. Craig is putting up a new membership site (Yes, it is free you just have to sign up) On it will have all his special reports that he puts out and you will be the first to get them. These and more tech tips, news, and updates visit - CraigPeterson.com --- Transcript: Below is a rush transcript of this segment, it might contain errors. Airing date: 06/16/2018 Apple Macintosh 11-year-old security hole and Apple could kill police iPhone unlockers. Craig Peterson:[00:00:00] Hi everybody. [00:00:01] Craig Peterson here. Of course we're going to be talking about technology its impact on us what we'll be talking about security. We've got some great information here including some problems with Mac OS if you're a Mac user. This is an 11 year long vulnerability that just hasn't been fixed yet. We're going to talk about DNA data breaches I don't know if you've heard of these before but it's becoming a big thing and it's something we need to think about. We've got a cryptocurrency story this week that just blows my mind. Hey you heard the police can unlock iPhone's right. Well looks like there's a new feature that might stop that an ambulance chasers they've been around a long time. Well we're going to talk about a new type a digital ambulance chasers and BMW cars. They've been found to have more than a dozen security flaws. [00:00:54] You know there's probably a lot more. Don't worry. Here we go. You're listening to Craig Peterson on the air now for going on 20 years. We've got tens of millions of podcasts downloads and hopefully we'll be able to give you a couple of things today that not only educate you, but I think you'll find surprising. So here we go. [00:01:17] Well first off, we're going to talk about this hack. This is a problem that is only in Mac OS. Now we talk a lot about problems that only exist in the Windows world of course. The Android world which has been a real cesspool when it comes to security breaches and the main reason for that as we've discussed before is that people are not updating their Android devices and many times that's because you just can't update the android device, right. You buy them because they're cheap. And even if there expensive there are thousands of variations of Android because of the device drivers they're all using different components and sometimes the exact same model phone from the exact same manufacturer will have different versions of hardware in them or even completely different hardware. So, it's really difficult for these companies that are manufacturing the phones and the carriers that are further modifying the phones to keep everything up to date. Think about that, if you're Google, and you are making an operating system and you’re selling it and you’re getting blamed for all of these Android problems and in reality, the problem is there are a bunch of people putting their fingers into your code messing around with it in order to make it compatible for their customers right. So, think about that for a sec you’ve got the android device so you are shipping it now to some door operating systems are you shipping now to some device maker that’s going to take your operating system and put it on their device well the devices all vary in the CPU in the speed that think about the displays they’re all different. [00:03:01] The way you touch them to interact is actually different. Those are all different device drivers. You also have, of course, the cellular data modem that might be in there to get data you’ve got the Wi-Fi chipsets. There’s a whole ton of pieces and they’re all buying them from more or less the same manufacturers depending on what it is but they’re having to modify it. So now your Google operating system your Android is being modified by the device manufacturer who now is going to ship it off to your carrier. So you have a contract with who with Verizon with T-Mobile, Sprint whoever it might be. So, they’re going to want to get their fingers into it too. They’ll do a few little things they might be using specific band frequencies, for instance, for your internet. And in fact, that’s true for Wi-Fi as well because depending on where you are in the world there are different frequencies sets different bands for the Wi-Fi. [00:03:57] So now you’ve got the manufacturer, who has modified it, you've now got the ISP or the phone provider the carrier who's modifying that device and shipping it out. Many times, You'll also find that the people who make the component hardware for the device will also be modifying that device before they ship it out. So, the list kind of goes on and on. The people who have the fingers in it. So, now your Google, you found a security problem. Now what are you going to do about that security problem. How are you going to get your code out there, while you're going to make effects or patch and you're going to send it to the device manufacturer. Now the device manufacturer says you know we haven't sold that phone and years. OK. So, we've got other things we have to do. We have our people now working on the next release of the next greatest phone. So, they're not going to make an update for your phone. And the same thing with the component manufacturers they're not going to have an update for some old chip that they manufactured years ago. And even if it's a fairly recent chip and they do provide an update, it's got to go back to the manufacturer who now has to integrate it and then distribute the changes, right. And then it has to go back to the carrier who sold you the device who no longer has a relationship with you potentially right you might switch carriers. How are they going to get their changes in how they're going to get out to you? So, it's very, very, difficult in some cases. Google can send out patches directly to you. You can get them. You know you've got to Google Play store and you can get various types of updates and stuff from there directly from Google. But it's a real, big problem and that's one of the biggest problems we have right now in security. Certainly, the biggest problem in mobile security now. Apple has been known to be rather safe and secure because it was designed that way from the start. [00:05:55] Remember the whole Internet thing started in government and in academia and the big guy out there in academia who had a lot of operating system technology was AT&T and they had something called Unix and Unix was designed to be able to run on all of the different hardware AT&T had and that's a lot different hardware. Think about the big old phone companies. They had old machines new machines they had machines that were huge main data processors they had other machines that were teeny tiny sitting right by a Pole pack then couldn't really put one of them on a pole very easily, but you know you could it happened. [00:06:35] And so they had this operating system called Unix that worked really well. While UC Berkeley University of California Berkeley took some of those concepts, licensed some of that software the version 7 Unix, back in the day, and they ran with it and they started adding in more ability to have networking. Now think about this for a minute, in your school system our university system. You also have the same types of problems AT&T has had plus a few more because you also have a lot of pieces of equipment that you have to make and modify maintain [00:07:13] Run different software on and at the same time. Now you have a new problem which is you have all these students that want to hack in and change their grades, right and do all of the stuff you might not want them to do. [00:07:26] So, it becomes a little bit of a problem. So, guess what. AT&T and UC Berkeley particularly Berkeley they built in a lot of security. They designed the Internet, basically. And because of that Internet implementation let's put it that way they didn't really design it, but they certainly implemented it but because of that implementation and its security you now had an operating system called Unix back in the day that was very secure it was ready to go. And then you had a Torval, come along and he went there and made his own Unix lookalike and called it Linux and it doesn't have all of the same safety features. But it has much of the same thinking that was there in the original Unix’s of the world. So, fast forward to Apple, Apple had its operating system that was frankly kind of a toy it ran on some of the Mac’s number of those little boxy ones way back when. But it wasn't a great operating system and it wasn't something that could really build on to a lot of good things with it had its advantages. I can already hear you. Here come the text messages right. You know already here you're talking about it but in reality, they needed something a lot better. [00:08:42] And so that's what they did. They took Unix. [00:08:45] In fact it looks like what they did is it took free BSD looking down on the kernel and they were able to put their windowing interface on top of it. And you know there's times actually to a couple of other companies. Steve Jobs had some involvement with but. We're trying to make this simple right. This is not a history of Apple computers. What I'm trying to explain why they are more secure than Windows and so they took all of this wonderful code that was designed to be secure. They put a window in interface on it and out they go. They had a very good very productive operating system. Well one of the things that they did to make it more secure and they added on was that the applications became signed applications. So, a developer would sign an application and you knew now that the developer had basically approved it said it was good and Apple would sign them so that you knew. Yes, indeed this was reviewed by Apple and it was something you should pay attention to. You don't have to worry about any more of the machine automatically just accept the software, and if there are problems of course the machine will pop up a little warning saying well the software is not signed I don't recognize it and unless you change some settings it will not lead to install that software. While there is a bit of a problem here because Apple, remember they changed their processors. Now they're using Intel processors. They may actually be switching processors again within the next year or two, but they changed to Intel processors from the power PC stuff and I love PowerPC stuff. [00:10:26] It was really, really, good but they changed their processors, so they had to have these universal wineries so developers and Apple themselves or write software that would run on the Old Power PC architecture or it would run on the new Intel architecture. How could it do that? Well, that actually kept both binary as both programs in one program. So, the operating system would start to run the program it would launch a program it would look at it and say Oh, okay I'm a PowerPC I am going around the PowerPC code or Intel so I'm going around the Intel code and that makes sense to you. It was actually a great little idea and it worked really well. The problem that has surfaced now is that for the last 11 years since they put this whole thing in place we've had a we've had a real problem and that problem is that Apple apparently was only checking the very first binary for a signature. Isn't that a problem. It sounds like a problem to you. So, all a hacker had to do was put in a binary into you know into this little package and that binary just had to contain the one signed piece of code. That's all it needed was one signed piece of code and off it went to and the rest of the code could actually be nasty, nasty, nasty, so keep an eye out. Don't install software that is that you don't you don't know where exactly where it came from because it could end up biting you and in a very big way the signature check bypasses. These are these are very big deal so watch out for that [00:12:16] This next one is very controversial frankly. What should you be able to do, if you were the police or the FBI, should you be able to monitor someone's private communications. Well we know the Constitution lets us be safe right to keep our private papers and other things. And I think that all makes a whole lot of sense. But when we're talking about the digital world should the government have a back door. Now this debate has raged on for a very, very, long time. I mean crazy, long time. Certainly, my entire career in computers and technology with encryption. So, the police right now have a way to unlock iPhones and not all of the police departments have this. But there's some technology that they can license, and they can buy a little box, they can ship an iPhone overseas and for as little as 15 hundred bucks they can get the contents of the iPhone. And I can see absolutely see how on in some cases on occasion they could catch criminals that way they could stop something really nasty like a terrorist attack right. And you can probably see the same sorts of things. Well, this is an interesting problem because you have civil libertarians on one side saying no they should not have access to them. [00:13:46] But, they kind of do, and the way they have access to your iPhone right now is because of a bug, if you will, Right. A loophole, maybe is a better word, and it’s in the iPhone hardware and software that all iPhone’s have. Basically, it’s a USB connector on them, and that connector, when connected up, can be used to start a diagnostic session with the phone. That’s what they use at the Genius Bar, in order to work on your phone to fix it, Right. They use that little port whether it's the old 30-pin or whether it's the brand-new connectors or the new ones apparently next year are going to be USB-C based. So, they use that in order to get into your phone and check it out and fix things. Well there is a problem here. There is a company called Grayshift, and you know they've been out there. They have a product called Greykey and there is an Israeli firm called Cellebrite. They've been using that port on your iPhone in order to break into the iPhone. Now back in the day it was pretty easy to break into nowadays it's really nowhere near as easy. So, what are they going to do. [00:15:04] Well, Apple in its iOS beta releases since 11.3 has had a little feature that's built into it and that feature is that when you connected to a USB accessory the phone has to have been unlocked within the last 60 minutes. So, if you go into the Apple store for instance and they want to run some diagnostics they can't just take over your phone anymore. You now have to log into your phone and once you're on your phone then they can plug into that port right now, it doesn't have to be unlocked at the time you give it to, them but it will have to have been unlocked within the last hour. Now that means that this is probably going to break GrayShift's products that are being used by police departments, worldwide, in order to hack into your iPhone. You know is that a bad thing or is that a good thing. You know I work on security and I've worked with the FBI on hacking and I run the FBI’s webinars to keep the Infragard people up to date. Right. The Infragard webinars. So, how does this impact them while I think it might impact them in a very, very, big way. This might kill those products, entirely, unless the company comes out with products that are literally there in the police car or are there in the FBI vehicle that allows them to grab the phone from the bad guy and hope for the suspect let's say, and hope that that phone has been unlocked within the last hour and then they're off and running. [00:16:51] So, this one-hour timeline a major change from earlier tests where the time limit was a one-week period. [00:16:59] But it is significant because Grayshift, had been advising its customers to simply make sure they unlock the iPhone soon after obtaining it. And that's according to some documents that motherboard was reporting on earlier this year. So, it's easy to do within a one- week time limit harder to do with just an hour. This also means to you, that if your phone gets messed up you're not going to have as many options when it comes to having the Apple guys or your tech people go ahead and help fix your phone, Right. So, don't lose that passcode, right. Important safety to remember. As I've been talking I've had some text messages come in. People are wondering here IOS not IOS users but Mac users OK. They're wondering about that 11-year history. [00:17:52] So just to make it clear for those who might have missed a little bit of it and I'm going to delve into it just slightly more. Right now. [00:18:00] There are the vulnerability is primarily at third party software here that we're talking about. There are at least eight security tools that are known to have this vulnerability and it does not affect IOS. This is only your macs and one of the tools that does affect is one that I use, every day is called Little Snitch firewall and it's a great piece of software, but it also gets fooled. So, this universal file is also known as a FAT problem does exist, but it really only exists on the Apple Macintosh computers. And I'm sure it'll be fixed pretty soon. All of these developers now are aware of the problem and they're going to be fixing it, frankly. This next one here. This is kind of, I'm kind of this is this isn't a weird category I guess as a way to put this. We've had ambulance chasers probably since the days of lawyers, right. Since the very first lawyer anyone ever had these guys and gals that are out there looking for people who have been injured and then trying to help protect their rights and help them claim some money against whoever might have wronged them. All right, that makes sense I can see that. Well this is a little different because now you have a smartphone with you when you go online. That smartphone is showing new advertisements right. And your smartphone also has built into it a GPS. So, your smartphone knows where it is. How many of you can figure out where I'm going with all of this. [00:19:47] OK, well many people who are in emergency rooms or chiropractor's offices or pain clinics in the Philadelphia area or their area excuse me maybe start noticing their phones. The kind of messages that are directed at you because you're an emergency room or to pain clinic, OK. You're only getting fed the ad because somebody knows that you are in an emergency room. So, it's kind of like an attorney putting a digital kiosk inside of an emergency room when you get on the phone you're going to start seeing ads from Attorneys. So, this is kind of interesting. It's grabbing what's known as a phone I.D. from Wi-Fi cell data or an app using GPS. Yes, and the ads can show up for more than a month and on multiple of your devices, as well. Now the Massachusetts Attorney General, Maura Healey, said here's a quote from her “private medical information should not be exploited in this way especially when it's gathered secretly without a consumer's knowledge without consent as well”. OK so, Healey's office the first one in the country to go after geo-fencing technology that's being used to catch people while they are seeking care. So, this is going to be really kind of interesting, Mass also reached a deal last year with a Massachusetts based digital advertising firm that was sending advertisements from a Christian pregnancy counseling and adoption agency to people who entered Planned Parenthood clinics. So, when patients go to the clinics they cross a digital fence as these GPS fences you've heard of them, I use them all the time myself personally to remind me to pick up stuff when I’m at store and they'll soon get an advertisement such as you have choices click here for pregnancy help. [00:21:57] So, interesting now in Mass they're saying that those ads violate their consumer protection laws. Other states probably don't have the same thing. OK, we can go for a real quick roundup here now. Couple of things I want to get to before the show ends. We've all heard about AI or artificial intelligence and what it's going to be doing. Well MIT fed data from Reddit which is an online bulletin board into an artificial intelligence and that this is just kind of nuts. You know if you have ever seen EXMachina, It is a great movie but our robot even very, very, interesting they ended up calling this AI Norman. As Norman Bates. Because all he could think of was murder, OK. It's crazy they fed it those inkblots right. The Raw Shark Texts and it was just, murder, murder, murder. Kind of crazy cryptocurrency trading app, Taylor, says all other funds have been stolen in a cyber attack. If you didn't need yet another reason not to get involved with these cryptocurrencies. And speaking of that Cayman Island startup has just raised four billion dollars without any product. And what were they raising it with. You guessed it this is they have a blockchain platforms called block 1. [00:23:32] It doesn't have a product, Live yet. You should see a picture of this guy. I'll have to make sure it's on my website. But, he looks like he's 10 years old that was running this thing. It's not a great time to be investing. In fact, most of the blockchain currencies are really losing a lot of their value. BMW car computer systems have been found to contain at least 14 separate flaws. This is according to a cybersecurity lab out of China. They allowed hackers take at least partial control of the affected vehicles, and BMW is saying, that that does not allow them to control any of the driving systems in the car. So, that's probably good news. And we had a DNA data breach. This is crazy. The DNA testing service, My Heritage revealed that hackers had breached 92 million, of its accounts. Hard to say exactly what they got, But this is bad news because that data is there forever, and it is not like a password that you can change your DNA is your DNA. Have a lot more podcasting make sure you check that out online. You can find it all at Craig Peterson dot com SUBSCRIBE LEAVE A COMMENT Craig Peterson dot com slash iTunes. I've been doing pretty much daily podcasts. Well until next week we'll see you in the online space I'll make sure I send out any alerts if there are known major problems during the week. Take care and I’ll Talk to you, later, Bye, Bye. --- Related articles: For almost 11 years, hackers could easily bypass 3rd-party macOS signature checks No one is updating their Android devices, new data shows Apple Is Testing a Feature That Could Kill Police iPhone Unlockers Digital Ambulance Chasers? Law Firms Send Ads To Patients’ Phones Inside ERs Cryptocurrency trading app Taylor says all funds have been stolen in a cyber attack. MIT fed an AI data from Reddit, and now it only thinks about murder A blockchain start-up just raised $4 billion without a live product BMW cars found to contain more than a dozen flaws Why a DNA data breach is much worse than a credit card leak New asteroid gold rush ‘could earn everyone on Earth £75 billion’ More stories and tech updates at: www.craigpeterson.com Don't miss an episode from Craig. Subscribe and give us a rating: www.craigpeterson.com/itunes Message Input: Message #techtalk Follow me on Twitter for the latest in tech at: www.twitter.com/craigpeterson For questions, call or text: 855-385-5553
nvAlt: http://brettterpstra.com/projects/nvalt/Little Snitch: https://www.obdev.at/products/littlesnitch/index.html
Die Juwelen werden wieder ausgegraben und poliert von Andreas. Dieses mal Little Snitch und was man damit alles machen kann. Als wäre das noch nicht genug des Guten, zeigt er Patrick und Rafael sein Budget Tablet aus Androidonien. Von dem Schock können sich die Drei dann nur erholen, indem Sie noch einmal ihre Homescreens auf iOS überfliegen. Lieber Fluggast, wenn dir das Gehörte gefällt oder dir Sorgenfalten auf die edle Stirn fabriziert, dann haben wir etwas für dich: iTunes Bewertungen. Follow-up Long URL Maker - Generate obscenely long URL redirects when tiny URLs won’t cut it. Patrick: Rocket—the fastest emoji app for your Mac Verivox übernimmt Outbank GistBox > Cacher Skandal: Facebook zerstört das Urheberrecht Is Apple deploying ‘slugging’ tactics on its phones? Futuremark Press Releases: Is it true that iPhones get slower over time? Jony Ive’s perfect magazine is one with no content - The Verge Bitwarden Drip - Fund your creative practice through the ongoing support of people who love your work. Little Snitch Tips Konfiguration bei der Installation Managed Rules Preselected Options Mark new rules as unapproved Automatic profile switching Default profile Silent Mode Netzwerk Monitor Die erste Woche mit Android Negative Sachen: Fehlende Kontrolle Sachen laufen im Hintergrund ohne zu Wissen wann, warum und wie man es abstellt “Bereiniger” werden bei manchen Herstellern gleich mit geliefert. Diese leeren bspw. den Cache. Speicher. Wer speichert wann, wie, was? Es gibt keinen Konsens. Cross-Sync und Cross-Kauf von Apps in IAP’s nicht möglich. Copycats und Klone. Positive Sachen: Android ist sehr vielfältig. Es gibt Android in allen möglichen Ausführungen in allen möglichen Designs mit allen möglichen Features. iOS Setup Homescreen iPhone Andreas Homescreen iPad Rafael Das Chaos was Patricks iPhone Setup ist, gibt es auch als PDF Download Unsere Picks Andreas: Data Miner Rafael: Banking 4i Datenmigration von Outbank zu Banking 4i – Subsembly GmbH – Medium Patrick: Tchibo Faltbarer Rucksack 15 €, 25 Liter, Hauptfach mit abgedecktem umlaufenden Reisverschluß, 2 Mesh Seitentaschen in die 0,75 L Flaschen gut reinpassen, kleine Reisverschluß-Außentasche, zusammenfaltbar in einen kleinen Packbeutel, Gewicht: circa 177 g In Spenderlaune? Wir haben Flattr und PayPal am Start und würden uns freuen.
En este episodio Fede y Flavio comienzan con una entrada diferente, como compraran el iPhone X, sorteo de Little Snitch, garantias y en tu mac, preguntas y respuestas a tweets
Broadly 23 & Me; #hashtag; Ikea’s smart home; tin foil tents; Uber’s new CEO; WhopperCoin; Echo sync; Defenders; the Tick; Depeche Mode & KMFDM; Netflix & toke; Little Snitch; suing Yahoo; Messenger virus; security cam roundup; Harvey Manfrenjensenden. Show notes at http://gog.show/225
Ep 64 - posle odmora FU Alek probao i iPhone 5 radi i sa 4 uređaja kao hotspot. Dalje nisam probao. :) Luka Đokić: Dugo koristim Internet sharing opciju na MacBook Prou, koji preko svoje Wi-Fi kartice deli konekciju koju dobija preko iPhonea povezanog kablom. Broj uredjaja koji mogu da se povežu je znatno veći (nisam ispitao koliko tačno) i nema standby mode nakon odredjenog vremena. Setup je sledeći, MacBook je na punjaču, zatvoren, sa uključenim internet sharingom. Hotspot opcija na iPhoneu je uključena ali nije aktivna. Istog momenta kada povežem iPhone kablom, MacBook pravi Wi-Fi mrežu. Potrošnju bandwitha od strane macOSa kontrolišem Little Snitch aplikacijom (još je lakše ako je unlimited data u pitanju, nema potrebe za kontrolom, sem ako Backblaze ne krene da radi backup) Što se tiče fotografije, Alek je potpuno u pravu. Moj Canon 60D polako počinje da skuplja prašinu. iPhone odlično izradjuje jpeg fotke i vrlo retko ima potrebe za nekom daljom obradom, dok Canon pravi ogroman backlog RAW fotografija koje treba sesti i obraditi. Vredi napomenuti da iPhone postaje još praktičniji za fotografiju sa novim HEIF formatom u iOS 11. Hoferov prepaid Internet u Sloveniji Vesti Gruber proslavio 15 god Daring Fireballa AccuWeather uhvaćen u koprivama U Srbiji proradio 2FA sistem.
Wes (@kai5263499) spoke about this topic at BSides Hunstville this year. I was fascinated by it and decided to invite Wes on. Mac malware is a bit of an interest for Wes. He's done a lot of research on it. His talk walks through the history of malware on Macs. For Apple fan boys, Macs are still one of the more safer options in the personal computer market. That is changing though. Macs because of their increased market share are getting targeted more and more. We discuss some pretty nifty tools that will help with fending off that nasty malware. Little Snitch is one of those tools. Some malware actively avoids the application. Tune in for some more useful information.
Aplicación que te permitirá conocer cuáles son todas las conexiones entrantes y salientes de tu Mac y obrar en consecuencia, permitiéndolas o denegándolas.
How much would it take for someone to hack your life? And really, how worried do you actually need to be? For most of us, this question stays in the realm of the hypothetical. For others, it only turns into a question after the worst has happened. For tech journalist Kevin Roose, co-host of Fusion's new documentary series Real Future, it was a chance to be the human embodiment of a Fortune 500 company. On this week's Note to Self, hear what happened when Roose asked some of the best hackers in the world to put him through a "penetration test," or a "pen test." As he explains it: "Basically Coca Cola will bring in a hacker and say 'I want you to spend a month trying as hard as you can to get into our systems, exploit vulnerabilities, take advantage of weaknesses and report back to us what you found so we could fix it.' And I thought, 'What if I could do the personal version of that?'" Using tactics from fake programs to remote desktop takeovers, to a simple YouTube video of some crying babies... Roose figured out exactly how much damage it's possible to do. Spoiler: This episode will make you want to put a PIN on your phone provider account. It'll possibly make you want to download a security program like Little Snitch. At very least, it will probably make you want to cover up the camera on your computer. Traditional 'white hat hacker" Dan Tentler got a lot farther than Roose thought he would. (Note To Self) Subscribe to Note to Self on iTunes, Stitcher, TuneIn, I Heart Radio, or anywhere else using our RSS feed.
Paul & Chris are back! They’re kicking it old school. Join them as they go to warp speed. Well, just as soon as they can remove all the Google bloatware from the engineering software and find a cool external hard drive. Here’s a new season of the Sauce but what about Film Frown? Where is our lost episode featuring Marty Chan? Right here and here, smart ass. “What browser are you using these days?” Chris answers in a blog post. How to “Remove Uninvited Google Apps from Launchpad” on Macs. Chris used Homebrew & the Cask to install all his applications on his Mac during his clean install. Lifehacker has a decent guide. Little Snitch is a great firewall to tell you which applications are trying to connect to the web. For example, Apple location services on want to connect to the internet every 10 seconds. That seems wasteful on a desktop. Chris reviews his experience with MailPile. Then he shares that he moved to Airmail. Checking system stats on your Mac? iStat Menus is great or there’s GeekTool. Less expensive Monity is another option, but it doesn’t do temperature. If you are just concerned with temperature, there’s TG Pro. Paul has Automatic connected to his OBD-II port in his vehicle. He can track his car’s health with his Apple Watch or his phone. You need Shia LaBeouf freestyle rapping. Just do it. External hard drives? Lacie makes decent drives, but Chris & Paul prefer enclosures with fans, if it is a rotating drive and not an SSD. Chris has Vantec cases for his externals. Paul recommends buying in pairs for your backup. What’s on your external? Chris has some work resources like Death To The Stock Photo images. We interviewed one of the minds behind that site once. Paul & Chris really like their TP-link gigabit switches. You rock. Thanks for listening and let us know on twitter if you have any feedback. Support Montreal Sauce on Patreon
In dieser Episode begleitet uns Chris Hauser und Thomas Biedorf, die Erschaffer Deutschlands größter iOS- und OS X-Entwicklerkonferenz. Lieber Fluggast, wenn dir das Gehörte gefällt oder dir Sorgenfalten auf die edle Stirn fabriziert, dann haben wir etwas für dich: iTunes Bewertungen. Auch von dieser Folge könnt ihr den 8-Bit Echtzeit-Mitschnitt auf YouTube ansehen. Die heutige Episode von Der Übercast wird exklusive unterstützt von: Jimdo.com - Einfach und schnell eigene Webseiten, Blogs oder Onlineshops per Drag & Drop erstellen. Auch mit der Jimdo iOS oder Android App möglich. Jetzt 20% auf Jimdo Pro oder Jimdo Business sparen mit dem Gutscheincode: UBERCAST Überbleibsel Voila Update Voila, die vielseitige Screenshot und Screencasting App für den Mac kann nun auch iOS Screenrecording. Arq Update mit Amazon Cloud Unterstützung Arq für den Mac ist ein grandioses Programm, da es verschlüsselte Backups in die Welt der Wolken schicken kann. Jetzt unterstützt die App auch Amazon Cloud. Leider dauert es wohl noch bis das 60 € “Grenzenlos” Angebot bei uns in Europa landet. Die Amazon Presseabteilung hat uns leider nur mitgeteilt, dass sie “Einschätzungen und Spekulationen in den Medien nicht äußern möchten”. Fluid-Ersatz: Chrome SSB Chrome SBB ist ein hilfreiches AppleScript Tool, mit welchem man einen zeitgemäßen Ersatz für Fluid zaubern kann. Einen solcher seitenspezifischer Browser hat dann wie der Name schon verlauten lässt eine Chrome Basis. Ihr sagt am Anfang an, was für Tabs ihr drinnen haben wollt und fertig ist die Kiste. Gut daran ist, dass sich der SSB jedes Mal updatet, wenn er auf eurem Mac eine neue Chrome Version findet. Patrick hat Andreas seinen Vorschlag nun auch mal ausprobiert und ist fast restlos umgestiegen. Als erstes löscht er immer die drei Standard-Plugins von Google, installiert 1Password und legt gegebenenfalls Regeln für Little Snitch und Choosy damit der Browser auch wirklich eine Insel bleibt. Einziger Wermutstropfen: Der SSB merkt sich keine gepinnten Tabs und haut die jedes Mal zusätzlich auf, wenn man ihn startet. Praktische Sache. Patrick und Andreas nutzen diese SBBs gerne für Projekte. Schlüsselbund nach 1Passwort Nerdfutter für organisationswütige. Dieses Gist zeigt euch wie ihr exportierte Schlüsselbund-Einträge in 1Password Logins verwandelt. Warnung: Creatable Andreas warnt euch vor der Schildkröte, welche sich in den Creatable Abonnements versteckt. Außerdem ist der Support wohl nicht so der Knüller. Passparyou Passparyou bietet euch an (schon in der Beta), dass ihr euch nicht mehr um Passwörter kümmern müsst. Alles ist “Hacker-proof”. Das glaubt natürlich hier keiner. Aber lustig ist’s. Giveaway 1: Dein Mac von A bis O. Und dann bis Z. Letzte Woche haben wir euch noch drauf hingewiesen, dass Andreas den Erklärbär mimt. Heute gibt es schon die passenden Mitschnitte zu gewinnen – geradewegs 5 Stück. Ihr dürft natürlich auch für 3,99 € das Ding in die Einkaufstasche packen. Wer gewinnen will der twittert bitte folgendes: Mehr mit dem Mac machen. Ich wüsste gerne wie und will deshalb beim @derubercast Gewinnspiel gewinnen. http://derubercast.com/podcast/34/ Überschallneuigkeiten Blasenfolie knallt nicht mehr! Darf eigentlich nicht wahr sein: Neue Knallfolie knallt nicht mehr via Engadget Apple Music Patrick hat es noch nicht ausprobiert, aber Andreas und und Thomas sind schon einmal nicht begeistert vom weiter ausgebauten OS X Frankenstein der iTunes seit geraumer Zeit ist. Link: Meine zerstörte iCloud-Mediathek WarnWetter Der deutsche Wetterdienst beglückt uns nun mit einer offiziellen Wetterapp. Es ist natürlich toll, dass wir nun ganz offiziell das Wetter auch auf iOS bekommen können ohne auf die gekauften Wetterdaten von Drittanbieter zurückgreifen zu müssen, aber UI-technisch geht da noch einiges. Dafür sind die Push-Notifications schon einmal sehr selektiv einstellbar und funktionieren blendend. Dreaming Neural Nets Lucy im Himmel mit den Piloten Ein neues Internet-Ding auf das Patrick “jetzt erst” gestoßen ist: Dreaming Neural Nets Eigentlich ganz cool. Deshalb noch ein Link: Create Your Own Artificial Fever Dreams with Google’s “DeepDream” Macoun 2008-2015 Die Macoun [mâ'koen] ist die größte Deutsche Apple Entwicklerkonferenz. Vom Macoun - Team haben wir nun die zwei Endbosse am Mikrofon. In Buchstaben ausgeschrieben liest sich das wie folgt: Chris Hauser (@Doktorhauser) Thomas Biedorf (@eltom) Wer mehr Macoun will, der folgt folgenden Links: Twitter: Macoun Konferenz (@MacounFFM) Podcast: Macoun HD Video Podcast Download Interview: “Die Macoun ist so vielfältig und bunt wie die Mac-Entwicklergemeinde selbst” Chris und Thomas erzählen etwas zur Geschichte der Macoun, wie es zum Namen kam und welchen Vorträge für sie am einprägsamsten waren. Die nächste Macoun ist findet am 24. bis 25. Oktober 2015 in Frankfurt am Main statt und ihr könnt Tickets kaufen! Jetzt! Oder… Giveaway 2: Macoun Eintrittskarten Ihr könnt zwei Freikarten gewinnen. Das ist super, weil hier viel Information und Nerdfutter geboten wird. Also, ran an die Twittermaschine und auf folgenden Knopf drücken: Tweet: Wow. @derubercast will mir vielleicht ein Freiticket zur Macoun schenken und alles was ich tun muss ist diesen lausigen Tweet absetzen. Done! Viel Glück! Unsere Picks Andreas: Socialpilot Thomas: Sinfest Chris: Der-Flix und Uberspace Patrick: Tales of Mere Existence – “confused comedy for confused people” In Spenderlaune? Wir haben Flattr und PayPal am Start und würden uns freuen.
Das Motto lautet wie folgt: “Halt mal die Luft an” oder “drück auf Stop” oder ganz kurz… “Wie unterbindet man Ablenkungen beim Arbeiten am Computer?” Nun, auf jeden Fall ist das unser Thema heute. Des weiteren gibt unser Gast tiefe Einblicke in die Welt hinter dem App Store. Danach plauschen wir über das abgelenkt sein an sich. “Hotel Alpha Lima Lima Oscar” so begrüßt Sven heute unsere Hörer. Das phonetische NATO Alphabet ist also Sven’s Pick und ihr könnt direkt abschalten. Falls ihr das nicht vorhabt, so hört ihr heute unseren appsschraubenden Gast Ortwin Gentz, wie er euch eine Führung hinter die Welt des App Stores gibt. Im Anschluss erfahrt ihr Vermeidungsstrategien um Ablenkungen beim Arbeiten am Computer zu minimieren. Zu gewinnen gibt’s natürlich auch wieder was… was viel wichtiger ist, bei der anstehenden Live-Show wird Sven das komplette NATO Alphabet tanzen. Dieses Versprechen konnten wir ihm genau so abringen. Er sitzt bereits jetzt während ihr das lest daheim am Schreibtisch und arbeitet an seiner Choreographie. Lieber Fluggast, wenn dir das Gehörte gefällt oder dir Sorgenfalten auf die edle Stirn fabriziert, dann haben wir etwas für dich: iTunes Bewertungen. Überentwicklung Vorab ein Pro-Tipp für Podcaster: Immer genug zu trinken parat haben. Erst recht bei Recordings mit mehreren Personen. Falls jemand nämlich kein Getränk parat hat für den anstehenden Wortmarathon, so kann man ihm die Nase lang machen mit den eigenen Erfrischungsgetränken. So zumindest wird unser Gast von Patrick begrüßt. Link zum Bild: Der durstige Gast Der erwähnte Gast, welcher in Minute eins schon kurz vorm verdursten steht ist Ortwin Gentz (@ortingentz), Mitgründer von equinux, welche man von Produkten wie CoverScout, SongGenie, iSale und dem Tizi TV-Stick kennt. Ortwin ist nun nicht mehr bei equinux, hat aber dafür sein ganz eigenes Kind am Start: FutureTap. FutureTap hat zurzeit mit Wohin? (aka “Where To?”) und Streets zwei Apps am Start welche uns das “wirkliche” Leben leichter machen sollen. Patrick merkt an, dass der offizielle Verkaufsstart des iPhones im Juni 2007 war und Ortwin dann direkt in 2008 mit seiner Firma auf der Matte stand. Daraufhin erzählt uns Ortwin wie es zu FutureTap kam. Ortwin hat selbst an Ideen für eine App getüftelt, aber gibt zu, dass er zu dem Zeitpunkt einfach noch nicht so weit war. Im Oktober 2008 meinte es das Schicksal gut mit ihm und ein Angebot von tap tap tap landete auf Ortwins Tisch – Where To? stand zum Verkauf. Der Entrepreneur schildert uns kurz seinen Weg und wie es war eine App “einzukaufen” und zu vermarkten. Der große Vorteil war ganz klar, dass er mit Where To? eine App hatte, die schon seit Stunde Null im App Store war. Somit war Orwtin schneller im Business, am Markt und Besitzer einer der ersten 10.000 Anwendungen im App Store. Direkt zum Thema gibt es an dieser Stelle Interessantes für Leseratten aus der Fundgrube. Und zwar hat Patrick Ortwins dritten Post (“FutureTap and 13 name alternatives”) und zweiten Post (“How to purchase an iPhone app”) aus dem FutureTap Archiv gegraben. Beides sehr interessante Fundstücke, um einen weiteren Blick hinter die Kulissen haben will. Natürlich könnt ihr auch die Schnellzusammenfassung von Ortwin hören und seinen Ausführungen zum ehemaligen Goldrausch und dem Status Quo lauschen – ein Thema was Sven auch sehr spannend findet und Ortwin erneut auffordert seine Juwelen fallen zu lassen (← Erläuterung: Auch wenn dieser kleine Satz so nicht gefallen ist und sich anhört wie aus einem Nudistencamp für Senioren, er wurde extra für die Leser wortgetreu eingedeutscht. Da die Redaktion ja in der Kritik steht dem Anglizismus verfallen zu sein (–was natürlich leider Gottes stimmt und völlig korrekt ist–), ist dieses Schmuckstück aus der Hip Hop Kultur die Wiedergutmachung dafür – in der eigenen Landessprache hört es sich zudem noch herrlich vulgär und ordinär an. Mehr Informationen zu Where To? findet ihr ab Minute 13 oder im maßgeschneiderten App Preview Video von zCasting 3000, welches ihr im App Store und auf der Webseite bewundern könnt. Wohin? giveaway Was gibt es abzustauben??? 3 Lizenzen für Where To? Wie nehme ich teil? (1) Hört euch den Flug UC#013 an. (2) Werdet sozial aktiv: Auf allen sozialen Netzwerken findet ihr einen speziellen Post zu unserem Gewinnspiel. Es gilt diese frohe Botschaft zu verkünden. Es reicht sich ein soziales Netzwerk auszusuchen, dem Übercast dort zu folgen, bzw. zu liken Auf Facebook den Beitrag teilen und liken Oder auf Twitter den entsprechenden Tweet retweeten Es geht sogar bei Google+ plusen und sharen Oder bei App.net reposten Mit diesen zwei Schritten seid ihr im Pool und vielleicht einer der glücklichen Gewinner. Klar, wenn ihr auf mehreren Netzwerken aktiv werden, so steigert ihr damit auch eure Chancen. Teilnahmeschluss ist Donnerstag, der 2. Oktober 2014 (12 Uhr). Die Bekanntgabe der Gewinner erfolgt bei Veröffentlichung der nächsten Episode am 10. Oktober 2014. Des weiteren werden die Gewinner persönlich auf dem jeweiligen sozialen Kanal ihrer Wahl benachrichtigt. Kontakt Ortwin erreicht ihr wie folgt: Webseite: FutureTap Blog: Blog – FutureTap Twitter: @futuretap Seine Apps: Wohin? (Where To?) | @WhereToApp Streets | @StreetsApp Twitter: @ortwingentz Überbleibsel Die Reise in die Vergangenheit führt uns heute zu 3 Punkten. Eigentlich vier, aber der erste Punkt (Codename “Schnitzer”) wurde schon in den alten Show Notes verarbeitet. Dropshare Gewinner Die Gewinner des wunderbaren Dropshare sind… Marcel Bude (Facebook) Richard Weinhold (Google+) @pietpansen aka Peter Panstoffke (ADN) Herzlichen Glückwunsch und vielen Dank für die Teilnahme! Bilder vom iOS Kamera lock screen stehlen kann… samt iPhone Andreas steigt furios ein mit einem dem Hinweis auf ein Sicherheitsfeature aus 2013 (Timecode 0:36:40): Wenn der Angreifer kommt und quasi das Handy in die Finger bekommt, sobald euer iPhone nach ‘nem Passcode verlangt, hat derjenige Angreifer auch keinen Zugriff mehr auf gemachte Fotos. Daraufhin hat jeder eine andere Meinung und alle zücken ihr iPhone und kontrollieren wie genau es nun wirklich funktioniert. Es ist das kontrolliert herbeigeführte Chaos von Herr Zeitler. Jeder misstraut und widerspricht jedem. Einfach schön. Natürlich wurde das Mysterium, welches eigentlich gar keines ist noch geklärt: Geht man bei einem mit Passcode gesperrten iPhones in den Kameramodus und wählt das letzte Bildchen in der Ecke an, so sieht man nur die Fotos aus der momentanen Session. Aber… drückt man dann auf “Alle Bilder”, so wird man nach dem Passcode gefragt. Shakespeare würde es zusammenfassen mit »Viel Lärm um nichts«. iPod XL: Terminator – Teil 2 Die nächste hochqualitative Diskussionsplattform wirft Patrick in den Raum und jeder muss sich einmal daraufstellen: Was passiert mit dem iPod? Wird er groß, bleibt er so, wird er eingestellt? Patrick und Sven haben da die ähnliche Visionen; sie stellen sich vor, dass es noch 3-4 Jahre so weitergeht mit dem 4″ Formfaktor und dann wird der Formfaktor auf groß angepasst. Patrick lässt zusätzlich noch die Option offen, dass ihn das Schicksal des iPod Classic (✝ 2014) ereilt. Beide sehen den iPod weiterhin als bei der verspielten Jugend populär und preislich attraktiv an. Der iPod ist nach wie vor die low-budget Einstiegsdroge. Anmerkung der Redaktion: Vielleicht sehen wir auch was ganz neues. Eine wilde Idee, aber… vielleicht bringt Apple ja eine Uhr raus… und die kann dann auch (nur) Music abspielen. Back to the Roots quasi. Aber… das ist reine Spekulation “Niemand hat die Absicht eine iWatch zu errichten”. So, genug gekalauert. Überschallneuigkeiten Den Bono-Bug den eine Hackergruppe names U2 in den iTunes Store eingespielt hat, kann man hier entfernen. Link zum Bild: Bono-Hug-Bug Außerdem strömt es zu Deutschen Landen: Der beliebte Streaming-Service Rdio ist nun auch hierzulande in der kostenlosen Variante erhältlich. Ab und an folgt mitten im Lied eine Werbeunterbrechung und danach geht’s automatisch mit dem nächsten Lied weiter. Auf iOS könnt ihr ebenfalls ohne Abo Stations abspielen, diese orientieren sich z.B. an euren Lieblingsliedern oder Playlisten von Freunden. Des weiteren ist Netflix seit kurzem für 7,99 € pro Monat bei uns in Deutschland am Start. Das schöne ist, dass man es auch im O-Ton strömen lassen kann. Weniger schön für die iTunes-Verwöhnten, man kann nicht lokal zwischenspeichern. Mehr Informationen zu Alternativen gibt’s nach Sven auf SPIEGEL ONLINE bei dem Artikel “Netflix-Alternative: Maxdome, Watchever, Sky Snap, Amazon im Vergleich”. PS: Und bei uns gibt’s mehr zu Rdio, Netflix und Co. in Episode 3. Internet auf Pause Wie geht man auf Diät bzw. drückt auf Pause bei der Informationsflut. Macht es überhaupt Sinn? Geht das überhaupt zwischen tausenden von RSS Artikeln und Twittereien? Wie sieht es aus mit… freiwilligen Auszeiten, im Urlaub und was sagen Familie und Freunde wenn man mal nicht erreichbar ist. Auch wenn wir nicht alle Fragen beantworten können, so macht Andreas erst einmal den Anfang. Er gibt sich selbst gerne Freizeit zu speziellen Zeiten fernab vom Arbeitsmodus. Was bei ihm am besten hilft sind einfache Regeln: In der Freizeit dürfen die sozialen Medien genutzt werden wie ihm der Sinn steht. In der Arbeitszeit werden Dinge, die nicht seiner Arbeit zutunlich sind nur auf Geräten genutzt, die auch nicht seiner Arbeit zutunlich sind. Beispiel: Twitter, News nur auf dem Handy. Es gibt eine gewisse “Grace Period” in der beides OK ist. In der Regel ist das ‘in der Früh’ zwischen der Freizeit und der Arbeit, und Abends zwischen Arbeit und Freizeit. Passt bei Andreas auch wunderbar rein, da er Abends, wenn er den Arbeitsplatz “aufräumt” einfach mal ein bisschen Zeug nebenher laufen lassen kann, beispielsweise einen Twitter Stream oder einen Podcast. Das wandelte einspaarundneunzig Wikipediapaket Sven haut wieder die Fachbegriffe raus. Die Formel lautet → Selbstkontrolle + Willenskraft als limitierte Ressource (, die sich mit der Zeit aufbraucht) = Ego Depletion. Er nutzt SelfControl (open source), welches es erlaubt Websites, aber auch (Mail-)Serveradressen, für eine wählbare Zeit zu blockieren. Das ganze läuft “auf die harte Tour”, denn selbst das Löschen der App bzw. ein Reboot helfen nicht. Noch etwas konsequenter ist Freedom, die 10 Dollar App klemmt gleich das komplette Internet für die gewünschte Zeit ab. Ortwin schließt zur Not einfach Twitter und den Email-Client. Außerdem nutzt er die Pomodoro-Technik von Zeit zu Zeit, um sich zu fokussieren. Was für ihn das Hauptproblem ist, sind die berüchtigten “Rabbit Holes”. Immer wieder verfängt man sich in Aufgaben, die man gerade eigentlich gar nicht auf der Liste hat. Patrick nickt konstant, da er genauso vorgeht und sein Arbeits-/Wohnzimmer zudem noch voller Hasenlöcher ist. Sven als in Email-Programmen lebender Geschäftsmann kennt das mit der Ablenkung genauso, nur ganz anders…. Wenn bei ihm das Anfertigen einer Powerpoint-Präsentation ansteht, die so groß ist wie das 6+ erwischt er sich öfters bei der Suche nach alternativen Beschäftigungen im Email-Client. Dort hilft ihm Focusbar.app, welches den folgenden Ansatz hat: Nichts wird geblockt, aber ab und an erscheint ein kleines Fenster und erinnert einen daran, was man eigentlich gerade tun sollte, bzw. wollte. Vor allem, wenn man das Applikationsfenster wechselt. Patrick’s einzige Fokus-App ist ⌘⌥H. Das Tastaturkürzel sorgt dafür das alle Apps ausser die Vorderste ausgeblendet werden. Mit dem Fullscreen-Modus kann er allerdings wenig anfangen. Er merkt an, dass er keinen Gedanken für 5 Sekunden halten kann und dadurch oft mit Vollgas sich für Stunden ab ins nächste Hasenloch macht. Den Vergleich für diese Gefahrenquelle zieht er, da er sich als selbst-diagnostiziert hat mit ADD (und noch ein, zwei unschönen Sachen). Da das ganze nur am Rande erwähnt wird, grätscht Andreas kurz rein und mahnt zur Vorsicht. Das alles ging im Tempo des Podcasts unter. In unserer Sammelecke findet Patrick dann raus, dass Andreas schon 3 Artikel zum Thema Hyperaktivität gepostet hat. Hiermit wird der Leidensgenosse offiziell begrüßt und folgendes vom MOSX Tumblelog landet in der Leseliste: Inside my Hyperactive Brain My Hyperactive Brain - Two Year Aftermath Inside my Hyperactive Brain - iOS Version Sven wirft als App-Tipp noch Focus mit in den Topf, welches ähnlich wie der von Patrick genannte Shortcut funktioniert und alle inaktiven Fenster abdunkelt. Andreas nutzt dafür Desktop Curtain und erwähnt noch Houdini den Spirited Away Nachfolger, sowie die Möglichkeit Keyboard Maestro zu nutzen. Andreas verweist auf die einzig wahre Hard- & Nerdcore-Variante (Timecode: 1:09:00): Die Host-Datei ändern bzw. rotieren lassen. /etc/hosts: funktioniert nur minder. Facebook frisst sich fast überall durch. Man kann in hosts auch diverse andere Sachen blocken. Was da auch richtig gut ist: Little Snitch (siehe Episode 7). Damit kann man automatische Profilwechsel initialisieren. Für ganz mobile ist ControlPlane auch noch ein Tipp. Unsere Picks Ortwin: Mail-Act-On (25,88 €) Sven: Write (8,99 €) Andreas: Neila Rey Patrick: Tree (10,99 €) In Spenderlaune? Wir haben Flattr und PayPal am Start und würden uns freuen.
Mit Marco Masser und Manfred Linzner von Obdev aus Wien navigieren wir die neuste Version von Launchbar 6 (dem beliebten App Launcher für OS X), sprechen über die deutschsprachige Apple Entwicklerszene und vereinbaren ein denkwürdiges “Safe Word”. Diese Woche fliegen wir über Wien und gabeln dort Marco Masser und Manfred Linzner von Objective Development auf, um über das holde Entwickeln von Anwendungen, Apples Entwicklungsumgebung, LaunchBar 6 und Little Snitch 3 zu reden. Nach dem furiosen und verwirrungsstiftenden Intro für die zwei Wiener erntet Patrick leider Gottes weder schallendes Gelächter, noch entrüstete Ausrufe für seinen Swift-Witz – dafür aber fällt der Luftdruck in der Kabine schlagartig ab… wobei die Maschine erst knapp 2 Minuten in der Luft ist. Das eigentlich schlimme ist, dass es nicht besser wird. Weitere Schlagworte die Fallen sind Bondage und Tantra. So viel zur Qualität des Ubercasts. Lieber Fluggast, wenn dir das Gehörte gefällt oder dir Sorgenfalten auf die edle Stirn fabriziert, dann haben wir etwas für dich: iTunes Bewertungen. Überbleibsel Zum Thema Paperless gibt es noch Rückfragen von Andreas, und zwar wie es bei allen am Mikrofon so mit Fahrtickets aussieht. Andreas schildert sein Vorgehen beim digitalen Erwerb von Tickets mit dem DB Navigator und FahrInfo SVV. Manfred ist seit 2 Jahren komplett Paperless und hat mit dem MacSparky Paperless Guide angefangen. Anfangs nutzte er noch Evernote, wobei die wachsende Datenbank dann immer schwerer zu managen war. Nun nutzt er eine Ordnerstruktur und BitTorrent Sync. Um auf dem Mac das archivierte Material aufzufinden nutzt er Spotlight und das hauseigene LaunchBar. Außerdem merkt er an, dass es in Wien für alle öffentlichen Verkehrsmittel und auch Zugverbindungen eine digitale Variante gibt. Das erntet neidische Ohren der deutschen Nutzer. Marco dahingegen stellt sich als low-maintenance Digitalarbeiter raus. Er ist eher kein Paperless-Typ, da bei ihm ganz einfach wenig Dokumente anfallen. Überschallneuigkeiten Auch wenn wir mit den Flieger die Schallmauer nie und nimmer durchbrechen könnten, werden ab und an mal “News” zu uns durchgefunkt. So zum Beispiel das frisch anlaufende Google Domains für welches man sich zurzeit als Betatester anmelden kann. Google Domains is a new domain name service set to launch from Google. It’s currently in private beta, though you can request an invite. Official pricing is unavailable at the moment, but from images on the site it looks like domains will run around $12. Features will include free private registration, easy domain forwarding, branded emails and more. Ebenfalls neu auf dem Radar ist Pocket Premium, welches für $44.99 im Jahr mit permanenten Backups glänzt und so einmal zum Archiv hinzugefügte Seiten ewiglich in ihren Status Quo speichert. Hinzugekommen sind auch eine verbesserte Suche und passende Tags, die zum jeweiligen Link vorgeschlagen werden. Für alte Read It Later Supporter gibt’s es sogar 45% Rabatt auf Lebenszeit. Premium Alternativen: Pinboard zurzeit $10 einmaliger Eintrittspreis $25 für die Archivierung (pro Jahr) InstaPaper inkl. Abonnentenaccount $12 im Jahr Die Features von Pocket Premium sorgen nicht für Begeisterungsstürme bei den 5 Leuten im Flieger, niemand sieht so recht die Trumpfkarten im Vergleich zum bisher gebotenen. Profi-Nörgler Andreas geht sogar soweit das Archivierungsfeature als Unnütz zu deklarieren… also auch das von Pinboard… was Pilot Patrick wiederum völlig fertig macht. Dem ist dieses Feature heilig und mindestens 1x pro Jahr auch nützlich. Es hilft ihm einige API-Schweinereien bei Pinboard zu ermöglichen wie zum Beispiel ein lokales offline Archiv der eigenen Pinboard Seiten zu haben (und um dort beispielsweise dann einige Workfloweinträge aus Sean Korzdorfers öffentlichen Notebook (✝ R.I.P.) erneut zu analysieren). Historie von Obdev und das App-Entwickeln an sich Das 1995 veröffentlichte LaunchBar ist eine der “ältesten” Mac OS X Apps (siehe “Longstanding Mac Apps” von Shawn Blanc). Marco gibt Einblicke, wie die erste Version von LaunchBar aussah. Das Licht der Welt erblickte die App dank Norbert Heger. Der Obdevler wollte sich so um unnötige Maus- und Tastaturakrobatikaktionen drücken und repetitive Aufgaben vermeiden. So war die V1 nur ein reiner Applauncher, welcher mittels einer Sammlung von Shell Skripten arbeitete. In einem Fenster in der Ecke wurde derzeit besagter Script-Ordner mit den Kurznamen der Skripte geöffnet, man machte einen Klick und los ging es. LaunchBar Veteran Shawn Blanc hat auch hier zwei Screen Shots aus seinem Archiv gezaubert für Leute die mal OS 9 Luft schnuppern wollen. Als nächstes gibt es für den Interessierten Hörer einen kleinen Einblick in Firmenhistorie. So zum Beispiel erfahren wir, dass das Team von 4 auf 11 Personen gewachsen ist, wer an welchen Projekten arbeitet und wer was für eine Aufgabe erledigt. Zudem gibt es food for thought, nämlich was Entwickler damals noch selbst erfinden mussten und was von Apple dann nach und nach (komplett) übernommen wurde. Ein Beispiel, welches von unseren Gästen angeführt wird, ist die offizielle Schnittstelle zur Lokalisierung. Bei so einem “Klau” denkt Sven natürlich sofort an das Stichwort “sherlocking”. Marco gibt aber nun die offizielle Entwarnung und verkündet, dass nach 2 Wochen Yosemite-Spotlight-Nutzung er den angestiegenen Funktionsumfang der App als positiven Effekt deutet. Apple bringe so das Konzept eines Launchers der Öffentlichkeit näher. Ein Zugang würde geschaffen werden, welcher nach der Eingewöhungsphase, den nach mehr dürstenden Nutzer vielleicht gen eines erweiterbaren und funktionsschwangeren Launchers auf dem Markt stößt. Nach Manfred hat Spotlight immer noch ein großes Gebiet in welchem es sich verbessern kann, wo sich seit Jahres nix tut: Daten rein und raus schicken, um diese dann weiterzuverwerten sei immer noch nicht wirklich möglich. Was hat sich für Entwickler verbessert? In unserem Gespräch mit Obdev können wir festhalten, dass es mit der Vermehrung der Wildkatzen und schönen Plätze in Kalifornien stets leichter wurde mehr Features in die vorhandene Applikation zu integrieren. Dank dem Anstieg öffentlicher APIs sind weniger Hacks nötig um an Daten zu kommen. Auch zeigte Apples Gatekeeper eindeutig, dass die Fruchtfabrikanten aus Cupertino immer noch interessiert daran sind Entwicklern möglichst viel Freiraum (abseits von der auferlegten Sandkiste) zu lassen. Ebenfalls neu seit OS 10.9 ist auch die spezielle Signatur von Kernel-Erweiterungen, welche eine verbesserte Sicherheit gibt und als Entgegenkommen von Apple gewertet werden kann. Wie tastet sich Obdev an Swift ran? Marco ist begeistert, dass Apple genug Mut hatte eine neue moderne Sprache einzuführen und auch, dass Swift parallel zu und mit Objective-C verwendet werden kann. Das Endziel nach Marco ist, dass Swift die Zukunft wird, also prognostiziert er das aller Wahrscheinlichkeit nach in einer fernen(?) Zukunft immer mehr ausschließlich mit Swift gecodet werden wird… auch wenn Objective-C weiterhin als funktionabel gilt und die problemlose Co-Existenz beider Sprachen beworben wird. Ganz intern und ganz offiziell passend zum Thema: Auch in Zukunft wird es LaunchBar und LittleSnitch nicht im App Store geben. Ersteres hätte mit viel Drücken und Ziehen noch die Chance dazu, Letzterem ist es auf Grund der erwähnten (selbstgeschneiderten) Kernel-Erweiterung nicht möglich in die App Store Familie einzutreten. Patrick fragt, ob der App Store trotzdem noch interessant ist für Obdev und eine eventuell bereits geplante neue Anwendung dafür ein Kandidat wäre. Ganz diplomatisch bejaht ihm das Manfred mit einem “Ja”. Er plaudert weiter aus dem Nähkästchen und informiert uns, dass für Obdev schon immer Apps interessant waren, welche eine Nische bedienen, herausforderndes programmieren erfordern und ganz einfach nicht von jedem geschrieben werden können. Ebenso aber die Kehrseiten dieses Ehrgeizes, nämlich das auch Apples Direktsupport für Entwickler, welchen man immer einmal pro Quartal anfordern kann, meist nicht den Profifragen standhalten konnte und die Helfer oft mehr oder minder ratlos war. Irgendwann hat Obdev diese Möglichkeit des Feedbacks komplett verworfen, da die Fragen der Wiener für Apple zu trickreich waren. Somit hatte sich schnell ein neuer Workflow eingebürgert, und zwar das alle Problemlösungen intern vom Team gelöst werden. Spiel, Satz und Sieg. Eine Sache die Patrick öfters gehört hat ist, dass die WWDC einen Raum schafft, in welchem solch trickreiche Problemfragen fachmännischer von den Applemitarbeiter beantwortet werden können; drum spricht er die Support-Foltermeister direkt darauf an. Marco bejaht dies. Auf der WWDC konnte er auf seine spezifischen Fragen Antworten aus erster Hand erlangen. Sein WWDC-Besuch liegt zwar schon eine Weile zurück, aber in einem persönlichen Gespräch mit dem Entwickler von Apples QuickTime wurde im Rede und Antwort gestanden. Marco betont, dass man allerdings auch die Person finden muss, welche für die Frage maßgeschneidert ist. Hätte er mit einem UI-Spezialisten seinen Plausch abgehalten, so wäre ihm damit auch nicht gedient gewesen. Das man ein optimales Feedback bekommt ist also tatsächlich ein Merkmal der WWDC. Allerdings kann es durchaus sein, dass man nur die Puzzelstücke bekommt, welche Apple auch bereit ist ans Entwicklervolk zu verteilen. Marco nennt auch hierzu ein, zwei Beispiele (… die ihr gerne nachhören könnt). Der Ausflug in den iTunes App Store: Pebbles Pilot Patrick möchte wissen, was das Leitmotiv hinter der Entwicklung von Pebbles war. Kurz, ob das nun Entwickler-Spieldrang war etwa einmal mit Objective-C etwas für iOS rauszuhauen, oder herauszufinden wie profitabel der Spielemarkt im App Store ist und welche Chancen daraus für das Unternehmen erwachsen können. Wie sich herausstellt ist Pebbles auch wieder einem einzigen Entwickler aus dem Team zuzuschreiben: Johannes. Die Redaktion sieht hier Parallelen zu Panic, wo auch oft genug quasi pro Entwickler für die Kreation an sich verantwortlich war. Wie dem auch sei, zurück zur Ausgangsfrage; Pebbles wurde unter anderem entwickelt, weil Johannes neugierig war, wie das Signing und auch die Xcode 4 Integration so funktionieren auf iOS und mit dem App Store. Die literarische Übersetzung von Sven folgt auf den Fuss: Den großen Zeh ins Wasser halten. Was wir Nutzer aber daraus lernen ist, dass Obdev den Fokus auf OS X hat. Marco bejaht das, schiebt aber auch direkt nach, dass firmenintern schon Pebbles als potentieller Spielplatz für ein Swift-Projekt gehandelt wurde/wird. Abschießend hält er fest, dass für Neuentwickler die Nutzerzahlen von iOS natürlich wesentlich interessanter sind. LaunchBar 6 Hier wird das Obdev Team wieder gefordert. Wie im Schulunterricht müssen die wesentlichen Neuerungen runtergerasselt werden. Manfred holt sich eine 1 mit Sternchen ab und gibt einen kleinen Ausblick was als nächsten noch auf der Karte steht, zum Beispiel selbstgebastelte User-Themes. Um die Nerdherzen jedoch noch höher schlagen zu lassen gibt es hier und jetzt ein paar Lieblingsactions von LaunchBar 6. Keiner der Fluggäste und Piloten lässt sich lumpen und was nun folgt ist die Ausbeute dieses Austausches. Links zu LaunchBar 6 Actions: LaunchBar Scripts GitHub Repository von Andreas AppleScript Beliebtheit auf GitHub Offizielles Objective Development Forum - LaunchBar Actions Keyboard Maestro Macros Action Pinboard Actions hlissner/launchbar6-scripts prenagha/launchbar Launchbar Actions von Manuel Weiel Justin Lancys Tools um Browsertabs zu organisieren Wie immer quetschen die vernetzwerkten Schwaben noch einen lokalpatriotischen Link rein. In diesem Falle zum Stuttgart Opendata Framework. Der hat zwar jetzt nix mit Actions an sich zu tun, aber damit, dass die ehrgeizigen Baden-Württemberger einen weltkosmosweiten Standard entwickeln (hust). Ein weiterer kleiner, firmeninterner Vorausblick: Es gibt noch viele (auch große) Features die noch auf LaunchBar-Nutzer warten. Die App bieten sich an konstant ausgeschmückt zu werden und Obdev hat wohl noch eine Todoliste vor sich, die sich gewaschen hat und welche unsere Augen erneut leuchten lassen wird. LittleSnitch 3 Der Überwachungschef auf Mac OS X und das Kind von Obdev Entwickler Karl hat fast schon 15 Jahre auf dem Buckel und Betas für Yosemite sind bereits am Start. Was der versierte Blogleser vielleicht nicht vermutet, da tendenziell mehr über LaunchBar durch die Technikpresse wandert: Little Snitch ist quasi das Zugpferd von Objective Development. Eine Empfehlung die es auf den Punkt bringt spricht Sven noch einmal an alle Nutzer aus: In einer Welt wo immer mehr vernetzte Applikationen Daten durch die Gegend pusten und man vielleicht zumindestens ein Stück Kontrolle darüber haben möchte (… denn da hilft LittleSnitch). Der sanfte Ausklang hin zur Landebahn Die abschließende Frage von Patrick zum Thema Softwarepiraterie endet mit einer Hommage von Marco und ihm an die Entwicklerszene, welche Apps mit Liebe zum Detail und ausgefeilten Funktionsumfang für die Nutzergemeinschaft des Macs entwickelt. Eine Sache die beide nachdem Umstieg auf das Apple Betriebssystem sehr beeindruckt hat und den Schritt vom Freewareuser hin zum Gernezahler wesentlich erleichtert hat. Der Rest der Mannschaft stimmt in den Tenor ein. Kurz, wir sind alle immer wieder erstaunt über die aktive und talentierte Entwicklerszene, welche für unser System der Wahl Programme schreibt. Gewinnspiel Was gibt es abzustauben??? Na ganz objektiv dürft ihr nun drei Mal raten… es gibt: 2 Lizenzen für LittleSnitch 2 Lizenzen für LaunchBar Wie nehme ich teil? Frisch zitiert und druckreif aus unserer Marketingabteilung kommt hier die Anleitung: Hört euch den Flug UC#007 an — ach kommt schon… am besten nehmt ihr uns gleich ins Abo. Folgt, liked oder plust uns bei einem sozialen Netz eurer Wahl: Facebook, Twitter, Google+ oder App.net Im jeweiligen sozialen Netz findet ihr einen Gewinnspiel Post, bzw. Tweet welchen ihr bitte shared, liked, plust, retweeted oder mit 7G einmal um den Mond schickt Mit diesen drei Schritten seid ihr im Pool und vielleicht einer der glücklichen Gewinner einer Lizenz für Launchbar oder Little Snitch von Objective Development. Schluss mit der ganzen “Teilerei” und somit lustig ist am Freitag, den 11. Juli. Die Bekanntgabe der Gewinner erfolgt während Flug UC#008 (VÖ Freitag, den 18. Juli). Des weiteren werden die Sieger natürlich auf ihrem jeweiligen Sozialen Kanal, ob das nun Facebook, Twitter, Google+ oder App.net ist, kontaktiert und informiert… wir finden euch schon und die Lottofee wird ihr Übriges tun. Letztendlich können die vier Softwaremillionäre hier dann ihre Coupons einzulösen. Wer die Apps von Objective Development regulär erwerben möchte dem wird mit dieser kleinen Liste geholfen: Hier kaufen: Objective Development Hier fragen: @launchbar und @littlesnitch Hier der Preisüberblick für LaunchBar: LaunchBar – Single License: 24€ Upgrade von LaunchBar 5 auf LaunchBar 6 — Single License: 15€ LaunchBar – Family License (5 Computer): 39€ Upgrade von LaunchBar 5 auf LaunchBar 6 — Family License: 24€ Endlich “Picks” Darüber hat sich Patrick besonders gefreut, da ihm seit Anbeginn seiner Podcastinglaufbahn und der Taufe dieses Podcast eine Empfehlung schon länger auf der Zunge lag. Wie immer gilt, wer die detaillierte persönliche Meinung hören will, der darf gerne noch einmal genauer hinhören. Marco: PaintCode von PixelCut Manfred & Andreas: xScope von The Iconfactory Patrick: Uberspace.de und seine flexible, faire Preisstruktur Sven: WiFi-Explorer von Adrian Granados Das war’s. Wir wünschen einen angenehmen Aufenthalt, drücken allen Teilnehmern die Daumen und bedanken uns recht herzlich bei unseren tollen Gästen. Bis zum nächsten Mal. In Spenderlaune? Wir haben Flattr und PayPal am Start und würden uns freuen.
Os hablo sobre BundleHunt, un paquete de software de esos que últimamente crecen como setas. La verdad es que me he cansado un poco de todos ellos pero este merece la pena, y mas si no tenéis todavía Little Snitch instalado en vuestro ordenador; es uno de los básicos (por lo menos para mi lo es) y por su precio os compráis el paquete entero que además tiene otros tesoros como MacPilot, BannerZest y PulpMotion, además de libros sobre diseño web, vectores,… Y todo ello por $49,99. He incluido en esta entrada un anuncio del paquete, si pincháis sobre él y compráis me llevaré una pequeña comisión lo cual siempre ayuda aunque ya sabéis que podéis hacerlo directamente en su página si lo preferís. Además hoy os presento a una compañía de software para Mac, ManyTricks, que me ha enamorado con dos de sus pequeños programas, Moom y Desktop Curtain. No estoy afiliada a ellos ni me llevo absolutamente nada pero ¡¡estoy encantada, sobre todo con Moom!!. Al final una felicitación para todos vosotros.
It's like tracing woodworms in the old flooring. You don't really see them, but if you listen very careful, you'll hear them gnaw away at the wood. But not for long, no sir! There's Little Snitch. And all apps that try to phone home behind your back... snitched! Waaaaaaahahahahah! App name: Little Snitch Developer: Objective Development Software GmbH Promocode in podcast: yes (win one of two licenses for this app.)
Emery Wells and guest Kenji Kato show you how to monitor and control applications' network activity using Little Snitch. Host: Emery Wells Guest: Kenji Kato
Emery Wells and guest Kenji Kato show you how to monitor and control applications' network activity using Little Snitch. Host: Emery Wells Guest: Kenji Kato