Podcasts about Runc

AppArmor unprivileged user namespace restrictions are back on the agenda this week as we survey the latest improvements to this hardening feature in the upcoming Ubuntu 24.04 LTS, plus we discuss SMTP smuggling in Postfix, runC container escapes and Qualys' recent disclosure of a privilege escalation exploit for GNU libc and more.

This week we explore the history of containers, particularly containerd, with Phil Estes.   Do you have something cool to share? Some questions? Let us know: - web: kubernetespodcast.com - mail: kubernetespodcast@google.com - twitter: @kubernetespod   News of the week Notary Project announces a major release! (Blog)  Kubernetes Legacy Package Repositories Will Be Frozen On September 13, 2023 (Blog) Gateway API v0.8.0: Introducing Service Mesh Support (Blog) Amazon VPC CNI now supports Kubernetes Network Policies (Blog) Introducing VMware Tanzu Developer Portal: Empowering Developers with Enterprise-Grade Backstage Google Cloud Next page Google Cloud Next Blogs Google Cloud Post-Next Videos KubeCon NA 2023 Schedule Rig.dev startup (Blog)   Links from the interview Docker Containerd Chroot (archlinux wiki) Linux namespaces (Linux man page) runC announcement (2015) runC on Github Containerd project creation announcement (2016) Containerd donation to CNCF announcement (2017) Containerd graduation announcement (2019) Container Runtime Interface (CRI) Kubernetes SIG Node Dockershim debacle (kubernetes.io blog) Dockershim deprecation FAQ (kubernetes.io blog) Mirantis-owned cri-dockershim on Github Open Container Initiative (OCI) Cloud Native Computing Foundation (CNCF) CoreOS (“What was CoreOS” blog by RedHat) Rkt (“What is Rkt” blog by RedHat) Kinvolk BlaBlaCar BlaBlaCar Case Study on Google Cloud gRPC gVisor Kata Containers Docker && WASM with Justin Cormack (Docker CTO) on the Kubernetes Podcast from Google WasmEdge (A Wasm runtime) CRI-O (lightweight container runtime for Kubernetes) Containerd scope and principles nerdctl: Docker-compatible CLI for containerd Docker Buildkit github.com/container-image, github.com/container-storage Podman Skopeo Firecracker microvms Intel Clear Containers Hyper.sh Open Infrastructure Foundation OpenStack Cloud Native Rejekts “Face off: VMs vs. Containers vs Firecracker” by Alex Ellis at Cloud Native Rejekts EU 2023   Links from the post-interview chat   Keynote: Reperforming a Nobel Prize Discovery on Kubernetes - Ricardo Rocha & Lukas Heinrich Keynote: CERN Experiences - Ricardo Rocha & Clenimar Filemon Jesse Frazelle's container escape challenge used to be at contained.af, but it doesn't seem to exist anymore. Containers from Scratch - Liz Rice at GOTO 2018 (there are a bunch of recordings of this talk) Mirantis-owned cri-dockershim on Github  

This week we look at some recent security developments from PyPI, the Linux Security Summit North America and the pending transition of Ubuntu 18.04 to ESM, plus we cover security updates for cups-filter, the Linux kernel, Git, runC, ncurses, cloud-init and more.

An Ubuntu expiration date approaches, openSUSE has a new handy solution, and the container security issue that remains unfixed.

An Ubuntu expiration date approaches, openSUSE has a new handy solution, and the container security issue that remains unfixed.

Everybody get up it's time to slam nowWe got a real jam goin' downWelcome to the Space JamHere's your chance, do your danceAt the Space Jam AlrightCome on and slam, and welcome to the jamCome on and slam, if you wanna jamHey you, watcha gonna doHey you, watcha gonna doHey you, watcha gonna doHey you, watcha gonna doParty people in the house let's goIt's your boy "Jayski" a'ight soPass that thing and watch me flexBehind my back, you know what's nextTo the jam, all in your faceWassup, just feel the bassDrop it, rock it, down the roomShake it, quake it, spaceKABOOMJust work that body, work that bodyMake sure you don't hurt nobodyGet wild and lose your mindTake this thing into over-timeHey DJ, TURN IT UP QCD, gon' burn it upC'mon y'all get on the floorSo hey, let's go a'ightEverybody get up it's time to slam nowWe got a real jam goin' downWelcome to the Space JamHere's your chance, do your danceAt the Space Jam alrightWave your hands in the air if you feel fineWe're gonna take it into overtimeWelcome to the Space JamHere's your chance, do your danceAt the Space Jam alrightC'mon it's time to get hyped say "Hoop there it is"C'mon all the fellas say "Hoop there it is"C'mon one time for the ladies say "Hoop there it is"Now all the fellas say "Hoop there it is"C'mon and run, baby runC'mon, c'mon, do it, run baby runYeah, you want a hoop, so shoot, baby shootOh, it's time to hoop, so shoot, baby shootC'mon and slam, and welcome to the jamC'mon and slam, if you wanna jamC'mon and slam, and welcome to the jamC'mon and slam, if you wanna jamSlam, Bam, Thank you ma'amGet on the floor and jamIt's the QCD on the microphoneGirl you got me in the zoneC'mon, c'mon and start the gameBreak it down an' tell me your nameWe the team, I'm the coachLet's dance all night from coast to coastJust slide, from left to rightJust slide, yourself the nightQCD, drop the base 3-point-1 all in your faceJam on it, let's have some funJam on it, one on oneYou run the hole and I run the "D"So c'mon baby just jam for meEverybody get up it's time to slam nowWe got a real jam goin' downWelcome to the Space JamHere's your chance, do your danceAt the Space Jam alrightWave your hands in the air if you feel fineWe're gonna take it into overtimeWelcome to the Space JamHere's your chance, do your danceAt the Space Jam alrightHey ladies! "Yah" Y'all ready stop? "NO!"Y'all wanna know why? "Why?"'Cause it's a Slam Jam Fellas"Yah" Y'all ready to stop "NO!"Y'all wanna know why? "Why?"'Cause it's time to Slam JamEverybody get up it's time to slam nowWe got a real jam goin' downWelcome to the Space JamHere's your chance, do your danceAt the Space Jam alrightWave your hands in the air if you feel fineWe're gonna take it into overtimeWelcome to the Space JamHere's your chance, do your danceAt the Space Jam alrightC'mon, everybody say "Nah Nah Nah Nah Nah"C'mon, C'mon let me hear you say "Hey ey ey O"C'mon, C'mon everybody "Nah Nah Nah Nah Nah"Just take the time to say "Hey ey ey O"Check it out, Check it outY'all ready for this? (You know it)Nah... y'all ain't ready!Y'all ready for this? (You know it)C'mon check it out, Y'all ready to jam? (You know it)Nah... I, I don't think soY'all ready to jam? (You know it)C'mon

We share some exclusive details about the Linux-powered gear that just landed on Mars, and the open-source frameworks that make it possible. Plus a major new feature coming to a Linux distro near you.

We share some exclusive details about the Linux-powered gear that just landed on Mars, and the open-source frameworks that make it possible. Plus a major new feature coming to a Linux distro near you.

We share some exclusive details about the Linux-powered gear that just landed on Mars, and the open-source frameworks that make it possible. Plus a major new feature coming to a Linux distro near you.

Kubernetes における Container Runtime として Docker（正確には dockershim）が Deprecated になりました。それをきっかけに、コンテナ標準化の現状や Kubernetes における Container Runtime Interface (CRI）の立ち位置について話しました。 https://kubernetes.io/blog/2020/12/02/dont-panic-kubernetes-and-docker/ https://kubernetes.io/blog/2016/12/container-runtime-interface-cri-in-kubernetes/ https://opencontainers.org/ https://github.com/opencontainers/image-spec https://github.com/opencontainers/runtime-spec https://github.com/opencontainers/distribution-spec https://github.com/opencontainers/runc https://github.com/containerd/containerd https://github.com/cri-o/cri-o https://south37.hatenablog.com/entry/2020/12/07/%E3%82%B3%E3%83%B3%E3%83%86%E3%83%8A%E6%A8%99%E6%BA%96%E5%8C%96%E3%81%AE%E7%8F%BE%E7%8A%B6%E3%81%A8_Kubernetes_%E3%81%A8%E3%81%AE%E9%96%A2%E4%BF%82%E6%80%A7%E3%81%AB%E3%81%A4%E3%81%84%E3%81%A6 --- Send in a voice message: https://anchor.fm/pod-de-engineer/message

According to a South Korean diplomat, the leader of North Korea is in a coma. How reliable is this information? Meanwhile in the U.S., the RUNC is underway but the Trump team lost Kellyanne Conway  Guest: Elliot Tepper, Emeritus Professor of Political science, Carleton University

Nomad - https://www.nomadproject.ioNomad Documentation - https://www.nomadproject.io/docsNomad GitHub Repo - https://github.com/hashicorp/nomadUse Case: Cloudflare How we use Nomad - https://blog.cloudflare.com/how-we-use-hashicorp-nomad/What is Nomad - A Scheduler built by Hashicorp for containers, VM's bare metal applications, and moreHow does it work? - A simple binary is downloaded and interfaces to your Container engineer (RunC, Docker, QMEU, Java, or others)What do you get out of the box - A fully functioning orchestrator with little hassle to setup Server - Scheduling, maintains jobs and clients and replication between servers Client - is where the workload runs  Fully functioning Cluster  Admin UI  Lightweight (only 35mb)  Anywhere  Run batch jobs  Windows  Manage non-containerized applications  ACL  Federation of multiple regions into a single cluster 

This week we cover security updates for Django, runC and SQLite, plus Alex and Joe discuss the AMD speculative execution Take A Way attack and we look at some recent blog posts by the team too.

containerd was born from community desire for a core, standalone runtime to act as a piece of plumbing that applications like Kubernetes could use. It sits between command line tools like Docker, which it was spun out from, and lower-level runtimes like runC or gVisor, which execute the container’s code. This week’s guest is Derek McGowan, a Software Engineer at Docker and a containerd maintainer-d. Along with the news of the week, Adam and Craig discuss the many Vancouvers. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Vancouver, Vancouver, and George Vancouver South Bend, North Bend, and Bend Cosmpolis “50 Year Sensation: the Dave McMacken Retrospective” (album art show in Astoria, Oregon) News of the week Istio 1.3 is out Google’s Anthos now incudes Anthos Service Mesh, Cloud Run for Anthos and more Cloud Native Application Bundles hit 1.0 Episode 61 with Ralph Squillace and Jeremy Rickard Nominations for the annual CNCF Community Awards Bloomberg hits 90% utilization with Kubernetes Mistakes that “cost” thousands by Gajus Kuizinas Kubernetes Edge working group publishes whitepaper Isopod, by Cruise Pulumi 1.0 5 RBAC mistakes you must avoid (number 4 will shock you) OpenShift 4.2 disconnected install Red Hat Quay 3.1 Microsoft AKS brings Scale Sets and Standard LB to GA Upstream kernel bugs Amazom EKS adds cluster tagging and IAM roles for service accounts Deep dive into AWS Fargate by Abhisheck Ray from Amazon Kong introduces Kuma, “universal service mesh” Google introduces Cloud Dataproc for Kubernetes Apache Flink operator from Google Cloud Container runtime security bypasses on Falco by Mark “Antitree” Manning Rafay Systems lands $8m in Series A funding Links from the interview containerd Original announcement The many meanings of ‘container runtime’ kubelet and Container Runtime Interfaces runC, gVisor, Kata Containers, and the Windows Host Compute Service (HCS) ctr debug tool containerd’s graduation from the CNCF containerd shim API gVisor shim Firecracker containerd integration Kata Containers shim Windows Container shim rkt announced in 2014 with appC spec Open Container Initiative libcontainer, which became runC Web Assembly (WASM) BuildKit 1.3.0 releases are coming Contribution opportunities: Reporting issues Plugin ecosystem Derek McGowan and containerd on Twitter

Llegó el café informativo de sysarmy. Noticias del mundo Linux, Administración de sistemas y DevOps, mezclado con novedades sobre eventos, meetups, etc. == Pedí tus remeras y merchandising de sysarmy == remeras[at]sysarmy.com.ar == Búsquedas laborales == Medallia: Software Engineer - backend: http://bit.ly/2CzlsWI Mulesoft: Devops Engineer (AWS, Saltstack, Scripting): http://bit.ly/2WmZuO1 Elementum: DevOps Engineers (Terraform, Linux, AWS, Docker): http://bit.ly/2Fzbt5z Avature: Developers (mobile - PHP - Java): http://bit.ly/2HTeJKz OLX: Sr. DevOps Engineer (Cloud, Orchestration, Docker, Kubernetes): http://bit.ly/2Fzcz1q Percona: Kubernetes Engineer, Senior Mysql DBA: http://bit.ly/2FAMxL6 == En este episodio == Charlamos de las noticias de los últimos meses porque pasó de todo. Descubrimos que Winrar no solo tiene 500 millones de usuarios activos, sino que ademas tiene un bug hace 19 años. Siguen apareciendo vulnerabilidades en los procesadores Intel, mientras tanto MySpace elimina "Sin Querer" millones de canciones en una migración "no exitosa". Spotify Vs Apple por el negocio de la música en streaming, F5 compra Nginx y muchisimas cosas más en este episodio que marca la vuelta de Polemica en /var. == Mencionados en este episodio == Bug de 19 años en winrar: https://amp.thehackernews.com/thn/2019/02/winrar-malware-exploit.html?__twitter_impression=true Otra falla de Intel: SPOILER: https://www.theregister.co.uk/AMP/2019/03/05/spoiler_intel_processor_flaw/ Security vulnerability has been disclosed for a flaw in RUNC: https://www.zdnet.com/article/doomsday-docker-security-hole-uncovered/ MySpace pierde 50millones de canciones: https://twitter.com/waxpancake/status/1107442118643994624?s=19 Internet archive va a guardar los posts de Google+: https://m.slashdot.org/story/353396 Microsoft borra data de sql servers en azure: https://www.theregister.co.uk/AMP/2019/01/30/azure_sql_delete/?__twitter_impression=true Update frena autos una hora: https://www.xataka.com/vehiculos/coche-electrico-nio-se-queda-parado-hora-pleno-atasco-actualizacion-software 737max crashes not because of software: https://twitter.com/trevorsumner/status/1106934362531155974?s=19 Spotify vs Apple: https://www.timetoplayfair.com/timeline/ F5 compra nginx: https://m.slashdot.org/story/353372 Nadie se presenta para las elecciones anuales de leader de Debian: https://m.slashdot.org/story/353376 == Eventos y meetups == Percona University (25/4 en Área 3, registro abierto): PERCONA MONITORING AND MANAGEMENT 101 Performance Review Percona Toolkit Keynote PZ: opensource databases one for each workload. Encuesta de sueldos y openqube Museo de lnformatica de Buenos Aires: Abrió la nueva muestra R/Evolución. == Organizaciones amigas == Museo de Informática: http://museodeinformatica.org.ar/ Museo de Informática en Facebook: https://goo.gl/TaASu3 == Encontranos en == Web: http://sysar.my Twitter: @sysarmy Facebook: https://goo.gl/tGcpcw IRC en Freenode: #sysarmy Youtube: youtube.com/c/SysarmyAr Ivoox: https://goo.gl/GtISQ9 Pocketcast: http://pca.st/D3H0 iTunes: https://goo.gl/Nrt22g Spotify: https://open.spotify.com/show/4aSX6qC... == Conducen este episodio == Ariel Jolo: @ajolo Jorge Abreu: @ar_jorge1987 Regina Loustau: @Rhapsody_Girl Eduardo Casarero: @jedux

Un épisode avec des news on ne peut plus fraîches puisqu’Antonio, Audrey et Vincent y parlent de Quarkus, mais aussi d’Elastic, de web et de sécu, mais aussi quelques réflexions sur le métier de développeur. Enregistré le 8 mars 2019 Téléchargement de l’épisode LesCastCodeurs-Episode–206.mp3 News Langages JDK12 First Release Candidate Java is Still Free 2.0.0 Quarkus Quarkus is here! Introducing Quarkus: a next-generation Kubernetes native Java framework Frameworks Spring Boot 2.1.3 available now Middleware Lancement de la Suite Elastic 6.6.0 Apache Kafka leaves the zoo Infrastructure Secret Design Docs: Multi-Tenant Orchestrator Web A plan for version 8.0 and Ivy Funding ESLint’s Future Announcing the Ionic React Beta Authentication in SPA (ReactJS and VueJS) the right way Méthodologies Arnaud Lemaire - Entre industrialisation et artisanat, le métier de développeur Journée de travail, ou journée au travail ? Sécurité Top ten most popular docker images each contain at least 30 vulnerabilities CVE–2019–3778: Spring Security OAuth 2.3.5, 2.2.4, 2.1.4, 2.0.17 Released Kubernetes Security Announcement - v1.11.8, 1.12.6, 1.13.4 released to address medium severity CVE–2019–1002100 Runc and CVE–2019–5736 Loi, société et organisation Ligue du LOL, contenus haineux en ligne, anonymat et pseudonymat Ligue du LOL : 3 questions sur l’anonymat et le pseudonymat sur Internet La Ligue des Ordures vient de sortir et ce n’est pas le nouveau Marvel Plan d’action contre les contenus haineux en ligne Directive droit d’auteur : les articles 11 et 13 ont été finalisés et c’est peut-être le moment de paniquer The text of Article 13 and the EU Copyright Directive has just been finalised Facebook ordered to stop combining WhatsApp and Instagram data without consent in Germany Outils de l’épisode Welcome to the universe of HyperText Clance Impostor Phenomenon Test Rubrique débutant Every Linux networking tool I know Conférences Breizh Camp du 20 au 22 mars 2019 Greach (Madrid) du 28 au 30 Mars 2019 Devoxx France du 17 au 19 avril 2019 - sold out VoxxedCERN le 1er mai 2019 Riviera Dev du 15 au 17 mai 2019 NCrafts les 16 et 17 mai 2019 Mix-it les 23 et 24 mai 2019 BestOfWeb les 6 et 7 juin 2019 DevFest Lille le 14 juin 2019 - Le CfP est ouvert. Voxxed Days Luxembourg les 20 et 21 juin 2019 Sunny Tech les 27 & 28 juin 2019 à Montpellier Nous contacter Soutenez Les Cast Codeurs sur Patreon https://www.patreon.com/LesCastCodeurs Faire un crowdcast ou une crowdquestion Contactez-nous via twitter https://twitter.com/lescastcodeurs sur le groupe Google https://groups.google.com/group/lescastcodeurs ou sur le site web https://lescastcodeurs.com/  

Kubernetes has a number of mechanisms to enforce policy: some built-in, like quota and NetworkPolicy; some extensions or add-ons like OPA. John Murray, a product manager at Google Cloud, joins Craig and Adam to talk about policy and configuration, and introduce the new CSP Config Management tool launched to Beta along with the new Cloud Services Platform. Do you have something cool to share? Some questions? Let us know: web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Adam is in the news! Cat Lady Craig’s Oscar prediction and Rami Malek’s incident News of the week Google brings Cloud Services Platform to Beta Application Modernization and the Decoupling of Infrastructure Services and Teams by Eric Brewer and Jennifer Lin Developer preview of OpenShift v4 Knative v0.4 Update to Azure DevOps Projects support for Azure Kubernetes Service The service mesh era: Securing your environment with Istio by Samrat Ray of Google Cloud Cloud Native DevOps with Kubernetes by John Arundel and Justin Domingus Get it free* from NGINX All new Reddit services run on Kubernetes Breaking Docker via runC by Yuval Avrahami of Twistlock Secure Kubernetes with Vault by Bjorn Wenzel Migrating from Heroku to GKE How to prepare for a Kubernetes interview Adding “containers” to Linux Links from the interview ResourceQuota, PodSecurityPolicy and NetworkPolicy Open Policy Agent Kubernetes integration CSP Config Management Take control of your clusters with CSP Config Management (blog post) John Murray on Twitter

In this episode, Yuval from Twistlock Labs explains the details of the CVE discovered in RunC, two ways that it can be exploited, and what the fix looks like. Read this blog post for details and code links:https://www.twistlock.com/labs-blog/breaking-docker-via-runc-explaining-cve-2019-5736/

Episode 11 This week we have special guest Corey Quinn (twitter: @quinnypig).  We talk about Googles Culture, Managed Database Services, Amazon HQ2. Plus the world famous lightning round and Jonathan’s cool tools. Sponsors: Foghorn Consulting: fogops.io/thecloudpod Audible: audibletrial.com/thecloudpod Follow Up Azure security center helps protect you from RunC vulnerability – https://azure.microsoft.com/en-us/blog/how-azure-security-center-helps-you-protect-your-environment-from-new-vulnerabilities/ Ballmer's Clippers select AWS in the first round for their public cloud partner https://www.geekwire.com/2019/steve-ballmers-los-angeles-clippers-sign-cloud-deal-microsoft-rival-amazon-web-services/ News Google Cloud Security talks at RSA – https://cloud.google.com/blog/products/identity-security/announcing-google-cloud-security-talks-during-rsa-conference-2019 Liz Fong-Jones posts about her decision to leave Google and the toxic culture – https://medium.com/s/story/google-workers-lost-a-leader-but-the-fight-will-continue-c487aa5fd2ba Digital Ocean launches Managed Database Service  – https://siliconangle.com/2019/02/14/expanding-cloud-platform-digitalocean-launches-managed-database-service/ https://blog.digitalocean.com/announcing-managed-databases-for-postgresql/ Amazon introduces Lower cost storage class for EFS – https://aws.amazon.com/about-aws/whats-new/2019/02/amazon-efs-introduces-lower-cost-storage-class/ Amazon drops plans for New York (Queens) HQ2 – https://techcrunch.com/2019/02/14/amazon-drops-plans-for-new-york-hq2/ Azure releases Monitoring at Scale Features with Multi-resource metric alerts –

2/21/19 RunC; CoAP; Smartphone Ban; Internet Weather | AT&T ThreatTraq

Why it's way too easy to sell counterfeit goods on amazon, how to defend against the runC container vulnerability, creating a dream team for the new age of cyber security, how you can get a windows 95 emulator for Windows 10, Linux, or MAC, DEF CON goes to Washington, and InfoSec institutes top podcasts that take your computer skills to the next level! Full Show Notes: https://wiki.securityweekly.com/Episode594 Follow us on Twitter: https://www.twitter.com/securityweekly

In this episode, I talk about the recent Docker runc vulnerability and what you need to do about it.

Know What You Are Logging https://isc.sans.edu/forums/diary/Know+What+You+Are+Logging/24656/ Spectre Software Mitigation Insufficient https://arxiv.org/pdf/1902.05178.pdf VMWare Releases Update To Address runc Vulnerability https://www.vmware.com/security/advisories/VMSA-2019-0001.html Swedish Healthcare Breach Leaks Phone call Recordings https://computersweden.idg.se/2.2683/1.714787/inspelade-samtal-1177-vardguiden-oskyddade-internet

This week, Google paid out $3.4 million for vulnerabilities reported in 2018, hackers target WordPress sites via WP cost estimation plugin, Facebook paid $25,000 for CSRF exploit that leads to Account Takeover, and PoC Exploit Code for recent container escape flaw in runc published online! Jason Wood from Paladin Security joins us for expert commentary on Apple being sued over their two factor authentication!   Full Show Notes: https://wiki.securityweekly.com/HNNEpisode208 Visit https://www.securityweekly.com/hnn for all the latest episodes!   Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

This week, Google paid out $3.4 million for vulnerabilities reported in 2018, hackers target WordPress sites via WP cost estimation plugin, Facebook paid $25,000 for CSRF exploit that leads to Account Takeover, and PoC Exploit Code for recent container escape flaw in runc published online! Jason Wood from Paladin Security joins us for expert commentary on Apple being sued over their two factor authentication!   Full Show Notes: https://wiki.securityweekly.com/HNNEpisode208 Visit https://www.securityweekly.com/hnn for all the latest episodes!   Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

OBS Studio, Compiz 0.9, Ubuntu, Debian, MX Linux, runc Flaw, Windows 95 App | This Week in Linux 55 On this episode of This Week in Linux, we check out some App News for the upcoming OBS Studio 23.0 and the recent release of Taskbook 0.3. We’ll cover some Distro News with Ubuntu 18.04.2, Debian… Read more

Why it's way too easy to sell counterfeit goods on amazon, how to defend against the runC container vulnerability, creating a dream team for the new age of cyber security, how you can get a windows 95 emulator for Windows 10, Linux, or MAC, DEF CON goes to Washington, and InfoSec institutes top podcasts that take your computer skills to the next level! Full Show Notes: https://wiki.securityweekly.com/Episode594 Follow us on Twitter: https://www.twitter.com/securityweekly

Know What You Are Logging https://isc.sans.edu/forums/diary/Know+What+You+Are+Logging/24656/ Spectre Software Mitigation Insufficient https://arxiv.org/pdf/1902.05178.pdf VMWare Releases Update To Address runc Vulnerability https://www.vmware.com/security/advisories/VMSA-2019-0001.html Swedish Healthcare Breach Leaks Phone call Recordings https://computersweden.idg.se/2.2683/1.714787/inspelade-samtal-1177-vardguiden-oskyddade-internet

Om Shownotes ser konstiga ut så finns de på webben här också: https://www.enlitenpoddomint.se/e/en-liten-podd-om-it-avsnitt-202  Detta är avsnitt 202 och spelades in den 20 januari 2019, och eftersom att under extrem stress kan vissa bläckfiskar äta upp sina egna armar så handlar dagens avsnitt om:   FEEDBACK OCH BACKLOG: * Mats har jobbat med incidenter, Björn har jobbat med influenser, Johan har jobbat illmariga barn (ett annats sätt att försöka säga att han VABat men på ett tragiskt sätt ändå tvinga sig själv att använda ett ord på "i") * Google takeout. Tjänsten för att plocka ut en kopia på allt som google vet om dig * Taxi Göteborg har visst ett bonusprogram. We stand corrected! Det finns tydligen taxibolag som har bonusprogram precis som flygbolagen har * Stockholmstad vill inte köpa tillbaka tomträtten av Apple  * Artikel 11 och 13 är på tapeten igen.     * länk 1: https://teknikveckan.com/nyheter/nya-regler-forandrar-den-digitala-kartan-2/      * länk 2: https://www.99.se/artikel/12355-eu-enas-om-kontroversiell-lankskatt  * Kina kör vidare på att ta sig rätten att avlyssna, samla information å sånt. * nu säger Mats att 2FA inte längre är säkert...      * BONUSLÄNK: Githublänk: https://github.com/drk1wi/Modlishka  * En bugg i RunC för er som kör Docker (gäller även kubernetes och så vidare).       MICROSOFT * Nu kan man få börja testa ända fram i Windows 10 20H1 * Windows 10 20H1 testar man att kunna accessa WSL filer direkt i Explorer     APPLE * Apple kommer att ändra hårdvaran för att få sälja i Tyskland      * BONUSLÄNK: Hur många telerfoner har sålts per år i tyskland      * BONUSLÄNK: marketshare för telefoner i Tyskland      * BONUSLÄNK: wikipedia artikel om iphone när olika versioner släpts osv     GOOGLE * Ny kryptering för lagring som heter Adiantum. Bra för telefoner med lägre prestanda * OnePlus lägger in Google Duo i OxygenOS * Chrome OS ska få virtuella desktops. Bra eller anus?     ÖVRIGA NYHETER * Snart blir det enklare att använda Swich i butiker  * Tele2 har fått kritik för att obegränsat enligt Tele2 inte är obegränsat  * Johan är sur på DRM från HP... för att det är inte okej att blockera bläckpatroner hur som helst     LYSSNARFRÅGOR: * Från Jocke om Semla Latten (Tragiskt att varken Johan eller Mats förstår storheten med en Semla Latte!!) * Från Jens om bästa trådlösa hörluren. Under 2000kr samt över 2000kr. Gärna med noice cancel. * Från Jens om Cubbit, men den får vi återkomma om för den tjänsten har vi inte tittat på.     PRYLLISTA: * David: han har redan köpt Munchkin dungeon spelet... så den gills nästan inte * Mats: Ett mekaniskt trådlöst tangentbord. * Björn: Ryggsäck med tetris! Jag skiter i om den är bra.  * Johan: En surfplatta och en uppkopplad ring     EGNA LÄNKAR: * En Liten Podd Om IT på webben * En Liten Podd Om IT på Facebook     LÄNKAR TILL VART MAN HITTAR PODDEN FÖR ATT LYSSNA: * Apple Podcaster (iTunes) * Overcast * Acast * Spotify * Stitcher Tack för att du har orkat läsa ända hit!!

Josh and Kurt talk about the new runc container security flaw. How does the flaw work, what can you do about it, what should you do about it, and what the future of container security may look like.

This week, we welcome Harry Sverdlove, Chief Technology Officer of Edgewise for an interview, to talk about The Future of Firewalls! In the Technical Segment, we discuss some Enterprise-ish Network Security hardware and software that we've incorporated here in our Security Weekly Studio! In the Security News, why it's way too easy to sell counterfeit goods on Amazon, how to defend against the runC container vulnerability, creating a dream team for the new age of cyber security, how you can get a Windows 95 emulator for Windows 10, Linux, or MAC, DEF CON goes to Washington, and InfoSec institutes top podcasts that take your computer skills to the next level!   Full Show Notes: https://wiki.securityweekly.com/Episode594 To learn more about Edgewise, visit: https://www.edgewise.net/security-weekly Visit https://www.securityweekly.com/psw for all the latest episodes!   Visit https://securityweekly.com/acm to sign up for a demo or buy our AI Hunter! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

This week, we welcome Harry Sverdlove, Chief Technology Officer of Edgewise for an interview, to talk about The Future of Firewalls! In the Technical Segment, we discuss some Enterprise-ish Network Security hardware and software that we've incorporated here in our Security Weekly Studio! In the Security News, why it's way too easy to sell counterfeit goods on Amazon, how to defend against the runC container vulnerability, creating a dream team for the new age of cyber security, how you can get a Windows 95 emulator for Windows 10, Linux, or MAC, DEF CON goes to Washington, and InfoSec institutes top podcasts that take your computer skills to the next level!   Full Show Notes: https://wiki.securityweekly.com/Episode594 To learn more about Edgewise, visit: https://www.edgewise.net/security-weekly Visit https://www.securityweekly.com/psw for all the latest episodes!   Visit https://securityweekly.com/acm to sign up for a demo or buy our AI Hunter! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly

Google‘s plan will include geographic and workforce expansion. Kubernetes, Docker, and containerd impacted by the runC runtime bug. Mirantis‘ multi-year AT&T deal is for eight-figures. Learn more about your ad choices. Visit megaphone.fm/adchoices

Google‘s plan will include geographic and workforce expansion. Kubernetes, Docker, and containerd impacted by the runC runtime bug. Mirantis‘ multi-year AT&T deal is for eight-figures.

The hype around a new security flaw hits new levels. Fedora has a bunch of news, and we discover what's new in the latest Plasma release. Plus we fall down the openSUSE rabbit hole when Ell updates us on her desktop challenge. Special Guests: Alan Pope, Brent Gervais, Daniel Fore, Ell Marquez, Martin Wimpress, and Neal Gompa.

In this special episode of the Cloud Native Security Podcast, we discuss the RunC and Docker vulnerability discovered yesterday: CVE-2019-5736.See our blog post that details the CVE, how it affects containers and potential risks if someone is able to exploit it, as well as way to mitigate the risk:https://www.twistlock.com/2019/02/11/how-to-mitigate-cve-2019-5736-in-runc-and-docker/

A daily look at the relevant information security news from overnight.Episode 82 - 12 February, 2019RUNC root access vuln - https://www.bleepingcomputer.com/news/security/runc-vulnerability-gives-attackers-root-access-on-docker-kubernetes-hosts/Aussie home loan breach - https://www.smh.com.au/business/companies/home-loan-details-in-major-data-breach-20190212-p50xas.html?ref=rss&utm_medium=rss&utm_source=rss_feedQNAP host file issue - https://www.theregister.co.uk/2019/02/11/qnap_hosts_file_issues/Adobe temp patches - https://threatpost.com/temporary-patch-released-for-adobe-reader-zero-day/141701/US email provider completely wiped - https://www.zdnet.com/article/hackers-wipe-us-servers-of-email-provider-vfemail/

Severe Docker runc Vulnerability https://seclists.org/oss-sec/2019/q1/119 MacOS Mojave Privacy Flaw https://lapcatsoftware.com/articles/mojave-privacy3.html Android Malware Steals Crypto Addresses from Clipboard https://www.welivesecurity.com/2019/02/08/first-clipper-malware-google-play/ Not An E-Mail Virus, Just Intersting Malware https://isc.sans.edu/forums/diary/Have+You+Seen+an+Email+Virus+Recently/24634/

Severe Docker runc Vulnerability https://seclists.org/oss-sec/2019/q1/119 MacOS Mojave Privacy Flaw https://lapcatsoftware.com/articles/mojave-privacy3.html Android Malware Steals Crypto Addresses from Clipboard https://www.welivesecurity.com/2019/02/08/first-clipper-malware-google-play/ Not An E-Mail Virus, Just Intersting Malware https://isc.sans.edu/forums/diary/Have+You+Seen+an+Email+Virus+Recently/24634/

In this episode of the Cloud Native Security Podcast, we dive in with Liron and Eran from our R&D team to go through the process of debugging a unique customer error, determine the origin of the problem, and ultimately help to resolve a bug in Runc.

Šī ir pilna sarunas versija (ierakstītais video materiāls tehniski iemeslu dēļ ir tikai 1 stundu garš un ir pieejams podkāsta Tauta youtube, facebook un draugiem.lv lapās). Ciemos ir atbraukuši divi latviešu puiši, kuri ar savu entuziasmu uztur dažādus medijus, orientētus uz Lielbritānijā dzīvojošajiem latviešiem > Kaspars Miklasevičs - Mēs Esam Šeit kā arī bezpeļņas organizācija "Latvians in the UK" un Jānis Triblis-Runcītis, kurš jau daudzus gadus uztur un attīsta Radio ONFM. Patīkamu klausīšanos, Helmuts podkāsts Tauta

podkāsts Tauta - Helmuts Meškonis

podraide Tauta

Čau, čau, Šoreiz sen, sen plānotā saruna ar Lielbritājias latviešu radio ONFM dibinātāju Jāni Tribli-Runcīti. Jānis stāsta par sevi, savu sirdslietu radio ONFM, savu pieredzi ar tādiem Latvijas mēdijiem kā SWH, Boom FM un Radio Pieci kā arī pieskaramies Lielbritānijas latviešu mēdijiem. Saruna ritēja ļoti draudzīgā atmosfērā un dažu brīdi iezogas necenzēta leksika, slengs un personīgie viedokļi par vienu un otru tēmu. Ar Jāni varat sazināties caur FaceBook: https://www.facebook.com/janis.triblis.runcitis Sarunas noslēgumā mums skan fantastiska dziesma "Laimīgie Putni Nelido", kuru ir iesūtījusi Latvijas māksliniece Anna Smeltere. Paldies Annai varat pateikt twitterī https://twitter.com/vxxvme kā arī viņas dziesmas var klausīties šeit: https://soundcloud.com/veiksminiecee .. slēdzam iekšā un turpmāk veselu stundu pavadīsiet Jāņa un manā (Helmuta) kompānijā. jauku, jauku dienu,Helmuts Meškonispodkāsts Tauta p.s. :) ak jā - šeit ir saite uz sarunā pieminēto forumu Tauta: http://www.tauta.uk

Новости Как Атлас использует Волт Monitoring scape и постер New Relic’s Docker Monitoring Switching user database on a running system Mesos Sandbox Using Docker Compose RunC Automatically Cleaning Unused Docker Images Using Consul and CloudSlang ну и вообще CloudSlang Periodic table of devops tools Graylog docker native integration Состояние DevOps от PuppetLab Мультфилм «Время Приключений»

DockerCon 2015 har precis gått av stapeln i San Francisco och det betyder att det här avsnittet handlar bara om containrar.  Vi pratar om Docker 1.7, att Docker går över till ett plugin framework, Open Container Project och att libcontainer blir runC. Vi pratar också om VMwares annonsering av Project Bonneville. Länkar:http://venturebeat.com/2015/06/22/everything-announced-at-dockercon-2015/ http://techcrunch.com/2015/06/22/docker-coreos-google-microsoft-amazon-and-others-agree-to-develop-common-container-standard/?ncid=rss http://azure.microsoft.com/blog/2015/06/23/docker-and-microsoft-announce-more-innovation-to-cross-platforms-and-win-hearts http://blogs.vmware.com/cloudnative/introducing-project-bonneville https://www.youtube.com/watch?v=q0Xg7mVOO8o&feature=youtu.be   Tips:  http://thenewstack.io/ https://news.ycombinator.com https://vimeo.com/102167635 http://www.amazon.com/The-Practice-Cloud-System-Administration/dp/032194318X   Medverkande:Markus Eskola, @wimpyfudgeJonas Rosland, @jonasrosland

Naoya Ito さんをゲストに迎えて、Docker, RunC, Elixir, Erlang, プロダクトマネージャーなどについて話しました。 Show Notes 一度死んだ話 Rebuild: 83: Living In A Container (deeeet) App Container and the Open Container Project Open Container Project opencontainers/runc DockerCon 2015 Keynote Videos | Docker Blog Elixir Elixir - The next big language for the web Jose Valim，Rubyにおける並行プログラミングのためのいくつかのアイデアを提案 Phoenix The Changelog #147: Elixir and Phoenix with Chris McCord Rails 5 Action Cable Concurrency in Erlang & Scala: The Actor Model The WhatsApp Architecture Facebook Bought For $19 Billion Crystal 世界で闘うプロダクトマネジャーになるための本 Cracking the PM Interview Webディレクター - Webクリエイター用語集 A Product Manager’s Musings Making It Right: Product Management For A Startup World VP Of Product Michael Sippey Is Leaving Twitter What is a Chief Product Officer?

Nous venons de tourner un nouveau SECHebdo en live sur Youtube. Comme d’habitude, si vous avez raté l’enregistrement, vous pouvez le retrouver sur notre chaîne Youtube (vidéo ci-dessus) ou bien au format podcast audio : Au sommaire de cette émission : (à faire) { "options": { "theme": "default" }, "extensions": { "ChapterMarks": { "disabled": false }, "EpisodeInfo": {}, "Playlist": { "disabled": true }, "Transcript": { "disabled": true } }, "