Podcasts about suricata

  • 33PODCASTS
  • 44EPISODES
  • 50mAVG DURATION
  • ?INFREQUENT EPISODES
  • Mar 3, 2025LATEST
suricata

POPULARITY

20172018201920202021202220232024


Best podcasts about suricata

Latest podcast episodes about suricata

Open Source Security Podcast
Open Source Foundations with Kelley Misata of Suricata

Open Source Security Podcast

Play Episode Listen Later Mar 3, 2025 31:45


In this episode Open Source Security talks to Dr. Kelly Masada about the Open Information Security Foundation (OISF). The way OISF is managing Suricata through a foundation is super interesting. There are a lot of lessons in this one for both open source projects and existing open source foundations.   The blog post for this episode can be found at https://opensourcesecurity.io/2025/2025-03-oss_foundations_kelley_misata/

Cyber Morning Call
612 - Afiliados do ransomware Qilin estão roubando credenciais no Chrome

Cyber Morning Call

Play Episode Listen Later Aug 26, 2024 5:52


[Referências do Episódio] PEAKLIGHT: Decoding the Stealthy Memory-Only Malware - https://cloud.google.com/blog/topics/threat-intelligence/peaklight-decoding-stealthy-memory-only-malware/  From the Depths: Analyzing the Cthulhu Stealer Malware for macOS - https://www.cadosecurity.com/blog/from-the-depths-analyzing-the-cthulhu-stealer-malware-for-macos  Qilin ransomware caught stealing credentials stored in Google Chrome - https://news.sophos.com/en-us/2024/08/22/qilin-ransomware-caught-stealing-credentials-stored-in-google-chrome/  Russian laundering millions for Lazarus hackers arrested in Argentina - https://www.bleepingcomputer.com/news/legal/russian-laundering-millions-for-lazarus-hackers-arrested-in-argentina/  Memory corruption vulnerabilities in Suricata and FreeRDP - https://securelist.com/suricata-freerdp-memory-corruption/113489/  Memory corruption vulnerabilities in Suricata and FreeRDP - https://securelist.com/suricata-freerdp-memory-corruption/113489/ NGate Android malware relays NFC traffic to steal cash - https://www.welivesecurity.com/en/eset-research/ngate-android-malware-relays-nfc-traffic-to-steal-cash/  Bling Libra's Tactical Evolution: The Threat Actor Group Behind ShinyHunters Ransomware - https://unit42.paloaltonetworks.com/shinyhunters-ransomware-extortion/  France police arrested Telegram CEO Pavel Durov - https://securityaffairs.com/167556/cyber-crime/police-arrested-telegram-ceo-pavel-durov.html  Roteiro e apresentação: Carlos Cabral e Bianca Oliveira Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia

TsugiMag
Let's Dance - The Luluxpo Radio Show (Décembre)

TsugiMag

Play Episode Listen Later Dec 22, 2023 90:26


Playlist Let's Dance n°467 - Tsugi Radio (Saison 17 Show 04) 22.12.2023 01 Nese Karabocek "Yali Yali (Todd Terje Edit)" Discolypso 2023 02 Bardelas "Shalom" New Day Everyday 2023 03 Dina Summer "Dominator (Bufi Remix)" Audiolith 2023 04 Aimes "Quirked" Night Noise 2019 05 Red Axes "Goodbye Mary" Fabric Records 2023 06 Claap! "Regarde" La Belle Records 2020 07 Zongamin "Hotel 17" Kitsuné 2003 08 Yuksek feat. Confidence Man "Gorgeous (Jack Burton Remix)" Sweat It Out 2023 09 Red Axes "Outside In" Fabric Records 2023 10 Eftersom "To Do" Paradise Children Records 2023 11 Mirwais "I Can't Wait" Naïve 2000 12 Suricata "Algo Para La Fiesta (Alma & Mater Remix)" Ancient Future Now 2023 13 Baby's Berserk "Rum 'n' Kola (Sam Ruffillo Remix)" Toy Tonics 2023 14 Captain Mustache feat. Arnaud Rebotini "I Love Watching U" Kompakt 2023 15 WhoMadeWho "Hi & Low (Santiago Garcia & Animal Picnic Remix)" Get Physical 2019 16 Giorgio Moroder "E=MC2 (Baldelli & Dionigi Remix)" MB Disco 2011 17 Adolpho & Franky "Seven" Folklor Nation 2023 18 Psycho Weazel feat. Local Suicide "Matra Murena (Motor Solo Mix)" Iptamenos Discos 2023 19 Rone " Parade" In Finé 2012 20 Red Axes "Here In The Sky" Fabric Records 2023

NoLimitSecu
Suricata

NoLimitSecu

Play Episode Listen Later Nov 12, 2023 29:01


Episode #433 consacré à Suricata  Avec Eric Leblond  Références :   Homepage de Suricata: https://suricata.io/Le livre « The Security Analyst's Guide to Suricata »: https://www.stamus-networks.com/suricata-4-analystsRedmine de l'oisf: https://redmine.openinfosecfoundation.org/SSTIC 2023, Attaques de type Supply Chain sur Suricata : https://www.sstic.org/2023/presentation/attaque_supply_chain_suricata/       The post Suricata appeared first on NoLimitSecu.

Terapia de Casal
TdC #196 - Sobre a suricata do João Baião

Terapia de Casal

Play Episode Listen Later Oct 30, 2023 40:11


Contabilidade actual de livros lançados pelo casal: Rita - 2 Guilherme - 3 O membro masculino do casal adianta-se assim no marcador com a sua nova obra, já em pré-venda, "Que Pouca Vergonha". Quando será que a blogger e escritora, Rita da Nova, irá responder com um segundo romance, e empatar a partida? Fique atento. Fora isso, esta semana falámos de deitar fora champôs vazios, da vergonha do Marco Paulo, da suricata do João Baião, de mostrar à outra pessoa que gostamos dela e de tomar a decisão de morar junto, em casal. Ah, e ainda tivemos tempo de saber como é que a Rita estaciona de costas. Obrigado à Manuela Azevedo e à Vinicia de Morais pelos emails. Façam como elas e enviem questões, problemas e inquietações para terapiadecasalpodcast@gmail.com que responderemos em breve. O tão aclamado livro novo do Guilherme, chamado "Que Pouca Vergonha", já está no site da wook, da fnac e da bertrand. Comprem que dá uma bela prenda de natal. Juro. ________________ Terapia de Casal é o podcast que pode acabar com o casamento do Guilherme Fonseca e da Rita da Nova. Enviem as vossas questões/inquietações/dúvidas amorosas para terapiadecasalpodcast@gmail.com que nós respondemos. Sigam-nos nas redes: @guilhermefon @ritadanova Música de Vitor Carraca Teixeira. Imagem de Carolina Costa. Fotografia de Inês Costa Monteiro. Obrigado por ouvirem.

Música da Casa
Música da Casa 25.07 - 3107

Música da Casa

Play Episode Listen Later Jul 25, 2022 4:08


A Música da Casa começa amanhã com o concerto de final de ano da Academia de Música Valentim de Carvalho. Quinta e sexta feira prosseguem os concertos na esplanada, com entrada livre, às 22:00. Quinta-feira com Suricata, que promovem uma fusão de fado, jazz e blues. Sexta-feira, com Emmy Curl. Ainda na sexta-feira, às 22:00, há concerto de entrada livre em Matosinhos, com Orquestra Jazz de Matosinhos e Rebecca Martin. Sábado, os GNR juntam-se à Orquestra Sinfónica do Porto Casa da Música, para êxitos da banda de Rui Reininho e companhia, em versão sinfónica.  locução: Sónia Borges · produção e sonoplastia: Miguel Sousa 

Túnel de vento
Ep 592 - Drongo, suricata, escorpião frustrado, urso e frigorífico, activista dos atropelamentos

Túnel de vento

Play Episode Listen Later Jun 7, 2022 23:58


Apeadeiros da conversa: .Pássaro e o vidro. .
Urso e o frigorífico. .
Mosquito e a luz. .
E se a avestruz voasse? .
Drongo, o mestre do ludíbrio. .Escorpião frustrado. .
Suricata, o segurança do futuro. .Activista dos atropelamentos. ---- O menino está aqui: Twitter: twitter.com/RobertoGamito Instagram: www.instagram.com/robertogamito Facebook: www.facebook.com/robertogamito Youtube: bit.ly/2LxkfF8

the CYBER5
Holistic Uses of PDNS and BGP Data to Address Intelligence Needs in the Private Sector

the CYBER5

Play Episode Listen Later Apr 6, 2022 39:30


In episode 70 of The Cyber5, we are joined by Open Source Context Director of Operations, Donald McCarthy. We discuss external telemetry available to the private sector, focusing on passive domain name systems or passive DNS, and Border Gateway Protocol or BGP. These data sets are critical for threat intelligence teams, as they often provide crucial information on attacker infrastructure for the SOC. Still, they also help solve problems and provide context on a much broader scale. Three Key Takeaways: 1) What is Passive DNS and how is it collected? To simplify, passive DNS is a way of storing DNS resolution data so that security teams can reference past DNS record values to uncover potential security incidents or discover malicious infrastructures. Passive DNS is the historical phone book of the internet. Practitioners can collect it by: Collecting on the resolver: Have access and enable logging on the resolver, often termed “T-ing the Resolver.” The client-side of the DNS is called a DNS resolver. A resolver is responsible for initiating and sequencing the queries that ultimately leads to a full resolution (translation) of the resource sought, e.g., translation of a domain name into an IP address. DNS resolvers classify data using various query methods, such as recursive, non-recursive, and iterative.  Listening on the wire: DNS is port 53 UDP unencrypted, and many security teams put a sensor like Bro, Onion, Snort, or Suricata that can collect and then parse the data. 2) What is Border Gateway Protocol (BGP)?  BGP is designed to exchange routing and reachability information between autonomous systems on the Internet and is often complementary to passive DNS. If PDNS is the historical phone book of the internet, Border Gateway Protocol (BGP) is the postal service of the Internet. BGP is the protocol that makes the Internet work by enabling data routing. For example, when a user in Thailand loads a website with origin servers in Brazil, BGP is the protocol that allows that communication to happen quickly and efficiently, usually through autonomous systems (ASes). ASes typically belong to Internet service providers (ISPs) or other large organizations, such as tech companies, universities, government agencies, and scientific institutions. Much of this information can be commercially collected and available.  3) Use Cases for PDNS and BGP in the SOC: Identifying attacker or botnet infrastructure. Identifying all internet-facing infrastructure in business use. Identifying tactics, techniques, and procedures of attackers. 4) Use Cases for PDNS and BGP outside of the SOC: Verify internet-facing applications and infrastructure for merger, acquisition, and compromise items for M&A. Verify internet-facing applications, infrastructure, and compromise for suppliers.  Review staging infrastructure of competitors to scan product launches.  Investigate threatening emails to executives. Investigate disinformation websites and infrastructure. 5) Enrichment is King and Does Not Need to Be Resource Intensive If security teams are not engaging with the business to solve problems that risk revenue generation, data sets like PDNS or BGP do not matter.  For example, if an organization does not control DNS at their borders, they will lose a lot of visibility to reduce risk and potentially give away proprietary information.

Open Source Voices
Episode 27: Philippe Humeau - Founder of CrowdSec

Open Source Voices

Play Episode Listen Later Dec 21, 2021 48:25


Philippe Humeau Philippe Humeau is the Founder of CrowdSec, a free, modern & collaborative behavior detection engine, coupled with a global IP reputation network. LinkedIn: https://www.linkedin.com/in/philippehumeau/ Notes: https://crowdsec.net/ https://github.com/crowdsecurity/crowdsec Credits: Music by ikson: https://www.iksonmusic.com Special Guest: Philippe Humeau.

Subtle Frequencies
E35 Mirrors

Subtle Frequencies

Play Episode Listen Later Nov 13, 2021 54:52


At a very young age, I started asking myself "who is that other kid over there?". Some time later, I learned that it was just my reflection and there was no other kid (or was there?). Mirrors have been perplexing and terrifying people (and some animals) for millennia. Fears about "that other me over there" have spawned countless folk tales and superstitions. But, sometimes there is another me other there, and today is the day that I figure out what the other me is up to. Science fact of the day: did you know that meerkats (Suricata suricatta) can make a bunch of different noises and they're all bad to hear? But you know what isn't bad to hear? The song Thirsty Willow by Ac Sapphire. Scope out the rest of her good tunes on bandcamp and maybe give her a follow on the gram (@acsapphire) Content Warning: unreality, gun shots, body swapping rituals, animal sounds, unsurprisingly, we talk about mirrors a lot Support Subtle Frequencies by contributing to their Tip Jar: https://tips.pinecast.com/jar/subtlefrequencies Find out more at https://subtlefrequencies.pinecast.co This podcast is powered by Pinecast.

Paul's Security Weekly TV
Up & Running With Security Onion - PSW #713

Paul's Security Weekly TV

Play Episode Listen Later Oct 9, 2021 41:33


There are many options to choose from when setting up The Security Onion. The use cases are vast, including a NIDS (Zeek, Suricata), HIDS (Beats, Wazuh, osquery) and standalone instances for a SOC workstation and static analysis. I really like SO as a platform to collect all kinds of data from the network and from your systems (some even use the word XDR).   Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw713

running soc xdr suricata security onion
Paul's Security Weekly (Video-Only)
Up & Running With Security Onion - PSW #713

Paul's Security Weekly (Video-Only)

Play Episode Listen Later Oct 8, 2021 41:33


There are many options to choose from when setting up The Security Onion. The use cases are vast, including a NIDS (Zeek, Suricata), HIDS (Beats, Wazuh, osquery) and standalone instances for a SOC workstation and static analysis. I really like SO as a platform to collect all kinds of data from the network and from your systems (some even use the word XDR).   Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw713

running soc xdr suricata security onion
Algarve ao Vivo
Algarve ao Vivo - Suricata

Algarve ao Vivo

Play Episode Listen Later Jul 28, 2021 157:57


Nesta edição recebemos os experientes guitarristas, Tércio Freire e Pedro Gil acompanhados pelo também experiente percussionista Paulo Franco. Juntos dão forma a um projeto instrumental de nome "Suricata".

Secretos con Gabo
Peter San / Suricata

Secretos con Gabo

Play Episode Listen Later May 22, 2021 33:12


Hola! Lo prometido es deuda, aquí mi increíble y divertida plática con Peter San. Les va a fascinar todo lo que platicamos y lo que recordamos, gracias, ahora sí es el antepenúltimo programa. Gracias Peter, fue fantástico conocerte, me la pasé increíble. También le quiero agradecer a Fer Murillo por el apoyo.

tambi suricata
NoLimitSecu
OISF – Suricata

NoLimitSecu

Play Episode Listen Later May 2, 2021 41:32


Episode #318 consacré à l'OISF et à Suricata  Avec Eric Leblond The post OISF – Suricata appeared first on NoLimitSecu.

suricata
Better Than Human
Meerkats: The Cutest, but Most Murderous, Species on the Planet

Better Than Human

Play Episode Play 58 sec Highlight Listen Later Apr 18, 2021 53:08


This week we talk about Meerkats, which Amber picked. Why? Because she read an article about how Meerkats may be the most murderous mammal towards their own species known to science. Meerkat (Suricata suricatta) is a small mongoose found in southern Africa, that will straight up go to war with each other. But regardless of the headlines, Better Than Human still thinks humans are more murderous.Good news everyone! Amber isn’t having Satan’s baby or an Alien baby. (But is that really good news?) Also, don’t shame periods. Meerkats live in packs, with dominant 'breeders' producing most of the offspring, and the subordinate helpers caring for the pups. This division of labor, however, is not as uncompromising like you’d see in ants or bees. The meerkats have an interesting social structure, forming packs with up to 30 individuals. Members do different jobs, including keeping a lookout for predators. They really should be keeping a lookout on themselves cause about one in five meerkats are killed by members of their own species. Listen now to learn more about the homicidal meerkats. For more information on us, visit our website at betterthanhumanpodcast.comFollow us on Twitter @betterthanhuma1on Facebook @betterthanhumanpodcaston Instagram @betterthanhumanpodcaston TikTok  @ https://www.tiktok.com/@l_a_mander https://www.tiktok.com/@betterthanhumanpodcastor Email us at betterthanhumanpodcast@gmail.comWe look forward to hearing from you, and we look forward to you joining our cult of weirdness!#betterthanhuman #cultofweirdness

Pseudo Matador
Episódio 38: Ter um Suricata, Irritação com Sapatilhas, relógios avariados em 1930

Pseudo Matador

Play Episode Listen Later Apr 3, 2021 21:22


Neste belíssimo episódio falou-se de adotar suricatas, irritação com Satan Shoes, ter relógios avariados em 1930

Ship-Talking Podcast
[Ship-Talking Podcast] Episode 15: Tim Davies

Ship-Talking Podcast

Play Episode Listen Later Feb 19, 2021 23:47


Tim Davies, also known around the Trek universe as Suricata, is an artist and ship schematic designer. He joins the Pod this week to chat about creating ships' Master Systems Displays (MSD), LCARS & Okudagrams, and ship interiors & filling in their gaps in schematics. He also shares the work he did around researching the plausibility of the cavernous turbolift system we saw in season three of DSC. An expanded chat with Tim is exclusively available to our patrons at or above the Constitution-class tier on Patreon. Also, your answers to the latest Community Q are discussed, a new question is given, and this week's All Hands on Deck Drill sees the community become Emperor of the Terran Empire for a day. Hailing frequencies are always open at www.shiptalkingpod.com or email hello@shiptalkingpod.com.

BSD Now
383: Scale the tail

BSD Now

Play Episode Listen Later Dec 31, 2020 43:12


FreeBSD Remote Process Plugin Final Milestone achieved, Tailscale for OpenBSD, macOS to FreeBSD migration, monitoring of our OpenBSD machines, OPNsense 20.7.6 released, and more NOTES This episode of BSDNow is brought to you by Tarsnap (https://www.tarsnap.com/bsdnow) Headlines FreeBSD Remote Process Plugin: Final Milestone Achieved (https://www.moritz.systems/blog/freebsd-remote-plugin-final-milestone-achieved/) Moritz Systems have been contracted by the FreeBSD Foundation to modernize the LLDB debugger’s support for FreeBSD. We are working on a new plugin utilizing the more modern client-server layout that is already used by Darwin, Linux, NetBSD and (unofficially) OpenBSD. The new plugin is going to gradually replace the legacy one. Tailscale on OpenBSD (https://rakhesh.com/linux-bsd/tailscale-on-openbsd/) I spent some time setting this up today evening and thought I’d post the steps here. Nothing fancy, just putting together various pieces actually. I assume you know what Tailscale is; if not check out their website. Basically it is a mesh network built on top of Wireguard. Using it you can have all your devices both within your LAN(s) and outside be on one overlay network as if they are all on the same LAN and can talk to each other. It’s my new favourite thing! News Roundup macOS to FreeBSD migration a.k.a why I left macOS (https://antranigv.am/weblog_en/posts/macos_to_freebsd/) This is not a technical documentation for how I migrated from macOS to FreeBSD. This is a high-level for why I migrated from macOS to FreeBSD. Not so long ago, I was using macOS as my daily driver. The main reason why I got a macbook was the underlying BSD Unix and the nice graphics it provides. Also, I have an iPhone. But they were also the same reasons for why I left macOS. Our monitoring of our OpenBSD machines, such as it is (as of November 2020 (https://utcc.utoronto.ca/~cks/space/blog/sysadmin/OurOpenBSDMonitoring) We have a number of OpenBSD firewalls in service (along with some other OpenBSD servers for things like VPN endpoints), and I was recently asked how we monitor PF and overall network traffic on them. I had to disappoint the person who asked with my answer, because right now we mostly don't (although this is starting to change). OPNsense 20.7.6 released (https://opnsense.org/opnsense-20-7-6-released/) This update brings the usual mix of reliability fixes, plugin and third party software updates: FreeBSD, HardenedBSD, PHP, OpenSSH, StrongSwan, Suricata and Syslog-ng amongst others. Please note that Let's Encrypt users need to reissue their certificates manually after upgrading to this version to fix the embedded certificate chain issue with the current signing CA switch going on. NYC Bug Jan 2021 with Michael W. Lucas (https://github.com/BSDNow/bsdnow.tv/blob/master/episodes/383/nycbug) Tarsnap This weeks episode of BSDNow was sponsored by our friends at Tarsnap, the only secure online backup you can trust your data to. Even paranoids need backups. Feedback/Questions cy - .so files (https://github.com/BSDNow/bsdnow.tv/blob/master/episodes/383/feedback/cy%20-%20.so%20files) ben - mixer volume (https://github.com/BSDNow/bsdnow.tv/blob/master/episodes/383/feedback/ben%20-%20mixer%20volume) probono - live cds (https://github.com/BSDNow/bsdnow.tv/blob/master/episodes/383/feedback/probono%20-%20live%20cds) Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv (mailto:feedback@bsdnow.tv) ***

BSD Now
376: Build stable packages

BSD Now

Play Episode Listen Later Nov 12, 2020 46:20


FreeBSD 12.2 is available, ZFS Webinar, Enhancing Syzkaller support for NetBSD, how the OpenBSD -stable packages are built, OPNsense 20.7.4 released, and more NOTES This episode of BSDNow is brought to you by Tarsnap (https://www.tarsnap.com/bsdnow) Headlines FreeBSD 12.2 Release (https://www.freebsd.org/releases/12.2R/relnotes.html) The release notes for FreeBSD 12.2-RELEASE contain a summary of the changes made to the FreeBSD base system on the 12-STABLE development line. This document lists applicable security advisories that were issued since the last release, as well as significant changes to the FreeBSD kernel and userland. Some brief remarks on upgrading are also presented. ZFS Webinar: November 18th (https://klarasystems.com/learning/best-practices-for-optimizing-zfs1/) Join us on November 18th for a live discussion with Allan Jude (VP of Engineering at Klara Inc) in this webinar centred on “best practices of ZFS” Building Your Storage Array – Everything from picking the best hardware to RAID-Z and using mirrors. Keeping up with Data Growth – Expanding and growing your pool, and of course, shrinking with device evacuation. Datasets and Properties – Controlling settings with properties and many other tricks! News Roundup Google Summer of Code 2020: [Final Report] Enhancing Syzkaller support for NetBSD (https://blog.netbsd.org/tnf/entry/google_summer_of_code_20202) Sys2syz would give an extra edge to Syzkaller for NetBSD. It has a potential of efficiently automating the conversion of syscall definitions to syzkaller’s grammar. This can aid in increasing the number of syscalls covered by Syzkaller significantly with the minimum possibility of manual errors. Let’s delve into its internals. How the OpenBSD -stable packages are built (https://dataswamp.org/~solene/2020-10-29-official-openbsd-stable-architecture.html) In this long blog post, I will write about the technical details of the OpenBSD stable packages building infrastructure. I have setup the infrastructure with the help of Theo De Raadt who provided me the hardware in summer 2019, since then, OpenBSD users can upgrade their packages using pkg_add -u for critical updates that has been backported by the contributors. Many thanks to them, without their work there would be no packages to build. Thanks to pea@ who is my backup for operating this infrastructure in case something happens to me. OPNsense 20.7.4 released (https://opnsense.org/opnsense-20-7-4-released/) This release finally wraps up the recent Netmap kernel changes and tests. The Realtek vendor driver was updated as well as third party software cURL, libxml2, OpenSSL, PHP, Suricata, Syslog-ng and Unbound just to name a couple of them. Beastie Bits Binutils and linker changes (https://www.dragonflydigest.com/2020/11/03/25120.html) 28 Years of NetBSD contributions (https://github.com/NetBSD/src/graphs/contributors) Bluetooth Audio on OpenBSD (https://ifconfig.se/bluetooth-audio-openbsd.html) K8s Bhyve (https://k8s-bhyve.convectix.com) *** Tarsnap This weeks episode of BSDNow was sponsored by our friends at Tarsnap, the only secure online backup you can trust your data to. Even paranoids need backups. Feedback/Questions Sean - C Flags (https://github.com/BSDNow/bsdnow.tv/blob/master/episodes/376/feedback/Sean%20-%20C%20Flags.md) Thierry - RPI ZFS question (https://github.com/BSDNow/bsdnow.tv/blob/master/episodes/376/feedback/Thierry%20-%20RPI%20ZFS%20question.md) Thierry's script (https://github.com/BSDNow/bsdnow.tv/blob/master/episodes/376/feedback/script.md) *** Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv (mailto:feedback@bsdnow.tv) ***

CERIAS Security Seminar Podcast
Kelley Misata, Results from the Field: Cybersecurity in Nonprofits and Why it Matters

CERIAS Security Seminar Podcast

Play Episode Listen Later Nov 4, 2020 55:38


The last time you gave to a favorite charity, did you think about their cybersecurity? Do you sit on the board of a nonprofit? Are nonprofits using your cybersecurity solutions? The "wild" of the Internet and continually evolving threat landscape force nonprofits to defend themselves against intrusion and cyber-attacks. Breaking down the myths and assumptions about nonprofits' cybersecurity, this session spotlights approaches and exciting results from local nonprofit organizations of all sizes. Join us with your favorite nonprofit in mind and walk away with new information about this overlook business sector and why it matters. About the speaker: Dr. Kelley Misata is a cyber and information security executive with 15+ years of experience in strategic initiatives, business development, community and customer growth, marketing, and communications. Today, Dr. Misata is the Founder and CEO of Sightline Security, a security start-up missioned to helping underserved enterprises and community sectors. She is also the President and Executive Director of The Open Information Security Foundation (OISF), a nonprofit organization that owns and manages the open-source network security technology, Suricata. Her leadership experience with both Sightline and OISF, combined with her past role as Communications Director at The Tor Project, allows Dr. Misata to use her expertise in bringing complex cyber and information security principles to a wide array of business sectors and audiences. A business-minded researcher with a groundbreaking dissertation in nonprofits' information security, she continually draws on current trends and conversations in information security and privacy to create strategies that intersect people, process, and technology. Dr. Misata holds a Ph.D. in Information Security from Purdue University, a Masters Degree in Business Administration and Marketing from Bentley University, and a Bachelor of Science in Marketing from Westfield University.

Security Headlines
CXsecurity with Maksymilian Arciemowicz

Security Headlines

Play Episode Listen Later Oct 9, 2020 71:16


In this episode, we talk with Maksymilian Arciemowicz, security research that has found bugs in a large chunk of systems, active in the security field since 2005. He is the founder and maintainer of cxsecurity which is a website that index and host security vulnerabilities for everyone. Cxsecurity is home to a lot of exploits and security research, in this episode we get to hear the story of how it got created by its founder Maksymilian! One of these types of communities is a mailing list called bugtraq. Maksymilian learned how to find security bugs thanks to that mailing list and soon after finding his first couple of bugs he teamed up with a friend to start a website called *securityreason.com*. SecurityReason took the security research from the mailing list and displayed it in a nice web interface. The two founders wanted to go different ways, Maksymilian wanted the research to stay open and not commercialize on it. The website got shutdown and Maksymilian forked it into a new better version called cxsecurity.com! In nature, the power lays in the entity with the most muscles but on the internet, the power is in the person with the most knowledge, the power comes from the intellect. Whoever comes up with new ideas and is able to prove it wins the intellectual battle, Maksymilian explains. Since 2005 Maksymilian has been able to find security holes in: * IPFilter in openbsd, which was used before they switched to * Freebsd * Magento * Mac osx * phpmyadmin * PHP * NetBSD * Vsftpd * apache * Solaris * Thunderbird * Opera * libc and a lot more! We are super happy to have a true hacker spirit with us in this episode on Security Headlines! In this episode, we cover topics such as: How the security landscape has changed since 2005 and how easy it was to hack back then. Using regular expressions to make security research better and faster! How to submit security exploits to software vendors. CVE, lack of description Stories from the heart of the security scene Suricata and Artificial Intelligence How to protect your systems. Development and a lot more! static code analyzer, he has written his own static code analyzer for PHP. We of course sidetrack a bit into OpenBSD and when a person such as Maksymilian says: *OpenBSD is the most secure operating system in the world* We can just smile :) External links: https://cxsecurity.com https://cifrex.org https://cxib.net https://www.exploit-db.com/history

Podcast Libre à vous !
#47 - ANSSI - eTHiX - Polices libres - « Libre à vous ! » diffusée mardi 3 décembre 2019 sur radio Cause Commune

Podcast Libre à vous !

Play Episode Listen Later Dec 8, 2019


Au programme : notre sujet principal porte sur l'ANSSI (Agence nationale de la sécurité des systèmes d'information); chronique d'Isabella Vanni avec la présentation du GULL (groupe d'utilisateurs et d'utilisatrices de logiciels libres) eTHiX; chronique de Jean-Christophe Becquet sur les polices libres. Émission Références Transcription Contact Libre à vous !, l'émission pour comprendre et agir avec l'April, chaque mardi de 15h30 à 17h sur la radio Cause commune (93.1 FM en Île-de-France et sur Internet). Au programme de la 47e émission : sujet principal : l'ANSSI (Agence nationale de la sécurité des systèmes d'information) avec l'interview de son directeur général Guillaume Poupard la chronique « Pépites libres » de Jean-Christophe Becquet, président de l'April, sur le thème « Les polices libres n'ont pas mauvais caractères » la chronique « Le libre fait sa comm' » d'Isabella Vanni, coordinatrice vie associative et responsable projets à l'April, qui présentera le GULL (groupe d'utilisateurs et d'utilisatrices de logiciels libres) eTHiX avec l'interview de Nicolas Barteau, médiateur numérique libre et président d'eTHiX diverses annonces Réécouter en ligne Votre navigateur ne supporte pas l'élément audio : écoutez l'émission (format OGG) ou format MP3. podcast OGG et podcast MP3 S'abonner au podcast Podcasts des différents sujets abordés Chronique « Le libre fait sa comm' » d'Isabella Vanni, avec l'interview de Nicolas Barteau président d'eTHiX (format OGG) (et format MP3) (11 minutes 54 secondes) L'ANSSI (Agence nationale de la sécurité des systèmes d'information) avec l'interview de son directeur général Guillaume Poupard (format OGG) (et format MP3) (52 minutes 4 secondes) Chronique « Pépites libres » de Jean-Christophe Becquet sur le thème « Les polices libres n'ont pas mauvais caractères » (format OGG) (et format MP3) (5 minutes 44 secondes) Annonces (format OGG) (et format MP3) (4 minutes 56 secondes) N'hésitez pas à nous faire des retours sur le contenu de nos émissions pour indiquer ce qui vous a plu mais aussi les points d'amélioration. Vous pouvez nous contacter par courriel, sur le webchat dédié à l'émission (mais nous n'y sommes pas forcément tout le temps) ou encore sur notre salon IRC (accès par webchat). toc_collapse=0; Sommaire  Personnes participantes Galerie photos Références pour la chronique « Le libre fait sa comm' » d'Isabella Vanni Références pour la partie consacrée à l'ANSSI Références pour la chronique « Pépites libres » de Jean-Christophe Becquet sur les polices libres Références pour la partie sur les annonces diverses Pauses musicales Licences de diffusion, réutilisation Personnes participantes Les personnes qui ont participé à l'émission : Frédéric Couchet, délégué général de l'April Guillaume Poupard, directeur général de l'ANSSI Jean-Christophe Becquet, président de l'April Isabella Vanni, coordinatrice vie associative et responsable projets à l'April Nicolas Barteau, médiateur numérique libre et président d'eTHiX Etienne Gonnu, chargé de mission affaires publiques à l'April, (régie) Galerie photos Vous pouvez voir quelques photos prises pendant l'émission. Références pour la chronique « Le libre fait sa comm' » d'Isabella Vanni eTHiX Normandie Libre Références pour la partie consacrée à l'ANSSI le site de l'ANSSI Guides grand public Les règles d'hygiène informatique La SecNumAcadémie CLIP OS DFIR ORC, outil de recherche d'indicateurs de compromissions OpenCTI, plateforme d'analyse de la menace Suricata, moteur de sondes réseau dépôt GitHub de l'ANSSI Références pour la chronique « Pépites libres » de Jean-Christophe Becquet sur les polices libres Richard Stallman : « Toutes les libertés dépendent des libertés informatiques » Présentation de la licence OFL - SIL Open Font License (en anglais) Le texte de la licence OFL - SIL Open Font License, Version 1.1 (en anglais) La FAQ (Foire Aux Questions) de la licence OFL (en anglais) Les logos de la licence OFL (en anglais) La licence OFL sur le site du projet GNU Le contrat social Debian Libertine Fonts : une collection de polices libres et multilingues (en anglais) “Nina” Font now Free (en anglais) La police de caractères Nina Paley Fonts (en anglais) La police de caractères Datalegreya (en anglais) Police de caractères sur le wiki de l'April La police de caractères AA Cursive Tests de la gestion des ligatures de la police AA cursive Références pour la partie sur les annonces diverses Sauvons le .org ! Réunion d'information : Apprendre à coder à Ada par Ada Tech School (l'école de code d'un nouveau genre), mardi 3 décembre 2019 18:30 – 19:30 (Paris) Soirée de contribution au libre 5 décembre 2019 FPH, Paris 11e Premier samedi Cité des Sciences et de l'Industrie, 7 décembre 2019 à partir de 14 h L'Agenda du Libre Pauses musicales Les références pour les pauses musicales : Notre pad pour proposer des musiques diffusées sous une licence libre Fuzz par Jhazzar (Creative Commons BY-SA 3.0, 2 minutes 42) Follow me par Vendredi (Creative Commons BY 3.0, 2 minutes 44) Intruder par Jahzzar (Creative Commons BY-SA 3.0, 4 minutes 52) Le générique de début d'émission est basé sur Wesh Tone par Realaze (Licence Art Libre 1.3) Wesh Tone par Realaze (Licence Art Libre 1.3, 4 minutes 36) Licences de diffusion, réutilisation Les podcasts sont diffusés selon les termes d’au moins une des licences suivantes : licence Art libre version 1.3 ou ultérieure, licence Creative Commons By Sa version 2.0 ou ultérieure et licence GNU FDL version 1.3 ou ultérieure. Les musiques sont diffusées sous leur propre licence. $( document ).ready(function() { var hash = document.location.hash; if (hash) { var tab = $(hash).parent('.tabcontent').attr('data-fromtab'); document.getElementById(tab).click() } });

BSD Now
325: Cracking Rainbows

BSD Now

Play Episode Listen Later Nov 21, 2019 57:40


FreeBSD 12.1 is here, A history of Unix before Berkeley, FreeBSD development setup, HardenedBSD 2019 Status Report, DNSSEC, compiling RainbowCrack on OpenBSD, and more. Headlines FreeBSD 12.1 (https://www.freebsd.org/releases/12.1R/announce.html) Some of the highlights: BearSSL has been imported to the base system. The clang, llvm, lld, lldb, compiler-rt utilities and libc++ have been updated to version 8.0.1. OpenSSL has been updated to version 1.1.1d. Several userland utility updates. For a complete list of new features and known problems, please see the online release notes and errata list, available at: https://www.FreeBSD.org/releases/12.1R/relnotes.html A History of UNIX before Berkeley: UNIX Evolution: 1975-1984. (http://www.darwinsys.com/history/hist.html) Nobody needs to be told that UNIX is popular today. In this article we will show you a little of where it was yesterday and over the past decade. And, without meaning in the least to minimise the incredible contributions of Ken Thompson and Dennis Ritchie, we will bring to light many of the others who worked on early versions, and try to show where some of the key ideas came from, and how they got into the UNIX of today. Our title says we are talking about UNIX evolution. Evolution means different things to different people. We use the term loosely, to describe the change over time among the many different UNIX variants in use both inside and outside Bell Labs. Ideas, code, and useful programs seem to have made their way back and forth - like mutant genes - among all the many UNIXes living in the phone company over the decade in question. Part One looks at some of the major components of the current UNIX system - the text formatting tools, the compilers and program development tools, and so on. Most of the work described in Part One took place at Research'', a part of Bell Laboratories (now AT&T Bell Laboratories, then as nowthe Labs''), and the ancestral home of UNIX. In planned (but not written) later parts, we would have looked at some of the myriad versions of UNIX - there are far more than one might suspect. This includes a look at Columbus and USG and at Berkeley Unix. You'll begin to get a glimpse inside the history of the major streams of development of the system during that time. News Roundup My FreeBSD Development Setup (https://adventurist.me/posts/00296) I do my FreeBSD development using git, tmux, vim and cscope. I keep a FreeBSD fork on my github, I have forked https://github.com/freebsd/freebsd to https://github.com/adventureloop/freebsd OPNsense 19.7.6 released (https://opnsense.org/opnsense-19-7-6-released/) As we are experiencing the Suricata community first hand in Amsterdam we thought to release this version a bit earlier than planned. Included is the latest Suricata 5.0.0 release in the development version. That means later this November we will releasing version 5 to the production version as we finish up tweaking the integration and maybe pick up 5.0.1 as it becomes available. LDAP TLS connectivity is now integrated into the system trust store, which ensures that all required root and intermediate certificates will be seen by the connection setup when they have been added to the authorities section. The same is true for trusting self-signed certificates. On top of this, IPsec now supports public key authentication as contributed by Pascal Mathis. HardenedBSD November 2019 Status Report. (https://hardenedbsd.org/article/shawn-webb/2019-11-09/hardenedbsd-status-report) We at HardenedBSD have a lot of news to share. On 05 Nov 2019, Oliver Pinter resigned amicably from the project. All of us at HardenedBSD owe Oliver our gratitude and appreciation. This humble project, named by Oliver, was born out of his thesis work and the collaboration with Shawn Webb. Oliver created the HardenedBSD repo on GitHub in April 2013. The HardenedBSD Foundation was formed five years later to carry on this great work. DNSSEC enabled in default unbound(8) configuration. (https://undeadly.org/cgi?action=article;sid=20191110123908) DNSSEC validation has been enabled in the default unbound.conf(5) in -current. The relevant commits were from Job Snijders (job@) How to Install Shopware with NGINX and Let's Encrypt on FreeBSD 12 (https://www.howtoforge.com/how-to-install-shopware-with-nginx-and-lets-encrypt-on-freebsd-12/) Shopware is the next generation of open source e-commerce software. Based on bleeding edge technologies like Symfony 3, Doctrine2 and Zend Framework Shopware comes as the perfect platform for your next e-commerce project. This tutorial will walk you through the Shopware Community Edition (CE) installation on FreeBSD 12 system by using NGINX as a web server. Requirements Make sure your system meets the following minimum requirements: + Linux-based operating system with NGINX or Apache 2.x (with mod_rewrite) web server installed. + PHP 5.6.4 or higher with ctype, gd, curl, dom, hash, iconv, zip, json, mbstring, openssl, session, simplexml, xml, zlib, fileinfo, and pdo/mysql extensions. PHP 7.1 or above is strongly recommended. + MySQL 5.5.0 or higher. + Possibility to set up cron jobs. + Minimum 4 GB available hard disk space. + IonCube Loader version 5.0.0 or higher (optional). How to Compile RainbowCrack on OpenBSD (https://cromwell-intl.com/open-source/compiling-rainbowcrack-on-openbsd.html) Project RainbowCrack was originally Zhu Shuanglei's implementation, it's not clear to me if the project is still just his or if it's even been maintained for a while. His page seems to have been last updated in August 2007. The Project RainbowCrack web page now has just binaries for Windows XP and Linux, both 32-bit and 64-bit versions. Earlier versions were available as source code. The version 1.2 source code does not compile on OpenBSD, and in my experience it doesn't compile on Linux, either. It seems to date from 2004 at the earliest, and I think it makes some version-2.4 assumptions about Linux kernel headers. You might also look at ophcrack, a more modern tool, although it seems to be focused on cracking Windows XP/Vista/7/8/10 password hashes Feedback/Questions Reese - Amature radio info (http://dpaste.com/2RDG9K4#wrap) Chris - VPN (http://dpaste.com/2K4T2FQ#wrap) Malcolm - NAT (http://dpaste.com/138NEMA) Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv (mailto:feedback@bsdnow.tv) Your browser does not support the HTML5 video tag.

Horny Report
Horny Report 175

Horny Report

Play Episode Listen Later Jun 21, 2019 142:11


Arabia Kurdi, Pincholona, Herejia Protestante, Domingo Oscuro, Balcoing Global, Walking Congo, Faleterrush, Mufti Influencer, Porno Gamers, Sarna Cinegetica, Maduro SS, Festival Vudu, Pincherpool, Charcuteria Takbir, Gorila Trincon, Machirulismo Neolitico y mucho mas ENLACES Preparao Jarretero https://www.elmundo.es/espana/2019/06/17/5d07ab34fdddff9f998b4641.html Arabia Kurdí https://www.almasdarnews.com/article/saudi-officials-visit-eastern-syria-to-meet-with-us-sdf-delegations/ Atlantista orgullosa https://www.vestifinance.ru/articles/121035 UkroTraficantes https://mundo.sputniknews.com/seguridad/201906181087680149-espana-barco-ucrania-hachis/ Ortega Smith sin w.c https://okdiario.com/espana/vox-tendra-madrid-despachos-municipales-del-palomar-donde-ni-siquiera-hay-bano-4272130 Diva Saudí http://www.arabnews.com/node/1512276/saudi-arabia Maduro PaperClip http://www.aurora-israel.co.il/centro-wiesenthal-investiga-si-el-regimen-de-maduro-estaria-traficando-oro-proveniente-de-victimas-del-holocausto Ángel Guardián 2019 https://www.lasprovincias.es/politica/rey-felipe-supervisa-betera-ejercicio-policia-militar-otan-20190620105811-nt.html Te lo has Trincau https://www.elespanol.com/espana/politica/20190618/colau-admite-planteado-politica-emociona-pienso-hijos/407209637_0.html PAC cordobesa https://www.diariocordoba.com/noticias/cordobalocal/cordoba-cuenta-26-beneficiarios-pac-cobran-mas-300-000-euros_1307568.html Gran Canaria erial http://canarias-semanal.org/art/25464/el-suelo-de-gran-canaria-convertido-en-un-autentico-erial Houdini Bambalanke https://timesofindia.indiatimes.com/city/kolkata/how-the-houdini-trick-became-the-last-act-for-kolkatas-mandrake/articleshow/69833875.cms?fbclid=IwAR3oUKgJilC15V9-RIfu1aNOhAGQTDD8y2PSAMt1ppYCPirtEMn7AFWmOn4 Populismo millenial https://www.infobae.com/america/america-latina/2019/06/15/populismo-millennial-nayib-bukele-el-presidente-que-lleva-dos-semanas-gobernando-por-twitter/ Big Muslim Brother http://spanish.almanar.com.lb/326152 Siberia extremeña https://www.elperiodicoextremadura.com/noticias/extremadura/unesco-declara-sibera-extremena-reserva-biosfera_1170365.html?fbclid=IwAR0wy2F2wZhjZ-qWNeD_AEvNX8QQxow2pSfMIMHFCdGH56Pss8Iu1ADJukU Balconing Global https://www.elmundo.es/baleares/2019/06/15/5d04b87221efa02c528b4584.html Free Joseon https://www.foxnews.com/opinion/north-korea-refugee-embassy-madrid-spain-chris-ahn Vampirismo nupcial https://www.hoy.es/badajoz/hacienda-boda-embargada-20190618230057-nt.html?vca=dgtk-rrss-hoy&vso=fb&vmc=social&_tcode=aGo0M24x Operación Suricata https://elcaso.elnacional.cat/es/sucesos/operativo-policial-droga-barcelona_8898_102.html 24 horas sin luz https://www.lmneuquen.com/perdimos-muchas-horas-energia-falta-criterio-y-sentido-comun-n637489 Domingo oscuro https://www.infobae.com/economia/finanzas-y-negocios/2019/06/17/la-torre-412-un-dudoso-bypass-energetico-el-rol-de-transener-y-otras-dudas-sobre-el-apagon-historico/ Polukro borracho o nostálgico intentando poner orden https://www.dailymail.co.uk/news/article-7155793/Drunk-driver-49-faces-eight-years-prison-taking-Soviet-Cold-War-era-TANK-spin.html Asesoría Vudú https://www.bbc.com/mundo/noticias-41565464 49 panes https://news.pindula.co.zw/2019/06/19/teachers-salary-now-worth-49-loaves-of-bread/ Gladiator caprichoso https://cinemania.20minutos.es/noticias/russell-crowe-leonardo-dicaprio-cabeza-de-dinosaurio/?utm_medium=smm&utm_campaign=henneo&utm_source=home20 Seguridad municipal https://www.clarin.com/sociedad/insolito-robo-sede-municipal-dejaban-llave-debajo-piedra-llevaron-400-mil-pesos_0_Kd4YXR7yD1.html Pipi se opera https://www.elnacional.cat/enblau/es/television/pipi-estrada-opera-pechos-grasa_396577_102.html Zama Zama https://www.dailymaverick.co.za/article/2019-06-19-solving-south-africas-violent-and-costly-zama-zama-problem/ Alfombra de langostas https://www.express.co.uk/news/world/1139249/Italy-news-Sardinia-locusts-biblical-invasion-crops-Nuoro-holiday Residencial Azov http://www.aurora-israel.co.il/en-ucrania-reclaman-por-la-posible-construccion-de-viviendas-sobre-la-tumba-de-judios-asesinados-en-el-holocausto Escuela de Iniciación https://www.sowetanlive.co.za/news/south-africa/2019-06-19-21-boys-rescued-from-initiation-kidnappers/ Walking Congo https://www.telesurtv.net/news/mas-personas-huyen-congo-junio-violencia--20190618-0019.html Santi sin YouTube https://www.elconfidencial.com/espana/2019-06-18/vox-denuncia-que-youtube-ha-cerrado-su-canal_2077912/ Faleterrush https://www.elespanol.com/espana/20190619/marroqui-denuncia-abusos-marbelli-ramos-asegura-falete/407210531_0.html Sándwich Anglo https://www.agropopular.com/sandwiches-listeria-17062019/ Respaldo antiterrorista https://www.efe.com/efe/espana/mundo/china-asegura-haber-llegado-a-amplio-consenso-tras-visita-de-onu-xinjiang/10001-4001666 Angelita Temblores https://www.elperiodico.com/es/videos/internacional/una-merkel-indispuesta-y-temblorosa-recibe-al-presidente-de-ucrania-en-berlin/4640515.shtml Barcos rusos en Ceuta http://ceutatv.com/art/14091/el-retorno-de-la-armada-rusa-a-ceuta-tras-siete-meses Mercedes para los funcionarios https://news.pindula.co.zw/2019/06/17/civil-servants-can-now-apply-for-free-vehicle-import-scheme/ Soros en árabe http://www.arabnews.com/node/1512391/lifestyle Libegal Best Seller https://www.libertaddigital.com/cultura/2019-06-16/federico-jimenez-losantos-cierra-la-feria-del-libro-por-todo-lo-alto-1276640360/ Golpe democrático a Dodon https://www.vestifinance.ru/articles/121057 Chancla Kosher https://www.monitor.co.ug/News/National/Israel-firm-reports-first-cannabis-harvest-from-Uganda/688334-5164306-t3368lz/index.html Granjas Zombie https://www.bbc.com/mundo/noticias-48538093 Turba castradora https://www.thesun.co.uk/news/9327573/child-rapist-dies-after-testicles-hacked-off/ Infartos Netflix https://www.elnacional.cat/es/tecnologia/netflix-streaming-ansiedad-estres-tolerancia_386359_102.html Culpables inventados https://www.europapress.es/internacional/noticia-cuatro-sospechosos-seran-juzgados-asesinato-relacion-derribo-mh17-ucrania-20190619124458.html AngloMineria https://www.nyasatimes.com/lilongwe-water-board-against-graphite-mining-at-malingunde/ Mufti Influencer https://www.monitor.co.ug/News/National/Mufti-Menk-Uganda-two-day-visit/688334-5164352-nbdalvz/index.html Día del condón haitiano https://www.aidshealth.org/2019/06/first-ever-pride-celebration-makes-history-in-haiti/ Sinagogas seguras http://www.aurora-israel.co.il/funcionario-del-gobierno-norteamericano-toda-sinagoga-y-centro-judio-debe-tener-guardias Apedreando a Museveni https://www.monitor.co.ug/News/National/70-year-old-arrested-over-stoning-Museveni-s-car-/688334-5163952-hp2x35z/index.html Florentineza Usurpadora http://www.aurora-israel.co.il/el-real-madrid-entrena-a-ninos-en-israel Fake enfermera https://www.theeastafrican.co.ke/news/ea/remandee-held-in-Eldoret-impersonating-a-nurse/4552908-5163448-10lfvbh/index.html A Idlib vía Molenbeek https://www.swissinfo.ch/spa/bélgica-busca-a-una-familia-uigur-desaparecida-en-china/45041076 Porno Gamers https://esports.as.com/league-of-legends/Sasha-Grey-league-legends_0_1249974993.html Banquero Bocazas https://mundo.sputniknews.com/economia/201906181087666701-ubs-pierde-un-importante-contrato-en-china-por-comentario-racista/ Palillo Ramos https://www.20minutos.es/noticia/3676395/0/pilar-rubio-sergio-ramos-instagram-primera-foto-posado-hijos-boda/#xtor=AD-15&xts=467263 Paga en Zuckerbergs https://libra.org/en-US/association/#founding_members Isla Plástica https://news.sky.com/story/uk-river-is-more-polluted-than-great-pacific-garbage-patch-11744516 Dunas huachicoleadas http://www.arabnews.com/node/1512146/middle-east Festival Vudú http://www.newsmadretierra.com/africa/benin/benin-festival-internacional-vudu/ PincherPool https://www.bbc.com/news/uk-england-merseyside-48647788 Comunicación Telepática con Animales http://comunicaciontelepaticaanimal.com/cursos/ Escasez du Cacao https://www.eleconomista.com.mx/internacionales/Ghana-y-Costa-de-Marfil-suspenden-sus-ventas-de-cacao-y-exigen-un-precio-minimo-20190612-0067.html Dr Look palito láser https://www.20minutos.es/noticia/3674564/0/prohiben-caramelo-luminoso-riesgos-salud/ Ojos Próximos casado https://www.lainformacion.com/arte-cultura-y-espectaculos/sergio-ramos-boda-amazon/6504169/?utm_campaign=Lo más leído&utm_medium=Z1SY-sin_titulo&utm_source=20minutos.es Salmancito Brother ya quiere ahorcar gente http://www.el-nacional.com/noticias/mundo/militar-sudan-promete-horca-los-autores-represion_285460 Al Bashir a juicio https://www.france24.com/es/20190615-sudan-omar-bashir-justicia-corrupcion Blogger Takbir https://www.nation.co.ke/news/Police-seek-month-detention-for-Robert-Alai/1056-5163304-4y381pz/index.html Ministro de YouTube https://esports.as.com/bonus/influencers/presidente-Salvador-AuronPlay-ministro-YouTube_0_1255674433.html Animal Coin http://www.nanduti.com.py/2019/06/18/kenya-saca-los-politicos-monedas-lugar-pone-animales/ Marines Osborne https://www.elespanol.com/espana/20190617/militares-eeuu-llevan-banderas-espanolas-osborne-gorras/406210606_0.html Revisionismo histórico a la carta https://elpais.com/cultura/2019/06/17/actualidad/1560798031_638949.html James Bond doritero https://www.thesun.co.uk/tvandshowbiz/9316454/big-bust-up-james-bond-playstation/ Sinvergüenzas Influencers https://metro.co.uk/2019/06/17/insta-couple-say-getting-job-isnt-option-want-fund-travels-9973854/ DiputadUkro accidentado https://www.vesti.ru/doc.html?id=3159566 Viejafato Sociata https://www.vozpopuli.com/politica/Iglesias-Sanchez-ministros-estrella-izquierda-apoyo_0_1255675687.html Entierro en la intimidad https://www.abc.es/internacional/abci-egipto-entierra-expresidente-mursi-sola-presencia-familiares-mas-cercanos-201906181003_noticia.html Subasta Animal https://www.theguardian.com/world/2019/jun/16/namibia-drought-auction-1000-wild-animals Iraqui cabreado https://www.vesti.ru/doc.html?id=3159556&cid=8 Futbolista Fortnitero https://www.elmundo.es/f5/comparte/2019/06/14/5d026f54fc6c8324288b45a7.html Charcutería Takbir https://www.elconfidencial.com/espana/2019-06-19/celula-yihadista-madrid-carnicerua-mezquita-m30_2077879/ Emperador Xi visita a Gran Líder https://www.theeastafrican.co.ke/news/world/Xi-meets-Kim-ahead-of-Trump-talks/4552918-5164274-xroamkz/index.html Amaña Corners ( y más.. ) https://www.marca.com/futbol/2019/06/17/5d079850268e3eaa3f8b458f.html https://www.elespanol.com/espana/tribunales/20190618/aranda-caleteaba-coches-esconder-droga-blanqueaba-apuestas/406960150_0.html Mocion de censura flacucha https://globalnews.ca/news/5394501/car-bomb-somali-capital/ Chicote Obama http://tapasmagazine.es/obamas-netflix-serie-alimentacion-ninos/?utm_source=20home&utm_medium=m2&utm_campaign=b2 Ascot Reptil show https://www.vanitatis.elconfidencial.com/casas-reales/2019-06-18/maxima-guillermo-holanda-ascot-familia-real_2077414/ Bello Brummel https://www.revistavanityfair.es/realeza/articulos/el-bello-brummell-el-dandy-que-reglamento-la-elegancia-de-ascot/38828 Chicos Bomba https://www.clarin.com/mundo/ultimo-atentado-nigeria-terroristas-usaron-chicos-bomba_0_BYswIdAcz.html Jubilación Mutante https://www.lavanguardia.com/internacional/20190619/462989363210/japon-terremoto-tsunami-abe-pensiones-politica-internacional.html Gorila Trincon https://www.thecable.ng/no-gorilla-in-kano-zoo-says-ganduje-on-missing-n6-8m PeloNaranja electricista https://www.bbc.com/mundo/noticias-internacional-48668879 Demografia Machirula https://www.vanguardngr.com/2019/06/nigerians-are-one-of-most-fertile-on-earth-%E2%80%95-report/ Nigeriano vandálico https://www.thecable.ng/unveiled-ewohime-the-man-who-vandalised-diplomats-vehicles-in-london Alcoholismo nórdico https://www.lavanguardia.com/internacional/20190620/463002466655/alcohol-suecia-venta-domicilio-system.html Sargenta sin oreja http://pmexpressng.com/officers-wives-chop-off-police-womans-ear-inside-barracks/ Macarenas Truhan https://lacoctelera.top/famosos/rafael-ruiz-confirmada-paternidad Pastor Godfrey https://www.informationng.com/2019/06/pastor-who-predicted-buharis-victory-writes-him-shares-why-god-is-not-happy-with-him.html Programa electoral de Abu Oringi https://www.businessinsider.co.za/trump-2020-rally-pledges-cure-cancer-put-man-on-mars-2019-6 Tragando cruces http://pmexpressng.com/prophetess-forces-girl-16-swallow-iron-cross-witchcraft-deliverance/ Más proisraeli que los judíos http://spanish.almanar.com.lb/326394 Narkozy al banquillo https://www.europapress.es/internacional/noticia-sarkozy-sentara-finalmente-banquillo-corrupcion-trafico-influencias-20190619150518.html Dad One https://www.nyasatimes.com/a-dad-one-on-the-run-police-rescue-20-trafficked-girls-all-have-babies-from-bogus-pastor/ Policias sin uniformes https://www.nyasatimes.com/malawi-police-officers-bemoan-lack-of-uniforms-cops-forced-to-wash-and-wear-tactic/ Smog escolar https://www.20minutos.es/noticia/3674727/0/informe-heal-calidad-aire-colegios-madrid-protesta-mascarillas/ Ataquito en Basora https://in.reuters.com/article/iraq-energy-rocket/rocket-hits-site-of-foreign-oil-firms-in-iraqs-basra-two-hurt-idINKCN1TK0A8?il=0 Platini trincando https://www.abc.es/deportes/futbol/abci-platini-detenido-francia-concesion-mundial-2022-qatar-201906181028_noticia.html True Name https://mundo.sputniknews.com/sociedad/201906191087679649-para-todo-lo-demas-mastercard-ofrece-tarjetas-especiales-a-clientes-transgenero-y-no-binarios/ Pies anglos https://www.dailymail.co.uk/news/article-7156441/Is-asking-guests-shoes-house-proud-social-horror.html Asesinato por pitillos https://www.elmundo.es/espana/2019/06/17/5d07d6b6fc6c83ea778b467a.html PeloNaranja 11s https://abcnews.go.com/Politics/transcript-abc-news-george-stephanopoulos-exclusive-interview-president/story?id=63749144 Drone hackeado https://www.theeastafrican.co.ke/news/world/Iran-shot-down-US-drone/4552918-5164276-qcg84x/index.html Economía Reggae https://www.infobae.com/america/mundo/2019/06/19/el-banco-de-jamaica-apela-a-la-musica-reggae-para-vender-a-sus-clientes-la-recuperacion-economica/ Convoy CocoLiso https://www.dailymail.co.uk/news/article-7157681/She-couldve-killed-Sister-blasts-royal-convoy-driving-fast.html ESPECIAL VUDU BENIN por Corresponsal en la Patagonia https://africatimes.com/2019/04/03/benin-research-identifies-last-surviving-slave-to-leave-ouidah-for-the-u-s/ https://www.cia.gov/library/publications/the-world-factbook/geos/bn.html https://www.facebook.com/events/ouidah/vodun-festival-2019/274962279826384/ https://www.viator.com/es-AR/tours/Cotonou/Cotonou-Shore-Excursion-Ouidah-Voodoo-City/d4446-8406P11 https://www.africanews.com/2019/04/25/human-trafficking-hundreds-rescued-in-west-africa-the-morning-call/ https://reliefweb.int/report/benin/hard-counter-terrorism-lessons-sahel-west-africa-s-coastal-states https://www.africanews.com/2019/05/15/benin-opens-investigations-over-french-tourist-kidnapping/ http://www.sabcnews.com/sabcnews/tanks-surround-benin-ex-presidents-home-amid-violent-poll-protests/ http://www.sabcnews.com/sabcnews/ghana-togo-and-benin-on-alert-against-jihadist-threat/ http://www.sabcnews.com/sabcnews/benin-ex-minister-freed-in-spain-pending-extradition-hearing/ Comisarias Hindúes https://timesofindia.indiatimes.com/india/180-custodial-deaths-in-gujarat-in-16-years-no-cop-punished/articleshow/69881991.cms Samoa se hunde https://www.europapress.es/ciencia/habitat-y-clima/noticia-samoa-americana-hunde-aceleradamente-mar-terremoto-20190517170524.html Nano Dispersadores http://www.rodong.rep.kp/en/index.php?strPageID=SF01_02_01&newsID=2019-06-20-0010 Bodas Pokemon https://rpp.pe/videojuegos/geek/la-moda-de-las-bodas-pokemon-crece-en-japon-noticia-1203749 Explosión Sospechosa https://www.elperiodico.com/es/internacional/20190618/china-explosion-frontera-corea-del-norte-7509965 FuKuretornators http://cubasi.cu/cubasi-noticias-cuba-mundo-ultima-hora/item/94292-regresan-habitantes-a-fukushima-tras-accidente-nuclear-de-2011 Tabarra Right Wacht https://www.europapress.es/internacional/noticia-hrw-insta-camboya-retirar-cargos-espionaje-contra-dos-antiguos-periodistas-20190620045842.html Vertidos de un lupanar https://www.straitstimes.com/asia/se-asia/bangkok-hotel-fined-after-used-condoms-toiletries-bearing-its-name-found-floating-in Xi Pacifista https://www.telesurtv.net/news/china-ayudara-proceso-paz-peninsula-corea-20190619-0002.html Reactores de la Seda https://www.straitstimes.com/asia/east-asia/china-could-build-30-belt-and-road-nuclear-reactors-by-2030-official Buda Beckham https://www.straitstimes.com/asia/se-asia/golden-david-beckham-statue-draws-tourists-to-buddhist-temple Olimpiadas Sin Yakuza https://mainichi.jp/english/articles/20190619/p2a/00m/0na/015000c Revival Ancestral http://the-japan-news.com/news/article/0005821119 Coconut School https://www.france24.com/es/20190614-camboya-reciclaje-educacion-ninos La momia de Ho https://www.lavanguardia.com/cultura/20190620/463011501704/vietnam-recurre-cientificos-rusos-momia-ho-chi-minh.html Relaciones Internacionales https://es.vietnamplus.vn/promueven-relacion-amistosa-entre-vietnam-y-belarus/106591.vnp https://es.vietnamplus.vn/vietnam-entrega-cinco-mil-toneladas-de-arroz-a-corea-del-norte/105422.vnp Videojuegos Harram https://coconuts.co/jakarta/news/aceh-ulema-council-issues-fatwa-declaring-pubg-and-similar-video-games-haram/ Selso en vivo con el Imán https://coconuts.co/jakarta/news/child-services-say-12-y-o-boys-paid-husband-and-wife-in-cigarettes-and-instant-noodles-to-put-on-live-sex-show/ Matrimonio NO forzado https://coconuts.co/jakarta/news/41-y-o-widower-weds-13-y-o-girl-in-south-sulawesi-3-months-after-meeting-on-facebook-family-says-marriage-wasnt-forced/ CharltonHestismo Paranormal https://coconuts.co/bali/news/bali-inmate-caught-eating-own-feces-in-detention-center-says-ghosts-told-him-to-do-it/ Cocodrilo ComeCampesinos https://coconuts.co/jakarta/news/body-parts-of-farmer-who-was-missing-since-tuesday-found-inside-crocodile-in-indonesia/ Smog mortal http://www.bernama.com/en/general/news.php?id=1737476 Educación islámica https://www.thestar.com.my/news/nation/2019/06/20/maszlee-teo-not-sticking-her-nose-into-islamic-education-matters/ Multirrush https://www.hindustantimes.com/cities/three-women-gang-raped-at-noida-farmhouse-seven-arrested/story-N4pQa7hjHrN5OmUxmFeSSP.html Lugareños Alborotados https://www.asianage.com/india/all-india/190619/locals-create-ruckus-at-delhi-hospital-over-rape-of-4-year-old.html Sequia en la Mezquita http://www.newindianexpress.com/states/tamil-nadu/2019/jun/20/mosques-dig-deep-to-find-donations-to-buy-water-in-chennai-1992616.html Sección 144 http://www.newindianexpress.com/nation/2019/jun/20/one-shot-dead-and-three-injured-as-clashes-erupt-in-west-bengals-bhatpara-1992842.html Califato de Cachemira https://intelnews.org/2019/06/19/01-2571/ Dengue en Pune https://www.hindustantimes.com/pune-news/dengue-cases-spike-as-pune-gears-up-for-monsoon/story-ae3HtWgdJcHBkYZNrYFYmJ.html Enity list https://www.bbc.com/mundo/noticias-internacional-48644856?ocid=socialflow_twitter Ankarrarrush etilico legal https://www.elmundo.es/internacional/2019/06/18/5d08b729fdddffb4678b45d6.html MenaLona https://elcaso.elnacional.cat/es/sucesos/mena-barcelona-40-detenidos-mossos-robos_8712_102.html Yate para pobres https://www.elmundo.es/f5/2019/06/17/5d075f70fdddff327b8b4692.html Desigualdad de Genero Neolítica https://www.telecinco.es/informativos/sociedad/fijan-neolitico-inicio-desigualdad-genero_18_2773320208.html Guano Islandés https://www.eleconomista.es/economia/noticias/9948497/06/19/Islandia-se-prepara-para-una-recesion-por-profunda-porque-la-burbuja-del-turismo-se-desinfla.html Yate de oro https://www.diariodemallorca.es/sociedad/2019/06/13/khalilah-yate-oro-atraca-ibiza/1425383.html Aida trincona https://www.publico.es/economia/carmen-machi-carmen-machi-condenada-pagar-83155-euros-infraccion-tributaria.html Que se roba en España https://okdiario.com/economia/descubre-cuales-fueron-articulos-mas-robados-comercios-durante-2018-4275393 Policía se emplea a fondo por un taladro https://www.infobae.com/sociedad/policiales/2019/06/18/imputaron-por-homicidio-calificado-a-los-ocho-policias-detenidos-por-el-crimen-de-la-joven-de-santiago-del-estero/ Senado contra las Bolso-fuscas https://www.americaeconomia.com/politica-sociedad/politica/senado-de-brasil-bloquea-medida-de-bolsonaro-para-facilitar-el-porte-de Chicago-Boy dimite https://www.france24.com/es/20190617-brasil-gran-crisis-gobierno-bolsonaro Negros bolivianos apalillados https://www.larazon.es/internacional/mineros-atrapados-nuevo-drama-en-una-mina-de-chile-NJ23803248 Buque Hospital https://www.chvnoticias.cl/sucesos/cocaina-decomiso-estados-unidos-chile_20190620/ Argentino autocastrado https://www.lavoz.com.ar/sucesos/chile-murio-un-argentino-que-cerceno-sus-genitales Evo bromista https://www.eldeber.com.bo/bolivia/Evo-dice-que-era-broma-su-promesa-de-entregar-lo-que-pidan-a-cambio-de-votos-20190619-9510.html Portaaviones Natural https://www.bbc.com/mundo/noticias-america-latina-48668877 Balón Cubano https://www.univision.com/local/nueva-york-wxtv/presos-de-una-carcel-en-ecuador-juegan-futbol-con-la-cabeza-de-un-reo-que-fue-decapitado-e-incinerado-video Maestra sin piyama https://www.lanetanoticias.com/viral/446135/maestra-celebra-a-papas-en-su-dia-con-atrevido-perreo-en-lenceria-video Disolucion del Congreso https://peru21.pe/politica/reacciones-congresistas-declaraciones-vizcarra-eventual-cierre-parlamento-nndc-485055 Chucho Mercancía https://www.ultimahora.es/noticias/internacional/2019/06/17/1088465/muere-chucho-mercancia-uno-capos-droga-colombia.html Urabeños vs Rastrojos https://www.panorama.com.ve/sucesos/Reportan-12-muertos-en-enfrentamiento-entre-irregulares-en-la-frontera-con-Colombia-20190618-0080.html Paraguay brasileñizada https://www.clarin.com/mundo/sangriento-motin-paraguay-presos-decapitados-quemados_0_oU87le1lg.html Ciberterrorismo Masivo https://www.lainformacion.com/empresas/guardia-civil-riesgo-5g-ciberterrorismo/6504384/?utm_campaign=Lo%20m%C3%A1s%20le%C3%ADdo&utm_medium=Z1SY-sin_titulo&utm_source=20minutos.es Malmo Crime Map https://www.thelocal.se/20190617/five-things-you-should-know-about-malms-wave-of-explosions Honduras en MadMax https://www.eldiario.es/politica/Honduras-manifestaciones-violentas-varias-ciudades_0_912008835.html https://www.laprensagrafica.com/internacional/Protestas-en-Honduras-se-intensifican-Policia-Nacional-se-encuentra-en-paro--20190619-0466.html https://radiohrn.hn/un-ciudadano-fallecido-y-15-heridos-dejan-protestas-en-honduras/ Desatre jimmysta https://republica.gt/2019/06/17/elecciones-guatemala-asi-queda-conformado-el-congreso/ Jimmy rabiando https://www.prensalibre.com/guatemala/politica/jimmy-morales-senala-al-tse-por-resultados-en-las-elecciones/ Desconsideraciones a Jimmy https://republica.gt/2019/06/16/gritan-jimmy-presidente/ Dios Trump https://www.elnuevodia.com/noticias/locales/nota/recaudandineroparaunaestatuadetrumpenpuertorico-2499832/ Policía de Chiapas https://www.elsoldemexico.com.mx/republica/justicia/detienen-a-100-policias-en-huixtla-chiapas-por-presuntos-actos-de-tortura-y-homicidio-3786944.html Abogado desafiante https://www.milenio.com/policia/emilio-lozoya-no-sera-arrestado-porque-no-lo-van-a-encontrar-abogado Burritos rechinantes https://www.univision.com/local/chicago-wgbo/retiran-250-000-libras-de-burritos-congelados-del-mercado-por-riesgo-de-contener-pequenas-piedras Señor de los Cielos Jr. https://www.publimetro.com.mx/mx/noticias/2019/06/15/fgr-detiene-a-luis-c-hijo-senor-los-cielos.html El Gio https://www.excelsior.com.mx/nacional/abaten-a-el-gio-uno-de-los-lideres-del-cartel-de-santa-rosa-de-lima/1319601 El Lucky https://www.codigosanluis.com/cdn-lucky-atrapan-cdmx-traen-slp/ Salmancito en aprietos https://www.noticiasdegipuzkoa.eus/2019/06/20/mundo/la-onu-acusa-al-principe-saudi-de-la-muerte-de-khashoggi El Huevo https://vanguardia.com.mx/articulo/quien-es-el-huevo-lider-del-cartel-del-noreste-y-su-plan-de-expansion-que-desafia-el-mencho Narco Black-Hawk derribado https://www.eluniversal.com.mx/metropoli/edomex/policia-mexiquense-supone-que-helicoptero-caido-pertenece-la-delincuencia Censo hospitalario de El Mencho https://laopinion.com/2019/06/15/cjng-manda-mensajes-amenazantes-y-llamadas-a-doctores-en-mexico/ Aurora Cannabis https://www.libremercado.com/2019-06-20/aurora-cannabis-empresa-favorita-millennials--inversiones-1276640598/ Empoderamiento Saudí http://www.arabnews.com/node/1513386/saudi-arabia Mena Paguita https://www.libremercado.com/2019-06-20/cataluna-pagara-664-euros-al-mes-a-los-menas-menores-de-23-anos-1276640467/ Aristocracia sefardi ( terribles vivencias de una judia) https://www.enlacejudio.com/2019/06/20/nacio-en-salonica-sobrevivio-el-holocausto-y-quiso-ser-espanola-descubre-por-que/ Sushi Kosher https://www.timesofisrael.com/craving-gefilte-fish-and-sushi-a-kosher-restaurant-combines-them-in-a-roll/ Trump Cagon https://www.timesofisrael.com/trump-said-to-okay-strikes-against-iran-then-suddenly-cancel-them/ Ellas También Pinchan https://elcaso.elnacional.cat/es/sucesos/carcel-apunalar-dos-chicas-salida-discoteca-lleida_8919_102.html Sarna Cinegética https://www.diariojaen.es/provincia/emergencia-cinegetica-por-sarna-en-60-municipios-NF5755096 Muñecas Herederas https://www.cornwalllive.com/news/celebs-tv/man-leave-fortune-sex-dolls-2989179 Banda Multiculti https://www.lasprovincias.es/sucesos/banda-atracos-abuso-sexual-valencia-20190619115745-nt.html

SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast

Setting Up Shodan Monitoring https://isc.sans.edu/forums/diary/Using+Shodan+Monitoring/24956/ Fingerprinting Smartphones With Gyroscope Data https://sensorid.cl.cam.ac.uk/ 20% of Linux Docker Containers Without Password https://www.kennasecurity.com/20-of-the-1000-most-popular-docker-containers-have-no-root-password/ RDP #bluekeep Signature For Snort/Suricata https://github.com/nccgroup/Cyber-Defence/blob/master/Signatures/suricata/2019_05_rdp_cve_2019_0708.txt

SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast

Setting Up Shodan Monitoring https://isc.sans.edu/forums/diary/Using+Shodan+Monitoring/24956/ Fingerprinting Smartphones With Gyroscope Data https://sensorid.cl.cam.ac.uk/ 20% of Linux Docker Containers Without Password https://www.kennasecurity.com/20-of-the-1000-most-popular-docker-containers-have-no-root-password/ RDP #bluekeep Signature For Snort/Suricata https://github.com/nccgroup/Cyber-Defence/blob/master/Signatures/suricata/2019_05_rdp_cve_2019_0708.txt

BSD Now
284: FOSDEM 2019

BSD Now

Play Episode Listen Later Feb 7, 2019 59:26


We recap FOSDEM 2019, FreeBSD Foundation January update, OPNsense 19.1 released, the hardware-assisted virtualization challenge, ZFS and GPL terror, ClonOS 19.01-RELEASE, and more. Headlines FOSDEM 2019 Recap Allan and I were at FOSDEM 2019 in Brussels, Belgium over the weekend. On the Friday before, we held a FreeBSD Devsummit in a hotel conference room, with 25 people attending. We talked about various topics of interest to the project. You can find the notes on the wiki page. Saturday was the first day of FOSDEM. The FreeBSD Project had a table next to the Illumos Project again. A lot of people visited our table, asked questions, or just said “Hi, I watch BSDNow.tv every week”. We handed out a lot of stickers, pens, swag, and flyers. There was also a full day BSD devroom, with a variety of talks that were well attended. In the main conference track, Allan held a talk explaining how the ZFS ARC works. A lot of people attended the talk and had more questions afterwards. Another well attended talk was by Jonathan Looney about Netflix and FreeBSD. Sunday was another day in the same format, but no bsd devroom. A lot of people visited our table, developers and users alike. A lot of meeting and greeting went on. Overall, FOSDEM was a great success with FreeBSD showing a lot of presence. Thanks to all the people who attended and talked to us. Special thanks to the people who helped out at the FreeBSD table and Rodrigo Osorio for running the BSD devroom again. FreeBSD Foundation Update, January 2019 Dear FreeBSD Community Member, Happy New Year! It’s always exciting starting the new year with ambitious plans to support FreeBSD in new and existing areas. We achieved our fundraising goal for 2018, so we plan on funding a lot of work this year! Though it’s the new year, this newsletter highlights some of the work we accomplished in December. We also put together a list of technologies and features we are considering supporting, and are looking for feedback on what users want to help inform our 2019 development plans. Our advocacy and education efforts are in full swing as we prepare for upcoming conferences including FOSDEM, SANOG33, and SCaLE. Finally, we created a year-end video to talk about the work we did in 2018. That in itself was an endeavor, so please take a few minutes to watch it! We’re working on improving the methods we use to inform the community on the work we are doing to support the Project, and are always open to feedback. Now, sit back, grab a refreshing beverage, and enjoy our newsletter! Happy reading!! Deb OPNsense 19.1 released For more than four years now, OPNsense is driving innovation through modularising and hardening the open source firewall, with simple and reliable firmware upgrades, multi-language support, HardenedBSD security, fast adoption of upstream software updates as well as clear and stable 2-Clause BSD licensing. The 19.1 release, nicknamed “Inspiring Iguana”, consists of a total of 620 individual changes since 18.7 came out 6 months ago, spread out over 12 intermediate releases including the recent release candidates. That is the average of 2 stable releases per month, security updates and important bug fixes included! If we had to pick a few highlights it would be: The firewall alias API is finally in place. The migration to HardenedBSD 11.2 has been completed. 2FA now works with a remote LDAP / local TOTP combination. And the OpenVPN client export was rewritten for full API support as well. These are the most prominent changes since version 18.7: fully functional firewall alias API PIE firewall shaper support firewall NAT rule logging support 2FA via LDAP-TOTP combination WPAD / PAC and parent proxy support in the web proxy P12 certificate export with custom passwords Dpinger is now the default gateway monitor ET Pro Telemetry edition plugin[2] extended IPv6 DUID support Dnsmasq DNSSEC support OpenVPN client export API Realtek NIC driver version 1.95 HardenedBSD 11.2, LibreSSL 2.7 Unbound 1.8, Suricata 4.1 Phalcon 3.4, Perl 5.28 firmware health check extended to cover all OS files, HTTPS mirror default updates are browser cache-safe regarding CSS and JavaScript assets collapsible side bar menu in the default theme language updates for Chinese, Czech, French, German, Japanese, Portuguese and Russian API backup export, Bind, Hardware widget, Nginx, Ntopng, VnStat and Dnscrypt-proxy plugins Here are the full changes against version 19.1-RC2: ipsec: add firewall interface as soon as phase 1 is enabled ipsec: phase 1 selection GUI JavaScript compatibility fix monit: widget improvements and bug fix (contributed by Frank Brendel) ui: fix regression in single host or network subnet select in static pages plugins: os-frr 1.7 updates OSFP outbound rules (contributed by Fabian Franz) plugins: os-telegraf 1.7.4 fixes packet filter input plugins: os-theme-rebellion 1.8.2 adds image colour invert plugins: os-vnstat 1.1[3] plugins: os-zabbix-agent now uses Zabbix version 4.0 src: revert mmccalculateclock() as HS200/HS400 support breaks legacy support src: update sqlite3-3.20.0 to sqlite3-3.26.0[4] src: import tzdata 2018h, 2018i[5] src: avoid unsynchronized updates to knstatus[6] ports: carootnss 3.42 ports: dhcp6c 20190128 prevent rawops double-free (contributed by Team Rebellion) ports: sudo patch to fix listpw=never[7] News Roundup The hardware-assisted virtualization challenge Over two years ago, I made a pledge to use NetBSD as my sole OS and only operating system, and to resist booting into any other OS until I had implemented hardware-accelerated virtualization in the NetBSD kernel (the equivalent of Linux’ KVM, or Hyper-V). Today, I am here to report: Mission Accomplished! It’s been a long road, but we now have hardware-accelerated virtualization in the kernel! And while I had only initially planned to get Oracle VirtualBox working, I have with the help of the Intel HAXM engine (the same backend used for virtualization in Android Studio) and a qemu frontend, successfully managed to boot a range of mainstream operating systems. ZFS and GPL terror: How much freedom is there in Linux? ZFS – the undesirable guest ZFS is todays most advanced filesystem. It originated on the Solaris operating system and thanks to Sun’s decision to open it up, we have it available on quite a number of Unix-like operating systems. That’s just great! Great for everyone. For everyone? Nope. There are people out there who don’t like ZFS. Which is totally fine, they don’t need to use it after all. But worse: There are people who actively hate ZFS and think that others should not use it. Ok, it’s nothing new that some random guys on the net are acting like assholes, trying to tell you what you must not do, right? Whoever has been online for more than a couple of days probably already got used to it. Unfortunately its still worse: One such spoilsport is Greg Kroah-Hartman, Linux guru and informal second-in-command after Linus Torvalds. There have been some attempts to defend the stance of this kernel developer. One was to point at the fact that the “ZFS on Linux” (ZoL) port uses two kernel functions, _kernelfpubegin() and _kernelfpuend(), which have been deprecated for a very long time and that it makes sense to finally get rid of them since nothing in-kernel uses it anymore. Nobody is going to argue against that. The problem becomes clear by looking at the bigger picture, though: The need for functions doing just what the old ones did has of course not vanished. The functions have been replaced with other ones. And those ones are deliberately made GPL-only. Yes, that’s right: There’s no technical reason whatsoever! It’s purely ideology – and it’s a terrible one. ClonOS 19.01-RELEASE ClonOS is a turnkey Open Source platform based on FreeBSD and the CBSD framework. ClonOS offers a complete web UI for easily controlling, deploying and managing FreeBSD jails containers and Bhyve/Xen hyperviser virtual environments. ClonOS is currently the only platform available which allow both Xen and Bhyve hypervisor to coexist on the same host. Being a FreeBSD base platform, ClonOS ability to create and manage jails allows you to run FreeBSD applications without losing performance. Features: easy management via web UI interface live Bhyve migration [coming soon, roadmap] Bhyve management (create, delete VM) Xen management (create, delete VM) [coming soon, roadmap] connection to the “physical” guest console via VNC from the browser or directly Real time system monitoring access to load statistics through SQLite3 and beanstalkd support for ZFS features (cloning, snapshots) import/export of virtual environments public repository with virtual machine templates puppet-based helpers for configuring popular services ClonOS is a free open-source FreeBSD-based platform for virtual environments creation and management. In the core: FreeBSD OS as hoster platform bhyve(8) as hypervisor engine Xen as hypervisor engine vale(4) as Virtual Ethernet Switch jail(8) as container engine CBSD Project as management tools Puppet as configuration management Beastie Bits Florian Obser on unwind(8) A low tech SMS gateway for fun and no profit Netflix and FreeBSD : Using Open Source to Deliver Streaming Video powerd++ 0.4.0 release Is it time to rewrite the operating system in Rust? Small change, big effect Swedish BSD Meetup, Feb 19, 2019 Polish BSD User Group Meetup, Feb 21, 2019 Feedback/Questions Casey - Cool new Digital Ocean Feature Morgan - Jail w/differnet version of FreeBSD Brad - FreeBSD Installer Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv

BSD Now
282: Open the Rsync

BSD Now

Play Episode Listen Later Jan 24, 2019 61:20


Project Trident 18.12 released, Spotifyd on NetBSD, OPNsense 18.7.10 is available, Ultra EPYC AMD Powered Sun Ultra 24 Workstation, OpenRsync, LLD porting to NetBSD, and more. ##Headlines ###AsiaBSDCon 2019 Call for Papers You have until Jan 30th to submit Full paper requirement is relaxed a bit this year (this year ONLY!) due to the short submission window. You don’t need all 10-12 pages, but it is still preferred. Send a message to secretary@asiabsdcon.org with your proposal. Could be either for a talk or a tutorial. Two days of tutorials/devsummit and two days of conference during Sakura season in Tokyo, Japan The conference is also looking for sponsors If accepted, flight and hotel is paid for by the conference ###Project Trident 18.12 Released Twitter account if you want to keep up on project news Screenshots Project Trident Community Telegram Channel DistroWatch Page LinuxActionNews Review RoboNuggie’s in depth review ###Building Spotifyd on NetBSD These are the steps I went through to build and run Spotifyd (this commit at the time of writing) on NetBSD AMD64. It’s a Spotify Connect client so it means I still need to control Spotify from another device (typically my phone), but the audio is played through my desktop… which is where my speakers and headphones are plugged in - it means I don’t have to unplug stuff and re-plug into my phone, work laptop, etc. This is 100% a “good enough for now solution” for me; I have had a quick play with the Go based microcontroller from spotcontrol and that allows a completely NetBSD only experience (although it is just an example application so doesn’t provide many features - great as a basis to build on though). ##News Roundup ###OPNsense 18.7.10 released 2019 means 19.1 is almost here. In the meantime accept this small incremental update with goodies such as Suricata 4.1, custom passwords for P12 certificate export as well as fresh fixes in the FreeBSD base. A lot of cleanups went into this update to make sure there will be a smooth transition to 19.1-RC for you early birds. We expect RC1 in 1-2 weeks and the final 19.1 on January 29. ###Introducing the Ultra EPYC AMD Powered Sun Ultra 24 Workstation A few weeks ago, I got an itch to build a workstation with AMD EPYC. There are a few constraints. First, I needed a higher-clock part. Second, I knew the whole build would be focused more on being an ultra high-end workstation rather than simply utilizing gaming components. With that, I decided it was time to hit on a bit of nostalgia for our readers. Mainly, I wanted to do an homage to Sun Microsystems. Sun made the server gear that the industry ran on for years, and as a fun fact, if you go behind the 1 Hacker Way sign at Facebook’s campus, they left the Sun Microsystems logo. Seeing that made me wonder if we could do an ultimate AMD EPYC build in a Sun Microsystems workstation. ###OpenRsync This is a clean-room implementation of rsync with a BSD (ISC) license. It is designed to be compatible with a modern rsync (3.1.3 is used for testing). It currently compiles and runs only on OpenBSD. This project is still very new and very fast-moving. It’s not ready for wide-spread testing. Or even narrow-spread beyond getting all of the bits to work. It’s not ready for strong attention. Or really any attention but by careful programming. Many have asked about portability. We’re just not there yet, folks. But don’t worry, the system is easily portable. The hard part for porters is matching OpenBSD’s pledge and unveil. ###The first report on LLD porting LLD is the link editor (linker) component of Clang toolchain. Its main advantage over GNU ld is much lower memory footprint, and linking speed. It is of specific interest to me since currently 8 GiB of memory are insufficient to link LLVM statically (which is the upstream default). The first goal of LLD porting is to ensure that LLD can produce working NetBSD executables, and be used to build LLVM itself. Then, it is desirable to look into trying to build additional NetBSD components, and eventually into replacing /usr/bin/ld entirely with lld. In this report, I would like to shortly summarize the issues I have found so far trying to use LLD on NetBSD. ###Ring in the new It’s the second week of 2019 already, which means I’m curious what Nate is going to do with his series This week in usability … reset the numbering from week 1? That series is a great read, to keep up with all the little things that change in KDE source each week — aside from the release notes. For the big ticket items of KDE on FreeBSD, you should read this blog instead. In ports this week (mostly KDE, some unrelated): KDE Plasma has been updated to the latest release, 5.14.5. KDE Applications 18.12.1 were released today, so we’re right on top of them. Marble was fixed for FreeBSD-running-on-Power9. Musescore caught up on 18 months of releases. Phonon updated to 4.10.1, along with its backends. And in development, Qt WebEngine 5.12 has been prepared in the incongruously-named plasma-5.13 branch in Area51; that does contain all the latest bits described above, as well. ##Beastie Bits NomadBSD 1.2-RC1 Released ZFS - The First Enterprise Blockchain Powersaving with DragonFly laptop NetBSD reaches 100% reproducable builds Potential Bhyve Web Interface? LibGDX proof of concept on OpenBSD - Video LiteCLI is a user-friendly CommandLine client for SQLite database In honor of Donald Knuth’s 81 birthday Stanford uploaded 111 lectures on Youtube Portland BSD Pizza Night - 2018-01-31 19:00 - Sweet Heart Pizza Stockholm BSD February meetup Polish BSD User Group: Jan 25 18:15 - 21:00 AsiaBSDcon 2019 CfP ##Feedback/Questions Greg - VLANs and jails Tara - ZFS on removable disks Casey - Interview with Kirk McKusick Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv

Purple Squad Security
Episode 42 – CyberZoology with Patrick Kelley

Purple Squad Security

Play Episode Listen Later Oct 21, 2018 56:51


Defending is hard.  The adage of "an attacker only has to be right once" is a bit played out, but it does have a hint of truth in that trying to defend everything is a monumental task.  Defenders are often short on budgets, short on time, and short on patience for silly sayings like these.This week I'm happy to have Patrick Kelley on to talk about some very interesting work he has done on coming up with defensive techniques for freight trains using a Raspberry Pi!  If you want to hear about unique ways to defend unique environments, you will not want to miss this episode.Some links of interest: Bro: https://www.bro.org/ Suricata: https://suricata-ids.org/ Critical Path Security GitHub: https://github.com/CriticalPathSecurity Patrick's Twitter: @pkelley2600 Patrick's LinkedIn: https://www.linkedin.com/in/pmkelley/ Infosec Mastodon - https://infosec.exchange/auth/sign_up Want to reach out to the show?  There's a few ways to get in touch! Purple Squad Security's Twitter: @PurpleSquadSec John's Twitter: @JohnsNotHere John's Mastodon: https://infosec.exchange/@JohnsNotHere Podcast Website: purplesquadsec.com Patreon - https://www.patreon.com/purplesquadsec Sign-Up for our Slack community: https://signup.purplesquadsec.com Thanks for listening, and as always, I will talk with you all again next time.Find out more at http://purplesquadsec.com

Fauie Technology
Network Monitoring on the Cheap

Fauie Technology

Play Episode Listen Later Oct 16, 2017 20:24


I’ve regularly blogged about Suricata, Logstash and Elasticsearch.  Shoot, I’ve built multiple successful commercial tools using that technical stack.  The thing that made us successful wasn’t the tech, but it was how we used the tech to solve a problem that our customers had at that moment in time. Now it’s time for me to share the […]

Securit13 Podcast
Эпизод 80 - To open or not to open? (15.04.2017)

Securit13 Podcast

Play Episode Listen Later May 28, 2017 58:55


Intro / Outro Lady We Knew by Cullah http://freemusicarchive.org/music/MC_Cullah/Cullahmity/03_-_Lady_We_Knew Hackers Can Easily Hijack This Dildo Camera and Livestream the Inside of Your Vagina (Or Butt) https://motherboard.vice.com/en_us/article/camera-dildo-svakom-siime-eye-hacked-livestream?utm_source=mbtwitter Teampass http://teampass.net/ Squid: Optimising Web Delivery http://www.squid-cache.org/ SNORT https://www.snort.org/ Suricata https://suricata-ids.org/ pfSense https://www.pfsense.org/ Life and death for Windows: Vista support ends as Creators Update starts to roll out https://www.geekwire.com/2017/microsoft-makes-april-11-a-day-of-life-and-death-for-versions-of-windows-and-office/

zetatesters
ZT 49 Concentración y «Deep Work» de Cal Newport

zetatesters

Play Episode Listen Later Jan 17, 2017


¡Estrenamos técnico de sonido! Miquel Ángel Cabrera se ha estrenado hoy al control de la nave y lo ha hecho a las mil maravillas. El tema de hoy ha sido la concentración y hemos hablado del libro "Deep Work: Rules for Focused Success in a Distracted World" de Cal New Port. Concentración [Blog] Fitness Revolucionario - Olvida las dietas, escapa del gimnasio. [Episodio] ZT 47 Música, suriCata de cervezas y filosofía de estar por podcast con Uri Nieto y Daniel Bolsa Novedad, novedosa: Carles Caño empezará próximamente el podcast de Presentástico. Los primeros episodios los colaremos como extraballs. A ver qué os parece. Será un podcast de entrevistas con expertos en comunicación y buenos comunicadores. Podéis sugerir a Carles a personas para que entreviste en su flamante podcast. También os invita a entrar al grupo de Telegram “Presentásticos“ si os interesa el mundo de la comunicación en público. Estos son los libros que ha leído Carles Caño la semana pasada: [Libro] "Present-acción. Mejora tus presentaciones a partir de la técnica teatral" de Fermí Casado. [Libro] "Deep Work: Rules for Focused Success in a Distracted World" de Cal New Port. [Libro] "Cómo Hablar y Presentar en Público: Consejos que funcionan desde el primer minuto" de Carlos Salas. Estos son los libros que ha leído Marc Alier la semana pasada: [Libro] "The View From The Cheap Seats" de Neil Gaiman. [Libro] "Catch-22" de Joseph Heller. Estos son los libros que ha leído Daniel Amo la semana pasada: [Libro] "Platform: Get Noticed in a Noisy World" de  Michael Hyatt. [Libro] "Behind Every Good Decision: How Anyone Can Use Business Analytics to Turn Data into Profitable Insight" de Piyanka Jain. [Episodio] Jordan Harbinger on social influence - The Tonny Robbins Podcast. [Episodio] ZT 48 Hábitos y “Conversaciones cruciales” de Kerry Patterson, Joseph Grenny, Ron McMillan y Al Switzler Dani Amo nos habla del concepto Growth Hacker y nos invita a que lo descubramos con los siguientes libros: [Libro] Growth Hacker Marketing: A Primer on the Future of PR, Marketing, and Advertising de Ryan Holiday. [Libro] Growth Hacking: Silicon Valley's Best Kept Secret de Raymond Fong y Chad Riddersen. [Libro] The Growth Hacker's Guide to the Galaxy: 100 Proven Growth Hacks for the Digital Marketer de Mark Hayes y Jeff Goldenberg. [Libro]

Advanced Persistent Security
Practical Packet Analysis (with Chris Sanders)

Advanced Persistent Security

Play Episode Listen Later Jan 9, 2017 107:13


Practical Packet Analysis (with Chris Sanders) ADVANCED PERSISTENT SECURITY PODCAST EPISODE 32 GUEST:Chris Sanders January 9, 2017 If you enjoy this podcast, be sure to give us a 5 Star Review ...

zetatesters
ZT 47 Música, suriCata de cervezas y filosofía de estar por podcast con Uri Nieto y Daniel Bolsa

zetatesters

Play Episode Listen Later Dec 21, 2016


Este episodio es diferente. No hay un tema definido, hablamos de música, cerveza artesana y otras cosas. Hemos invitado a Daniel Bolsa y Uri Nieto, músicos que han tocado un par de canciones en el programa. Así que no hay notas del programa. Bueno, excepto el agradecimiento a Carlos Martínez, oyente zetatester que trajo cervezas artesanas que degustamos en el podcast. Probamos las cervezas: Zeta Hop Zeta Zendra Y nos quedó por probar la Zeta Merengada. Carlos Martínez tiene un proyecto en el que mezcla su profesión y su pasión por la cerveza artesana en Bier Pro Consulting. También tiene una página en Facebook denominada AleYeah Cultura Cervesera Os recordamos otras cosas: Podéis uniros a la comunidad "Somos zetatesters" que estamos en Telegram. Somos ya 172 miembros. Instala la app Telegram y accede a través de este enlace de invitación. Nos faltan 14 reseñas para llegar a las 100 antes de que acabe el 2016. El mejor regalo de Navidad que nos podéis hacer es dejarnos una reseña en iTunes antes de que acabe el año :) ¡Gracias! Cómo dejar reseña en el podcast zetatesters desde iTunes para Windows https://www.youtube.com/watch?v=DeiAFMF6bUE Cómo dejar reseña en iTunes para zetatesters desde iPhone o iPad https://www.youtube.com/watch?v=1dHQOOY4dAA Nos vemos después de las vacaciones de Navidad. Grabaremos en estudio el 10 de enero de 2017. ¡Que paséis unas felices fiestas!

zetatesters
ZT 45 Autopublicar libros – Escribir 2ª parte

zetatesters

Play Episode Listen Later Nov 30, 2016


En este episodio continuamos hablando sobre escribir, en esta ocasión sobre autopublicar libros. Hemos tenido problemas técnicos (se cortó la grabación y no nos dimos cuenta). Además el micro de Dani no se grabó. Marc Alier ha hecho un esfuerzo considerable para que se escuche a Dani con los otros micros. Esa es la razón por la que se oye el audio bastante mal, Marc tuvo que compensar micros. Disculpad las molestias. Escribir y autopublicar libros [Libro] “El engaño de Ícaro: ¿Hasta dónde quieres volar?” de Seth Godin. [Libro] “Benjamin Franklin: An American Life” de Walter Isaacson. [Libro] ¿Eres imprescindible? de Seth Godin. [Podcast] Seth Godin's Startup School [Podcast] Revisionist History de Malcolm Gladwell. [Libro] "So, Anyway...: The Autobiography" de John Cleese. [Blog/Podcast] Triunfa con tu libro [Episodio] Google Play Books entrevista a su director Luis Collado [Web] Draft2Digital [Web] Babelcube [Web] CreateSpace [Web] Bubok [Web] Lulu Somos zetatesters ATENCIÓN: El martes 20 de diciembre de 2016 haremos una suriCata de cervezas artesanas con Carlos Martínez y unplugged con el grupo "La bossa de urina". Tenemos algunas plazas para los que queráis venir. Son muy limitadas así que contactad con nosotros por las vías habituales para reservar sitio. Por otro lado, queridos zetatesters, nos hemos marcado un SUPER RETO: ¡100 reseñas en iTunes antes de que acabe el 2016! Si has pensado más de una vez: “Algún día haré la reseña” es hora de pasar a la acción (y si no lo pensaste, también). Cada semana diremos el progreso que llevamos. Ayúdanos a conseguirlo. Hemos hecho un videotutoriales en el que explicamos con todo detalle cómo dejar reseña en iTunes desde Windows (próximamente pondremos uno desde iPhone o iPad) [Vídeo] Cómo dejar reseña en el podcast zetatesters desde iTunes para Windows https://youtu.be/DeiAFMF6bUE Así que no cuela la excusa de "no sé cómo se hace". Son unos minutos que tendréis que dedicar U-N-A S-O-L-A V-E-Z. Y estaremos muy pero que muy agradecidos. Es más, si logramos nuestro objetivo de llegar a las 100 reseñas el 31 de diciembre de 2016, prometemos no dar la paliza con el iTunes de marras durante al menos, un par de meses. Eeeeh, no está nada mal, ¿verdad? Delicatessen Habíamos grabado el Delicatessen del libro "Write. Publish. Repeat" pero no se grabó por problemas técnicos. Luego no teníamos tiempo de hacerlo. Lo haremos como Extra Ball. Parece un libro maldito... Turno de acciones En esta ocasión tampoco hemos podido hacer esta sección. Ya no

Intel: Software Defined Infrastructure
HyperSan Solution Brief: Suricata and Wind River

Intel: Software Defined Infrastructure

Play Episode Listen Later Dec 21, 2015


Intelligent Compute: Inundated by a large and increasing variety of proprietary hardware appliances, many network operators are encouraging the development of interoperable solutions based on high- volume, industry-standard servers. Fundamental to this transition is the use of virtualization technology to consolidate software-based network functions and services, also referred to as network functions virtualization (NFV). Not […]

Intel: Intelligent Compute
HyperSan Solution Brief: Suricata and Wind River

Intel: Intelligent Compute

Play Episode Listen Later Dec 21, 2015


Intelligent Compute: Inundated by a large and increasing variety of proprietary hardware appliances, many network operators are encouraging the development of interoperable solutions based on high- volume, industry-standard servers. Fundamental to this transition is the use of virtualization technology to consolidate software-based network functions and services, also referred to as network functions virtualization (NFV). Not […]

Intel: Software Defined Infrastructure
Virtualizing Suricata IPS using Hyperscan DPI Technology

Intel: Software Defined Infrastructure

Play Episode Listen Later Sep 29, 2015


Software Defined Infrastructure: This paper examines the pattern matching performance Hyperscan delivers in virtualized environments when combined with Suricata, a fast-growing, open-source Intrusion Prevention and Detection (IPS/IDS) security application supported by OISF.

Intel: Intelligent Networking
Virtualizing Suricata IPS using Hyperscan DPI Technology

Intel: Intelligent Networking

Play Episode Listen Later Sep 29, 2015


Software Defined Infrastructure: This paper examines the pattern matching performance Hyperscan delivers in virtualized environments when combined with Suricata, a fast-growing, open-source Intrusion Prevention and Detection (IPS/IDS) security application supported by OISF.

Intel: Intelligent Compute
Virtualizing Suricata IPS using Hyperscan DPI Technology

Intel: Intelligent Compute

Play Episode Listen Later Sep 29, 2015


Software Defined Infrastructure: This paper examines the pattern matching performance Hyperscan delivers in virtualized environments when combined with Suricata, a fast-growing, open-source Intrusion Prevention and Detection (IPS/IDS) security application supported by OISF.

Brakeing Down Security Podcast
2015-023_Get to know a Security Tool: Security Onion!

Brakeing Down Security Podcast

Play Episode Listen Later May 25, 2015 37:10


Having a more secure network by deploying tools can be no easy task. This week, we show you a tool, Security Onion, that can give you an IDS and log analysis tool in less than 20 minutes.  http://blog.securityonion.net/p/securityonion.html

BSD Now
54: Luminary Environment

BSD Now

Play Episode Listen Later Sep 10, 2014 78:39


This week on the show, it's all about Lumina. We'll be giving you a visual walkthrough of the new BSD-exclusive desktop environment, as well as chatting with the main developer. There's also answers to your emails and all the latest news, on BSD Now - the place to B.. SD. This episode was brought to you by Headlines Portscout ported to OpenBSD (http://blog.jasper.la/portscout-for-openbsd/) Portscout is a popular utility used in the FreeBSD ports infrastructure It lets port maintainers know when there's a new version of the upstream software available by automatically checking the distfile mirror Now OpenBSD porters can enjoy the same convenience, as it's been ported over You can view the status online (http://portscout.jasper.la/) to see how it works and who maintains what (http://portscout.jasper.la/index-total.html) The developer who ported it is working to get all the current features working on OpenBSD, and added a few new features as well He decided to fork and rename it (https://jasperla.github.io/portroach/) a few days later *** Sysadmins and systemd refugees flocking to BSD (https://www.reddit.com/r/freebsd/comments/2fgb90/you_have_your_windows_in_my_linux_or_why_many/) With all the drama in Linux land about the rapid changes to their init system, a lot of people are looking at BSD alternatives This "you got your Windows in my Linux (http://www.infoworld.com/d/data-center/you-have-your-windows-in-my-linux-249483)" article (and accompanying comments) give a nice glimpse into the minds of some of those switchers Both server administrators and regular everyday users are switching away from Linux, as more and more distros give them no choice but to use systemd Fortunately, the BSD communities are usually very welcoming of switchers - it's pretty nice on this side! *** OpenBSD's versioning schemes (http://www.tedunangst.com/flak/post/OpenBSD-version-numbers) Ted Unangst explains the various versioning systems within OpenBSD, from the base to libraries to other included software In contrast to FreeBSD's release cycle, OpenBSD isn't as concerned with breaking backwards compatibility (but only if it's needed to make progress) This allows them to innovate and introduce new features a lot more easily, and get those features in a stable release that everyone uses He also details the difference between branches, their errata system and lack of "patch levels" for security Some other things in OpenBSD don't have version numbers at all, like tmux "Every release adds some new features, fixes some old bugs, probably adds a new bug or two, and, if I have anything to say about it, removes some old features." *** VAXstation 4000 Model 90 booting NetBSD (https://www.youtube.com/watch?v=zLsgFPaMPyg) We found a video of NetBSD booting on a 22 year old VAX workstation, circa 1992 This system has a monstrous 71 MHz CPU and 128MB of ECC RAM It continues in part two (https://www.youtube.com/watch?v=YKzDXKmn66U), where we learn that it would've cost around $25,000 when it was released! The uploader talks about his experiences getting NetBSD on it, what does and doesn't work, etc It's interesting to see that such old hardware isn't necessarily obsolete just because newer things have come out since then (but maybe don't try to build world on it...) *** Interview - Ken Moore - ken@pcbsd.org (mailto:ken@pcbsd.org) The Lumina desktop environment Special segment Lumina walkthrough News Roundup Suricata for IDS on pfSense (http://pfsensesetup.com/suricata-intrusion-detection-system-part-one) While most people are familiar with Snort as an intrusion detection system, Suricata is another choice This guide goes through the steps of installing and configuring it on a public-facing pfSense box Part two (http://pfsensesetup.com/suricata-intrusion-detection-system-part-two/) details some of the configuration steps One other cool thing about Suricata - it's compatible with Snort rules, so you can use the same updates There's also another recent post (http://www.allamericancomputerrepair.com/Blog/Post/29/Install-Snort-on-FreeBSD) about snort as well, if that's more your style If you run pfSense (or any BSD) as an edge router for a lot of users, this might be worth looking into *** OpenBSD's systemd API emulation project (http://bsd.slashdot.org/story/14/09/08/0250207/gsoc-project-works-to-emulate-systemd-for-openbsd) This story was pretty popular in the mainstream news this week For the Google Summer of Code, a student is writing emulation wrappers for some of systemd's functions (https://twitter.com/blakkheim/status/509092821773848577) There was consideration from some Linux users to port over the finished emulation back to Linux, so they wouldn't have to run the full systemd One particularly interesting Slashdot comment snippet (http://bsd.slashdot.org/comments.pl?sid=5663319&cid=47851361): "We are currently migrating a large number (much larger than planned after initial results) of systems from RHEL to BSD - a decision taken due to general unhappiness with RHEL6, but SystemD pushed us towards BSD rather than another Linux distro - and in some cases are seeing throughput gains of greater than 10% on what should be equivalent Linux and BSD server builds. The re-learning curve wasn't as steep as we expected, general system stability seems to be better too, and BSD's security reputation goes without saying." It will NOT be in the base system - only in ports, and only installed as a dependency for things like newer GNOME (http://blogs.gnome.org/ovitters/2014/09/07/systemd-in-gnome-3-14-and-beyond/) that require such APIs In the long run, BSD will still be safe from systemd's reign of terror, but will hopefully still be compatible with some third party packages like GNOME that insist on using it *** GhostBSD 4 previewed (http://www.linuxbsdos.com/2014/05/19/preview-of-ghostbsd-4-0/) The GhostBSD project is moving along, slowly getting closer to the 4 release This article shows some of the progress made, and includes lots of screenshots and interesting graphical frontends If you're not too familiar with GhostBSD, we interviewed the lead developer (http://www.bsdnow.tv/episodes/2014_03_12-ghost_of_partition) a little while back *** NetBSD on the Banana Pi (http://rizzoandself.blogspot.com/2014/09/netbsd-on-banana-pi.html) The Banana Pi is a tasty alternative to the Raspberry Pi, with similar hardware specs In this blog post, a NetBSD developer details his experiences in getting NetBSD to run on it After studying how the prebuilt Linux image booted, he made some notes and started hacking Ethernet, one of the few things not working, is being looked into and he's hoping to get it fully supported for the upcoming NetBSD 7.0 They're only about $65 as of the time we're recording this, so it might be a fun project to try *** Feedback/Questions Antonio writes in (http://slexy.org/view/s28iKdBEbm) Garegin writes in (http://slexy.org/view/s21Wfnv87h) Erno writes in (http://slexy.org/view/s2Fzryxhdz) Brandon writes in (http://slexy.org/view/s2ILcqdFfF) ***

Paul's Security Weekly
Paul's Security Weekly - Episode 198 - May 6, 2010

Paul's Security Weekly

Play Episode Listen Later May 9, 2010 71:57


Episode 198 Show Notes Episode 198: Matt Jonkman & Will Metcalf join us to discuss the OSIF and the Suricata project. Also Paul gives us more embedded goodness with a tech segment on using DNS Zone Transfers to help you identify targets in the ongoing plot to take over the world. Hosts: Larry "HaxorTheMatrix" Pesce, Paul Asadoorian, John Strand, Mick Douglas, Carlos "Dark0perator" Perez Audio Feeds:

security hacking john strand security weekly suricata paul asadoorian mick douglas paul's security weekly