Podcasts about tls1

Evan, Kendal and Sujit dive into the details of Azure Container Apps sharing thier own experiences designing, supporting and using the service. They share tips and tricks for utilizing the correct ACA options for your workloads.  Media file: https://azpodcast.blob.core.windows.net/episodes/Episode513.mp3 YouTube: https://youtu.be/nuxBz8O05LU Resources: https://learn.microsoft.com/en-us/azure/container-apps/overview   Other updates: Next generation Azure Databox - Azure updates | Microsoft Azure Azure HDInsight deprecates TLS1.1 - Azure updates | Microsoft Azure     MySQL Virtual Canary program - Scheduled Maintenance - Azure Database for MySQL - Flexible Server | Microsoft Learn   SQL MI Modernization Assistant - Modernization Advisor (Preview) - SQL Server on Azure VMs | Microsoft Learn   Private DNS Zones Internet fallback - Azure updates | Microsoft Azure   Modern Data Movement library - Azure updates | Microsoft Azure   https://learn.microsoft.com/en-us/azure/load-testing/how-to-schedule-tests https://learn.microsoft.com/en-us/azure-data-studio/whats-happening-azure-data-studio https://learn.microsoft.com/en-us/azure/azure-monitor/logs/log-analytics-simple-mode https://learn.microsoft.com/en-us/azure/databricks/clean-rooms/ https://learn.microsoft.com/en-us/azure/api-center/synchronize-aws-gateway-apis?tabs=portal https://learn.microsoft.com/en-us/azure/container-apps/sessions-tutorial-nodejs

Senthuran Sivananthan comes on the show to talk about the Well-Architected Framework (WAF) and Well Architected Resiliency Review (WARA).   Media file: https://azpodcast.blob.core.windows.net/episodes/Episode512.mp3 YouTube: https://youtu.be/xTxG7X9RoWQ   Resources: Azure Pricing Calculator Azure Architecture Review Web Application Firewall Other Updates: Retirement of Azure Automation's Powershell runbooks using AzureRM modules TLS1.0/1.1 retirement for Azure Automation Customer Managed Unplanned Failover for ADLS and Storage+SFTP

　デジタル庁は5月17日、通信暗号化方式「SSL3.0」及び「TLS1.0」「TLS1.1」の無効化について発表した。

Adventures in Freebernetes, tracing kernel functions, The better way of building FreeBSD networks, New beginnings: CDBUG virtual meetings, LibreSSL update in DragonFly, Signal-cli with scli on FreeBSD, and more. NOTES This episode of BSDNow is brought to you by Tarsnap (https://www.tarsnap.com/bsdnow) Headlines Adventures in Freebernetes: bhyve My Guest (https://productionwithscissors.run/2020/10/29/adventures-in-freebernetes-bhyve-my-guest/) Part 2 of experiments in FreeBSD and Kubernetes: Creating your first guest Tracing Kernel Functions: FBT stack() and arg (https://zinascii.com/2020/fbt-args-and-stack.html?s=03) In my previous post I described how FBT intercepts function calls and vectors them into the DTrace framework. That laid the foundation for what I want to discuss in this post: the implementation of the stack() action and built-in arg variables. These features rely on the precise layout of the stack, the details of which I touched on previously. In this post I hope to illuminate those details a bit more with the help of some visuals, and then guide you through the implementation of these two DTrace features as they relate to the FBT provider. News Roundup Dummynet: The Better Way of Building FreeBSD Networks (https://klarasystems.com/articles/dummynet-the-better-way-of-building-freebsd-networks/) Dummynet is the FreeBSD traffic shaper, packet scheduler, and network emulator. Dummynet allows you to emulate a whole set of network environments in a straight-forward way. It has the ability to model delay, packet loss, and can act as a traffic shaper and policer. Dummynet is roughly equivalent to netem in Linux, but we have found that dummynet is easier to integrate and provides much more consistent results. New beginnings: CDBUG virtual meetings (http://lists.nycbug.org/pipermail/cdbug-talk/2020-October/000901.html) I had overwhelmingly positive responses from the broader *BSD community about restarting CDBUG meetings as virtual, at least for now. Hopefully this works well and even when we're back to in-person meetings we can still find a way to bring in virtual attendees. LibreSSL update in DragonFly (https://www.dragonflydigest.com/2020/11/10/25143.html) DragonFly has a new version of libressl, noting cause it has a newer TLS1.3 implementation – something that may be necessary for you. Signal-cli with scli on FreeBSD (https://antranigv.am/weblog_en/posts/freebsd-signal-cli-scli/) So couple of days ago I migrated from macOS on Macbook Pro to FreeBSD on ThinkPad T480s. Beastie Bits Firefox is not paxctl safe for NetBSD (https://anonhg.netbsd.org/pkgsrc/rev/9386adbd052e) FreeBSD 12.2-RELEASE on Microsoft Azure Marketplace (https://azuremarketplace.microsoft.com/en-us/marketplace/apps/thefreebsdfoundation.freebsd-12_2?tab=Overview) Tarsnap This weeks episode of BSDNow was sponsored by our friends at Tarsnap, the only secure online backup you can trust your data to. Even paranoids need backups. Feedback/Questions carlos - BSD Now around the world (https://github.com/BSDNow/bsdnow.tv/blob/master/episodes/379/feedback/carlos%20-%20BSD%20Now%20around%20the%20world.md) paulo - freebsd on a Bananapi (https://github.com/BSDNow/bsdnow.tv/blob/master/episodes/379/feedback/paulo%20-%20freebsd%20on%20a%20Bananapi.md) paulo - followup (https://github.com/BSDNow/bsdnow.tv/blob/master/episodes/379/feedback/paulo%20-%20followup.md) Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv (mailto:feedback@bsdnow.tv) ***

Докладно про головне Білоруські хакери зламали сайт Белрадіокомпанії та виклали у прямому ефірі відео силових придушень мирних демонстрацій РФ має намір заборонити використання протоколів TLS1.3, DoH, DoT та ESNI РНБО: українських користувачів ВКонтакте ...

Докладно про головне Білоруські хакери зламали сайт Белрадіокомпанії та виклали у прямому ефірі відео силових придушень мирних демонстрацій РФ має намір заборонити використання протоколів TLS1.3, DoH, DoT та ESNI РНБО: українських користувачів ВКонтакте “візьмуть на облік” Коротко про важливе Частина працівників Spotify планує оголосити страйк якщо платформа залишить без редагування деякі епізоди подкасту Joe Rogan Experience Хости у Airbnb спостерігають доступність “чужих” повідомлень  Нова зловмисна програма Alien націлена на більш ніж 226 Android застосунків Google/Chronicle анонсує нову систему виявлення загроз Tools and write-ups Побудова домашньої лабораторії для пентесту, дослідів та навчання від Offensive Security Mastering Burp Suite Pro https://twitter.com/MasteringBurp  Новий реліз фреймворку для пентесту та дослідження вразливостей Nuclei  Збірка наступальних модулів для Terraform Рекомендації В подкасті Сема Харріса Making Sense вийшло інтерв’ю з Трістаном Харрісом за мотивами документального фільму the Social Dilemma Ревю на книжку “Red Team – How to Succeed By Thinking Like the Enemy” by Mikah Zenko Смі#%*очки Вихідний код Windows XP потрапив в публічний доступ

July was a busy month with many (small) releases, and even an announcement about re:Invent! So it's up to Arjen, Jean-Manuel, and Guy to try to make sense of it all. The News Finally in Sydney AWS IoT Analytics is now available in the Sydney AWS Region AWS Snowball Edge Compute Optimized is now available in 11 additional AWS Regions AWS Secrets Manager has been IRAP assessed and accepted for PROTECTED level Serverless Amazon RDS Proxy – Now Generally Available | AWS News Blog Announcing AWS Serverless Application Model (SAM) CLI now generally available for production use Amplify CLI adds support for Lambda layers to easily share code  assets across Lambda functions Amazon Athena adds support for Partition Projection Containers AWS App2Container – A New Containerizing Tool for Java and .NET Applications | AWS News Blog Amazon ECS announces AWS Copilot, a new CLI to deploy and operate containers in AWS Docker and AWS collaborate to help deploy applications to Amazon ECS on AWS Fargate Amazon EKS now supports Kubernetes version 1.17 AWS App Mesh launches ingress support with virtual gateways Introducing Ingress support in AWS App Mesh | Containers (detailed blogpost) Amazon EFS CSI Driver is now generally available Amazon ECS announces increased service quotas Fluent bit container logs to Elastcsearch ECR now supports encryption of images using AWS KMS keys EC2 & VPC Kernel Live Patching for Amazon Linux 2 is now generally available Introducing EC2 Launch v2 to simplify customizing Windows instances AWS Transit Gateway now supports more granular CloudWatch Metrics for improved network monitoring EC2 Image Builder can now produce and distribute encrypted AMIs EC2 Image Builder can now stream logs to CloudWatch Announcing Amazon CloudWatch metrics for Amazon EC2 On-Demand Capacity Reservations AWS Global Accelerator launches One-Click Acceleration for Application Load Balancers Amazon VPC Resources Now Support Tag on Create New – Amazon EC2 Instances based on AWS Graviton2 with local NVMe-based SSD storage | AWS News Blog Amazon Lightsail now offers cPanel  WHM instance blueprint AWS Cloud Map simplifies Amazon EC2 instance registration Dev & Ops Find Your Most Expensive Lines of Code – Amazon CodeGuru Is Now Generally Available | AWS News Blog Announcing the Porting Assistant for .NET | AWS News Blog AWS CodeDeploy now enables automated installation and scheduled updates of the CodeDeploy Agent Announcing CDK Pipelines Preview, continuous delivery for AWS CDK applications CDK Pipelines: Continuous delivery for AWS CDK applications | AWS Developer Blog (detailed blogpost) CDK for Terraform: Enabling Python & TypeScript Support AWS CodeBuild now supports accessing Build Environments with AWS Session Manager AWS CodeBuild supports code coverage reporting AWS CodeBuild now supports parallel and coordinated executions of a build project Amazon S3 features now available in the AWS Toolkits for Visual Studio Code Security Amazon Fraud Detector is now Generally Available | AWS News Blog Easily manage your content policies for AI services with AWS Organizations AWS Firewall Manager launches managed rules to audit VPC security groups AWS WAF Security Automations now supports WAFv2 API AWS Config Launches 28 Additional Managed rules   AWS Secrets Manager now enables you to attach resource-based policies to secrets from the AWS Secrets Manager console and uses Zelkova to validate these policies Identify, arrange, and manage secrets easily using enhanced search in AWS Secrets Manager Amazon CloudFront announces new TLS1.2 security policy for viewer connections Amazon Detective enhances VPC flow visibility Now gain longer access to your AWS resources when switching roles in the AWS Management Console Amazon MQ Adds Support for LDAP Authentication And Authorization AWS Security Hub launches new automated security controls AWS Firewall Manager now supports centralized logging of AWS WAF logs Storage & Databases Amazon Elastic File System increases file system minimum throughput Amazon DocumentDB (with MongoDB compatibility) now supports T3 medium instances AWS Storage Gateway simplifies cache management for File Gateway AWS Storage Gateway increases local cache storage by 4x for File Gateway Amazon RDS Application Programming Interface supports AWS PrivateLink Amazon Keyspaces now enables you to back up your table data continuously by using point-in-time-recovery (PITR) Create Snapshots From Any Block Storage Using EBS Direct APIs | AWS News Blog Amazon DocumentDB (with MongoDB compatibility) adds support for cross-region snapshot copy Announcing automatic backups for Amazon Elastic File System New Amazon Elastic File System console simplifies file system creation and management Amazon EBS Fast Snapshot Restore for Shared EBS Snapshots | AWS News Blog Amazon Elastic File System increases per-client throughput by 100% Amazon Elasticsearch Service now supports Learning to Rank to improve search relevancy ranking AWS DataSync adds support for on-premises object storage | AWS News Blog HTTP compression support now available in Amazon Elasticsearch Service Amazon RDS for SQL Server lowers the cost for High Availability DB Instances AWS Database Migration Service now supports enhanced premigration assessments Amazon Kinesis Data Firehose now supports data delivery to New Relic, Datadog, HTTP endpoints, and MongoDB Cloud AI & ML AWS DeepRacer Evo and Sensor Kit now available for purchase Amazon Comprehend Medical adds relationship extraction to medical condition Amazon Personalize adds improved handling of missing metadata Amazon EMR now supports encrypting log files using Customer-managed CMKs in AWS Key Management Service (KMS) Amazon Forecast now supports generating predictions for 10X more items Amazon EMR now supports Managed Scaling – automatically resizing clusters to lower cost New – Label Videos with Amazon SageMaker Ground Truth | AWS News Blog Announcing AWS PrivateLink Support for Amazon Kendra AWS RoboMaker releases rosbag upload cloud extension for Robot Operating System (ROS)  Amazon Comprehend launches real time Custom Entity Recognition Amazon Forecast now supports resource tagging Amazon EMR now supports Amazon EC2 G4 Instances which provides up to 4.5X faster and 5.4X cheaper XGBoost Training Amazon SageMaker Ground Truth and Amazon Augmented AI add support for OpenID Connect (OIDC) authentication of private workers Amazon Translate now supports Office documents | AWS News Blog Other cool stuff New – Create Amazon RDS DB Instances on AWS Outposts | AWS News Blog Announcing the New AWS Community Builders Program! | AWS News Blog AWS IoT SiteWise – Now Generally Available | AWS News Blog Amazon Interactive Video Service – Add Live Video to Your Apps and Websites | AWS News Blog Contact Lens for Amazon Connect is now generally available Recording of the Connect/Contact Lens talk by Rian Brooks-Kane at the User Group (starts around 50 minutes) AWS IoT Core now supports multiple shadows for a single IoT device Amazon Connect allows you to continue engaging with your customer after an agent hangs-up Amazon Chime SDK supports audio and video calling from mobile browsers AWS Marketplace now offers integrated third-party software solutions for AWS Control Tower Updates to the AWS Well-Architected Framework and the AWS Well-Architected Tool Amazon Connect adds call recording APIs Introducing AWS Purchase Order Management (Preview)   Sponsors Gold Sponsor Innablr Silver Sponsors AC3 CMD Solutions DoIT International

In dieser ersten live aufgenommenen Episode reden wir über unsere persönlichen Projekte im Bereich Microcontroller. Konkret geht es um den ESP32 und ESP8266. Zusätzlich gibt es wieder einige Leaks, die besprochen werden wollen, sowie eine ausführliche Diskussion über den Beef zwischen Fortnite, bzw. Epic Games, und Google und Apple. Auch ESNI bei TLS1.3 und Chinas Firewall sind Thema, genau wie Twitter, YouTube, iOS 14, Quantencomputer und Intel. Aufgeregt wird sich über das neue Pikmin 3 Deluxe für die Nintendo Switch, PayPal, die die Nutzer dazu aufrufen, auf Spam-E-Mails zu klicken, und die deutsche Autoindustrie, die unter Fortschritt etwas anderes versteht, als wir. Übrigens: Wenn ihr das Ganze mit Bild sehen wollt, könnt ihr hier den Livestream nacherleben: https://www.youtube.com/watch?v=I0AwmzOia_s

Neste episódio, analisamos uma técnica apresentada na DEFCON28 que explora os aprimoramentos de segurança e privacidade trazidos pelo TLS1.3 com ENSI para reviver a técnica de Domain Fronting. Fizemos um lab da ferramenta disponibilizada pelo pesquisador para demonstração da técnica e seu potencial de uso para mascaramento de endereços maliciosos, trazendo novos desafios de defesa. O MorphusCast também está disponível nas plataformas: - YouTube: https://youtu.be/2oYCuguM6Qw - Apple Podcasts: https://podcasts.apple.com/br/podcast/morphuscast-10-novos-desafios-defesa-com-o-retorno/id1367241273?i=1000487944426 - Google Podcasts: https://podcasts.google.com/feed/aHR0cDovL2ZlZWRzLnNvdW5kY2xvdWQuY29tL3VzZXJzL3NvdW5kY2xvdWQ6dXNlcnM6MjY3Mjg3NTExL3NvdW5kcy5yc3M/episode/dGFnOnNvdW5kY2xvdWQsMjAxMDp0cmFja3MvODc0NjM0Mzk1?sa=X&ved=2ahUKEwihx-251JbrAhUfajABHbGgDu4QkfYCegQIARAF ------------ Links de referência: https://www.defcon.org/html/defcon-safemode/dc-safemode-speakers.html#Hunstad https://www.youtube.com/watch?v=TDg092qe50g&feature=youtu.be&t=1417 https://github.com/SixGenInc/Noctilucent https://www.zdnet.com/article/china-is-now-blocking-all-encryptedhttps-traffic-using-tls-1-3-and-esni/ -------- ACOMPANHE OS NOSSOS CANAIS: https://www.linkedin.com/company/morphusecurity https://www.instagram.com/morphusecurity https://www.facebook.com/morphustecnologia NOSSOS CONTEÚDOS: Morphus Labs: https://morphuslabs.com/ Morphus Blog: https://www.medium.com/morphusblog -------- INFORMAÇÕES: https://www.morphus.com.br

Daryl & Buu provide a weekly update on all things F5 related. Daryl Montgomery and Buu Lam are the F5 Account Team covering valued clients in British Columbia, Northwest Territories, Yukon and Nunavut. This weekly show covers recent topics in the world of F5. Please consider Subscribing and enabling Notifications. These weekly shows will be released at the beginning of each week. https://www.linkedin.com/in/daryl-montgomery-8876752/ https://www.linkedin.com/in/buulam/ Links from the Weekly Update New Hot Fix Releases BIG-IP v15.0.1.3: https://techdocs.f5.com/kb/en-us/products/big-ip_ltm/releasenotes/related/relnote-supplement-bigip-15-0-1-3.html BIG-IP v15.1.0.2: https://techdocs.f5.com/kb/en-us/products/big-ip_ltm/releasenotes/related/relnote-supplement-bigip-15-1-0-2.html BIG-IP v13.1.3.3: https://techdocs.f5.com/kb/en-us/products/big-ip_ltm/releasenotes/related/relnote-supplement-bigip-13-1-3-3.html BIG-IP v14.1.2 EHF89.37-ENG for BIG-IP Virtual Edition is RTW, an engineering hotfix that is required for Common Criteria certification compliance on the 14.1.2 release SSLO 7.2: https://techdocs.f5.com/kb/en-us/products/ssl-orchestrator/releasenotes/product/relnote-ssl-orchestrator-15-1-0-iapp-7-2.html - Requires BIG-IP v15.1.0 or higher - SSLO analytics enhancements, more TLS1.3 enhancements and HA enhancements Cisco ACI Service Center App Release 2.3 - Release Notes: https://clouddocs.f5.com/f5-aci-servicecenter/latest/release-notes.html - Download from the Cisco DC App Center - The F5 ACI ServiceCenter enables visibility, L2-L3 stitching, and L4-L7 app services between BIG-IP and Cisco Application Centric Infrastructure (ACI). - Video Demos: https://www.youtube.com/playlist?list=PLSKNMFxFwt4SBOc1BkeYtuN2vU64SV5yq   Some Noteworthy Askf5.com Articles K70322942: Securing Network Access VPN: https://support.f5.com/csp/article/K70322942 - Nice overall coverage of using F5 for SSL VPN K05372587: BIG-IP performance check-list: https://support.f5.com/csp/article/K05372587 - With the heavy usage of F5 SSL VPN, this doc has guidance on monitoring and tuning for performance K17160: Achieving consistent high-performance on BIG-IP VE: https://support.f5.com/csp/article/K17160 - This document gives recommended practices on performance tuning on Virtual Editions Other Noteworthy F5 Articles Scaling SSL VPN using BIG-IP Local Traffic Manager: https://devcentral.f5.com/s/articles/Scaling-SSL-VPN-using-BIG-IP-Local-Traffic-Manager-LTM YouTube: Using Bandwidth Controller to Manage VPN Bandwidth Consumption: https://www.youtube.com/watch?v=q4jdUMaF62g&feature=youtu.be DevCentral Connects Live Stream on APM this Thursday!: https://www.youtube.com/watch?v=02UsdE0h-ZQ SSL VPN Split Tunneling for Office 365: https://devcentral.f5.com/s/articles/SSL-VPN-Split-Tunneling-and-Office-365   Industry News   Magecart Hackers Inject iFrame Skimmers in 19 Sites to Steal Payment Data: - https://thehackernews.com/2020/04/magecart-digital-skimmer.html - New campaign happening that has been successful against 19 e-commerce sites. Great use case for Shape Security. Marriott says 5.2 million guests exposed in new data breach: - https://www.reuters.com/article/us-marriott-intnl-data-breach/marriott-says-5-2-million-guests-exposed-in-new-data-breach-idUSKBN21I3DC - This time, 5.2 million guests. After the 2018 breach of 500 million guests.   Subscribe to our YouTube channel! - https://www.youtube.com/darylandbuu?sub_confirmation=1 Daryl Montgomery and Buu Lam are the F5 Account Team covering valued clients in British Columbia, Northwest Territories, Yukon and Nunavut. Their weekly show covers recent topics in the world of F5. Please consider Subscribing and enabling Notifications. Weekly Update will be released at the beginning of each week. Buu's Hour Live Streams are released throughout the week. Instagram - https://www.instagram.com/buushour/ LinkedIn - https://www.linkedin.com/in/daryl-montgomery-8876752/ https://www.linkedin.com/in/buulam/ Buu's Hour B Roll Channel - https://www.youtube.com/channel/UCRSFdUbMRvX925MU7_knxSw Website - http://darylandbuu.com  

In this podcast we look at innovations in networking security such as TLS1.3 and DNS over HTTPS (DoH). Our Guest is Logan Velvindron; an engineer from Afrinic. Loganaden Velvindron is an open source software developer and IETF participant, as well as the founder and core team member of CyberStorm.mu, a cybersecurity group operating from Mauritius, a small island in the Indian Ocean. Logan and CyberStorm.mu work to improve Linux and open source software through participation in hackathons, including the IETF Hackathons. They also train next-generation Mauritian hackers by organizing boot camps for high school students who have successfully participated in Google Code-in. Useful links: Cyberstorm initiative: https://cyberstorm.mu/ https://ietf.org https://slashdot.org

Delivered-To: hello@world Received: by 2002:ac9:5acc:0:0:0:0:0 with SMTP id o12-v6csp4191083ocp; Wed, 15 Oct 1999 16:45:27 -0700 (PDT) X-Internet-Smtp-Source: ADUXVKIJiP1oPktQqmnT9ehmmT8fRopftDgiB6R0A7UvcJAks5CpXyYpVGGNWej0BY4h28nVe9es Subject: Rush 2049 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 Received-SPF: pass

Delivered-To: hello@world Received: by 2002:ac9:5acc:0:0:0:0:0 with SMTP id o12-v6csp4171263ocp; Wed, 6 Oct 1999 11:30:18 -0700 (PDT) X-Internet-Smtp-Source: ADUXVKIrYu2vhcU9teKrZYmGM9HSXPjDDs+L/nwUwE/2s/AuiBy5Yd1OZQ80CBJG+sp4/94oFTYl Subject: Crisis Zone (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 Received-SPF: pass

11 октября Интернету не поплохеет — короткий итог почти двух с половиной часов. А если поплохеет, мы знаем, где подорожник приложить. На самом деле подкаст вышел достаточно технический: про заворот трафика на себя через BGP поговорили, как подменить DNS-ответ и направить трафик на сервера Труди, рассказали, что не так с десктопными почтовыми клиентами обсудили, почему мало кто внедряет DNSSEC, выяснили. Вот бы ещё про TLS1.3 послушать… А, тоже было. В гостях 67-го выпуска были Артём Гавриченков (@ximaera) и Александр Козлов (@Shapelez) из Qrator Labs. Рекомендуем так же их подкаст Прокуратор с обалденной нумерацией — жаль нам в голову раньше не пришла. Скачать файл подкаста А что, может, пригласить ещё раз, рассказать про то, как работает Anti-DDoS? Добавить RSS в подкаст-плеер. Подкаст доступен в iTunes. Скачать все выпуски подкаста вы можете с яндекс-диска. Url podcast:https://archive.org/download/linkmeup-v067/linkmeup-v067.mp3

11 октября Интернету не поплохеет — короткий итог почти двух с половиной часов. А если поплохеет, мы знаем, где подорожник приложить. На самом деле подкаст вышел достаточно технический: про заворот трафика на себя через BGP поговорили, как подменить DNS-ответ и направить трафик на сервера Труди, рассказали, что не так с десктопными почтовыми клиентами обсудили, почему мало кто внедряет DNSSEC, выяснили. Вот бы ещё про TLS1.3 послушать… А, тоже было. В гостях 67-го выпуска были Артём Гавриченков (@ximaera) и Александр Козлов (@Shapelez) из Qrator Labs. Рекомендуем так же их подкаст Прокуратор с обалденной нумерацией — жаль нам в голову раньше не пришла. Скачать файл подкаста А что, может, пригласить ещё раз, рассказать про то, как работает Anti-DDoS? Добавить RSS в подкаст-плеер. Подкаст доступен в iTunes. Скачать все выпуски подкаста вы можете с яндекс-диска. Url podcast:https://archive.org/download/linkmeup-v067/linkmeup-v067.mp3

11 октября Интернету не поплохеет — короткий итог почти двух с половиной часов. А если поплохеет, мы знаем, где подорожник приложить. На самом деле подкаст вышел достаточно технический: про заворот трафика на себя через BGP поговорили, как подменить DNS-ответ и направить трафик на сервера Труди, рассказали, что не так с десктопными почтовыми клиентами обсудили, почему мало кто внедряет DNSSEC, выяснили. Вот бы ещё про TLS1.3 послушать… А, тоже было. В гостях 67-го выпуска были Артём Гавриченков (@ximaera) и Александр Козлов (@Shapelez) из Qrator Labs. Рекомендуем так же их подкаст Прокуратор с обалденной нумерацией — жаль нам в голову раньше не пришла. Скачать файл подкаста А что, может, пригласить ещё раз, рассказать про то, как работает Anti-DDoS? Добавить RSS в подкаст-плеер. Подкаст доступен в iTunes. Скачать все выпуски подкаста вы можете с яндекс-диска.

関連リンク Google、日本への「Pixel」投入認める iPhone XS 組み込み技術者向けTLS1.3基礎解説（前編）：まずはSSL/TLSについて知ろう ルノー・日産・三菱連合がGoogleとパートナーして車載システムをAndroidベースに BLE Ver5.0対応のSoC、600mの通信距離を実現 パナソニック、電柱広告の共同実証実験を開始 通信で表示変える電柱広告、駐車場の満空情報を表示 米中貿易摩擦は｢第３ラウンド｣に突入へ 韓国大統領が米国へ出発　南北会談の結果説明へ ZOZO前澤氏がアポロ以来の月旅行を｢買い占めた｣真意 —— イーロン・マスクと肩車

  Matt Miller’s #Assembly and #Reverse #Engineering class $150USD for each class, 250USD for both classes Syllabus : https://docs.google.com/document/d/1alsTUhGwAAnR6BA27gGo3OdjEHFnq2wtQsynPfeWzd0/edit?usp=sharing Please state which class you'd like to take when ordering in the "Notes" field in Paypal https://paypal.me/BDSPodcast/150usd To sign up for both classes: https://paypal.me/BDSPodcast/250usd     Stories: https://threatpost.com/orbitz-warns-880000-payment-cards-suspected-stolen/130601/ TLS1.3 - https://www.theregister.co.uk/2018/03/27/with_tls_13_signed_off_its_implementation_time/ https://slate.com/technology/2018/03/facebook-acknowledges-it-kept-records-of-calls-and-texts-from-android-users.html https://www.csoonline.com/article/3264654/security/atlanta-officials-still-working-around-the-clock-to-resolve-ransomware-attack.html https://timtaubert.de/blog/2015/11/more-privacy-less-latency-improved-handshakes-in-tls-13     Sign up for Jay Beale's class at Black Hat 2018: https://www.blackhat.com/us-18/training/aikido-on-the-command-line-linux-lockdown-and-proactive-security.html #Spotify: https://brakesec.com/spotifyBDS #RSS: https://brakesec.com/BrakesecRSS #Youtube Channel:  http://www.youtube.com/c/BDSPodcast #iTunes Store Link: https://brakesec.com/BDSiTunes #Google Play Store: https://brakesec.com/BDS-GooglePlay Our main site:  https://brakesec.com/bdswebsite   Join our #Slack Channel! Email us at bds.podcast@gmail.com or DM us on Twitter @brakesec #iHeartRadio App:  https://brakesec.com/iHeartBrakesec #SoundCloud: https://brakesec.com/SoundcloudBrakesec Comments, Questions, Feedback: bds.podcast@gmail.com Support Brakeing Down Security Podcast by using our #Paypal: https://brakesec.com/PaypalBDS OR our #Patreon https://brakesec.com/BDSPatreon #Twitter: @brakesec @boettcherpwned @bryanbrake @infosystir #Player.FM : https://brakesec.com/BDS-PlayerFM #Stitcher Network: https://brakesec.com/BrakeSecStitcher #TuneIn Radio App: https://brakesec.com/TuneInBrakesec

Cuando estamos inmersos en nuestro mundo, muchas veces no nos damos cuenta de lo que sucede a nuestro alrededor. Esto es precisamente lo que me ha pasado con el ESP8266. Siempre he estado rodeado de Arduino y soy un fiel defensor de esta placa. Hace ya algún tiempo cayó en mis manos un módulo ESP-01. Estuve trasteando con el varios meses y jugando con los comandos AT. Pero realmente cuando he visto el potencial que tiene, ha sido preparando este capítulo del podcast.Gracias a Germán Martín, un fiel seguidor de Programarafacil, he podido descubrir el abanico de posibilidades que nos brinda. Hoy vamos a hablar de todo esto. Analizaremos la actualidad de este microcontrolador y pondremos todas las cartas sobre la mesa. Si en apenas dos años ha conseguido crear diferentes módulos destinados a diferentes fines, lo mejor está todavía por llegar. Comenzaremos hablando de sus orígenes y sus posibles usos. Luego veremos detalladamente sus especificaciones técnicas. Por último analizaremos los diferentes módulos que podemos encontrar en el mercado y los diferentes métodos para programar el ESP8266.Qué es el ESP8266Cuando salió el Arduino MKR1000, afirmé que revolucionaría el mundo de los objetos conectados, sobre todo por la facilidad de uso que caracteriza a estas placas. Acercaba de una manera sencilla el IoT a la población civil. Pero lo que está ocurriendo con el ESP8266, puede reventar las nuevas tendencias de muchos sectores. Se trata de un chip integrado con conexión WiFi y compatible con el protocolo TCP/IP. El objetivo principal es dar acceso a cualquier microcontrolador a una red.En este artículo haré referencia en varias ocasiones a Arduino y es que, sin duda alguna, es la competencia del Shield WiFi para esta placa. Pero no solo eso, Atmel, el fabricante que provee de microcontroladores a Arduino, sacó al mercado el ATSAMW25, competencia directa del ESP8266. Este microcontrolador es el que incorpora el Arduino MKR1000.La gran diferencia entre el ESP8266 y el ATSAMW25 es el precio. Mientras que podemos encontrar módulos con el chip ESP por 3€, el Arduino MKR1000 sale por unos 40€ con gastos de envío.La diferencia es abismal aunque tiene su sentido. La versión más básica del ESP es la 01 y dista mucho de la facilidad de uso que tiene el Arduino MKR1000, aunque el objetivo de este artículo no es hacer una comparativa entre ellos.La gran ventaja del ESP8266 es su bajo consumo. Es el producto ideal para wereables y dispositivos del IoT.Un poco de historiaNo voy a profundizar en la historia detrás de este chip. Puedes encontrar mucha información en la red. La empresa que lo creo y lo fabrica es Espressif, una empresa China situada en Shangai.Aunque parece que lleva con nosotros mucho tiempo, lo cierto es que vio la luz en agosto del 2014, en su versión básica el módulo ESP-01 de la mano de AI-Thinker. Ese mismo mes comenzó la era de reinado del ESP. Todos aquellos que pudieron hacerse con uno quedaron fascinados por su bajo precio y las posibilidades que tenía. En aquella época el gran problema era la documentación, estaba toda en Chino.Poco a poco, la gran comunidad que hay detrás, comenzó a traducir la documentación y crear firmwares pare el ESP8266. Un firmware no es más que el software de bajo nivel, la lógica que controla los circuitos electrónicos. Todo empezó a crecer y las aplicaciones se multiplicaron. En la actualidad podemos encontrar multitud de módulos que incorporan este microcontrolador.A mediados de este año (2016), la empresa anunció una nueva versión, el ESP8285. Parecía un clon de su predecesor. La gran diferencia es que incorpora una memoria Flash de 1MB integrada dentro del propio chip. El ESP8266 no dispone de esta memoria y necesita de un módulo externo para almacenar los programas. Esto va a permitir crear dispositivos del IoT, o de otro tipo, del tamaño de una tecla de un teclado, todo un reto. Todo gracias a la conectividad y a la memoria Flash que incorpora.Posibles usos del ESP8266En este punto debemos de distinguir entre los módulos y los microcontroladores. El ESP8266 y el ESP8285 son microcontroladores. Podemos trabajar con ellos sueltos o podemos comprarlo integrado dentro de un PCB (Printed Circuit Board o Circuito Impreso).Ocurre lo mismo que con Arduino. Tenemos la posibilidad de comprar un microcontrolador Atmel o comprar la placa de Arduino donde ya viene integrado.Dicho todo esto, el uso que le demos dependerá de si lo tenemos como chip o como módulo. Dentro de la gran cantidad de usos caben destacar los siguientes:Electrodomésticos conectados.Automatización del hogar.Casas inteligente. ITEAD es puntera en este sector.Automatización de la industria.Monitor de bebés.Cámaras IP.Redes de sensores.Wereables.IoT (Internet of Things o Internet de las Cosas)IIoT (Industrial Internet of Things o Internet de las Cosas para el sector Industrial)Y cualquier aplicación donde se requiera conexión a una red o a Internet.Especificaciones del chip ESP8266No me cansaré de repetir que lo primero que debemos hacer cuando adquirimos un nuevo componente es mirar la hoja de especificaciones técnicas. La empresa Espressif nos facilita dicha hoja en Inglés. A continuación haré un resumen de lo más importante.HardwareUtiliza una CPU Tensilica L106 32-bitVoltaje de operación entre 3V y 3,6VCorriente de operación 80 mATemperatura de operación -40ºC y 125ºCConectividadSoporta IPv4 y los protocolos TCP/UDP/HTTP/FTPNo soporta HTTPS en un principio. Si que lo hace mediante software tanto en cliente como servidor TLS1.2. La primera implementación está todavía en desarrollo.Puertos GPIO (de propósito general)Tiene 17 puertos GPIO pero solo se pueden usar 9 o 10. El GPIO16 es especial ya que está conectado al RTC (Real Time Clock).Pueden ser configurados con resistencia Pull-up o Pull-down.Soporta los principales buses de comunicación (SPI, I2C, UART).Características eléctricasVoltaje de trabajo entre 3V y 3,6V.Según noticias del propio CEO de Espressif, admite tensiones de entrada de 5V e los puertos GPIO.ConsumosDependerá de diferentes factores como el modo en el que esté trabajando el ESP8266, de los protocolos que estemos utilizando, de la calidad de la señal WiFi y sobre todo de si enviamos o recibimos información a través de la WiFi. Oscilan entre los 0,5 μA (microamperios) cuando el dispositivo está apagado y los 170 mA cuando transmitimos a tope de señal.Modos de operaciónDebido a los sectores a los que va enfocado, wereables, dispositivos del IoT y móviles, el ESP8266 requiere de una gestión de energía eficaz. Dispone de una arquitectura de bajo consumo que trabaja en 3 modos.Active mode o modo activo: a pleno rendimiento.Sleep mode o modo dormido: solo el RTC (Real Time Clock) está activo para mantener la sincronización. Se queda en modo alerta de los posibles eventos que le hagan despertar. Mantiene en memoria los datos de conexión y así no hace falta volver a establecer la conexión con la WiFi. Consume entre 0,6 mA y 1 mA.Deep sleep o modo en sueño profundo: el RTC está encendido pero no operativo. Debe pasar por el modo dormido antes de despertar. Hay que llevar especial cuidado con los datos ya que en este estado es como si estuviera apagado y todos los datos que no estén almacenados se pierden. Consume alrededor de 20 μA.Módulos ESP-XXAl igual que con Arduino, donde trabajamos con la placa o circuito integrado, con el ESP8266 ocurre exactamente lo mismo. El fabricante AI-Thinker proporciona la serie ESP con diferentes modelos para diferentes usos. A parte han ido surgiendo diferentes placas que incorporan algún módulo ESP como el NodeMCU.