Podcasts about version two

Apotheosis 2nd Edition Kickstarter Twitter | Ko-Fi | Discord Intro and Outro Music by Bryan This podcast is powered by Pinecast.

A solo episode today going through mailbag questions and your version 2 teams --- Send in a voice message: https://podcasters.spotify.com/pod/show/dean-vasic/message

This version of 'We've Got You Covered' does not contain audio clips of the various song titles discussed in this episode. It needed to be uploaded without copyright content to prevent this episode from being blocked in certain countries on our YouTube channel. **** Welcome back, friends! This week we're talking covers. Cover songs that is! Each of our hosts has compiled a tracklisting for a hypothetical En Vogue Covers album they would want to be produced. They also read your submitted letters and read another rare track. Vote for your favourite covers album! Which host had your favourite compiled track listing? Cast your vote here: https://take.quiz-maker.com/poll4688180x35694455-146 Head over to our YouTube channel to listen to the original demo of the 1987 song 'Secret Wish' featuring Maxine. We thank those of you who have rated and reviewed Part of Us: An En Vogue Fancast on Apple Podcasts. If you haven't already, please consider leaving a rating, a review and subscribing. Your support goes a long way in helping us to grow our community and reach more listeners. For even more content on En Vogue, visit us on Twitter @PartofUsFancast and on Facebook, Instagram and YouTube @envoguecraze Your feedback is always appreciated. Send comments, questions and topic suggestions to: partofusevf@gmail.com Music by: Wolves and Vincent Tone Produced & edited by Matthew at Culture Inject Studios.

Would you like to fall asleep faster, sleep more deeply, and more easily? Would you like to reduce stress and manage anxiety? These GUIDED SLEEP MEDITATIONS and meditation music serve as supportive therapy and can help with sleep and help reduce stress and anxiety. The guided sleep meditations and sleep music are suited to adults, parents, children, students, and babies looking for help and guidance to achieve a night of deep sound sleep, peace and relaxation.    Drink Magicmind the drink which makes me sing. Get your discount link here  URL: https://www.magicmind.co/SLEEPMEDITATION Promo: SLEEPMEDITATION   My BEYOND ANXIETY ONLINE COURSE. Learn at your own pace.  Over 23 hours of content.  - meditations- audios- videos- 80pg workbook  JOIN NOW.   https://lauren-ostrowski-fenton-s-school.teachable.com/p/beyond-anxiety   QUALIFICATIONS   HONORS ARTS Degree in ANTHROPOLOGY at MONASH UNIVERSITY CLAYTON AUSTRALIA    MASTERS IN COUNSELLING AT MONASH UNIVERSITY CLAYTON AUSTRALIA.    EXPERIENCE I have been teaching meditation for over 30 years.  I am a qualified Personal trainer with Certificates 3 and 4 in Fitness and Certificate 4 in workplace training and assessment. I have lectured in the fitness, mental health and wellbeing industry for over 25 years. I am a specialist ‘intensive A' mental health worker working in mental health and disability and have worked in mental health forensics.   Your mental health matters.  The information provided by Lauren Ostrowski Fenton is solely intended for support, informational and comfort purposes and is not a substitute for professional advice, diagnosis, or treatment regarding medical or mental health conditions. Although Lauren Ostrowski Fenton is a qualified therapist, the views expressed on this site or any related content or associated sites should not be deemed medical or psychiatric advice. Always consult your physician before making any decisions related to your physical or mental health.     Please SUBSCRIBE LINK & SHARE this video and others with those you think might require a sound sleep and relaxation. Thank you. Lauren Ostrowski Fenton   #fallasleepfast #guidedmeditation #sleepmeditation #meditationforsleep #deepsleep   READ MY ARTICLES ON MEDIUM https://medium.com/@laurenostrowskifenton/how-to-achieve-your-dreams-in-impossible-circumstances-46852f696539   https://WelpMagazine.com/?p=17285 Top sleep podcast review and article   SLEEP MEDITATION WITH LAUREN PODCAST https://open.spotify.com/show/4YfDM1kGnepG5NG4poCwK0?si=gbJ1XTh0T5mgFQSSP8xomg   LAURENS BOOK ON HAPPINESS AND SLEEP Daily Rituals For Happiness at this link:  https://www.amazon.com/Daily-Rituals-Happiness-happy-single-ebook/dp/B01GA4KXWY?ie=UTF8&ref_=pe_2427780_160035660   More positive sleep Playlists & guided sleep Videos:    GUIDED MEDITATION SLEEP with Lauren Ostrowski Fenton https://www.youtube.com/playlist?list=PL9A0SxREo7APPe0eID_9e2f9mlj8qUEon   FALL ASLEEP SO FAST GUIDED SLEEP MEDITATION https://www.youtube.com/playlist?list=PL9A0SxREo7APt5_fPWrPkXNbQwk-VuvAh   SLEEP HYPNOSIS GUIDED MEDITATION https://www.youtube.com/playlist?list=PL9A0SxREo7ANoiJFmTUHayD4uPqq2a4gm   THE BEST SLEEP MEDITATIONS https://www.youtube.com/playlist?list=PL9A0SxREo7AOo1iDueqeUWhHbKMw79xVM   INSTAGRAM https://www.instagram.com/laurenostrowskifenton   PLEASE SUPPORT ME AT PATREON https://www.patreon.com/laurenostrowskifenton   Please donate  http://paypal.me/Laurenostrowski   Original vocals, script by Lauren Ostrowski Fenton. All rights reserved © 2022

bandcamp

Many investors are exploring the growing number of ESG investment solutions available to them in the marketplace. The options can be overwhelming, and for those looking to include sustainable investments in their portfolios, greenwashing continues to be a major concern. To discuss the ins and outs of how he evaluates investment opportunities with an ESG lens, we're joined by Matt Egerton, analyst and portfolio manager. Matt and host Pamela Ritchie discuss what the regulatory landscape in North America and beyond means for ESG, and also how companies disclose information. Matt also touches on what engagement and accountability look like within Fidelity's sustainable investing approach and screening process. This includes using a new ESG rating system called Version Two, launched recently at the end of March. Matt notes there are over 3,000 issuers now rated by Fidelity's analysts in that system. Recorded on April 20, 2022. At Fidelity, our mission is to build a better future for Canadian investors and help them stay ahead. We offer investors and institutions a range of innovative and trusted investment portfolios to help them reach their financial and life goals. For more information on Fidelity Mutual Funds and ETFs, visit www.fidelity.ca. FidelityConnects by Fidelity Investments Canada was ranked the #1 podcast by Canadian financial advisors in the 2021 Environics' Advisor Digital Experience Study.

About ScottCloud security historian.Developed flaws.cloud, CloudMapper, and Parliament.Founding team for fwd:cloudsecLinks: Block: https://block.xyz/ Twitter: https://twitter.com/0xdabbad00 TranscriptAnnouncer: Hello, and welcome to Screaming in the Cloud with your host, Chief Cloud Economist at The Duckbill Group, Corey Quinn. This weekly show features conversations with people doing interesting work in the world of cloud, thoughtful commentary on the state of the technical world, and ridiculous titles for which Corey refuses to apologize. This is Screaming in the Cloud.Corey: This episode is sponsored in part by our friends at Vultr. Optimized cloud compute plans have landed at Vultr to deliver lightning fast processing power, courtesy of third gen AMD EPYC processors without the IO, or hardware limitations, of a traditional multi-tenant cloud server. Starting at just 28 bucks a month, users can deploy general purpose, CPU, memory, or storage optimized cloud instances in more than 20 locations across five continents. Without looking, I know that once again, Antarctica has gotten the short end of the stick. Launch your Vultr optimized compute instance in 60 seconds or less on your choice of included operating systems, or bring your own. It's time to ditch convoluted and unpredictable giant tech company billing practices, and say goodbye to noisy neighbors and egregious egress forever. Vultr delivers the power of the cloud with none of the bloat. "Screaming in the Cloud" listeners can try Vultr for free today with a $150 in credit when they visit getvultr.com/screaming. That's G E T V U L T R.com/screaming. My thanks to them for sponsoring this ridiculous podcast.Corey: Couchbase Capella Database-as-a-Service is flexible, full-featured and fully managed with built in access via key-value, SQL, and full-text search. Flexible JSON documents aligned to your applications and workloads. Build faster with blazing fast in-memory performance and automated replication and scaling while reducing cost. Capella has the best price performance of any fully managed document database. Visit couchbase.com/screaminginthecloud to try Capella today for free and be up and running in three minutes with no credit card required. Couchbase Capella: make your data sing.Corey: Welcome to Screaming in the Cloud, I'm Corey Quinn. I am joined by a returning guest with a bit of a different job. Scott Piper was formerly an independent security researcher—basically the independent security researcher in the AWS space—but now he's a Principal Engineer over at Block. Scott, welcome back.Scott: Thanks for having me, again, Corey.Corey: So, you've taken a corporate job, and when that happened, I have to confess, I was slightly discouraged because oh, now it's going to be like one of those stories of when someone you know goes to work at Apple because no one knows anyone at Apple; we just used to know people who went there and then we kind of lost touch because it's a very insular thing. Not the Block slash Square slash whatever they're calling themselves this week has that reputation. But InfoSec is always a very nuanced space and companies that have large footprints and, you know, handle financial transaction processing generally don't encourage loud voices that attract attention around anything that isn't directly aligned with the core mission of the company. But you're still as public and prolific as ever. Was that a difficult balance for you to strike?Scott: So, when I was considering employment options, that was something that I made clear to any companies that I was talking to, that this is something that probably will and should continue because a lot of my value to these companies is because I'm able to have discussions, able to impact change because of that public persona. So yeah, so I think that it was something that they were aware of, and a risk that they took. [laugh]. But yeah, it's been useful.Corey: This is the sort of conversation I would have expected to have with, “Yeah, things seem to be continuing the same, and I haven't rocked any boats, yet and they haven't fired me, knock on wood.” Except that recently you've launched yet something else that I am personally a fan of. Now, before we get into the specifics of what it is you're up to these days, I should call out that since your last appearance on this show, I have really leaned into the Thursday newsletter podcast duo of Last Week in AWS: Security Edition. Rounding up what happened the previous week—yes, it was the previous week, and it comes out on Thursdays—because, you know, timing and publication, things are hard, computers, you know how it is—aimed at a target audience that is very much not you: People who have to care about security, but are not immersed in the space. It's a, “All right, what now? What do I have to pay attention to?”Because there's a lot of noise in this space, there's a lot of vendor-captured stuff out there. There's very little that is for people who work in security but don't have the word security anywhere near their job title. And I have to confess that one of my easy shortcuts is, “Oh, it's a pretty thin issue this week,” which is not inherently a bad thing, let's be clear, it's not yay, the three things you need to care about in security then eight more of filler; that's not what we're about. But I always want to make sure I didn't miss something meaningful, and one of my default publication steps is, “What's Scott been tweeting about this week?” Just to make sure that I didn't miss something that I really should be talking about.And every single time I pull up your Twitter feed, I find myself learning something, whether it's a new concept, or whether it is a nuance on an existing thing I was already aware of. So first, thank you for all the work that you do as a member of the community, despite having a, “Regular corporate job,” quote-unquote, you're still very present. It's appreciated.Scott: Thank you. Yeah. And I mean, that newsletter is great for people that don't want to be spending multiple hours per day trolling through Twitter and reading that. So, it provides, also, something great for the community to not have to spend all that time on Twitter like I do [laugh], unfortunately.Corey: It also strives—sort of—to be something approaching an upbeat position of not quite as cynical and sarcastic as the Monday issue. I try to be not just this is the thing that happened, but go a little bit into and this is why it matters. This is how to think about it. This thing that Amazon put out is nonsense, however, here's the kernel hidden within it that might lead to something, such as thinking about how you do sign-on, or how to think about protecting MFA devices, or stuff like that you normally care about a lot right after you really should have cared about it but didn't at all. So, it's just the idea of aiming in a slightly different audience.Scott: Yeah definitely. And it provides value that it does, it takes some delay so that you can read what everybody has written, how they've responded to the different news outtakes, you're not just including the hot takes. For example, as of this morning, there's a certain incident with an authentication provider, and it's not really clear if there was actually a breach or not. And so it's valuable to take a moment to understand what happened, get all the voices to have expressed their points, so you can summarize those issues.Corey: An internal term that we've used to describe the position here is that I am prolific but I also have things to do as a part of my job that do not involve sitting there hitting refresh on Twitter like mad all the time. The idea is to have the best take not the first take—Scott: Exactly.Corey: And if that means that I lose a bunch of eyeballs and early ad impressions in the middle of the night and whatnot, well, great. I don't sell ad impressions anyway, so what does it matter? It winds up lending itself to a more thoughtful analysis of figuring out, in the sober light of day, is this a nothing-burger or is this enormous? With that SSO issue that you're alluding to—[cough] Okta—sorry, something caught in my throat there—very clearly, something is going on, but if I had written next week's newsletter last night while it was still very unclear, it would have been a very different tone than the one that I would have written this morning after their public statement, and even still a certainly different tone that it would take a couple of days once more information is almost certain to come to light. And that is something that is, I think, underappreciated in certainly on Twitter, where an old tweet—there's nothing worse than an old tweet unless you're using it to drag someone for something—that, “Well, we have different perspectives on that nowadays. It's not 2018 anymore.” Right. Okay, cool.Scott: Yep. [laugh].Corey: But something that you've done has been a bit of a pivot lately. Historically, you have been right there in my sweet spot of needling cloud providers for their transgressions in various ways. Cool, right there with you. We could co-author a book on the subject. But lately, you've started a community list of [IMSDv2 00:07:04] abuses.Now, first, we should talk about what IMSDv2 is. It's the name that it clearly came from Amazon because that's a name only a cloud provider bad at naming things could possibly love. What is it?Scott: So, it's the Instance Metadata Service, Version Two. If there's a version two, you can imagine there was a version one at some point. And the version two—Corey: And there's a version two because Amazon prod—the first one was terrible, but they don't turn anything off, ever, so this is the way and the light and the future; we're going to leave that old thing around until your great-grandchild dies of old age.Scott: Exactly, yeah. So, when EC2s first came out, and IAM roles first came out, you wanted to give your EC2s the ability to use AWS privileges, so this is how those EC2s are getting access to their credentials that they can use. And the way in which this was originally done was there's this magic IP address, this 169.254.169.254 IP address, which is very important for security on AWS because if anything can access that magic IP address from an EC2 instance, you can steal their credentials of that EC2, and therefore basically become that EC2 instance, in terms of what it can do in the AWS environment.And so in 2019, there was a large breach of Capital One that was related to this. And so as a result of that—I think that AWS probably had this new version, probably, in the works for a while, but I think that motivated their faster release of this new version, and so IMDSv2 changed how you would obtain these credentials. So, you basically—instead of making a single GET request to this IP address, now you had to make multiple requests, they were now PUT request instead of a GET request, there was a challenge and response, there's the hop limit. So, there's all these various things that are going to make it harder and basically mitigate a lot of the different types of vulnerabilities that previously would be used in order to obtain these credentials. The problem, though, is that IMDSv1 still exists on EC2s, unless you as a customer are enforcing IMDSv2.And so, in order to do this in a large environment, it's difficult—theoretically, it's a simple thing; all you should have to do is update your SDK and now you're able to make use of the latest version. And if you're using any version of the SDK that was released in the past over two years, you already should be using IMDSv2 there, but you have to enforce it. And so that's where the problem is. And what was most problematic to me is now that I work for a company, we have run into the problem that there are some vendor solutions that we use that weren't allowing us to enforce IMDSv2 across all of our different accounts. And this is something I've heard from a number of other customers as well.And so I decided to create this list with vendors that I've had to deal with, vendors that other customers have had to deal with, in order to basically try and solve this problem once and for all. It's been multiple years now and a lot of these vendors, unfortunately, were also security vendors. And so that makes the conversation a little bit easier, to basically put them on this wall-of-shame and say, “You're a security vendor and you're not allowing your customers to enforce best practices of security.”Corey: I want to call on a couple of things around that. Originally the metadata service was used for a number of other things—still is—beyond credentials. It is not the credential service as envisioned by a lot of folks. The way that—also we'll find those credentials empty until there's an EC2 instance role, and those credentials will both be scoped what that instance does and automatically rotated in the fullness of time so they're not long-lived credentials that once you have them, they will last forever. This is, of course, a best practice and something you should be leveraging, but scope those credentials down, or you wind up with one of the ways that was chained together in the Capital One breach a few years ago.It's also worth noting that service would have been more useful earlier in time with a few functions. For example, you can use the metadata service to retrieve the instance tags about the EC2 instance. When I requested it in 2015, it was not possible. But they had released it in January of this year, 2022, long after we have all come up with workarounds for this, where we could have used that to set the hostname internally on the system, if you're looking for something basic and easy. It would have been something then you could have used to automatically self-register with DNS without having to jump through a whole bunch of hoops to do it manually.And you look at this, and it's wow, that's a whole lot of crappy tooling I can just throw into the trash heap of history you don't need anymore. But the IMSDv2, you're right, makes it a lot harder, there has to be a conversation, not just something you can sort of bankshot something off of to get access to it. And it's a terrific mitigation. What I've liked about your list of more or less shaming companies for doing this is, on the one hand, you have companies who take themselves off of the list as soon as it's up there. It's, “Oh, we love when people talk about us. Wait, what's that? They're saying something unkind? On the internet?” And they'll fix it, which honestly is better than I expected.And then every once in a while you'll see something that's horrifying of, “Oh, yeah, we're not vulnerable to that at all because we tell you to create permanent long-lived credentials, store them on disk and we'll use those instead.” And it's… that is, like, guaranteeing that no one is going to break down your door by making your walls out of tissue paper. Don't do that. Like, that has gone so far around the band that has come back around again. So, hopefully that got fixed.Scott: And I think you pointed out a couple of things I want to talk about with this is that, one, it has actually been very successful in terms of getting large vendors to make changes. Currently, of the seven vendors that have ever been listed there, are three of them have already made fixes and have been removed from the list. And the list has only been up for about a month. And so, in terms of getting enterprise solution vendors to make changes within, like, just a few weeks is very surprising to me. And these are things that people have been asking for for years now, and so it had motivated them a lot there.And the other thing that I want to point out is people have looked at the success that it's had and considered maybe we should make wall-of-shame lists, for all the things that we want. And I want to point out that there are some things about this problem, the IMDSv2 specifically, that make it work for having this wall-of-shame list like this. One of them is that not supporting or not allowing customers to enforce IMDSv2 is basically always bad. There is not a use case where you can make a claim—Corey: There is no nuance where that, in this case, is the thing to do, like having an open S3 bucket: There are use cases where that is very much something you want to do, but it's the uncommon case.Scott: Exactly. That I think is an important thing. Another thing is it's not just putting up a list, you know, like that is what people are seeing publicly, but behind the scenes, there's a lot of other things that are happening. One, I am communicating with various customers, customers that are reporting this issue to me, in order to try to better understand what's happening there, so that I can then relay that information to the company. So, I'm not just putting up the list; I'm also, behind the scenes, having conversations with these different companies to try to get timelines from them, to try to make sure that they are aware of the problem, they are aware that they're on this list, how to get off the list. So, there's that conversation happening.There's also the conversation that I'm happening with AWS in order to make various requests that AWS improve this for customers, to make this easier. And this is something that is public on that repo. I have my list of requests to AWS so that people can relay that to their own TAMs at AWS to basically say these are things we want as well. And so this includes things like, “I want an AWS account to have the ability to default to always be enforcing IMDSv2.” You know, so as an example, when you create an EC2 through the web console—which people can say, oh, you should always be using Infrastructure as Code; the reality is many folks are using the web console to create EC2s to do other changes.And when you create an EC2 in the web console, by default, it's going to allow IMDSv1 still. And so my request to AWS is, you should allow me to just default enforce IMDSv2. Also, the web console does not give you visibility into which EC2s are enforcing it and which ones are not. And also, you do not have the ability in the web console to enforce it. You cannot click on an EC2 and say, “Please enforce it now.”So, it's all these various, like, minor changes that I'm requesting AWS to do.Corey: It has to be done at instance creation time.Scott: Exactly. And so there is an API that you can make in order to change it afterwards, but that's only an API so you have to use the CLI or some other mechanism; you can't do it in the web console. But the other thing that I'm requesting AWS do is if security is a priority for AWS and they have all these other partners that are security companies, that they should be requiring their partners to also be enforcing this in their various products. So, if a partner is basically not allowing your AWS customers to enforce security best practices, then perhaps that partnership should be revoked in some way. And so that's a more aggressive thing that I'm asking AWS to do, but I think is reasonable.Corey: I'd also like them to get all of their own first-party services to support this, too.Scott: That's true as well. So, AWS is currently on the list. And so, they have one service, Data Pipelines, which if you are an AWS customer and you are using that service, you are not going to be able to enforce IMDSv2 in your environment. So, AWS themselves, unfortunately, is not allowing customers to enforce this. And then AWS themselves in their own production servers, we have seen indications that they do not enforce IMDSv2 on their own production servers.So, the best practice that they are telling customers to follow, they unfortunately are not following it themselves. And so the way in which we saw this was Orca is a security company that ended up finding this issue with AWS—and there's a lot of questions in terms of what all exactly they found—but they had this post that they called “Breaking Formation” in which they were somehow able to find—basically exploit to some degree—and again, it's unclear exactly what they were able to exploit here—but they were able to exploit AWS production servers that are responsible for the CloudFormation service. And in their blog post, they had a screenshot which showed that those production servers are not enforcing IMDSv2. And so AWS themselves is struggling with this as well, as are many customers. So, it's something that, you know, I put together this list of requests in hopes that AWS can make it easier for not only customers but also themselves to be able to enforce it.Corey: There are a lot of different things that we wish companies did differently, particularly if that company is AWS. Why is this the particular windmill that you've decided to tilt at given—let's say—it's not exactly slim pickins out there as far as changes that we wish companies would make? Obviously, you mentioned at one point, there is no drawback to enabling this, but a lot could be said for other aspects as well. Why is this one so important?Scott: So, in part, I personally have some, I guess, history with this [laugh], basically, IMDSv2, and so we can discuss this. This is back when Capital One had their breach in 2019, there was this Senator, Senator Ron Wyden, who sent this email over to AWS, to Steve Schmidt, who was the CISO at the time there and still is the CISO, and he basically—Corey: Now, he's head of security for all of Amazon.Scott: Yeah, yeah.Corey: CJ is now the AWS CISO. And he has the good sense to hide.Scott: Yeah. [laugh]. So, at the time, this Senator Ron Wyden had send over this email—and obviously it's not Senator Ron Wyden himself, you know, it's one of his, like, technical people on staff that is able to give him this information—and he sends this email to AWS saying, “Hey, this metadata service played a role in this very significant breach. Why hasn't this been fixed?” And Steve Schmidt responded, and because it's communications between a senator, I guess it has to become public.So, Steve Schmidt responds, saying that, “Hey, we never knew that this was an issue before,” is essentially what he responds with. And that irked me because I had reported this to AWS previously, as had many other people. So, there was a conference presentation by this guy Andrés Riancho at BlackHat, I believe in 2014, and he had presented previously in 2013, so it was a known issue; it had been around for a while. But I took the time to actually report it to AWS Security. So, I went through the correct channel of making sure that AWS was aware of a security concern, as a security researcher—so reporting it through that correct channel there—and provided Senator Ron Wyden with all this information.And so, then he then requested that the FTC begin a federal investigation into AWS, related to basically not following the best practices that security researchers have recommended. So, that was, kind of like, my early, I guess, involvement with this issue. So, it's something that I've been interested in for a while to make sure that this is resolved completely at some point.Corey: This episode is sponsored by our friends at Oracle Cloud. Counting the pennies, but still dreaming of deploying apps instead of “Hello, World” demos? Allow me to introduce you to Oracle's Always Free tier. It provides over 20 free services and infrastructure, networking, databases, observability, management, and security. And—let me be clear here—it's actually free. There's no surprise billing until you intentionally and proactively upgrade your account. This means you can provision a virtual machine instance or spin up an autonomous database that manages itself, all while gaining the networking, load balancing, and storage resources that somehow never quite make it into most free tiers needed to support the application that you want to build. With Always Free, you can do things like run small-scale applications or do proof-of-concept testing without spending a dime. You know that I always like to put asterisks next to the word free? This is actually free, no asterisk. Start now. Visit snark.cloud/oci-free that's snark.cloud/oci-free.Corey: It's always fun watching where people come from, as far as the security problems that they call out. There was, I believe in the cloud security forum Slack, a thread of recently about what security issues are top-of-mind and that should be fixed as a baseline expectation. In fact, let me dig it out because that is one of those things that I think is well worth having the conversation properly on this.Good examples of risky, insecure defaults in AWS. And people are talking about IMDSv1, and they're talking about all kinds of other in-depth things, and my contribution to it was, “If I go and I spin up an AWS account, until I go out of my way, I'm operating as root in that account. That seems bad.” And a few responses to that were oh, the basically facepalming, “Oh, of course.” I wish that there were an easy way to get AWS SSO as the default because it is the right answer for so many different things. It solves so many painful problems that otherwise you're going to wind up stuck with.And this stuff is hard and confusing; when people are starting out with this for the first time, they're not approaching this from, “All right, how do I be extremely secure?” They want to get some work done. For fun a year ago, I spun up a test account—unattached to any organization—and because account aliases are globally unique, I somehow came up with the account ‘shitposting' because that's pretty much what I use it for. The actual reason I wanted that was I wanted something completely unattached from any other account that I could easily take screenshots from at any point, and the worst case scenario is okay, I've exposed some credential of my own in an account that has no privileged access to anything; I just have to apologize for all the Bitcoin mining now. And honestly, I think AWS would love that marketing campaign; they'd see my face on a billboard looking horrified. It'll be great.But I turned on every security service as I went because, of course, security is the most important thing. And there were so many to turn on, and the bill was approaching 50 bucks a month for an empty account. And it's. It starts to feel a little weird and more than a little wrong.Scott: [laugh]. Yeah, my personal concern in terms of default security features is really that problem of the cost controls, I think that that still is a big issue that AWS does not have cost controls such that when a student wants to try and use AWS for the very first time and somehow they spin up large EC2 instance, or they just you know, end up creating an access key and that access key gets leaked and somehow their account gets compromised and used for Bitcoin mining, now they're stuck with that large AWS bill. For a student who has no budget, is in debt, and now is suddenly being, you know, hit with multiple thousands of dollars on their bill, that I think is very problematic, and that is something that I wish AWS would change as a default is basically, if you are creating AWS account for the very first time, have some type of—I don't know how this would look, but maybe just be able to say, like, I don't ever want this AWS account to spend more than $100 per month, and I'm okay if you end up destroying all my data in the account because I have no money and money is more important to me than whatever data I may store in here.Corey: Make an answer to that question mandatory, just as putting a credit card in is mandatory. Because there are two extremes here. It's more or less the same problem of AWS not knowing who its customers are beyond an AWS account, but there's a spectrum somewhere between I'm a student who wants to learn how the cloud works, and my approach to security is very much the same. Don't let randos spin up resources in my account, and I don't ever want to be charged. If that means you turn off my “Hello World” blog post, okay, great.On the other end, it's this is Netflix. And this is our, you know, eight-millionth account that we're spending up to do a thing and what do you mean you're applying service quotas to it? I thought we had an understanding?—everything is a service quota, let's be clear—Scott: Yep.Corey: —or a company that's about to run a Superbowl ad. Yeah, there's going to be a lot of traffic there. Don't touch it. Just make it work. We don't care what it costs.Understanding where you fall on the cost perspective—as well as a security point of view of, “We're a bank, which means forget security best practices, we have compliance obligations that cannot be altered in this account and here's what they are.” There has to be a way that is easy and approachable for people to wind up moving that slider to whatever position best represents them. Because there are accounts where I never want to be charged a thing. And that's an important thing because—and I've been talking about this for a while because I'm convinced it's a matter of time—that poor kid who wound up trading on margin at Robinhood, woke up saw that he was seven-hundred-and-some-odd grand in debt and killed himself. When it all settled out, I think he turned something like a $30,000 profit when all was said and done, which just serves to make it worse.I can see a scenario in which that happens, and part of the contributors to it are that we used to see that the surprise bill for compromised accounts was 10, 15, 20 grand. Now, they're 70 to 90 because there are more regions, more services to run containers—because of course there are—and the payoff is such that the people exploiting this have gotten very practiced and very operationalized at spinning up those resources quickly, and they cost a lot very quickly. I mean, the third use case that they're not aiming at yet is people like me, where it's, oh, you have a free account that sandboxed; I want to get the high score on the free tier because all their fraud is attuned to you making money. With me, it's nope, just going to run up the store to embarrass Amazon. That's not a common exploit vector, but I'm very much here.Scott: [laugh]. Yep. And that also is the thing though: The Denial of Wallet attack is also a concern on AWS, as well, where you've written a blog post about this, how if you are able to make use of data transfer in different ways, you can run up very high multi-million dollar bills in people's AWS accounts and even AWS's own protections and defenses against trying to look for cost spikes and things like that is delayed by multiple hours. And so you can still end up spending a lot of money in people's accounts, or one thing that's wild is an S3 object locking; that feature, the whole purpose behind it is to ensure data can never be deleted. It exists for various compliance reasons, so even AWS themselves cannot delete certain data.So, if an attacker is able to abuse that functionality in somebody's account, they can end up locking data such that for the next 100 years, it can never be deleted and you're going to have to pay for that for the next 100 years inside your account. The only way of not paying for that anymore is to move everything that you have in an AWS account to a new account, and then ask AWS to delete that account, which is not going to be reasonable under most circumstances.Corey: Yeah, alternatively, it's one of those scenarios where well, the only other option is to start physically ripping hard drives out of racks in a bunch of different data centers. It's wild to me. It's such an attack surface that honestly I believe for the longest time that AWS Security is otherworldly good. And as we start seeing from these breaches, no, what really is otherworldly good is their ability to apply pressure to people not to go public with things they discover that they then wind up keeping quiet because once this whole Orca stuff came out, we started digging, and Aidan Steele found some stuff where you could just get unfiltered, raw outputs of CloudTrail events by setting up a couple of rules in weird ways.And that was a giant problem, and it was never disclosed publicly. I don't know if any of my events were impacted; I can't trust that they would have told me if they were. And for the first time, I'm looking at things like confidential computing, which are designed around well, what if you don't trust your cloud provider? Historically, I guess I was naive because my approach was, “Well, then you shouldn't be using the cloud.” Now it's, “Well, that's actually kind of a good point.”Because it's not that I don't trust my cloud provider to necessarily do what they're telling me. I just don't trust them to tell me what they're doing. And that's part of it. The, “Well, we found an issue, but you can't prove we had an issue, so we're going to say nothing.” And when it comes to light—because it always does—it erodes trust in a big way. And trust is everything in cloud.Scott: Yeah. And so with some of the breaches that have come out, I created another GitHub repo to start tracking all the different security incidents that I could find for the three cloud providers, Azure, GCP, and AWS. And so on there, I started listing not only some of the blog posts from security companies that had been able to exploit vulnerabilities in the cloud providers, but also just anything else that I felt was a security mistake in some way. And so there's a number of things I tried to avoid on there. Like, I tried to avoid listing something that's kind of like a business decision, for example, services that get released that don't have CloudTrail support. That's a security concern to me, but that's kind of a business decision that they decided to release a service before it supported all that functionality.So, I tried to start listing off all those different things in order to also keep track of you know, is there a security provider that's worse than the others? Are there any type of common patterns that I can see? And so I tried to look through some of those different things. And that's been interesting because also I really only focus on AWS, and so I haven't really known what all has been happening with GCP and Azure. And that was interesting because there's been two issues that have happened on AWS where the exact same issue happened on the other cloud providers. And so that tells me, that's concerning to me because that tells me tht—Corey: Because those are not discovered at the same time let's be clear.Scott: Yeah. These were, like, over a year apart. And so basically, somebody had found something on GCP, and then a year-plus later, somebody else found the exact same issue on AWS. And then similarly, there was an issue with Azure and then a year-plus later, same issue on AWS. And that's concerning because that tells me that AWS may not be monitoring what are the security issues that are impacting other cloud providers, and therefore checking whether or not they happen to themselves?That's something that you would expect a mature security team to be doing is to be monitoring what are public incidents that are happening to my competitors, and am I impacted similarly? Or what can I do to try and identify those issues, fix them, make sure they never happen? All those types of steps in terms of security maturity. And that's something that then I'm a little concerned of that we've seen those issues happen before. There's also, on AWS specifically, they have had a number of issues related to their IAM-managed policies that keep cropping up.And so they have had a number of incidents where they were releasing policies that shouldn't have been released in some way. And that's concerning that showed that they don't really have a change management process that you would expect. Usually, you would expect a company to be having GitHub PRs and approval processes and things like that, in order to make sure that there's a second set of eyes on something before it gets released.Corey: Particularly things of this level of sensitivity. This is not—like, I was making fun of them a day or two ago for having broken the copyright footer and not updating them since 2020 because instead of the ‘copyright' symbol, they used an ‘at' symbol. Minor stuff, but like that's fun to needle people about, but it doesn't actually matter for anything.Scott: Yeah.Corey: Security matters and mistakes show.Scott: Yeah. And so there had been some examples where they released a policy that was called, like, ‘cheese puffs something' and it's like, okay, that's clearly, like, an internal service of some sort. But I'd called them out and, like, I'd sent an email to AWS Security being like, “Hey, you need to make sure that you have change management processes on your IAM policies because one day you're going to do something that is bad.” And one day they did. They made a change to the read-only access policy, and that basically—they removed every single privilege, somebody had ended up, you know, internally, removed every single privileges to the read-only access policy and replaced it with a whole bunch of write privileges for, I think, the Cassandra service.And so, that was like, clearly they've made a mistake that they should have made sure they were correcting because you know, they had these previous incidents. Another kind of similar one was in December, there was a support policy where they had added S3 GetObject to that policy, and that was concerning in terms of have they just given all of their support employees access to everybody's content in their S3 buckets? And so AWS made some statements saying that there were other controls in place there so it wouldn't have been possible. But it's those types of things that [crosstalk 00:33:17]—Corey: Originally, those statements were made on Twitter, let's be clear here.Scott: Yes. Yeah. [laugh].Corey: And I feel like there's a—while I deeply appreciate how accessible a lot of their senior people are, I cannot point the executive leadership team at a client to some tweets that someone made. That is not a public statement of record that works on this.Scott: Exactly.Corey: They're learning. We'll get there sooner or later, I presume. I want to thank you for taking the time to speak with me, as always, I'll throw links to these repos into the [show notes 00:33:46], but if they want to know more what you have to say, where's the best place to find you?Scott: So, my Twitter, which, unfortunately, is a handle written in hex, but it's—‘dabbadoo' is how you would pronounce it, but it's probably easiest to see a link for it. So, that's probably the main place to look for me.Corey: That's why my old Twitter handle was my amateur radio callsign. I don't use that one anymore. It's just easier. And I think that's the right answer. Besides, given what you do, it's easy enough if people want your attention. They screw up badly enough, you'll come to them.Scott: Yep. [laugh].Corey: Scott, I really appreciate your time. Thanks again.Scott: Thank you.Corey: Scott Piper, Principal Engineer at Block and, more or less, roving security troubadour for lack of a better term. I'm Cloud Economist Corey Quinn, and this is Screaming in the Cloud. If you've enjoyed this podcast, please leave a five-star review on your podcast platform of choice, whereas if you've hated this podcast, please leave a five-star review on your podcast platform of choice or a comment on the YouTubes saying that this episode is completely invalid because you wind up using the old version of the metadata service and you've never had a problem. That you know of.Corey: If your AWS bill keeps rising and your blood pressure is doing the same, then you need The Duckbill Group. We help companies fix their AWS bill by making it smaller and less horrifying. The Duckbill Group works for you, not AWS. We tailor recommendations to your business and we get to the point. Visit duckbillgroup.com to get started.Announcer: This has been a HumblePod production. Stay humble.

Mason Rudolph wears Metallica shirts but can't name ONE Metallica song - Woman brings flowers and cash for lion at Bronx Zoo - More Steelers Facebook comments after TIE against Lions - Coach Tomlin talks about tying Lions and Ben being out with COVID - Taylor Swift gave us TOO MUCH content and merch with Red (Taylor's Version) - TWO weeks away now from Stuff-A-Bus - Adele is ready to crush us with her new album and Mikey does a horrible Adele voice

On this episode of Pacific Beer Chat we had the great pleasure to have Brent Mills of Four Winds Brewing on the show to talk about the brewery and also their Version Two of their Collaboration Pils Pack.  This time the pils pack was a virtual collaboration with Ontario breweries.Podcaster Involved:Mike G of Pacific Beer ChatJordan of Pitt Craft Beer DadWarren of Fraser Mills fermentation / Whats Brewing MagazineIntro By Conundrum – Website, Facebook, Instagram

In our very first podcast, you'll go deep into the world of Native Lead Generation with the help of Version Two's Joe Williams. Expect an in-depth discussion on all things Native, full of tips, hints, and practical ideas. We also look at why Native presents a huge opportunity for brands and lead buyers.

The boys are brewing a new take on their recipe, sitting out in the cold, & wishing they had more layers on.

The boys are brewing a new take on their recipe, sitting out in the cold, & wishing they had more layers on.

Rids & MJ chat through the big issues facing SuperCoach, AFLFantasy & DreamTeam coaches of the week.Social Media:Facebook: https://www.facebook.com/coachespanelTwitter: https://twitter.com/coachespanelInstagram: https://www.instagram.com/coachespanel/Website Links:YouTube: https://www.youtube.com/coachespanelPatreon: https://www.patreon.com/coachespanelWeb: http://coachespanel.tv/Podcast:Spotify: https://open.spotify.com/show/20rEmPNwjKmazm2oTD010zApple Podcasts: https://itunes.apple.com/au/podcast/afl-fantasy-supercoach-and-afl-dreamteam-podcast/id975045421?mt=2Podcast RSS feed:https://rss.whooshkaa.com/rss/podcast/id/4890

Dads-to-be are still missing pregnancy milestones, despite lockdown measures easing in other areas of life. As well as missing highs such as scans and hearing their baby’s heartbeat, some are also having to be absent during times of worry. But a charity in the North West is on hand to provide support for those waiting in hospital car parks while their partners attend appointments and scans. Dad Matters is a charity working across Greater Manchester to support dads during their child’s early years. They have a mobile stall at Bolton Hospital to provide support. Project manager Kieran Anders said: “We’ve always known that to reach Dads with those crucial messages about early relationships and mental health, we need to go to them. This innovative way of meeting Dads during such unfathomable challenges means more will get those messages, understand their role and be able to find support when they need it.” National guidelines state mums-to-be should attend appointments on their own. Wrightington, Wigan and Leigh NHS Foundation trust confirmed dads are unable to attend appointments, while Lancashire Teaching Hospitals NHS Foundation Trust said dads were only allowed to attend the 20-week scan. A spokesperson said: “We know that partners often like to attend antenatal appointments, however our priority must be the safety of all mums-to-be and their babies. “This is why expectant mums are currently asked to attend antenatal appointments alone, with the exception of the 20 week scan where partners are welcome to attend. Individual arrangements are also made for women with exceptional support needs.” Natalie Patterson, Specialist Perinatal Mental Health Midwives’ team leader at Bolton NHS FT said:“We know this is a difficult time for everyone due to the COVID 19 restrictions. As a maternity service we have been very aware that dads are missing out on being present during appointments, scans and the early hours and days after birth. Whilst this is necessary to ensure safety of patients and staff we want to acknowledge how hard this is for families expecting a baby.” John Strange lives in Stalybridge and is set to become a dad for the first time in four weeks. He said: “If you look at the bigger picture, this is affecting hundreds of people in the area, not to mention thousands across the UK. “That’s why you need to remember that it will get resolved and we did have the feeling that if there were any health concerns, they were there.”

The US has 5% of Population but 25% of deaths

No, there wasn't an issue with recording. No, we did not run out of things to talk about on this classic film. We are just doing things a little differently on Slashers these days. Instead of going through every bit of minutia on the recap of the film, we are focusing on the noteworthy parts. Please let us know if you like this change. So far, we are loving it. We have recorded another episode already with this format and we feel it is more substantive, higher energy, and you don't have to listen to our annoying voices any longer than need be. This week's film is A Clockwork Orange, based on the Anthony Burges novel of the same name. Both the film and the novella follow Alex, the ringleader of a gang of droogs, whom he rules with something of an iron fist. Alex finds himself imprisoned after his cohorts betray him after a failed coup. While in prison, Alex learns of a new radical way of being released early. He is subjected to the Ludovico Technique, which blends psychiatric drugs with aversion therapy. When he is released onto the streets, he finds that one of his old droogs has died, while another, Dim, has become a police officer. After Alex falls victim to a cadre of geriatric librarians, he falls into the clutches of Dim, who beats him to near death. Alex then crawls to the doorstep of a former victim of his, who quickly discerns our would-be hero's true identity. The victim, and author of A Clockwork Orange, tries to use Alex for political means, ploying him to commit suicide. When Alex is unsuccessful in killing himself, he finds that he is free of the aversion to violence and sex. In this episode we talk about how the US version of the novel, along with Stanley Kubrick's film, differ from the source material. Kubrick (The Shining, 2001: A Space Odyssey, Dr. Strangelove or: How I Learned to Stop Worrying and Love the Bomb) originally cut the movie in a four-hour film. Once he cut it down to the theatrical cut, he had his assistant destroy the original footage; sorry gang, no deleted scenes here. Have you ever noticed Kubrick's seven diamonds? Well, download the episode and find out what that means! The film stars a young Malcolm McDowell (Time After Time, Halloween, Star Trek: Generations). Another noteworthy actor in the film, is Darth Vader in short shorts, David Prowse. . . y'know, from that Star Wars thing the kids are talking about these days. In the episode, we discuss the origins of Nadsat, the slang used by the young folk. Why is it so much more successful than newspeak from 1984? We give our thoughts. And returning to the show is Version Two with their song Childish: https://www.facebook.com/pg/versiontwoband/ ; https://versiontwo.bandcamp.com/ If you ever have feedback or recommendations on future episodes, please let us know at slasherspod@gmail.com. You can always find us on our social media: Instagram, Twitter, Slasher App: @slasherspod Facebook: /slasherspod Reddit: u/slasherspod https://www.youtube.com/c/slasherspodcast Theme song is I wanna Die by Mini Meltdowns. https://open.spotify.com/artist/5ZAk6lUDsaJj8EAhrhzZnh ; https://minimeltdowns.bandcamp.com/ --- Support this podcast: https://anchor.fm/slasherspod/support

Visiting another cool southern Chinese hotpot restaurant In Sydney CBD. Taking advantage of 50% off discount via Groupon digital platform.

Join Helen and Niall as they react to Joaquin's virtuoso performance in Joker for which he won an Oscar. Also, a look at Miss Americana featuring Taylor Smith. Tell Me Who I Am is a disturbing documentary. Is it believable? Is it entertainment? Little Women from 2017 is stunning and worth watching even though Greta Gerwig's version is the one getting all the press right now. Lastly, Two Lovers is one of Joaquin Phoenix' older films that is the perfect indie movie, also starring Gwyneth Paltrow.   Helen's YouTube Channel is Shrimpy McGee: youtube.com/ShrimpyMcGee

Its been a long time, we shouldnt have left you,Without a dope beat to step too......But now we're back, its Version Two of the same Microdose.In Episode 1, Kush Hayes tells you whats been going on Since August 2019 and gives you a review of Sam Mendes 1917Music by IAMSOLOCO, JD Makwana, Carlos Alfon, Lassic and Surreal SoundzFollow me on Twitter @Kush_Hayeswww.thebosnet.family/KushSubscribe on:StitcheriTunes & Apple PodcastsSpotify2020 TheBosNet Family All Rights ReservedKush Hayes, Kush, The Kush Hayes Show, Microdose, Sam Mendes, 1917

So here's what I did at 10:30.

Special Edition: Episode 93.5, Suburban Hell Kill Episode, featuring a great interview with Josh and Eric of Suburban Hell Kill, also including songs from Utah bands: The 1-2 Manys, Suburban Hell Kill, Version Two, Jail City Rockers, and Life Has A Way (LHAW).

Special Edition: Episode 81.5, No Affiliation Records spotlight featuring interview with Bill Marcks, and Mark Hardcore co-hosting. Including tracks from No Affiliation Records bands: The Follow Ups, Off The Mark, Cer Viejo, Evil Engine, Version Two, Fourbanger, FoL, Square Shapes, System Restore, Sid Broderius and the Emergency Exit, Sun-O-Bathers, Bare Teeth, and The Bastards.

Neuro-Linguistic Processing, or NLP, is one of the many psychological coaching tools out there that some people completely swear by, while others think it’s just another pop-psychology fad. Our guest Nick Cownie, armed with a clinical background, has made a name for himself by distilling a lot of overwrought NLP techniques down to just their most essential components, and he’s here to tell us about how to put them to good use—and tell us a harrowing tale of being kidnapped and left in the desert! Background Nick Cownie is a sales psychology consultant, NLP consultant and practitioner based out of Wagga Wagga. Originally trained in traditional Chinese medicine after his health sciences degree, he worked in a clinical setting for fifteen years before moving into NLP. He and his wife were early adopters of the training and coaching methods that are standard today, moving their mindset training services online back when that was unheard of in the field. A method that matters In a landscape pretty crowded with models and tools vying for our attention, what’s the big deal about NLP and mindset training? Nick says it matters because it’s so well-equipped to tackle the major problems he sees over and over again for people going into business for themselves: Low confidence. Nervousness, anxiety, and impostor syndrome, which all lead to self-sabotage for otherwise talented and capable people. Procrastination and lack of discipline. Feeling stuck putting off tasks you know will help you—or only getting stuff done when you really feel like it—majorly holds people back. Lack of influence. Being comfortable influencing others—without slipping into inauthenticity, sleaziness and manipulation—is a crucial skill to develop. Sleaze versus science Nick says NLP absolutely has a bad reputation with some—and in a lot of cases, it’s totally deserved. A lot of techniques and materials practitioners sell are heavily padded with unnecessary fluff, and there are entire niches of NLP dedicated to using it for manipulative sales, or even manipulation in your personal life. That said, while his methods pull from a lot of classic NLP frameworks, he shies away from using a lot of their terminology, preferring to stick with the established psychological terms for the same things. While some of the wording around mindset training and mindfulness can get very hokey very quickly, Nick emphasizes that NLP terms like “anchoring” are really just psychologically-standard tools like state elicitation and associative conditioning. They’re about training your brain to stop getting stuck responding to negative stimuli, and start being able to access positive states in a predictable way. "I'm a pragmatist,” Nick says. “All I'm interested in is results." Influencing yourself The trick to fixing your mindset, Nick says, is essentially to get out of your own way. That means identifying the person you are right now, with all your pros and cons—that’s You, Version One. You have a lot of obstacles in your way—maybe fear of failure, impostor syndrome, lack of discipline—that are stopping you from succeeding. You, Version Two, is the person who is able to succeed, because they aren’t held back. You need to identify what the differences are between Versions One and Two of yourself, and take action to clear the obstacles and gain the skills you need to bridge that gap. Obviously, it’s easier said than done—but Nick shares one of his tools with us for getting past your fears. Tune in to learn how to use emotional states and conditioning to instantly access the most confident version of yourself! Influencing others Communicating effectively with others is a big part of NLP—and while the basic techniques can be used in a manipulative way, Nick stresses that won’t do you any good, in sales or in life. Effective, influential communication using NLP tactics can get your genuine message across to clients in a way that’s most likely to reach them. “You can do that and still be authentic without manipulating anyone,” Nick says, “and do it in a way that's more likely to have them convert if they are the right client.” He also says that manipulation tactics are really a way of influencing the wrong people—which always comes back to bite you in the end. “You get a bunch of refunds, a bunch of bad reviews—it doesn't really work anyway.” Nick shares one of his tools with us for learning to influence others in a genuine way—it’s easy to apply in sales settings, and it’s easy to remember, too. He uses this simple four-step acronym: F - Focus their attention. A - Access emotions. S -  Seed potential. T - Trigger the response. An integrated method Nick pulled a lot of useful knowledge from his time working in Chinese medicine, including a foundational concept called bian-zheng, the process of recognizing patterns in diagnosis. He uses it as a guidepost for recognizing patterns in his own work, and has found it helps him find approaches that work across different contexts and industries. How to get started NLT and mindset training are skills, Nick says, just like anything else. There’s no overnight solution, and every tool in the system takes time to be fully effective. He stresses to Troy that every time you show up to work on your skills, even a little, you're improving. But take the pressure off yourself to be a master overnight. Let your incremental progress add up like compound interest, and it will! Nick is also leaving WPElevation listeners with some freebies—click here to access The Self-Sabotage Solution, which includes an infographic, a voice-guided walk-through of the mindset technique mentioned earlier, and a two-hour training video running through mindset training tools. You can also reach him on Twitter, Facebook and LinkedIn.

Special Edition: Episode 65.5, Utah Bands Part 2, including a great interview Nigel of The Mindless. Featuring songs from Fail to Follow, Version Two, Press Gang Union, The 1-2 Manys, The Four07’s, The Mindless, Racist Kramer, SL Spitfires, Jail City Rockers, Hi Fi Murder, Breakfast in Silence, and Life Has a Way (LHAW).

It's Episode 27 VERSION TWO! After a technical nightmare the guys had to record this episode twice! The "lost episode", as Episode 27 Version 1 will now always be known, did contain a quiz and Potter-based chat that is now gone forever. However, after a last-minute scramble, the guys got together at Podwarts and managed to get an hour of nonsense together including regular features PEEVES, Cryptic Clues, Tom's Riddle, whatever Tom's game is called this week as well as new feature Wizengamot and a ramshackle version of Joe's world-famous quiz! Contact: Twitter - @aattapod, Facebook - /aattapod, email - aattapod@gmail.com

Version Two stopped by The Salt Lake Soundcheck, July 15th 2018………Version Two just got back from playing in Boise, Idaho and are working on new music. They played a couple songs punk acoustic style in the studio and we found out what happened to Version One. We talked about favorite wrestlers and we had to […] The post SOUNDCHECK 012: “Version Two” appeared first on Utah Podcast Network.

Version Two stopped by The Salt Lake Soundcheck, July 15th 2018………Version Two just got back from playing in Boise, Idaho and are working on new music. They played a couple songs punk acoustic style in the studio and we found out what happened to Version One. We talked about favorite wrestlers and we had to […] The post SOUNDCHECK 012: “Version Two” appeared first on Utah Podcast Network.

Ash and Val discuss D and D, Baulder’s Gate, accidentally convincing your friends to go out when you want to stay in, souvlaki is delicious, restaurant portions are huge, Val’s girl cat is a menace and of course Deadpool 2. Check out Version Two on Facebook https://www.facebook.com/versiontwoband. They can now be found on Spotify as well. […]

This update, I describe the new game that was added to Audio Game Hub --- Send in a voice message: https://anchor.fm/harmonicaplayer/message Support this podcast: https://anchor.fm/harmonicaplayer/support

Special Edition: Episode 41.5, Funny Songs Part 1. Featuring an interview with Death Lottery from Fort Lauderdale, Florida and a bunch of songs that make us smile and laugh from Fat Randall, The Vandals, The Aquabats, Knock Off, The Sawed Offs, The Queers, The Fuck Off & Die;s, Death Lottery, Version Two, The Welch Boys, Dive in the Box, Masked Intruder, Suburban Legends, Reel Big Fish, NOFX, and The Gonads.

Remedy Version 2 #VocalHouse #DeepHouse DJset Best vocal house podcast on the net (iTunes Review) http://clubkerrynyc.libsyn.com Get a bonus episode "A Deep Affair 17 (early mix)" for free on my app. Click the gift bonus button. iTunes http://bit.ly/iTunesKerry RSSFeed: http://clubkerrynyc.libsyn.com/rss Choose Your Device: http://on.fb.me/GROD86 (Android, Windows Phone, iOS) Track Lists & Download http://clubkerrynyc.libsyn.com/ Listen on my free app! Premium Subscribe for extra episodes! Club Kerry NYC iOS App: http://bit.ly/kerryiosapp Club Kerry NYC Android App: http://bit.ly/AndroidKerry Club Kerry NYC Windows App: http://bit.ly/KerryWindows Track List (50:47): 1. Remedy (Original Mix) - Mike Mago & Tom Ferry Ft. ILY. 2. If I Could Find (Extended Mix) - Goldfish 3. Thriller (Steve Aoki Midnight Hour Remix) - Michael Jackson ***Retro Alert!*** 4. All Stars (feat. Alma) (BROHUG Remix) - Martin Solveig 5. I Still See Your Face - San Holo 6. To Be Free (SNBRN Remix) - LDRU 7. Keep On Reaching (Danielle Diaz Remix) - Alex Schulz 8. Moving On (Extended Mix) - Disco Fries Ft. Great Good Fine OK. I LOVE the Disco Fries. "I'm taking control of my life, nothing left here to see..." 9. Casual (Felon Extended Mix) - Alex Adair. ***DJ FAVORITE!!!*** "Love me for my body not my heart, let's keep it casual." 10. Without You (Aventry Remix) - Avicii ft. Sandro Cavazza 11. Take Me (feat. Gloria Kim) [Extended Mix] - Will Sparks feat. Gloria Kim. 12. Violin De La Nuit (Original Mix) - Ferreck Dawn 13. I Can't Stop (Extended Mix) - DJ Licious 14. Need It (Extended Mix) - Jay Hardway Bonus Mix! A Deep Affair 17 (early mix) (29:16) (Listen by clicking the gift bonus button on my free app.) 1. Don't Worry - The Sound of Arrows 2. Trust Me (feat. Soul) [Extended Mix] - Adrian Lux, Savage Skulls feat. Soul 3. Nobody Like You (Sun Soaked Mix) - Kaskade 4. I Still See Your Face - San Holo 5. Casual (Felon Extended Mix) - Alex Adair 6. Sunny Days (feat. Josh Cumbee) - Armin van Buuren 7. South America (Sebastien Extended Remix) (feat. Axel Ehnström) - Dennis Kruissen 8. Devil Pray (Blueberg Remix) - Madonna

Val and Ash fan girl over Version Two, Life Has a Way, Hi-fi Murder, LSDO, Danny Wildcard and My New Mistress. Drunk punk stories, Thanksgiving adventures, our thoughts on Justice League and more fan girling over the incredible Jay Whittaker. Check him out on Andi Mack and The Incredibly Vocal Minority podcast. Contact the show […]

NSFW! Version Two joins me to talk about their new album, Childish. We talk about the 90's, musical influences, the creative process, and breaking a leg. (Literally) Come see them at the Alcatraz Punk Fest on Aug 27th, and later at the Sand Trap with Ese. Pre-order their first full-length album, Childish! (Comes out 9/9) $12 on Bandcamp: www.bandcamp.com/versiontwo Check them out on: Facebook: Version Two Instagram: @versiontwoband Follow me: Instagram: oaferic Twitter: oaf_eric Facebook: Ogden Arts Festival & Ogden Arts Festival Pod Email me: oaferic@gmail.com Transition sounds by Blinkfarm Intro: "Skaship Introprise" by The Beam Me Up Ska-T's

The latest in my series of tribute DJ sets of my fave DJ/Producers in EDM. Eric Prydz is God. This is Version TWO. Also knows as Pryda or Cirez D. Look for a slew of new EP's this summer and a debut album in October. Check him out on Soundcloud, YouTube, and Beatport. After all these years of Pryda and no debut album thus these tributes. Enjoy! Free on iTunes http://bit.ly/iTunesKerry RSSFeed: http://clubkerrynyc.libsyn.com/rss Choose Your Device: 30 Ways To Listen: http://on.fb.me/GROD86 (Android, iPhone, Nook, iPad, Windows Phone, iOS, etc.) More links below! PREMIUM ACCESS: Listen to all my DJ sets anywhere you go (150+) on my app plus exclusive sets for premium subscribers ($1.99 per month). Unsubscribe at any time. Click to Premium Subscribe! Eric Prydz is God Version Two only on my app:     Club Kerry NYC iOS App: http://bit.ly/kerryiosapp     Club Kerry NYC Android App: http://bit.ly/AndroidKerry     Club Kerry NYC Windows App: http://bit.ly/KerryWindows Version Two Track List (51:04): 1. Every Day (Original Mix) - Eric Prydz 2. Miami To Atlanta (Original Mix) - Pryda 3. Pjanoo (Original Club Mix) - Eric Prydz 4. Liberate (Lane 8 Remix) - Eric Prydz 5. Mighty Love (Instrumental) - Eric Prydz & Andreas Postl 6. Allein (Original Mix) - Pyrda 7. Personal Jesus (Eric Prydz Remix)  - Depeche Mode 8. The People (Eric Prydz Remix) - Sebastien Leger 9. Voices (Eric Prydz Remix) - Steve Angello 10. Wonderwall 2Night (Ken Loi Bootup) - Oasis vs. Eric Prydz Get version one on my podcast feed: http://clubkerrynyc.libsyn.com/rss

Big melodies. Big Beats. This is Runaway Melody! Enjoy. - Kerry Free on iTunes http://bit.ly/iTunesKerry RSSFeed: http://clubkerrynyc.libsyn.com/rss. Choose Your Device: 30 Ways To Listen: http://on.fb.me/GROD86 (Android, iPhone, Nook, iPad, Windows Phone, iOS, etc.) More links below! PREMIUM ACCESS: Listen to all my DJ sets anywhere you go (150+) on my app plus exclusive sets for premium subscribers ($1.99 per month). Unsubscribe at any time. Click to Premium Subscribe!     Club Kerry NYC iOS App: http://bit.ly/kerryiosapp     Club Kerry NYC Android App: http://bit.ly/AndroidKerry     Club Kerry NYC Windows App: http://bit.ly/KerryWindows Track List (51:24): 1. Cold Case (Bougenvilla & Marc MacRowland Remix) [Radio Edit] - Brooklyn Haley. *DJ Fave!* 2. Love Me Like You Do (Cosmic Dawn Club Remix) - Ellie Goulding. Ellie is on fire lately! 3. Straight Outta Line (Extended Mix) - Both ***DJ FAVORITE!*** 4. Open Heart feat. Lissie (Extended Mix) - Morgan Page (is God!). Check out my tribute mixes Morgan Page is God! Version One, Version Two, and Version Three (premium episode). 5.Homeless (Original Mix) - Bougenvilla feat. Jared Hiwat ***Crystal Waters Retro Alert*** 6. Melody (Original Mix) - Oliver Heldens. A breath of fresh EDM air. 7. Mistakes I've Made (Philip George Remix) - Eelke Kleijn. DEEP HOUSE TRANSITION... 8. Firestone (KREAM Remix) - Kygo feat. Conrad. That sax melody is killer! 9. If I Play Your Game (Alle Farben Remix) - Heymen. Wow. Everything I like about an emotive deep house vocal. 10. Are You With Me (Original mix) - Lost Frequencies Feat. Easton Corbin. **DJ Fave!**. Dance by the water underneath Mexican sky, drinkin' margaritas by the string of blue lights, listen to the Mariachi play at midnight, are you with me? 11. Runaway (U & I) (Extended Mix) - Galantis. BACK TO HIGH ENERGY EDM... 12. Virus (How About Now) (Original Mix) - Martin Garrix & MOTi 13. Real Love (Judah Remix) - Clean Bandit, Jess Glynne 14. Make Me Feel Better (Don Diablo & CID Remix) - Alex Adair

Deep house goodness. Version Two! FREE Download: iTunes http://bit.ly/iTunesKerry RSSFeed: http://clubkerrynyc.libsyn.com/rss. Choose Your Device: - 30 Ways To Listen: http://on.fb.me/GROD86 (Android, iPhone, Nook, iPad, Windows Phone, etc.) More links below! Track List (57:02): 1. Gone Tomorrow (Me & My Toothbrush Remix) - Lika Morgan *Ace of Base Retro Alert!* 2. Do You Feel The Same? (Purple Disco Machine Remix) - Hercules & Love Affair ***DJ Favorite!*** 3. Satisfy (Original Mix) - Nora En Pure 4. All Out (Club Mix) - Anna Lunoe 5. Sun Goes Down (feat. Jasmine Thompson) [Pingpong Remix] - Robin Schulz 6. One (Sebastien Edit) - Ed Sheeran 7. Changing (Purple Disco Machine) - Sigma feat. Paloma Faith 8. Red Lights (Glastrophobie Remix) - Tiësto 9. Fade Out Lines (Original Mix) - The Avener 10. We Were Young (Sascha Kloeber Remix) - SRTW 11. Le jardin (PingPong Remix) - Kasual, Sofia Zlatko, Vijay 12. Collateral Effects (Original Mix) - EDX 13. Waves (Robin Schulz Remix) - Mr. Probz PREMIUM ACCESS: Listen to all my free DJ sets (150+) on my app plus exclusive DJ sets only for premium subscribers for $1.99 per month. Unsubscribe at any time. Click to Premium Subscribe!     Club Kerry NYC iOS App: http://bit.ly/kerryiosapp     Club Kerry NYC Android App: http://bit.ly/AndroidKerry     Club Kerry NYC Windows App: http://bit.ly/KerryWindows

Listen to today's Robert Plank Show to discover the launch technique you can use whether you're making $100 per month or $100,000 per month from your online business at the moment, including: the "fire and motion" most product launches forget about the exact kind of pitch webinar you need to use to promote your products (teach long division and sell the calculator) how to re-promote your existing products to pay your bills for years to come how to avoid being stuck in "product creation" or "product launch" mode and still make money when you update your courses And more! Please welcome our brand spanking new sponsor for this week: Membership Cube Additional resources: Membership Cube (create that membership site), Webinar Crusher (pitch your products with webinars), Make a Product (self-publish on Amazon.com), Podcast Crusher (create your own podcast on iTunes) Join Membership Cube 3.0 to Claim Your Membership Site Training, Plugins & Clones Now Like the Robert Plank Show on Facebook

Listen to today's Robert Plank Show to discover the launch technique you can use whether you're making $100 per month or $100,000 per month from your online business at the moment, including: the "fire and motion" most product launches forget about the exact kind of pitch webinar you need to use to promote your products (teach long […]

Show Notes In which we look (rather critically) at the tech sphere’s tendency to assume everything not only can but should be disrupted. Snarky asides on smartwatches and smartshoes segue into a discussion of the necessity of humility and the importance of recognizing what technology cannot do and what it should not do. Note: by “disruption” we are focused not on the particular concept developed by Clay Christensen, but on the popular view of the word. We are aware of the distinction, but decided to set it aside for the purposes of this particular episode. MOOCs: Massively Open Online Courses Chapters Intro (2:09) MOOCs! Watches! Shoes! (2:09–9:06) The Cult of Disruption (9:06–15:32) Technological Imperialism (15:32–21:22) Recognizing Tech’s Limitations (21:22–27:36) Conclusion (27:36–28:36) Music “Cado Año (Version Two)”, from For Tomorrow Will Worry About Itself, by Fiery Crash. Used by permission. “Winning Slowly Theme”, by Chris Krycho. Used by dint of being written the show. Links Chris’ friend Kyle West, now self-publishing successfully: website Twitter Facebook Follow/Subscribe iTunes Twitter Facebook App.net RSS Feed

In this episode of the show, Plan A Version One was unsuccessfully recorded due to a microphone error! So instead of trying to rehash out what I spent a lot of time sharing, I decided instead to dig into my email inbox and answer some of the messages I have recently received from some of you, my lovely listeners.

ITIL Version Three builds on Version Two with the addition of several important new processes, across the new service lifecycle. It is critical that you know how to successfully design, build, test, implement and improve service management processes to obtain...