American internet pioneer
POPULARITY
◇ BGE & the Retailer perspective, Mike from New York shares his origin story, From the Archive 2019: Wil from Wisconsin tells the tale of a PC who was too good for their game | Hosts: Kimi, Vixie, & Dustin◇ 00:33 - Welcome & Episode Summary | 2:06 - Announcements: Game Daze is going to be May 24th! Sign up to run or play at happyjacks.org/discord | GamEx is coming up memorial day weekend (May 23-26) at the LAX Hilton. We will be doing our live show from there Saturday night | 03:04 - Indie Designer of the Month: Matthew Orr, Creative Director at Wet Ink Games. You can find his work on wetinkgames.com or DriveThruRPG | 06:10 - BGE & the Retailer perspective | 34:05 - Mike from New York shares his origin story | 45:57 - From the Archive 2019: Wil from Wisconsin tells the tale of a PC who was too good for their game | 59:45 - Episode Closing | 01:02:35 - Music | ◇ Email happyjacksrpg@gmail.com to send in your own topic or question for the show! ◇ Find us on Youtube ◇ Twitch ◇ Twitter ◇ Instagram ◇ Facebook ◇ Discord or find all our podcast feeds on your favorite Podcast platform! happyjacksrpg.carrd.co ◇ Subscribe to our Actual Play Feed! We have a backlog of campaigns in over 20 RPG systems and new games running all the time. ◇ Become a Patreon! All the money goes into maintaining and improving the quality of our shows. patreon.com/happyjacksrpg Ⓒ2025 Happy Jacks RPG Network www.happyjacks.org
The DNS resolution path by which the world's internet content consumers locate the world's internet content producers has been under continuous attack since the earliest days of Internet commercialization and privatization. Much work has recently and is currently being invested to protect this vital source of Personally Identifiable Information -- but by whom, and why, and how? Let's discuss. About the speaker: Paul Vixie serves AWS Security as Deputy CISO, VP & Distinguished Engineer after a 29-year career as the founder and CEO of five startup companies covering the fields of DNS, anti-spam, Internet exchange, Internet carriage and hosting, and Internet security. Vixie earned his Ph.D. in Computer Science from Keio University in 2011 and was inducted into the Internet Hall of Fame in 2014. He has authored or co-authored several Internet RFC documents and open source software projects including Cron and BIND. https://en.wikipedia.org/wiki/Paul_Vixie
◇ Aaron has wants that spark back in his GMing relationship, LivetTea asks if they screwed up during a LARP, From the Archive 2018: Alverant shares a Convention Horror story | Hosts: Kimi, Eli & Vixie ◇ 00:33 - Welcome & Episode Summary | 1:32 - Announcements: The next Game Daze is March 29th! It's free and everyone is welcome to join us at happyjacks.org/discord. 3:26 - Indie Designer of the Month: Jean Luc Lariviere-Lacombe You can find his work on thedungeonskey.com or DriveThruRPG | 6:25 - Aaron has wants that spark back in his GMing relationship | 27:24 - LivetTea asks if they screwed up during a LARP | 48:30 - From the Archive 2018: Alverant shares a Convention Horror story | 01:05:43 - Episode Closing | 01:09:51 - Music | ◇ Email happyjacksrpg@gmail.com to send in your own topic or question for the show! ◇ Find us on Youtube ◇ Twitch ◇ Twitter ◇ Instagram ◇ Facebook ◇ Discord or find all our podcast feeds on your favorite Podcast platform! happyjacksrpg.carrd.co ◇ Subscribe to our Actual Play Feed! We have a backlog of campaigns in over 20 RPG systems and new games running all the time. ◇ Become a Patreon! All the money goes into maintaining and improving the quality of our shows. patreon.com/happyjacksrpg Ⓒ2024 Happy Jacks RPG Network www.happyjacks.org
Once again, Hammer of the Gods was proud to be a part of the TTRPGTok Doctors Without Borders fundraiser, and I'm particularly excited to get to share the lovely Adelaide and Ruby aka myself and Blerdy Disposition with the world! Support our players by checking out their links and giving them a follow: Blerdy - https://linktr.ee/BlerdyDisposition Bobbo - https://linktr.ee/bobbofnn Star - https://www.characterswithoutstories.com/ Vixie - https://linktr.ee/vixiebellecosplay Music: Waltz of Treachery and I Knew A Guy by Kevin MacLeod (incompetech.com) Licensed under Creative Commons: By Attribution 4.0 License http://creativecommons.org/licenses/by/4.0/ Get bonus content on Patreon Hosted on Acast. See acast.com/privacy for more information.
◇ Tanner talks 40K and pipedreams, Doogler asks about recycling prep, From the Archive 2018: Issac shares a GMing success story | Hosts: Kimi, Vixie, & Felix Issacs ◇ 00:33 - Welcome & Episode Summary | 2:40 - The end of season 34 is coming up! We will take a two week break after episode 25 and then be back with season 35! Game Daze will be happening January 11th, 2025! 4:29 - Indie Designer of the Month: Megan Dawson Jaffe of Nerdy City Games nerdycity.com 7:12 - Tanner talks 40K and pipedreams | 32:00 - Doogler asks about recycling prep | 54:34 - From the Archive 2018: Issac shares a GMing success story | 01:02:00 - Episode Closing | 01:06:41 - Music | ◇ Email happyjacksrpg@gmail.com to send in your own topic or question for the show! ◇ Find us on Youtube ◇ Twitch ◇ Twitter ◇ Instagram ◇ Facebook ◇ Discord or find all our podcast feeds on your favorite Podcast platform! happyjacksrpg.carrd.co ◇ Subscribe to our Actual Play Feed! We have a backlog of campaigns in over 20 RPG systems and new games running all the time. ◇ Become a Patreon! All the money goes into maintaining and improving the quality of our shows. patreon.com/happyjacksrpg Ⓒ2024 Happy Jacks RPG Network www.happyjacks.org
◇ We talk with Felix Issacs, creator of the WildSea and Pico, Carlos from Detroit asks about our favorite ways to source info from players, From the Archive 2018: Sam from Lakewood wants ideas about how to use visual aids during game sessions | Hosts: Kimi, Vixie, & Felix Issacs ◇ 00:33 - Welcome & Episode Summary | 1:39 - The end of season 34 is coming up! We will take a two week break after episode 25 and then be back with season 35! Game Daze will be happening January 11th, 2025! 3:08 - Indie Designer of the Month: Megan Dawson Jaffe of Nerdy City Games nerdycity.com 6:15 - We talk with Felix Issacs, creator of the WildSea and Pico | 39:56 - Carlos from Detroit asks about our favorite ways to source info from players | 1:04:00 - From the Archive 2018: Sam from Lakewood wants ideas about how to use visual aids during game sessions | 01:19:25 - Episode Closing | 01:25:02 - Music | ◇ Email happyjacksrpg@gmail.com to send in your own topic or question for the show! ◇ Find us on Youtube ◇ Twitch ◇ Twitter ◇ Instagram ◇ Facebook ◇ Discord or find all our podcast feeds on your favorite Podcast platform! happyjacksrpg.carrd.co ◇ Subscribe to our Actual Play Feed! We have a backlog of campaigns in over 20 RPG systems and new games running all the time. ◇ Become a Patreon! All the money goes into maintaining and improving the quality of our shows. patreon.com/happyjacksrpg Ⓒ2024 Happy Jacks RPG Network www.happyjacks.org
◇ Wil from Oregon asks about 2-player RPGS, Charger347 wants to talk about dice, Sam from Lakewood claims that space combat isn't always boring.| Hosts: Kimi, Joey, Vixie ◇ 00:33 - Welcome & Episode Summary | 1:41 - Announcements: Our new DIE actual play is in full swing at 10am Pacific time on Fridays! We have another AP about tiny mice starting up near the end of the month! We will be taking US Thanksgiving week off. No show Sunday the 24th. 3:00 - Indie Designer of the Month: Chris Sellers (they/them) of Hectic Election Games find their work at https://hecticelectron.com 5:39 - Wil from Oregon asks about 2-player RPGS | 21:09 - Charger347 wants to talk about dice | 42:31 - From the Archive 2018: Sam from Lakewood claims that space combat isn't always boring. | 1:04:20 - Episode Closing | 1:08:54- Music | ◇ Email happyjacksrpg@gmail.com to send in your own topic or question for the show! ◇ Find us on Youtube ◇ Twitch ◇ Twitter ◇ Instagram ◇ Facebook ◇ Discord or find all our podcast feeds on your favorite Podcast platform! happyjacksrpg.carrd.co ◇ Subscribe to our Actual Play Feed! We have a backlog of campaigns in over 20 RPG systems and new games running all the time. ◇ Become a Patreon! All the money goes into maintaining and improving the quality of our shows. patreon.com/happyjacksrpg Ⓒ2024 Happy Jacks RPG Network www.happyjacks.org
◇ Steve from Cambridge asks about GMing pace, Eric from New Jersey sends his thanks, & From the Archive 2019: ryan4flan struggles with players rolling their flaws in D&D | Hosts: Kimi, Pooja, & Vixie ◇ 00:33 - Welcome & Episode Summary | 1:17 - Announcements: Our next Game Daze will be September 28! Join the discord at happyjacks.org/discord to run or play games! Thanks to our Patreons we are in the middle of some great studio updates! YAY! | 4:00 - Indie Designer of the Month: Steve Dee he/him from Tinstar Games find him https://tinstargames.itch.io/ or tinstargames.com | 07:49 - Jolene wants to talk power imbalance in Supers games | 46:53 - Vyrrk from DC wants to brag a bit | 01:03:36 - From the Archive 2017: Julien from Paris, France asks how to play with flashbacks and flashforwards in a game | 01:25:30 - Episode Closing | 01:18:56 - Song: "Heavy Mahogany" by the Dread Crew of Oddwood (https://thedreadcrewofoddwood.com/)| ◇ Email happyjacksrpg@gmail.com to send in your own topic or question for the show! ◇ Find us on Youtube ◇ Twitch ◇ Twitter ◇ Instagram ◇ Facebook ◇ Discord or find all our podcast feeds on your favorite Podcast platform! happyjacksrpg.carrd.co ◇ Subscribe to our Actual Play Feed! We have a backlog of campaigns in over 20 RPG systems and new games running all the time. ◇ Become a Patreon! All the money goes into maintaining and improving the quality of our shows. patreon.com/happyjacksrpg Ⓒ2024 Happy Jacks RPG Network www.happyjacks.org
◇ We talk about GenCon, Alverant asks about how you should feel about your gaming group, Thomas from Denmark asks about RPGs in the classroom | Hosts: Kimi & Vixie ◇ 00:33 - Welcome & Episode Summary | 1:31 - Announcements: Our next Game Daze will be in September! Join the discord at happyjacks.org/discord to vote on the day and to run or play games! - Indie Designer of the Month: Jacqueline "Jax" Bryk (she/they/fae) find her games at linktr.ee/rufflejax | 5:36 - GENCON | 37:26 - Alverant asks about how you should feel about your gaming group | 54:17 - Thomas from Denmark asks about RPGs in the classroom | 01:16:13 - Episode Closing | 01:08:10 - Song: "Those Who Fight Further" by Super MadNES (https://www.supermadnes.com/)| ◇ Email happyjacksrpg@gmail.com to send in your own topic or question for the show! ◇ Find us on Youtube ◇ Twitch ◇ Twitter ◇ Instagram ◇ Facebook ◇ Discord or find all our podcast feeds on your favorite Podcast platform! happyjacksrpg.carrd.co ◇ Subscribe to our Actual Play Feed! We have a backlog of campaigns in over 20 RPG systems and new games running all the time. ◇ Become a Patreon! All the money goes into maintaining and improving the quality of our shows. patreon.com/happyjacksrpg Ⓒ2024 Happy Jacks RPG Network www.happyjacks.org
In this episode of the Volunteer Nation podcast, host Tobi Johnson interviews Megan Vixie, Chief Engagement Officer at Beach Cities Health District, about volunteer manager salary levels and career paths. They discuss the importance of volunteerism, Megan's journey in volunteer engagement, and the professional career pathway survey conducted by the Association for Leaders in Volunteer Engagement (AL!VE). The pair explore strategies for negotiating salaries and benefits, the importance of professional development, the creation of a job leveling document to advocate for volunteer engagement professionals, as well as highlighting actionable insights for both volunteer managers and organizational leaders. Full show notes: 119. Volunteer Manager Salary & Career Paths with Megan Vixie Thanks for listening to this episode of the Volunteer Nation podcast. If you enjoyed it, please be sure to subscribe, rate, and review so we can reach more people like you who want to improve the impact of their good cause. For more tips and notes from the show, check us out at TobiJohnson.com. For any comments or questions, email us at WeCare@VolPro.net.
Step into the dynamic world of Expressive Vibes at Smoken Words, where creativity knows no bounds and every performance is a journey of self-discovery. Prepare to be captivated by a lineup of diverse artists who will take you on an unforgettable ride through the realms of emotion and introspection. First immerse yourself in the evocative words of Venwoo (00:34) as she unveils her piece "Just One Night," a poignant exploration of the complexities of intimacy and the importance of safe sex. Then, experience the rhythmic mastery of Clay Huete (03:40) as he commands the stage with his electrifying hip-hop performance, weaving together beats and lyrics that speak to the soul. Next, brace yourself for the introspective musings of Joey Fades (05:05) as he delves into the psyche of a narcissist, laying bare the inner workings of the human ego with raw honesty. Then, prepare to be moved by the poignant journey of Brian Hyppolite (10:12), as he shares his deeply personal narrative of overcoming the shadows of his past. Through his heartfelt poetry, Brian recounts the struggles of a fractured relationship with his father and the realities of life. Finally prepare to be moved by the soul-stirring melodies of Vixie (13:45), whose music serves as the perfect backdrop for an evening of self-reflection and emotional resonance. Join us as we embark on a journey of self-discovery and expression, where every word, every note, is a testament to the power of art to illuminate the human experience. Get ready to be inspired by the Expressive Vibes at Smoken Words, where truth and creativity collide. Don't miss out on the full video of this episode and more exclusive content—subscribe to our Patreon today and experience the magic of Smoken Words like never before! https://patreon.com/smokenwords Smoken Wordshttps://smokenwords.comhttps://instagram.com/smokenwordsNovacanehttps://instagram.com/novathenymph Bar Godhttps://www.instagram.com/real_bargod
◇ Topic: What's the first thing you come up with when you are creating a PC?, Emails: Rose wants to run MOTW with less prep, Byron in Bureaucracy observes why heroes usually win! | Hosts: Jason, Vixie, Enge, Riley ◇ 00:33 - Welcome & Episode Summary | 1:15 - Announcements: Next Discord Game Daze will be in May (happyjacks.org/discord), GamEx at the Hilton LAX is MAY 24-27, & Kimi's new game Starscape will be featured in an AP starting May 6th and Kickstarting in June! goldenlassogames.com/kickstarter 2:40 - Indie Designer of the Month: Stephanie Bryant (she/her) and her games are on DrivethruRPG.com | 4:01 - Topic: What's the first thing you come up with when you are creating a PC? | 38:30 - Rose wants to run MOTW with less prep | 01:07:05 - Byron in Bureaucracy observes why heroes usually win! | 01:22:20 - Episode Closing | 01:27:53 - Song: "The Company of Captain Black" by the Poxy Boggards (https://poxyboggards.com/) | ◇ Email happyjacksrpg@gmail.com to send in your own topic or question for the show! ◇ Find us on Youtube ◇ Twitch ◇ Twitter ◇ Instagram ◇ Facebook ◇ Discord or find all our podcast feeds on your favorite Podcast platform! happyjacksrpg.carrd.co ◇ Subscribe to our Actual Play Feed! We have a backlog of campaigns in over 20 RPG systems and new games running all the time. ◇ Become a Patreon! All the money goes into maintaining and improving the quality of our shows. patreon.com/happyjacksrpg Ⓒ2024 Happy Jacks RPG Network www.happyjacks.org
I never told story
Vixie is a vampire who created a Frankenstein Partner for comfort. They are in the middle of watching movies when they start joking about which monster movie was more accurate to their portrayal. It turns into more tension, slowly the conversation hits an apex and both the listener and Vixie reveal their true feelings about each other. Thank you so much to the Livestream Comment Section for this amazing Script, all credit for the story goes to them! Watch the Livestream - https://youtu.be/zEXWkKEbJMI Be sure to catch it next month for your chance to participate in a Fan Script Livestream! Music by Dee Yan Key - Aldebaran & Wall Symphony --- Support this podcast: https://anchor.fm/vixievoice/support
Amazon Web Services would not be what it is today without open source. "I think it starts with sustainability," said David Nalley, head of open source and marketing at AWS in an interview at the Open Source Summit in Dublin for The New Stack Makers. "And this really goes back to the origin of Amazon Web Services. AWS would not be what it is today without open source." Long-term support for open source is one of three pillars of the organization's open source strategy. AWS builds and innovates on top of open source and will maintain that approach for its innovation, customers, and the larger digital economy. "And that means that there's a long history of us benefiting from open source and investing in open source," Nalley said. "But ultimately, we're here for the long haul. We're going to continue making investments. We're going to increase our investments in open source." Customers' interest in open source is the second pillar of the AWS open source strategy. "We feel like we have to make investments on behalf of our customers," Nally said. "But the reality is our customers are choosing open source to run their workloads on." [sponsor_note slug="amazon-web-services-aws" ][/sponsor_note] The third pillar focuses on advocating for open source in the larger digital economy. Notable is how much AWS's presence in the market played a part in Paul Vixie's decision to join the company. Vixie, an Internet pioneer, is now vice president of security and an AWS distinguished engineer who was also interviewed for the New Stack Makers podcast at the Open Source Summit. Nalley has his recognizable importance in the community. Nalley is the president of the Apache Software Foundation, one of the world's most essential open source foundations. The importance of its three-pillar strategy shows in many of the projects that AWS supports. AWS recently donated $10 million to the Open Source Software Supply Chain Foundation, part of the Linux Foundation. AWS is a significant supporter of the Rust Foundation, which supports the Rust programming language and ecosystem. It puts a particular focus on maintainers that govern the project. Last month, Facebook unveiled the PyTorch Foundation that the Linux Foundation will manage. AWS is on the governing board.
Back with the foolery. On the couch with myself and @VI_Visions we had @The Kevin Speaks Vegeta's Pain x @Mills Supreme & @__Vixie__. We went from would you agree to let someone "have" your woman for a night for a million dollars to who should be held more accountable for the risks of unprotected sex. Keep up with the convo and if you feel a way, meet us in the comments! --- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app Support this podcast: https://anchor.fm/kevinantoniyo/support
Paul Vixie grew up in San Francisco. He dropped out of high school in 1980. He worked on the first Internet gateways at DEC and, from there, started the Internet Software Consortium (ISC), establishing Internet protocols, particularly the Domain Name System (DNS). Today, Vixie is one of the few dozen in the technology world with the title "distinguished engineer," working at Amazon Web Services as vice president of security, where he believes he can make the Internet a more safe place. As safe as before the Internet emerged. "I am worried about how much less safe we all are in the Internet era than we were before," Vixie said in an interview at the Open Source Summit in Dublin earlier this month for The New Stack Makers podcast. "And everything is connected, and very little is understood. And so, my mission for the last 20 years has been to restore human safety to pre-internet levels. And doing that at scale is quite the challenge. It'll take me a lifetime." So why join AWS? He spent decades establishing the ISC. He started a company called Farsight, which came out of ISC. He sold Farsight in November of last year when conversations began with AWS. Vixie thought about his mission to better restore human safety to pre-internet levels when AWS asked a question that changed the conversation and led him to his new role. "They asked me, what is now in retrospect, an obvious question, 'AWS hosts, probably the largest share of the digital economy that you're trying to protect," Vixie said. "Don't you think you can complete your mission by working to help secure AWS?' "The answer is yes. In fact, I feel like I'm going to get more traction now that I can focus on strategy and technology and not also operate a company on the side. And so it was a very good win for me, and I hope for them." Interviewing Vixie is such an honor. It's people like Paul who made so much possible for anyone who uses the Internet. Just think of that for a minute -- anyone who uses the Internet have people like Paul to thank. Thanks Paul -- you are a hero to many. Here's to your next run at AWS.
I apologize for getting this to you late, it was a loooong weekend for me and I needed to rest as much as possible. I'm feeling much better now and am excited to share this cringe with all of you! Thank you for supporting me! Until next time! --- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app
Anesthesia and Critical Care Reviews and Commentary (ACCRAC) Podcast
In this 227th episode I welcome Dr. Christian Meyhoff to the show from Denmark where he is one of the world leaders on hyperoxia research. We discuss his recent VIXIE Trial as well as his A&A article looking at the VISION study data retrospectively. We also discuss why the data on hyperoxia is so mixed and what future studies should examine.Advertising Inquiries: https://redcircle.com/brandsPrivacy & Opt-Out: https://redcircle.com/privacy
Today's episode on spam is read by the illustrious Joel Rennich. Spam is irrelevant or inappropriate and unsolicited messages usually sent to a large number of recipients through electronic means. And while we probably think of spam as something new today, it's worth noting that the first documented piece of spam was sent in 1864 - through the telegraph. With the advent of new technologies like the fax machine and telephone, messages and unsolicited calls were quick to show up. Ray Tomlinson is widely accepted as the inventor of email, developing the first mail application in 1971 for the ARPANET. It took longer than one might expect to get abused, likely because it was mostly researchers and people from the military industrial research community. Then in 1978, Gary Thuerk at Digital Equipment Corporation decided to send out a message about the new VAX computer being released by Digital. At the time, there were 2,600 email accounts on ARPANET and his message found its way to 400 of them. That's a little over 15% of the Internet at the time. Can you imagine sending a message to 15% of the Internet today? That would be nearly 600 million people. But it worked. Supposedly he closed $12 million in deals despite rampant complaints back to the Defense Department. But it was too late; the damage was done. He proved that unsolicited junk mail would be a way to sell products. Others caught on. Like Dave Rhodes who popularized MAKE MONEY FAST chains in the 1988. Maybe not a real name but pyramid schemes probably go back to the pyramids so we might as well have them on the Internets. By 1993 unsolicited email was enough of an issue that we started calling it spam. That came from the Monty Python skit where Vikings in a cafe and spam was on everything on the menu. That spam was in reference to canned meat made of pork, sugar, water, salt, potato starch, and sodium nitrate that was originally developed by Jay Hormel in 1937 and due to how cheap and easy it was found itself part of a cultural shift in America. Spam came out of Austin, Minnesota. Jay's dad George incorporated Hormel in 1901 to process hogs and beef and developed canned lunchmeat that evolved into what we think of as Spam today. It was spiced ham, thus spam. During World War II, Spam would find its way to GIs fighting the war and Spam found its way to England and countries the war was being fought in. It was durable and could sit on a shelf for moths. From there it ended up in school lunches, and after fishing sanctions on Japanese-Americans in Hawaii restricted the foods they could haul in, spam found its way there and some countries grew to rely on it due to displaced residents following the war. And yet, it remains a point of scorn in some cases. As the Monty Python sketch mentions, spam was ubiquitous, unavoidable, and repetitive. Same with spam through our email. We rely on email. We need it. Email was the first real, killer app for the Internet. We communicate through it constantly. Despite the gelatinous meat we sometimes get when we expect we're about to land that big deal when we hear the chime that our email client got a new message. It's just unavoidable. That's why a repetitive poster on a list had his messages called spam and the use just grew from there. Spam isn't exclusive to email. Laurence Canter and Martha Siegel sent the first commercial Usenet spam in the “Green Card” just after the NSF allowed commercial activities on the Internet. It was a simple Perl script to sell people on the idea of paying a fee to have them enroll people into the green card lottery. They made over $100,000 and even went so far as to publish a book on guerrilla marketing on the Internet. Canter got disbarred for illegal advertising in 1997. Over the years new ways have come about to try and combat spam. RBLs, or using DNS blacklists to mark hosts as unable to send blacklists and thus having port 25 blocked emerged in 1996 from the Mail Abuse Prevention System, or MAPS. Developed by Dave Rand and Paul Vixie, the list of IP addresses helped for a bit. That is, until spammers realized they could just send from a different IP. Vixie also mentioned the idea of of matching a sender claim to a mail server a message came from as a means of limiting spam, a concept that would later come up again and evolve into the Sender Policy Framework, or SPF for short. That's around the same time Steve Linford founded Spamhaus to block anyone that knowingly spams or provides services to spammers. If you have a cable modem and try to setup an email server on it you've probably had to first get them to unblock your address from their Don't Route list. The next year Mark Jeftovic created a tool called filter.plx to help filter out spam and that project got picked up by Justin Mason who uploaded his new filter to SourceForge in 2001. A filter he called SpamAssassin. Because ninjas are cooler than pirates. Paul Graham, the co-creator of Y Combinator (and author a LISP-like programming language) wrote a paper he called “A Plan for Spam” in 2002. He proposed using a Bayesian filter as antivirus software vendors used to combat spam. That would be embraced and is one of the more common methods still used to block spam. In the paper he would go into detail around how scoring of various words would work and probabilities that compared to the rest of his email that a spam would get flagged. That Bayesian filter would be added to SpamAssassin and others the next year. Dana Valerie Reese came up with the idea for matching sender claims independently and she and Vixie both sparked a conversation and the creation of the Anti-Spam Research Group in the IETF. The European Parliament released the Directive on Privacy and Electronic Communications in the EU criminalizing spam. Australia and Canada followed suit. 2003 also saw the first laws in the US regarding spam. The CAN-SPAM Act of 2003 was signed by President George Bush in 2003 and allowed the FTC to regulate unsolicited commercial emails. Here we got the double-opt-in to receive commercial messages and it didn't take long before the new law was used to prosecute spammers with Nicholas Tombros getting the dubious honor of being the first spammer convicted. What was his spam selling? Porn. He got a $10,000 fine and six months of house arrest. Fighting spam with laws turned international. Christopher Pierson was charged with malicious communication after he sent hoax emails. And even though spammers were getting fined and put in jail all the time, the amount of spam continued to increase. We had pattern filters, Bayesian filters, and even the threat of legal action. But the IETF Anti-Spam Research Group specifications were merged by Meng Weng Wong and by 2006 W. Schlitt joined the paper to form a new Internet standard called the Sender Policy Framework which lives on in RFC 7208. There are a lot of moving parts but at the heart of it, Simple Mail Transfer Protocol, or SMTP, allows sending mail from any connection over port 25 (or others if it's SSL-enabled) and allowing a message to pass requiring very little information - although the sender or sending claim is a requirement. A common troubleshooting technique used to be simply telnetting into port 25 and sending a message from an address to a mailbox on a mail server. Theoretically one could take the MX record, or the DNS record that lists the mail server to deliver mail bound for a domain to and force all outgoing mail to match that. However, due to so much spam, some companies have dedicated outbound mail servers that are different than their MX record and block outgoing mail like people might send if they're using personal mail at work. In order not to disrupt a lot of valid use cases for mail, SPF had administrators create TXT records in DNS that listed which servers could send mail on their behalf. Now a filter could check the header for the SMTP server of a given message and know that it didn't match a server that was allowed to send mail. And so a large chunk of spam was blocked. Yet people still get spam for a variety of reasons. One is that new servers go up all the time just to send junk mail. Another is that email accounts get compromised and used to send mail. Another is that mail servers get compromised. We have filters and even Bayesian and more advanced forms of machine learning. Heck, sometimes we even sign up for a list by giving our email out when buying something from a reputable site or retail vendor. Spam accounts for over 90% of the total email traffic on the Internet. This is despite blacklists, SPF, and filters. And despite the laws and threats spam continues. And it pays well. We mentioned Canter & Sigel. Shane Atkinson was sending 100 million emails per day in 2003. That doesn't happen for free. Nathan Blecharczyk, a co-founder of Airbnb paid his way through Harvard on the back of spam. Some spam sells legitimate products in illegitimate ways, as we saw with early IoT standard X10. Some is used to spread hate and disinformation, going back to Sender Argic, known for denying the Armenian genocide through newsgroups in 1994. Long before infowars existed. Peter Francis-Macrae sent spam to solicit buying domains he didn't own. He was convicted after resorting to blackmail and threats. Jody Michael Smith sold replica watches and served almost a year in prison after he got caught. Some spam is sent to get hosts loaded with malware so they could be controlled as happened with Peter Levashov, the Russian czar of the Kelihos botnet. Oleg Nikolaenko was arrested by the FBI in 2010 for spamming to get hosts in his Mega-D botnet. The Russians are good at this; they even registered the Russian Business Network as a website in 2006 to promote running an ISP for phishing, spam, and the Storm botnet. Maybe Flyman is connected to the Russian oligarchs and so continues to be allowed to operate under the radar. They remain one of the more prolific spammers. Much is sent by a small number of spammers. Khan C. Smith sent a quarter of the spam in the world until he got caught in 2001 and fined $25 million. Again, spam isn't limited to just email. It showed up on Usenet in the early days. And AOL sued Chris “Rizler” Smith for over $5M for his spam on their network. Adam Guerbuez was fined over $800 million dollars for spamming Facebook. And LinkedIn allows people to send me unsolicited messages if they pay extra, probably why Microsoft payed $26 billion for the social network. Spam has been with us since the telegraph; it isn't going anywhere. But we can't allow it to run unchecked. The legitimate organizations that use unsolicited messages to drive business help obfuscate the illegitimate acts where people are looking to steal identities or worse. Gary Thuerk opened a Pandora's box that would have been opened if hadn't of done so. The rise of the commercial Internet and the co-opting of the emerging cyberspace as a place where privacy and so anonymity trump verification hit a global audience of people who are not equal. Inequality breeds crime. And so we continually have to rethink the answers to the question of sovereignty versus the common good. Think about that next time an IRS agent with a thick foreign accent calls asking for your social security number - and remember (if you're old enough) that we used to show our social security cards to grocery store clerks when we wrote checks. Can you imagine?!?!
Ken and Gar watched Disney’s 24th animated feature this week, The Fox and the Hound (1981). Ken confronts one of his earliest childhood traumas and the brothers discuss why the themes and morals of this underrated classic have never been more relevant in 2020.Featuring a sweet rendition of "Best of Friends" from the movie performed by Musical Correspondent, Nicole McDonaghFollow Nicole @NicoleMcD_PR on Twitter and @n.mcdonagh on Instagram for more magical musical contentWatch along on Disney Plus and join the conversation on social media:Facebook: https://www.facebook.com/MagicByDesignPodTwitter: @MagicDesignPodInstagram: @magicbydesignpod
We have a genuine Voluntary Vixen on the show this week. Ms. Jessie Vixie joins us to talk about family and freedom and generations. Check out the Voluntary Vixens Podcast! Here are some of the topics we talked about: Event Horizon 100 Nights of Horror Make Liberty Great Again Network Unloose the Goose Podcast Secular Eclectic Homeschoolers Kmele Foster (Twitter) Tori Amos Nine Inch Nails Nirvana Generations Theory (one of my inspirations) Featured Music Show Intro: Foolish by Nicky P Show Outro: Closure by Tenwatch 1st Song: Know the Tree By Its Fruit by Matt Bankert 2nd Song: Repentance Song by ZANZA Ft. Lee 'Scratch' Perry 3rd Song: Tritone by 3rd World Leader 4th Song: Stitchling by Puma Thurman The Important Stuff Find all the episodes at http://peacefreqs.com Check out the show’s spotify soundtrack here: https://spoti.fi/2MFxkKG To Support Us Join The Freedom Choir here: http://upgradetheshow.com Want the best course in music & liberty online? http://freedomsong365.com Nick's Other Projects Free Markets Green Earth: https://freemarketsgreenearth.com LIBERPODS.COM https://liberpods.com Peace Freqs is a proud creation of The Mad Audio Lab at https://madaudiolab.com
This weeks guest is Levi Vixie who currently resides in Moscow, Idaho. For those unfamiliar with Moscow, it is a city in northern Idaho along the Washington State border. Moscow is the home of the University of Idaho. Just across the state border is Pullman Washington, home of Washington State University. Together, the two universities fuel the local economies and provide an endless clientele for the many bars and restaurants. Levi spent his childhood travelling the US with his parents - his Dad is a mathematician and Mom is a masseuse and food scientist. Both parents are tea-totalers. Levi spent time living in places such as Los Angeles and upstate New York. After high school, he spent two years living and working in Australia. Upon Levi's return stateside, he settled in Moscow Idaho as his parents were living in Pullman Washington. Levi started working in the industry in 2016 at Sangria Grille in Moscow Idaho working front of house as a server assistant. Surrounded by a strong and supportive staff that provided him with structure in the workplace, Levi learned to take the job seriously and view it as a viable career. Upon that realization, Levi found himself wanting to be a chef and started studying and working dish prep for about 6 months. This helped him build a solid foundation for his burgeoning cocktail career. While at Sangria Grille, when Levi was done his shift in back of house, he would volunteer as a bar back in the front of house in order to learn as much as he could about the bar program. After a few months, the majority of the bar staff left and Levi wound up running the bar program himself. After about 9 months, Levi wound up working another job at Nectar. Several quick months later, he wound up managing the bar program at Nectar as well. While working there, Levi learned a lot about wine from one of the owners - Brett Woodland. Brett had previously managed Noble Rot in Portland, Oregon. While at Nectar, Levi has continued his own wine and spirits self education as well as educating the local area on what's out there for cocktails. Currently, Levi is in the process of establishing his own consulting business for bars and restaurants to help with post Covid plans and ideas. Instagram @levi.k.vixie Podcast Artwork by Zak Hannah @zak.hannah
Nate and Vixie! Are we smart? Or dumb? Lots of really dumb people believe they are smart...as this podcast tries to find it's footing, this flagship episode of this iteration of THIS be brand new podcast stumbles around and is Each episode we will discuss a RANDOM, important topic that is drawn as soon as the show begins... We really could have used an easier topic than 'Sperm Whales' for episode #00001... but... --- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app Support this podcast: https://anchor.fm/nathan-charles/support
Arcan and OpenBSD, running OpenBSD 6.3 on RPI 3, why C is not a low-level language, HardenedBSD switching back to OpenSSL, how the Internet was almost broken, EuroBSDcon CfP is out, and the BSDCan 2018 schedule is available. Headlines Towards Secure System Graphics: Arcan and OpenBSD Let me preface this by saying that this is a (very) long and medium-rare technical article about the security considerations and minutiae of porting (most of) the Arcan ecosystem to work under OpenBSD. The main point of this article is not so much flirting with the OpenBSD crowd or adding further noise to software engineering topics, but to go through the special considerations that had to be taken, as notes to anyone else that decides to go down this overgrown and lonesome trail, or are curious about some less than obvious differences between how these things “work” on Linux vs. other parts of the world. A disclaimer is also that most of this have been discovered by experimentation and combining bits and pieces scattered in everything from Xorg code to man pages, there may be smarter ways to solve some of the problems mentioned – this is just the best I could find within the time allotted. I’d be happy to be corrected, in patch/pull request form that is 😉 Each section will start with a short rant-like explanation of how it works in Linux, and what the translation to OpenBSD involved or, in the cases that are still partly or fully missing, will require. The topics that will be covered this time are: Graphics Device Access Hotplug Input Backlight Xorg Pledging Missing Installing OpenBSD 6.3 (snapshots) on Raspberry pi 3 The Easy way Installing the OpenBSD on raspberry pi 3 is very easy and well documented which almost convinced me of not writing about it, but still I felt like it may help somebody new to the project (But again I really recommend reading the document if you are interested and have the time). Note: I'm always running snapshots and recommend anybody to do it as well. But the snapshots links will change to the next version every 6 month, so I changed the links to the 6.3 version to keep the blog post valid over times. If you're familiar to the OpenBSD flavors, feel free to use the snapshots links instead. Requirements Due to the lack of driver, the OpenBSD can not boot directly from the SD Card yet, So we'll need an USB Stick for the installtion target aside the SD Card for the U-Boot and installer. Also, a Serial Console connection is required. I Used a PL2303 USB to Serial (TTL) adapter connected to my Laptop via USB port and connected to the Raspberry via TX, RX and GND pins. iXsystems https://www.ixsystems.com/blog/truenas-m-series-veeam-pr-2018/ Why Didn’t Larrabee Fail? Every month or so, someone will ask me what happened to Larrabee and why it failed so badly. And I then try to explain to them that not only didn't it fail, it was a pretty huge success. And they are understandably very puzzled by this, because in the public consciousness Larrabee was like the Itanic and the SPU rolled into one, wasn't it? Well, not quite. So rather than explain it in person a whole bunch more times, I thought I should write it down. This is not a history, and I'm going to skip a TON of details for brevity. One day I'll write the whole story down, because it's a pretty decent escapade with lots of fun characters. But not today. Today you just get the very start and the very end. When I say "Larrabee" I mean all of Knights, all of MIC, all of Xeon Phi, all of the "Isle" cards - they're all exactly the same chip and the same people and the same software effort. Marketing seemed to dream up a new codeword every week, but there was only ever three chips: Knights Ferry / Aubrey Isle / LRB1 - mostly a prototype, had some performance gotchas, but did work, and shipped to partners. Knights Corner / Xeon Phi / LRB2 - the thing we actually shipped in bulk. Knights Landing - the new version that is shipping any day now (mid 2016). That's it. There were some other codenames I've forgotten over the years, but they're all of one of the above chips. Behind all the marketing smoke and mirrors there were only three chips ever made (so far), and only four planned in total (we had a thing called LRB3 planned between KNC and KNL for a while). All of them are "Larrabee", whether they do graphics or not. When Larrabee was originally conceived back in about 2005, it was called "SMAC", and its original goals were, from most to least important: Make the most powerful flops-per-watt machine for real-world workloads using a huge array of simple cores, on systems and boards that could be built into bazillo-core supercomputers. Make it from x86 cores. That means memory coherency, store ordering, memory protection, real OSes, no ugly scratchpads, it runs legacy code, and so on. No funky DSPs or windowed register files or wacky programming models allowed. Do not build another Itanium or SPU! Make it soon. That means keeping it simple. Support the emerging GPGPU market with that same chip. Intel were absolutely not going to build a 150W PCIe card version of their embedded graphics chip (known as "Gen"), so we had to cover those programming models. As a bonus, run normal graphics well. Add as little graphics-specific hardware as you can get away with. That ordering is important - in terms of engineering and focus, Larrabee was never primarily a graphics card. If Intel had wanted a kick-ass graphics card, they already had a very good graphics team begging to be allowed to build a nice big fat hot discrete GPU - and the Gen architecture is such that they'd build a great one, too. But Intel management didn't want one, and still doesn't. But if we were going to build Larrabee anyway, they wanted us to cover that market as well. ... the design of Larrabee was of a CPU with a very wide SIMD unit, designed above all to be a real grown-up CPU - coherent caches, well-ordered memory rules, good memory protection, true multitasking, real threads, runs Linux/FreeBSD, etc. Larrabee, in the form of KNC, went on to become the fastest supercomputer in the world for a couple of years, and it's still making a ton of money for Intel in the HPC market that it was designed for, fighting very nicely against the GPUs and other custom architectures. Its successor, KNL, is just being released right now (mid 2016) and should do very nicely in that space too. Remember - KNC is literally the same chip as LRB2. It has texture samplers and a video out port sitting on the die. They don't test them or turn them on or expose them to software, but they're still there - it's still a graphics-capable part. But it's still actually running FreeBSD on that card, and under FreeBSD it's just running an x86 program called DirectXGfx (248 threads of it). News Roundup C Is Not a Low-level Language : Your computer is not a fast PDP-11. In the wake of the recent Meltdown and Spectre vulnerabilities, it's worth spending some time looking at root causes. Both of these vulnerabilities involved processors speculatively executing instructions past some kind of access check and allowing the attacker to observe the results via a side channel. The features that led to these vulnerabilities, along with several others, were added to let C programmers continue to believe they were programming in a low-level language, when this hasn't been the case for decades. Processor vendors are not alone in this. Those of us working on C/C++ compilers have also participated. What Is a Low-Level Language? Computer science pioneer Alan Perlis defined low-level languages this way: "A programming language is low level when its programs require attention to the irrelevant." While, yes, this definition applies to C, it does not capture what people desire in a low-level language. Various attributes cause people to regard a language as low-level. Think of programming languages as belonging on a continuum, with assembly at one end and the interface to the Starship Enterprise's computer at the other. Low-level languages are "close to the metal," whereas high-level languages are closer to how humans think. For a language to be "close to the metal," it must provide an abstract machine that maps easily to the abstractions exposed by the target platform. It's easy to argue that C was a low-level language for the PDP-11. They both described a model in which programs executed sequentially, in which memory was a flat space, and even the pre- and post-increment operators cleanly lined up with the PDP-11 addressing modes. Fast PDP-11 Emulators The root cause of the Spectre and Meltdown vulnerabilities was that processor architects were trying to build not just fast processors, but fast processors that expose the same abstract machine as a PDP-11. This is essential because it allows C programmers to continue in the belief that their language is close to the underlying hardware. C code provides a mostly serial abstract machine (until C11, an entirely serial machine if nonstandard vendor extensions were excluded). Creating a new thread is a library operation known to be expensive, so processors wishing to keep their execution units busy running C code rely on ILP (instruction-level parallelism). They inspect adjacent operations and issue independent ones in parallel. This adds a significant amount of complexity (and power consumption) to allow programmers to write mostly sequential code. In contrast, GPUs achieve very high performance without any of this logic, at the expense of requiring explicitly parallel programs. The quest for high ILP was the direct cause of Spectre and Meltdown. A modern Intel processor has up to 180 instructions in flight at a time (in stark contrast to a sequential C abstract machine, which expects each operation to complete before the next one begins). A typical heuristic for C code is that there is a branch, on average, every seven instructions. If you wish to keep such a pipeline full from a single thread, then you must guess the targets of the next 25 branches. This, again, adds complexity; it also means that an incorrect guess results in work being done and then discarded, which is not ideal for power consumption. This discarded work has visible side effects, which the Spectre and Meltdown attacks could exploit. On a modern high-end core, the register rename engine is one of the largest consumers of die area and power. To make matters worse, it cannot be turned off or power gated while any instructions are running, which makes it inconvenient in a dark silicon era when transistors are cheap but powered transistors are an expensive resource. This unit is conspicuously absent on GPUs, where parallelism again comes from multiple threads rather than trying to extract instruction-level parallelism from intrinsically scalar code. If instructions do not have dependencies that need to be reordered, then register renaming is not necessary. Consider another core part of the C abstract machine's memory model: flat memory. This hasn't been true for more than two decades. A modern processor often has three levels of cache in between registers and main memory, which attempt to hide latency. The cache is, as its name implies, hidden from the programmer and so is not visible to C. Efficient use of the cache is one of the most important ways of making code run quickly on a modern processor, yet this is completely hidden by the abstract machine, and programmers must rely on knowing implementation details of the cache (for example, two values that are 64-byte-aligned may end up in the same cache line) to write efficient code. Backup URL Hacker News Commentary HardenedBSD Switching Back to OpenSSL Over a year ago, HardenedBSD switched to LibreSSL as the default cryptographic library in base for 12-CURRENT. 11-STABLE followed suit later on. Bernard Spil has done an excellent job at keeping our users up-to-date with the latest security patches from LibreSSL. After recently updating 12-CURRENT to LibreSSL 2.7.2 from 2.6.4, it has become increasingly clear to us that performing major upgrades requires a team larger than a single person. Upgrading to 2.7.2 caused a lot of fallout in our ports tree. As of 28 Apr 2018, several ports we consider high priority are still broken. As it stands right now, it would take Bernard a significant amount of his spare personal time to fix these issues. Until we have a multi-person team dedicated to maintaining LibreSSL in base along with the patches required in ports, HardenedBSD will use OpenSSL going forward as the default cryptographic library in base. LibreSSL will co-exist with OpenSSL in the source tree, as it does now. However, MK_LIBRESSL will default to "no" instead of the current "yes". Bernard will continue maintaining LibreSSL in base along with addressing the various problematic ports entries. To provide our users with ample time to plan and perform updates, we will wait a period of two months prior to making the switch. The switch will occur on 01 Jul 2018 and will be performed simultaneously in 12-CURRENT and 11-STABLE. HardenedBSD will archive a copy of the LibreSSL-centric package repositories and binary updates for base for a period of six months after the switch (expiring the package repos on 01 Jan 2019). This essentially gives our users eight full months for an upgrade path. As part of the switch back to OpenSSL, the default NTP daemon in base will switch back from OpenNTPd to ISC NTP. Users who have localopenntpdenable="YES" set in rc.conf will need to switch back to ntpd_enable="YES". Users who build base from source will want to fully clean their object directories. Any and all packages that link with libcrypto or libssl will need to be rebuilt or reinstalled. With the community's help, we look forward to the day when we can make the switch back to LibreSSL. We at HardenedBSD believe that providing our users options to rid themselves of software monocultures can better increase security and manage risk. DigitalOcean http://do.co/bsdnow -- $100 credit for 60 days How Dan Kaminsky Almost Broke the Internet In the summer of 2008, security researcher Dan Kaminsky disclosed how he had found a huge flaw in the Internet that could let attackers redirect web traffic to alternate servers and disrupt normal operations. In this Hacker History video, Kaminsky describes the flaw and notes the issue remains unfixed. “We were really concerned about web pages and emails 'cause that’s what you get to compromise when you compromise DNS,” Kaminsky says. “You think you’re sending an email to IBM but it really goes to the bad guy.” As the phone book of the Internet, DNS translates easy-to-remember domain names into IP addresses so that users don’t have to remember strings of numbers to reach web applications and services. Authoritative nameservers publish the IP addresses of domain names. Recursive nameservers talk to authoritative servers to find addresses for those domain names and saves the information into its cache to speed up the response time the next time it is asked about that site. While anyone can set up a nameserver and configure an authoritative zone for any site, if recursive nameservers don’t point to it to ask questions, no one will get those wrong answers. We made the Internet less flammable. Kaminsky found a fundamental design flaw in DNS that made it possible to inject incorrect information into the nameserver's cache, or DNS cache poisoning. In this case, if an attacker crafted DNS queries looking for sibling names to existing domains, such as 1.example.com, 2.example.com, and 3.example.com, while claiming to be the official "www" server for example.com, the nameserver will save that server IP address for “www” in its cache. “The server will go, ‘You are the official. Go right ahead. Tell me what it’s supposed to be,’” Kaminsky says in the video. Since the issue affected nearly every DNS server on the planet, it required a coordinated response to address it. Kaminsky informed Paul Vixie, creator of several DNS protocol extensions and application, and Vixie called an emergency summit of major IT vendors at Microsoft’s headquarters to figure out what to do. The “fix” involved combining the 16-bit transaction identifier that DNS lookups used with UDP source ports to create 32-bit transaction identifiers. Instead of fixing the flaw so that it can’t be exploited, the resolution focused on making it take more than ten seconds, eliminating the instantaneous attack. “[It’s] not like we repaired DNS,” Kaminsky says. “We made the Internet less flammable.” DNSSEC (Domain Name System Security Extensions), is intended to secure DNS by adding a cryptographic layer to DNS information. The root zone of the internet was signed for DNSSEC in July 2010 and the .com Top Level Domain (TLD) was finally signed for DNSSEC in April 2011. Unfortunately, adoption has been slow, even ten years after Kaminsky first raised the alarm about DNS, as less than 15 percent of users pass their queries to DNSSEC validating resolvers. The Internet was never designed to be secure. The Internet was designed to move pictures of cats. No one expected the Internet to be used for commerce and critical communications. If people lose faith in DNS, then all the things that depend on it are at risk. “What are we going to do? Here is the answer. Some of us gotta go out fix it,” Kaminsky says. OpenIndiana Hipster 2018.04 is here We have released a new OpenIndiana Hipster snapshot 2018.04. The noticeable changes: Userland software is rebuilt with GCC 6. KPTI was enabled to mitigate recent security issues in Intel CPUs. Support of Gnome 2 desktop was removed. Linked images now support zoneproxy service. Mate desktop applications are delivered as 64-bit-only. Upower support was integrated. IIIM was removed. More information can be found in 2018.04 Release notes and new medias can be downloaded from http://dlc.openindiana.org. Beastie Bits EuroBSDCon - Call for Papers OpenSSH 7.7 pkgsrc-2018Q1 released BSDCan Schedule Michael Dexter's LFNW talk Tarsnap ad Feedback/Questions Bob - Help locating FreeBSD Help Alex - Convert directory to dataset Adam - FreeNAS Question Florian - Three Questions Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv iX Ad spot: iXsystems TrueNAS M-Series Blows Away Veeam Backup Certification Tests
The extreme makeup, fashion, and body modification of the Living Doll community is a sight to behold. Alli and Jen interview Vixie, who moderates numerous living doll forums where members swap pics and tricks on how to look as doe-eyed and plastic as humanly possible. Learn more about your ad choices. Visit megaphone.fm/adchoices
From our New Years Resolution episode, the Story Pirates present "Vixie and the Best Resolution Ever" by then-4th grader Kitty Lustig!
DNS... we take it for granted... it's just there. And we only know it's broken when your boss can't get to Facebook. This week, we discuss the Domain Naming System (DNS). We start with a bit of history, talking about the origins of DNS, some of the RFCs involved in it's creation, how it's hierarchical structure functions to allow resolution to occur, and even why your /etc/hosts is important. We discuss some of the necessary fields in your DNS records. MX, ALIAS, CNAME, SOA, TXT, and how DNS is used for non-repudiation in email. We also touch on how you can use DNS to enumerate an external network presence when you are the red team, and what you should know about to make it harder for bad actors to not use your external DNS in amplification attacks. Finally, you can't have a discussion about DNS without talking about how to secure your DNS implementation. So we supply you with a few tips and best practices. Plenty of informational links down below, including links to the actual RFCs (Request for Comment) which detail how DNS is supposed to function. Think of them as the owner's manual for your car. Direct Download: http://traffic.libsyn.com/brakeingsecurity/2016-010-DNS_Reconnaissance.mp3 #iTunes: https://itunes.apple.com/us/podcast/2016-010-dns-reconnaissance/id799131292?i=364331694&mt=2 Comments, Questions, Feedback: bds.podcast@gmail.com Support Brakeing Down Security using Patreon: https://www.patreon.com/bds_podcast RSS FEED: http://www.brakeingsecurity.com/rss On #Twitter: @brakesec @boettcherpwned @bryanbrake #Facebook: https://www.facebook.com/BrakeingDownSec/ #Tumblr: http://brakeingdownsecurity.tumblr.com/ Google Play Store: https://play.google.com/music/podcasts/portal/#p:id=playpodcast/series&a=100584969 Player.FM : https://player.fm/series/brakeing-down-security-podcast Stitcher Network: http://www.stitcher.com/s?fid=80546&refid=stpr TuneIn Radio App: http://tunein.com/radio/Brakeing-Down-Security-Podcast-p801582/ Podcast Links we used for information: http://www.slideshare.net/BizuworkkJemaneh/dns-42357401 300+ million domains registered: https://www.verisign.com/en_US/internet-technology-news/verisign-press-releases/articles/index.xhtml?artLink=aHR0cDovL3ZlcmlzaWduLm13bmV3c3Jvb20uY29tL2FydGljbGUvcnNzP2lkPTIwMTIwNTI%3D https://technet.microsoft.com/en-us/library/cc770432.aspx http://security-musings.blogspot.com/2013/03/building-secure-dns-infrastructure.html http://tldp.org/HOWTO/DNS-HOWTO-6.html https://en.wikipedia.org/wiki/Domain_Name_System https://en.wikipedia.org/wiki/DNS_spoofing http://www.esecurityplanet.com/network-security/how-to-prevent-dns-attacks.html http://www.firewall.cx/networking-topics/protocols/domain-name-system-dns/161-protocols-dns-response.html http://www.thegeekstuff.com/2012/05/ettercap-tutorial/ https://isc.sans.edu/forums/diary/New+tricks+that+may+bring+DNS+spoofing+back+or+Why+you+should+enable+DNSSEC+even+if+it+is+a+pain+to+do/16859/ https://support.google.com/a/answer/48090?hl=en http://www.ecsl.cs.sunysb.edu/tr/TR187.pdf https://tools.ietf.org/html/rfc882 https://tools.ietf.org/html/rfc883 https://tools.ietf.org/html/rfc1034 https://tools.ietf.org/html/rfc1035
What does Mother’s Finest, truck driving, MMA training, and veganism have in common? Find out on episode 8! Your plant lovin’ hosts caught up with vegan MMA fighter Brandon Longano and chatted about life on the road, training, and fueling with plants!!! Brandon chews the tofu with us about becoming vegan and how a plant-based diet has impacted his training, recovery time, and prep for fights. He talks about what influenced him to become plant-based and how he influences others, including his dad, to be open to the idea of a plant-based lifestyle. Every vegan MMA fighter needs gear, and companies like Vehement (vhmnt.com) has the answer with a line of vegan fight gear. Other companies are producing vegan products, so this is positive change we are witnessing in the sport of MMA and boxing. There are more and more protein and recovery products that are offering plant-based options. We love Vega and the new supplement line Vegan Smart by John Lewis, the Bad Ass Vegan. Got questions? Contact us and send em our way! SPONSORS Start the year out right by helping out an amazing group of people at A New Hope: Animal Sanctuary & Education Center. Adopt an animal for a year and get monthly photos and updates. We adopted Vixie, she's adorable and we love the photos and videos of her playing. Curiously Veg Radio is sponsored by audible.com. Get a free audio book download and 30 day free trial at audibletrial.com/CuriouslyVegRadio. Over 180,000 title to choose from your android, kindle, or mp3 player. Thrive Market is a revolutionary online marketplace with a mission to make healthy living easy and affordable for everyone. On Thrive Market you can shop the best-selling 4000 health and wellness products from the top 400 natural brands on the market in everyday sizes, always at 25-50% below traditional retail prices.
Slides Here: https://defcon.org/images/defcon-22/dc-22-presentations/Vixie/DEFCON-22-Paul-Vixie-2014-07-15-botnets.pdf White paper available for download here: https://defcon.org/images/defcon-22/dc-22-presentations/Vixie/DEFCON-22-Paul-Vixie-WP.pdf Domain Name Problems and Solutions Dr. Paul Vixie CEO, FARSIGHT SECURITY Spammers can't use dotted quads or any other literal IP address, since SpamAssassin won't let it through, since it looks too much like spam. So, spammers need cheap and plentiful — dare we say 'too cheap to meter'? — domain names. The DNS industry is only too happy to provide these domain names, cheaply and at massive scale. The end result is that 90% of all domain names are crap, with more on the way. DNS registrars and registries sometimes cooperate with law enforcement and commercial takedown efforts since it results in domains that die sooner thus creating demand for more domains sooner. Spammers and other abusers of the Internet commons sometimes try to keep their domains alive a little longer by changing name server addresses, or changing name server names, many times per day. All of this action and counteraction leaves tracks, and around those tracks, security minded network and server operators can build interesting defenses including DNS RPZ, a firewall that works on DNS names, DNS responses, and DNS metadata; and NOD, a feed of Newly Observed Domains that can be used for brand enforcement, as well as an RPZ that can direct a DNS firewall to treat infant domain names unfairly. Dr. Paul Vixie, long time maintainer of BIND and now CEO of Farsight Security, will explain and demonstrate." Dr. Paul Vixie is the CEO of Farsight Security. He previously served as President, Chairman and Founder of Internet Systems Consortium (ISC), as President of MAPS, PAIX and MIBH, as CTO of Abovenet/MFN, and on the board of several for-profit and non-profit companies. He served on the ARIN Board of Trustees from 2005 to 2013, and as Chairman in 2008 and 2009. Vixie is a founding member of ICANN Root Server System Advisory Committee (RSSAC) and ICANN Security and Stability Advisory Committee (SSAC). Vixie has been contributing to Internet protocols and UNIX systems as a protocol designer and software architect since 1980. He is considered the primary author and technical architect of BIND 8, and he hired many of the people who wrote BIND 9 and the people now working on BIND 10. He has authored or co-authored a dozen or so RFCs, mostly on DNS and related topics, and of Sendmail: Theory and Practice (Digital Press, 1994). He earned his Ph.D. from Keio University for work related to the Internet Domain Name System (DNS and DNSSEC).
Black Hat Briefings, Las Vegas 2005 [Video] Presentations from the security conference
Paul Vixie has been contributing to Internet protocols and UNIX systems as a protocol designer and software architect since 1980. Early in his career, he developed and introduced sends, proxynet, rtty, cron and other lesser-known tools. Today, Paul is considered the primary modern author and technical architect of BINDv8 the Berkeley Internet Name Domain Version 8, the open source reference implementation of the Domain Name System (DNS). He formed the Internet Software Consortium (ISC) in 1994, and now acts as Chairman of its Board of Directors. The ISC reflects Paul's commitment to developing and maintaining production quality open source reference implementations of core Internet protocols. More recently, Paul cofounded MAPS LLC (Mail Abuse Prevention System), a California nonprofit company established in 1998 with the goal of hosting the RBL (Realtime Blackhole List) and stopping the Internet's email system from being abused by spammers. Vixie is currently the Chief Technology Officer of Metromedia Fiber Network Inc (MFNX.O). Along with Frederick Avolio, Paul co-wrote "Sendmail: Theory and Practice" (Digital Press, 1995). He has authored or co-authored several RFCs, including a Best Current Practice document on "Classless IN-ADDR.ARPA Delegation" (BCP 20). He is also responsible for overseeing the operation of F.root-servers.net, one of the thirteen Internet root domain name servers.
Black Hat Briefings, Las Vegas 2005 [Audio] Presentations from the security conference
Paul Vixie has been contributing to Internet protocols and UNIX systems as a protocol designer and software architect since 1980. Early in his career, he developed and introduced sends, proxynet, rtty, cron and other lesser-known tools. Today, Paul is considered the primary modern author and technical architect of BINDv8 the Berkeley Internet Name Domain Version 8, the open source reference implementation of the Domain Name System (DNS). He formed the Internet Software Consortium (ISC) in 1994, and now acts as Chairman of its Board of Directors. The ISC reflects Paul's commitment to developing and maintaining production quality open source reference implementations of core Internet protocols. More recently, Paul cofounded MAPS LLC (Mail Abuse Prevention System), a California nonprofit company established in 1998 with the goal of hosting the RBL (Realtime Blackhole List) and stopping the Internet's email system from being abused by spammers. Vixie is currently the Chief Technology Officer of Metromedia Fiber Network Inc (MFNX.O). Along with Frederick Avolio, Paul co-wrote "Sendmail: Theory and Practice" (Digital Press, 1995). He has authored or co-authored several RFCs, including a Best Current Practice document on "Classless IN-ADDR.ARPA Delegation" (BCP 20). He is also responsible for overseeing the operation of F.root-servers.net, one of the thirteen Internet root domain name servers.