0

SMLR Episode 268 Paging Dr Watson

Posted by Tom Lawrence on March 11, 2018 in Show-mp3, Show-ogg |
Play

Podcast: Play in new window

Subscribe: Apple Podcasts | RSS

http://smlr.us

Downloads:

MP3 format (for Freedom Haters!)
OGG format (for Freedom Lovers!)

Contact Us:

show (at) smlr.us or the Contact us page

Intro:

Tony Bemus, Tom Lawrence, Phil Porada and Mary Tomich

Sound bites by Mike Tanner

Phils GitHub

https://github.com/pgporada

The LawrenceSystems YouTube Channel Where videos
https://www.youtube.com/user/TheTecknowledge

Tech News:

The Argument for Open Source Hardware

https://www.technologyreview.com/s/603819/this-entrepreneur-dares-you-to-hack-his-gadgets/

GitHub DDoS

https://www.wired.com/story/github-ddos-memcached/

Example based tutorials for cli text processing – grep/sed/awk/perl/sort…

https://github.com/learnbyexample/Command-line-text-processing

“As Debian comes to Windows 10, should we worry Microsoft will ’embrace, extend, and extinguish’ Linux?”  NOPE!

https://betanews.com/2018/03/06/debian-linux-windows/

KDE is accepted to Google Summer of Code as mentor organization

https://community.kde.org/GSoC/2018/Ideas

Don’t email 28,000 private keys that you should not have in the first place

https://www.theregister.co.uk/2018/03/01/trustico_website_offline/

Slack Client in the terminal

https://github.com/erroneousboat/slack-term

Debian 9.4 Released

https://www.debian.org/News/2018/20180310

Slingshot virus found in mirotik

https://arstechnica.com/information-technology/2018/03/potent-malware-that-hid-for-six-years-spread-through-routers/

Password System Keeper hit with a security flaw.

http://www.zdnet.com/article/password-manager-maker-keeper-hit-by-another-security-snafu/

 

Trustico

Trustico – “Trustico allows customers to generate a Certificate Signing Request and Private Key during the ordering process. These Private Keys are stored in cold storage, for the purpose of revocation.”

 

Trustico – “In accordance with CAB Forum guidelines we acted to immediately revoke active SSL Certificates whereby trust was questionable.”


This of course meant they emailed 23,000 private keys to Digicert for revocation.

 

Why? – “Trustico is in the process of terminating their

relationship with Digicert and switching to Comodo for issuance”

 

Comodo – “

We also asked Trustico to cease offering any tools to generate and/or

retain customer private keys.  They have complied with this request and

have confirmed that they do not intend to offer any such tools again in

the future.

 

Trustico have also confirmed to us that they were not, and are not, in

possession of the private keys that correspond to any of the

certificates that they have requested for their customers through Comodo CA.

 

Addendum

 

https://twitter.com/cujanovic/status/969229397508153350 code injection on the trustico website which caused the server to be either shutdown or taken down. During these shenanigans, the server TLS certificate/key could have been compromised and as a result, that key had to be revoked.

 

Geany Code Editor

https://www.geany.org/ release 1.33

Released under the GPL

 

Geany is a small and lightweight IDE – Integrated Development Environment. It was developed to provide a small and fast IDE, which has only a few dependencies from other packages. Another goal was to be as independent as possible from a special Desktop Environment like KDE or GNOME – Geany only requires the GTK2 runtime libraries.

 

Google Skaffold

https://github.com/GoogleCloudPlatform/skaffold

Skaffold is a command line tool that facilitates continuous development for Kubernetes applications. You can iterate on your application source code locally then deploy to local or remote Kubernetes clusters. Skaffold handles the workflow for building, pushing and deploying your application. It can also be used in an automated context such as a CI/CD pipeline to leverage the same workflow and tooling when moving applications to production.

 

There’s also https://www.telepresence.io/ which can swap and hot re-deploy containers for you. Telepresence substitutes a two-way network proxy for your normal pod running in the Kubernetes cluster. This pod proxies data from your Kubernetes environment (e.g., TCP connections, environment variables, volumes) to the local process. The local process has its networking transparently overridden so that DNS calls and TCP connections are routed through the proxy to the remote Kubernetes cluster.

 

Slimer.JS

https://slimerjs.org/

Scriptable web browser for web developers. SlimerJS allows you to interact with a web page through an external JS script. PhantomsJS is built on top of Webkit and JavascriptCore (like Safari) and SlimerJS is built on top of Gecko and SpiderMonkey (like Firefox).

 

 

 

 

 

This content is published under the Attribution-Noncommercial-Share Alike 3.0 Unported license.

Leave a Reply

Your email address will not be published. Required fields are marked *

Copyright © 2011-2023 Sunday Morning Linux Review All rights reserved.
This site is using the Desk Mess Mirrored theme, v2.5, from BuyNowShop.com.