S1E6: "I Tour My ACL"
Posted
Comments
0
| Recorded (UTC) | Aired (UTC) | Editor |
|---|---|---|
| Format | SHA256 | GPG | Audio File |
|---|---|---|---|
| MP3 | click | click | OGG | click | click |
Various security mechanisms such as ACL, SElinux, etc.
This is also the episode where the “cockulator” joke was born.
News
Starts at 4m36s.
- The entire San Bernardino debacle was pointless.
- FBI contractor hired to implant Tor malware
- A Spotify “Compromise”
- Which is most likely not actually a Spotify compromise. Per an anonymous infosec professional source on twitter PM, “Couple of hundred account dumps is not a data breach. It can be obtained from a public terminal or a network.”
- And it’s a valid point.
- Nuclear power plant gets infected by malware on the 30th anniversary of the Chernobyl incident.
- One of the found infections was Conficker. Let me say that again- conficker. In a power plant. Lovely.
Notes
Starts at 14m31s.
I was drinking Different Drum Rum from La Colombe Distillery (yet again), Paden was drinking his Buckeye vodka also again, and Jthan was drinking Princess Yum Yum (lolz) from Denver Beer Co..
- There are a lot of interesting things you need to take into consideration when using Tor.
- We finally (try to) put the San Bernardino thing to rest. (32m12s)
- tl;dr: it was more about the precedent and being a power play by the FBI rather than the case, which is a clear and distinct abuse of power by the FBI.
- Jthan also brings up the Philadelphia cop who is being jailed indefinitely due to his encrypted harddrive.
- Which is bullshit.
- GNU/Linux security mechanisms (56m40s)
- PAM is pretty cool.
- Including Duo and Google Authenticator.
- I also mention (though it’s unrelated) SPDY. I also mention WiKID (see errata).
- This is a good example of TTY login limitations. For more fine-grained control, you should also look into the options for /etc/security/access.conf.
- GRsecurity PaX.
- You can hear Jim (TheTechStewart) on S0E18.
- SElinux isn’t all too hard to learn.
- This is a good resource to learn it.
- Aaron chopped some of this discussion out. :| You can find the link to the uncut/unedited mix in the Errata section.
- The NSA security guide can be found here. Mysteriously, the original link is broken. Also worth a look is this.
- Octal modes and Ownerships
- Cheatsheet
- Permissions calculator
- But there’s other ones here
- The Pink Book
- XATTRs (extended attributes) are pretty handy. The pink book goes into more detail for this, which is why I highly recommend it.
- To use it, though, you need to use the “xattr” mount option.
- There’s also normal attributes.
- PAM is pretty cool.
Sysbadministration Award
In this segment, we highlight system administration mistakes. Think of them as the IT equivalent of the Darwin Awards. (1h44m00s)
This episode’s winner of the Baddies was the unnamed sysadmin/netadmin responsible for this. Way to go.
Errata
- Jthan and Paden kept playing Slither during the pre-recording meeting.
- I refer to Chelsea Manning as Bradley Manning because at the time of incident, Manning still identified as male- or at the least was known as Bradley.
- Aaron has stated he wants to come on the show to discuss documentaries more in-depth, but it’s already pretty irrelevant. I already know what he’s going to say, though, since we’re good friends and have talked about it in-length before- he doesn’t believe there’s such a thing as objective facts, and especially that humans aren’t capable of objectivity even if it exists.
- I reference the Ballmer Peak.
- I mistakenly referred to WiKID as “Twistid”- I have no idea why, but I do it all the time.
- Aaron cut chunks out of conversation, and some context was missed. Please feel free to grab the FLAC XZ-compressed (and the signature).
Music
| Track | Title | Artist | Link | Copyright/License |
|---|---|---|---|---|
| Intro | click | Outro | click |
Author
r00t^2
Categories
Season One
Comments
There are currently no comments on this article.
Comment...