The trials and tribulations of the long journey to TLS 1.3 & the “middleware” that’s keeping us from having nice things. Plus a pack of Leaky S3 bucket stories & the data that was exposed.Then we do a deep dive into some SMB fundamentals & pr

All Natural Namespaces | TechSNAP 349

Dec 22nd, 2017 50m 1s

Network Namespaces have been around for a while, but there may be be some very practical ways to use them that you’ve never considered. Wes does a deep dive into a very flexible tool.Plus what might be the world’s most important killswitch, t

Server Neglect | TechSNAP 348

Dec 16th, 2017 49m 14s

Authors of one of the most infamous botnets of all time get busted, researchers discover keyloggers built into HP Laptops, the major HomeKit flaw no one is talking about & the new version of FreeNAS packs a lot of features for a point release.

A Farewell to Dan | TechSNAP 347

Nov 30th, 2017 1h 39m

We say farewell to Dan, but don't despair, we've still got a ton of great topics to cover as we say goodbye. We compare the handling of recent data breaches at imgur & DJI, share some in-depth guides on beefing up your security posture & see Da

Neutral Nets | TechSNAP 346

Nov 21st, 2017 1h 17m

We get depressed over some new stats confirming our worst fears about the huge number of outdated and unpatched android systems. But, in some good news, Github wants to help you, and your open source projects, stay secure with their new Securit

Namespaces GOTO Jail | TechSNAP 345

Nov 18th, 2017 1h 52m

We can't contain our excitement as we dive deep into the world of jails, zones & so-called linux containers. Dan shares his years of experience using the time-tested original bad boy of containers, FreeBSD jails. Wes breaks down cgroups, namesp

SSL Strippers | TechSNAP 344

Nov 8th, 2017 1h 18m

You may think that’s a secure password field, but don’t be fooled! We’ve got the disturbing tale of some negligent websites & their fraudulent fonts. Then, some top tips to evaluate the security of your banking institutions & best practices for

Low Security Pillow Storage | TechSNAP 343

Nov 1st, 2017 1h 27m

We've got some top tips to turn you from ssh-novice to port-forwarding master. Plus the latest on the confusing story of Kaspersky, the NSA & a bone-headed contractor. Then, our backup sense is tingling, with the story of $30,000 lost to a for

Cloudy with a chance of ABI | TechSNAP 342

Oct 25th, 2017 1h 41m

We air Microsoft's dirty laundry as news leaks about their less than stellar handling of a security database breach, plus a fascinating story of deceit, white lies, and tacos; all par for the course in the world of social engineering, and we fi

HAMR Time | TechSNAP 341

Oct 18th, 2017 1h 8m

We've got bad news for Wifi-lovers as the KRACK hack takes the world by storm; We have the details & some places to watch to make sure you stay patched. Plus, some distressing revelations about third party access to your personal information th

Spy Tapes | TechSNAP 340

Oct 12th, 2017 1h 49m

We try our hand at spycraft with a set of espionage themed stories covering everything from the latest troubles at Kaspersky to the strategic implications of responsible disclosure at the NSA. Plus, a few more reasons to be careful with what yo

Laying Internet Pipe | TechSNAP 339

Oct 5th, 2017 1h 14m

We cover the problematic implications of SESTA, the latest internet regulations proposed in the US, plus some PR troubles for CBS's Showtime after cryptocoin mining software was found embedded in their webpage & Dan gets excited as we discuss w

Patch Your S3it | TechSNAP 338

Sep 27th, 2017 1h 7m

Distrustful US allies further delay the NSA’s new crypto, Viacom’s leaky buckets almost expose its entire IT infrastructure, plus a few more Equifax mishaps & a government spyware tool that might just be masquerading as your favorite app.And

FCC’s Free Offsite Storage | TechSNAP 337

Sep 20th, 2017 1h 6m

That Equifax hack? So last week! This weeks vulnerability is BlueBorne, a new attack on just about every bluetooth capable device. We've got the details, and what you need to know to get patched. Plus some of our favorite overlooked shell comma

Equihax | TechSNAP 336

Sep 13th, 2017 1h 28m

Equifax got hacked, some top tips for staying safe & a debate over just who's to blame for vulnerable open source software. Then Google's breaking up with Symantec & we take a little time for Sysadmin 101, this time, ticketing systems.

Extended Usefulness | TechSNAP 335

Sep 6th, 2017 1h 35m

We're extending your filesystems usefulness with extended attributes! We learn what they are & how they might be useful. Plus, we take a look behind the scenes of a major spambot operation & check in with Bruce Schneier on the state of internet

HPKP: Hard to Say, Hard to Use | TechSNAP 334

Aug 30th, 2017 1h 24m

We discuss, and struggle to pronounce, the difficulties in deploying HTTP public key pinning & some possible alternatives you should consider. Then we get excited for (n+1)sec, a new protocol for distributed multiparty chat encryption & explore

Rsync On Ice | TechSNAP 333

Aug 25th, 2017 1h 34m

We take a trip to the ends of the earth and hear some stories of tech support in Antarctica, cover a surprisingly reasonable new suggested standard for responsible disclosure & discuss Kreb's latest adventures in the world of deep-insert credit

Leaky Pumps | TechSNAP 332

Aug 16th, 2017 1h 28m

With some clever new card skimmer tech we’ve got one more reason to watch your wallet at the gas pump, plus a few handy recommendations for postgres migrations & Dan dives deep into his quest for the ultimate boot and nuke experience. Plus yo

BTRFS is Toast | TechSNAP 331

Aug 8th, 2017 1h 24m

We discuss just how hard, or not, responsible disclosure really is, share some sad news about the status of BTRFS on RHEL, a few more reasons to use ZFS.Then, we find out if our passwords have been cracked, reveal Dan’s password hashes live o

Netflix Lab Rats | TechSNAP 330

Aug 2nd, 2017 1h 21m

Dan does some sleuthing & finds that the story of a major data leak isn't quite what it seems, then a new Talos report that shows a large number of unpatched & unprotected memcached servers. We discuss just how bad that might be. Plus, between

Teeny Weeny DNS Server | TechSNAP 329

Jul 25th, 2017 1h 21m

We've got the latest on some mysterious mac malware that's been lurking for years, a handy new tool to help you monitor, backup and generally work with your DNS infrastructure & possibly more problems for Symantec, the certificate authority who

LetsEncrypt is a SNAP | TechSNAP 328

Jul 19th, 2017 1h 36m

The recent ‘Devil’s Ivy’ vulnerability has caused quite a rash in the security journalism community. Is it as bad as poison ivy or just a bunch of hyperbole? We discuss. Plus you’ve heard of public key encryption, but what lies beyond? We cover

Unsecured IO | TechSNAP 327

Jul 12th, 2017 1h 43m

GNUPG has just released a fix for a dangerous side-channel attack that could expose your private key, a leak of NASDAQ test data was picked up by real news organizations and caused a bit of a panic & the fascinating story of a security research