Enterprise Linux Security Episode 96 – Weaponized Workflows

Play

In DevOps, there’s many great tools we appreciate – CI/CD workflows definitely being one of them. Github Workflows is one such tool, but vulnerabilities were recently found. Also, AT&T suffers a breach (and more!)

Thanks to TuxCare for sponsoring the Enterprise Linux Security podcast. Check out their awesome services to see how they can simplify Linux administration!

Relevant Articles

Download Links

Enterprise Linux Security Episode 76 – You Got Malware

Play

In this episode, Jay and Joao discuss the recent Exim news, which consists of several CVE’s. Also, they’ll discuss why it’s a good idea to make sure you audit the services that are running on your Linux server, and remove the ones you’re not using.

Thanks to TuxCare for sponsoring this podcast! Check them out and see how they can help alleviate administrative burdens while managing Linux servers.

Relevant Articles

Download Links

Enterprise Linux Security Episode 71 – Internet DRM

Play

In this episode, Jay and Joao talk about two recent news developments that may have important implications on the overall industry. First, In response to Microsoft’s recent Azure debacle, a US Senator calls for a probe to look into the matter. Second, our main story is yet another facepalm worthy idea from Google that aims to add “integrity” to our browsers, but it’s oddly lacking in said integrity and almost completely devoid of common sense. Google’s “Web Integrity Protection” seems to protect only their ad dollars while making browsing more tedious for the end-user. Will it pass? What is it exactly? Jay and Joao have all the answers in this episode!

Download Links

Relevant Articles

Enterprise Linux Security Episode 67 – No One Else’s Computer

Play

We’ve all heard the cloud referred to as “Someone Else’s Computer”, but what do you do if you find your data is on No One Else’s Computer? In this example, there was a happy ending (data was restored) but it’s still an important consideration all the same. What do you do if your cloud provider all of a sudden doesn’t have your data? In this episode, Jay and Joao discuss a recent situation in which Azure customers found themselves in a bit of a bad situation.

Relevant Articles

Download Links

Enterprise Linux Security Episode 65 – Open Source Intelligence Tools (OSINT)

Play

Open Source Intelligence is a very interesting topic – it’s all about the things that might get unknowingly leaked, and this leaked information is perfectly legal to know and possess! The IP address that points to a domain, vacation photos on twitter, or even what you had for lunch can be used against you in order to build a profile. In this episode, Jay and Joao discuss OSINT and some tools that are commonly used to find it.

Download links