Podcast: Play in new window | Download (Duration: 46:46 — 86.0MB)
Subscribe: Apple Podcasts | Spotify | RSS
In the 21st episode of Enterprise Linux Security, Jay and Joao discuss the recent “Dirty Pipe” vulnerability, as well as Nvidia’s recent breach.
Podcast: Play in new window | Download (Duration: 43:16 — 79.5MB)
Subscribe: Apple Podcasts | Spotify | RSS
2021 is now in the past, but there’s some very interesting details in the year-end vulnerability report produced by RBS. These details give us a look at some of the trends that will impact 2022 and beyond. In this episode, Joao and Jay discuss the report and some of its findings.
Trust is a very important aspect of security, but who/what exactly should you trust? How about no one? Join Jay and Joao for episode 18 of the Enterprise Linux Security show, as they discuss Zero Trust Security.
Podcast: Play in new window | Download (Duration: 34:44 — 63.9MB)
Subscribe: Apple Podcasts | Spotify | RSS
The New Year is just beginning, and we already have a few important CVE’s to discuss, this time around Polkit and LUKS. The CVE numbers for these vulnerabilities are CVE-2021-4034 and CVE-2021-4122 respectively. In this episode, Jay and Joao discuss these vulnerabilities.
Podcast: Play in new window | Download (Duration: 54:15 — 99.7MB)
Subscribe: Apple Podcasts | Spotify | RSS
It’s frustrating when critical infrastructure encounters an issue that results in a disruption of service. High Availability is a concept that aims to help alleviate (or hopefully eliminate) such downtime, and is a very attractive goal for system administrators. In this episode, Jay and Joao discuss high availability, as well as its pros and cons.
Podcast: Play in new window | Download (Duration: 54:43 — 100.5MB)
Subscribe: Apple Podcasts | Spotify | RSS
Disasters in the world of tech are frustrating for everyone, not just the company that experienced the incident. In this episode, Jay and Joao discuss thoughts around what it actually means to recovery from a disaster, and why it’s typically not a quick process.
Podcast: Play in new window | Download (Duration: 47:34 — 87.4MB)
Subscribe: Apple Podcasts | Spotify | RSS
Joao and Jay talk about the worst healthcare breaches of 2021, and some lessons that can be learned from these events. Specifically, this article is discussed.
Podcast: Play in new window | Download (Duration: 55:17 — 101.6MB)
Subscribe: Apple Podcasts | Spotify | RSS
DevOps has changed the way many technology organizations work, by making the administrator the center of the development cycle (rather than an outside resource). In this episode, Jay and Joao discuss DevOps and how it’s changed the landscape.
Podcast: Play in new window | Download (Duration: 48:39 — 111.7MB)
Subscribe: Apple Podcasts | Spotify | RSS
Recently, some interesting security news has occurred, and two specific developments are the main discussion in this episode. Trojan Source is a newly discovered tactic that can be used to hide malicious code and execute something completely unexpected, even when the source code appears to be syntactically correct. In addition, CISA recently mandated a large number of CVE’s to be patched in the very near future, which will likely have ramifications even outside of the United States. Also, Jay and Joao also discuss the recently released Fedora 35, which is a distribution that has a large presence on the workstations that administrators use.
Podcast: Play in new window | Download (Duration: 52:13 — 119.8MB)
Subscribe: Apple Podcasts | Spotify | RSS
Remaining on legacy Linux distributions can lead to additional security risks as time goes on, and migrating to a newer and better supported distribution can be a very difficult endeavor for most administrators. In this episode, Jay and Joao are joined by Jack from AlmaLinux, and we talk about ELevate – a tool that can be used to migrate from a distribution in the Enterprise Linux family to another Enterprise Linux distribution. This helps alleviate some of the burden of distro migration, and as a community project it’s also a great project to get started with contributing to an open-source project.