Show Notes:

Get TechSNAP on your Android:

• Callisto – Android App
• Jupiter Broadcasting – Android App by ShaneQful

Browser Affiliate Extension:

• Jupiter Broadcasting Affiliate Extensions for Chrome and Firefox

0-Day exploit for Linksys routers found

• Researchers at DefenseCode have discovered a remote root access exploit for default installations on Linksys routers
• When the researchers contacted Cisco and shared the vulnerability as well as Proof of Concept code, Cisco originally claimed that the vulnerability had already been fixed in the latest firmware release, however this turned out the be incorrect
• The current Linksys firmware (4.30.14) and all previous versions are vulnerable to this remote root exploit
• DefenseCode published a youtube video showing them using the exploit against a Linksys WRT54GL router, and getting busybox shell
• It is not clear what if other models of Linksys routers are also vulnerable
• Sales figures say Linksys has shipped over 70 million routers
• Cisco expects to have a firmware update available before the full research is published in less than two weeks

---

Java saga continues, patches that don’t fix everything and new exploits

• Researchers at Immunity Products looked at the Java 7u11 patch and found that it only fixed one of two vulnerabilities
• They say that this means that the next 0-day exploit could cause all the same problems over again
• Security Explorations, the firm with a reputation for discovering Java vulnerabilities reports that Oracle has still not addressed issues they reported in April and September of 2012
• The September vulnerability , as with the one fixed in Java 7u11 allows an attacker to bypass the java security sandbox and remotely execute code
• Metaploit’s HD Moore says Java could take years to fix
• the next scheduled Java security release is Feb. 19

---

Red October – Cyber Espionage campaign dating back to 2007

• In October 2012 Kaspersky labs was contacted by a partner (who wishes to remain anonymous, likely a government or defense contractor), and was asked to investigate some malware samples
• This week, they started publishing the results of the attack they found, called Rocra (short for ‘Red October’)
• Researchers did not find any evidence of links between Rocra and other major malware platforms such as: Stuxnet, Duqu, Flame, Tilded and Gauss
• The exploits appear to have been created by Chinese hackers
• Some of the Rocra malware modules appear to have been created by Russian-speaking operatives
• In addition to exploits for MS Excel and MS Word, the Red October attacks also used exploits for Java 6 and 7 as part of the attack
• The malware would check for an internet connection by attempting to connect to legitimate addresses at microsoft (windows update, support.microsoft.com), likely to avoid detection of unusual network traffic. If a connection was not found, some information would still be collected and stored locally, possibly to be copied via file sharing to a machine that did have internet access
• The attack was used to gain access to secured systems and lift files, especially files with these extensions:
  • txt, csv, eml, doc, vsd, sxw, odt, docx, rtf, pdf, mdb, xls, wab, rst, xps, iau,
    cif, key, crt, cer, hse, pgp, gpg, xia, xiu, xis, xio, xig, acidcsa, acidsca,
    aciddsk, acidpvr, acidppr, acidssa
  • Of particular interest are the files with the acid extensions, likely created by “Acid Cryptofiler", which is known to be used by NATO and others in the European Union
• The attack was also an ‘advanced persistent threat’, doing things such as:
• Extract saved passwords for Web sites, FTP servers, mail and IM accounts from various applications
• Send Windows account password hashes to the C&C server for offline cracking
• Copy configurations from exposed network devices (Switches and routers with default passwords)
• Enumerate visible windows shares and report to the C&C server (probably for future document exfiltration)
• Scan connected USB drives for interesting files, the attack even included its own file system parser to copy deleted files
• Copy data from connected Nokia and Apple iPhones copy address books, call history, calendar, SMS messages, and browsing history
• Infecting Windows Mobile phones with a special mobile version of the Rocra virus
• Watch for specially crafted Microsoft Office or PDF documents and execute their malicious payload without user interaction, allowing the attackers to exploit future vulnerabilities to keep control over exploited machines even as old exploits were patched
• Standard key logging and screenshots, send back to C&C servers
• Execute additional encrypted payload modules according to a pre-defined schedule
• Copy all e-mail messages and attachments from Microsoft Outlook and from any mail servers found on the network that were accessible with the previously obtained credentials
• Targets Infographic
• Detailed Analysis:
  • Red October – Introduction Blog Post
  • Red October – Diplomatic Cyber Espionage Investigation
  • Red October – Stage One – Exploits and Components
  • Red October – Stage Two – Modules and Recon
  • Red October – Stage Two – Passwords, Email and Physical
  • Red October – Stage Two – Persistence and Spreading
  • Red October – Stage Two – Mobile and Exfiltration
• Digital Undergrounds podcast – Interview with Red October researchers

---

Feedback:

• Reminder: The deadline to submit proposals for talks at BSDCan 2013 is Friday January 18th
• What do you think is the best way to configure an array of let’s say 14 drives?
• ZFS De-Dupe Inside a VMDK?
  • VMWare Virtual Disk Format (VMDK) – Forensics Wiki
• Is my ZIL Helping? And force FreeBSD to scan the SATA Bus?
• Rotate System Account Passwords?
• XP on my ATM? WTF!
• Picking the right switch for iSCSI
• Control Panel for Nginx on Kickstarter
• MoinMoin’s strange name

Round-Up:

• I conceal my identity the same way Aaron was indicted for
• Microsoft ‘fix-it’ solution for IE 6–8 users by passed. Full patch finally released
• Bitcoin exchange hacked via Ruby On Rails exploit, funds stolen
• HRSDC loses data on student loans from 2000 thru 2006 when unencrypted external drive goes missing
• Internet 2012 in numbers
• ICS-CERT responds to Power plants where both common and sophisticated malware were found in Industrial Control Systems
• Security audit finds dev OUTSOURCED his JOB to China to goof off at work
• While SSDs got 35–45% cheaper across 2012, Q4 actually saw prices go up, as OCZ backed off its strategy of using lower prices to win market share, reducing price pressure on all manufacturers
• DHS tries to force medical device manufacturers to improve security after FDA fails to do so
• Intel to introduce silicon photonics (thin fibre optics) to motherboards, possible to the rack level (100G Infiniband)

The post Red October Hunts You | TechSNAP 93 first appeared on Jupiter Broadcasting.

]]> https://original.jupiterbroadcasting.net/25166/password-securitieee-techsnap-77/ Thu, 27 Sep 2012 16:30:08 +0000 https://original.jupiterbroadcasting.net/?p=25166 Big password leak from a major industry player, mobile secuirty takes a big hit, we cover a couple of the major vulnerabilities affecting our favorite gadgets.

The post Password SecuritIEEE | TechSNAP 77 first appeared on Jupiter Broadcasting.

]]>



A big password leak from a major industry player, mobile security takes a big hit, we cover a couple of the major vulnerabilities affecting our favorite gadgets, and more Java troubles.

Plus moving from Apache to Nginx, and a big batch of your questions.

All that and so much more, on this week’s TechSNAP!

Thanks to:

GoDaddy.com

Use our codes TechSNAP10 to save 10% at checkout, or TechSNAP20 to save 20% on hosting!

BONOUS ROUND PROMO:

Get your .COMs just $5.99 per year up to 3 domains! Additional .COMs just $7.99 per year!
CODE: 599tech

Expires 10/31/12

SPECIAL OFFER! Save 20% off your order!
Code: go20off5

Pick your code and save:
techsnap7: $7.49 .com
techsnap10: 10% off
techsnap11: $1.99 hosting for the first 3 months
techsnap20: 20% off 1, 2, 3 year hosting plans
techsnap40: $10 off $40
techsnap25: 25% off new Virtual DataCenter plans
techsnapx: 20% off .xxx domains

Show Notes:

Get TechSNAP on your Android:

• Callisto – Android App
• Jupiter Broadcasting – Android App by ShaneQful

Browser Affiliate Extension:

• Jupiter Broadcasting Affiliate Extensions for Chrome and Firefox

Virgin Mobile USA customers may be at risk

• Virgin Mobile customers in the USA access their customer portal using their mobile phone number and a 6 digit pin
• In addition to the obvious lack of security of using such a limited keyspace, it seems that the Virgin portal does not implement any type of lockout or intrusion detection
• Specifically, they do not block an IP after 100s of failed attempts, meaning an attacker can quickly run through the entire 1 million possible passwords and gain access to any account
• Kevin Burke, the researcher who discovered the flaw, said that after several phone and email exchanges with parent company Sprint in which he attempted to warn them about the exploit, he was ignored and his concerns were dismissed
• Later, a fix was applied to the portal, blocking users after 4 failed attempts, however it relied on a browser cookie to keep track of the number. In additional to how easily this mitigation is evaded, most attack scripts don’t keep cookies anyway
• Virgin’s portal now correctly blocks an IP address after 20 failed attempts
• Virgin uses a 404 error instead of 503 or another more proper error code
• Additional Coverage

---

Security Explorations finds another Java 0-day, for Java SE 5, 6 and 7

• Security Explorations, the Polish research firm that found the previous Java exploits, has now topped 50 different vulnerabilities reported to Oracle, and the 50th one is the worst to date
• The flaw affects fully patched Windows 7 machine, using all major browsers
• Oracle has produced a comprehensive status report regarding upcoming Java Critical Patch Update. The company claims to have fixes for all, except two issues (29 and 50) integrated and undergoing testing for release in the October 2012 Java SE CPU. Oracle is still evaluating fixes for Issue 50 and will provide further update on whether a fix for it will be also included in the October 2012 Java SE CPU
• Additional Coverage

---

IEEE passwords exposed via FTP site

• A researcher found a log file on a publically accessible IEEE FTP site
• The file contained logs from 01/Aug/2012:20:46:28 +0000​ to 18/Sep/2012:08:47:17 +0000
• The log contained around 375 million lines, 400,000 of which contained plain text passwords, 17k of which were password reset requests
• A total of 99,979 unique usernames were found
• 7 of the top 10 passwords were all numeric, variations of 123 – 1234567890
• Other popular passwords included ieee2012, IEEE2012, password, library and ADMIN123
• 38% of users use gmail, 7.6% use yahoo
• It does not appear that the IEEE actually stores usernames and passwords in plaintext in its authentication database, but it is unclear why or how the passwords were included in the access logs
• The IEEE acknowledged the breach
• And issues a notice to its members, encouraging them to use strong passwords when they are forced to reset thier password
• Additional Coverage

---

Your Android phone could be remotely erased by a malicious website

• Security Researcher Ravi Borgaonkar revealed the exploit at ekoparty 2012
• An apparent bug in the Samsung TouchWiz UI makes it possible for a malicious website or remote attacker to reset your Android device
• The vulnerability can be exploited via NFC, QR code, SMS, or a web link
• Remote wipe attack not limited to Samsung phones, Android dialer may be to blame
• The vulnerability may actually be in the Android dialer, which would mean all devices are vulnerable
• As a temporary fix you can get the TelStop app, which publishes a URL handler for tel: URLs and prevents the exploit from being used via websites
• Additional Coverage:
• Major Samsung Galaxy TouchWiz exploit hard resets a device by just visiting a website
• Critical vulnerability in Samsung Galaxy S3, possibly other smartphones. – Spiceworks
• Samsung has released new firmware that resolves the issue
  • Samsung applies quick patch to dailer vulnerability

Feedback:

• spleeeem submitted something handy for a common theme on our show, secure passwords: Password Storage Cheat Sheet

• Best Way to Migrate a lot of Sites from Apache to NGINX

• How to benchmark nginx?

• Why can’t you just send the “finished” hash?

• Mail Server with Blocked Port 25?

• I wonder if I could get your thoughts on https://www.sendfilessecurely.com

• Followup: rikai found an SSH SVR record wrapper script

Book: Nginx HTTP Server

It provides a step-by-step tutorial to replace your existing web server with Nginx. With commented configuration sections and in-depth module descriptions

Have some fun:

• What will be in the news the week in October when Allan is at Euro BSD Con? Let make a prediction on the head lines or just make up funny stuff to read

What I wish the new hires “knew”

Round-Up:

• Adobe Announces Rapid Release Cycle for Flash Player
• Compromised phpMyAdmin download reinforces importance of verifying checksums . SourceForge is investigating how the copy of the file on a Korean mirror was compromised and downloaded by over 400 users
• Android 4.0.4 NFC vulnerability exposed at Pwn2Own contest
• How to build a passive ethernet tap, to spy on traffic as it crosses the wire
• Microsoft may have known about IE 0-day flaw for months, credit goes to “TippingPoint Zero Day Initiative” on July 24th, not to researcher who disclosed the flaw in September
• Bruce Schneier doesn’t want his algorithm, or any other, to win the SHA–3 competition
• Guild Wars 2’s Mike O’Brien on Account Security

HALL of SHAME: Secret Microsoft policy limited Hotmail passwords to 16 characters

The post Password SecuritIEEE | TechSNAP 77 first appeared on Jupiter Broadcasting.

]]> https://original.jupiterbroadcasting.net/24846/self-healing-internet-techsnap-76/ Thu, 20 Sep 2012 16:42:00 +0000 https://original.jupiterbroadcasting.net/?p=24846 The story about an antivirus that detects itself, IE’s awful zero day exploits, and the Internets amazing ability to route around problems.

The post Self Healing Internet | TechSNAP 76 first appeared on Jupiter Broadcasting.

]]>

The story about an antivirus that detects itself, IE’s awful zero day exploits, and the Internets amazing ability to route around problems.

Plus: A huge batch of your feedback, and so much more in this week’s episode of TechSNAP!

Thanks to:

GoDaddy.com

Use our codes TechSNAP10 to save 10% at checkout, or TechSNAP20 to save 20% on hosting!

SPECIAL OFFER! Save 20% off your order!
Code: go20off5

Pick your code and save:
techsnap7: $7.49 .com
techsnap10: 10% off
techsnap11: $1.99 hosting for the first 3 months
techsnap20: 20% off 1, 2, 3 year hosting plans
techsnap40: $10 off $40
techsnap25: 25% off new Virtual DataCenter plans
techsnapx: 20% off .xxx domains

Show Notes:

Sophos anti-virus detects it self

• Earlier this week Sophos released a scheduled update to their anti-virus definition files
• The new definitions detected the Sophos updating process, and a number of other auto-updating applications, as variants of the malware Shh/Updater-B
• In addition to setting of a huge volume of false positives, the detection also resulted in the quarantine, blocking or deletion of parts of the Sophos updater
• The updated definitions that solve the problem were released on Wed, 19 Sep 2012 21:32 BST
• However, the updated definitions could not be downloaded by Sophos, because the updater had been broken
• This is an especially large issue for enterprise deployments of Sophos
• The Sophos support number was down, the call volume was so great that most people could not even get into the hold queue

---

0-day Flaw in Internet Explorer active in the wild

• Internet Explorer versions 6 through 9 are vulnerable to a new series of attacks
• Exploits for a previously unknown use-after-free memory corruption vulnerability, in addition to three more exploits that were found and tied to a hacker group in China known as Nitro (the same group responsible for exploits of two zero-day Java flaws disclosed three weeks ago)
• Security researcher Eric Romang discovered the first of the exploits last weekend while monitoring an infected server
• When a user lands on an infected page, the exploit installs the PoisonIvy remote access Trojan
• Jaime Blasco of AlienVault Labs then discovered three additional exploits, one of which drops the PlugX trojan
• The new exploits appear to be targeted at defense contractors in the U.S. and India
• An unknown exploit was found in a Defense News Portal site in India, it had been served for at least four days
• Microsoft is slated to release a patch on Friday , until then, a ‘fixit’ patch is available
• A new metasploit module to test for and exploit the vulnerability has been released
• Additional Coverage

---

The “top secret” room where 260 Internet Service Providers connect

• Nearly every carrier neutral data center in the world contains a MeetMe room
• MeetMe rooms more often used for private peering, rather than internet transit
• Transit is when you buy ‘Internet’ service from another provider, they provide you with a ‘default route’ that you can send traffic to, and it will be delivered to anywhere on the internet
• Peering is where providers swap traffic that is specifically destin to each others networks, so if Provider A peers with Provider B, Provider A must use their transit connection to reach provider C, only traffic between A and B (and their customers) are allowed across the ‘peering’ link
• If 1 Wilshire (the building in question) were to go entirely offline, all connections in and out severed, the Internet would continue to operate, traffic would be routed around the missing nodes
• Performance would be degraded, and it is possible that some of the ‘backup’ routes could not handle all of the traffic, but the network would not cease to work
• The Internet is based on the principle of being able to get data from Point A to any Point B, reliably
• To do this, the Internet’s backbone providers use BGP4 routing protocol (Border Gateway Protocol)
• Most Internet Transit providers have maps that look like this:
• nLayer
• Hurricane Electric
• Abovenet (Zayo)
• Level3
• NTT
• Vocus (Australian)
• As you can see on most all of these maps, there are almost always multiple paths that a packet can take to get from point A to point B

---

Feedback:

• How to access other machines on my LAN remotely?
• pf vs IPTables
• IPTables:
  iptables -A INPUT -i eth0 -p tcp -s 192.168.200.0/24 –dport 22 -m state –state NEW,ESTABLISHED -j ACCEPT
  iptables -A OUTPUT -o eth0 -p tcp –sport 22 -m state –state ESTABLISHED -j ACCEPT
• pf:
  pass in log quick on $EXT_NIC proto tcp from 192.168.200.0/24 to any port 22 keep state
• Apache vs NGINX AGAIN!
• Setting up a system where sensitive documents can be moved securely to an encrypted machine.
• Microsoft sdelete
• FreeNAS vs OpenFiler?
• How are passwords cracked without locking the accounts?
• pfSense 2.1 Due Out Soon
• Dell Voice Powered by Fongo is storing passwords in Plain Text
• Episode 80 ideas

Special Community Events

• Lynx Music:

He goes by Illusionist Lynx and he’s used MATH to make music (and a bunch of ther cool methods) check out his pay-what-you-want music on his bandcamp site: Illusionist Lynx

• Nicholas is getting married, and he needs your HELP!

Nicholas is live streaming his marriage proposal, and hopes to have the JB audience tune in, and maybe help get his girl friend to the right location!

The site people can visit is https://rachelwillyoumarryme.com/

• Visit his site an hour before the event (countdown on his website)
• When the call to action comes, help him spam his girlfriend into arriving at the correct location.
• To help organize, show up early and watch the show’s subreddit!

Have some fun:

• What will be in the news the week in October when Allan is at Euro BSD Con? Let make a prediction on the head lines or just make up funny stuff to read

What I wish the new hires “knew”

Round-Up:

• Patent troll sues Rackspace for hosting Github
• Many ways to break SSL with CRIME attacks, experts warn
• Wrong Number: Why Phone Companies Overcharge For Data
• Microsoft Wants To Nix Data Center Backup Generators
• China Cyberattacks Hit Japan In Island Row: Police
• Flaw in Oracle Database authentication protocol could allow attackers to discover passwords

The post Self Healing Internet | TechSNAP 76 first appeared on Jupiter Broadcasting.

]]> https://original.jupiterbroadcasting.net/23941/double-0-java-techsnap-73/ Thu, 30 Aug 2012 16:52:17 +0000 https://original.jupiterbroadcasting.net/?p=23941 This week we’ll tell you the story about Agent Double 0-Java, the exploit with a license to kill. Plus Google’s creative solution to securing user content.

The post Double 0-Java | TechSNAP 73 first appeared on Jupiter Broadcasting.

]]>

This week we’ll tell you the story about Agent Double 0-Java, the exploit with a license to kill. Plus Google’s creative solution to securing user content.

Then it’s a big batch of your questions, and our answers.

All that and much more, in this week’s TechSNAP.

Thanks to:

GoDaddy.com

Use our codes TechSNAP10 to save 10% at checkout, or TechSNAP20 to save 20% on hosting!

SPECIAL OFFER! Save 20% off your order!
Code: go20off5

Pick your code and save:
techsnap7: $7.49 .com
techsnap10: 10% off
techsnap11: $1.99 hosting for the first 3 months
techsnap20: 20% off 1, 2, 3 year hosting plans
techsnap40: $10 off $40
techsnap25: 25% off new Virtual DataCenter plans
techsnapx: 20% off .xxx domains

Show Notes:

Java 0-day exploit in the wild

• Two critical vulnerabilities in Java 7 are being combined to create a 0-day exploit that can compromise all major browsers (Firefox, Chrome, Safari, Opera, IE)
• The vulnerability can be exploited in a ‘drive-by’ fashion, meaning it does not require any interaction from the user
• This means that attackers could purchase advertising on legitimate sites and inject the exploit code in to the adverts
• This exploit will likely also be heavily used on compromised websites (like Bryan’s wordpress blog)
• Java 6 is not susceptible to this exploit, but contains a number of older unpatched vulnerabilities, and should not be used
• Oracle reportedly knew of critical Java bugs under attack for 4 months
• The two vulnerabilities were reported to Oracle in April, along with a total of 29 other flaws
• Security Explorations furnished the bug reports, with working Proof of Concept code to Oracle
• Oracle patched 3 of the issues in the Jun 12 2012 Java Critical Patch Update, issues 10, 13 and 21. There was also some mitigation in the code that broke the original PoC exploit of issue 26
• According to a status report received by Security Explorations from Oracle on August 23rd, Oracle was planning to fix the two vulnerabilities in its October Critical Patch Update (CPU), along with 17 of the other Java 7 flaws reported
• Adam Gowdiak, CEO of Security Explorations, remarks that the exploit in the wild combines the 2 vulnerabilities in an entirely different way than their proof of concept furnished to Oracle
• Owing to the difference in implementation, Security Explorations assumes that someone else independently discovered the same exploit, rather than discovering it via some leak in the vulnerability report handling process
• Gowdiak adds ““We don’t know with whom and in what form or detail Oracle is sharing vulnerability information.”
• A 3rd party patch for the vulnerability has been developed, but is only available from the author to IT Administrators, and is not designed for end users
• Additional Coverage
• Java 7 Update 7 has been released to resolve this exploit

---

Google publishes important information about hosting user generated content

• Google loads all user generated content from an isolated domain, googleusercontent.com
• Google uses subdomains to separate different bits of UGC
• One of the reasons for this is attacks such as GIFAR, which an attacker takes a valid .gif file, and concatenates a java exploit .jar (which is just a zip file containing the compiled code)
• Now an attacker can embed on their site an HTML appet tag with a src pointing to a google domain (such as Picasa)
• By shifting the content from official google domains, to the googleusercontent.com, the browser’s ‘same origin’ policy should prevent malicious UGC from accessing the users’ google.com authentication cookie
• Google goes on to detail their solutions for content that requires authentication (private documents, google apps for enterprise), where not being able to access the google authentication cookie would pose a problem
• Google uses a number of solutions (temporary cookies on googleusercontent.com URL passed authorization tokens, URLs bound to a specific user), to trade off usability and the risk of accidental disclosure (if access to a private image is controlled by a URL parameter, what if the user copies the link to the picture and uses it elsewhere?)

---

Feedback:

• Tool for provisioning new servers
  FreeBSD’s install can be scripted in a few different ways, the easiest is likely to start with the 225 line shell script that is the current FreeBSD installed
  /usr/src/usr.sbin/bsdinstall/scripts/auto
  You can set a few environment variables, and remove the dialogs, and you’ll have a fully automated install tuned just the way you like, then just PXE boot that, or make your own CD
  There are also some nice tutorials out there:
  Scripting a FreeBSD 9.x Install
  HOWTO: Modern FreeBSD Install RELOADED
  I generally do not script the installs of my BSD boxes, it takes only 5–10 minutes to do the install, and since each machine tends to have a different disk layout, it wouldn’t save much time
  Also, many of my servers are in foreign data centers, and they do the FreeBSD install for me, then just provide me with my SSH credentials. (Although a great many now provide IPMI/KVMoIP and allow me to install the OS myself)

• Thoughts on OpenID
  OpenID moves the trust from a number of separate sites, to a single site, your ‘identity provider’
  This is likely more secure, since OpenID is based on strong practices, but also presents a more tempting target
  The advantage is that you can be your own OpenID provider, and then you only have to trust yourself

• Tricks to conserve Bandwidth?

• Daniel writes in with a note that he uses Puppet to manage over 2000 nodes from a pair of redundant Puppetmasters running via Apache/mod_passenger without issue.

• Shlomi writes in with a question about moving an LVM to ZFS.
  Your best bet is to do something like I did when I moved from a number of separate UFS drives, to a ZFS array (not, there is some performance penalty for doing it this way, more on that later)
  Use these instructions to remove one of the disks from your LVM volume (the biggest one you have enough free space to remove).
  Now create your ZFS pool, and add this now empty disk
  Start filling the ZFS pool until you have free enough space in the LVM to remove another disk, then add that disk to the ZFS pool
  Repeat as necessary
  ZFS will do write-biasing to try to ensure the drives reach ‘full’ at the same rate, so the emptier drives will receive a higher portion of the new writes. If you can create the pool from scratch, you will get better write performance, since all disks will be used to their maximum bandwidth
  ZFS had a planned feature called ‘block pointer rewriting’ that would allow for re-balancing the disk space across devices and for defragmenting files (fragmentation gets excessive due to copy-on-write)
  Personally, I am going to build a fresh array with 4x3TB disks in RAID Z1, and then recycle my 1.5TB disks for other purposes

• I want to hear more about Scale Engine and what it does and some of the services. How about a segment on just Scale
  We provide a few main services:
  • Origin Web Cluster – Accelerated PHP/MySQL platform (Hosts JB’s site, and forums)
  • Edge Side Cache – an extremely fast memory backed geographically distributed MRU cache. Stores frequently accessed content in memory close to the users for fastest delivery. Great for images, css and javascript, but can also cache entire pages (Hosts JBs images, css and js)
  • Content Distribution Network – Disk backed geographically distributed MFU cache, stores static content close to the user for faster delivery. Works great for static content, especially larger content like audio and video podcasts. (Hosts JB episode downloads)
  • Video Streaming Network – Hosting Live, On-Demand, Pay-Per-View and Fake-Live video streaming. Provides multi-bitrate streaming to ‘any screen’ via RTMP (Flash), HLS (iOS, Safari, Android, Roku, VLC), or RTSP (Android, Blackberry, Quicktime, VLC). ScaleEngine’s SEVU API allows extensive content control for Geo-Blocking and Pay-Per-View/Subscription based viewing (Hosts JB live stream)

Have some fun:

• What will be in the news the week in October when Allan is at Euro BSD Con? Let make a prediction on the head lines or just make up funny stuff to read

What I wish the new hires “knew”

Round-Up:

• ‘Lulzsec hacker’ latest to be arrested in US
• Researchers at the Usenix Security conference have demonstrated a zero-day vulnerability in your brain. Attaching an $200 EEG to your head, they can extract your bank card PIN number
• Windows 8 Tells Microsoft About Everything You Install, Not Very Securely | Nadim Kobeissi
• VMware Joins OpenStack, Embraces Its ‘Ugly Sister’
• Want a Windows 8 Start Button? Open source to the rescue!
• FreeBSD Struggles To Gain UEFI Boot Support
• Dropbox finally adds 2 factor authentication
• Top-Level Universal XSS
• Team GhostShell posts database and information dumbs from a number of sites, totalling over 1 million records, a number of the dumps contain usernames, passwords, email addresses and phone numbers

The post Double 0-Java | TechSNAP 73 first appeared on Jupiter Broadcasting.

]]>