— Show Notes: —

Podcasting with Linux:

Brought to you by: System76

• Audacity: Free Audio Editor and Recorder
  • Record to a wav file (this gives you flexibility down the road)
  • Apply EQ/Compressor/Etc
  • Encode

• Skype Recording

• Skype Call Recorder

• Tagging with MP3 Tag

• Hosting on the Internet Archive or something cheap but good like libsyn

[asa]B008F4USMS[/asa]

– Picks –

Runs Linux:

• Dragon and Falcon 9 SpaceX Space Crafts, Run Linux

Android Pick:

• USB Audio Recorder PRO
• Android Picks so far thanks to Madjo in the IRC Chat room!

[asa]B00932N46S[/asa]

Desktop App Pick:

• Calligra Suite 2.6
• Picks so far
• Madjo

Search our past picks:

• Linux Action Show Lookup
• Thanks to sakuramboo!

Git yours hands all over our STUFF:

• Jupiter Broadcasting Affiliate Extensions
• Callisto-app – Google Project Hosting
• Quick Update to the Jupiter Broadcasting Android App

— NEWS —

Brought to you by: Loot Crate, use code Linux to save!

• Valve co-founder Gabe Newell: Linux is a “get-out-of-jail free pass for our industry”

• Steam Can Now Be Repackaged In Linux Distributions

• Improving Wine for Linux seems like a better idea…

• John Carmack asks why Wine isn’t good enough

• KDE 4.10, is OUT!

• Linux Foundation Secure Boot System Released

— FEEDBACK —

• CISPA is back.

• Podcasting Community Faces Patent Troll Threat; EFF Wants to Help | Electronic Frontier Foundation

• Youtube deleting LAS episodes…

• unison

• Building a live USB System

• Risky installing Linux on Samsung Series 7 Chronos laptop

— Chris’ Stash —

• TechSNAP 100 Shirt goes LIVE Tuesday!

• Unfilter goes crowd funded, details in our latest episode

— What’s Matt Doin? —

• Ubuntu: What They’re Doing Right and Wrong
• Writing about Linux, sometimes, even asking tough questions
• Good friend Mike Parks, seeking steady or temp web development work

— Find us on Google+ —

• Chris
• Matt Hartley
• Jupiter Broadcasting’s Page

— Find us on Twitter —

• Chris – ChrisLAS
• Matt – matthartley

— Follow the network on Facebook: —

• Jupiter Broadcasting on Facebook

— Catch the show LIVE Sunday 10am Pacific / 1pm Eastern / 6pm UTC: —

• https://jblive.tv
• Network Calendar

The post Podcasting On Linux | LAS | s25e07 first appeared on Jupiter Broadcasting.

Show Notes:

Get TechSNAP on your Android:

• Callisto – Android App
• Jupiter Broadcasting – Android App by ShaneQful

Browser Affiliate Extension:

• Jupiter Broadcasting Affiliate Extensions for Chrome and Firefox

Hurricane Sandy creates havoc for data centers in New York and New Jersey

• A number of data centers in and around New York and New Jersey suffered various failures and issues
• ConEd the utility provider in New York started proactively shutting down power before the storm hit, in an effort to avoid damage to their equipment
• Most data centers had already pro-actively switched to off-grid mode, providing their own power via Diesel Generators
• What happens when salt water meets high voltage gear
• Slashdot created a status page, showing the known issues
• WebHostTalk thread where various customers report the status of their gear
• More reporting from the Web Hosting Industry Review
• Equinix reports on their situation
• Oct 29th: Datagram goes down, takes out Gawker, HuffingtonPost, BuzzFeed and others
• Oct 29th: Internap announces they are evacuating the 75 Broad Street building
• “The flooding has submerged and destroyed the site’s diesel pumps and is preventing fuel from being pumped to the generators on the mezzanine level. The available fuel reserves on the mezzanine level are estimated to support customer loads for approximately 5–7 hours”
• It appears that NY building codes prevent storing large amounts of fuel on the upper floors due to the danger to occupants and emergency personnel in the event of a fire
• Generators are located in the basement with the fuel supply, and some customers have their own generators on the upper floors
• The above ground generators and fueled from small ‘day tanks’, that are then refueled from the sub-basement by pumps
• The pumps must be located near the fuel supply, rather than on the upper levels, because the pumps would not be able to ‘prime’ themselves (pumps need liquid to pump, they cannot create enough vacuum to draw the fuel up many floors)
• Due to the flooding cutting off fuel supplies and drowning generators, some data centers that did manage to stay powered up, lost some or all of their transit to the internet, because the other buildings that their connections go through, or their providers lost power
• Peer1, in the same building (75 Broad Street) is on the 17th floor, provided customers hourly updates via their forums
• Peer1 staff and customers 2 took to carrying barrels of diesel fuel up to the 17th floor to keep the day tanks full
• Oct 29, 17:40 – Sites 1 and 2 transitioned to generator power
• 20:36 – Still on generator. Building reports that the lobby has taken in some water
• 22:27 – Building has detected some flooding in the 1st and 2nd basement due to the storm surge. Extent of the damage will not be determined until the basement is accessible. The fuel system has a header with 5000 gallons of fuel and will be the primary supply for the next 12–24 hours. They are also observing some lowering of the water level outside the building.
  • Oct 30, 03:30 – We are still running from emergency generator power. Water has receded and we are currently waiting for a report back from building engineers on the status of the fuel and power systems that were located in the basement. We will post further updates when we have them
  • 08:00 – At this point we have an estimate of 4 hours for the fuel left on our generators. Our techs and facility are continuously working to get emergency fuel delivery on time and was looking to set-up a temporary tank and pump since the basement is still flooded. In the event of not receiving the fuel on time, worst case scenario is we will have to gracefully shutdown the facility.
  • 16:00 – the PEER 1 Hosting NYC datacenter remains on generator power with fuel being provided through the remaining building supply. The fuel tank has arrived at our facility and due to flooding conditions in the basement caused by the weather, we are working on alternative methods of fuel delivery to the day tank located on the 17th floor. As of now, our datacenter team is carrying half-full 50 gallon barrels of diesel to our daily fuel reservoir on the 17th floor, until a more sustainable solution is reached.
  • Oct 31, 00:00 – Peer1 is still maintaining generator power. We did have slight temperature rise at Site 1 but this has been addressed by technicians. We will provide our next update in 1 hour
  • 04:00 – Peer1 is still maintaining generator power for most customers in Site 2 and Site 1. the temperature in Site 1 is still running at critically high level. At this point, We have started to call all clients in our site 1 and are asking all our colocation clients to turn down non essential equipment. This will maximize our time to run on Generator and help with the temperature rise in site 1. Our technicians will go ahead and shutdown all customers at Site 1 within the next hour (You will receive an update when this is being performed). We will provide our next update in 1 hour.
  • 08:00 – completed shutdown of customer equipment in Site 1
  • 10:00 – The A/C in site 1 is powered off building generators that are still down. If we bring site 1 back up before the building generators are back up site 1 will just overheat . we are working to try and find another work around, but we are having trouble getting electricians on site and are also working with the building to get their generator up and running. Additional spare fuel is still being manually put into our generator.We have also schedule a fuel drop off for the next fueling marker. We will provide our next update in 1 hour.
  • 15:00 – Peer1 is still maintaining generator power for customers in Site 2 . The temperature in Site 1 is starting to stabilize but we are still not bringing up the power due to our cooling system still down in site 1. The electrician is currently moving electrical circuits to get a portion of the CRAC units in site 1 online. We will contact those customers directly once we have these units online. Fuel is still good, we will provide our next update in 1 hour.
  • 23:00 – Peer1 is still maintaining generator power for customers in Site 2. The temperature in Site 1 is has stabilize. We will soon begin the process of slowly bringing up customer’s cabinets at Site 1. Fuel is still good, we will provide our next update in 1 hour.
  • Nov 1, 13:00 – Peer1 is still maintaining generator power. We have an update from the building. We are providing them a fuel hose that will allow them to start filling the building fuel tank in the next hour. We are continuing to run from our generator.
• 16:00 – Peer1 is still maintaining generator power. Building is currently pumping fuel into the 5000 gallon header tank. We are looking at cutting over to the 5000 gallon header tank in ~90 minutes
• Additional Story
• NY Times live updates on Sandy’s Aftermath

---

70% of State chief information security officers report breaches this year

• Between 2010 and 2011 only 14% of CISOs saw a budget increase, while 44% say their budgets didn’t change and 34% saw their budgets reduced
• Only 24% of CISOs are confidence that they can safeguard their data from outside attacks
• Report PDF

---

DigiNotar report lands, all CAs totally compromised

• The attacker who compromised the SSL CA DigiNotar last year, had full control over all 8 of their certificate issuing servers
• The report suggests that the attacker may have issued additional rouge certificates that were never identified
• This risk was mitigated somewhat by most vendors revoking all trust in DigiNotar issued certificates, but customers who did not receive the root trust update could still be vulnerable
• The company investigating the compromise found that the log files were generally stored on the same servers that had been compromised and evidence was found that they had been tampered with
• “While these log files could be used to make inconclusive observations regarding unauthorized actions that took place, the absence of suspicious entries could not be used to conclude that no unauthorized actions took place”
• Investigators also found evidence that a claim by the anonymous attacker who compromised the Comodo CA, that he was also the one who breached DigiNotar, may infact be true
• The DigiNotar network was highly segmented and a number of the segments were isolated from the public Internet. However, a lack of strict enforcement of these policies may have allowed the attacker to island hop from compromised web server to the CA servers
• "The investigation showed that web servers in DigiNotar’s external Demilitarized Zone (DMZ-ext-net) were the first point of entry for the intruder on June 17, 2011”
• "From the web servers in DMZ-ext-net, the intruder first compromised systems in the Office-net network segment between the 17th and 29th of June 2011”
• “Subsequently, the Secure-net network segment that contained the CA servers was compromised on July 1, 2011”
• “Specialized tools were recovered on systems in these segments, which were used to create tunnels that allowed the intruder to make an Internet connection to DigiNotar’s systems that were not directly connected to the Internet. The intruder was able to tunnel Remote Desktop Protocol connections in this way, which provided a graphical user interface on the compromised systems, including the compromised CA servers."”
• The attack on DigiNotar lasted for almost six weeks, without being detected
• “The private keys were activated in the netHSM using smartcards. No records could be provided by DigiNotar regarding if and when smartcards were used to activate private keys, except that the smartcard for the Certificate Authorities managed on the CCV-CA server, which is used to issue certificates used for electronic payment in the retail business, had reportedly been in a vault for the entire intrusion period”
• Original Article, in Dutch
• Full Report PDF

---

Feedback

• What is a SPF record?
• Questions about LastPass
• Security scenario question for you
• Moving from LVM to ZFS
• open source DIY SSD?

Followup:

• @DreamHostCare DreamHosters! Just added to your Panel: Users > SSH Keys. Now you can ID your correct host keys for any machines connected to your account!
• Is the TSA’s precheck system that easy to game?

Warstory The little ssh that sometimes couldn’t

• Mina Naguib is a sysadmin and director of engineering at Adgear
• Noticed that some of his SSH cronjobs started reporting failures and timeouts between his servers in London (UK) and Montreal (CA)
• He found that the transfers either completed at high speed, or hung and never completed (there we no transfers that succeeded at low speed)
• Running the transfers manually seemed to work fine
• After examining packets with TCPDump as they left in London, he found that some packets were being transmitted, not acknowledged, and then retransmitted, still not acknowledged
• While examining the packets are they were received in Montreal, he noticed a difference
• The 15th byte of every 16 bytes was being predictably corrupted
• In the SSH handshake, instances of “h” became “x”, all instances of “c” became “s”, but only beyond the first 576 bytes
• The SSH sessions were getting stuck, because the remote server’s kernel was discarding the TCP packet because it was corrupted, the retransmit was corrupted the same way, and so the connection was in a stalemate
• He rules out an issue with the NICs in the servers on either side, because the issue was affecting multiple servers, and two different Montreal data centers
• To prove his hypothesis, he used netcat, and piped /dev/zero over the network, and while examining the packets as they were received on the other side, beyond the first 576 bytes, a specific bit was being transformed from a 0 to a 1
• The issue did not affect UDP or ICMP packets, only TCP
• Now, the task was to pinpoint which router along the path was causing the issue
• This was more difficult because unlike an ICMP ECHO where you can evoke a predictable response from a remote host, for TCP you require both endpoints to cooperate
• So, he grabbed nmap, and used it’s ‘Random IP’ mode to find a collection of SSH servers, some that did, and some that did not, share hops in common with the affected route between London and Montreal
• He created a list of servers that did not experience corruption, and those that did, and used traceroutes to identify the paths the packets took
• Note: some internet paths are asymmetrical, and a standard traceroute will not find the return path, this could have made this problem much harder to diagnose
• After finding 16 bad, and 25 good SSH connections, he was able to narrow his list of suspects down to a specific connection between 2 backbone providers
• London → N hops upstream1 → Y hops upstream2
• “Through upstream1, I got confirmation that the hop I pointed out (first in upstream2) had an internal “management module failure” which affected BGP and routing between two internal networks. It’s still down (they’ve routed around it) until they receive a replacement for the faulty module.”
• The upstreams involved appear to have been GBLX and Level3

---

Round Up:

• OpenBSD 5.2 released
• Your GPU’s “Fingerprint” Could Lead to New Security methods. Physical unclonable functions (PUFs) could be used for two-factor authentication for video games
• Backdoor in computer controls opens critical infrastructure to hackers
• Bug in Infusion pump could cause the pump to ignore the touch interface, and deliver the incorrect dosage
• Court Rules Website Terms of Service Agreement Completely Invalid
• Georgia (the country) outs a Russian hacker over repeated cyber spying
• FTC pulls the plug on 5 fake ‘card holder services’ robocall operations
• US Carriers switch on database of stolen mobile phones, block activations
• Some tips on recovering your electronics after they get wet
• The FBI is not investigating hackers 24/7

The post /var/water/logged | TechSNAP 82 first appeared on Jupiter Broadcasting.

]]> https://original.jupiterbroadcasting.net/19087/linuxfest-northwest-2012/ Sun, 29 Apr 2012 13:21:07 +0000 https://original.jupiterbroadcasting.net/?p=19087 We push through the fest hangover, and tell you what rocked and what shocked. PLUS - Some Linux video editing tips, and recording Google+ Hangouts!

The post LinuxFest Northwest 2012 | LAS | s21e07 first appeared on Jupiter Broadcasting.

]]>



We push through the fest hangover, and tell you what rocked and what shocked!

PLUS – Some Linux video editing tips, and recording Google+ Hangouts!

And so much more!

All this week on, The Linux Action Show!

Thanks to:

GoDaddy.com
Limited time offer: $5.99 .coms, up to 5 domains! just use our code 599com8
Want to save money on your entire order? Use our code spring8 and save 15%!
Direct Download:
HD Video | Mobile Video | Ogg Video | MP3 Audio | Ogg Audio | YouTube | Torrent File
RSS Feeds:
HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Feed | Ogg Feed | iTunes Feeds | Torrent Feed
Support the Show:
Purchase anything at Amazon.com Purchase anything at Think Geek using this link Purchase anything at Newegg using this link Contribute directly on our donation page or check out our advertising options and reach millions of amazing people! Grab our Chrome Extension and auto-tag your shopping session for us!
Runs Linux:
• This bus, Runs Linux
Android Pick:
• AndChat
• Android Picks so far thanks to Madjo in the IRC Chat room!
Universal Pick:
• Deluge BitTorrent Client
• Picks so far. Thanks to Madjo!
Random Distro Of The Day
• YellowDog
Linux Action Show Subreddit
• Linux Action Show Subreddit
Matt’s Howto:
The bulk of the howto is going to be in the video. However, there are some things you need access to.
1) Kdenlive – use this Ubuntu PPA if you’re using Ubuntu 11.10.
In a terminal window:
sudo add-apt-repository ppa:sunab/kdenlive-release
sudo apt-get update
sudo apt-get install kdenlive
2) When you first run Kdenlive, it’s likely going to give you some first run errors, regarding ML, cancel instead of closing the app (so the first run wizard runs again later).
If running Ubuntu 11.10 and you’ve added the PPA, you will want to add/update the following.
From Synaptic, search for libmlt++3 – if it’s showing you have anything older than version 0.7.6, update the package. Also double check that libmlt-data and libmlt4 are installed.
Now you can run kdenlive again and it will show everything is working perfectly.
3) To run your webcam successfully in Google Plus hangouts, make sure your webcam is plugged in (directly, no hubs). Open up a Google Plus hangout without joining it. Visit “check settings”. If the webcam is working, great. If it’s not, then close the browser and install WebcamStudio from the latest Deb package. It will installed either via Gdebi or from the Software Center automatically.
3a) If you want/need to run WebcamStudio, perhaps because your webcam wasn’t detected in Firefox or Chrome, start the software, follow along with the video to get the software running with your webcam.
4) Since your end goal is to record Google Plus hangouts as a video, you will need to install the screen recording software known as Kazam.
In a terminal:
sudo add-apt-repository ppa:kazam-team/stable-series
sudo apt-get update
sudo apt-get install kazam
5) Open the Kazam software as I showed you in the video and confirm your settings and begin recording. To stop recording once you’ve started, look to the upper right near the network settings and clock, right click on the Kazam widget and stop recording from there. Remember: Do not export to a video editor directly as the video file will not be saved normally. Choose to save it for later instead.
6) With Kazam recording and WebcamStudio using your webcam, open a browser with the Google Video chat plugin installed, browse to Google Plus, then start a hangout.
7) Once the hangout is finished, close the hangout, stop Kazam, save the file, import it into Kdenlive. Drag the video into the timeline, cut the clip as to make sure the area you wish to obscure is covered. Tip: When moving the obscure box corners, understand that it’s very sensitive and getting the cursor into position takes a steady hand. So patience is critical.
8) Save the project, export it as you see fit.
LFNW 2012 Linux Sucks & Linux Does Not Suck Videos:
1. Why Linux Sucks
2. Why Linux Does Not Suck
What’s Bryan Doin?
• Linux Tycoon
• Linux Fest Northwest
• Illumination Software Creator now permanently “Pay What You Want”
Chris’ Stash:
• New Show: Unfilter
Find us on Google+
• Chris
• Bryan
• Jupiter Broadcasting’s Page
Find us on Twitter:
• Chris – ChrisLAS
• Bryan – BryanLunduke
Follow the network on Facebook:
• Jupiter Broadcasting on Facebook
Jupiter Broadcasting Forum:
• Jupiter Colony
Catch the show LIVE Sunday 10am Pacific / 5pm UTC:
• https://jblive.tv
• Network Calendar
The post LinuxFest Northwest 2012 | LAS | s21e07 first appeared on Jupiter Broadcasting.
]]> https://original.jupiterbroadcasting.net/5013/epic-snow-the-sequel-jn-2211/ Wed, 02 Feb 2011 21:55:34 +0000 https://original.jupiterbroadcasting.net/?p=5013 Tonight we dig through some of the top news stories regarding this snowpocalypse, as well as share a bunch of user-submitted snow pictures.
The post Epic Snow, THE SEQUEL | J@N | 2.2.11 first appeared on Jupiter Broadcasting.
]]>

As the eastern and midwest USA get pounded with some of the heaviest snowfall they’ve seen in ages, we’re sitting tight nice and cozy (and even a little sunny – SUCK IT) in the northwest.
Tonight, we’re gonna dig through some of the top news stories regarding this snowpocalypse, as well as share a bunch of user-submitted snow pictures. Be prepared for a lot of white in your face.
Show Feeds:
• HD Video RSS
• Large Video RSS
• iPod Video RSS
• MP3 RSS
• iTunes Feeds
Show Notes:
Today’s blizzard is within inches of Chicago’s worst ever (27 inches in <24 hours)
Chicago’s weather service says that February’s snowfall so far (2 days) has surpassed all previous records for the ENTIRE MONTH. (Chicago photo gallery!)
Tulsa’s record was broken by more than 3 inches (old = 10.5, new = 14+)
Nationwide flight cancellations reached 13,000 flights
ABC News’ recap so far
World’s Largest Snow(wo)man – First built in 1999, record reached in 2008.
VIEWER PICS/VIDS
@DantesSTO:  https://twitpic.com/3vv6qn
Murphy (emailed – from last year) Pittsburgh
Lebel (emailed) Massive chewtits
JKellog (emailed – a pic of his neighbor’s tree that got taken down by the weight of the ice)
Roof collapse https://www.weather.com/outlook/videos/roof-collapse-caught-on-camera-19560#19560
Download:
The post Epic Snow, THE SEQUEL | J@N | 2.2.11 first appeared on Jupiter Broadcasting.
]]> https://original.jupiterbroadcasting.net/1604/sto-open-beta-report-game-video-capture-tip-stoked-s01e19/ Tue, 19 Jan 2010 10:03:26 +0000 https://original.jupiterbroadcasting.net/?p=1604 We cover the latest Star Trek Online developments from Open Beta, go over the different subscription plans and if they are a good deal.
The post STO Open Beta Report & Game Video Capture Tip | STOked S01E19 first appeared on Jupiter Broadcasting.
]]>

STOked Season 1 Episode 19: We cover the latest Star Trek Online developments from Open Beta, go over the different subscription plans and if they are a good deal.
Plus we reflect on our trip to Cryptic, the makers of Star Trek Online.
Then we give you a quick tip on capturing video of your gameplay with WeGame!
Our STOked App:
Grab the STOked iPhone/iPod App and download STOked plus bonus content on the go!
NEWS:
Lifetime / Yearly / Monthly Prices Announced 
1-Month Recurring	USD: 14.99	CAD: 16.49	GDP: 8.99	EUR: 12.99	DKK: 82.45
3-Month Recurring	47.97	46.17	25.17	35.97	230.84
6-Month Recurring	77.94	85.73	46.14	65.94	428.67




For those who pre-ordered:

$239.99 - USD
Lifetime Access to Star Trek Online
Playable Borg (fully customizable in character creator) 
2 Additional Character Slots

$119.99/yr - USDHi
Annual recurring subscription locked in at the discount price
2 Additional Character Slots


Playable Borg Details:
Q: What are the playable Borg’s in-game traits?
A: The Liberated Borg begins with the following two traits. You can select another two traits from a general list.
Borg Nanites: +10% Health Regeneration
Description: Ground Trait. Constantly regenerates shields and health.


Efficient: +5 Starship Shield Efficiency, +5 Starship Engine Efficiency, +5 Starship Energy Weapon Efficiency, +5 Starship Auxiliary Systems Efficiency
Description: Space Trait. Provides a bonus to efficiency stats, improving the effectiveness of many of your power management abilities.


The Liberated Borg also has a unique optional trait. 


Neural Blast: 30 second debuff. Drastically reduces run speed. Every 4 seconds 
Neural Blast has a 40% chance to hold the target for 3 seconds. Description: Activatable Ground Trait. Inject the target with neural toxins, which continually attempt to hold the target for the duration. Also reduces the target's movement speed.


OUR TRIP TO CRYPTIC:
• Jeremy and Chris visit Cryptic Studios, we report!


jupiterforce.org is active!
https://jupiterforce.org/forum.php


• There is a "Home Page" containing content we haven't had time to modify yet.
• www.jupitercolony.com to discuss the show's content
OPEN BETA REPORT:
• Our reactions to beta (no NDA now!)
• Etc
• Server capacity reached!


Most of Saturday, and on/off this morning, the STO servers were popping up a "Server is Busy, please try again later" box.


It was announced that this was due to the hard-coded server capacity limits they've put in place, based on hardware performance.


https://forums.startrekonline.com/showthread.php?p=1473371#post1473371


• No hard numbers on what that cap is, but I'd imagine it's quite high (like Bryan's ego).
• You can keep clicking and sneak in when someone else logs off/disconnects.
• Relatively stable performance under such a load!  (No worse than the rest of the week was)
• We warned them... Silly Cryptic!


QUICK TIP:
• WeGame - www.wegame.com




The post STO Open Beta Report & Game Video Capture Tip | STOked S01E19 first appeared on Jupiter Broadcasting.
]]>