Show Notes: linuxunplugged.com/342

The post Shrimps have SSHells | LINUX Unplugged 342 first appeared on Jupiter Broadcasting.

Angela and Chris discuss a couple major projects that being worked on for the future of our airways. Everything from making our Back To The Future dreams come true to drone delivery from Amazon & getting internet to areas that can’t support a full infrastructure.

Direct Download:

HD Video | Mobile Video | MP3 Audio | YouTube

RSS Feeds:

HD Video Feed | Mobile Video Feed | MP3 Audio Feed | Torrent Feed | iTunes Feed

— Show Notes —

Main Topic:
+ The Lexus Hoverboard: It’s here – YouTube
+ The Lexus Slide
+ ROLLER CYCLE ON GRASS – YouTube
+ Amazon proposes drones-only airspace to facilitate high-speed delivery | Technology | The Guardian
+ Facebook made a solar-powered plane to deliver internet
+ Facebook’s UAV Flies, Builds On Developments In Solar Power | Technology content from Aviation Week

Email angela@jupiterbroadcasting.com your computer based PORN SKIT! Yes, write your own potentially horribly geeky porn skit and email it in. Send in a pic and/or link and IRC nick.

WTR

• Check out [A Computer Should Do This | WTR 38 | Jupiter Broadcasting
• Follow WTR on twitter: www.twitter.com/heywtr
• Email WTR: wtr@jupiterbroadcasting.com

Follow Jupiter Broadcasting

• See more pics: https://instagram.com/jupiterbroadcasting#
• Sign up for Jupiter Signal: www.bit.ly/jupitersignal
• Unfilter is on Patreon! https://www.patreon.com/unfilter
• Tech Talk Today is on Patreon! https://www.patreon.com/jupitersignal

JB SWAG

• Join our virtual LUG! | Teespring

— Find the FauxShow! —

• Facebook: https://www.facebook.com/thefauxshow
• Twitter: https://www.twitter.com/angerz
• G+: https://www.gplus.to/fauxshow
• Subscribe to Jupiter Signal: https://www.bit.ly/jupitersignal
• Jupiter Radio: https://jblive.info
• Affiliates Firefox Extension: https://addons.mozilla.org/en-US/firefox/addon/jupiterbroadcasting/
• Affiliates Chrome Extension: https://chrome.google.com/webstore/detail/bjekemhblnilimncanbehhjijdpjgimj
• Donations: https://original.jupiterbroadcasting.net/donate
• Shows & Shownotes: https://original.jupiterbroadcasting.net/show/fauxshow/

The post Traveling in the Future | FauxShow 222 first appeared on Jupiter Broadcasting.

One of the core developers of Arch Linux ARM joins us to chat about this rapidly developing platform, how Arch is used in ARM deployments & their relationship with the main Arch project.

Plus an update on Ubuntu Phone & the first fully sandboxed portable Linux desktop app is demoed this week. How is it different than what we’ve seen before? And how far away might it be? We debate.

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Become a supporter on Patreon:

Show Notes:

Pre-Show:

• Linux-Sale – Get Games – official online digital download retailer

• Matrix.org | A new basis for open, distributed, real-time communication

FU:

• What features do you miss most when you’re away from Linux? : linux

Linux Academy

• Linux Academy | Linux and AWS Online Training

• SCALE 13x | 13x

• Noah J. Chelliah (@Kernellinux) | Twitter

• Retro LAS next Sunday w/light crew at JB1, but live recording SCALE coverage.

LinuxFest Northwest 2015

Bellingham, WA • April 25th & 26th

• guake or guake alternatives?

lanoxx/tilda · GitHub

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

Arch Linux ARM

• Team | Arch Linux ARM

Jason Plum (WarheadsSE) – OxNAS specialist, Perlmonger, and once again, another one of the smartest guys we know. Available as a hired gun for ARM projects.

ODROID-C1 | Arch Linux ARM

TING

• Ting – mobile that makes sense

First fully sandboxed Linux desktop app | Alexander Larsson

This is going to require a lot of changes to the Linux stack. For instance, we have to use Wayland instead of X11, because X11 is impossible to secure. We also need to use kdbus to allow desktop integration that is properly filtered at the kernel level.

Recently Wayland has made some pretty big strides though, and we now have working Wayland sessions in Fedora 21. This means we can start testing real sandboxing for simple applications. To get something running I chose to focus on a game, because they require very little interaction with the system. Here is a video I made of Neverball, running in a minimal sandbox.

• Is independent of the host distribution
• Has no access to any system or user files other than the ones from the runtime and application itself
• Has no access to any hardware devices, other than DRI (for GL rendering)
• Has no network access
• Can’t see any other processes in the system
• Can only get input via Wayland
• Can only show graphics via Wayland
• Can only output audio via PulseAudio
• … plus more sandboxing details

How “omnipotent” hackers tied to NSA hid for 14 years—and were found at last | Ars Technica

In 2009, one or more prestigious researchers received a CD by mail that contained pictures and other materials from a recent scientific conference they attended in Houston. The scientists didn’t know it then, but the disc also delivered a malicious payload developed by a highly advanced hacking operation that had been active since at least 2001. The CD, it seems, was tampered with on its way through the mail.

It wasn’t the first time the operators—dubbed the “Equation Group” by researchers from Moscow-based Kaspersky Lab—had secretly intercepted a package in transit, booby-trapped its contents, and sent it to its intended destination. In 2002 or 2003, Equation Group members did something similar with an Oracle database installation CD in order to infect a different target with malware from the group’s extensive library. (Kaspersky settled on the name Equation Group because of members’ strong affinity for encryption algorithms, advanced obfuscation methods, and sophisticated techniques.)

Kaspersky researchers have documented 500 infections by Equation Group in at least 42 countries, with Iran, Russia, Pakistan, Afghanistan, India, Syria, and Mali topping the list. Because of a self-destruct mechanism built into the malware, the researchers suspect that this is just a tiny percentage of the total; the actual number of victims likely reaches into the tens of thousands.

Next week: Retro edition of LUP. Your favorite moments, now available with the self gratifying feature known has hindsight.

Runs Linux from the people:

• Send in a pic/video of your runs Linux.
• Please upload videos to YouTube and submit a link via email or the subreddit.

New Shows : Tech Talk Today (Mon – Thur)

• Tech Talk Today Today | Jupiter Broadcasting

Support Jupiter Broadcasting on Patreon

The post ARMed with Arch | LINUX Unplugged 80 first appeared on Jupiter Broadcasting.

13 gigabytes of stolen images from Snapchat but Snapchat themselves are not to blame. The Linux Foundation is working on open source drones. Apple Pay is facing headwinds & our Kickstarter of the week sparks quite the debate!

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed

Become a supporter on Patreon:

Show Notes:

Snapchat images stolen from third-party Web app using hacked API [Updated] | Ars Technica

An alleged cache of about 13 gigabytes of stolen images from Snapchat—some of them apparently of nude, underage users of the “ephemeral” messaging platform—was posted online Thursday night, many of them to the image-sharing site 4chan’s /b/ discussion board. However, the threads linking to the images have largely been shut down by 4Chan over concerns of trafficking in what could be considered child pornography. Over 100,000 user images and videos were in the cache, according to 4chan discussions.

According to 4Chan posters, the files were moved by the operator of the site SnapSaved.com—a site that was operating as a web-based SnapChat viewer—from the original server to a non-indexed site, where they were discovered. The original poster on the leak has said he will not be sharing the contents in both a comment on 4Chan and in a “release” posted on Pastebin.

The leak was apparently caused by SnapSaved.com (which has apparently been offline for several months; the link is to the developers’ Facebook page). SnapSaved was a Web-based client built for Snapchat that allowed users to access “snaps” from a Web browser. However, the service, which according to DNS records ran on a server at the hosting company HostGator, apparently kept all images received or sent by its users without their knowledge.

Snapchat does not publish its API for third-party developers, but it has been reverse-engineered.

Linux Foundation Launches Open Source Dronecode Project

“The Linux Foundation, the nonprofit organization dedicated to accelerating the growth of Linux and collaborative development, today announced the founding of the Dronecode Project. The Project will bring together existing open source drone projects and assets under a nonprofit structure governed by The Linux Foundation. The result will be a common, shared open source platform for Unmanned Aerial Vehicles (UAVs). Founding members include 3D Robotics, Baidu, Box, DroneDeploy, Intel, jDrones, Laser Navigation, Qualcomm, SkyWard, Squadrone System, Walkera and Yuneec. Dronecode includes the APM UAV software platform and associated code, which until now has been hosted by 3D Robotics, a world leader in advanced UAV autopilot and autonomous vehicle control. The company was co-founded by Chris Anderson, formerly editor-in-chief of Wired”

Many Retailers Hesitant About Offering Support for Apple Pay

Though Apple is launching Apple Pay with a number of high-profile retail partners including Macy’s, Disney, Whole Foods, Sephora, Walgreens, and Staples, among others, there’s a long list of retailers who have decided not to offer Apple Pay in their stores.

Walmart and Best Buy, for example, have been two high-profile companies that have vocally opted out, and The Daily Dot has compiled a list of several other retail outlets that have no current plans to support Apple Pay. Clothing store H&M said that it has no plans to accept Apple Pay at this time, as did high-end retailer Coach.

A Bed, Bath & Beyond spokesperson said the company was “unable to participate,” while a spokesperson for retailer Belk also said “we don’t have the capability to accept Apple Pay right now,” suggesting the store has not adopted payment systems with NFC capabilities.

Sears, Kmart, and Publix have also said they won’t be accepting Apple Pay, as has gas company BP, though BP stations may be able to accept Apple Pay in 2016.

Some fast food restaurants aren’t on board yet either, including Pizza Hut and Chipotle, while others, like KFC, are “looking into the prospect of accepting Apple Pay” but have no timetable for support.

The list of merchants not on board with Apple Pay is considerable, but contactless payments are growing in popularity and with the help of Apple Pay, the adoption of NFC systems may accelerate even faster. According to Apple, more than 220,000 retail stores across the United States will be able to accept Apple Pay.

Apple Pay is expected to roll out in October as an update to iOS 8. iOS 8.1, with hidden Apple Pay settings, has already been seeded to developers for testing.

Wells Fargo employee emails CEO asking for a raise — copies 200,000 other employees

Tyrel Oates, a 30-year-old Portland, Oregon-based employee of Wells Fargo, shot to Internet fame after emailing the company’s CEO John Stumpf (and cc’ing 200,000 other employees) to ask for a $10,000 raise… for everyone at the company.

The Charlotte Observer reports:

Oates proposed that Wells Fargo give each of its roughly 263,500 employees a $10,000 raise. That, he wrote, would “show the rest of the United States, if not the world, that, yes, big corporations can have a heart other than philanthropic endeavors.”

In an interview Tuesday, Oates…said he has no regrets and that he has received many thank-yous from co-workers who told him they shared his views.

And, at least as of Tuesday afternoon, he said he’s still employed by the company, where he processes requests from Wells Fargo customers seeking to stop debt-collection calls.

“I’m not worried about losing my job over this,” Oates said.

Kickstarter of the Week: Boxie: A speaker with a built-in LED light-show by Michael K.

An elegant, synchronized light-show built into a great sounding speaker. Place Boxie on your desk or in a bookshelf and see the music.

The post SnatchedChat | Tech Talk Today 74 first appeared on Jupiter Broadcasting.

2014 starts out with a bang, the NSA spying catalog is leaked, back doors are running wild, and thieves use a simple USB drive to steal thousands of dollars.

Then it’s a great big batch your questions, and our answers!

Thanks to:

— Show Notes: —

NSA Spy tool catalogue

• Der Spiegel displays the NSA’s 50 page catalogue of spy tools and “Tailored Access Operations”
• Many of the digital weapons are \”remotely installable\”
• While others require physical access to the device, called an \”interdiction\”
• The malware is installed into the hardware, usually intercepted sometime between leaving the manufacturer and arriving at the customer
• The malware is often persistent, meaning it will survive upgrades, and sometimes even reflashing the BIOS or firmware
• Some of the implants were new hardware, they provided the NSA with RF communications with the target system, allowing them to control or reinfect the system, or exfiltrate data
• The attack against Dell servers, known as ARKSTREAM reflashed the BIOS from a USB stick (so as not to require the attacker to have any technical skills) to implant the infection
• The NSA has nearly complete backdoor access to Apple\’s iPhone
• EFF: Everything we know about the NSA Spying
• One case involved Julian Assange\’s current home at the Ecuadorian Embassy in London, where visitors were surprised to receive welcome messages from a Ugandan telephone company. It turned out the messages were coming from a foreign base station device installed on the roof, masquerading as a cell tower for surveillance purposes
• The program also targeted hard drive manufacturers: Western Digital, Seagate, Maxtor and Samsung
• Responses:
• Dell
• Juniper
• Cisco

Thieves use USB sticks to compromise ATMs

• The attackers physically cut holes in the ATM to be able to access the USB port, then once they had infected the machines with their own code, they patched the holes to avoid discovery
• Once infected, the thieves just had to approach the ATM and enter a 12 digit code to get access
• “Analysis of software installed onto four of the affected machines demonstrated that it displayed the amount of money available in each denomination of note and presented a series of menu options on the ATM\’s screen to release each kind”
• The mastermind behind the attack designed it such that it required two-factor authentication, to ensure that the mules with the USB sticks could not ‘go rogue’
• The researchers added the organisers displayed \”profound knowledge of the target ATMs\” and had gone to great lengths to make their malware code hard to analyse.
• However, they added that the approach did not extend to the software\’s filenames – the key one was called hack.bat.

• FreeNAS Mini from iXsystems

Canadian Federal Departments consider banning USB devices

• After a number of incidents where USB sticks have been lost or stolen, the Canadian government is considering banning USB devices
• A week-long investigations led security officials to conclude it was “impossible to assess [the] compromise” related to the loss of the device
• Nor was it clear who was telling the truth about the number of hands the one small device passed through: Employees pointed fingers at each other, with none knowing where the USB key ended up
• Another USB key that was neither password protected nor encrypted was found on a downtown Ottawa sidewalk by a Good Samaritan. It contained protected information — albeit out-of-date details — of a federal project
• File servers are behind firewalls, support auditing and stronger access control, and are a better solution
• However, since any unsophisticated user can easily use a USB stick, they tend to get used to circumvent IT policy

Feedback:

• ZFS on Root
• ZFS Tuning
• Tuning ZFS on FreeBSD – Martin Matuska, EuroBSDcon 2012
• FreeNAS questions
  • FreeBSD 2012 Security Incident
• Could Allan share his router config?
• Password sharing methods for enterprise
  • FUDO contractor security and auditing appliance

Round Up:

• Backdoor found in Linksys, Netgear Routers
• Proof of concept exploit against Dual_EC_DRBG
• Target confirms encrypted PIN data stolen
• Man fights ISPs affiliate foulplay and wins
• The NSA\’s elite hackers can hijack your Wi-Fi from 8 miles away
• Attackers calling themselves ‘DERP’ take down multiple online gaming servers
• 30th Chaos Communication Congress [30c3] Videos Available on Youtube
• Breeze card hackers arrested and charged with racketeering
• Coca-Cola gets allocated 16 million MAC addresses
• Wired – We’re about to lose Net Neutrality
• Snapchat Account Leak Raises Questions About It and Other Mobile Apps
• Skype blog and social media accounts hacked by Syrian Electronic Army
• FireEye buys Mandiant for over $1 billion

The post ZFS Turntables | TechSNAP 143 first appeared on Jupiter Broadcasting.

It’s been called a once in a lifetime super storm, we’ll reflect on the media’s coverage of this major event, and we bust the October Surprise rumors that are spreading like wildfire online.

When you think of the fight for control of the Internet, you probably think of SOPA, CISPA, and Net Neutrality. But an International effort is underway and laying on thick rhetoric in an attempt to undermine the open nature of the web, we’ll share the details with you.

Then in ACT3: Your feedback challenges are assumptions, and we respond.

All that and a heck of a lot more, on this week’s Unfilter!

Direct Download:

HD Video | Mobile Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

HD Feed | Mobile Feed | MP3 Feed | OGG Feed | HD Torrent | Mobile Torrent | iTunes

Get Unfilter on your Android:

• Callisto – Android App
• Jupiter Broadcasting – Android App by ShaneQful

Browser Affiliate Extension:

• Jupiter Broadcasting Affiliate Extensions for Chrome and Firefox

Show Notes:

ACT ONE:

• Disney buys LucasFilm, new \’Star Wars\’ planned
• Disney buys Lucasfilm: Will the parks see more ‘Star Wars’ and ‘Indiana Jones’?
• George Lucas To Donate Most Of His $4 Billion To Education Charity

• Disney Deal: George Lucas Will Use $4 Billion to Fund Education – Hollywood Reporter

• Wozniak: Web crackdown coming, freedom failing

• UN: The Problem With The Internet Today Is It\’s Just Too Open & Terrorists Might Use It

• PDF: Use of Internet for Terrorist Purposes.pdf

• US Offers New Plans 1 Month Before UN Meeting To Regulate Web

• Russia internet blacklist law takes effect

• Police need new internet surveillance tools, say chiefs – British Columbia – CBC News

ACT TWO: THE SUPER STORM

• Full scope of Sandy\’s destruction becoming clear

• In Garrett County, snow is normal but Sandy was not

• President Obama, Gov. Chris Christie touring storm damage together in New Jersey

• Bloomberg Endorses Obama, Citing Climate Change

• Dead air: Sandy takes out 1 in 4 cell towers, FCC says, and more could fail

• AT&T, T-Mobile to share networks in New York and New Jersey in wake of Hurricane Sandy

• Concerns what the H.A.A.R.P project in Alaska is up to

• Who thinks HAARP is responsible for Hurricane Sandy???

• High Frequency Active Auroral Research Program – Wikipedia

• Weather as a Force Multiplier:
  Owning the Weather in 2025
  

ACT THREE: FEEDBACK

• Officer in the USMC writes in, he works with UAVs and has a few thoughts on our coverage.
• Thoughts on Drones
• A bunch of Feedback
• Regarding the question sent in by a viewer in the episode \”Third Party Hope\” about monarchies

Follow the Team:

Call us: 1.425.312.1756

• Unfilter on Reddit
• Chris on Twitter
• Chase’s Geek and Gaming Network
• Chase on Twitter

The post Super Spin Sandy | Unfilter 24 first appeared on Jupiter Broadcasting.