HD Video Feed | MP3 Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

Show Notes:

Exclusive: Microsoft responded quietly after detecting secret database hack in 2013

• Microsoft Corp’s secret internal database for tracking bugs in its own software was broken into by a highly sophisticated hacking group more than four years ago, according to five former employees, in only the second known breach of such a corporate database.

• The company did not disclose the extent of the attack to the public or its customers after its discovery in 2013, but the five former employees described it to Reuters in separate interviews. Microsoft declined to discuss the incident.

How I Socially Engineer Myself Into High Security Facilities

• A few months ago, a client had hired me to test two of their facilities. A manufacturing plant, plus data center and office building nearby.

• I scour profiles of employees who work at these facilities, and cross-reference them to other social media sites.

• This is not an advanced investigation. I’m not a private investigator and I don’t have the resources of the NSA. But I can do a lot of damage with simple methods.

• X could have saved the company a lot of heartache by simply verifying that I was who I claimed to be.

• I’ve been doing this job for a couple years now, and almost every job is a variant of this story. Very rarely do I go through an entire assessment without some sort of social engineering.

Crippling crypto weakness opens millions of smartcards to cloning

• Yubico not aware of any security breaches due to this issue

Millions of smartcards in use by banks and large corporations for more than a decade have been found to be vulnerable to a crippling cryptographic attack. That vulnerability allows hackers to bypass a wide range of protections, including data encryption and two-factor authentication.

At this time, we are not aware of any security breaches due to this issue. We are committed to always improving how we protect our customers and continuously invest in making our products even more secure.

Feedback

• Workaround for the WPA2 exploit – from Jonathan

• SNAPs for… Windows?

• Server Layout for Linux System with LXC – There is an interesting project kind of related to this idea called CloudABI – CloudABI for FreeBSD

• IT Land before time COMPUTERS THAT NEVER WERE Software Emulator for the Cardboard Illustrative Aid to Computationn

Round Up:

• Android getting “DNS over TLS” support to stop ISPs from knowing what websites you visit

• Mercedes handles the competition because it knows how to handle data, too

• IT TAKES JUST $1,000 TO TRACK SOMEONE’S LOCATION WITH MOBILE ADS

• Encryption chip flaw afflicts huge number of computers

• Canada’s ‘super secret spy agency’ is releasing a malware-fighting tool to the public

• Writing a Bootloader Part 1

The post Cloudy with a chance of ABI | TechSNAP 342 first appeared on Jupiter Broadcasting.

Open Source artificial intelligence in all the things? Ryan from Mycroft joins us to update us on their recent hard work.

Is YubiKey going to hell in a handbasket? The latest from openSUSE, our first impressions of Remix OS & more!

• Get Paid to Write for DigitalOcean

Direct Download:

MP3 Audio | OGG Audio | Video | HD Video | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | Torrent Feed | WebM Torrent Feed

Become a supporter on Patreon:

Show Notes:

Pre-Show

• The Anatomy of a Linux User

Nicky isn’t outwardly remarkable in any way. She’s a thirtysomething who decided to go back to school later in life than most. She spent six years in the Navy until she decided a job offer from an old friend would be a better bet than a career in the armed forces. That happens a lot in any of the post-war military service branches. It was at that job where I met her. She was the regional manager for an eight state trucking broker and I was driving for a meat packing outfit in Dallas.

Follow Up / Catch Up

Arch Assault

SLES 12 SP2 Beta and openQA: status of QA Automation – SUSE Blog | SUSE Communities

TING

• Ting – mobile that makes sense

Nitrokey | Secure your digital life

Krita 3.0 Released | Krita

Today the Krita team releases Krita 3.0, the Animation Release. Wrapping up a year of work, this is a really big release: animation support integrated into Krita’s core, Instant Preview for better performance painting and drawing with big brushes on big canvases, ported to the latest version of the Qt platform and too many bigger and smaller new features and improvements to mention!

Gentoo Linux “Choice Edition” Live DVD Released with Kernel 4.5, ZFS on Linux

However, it appears that the Gentoo Linux “Choice Edition” Live DVD contains some special features that have not yet been available in previous releases of the ISO image of the operating system, such as support for modern UEFI (Unified Extensible Firmware Interface) machines, as well as ZFS on Linux.

DigitalOcean

• DigitalOcean: SSD Cloud Server, VPS Server, Simple Cloud Hosting

Mycroft Ai Gnome Shell Extension Release

Releasing the first alpha build v0.1 for Gnome Shell Desktop

Linux Academy

• Linux Academy | Linux and AWS Online Training

Remix OS for PC – Android Re-engineered for PC Productivity

Support Jupiter Broadcasting on Patreon

The post The Talking Gnome | LINUX Unplugged 147 first appeared on Jupiter Broadcasting.

Take your Linux logins up to the next level with YubiKey. YubiKeys support one-time passcode, smart card & more – enabling one security key to an unlimited number of applications. Today we’ll show you how to make it work with SSH under Linux.

Plus our thoughts on the NSA using Red Hat, the big changes coming to openSUSE, our picks & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Setting up a Yubikey with Linux

Brought to you by: O’REILLY OSCON

• Link from Yubico Support regarding U2F and CCID

Getting started with Yubikey

• YubiKey Family of Products | Strong Two-Factor Authentication for Secure Logins | Yubico

Introducing the YubiKey Nano – YouTube

• YubiKey Nano

Install Yubikey Support in Linux

sudo apt-get install opensc

sudo apt-add-repository ppa:yubico/stable

sudo apt-get install yubico-piv-tool

yubico-piv-tool -s 9a -a generate -o public.pem

yubico-piv-tool -a verify-pin -P 123456 -a selfsign-certificate -s 9a
-S \"/CN=SSH key/\" -i public.pem -o cert.pem

yubico-piv-tool -a import-certificate -s 9a -i cert.pem

ssh-keygen -D $OPENSC_LIBS/opensc-pkcs11.so

ssh -I $OPENSC_LIBS/opensc-pkcs11.so user@remote.example.com

Change Pin

yubico-piv-tool -a change-pin -P 123456 -N TheNewPinHere

yubico-piv-tool -a change-puk -P 12345678 -N TheNewPinHere

Edit SSH Client to look for Yubikey

vi /etc/ssh/ssh_config

Append the line For Ubuntu

PKCS11Provider /usr/lib/x86_64-linux-gnu/opensc-pkcs11.so

Get Key

ssh-keygen -D /usr/lib/x86_64-linux-gnu/opensc-pkcs11.so

For Ubuntu 32bit

PKCS11Provider /usr/lib/i386-linux-gnu/opensc-pkcs11.so

For Arch

PKCS11Provider /usr/lib/opensc-pkcs11.so

For Fedora

PCKS11Provider /usr/lib64/opensc-pkcs11.so

— PICKS —

Runs Linux

• Personal Trainer Robot Runs Linux

Vizzy will be a personal assistant robot, designed to teach exercise routines and provide physical therapy support, while also ensuring proper exercise form and monitoring physiological responses. So, much like human personal trainers, Vizzy will encourage users to keep exercising, even when they say they are tired.

Portuguese Robotics research is poised to become a reference in the field with the creations like Vizzy, a personal training robot created in the scope of one of the Entrepreneurial Research Initiatives of the Carnegie Mellon Portugal Program.
Vizzy will be a personal assistant robot, designed to teach exercise routines and provide physical therapy support, while also ensuring proper exercise form and monitoring physiological responses. This will be accomplished with its motion detectors that, much like the technology currently present in gaming consoles, is able to read the user’s body positioning. But Vizzy will also be able to detect other responses, such as body temperature and breathing pattern to gauge the user\’s physical reaction to the routine and adjusting it accordingly. So, much like human personal trainers, Vizzy will encourage users to keep exercising, even when they say they are tired.

Vizzy is under development within the “AHA – Augmented Human Assistance” project, lead by Profs. Alexandre Bernardino (IST) and Daniel P. Siewiorek (CMU). AHA is one of the six selected proposals of the CMU Portugal Program Entrepreneurial Research Initiative in 2014.

• vislab-tecnico-lisboa/vizzy · GitHub
• RBCog-Lab
• Vizzy. Com este robô não vai poder fingir que está cansado para fazer exercício

Desktop App Pick

• PeaZip | Free archiver and RAR file extractor utility

PeaZip is a sleek open source file and archive manager that supports a wide array of compression and encryption standards. It provides many helpful security features such as two-factor authentication, secure deletion, checksum and hash verification and WinZip\’s, PKZip\’s and 7\’s AES256 encryption, to name a few. PeaZip is a simple, sleek feature packed archive manager I recommend for any desktop.

Weekly Spotlight

• Hydrogen Rythem Sequencer

• Pattern-based sequencer, with unlimited number of patterns and ability to chain patterns into a song.

• Up to 192 ticks per pattern with individual level per event and variable pattern length.
• Unlimited instrument tracks with volume, mute, solo, pan capabilities.
• Multi layer support for instruments (up to 16 samples for each instrument).
• Sample Editor, with basic cut and loop functions. (NEW)
• Time-stretch and pitch functions via rubberband cli. Require the rubberband-cli package. (NEW)
• Play-lists with scripting function. (NEW)
• Advanced tab-tempo. (NEW)
• Director Window with a visual metronome and song position tags. (NEW)
• Time-line with variable tempo. (NEW)
• Single and stacked pattern mode. (NEW)
• Export/Import single patterns into song projects. (NEW)
• Midi learning via Shift+MouseClick on many gui-cotrollers combined with a midi settings editor. *(NEW)
• Ability to import/export song files.
• Unique human velocity, human time, pitch and swing functions.
• Multiple patterns playing at once.

— NEWS —

RedHat used by NSA Spies

• Richard Stallman \’basically\’ has no problem with the NSA using GNU/Linux

Rebasing openSUSE

• openSUSE Stuck in the middle: https://youtu.be/BH99TSrfvq0?t=6m33s

• OBS is getting SLE Sources, and MX fixed: https://youtu.be/BH99TSrfvq0?t=11m6s

Canonical partners with Lenovo to launch Ubuntu-powered ThinkPad L450 laptops in India

As for the specs of the ThinkPad L450 series, users have the choice of Intel Core i3 and i5 processors, paired with AMD Radeon R5 M240 2GB VRAM Intel HD 5500 GPU, 4GB of RAM, and 500GB hard drives. The laptops sport a 14-inch display with HD (1,280 x 720) screen resolution.

VirtualBox 5.0 final available

2 Months after the Beta 3 release Oracle has announced that Oracle VM VirtualBox 5.0 is available today. The guest OS performance has been improved by leveraging built-in virtualization support.

Feedback:

Linux Academy

• Linux Academy | Linux and AWS Online Training

• https://slexy.org/view/s21um5h1kd

• https://slexy.org/view/s21OaIYbZk

• https://slexy.org/view/s20yT3fyHs

• https://slexy.org/view/s2TSOlSr1k

• Support Jupiter Broadcasting on Patreon

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

— CHRIS\’ STASH —

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH\’S STASH —

Noah\’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

Catch the show LIVE Sunday 10am Pacific / 1pm Eastern / 6pm UTC:

• https://jblive.tv
• Network Calendar

The post SSH Authentication with YubiKey | LAS 373 first appeared on Jupiter Broadcasting.

We\’re back from AsiaBSDCon! This week we\’ll be chatting with Gleb Kurtsou about some a filesystem-level encryption utility called PEFS. After that, we\’ll give you a step by step guide on how to actually use it. There\’s also the usual round of your questions and we\’ve got a lot of news to catch up on, so stay tuned to BSD Now – the place to B.. SD.

Thanks to:

Direct Download:

Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube

RSS Feeds:

MP3 Feed | OGG Feed | iTunes Feed | Video Feed | HD Vid Feed | HD Torrent Feed

– Show Notes: –

AsiaBSDCon wrap-up chat

• bhyvecon Tokyo videos and slides

Headlines

Using OpenSSH Certificate Authentication

• SSH has a not-so-often-talked-about authentication option in addition to passwords and keys: certificates – you can add certificates to any current authentication method you\’re using
• They\’re not really that complex, there just isn\’t a lot of documentation on how to use them – this post tries to solve that
• There\’s the benefit of not needing a known_hosts file or authorized_users file anymore
• The post goes into a fair amount of detail about the differences, advantages and implications of using certificates for authentication

Back to FreeBSD, a new series

• Similar to the \”FreeBSD Challenge\” blog series, one of our listeners will be writing about his switching BACK to FreeBSD journey
• \”So, a long time ago, I had a box which was running FreeBSD 4, running on a Pentium. 14 years later, I have decided to get back into FreeBSD, now at FreeBSD 10\”
• He\’s starting off with PCBSD since it\’s easy to get working with dual graphics
• Should be a fun series to follow!

OpenBSD\’s recent experiments in package building

• If you\’ll remember back to our poudriere tutorial, it lets you build FreeBSD binary packages in bulk – OpenBSD\’s version is called dpb
• Marc Espie recently got some monster machines in russia to play with to help improve scaling of dpb on high end hardware
• This article goes through some of his findings and plans for future versions that increase performance
• We\’ll be showing a tutorial of dpb on the show in a few weeks

Securing FreeBSD with 2FA

• So maybe you\’ve set up two-factor authentication with gmail or twitter, but have you done it with your BSD box?
• This post walks us through the process of locking down an ssh server with 2FA
• With just a mobile phone and a few extra tools, you can enable two-factor auth on your BSD box and have just that little extra bit of protections

Interview – Gleb Kurtsou – gleb.kurtsou@gmail.com

PEFS

Tutorial

Filesystem-based encryption with PEFS

News Roundup

BSDCan 2014 registration

• Registration is finally open!
• The prices are available along with a full list of presentations
• Tutorial sessions for various topics as well
• You have to go

Big changes for OpenBSD 5.6

• Although 5.5 was just frozen and the release process has started, 5.6 is already looking promising
• OpenBSD has, for a long time, included a heavily-patched version of Apache based on 1.3
• They\’ve also imported nginx into base a few years ago, but now have finally removed Apache
• Sendmail is also no longer the default MTA, OpenSMTPD is the new default
• Will BIND be removed next? Maybe so
• They\’ve also discontinued the hp300, mvme68k and mvme88k ports

Getting to know your portmgr lurkers

• The \”getting to know your portmgr\” series makes its return
• This time we get to talk with danfe@ (probably most known for being the nVidia driver maintainer, but he does a lot with ports)
• How he got into FreeBSD? He \”wanted a unix system that I could understand and that would not get bloated as time goes by\”
• Mentions why he\’s still heavily involved with the project and lots more

PCBSD weekly digest

• Work has started to port Pulseaudio to PCBSD 10.01 (why?)
• There\’s a new \”pc-mixer\” utility being worked on for sound management as well
• New PBIs, GNOME/Mate updates, Life Preserver fixes and a lot more
• PCBSD 10.0.1 was released too

Feedback/Questions

• Alex writes in
• Ben writes in
• Nick writes in
• Sami writes in
• Christopher writes in

• All the tutorials are posted in their entirety at bsdnow.tv
• The pkgng, ZFS, OpenBSD router and FreeBSD desktop tutorials have gotten some updates and fixes
• If you were using the automatic errata checking script in the router tutorial, you need to redownload the new, fixed version (they rearranged some stuff on the website and broke it)
• A few weeks\’ worth of new tutorials were uploaded ahead of time for the benefit of everyone, no point in holding them hostage – go check \’em all out
• Send questions, comments, show ideas/topics, or stories you want mentioned on the show to feedback@bsdnow.tv
• Watch live Wednesdays at 2:00PM Eastern (18:00 UTC)
• Dusko, the winner of our tutorial contest, sent us a picture with his awesome FreeBSD pillow!

The post P.E.F.S. | BSD 29 first appeared on Jupiter Broadcasting.

Gawker’s recent bad luck spells real trouble for Chris! He’ll share his tale of woes in tonight’s show. Plus some great tools to improve your password habits!

Show Feeds:

• HD Video RSS
• Large Video RSS
• iPod Video RSS
• MP3 RSS
• iTunes Feeds

Download:

Download:

The post Gawker Hacked | J@N | 12.15.10 first appeared on Jupiter Broadcasting.