S3E5: "Remotely Interested"
Posted
Modified
Comments
0
| Previous Episode | Next Episode |
|---|---|
| S3E4: "More Audits Than the IRS" | S3E6: "The Hubris of Man" |
| Recorded (UTC) | Aired (UTC) | Editor |
|---|---|---|
| 2018-04-25 04:30:00 | 2018-05-06 03:23:06 | "Edita" |
| Format | SHA256 | GPG | Audio File |
|---|---|---|---|
| MP3 | 6dfb1fdbf8c7101da0f48d0b3bb4d097d6005e50e0394017b6ac5d51b77c6a0e | click | click | OGG | 2b0e9b0d0f68dbe6b1a928db1a5313d7bbd26e115c3176807171307dd44d43ef | click | click |
In this episode, we talk about considerations for remotely working/telecommuting/digital-only offices/businesses. Jthan’s reference to “meatsnacks”.
News
- Net Neutrality is “dead“!
- Mikrotik routers have a fairly serious vulnerability
- VMWare allows guests to escape to the host.
- The RSA Conference app was leaking attendee’s data.
- Intel wearables have come to an end.
- Not just Facebook! Cambridge Analytica is in use with many platforms, and of course 1.2TB was leaked.
- UK law enforcement agencies claim mugshots are “too expensive” to delete.
- Data from a casino was infiltrated via a fishtank thermometer.
- You can read a report of it from the security firm mentioned here (case #6).
- I’m unable to find the model of the thermometer.
- There are some weaknesses in Vultr’s domain/DNS management system.
Notes
Starts at 33m39s.
I was drinking Jefferson’s Reserve bourbon still. Paden was drinking Stella Artois. Jthan was drinking water.
- Implementing telecommuting infrastructure
- Security
- VPN
- Selective routing has multiple benefits! Namely…
- Bandwidth
- Employee privacy concerns
- Selective routing has multiple benefits! Namely…
- However, staff devices directly connected to infra complicates things – infected machines can propagate to internal resources, so 2FA/MFA is recommended.
- VPN
- Staff management
- Centralized auth is very important; allows for fast turnup/turndown.
- Ensure access policies to internal resources at the VPN firewall.
- Have failover and response processes for “staff disappearances”.
- Security
Sysbadministration Award
In this segment, we highlight system administration mistakes. Think of them as the IT equivalent of the Darwin Awards. (59m30s)
The IRS website was down on taxday.
Errata
- During the intro, we mention the season 1 shitshow
- The package manager rant episode, Jthan, was indeed NOT the last episode.
- I couldn’t find reference to the incident at RSAC 2017 that Paden mentions.
- A “thermometer that you change”, Jthan, is called a thermostat.
- Said fishtank device was bluetooth, not wi-fi.
- I’m not finding anything about Cisco dropping IPSec support. If they are, corrections welcome!
- Jthan, there’s no space in asshole.
Music
| Track | Title | Artist | Link | Copyright/License |
|---|---|---|---|---|
| Intro | Mussels (short version) | Andrew Codeman | click | CC-BY 3.0 | Outro | Core Collapse | Nathaniel Wyvern | click | CC-BY-SA 4.0 |
Author
r00t^2
Categories
Season Three
Comments
There are currently no comments on this article.
Comment...