2.5 Admins 182: All the Small Things

Nginx is forked, Broadcom/VMware kills ESXi, dedup is finally fixed in ZFS, using multiple network interfaces on a NAS, and more.

 

Plugs

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

 

News

announcing freenginx.org

Broadcom-owned VMware kills the free version of ESXi virtualization software

OpenZFS Native Encryption Use Raises Data Corruption Concerns

Fast Dedup is a Valentines Gift to the OpenZFS and TrueNAS Communities

 

Free Consulting

We were asked about using multiple network interfaces on a NAS.

 

 

 

 

Kolide

Kolide ensures that if a device isn’t secure it can’t access your apps.  It’s Device Trust for Okta. Visit kolide.com/25a to learn more.

 

 

 

 

 

See our contact page for ways to get in touch.

 

2.5 Admins 181: Triangle Fraud

Trying to report a security issue lands a consultant in trouble, a new take on the drop shipping scam, setting up your first NAS – including the benefits of RAID, picking a distro, choosing the right disk size, and more.

 

Plug

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

 

News/discussion

IT consultant in Germany fined for exposing shoddy security

Canadian Man Stuck in Triangle of E-Commerce Fraud

ICANN proposes creating .INTERNAL domain

 

Free Consulting

We were asked about setting up your first NAS – including the benefits of RAID, picking a distro, and choosing the right disk size.

Building Your Own FreeBSD-based NAS with ZFS

Part 2: Tuning Your FreeBSD Configuration for Your NAS

3.5″ internal drives sorted by price/TB

 

 

 

 

See our contact page for ways to get in touch.

 

2.5 Admins 180: Email 777

Microsoft’s rudimentary error that allowed an attacker access to its executives’ emails, Pixel phones have another serious storage bug, hidden malware payload found at Ars Technica, and when to upgrade your hardware for Windows 11.

 

Plugs

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

BSDCan 2024 – Call for papers

 

News

In major gaffe, hacked Microsoft test account was assigned admin privileges

Pixel phones are broken again with critical storage permission bug

Ars Technica used in malware campaign with never-before-seen obfuscation

 

Free Consulting

We were asked about when to upgrade your hardware for Windows 11.

 

 

 

 

 

See our contact page for ways to get in touch.

 

2.5 Admins 179: Y2K NotOK

Y2K was a pretty serious problem and 2038 is coming soon, work on Arm servers is improving the experience on the desktop, and what to do with an old unsupported Synology NAS.

 

Plugs

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

OpenZFS Best Practices: Part 2: File Serving and SANs

 

News/discussion

The ‘nothing-happened’ Y2K bug – and how IT squashed it

What I learned from using a Raspberry Pi 5 as my main computer for two weeks

 

Free Consulting

We were asked about what to do with an old unsupported Synology NAS.

Xpenology

How can I use a PC to recover data when my Synology NAS malfunctions?

 

 

 

 

 

Automox

Check out the brand new Autonomous IT podcast. Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts.

 

 

 

 

See our contact page for ways to get in touch.

 

2.5 Admins 178: LOTS of Storage

Hard drives are pretty much an enterprise product now, GitHub’s malware problem, and spreading services across different machines and VMs to keep downtime to a minimum.

 

Plugs

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

OpenZFS Storage Best Practices and Use Cases Part 1: Snapshots and Backups

 

News

Hard disk drives are next in line to become mostly enterprise hardware — as Nvidia (and AMD) could be planning to focus on AI, leaving consumers as second-class citizens

Seagate unveils 30 TB+ Exos HAMR disk drives – Blocks and Files

Miscreants absolutely love using GitHub to sling malware

Flying Under the Radar: Abusing GitHub for Malicious Infrastructure

 

Free Consulting

We were asked about spreading services across different machines and VMs to keep downtime to a minimum.

 

 

 

Kolide

Kolide ensures that if a device isn’t secure it can’t access your apps.  It’s Device Trust for Okta. Visit kolide.com/25a to learn more.

 

Automox

Check out the brand new Autonomous IT podcast. Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts.

 

 

 

 

See our contact page for ways to get in touch.

 

2.5 Admins 177: Don’t Pay the Dane

Why the problems with open source licenses aren’t quite as easy to fix as some people think, the reasons you should never pay ransomware gangs, and running a Nagios distro on a Raspberry Pi.

 

Plug

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

 

News/discussion

What comes after open source? Bruce Perens is working on it

A tale of 2 casino ransomware attacks: One paid out, one did not

The State of Ransomware in the U.S.: Report and Statistics 2023

 

Free Consulting

We were asked about running a Nagios distro on a Raspberry Pi.

NEMS Linux

 

 

 

 

Automox

Check out the brand new Autonomous IT podcast. Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts.

 

 

 

See our contact page for ways to get in touch.

 

2.5 Admins 176: Sudo Cognito

What does “incognito mode” in Chrome actually mean and whether documenting browser standards in code is a good idea, the serious implications of a fun story about messing with a ChatGPT instance, and maximizing performance when using mixed disk types on ZFS mirrored vdevs.

 

Plug

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

 

News

Google agrees to settle Chrome incognito mode class action lawsuit

I’d Buy That for a Dollar: Chevy Dealership’s AI Chatbot Goes Rogue

 

Free Consulting

We were asked about maximizing performance when using mixed disk types on ZFS mirrored vdevs.

 

 

 

 

 

See our contact page for ways to get in touch.

 

2.5 Admins 175: Guess Who’s Listening

Twitch pulls out of Korea thanks to the opposite of Net Neutrality, it’s not clear to what extent smart devices are listening to your conversations, more on water usage in data centers, and our thoughts on mandatory access controls.

 

Plug

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

 

News

Twitch to shut down in Korea over ‘prohibitively expensive’ network fees

Marketer sparks panic with claims it uses smart devices to eavesdrop on people

 

Free Consulting

We were asked for our thoughts on mandatory access controls.

 

 

 

 

Kolide

Kolide ensures that if a device isn’t secure, it can’t access your apps. It’s Device Trust for Okta. Watch the demo today to see how it works at kolide.com/25a

 

 

 

 

See our contact page for ways to get in touch.

 

2.5 Admins 174: Guess Who’s Watching

What you need to know about the recent SSH vulnerability, yet another privacy issue with cloud-connected security cameras, why it’s difficult to get to the bottom of an obscure ZFS encryption bug, and more.

 

Plug

Support us on patreon and get an ad-free RSS feed with early episodes sometimes

 

News

SSH protects the world’s most sensitive networks. It just got a lot weaker

UniFi devices broadcasted private video to other users’ accounts

 

Free Consulting

We were asked about the state of ZFS encryption, and Syncoid snapshots.

 

 

 

 

 

See our contact page for ways to get in touch.

 

2.5 Admins 173: Ghost Files

Google Drive client users lost months of files, a feature of UEFI that has left millions of computers potentially vulnerable to persistent malware, and why you probably shouldn’t buy cheap resold volume Windows licenses.

 

Plugs

Support us on patreon to get ad-free episodes that are sometimes a day or so early.

 

News/discussion

Google Drive users say Google lost their files; Google is investigating

How to restore files in Drive for desktop (v84.0.0.0-84.0.4.0)

Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack

 

Free Consulting

We were asked about using cheap resold volume Windows licenses.

 

 

 

 

 

Kolide

Kolide ensures that if a device isn’t secure, it can’t access your apps. It’s Device Trust for Okta. Watch the demo today to see how it works at kolide.com/25a

 

 

 

 

 

See our contact page for ways to get in touch.