Podurama logo

 Podurama

 

Home

 

Trending

 

Personal

 

Your Podcasts

 

New Episodes

 

My Files

 

Favourite Episodes

 

Tags (Folders)

 

Recently Played

 

Bookmarks

 

Followed Playlists

YOUR PLAYLISTS

2.5 Admins podcast

2.5 Admins

·

  The Late Night Linux Family  

2.5 Admins is a podcast featuring two sysadmins called Allan Jude and Jim Salter, and a producer/editor who can just about configure a Samba share called Joe Ressington. Every week we get together, talk about recent tech news, and answer some of your admin-related questions.

2.5 Admins is a podcast featuring two sysadmins called Allan Jude and Jim Salter, and a producer/editor who can just about configure a Samba share called Joe Ressington. Every week we get together, talk about recent tech news, and answer some of your admin-related questions.

 

All

Progress

Duration

Release Date

#225

2.5 Admins 225: Kinetic Response

The US government tells people to use encrypted messaging, mandated MFA in healthcare raises a scary geopolitical question, QNAP bungles a firmware update, and securing access to self hosted applications with mTLS. Plugs [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) [Deploying pNFS file sharing with FreeBSD] (https://klarasystems.com/articles/deploying-pnfs-file-sharing-with-freebsd/) News/discussion [FBI Warns iPhone And Android Users—Stop Sending Texts] (https://www.forbes.com/sites/zakdoffman/2024/12/03/fbi-warns-iphone-and-android-users-stop-sending-texts/) [US senators propose mandated MFA, encryption in healthcare] (https://www.theregister.com/2024/11/26/us_senators_healthcare_cybersecurity/) [QNAP firmware update leaves NAS owners locked out of their boxes] (https://arstechnica.com/gadgets/2024/11/qnap-firmware-update-leaves-nas-owners-locked-out-of-their-boxes/) Free consulting We were asked about securing access to self hosted applications with mTLS. Automox Check out the brand new [Autonomous IT podcast] (https://listen.automox.com/) . Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

12 Dec 2024

30 MINS

30:06

12 Dec 2024

#224

2.5 Admins 224: ZipLocked

Intel’s CEO departs but replacing him won’t magically solve its serious problems, Zipcar wasn’t prepared for an outage and handled it really badly, moving to an email provider that supports DMARC, and picking a NAS distribution. Plugs [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) [ZFS Ask Me Anything – December 12th] (https://klarasystems.com/webinars/zfs-ask-me-anything/) [Applying the ARC Algorithm to the ARC] (https://klarasystems.com/articles/applying-the-arc-algorithm-to-the-arc/) News [Intel CEO takes his leave as ambition meets reality] (https://www.theregister.com/2024/12/02/intel_gelsinger_leave/) [What happened to Intel?] (https://www.theverge.com/2024/12/3/24311594/intel-under-pat-gelsinger) [Zipcar Outage Strands Customers in Random Places] (https://www.404media.co/a-total-meltdown-black-friday-zipcar-outage-strands-customers-in-random-places/) Free consulting We were asked about moving to an email provider that supports DMARC, and picking a NAS distribution. ServerMania Get 15% Off dedicated servers – recurring for Life at [servermania.com/25a] (https://servermania.com/25a) with code 25ADMINS See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

05 Dec 2024

30 MINS

30:04

05 Dec 2024

#223

2.5 Admins 223: Google Juice Abuse

Equinix is shutting down its bare metal service, D-Link advises people to dump old vulnerable routers, Google makes changes to how it ranks some affiliate-driven “reviews”, and data caps seem to be sticking around. Plus mixing different brands and types of disks, using other partitions on a ZFS drive, and scaling a fleet of FreeBSD hosts with jails. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) [Introducing OpenZFS Fast Dedup] (https://klarasystems.com/articles/introducing-openzfs-fast-dedup/?utm_source=25admins&utm_medium=podcast) News/discussion [Equinix to shutter bare metal IaaS service in 2026] (https://www.theregister.com/2024/11/18/equinix_ends_metal_iaas/) [D-Link says replace vulnerable routers or risk pwnage] (https://www.theregister.com/2024/11/20/dlink_rip_replace_router/) [Google cracks down on “Parasite SEO,” punishing established publishers] (https://arstechnica.com/gadgets/2024/11/google-cracks-down-on-parasite-seo-punishing-established-publishers/) [Cable companies and Trump’s FCC chair agree: Data caps are good for you] (https://arstechnica.com/tech-policy/2024/11/cable-companies-and-trumps-fcc-chair-agree-data-caps-are-good-for-you/) Free consulting We were asked about mixing different brands and types of disks, using other partitions on a ZFS drive, and scaling a fleet of FreeBSD hosts with jails. [nomad-pot-driver] (https://github.com/bsdpot/nomad-pot-driver) [Cluster provisioning with Nomad and Pot on FreeBSD] (https://klarasystems.com/articles/cluster-provisioning-with-nomad-and-pot-on-freebsd/https://klarasystems.com/articles/cluster-provisioning-with-nomad-and-pot-on-freebsd/?utm_source=25admins&utm_medium=podcast) ServerMania Find this year’s Black Friday & Cyber Week deals at [ servermania.com/blackfriday] (https://www.servermania.com/blackfriday) 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

28 Nov 2024

30 MINS

30:53

28 Nov 2024

#222

2.5 Admins 222: Surprise Upgrade

Windows server unexpectedly upgrades major versions, Microsoft reinvents the idea of a thin client, restricting a friend’s access to just their backups, and the importance of warranties when buying hardware. Plugs [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) [DKMS vs kmod: The Essential Guide for ZFS on Linux] (https://klarasystems.com/articles/dkms-vs-kmod-the-essential-guide-for-zfs-on-linux/?utm_source=25admins&utm_medium=podcast) News [Windows Server 2025 takes admins by surprise] (https://www.theregister.com/2024/11/06/windows_server_2025_surprise/) [No word from Microsoft on shock Windows Server 2025 installs] (https://www.theregister.com/2024/11/08/windows_2025_surprise_install/) [Windows Server 2025 known issues and notifications] (https://learn.microsoft.com/en-us/windows/release-health/status-windows-server-2025#3404msgdesc) [Windows 11 update bug falsely warns of end of support, confusing users] (https://www.pcworld.com/article/2522437/windows-11-update-bug-falsely-warns-of-end-of-support-confusing-users.html) [Windows 365 Link—the first Cloud PC device] (https://techcommunity.microsoft.com/blog/windows-itpro-blog/windows-365-link%E2%80%94the-first-cloud-pc-device-for-windows-365/4302687) Free consulting We were asked about restricting a friend’s access to just their backups, and the importance of warranties when buying hardware. [2.5 Admins 218: TLS TTL] (https://2.5admins.com/2-5-admins-218/) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

21 Nov 2024

30 MINS

30:22

21 Nov 2024

#221

2.5 Admins 221: Two Firewalls

Jim and Allan discover modern charging tech and marvel at what’s possible in the USB-C era, more on IPv6 firewalls, using ZFS like Git, and running your own authoritative DNS server. Automox Check out the brand new [Autonomous IT podcast] (https://listen.automox.com/) . Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

14 Nov 2024

35 MINS

35:58

14 Nov 2024

#220

2.5 Admins 220: Get a Job

How using a copy-on-write filesystem like ZFS can get systems back online within seconds after ransomeware encrypts all your data, and even warn you more quickly that it’s happening. Plus Jim and Allan’s advice on getting a job as a sysadmin. Plugs [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) [Klara: 5 Reasons Why Your ZFS Storage Benchmarks Are Wrong] (https://klarasystems.com/articles/5-reasons-why-your-zfs-storage-benchmarks-are-wrong/?utm_source=25admins&utm_medium=podcast) Free consulting We were asked about getting a job as a sysadmin. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

07 Nov 2024

31 MINS

31:08

07 Nov 2024

#219

2.5 Admins 219: Spooky Stories

It’s Halloween so Jim and Allan share horrific and spooky stories from their sysadmin careers. Plus picking a UPS for a homelab. Plugs [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) [Klara: NAS: Maintenance Best Practices] (https://klarasystems.com/articles/open-source-freebsd-nas-maintenance-best-practices/?utm_source=25admins&utm_medium=podcast) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

31 Oct 2024

32 MINS

32:37

31 Oct 2024

#218

2.5 Admins 218: TLS TTL

SSL certificates are likely going to last less time, the latest Windows 11 update leaves a huge chunk of data behind and doesn’t play nicely with some SSDs, picking a modern dhcp server on a homebrew router, and storing encrypted backups on a friend’s NAS with ZFS. Plugs [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) [Klara Halloween Webinar: ZFS Horror Stories. Oct 31st 13:00 EDT, 17:00 UTC] (https://klarasystems.com/webinars/openzfs-horror-stories/?utm_source=25admins&utm_medium=podcast) News [Sysadmins slam Apple’s SSL/TLS cert lifespan cuts] (https://www.theregister.com/2024/10/15/apples_security_cert_lifespan/) [Windows 11 24H2 hoards 8.63 GB of junk you can’t delete] (https://www.theregister.com/2024/10/11/windows_update_cleanup/) [As Microsoft rolls out its Windows 11 24H2 update, owners of certain Western Digital SSDs have been greeted with constant Blue Screens of Death] (https://www.pcgamer.com/hardware/ssds/as-microsoft-rolls-out-its-windows-11-24h2-update-owners-of-certain-western-digital-ssds-have-been-greeted-with-constant-blue-screens-of-death/) [WD releases new firmware to fix Windows 11 24H2 blue screens of death on some SSD] (https://www.neowin.net/news/wd-releases-new-firmware-to-fix-windows-11-24h2-blue-screens-of-death-on-some-ssd/) [Not just Western Digital – Windows 24H2 BSODs Asus kit] (https://www.theregister.com/2024/10/22/windows_24h2_update_bsod/) Free consulting We were asked about picking a modern dhcp server on a homebrew router, and storing encrypted backups on a friend’s NAS with ZFS. [The Ars guide to building a Linux router from scratch] (https://arstechnica.com/gadgets/2016/04/the-ars-guide-to-building-a-linux-router-from-scratch/) [Linux Router Part 1: Routing, NAT, and NFTables] (https://oxcrag.net/projects/linux-router-part-1-routing-nat-and-nftables/) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

24 Oct 2024

31 MINS

31:20

24 Oct 2024

#217

2.5 Admins 217: Drive Scavenging

The difference between monitoring and metrics analysis, the security pros and cons of cloud vs on-prem, why Jim and Allan don’t use Unraid, and cloud storage and email for a small company. Feedback [Netdata] (https://www.netdata.cloud/) [Nagios] (https://www.nagios.org/) [ZFS and Unraid] (https://unraid.net/blog/zfs-guide) Free consulting We were asked about cloud storage and email for a small company. Automox Check out the brand new [Autonomous IT podcast] (https://listen.automox.com/) . Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

17 Oct 2024

32 MINS

32:19

17 Oct 2024

#216

2.5 Admins 216: Pa55w0rd%

NIST has finally proposed some sensible password standards, why server CPUs with high core counts make sense in a lot of deployments, the .io TLD is probably sticking around, and the best options for a Linux-based router. Plugs [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) [Klara Halloween Webinar: ZFS Horror Stories. Oct 31st 13:00 EDT, 17:00 UTC] (https://klarasystems.com/webinars/openzfs-horror-stories/) [ZBM 101: Introduction to ZFSBootMenu] (https://klarasystems.com/articles/zbm-101-introduction-to-zfsbootmenu/) News [NIST proposes barring some of the most nonsensical password rules] (https://arstechnica.com/security/2024/09/nist-proposes-barring-some-of-the-most-nonsensical-password-rules/) [You’re right not to rush into running AMD, Intel’s new manycore monster CPUs] (https://www.theregister.com/2024/10/07/risk_of_manycore_cpus/) [The Disappearance of an Internet Domain] (https://every.to/p/the-disappearance-of-an-internet-domain) Free consulting We were asked about setting up a Linux-based router. [OpenWrt on TP-Link devices] (https://openwrt.org/toh/tp-link/start) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

10 Oct 2024

30 MINS

30:01

10 Oct 2024

#215

2.5 Admins 215: Still no VLANs

Why cold storage is never as good as keeping your data warm and regularly tested, how the American air traffic control system became so outdated, and isolating your devices from a roommate’s shenanigans. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [Music industry’s 1990s hard drives, like all HDDs, are dying ] (https://arstechnica.com/gadgets/2024/09/music-industrys-1990s-hard-drives-like-all-hdds-are-dying/) [FAA air traffic control modernization efforts are a mess] (https://www.theregister.com/2024/09/24/us_air_traffic_control_system_upgrade/) Free consulting We were asked about isolating your devices from a roommate’s shenanigans. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

03 Oct 2024

30 MINS

30:03

03 Oct 2024

#214

2.5 Admins 214: No VLANs

A proposed solution to the WHOIS TLS verification problem gets a surprising amount of pushback. Plus isolating IoT devices, our thoughts on Ubiquiti gear, setting up WiFi in a new house, remote access with WireGuard, and our mini PC recommendations. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [Google calls for halting use of WHOIS for TLS domain verifications] (https://arstechnica.com/security/2024/09/google-calls-for-halting-use-of-whois-for-tls-domain-verifications/) Free consulting We were asked about isolating IoT devices, our thoughts on Ubiquiti gear, setting up WiFi in a new house, remote access with WireGuard, and our mini PC recommendations. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

26 Sep 2024

30 MINS

30:27

26 Sep 2024

#213

2.5 Admins 213: Photo Philosophy

The Malaysian government’s misguided plan to control its citizens’ DNS, the wrong way to deploy underwater servers, a philosophical question about how long a person’s photos will exist, and how we manage our SSH keys. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [Malaysia’s plan to block overseas DNS dies after a day ] (https://www.theregister.com/2024/09/10/malaysias_dns_blocking_plan_paused/) [Proposed underwater data center surprises regulators who hadn’t heard about it] (https://arstechnica.com/tech-policy/2024/09/proposed-underwater-data-center-surprises-regulators-who-hadnt-heard-about-it/) Free consulting We were asked about how we manage our SSH keys. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) Automox Check out the brand new [Autonomous IT podcast] (https://listen.automox.com/) . Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

19 Sep 2024

30 MINS

30:04

19 Sep 2024

#212

2.5 Admins 212: WHODIS

A surprising way to exploit the WHOIS system, Microsoft will force old versions of Windows 11 to update, and the simple way to set up TP-Link Omada gear. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [Rogue WHOIS server gives researcher superpowers no one should ever have] (https://arstechnica.com/security/2024/09/rogue-whois-server-gives-researcher-superpowers-no-one-should-ever-have/) [Windows 11 users still living in the past face forced update, like it or not] (https://www.theregister.com/2024/09/11/microsoft_23h2_forced_update/) Free consulting We were asked about setting up TP-Link Omada gear. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

12 Sep 2024

29 MINS

29:04

12 Sep 2024

#211

2.5 Admins 211: Open Sourceless

Another example of the downsides of abstraction, whether AI can ever be truly “open source”, and the security benefits and drawbacks of different types of VPN. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [Hackers infect ISPs with malware that steals customers’ credentials] (https://arstechnica.com/security/2024/08/hackers-infect-isps-with-malware-that-steals-customers-credentials/) [Debate over “open source AI” term brings new push to formalize definition] (https://arstechnica.com/information-technology/2024/08/debate-over-open-source-ai-term-brings-new-push-to-formalize-definition/) Free consulting We were asked about whether VPNs are a security measure. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

05 Sep 2024

30 MINS

30:20

05 Sep 2024

#210

2.5 Admins 210: Ryzen Up

AMD will patch some old Ryzens against SinkClose now, but their benchmarking methods for newer CPUs didn’t live up to everyday reality. Plus Bcachefs devs annoy Linus Torvalds, the US government sues a college over compliance issues, and Jim disappoints a patron. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [AMD’s Ryzen 3000 CPUs to get SinkClose patch after all] (https://www.theregister.com/2024/08/20/amd_sinkclose_ryzen_3000/) [AMD explains, promises partial fixes for Ryzen 9000 performance problems] (https://arstechnica.com/gadgets/2024/08/amd-explains-promises-partial-fixes-for-ryzen-9000-performance-problems/) [Linus Torvalds Begins Expressing Regrets Merging Bcachefs] (https://www.phoronix.com/news/Linus-Torvalds-Bcachefs-Regrets) [After cybersecurity lab wouldn’t use AV software, US accuses Georgia Tech of fraud] (https://arstechnica.com/security/2024/08/oh-your-cybersecurity-researchers-wont-use-antivirus-tools-heres-a-federal-lawsuit/) Free consulting We were asked about monitoring your network for new device connections. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

29 Aug 2024

30 MINS

30:34

29 Aug 2024

#209

2.5 Admins 209: Faulty Defaults

Insecure SSH implementations and a weak key that let a researcher control 200 MW of electrical capacity reignites the debate about versioned protocols vs pluggable protocols, follow-up on sharing files from your LAN with people on the Internet, and the pros and cons of encrypted backups. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [Researchers find insecure SSH implementations everywhere] (https://www.theregister.com/2024/08/07/vulnerable_ssh_implementations_are_everywhere/) [512-bit RSA key in home energy system gives control of “virtual power plant”] (https://arstechnica.com/security/2024/08/home-energy-system-gives-researcher-control-of-virtual-power-plant/) Feedback [Syncthing] (https://syncthing.net/) [Resilio] (https://www.resilio.com/) [Send] (https://send.vis.ee/) [OnionShare] (https://onionshare.org/) [Warp] (https://gitlab.gnome.org/World/warp) [Immich] (https://immich.app/) Free consulting We were asked about the pros and cons of encrypted backups. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

22 Aug 2024

30 MINS

30:25

22 Aug 2024

#208

2.5 Admins 208: All CPUs suck

Forcing Windows to undo updates and a separate IPv6 vulnerability, hardware bugs in AMD and Intel CPUs, and using Samba on Linux with Active Directory. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [Your victim’s Windows PC fully patched? Just force undo its updates and exploit away] (https://www.theregister.com/2024/08/08/microsoft_windows_updates/) [CVE-2024-38063 – Security Update Guide – Microsoft – Windows TCP/IP Remote Code Execution Vulnerability] (https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38063) [Almost unfixable “Sinkclose” bug affects hundreds of millions of AMD chips] (https://arstechnica.com/security/2024/08/almost-unfixable-sinkclose-bug-affects-hundreds-of-millions-of-amd-cpus/) [SMM LOCK BYPASS] (https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7014.html) [Intel’s crashing 13th and 14th Gen Raptor Lake CPUs: all the news and updates] (https://www.theverge.com/24216305/intel-13th-14th-gen-raptor-lake-cpu-crash-news-updates-patches-fixes-motherboards) Free Consulting We were asked about using Samba on Linux with Active Directory. map acl inherit = yes acl_xattr:ignore system acls = yes acl_xattr:default acl style = windows [Setting up a Share Using Windows ACLs] (https://wiki.samba.org/index.php/Setting_up_a_Share_Using_Windows_ACLs) Automox Check out the brand new [Autonomous IT podcast] (https://listen.automox.com/) . Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

15 Aug 2024

30 MINS

30:10

15 Aug 2024

#207

2.5 Admins 207: Insecure Boot

Secure boot is compromised on hundreds of devices, Amazon’s desperate attempt to make money from Alexa, and how to decide which open source software on GitHub to trust. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [Secure Boot is completely broken on 200+ models from 5 big device makers] (https://arstechnica.com/security/2024/07/secure-boot-is-completely-compromised-on-200-models-from-5-big-device-makers/) [old and related] (https://x.com/matrosov/status/1654560343295934464) [Amazon’s paid Alexa is coming to fill a $25 billion hole dug by Echo devices] (https://www.theverge.com/2024/7/23/24204260/amazon-25-billion-losses-echo-devices-alexa-subscription) [Alexa had “no profit timeline,” cost Amazon $25 billion in 4 years] (https://arstechnica.com/gadgets/2024/07/alexa-had-no-profit-timeline-cost-amazon-25-billion-in-4-years/) Free consulting We were asked about how to decide which open source software on GitHub to trust. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

08 Aug 2024

29 MINS

29:55

08 Aug 2024

#206

2.5 Admins 206: CrowdStruck

How and why the recent huge Windows outage was caused by a bad CrowdStrike update and how it could have been avoided, a hilariously dumb ESXi vulnerability, and using SAS drives with a PCIe card. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [A closer look at what caused the CrowdStrike Windows crashes] (https://www.theregister.com/2024/07/23/crowdstrike_failure_shows_need_for/) [Ransomware gangs are loving this dumb but deadly ESXi flaw] (https://www.theregister.com/2024/07/30/make_me_admin_esxi_flaw/) [Jake Williams on Twitter] (https://x.com/MalwareJake/status/1818020145844863230) Free Consulting We were asked about using SAS drives with a PCIe card. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

01 Aug 2024

30 MINS

30:36

01 Aug 2024

#205

2.5 Admins 205: Dogs Hate BTC

How a Bitcoin mine made life in a Texas town absolutely miserable, why paying for extended support for end of life Windows versions is just doubling down on technical debt, and the best way to manage router redundancy. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [Inside the ‘Nightmare’ Health Crisis of a Texas Bitcoin Town] (https://time.com/6982015/bitcoin-mining-texas-health/) [Enterprises urged to think carefully about Windows 10 extended support options] (https://www.computerworld.com/article/2513398/enterprises-urged-to-think-carefully-about-windows-10-extended-support-options.html) Free Consulting We were asked about managing router redundancy. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

25 Jul 2024

30 MINS

30:24

25 Jul 2024

#204

2.5 Admins 204: Maybe Don’t 5

A widely-used login system is still using MD5 which is bad news, miscreants took over some domains when they moved from Google to Squarespace, Linksys’ sloppy app isn’t a huge problem but is a bad sign, and why backing up an Android phone in one go is pretty much impossible without root. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [New Blast-RADIUS attack breaks 30-year-old protocol used in networks everywhere] (https://arstechnica.com/security/2024/07/new-blast-radius-attack-breaks-30-year-old-protocol-used-in-networks-everywhere/) [Squarespace migration linked to DNS hijacking, claims report] (https://www.theregister.com/2024/07/15/squarespace_fingered_for_dns_hijackings/) [Linksys Velop routers send Wi-Fi passwords in plaintext to US servers] (https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/) Free Consulting We were asked about backing up Android phones. Automox Check out the brand new [Autonomous IT podcast] (https://listen.automox.com/) . Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

18 Jul 2024

29 MINS

29:00

18 Jul 2024

#203

2.5 Admins 203: Yet more free consulting

We didn’t get to all of your questions for our Episode 200 free consulting special so here is another full episode of your questions and our answers. Our thoughts on a new UK smart devices law, backing up 30TB off-site, how to learn ZFS, SMB vs other ways to share files, and backing up secrets. [Smart devices: new law helps citizens to choose secure products] (https://www.ncsc.gov.uk/blog-post/smart-devices-law) [FreeBSD Mastery: ZFS] (https://mwl.io/nonfiction/os#fmzfs) [FreeBSD Mastery: Advanced ZFS] (https://mwl.io/nonfiction/os#fmaz) 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

11 Jul 2024

31 MINS

31:38

11 Jul 2024

#202

2.5 Admins 202: Microsoft’s Underwater Again

Why we didn’t mention pocket fluff when we talked about USB-C charging issues, Microsoft abandons its promising underwater data center experiment and didn’t monitor it’s SSL certs, why you should be careful which WordPress plugins and themes you install,an Australian ISP’s tech debt comes due, and remoting into desktop Linux. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [Microsoft ends Project Natick underwater data center experiment despite success] (https://www.techspot.com/news/103514-microsoft-ends-project-natick-underwater-data-center-experiment.html) [Microsoft declares its underwater data center test was a success] (https://arstechnica.com/information-technology/2020/09/microsoft-declares-its-underwater-data-center-test-was-a-success/) [Shouting in the Datacenter] (https://www.youtube.com/watch?v=tDacjrSCeq4) [Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attack] (https://arstechnica.com/security/2024/06/supply-chain-attack-on-wordpress-plugins-affects-as-many-as-36000-sites/) [Coding error in forgotten API blamed for massive data breach] (https://www.theregister.com/2024/06/21/optus_data_breach_faulty_api/) [Microsoft hits snooze again on security certificate renewal] (https://www.theregister.com/2024/06/28/microsoft_security_certificate_expires/) Free Consulting We were asked about remoting into desktop Linux. [NoMachine] (https://www.nomachine.com/) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

04 Jul 2024

32 MINS

32:46

04 Jul 2024

#201

2.5 Admins 201: CVEs everywhere

Vulnerabilities in Asus hardware make us think there should be some regulations about what can be sold as a router, a VPN feature that we hadn’t heard of is removed from Windows, and why we don’t believe that Microsoft will ever take security as seriously as they claim. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [High-severity vulnerabilities affect a wide range of Asus router models] (https://arstechnica.com/security/2024/06/high-severity-vulnerabilities-affect-a-wide-range-of-asus-router-models/) [Dear Asus router user: You’ve been pwned, thanks to easily exploited flaw] (https://arstechnica.com/information-technology/2014/02/dear-asus-router-user-youve-been-pwned-thanks-to-easily-exploited-flaw/) [Microsoft to remove DirectAccess from Windows, recommends switching to Always On VPN] (https://www.neowin.net/news/microsoft-to-remove-directaccess-from-windows-recommends-switching-to-always-on-vpn/) [Microsoft fixes hack-me-via-Wi-Fi Windows security hole] (https://www.theregister.com/2024/06/12/june_patch_tuesday/) [CVE-2024-30078] (https://www.cve.org/CVERecord?id=CVE-2024-30078) [Microsoft in damage-control mode, says it will prioritize security over AI] (https://arstechnica.com/tech-policy/2024/06/microsoft-in-damage-control-mode-says-it-will-prioritize-security-over-ai/) [Pluralistic: Microsoft pinky swears that THIS TIME they’ll make security a priority] (https://pluralistic.net/2024/06/14/patch-tuesday/#fool-me-twice-we-dont-get-fooled-again) Tailscale Tailscale is an easy to deploy, zero-config, no-fuss VPN that allows you to build simple networks across complex infrastructure. Go to [tailscale.com/25a] (https://tailscale.com/25a) and try Tailscale out for free for up to 100 devices and 3 users, with no credit card required. Automox Check out the brand new [Autonomous IT podcast] (https://listen.automox.com/) . Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

27 Jun 2024

31 MINS

31:51

27 Jun 2024