Podurama logo

 Podurama

 

Home

 

Trending

 

Personal

 

Your Podcasts

 

New Episodes

 

My Files

 

Favourite Episodes

 

Tags (Folders)

 

Recently Played

 

Bookmarks

 

Followed Playlists

YOUR PLAYLISTS

2.5 Admins podcast

2.5 Admins

·

  The Late Night Linux Family  

2.5 Admins is a podcast featuring two sysadmins called Allan Jude and Jim Salter, and a producer/editor who can just about configure a Samba share called Joe Ressington. Every week we get together, talk about recent tech news, and answer some of your admin-related questions.

2.5 Admins is a podcast featuring two sysadmins called Allan Jude and Jim Salter, and a producer/editor who can just about configure a Samba share called Joe Ressington. Every week we get together, talk about recent tech news, and answer some of your admin-related questions.

 

All

Progress

Duration

Release Date

#211

2.5 Admins 211: Open Sourceless

Another example of the downsides of abstraction, whether AI can ever be truly “open source”, and the security benefits and drawbacks of different types of VPN. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [Hackers infect ISPs with malware that steals customers’ credentials] (https://arstechnica.com/security/2024/08/hackers-infect-isps-with-malware-that-steals-customers-credentials/) [Debate over “open source AI” term brings new push to formalize definition] (https://arstechnica.com/information-technology/2024/08/debate-over-open-source-ai-term-brings-new-push-to-formalize-definition/) Free consulting We were asked about whether VPNs are a security measure. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

05 Sep 2024

30 MINS

30:20

05 Sep 2024

#210

2.5 Admins 210: Ryzen Up

AMD will patch some old Ryzens against SinkClose now, but their benchmarking methods for newer CPUs didn’t live up to everyday reality. Plus Bcachefs devs annoy Linus Torvalds, the US government sues a college over compliance issues, and Jim disappoints a patron. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [AMD’s Ryzen 3000 CPUs to get SinkClose patch after all] (https://www.theregister.com/2024/08/20/amd_sinkclose_ryzen_3000/) [AMD explains, promises partial fixes for Ryzen 9000 performance problems] (https://arstechnica.com/gadgets/2024/08/amd-explains-promises-partial-fixes-for-ryzen-9000-performance-problems/) [Linus Torvalds Begins Expressing Regrets Merging Bcachefs] (https://www.phoronix.com/news/Linus-Torvalds-Bcachefs-Regrets) [After cybersecurity lab wouldn’t use AV software, US accuses Georgia Tech of fraud] (https://arstechnica.com/security/2024/08/oh-your-cybersecurity-researchers-wont-use-antivirus-tools-heres-a-federal-lawsuit/) Free consulting We were asked about monitoring your network for new device connections. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

29 Aug 2024

30 MINS

30:34

29 Aug 2024

#209

2.5 Admins 209: Faulty Defaults

Insecure SSH implementations and a weak key that let a researcher control 200 MW of electrical capacity reignites the debate about versioned protocols vs pluggable protocols, follow-up on sharing files from your LAN with people on the Internet, and the pros and cons of encrypted backups. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [Researchers find insecure SSH implementations everywhere] (https://www.theregister.com/2024/08/07/vulnerable_ssh_implementations_are_everywhere/) [512-bit RSA key in home energy system gives control of “virtual power plant”] (https://arstechnica.com/security/2024/08/home-energy-system-gives-researcher-control-of-virtual-power-plant/) Feedback [Syncthing] (https://syncthing.net/) [Resilio] (https://www.resilio.com/) [Send] (https://send.vis.ee/) [OnionShare] (https://onionshare.org/) [Warp] (https://gitlab.gnome.org/World/warp) [Immich] (https://immich.app/) Free consulting We were asked about the pros and cons of encrypted backups. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

22 Aug 2024

30 MINS

30:25

22 Aug 2024

#208

2.5 Admins 208: All CPUs suck

Forcing Windows to undo updates and a separate IPv6 vulnerability, hardware bugs in AMD and Intel CPUs, and using Samba on Linux with Active Directory. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [Your victim’s Windows PC fully patched? Just force undo its updates and exploit away] (https://www.theregister.com/2024/08/08/microsoft_windows_updates/) [CVE-2024-38063 – Security Update Guide – Microsoft – Windows TCP/IP Remote Code Execution Vulnerability] (https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38063) [Almost unfixable “Sinkclose” bug affects hundreds of millions of AMD chips] (https://arstechnica.com/security/2024/08/almost-unfixable-sinkclose-bug-affects-hundreds-of-millions-of-amd-cpus/) [SMM LOCK BYPASS] (https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7014.html) [Intel’s crashing 13th and 14th Gen Raptor Lake CPUs: all the news and updates] (https://www.theverge.com/24216305/intel-13th-14th-gen-raptor-lake-cpu-crash-news-updates-patches-fixes-motherboards) Free Consulting We were asked about using Samba on Linux with Active Directory. map acl inherit = yes acl_xattr:ignore system acls = yes acl_xattr:default acl style = windows [Setting up a Share Using Windows ACLs] (https://wiki.samba.org/index.php/Setting_up_a_Share_Using_Windows_ACLs) Automox Check out the brand new [Autonomous IT podcast] (https://listen.automox.com/) . Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

15 Aug 2024

30 MINS

30:10

15 Aug 2024

#207

2.5 Admins 207: Insecure Boot

Secure boot is compromised on hundreds of devices, Amazon’s desperate attempt to make money from Alexa, and how to decide which open source software on GitHub to trust. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [Secure Boot is completely broken on 200+ models from 5 big device makers] (https://arstechnica.com/security/2024/07/secure-boot-is-completely-compromised-on-200-models-from-5-big-device-makers/) [old and related] (https://x.com/matrosov/status/1654560343295934464) [Amazon’s paid Alexa is coming to fill a $25 billion hole dug by Echo devices] (https://www.theverge.com/2024/7/23/24204260/amazon-25-billion-losses-echo-devices-alexa-subscription) [Alexa had “no profit timeline,” cost Amazon $25 billion in 4 years] (https://arstechnica.com/gadgets/2024/07/alexa-had-no-profit-timeline-cost-amazon-25-billion-in-4-years/) Free consulting We were asked about how to decide which open source software on GitHub to trust. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

08 Aug 2024

29 MINS

29:55

08 Aug 2024

#206

2.5 Admins 206: CrowdStruck

How and why the recent huge Windows outage was caused by a bad CrowdStrike update and how it could have been avoided, a hilariously dumb ESXi vulnerability, and using SAS drives with a PCIe card. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [A closer look at what caused the CrowdStrike Windows crashes] (https://www.theregister.com/2024/07/23/crowdstrike_failure_shows_need_for/) [Ransomware gangs are loving this dumb but deadly ESXi flaw] (https://www.theregister.com/2024/07/30/make_me_admin_esxi_flaw/) [Jake Williams on Twitter] (https://x.com/MalwareJake/status/1818020145844863230) Free Consulting We were asked about using SAS drives with a PCIe card. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

01 Aug 2024

30 MINS

30:36

01 Aug 2024

#205

2.5 Admins 205: Dogs Hate BTC

How a Bitcoin mine made life in a Texas town absolutely miserable, why paying for extended support for end of life Windows versions is just doubling down on technical debt, and the best way to manage router redundancy. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [Inside the ‘Nightmare’ Health Crisis of a Texas Bitcoin Town] (https://time.com/6982015/bitcoin-mining-texas-health/) [Enterprises urged to think carefully about Windows 10 extended support options] (https://www.computerworld.com/article/2513398/enterprises-urged-to-think-carefully-about-windows-10-extended-support-options.html) Free Consulting We were asked about managing router redundancy. 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

25 Jul 2024

30 MINS

30:24

25 Jul 2024

#204

2.5 Admins 204: Maybe Don’t 5

A widely-used login system is still using MD5 which is bad news, miscreants took over some domains when they moved from Google to Squarespace, Linksys’ sloppy app isn’t a huge problem but is a bad sign, and why backing up an Android phone in one go is pretty much impossible without root. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [New Blast-RADIUS attack breaks 30-year-old protocol used in networks everywhere] (https://arstechnica.com/security/2024/07/new-blast-radius-attack-breaks-30-year-old-protocol-used-in-networks-everywhere/) [Squarespace migration linked to DNS hijacking, claims report] (https://www.theregister.com/2024/07/15/squarespace_fingered_for_dns_hijackings/) [Linksys Velop routers send Wi-Fi passwords in plaintext to US servers] (https://stackdiary.com/linksys-velop-routers-send-wi-fi-passwords-in-plaintext-to-us-servers/) Free Consulting We were asked about backing up Android phones. Automox Check out the brand new [Autonomous IT podcast] (https://listen.automox.com/) . Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

18 Jul 2024

29 MINS

29:00

18 Jul 2024

#203

2.5 Admins 203: Yet more free consulting

We didn’t get to all of your questions for our Episode 200 free consulting special so here is another full episode of your questions and our answers. Our thoughts on a new UK smart devices law, backing up 30TB off-site, how to learn ZFS, SMB vs other ways to share files, and backing up secrets. [Smart devices: new law helps citizens to choose secure products] (https://www.ncsc.gov.uk/blog-post/smart-devices-law) [FreeBSD Mastery: ZFS] (https://mwl.io/nonfiction/os#fmzfs) [FreeBSD Mastery: Advanced ZFS] (https://mwl.io/nonfiction/os#fmaz) 1Password Extended Access Management: Secure every sign-in for every app on every device. Support the show and check it out at [1password.com/25a] (http://1password.com/25a) [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

11 Jul 2024

31 MINS

31:38

11 Jul 2024

#202

2.5 Admins 202: Microsoft’s Underwater Again

Why we didn’t mention pocket fluff when we talked about USB-C charging issues, Microsoft abandons its promising underwater data center experiment and didn’t monitor it’s SSL certs, why you should be careful which WordPress plugins and themes you install,an Australian ISP’s tech debt comes due, and remoting into desktop Linux. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News [Microsoft ends Project Natick underwater data center experiment despite success] (https://www.techspot.com/news/103514-microsoft-ends-project-natick-underwater-data-center-experiment.html) [Microsoft declares its underwater data center test was a success] (https://arstechnica.com/information-technology/2020/09/microsoft-declares-its-underwater-data-center-test-was-a-success/) [Shouting in the Datacenter] (https://www.youtube.com/watch?v=tDacjrSCeq4) [Backdoor slipped into multiple WordPress plugins in ongoing supply-chain attack] (https://arstechnica.com/security/2024/06/supply-chain-attack-on-wordpress-plugins-affects-as-many-as-36000-sites/) [Coding error in forgotten API blamed for massive data breach] (https://www.theregister.com/2024/06/21/optus_data_breach_faulty_api/) [Microsoft hits snooze again on security certificate renewal] (https://www.theregister.com/2024/06/28/microsoft_security_certificate_expires/) Free Consulting We were asked about remoting into desktop Linux. [NoMachine] (https://www.nomachine.com/) See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

04 Jul 2024

32 MINS

32:46

04 Jul 2024

#201

2.5 Admins 201: CVEs everywhere

Vulnerabilities in Asus hardware make us think there should be some regulations about what can be sold as a router, a VPN feature that we hadn’t heard of is removed from Windows, and why we don’t believe that Microsoft will ever take security as seriously as they claim. Plug [Support us on patreon and get an ad-free RSS feed with early episodes sometimes] (https://www.patreon.com/LateNightLinux) News/discussion [High-severity vulnerabilities affect a wide range of Asus router models] (https://arstechnica.com/security/2024/06/high-severity-vulnerabilities-affect-a-wide-range-of-asus-router-models/) [Dear Asus router user: You’ve been pwned, thanks to easily exploited flaw] (https://arstechnica.com/information-technology/2014/02/dear-asus-router-user-youve-been-pwned-thanks-to-easily-exploited-flaw/) [Microsoft to remove DirectAccess from Windows, recommends switching to Always On VPN] (https://www.neowin.net/news/microsoft-to-remove-directaccess-from-windows-recommends-switching-to-always-on-vpn/) [Microsoft fixes hack-me-via-Wi-Fi Windows security hole] (https://www.theregister.com/2024/06/12/june_patch_tuesday/) [CVE-2024-30078] (https://www.cve.org/CVERecord?id=CVE-2024-30078) [Microsoft in damage-control mode, says it will prioritize security over AI] (https://arstechnica.com/tech-policy/2024/06/microsoft-in-damage-control-mode-says-it-will-prioritize-security-over-ai/) [Pluralistic: Microsoft pinky swears that THIS TIME they’ll make security a priority] (https://pluralistic.net/2024/06/14/patch-tuesday/#fool-me-twice-we-dont-get-fooled-again) Tailscale Tailscale is an easy to deploy, zero-config, no-fuss VPN that allows you to build simple networks across complex infrastructure. Go to [tailscale.com/25a] (https://tailscale.com/25a) and try Tailscale out for free for up to 100 devices and 3 users, with no credit card required. Automox Check out the brand new [Autonomous IT podcast] (https://listen.automox.com/) . Listen in as a variety of experts in the IT Operations space discuss the latest Patch Tuesday releases, mitigation tips, and custom automations to help with CVE remediations. Listen now on Spotify, Apple, or wherever you get your podcasts. See our [contact page] (https://2.5admins.com/contact/) for ways to get in touch. ![image] (https://2.5admins.com/wp-content/uploads/2023/08/youtube-thumb-moon-300x169.png) ... Read more

27 Jun 2024

31 MINS

31:51

27 Jun 2024