security – Learn Linux TV

Enterprise Linux Security Episode 58 – Tales from the Red Team

2023-03-08

Tasks that penetration testers and security analysis perform in order to expose security weaknesses may seem like a mysterious and complicated art. Most of the time, these tasks are considered “secret sauce” and unless you work for a red team, you may not be aware of what it may look like while someone attempts to gain access from the outside. In this episode, Jay and Joao discuss a report released by CISA, that provides a very detailed account at what goes into this type of work. This report is definitely a must-read, and this episode is a must-listen!

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version

Relevant Articles

CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks
Ticket Granting Tickets (one of the strategies used by CISA)https://learnlinux.link/golden-ticket

Enterprise Linux Security Episode 57 – Record Breaking DDoS Attacks

2023-02-16

DDoS (Denial of Service) attacks are incredibly common, and apparently, are breaking records. In this episode, Jay and Joao discuss a recent blog post from Cloudflare regarding how popular this attack vector is becoming nowadays, as well as a quick refresher on Denial of Service attacks in general.

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version

Relevant Articles

Cloudflare mitigates record-breaking 71 million request-per-second DDoS attack

How to Set Up KernelCare Enterprise for Reboot-Free Live Patching

2023-02-082023-01-31

Live patching enables Linux server administrators to benefit from critical security fixes right now, with the flexibility of rebooting later. There are multiple services that facilitate live patching, and in this video Jay goes over how to set up KernelCare Enterprise for this very purpose. This tutorial will go over what KCE is, how to install it, check for patches, and more!

Thanks to TuxCare for sponsoring today’s video.

Check out KernelCare Enterprise here. You can find a list of patches that KCE has available here.

Enterprise Linux Security Episode 53 – Digital Twins

2023-02-082023-01-19

By using clever infrastructure engineering strategies to increase reliability, you can minimize disruption and downtime for your organization. Another technique to consider is the concept of Digital Twin – having a full system clone/mirror you can use to test enhancements, perform a root-cause analysis, or more. In this episode, Jay and Joao discuss Digital Twins and how the concept can potentially help your organization.

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version

Relevant Articles

Digital Twin (Wikipedia article)
More malicious packages posted to online repository. This time it’s PyPI

Enterprise Linux Security Episode 51 – Samba in the Kernel, What Could Possibly Go Wrong?!

2023-02-082023-01-05

Adding unnecessary components to the Kernel is generally a bad idea, as it increases its threat surface. In this episode, Jay and Joao discuss a recent story that’s a perfect example of why it’s important to keep this under control. A vulnerability was recently discovered in the Linux kernel that scored the highest possible rating, and it all started when ksmbd was added.

Download Links

MP3 version
MP3 version (smaller file, lower bitrate)
Ogg version