A podcast about the world of Cybersecurity, Privacy, Compliance, and Regulatory issues that arise in today's workplace. Co-hosts Bryan Brake, Brian Boettcher, and Amanda Berlin teach concepts that aspiring Information Security professionals need to know, or refresh the memories of seasoned veterans.
http://www.brakeingsecurity.com
2019-005: Security Researcher attack, disabling SPECTER, and Systemd discussion
SpecterOps Class: https://www.eventbrite.com/e/adversary-tactics-red-team-operations-training-course-boston-june-2019-tickets-54970050902
https://www.secjuice.com/security-researcher-assaulted-ice-atrient/
https://www.csoonline.com/article/3338112/security/vendor-allegedly-assaults-security-researcher-who-disclosed-massive-vulnerability.html
Tweet of application teardown: https://twitter.com/duniel_pls/status/1093565709630824448
https://www.zdnet.com/article/linux-kernel-gets-another-option-to-disable-spectre-mitigations/
https://liliputing.com/2019/02/mozillas-project-fission-brings-site-isolation-to-firefox-spectre-and-meltdown-protection.html
https://capsule8.com/blog/exploiting-systemd-journald-part-1/
Segue from systemd/journald into:
“Super daemon for all daemons”
Replaced things like sysvinit, rc.d, and even inetd
Lennart Poettering and Kay Sievers
Systemd (PID1)
Configured using only text files
.service
.device
.swap
.timer (.service file of the same time must exist)
‘Transient timers can be created’
https://wiki.archlinux.org/index.php/Systemd/Timers
/etc/systemd/system/foo.timer
[Unit]
Description=Run foo weekly and on boot
[Timer]
OnBootSec=15min
OnUnitActiveSec=1w
[Install]
WantedBy=timers.target
Logs are in binary format
Cgroups - control groups
Isolates resource usage (CPU, memory, disk I/O, network, etc) of processes
Bound by the same criteria
Used a lot of places (hadoop, k8s, docker, LXC)
http://without-systemd.org/wiki/index.php/Arguments_against_systemd
https://www.freedesktop.org/wiki/Software/systemd/TipsAndTricks/
https://lwn.net/SubscriberLink/777595/a71362cc65b1c271/
http://0pointer.de/blog/projects/systemd.html
https://en.wikipedia.org/wiki/Systemd
Check out our Store on Teepub! https://brakesec.com/store
Join us on our #Slack Channel! Send a request to @brakesec on Twitter or email bds.podcast@gmail.com
#Brakesec Store!:https://www.teepublic.com/user/bdspodcast
#Spotify: https://brakesec.com/spotifyBDS
#RSS: https://brakesec.com/BrakesecRSS
#Youtube Channel: http://www.youtube.com/c/BDSPodcast
#iTunes Store Link: https://brakesec.com/BDSiTunes
#Google Play Store: https://brakesec.com/BDS-GooglePlay
Our main site: https://brakesec.com/bdswebsite
#iHeartRadio App: https://brakesec.com/iHeartBrakesec
#SoundCloud: https://brakesec.com/SoundcloudBrakesec
Comments, Questions, Feedback: bds.podcast@gmail.com
Support Brakeing Down Security Podcast by using our #Paypal: https://brakesec.com/PaypalBDS OR our #Patreon
https://brakesec.com/BDSPatreon
#Twitter: @brakesec @boettcherpwned @bryanbrake @infosystir
#Player.FM : https://brakesec.com/BDS-PlayerFM
#Stitcher Network: https://brakesec.com/BrakeSecStitcher
#TuneIn Radio App: https://brakesec.com/TuneInBrakesec