Network Security Podcast

Wed, 29 October 2008

I had to run out the door immediately after recording, but despite technical difficulties, Rich and I recorded a short interview with David Mortman, 'blogger-in-residence' for Debix.

Network Security Podcast, Episode 125, October 28, 2008

Show Notes

Direct download: nsp-102808-ep125.mp3
Category:podcasts -- posted at: 12:14 PM

Wed, 22 October 2008

Network Security Podcast, Episode 124

Want to talk about electronic voting? We did. So we invited Jacob West from Fortify to talk with us about a paper he just published with a couple of engineers at Fortify. Guess what, they found electronic voting using DRE voting machines are the least secure way to vote. Makes me feel good going into the election. It's a good thing we're fairly self-policing when it comes to time, this is a conversation that could have gone on for a couple of hours.

We had a number of technical issues tonight, so be glad we've got a podcast up at all.

Network Security Podcast, Episode 124, October 21, 2008

Show Notes:

Dear Mr. President: Let's talk tech - We desparately need a geek in the Cabinet!
Miley Cyrus Hacker Raided by FBI - Don't brag to the press when you're already in the cross-hairs!
Flash Suckage: Eat your cookies - Now you can be tracked through Flash too.
VeriSign and ICANN square off over the DNS root - Let's just give it to Dan K. and let him manage it.
Judge Suppresses Report on Voting Machine Security - Which brings us to why we're really here
Fortify's paper on e-voting

Direct download: nsp-102108-ep124.mp3
Category:podcasts -- posted at: 1:52 AM

Wed, 8 October 2008

Network Security Podcast, Episode 123

Wow- this episode number is the same as the combination on my luggage. What a strange coincidence!

For the first time in a while it is just Martin and myself, which likely explains why we went over 30 minutes. We even had about 7 live listeners tonight, out of our regular audience of 2000 or so per episode. I kind of like knowing there are real people out there and Martin and I are exploring how to make it a better experience in the future. We talked about a lot tonight, ranging from the tragedy of electronic voting to the just-released clickjacking details.

As a reminder, keep an eye on our Twitter feed for our recording times if you want to listen live- usually Monday or Tuesday evenings.

Network Security Podcast, Episode 123, October 7, 2008

Show Notes:

China snooping on Skype text chats.
Judge puts a gag order on electronic voting machine vulnerability disclosure. Yeah, like that ever works.
Forever21 had scads of credit card date laying around, in violation of PCI (despite being certified).
NSA release an example application developed with secure coding practices.
Rsnake reveals clickjacking details after they are independently discovered.

Direct download: nsp-100708-ep123.mp3
Category:podcasts -- posted at: 2:18 AM

Wed, 1 October 2008

Network Security Podcast, Episode 122

I have to say, this is definitely one of our better episodes. We’re joined this week by Robert “Rsnake” Hansen of SecTheory and Jeremiah Grossman of WhiteHat Security as they discuss their new clickjacking exploit. Robert and Jeremiah kind of stumbled onto a serious browser issue, the details of which started leaking before they really knew what they had. They responsibly decided to hold back the details as some of the worst parts of this are fixed, but were able to share some generalities, the story of how this all happened, and what you can expect when the details are finally exposed.

Before delving into clickjacking, we also spend some time on electronic voting and the top 10 ways to tell if you’ve been exploited (number 11 is if you’ve ever visited ha.ckers.org). Jeremiah and Robert are good friends, so there’s plenty of us having fun at each others expense.

Network Security Podcast, Episode 122. September 30, 2008

Show Notes:

Open Source Electronic Voting
Top 10 ways to know you’ve been exploited.
Clickjacking, clickjacking, and more clickjacking.
Tonight’s music: The Hollyfelds, Stars at Night

Direct download: nsp-093008-ep122.mp3
Category:podcasts -- posted at: 1:27 AM

Network Security Podcast

Please visit my blog at www.mckeay.net

Syndication

Categories

Archives

Search This Site