You are here

Free Software

Topic for the Security meeting on June 20th

PLUG - Wed, 2019/06/12 - 11:05

Aaron Jones: Introduction To Assembly - Part II

Description:
Introduction To Assembly Language is the second half to my reverse engineering course. This is part two of a multi part educational series on lower level software development and reverse engineering. Many developers and security experts are not familiar with assembly language or the lower levels of their hardware. This course is intended to begin familiarizing you with assembly language in order to build the foundation for future courses on reverse engineering.

Biography:
Aaron, the owner of Retro64XYZ, is a software developer who currently creates applications for law enforcement. He is also an AZ POST certified public speaker. He earned a B.Sc., in Computer Information Systems from Park University in 2013 and an M.A., in Intelligence Analysis with a focus in Cyber Security in 2014. During that period of his life he took a double course load and completed his Masters with a 3.695 GPA in a year. He has been the recipient of recognition from the El Paso Police Department, State Of Texas, Texas Military Forces, Chandler Police Department, and others.

Aaron is also active in the community as the founder of the Phoenix Linux Users Group Cyber Security Meetup and regularly teaches members of the public a myriad of topics related to Cyber Security. His audience includes students, teachers, law enforcement, military, government officials, and concerned members of the public with a strong desire to learn what is going on in the world of technology.

When Aaron isn’t teaching, working, or spending time with his family, he enjoys relaxing at the pond with a fishing pole while not catching fish, operating a pistol at the shooting range, or reading books. He owns a Sega Saturn and a Sega Dreamcast and his favorite video games are Panzer Dragoon, Road Rash, Phantasy Star Online 2, and Power Stone. He is currently engrossed in building content for his site and looking for more ways to reach the public. You should reach Aaron through his Mastodon or on Keybase. He would love to hear from you, answer your questions, or find out about the projects you are involved with.

 

Topics for Jun 13th's meeting

PLUG - Wed, 2019/06/12 - 10:48
Bill Lindley: Control The World (or whatever you want) With Linux and a Raspberry Pi

Description:
We will see how a $35 Raspberry Pi (or even the $9 version), a breadboard and a bit of circuitry connected to the SPI and I2C buses can control pretty much anything: a thermostat; a "self driving" model car; or a clock-radio that also displays software build progress and your corporate network uptime status.

Biography:
Mr. Lindley has been in the computer industry since he sold his first program (a printer driver for Heathkit HDOS) in 1980. He has used system from the earliest 8-bit microprocessors, through the PDP-11 and VAX, up to IBM mainframes, and has managed to write programs that did not crash on most of them. Mr. Lindley has been a GNU/Linux user since 1992 and has been free of proprietary software since 2001. Most recently he has been pleased to be an adjunct professor at Mesa Community College.


Rajendran Rathinasabapathy: In the crossroads of Agility, Microservices and Cloud computing

Description:
Being a project manager for a while evolving along with the evolution in the IT landscape of agility, microservices and cloud computer, I see a pattern in the painful ordeal teams go through, especially when collaboration is needed more than ever to build systems. The topic is very relevant when highly individualistic opensource programmers work together. In this presentation, as the subject is vast, I layout a list of critical blind spots and pitfalls the teams can avoid while designing and developing larger applications.

Biography:
Working in IT for the past 20 years from being a developer to a portfolio manager. Currently involved in strategizing CI/CD for a sub-domain in info security. with varied tech stacks. I am a proponent of microservices and also a scrum master. In my free time, I learn to make digital an analogue circuits. I teach programming and robotics to kids and I am learning Jiu-Jitsu :-)

0x68: Molly De Blanc at CopyleftConf 2019

FAIF - Fri, 2019/05/31 - 04:26

Bradley and Karen enjoy and discuss Molly De Blanc's keynote at the first annual CopyleftConf, entitled The Margins of Software Freedom, followed by an exclusive interview with Molly!

Show Notes: Segment 0 (00:37)
Categories: Free Software

Security Meeting Topic for May 16th

PLUG - Tue, 2019/05/14 - 10:25
Anthony Kosednar: Know Your Tools: Nmap

Description:
Nmap is a classic tool to discover hosts and services on a network. It is an essential tool that many Linux professionals have touch at one point. Yet, how many have they truly ever unlocked its full potential?

Whether you are a new or advanced user, join us as explore the typical Nmap use cases and dive into the versatile functionality that you may never have known existed.

About Anthony:
Anthony Kosednar is a multi-disciplined technology leader with a deep understanding in delivering cyber security and technology solutions. He works in the industry as a security engineer for enterprises. He holds a GIAC Exploit Research and Advance Penetration certificate (GXPN) as well as several certificates in Cyber Security for Industrial Control Systems from DHS.

0x67: Analysis of Two Backports of GPLv3 Termination Provisions to GPLv2

FAIF - Sat, 2019/05/11 - 12:49

Bradley and Karen discuss two additional permissions that can be used to “backport” the GPLv3 Termination provisions to GPLv2 — the Kernel Enforcement Statement Additional Permission, and the Red Hat Cooperation Commitment. A blog post on Conservancy's site summarizes the discussion on this show.

Show Notes: Segment 0 (00:35) Segment 1 (13:04) Segment 2 (26:10)
  • Karen and Bradley discuss the term “non-defensive” and what it means.
  • Bradley mentioned the Twin Peaks lawsuit as a non-hypothetical case where the RHCC would not apply where GPL enforcement was used by Red Hat itself as a retaliation tactic. (29:23)
  • The Kernel Enforcement Statement and the RHCC are available online.
Segment 3 (38:40)

The next episode of will be an interview with Molly De Blanc and recording of her keynote at CopyleftConf 2019

Send feedback and comments on the cast to <oggcast@faif.us>. You can keep in touch with Free as in Freedom on our IRC channel, #faif on irc.freenode.net, and by following Conservancy on on Twitter and and FaiF on Twitter.

Free as in Freedom is produced by Dan Lynch of danlynch.org. Theme music written and performed by Mike Tarantino with Charlie Paxson on drums.

The content of this audcast, and the accompanying show notes and music are licensed under the Creative Commons Attribution-Share-Alike 4.0 license (CC BY-SA 4.0).

Categories: Free Software

May 9th's meeting brings Intro to Crypto part 3

PLUG - Tue, 2019/04/30 - 09:43
This month we will get Anthony Kosednar's third installment of his Intro to Cryptography series, "Intro to Cryptography - Quantum & Post-Quantum Crypto"

Description:
Cryptography is at the heart of modern day privacy and security. We use it every day from sending an email to making important financial transactions.

With the advent of Quantum computing and the abilities it has brought, our security landscape has changed. Previously secure methods are becoming obsolete. Come learn about Qubits, Shor's Algorithm, and ways to keep information secure in a post-quantum world.

Before attending, it is recommended you watch the two previous talks in this series to have a better baseline.

Part 1: Intro to Cryptography - Crypto Basics
Part 2: Intro to Cryptography - Modern Crypto
About Anthony:
Anthony Kosednar is a multi-disciplined technology leader with a deep understanding in delivering cyber security and technology solutions. He works in the industry as a security engineer for enterprises. He holds a GIAC Exploit Research and Advance Penetration certificate (GXPN) as well as several certificates in Cybersecurity for Industrial Control Systems from DHS.

0x66: The End of Hellwig vs. VMware

FAIF - Mon, 2019/04/22 - 14:41

Bradley and Karen discuss the details of the completion of the lawsuit (which Conservancy supported) between Christoph Hellwig and VMware in Germany.

Show Notes: Segment 0 (00:37) Segment 1 (09:26) Segment 2 (33:01)
  • In the next episode, Karen will discuss the Kernel Enforcement Statement Additional Permission, and the Red Hat “Cooperation Commitment”. (35:40)
  • Send feedback and comments on the cast to <oggcast@faif.us>. You can keep in touch with Free as in Freedom on our IRC channel, #faif on irc.freenode.net, and by following Conservancy on on Twitter and and FaiF on Twitter.

    Free as in Freedom is produced by Dan Lynch of danlynch.org. Theme music written and performed by Mike Tarantino with Charlie Paxson on drums.

    The content of this audcast, and the accompanying show notes and music are licensed under the Creative Commons Attribution-Share-Alike 4.0 license (CC BY-SA 4.0).

    Categories: Free Software

    PLUG Security Meeting 18th - Piratebox and active shooter situations

    PLUG - Thu, 2019/04/11 - 08:56
    This month Aaron Jones has a number of topic he will be covering at the PLUG Security meeting.

    Part 1: In light of recent events occurring in New Zealand we will discuss active shooter situations, terrorism, and physical security. We will cover the OODA Loop, mental toughness, and steps you can take to prepare for emergency situations. Topics will include threat avoidance, the Marine Corp Combat Hunter Program concept of 'Left Of Bang', and basic combat life saver tools and techniques.   Part 2: PirateBox is a DIY anonymous offline file sharing device that you can create at home. The PirateBox is a simple method to get started with mesh networking and is an exciting way to provide decentralized communication in your local area. We will discuss how PirateBox and similar projects can improve your ability to communicate in a grid down situation, assist with file sharing at parties or events, and even work as a fun image board.

    About Aaron:
    Aaron is an experienced Linux user with several years of teaching experience. He works in the industry as a software developer while also providing consultancy on cyber security related topics. His discussions are AZ Post certified for training credit for law enforcement and he prides himself on providing quality educational material that is relevant and topical. He has a Masters Degree in Intelligence Analysis with a focus in Cyber Security, is a life long learner, and prides himself on staying up to date with the ever changing field of cyber security.

    Installfest on April 6th is Cancelled

    PLUG - Thu, 2019/04/04 - 09:54
    The location is not available for this Saturday's Installfest so we've regrettably needed to cancel this particular meeting. We hope to see you at the next one though.

    Meeting Topics for April 11th - Robots and Relics

    PLUG - Thu, 2019/04/04 - 09:10
    We've got Robots and Relics for this months meeting.   William Lindley will give us a history of computers with various items of historical significance that he's acquired over time and then Scott and Wendy Rose will introduce us to SUNI the robot.

    William Lindley: 75 Years of Computing in 60 Minutes


    Description:
    The roots of modern digital computing go back nearly two hundred years, and through a series of pass-around artifacts from the past century, we will explore how the pioneers of the field and their groundbreaking decisions and technologies have led us -- for better or worse -- to today's Internet-enabled world.

    About William:
    Mr. Lindley has been in the computer industry since he sold his first program (a printer driver for Heathkit HDOS) in 1980. He has used system from the earliest 8-bit microprocessors, through the PDP-11 and VAX, up to IBM mainframes, and has managed to write programs that did not crash on most of them. Mr. Lindley has been a GNU/Linux user since 1992 and has been free of proprietary software since 2001. Most recently he has been pleased to be an adjunct professor at Mesa Community College.


    Scott & Wendy Rose: SUNI the Robot presents STEM in America open source addition

    Description:
    Team Suni will discuss the future of Robotics through Stem in America and the future jobs it will create. Discussion will center around Suni's open-source programming using Linux Ubuntu OS and Robot Operating System.

    Biography:
    SUNI the robot is cutting-edge robotic technology from across planet internet, creating a truly unique educational experience. And the creative ideas that power SUNI’s adventures to AI are a worldwide collaboration.Team SUNI knows how to creatively inspire and we built SUNI the Robot to prove it.

    STEM drives our world, our economy, our lives. It builds brighter futures for the 100% of us. STEM is all around us, every minute, of every hour, of every day. We’ve captured the magic of STEM within a robot as an instrument of inspiration, learning, and wonderment. Winning thousands of hearts and minds along the way. And SUNI’s adventures continue…

    0x65: Linux Foundation's Community Bridge

    FAIF - Tue, 2019/04/02 - 05:21

    Bradley and Karen discuss and critique the new initiative by the Linux Foundation called CommunityBridge. The podcast includes various analysis that expands upon their blog post about Linux Foundation's CommunityBridge.

    Show Notes: Segment 0 (00:36)
    • Conservancy helped Free Software Foundation and GNOME Foundation begin fiscal sponsorship work. (07:50)
    • Conservancy has always been very coordinated with Software in the Public Interest, which is a FOSS fiscal sponsor that predates Conservancy. (08:26)
    • Conservancy helped NumFocus get started as a fiscal sponsor by providing advice. (08:53)
    • The above are all 501(c)(3) charities, but there are also 501(c)(6) fiscal sponsors, such as Linux Foundation and Eclipse Foundation. (10:00)
    • Bradley mentioned that projects that are forks can end up in different fiscal sponsors, such as Hudson being in Eclipse Foundation, and Jenkins being associated with a Linux Foundation sub-org. (10:30)
    • Bradley mentioned that any project — be it SourceForge, GitHub, or Community Bridge — that attempts to convince FOSS developers to use proprietary software for their projects is immediately suspect (12:00)
    • Open Collective, a for-profit company seeking to do fiscal sponsorship (but attempting to release their code for it) is likely under the worst “competitive” threat from this initiative. (19:50)
    Segment 1 (21:23) Segment 2 (36:54)
    • Karen mentioned that CommunityBridge also purports to address diversity and security issues for FOSS projects. (37:00)
    • Bradley mentioned the code hosted on k.sfconservancy.org and also the Reimbursenator project that PSU students wrote. (42:00)
    Segment 3 (42:44)

    Bradley and Karen discuss (or, possibly don't) discuss what's coming up on the next episode. Fact of the matter is that this announcement wasn't written yet when we recorded this episode and we weren't sure if 0x65 would be released before or after that announcement was released. We'll be discussing that topic on 0x66.

    Send feedback and comments on the cast to <oggcast@faif.us>. You can keep in touch with Free as in Freedom on our IRC channel, #faif on irc.freenode.net, and by following Conservancy on identi.ca and and Twitter.

    Free as in Freedom is produced by Dan Lynch of danlynch.org. Theme music written and performed by Mike Tarantino with Charlie Paxson on drums.

    The content of this audcast, and the accompanying show notes and music are licensed under the Creative Commons Attribution-Share-Alike 4.0 license (CC BY-SA 4.0).

    Categories: Free Software

    0x64: Our Producer Dan Lynch Interviewed at Copyleft Conf 2019

    FAIF - Wed, 2019/03/27 - 11:19

    Bradley and Karen interview their own producer, Dan Lynch, on site at Copyleft Conf 2019.

    Show Notes: Segment 0 (00:46) Segment 1 (5:19) Segment 2 (28:23)

    Bradley and Karen briefly dissect the interview with Dan.

    Segment 3 (32:22)

    Karen and Bradley mention that they'll discuss the Linux Foundation initiative, “Community Bridge” in the next episode. If you want a preview Bradley and Karen's thoughts, you can read their blog post about Linux Foundation's “Community Bridge” initiative.

    Send feedback and comments on the cast to <oggcast@faif.us>. You can keep in touch with Free as in Freedom on our IRC channel, #faif on irc.freenode.net, and by following Conservancy on identi.ca and and Twitter.

    Free as in Freedom is produced by Dan Lynch of danlynch.org. Theme music written and performed by Mike Tarantino with Charlie Paxson on drums.

    The content of this audcast, and the accompanying show notes and music are licensed under the Creative Commons Attribution-Share-Alike 4.0 license (CC BY-SA 4.0).

    Categories: Free Software

    0x63: Can Anyone Live in Full Software Freedom Today? (Part IV)

    FAIF - Wed, 2019/03/20 - 14:39

    In their final installment regarding their joint keynote at FOSDEM 2019, entitled: Can Anyone Live in Full Software Freedom Today?: Confessions of Activists Who Try But Fail to Avoid Proprietary Software, you listeners can hear the final product — a recording of the actual FOSDEM keynote. Afterwards, Karen and Bradley compare notes on what went wrong and what went right (but mostly what went wrong) during the talk.

    Show Notes: Segment 0 (00:00:35)

    Bradley and Karen talk logistics of how the talk is embedded in the audio.

    Segment 1 (00:04:14)

    The audio in this segment taken directly from the video of Karen and Bradley's FOSDEM 2019 opening keynote, entitled Can Anyone Live in Full Software Freedom Today? Confessions of Activists Who Try But Fail to Avoid Proprietary Software, which was given . If you'd rather watch the video, you can do so via FSODEM's video site in either webm format or in mp4 format.

    Segment 2 (00:46:01) Segment 3 (01:05:31)

    Karen and Bradley mention that the next episode will be an interview with Dan Lynch recorded at CopyleftConf 2019.

    Send feedback and comments on the cast to <oggcast@faif.us>. You can keep in touch with Free as in Freedom on our IRC channel, #faif on irc.freenode.net, and by following Conservancy on identi.ca and and Twitter.

    Free as in Freedom is produced by Dan Lynch of danlynch.org. Theme music written and performed by Mike Tarantino with Charlie Paxson on drums.

    The content of this audcast, and the accompanying show notes and music are licensed under the Creative Commons Attribution-Share-Alike 4.0 license (CC BY-SA 4.0).

    Categories: Free Software

    Security Topic for 3/21

    PLUG - Tue, 2019/03/19 - 18:24
    Aaron Jones: Rehash - Shodan

    Description:
    Due to the fact Aaron will be presenting his Shodan talk to the Fed, he will be presenting it again at SPLUG for practice.

    Introduction To Shodan is a two-hour course designed to provide an overview of the search engine for finding devices connected to the internet. Shodan is a security researcher tool that works by scanning the entire internet, locating and parsing banners, and then returning this information to the user. Shodan is an excellent tool to familiarize yourself with if you do not have the infrastructure or tools necessary to run masscan yourself. Shodan is useful in the target selection phase of an operation.

    About Aaron:
    Aaron, the owner of Retro64XYZ, is a software developer who currently creates applications for law enforcement. He is also an AZ POST certified public speaker. He earned a B.Sc., in Computer Information Systems from Park University in 2013 and an M.A., in Intelligence Analysis with a focus in Cyber Security in 2014. During that period of his life he took a double course load and completed his Masters with a 3.695 GPA in a year. He has been the recipient of recognition from the El Paso Police Department, State Of Texas, Texas Military Forces, Chandler Police Department, and others.

    Aaron is also active in the community as the founder of the Phoenix Linux Users Group Cyber Security Meetup and regularly teaches members of the public a myriad of topics related to Cyber Security. His audience includes students, teachers, law enforcement, military, government officials, and concerned members of the public with a strong desire to learn what is going on in the world of technology.

    When Aaron isn’t teaching, working, or spending time with his family, he enjoys relaxing at the pond with a fishing pole while not catching fish, operating a pistol at the shooting range, or reading books. He owns a Sega Saturn and a Sega Dreamcast and his favorite video games are Panzer Dragoon, Road Rash, Phantasy Star Online 2, and Power Stone. He is currently engrossed in building content for his site and looking for more ways to reach the public. You should reach Aaron through his Mastodon or on Keybase. He would love to hear from you, answer your questions, or find out about the projects you are involved with.

    0x62: Can Anyone Live in Full Software Freedom Today? (Part III)

    FAIF - Tue, 2019/03/12 - 11:56

    Bradley and Karen have the last pre-talk installment of discussing the preparation for their joint keynote at FOSDEM 2019, entitled: Can Anyone Live in Full Software Freedom Today?: Confessions of Activists Who Try But Fail to Avoid Proprietary Software. This episode is the third of three episodes where Bradley and Karen record their preparation conversations for this keynote address. In this particular episode, they discuss the issue of letting others use proprietary software on your behalf, the problem of relying too much on that, and then finish up discussing with how they'll include this material into the final talk.

    Show Notes: Segment 0 (00:34)
    • Karen discussed the idea of a shabbos goy, and the analogy between that and allowing other people use proprietary on your behalf. (02:58)
    • Bradley and Karen discussed that it is equally abhorrent to ask someone else to use proprietary software for you as it is to use yourself, since someone's software freedom is compromised in any event (06:58)
    • Bradley mentioned that he had previously applied to serve on the USA's Internal Revenue Service (IRS)'s Electronic Tax Administration Advisory Committee (ETAAC). Bradley mentioned how sadly the IRS typically accepts people from proprietary software companies like Intuit but has to his knowledge never accepted anyone involved in FOSS software for IRS form preparation (10:02)
    • Bradley mentioned the Free Software PDF fill-in tools evince and flpsed (12:24)
    • Karen stated that Conservancy's policy is that: We care so much about software freedom that we would rather use proprietary software than have someone else lose their software freedom. (15:20)
    • Karen mentioned that her Linux Conf Australia 2019, Right to Not Broadcast, which you can view online. (22:18)
    Segment 1 (23:15)

    Send feedback and comments on the cast to <oggcast@faif.us>. You can keep in touch with Free as in Freedom on our IRC channel, #faif on irc.freenode.net, and by following Conservancy on identi.ca and and Twitter.

    Free as in Freedom is produced by Dan Lynch of danlynch.org. Theme music written and performed by Mike Tarantino with Charlie Paxson on drums.

    The content of this audcast, and the accompanying show notes and music are licensed under the Creative Commons Attribution-Share-Alike 4.0 license (CC BY-SA 4.0).

    Categories: Free Software

    March 14th Meeting topic

    PLUG - Mon, 2019/03/11 - 04:46
    For our March meeting William Lindley will present to us "75 Years of Computing in 60 Minutes"

    William Lindley: 75 Years of Computing in 60 Minutes
    The roots of modern digital computing go back nearly two hundred years, and through a series of pass-around artifacts from the past century, we will explore how the pioneers of the field and their groundbreaking decisions and technologies have led us -- for better or worse -- to today's Internet-enabled world.

    About William
    Mr. Lindley has been in the computer industry since he sold his first program (a printer driver for Heathkit HDOS) in 1980. He has used system from the earliest 8-bit microprocessors, through the PDP-11 and VAX, up to IBM mainframes, and has managed to write programs that did not crash on most of them. Mr. Lindley has been a GNU/Linux user since 1992 and has been free of proprietary software since 2001. Most recently he has been pleased to be an adjunct professor at Mesa Community College.
    Subscribe to LuftHans aggregator - Free Software