After decades of suffering through ipchains/iptables syntax, and seeing how easy fw and ufw made common firewall workflows, it's disappointing that the best Debian's iptables replacement can do is:
nft add rule inet filter input tcp dport 22 accept
When syntax for common workflows is complicated, you increase the chance the admin will make a mistake that exposes them to attackers. See S3 bucket permissions for more examples of this. #infosec #devops
I can't speak for the rest of the @linuxjournal archive, but I own the decade+ worth of articles I wrote. A lot of them are just as relevant today (I refer to them myself quite often). Would anyone be interested in some kind of "Best of Hack and /" polished and updated compilation?
The Register covered my article announcing @linuxjournal closing and included a number of quotes from my first goodbye that add extra context. https://www.theregister.co.uk/AMP/2019/08/08/linux_journal_closes_again_editor_says_os_buried_under_proprietary_software/
A "verification" system tying each battery to a specific phone is a huge blow to your ability to repair your own devices. https://www.vice.com/en_us/article/59nz3k/apple-is-locking-batteries-to-specific-iphones-a-nightmare-for-diy-repair
@kyle For me, I want to thank you for the past year of Linux Journal, which I only rediscovered last September. Best wishes to you and the rest. And good luck with the Librem 5. I hope for its success.
Well, this sucks. Linux Journal is no more (again).
Hopefully the website stays around as it has some really good content.
Sorry to see it go. All the best to @kyle and crew.
I'm so sorry to say it, but today @linuxjournal closed down for good. As you can imagine we are all so sad that this is the end. You can read my final goodbye here:
https://www.linuxjournal.com/content/linux-journal-ceases-publication-awkward-goodbye
I had accepted that machines will take over many jobs in the coming decades but tasting whisky? That's the last straw. https://arstechnica.com/science/2019/08/is-that-rare-whiskey-bottle-the-real-deal-this-artificial-tongue-can-make-the-call/
Purism CTO, Nicole Faerber, nominated for “CTO of the Year” by Women in IT Awards.
https://puri.sm/posts/nicole-faerber-nominated-for-cto-of-the-year-by-women-in-it-awards/
The lengths some will go to escape vendor lock-in: Two men bribed AT&T employees over $1 million to install malware that unlocked iPhones. https://www.zdnet.com/article/at-t-employees-took-bribes-to-plant-malware-on-the-companys-network/
My #FOSS roots must run deep, because I just bought a corded jigsaw to avoid the vendor lock-in from the incompatible lithium ion battery systems in modern power tools.
The quid pro quo between Ring (gets police 911 data) and the police (gets access to Ring customer devices) is more troubling then either arrangement by itself. #privacy https://gizmodo.com/cops-are-giving-amazons-ring-your-real-time-911-data-1836883867
It's not too late for bug bounty companies to source practical grasshopper-plague-related swag. Swatters, bug spray, mesh netting: #infosec #plagueoflocusts #defcon #blackhat https://www.nytimes.com/2019/07/27/us/grasshoppers-vegas.html
Paige should have watched Hackers. You don't hack a bank across state lines from your house, you'll get nailed by the FBI. Posting evidence on your personal Github is universally stupid. https://www.engadget.com/2019/07/29/capital-one-data-breach/
The whistleblower said: “There have been countless instances of recordings featuring private discussions between doctors and patients, business deals, seemingly criminal dealings, sexual encounters and so on. These recordings are accompanied by user data showing location, contact details, and app data.” #privacy https://www.theguardian.com/technology/2019/jul/26/apple-contractors-regularly-hear-confidential-details-on-siri-recordings
SysAdmin 101
A collection of #sysadmin articles by @kyle.
This ebook is #free to download. No email or anything required. Enjoy! https://www.linuxjournal.com/node/1340386
#SysAdminDay #sysadminday2019
Technical author, FOSS advocate, public speaker, Linux security & infrastructure geek, author of The Best of Hack and /: Linux Admin Crash Course, Linux Hardening in Hostile Networks and many other books, ex-Linux Journal columnist.