Really not feeling great this morning, but I was able to get back up to the room to watch.
First one was about tracking Kubernetes. I’ve not done anything, really, with Kubernetes, so this is kind new for me.
Lots of discussion about thing with /dev/bpf in Linux. I didn’t realize that it was still there?
Transitioned in to discussion of risk analysis and prioritization. Too much effort is being spent
This is very applicable to some of what I’m doing for work, but it’s something a lot of the sekurity mastars don’t understand. I’m thinking of one IAC I was working. Yes, it’s a Medium vulnerability. Yes, that finding negatively-affects the overall system score.
But I’m pretty sure the number of users with privileges to exploit it can be counted on one hand, and implementing the system change would take weeks, and, use all system resources during the implementation.
Next talk was about how exploitation works. Some interesting information about how to exploit things like Totes-Didn’t-Used-To-Do-Evil KDE Browser extensions.
“John The Ripper” can crack things like the Apple Passwords utility, which is actually pretty good unless you get the Apple account password.
PowerShell script available for testing Windows hosts for common accounts.
Recommendation of auditing accounts that might cause a problem if they’re compromised.
Went into this one with great skepticism.
There was a talk, and it probably would have been like 2018, that really focused on Russian influence in the 2016 election.
This isn’t taking that tack. The speaker didn’t do a good job disguising his political bias, unfortunately.
Nothing with the sort of things that I think might repair the Presidential system, at least.
- Expand the House. Take a state’s population, divide by the smallest state’s population, and round UP to the next whole number. The 435 limit in the House isn’t set anywhere other than by legislation from the Wilson administration.
- Do electoral vote allocation the way Maine and Nebraska does. Winner-take-all goes away, unless a candidate actually gets a majority of the vote in a state.
- Repeal the Seventeenth Amendment
Bits on foreign interference. No evidence of it actually provided, just as it wasn’t with the 2016 election. When a Republican wins, it’s foreign interference. When a Democrat wins, you can’t even question it.
In the Presidential elections where I’ve been old enough to vote, I’ve mostly voted for the Libertarian candidate.
Not impressed with that one.
Time to rest a bit, see if my body will allow me to go back downstairs to watch more in person. Ugh.