Latest Opensource Podcast Episodes
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 438 - CISA's bad OSS advice vs the Whitehouse good advice
Open Source Security Podcast - July 22, 2024 00:00 - 34 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about two documents from the US government that discuss open source in very different ways. The CISA document lays out a way to measure open source, but we take issue with the idea of trying to measure which open source projects are "good". The Whitehouse on the other hand tak...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 437 - CocoPods and proper funding for open source
Open Source Security Podcast - July 15, 2024 00:00 - 36 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about a pretty big bug found in CocoPods ownership. We also touch on a paper that discusses the technical debt that open source should have. We discuss what the long term sustainability of open source. There aren't any good solutions for open source today, but talking about th...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 436 - OpenSSH and node-ip - it's all exponential growth
Open Source Security Podcast - July 08, 2024 00:00 - 32 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about the recent OpenSSH vulnerability and the node-ip project owner taking their project private. They're quasi related in the context of two open source projects handled bugs very differently. The OpenSSH bug isn't really as serious as it seems, but you still want to patch. ...
![Duke's Corner artwork](https://is1-ssl.mzstatic.com/image/thumb/Podcasts115/v4/2e/e9/cd/2ee9cd91-17e1-ac04-0a61-1bf60c590cae/mza_17195370831311543587.png/100x100bb.jpg)
Simon Martinelli: Trains, Code, Community, and Teaching!
Duke's Corner - July 04, 2024 17:36 - 47 minutesJim Grisanzio from Java Developer Relations talks with Simon Martinelli, a Java Champion and an Oracle ACE Pro from Switzerland who loves contributing to FOSS projects and teaching students all about Java. The conversation ranges from Simon’s early experience learning Java, working for the Swiss...
![Legacy Code Rocks artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/69/8f/f7/698ff7be-d89c-beb0-dbe5-1f293e0403c0/mza_6219236284633300501.jpg/100x100bb.jpg)
Modernizing Code with Edward Hieatt
Legacy Code Rocks - July 03, 2024 16:01 - 48 minutes ★★★★★ - 14 ratingsMending code while it is running is risky. One wrong move and a small change can bring the entire system to a halt. Today we talk with Edward Hieatt, Chief Customer Officer at Mechanical Orchard, a GenAI native company that modernizes critical legacy applications without disrupting what they ...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 435 - polyfill.io - open source is too big to fix
Open Source Security Podcast - July 01, 2024 00:00 - 38 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about the latest polyfill.io mess. Apparently someone took over a very popular project and started to serve malware. First XZ, now this. What does it mean for open source? We don't have any answers, and it's hard to even talk about this problem because it's so big. The thing i...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 434 - Unreported vulnerabilities and everyone is getting hacked
Open Source Security Podcast - June 24, 2024 00:00 - 31 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about three wangles of responsibility. We start with a story about a bike theft ring, bike theft doesn't usually get any attention, but this one is special. Then we ask why it seems like everyone is getting hacked, it's because they have to tell us now. And finally we have a s...
![Duke's Corner artwork](https://is1-ssl.mzstatic.com/image/thumb/Podcasts115/v4/2e/e9/cd/2ee9cd91-17e1-ac04-0a61-1bf60c590cae/mza_17195370831311543587.png/100x100bb.jpg)
Praveen Mohan: Quality in Java and the Community
Duke's Corner - June 20, 2024 05:54 - 25 minutesJim Grisanzio from Java Developer Relations talks with Praveen Mohan, Director of Java Quality and Infrastructure at the Oracle India Development Center in Bangalore, which is part of the Java Platform Group. The conversation covers the technical details of the quality engineering operation in B...
![Legacy Code Rocks artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/69/8f/f7/698ff7be-d89c-beb0-dbe5-1f293e0403c0/mza_6219236284633300501.jpg/100x100bb.jpg)
Mending Code with AI with Ray Myers
Legacy Code Rocks - June 17, 2024 14:45 - 58 minutes ★★★★★ - 14 ratingsAI proves to be great at writing new code, but what are its capabilities when it comes to mending the old one? Today we talk with Ray Myers, a legacy code expert and sceptical enthusiast for AI. With 16 years of software engineering experience, he focuses on collective lessons learned to impro...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 433 - Should OpenSSH block misbehaving clients?
Open Source Security Podcast - June 17, 2024 00:00 - 31 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about a new proposal from OpenSSH to add a timeout to penalize clients misbehaving. But this then brings up the typical security conversation of "if it's not perfect we shouldn't do it". Trying new things is a good thing, even if something fails, we learn a lesson that we can ...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 432 - Flipper Zero with Alex Kulagin
Open Source Security Podcast - June 10, 2024 00:00 - 33 minutes ★★★★★ - 39 ratingsJosh and Kurt talk to Alex Kulagin from Flipper about the Flipper Zero. It's one of the coolest hacker devices that exists on the market. We talk about what it is, how it started, what it can (and can't) do. It's a really fun conversation. Show Notes Flipper Zero Website Headphone jack radi...
![Legacy Code Rocks artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/69/8f/f7/698ff7be-d89c-beb0-dbe5-1f293e0403c0/mza_6219236284633300501.jpg/100x100bb.jpg)
Quality-Check of External Dependencies with Feross Aboukhadijeh
Legacy Code Rocks - June 05, 2024 19:54 - 45 minutes ★★★★★ - 14 ratingsMany of the largest companies rely on third-party code to run critical parts of their software. However, there's often little focus on ensuring the quality of these external dependencies. Today we speak with Feross Aboukhadijeh, CEO and founder of Socket, a developer-first security platform. S...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 431 - Redirecting HTTP to HTTPS
Open Source Security Podcast - June 03, 2024 00:00 - 32 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about a blog post titled "Your API Shouldn't Redirect HTTP to HTTPS". It's an interesting idea, and probably a good one. There is however a lot of baggage in this space as you'll hear in the discussion. There's no a simple solution, but this is certainly something to discuss. ...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 430 - Frozen kernel security
Open Source Security Podcast - May 27, 2024 00:00 - 34 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about a blog post about frozen kernels being more secure. We cover some of the history and how a frozen kernel works and discuss why they would be less secure. A frozen kernel is from when things worked very differently. What sort of changes will we see in the future? Show N...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 429 - The autonomy of open source developers
Open Source Security Podcast - May 20, 2024 00:00 - 32 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about open source and autonomy. This is even related to some recent return to office news. The conversation weaves between a few threads, but fundamentally there's some questions about why do people do what they do, especially in the world of open source. This also is a proble...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 428 - GitHub artifact attestation
Open Source Security Podcast - May 13, 2024 00:00 - 37 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about a new to sign artifacts on GitHub. It's in beta, it's not going to be easy to use, it will have bugs. But that's all OK. This is how we start. We need infrastructure like this to enable easier to use features in the future. Someday, everything will be signed by default. ...
![Between the Brackets: a MediaWiki Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/80/4c/4c/804c4c25-c267-4264-0483-48c00fba1b28/mza_5164983970852688524.png/100x100bb.jpg)
Episode 162: Viktor Schelling
Between the Brackets: a MediaWiki Podcast - May 07, 2024 15:17 - 1 hour ★★★★★ - 3 ratings🕑 1 hour 3 minutes Viktor Schelling is the Senior Principal MediaWiki Developer at Pegasystems. Links for some of the topics discussed: Pegasystems Wikipedia article Wikibase Solutions FlexForm MediaWiki extension Open CSP
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 427 - Will run0 replace sudo?
Open Source Security Podcast - May 06, 2024 00:00 - 30 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about a sudo replacement going into systemd called run0. It sounds like it'll get a lot right, but systemd is a pretty big attack surface and not everyone is a fan. We shall have to see if this ends up replacing sudo. Show Notes Conan O'Brien on Hot Ones Lennart's Mastodo...
![Duke's Corner artwork](https://is1-ssl.mzstatic.com/image/thumb/Podcasts115/v4/2e/e9/cd/2ee9cd91-17e1-ac04-0a61-1bf60c590cae/mza_17195370831311543587.png/100x100bb.jpg)
Bert Jan Schrijver: Java is a Marvel of Engineering
Duke's Corner - May 02, 2024 14:42 - 45 minutesJim Grisanzio from Java Developer Relations talks with Bert Jan Schrijver from The Netherlands. Bert is a Java Champion, a leader of the Dutch Java User Group, and the CTO and co-founder of OpenValue that he started in 2017. The conversation spans all of Bert's experiences as a software develo...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 426 - Automatically exploiting CVEs with AI
Open Source Security Podcast - April 29, 2024 00:00 - 37 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about a paper describing using a LLM to automatically create exploits for CVEs. The idea is probably already happening in many spaces such as pen testing and intelligence services. We can't keep up with the number of vulnerabilities we have, there's no way we can possibly keep...
![Between the Brackets: a MediaWiki Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/80/4c/4c/804c4c25-c267-4264-0483-48c00fba1b28/mza_5164983970852688524.png/100x100bb.jpg)
Episode 161: Moritz Schubotz
Between the Brackets: a MediaWiki Podcast - April 25, 2024 14:59 - 1 hour ★★★★★ - 3 ratings🕑 1 hour 28 minutes Dr. Moritz Schubotz (developer username Physikerwelt) is head of research at the mathematics department at FIZ Karlsruhe – Leibniz Institute for Information Infrastructure. He is the author or co-author of the MediaWiki extensions Math and MathSearch, and the Mathoid applic...
![Duke's Corner artwork](https://is1-ssl.mzstatic.com/image/thumb/Podcasts115/v4/2e/e9/cd/2ee9cd91-17e1-ac04-0a61-1bf60c590cae/mza_17195370831311543587.png/100x100bb.jpg)
Richard Fichtner: JCON 2024 Preview
Duke's Corner - April 24, 2024 13:48 - 25 minutesJim Grisanzio from Java Developer Relations talks with Richard Fichtner, a Java developer from Germany who is also a JUG leader and an Oracle ACE Pro. The conversation previews the upcoming JCON Europe 2024 Conference in Cologne, which will have 100 sessions of core Java technologies and a thous...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 425 - Video game cheaters, also pretendo
Open Source Security Podcast - April 22, 2024 00:00 - 30 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about a database of game cheaters. Cheating in games has many similarities to security problems. Anti cheat rootkits are also terrible. The clever thing however is using statistics to identify cheaters. Statistics don't lie. Also, we discuss the Pretendo project sitting on a v...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 424 - The Notepad++ Parasite Website
Open Source Security Podcast - April 15, 2024 00:00 - 35 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about a Notepad++ fake website. It's possibly not illegal, but it's certainly ethically wrong. We also end up discussing why it seems like all these weird and wild things keep happening. It's probably due to the massive size of open source (and everything) now. Things have got...
![Between the Brackets: a MediaWiki Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/80/4c/4c/804c4c25-c267-4264-0483-48c00fba1b28/mza_5164983970852688524.png/100x100bb.jpg)
Episode 160: Megan Cutrofello
Between the Brackets: a MediaWiki Podcast - April 09, 2024 19:36 - 1 hour ★★★★★ - 3 ratings🕑 1 hour 43 minutes Megan Cutrofello, better known as River, returns to the podcast. She is a freelance wiki developer who has worked with Gamepedia, Fandom and wiki.gg, among others. Links for some of the topics discussed: wiki.gg "What's going on with gaming communities moving from Fan...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
Episode 423 - FCC cybersecurity label for consumer devices
Open Source Security Podcast - April 08, 2024 00:00 - 32 minutes ★★★★★ - 39 ratingsJosh and Kurt talk about a new FCC program to provide a cybersecurity certification mark. Similar to other consumer safety marks such as UL or CE. We also tie this conversation into GrapheneOS, and what trying to claim a consumer device is secure really means. Some of our compute devices have an...
![Duke's Corner artwork](https://is1-ssl.mzstatic.com/image/thumb/Podcasts115/v4/2e/e9/cd/2ee9cd91-17e1-ac04-0a61-1bf60c590cae/mza_17195370831311543587.png/100x100bb.jpg)
Mohammed Aboullaite: With Java it was Love at First Sight
Duke's Corner - April 03, 2024 14:53 - 32 minutesJim Grisanzio from Java Developer Relations talks with Mohammed Aboullaite, a Java developer from Morocco who is now based on Stockholm, Sweden. The conversation covers how Mohammed first fell in love with Java in college, and he's been contributing to the community ever since. Mohammed says it'...
![Duke's Corner artwork](https://is4-ssl.mzstatic.com/image/thumb/Podcasts113/v4/b0/f9/0a/b0f90af0-a61e-fa20-ce91-f333ec3d4fa6/mza_2083796411030216609.png/100x100bb.jpg)
Mohammed Aboullaite: With Java it was Love at First Sight
Duke's Corner - April 03, 2024 14:53 - 32 minutes ★★★★★ - 5 ratingsJim Grisanzio from Java Developer Relations talks with Mohammed Aboullaite, a Java developer from Morocco who is now based on Stockholm, Sweden. The conversation covers how Mohammed first fell in love with Java in college, and he's been contributing to the community ever since. Mohammed says it'...
![Legacy Code Rocks artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/69/8f/f7/698ff7be-d89c-beb0-dbe5-1f293e0403c0/mza_6219236284633300501.jpg/100x100bb.jpg)
From Vintage Computers to Test Automation with Sophia McKeever
Legacy Code Rocks - April 02, 2024 20:22 - 56 minutes ★★★★★ - 14 ratingsHow do the love for vintage computers and test automation come together? Can one inspire another and how? Today we talk with Sophia Mckeever, a software development engineer at Pokemon Company International, a test automation framework architect, and a computer historian. She tells us what led...
![Open Source Security Podcast artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts113/v4/22/db/90/22db905e-8617-8eb1-d255-57810207fc06/mza_4268399195197921277.jpg/100x100bb.jpg)
XZ Bonus Spectacular Episode
Open Source Security Podcast - April 01, 2024 11:54 - 1 hour ★★★★★ - 39 ratingsJosh and Kurt talk about the recent events around XZ. It's only been a few days, and it's amazing what we already know. We explain a lot of the basics we currently know with the attitude much of these details will change quickly over the coming week. We can't fix this problem as it stands, we do...
Related Opensource Topics
- Technology 5
- Java 4
- Oracle 4
- Openjdk 4
- Oraclecloud 4
- Foss 4
- Developer 3
- Softwaredevelopment 3
- Trust 3
- Tech 3
- Database 2
- Records 2
- Concurrency 2
- Data 2
- Development 2
- Garbagecollection 2
- Hotspot 2
- Innovation 2
- Jdk 2
- Jvm 2
- Programming 2
- Throughput 2
- Community 2
- Developers 2
- Bitcoin 2
- Blockchain 2
- Ethereum 2
- Open 2
- Source 2
- Linux 2