50 ways to leak your data: an exploration of apps’ circumvention of the Android permissions system

50 ways to leak your data: an exploration of apps’ circumvention of the Android permissions system Reardon et al., USENIX Security Symposium 2019

The problem is all inside your app, she said to me / The answer is easy if you take it logically / I’d like to help data in its struggle to be free / There must be fifty ways to leak their data.

You just slip it out the back, Jack / Make a new plan, Stan / You don’t need to be coy, Roy / Just get the data free.

Hop it on the bus, Gus / You don’t need to discuss much / Just drop off the key, Lee / And get the data free…

— Lyrics adapted from “50 ways to leave your lover” by Paul Simon (fabulous song btw., you should definitely check it out if you don’t already know it!).

This paper is a study of Android apps in the wild that leak permission protected data (identifiers which can be used for tracking, and location information), where those apps should not have been able to see such data due to a lack of granted permissions. By detecting Continue reading

Controlling Information Flow: NATS Subjects and Queues

Publish/subscribe messaging platforms like NATS allow us to build highly event-driven software systems, where we can build software to constantly listen for relevant messages and take action accordingly. This is what makes EDI projects like StackStorm (a project I’ve worked on and written about before) - and others like it- so powerful. Another advantage of pub/sub systems is that publishers don’t have to know or care if anyone is listening.

Controlling Information Flow: NATS Subjects and Queues

Citrix Meshes Istio Service Mesh Into Its ADC Platform

The company is offering Istio in two ways: as an ingress gateway for north-south traffic into the...

Read More »

© SDxCentral, LLC. Use of this feed is limited to personal, non-commercial use and is governed by SDxCentral's Terms of Use (https://www.sdxcentral.com/legal/terms-of-service/). Publishing this feed for public or commercial use and/or misrepresentation by a third party is prohibited.

Kubernetes Kills Containership’s Cruise

The company's founder and CTO explained that it was unable to adequately monetize its operations in...

Read More »

Rubrik, NetApp Catapult Data Management to the Cloud

The partnership aims to simplify data management on cloud-scale architectures through policy-based...

Read More »

Full Stack Journey 034: Choosing Your Own Adventure

If you've ever thought about working for yourself, catch this episode of the Full Stack Journey. Guest Ned Bellavance discusses his decision to leave a job as an IT consultant to become an independent content creator of tech training material. Ned shares real-world insights into his experience along with practical takeaways.

Full Stack Journey 034: Choosing Your Own Adventure

The post Full Stack Journey 034: Choosing Your Own Adventure appeared first on Packet Pushers.

NSX-T 2.5 What is new for Kubernetes

NSX-T 2.5 was released last week and now we also have the new NSX Container Plugin 2.5 on the market…. VMworld US 2019 is also over with announcements of huge innovations like NSX Intelligence, enhanced security, and improved operability and observability. You can find more information here! I would like to take this opportunity to specifically highlight the new containers capabilities we had been working on for this release.

What is new in NSX Container plugin (NCP)

Simplified UI (Policy API) support

With the introduction of the new intent-based Policy API and corresponding Simplified UI, administrators have seen that objects created by NCP for Kubernetes are not visible in the new UI. Instead they had to go to the Advanced Networking & Security tab that corresponds to the old imperative APIs. Furthermore, all related objects like T0, IP Block, IP Pool had to be created using the Advanced Networking & Security tab. I am happy to announce that from NCP 2.5+ we have a parameter in the NCP configmap (ncp.ini) policy_nsxapi that can be set to True. In that case, NCP will start calling the new intent-based API and all objects will be visible in the simplified UI. Continue reading

3 quick tips for working with Linux files

Linux provides a wide variety of commands for working with files — commands that can save you time and make your work a lot less tedious.Finding files When you're looking for files, the find command is probably going to be the first command to come to mind, but sometimes a well-crafted ls command works even better. Want to remember what you called that script you were working on last night before you fled the office and drove home? Easy! Use an ls command with the -ltr options. The last files listed will be the ones most recently created or updated.$ ls -ltr ~/bin | tail -3 -rwx------ 1 shs shs 229 Sep 22 19:37 checkCPU -rwx------ 1 shs shs 285 Sep 22 19:37 ff -rwxrw-r-- 1 shs shs 1629 Sep 22 19:37 test2 A command like this one will list only the files that were updated today:To read this article in full, please click here

Aryaka’s HybridWAN Boasts Multi-Tenancy, Enhanced Firewalls

Its HybridWAN allows low-priority traffic to be routed over broadband or 4G LTE while running...

Read More »

Verizon NG-PON2 Trial Hits 34 Gb/s Speed

The trial with network partner Calix used SDN to bond four multi-gig fiber optic channels.

Broadcom Targets 5G Networks, Hyperscale Security

Broadcom released a dual 400G MACSec PHY device to support increasing bandwidth demands and...

Read More »

NSX-T Data Center and EUC Design Guide Release

When it comes to VMware NSX, support for VMware Horizon deployments have been a staple ask every release. NSX compliments Horizon deployments tremendously by:

Helping to provide the networking for the Horizon components
Identity and firewalling security for VDI and RDSH desktops
Endpoint protection
Load balancing

Earlier this year, NSX-T Data Center 2.4 was released which brought identity firewalling, endpoint protection, and other necessary features for customers to consume equivalent to NSX Data Center for vSphere. The release of NSX-T Data Center 2.5 takes those features and provides even further scale enhancements to support small, medium, and the largest Horizon deployments.

NSX-T Data Center and EUC Design Guide

The NSX-T and EUC Design Guide takes information provided in the VMware Horizon Reference Architecture and the VMware NSX-T Reference Design Guide, and brings the two platforms together into a single solution.

Use Cases and What’s Covered

Let’s take a look at what all is covered and the use cases that NSX-T Data Center has for Horizon deployments:

Horizon Pod Alignment

NSX-T Data Center 2.5 supports massive scale that can cover an entire Horizon Pod scale, and more in some cases. This design guide Continue reading

Designing Your First App in Kubernetes, Part 2: Setting up Processes

I reviewed the basic setup for building applications in Kubernetes in part 1 of this blog series. In this post, I’ll explain how to use pods and controllers to create scalable processes for managing your applications.

Processes as Pods & Controllers in Kubernetes

The heart of any application is its running processes, and in Kubernetes we fundamentally create processes as pods. Pods are a bit fancier than individual containers, in that they can schedule whole groups of containers, co-located on a single host, which brings us to our first decision point:

Decision #1: How should our processes be arranged into pods?

The original idea behind a pod was to emulate a logical host – not unlike a VM. The containers in a pod will always be scheduled on the same Kubernetes node, and they’ll be able to communicate with each other via localhost, making pods a good representation of clusters of processes that need to work together closely.

*A pod can contain one or more containers, but containers in the pod must scale together.*

But there’s an important consideration: it’s not possible to scale individual containers in a pod separately from each other. If you need to scale Continue reading

How Operators Can Work With Developers to Monetize Edge

Operators and developers need to work together to bring edge uses to market and capitalize on the...

Read More »

In Colombia: Latin American Summit on Community Networks

The University of Cundinamarca will host the Second Latin American Summit of Community Networks September 24-28. The event is organized by the Community Networks Special Interest Group, the Fusa Libre Collective, and the Colombia Chapter, with backing from the Internet Society.

The Summit, which will include representatives of 24 organizations that operate community networks in different countries, is meant to be a resource for the region. On the first day there will be 12 presentations that will share experiences from projects developed in countries such as Argentina, Colombia, Ecuador, and Mexico.

During the rest of the Summit, attendees will explore topics that will help strengthen their projects and enhance their development. The topics addressed in these working sessions have been defined collaboratively: gender-related issues, regulatory frameworks, local content, methodological strategies for community work, and actions for the promotion and deployment of new community networks. It could not be otherwise in a community where collaboration has stood out. In addition, attendees can share their experiences and best practices.

Although many people are familiar with the term “community networks,” their collaborative nature can be a surprise to those who are learning about how they function. Seeing people working together to plan, Continue reading

Heavy Networking 473: Synthetic Transactions, SD-WAN Readiness, And Internet Outage Autopsies With ThousandEyes (Sponsored)

ThousandEyes sponsors today's Heavy Networking for a wide-ranging episode that explores a new synthetic transaction monitoring feature, discusses why performance monitoring is essential to prepare for SD-WAN rollouts, and walks through postmortems on 2019's biggest Internet outages. Guests Alex Henthorn-Iwane and Angelique Medina join us.

The post Heavy Networking 473: Synthetic Transactions, SD-WAN Readiness, And Internet Outage Autopsies With ThousandEyes (Sponsored) appeared first on Packet Pushers.

Europeans Push FPGA-Powered Exascale Prototype Out the Door

The European Exascale System InterconNect and Storage (ExaNeSt) project has wrapped up, having completed development of its prototype system and run a series of application benchmarks on it. …

Europeans Push FPGA-Powered Exascale Prototype Out the Door was written by Michael Feldman at The Next Platform.

Introducing Red Hat Ansible Automation Platform

RedHat-Ansible-Automation-Platform_logo-white-1

We are excited to introduce Red Hat Ansible Automation Platform, a new offering that combines the simple and powerful Ansible solutions with new capabilities for cross-team collaboration, governance and analytics, resulting in a platform for building and operating automation at scale.

Over the past several years, we’ve listened closely to the community, customers and partners and their needs. We’ve also looked carefully at how the market is changing and where we see automation headed. One of the most common requests we’ve heard from customers is the need to bring together separate teams using automation. Today’s organizations are often automating different areas of their business (such as on-premises IT vs. cloud services vs. networks) each with their own set of Ansible Playbooks and little collaboration between the different domains. While this may still get the task accomplished, it can be a barrier to realizing the full value of automation.

We’ve also found that even within a single organization, teams are often at different stages of automation maturity. Organizations are often recreating the wheel - automating processes that have already been done.

Organizations need a solution they can use across teams and domains, and a solution they can Continue reading

« Previous 1 … 1,155 1,156 1,157 1,158 1,159 … 3,855 Next »