In this week’s show I announce the new “Special Pages” button on podfeet.com (I know, exciting to have a new button, isn’t it?) We used mimoLive from Boinx Software for the first time making the live show, but I only tease you at the beginning that I’ll explain what that is. I promise, I’ll tell you all about it next week! We’ve got two last interviews from CSUN: the AssisTech SmartCane and Smartbox for those with speaking challenges. I’ll tell you how I have even MORE blinky lights on me when I go for a walk thanks to Bart, and then we’ll have Security Bits where Bart gives us an update on the Cambridge Analytica/Facebook kerfuffle, WebAuthn, and more security news and information.
This content was originally posted as part of the Chit Chat Across the Pond podcast on 14 April 2018 but since the subject is evergreen it is repeated here as a permanent Page. The tutorial was written completely by Bart Busschots of bartb.ie.
In this page, Bart teaches us about DNS Resolvers and helps give us the information to choose the right one for us. To get us there, he starts by explaining the background technologies. He explains DNS and how there are two kinds of servers, he explains DNS Name resolution and why caching is important, and the security problems (and solutions) of DNS. Then he explains how third-party DNS providers can solve some of these problems. He explains their motivations which will inform your own decision. Finally (at about the 1-hour mark) he walks through the solutions offered by OpenDNS, Google, Quad9, and Cloudflare. You can listen along below and read the content and view the diagrams as a guide.
In this “Lite” version of Chit Chat Across the Pond (within a NosillaCastaway’s definition of Lite), Bart teaches us about DNS Resolvers and helps give us the information to choose the right one for us. To get us there he starts by explaining the background technologies. He explains DNS and how there’s two kinds of servers, he explains DNS Name resolution and why caching is important, and the security problems (and solutions) of DNS. Then he explains how third-party DNS providers can solve some of these problems. He explains their motivations which will inform your own decision. Finally (at about the 1 hour mark) he walks through the solutions offered by OpenDNS, Google, Quad9 and Cloudflare. I loved this episode and you can tell Bart really loves talking about DNS.
Followup 1 — Meltdown/Spectre
- Intel won’t fix Spectre flaws in older chips — nakedsecurity.sophos.com/…
- AMD systems gain Spectre protection with latest Windows fixes — arstechnica.com/…
Followup 2 — The Cambridge Analytica/Facebook Kerfuffle
We start with how wrong I was last week, with two huge mistakes. I posted a teaser video about a Monosnap screencast I did for ScreenCasts Online, and how I was on Daily Tech News Show #3248 where we talked about whether the announcements from Apple will help them get back in the game with education. Then I’ll walk you through the harrowing tale of how awful both iBooks Author and Pages are at creating ebooks. Then Bart joins us to give a follow up on the Cambridge Analytica/Facebook kerfuffle, he’ll tell us about two new laws in the US called SESTA/FOSTA and the CLOUD act, and he’ll tell us about the very clever fix Apple came up with for the HSTS vulnerability that’s plaguing all browsers.
I’ll talk about what tech things we used and learned more about in Paris including improvements in Project Fi, VPN challenges, Apple Pay, calorie metrics with Apple Watch and high-speed trains. Bart barges in on the show to tell me about how he uses a combination of smart playlists and modifications in Overcast to create the best of both worlds. I’ll tell you about a really cool button I found on my Olympus OM-D E-M5 Mark II to automatically shoot HDR shots. Bart joins us again for an out-of-band Security Bits to talk about the kerfuffle about Cambridge Analytica and Facebook.
The Cliff Notes Version of the Story
- Microsoft have removed the special registry flag which prevented the Spectre/Meltdown patches being applied on machines without AV that explicitly declares itself compatible with the patch. This approach made sense early in the response to these bugs, but it did have an undesirable side-effect, a machine with no AV would never get patched. That’s no longer the case now — arstechnica.com/…
- Intel outlines plans for Meltdown and Spectre fixes, microcode for older chips — arstechnica.com/…
Allister Jenks stands in for a vacationing Allison Sheridan. We have a review of Paintcode, a story of using the Apple Watch to track health in ways other than the Activity app, Allister’s own health app Stretch Timer, two interviews from CES with We.Stream and Bellus3D, some security tips with Cyber Essentials, and a fun casual iOS game, Rings.
The management at my work often brings up the topic of training. While for many years it was a hollow promise, in recent years there has been a real push on staff to take training courses, and not just those directly relevant to their current roles. Anything that is relevant to our company is considered a good investment.
A colleague of mine had been stumbling his way through building PHP web front ends to various functions we normally just ran through terminal windows. He recently went through an online course in PHP web development, and so that got me to thinking what I might like to try.
My first thought was an iOS development course, to solidify my own learnings, but it turns out that a decent course that I feel would be worthwhile is very expensive and I know that management’s enthusiasm won’t stretch that far.
A few years ago, Allison encouraged me to look at Lynda.com, who offer many courses in business, IT, software development, media production, design and more. More recently I discovered that I can get free access to all of the courses through my local library membership. Late in 2017, I was looking around for something very specific – I forget what – when something else caught my eye.