For our 200th episode, we interview security expert Bruce Schneier. We talk about plenty of topics including airport security and the TSA, PRISM and the NSA, wholesale surveillance, surveillance backwards in time, finding people who have disposable cellphones, about searches and co-travelers, why Facebook does not offer the ability to pay for your account, a bit about Firefox and its propensity to act in the user's interest, and the future of our public information.
This week we talk about how to install and use the MariaDB Audit plugin, and what the audit log looks like. Ear Candy presents a gotcha with MySQL and temporary directories, and At the Movies is about using Dynamo for more than just a data store.
Events DB Hangops - every other Wednesday at noon Pacific time
This week we present part 2 of our interview with XKCD's Randall Munroe, where we finish talking about data privacy and security, and talk about Randall's real-life ball pit in his apartment, and his thoughts on fanny packs.
This week we have a big announcement about Sarah, 3 hosts and an extra special guest. We go on to talk about using SSL with MySQL. Ear Candy - a gotcha when mixing GRANT and SSL requirements, where what is semantically possible does not necessarily follow logic.
Call for papers for Percona Live: MySQL Conference & Expo 2012 is open until Monday, December 5th. The MySQL Conference & Expo is Tuesday April 10 - Thursday, April 12, 2012 in Santa Clara, CA.
We go over the open calls for papers, upcoming conferences, conversations with Oracle, and finish up our 2-part series on MySQL security.
Calls for papers:
Call for papers for Percona Live: MySQL Conference & Expo 2012 is open! They opened it on Friday, September 15th and the call will close on Monday, December 5th. The MySQL Conference & Expo is Tuesday April 10 - Thursday, April 12, 2012 in Santa Clara, CA.
Collaborate Call for papers is open until Sunday October 14th - http://events.ioug.org/p/cm/ld/fid=15
Collaborate is an Oracle Technology and Applications conference put on by IOUG, OAUG and Quest. It is the largest independent Oracle conference, and we are planning on having a one-day track there. Collaborate is at the Mandalay Bay Convention Center in Las Vegas, Nevada from Sunday April 22nd - Thursday 26th, 2012.
Call for papers for Percona Live: MySQL Conference & Expo 2012 is open! They opened it on Friday, September 15th and the call will close on Monday, December 5th. The MySQL Conference & Expo is Tuesday April 10 - Thursday, October 12, 2012 in Santa Clara, CA.
Christine Peterson of Foresight Nanotech Institute asks, "Open Source Physical Security: Can We Have Both Privacy and Safety?" In this OSCon 2008 keynote, Peterson shows how increased security does not have to require loss of privacy. She introduces the concept (quote taken from that official conference description) of:
citizen-controlled, privacy-oriented, verifiably limited open source security devices and procedures focused on obtaining and sharing the minimal data required for communities to satisfy the reasonable concerns of their neighbors regarding the possible presence of specific weapons able to affect them directly.
Josh Berkus' "Safe Data is Happy Data" (originally entitled "Lock Up Your Data") goes talks about defense in depth -- going beyond firewalls and other "perimeter defense" mechanisms such as middleware and web server tools. Berkus explains "full-stack security" including preventing SQL injection, data abstraction, database permissions, and even what to do after an attack.