Programming Throwdown educates Computer Scientists and Software Engineers on a cavalcade of programming and tech topics. Every show will cover a new programming language, so listeners will be able to speak intelligently about any programming language.
…
continue reading
Bret Fisher에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Bret Fisher 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
DevOps and Docker Talk: Cloud Native Interviews and Tooling와 비슷한 콘텐츠
Do your eyes glaze over when looking at a long list of annual health insurance enrollment options – or maybe while you’re trying to calculate how much you owe the IRS? You might be wondering the same thing we are: Where’s the guidebook for all of this grown-up stuff? Whether opening a bank account, refinancing student loans, or purchasing car insurance (...um, can we just roll the dice without it?), we’re just as confused as you are. Enter: “Grown-Up Stuff: How to Adult” a podcast dedicated ...
…
continue reading
Hanselminutes is Fresh Air for Developers. A weekly commute-time podcast that promotes fresh technology and fresh voices. Talk and Tech for Developers, Life-long Learners, and Technologists.
…
continue reading
Best Business Podcast (Gold), British Podcast Awards 2023 How do you build a fully electric motorcycle with no compromises on performance? How can we truly experience what the virtual world feels like? What does it take to design the first commercially available flying car? And how do you build a lightsaber? These are some of the questions this podcast answers as we share the moments where digital transforms physical, and meet the brilliant minds behind some of the most innovative products a ...
…
continue reading
Technical interviews about software topics.
…
continue reading
Welcome to the "Gangster Chronicles", where Gangster Rap lives. Gangster Chronicles takes you on an unforgettable journey through the heart of hip-hop. with host, Bigg Steele, alongside the legendary MC Eiht, together, we're diving deep into the visceral world of Gangsta Rap. On this podcast, we unravel the intricate tapestry of one of music's most influential and misunderstood sub-genres, exploring the formative artists, monumental albums, and socio-political factors that have shaped Gangst ...
…
continue reading
Stay current on JavaScript, Node, and Front-End development. Learn from experts in programming, careers, and technology every week. Become a supporter of this podcast: https://www.spreaker.com/podcast/javascript-jabber--6102064/support.
…
continue reading
Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
…
continue reading
Material is a weekly discussion about the Google and Android universe. Your intrepid hosts try to answer the question, “What holds up the digital world?” The answer, so far, is that it’s Google all the way down. Hosted by Andy Ihnatko and Florence Ion.
…
continue reading
1
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
Jerry Bell and Andrew Kalat
Defensive Security is a weekly information security podcast which reviews recent high profile cyber security breaches, data breaches, malware infections and intrusions to identify lessons that we can learn and apply to the organizations we protect.
…
continue reading
Player FM -팟 캐스트 앱
Player FM 앱으로 오프라인으로 전환하세요!
Player FM 앱으로 오프라인으로 전환하세요!
))
Chainguard: Building Secure Container Images
Manage episode 416143288 series 2483573
Bret Fisher에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Bret Fisher 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
Bret and Nirmal are joined by Dan Lorenc from Chainguard to walk them through Chainguard's approach to building secure, minimal container images for popular open source software.
They discuss why it is important to have secure and minimal container images. Dan explains how Chainguard helps remove the pain of CVEs, laggy software updates and patches and much more. Chainguard is now available also on Docker Hub.
They spend the first part of the show talking about the week's big news: the XZ supply chain attack, and Dan was the best man to explain it. They also touch on CVEs, things you can do to reduce the attack surface, SLSA, and more during this jam-packed show.
Be sure to check out the live recording of the complete show from April 4, 2024 on YouTube (Ep. 261).
★Topics★
Chainguard Website
Vulnerability Management Certification course
True Cost of Vulnerability Management
Chainguard Images
Chainguard on Docker Hub Announcement
Creators & Guests
- Cristi Cotovan - Editor
- Beth Fisher - Producer
- Bret Fisher - Host
- Nirmal Mehta - Host
- Dan Lorenc - Guest
- (00:00) - Intro
- (05:14) - Dan's Take on the XZ Hack
- (14:59) - Chainguard Distro Creation
- (21:21) - Chainguard in Docker Hub Announcement
- (24:26) - Free Images vs Private Images
- (26:27) - Zero CVE Approach
- (28:33) - Ways to Reduce Attack Surfaces
- (39:56) - Chainguard Academy
- (41:08) - Real Time Antivirus Malware Scanner
- (43:52) - Google Distro Lists Worth Using
- (45:56) - Chainguard for Buildpacks
- (46:20) - SLSA
- (56:08) - What's Next for Chainguard?
- (56:52) - Getting Started with Chainguard
You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!
Grab the best coupons for my Docker and Kubernetes courses.
Join my cloud native DevOps community on Discord.
Grab some merch at Bret's Loot Box
Homepage bretfisher.com
176 에피소드
공유
Manage episode 416143288 series 2483573
Bret Fisher에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Bret Fisher 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
Bret and Nirmal are joined by Dan Lorenc from Chainguard to walk them through Chainguard's approach to building secure, minimal container images for popular open source software.
They discuss why it is important to have secure and minimal container images. Dan explains how Chainguard helps remove the pain of CVEs, laggy software updates and patches and much more. Chainguard is now available also on Docker Hub.
They spend the first part of the show talking about the week's big news: the XZ supply chain attack, and Dan was the best man to explain it. They also touch on CVEs, things you can do to reduce the attack surface, SLSA, and more during this jam-packed show.
Be sure to check out the live recording of the complete show from April 4, 2024 on YouTube (Ep. 261).
★Topics★
Chainguard Website
Vulnerability Management Certification course
True Cost of Vulnerability Management
Chainguard Images
Chainguard on Docker Hub Announcement
Creators & Guests
- Cristi Cotovan - Editor
- Beth Fisher - Producer
- Bret Fisher - Host
- Nirmal Mehta - Host
- Dan Lorenc - Guest
- (00:00) - Intro
- (05:14) - Dan's Take on the XZ Hack
- (14:59) - Chainguard Distro Creation
- (21:21) - Chainguard in Docker Hub Announcement
- (24:26) - Free Images vs Private Images
- (26:27) - Zero CVE Approach
- (28:33) - Ways to Reduce Attack Surfaces
- (39:56) - Chainguard Academy
- (41:08) - Real Time Antivirus Malware Scanner
- (43:52) - Google Distro Lists Worth Using
- (45:56) - Chainguard for Buildpacks
- (46:20) - SLSA
- (56:08) - What's Next for Chainguard?
- (56:52) - Getting Started with Chainguard
You can also support my free material by subscribing to my YouTube channel and my weekly newsletter at bret.news!
Grab the best coupons for my Docker and Kubernetes courses.
Join my cloud native DevOps community on Discord.
Grab some merch at Bret's Loot Box
Homepage bretfisher.com
176 에피소드
모든 에피소드
×
플레이어 FM에 오신것을 환영합니다!
플레이어 FM은 웹에서 고품질 팟캐스트를 검색하여 지금 바로 즐길 수 있도록 합니다. 최고의 팟캐스트 앱이며 Android, iPhone 및 웹에서도 작동합니다. 장치 간 구독 동기화를 위해 가입하세요.
DevOps and Docker Talk: Cloud Native Interviews and Tooling와 비슷한 콘텐츠
Programming Throwdown educates Computer Scientists and Software Engineers on a cavalcade of programming and tech topics. Every show will cover a new programming language, so listeners will be able to speak intelligently about any programming language.
…
continue reading
Do your eyes glaze over when looking at a long list of annual health insurance enrollment options – or maybe while you’re trying to calculate how much you owe the IRS? You might be wondering the same thing we are: Where’s the guidebook for all of this grown-up stuff? Whether opening a bank account, refinancing student loans, or purchasing car insurance (...um, can we just roll the dice without it?), we’re just as confused as you are. Enter: “Grown-Up Stuff: How to Adult” a podcast dedicated ...
…
continue reading
Hanselminutes is Fresh Air for Developers. A weekly commute-time podcast that promotes fresh technology and fresh voices. Talk and Tech for Developers, Life-long Learners, and Technologists.
…
continue reading
Best Business Podcast (Gold), British Podcast Awards 2023 How do you build a fully electric motorcycle with no compromises on performance? How can we truly experience what the virtual world feels like? What does it take to design the first commercially available flying car? And how do you build a lightsaber? These are some of the questions this podcast answers as we share the moments where digital transforms physical, and meet the brilliant minds behind some of the most innovative products a ...
…
continue reading
Technical interviews about software topics.
…
continue reading
Welcome to the "Gangster Chronicles", where Gangster Rap lives. Gangster Chronicles takes you on an unforgettable journey through the heart of hip-hop. with host, Bigg Steele, alongside the legendary MC Eiht, together, we're diving deep into the visceral world of Gangsta Rap. On this podcast, we unravel the intricate tapestry of one of music's most influential and misunderstood sub-genres, exploring the formative artists, monumental albums, and socio-political factors that have shaped Gangst ...
…
continue reading
Stay current on JavaScript, Node, and Front-End development. Learn from experts in programming, careers, and technology every week. Become a supporter of this podcast: https://www.spreaker.com/podcast/javascript-jabber--6102064/support.
…
continue reading
Risky Business is a weekly information security podcast featuring news and in-depth interviews with industry luminaries. Launched in February 2007, Risky Business is a must-listen digest for information security pros. With a running time of approximately 50-60 minutes, Risky Business is pacy; a security podcast without the waffle.
…
continue reading
Material is a weekly discussion about the Google and Android universe. Your intrepid hosts try to answer the question, “What holds up the digital world?” The answer, so far, is that it’s Google all the way down. Hosted by Andy Ihnatko and Florence Ion.
…
continue reading
1
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
Jerry Bell and Andrew Kalat
Defensive Security is a weekly information security podcast which reviews recent high profile cyber security breaches, data breaches, malware infections and intrusions to identify lessons that we can learn and apply to the organizations we protect.
…
continue reading
Player FM -팟 캐스트 앱
Player FM 앱으로 오프라인으로 전환하세요!
Player FM 앱으로 오프라인으로 전환하세요!
