Jan 24, 2022
Alyssa Milller (@AlyssaM_InfoSec)
April Wright (@Aprilwright)
0. Open Source issues (quick discussion, because I value your
opinions, and supply chain is important in the IoT world too.)
Log4j and OSS software management and profitability
Free as in beer, but you pay for the cup… (license costs $$, not
the...
Jan 18, 2022
Adam Baldwin (@adam_baldwin)
Amélie Koran (@webjedi)
https://logging.apache.org/log4j/2.x/license.html
https://www.theregister.com/2021/12/14/log4j_vulnerability_open_source_funding/
https://www.zdnet.com/article/security-firm-blumira-discovers-major-new-log4j-attack-vector/
F/OSS developer deliberately bricks...
Jan 12, 2022
Adam Baldwin (@adam_baldwin)
Amélie Koran (@webjedi)
Log4j vulnerability
https://logging.apache.org/log4j/2.x/license.html
https://www.theregister.com/2021/12/14/log4j_vulnerability_open_source_funding/
https://www.zdnet.com/article/security-firm-blumira-discovers-major-new-log4j-attack-vector/
F/OSS developer...