Artwork

コンテンツは Corey Quinn によって提供されます。エピソード、グラフィック、ポッドキャストの説明を含むすべてのポッドキャスト コンテンツは、Corey Quinn またはそのポッドキャスト プラットフォーム パートナーによって直接アップロードされ、提供されます。誰かがあなたの著作物をあなたの許可なく使用していると思われる場合は、ここで概説されているプロセスに従うことができますhttps://ja.player.fm/legal
Player FM -ポッドキャストアプリ
Player FMアプリでオフラインにしPlayer FMう!

Helping Securing the Python with Mike Fiedler

34:31
 
シェア
 

Manage episode 453926260 series 2937944
コンテンツは Corey Quinn によって提供されます。エピソード、グラフィック、ポッドキャストの説明を含むすべてのポッドキャスト コンテンツは、Corey Quinn またはそのポッドキャスト プラットフォーム パートナーによって直接アップロードされ、提供されます。誰かがあなたの著作物をあなたの許可なく使用していると思われる場合は、ここで概説されているプロセスに従うことができますhttps://ja.player.fm/legal

On this Screaming in the Cloud In this episode of Screaming in the Cloud, Corey Quinn is joined by AWS container hero and security engineer at the Python Software Foundation, Mike Fiedler. They delve into the intricacies of Python's ecosystem, discussing the evolution of PyPI, its significance, and the ongoing battles against security threats like account takeover attacks and typo-squatting. Mike sheds light on his role in maintaining the security and reliability of the Python Package Index, the importance of 2FA, and the collaborative efforts with security researchers. Corey and Mike also explore the challenges and philosophies surrounding legacy systems versus greenfield development, with insights on maintaining critical infrastructure and the often-overlooked aspects of social engineering.


Show Highlights

(0:00) Introduction

(0:47) The Duckbill Group sponsor read

(1:21) Breaking down the Python nomenclature and its usability

(5:49) Figuring out how Boto3 is one of the most downloaded packages

(6:43) Why Mike is the only full-time security and safety engineer at the Python Software Foundation

(9:53) How the Python Software Foundation affords to operate

(14:17) Mike's stack security work

(16:14) The Duckbill Group sponsor read

(16:57) Having the "impossible job" of stopping supply chain attacks

(21:00) The dangers of social engineering attacks

(24:44) Why Mike prefers to work on legacy systems

(33:30) Where you can find more from Mike

About Mike Fiedler

Mike Fiedler is a highly analytical, forward-thinking Information Technology professional. His broad-based background includes systems administration and engineering in global environments. Mike is technically astute and versatile with ability to quickly learn, master, and leverage new technologies to meet business needs and has a track record of success in improving performance, stability, and security for all infrastructure and product initiatives.

Mike is also bilingual, speaks English and Hebrew, and he loves solving puzzling problems.

Links

Sponsor

The Duckbill Group: duckbillgroup.com

  continue reading

625 つのエピソード

Artwork
iconシェア
 
Manage episode 453926260 series 2937944
コンテンツは Corey Quinn によって提供されます。エピソード、グラフィック、ポッドキャストの説明を含むすべてのポッドキャスト コンテンツは、Corey Quinn またはそのポッドキャスト プラットフォーム パートナーによって直接アップロードされ、提供されます。誰かがあなたの著作物をあなたの許可なく使用していると思われる場合は、ここで概説されているプロセスに従うことができますhttps://ja.player.fm/legal

On this Screaming in the Cloud In this episode of Screaming in the Cloud, Corey Quinn is joined by AWS container hero and security engineer at the Python Software Foundation, Mike Fiedler. They delve into the intricacies of Python's ecosystem, discussing the evolution of PyPI, its significance, and the ongoing battles against security threats like account takeover attacks and typo-squatting. Mike sheds light on his role in maintaining the security and reliability of the Python Package Index, the importance of 2FA, and the collaborative efforts with security researchers. Corey and Mike also explore the challenges and philosophies surrounding legacy systems versus greenfield development, with insights on maintaining critical infrastructure and the often-overlooked aspects of social engineering.


Show Highlights

(0:00) Introduction

(0:47) The Duckbill Group sponsor read

(1:21) Breaking down the Python nomenclature and its usability

(5:49) Figuring out how Boto3 is one of the most downloaded packages

(6:43) Why Mike is the only full-time security and safety engineer at the Python Software Foundation

(9:53) How the Python Software Foundation affords to operate

(14:17) Mike's stack security work

(16:14) The Duckbill Group sponsor read

(16:57) Having the "impossible job" of stopping supply chain attacks

(21:00) The dangers of social engineering attacks

(24:44) Why Mike prefers to work on legacy systems

(33:30) Where you can find more from Mike

About Mike Fiedler

Mike Fiedler is a highly analytical, forward-thinking Information Technology professional. His broad-based background includes systems administration and engineering in global environments. Mike is technically astute and versatile with ability to quickly learn, master, and leverage new technologies to meet business needs and has a track record of success in improving performance, stability, and security for all infrastructure and product initiatives.

Mike is also bilingual, speaks English and Hebrew, and he loves solving puzzling problems.

Links

Sponsor

The Duckbill Group: duckbillgroup.com

  continue reading

625 つのエピソード

Alle episoder

×
 
Loading …

プレーヤーFMへようこそ!

Player FMは今からすぐに楽しめるために高品質のポッドキャストをウェブでスキャンしています。 これは最高のポッドキャストアプリで、Android、iPhone、そしてWebで動作します。 全ての端末で購読を同期するためにサインアップしてください。

 

クイックリファレンスガイド