Schedule

Schedule

Tuesday, September 2

1409711400 Padre's Corner

Wednesday, September 3

1409758200 FLOSS Weekly
1409763600 Tech News Today
1409767200 Windows Weekly
1409774400 This Week in Google
1409785200 Tech News 2Night
1409787000 redditUP
1409792400 Ham Nation

Thursday, September 4

1409850000 Tech News Today
1409853600 Know How...
1409857200 The Social Hour
1409862600 Coding 101
1409866200 Home Theater Geeks
1409871600 Tech News 2Night
1409873400 The Giz Wiz
1409882400 OMGcraft

Friday, September 5

1409936400 Tech News Today
1409940000 This Week in Law
1409947200 Android App Arena
1409958000 Tech News 2Night

Saturday, September 6

1410026400 The Tech Guy

Sunday, September 7

1410112800 The Tech Guy
1410127200 This Week in Tech

Monday, September 8

1410195600 Tech News Today
1410199200 Triangulation
1410204600 iPad Today
1410217200 Tech News 2Night
1410219000 Marketing Mavericks

Tuesday, September 9

1410282000 Tech News Today
1410285600 MacBreak Weekly
1410292800 Security Now
1410300000 Before You Buy
1410303600 Tech News 2Night
1410307200 All About Android
1410316200 Padre's Corner

Wednesday, September 10

1410363000 FLOSS Weekly
1410368400 Tech News Today
1410372000 Windows Weekly
1410379200 This Week in Google
1410390000 Tech News 2Night
1410391800 redditUP
1410397200 Ham Nation

Thursday, September 11

1410454800 Tech News Today
1410458400 Know How...
1410462000 The Social Hour
1410467400 Coding 101
1410471000 Home Theater Geeks
1410476400 Tech News 2Night
1410478200 The Giz Wiz
1410487200 OMGcraft

Friday, September 12

1410541200 Tech News Today
1410544800 This Week in Law
1410552000 Android App Arena
1410562800 Tech News 2Night

Most Recent Episodes

MacBreak Weekly

Preview of the iPhone 6 event.

Tech News 2Night
Episode #163: Secure Your Cloud September 2nd, 2014

Home Depot credit card breach.

Security Now

Wi-Fi routers are still vulnerable to attacks using Wi-Fi Protected Setup.

OMGcraft

Enchanting in Minecraft 1.8

Tech News Today

Apple's iCloud is compromised and nude celebrity photos are stolen.

This Week in Tech

Virtual nausea, Uber vs. Lyft, smart phone kill switch, and more.

The Tech Guy
The Tech Guy 1114 August 31st, 2014

How reliable are SSDs?

The Tech Guy
The Tech Guy 1113 August 30th, 2014

Is a Chromebook a suitable replacement for an old computer?

Tech News 2Night

Facebook status updates are now searchable on mobile.

This Week in Law

Google receives 1 million DMCA takedown notices a day.

Coding 101 13

Sanitize')DROP TABLE Python;

April 17 2014

Hosts: Fr. Robert Ballecer, SJ and Shannon Morse

Guest: Dale Chase

Welcome to Coding 101 - It's the TWiT show that gives YOU the knowledge to live in the wonderful world of the programmer. This week we are introducing our newest module, Python with Code Warrior Dale Chase!

To see all the code used in today's episode, go to Our Github Repository for Module 2

Loops (Recap)

* As we may recall, loops are an easy way to reuse code.
* It allows us to "loop" a section of code so that it doesn't have to be writen over and over.

While Loops
"While loops in Python work very much like they do in C#

They use some sort of counter and some sort of relational true/false statement. The while loop will continue to run as long as the statement is true. The true/false statement is pre-test, meaning that it will evaluate the statement BEFORE the loop code is executed."

Code Sample:

counter = 0

while counter < 5:

counter = counter +1
print counter

Output:
1
2
3
4
5"

Sanitizing your Input!

The Heartbleed Bug

What is the Hearbeat?
* The problem lies in the "Hearbeart"
- It's a way to keep a SECURE TLS session alive /// to keep it from "timing out"
- The Heartbeat is a payload of arbitrary data which is sent from one end of the connection to the other, and back again.
- If the heartbeat makes the round trip intact, then both sides of the connection know that the connection is still active and still secure.

Here is the OpenSSL Code

(The Bug starts on Line 3972)
/* Read type and payload length first */

hbtype = *p++;

n2s(p, payload);

pl = p;

hbtype is the TYPE of data

P++ increments the pointer

p is the pointer for the payload

payload is the length of the payload"

The problem is that the SENDER gets to set the "payload" length and the code never checks to see if the sent length matches the recieved length of the payload.

The Crux of the Matter:
* The Hearbleed bug stems from code that does not check to make sure it's recieving into memory what it expected.
* In other words... IT DIDN'T SANITIZE IT'S INPUT!

Get in Touch With Us!

* Subscribe and get Coding 101 automatically at TWiT.tv!
* Follow PadreSJ and Snubs on Twitter.
* Watch the show live and join the chatroom every Thursday at 1:30pm PST.
* Email us at Padre@twit.tv and Shannon@twit.tv.
* Join our Google+ Community!

Download or subscribe to this show at twit.tv/code. Also, check out our transcripts.

Bandwidth for Coding 101 is provided by Cachefly.

Running time: 41:46

Sponsors: