DiscoverScreaming in the CloudHelping Securing the Python with Mike Fiedler
Helping Securing the Python with Mike Fiedler

Helping Securing the Python with Mike Fiedler

Update: 2024-12-05
Share

Description

On this Screaming in the Cloud In this episode of Screaming in the Cloud, Corey Quinn is joined by AWS container hero and security engineer at the Python Software Foundation, Mike Fiedler. They delve into the intricacies of Python's ecosystem, discussing the evolution of PyPI, its significance, and the ongoing battles against security threats like account takeover attacks and typo-squatting. Mike sheds light on his role in maintaining the security and reliability of the Python Package Index, the importance of 2FA, and the collaborative efforts with security researchers. Corey and Mike also explore the challenges and philosophies surrounding legacy systems versus greenfield development, with insights on maintaining critical infrastructure and the often-overlooked aspects of social engineering.



Show Highlights

(0:00 ) Introduction

(0:47 ) The Duckbill Group sponsor read

(1:21 ) Breaking down the Python nomenclature and its usability

(5:49 ) Figuring out how Boto3 is one of the most downloaded packages

(6:43 ) Why Mike is the only full-time security and safety engineer at the Python Software Foundation

(9:53 ) How the Python Software Foundation affords to operate

(14:17 ) Mike's stack security work

(16:14 ) The Duckbill Group sponsor read

(16:57 ) Having the "impossible job" of stopping supply chain attacks

(21:00 ) The dangers of social engineering attacks

(24:44 ) Why Mike prefers to work on legacy systems

(33:30 ) Where you can find more from Mike



About Mike Fiedler

Mike Fiedler is a highly analytical, forward-thinking Information Technology professional. His broad-based background includes systems administration and engineering in global environments. Mike is technically astute and versatile with ability to quickly learn, master, and leverage new technologies to meet business needs and has a track record of success in improving performance, stability, and security for all infrastructure and product initiatives.

Mike is also bilingual, speaks English and Hebrew, and he loves solving puzzling problems.



Links



Sponsor

The Duckbill Group: duckbillgroup.com 

Comments 
Top Podcasts
The Best New Comedy Podcast Right Now – June 2024The Best News Podcast Right Now – June 2024The Best New Business Podcast Right Now – June 2024The Best New Sports Podcast Right Now – June 2024The Best New True Crime Podcast Right Now – June 2024The Best New Joe Rogan Experience Podcast Right Now – June 20The Best New Dan Bongino Show Podcast Right Now – June 20The Best New Mark Levin Podcast – June 2024
In Channel
Replay - Learning to Give in the Cloud with Andrew Brown

Replay - Learning to Give in the Cloud with Andrew Brown

2024-12-1935:33

Creating the Foundation for a New Home Assistant with Paulus Schoutsen

Creating the Foundation for a New Home Assistant with Paulus Schoutsen

2024-12-1732:23

Replay - Multi-Cloud is the Future with Tobi Knaup

Replay - Multi-Cloud is the Future with Tobi Knaup

2024-12-1231:02

Looking at the Current State of Resilience with Spencer Kimball

Looking at the Current State of Resilience with Spencer Kimball

2024-12-1038:35

Helping Securing the Python with Mike Fiedler

Helping Securing the Python with Mike Fiedler

2024-12-0534:31

Replay - Serverless Hero, Got Servers in His Eyes with Ant Stanley

Replay - Serverless Hero, Got Servers in His Eyes with Ant Stanley

2024-12-0333:37

Best Practices for Securing AWS Cloud with Eric Carter

Best Practices for Securing AWS Cloud with Eric Carter

2024-11-2730:19

Replay - Finding a Common Language for Incidents with John Allspaw

Replay - Finding a Common Language for Incidents with John Allspaw

2024-11-2629:36

Replay - Keep on Rockin’ in the Server-Free World with Michael Garski

Replay - Keep on Rockin’ in the Server-Free World with Michael Garski

2024-11-2133:09

Standardizing Developer Freedom with Chris Weichel

Standardizing Developer Freedom with Chris Weichel

2024-11-1929:27

Learning the Joys of Reading and Writing with Laura Brief

Learning the Joys of Reading and Writing with Laura Brief

2024-11-1438:19

Burnout and Breaking the Internet with Serena DiPenti

Burnout and Breaking the Internet with Serena DiPenti

2024-11-1232:16

Finding a Fix for the Cloud with Stephen Barr

Finding a Fix for the Cloud with Stephen Barr

2024-11-0736:10

Sleuthing Out the Key to Teamwork with Dylan Etkin

Sleuthing Out the Key to Teamwork with Dylan Etkin

2024-11-0627:24

Replay - Chaos Engineering for Gremlins with Jason Yee

Replay - Chaos Engineering for Gremlins with Jason Yee

2024-10-3131:22

Disclosing Vulnerabilities in the Cloud with Ryan Nolette

Disclosing Vulnerabilities in the Cloud with Ryan Nolette

2024-10-2939:42

Replay - Creatively Giving Back to the Cloud Community with Forrest Brazeal

Replay - Creatively Giving Back to the Cloud Community with Forrest Brazeal

2024-10-2432:56

Tackling AI, Cloud Costs, and Legacy Systems with Miles Ward

Tackling AI, Cloud Costs, and Legacy Systems with Miles Ward

2024-10-2233:44

Cloud Resilience Strategies with Seth Eliot

Cloud Resilience Strategies with Seth Eliot

2024-10-1727:40

Replay - Memes, Streams & Software with Cassidy Williams

Replay - Memes, Streams & Software with Cassidy Williams

2024-10-1538:27

loading
Google Play
Download from Google Play
Castbox
Download from App Store
usUnited States
00:00
00:00
x

0.5x

0.8x

1.0x

1.25x

1.5x

2.0x

3.0x

Sleep Timer

Off

End of Episode

5 Minutes

10 Minutes

15 Minutes

30 Minutes

45 Minutes

60 Minutes

120 Minutes

Helping Securing the Python with Mike Fiedler

Helping Securing the Python with Mike Fiedler

Corey Quinn