Sessions

Keynote: Containers will not fix your broken culture (and other hard truths)Bridget Komhout
Containers will not fix your broken culture. Microservices won’t prevent your two-pizza teams from needing to have conversations with one another over that pizza. No amount of industrial-strength job scheduling makes your organization immune to Conway’s Law.

While the unscrupulous might try to sell us devops, we can’t buy it. We have to live it; continuous improvement is a choice we make every day, through our actions of listening empathetically and acting compassionately. Tools are essential, but how we use the tools and grow the culture and practices in our organizations needs even more attention.

Whether you’re just starting to implement technical and organizational change, or facing the prospect that you already have legacy microservices, it’s worth considering the why and the how of our behaviors, not just the what. (Spoiler alert: tech, like soylent green, is made of people.)

Keynote: Open Source and the Revolution of Software TestingElizabeth K. Joseph
Software testing used to be a fairly static ordeal handled by a quality assurance team at a company. Reports were delivered to software engineers after the analysis was complete. During this time, most open source software also often relied upon companies to do internal testing and security analysis instead of running their own systems. Over the past five years we’ve seen a rise in the popularity of Continous Integration (CI) which has sparked a tremendous amount of innovation around on-demand testing triggered by developers themselves. Open source projects like Jenkins, Spinnaker, Artifactory, GitLab and more have risen to meet that demand.

These new software testing methods have also taken hold in open source projects. Many are now doing their own CI, whether they run their own Jenkins infrastructure like the OpenStack project or are using integrations now available in the GitHub for popular proprietary CI systems like Travis CI and CircleCI. Major projects like Kubernetes are opening their conferences with calls for improved code coverage in testing and stressing the importance of CI.

In this talk we’ll explore this new ecosystem of software testing and the impact it has had on open source software development. We’ll also dive into some of the options available for integrating CI into an open source project you’re involved with, including the cultural and practical risks around the use of a fully open source platform you host yourself versus the proprietary hosted offerings.

Slides: Open Source and the Revolution of Software Testing

Lightning Talks
Lightning talks are 5 minute presentations with no slides. The people who want to present generally just line up near the stage, and present when it’s their turn. A moderator will be keeping track of time, and will alert the speaker when they have one minute left. At the end of five minutes, the speaker is done, and the next speaker steps up.

With only five minutes and no slides, there’s no time to waste! Whether you’re a new speaker who wants to get some experience in front of a crowd, or you have something that you don’t think makes a full-fledged presentation, lightning talks are a fun, fast way to share something! Lightning talks are great fun for audiences, too, with an opportunity to watch at least 12 different speakers present 12 different topics!

A Gentle Introduction it GitAlex Juarez
I’ll assume I am not the only one out there and say there are a few people who learned about version control for the same reasons I did…..after really screwing something up and not being able to roll back.

Understanding the importance of version control is a fundamental skill for almost anybody in the computing field. Having an account on Github is all but a requirement for sharing and contributing to many of your favorite open source projects.

In this Gentle Introduction to Git, we’ll cover a few introductory, and a couple of more advanced scenarios for using Git. Instead of showcasing as many sub-commands we can in 40 minutes we will set up a few common scenarios for us to work through and demonstrate the specific sub-commands we use to achieve our goals.

Links to worksheets and examples will be provided and I hope attendees will walk away with an understanding of how Git fits into the larger picture of working together and contributing to open source projects.

Basic Electronics for IoT Projects and MoreMike Kwiatkowski
Do you have your Raspberry Pi or Arduino and a flashing LED, but you want more? Has it been a long time since your basic DC circuits class? Can’t tell the difference between a resistor, capacitor and an IC chip? If you have answered yes to any of these questions then this talk might be for you!
This talk is about basic electronics. It’s meant to be a starting point for anyone wanting to do a project with an Arduino, Raspberry Pi or other like device. We’ll start with resistors, capacitors and transistors and include a discussion on voltage dividers with resistive sensors. We’ll also cover basic controls and IC chips handy for driving motors and LED displays.

Be the Lazy SysAdminDavid Both
I am proud to be a lazy SysAdmin. I am also a very productive SysAdmin. Those two seemingly contradictory statements are not mutually exclusive. This session will show you why this is true and introduce you to some easy to implement strategies to help you achieve this advanced state of SysAdmin zen.

* Automate everything
* Use built-in Linux shortcuts such as aliases and command line editing
* Naming files for easy recognition.
* Documentation makes everything easier.
* Use your favorite editor.
* Find elegance through simplicity.
* Follow your curiosity.
* Mentor the young SysAdmins.

By the end of this session you will be able to use these strategies to get more done by working lazier.

Beginner Linux for the AutodidactBrent Benzinger
Presentation goal is to discuss methods for tackling the steep learning curve of the Linux world. It will outline a brief syllabus of learning goals for the beginner, and focus heavily on strategies to achieving these goals. The presentation will lean towards “”how to teach yourself,”” and not “”what you should teach yourself.”” Target audience is beginners interested in improving their Linux skills, and experienced Linux users looking to engage the beginner community.

Outline:

Introduction: Definition of autodidacticism, philosophy of self-teaching, presentation goals
Abstract before technical: “”Why”” vs. “”What””
Gather learning resources: Finding the materials that work for you
Join a community: Linux as a second language, learn by immersion
Practice: Command line cardio

Slides: Beginner Linux for the Autodidact

Bootstrapping PuppetSteven Pritchard
Puppet is an incredibly powerful configuration management tool with a large extended ecosystem.
If you’re new to Puppet, figuring out where to start can be daunting.

This talk will include an introduction to Puppet and the Puppet ecosystem. It will include a demonstration of a full Puppet master and agent environment built in Vagrant.

Slides: Bootstrapping Puppet

Bridging the Development GapAndrew Frank
Over the past several years, coding bootcamps have emerged to help solve the problem of a shortage of skilled developers and IT workers that many organizations have been faced with. This has resulted in these organizations being able to fill roles that have been historically difficult to fill. However, there has been some discussion about the qualifications of a bootcamp graduate versus a graduate of a traditional four-year degree, as well as the overall costs of and affordability of a bootcamp program. We will discuss a brief history of coding bootcamps, the problems they seek to solve, as well as the pros and cons of bootcamp programs vs traditional Computer Science programs. We will also discuss the background and qualities that successful bootcamp graduates possess, and why organizations are finding value in hiring graduates of bootcamp programs.

Catalyst: Iterative InnovationJim Kittle
Working in the integration space for 10 years you see a lot of technology and strategy. Ohio State has made the leap from a VM (bare-metal) deployment of the WSO2 stack (ESB, Data Services, and Identity Server) and scheduled downtime for backend upkeep to running the stack on Kubernetes, automated infrastructure deployments with Jenkins, Puppet, and Docker and automated service deployment via Jenkins and Gitlab Webhooks.

The toolchain enabled the Enterprise Integration Platform (EIP) team to operate in an agile manor and that is reflected in the current initiative to use Ballerina, a new language tailored to integration. Ballerina is a type safe language that takes the good from many languages and also has a strong annotation set that will generate Kubernetes manifests, swagger/OpenApi, documentation sites, and automatically deploy the service as a container.

I plan showcase a light background and current state with a live dev demo of Ballerina.

Slides: Catalyst: Iterative Innovation

Clevis and Tang; automatic encryption for the massesChuck Mattern
Network Bound Disk Encryption (NBDE) as implemented with the Clevis and Tang daemons will be discussed and demoed. NBDE allows machines to automatically decrypt storage devices based on network parameters. It does not require special hardware, pressured keys or preloaded passwords. We will discuss both the theoretical and practical impacts and conclude with a short demo.

Slides: NBDE or How I could have slept better at night

Compliance Automation with SIMPSteven Pritchard
SIMP is an Open Source project based on Puppet that automates compliance with various standards (including NIST 800-53, FIPS 140-2, and DISA STIG). This talk will introduce SIMP’s capabilities and explain how to get started with SIMP in your environment.

Slides: Compliance Automation with SIMP

Continuous Learning and (10) web sites that will advance your careerJohn M. Kimball
I will be talking about the advantages of continuous learning and (10) great on-line resources to assist in accomplishing your career goals.

Creating a PXE Boot Environment with TinyCoreAndy Carlson
Here are the objectives of this presentation:
* Gain a general understanding of PXE Boot functionality
* Learn how to configure dnsmasq to provide necessary services
* Learn how to create custom remixes of TinyCore Linux for use in a PXE environment

Slides: Creating a PXE Boot Environment with TinyCore

Developing Future Leaders with Mentoring and CoachingThresette Briggs
Two of the most critical components of a robust leadership development program are mentoring and coaching. Why? Because mentoring and coaching build strong leadership competencies that increase capacity to develop sustainable organizations for the future. Effective mentoring and coaching makes for effective and productive members of your organization. This presentation will explain the difference between mentoring and coaching, and how to use both of them to create new leaders in your workplace. Further, interactive sessions will provide opportunities to practice effective mentoring and coaching techniques to use with your team.
If you want to ensure that your workplace is effective now and will remain effective in the future, this is a must-attend presentation.

Engineering, Open Sourced.Joel Graff
Free and open source software has thrived in many domains, yet traditional engineering disciplines have proven a challenge and open source struggles to establish itself. This is slowly changing as traditional engineering software grows increasingly expensive and new engineering technologies are quickly adopted by the open source world. This presentation will explore the technical and social value for adopting open source technology in traditional engineering workflows, the immediate challenges to adoption, and the importance of engineering professionals’ active participation in the development of free and open source engineering applications. Special attention will be given to the FreeCAD project, its uniqueness as an open source engineering tool, how it is rapidly evolving, and how it may become a powerful alternative for a domain dominated entirely by expensive proprietary software.

Slides: Engineering, Open Sourced

Getting Kids involved with computingSteve Ovens
Have you ever wondered how to engage children with technology? Do you want to guide them down the path to open source?

Kids don’t often care about the higher level implications of things. They just want to play games and have fun. In this talk we’ll cover various age groups and what some strategies you might employ to get kids used to linux and open source

Getting To Done FasterClay Dowling
I want to make life better for programmers and for businesses. Over the last few years I’ve been working in new ways that let me get my work done faster, with fewer bugs. I want to share some of those ways with you, to make your life better too. I’ll show you how to structure your work so that you deliver the right thing, faster, and with fewer bugs, by working in small increments and focusing on what is important.

History of LinuxKen Elliott
Giving a history of Linux. I was at a lightening talk at All things Open last year in North Carolina and was surprised to learn many people didn’t know who the founders of the Open Source movement were.

Integrating Web Applications with ApacheAndy Carlson
Learn how to integrate third-party web applications into a common web infrastructure using Apache Web Server. This will cover instruction and examples using the following Apache modules: rewrite, proxy, headers, substitute, and macro. This will also explore some implementations of these modules and how they were used to maximize functionality and streamline administration.

Slides: Integrating Web Applications with Apache

Intro to SaltStackDon Vosburg
SaltStack is powerful, open source event driven automation. We will look at how it compares to other configuration management frameworks (like ansible, puppet, and cfengine), then explore basic terminology and use cases.
There will even be examples of salt state files, and a live demo of salt in action.

Intro to SensuGarrett Honeycutt
Sensu is an open source monitoring solution built for today’s environments. Sensu allows you to get complete visibility of your infrastructure and software. Besides monitoring, it also does alerts and metrics routing and ties into tools you might already use. You will leave understanding how Sensu works and how to quickly get started using it.

Slides: Intro to Sensu

Leading ChangeRobby Slaughter
Organizations can find themselves doing the same thing that used to work, and then wake up one morning and recognize there are more effective practices that could be used. But how does an organization introduce new methods and practices in an effective manner? This presentation will provide the tools and insight you need to help transform your business for the better without sacrificing anything, and will teach you how to be a leader in effecting change that is significant, but also inspiring. In this presentation, you will learn:

  • The different philosophies of change management and change leadership, and how to harness your people and their visions to transform your business
  • The strategic importance of knowing the difference between these two philosophies
  • How to know whether you, and your organization, are ready for lead the way in change for the better
  • How to formulate an effective action plan for leading change

Leap and Tumble with openSUSEDon Vosburg
Join in a terrific Linux distribution with your choice of flavor.
openSUSE Leap – a stable annually released Linux that can be converted to a supported version! All you favorite packages in the desktop or server of your choice.
openSUSE Tumbleweed – a rolling release that stays up-to-date with the latest stable kernel and other open source packages. Develop here, or simply play with all the latest updated software.
We will explore the benefits and key features of each – and even see live demos.

LibreTime: a web-based automation system for radioRobb Ebright
LibreTime started as a fork of Airtime when the company behind the development team decided to focus exclusively on their Saas (software as a service offering). Volunteer developers at community radio stations formed the LibreTime project to keep the open-source version of the software alive.
LibreTime has a PHP & JavaScript front-end and uses Python, OCaml & Icecast on the backend. It provides a web-based automation system that allows stations to program their station as well as do live broadcasting. It is used at local community radio stations such as WCRS-LP and Radio614 and by other stations around the globe. This talk will begin with the process of forking the project and then provide a overview of how the software works for the end-user. As time allows we will glance into the code to reveal the challenges of working with complex software built by people no longer active with the project.

Managing the IT Security OctopusScott Grimes
Internet “bad guys” are getting increasingly smarter and more organized about how they attack information castles. As information “guardians” charged with protecting the castle we know we need to constantly be getting smarter as well. This talk is a practical understanding of the ever changing IT security landscape, as well as opportunities to “layer” the technologies into a better defense. SSL/TLS, IPSec, SSH, firewalls, WPA, WPA2, Certificates, Digital Signatures, GPG, Passwords, Multi-Factor, Encryption. What does each technology give us? More importantly, what are the limitations? We’ll do our best to help you walk away with a better grasp of what’s really protected, risk exposures you may not realize you had, and tools to better defend.

Slides: Managing the IT Security Octopus

Mentorship – your path to immortalityRich Bowen
Open source needs people to write the code today, but, even more important, is those that will write the code tomorrow. Investing in the people who will replace you is the only way to ensure immortality, both for yourself, and for the project you care so much about. In this session, you’ll learn you practical ways to invest in people, and about why, sometimes, *not* fixing a bug is a better choice than fixing it.

Molecule: TDD for AnsibleEthan Dicks
Molecule is a TDD framework for Ansible. With it, you can create functional and unit tests in Python to run against your Ansible code in a containerized environments to ensure what you’ve written does what it’s supposed to do (and does not do what it’s not supposed to do). This presentation will go over creating a bare Molecule framework and populating it, then developing an Ansible playbook in stages until it passes the tests.

Slides: Molecule: TDD for Ansible

My First PygameTerry Howald
Pygame is an open source, Python-based library for building games. It’s cross platform and thus works with most operating systems. It can be freely downloaded at pygame.org, and is built on top of the Simple DirectMedia Layer (SDL) library. It has an active community with many resources and opportunities for learning.

I became interested in Pygame after attending a presentation at an open source conference. Although I’m not much of a gamer, Pygame seemed like something I could tackle. Plus I’m always interested in new Python applications, so this motivated me to take on a Pygame project.

This talk covers my experiences in developing a Pygame, including the weird places I got stuck and the hassles I had to overcome. I also discuss the open source tools I used to create the game including Ubuntu, Visual Studio Code, Python, Pygame, GIMP, Inkscape, and Audacity.

Lastly we’ll take a look at my Pygame and provide links to the source code. Time will be allocated at the end for audience questions.

Slides: My First Pygame

My Raspberry Pi emulates the 80’s.Mat Kovach
A demonstration of the Hercules emulator of System/370 and ESA/390 systems, including showing the MVS 3.8j Turnkey system and Linux/390 runnings.

I was looking for a way to dust off some of my mainframe operation skillset and found usable version of MVS 3.8j, including compilers for COBOL, FORTRAN, ALGOL and PL/1. The MVS distribution is also a good way to give an overview of the mainframe architecture and some of the advantages in the design.

After a trip back in memory lane to the business side of history, I’ll fire up VICE and show some examples of a running PET, Vic 20 and C64, load a few programs from cassette and disk, and talk about how pre Mac folks computed at home.

So, in the end, we’ll show how a $35 single board computer running Linux and Open Source Software easily emulates what a computer geek could very well used daily in the early 80’s.

Slides: My Raspberry Pi Emulates the 80’s

Open Source and the Internet of Things: discussion, hardware show-and-tell, and demo labEric Miller
Since first being predicted in 1999, the Internet of Things (IoT) has fully come of age in 2018. Cheaper and more powerful compute, broader global network coverage, and innovation in battery technology have opened new possibilities for leveraging technology in the physical world. In this talk, we’ll discuss the brief history of the Internet of Things, how the world of connected devices is changing the way we live, and what role open source, open hardware, and open standards play in the development of IoT. Session will include a hardware show and tell, and a fully functional deployment of an end-to-end IoT demo lab, using several open and/or open source components: an ESP32 based development board, MQTT, and microPython.

Setting Up GitLab for Fun and ProfitAlex Juarez
Did the purchase of GitHub make you want to move your Git repos elsewhere? Have you ever thought about what it would take to host your own repos?

Hosting your own install of the Gitlab server is a great way to take your understanding even further on how the Git version control system works.

In this session we’ll talk about how to install and manage a GitLab server on your own environment. We will start with understanding the install process and then proceed to understanding the “Day 2” management and maintenance processes.

We’ll also cover other platform features such as:
– Working with Snippets
– Managing User Permissions
– Merge Requests
– Project Milestones

As the attendee you will walk away with a plan to implement your own instance of a GitLab server. Links will be provided to all materials and examples.

Social Engineering: A Pentester’s Guide to PeopleCody Hofstetter
Social engineering used in the context of information security refers to the psychological manipulation of people into performing actions or divulging information. For this presentation, we’ll delve into the methods and tactics of penetration testers, how to recognize when these scenarios may be occurring in your everyday life, and how to protect yourself. From calling on the phone to in-person interactions, you’ll learn to view the way you communicate from a completely different perspective.

Team Happiness for Fun and ProfitClay Dowling
Employers woo developers with ping pong tables, free lunches, and beer taps. But it’s still rare for employees to stay in a job for more than five years. So what can we do to make our work life better, and reduce employee turnover? In this session we’ll talk about:

* Tips for self-care that I’ve found useful.
* What you can do to make your work more rewarding.
* Steps your company can take to reduce employee turnover.
* How to care for your team.

The Mental Impact of Tech InterviewsZachary Zlotnik
From high-pressure whiteboard coding, to requiring an encyclopedic knowledge of Linux internals, interviewing for a tech job these days feels more like a Broadway audition. It is no secret that technical interviews are broken. While these practices are well-known, appear to benefit tech companies and are widely criticized, the deleterious effects they have on tech workers have long gone unrecognized. It is time to refactor tech hiring.

Toward a self healing infrastructureJim Wildman
This presentation will discuss and demo how to automate security and compliance using a combination of Red Hat CloudForms, Red Hat Satellite, Red Hat Ansible Tower, Red Hat Insights, and OpenSCAP. While the demo will be designed around Red Hat products, the discussion will include how to implement similar processes using the upstream projects (MIQ, Foreman, AWX)

Wallet Cryptography 101Steve Swing
Cryptocurrency relies heavily on cryptography to operate securely and reliably. But how does it work? How does a wallet recovery phrase establish and recover a cryptocurrency wallet? How do I keep my cryptocurrency private and secure? This talk will discuss various wallet types, understanding how seed/recovery phrases work, and how to keep them secure. I will demonstrate using docker and electron to use tools to validate recovery passphrases.

Slides: Wallet Cryptography 101

What’s in Your Docker? Open Source Security Vulnerabilities in ContainersMatt Williams
So you stay on top of operating system vulnerabilities and patch regularly, but did you ever consider that there may be vulnerabilities in your containers? In March of 2015, a report that over 30% of the “official” images in the Docker Hub contained high priority security vulnerabilities was issued by Banyan, an IT operations company. However, not all vulnerabilities are created equal – this talk investigates methods of detecting and mitigating vulnerabilities in containers.

Slides: https://aetherical.github.io/container-vulnerability

What’s New in FreeNAS 11.2Dru Lavigne
This presentation will provide an overview of the new features in FreeNAS 11.2 as well as a sneak peek of what’s in the pipe for next year’s releases. These include:

– what’s up with the new UI, middleware, and backend used for plugins and jails
– cloud integration
– self-encrypting drive support
– exciting OpenZFS features
– and more!

What’s so cool about BlockChain?Scott Grimes
The recent interest in all digital currencies such as Bit Coin has also brought with it the “BlockChain” technology as a way of tracking who owns each coin. In this talk, we’ll attempt to explain the value of BlockChain for the “average” IT person. How it works. Some of the less known challenges to using BlockChain. And finally, some practical real-world applications that might help show where block chain could improve your business or process?

Slides: What’s so cool about Blockchain

YerFace! From Computer Vision to Cartoon AnimationAlex Markley
Presenting the story of how I applied computer vision, GPU-accelerated algorithms, and machine learning to solve all my cartoon facial animation problems. Featuring a live demo! For more information, see http://yerface.live/

You’re worth more than you knowSteve Owens
This talk centers around my experience and observations (as a consultant) entering different corporations. I have seen many common themes from people who feel trapped working in one company because they don’t know what companies are looking for and how to match this up with the skills they currently have.

Everyone struggles with self worth as we hear of all the cool things other companies and people are doing. I am here to tell you, you are worth more than you know! I’ll give some examples of tasks you actually perform and how you can pair them up with your dream job.

(hopefully there will be audience participation as well)

Career Track Panel – Fitting In: So 2008! Time to Stand Out
Chad White will moderate the engaging discussion with TJ Toterhi, Marissa Ball, Laura Coffee, and Vinny Sanfillipo.

Chad Whiteis an active member of the Columbus tech community with a passion for cybersecurity and open source tech. He is the founder of Rogue Talent, an independent career advisory & recruiting outfit that specializes in these niche areas of IT. An Ohio University alum with 12 years of industry experience, Chad is dedicated to reimagining the candidate experience in the Age of Innovation. He speaks as a tech career expert at regional conferences like Linuxfest, BSides, and the InfoSec Summit. Chad joined the OLF team in 2014 as a panelist; this is his 3rd year as moderator. He is also an avid traveler and the founder of the 400+ member Ohio Rum Society.

After 10+ years in sales and customer service, TJ Toterhi decided to pursue a career in tech. Upon earning a Bachelor’s degree in IT he secured back-to-back internships in InfoSec. Today, TJ is an established penetration tester at a Fortune 500 financial institution. During the course of his tech career, he has had the opportunity to work in areas such as threat and vulnerability management, incident response, and security engineering. TJ knows how overwhelming it is being new in a highly competitive niche area of tech, so he enjoys sharing what did (and didn’t) work for him during his formative years with others looking to make a name for themselves in the industry.

After several years of working in the healthcare industry, Marissa Ball accepted a position as a cyber security analyst at a major US-based utility company. She holds a biology degree from The Ohio State University and has dedicated the last 2+ years teaching herself programming, web/app development, and Kali Linux, and subsequently mastered the art of breaking into an incredibly hot tech industry through her due diligence and dedication to setting herself apart from the rest.. In her spare time, she enjoys photoshopping her cat, being outdoors, and engaging in nerf wars.

Laura Coffee has over 15 years of experience developing new career programs for individuals and businesses. While with Rev1 Ventures (formerly TechColumbus) and nChannel, she had the opportunity to work with and support a variety of high-tech startups. She became knowledgeable about business and career development, and the highs and lows of starting a new venture. Laura has also started two career focused companies, Parents at Work and her current business, Painted Turtle Partners, where she applies the startup philosophy to advance her clients.

Vinny Sanfillipo has a knack for matching talent to variety of roles. As a recruiter at Bold Penguin, a fast-growing tech startup, he has helped fill positions across departments – including systems engineering – taking care to build the culture with every hire. In the last year, he’s helped the company scale by over 300%. Vinny graduated from Otterbein University, majoring in Philosophy and Political Science. Before joining “the glacier,” he worked as a freelance writer and social media adviser for several local businesses.