DTNS 2226 – Uh-OAuth

Logo by Mustafa Anabtawi thepolarcat.comDarren Kitchen is on the show to help us understand why we shouldn’t freak out about the OAuth flaw, and what Apple, Google and Facebook are really doing to protect their users from government data requests.


Multiple versions (ogg, video etc.) from Archive.org.


A special thanks to all our Patreon supporters–without you, none of this would be possible.

If you enjoy the show, please consider supporting the show here at the low, low cost of a nickel a day on Patreon. Thank you!

Big thanks to Dan Lueders for the music and Martin Bell for the opening theme!

Big thanks to Mustafa A. from thepolarcat.com for the logo!

Thanks to our mods, Kylde, TomGehrke and scottierowland on the subreddit

Show Notes

Today’s guest: Darren Kitchen, hak5.org


Dear Users, the gubmint wants your stuff: Our top story on the subreddit was submitted by Beatmaster80 and tekkyn00b. Apple, Microsoft, Facebook and Google are all updating their policies to expand the notification they give users when a government agency requests their personal data. Yahoo announced a similar policy in July, and Twitter has always done so. Users would not be notified if a court order prevents it or if there is imminent risk of physical harm to a potential crime victim. The policies will have no effect on NSA data collection or National Security Letters both of which are required to remain secret by law.

Continue reading DTNS 2226 – Uh-OAuth