We recently interviewed Siddharth Sharma on how he uses Fedora. This is part of a series on the Fedora Magazine where we profile Fedora users and how they use Fedora to get things done. If you are interested in being interviewed for a further installment of this series, you can contact us on the feedback form.
Who is Siddharth Sharma?
Siddharth Sharma grew up in India and used to see fighter jets zooming in the skies above. This early experience shaped his life by forming a deep appreciation for heroes who go unnoticed every day. “My real heroes were and always will be the scientists, fighter pilots, and astronauts. They are unlike famous, glamorous people.” Siddharth continued, “I’ll name a few of them as I have read about some of them in my textbooks when I was in school and have been my inspiration. Neil Armstrong, Yuri Alekseyevich Gagarin, Rakesh Sharma and Kalpana Chawla.”
Sharma dreamed of being an Air Force pilot in the Indian Air Force as a kid. His favorite movie is Top Gun. Just like Maverick from Top Gun, Siddharth owns a motorcycle. “I have a Royal Enfield Thunderbird. It has a 350 CC engine. This is the closest machine I have to a jet!” said Sharma. Continuing the love for fighter pilots, his favorite song is Aces High by Iron Maiden.
When speaking about food, he said it was quite hard to pick one. But he did single out potatoes. “Mostly I like the food prepared with potatoes, lots of butter, oil, cottage cheese. Czech food and beers are awesome,” Sharma said.
Sharma is a software engineer on the Red Hat product security team. He focuses on security of storage products such as Ceph and Gluster. He used to work as a software maintenance engineer at Red Hat, looking after the GNOME and KDE desktop packages. “I learned from the most talented people in the software security industry and still have a lot to learn,” said Sharma. He started using Linux in 2004 with Red Hat Enterprise Linux 3, but later switched to Fedora Core 2.
Fedora Community
Siddharth is a Fedora KDE SIG member and contributes to KDE by maintaining several smaller KDE applications for Fedora. He said, “The Fedora Community is composed of some very talented people who come from different countries and domains with a lot of experience to share.” On IRC, he was given the nickname siddvicious. “I did not pick this nick, but it was given to me by the Fedora community people in #fedora-social because of my real name (people call me Sid) and they believe I am vicious person,” Sharma laughs.
When asked one thing that he would like to change in the Fedora Project, Siddarth said, “I cannot do that one thing alone, but I would want more people to start contributing and helping FST (Fedora Security Team). There are very few current active members. For them, it’s not even their day job to handle those security issues.” Sharma compared working on the Fedora Security Team to the Karate Kid. Contributing to Fedora may first seem like random tasks, but after a while, contributors realize they gain a great deal of knowledge and become proficient.
Sharma gives Rex Dieter credit for helping him become a contributor to Fedora. He said, “When all of the mentors in my region were busy or involved with other things, Rex Dieter not only mentored me, but backed me up to get packager status. He is still one person whom I seek advice for packaging and we still co-maintain some packages.” Siddharth gave credit to the Fedora and KDE communities for his being able to get a job at Red Hat. “Landing at a place like Red Hat was almost impossible for me without the Fedora and KDE community. I do not come from a flashy academic background, but the Open Source industry values skills and passion over what university you graduate from,” he said.
Siddharth also maintains the Fedora Security Matrix and would like to encourage Fedora users to help him to add more features to the matrix. “I might have missed some security features. If you come across any, just send an email to me,” said Sharma. You can either write about the feature or send him an email that the feature is missing. If a contributor is unsure how to write about the feature, Sharma is willing to work with them or do all the research and writing himself.
What hardware and software?
Sharma has an HP and two Lenovo notebooks. He uses Fedora 24 on all of them. All the laptops have i7 processors, 16GB RAM and 512GB hard drives. He uses his machine to do penetration testing and analysis of security bugs. The HP machine has an NVIDIA GPU, which aids to analysis of security bugs by leveraging the GPU for processing.
Siddharth uses many virtual machines for testing storage products like Ceph and Gluster. He enables LUKS on both his physical and virtual machines. For his desktop environment, Sharma uses KDE because he loves Qt. For managing personal finances, he uses Skrooge. When feeling artistic, Sharma installs Krita, Gimp and Inkscape. For development work, he uses Qt Creator and kdevelop. Siddharth also recommends using the Security Lab if you are interested in security tools.
Sascha Biermanns
May I be so free and ask, what the disassembler ist called, that you are using?
Siddharth Sharma
radare
Sylvia Sánchez
I had read this and as soon as I stepped with “Aces High” I thought “Smart guy!”. Just kidding. I guess you also listened to the (many) other Maiden songs about aviation… Did you? If so, what do you think about them?
Cheers and great interview.
Siddharth Sharma
Flight Of Icarus is a good song too but I like Aces High. Iron Maiden is one my favourite bands. 🙂
Sylvia Sánchez
And what about their last album? You have Empire of the clouds & Death or glory there. Do you like any…?
And yes, Iron Maiden is one of my favourite bands too.
Siddharth Sharma
I like all songs from “A Matter of Life and Death”
Sylvia Sánchez
Cool. My all times favourite is the Seventh Son of a Seventh Son and then the last album, Book of Souls.
🙂
Max
Nice read and story. May I ask how you got into penetration testing? The topic seems so important that I want to dive into it, but there seems to be an endless amount of resources available, ranging from books that teach you the basic tools to TCP/IP bibles.
Siddharth Sharma
It was more of an interest. Hands on experience is much more fun and books can be used for reference. There are plenty of talks presented on computer security you can listen/watch them and then you can read & research on the part that interests you. May be you need to backtrack from end goal 🙂 and see what is required to achieve that.
Charles Profitt
I would recommend Kali for a distro and Cobalt Strike for training and Red Team practice.
https://www.cobaltstrike.com/
https://www.kali.org/
Joe Pesco
“My real heroes were and always will be the scientists, fighter pilots, and astronauts. They are unlike famous, glamorous people.” I like this sentence and it is a good quote from you. It answers the question, What brought you to need the software tools you use?
I watched The Martian for the first time a few days ago. Have you seen it? What do you think of the computer techno-fiction? For example the visual hexadecimal, upgrading the probe, and usurping the trajectory back to Mars?
They always have to make stuff up in Hollywood. It wouldn’t be the movies without the extra drama. Like why didn’t they change the crew while on the fast leg back, before the really fast leg out to Mars. I guess the the math would take a couple of months! Small blessing, the on board specialist wasn’t a Dennis Nerdy, but then the ship didn’t have much personality to speak of.
Try the The Wright Brothers by David McCullough if you like a good read. It is inspirational.
Michael marinovic
I would help with Fedora security team if you want a volunteer. But I am not a hacker so I am not sure how helpful I can be. But I can certainly become proficient.
Siddharth Sharma
https://fedoraproject.org/wiki/Security_Team 🙂
Salvador V
I know it’s a silly question but, what theme is he using on his KDevelop?
Thanks.
Siddharth Sharma
It is vim dark theme and for my fedora KDE desktop I have my own color theme
Salvador V
Thank you!
Xtify21
What steps do u follow to enable luks? I have tried several times to attempt this on home partition with ext4…can you point me a direction to get this to work?
Thanks
Siddharth Sharma
It should be quite easy. Fedora installer asks which partition to encrypt after user selects to encrypt data. You should ask this on fedora IRC channel 🙂