Holy shit. The Bavarian Police conducted a raid at the #Zwiebelfreunde und the CCC Augsburg and confiscated personal belongings without having a real proof.
Money quote: "The mere presence of an e-mail address at a large free provider on a website has caused law enforcement authorities to deduce that a German association [...] must be connected to this website somehow"
Theo on the latest Intel issues
Re: Microsoft HyperClear: are we going to see branded attack mitigation websites next?
Picking up the embargo topic again, a quote from the Microsoft blog post: “...based on our observations of deploying this mitigation in Microsoft Azure, HyperClear has shown to have relatively negligible performance impact.”
If you were part of the embargo club (this time 7 months), you were able to come up with and deploy countermeasures more than half a year before the rest...
Hey #Fediverse. When you post pictures, please please please with puppies on top fill in that description box for the visually impaired. You will be helping us out tremendously. We want to enjoy your pictures as much as others do. You don't have to write a novel, but just fill in some details.
Thanks with much love:
A Blind Dude
Information about the new #CPU vulnerabilities are out. This time called L1 Terminal Fault (L1TF). You need OS and microcode patches.
What I like about where Mastadon is right now is that the public timelines are bringing out some of the best of the internet I joined in 1993: the welcoming, rolling helpdesk of people who don’t judge the questions, but just do their best to get you up to speed. I missed that, and didn’t really realize it was gone.
Remember how, in the mid 2000s, there was a trend in Western websites, to put the whole damn website in a SWF, and it was basically completely terrible?
Once again, xkcd tries to explain what everybody's known for years and fails miserably.
Electronic voting is not a bad idea because we programmers are idiots. It's a bad idea because it cannot be proved to be secure, and election results are too important to simply be ‘trusted.’
I was going to say it's that time of the year again but it's actually all the time, every year: The OpenBSD Foundation 2018 fundraising campaign is in full swing, and I would like to ask anyone who uses OpenBSD or byproducts such as OpenSSH (who doesn't these days) to chip in.
Better yet, get your boss to whip out that corporate card and contribute some significant sum.
Please go to https://www.openbsdfoundation.org/campaign2018.html and do the right thing.
"Meine Heimat, das sind die Großstädte in diesem Land, aber hier scheint es keinen Platz mehr für mich zu geben."
OK I've decided. This Saturday at 2 PM EDT I'll be running a *free* "#OpenBSD ports: the basics" workshop on Twitch.tv.
Participation is encouraged. To participate, install OpenBSD -current on a machine and set up a ports tree according to https://www.openbsd.org/faq/ports/ports.html
My Twitch username is NewAstroCity, so that's where I'll be broadcasting.
Yes, it will be recorded and posted on YouTube.
Feel free to boost.
Upcoming Firefox release will start sending all your DNS requests to Cloudflare
Looks like this will override local resolvers and therefore break any LAN only domains (as well as sending data to a US company).
Details on how to change this in about:config here https://blog.nightly.mozilla.org/2018/06/01/improving-dns-privacy-in-firefox/
Just watching Tron: Legacy. The more I watch it the better it gets
Added syntax highlighting to patches sent to lists.sr.ht
The Digest, now on Mastodon @bsd.network
This is way overdue: I'm now posting Digest notes to bsd.network/@dragonflydigest, a BSD-specific Mastodon server. It's bothered me for a while that I'm autoposting Digest headlines to Twitter, which is useful for Twitter users but still supporting a walled garden. Mastodon is a better implementation of a similar idea, and bsd.network nicely groups all sorts… ...
DragonFly BSD committer ● OpenBSD user ● Security dude ● CCC
This page describes the mastodon.social instance - wondering what Mastodon is? Check out joinmastodon.org instead! In essence, Mastodon is a decentralized, open source social network. This is just one part of the network, run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!
Hero image by @b_cavello