Note, I am not a sysadmin professional, so please if you notice wrong terminology or things I am doing wrong, get in touch so I can learn and fix it up. Brandon does a much better write-up of this,…

I strongly resist participating in the panopticon economy but, I have wanted to set up some security cameras around my house for ages. I am simply unwilling to share my data with corps that will not…

Palo Alto Networks published its latest Defender’s Guide on May 13, claiming that scanning its own product code with Anthropic’s Mythos model under Project Glasswing produced a…

TL;DR: I built a self-hosted open-source email server known as AIMX. It's how I imagine Postfix would look like if it is built for AI agents. Learn more at aimx.email, or view the quick 40sec-demo.…

Western Cable Repair Vessel on Station off Taiwan for Fourth Consecutive Day (OSINT Intelligence)

Codex CLI for Automated Dependency Auditing: Licence Compliance, SBOM Generation, and Supply Chain Policy Enforcement Knowing your dependencies have no critical CVEs is only half the supply chain…

I think this crazy artificial intelligence bug hunting era might end up doing good for open source.

https://www.breachlab.org/

I installed OpenClaw before it was cool. That was unwise. I could see it was a security nightmare: prompt injections from anywhere, connected to all my stuff. But I decided to give…

.env was already a compromise. AI agents make it a bad one. For human developers, a .env file is a small, stable risk. It lives on one machine, it’s gitignored, the developer who wrote it is…

Cemu, the popular Wii U emulator, has been caught up in a serious software supply-chain incident after compromised Linux downloads were made available for several days. The affected files were…

I’ve updated the master patch list here. Please note I am not recommending installing updates at this time, we are just testing and reporting. As I wrote on that page: Too early to tell if…

A fascinating 9-minute video from PawelCodeStuff about randomness in the context of computing: = 2x) and (width >= 700px)"…

After Photoshop was released in 1990 and more and more people started using it to create fake/morphed photos in the subsequent years there was a big panic about not being able to trust photo’s…

Two weeks ago, I broke my phone, a Pixel 7 running GrapheneOS. And, I was wondering if I should get a new phone at all. The Jolla Phone looks great, but it won’t be out before September, and…

It's that time again. The upcoming Postgres v18.4 release (along with 17.10, 16.14, 15.18, 14.23) has dropped some serious hints in the git logs, and it's bringing a significant payload of CVE tagged…

Discover how switching to encrypted DNS boosts your privacy, blocks ads & trackers, and speeds up browsing.

Update: Apple has now finally released Safari 26.5 for Sonoma and Sequoia . I’m going to take credit for that coincidence. ;-) Some people have objected to my use of the term 0-day. I’m not sure…

Ryan Knappenberger reports: The Justice Department struggled to defend a data-sharing agreement between the Internal Revenue Service and U.S. Immigration and Customs Enforcement that allows the…

Hi there!🛡️ Security & PrivacyDouble Linux LPE week — Copy Fail (CVE-2026-31431) and Dirty Frag (CVE-2026-43284 / CVE-2026-43500) — Back-to-back kernel privilege…

There was a time when it seemed certain that cable companies would have to bite the bullet and spend the money to upgrade to fiber. While there have been some upgrades by cable companies like Cox and…

Some people allow Google to track them everywhere they go, which allows for some very specific advertising profiles, under the guise of convenience. Allowing google to have full access to my GPS is…

A beginner-friendly technical breakdown of GreenPlasma and YellowKey, two Nightmare-Eclipse Windows disclosures involving CTFMON, Object Manager abuse, WinRE, BitLocker, and the eternal comedy of…

Problem statement: An ArgoCD application references a Vault secret via helm-secrets / vals (e.g. vault://kv-v2/services/foo#/apiKey). The application is created before the secret exists in Vault, or…

A step-by-step guide to migrating a PostgreSQL 17 cluster managed by Crunchy PGO v6 to PostgreSQL 18 under CloudNativePG. Two paths are covered: a fully declarative offline migration using…

Flash OpenThread Firmware on Smlight SLZB-07 Matter/Thread is still experimental and getting started took me some time. I distilled the steps flash the OpenThread firmware onto the smlight slzb-07…

Microsoft patched a critical heap buffer overflow in the Windows DNS Client. An attacker needs no account and no help from the person sitting at the machine to trigger it. Every Windows machine that…

The ‘cloud-native’ architecture of the last decade is built on a 20-year-old assumption: that state lives in the database, and compute is stateless. If you want to scale, you scale the…

NixOS modularization with conditional imports and user-defined options.

A practical look at Windows 365, including architecture, Business vs. Enterprise, licensing, benefits, trade-offs, and where it fits. Most organizations want the same thing from modern endpoint…

My experience with Contagious Interviews (Malware delivered through fake developer job interviews)

Aurora DSQL: Meet Coupler AKA: CDC streaming in Aurora DSQL. From the Circle of Life:

Prominent table formats include [[Delta Lake]], [[Apache Iceberg]], and [[Apache Hudi]]. Data lake table formats serve as databases-like features on top of distributed [[Data Lake File Formats|File…

The second demo 1 I did during the Segment Routing workshop @ ITNOG10 illustrated how easy it is to set up and explore a small SR-MPLS network with netlab . The lab topology described a small…

Community Emergency Response Team (CERT)Back in 2024 I completed the CERT training course, and the kit they give you for free is really basic and could do with some upgrades. Its best described as a…

servus.at – kunst und kultur im netz, book, ISBN 978-3950420036,English, 96 pages, 2024, Austria The international movement of hacktivists operating servers began in the early, pioneering days of the…

For the first time in many years, Stardock has invested in a massive upgrade to its server hardware.   It's, by far, the most expensive and expansive hardware upgrade we've done.  …

Sensitivity label groups are replacing parent and child labels in Microsoft Purview. This post covers what changes, how the migration works, what Microsoft documents, what I have seen in testing and…

Supply chain attacks do not wait until production. They can run on a developer laptop during npm install , inside a CI job during npm ci , or inside an agent workspace when an LLM follows a package…

Set up a self-hosted GitHub alternative with Forgejo and CI/CD using Woodpecker CI. Full Docker Compose setup on a VPS.

Once you adopt microservices, you almost inevitably run into the question: **how do you keep writes consistent when they span multiple databases, or span a database and a message broker?** This…

Before we get into it, we should start with the basics for those who are unaware. What is a Yubikey, and why do you want one?

Using the Secure Enclave inside that hunk of metal and glass on your desk to do the mundane, safely.

nihar's internet microcloud operating runtime yottabyte - nimory is a single machine running everything I need — files, photos, notes, sync, and local AI. No subscriptions. No third-party dependency…

NATS as C2 https://www.sysdig.com/blog/nats-as-c2-inside-a-new-technique-attackers-are-using-to-harvest-cloud-credentials-and-ai-api-keys I’m using NATS as an outbound connector/transport…

Native eBPF binary coverage with funkoverage. No SDK, no recompilation, any architecture

I've been hosting projects on AWS and GCP for years. But for side projects the cost and operational overhead is a bit much. I started moving things to cheap VPS hosts. A Hetzner box, a few scripts,…

Earlier this year, I made the difficult decision to move on from Teachable as the course platform for The Taggart Institute. I couldn't be happier with the result, but while I was moving, I…

📌 Overview Using Ruby on Rails has helped make it possible to scale out and scale up to meet the demand of millions of customers enjoying their photos on millions of digital frames. The team added…