macOS Sierra review – Behind enemy lines

I’ve never owned a single Apple product but lately I’ve been wondering how good a real UNIX certified operating system might actually be. To get my feet wet, I decided to try out macOS Sierra in a VirtualBox session on a Linux host. I’m aware that much of the Apple experience is closely connected to the hardware, but personally I was more interested in the isolated OS experience.

Continue reading

Top 5 GNU/Linux distributions of 2017

Are you currently unsatisfied with your Linux distribution? Perhaps it’s time to consider a distribution that offers more than a different selection of wallpapers. Make your Linux experience great again by choosing one of the following operating systems.

Continue reading

Season’s greetings from the Chaos Computer Club

So the 34. Chaos Communication Congress is currently in progress and the boys (and girls) attending were kind enough to send some thoughtful wishes to working sysadmins around the globe. The following entry appeared in my server log earlier today:

Continue reading

Wordfence warns against a massive brute-force attack campaign

On the 18th of December Wordfence posted the following entry describing an ongoing distributed brute force-attack campaign targeting WordPress installations. It was accompanied by a dramatic chart highlighting the number of attacks per hour. According to Wordfence, it was the most aggressive campaign they’ve seen so far. However, as a WordPress hosting provider I’ve found no data to support these claims.

Continue reading

I bought a new domain name through Njalla

I wanted to register a new domain name and decided to go with the privacy-aware domain registration service from Njalla. Unlike other domain registration services, Njalla actually purchases the domain for themselves and acquires full legal ownership and responsibility for the domain name. Njalla however grants you full control over the domain as long as you abide by their terms and conditions.

Continue reading

CAcert – A community-driven Certificate Authority

So I was reading the Alien Pastures blog with great interest earlier and was surprised to learn that Eric Hameleers had chosen to secure his upcoming website with a certificate from CAcert. Unfortunately, certificates from CAcert are not trusted by most browsers and platforms and will either generate ominous looking warnings or be outright blocked.

Continue reading

A year of hosting an onion site

A short story detailing my experiences with hackers, SIGINT and the inherent depravity of humankind. In truth though, this story may lack all the aforementioned ingredients.

Continue reading

Arch Linux is so outdated that even WordPress is complaining

Now this is definitely something you won’t see every day so I took the opportunity to immortalize it with a screenshot. The package being “flagged” as out of date by WordPress is Firefox from the Arch extra repository.

Continue reading

HSTS preload list achievement unlocked

Happy days! With the release of Chrome 61 paranoidpenguin.net was finally added to Chrome’s preloaded HSTS list. This means that the Chrome browser will always connect to paranoidpenguin.net and subdomains using HTTPS. Most major browsers are also using the Chrome HSTS preload list, so future benefits are not limited to Chrome users only.

Continue reading

Do we need a Slackware Enterprise Linux?

So the annual “Slackware needs PAM and Kerberos” thread is going strong over at linuxquestions.org at the moment. This particular topic always seem to awaken a collective inferiority complex within the Slackware community, where users are aggressively refuting any claim that Slackware is not a viable choice for business use (you can do anything with some lines of bash right?…). At the opposite side you have users arguing that Slackware has become a niche hobbyist distribution due to its reluctance to implement mainstream technologies.

Continue reading