Season’s greetings from the Chaos Computer Club

So the 34. Chaos Communication Congress is currently in progress and the boys (and girls) attending were kind enough to send some thoughtful wishes to working sysadmins around the globe. The following entry appeared in my server log earlier today:

Continue reading

Wordfence warns against a massive brute-force attack campaign

On the 18th of December Wordfence posted the following entry describing an ongoing distributed brute force-attack campaign targeting WordPress installations. It was accompanied by a dramatic chart highlighting the number of attacks per hour. According to Wordfence, it was the most aggressive campaign they’ve seen so far. However, as a WordPress hosting provider I’ve found no data to support these claims.

Continue reading

I bought a new domain name through Njalla

I wanted to register a new domain name and decided to go with the privacy-aware domain registration service from Njalla. Unlike other domain registration services, Njalla actually purchases the domain for themselves and acquires full legal ownership and responsibility for the domain name. Njalla however grants you full control over the domain as long as you abide by their terms and conditions.

Continue reading

CAcert – A community-driven Certificate Authority

So I was reading the Alien Pastures blog with great interest earlier and was surprised to learn that Eric Hameleers had chosen to secure his upcoming website with a certificate from CAcert. Unfortunately, certificates from CAcert are not trusted by most browsers and platforms and will either generate ominous looking warnings or be outright blocked.

Continue reading

A year of hosting an onion site

A short story detailing my experiences with hackers, SIGINT and the inherent depravity of humankind. In truth though, this story may lack all the aforementioned ingredients.

Continue reading

Arch Linux is so outdated that even WordPress is complaining

Now this is definitely something you won’t see every day so I took the opportunity to immortalize it with a screenshot. The package being “flagged” as out of date by WordPress is Firefox from the Arch extra repository.

Continue reading

HSTS preload list achievement unlocked

Happy days! With the release of Chrome 61 paranoidpenguin.net was finally added to Chrome’s preloaded HSTS list. This means that the Chrome browser will always connect to paranoidpenguin.net and subdomains using HTTPS. Most major browsers are also using the Chrome HSTS preload list, so future benefits are not limited to Chrome users only.

Continue reading

Do we need a Slackware Enterprise Linux?

So the annual “Slackware needs PAM and Kerberos” thread is going strong over at linuxquestions.org at the moment. This particular topic always seem to awaken a collective inferiority complex within the Slackware community, where users are aggressively refuting any claim that Slackware is not a viable choice for business use (you can do anything with some lines of bash right?…). At the opposite side you have users arguing that Slackware has become a niche hobbyist distribution due to its reluctance to implement mainstream technologies.

Continue reading

Goodbye FeedBurner

My apologies to readers who subscribed to this blog through Feedburner but I’ve gone ahead and deleted my feeds from their service. I won’t be providing an alternative email subscription service, but the content feed will still be available from this URL.

Continue reading

Let’s Encrypt goes TITSUP

Let’s Encrypt suffered from a major service disruption today leaving users unable to access various services. The cause of the problem seems to have been an update to Boulder (ACME CA) which has since been reversed.

Even though the inability to issue certificates was surely a nuisance, the biggest problem might have been a nonresponding OCSP responder.

Continue reading