GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE
  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Notices by Jan Schaumann (jschauma@mstdn.social)

  1. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Tuesday, 16-Jun-2026 19:52:05 JST Jan Schaumann Jan Schaumann

    I miss Web 1.0. You click a link, you get to the website, you read the content. What a concept.

    In conversation about 19 days ago from mstdn.social permalink
  2. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Wednesday, 10-Jun-2026 23:48:08 JST Jan Schaumann Jan Schaumann

    So people are totally now using AI models for regular stuff that you can do via shell scripts and cron, because why do something for free when you can burn tokens and at the same time actively forget how to use the normal tools at your disposal?

    🤦 🙏 🤦

    In conversation about a month ago from mstdn.social permalink
  3. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Thursday, 21-May-2026 23:11:17 JST Jan Schaumann Jan Schaumann
    in reply to

    Now this is some bullshit.

    Today: Don't have an "approved" phone? Too bad for you.
    Tomorrow: Don't have a Google account? Good bye.

    Another nail in the coffin of the Open Web. Those fuckers.

    https://thecodersblog.com/google-breaks-recaptcha-for-de-googled-android-users-2026/

    https://cybernews.com/privacy/google-qr-code-recaptcha-requires-approved-phone/

    In conversation about a month ago from mstdn.social permalink
  4. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Thursday, 21-May-2026 14:42:50 JST Jan Schaumann Jan Schaumann

    Now what the fresh fuck is this, then?

    Not today, Satan.

    In conversation about a month ago from mstdn.social permalink

    Attachments


    1. https://media.mstdn.social/media_attachments/files/116/610/266/172/810/693/original/d079b19672b93cdf.png
  5. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Saturday, 09-May-2026 04:31:22 JST Jan Schaumann Jan Schaumann

    #DirtyFrag status/advisories:

    AlmaLinux:
    https://almalinux.org/blog/2026-05-07-dirty-frag/

    Debian:
    https://security-tracker.debian.org/tracker/CVE-2026-43500
    https://security-tracker.debian.org/tracker/CVE-2026-43284

    Gentoo:
    https://bugs.gentoo.org/974307

    RedHat:
    https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2026-43284
    https://access.redhat.com/security/cve/cve-2026-43284
    nothing yet on CVE-2026-43500

    Rocky:
    https://kb.ciq.com/article/rocky-linux/rl-dirty-frag-mitigation

    SUSE / OpenSUSE:
    https://www.suse.com/security/cve/CVE-2026-43500.html
    https://www.suse.com/security/cve/CVE-2026-43284.html
    https://www.suse.com/c/addressing-copy-fail2-aka-dirtyfrag-in-suse-virtualization/

    Ubuntu:
    https://ubuntu.com/security/CVE-2026-43284
    https://ubuntu.com/security/CVE-2026-43500
    https://ubuntu.com/blog/dirty-frag-linux-vulnerability-fixes-available

    AWS:
    https://aws.amazon.com/security/security-bulletins/rss/2026-027-aws/
    https://explore.alas.aws.amazon.com/CVE-2026-43284.html

    In conversation about 2 months ago from mstdn.social permalink

    Attachments


    1. No result found on File_thumbnail lookup.
      CVE-2026-43500


    2. No result found on File_thumbnail lookup.
      2467771 – (CVE-2026-43284) CVE-2026-43284 kernel: "Dirty Frag" is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel
    3. No result found on File_thumbnail lookup.
      cve-details

    4. Domain not in remote thumbnail source whitelist: www.suse.com
      CVE-2026-43500 Common Vulnerabilities and Exposures | SUSE
      Secure your Linux systems from CVE-2026-43500 with SUSE.
  6. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Friday, 08-May-2026 09:22:35 JST Jan Schaumann Jan Schaumann

    The rxrpc module is likely easier for you to block, but if you can't blocklist the ESP kernel modules, note that that exploit path requires the ability to call `unshare(CLONE_NEWUSER | CLONE_NEWNET)`.

    That is

    ```
    sysctl -w kernel.unprivileged_userns_clone=1
    ```

    prevents the ESP exploit.

    (That also prevents that other silly variant.)

    #DirtyFrag

    In conversation about 2 months ago from mstdn.social permalink
  7. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Friday, 08-May-2026 08:31:21 JST Jan Schaumann Jan Schaumann

    Oh FFS.

    #DirtyFrag
    https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md

    "Because the embargo has now been broken, no patches or CVEs exist for these vulnerabilities."

    https://www.openwall.com/lists/oss-security/2026/05/07/8

    Well, just put that CopyFail incident work on rinse and repeat, I suppose...

    In conversation about 2 months ago from mstdn.social permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: opengraph.githubassets.com
      dirtyfrag/assets/write-up.md at master · V4bel/dirtyfrag
      Contribute to V4bel/dirtyfrag development by creating an account on GitHub.

  8. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Tuesday, 14-Apr-2026 16:05:56 JST Jan Schaumann Jan Schaumann

    *slow clap* to everybody out there doing Anthropic's Marketing Team's job for them. 🍿

    In conversation about 3 months ago from mstdn.social permalink
  9. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Sunday, 12-Apr-2026 02:39:29 JST Jan Schaumann Jan Schaumann

    "#Mythos discovers 27-year-old bug" is intentionally conflating length of existence of a bug with difficulty of finding it. There is no such correlation.

    If software projects and companies performed regular, ongoing, in-depth code audits over and over and missed it, sure, then age would be meaningful, but that is simply not what organizations do.

    But sure, it makes for great headlines.

    In conversation about 3 months ago from mstdn.social permalink
  10. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Monday, 23-Mar-2026 22:55:57 JST Jan Schaumann Jan Schaumann

    The monetary waste aside, and assuming companies using leaderboards and bonus incentives for token use haven't ever heard (!) of Goodhart's Law, the obliviousness to the environmental impact resulting from "tokenmaxxing" is just obscene.

    Encouraging and rewarding employees to do maximum environmental damage is positively evil and journalists should call this out in their coverage every single time.

    https://www.nytimes.com/2026/03/20/technology/tokenmaxxing-ai-agents.html

    In conversation about 3 months ago from mstdn.social permalink
  11. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Thursday, 19-Mar-2026 05:14:11 JST Jan Schaumann Jan Schaumann

    Starting to think the real risk is not AI replacing junior staff, but senior staff quitting because they just can’t take this AI bullshit any longer and just opt for early retirement.

    In conversation about 4 months ago from mstdn.social permalink
  12. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Thursday, 12-Mar-2026 02:11:52 JST Jan Schaumann Jan Schaumann

    Why I'm such a jolly chap these days.

    In conversation about 4 months ago from mstdn.social permalink

    Attachments


    1. https://media.mstdn.social/media_attachments/files/116/210/974/714/176/254/original/7a74e6eb3aa92d73.png
  13. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Saturday, 07-Mar-2026 20:47:35 JST Jan Schaumann Jan Schaumann

    System Administration: Week 5: Networking I: IPv6 Basics

    In this video, we get familiar with our Big Hero IPv6, looking at the structure of the IPv6 header and IPv6 address representations.

    Since we're using AWS #EC2, remember that we have instructions for how to set up a dual-stack VPC and subnet to launch your instances in:

    https://www.netmeister.org/blog/ec2-ipv6.html

    https://youtu.be/wZ5cmlIlP3I

    #sysadmin #devops #sre

    In conversation about 4 months ago from mstdn.social permalink
  14. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Saturday, 07-Mar-2026 20:47:34 JST Jan Schaumann Jan Schaumann
    in reply to

    System Administration: Week 5: Networking I: IP Allocation & IPv4 Exhaustion

    Mommy, where do IP addresses come from? In this video, we discuss how IANA allocates IP addresses to the Regional Internet Registries and try to illustrate just how large the #IPv6 address space is.

    https://youtu.be/r2GXh8uUgWc

    #sysadmin #devops #sre

    In conversation about 4 months ago from mstdn.social permalink
  15. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Saturday, 07-Mar-2026 20:47:33 JST Jan Schaumann Jan Schaumann
    in reply to

    System Administration: Week 5: Networking I:The Physical Internet

    In this video, we look at the physical structure of the internet, with a focus on submarine internet communications cables. Jumping from the bottom of the OSI stack all the way to Layer 9 ("political"), we then discuss how different countries use their political power to enforce internet blocks on their citizens, leading us to warrantless wiretapping in AT&T's room 641A.

    https://youtu.be/4YrHdD1uIxs

    #sysadmin #devops #sre

    In conversation about 4 months ago from mstdn.social permalink
  16. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Saturday, 07-Mar-2026 20:47:32 JST Jan Schaumann Jan Schaumann
    in reply to

    System Administration: Week 5: Networking I: A Network of Networks

    In this video, we look at how independent networks connect to one another, how Autonomous Systems numbers allow us to identify network operators, and how peering between independent ASs works.

    https://youtu.be/OOq7jGlhBjY

    #sysadmin #devops #sre

    In conversation about 4 months ago from mstdn.social permalink
  17. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Saturday, 07-Mar-2026 20:47:31 JST Jan Schaumann Jan Schaumann
    in reply to

    System Administration: Week 6: Networking II: A Simple Request

    In this video, we trace a simple HTTP request made via telnet to find out just how exactly our application knows how to connect to the remote server. In the process we learn about the ktrace(1) utility, as well as the nsswitch.conf(5), hosts(5), and resolv.conf(5) configuration files.

    https://youtu.be/mw1YzFSYuwE

    #sysadmin #devops #sre

    In conversation about 4 months ago from mstdn.social permalink
  18. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Saturday, 07-Mar-2026 20:47:30 JST Jan Schaumann Jan Schaumann
    in reply to

    System Administration: Week 6: Networking II: ARP and NDP

    In this video, we illustrate the functionality of the Address Resolution Protocol (ARP) and it's IPv6 equivalent, the Neighbor Discovery Protocol (NDP).

    https://youtu.be/1gtkpbF_h6M

    #sysadmin #devops #sre

    In conversation about 4 months ago from mstdn.social permalink
  19. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Saturday, 07-Mar-2026 20:47:29 JST Jan Schaumann Jan Schaumann
    in reply to

    System Administration: Week 6: Networking II: ICMP

    In this video, we demonstrate the use of the Internet Control Message Protocol or ICMP by tracing and analyzing ping(1) and traceroute(1) invocations.

    And in case you're wondering: http://shouldiblockicmp.com

    https://youtu.be/JQn8PgfZ68M

    #sysadmin #devops #sre

    In conversation about 4 months ago from mstdn.social permalink

    Attachments


  20. Embed this notice
    Jan Schaumann (jschauma@mstdn.social)'s status on Saturday, 07-Mar-2026 20:47:28 JST Jan Schaumann Jan Schaumann
    in reply to

    System Administration: Week 7: DNS, Part I

    In this video, we are beginning our discussion of the #DNS. We go back to the early days of the internet when copying /etc/hosts from system to system was the way to resolve hosts...

    (Hosts file from 1983: https://rscott.org/OldInternetFiles/hosts.19831104.txt)

    ...and we cover the structure of the domain name space and the creation of the top-level domains.

    (Second-level domain inventory from 1987: https://rscott.org/OldInternetFiles/domain-info.19871215.txt)

    https://youtu.be/-bpIT7M9i00

    #sysadmin #devops #sre

    In conversation about 4 months ago from mstdn.social permalink

    Attachments



  • Before

User actions

    Jan Schaumann

    Jan Schaumann

    Vell, I'm just zis guy, you know?

    Tags
    • (None)

    Following 0

      Followers 0

        Groups 0

          Statistics

          User ID
          110518
          Member since
          31 Mar 2023
          Notices
          191
          Daily average
          0

          Feeds

          • Atom
          • Help
          • About
          • FAQ
          • TOS
          • Privacy
          • Source
          • Version
          • Contact

          GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

          Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.