Dr. Christopher Kunz (@christopherkunz) Bsky

For instance, there's 32 oidentd processes running on the box. What are they good for again? I vaguely remember oidentd being necessary for connections to IRC servers, but that's about it. Any pointers? [2/2]

18 hours ago 0 0 0 0

Und der Üstra-Streik sorgt bei den wenigen Restpünktlichen fürs notwendige Chaos.

1 day ago 1 0 1 0

Update: There was a new definition update last night and guess what…? Yeah.

Which is not surprising - I would expect that there‘s at least a hotfix necessary because RedSun blocks Defender.

1 day ago 1 0 0 0

Windows 11 local privilege escalation "RedSun", 4 days old and - as of today, 9:30pm, still unfixed.

1 day ago 3 1 1 0

Meine private Theorie: Alle Mitarbeitenden von Flixtrain sind Raucher und je früher sie am nächsten Bahnhof ankommen, desto eher (und länger) können sie eine Raucherpause machen. Die werden nämlich bei jedem Halt extra angekündigt. [2/2]

2 days ago 1 0 0 0

It seems that Microsoft has added detection for RedSun in the latest Defender threat definition update: www.microsoft.com/en-us/wdsi/threats/malwa...

4 days ago 0 0 0 0

30 Jahre heise online – wir feiern! Am 17. April 1996 startete der heise-Newsticker. Heute ist heise online das führende IT-Nachrichtenportal im deutschsprachigen Raum. Wir bedanken uns!

Am 17. April 1996 startete der heise-Newsticker. Heute ist heise online das führende IT-Nachrichtenportal im deutschsprachigen Raum. Wir bedanken uns! #Journal

4 days ago 43 11 3 3

> D-Trust has issued 57,565 certificates in violation of Section 4.3.1.2 of the TLS Baseline Requirements over a period of more than 12 months.

That's, like... a lot.

4 days ago 0 1 0 0

Cassandrich (@dalias@hachyderm.io) Spam defense tip for folks self-hosting email: the #1 performing rule I have (accounts for ~75% of blocked messages) is rejecting forged EHLO hostname. That is, client greeting us with EHLO followed by a hostname that does not resolve to the IP address they're sending from. It's dead simple but super effective. Does need a few allowlist exceptions for known broken senders, most notably Microsoft.

RE: https://hachyderm.io/@dalias/116411631853678642

"Does need a few allowlist exceptions for known broken senders, most notably Microsoft."
Does it? :->

4 days ago 0 0 0 0

Danke - das war mein kaputtes Mastodon Crossposting.

4 days ago 0 0 0 0

de/hintergrund/Private-Energiewende-fuer-Skeptiker-Praxisbericht-Wenn-es-nur-ums-Geld-geht-11247011.html [2/2]

4 days ago 0 0 0 0

Sehr schöner Artikel vom Kollegen Gleich zu den Kostenaspekten der persönlichen Energiewende. Ich habe seine Zahlen mit meiner eigenen Berechnung verglichen und das kommt sich (leider) gut aus. Allein für diesen Artikel lohnt sich ein heise+-Abo. https://www.heise [1/2]

4 days ago 2 0 2 0

Sehr schöner Artikel vom Kollegen Gleich zu den Kostenaspekten der persönlichen Energiewende. Ich habe seine Zahlen mit meiner eigenen Berechnung verglichen und das kommt sich (leider) gut aus. Allein für diesen Artikel lohnt sich ein heise+-Abo. https://www.heise [1/2]

4 days ago 1 0 0 0

This is how RedSun looks to Defender: It is detected as Virus:DOS/EICAR_Test_File and Defender fails to remove it. This is a Windows 11 system that was patched today.

5 days ago 2 0 0 0

My only guess would be that the document kind of considers the optical platform "immortal" and only considers uptimes of the layer 3 platforms. [2/3]

5 days ago 0 0 0 0

grawity (@grawity@treehouse.systems) https://network.geant.org/wp-content/uploads/2024/03/GEANT-IP-Service-Description-March-2024.pdf I wonder what exactly makes option 1 (both paths going through PoP A) more resilient than option 2 (diverse paths to PoPs A and B)?

RE: social.treehouse.systems/@grawity/116414674970480...

Huh, this is counterintuitive. I don't really have a solution, but I admire the problem. [1/3]

5 days ago 0 0 1 0

My only guess would be that the document kind of considers the optical platform "immortal" and only considers uptimes of the layer 3 platforms. [2/3]

5 days ago 0 0 0 0

grawity (@grawity@treehouse.systems) https://network.geant.org/wp-content/uploads/2024/03/GEANT-IP-Service-Description-March-2024.pdf I wonder what exactly makes option 1 (both paths going through PoP A) more resilient than option 2 (diverse paths to PoPs A and B)?

RE: social.treehouse.systems/@grawity/116414674970480...

Huh, this is counterintuitive. I don't really have a solution, but I admire the problem. [1/3]

5 days ago 0 0 1 0

grawity (@grawity@treehouse.systems) https://network.geant.org/wp-content/uploads/2024/03/GEANT-IP-Service-Description-March-2024.pdf I wonder what exactly makes option 1 (both paths going through PoP A) more resilient than option 2 (diverse paths to PoPs A and B)?

RE: social.treehouse.systems/@grawity/116414674970480...

Huh, this is counterintuitive. I don't really have a solution, but I admire the problem. [1/3]

5 days ago 0 0 0 0

My only guess would be that the document kind of considers the optical platform "immortal" and only considers uptimes of the layer 3 platforms. [2/3]

5 days ago 0 0 0 0

grawity (@grawity@treehouse.systems) https://network.geant.org/wp-content/uploads/2024/03/GEANT-IP-Service-Description-March-2024.pdf I wonder what exactly makes option 1 (both paths going through PoP A) more resilient than option 2 (diverse paths to PoPs A and B)?

RE: social.treehouse.systems/@grawity/116414674970480...

Huh, this is counterintuitive. I don't really have a solution, but I admire the problem. [1/3]

5 days ago 0 0 0 0

grawity (@grawity@treehouse.systems) https://network.geant.org/wp-content/uploads/2024/03/GEANT-IP-Service-Description-March-2024.pdf I wonder what exactly makes option 1 (both paths going through PoP A) more resilient than option 2 (diverse paths to PoPs A and B)?

RE: social.treehouse.systems/@grawity/116414674970480...

Huh, this is counterintuitive. I don't really have a solution, but I admire the problem. [1/3]

5 days ago 0 0 0 0

My only guess would be that the document kind of considers the optical platform "immortal" and only considers uptimes of the layer 3 platforms. [2/3]

5 days ago 0 0 0 0

grawity (@grawity@treehouse.systems) https://network.geant.org/wp-content/uploads/2024/03/GEANT-IP-Service-Description-March-2024.pdf I wonder what exactly makes option 1 (both paths going through PoP A) more resilient than option 2 (diverse paths to PoPs A and B)?

RE: social.treehouse.systems/@grawity/116414674970480...

Huh, this is counterintuitive. I don't really have a solution, but I admire the problem. [1/3]

5 days ago 0 0 1 0

My only guess would be that the document kind of considers the optical platform "immortal" and only considers uptimes of the layer 3 platforms. [2/3]

5 days ago 0 0 0 0

grawity (@grawity@treehouse.systems) https://network.geant.org/wp-content/uploads/2024/03/GEANT-IP-Service-Description-March-2024.pdf I wonder what exactly makes option 1 (both paths going through PoP A) more resilient than option 2 (diverse paths to PoPs A and B)?

RE: social.treehouse.systems/@grawity/116414674970480...

Huh, this is counterintuitive. I don't really have a solution, but I admire the problem. [1/3]

5 days ago 0 0 0 0

Asssemblys werden optimiert - klingt ein bisschen nach einem Job fürs #40c3 Orgateam.

5 days ago 2 0 0 0

Dennoch sagen Claudia Plattner und Alexander Dobrindt bei jeder sich bietenden Gelegenheit die Vokabel "Cyberdome" in die Mikros.

Wann wird er mehr als ein Buzzword? [3/3]

5 days ago 1 0 1 0

Am 30.06.2025 schrieb heise erstmals vom "Cyber-Dome". Das ist neun (9) Monate her. Eine Ewigkeit in IT-Zeit. [1/3]

5 days ago 1 0 1 0

Noch immer gibt es exakt *keine* Details zur technischen, organisatorischen, rechtlichen und gesetzlichen Ausgestaltung dieses Vorhabens. BMI und nachgeordnete Behörden verweigern dem Souverän praktisch jede Auskunft. [2/3]

5 days ago 0 0 0 0

Posts by Dr. Christopher Kunz