“Mostly Harmless”
I did something stupid again. I noticed it, when I received notifications from my Prometheus monitoring. The probe that sends HTTP requests to my Nextcloud server was failing. Strangely, no other probes were failing. No high load, no memory exhaustion, no filesystem running full. Manual testing confirmed that all my other web-apps worked as expected, …
Continue reading “Shoot yourself in the foot: Docker, Nextcloud & git [en]“
Background I’ve been living without a proper TV for the past 20 years. Nevertheless, I’m consuming a shitload of video content. Mostly streaming services; the usual suspects. But also select contents from Germany’s public TV stations. So far, I’ve been watching such videos on my laptop computer – I get a lot of screen-time there, …
Continue reading “Kodi on Raspberry Pi: First Impressions [en]“
Yesterday my employment contract ended, after more than ten years at a big software company. I feel free now. Weirdly. Cause it’s not like I wasn’t free in my work there. I had a lot of freedom in what I was working on and how I organized my work. And, I was working alongside some …
Well, thanks for the warning, Google Maps: Now I’m wondering: Do you know something about Austria that I’m not aware of? Or are you just upset about Austropop, après-ski, Opernball, and what happened in Braunau? I should mention that I was planning a car trip from Munich to the Friuli region. (Shout-outs to Lago 3 …
Continue reading “Warning: This route crosses through Austria [en]“
I’ve been using OpenPGP for email signing (and very rarely for email encryption) for ages. In fact, the key that I’ve been using so far is from 2001: This key (actually two sub-keys, one for signing, one for encryption) has a fairly low size by today’s standards. I’ve been aware of this for ages, but …
I’m running Ubuntu on my laptop, using the standard disk-encryption that the Ubuntu installer provides. (Well, the one it provided a couple of years back, when I last installed from scratch.) This setup uses cryptsetup with LUKS on the main partition. This in turn contains an LVM physical volume, which contains a volume group with …
Continue reading “Shoot yourself in the foot: crypttab edition [en]“
Most of the image manipulation and media organization applications that I’m using do not have great support for meta data. Sure, they can display and edit relevant meta data. But they’re not great at filtering, bulk-editing, etc. So I’m using the exiftool CLI to get some of the basic image meta-data straight, before uploading images …
Finally some good use for my new infrastructure. I’ve had this small Angular app lying around, which I wrote for a presentation/demo on XSS a couple of years ago. So far, I’ve run it locally to demonstrate XSS vulnerabilities and how to exploit them. Now I have a place to put it and share it …
I’ve recently encountered someone, who insisted on a Bring-Your-Own-Key (BYOK) setup for compliance reason. I’ve always been skeptical about that and I didn’t have to search long for confirmation. This is what the Wikipedia article on BYOK has to say: […] a cloud computing security marketing model […] […] gives the enterprise the perceived control …
Getting TLS certificates from Let’s Encrypt is easy, but that’s just part of the story. It may sound paranoid, but being able to revoke certs is almost equally important. The premise is that there’s always a chance that your private keys will leak. Maybe it will never happen to me, but it will eventually happen …