Jan Schaumann
@jschauma.mstdn.social.ap.brid.gy
Vell, I'm just zis guy, you know?
[bridged from https://mstdn.social/@jschauma on the fediverse by https://fed.brid.gy/ ]
[bridged from https://mstdn.social/@jschauma on the fediverse by https://fed.brid.gy/ ]
Every day I wake up and check if perhaps this is the day that IT HAPPENED. And even if its’s not today,
“The important thing to remember, though, is that IT will HAPPEN.”
https://www.mcsweeneys.net/articles/when-it-happens
“The important thing to remember, though, is that IT will HAPPEN.”
https://www.mcsweeneys.net/articles/when-it-happens
December 26, 2025 at 5:18 PM
Every day I wake up and check if perhaps this is the day that IT HAPPENED. And even if its’s not today,
“The important thing to remember, though, is that IT will HAPPEN.”
https://www.mcsweeneys.net/articles/when-it-happens
“The important thing to remember, though, is that IT will HAPPEN.”
https://www.mcsweeneys.net/articles/when-it-happens
Mein Weihnachtsgeschenk war, dass der Laden einmal richtiges Bier hatte. 🎄🍺
December 25, 2025 at 12:23 AM
Mein Weihnachtsgeschenk war, dass der Laden einmal richtiges Bier hatte. 🎄🍺
'Twas the night of the moratorium, and all through the cloud
not a pager was beeping: no deploys were allowed.
The packages frozen on the servers with care,
In hopes that an outage would strike nowhere;
The developers still pondering code to embed,
While visions of monads danced in their heads […]
not a pager was beeping: no deploys were allowed.
The packages frozen on the servers with care,
In hopes that an outage would strike nowhere;
The developers still pondering code to embed,
While visions of monads danced in their heads […]
Original post on mstdn.social
mstdn.social
December 24, 2025 at 5:22 PM
'Twas the night of the moratorium, and all through the cloud
not a pager was beeping: no deploys were allowed.
The packages frozen on the servers with care,
In hopes that an outage would strike nowhere;
The developers still pondering code to embed,
While visions of monads danced in their heads […]
not a pager was beeping: no deploys were allowed.
The packages frozen on the servers with care,
In hopes that an outage would strike nowhere;
The developers still pondering code to embed,
While visions of monads danced in their heads […]
Reposted by Jan Schaumann
I'm unhappy with my Sonos Playbase (TV audio is out of sync, streaming radio is time delayed, can no longer access my SMB 1.0 media library) and looking for recommendations. Ideally, I'd want:
- TV sound is actually in sync
- actual FM radio
- clock display
- airplay capability
- SMB 1.0 media […]
- TV sound is actually in sync
- actual FM radio
- clock display
- airplay capability
- SMB 1.0 media […]
Original post on mstdn.social
mstdn.social
November 24, 2025 at 3:01 PM
I'm unhappy with my Sonos Playbase (TV audio is out of sync, streaming radio is time delayed, can no longer access my SMB 1.0 media library) and looking for recommendations. Ideally, I'd want:
- TV sound is actually in sync
- actual FM radio
- clock display
- airplay capability
- SMB 1.0 media […]
- TV sound is actually in sync
- actual FM radio
- clock display
- airplay capability
- SMB 1.0 media […]
Oh gack, we have a whole new ouroboros of plagiarism happening now:
Students put their completed coding assignment solutions on GitHub.
AI consumes GitHub code.
When presented with a coding assignment, AI regurgitates students' code from GitHub.
Students copy the AI result into their program […]
Students put their completed coding assignment solutions on GitHub.
AI consumes GitHub code.
When presented with a coding assignment, AI regurgitates students' code from GitHub.
Students copy the AI result into their program […]
Original post on mstdn.social
mstdn.social
December 20, 2025 at 2:58 AM
Oh gack, we have a whole new ouroboros of plagiarism happening now:
Students put their completed coding assignment solutions on GitHub.
AI consumes GitHub code.
When presented with a coding assignment, AI regurgitates students' code from GitHub.
Students copy the AI result into their program […]
Students put their completed coding assignment solutions on GitHub.
AI consumes GitHub code.
When presented with a coding assignment, AI regurgitates students' code from GitHub.
Students copy the AI result into their program […]
For my fellow Log4j victims celebrating 4 years #Log4Shell PTSD: CVE-2025-68161
"The Socket Appender in Apache Log4j Core versions 2.0-beta9 through 2.25.2 does not perform TLS hostname verification of the peer certificate, even when the verifyHostName configuration attribute or the log4j2 […]
"The Socket Appender in Apache Log4j Core versions 2.0-beta9 through 2.25.2 does not perform TLS hostname verification of the peer certificate, even when the verifyHostName configuration attribute or the log4j2 […]
Original post on mstdn.social
mstdn.social
December 18, 2025 at 7:28 PM
For my fellow Log4j victims celebrating 4 years #Log4Shell PTSD: CVE-2025-68161
"The Socket Appender in Apache Log4j Core versions 2.0-beta9 through 2.25.2 does not perform TLS hostname verification of the peer certificate, even when the verifyHostName configuration attribute or the log4j2 […]
"The Socket Appender in Apache Log4j Core versions 2.0-beta9 through 2.25.2 does not perform TLS hostname verification of the peer certificate, even when the verifyHostName configuration attribute or the log4j2 […]
The number of times I engage with SREs or service owners during an incident and _they_ ask _me_ how to make a basic configuration change in _their_ app or service is astonishing.
And it seems to be going up with time, suggesting service owners increasingly simply don't understand what they're […]
And it seems to be going up with time, suggesting service owners increasingly simply don't understand what they're […]
Original post on mstdn.social
mstdn.social
December 18, 2025 at 4:34 PM
The number of times I engage with SREs or service owners during an incident and _they_ ask _me_ how to make a basic configuration change in _their_ app or service is astonishing.
And it seems to be going up with time, suggesting service owners increasingly simply don't understand what they're […]
And it seems to be going up with time, suggesting service owners increasingly simply don't understand what they're […]
If during the holiday season you put up some electric light chains, go ahead and replace the old ones with LED chains - those use 40 (!) times less energy.
December 17, 2025 at 2:52 AM
If during the holiday season you put up some electric light chains, go ahead and replace the old ones with LED chains - those use 40 (!) times less energy.
Seen on the agenda for a very formal-looking business event:
"Dress Code: Theme: Hackers Meet Caribbean Pirates"
Well, ok then.
"Dress Code: Theme: Hackers Meet Caribbean Pirates"
Well, ok then.
December 16, 2025 at 8:12 PM
Seen on the agenda for a very formal-looking business event:
"Dress Code: Theme: Hackers Meet Caribbean Pirates"
Well, ok then.
"Dress Code: Theme: Hackers Meet Caribbean Pirates"
Well, ok then.
"Note the other 159 kernel CVEs issued today..." is one hell of a statement.
https://mstdn.social/@[email protected]/115730113546366659
But since the Linux kernel developers decided to "assign CVE numbers to any bugfix that they identify", it's become de-facto impossible to meaningfully […]
https://mstdn.social/@[email protected]/115730113546366659
But since the Linux kernel developers decided to "assign CVE numbers to any bugfix that they identify", it's become de-facto impossible to meaningfully […]
Original post on mstdn.social
mstdn.social
December 16, 2025 at 4:36 PM
"Note the other 159 kernel CVEs issued today..." is one hell of a statement.
https://mstdn.social/@[email protected]/115730113546366659
But since the Linux kernel developers decided to "assign CVE numbers to any bugfix that they identify", it's become de-facto impossible to meaningfully […]
https://mstdn.social/@[email protected]/115730113546366659
But since the Linux kernel developers decided to "assign CVE numbers to any bugfix that they identify", it's become de-facto impossible to meaningfully […]
Ugh. Let's Encrypt API disruption.
```
[Tue Dec 16 11:18:30 EST 2025] Create new order error. Le_OrderFinalize not found. {
"type": "urn:ietf:params:acme:error:serverInternal",
"detail": "Unable to validate JWS",
"status": 500
}
```
https://letsencrypt.status.io/
```
[Tue Dec 16 11:18:30 EST 2025] Create new order error. Le_OrderFinalize not found. {
"type": "urn:ietf:params:acme:error:serverInternal",
"detail": "Unable to validate JWS",
"status": 500
}
```
https://letsencrypt.status.io/
Let's Encrypt Status
Support for Let's Encrypt services is community-based and information on current status and outages can be found at: https://community.letsencrypt.org
letsencrypt.status.io
December 16, 2025 at 4:31 PM
Ugh. Let's Encrypt API disruption.
```
[Tue Dec 16 11:18:30 EST 2025] Create new order error. Le_OrderFinalize not found. {
"type": "urn:ietf:params:acme:error:serverInternal",
"detail": "Unable to validate JWS",
"status": 500
}
```
https://letsencrypt.status.io/
```
[Tue Dec 16 11:18:30 EST 2025] Create new order error. Le_OrderFinalize not found. {
"type": "urn:ietf:params:acme:error:serverInternal",
"detail": "Unable to validate JWS",
"status": 500
}
```
https://letsencrypt.status.io/
I finally jotted down a table of in how far the big three browsers currently support RFC9460 HTTPS records.
In summary:
- All browsers support ALPN
- Safari has the best support; it's the only browser that supports AliasMode, but Safari doesn't support ECH
- […]
[Original post on mstdn.social]
In summary:
- All browsers support ALPN
- Safari has the best support; it's the only browser that supports AliasMode, but Safari doesn't support ECH
- […]
[Original post on mstdn.social]
December 12, 2025 at 10:11 PM
I finally jotted down a table of in how far the big three browsers currently support RFC9460 HTTPS records.
In summary:
- All browsers support ALPN
- Safari has the best support; it's the only browser that supports AliasMode, but Safari doesn't support ECH
- […]
[Original post on mstdn.social]
In summary:
- All browsers support ALPN
- Safari has the best support; it's the only browser that supports AliasMode, but Safari doesn't support ECH
- […]
[Original post on mstdn.social]
December 11, 2025 at 9:34 PM
Ugh. New conference speaker agreement terms appear:
"I acknowledge and agree that [company] uses and/or may in the future use Artificial Intelligence, and the foregoing license expressly includes the right to use the presentation and/or the other Speaker Content and Derivative Content to train […]
"I acknowledge and agree that [company] uses and/or may in the future use Artificial Intelligence, and the foregoing license expressly includes the right to use the presentation and/or the other Speaker Content and Derivative Content to train […]
Original post on mstdn.social
mstdn.social
December 10, 2025 at 9:46 PM
Ugh. New conference speaker agreement terms appear:
"I acknowledge and agree that [company] uses and/or may in the future use Artificial Intelligence, and the foregoing license expressly includes the right to use the presentation and/or the other Speaker Content and Derivative Content to train […]
"I acknowledge and agree that [company] uses and/or may in the future use Artificial Intelligence, and the foregoing license expressly includes the right to use the presentation and/or the other Speaker Content and Derivative Content to train […]
A nice stroll down #Unix memory lane, by way of various old Usenet messages:
https://blog.gabornyeki.com/2025-12-usenet/
https://blog.gabornyeki.com/2025-12-usenet/
One too many words on AT&T's $2,000 Korn shell and other Usenet topics
Comments
blog.gabornyeki.com
December 8, 2025 at 5:30 PM
A nice stroll down #Unix memory lane, by way of various old Usenet messages:
https://blog.gabornyeki.com/2025-12-usenet/
https://blog.gabornyeki.com/2025-12-usenet/
Here's another funny generational divide: students no longer understand public_html directories and /~user/ URLs because apparently nowadays shared fileserver access is no longer a thing.
Smh, fist, yells at cloud.
Smh, fist, yells at cloud.
December 5, 2025 at 9:47 PM
Here's another funny generational divide: students no longer understand public_html directories and /~user/ URLs because apparently nowadays shared fileserver access is no longer a thing.
Smh, fist, yells at cloud.
Smh, fist, yells at cloud.
This entire "oh, uhm, mmmmmaaaaaaaaybe that _second_ strike was perhaps every so slightly less than ideal" hohumming in Congress is so infuriating because it implicitly grants legitimacy to the first strike.
The second strike was not a war crime -- there is no war. It was murder. Just like the […]
The second strike was not a war crime -- there is no war. It was murder. Just like the […]
Original post on mstdn.social
mstdn.social
December 5, 2025 at 3:22 AM
This entire "oh, uhm, mmmmmaaaaaaaaybe that _second_ strike was perhaps every so slightly less than ideal" hohumming in Congress is so infuriating because it implicitly grants legitimacy to the first strike.
The second strike was not a war crime -- there is no war. It was murder. Just like the […]
The second strike was not a war crime -- there is no war. It was murder. Just like the […]
Oof, this hits hard.
"AI is Destroying the University and Learning Itself"
https://www.currentaffairs.org/news/ai-is-destroying-the-university-and-learning-itself
Choice quotes:
"The result isn’t augmented intelligence but simulated learning: a paint-by-numbers approach to thought." […]
"AI is Destroying the University and Learning Itself"
https://www.currentaffairs.org/news/ai-is-destroying-the-university-and-learning-itself
Choice quotes:
"The result isn’t augmented intelligence but simulated learning: a paint-by-numbers approach to thought." […]
Original post on mstdn.social
mstdn.social
December 4, 2025 at 7:21 PM
Oof, this hits hard.
"AI is Destroying the University and Learning Itself"
https://www.currentaffairs.org/news/ai-is-destroying-the-university-and-learning-itself
Choice quotes:
"The result isn’t augmented intelligence but simulated learning: a paint-by-numbers approach to thought." […]
"AI is Destroying the University and Learning Itself"
https://www.currentaffairs.org/news/ai-is-destroying-the-university-and-learning-itself
Choice quotes:
"The result isn’t augmented intelligence but simulated learning: a paint-by-numbers approach to thought." […]
You have a bug bounty program - nice.
You have a .well-known/security.txt - great!
You have an eager and useless clippy "assistant" on your website, because of course you do. It's useless.
But you still need a simple email address for folks to be able to reach out to you.
No "log in to […]
You have a .well-known/security.txt - great!
You have an eager and useless clippy "assistant" on your website, because of course you do. It's useless.
But you still need a simple email address for folks to be able to reach out to you.
No "log in to […]
Original post on mstdn.social
mstdn.social
December 4, 2025 at 2:42 PM
You have a bug bounty program - nice.
You have a .well-known/security.txt - great!
You have an eager and useless clippy "assistant" on your website, because of course you do. It's useless.
But you still need a simple email address for folks to be able to reach out to you.
No "log in to […]
You have a .well-known/security.txt - great!
You have an eager and useless clippy "assistant" on your website, because of course you do. It's useless.
But you still need a simple email address for folks to be able to reach out to you.
No "log in to […]
💡 Updated guide to quickly ignore AI Slop:
🧠 github lists, e.g., Claude as a collaborator
✅ README or write-up contains stupid emoji everywhere
🚀 God this is so stupid
*headdesk*
🧠 github lists, e.g., Claude as a collaborator
✅ README or write-up contains stupid emoji everywhere
🚀 God this is so stupid
*headdesk*
December 4, 2025 at 2:05 PM
💡 Updated guide to quickly ignore AI Slop:
🧠 github lists, e.g., Claude as a collaborator
✅ README or write-up contains stupid emoji everywhere
🚀 God this is so stupid
*headdesk*
🧠 github lists, e.g., Claude as a collaborator
✅ README or write-up contains stupid emoji everywhere
🚀 God this is so stupid
*headdesk*
Today in "AI ruins everything": AI generated "PoC" for the React RCE CVE-2025-55182, wasting countless defenders' hours, now get included in the CVE references. 🤦♂️
At least the co-author alongside the AI has updated the README now:
https://github.com/ejpir/CVE-2025-55182-poc
Looks like the […]
At least the co-author alongside the AI has updated the README now:
https://github.com/ejpir/CVE-2025-55182-poc
Looks like the […]
Original post on mstdn.social
mstdn.social
December 4, 2025 at 1:58 PM
Today in "AI ruins everything": AI generated "PoC" for the React RCE CVE-2025-55182, wasting countless defenders' hours, now get included in the CVE references. 🤦♂️
At least the co-author alongside the AI has updated the README now:
https://github.com/ejpir/CVE-2025-55182-poc
Looks like the […]
At least the co-author alongside the AI has updated the README now:
https://github.com/ejpir/CVE-2025-55182-poc
Looks like the […]
"We did a number of refactors [...] This also fixes a critical security vulnerability." 👀
CVE-2025-55182, an RCE in React Server Components just landed:
https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components
Enjoy your patching, and make sure to check […]
CVE-2025-55182, an RCE in React Server Components just landed:
https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components
Enjoy your patching, and make sure to check […]
Original post on mstdn.social
mstdn.social
December 3, 2025 at 3:57 PM
"We did a number of refactors [...] This also fixes a critical security vulnerability." 👀
CVE-2025-55182, an RCE in React Server Components just landed:
https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components
Enjoy your patching, and make sure to check […]
CVE-2025-55182, an RCE in React Server Components just landed:
https://react.dev/blog/2025/12/03/critical-security-vulnerability-in-react-server-components
Enjoy your patching, and make sure to check […]
RE: https://mstdn.social/@jschauma/115634054717097772
I don’t know, man. Y’all are a lot more optimistic than me. I don’t see universal IPv6 adoption on this time horizon…
I don’t know, man. Y’all are a lot more optimistic than me. I don’t see universal IPv6 adoption on this time horizon…
mstdn.social
November 30, 2025 at 5:16 PM
RE: https://mstdn.social/@jschauma/115634054717097772
I don’t know, man. Y’all are a lot more optimistic than me. I don’t see universal IPv6 adoption on this time horizon…
I don’t know, man. Y’all are a lot more optimistic than me. I don’t see universal IPv6 adoption on this time horizon…
RE: https://federate.social/@mattblaze/115630395903319664
Reminding military personnel that they must disobey an illegal order is simultaneously critically important and apparently futile.
Commanders and top brass who _might_ be in a position to disobey an order by SecDef are being eliminated […]
Reminding military personnel that they must disobey an illegal order is simultaneously critically important and apparently futile.
Commanders and top brass who _might_ be in a position to disobey an order by SecDef are being eliminated […]
November 29, 2025 at 2:36 AM
RE: https://federate.social/@mattblaze/115630395903319664
Reminding military personnel that they must disobey an illegal order is simultaneously critically important and apparently futile.
Commanders and top brass who _might_ be in a position to disobey an order by SecDef are being eliminated […]
Reminding military personnel that they must disobey an illegal order is simultaneously critically important and apparently futile.
Commanders and top brass who _might_ be in a position to disobey an order by SecDef are being eliminated […]
Reposted by Jan Schaumann
The ICC should issue an arrest warrant for Hegseth, and at least start an investigation into Trump.
November 29, 2025 at 2:10 AM
The ICC should issue an arrest warrant for Hegseth, and at least start an investigation into Trump.