pierrecdn
@pierrecdn.bsky.social
Net/Dev/Infra/Sec. Engineer interested in open-source, IoT, telcos market, performance etc.
Reposted by pierrecdn
The recordings from KubeVirt Summit have been posted and have now been added to our YouTube channel: www.youtube.com/playlist?lis...
The playlist description includes a link to the slidedecks used.
The playlist description includes a link to the slidedecks used.
KubeVirt Summit 2025
The session recordings from KubeVirt Summit 2025, our annual virtual event to celebrate all things on the user and developer side of KubeVirt. You can find t...
www.youtube.com
November 28, 2025 at 4:08 PM
The recordings from KubeVirt Summit have been posted and have now been added to our YouTube channel: www.youtube.com/playlist?lis...
The playlist description includes a link to the slidedecks used.
The playlist description includes a link to the slidedecks used.
Reposted by pierrecdn
This PR (on the OCaml github repo) has been going around as an example of LLM bros actively attacking software development as a practice, but I think the obvious systemic flaw you can see on this thread is wasting time debating/reviewing slop
github.com/ocaml/ocaml/...
github.com/ocaml/ocaml/...
DWARF support for macOS and Linux by joelreymont · Pull Request #14369 · ocaml/ocaml
DWARF v5 Debugging Support for OCaml Native Compiler
This PR adds DWARF v5 debug information to the OCaml native compiler, allowing proper source-level debugging in GDB and LLDB.
What's Impleme...
github.com
November 27, 2025 at 4:17 PM
This PR (on the OCaml github repo) has been going around as an example of LLM bros actively attacking software development as a practice, but I think the obvious systemic flaw you can see on this thread is wasting time debating/reviewing slop
github.com/ocaml/ocaml/...
github.com/ocaml/ocaml/...
Reposted by pierrecdn
HAProxy 3.3 is LIVE!
This release delivers incredible improvements, reinforcing why HAProxy remains a G2 leader in API management, container networking, & load balancing. It also drives lower operational costs, increased efficiency, & improved service reliability: www.haproxy.com/blog/announc...
This release delivers incredible improvements, reinforcing why HAProxy remains a G2 leader in API management, container networking, & load balancing. It also drives lower operational costs, increased efficiency, & improved service reliability: www.haproxy.com/blog/announc...
Announcing HAProxy 3.3
HAProxy 3.3 improves HAProxy's performance, usability, observability, and security in key ways.
www.haproxy.com
November 26, 2025 at 5:38 PM
HAProxy 3.3 is LIVE!
This release delivers incredible improvements, reinforcing why HAProxy remains a G2 leader in API management, container networking, & load balancing. It also drives lower operational costs, increased efficiency, & improved service reliability: www.haproxy.com/blog/announc...
This release delivers incredible improvements, reinforcing why HAProxy remains a G2 leader in API management, container networking, & load balancing. It also drives lower operational costs, increased efficiency, & improved service reliability: www.haproxy.com/blog/announc...
Reposted by pierrecdn
Millions of Cars Exposed to Remote Hacking via PerfektBlue Attack https://www.securityweek.com/millions-of-cars-exposed-to-remote-hacking-via-perfektblue-attack/ (https://news.ycombinator.com/item?id=44523885)
Millions of Cars Exposed to Remote Hacking via PerfektBlue Attack
Critical vulnerabilities in the BlueSDK Bluetooth stack that could have allowed remote code execution on car systems.
www.securityweek.com
July 10, 2025 at 9:27 PM
Millions of Cars Exposed to Remote Hacking via PerfektBlue Attack https://www.securityweek.com/millions-of-cars-exposed-to-remote-hacking-via-perfektblue-attack/ (https://news.ycombinator.com/item?id=44523885)
Reposted by pierrecdn
#Grafana 12.3 has landed! 🚀 This release delivers new features for:
∙ Interactive learning within the Grafana UI
∙ Deeper insights into #logging data
∙ Data visualization updates for greater flexibility and control
∙ Data sources (#SolarWinds, #CloudWatch, #Databricks, #Honeycomb and more)
∙ Interactive learning within the Grafana UI
∙ Deeper insights into #logging data
∙ Data visualization updates for greater flexibility and control
∙ Data sources (#SolarWinds, #CloudWatch, #Databricks, #Honeycomb and more)
Grafana 12.3 release: Interactive learning experiences, new and improved logs visualizations, and more | Grafana Labs
Grafana 12.3 delivers a new interactive learning experience, tons of data visualization updates, and more. Here are the highlights.
grafana.com
November 19, 2025 at 10:03 PM
#Grafana 12.3 has landed! 🚀 This release delivers new features for:
∙ Interactive learning within the Grafana UI
∙ Deeper insights into #logging data
∙ Data visualization updates for greater flexibility and control
∙ Data sources (#SolarWinds, #CloudWatch, #Databricks, #Honeycomb and more)
∙ Interactive learning within the Grafana UI
∙ Deeper insights into #logging data
∙ Data visualization updates for greater flexibility and control
∙ Data sources (#SolarWinds, #CloudWatch, #Databricks, #Honeycomb and more)
Very nice talk from @isovalent.bsky.social's D. Borkmann, A. Protopopov, J. Mäki - "QEMU in the Fast Lane: Accelerating KubeVirt Networking with eBPF"
www.linkedin.com/posts/borkma...
www.linkedin.com/posts/borkma...
November 19, 2025 at 9:51 PM
Very nice talk from @isovalent.bsky.social's D. Borkmann, A. Protopopov, J. Mäki - "QEMU in the Fast Lane: Accelerating KubeVirt Networking with eBPF"
www.linkedin.com/posts/borkma...
www.linkedin.com/posts/borkma...
Reposted by pierrecdn
Pajemploi, the French social security service for parents and home-based childcare providers, has suffered a data breach that may have exposed personal information of 1.2 million individuals.
French agency Pajemploi reports data breach affecting 1.2M people
Pajemploi, the French social security service for parents and home-based childcare providers, has suffered a data breach that may have exposed personal information of 1.2 million individuals.
www.bleepingcomputer.com
November 18, 2025 at 4:59 PM
Pajemploi, the French social security service for parents and home-based childcare providers, has suffered a data breach that may have exposed personal information of 1.2 million individuals.
Reposted by pierrecdn
On November 18 Cloudflare experienced a service outage. Here's a detailed breakdown of what happened. https://cfl.re/43Bw8AI
Cloudflare outage on November 18, 2025
Cloudflare suffered a service outage on November 18, 2025. The outage was triggered by a bug in generation logic for a Bot Management feature file causing many Cloudflare services to be affected.
blog.cloudflare.com
November 18, 2025 at 11:49 PM
On November 18 Cloudflare experienced a service outage. Here's a detailed breakdown of what happened. https://cfl.re/43Bw8AI
Reposted by pierrecdn
Git 2.52 is here with support for tree-level blames, new repository maintenance strategies, performance enhancements, and much more. ✨
Check out highlights from the latest release.👇
https://github.blog/open-source/git/highlights-from-git-2-52/
Check out highlights from the latest release.👇
https://github.blog/open-source/git/highlights-from-git-2-52/
Highlights from Git 2.52
The open source Git project just released Git 2.52. Here is GitHub’s look at some of the most interesting features and changes introduced since last time.
github.blog
November 17, 2025 at 6:16 PM
Git 2.52 is here with support for tree-level blames, new repository maintenance strategies, performance enhancements, and much more. ✨
Check out highlights from the latest release.👇
https://github.blog/open-source/git/highlights-from-git-2-52/
Check out highlights from the latest release.👇
https://github.blog/open-source/git/highlights-from-git-2-52/
Reposted by pierrecdn
🚨‼️ CRITICAL BREACH: EuroFiber, a major B2B digital infrastructure provider, was breached.
Threat actor ByteToBreach accessed EuroFiber's entire GLPI database, obtaining client data, tickets, internal messages, passwords, and API keys, including administrator-only data.
Threat actor ByteToBreach accessed EuroFiber's entire GLPI database, obtaining client data, tickets, internal messages, passwords, and API keys, including administrator-only data.
November 14, 2025 at 7:27 PM
🚨‼️ CRITICAL BREACH: EuroFiber, a major B2B digital infrastructure provider, was breached.
Threat actor ByteToBreach accessed EuroFiber's entire GLPI database, obtaining client data, tickets, internal messages, passwords, and API keys, including administrator-only data.
Threat actor ByteToBreach accessed EuroFiber's entire GLPI database, obtaining client data, tickets, internal messages, passwords, and API keys, including administrator-only data.
Reposted by pierrecdn
Contagious Interview Actors Now Utilize JSON Storage Services for Malware Delivery
blog.nviso.eu/2025/11/13/c...
blog.nviso.eu/2025/11/13/c...
Contagious Interview Actors Now Utilize JSON Storage Services for Malware Delivery
NVISO reports a new development in the Contagious Interview campaign. The threat actors have recently resorted to utilizing JSON storage services like JSON Keeper, JSONsilo, and npoint.io to host a…
blog.nviso.eu
November 16, 2025 at 5:26 PM
Contagious Interview Actors Now Utilize JSON Storage Services for Malware Delivery
blog.nviso.eu/2025/11/13/c...
blog.nviso.eu/2025/11/13/c...
Reposted by pierrecdn
Slides : speakerdeck.com/ju_hnny5/cap...
Capitole du Libre 2025 - Keynote - Cloud du Coeur
speakerdeck.com
November 15, 2025 at 3:33 PM
Slides : speakerdeck.com/ju_hnny5/cap...
Reposted by pierrecdn
After listening to about a dozen first-hand accounts, I’ve published what I know about the RubyGems takeover.
Shopify, pulling strings at Ruby Central, forces Bundler and RubyGems takeover
Ruby Central recently took over a collection of open source projects from their maintainers without their consent.
joel.drapper.me
September 23, 2025 at 3:08 PM
After listening to about a dozen first-hand accounts, I’ve published what I know about the RubyGems takeover.
Reposted by pierrecdn
When your dad breaks Minecraft.
And the internet.
Watch the full interview about the biggest security vulnerability of all time 👉 https://github.blog/open-source/inside-the-breach-that-broke-the-internet-the-untold-story-of-log4shell/?utm_source=social&utm_medium=social&utm_campaign=minecraft
And the internet.
Watch the full interview about the biggest security vulnerability of all time 👉 https://github.blog/open-source/inside-the-breach-that-broke-the-internet-the-untold-story-of-log4shell/?utm_source=social&utm_medium=social&utm_campaign=minecraft
November 12, 2025 at 11:21 AM
When your dad breaks Minecraft.
And the internet.
Watch the full interview about the biggest security vulnerability of all time 👉 https://github.blog/open-source/inside-the-breach-that-broke-the-internet-the-untold-story-of-log4shell/?utm_source=social&utm_medium=social&utm_campaign=minecraft
And the internet.
Watch the full interview about the biggest security vulnerability of all time 👉 https://github.blog/open-source/inside-the-breach-that-broke-the-internet-the-untold-story-of-log4shell/?utm_source=social&utm_medium=social&utm_campaign=minecraft
Reposted by pierrecdn
Unix v4 tape found. Apparently no other complete copies are known to exist. It was the first version in which the kernel was written in C. It also had minor changes to the UNIX file system (such as the ability of any inode to hold a device 'special file'.
discuss.systems/@ricci/11550...
discuss.systems/@ricci/11550...
November 11, 2025 at 4:40 AM
Unix v4 tape found. Apparently no other complete copies are known to exist. It was the first version in which the kernel was written in C. It also had minor changes to the UNIX file system (such as the ability of any inode to hold a device 'special file'.
discuss.systems/@ricci/11550...
discuss.systems/@ricci/11550...
Reposted by pierrecdn
In 2023, Signal was the first mainstream messenger to enable post-quantum cryptography. We’re still ahead of the (elliptical) curve, implementing a new hybrid PQ ratchet ensuring Forward Secrecy & Post-Compromise Security even in a post-quantum world. signal.org/blog/spqr/
Signal Protocol and Post-Quantum Ratchets
We are excited to announce a significant advancement in the security of the Signal Protocol: the introduction of the Sparse Post Quantum Ratchet (SPQR). This new ratchet enhances the Signal Protocol’s...
signal.org
October 2, 2025 at 4:09 PM
In 2023, Signal was the first mainstream messenger to enable post-quantum cryptography. We’re still ahead of the (elliptical) curve, implementing a new hybrid PQ ratchet ensuring Forward Secrecy & Post-Compromise Security even in a post-quantum world. signal.org/blog/spqr/
It seems that one wasn't published on your feed @cloudflare.social and, as usual, it's a goldmine.
"State of the post-quantum Internet in 2025"
blog.cloudflare.com/pq-2025/
"State of the post-quantum Internet in 2025"
blog.cloudflare.com/pq-2025/
State of the post-quantum Internet in 2025
Today over half of human-initiated traffic with Cloudflare is protected against harvest-now/decrypt-later with post-quantum encryption. What once was a cool science project, is the new security baseli...
blog.cloudflare.com
November 6, 2025 at 1:56 PM
It seems that one wasn't published on your feed @cloudflare.social and, as usual, it's a goldmine.
"State of the post-quantum Internet in 2025"
blog.cloudflare.com/pq-2025/
"State of the post-quantum Internet in 2025"
blog.cloudflare.com/pq-2025/
Reposted by pierrecdn
Cloudflare is launching an experiment with Chrome to evaluate fast, scalable, and quantum-ready Merkle Tree Certificates, all without degrading performance or changing WebPKI trust relationships. https://cfl.re/43HH6EG
Keeping the Internet fast and secure- introducing Merkle Tree Certificates
Cloudflare is launching an experiment with Chrome to evaluate fast, scalable, and quantum-ready Merkle Tree Certificates, all without degrading performance or changing WebPKI trust relationships.
cfl.re
October 28, 2025 at 3:00 PM
Cloudflare is launching an experiment with Chrome to evaluate fast, scalable, and quantum-ready Merkle Tree Certificates, all without degrading performance or changing WebPKI trust relationships. https://cfl.re/43HH6EG
Reposted by pierrecdn
An eBPF Loophole: Using XDP for Egress Traffic
XDP is Linux's fastest packet processor but only handles incoming traffic. We found a loophole in how the kernel determines packet direction to make it work for outgoing traffic too!
Blog post with details 👇
loopholelabs.io/blog/xdp-for...
XDP is Linux's fastest packet processor but only handles incoming traffic. We found a loophole in how the kernel determines packet direction to make it work for outgoing traffic too!
Blog post with details 👇
loopholelabs.io/blog/xdp-for...
Using XDP for Egress Traffic
XDP only works for ingress. We found a loophole that lets it work for egress. Here's how we did the impossible.
loopholelabs.io
November 4, 2025 at 6:24 PM
An eBPF Loophole: Using XDP for Egress Traffic
XDP is Linux's fastest packet processor but only handles incoming traffic. We found a loophole in how the kernel determines packet direction to make it work for outgoing traffic too!
Blog post with details 👇
loopholelabs.io/blog/xdp-for...
XDP is Linux's fastest packet processor but only handles incoming traffic. We found a loophole in how the kernel determines packet direction to make it work for outgoing traffic too!
Blog post with details 👇
loopholelabs.io/blog/xdp-for...
Reposted by pierrecdn
OpenAI strikes $38bn computing deal with Amazon on.ft.com/4oiSDT7
OpenAI strikes $38bn computing deal with Amazon
Lossmaking start-up commits to spending close to $1.5tn as it gobbles up processing power
on.ft.com
November 3, 2025 at 2:26 PM
OpenAI strikes $38bn computing deal with Amazon on.ft.com/4oiSDT7
Reposted by pierrecdn
I almost got hacked by a 'job interview'
https://blog.daviddodda.com/how-i-almost-got-hacked-by-a-job-interview
https://news.ycombinator.com/item?id=45591707
https://blog.daviddodda.com/how-i-almost-got-hacked-by-a-job-interview
https://news.ycombinator.com/item?id=45591707
How I Almost Got Hacked By A 'Job Interview'
I was 30 seconds away from running malware, Here's how a sophisticated scam operation almost got me, and why every developer needs to read this.
blog.daviddodda.com
October 15, 2025 at 4:00 PM
I almost got hacked by a 'job interview'
https://blog.daviddodda.com/how-i-almost-got-hacked-by-a-job-interview
https://news.ycombinator.com/item?id=45591707
https://blog.daviddodda.com/how-i-almost-got-hacked-by-a-job-interview
https://news.ycombinator.com/item?id=45591707
Reposted by pierrecdn
A BGP “zombie” is essentially a fancy name for a route that has become stuck in the Default-Free Zone (DFZ) of the Internet. In this post, we'll walk through riskier situations and recommended fixes. https://cfl.re/47yQOdU
BGP zombies and excessive path hunting
A BGP “zombie” is essentially a fancy name for a route that has become stuck in the Default-Free Zone (DFZ) of the Internet, potentially due to a missed or lost prefix withdrawal.
In this post, we w...
cfl.re
October 31, 2025 at 6:17 PM
A BGP “zombie” is essentially a fancy name for a route that has become stuck in the Default-Free Zone (DFZ) of the Internet. In this post, we'll walk through riskier situations and recommended fixes. https://cfl.re/47yQOdU
Reposted by pierrecdn
Programming with Less Than Nothing
Programming With Less Than Nothing
Lambda calculus is for wimps. Real programmers use combinatory logic.
joshmoody.org
October 23, 2025 at 8:43 AM
Programming with Less Than Nothing
Reposted by pierrecdn
The Day My Smart Vacuum Turned Against Me
L: https://codetiger.github.io/blog/the-day-my-smart-vacuum-turned-against-me/
C: https://news.ycombinator.com/item?id=45503560
posted on 2025.10.07 at 10:34:06 (c=4, p=5)
L: https://codetiger.github.io/blog/the-day-my-smart-vacuum-turned-against-me/
C: https://news.ycombinator.com/item?id=45503560
posted on 2025.10.07 at 10:34:06 (c=4, p=5)
October 14, 2025 at 7:37 PM
The Day My Smart Vacuum Turned Against Me
L: https://codetiger.github.io/blog/the-day-my-smart-vacuum-turned-against-me/
C: https://news.ycombinator.com/item?id=45503560
posted on 2025.10.07 at 10:34:06 (c=4, p=5)
L: https://codetiger.github.io/blog/the-day-my-smart-vacuum-turned-against-me/
C: https://news.ycombinator.com/item?id=45503560
posted on 2025.10.07 at 10:34:06 (c=4, p=5)