Liebe @tagesschau und @NDR

Wollt ihr mal bei den Kollegen von der #Sportschau anklopfen? Deren Website zieht laut NoScript Zeug von pa-cd.com und h-cdn.com. Beide sind offline, beide scheinen "niemandem" zu gehören. Also wirklich nichts, auf das man blind zugreifen will, oder?

#IPsec #IT #StopPullingScriptsFromOtherServers

Wow! After delving into IPSec strongSwan rekeying, I now know that the initial 'data key' (Child SA) is like a quick handshake with no fancy secret exchange (PFS) (RTFM! [1]). However, for rekeys, it's full secret agent handshake mode! Writing the GitHub bug report, which turned out not to be a bug, helped me to understand my situation better. [2] Finally migrated to the new IPSEC connection setup in OPNsense and updated my blog post. [3]

(Now I expect to get answers, aka 'Use WireGuard!')

[1]: https://docs.strongswan.org/docs/latest/config/rekeying.html#_ikev2
[2]: https://github.com/opnsense/core/issues/8631
[3]: https://du.nkel.dev/blog/2021-11-19_pfsense_opnsense_ipsec_cgnat/

#IPsec #PFS #strongSwan #GeekAdventures #OPNsense

🇬🇧 𝗢𝗽𝗲𝗻𝗪𝗿𝘁, 𝗺𝘄𝗮𝗻𝟯 𝗮𝗻𝗱 𝗱𝗲𝗳𝗮𝘂𝗹𝘁 𝗿𝗼𝘂𝘁𝗲 𝗳𝗼𝗿 𝗜𝗣𝘀𝗲𝗰 𝘁𝘂𝗻𝗻𝗲𝗹

OpenWrt mwan3 and IPsec failover: Resolve default route issues for seamless internet & VPN redundancy. Learn how to configure mwan3.user for automatic metric adjustments and IPsec tunnel switching.

https://dariusz.wieckiewicz.org/en/openwrt-mwan3-default-route-ipsec/

#OpenWrt
#ipsec
#wireguard
#mwan3
#defaultroute
#iproute
#failover

#Microsoft Confirms #Password Spraying #Attack — What You Need To Know

#cybersec #cyber #IPsec

https://www.forbes.com/sites/daveywinder/2025/04/28/microsoft-confirms-password-spraying-attack---what-you-need-to-know/

Pour #Bruxelles , néanmoins, il n'y a #aucune #preuve que les #coupures des #réseaux #électriques soient liées à une #cyberattaque (pour le moment.. car des investigations sont en cours...)

#cyberguerre #cyber #IPsec