phil

@bieberium@infosec.exchange
52 Followers
212 Following
8.7K Posts

IETF RFC1925:

With sufficient thrust, pigs fly just fine. However, this is not necessarily a good idea. [...]

PronounsHe / Him
LocationCentral Germany
ProfessionSecurity minded AD & Entra ID admin
Bookwyrmhttps://books.infosec.exchange/user/bieberium
Twitter (archival data)https://twitter.com/bieberium
Twittodon (archival data)https://twittodon.com/share.php?t=bieberium&m=bieberium%40infosec.exchange
phil15m ago
Kevin Beaumont29m ago

There’s a bunch of new Netscaler vulns being exploited as zero days. Patches just out now.

Preauth RCE being used to drop webshells to backdoor orgs. CVE-2025-7775 is the main problem.

Orgs will need to do IR afterwards as technical details emerge of backdoor.

https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX694938&articleTitle=NetScaler_ADC_and_NetScaler_Gateway_Security_Bulletin_for_CVE_2025_7775_CVE_2025_7776_and_CVE_2025_8424

Loading...

phil54m ago
Laura Manach 2h ago
Mood
phil55m ago
Thom, I use 9front btw2h ago

Look, we all know Fahrenheit is the most nonsensical and most arbitrary measurement in the US (sorry @caseyliss), but I would like to posit that American Wire Gauge gives it a run for its money.

What in the fuck is even happening here.

https://en.wikipedia.org/wiki/American_wire_gauge

phil58m ago
hanno3h ago
In DMARC reporting, if you configure a mail address that does not match the policy domain, you have to "allow" receiving dmarc reporting mails by configuring a record [policyhost]._report._dmarc.[mailhost].
Plenty of people seem to be unaware of that. If you happen to run email servers at Facebook, Amazon(Cloudfront), Fastly, or Microsoft (Bing), and wonder why you don't receive DMARC reports: This is why.
phil59m ago
Show threadJan Wildeboer 😷3h ago
At home my Fritz Box takes care of DHCP and stuff, so laptops, phones etc. are in the fritz.box default domain. My homelab however has its own domain, homelab.jhw. So I have a mixture of hostnames with different domains in the same subnet. I just upgraded my home server, srv01.fritz.box and with this DNS setup, I could get a certificate with certbot for my home server from my own CA, which runs as a container on the Raspberry Pi:)
phil1h ago
abadideaJul 26, 2024
am I the only one who finds "you have read your last free article" to have a threatening aura
phil1h ago
MostlyHarmless9h ago
Gang violence is out of control.
phil1h ago
Nowa the cat😼8h ago
Meow #cat
phil1h ago
XKCD Bot8h ago
I tried uploading it to a household appliance porn site I found, but apparently their content is limited to only fans.
https://xkcd.com/3133/
phil3h ago
Hacker MemesJun 7
#caturday /usr/bin/head
×
CatSalad🐈🥗 (D.Burch) 5d ago
Show threadClaire, The Ultimate Worrier5d ago
@catsalad the internet ruined my mind because i was wondering what kind of person would put a kitten in a bowl of baked beans
Show threadAnn Annas5d ago
@waitworry @catsalad
Show threadxinit ☕5d ago

@Ananas Well, I wouldn't have ten minutes ago. Now, however, it's all I want to do, and it's all your fault.

@waitworry @catsalad

Show threadLandsil5d ago

@Ananas @waitworry @catsalad

Ugh,
I came here to repost the beens cat but I see it's not needed 😂

Show threadComrade Weez5d ago
@catsalad could be a catserrole
Show threadFurballsNHairballs5d ago
@catsalad
Poor wittle tired fella
Show threadV5d ago
@catsalad his greed shows no boundary. He shall devour the universe (starting with his own bed ).
Show threadIrritationshintergrund🍑5d ago
@catsalad cat and breakfast
Show threadRegines Radsalon5d ago
@catsalad If you want to have breakfast in bed sleep in the kitchen.
Show threadxs4me25d ago

@catsalad

Where is the milk?

Show threadEche ⚧5d ago
@catsalad bedfast
Show threadJimJoe5d ago
@catsalad His name is Cheerio.
Show threadGinevraCat5d ago
@catsalad Aaaaaaawwwwwwwwwwww. Thank-you for this!