Felix Moessbauer

@fmoessbauer
59 Followers
56 Following
256 Posts
Embedded Linux Dev, Ham Radio Operator DL1FMP, OSS Enthusiast
GitHubhttps://github.com/fmoessbauer/
Felix MoessbauerMay 22
dbreadMay 22

I need to update my #meshcore repeaters when do I start where do I begin.

A small reminder that you need to maintain your infrastructure with endurance. Keep that in mind with your starting energy when building up a mesh.

Felix MoessbauerMay 20
heise onlineMay 20

Deutsche Bahn: Keine Auskunft unter Linux

Die Deutsche Bahn sperrt Linux-User aus der Webseite aus, eine Fehlermeldung warnt vor Bot-Verdacht. User-Agent ändern hilft.

https://www.heise.de/news/Deutsche-Bahn-Keine-Auskunft-unter-Linux-11300742.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#DeutscheBahn #IT #Linux #Mobiles #Browser #news

Deutsche Bahn verweigert Auskunft für Linuxer

Die Deutsche Bahn sperrt Linux-User aus der Webseite aus, eine Fehlermeldung warnt vor Bot-Verdacht. User-Agent ändern hilft.

heise online
Felix MoessbauerMay 20
Kevin BeaumontMay 20

RE: https://hachyderm.io/@ChrisShort/116606591908387955

If you want on to Microsoft's internal network, CORPNET, publish or own an existing a VSCode extension.

The Visual Studio Code Marketplace, which Microsoft own, is completely uncontrolled.

Anybody can publish an extension, it provides code execution on endpoints, extensions auto update by default, "verified" blue tick extensions just need any domain registration, and there's no endpoint security controls at all around what users can install.

VSCode is an absolute security shittip as a result.

Felix MoessbauerMay 20
heise onlineMay 20

Das Bundesjustizministerium lenkt ein: Nach monatelanger Kritik von Ärzteverbänden wird nun an einer gesetzlichen Klarstellung gearbeitet, die Patientendaten in der elektronischen Patientenakte explizit vor Beschlagnahme schützen soll. 🏥

Zum Artikel: https://heise.de/-11298569?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#epatientenakte #datenschutz #gesundheitswesen #digitalegesundheit #patientendaten

Felix MoessbauerMay 18
Lukasz OlejnikMay 18
Linux kernel security list is drowning in duplicate AI-flagged bugs; same issues, with same tools, but different names of human submitters. Maintainers have now formalized the obvious - AI-found bugs are public by definition. New docs define 5 failure modes for AI-assisted reports: too long, Markdown-heavy, threat model-ignorant, reproducer-free, patch-free. Non-compliant reports risk being ignored. Most AI-flagged issues aren’t even real vulnerabilities anyway. 500 submitters, 1 CVE, 0 patches?
Felix MoessbauerMay 17

The #meshcore-bot now has support for the #DARC #MoWaS gateway for civil emergency alerts from the #bbk.

https://www.darc.de/index.php?id=58435#c321373
https://github.com/agessaman/meshcore-bot/

#hamradio #lora

MoWaS-Warnmeldungen - DARC

Felix MoessbauerMay 16
Reilly Spitzfaden (they/them)May 16

RE: https://chaosfem.tw/@Athena/116578993491995353

Update: if this comment is an accurate reflection of the final policy and non-trivial LLM use is banned, that's better: https://github.com/rust-lang/rfcs/pull/3959#discussion_r3240037026

The Rust LLM policy discussion is making me deeply depressed. I just want one corner free from LLMs.

#Rust #RustLang #LLM #AI

Felix MoessbauerMay 15
OedlaenderMay 15
Ist von den in der Karte gelisteten #meshcore Stationen auf #Rügen noch eine aktiv?
Felix MoessbauerMay 1
alexanderkjallApr 30

Today I have spent way too much time handling the https://copy.fail situation #copyfail

The persons who discovered it didn't notify the distribution security list, so no patched kernels was available for people to install when they released it.

But they did have time to write an exploit, and thought it was a good idea to distribute that on day one, before vendors had time to provide patches.

I'm not very impressed with xint.io, I guess it's the marketing department that runs the show.

Copy Fail — 732 Bytes to Root

CVE-2026-31431. 100% Reliable Linux LPE — no race, no per-distro offsets, page-cache write that bypasses on-disk file-integrity tools and crosses containers. Found by Xint Code.

Xint
Felix MoessbauerApr 30
Sad story, #debian #trixie is still vulnerable to https://copy.fail/ while the #exploit is already released. That's a rare case were an embargo would have helped. #oss #linux
Copy Fail — 732 Bytes to Root

CVE-2026-31431. 100% Reliable Linux LPE — no race, no per-distro offsets, page-cache write that bypasses on-disk file-integrity tools and crosses containers. Found by Xint Code.

Xint