Frederik Braun �

@[email protected]
1.6K Followers
612 Following
4.9K Posts

A web/browser security nerd. Working on security for Firefox and the web at Mozilla. Taught web security at Ruhr Uni Bochum.

I'm often spend my summer on multi-week #bikepacking trips with the family.

The posts here are my own and I do not speak for my employer

Websitehttps://frederikbraun.de/
LocationBerlin, Germany :club_mate:
Pronounshe/him
Signal usernamefreddy.{default HTTPS port}
Frederik Braun �4h ago
Enno Park5h ago
Vielleicht wäre es dienlich, den vermeintlichen "Signal-Hack" mit "eine Art Enkeltrick" zu umschreiben? Die Berichterstattung erweckt ja wieder einen völlig falschen Eindruck, was da passiert ist.
Frederik Braun �5h ago
MDN Web Docs5h ago

Mozilla Meetup is back in Berlin! 🥳

🗓️ Apr 28 // 18:00

Firefox, open source & the future of the web.
🎤 Firefox Mobile open source contributions
🗺️ Firefox Roadmap & upcoming features
🤝 Networking + raffle

RSVP now! 👇
https://www.meetup.com/berlin-mozilla-meetup/events/314422227/

Frederik Braun �8h ago
Any of my online friends living in Toronto and wants to meet up? I'll be in town the week of May 4th.
Frederik Braun �20h ago

Hey speakers!

If you have some interesting app security story to share, consider submitting to the German OWASP Day CfP.

Nice community event run by fine volunteer people. This year, the OWASP Day is in Karlsruhe on September 24th. https://god.owasp.de/2026/en/cfp.html

German OWASP Day 2026

Frederik Braun �23h ago
New Blog post: "Multiple things can be true at the same time" - https://frederikbraun.de/feels-and-llms.html :: Dear reader, I am sure you have read a lot of blog posts about AI in the past weeks or months. And now I too am writing. Mostly to help me cope with what my kind of hacker people would call out as hypocrisy or cognitive dissonance.
Multiple things can be true at the same time

Multiple things can be true at the same time

Frederik Braun
Frederik Braun �2d ago

RE: https://abyssdomain.expert/@filippo/116454308369988698

Research groups of the world, GO AND RUN A CT LOG!

Frederik Braun �2d ago
Filippo Valsorda2d ago

How much storage / bandwidth / CPU / memory does it take to run a production Sunlight CT log? Surprisingly little!

There's now a public stats page, pulled every 5m from our Tuscolo prod metrics.

https://stats.sunlight.geomys.org/

Less than 2 cores, 300 MB of memory, ~250 Mbps of bandwidth, 260 GiB of SSD.

Frederik Braun �2d ago
Working Draft4d ago

Revision 709: HTTP/3 und WebTransport, mit @mxinden https://workingdraft.de/709/

Sponsor dieser Folge ist diesmal ein weiterer Podcast: Im Webcafé sprechen Felix (Geschäftsführer) und Kay (Technical Lead) über Webentwicklung, Unternehmenskultur und moderne Software – mit ehrlichen Einblicken aus Strategie- und Technikperspektive. Danke dafür! ❤️

Revision 709: HTTP/3 und WebTransport, mit Max Inden | Working Draft

Diese Woche ist Max Inden (Mastodon) von Mozilla zu Gast. Mit ihm sprechen wir über den Networking-Stack von Firefox und arbeiten uns dabei von HTTP/1 über HTTP/2 bis zu HTTP/3 und QUIC vor. Ausgangsp…

Frederik Braun �3d ago

Do you want to proceed?
(x) Yes and always allow `xargs`

lol.

Frederik Braun �3d ago

I typically recommend people do not pick a Firefox fork because keeping up with security patches is a lot of work and being downstream of our code typically implies a delay.

But if you feel like you really have to use a Firefox fork, I suggest you find one that has the means to ship an update within a day.

From those I looked at, most did not bring an update based on 150 yet. (Special shout out to the Tor Browser. You're awesome!)