Mastodawn

Jon Ericson Feb 10

Taggart Feb 9

I see it's once again time to post this: https://taggart-tech.com/discord-alternatives

Discord Alternatives, Ranked

Building an online community takes more than tools. But the right tool can make all the difference.

Jon Ericson Feb 4

The big deal for OpenSSL 4.0 is that it will remove features. This is always a risk for low-level libraries because it means people might see build failures with the latest version and just give up on upgrading. But extra complexity, especially for software designed to secure data and network connections, comes at a cost. Removing code that ought not be used anymore is a feature.

Custom method functions removed from the OpenSSL Library | OpenSSL Library

Jon Ericson Feb 3

The video from my @fosdem talk, How the OpenSSL community was built on Heartbleed, is now up! I had a great time presenting it and the questions I got in the session were interesting. Happy to answer (or at least ponder) and questions you might have here.

FOSDEM 2026 - How the OpenSSL community was built on Heartbleed

Jon Ericson Jan 23

Strange what brings me out of lurk mode: https://meta.stackoverflow.com/questions/434509/can-we-not-do-over-a-year-ago-please/438041#438041

Can we not do "Over a year ago" please?

In the new comment layout experiment (2025), comments are being labelled with "Over a year ago" instead of the actual date. Why would you seek to hide this information? In my opinion it's...

Meta Stack Overflow

Jon Ericson Jan 8

RE: https://infosec.exchange/@codinghorror/115852927913242505

One eye-opening thing I discovered when I started working at Stack Overflow was how many junk questions were filtered out automatically by the software. Then even more questions are rejected by the community. Finally questions are just left unanswered, which might be the most discouraging thing of all. The "Optimizing for pearls" philosophy suggests that aggressive filtering of questions encourages great answers.

And yet, when answer rates started to fall off there didn't seem to be much concern either in the community or at the company. Ultimately the culture of Stack Overflow assumed questions would continue flooding in. Now they are not and that means fewer great answers.

Jon Ericson Jan 2

I'm going to speak at FOSDEM about how the biggest disaster to hit OpenSSL revived the community. We don't wish for calamity but it often clarifies latent problems in a system.

FOSDEM 2026 - How the OpenSSL community was built on Heartbleed

Jon Ericson Dec 18

It appears my favorite source for the shrug emoticon has gone out of business. (See the Wayback Machine for it's full glory.) I'm proud to offer my cheap knockoff alternative: https://jlericson.com/shrug

Wayback Machine

Jon Ericson Dec 3

In my State of the OpenSSL Community talk, I compared the popularity of Taylor Swift when measured by Google search trends to Heartbleed. I did not know about this @SwiftOnSecurity joke or I would have included it in my slides. Next time!

The screenshot is from SecMeme and my talk can be found on YouTube.

Jon Ericson Nov 24

I gave a talk about the state of the OpenSSL community. It turns out to be a pretty good introduction to the history of an often unseen open source project that allows everyone to communicate over the internet without worrying that our private data will be intercepted.

https://www.youtube.com/watch?v=b30biARiETY

OpenSSL Conference 2025 - Jon Ericson - State of the OpenSSL Community as of 3.6

YouTube

Jon Ericson Oct 19

Clemens Oct 9

Had a lovely evening while playing an experimental board game on post-quantum #cryptography with people from Tampere University, the OpenSSL Foundation and Cybernetica.
A fitting end for the 2025 #OpenSSL Conference.

homepage	https://jlericson.com/
GitHub	https://github.com/jericson
Board Game Geek	https://boardgamegeek.com/boardgamedesigner/164344/jon-ericson
Stack Exchange	https://stackexchange.com/users/1083/jon-ericson
Meta	https://meta.jlericson.com/
Wikipedia	https://meta.wikimedia.org/wiki/User:Jlericson