New blog post: Journeys in Hosting 2/x - OS template considerations
| Homepage | https://dataplane.org/jtk |
John Kristoff
- 1,087 Followers
- 605 Following
- 2.3K Posts
UIC PhD candidate | https://Dataplane.org | Netscout. Internet infrastructure (#BGP, #DNS) and #infosec. Bit mechanic. Also: #Blues / tfr / #fedi22
"Security Vulnerabilities in RFC 8484 - DNS Queries over HTTPS (DoH)"
https://mailarchive.ietf.org/arch/msg/dnsop/cQ_mFaRYeOvpr4gWfIAoL1e5hDg/
New from the FIRST.org NETSEC SIG:
Characterizing Abusive IP Proxies
https://www.first.org/global/sigs/netsec/NETSEC.characterizing-abusive-IP-proxies.pdf
Dataplane.orgThe Internet Last Week
* US FCC updates foreign-made "routers" restrictions
https://docs.fcc.gov/public/attachments/DOC-420034A1.pdf
https://www.fcc.gov/document/fcc-adds-routers-produced-foreign-countries-covered-list
* Firefox built-in VPN
https://blog.mozilla.org/en/firefox/firefox-148-149-new-features/
* PAM 2026
https://pam2026.at
* RSA 2026
https://www.rsaconference.com/
* IPXO (#AS834) route withdrawals
https://stat.ripe.net/widget/routing-history#resource=834&starttime=2026-03-22
https://wattle.rand.apnic.net/cgi-bin/as-report.cgi?as=AS834
Nick BuraglioMany years ago Jim Warner started a page dedicated to documenting port buffers on network hardware, which has become the de facto source for much of this information. Since Jim's passing a few year ago this site has been taken down and restored a few times. In keeping with his tradition and to help the community, I have mirrored and expanded the site with significantly more platforms and chipsets. https://port-buffers.forwardingplane.net #neteng #networkengineering
It looks like a lot of prefix updates (mostly withdrawals for more specifics) for a number of US DoD (DNIC) ASNs, even more activity than what I saw when US/Israel attacks on Iran began. I'd caution not to read too much into this, but waiting to see if this foreshadows something.
You know you're an Internet old timer if you remember Gene Ray, self described "Cubic and Wisest Human"
That's right, the infamous Time Cube! Look it up and try to comprehend such simple math with your oneist brain noobs :-)
Weekend Reads
* DNS parser overflow in Zephyr
https://www.0xkato.xyz/CVE-2026-1678-DNS-Parser-Overflow-in-Zephyr/
* Telegram bots measurement survey
https://arxiv.org/abs/2603.24302
* AS-path prepending for anycast optimization
https://arxiv.org/abs/2603.21082
* Building the largest data center
https://spectrum.ieee.org/5gw-data-center
* OpenBSD init system and boot process
https://overeducated-redneck.net/blurgh/openbsd-init-system.html
Ubuntu will be adopting ntpd-rs as the default time sync client/server if all goes according to plan for release 27.04 (~2027). For most this means replacing chrony.
https://discourse.ubuntu.com/t/ntpd-rs-its-about-time/79154/1
Ntpd-rs: it's about time!
I am thrilled to announce the next target in our campaign to replace core system utilities with memory-safe Rust rewrites in Ubuntu. In upcoming releases, Ubuntu will be adopting ntpd-rs as the default time synchronization client and server, eventually replacing chrony, linuxptp and with any luck, gpsd for time syncing use-cases. ntpd-rs is a full-featured implementation of the Network Time Protocol (NTP), written entirely in Rust. Maintained by the Trifecta Tech Foundation as part of Project P...
Hal PomeranzI may regret this. You may regret this.
I've just put out a Linux forensics scenario for you all to play around with. There's a contest. You r submissions are due by 2026-04-15 23:59 UTC.
