ATH+++: Comments

After a longer period of contemplation: I decided to shut down comments on here. If people want to get in touch with me or let me know their remarks Twitter has been far more usable/direct. Sorry for the ones one that was still using the comments — Sorry Habi 😉

Angelesen #55

Was war diese Woche denn so wichtig? Nebst einer ziemlich grossen Passwortsammlung gab es da noch die 10 Year Challenge, welche auch ganz spannende Fragen aufwerfen kann. Abgerundet wird das Ganze mit einem langen Artikel über Open Source Software.

The internet, but not as we know it: life online in China, Russia, Cuba and India (

More than half of the world’s population is now online, but that does not mean we all see the same thing. From being filtered by the government to being delivered by post, the internet can vary enormously depending on where you live. Here are four illustrated examples

Spannender Artikel zum Internet in China, Russland, Kuba und Indien.

Mit der Republik ins zweite Jahr (

Mit der Republik ins zweite Jahr Erneuerungsrate Crowdfunder und Unterstützerinnen der ersten Stunde

Die Republik zeigt mit tagaktuellen Daten, auf wie es um die Erneuerungen steht. Gelebte Transparenz!

Troy Hunt: The 773 Million Record "Collection #1" Data Breach (

Da sind mal wieder einige Passwörter geleakt – Am besten mal die gängige Mailadresse durch Have I been pwned durchlaufen lassen und Passwörter aktualisieren 😉

Security Checklist (

An open source checklist of resources designed to improve your online privacy and security. Check things off to keep track as you go.

Durchschauen Lohnt sich!

Facebook’s ’10 Year Challenge’ Is Just a Harmless Meme—Right? (

Me 10 years ago: probably would have played along with the profile picture aging meme going around on Facebook and Instagram Me now: ponders how all this data could be mined to train facial recognition algorithms on age progression and age recognition

Der Twitter Thread zum Thema ist auch sehr lesenswert

5G: if you build it, we will fill it (

Gute Abhandlung zum 5G Netz. Fazit: Wenn es mehr Bandbreite geben wird, wird diese auch genutzt werden.

Does Former Nikon Shooter Have Regrets After Switching To Sony? (

The problem with overstaying your relationship with a brand is that, like any dysfunctional relationship, it works on a certain level. Your basic needs are met, your professional identity has been wrapped up in it, many friends know you through the brand, and you might even have logo coffee cups that cement the relationship. Changing all that just seems all too much to bear, especially if we think of ourselves as loyal people and not bandwagon folk. Maybe, you think to yourself, “if I just stick through this a little bit longer, it could get better. It might make all the waiting worth it. I could look smart.”

Guter Artikel, wie lange habe ich doch auf das nächste grosse Ding von Nikon gewartet… Unterdessen bin ich mit einer Sony unterwegs und ganz zufrieden.

How open source software took over the world (

It is also important to realize the increasing importance of the developer for these open-source projects. The traditional go-to-market model of closed source software targeted IT as the purchasing center of software. While IT still plays a role, the real customers of open source are the developers who often discover the software, and then download and integrate it into the prototype versions of the projects that they are working on. Once “infected”by open-source software, these projects work their way through the development cycles of organizations from design, to prototyping, to development, to integration and testing, to staging, and finally to production. By the time the open-source software gets to production it is rarely, if ever, displaced. Fundamentally, the software is never “sold”; it is adopted by the developers who appreciate the software more because they can see it and use it themselves rather than being subject to it based on executive decisions.

Longread über quelloffene Software 😉

Angelesen #54

Also irgendwie brauchte ich einen Moment, um nach den upgrade zu WordPress 5 wieder einen Workflow hinzubiegen, der mir Markdown erlaubte. Nun läuft das Ganze aber wieder. Aber der neue Gutenberg Editor in WordPress macht halt irgendwie schon ganz ordentlich Spass, wenn man sich mal daran gewöhnt hat.

Dunedan/mbp-2016-linux: State of Linux on the MacBook Pro 2016 & 2017 (

State of Linux on the MacBook Pro 2016 & 2017

Back to the 90ies… nachdem ich vor dem 35C3 versucht habe "nur mal eben kurz" mein zweit Notebook mit Linux zu bestücken und schlussendlich nicht mal die Tastatur funktionierte habe ich im Januar nochmal eine Stunde in die Problematik versenkt… Als dann mein uralter Wifi Dongle besser schlussendlich funktionierte als das verbaute WifiModul habe ich kurz einen Ragequit gemacht. -_-

Make a web frame with Raspberry Pi in 30 minutes (

interesting 🙂

Privacy-Handbuch (

Spannende Lektüre zum spurenarmen Surfen.

Ne0nd0g/merlin: Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang. (

jessebye/awser: A cool little tool to SSH to EC2 instances using their names (

Neat! EC2 instance autocompletion!

New malware pulls its instructions from code hidden in memes posted to Twitter (

Trend Micro said in a blog post that the malware listens for commands from a Twitter account run by the malware operator. The researchers found two tweets that used steganography to hide “/print” commands in the meme images, which told the malware to take a screenshot of an infected computer. The malware then separately obtains the address where its command and control server is located from a Pastebin post, which directs the malware where to send the screenshots — 10/10 points for creativity, that’s for sure.

Next level things!

Bridget Kromhout | tl;dr: your talk is accepted (

Bridget schreibt über die Speaker Infomails die sie für die DevOpsDays verschickt. Sehr genial!

We all <3 Terminals. – Terminals Are Sexy (

A curated list of Terminal frameworks, plugins & resources for CLI lovers.

Und noch ein Video das ich gemocht habe:

Angelesen #53

And here we are again. The past few months were pretty intense but interesting – A few conferences, side projects and yes a TEDxBern went smoothly by. Oh yes and I spent quite some times in the mountains thats why it was quite silent here (if you’re with me since a while you know this happens every once in a while.)

On Cash (

Rout­ing ev­ery­thing through my cred­it card is feed­ing the glob­al pay­ments cartel, who ex­tract a tar­iff mea­sured in freak­ing dol­lars for al­most ev­ery rou­tine trans­ac­tion. I’ve seen so many great busi­ness plans go beg­ging be­cause they could have done some­thing won­der­ful in the world if you could on­ly do mi­cro­pay­ments, which you can’t, did I men­tion that car­tel that ba­si­cal­ly has it locked up and tied down?

Goodread on cash 🙂

4G Mobiltelefon – MP02 (

Wenn es Zeit ist, online zu gehen, kann die 4G LTE-Verbindung des MP 02 mit einem Tablet/Laptop geteilt werden – das bedeutet eine leichtere Eingabe als beim Smartphone und einen größeren Bildschirm. Dieser Zwei-Geräte-Ansatz bedeutet, dass das Internet etwas ist, in das Sie eintauchen, und nicht umgekehrt.

Finally! A Dumbphone with 4G wifi capability.

IRL Glasses Block All the Screens Around You (

Originally, they prototyped the glasses using the Casper film stuck onto regular lenses. But they later realized that any polarized lens rotated 90 degrees and flattened could produce the same screen-blocking effect. Right now, their lenses can block light emitted from LCD and LED screens, but not OLED screens. That means they tune out most televisions and some computers, but not the newer crop of smartphones like the OLED-packing iPhones.

Love the idea!

Balancing Engineering and Support (

The schedule we currently operate on is two weeks of support and two weeks of engineering. It’s not a completely pure system, of course, you might get pulled into support when you are on an engineering sprint but there is an expectation that you can and should have time to build, to innovate, and to unplug if necessary to do it.

A few insights from Tyler how we handle engineering and support at

12 Factor CLI Apps (

At Heroku, we’ve come up with a methodology called the 12 factor app. It’s a set of principles designed to make great web applications that are easy to maintain. In that spirit, here are 12 CLI factors to keep in mind when building your next CLI application. Following these principles will offer CLI UX that users will love.

We’ve also built a CLI framework called oclif that is designed to follow these principles to build great CLIs in Node.

Interesting approaches for people building CLI apps.

Delaying Further Symantec TLS Certificate Distrust (

Unfortunately, because so many sites have not yet taken action, moving this change from Firefox 63 Nightly into Beta would impact a significant number of our users. It is unfortunate that so many website operators have waited to update their certificates, especially given that DigiCert is providing replacements for free.

We prioritize the safety of our users and recognize the additional risk caused by a delay in the implementation of the distrust plan. However, given the current situation, we believe that delaying the release of this change until later this year when more sites have replaced their Symantec TLS certificates is in the overall best interest of our users. This change will remain enabled in Nightly, and we plan to enable it in Firefox 64 Beta when it ships in mid-October.

Change takes time… an awful lot of it

Schweizer Steuer-App speicherte alle Daten öffentlich in der Cloud (

Zwar schon älter aber der Facepalm hallt nach. 🤦

How Will Climate Change Affect Politics? (

Day Zero is still hypothetical, but Cape Town’s reality will soon impact many global cities, where water will become a constant concern, and democracy will become contingent upon the taps.

A good read on climate change and how it will affect politics.

Build a better Bookshelf (

Step 1: Install any document scanning app on your phone
Step 2: Scan all the index pages and table of contents in all of your books
Step 3: Send it to whatever software you’re using that has OCR feature
Step 4: Now you can search your books digitally

Great Idea!

CLI: improved (

Remy has a few nice changes he implemented on his shell.. 🙂

I fell for prettyping

GovCMS coming of age (

The Lagoon product does push us to the very limits of what can be realistically open sourced and free of vendor lock-in. So what would it take a government organisation to run/roll their own Lagoon?

<3 I love feedback like this on our open source project!

Drupal HackCamp 🇷🇴 How open source helps you prevent the next Drupalgeddon

When Adrian from Softescu reached out to me it was the first time i heard about the Drupal HackCamp. A whole camp focused on security – SURE!

I’ll write more about the camp later. Let’s start with my slides here first!



  • Web Application Firewalls buy you time till you update your site
  • Update your core and modules regularly (at least the critical Modules)
  • Automate your processes! Sometimes you only have a couple of hours till attacks roll in.
  • Have several layers of security – It will pay out in the long run
  • It’s not humans that exploit your site – It’s bots
  • We should come up with a better naming than shouting Drupalgeddon 😉


There are many many resources linked directly in the talk but I’ll highlight a few here: