quad9 9.9.9.9 is also an open recursive dns resolver

https://www.quad9.net/

Wiki page: https://en.wikipedia.org/wiki/Quad9

There is a dispute between Sony via Germany and quad9 too :)

Another Crack in the Chain of Trust: Uncovering (Yet Another) Secure Boot Bypass
https://www.binarly.io/blog/another-crack-in-the-chain-of-trust

TLS == SSL: On why SSL was renamed to TLS in late 90s

https://tim.dierks.org/2014/05/security-standards-and-name-changes-in.html

Unexpected security footguns in Go's parsers - The Trail of Bits Blog
https://blog.trailofbits.com/2025/06/17/unexpected-security-footguns-in-gos-parsers/

Secure your #Helm 🧨

Chart Dependency Updating With Malicious Chart.yaml Content And Symlink · Advisory · helm/helm · GitHub
https://github.com/helm/helm/security/advisories/GHSA-557j-xg8c-q2mm

#curious #question

Why does google/chromium decide to store cache in your ~/.config/ directory!???

$HOME/.config/chromium/Default/Service
....
173MB

Answer: when you use ncdu to view big files in your ~/.config, chromium is always on the top of the list! And as long as google stuff is on top of the list, who cares if your disk is full of ***?

Major changes to your k8s workfkow with Helm, must read 🍉🍉🍉

Upcoming changes to the Bitnami catalog (effective August 28th, 2025) · Issue #35164 · bitnami/charts
https://github.com/bitnami/charts/issues/35164

If you are using Trae IDE, be aware of this https://github.com/segmentationf4u1t/trae_telemetry_research

On #linux machines, to use chromium with a minimal usage of memory and cpu, you can execute this command every 30 seconds.

pkill -9 chromium

#security

Stardict sends clipboard to remote servers

https://lwn.net/SubscriberLink/1032732/3334850da49689e1/

That's not a joke. It's a bug!

https://github.com/anthropics/claude-code/issues/3382

> Claude is way too sycophantic, saying "You're absolutely right!" (or correct) on a sizeable fraction of responses.

#linux #htop I/O

#htop running with root privilege will have a tab with I/O information. You use tab key to switch between two tabs (Main <—> I/O)

PS: If you don't see I/O top, make sure to update your htop, or backup and delete the existing htop configuration (~/.config/htop/htoprc)

#rsync for local network user

To get the best of your local network configuration (say 1Gbps?) you may need to disable all compression when using rsync:

rsync --whole-file -rapv -e "ssh -o Compression=no" --no-compress  /local/source/path/ remote:/path/

The option --whole-file is useful when the network bandwidth is expected to match/higher than disk bandwidth.

» After evaluating the impact and community feedback, the Bitnami team has postponed the deletion of the Bitnami public catalog (docker.io/bitnami) until September 29th to give users more time to adapt to the upcoming changes.

To raise awareness before the registry deletion, we will run a series of brownouts over the coming weeks. During each brownout, a set of 10 container images from docker.io/bitnami will be temporarily unavailable for 24 hours. The scheduled brownouts are:

August 28, 08:00 UTC → August 29, 08:00 UTC
September 2, 08:00 UTC → September 3, 08:00 UTC
September 17, 08:00 UTC → September 18, 08:00 UTC

https://cachyos.org/ , based on Archlinux, made from Germany with love.

After years working in devops/SRE domain, I finally found a good song that well describes what I have gone through: it's a song from the infamous series Jason Bourne, which is officially found here https://www.youtube.com/watch?v=ftm1hiXgYsA

Happy New Year and enjoy your newly broken systems!!!

Firefox #javascript #ECMAScript to reload a tab every 120 seconds

const reloadEveryTwoMinutes = setInterval(() => window.location.reload(), 120_000);

#devops Windows update can ruin your day =))

aws provider for terraform on linux: 825MB (terraform-provider-aws_v6.39.0_x5)
google provider for terraform on linux: 139MB (terraform-provider-google-beta_v7.26.0_x5)

Now imagine you have to run terraform init in 963 directories for your big company project. And you wonder why the disk is full ...