We use virtualization *a lot* in our infrastructure. The advantages are numerous but for sure it saves costs, makes management easier and improves security by isolating services on their own virtual machines (and you can make a very specific configuration for the service). Putting that aside we were moderately happy about Xen. We have been [...]

Yesterday evening I had the pleasure to pick up the following three security notices: [USN-612-1] OpenSSL vulnerability [USN-612-2] OpenSSH vulnerability [USN-612-3] OpenVPN vulnerability I can tell you these are really not funny. They really generate a lot of work indirectly. Annoying but doable are things like regeneration SSH keys. The PITA situation is with OpenVPN, [...]

I borked something when I upgraded to wordpress 2.5. Ofcourse things break down together once again: 1) The cute little “challenge” plugin stopped working in the sense it blocked all comments even when the “challenge” got properly solved (not just spam and stupid people). 2) After disabling the plugin I found that the admin interface [...]

This week we upgraded one of our routers from hoary (Ubuntu 5.04) to breezy (Ubuntu 5.10). However dhcpd didn’t work properly anymore. Thinclients got several leases: one IP for PXE dhcp request and another ip for the normal startup. Not really lease friendly. I’m not sure this has anything to do with the “no free [...]

Firefox apparantly has a new feature which caches pages in memory. YEAH LETS HOG EVEN MORE MEMORY to make the end user experience faster. I sure hope its possible to disable this feature by default. Firefox seems to calculate the amount of crap it will cache based on available RAM. Maybe OTHER processes might like [...]