#BSI WID-SEC-2025-0997: [NEU] [mittel] #Apache #Commons #Configuration: Schwachstelle ermöglicht Denial of Service
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Apache Commons Configuration ausnutzen, um einen Denial of Service Angriff durchzuführen.
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0997
I hate #email #configuration . Trying to set up #Ghost and just really not having a good time with email. I was attempting #mailsender , but really can't figure out why the hell Ghost says it can't send. I don't see any log errors or warnings. So gonna test with #mailgun and see if I can figure it out that way since there's documentation, somewhat, on that.
Про конфигурацию go приложений и при чём тут vault
Расскажу про свой опыт конфигурирования приложений, разобрав некоторые популярные библиотеки и примеры. Let's tinker
https://habr.com/ru/articles/907966/
#go #golang #configuration #config #yaml #json #toml #registry #settings #properties
When writing a #daemon that follows best practices (handling of #detaching with a locked #pidfile, and #SIGHUP for #configuration #reload), an extremely simple "init script" will do (reliably!) for #FreeBSD's mewburn-rc. 😎
For documenting #swad's new #configuration #reload feature, I finally decided to go with a (at least according to #mdoc "non-standard") #SIGNALS section in the #manpage. I think it's the most useful way for this. What do you think? 🤔
I *think* the #configuration #reload support for #swad is complete now (minus docs). But I'll have a lot to test, because it actually does a lot. 🙈
* Update several global properties like whether or not to resolve remote hosts, the route for the login endpoint, the directory where to look for custom resources (templates/style) ...
* Update the session creation rate limit ONLY on changes.
* Update all credentials checkers simply by re-creating them, here assuming the same name means the same semantics.
* Update all realms, versioning them (only when changed), as well as their and the global failed login rate limit, so the authenticator can know from the version whether something should be considered stale.
* Update all "servers" trying to do as little as possible on them: If port, hosts to bind to and protocol preference (IPv4/IPv6) stays the same, only enable/disable TLS if needed, and for enabled TLS, recreate the OpenSSL context to use a potentially changed certificate. Otherwise, do a "graceful shutdown" (stop listening, but keep connections alive) and create a NEW server.
* Attempt to reload any custom templates and a custom style.css from the resources dir.
Some settings are silently ignored on reload because there's no sane way to change them mid-flight, for example user/group to run as, the pidfile location, the threadpool configuration ...
All this also needs to be documented, plus a special pitfall when starting as root, but dropping privileges: Initial configuration happens while still privileged, so we can bind to low (privileged) ports, run the pam helper as root, and read files only root can read ... all of this could break on reloading the config. 🤪
Call for testing and comment: Make the installer prefer >1G disks https://www.undeadly.org/cgi?action=article;sid=20250502060000 #openbsd #installer #disks #storage #softraid #keydisks #partitioning #development #configuration
The next major improvement for #swad (for upcoming version 0.6) will be reloading the #configuration file. That's a surprisingly complex thing to implement, reaching from "how to integrate custom signal handling in the generic event loop at all", over "how to find configuration differences and react on these doing the minimally intrusive thing", to "how to deal with having to close listening sockets in order to open different ones". 🤔
Here's a finished piece of the puzzle related to that sockets topic:
https://github.com/Zirias/swad/commit/ba741a704f341a3f542ba592b13fd0f82625e07a
I already reached a state where I can switch the #TLS #certificate without any service interruption, which was MY main motivation for wanting that feature at all 😎
My #luks #encryption password dialogue in #grub is at 100% scale on my 4k Z16 #lenovo #thinkpad display (meaning, tiny, 50% of the size it should be).
So, I added `GRUB_GFXMODE=1920x1200` to my `/etc/default/grub` #configuration and concluded the change by running `sudo update-grub`.
This seems to have no effect. Even though it says `set gfxmode=1920x1200` in `/boot/grub/grub.cfg`
What am I doing wrong? 🫣
#linux #manjaro
Ah, yet another #GitHub project heralding the dawn of a utopian cloud-based future, where files are processed at "scale" and "performance" barely requires RAM. 🚀 Meanwhile, the rest of us are just trying to remember our GitHub passwords and hoping that "modular" doesn't mean "impossible to configure." 😂
https://github.com/janwilmake/uit #Cloud #Utopia #Performance #Modular #Configuration #Humor #HackerNews #ngated
Vous saviez, vous qu'il y a une extension Kodi pour regarder la télé depuis son ordinateur ? (ou depuis la télé quand le disque dur de la freebox lâche - comme ça m'est arrivé cette semaine). Il me reste à remettre une version propre et moderne de Kodi sur un ordinateur de backup ... https://github.com/aassif/pvr.freebox #freebox #mediacenter #linux #plugin #opensource #configuration
Discover the ins and outs of configuring Odoo POS product variants for seamless inventory and sales management. This guide offers hands-on steps, expert tips, and best practices. #odoo #pos #productvariants #configuration #inventory
Tunarr: Create and configure live TV channels from media on your servers
#HackerNews #Tunarr #LiveTV #Media #Streaming #Server #Configuration
Odoo Email Domain Configuration is revealed! Explore expert strategies, actionable code examples, and insider tips in our comprehensive guide. Elevate your email game now. #Odoo #EmailDomain #Configuration #Tutorial
https://teguhteja.id/odoo-email-domain-configuration-guide-step-by-step-tutorial/
Today, after almost 11 years, I deleted my #bitwigstudio #configuration from both my workstation #pc and my #laptop, which I had maintained from version to version for all these years, just to start from scratch. 🤓
I went through settings, mappings, templates, presets, collections etc. and configured everything as if I was doing it for the first time. Almost like tearing down and #rebuilding, #rewiring the #studio. ☺️
#linuxaudio #musicproduction
And finally, the last piece of #documentation: An actual #README, which you can read directly on github:
https://github.com/Zirias/swad
This is probably the most important part, because it should be the first thing anyone reads who might be interested in using the software. Together with a #manpage and a fully commented example #configuration file, I'd say documentation is finally complete! 🥳
Probably time to craft a first (preview) release of #swad 😎
What #Ansible Project/Module/Role should I use to provision an #OpenWRT Router?
#Documentation ... better start early I guess. What would you think of this sample #configuration file?
Hint: the tokens surrounded by %% will be replaced by my build system before installing this thing.
For context, this is a web #authentication service offering cookie+forms login meant for e.g. #nginx' "auth_request".
