• New Website Launch
    • Review, Search for Bugs, etc.
  • Launch of
  • New Blog! Let's Blog
  • Release Schedule Core Update 125,
  • Wikipedia page has been created
  • #11917
  • Infrastructure Projects
    • Moving everything to single-service VMs is stalled because of #XXX
  • Suricata & IDS/IPS
  • Hardware: Port Smash (CVE-2018-5407)


  • Peter
  • Michael
  • Arne
  • Stefan
  • Timo


New Website launched

  • Released, but little feedback so far
  • Many new features and content clean-up
  • All developers are invited to write blog posts
  • Only RSS feed available (browser support dimishing)

Financial situation & Public Relations

  • Developer portal with password and key management
  • Some minor bugs

English Wikipedia article

Core Update 125

  • Smaller changes
  • Massive WiFi improvements
  • Some patches are still pending


  • Privacy (DoT) != security (DNSSEC)
  • DNS is somewhat buggy and there are a lot of misunderstandings
  • Huge namservers should be avoided
  • Should we disable DNSSEC anyway (or provide a solution to do so)?
  • Is local recursor mode an alternative?
  • Everything is very ugly...

Suricata IDS&IPS

  • Testing image available at
  • Configuration file cleanup required
  • To be released in January 2019


  • Forum is still on the old server, no migration idea at the moment
  • Web services have been migrated to new infrastrucutre
  • Hardware security for SSH private keys?

Hardware security issues

  • Today's special: HyperThreading
  • Many hardware vulnerabilities seen, huge performance impact
  • Driver issues (e1000) are a threat, too
  • OpenBSD disabled HT recently
  • Blog Post: