"Secure Software Lifecycle for Open Source Software" according to the German Federal Office for Information Security (BSI)
Valerie Aurora 🇺🇦
and 2 others
boosted
Hey Fedi! What's a short list of best practices for writing or configuring software to:
1. Not be a source of a DDoS attack
2. Be more resilient to a DDoS attack
I know basics (e.g. disable recursive DNS resolution, use as few resources as possible on incoming connections till verified as legit) but I would like a complete list and, boy howdy, all the search results are someone providing a DDoS protection service.
This is for the CRA OS standard, funded by EFTA and the EC
Hey Fedi! What's a short list of best practices for writing or configuring software to:
1. Not be a source of a DDoS attack
2. Be more resilient to a DDoS attack
I know basics (e.g. disable recursive DNS resolution, use as few resources as possible on incoming connections till verified as legit) but I would like a complete list and, boy howdy, all the search results are someone providing a DDoS protection service.
This is for the CRA OS standard, funded by EFTA and the EC
Stefano Marinelli
boosted
This Thursday, October 30th 2025 in Bergen: Bergen Open Source 2025, https://boskonf.no.
Tietoevry is among the sponsors, and yours truly will be giving an approximately 20 minute version of EU CRA: It's Later Than You Think, Time to Engineer Up! https://nxdomain.no/~peter/eu_cra_its_later_than_you_think_time_to_engineer_up.html
See you there! #boskonf #opensource #cra #sbom #engineerup #development #freesoftware #libresoftware #tietoevry
This Thursday, October 30th 2025 in Bergen: Bergen Open Source 2025, https://boskonf.no.
Tietoevry is among the sponsors, and yours truly will be giving an approximately 20 minute version of EU CRA: It's Later Than You Think, Time to Engineer Up! https://nxdomain.no/~peter/eu_cra_its_later_than_you_think_time_to_engineer_up.html
See you there! #boskonf #opensource #cra #sbom #engineerup #development #freesoftware #libresoftware #tietoevry
ajuvo ✔
boosted
Hier ist das Recording für meinen Talk auf den #datenspuren am Wochenende, der dazu anregen soll, kleine dezentrale Serviceprovider um ein oder mehrere Open Source Komponenten zu bauen, in Antizipation des #CRA.
Ich hatte davor und danach einige interessante Gespräche mit Feedback von Maintainer:innen, und frage nun hier nochmal: Was denkt ihr dazu? https://media.ccc.de/v/ds25-587-verteilte-scharniere-zwischen-maintainer-innen-und-industrie
Michael Dexter
and 1 other
boosted
No more vibecoding. The CRA (Cyber Resilience Act) is coming and you'd better be prepared. @pitrh has written a very good article about it, recommended read.
The EU is doubling down hard on the nonsense we've had to tolerate way too long 
No more vibecoding. The CRA (Cyber Resilience Act) is coming and you'd better be prepared. @pitrh has written a very good article about it, recommended read.
The EU is doubling down hard on the nonsense we've had to tolerate way too long
Stefano Marinelli
boosted
EU CRA: It's Later Than You Think, Time to Engineer Up! https://nxdomain.no/~peter/eu_cra_its_later_than_you_think_time_to_engineer_up.html (or tracked https://bsdly.blogspot.com/2025/09/eu-cra-its-later-than-you-think-time-to.html) for your weekend #sbom #development #software #engineering reading #cra #resilience
Dario
boosted
🔔 Software Freedom in Europe 2025! 🚀🎉
This year we remained engaged in enforcing the #DMA, intervening in the Apple vs EC legal case; we participated in the debates around the #CRA and public procurement to ensure that #FreeSoftware is embedded in Europe’s digital future.
We continued providing legal support and improved REUSE, while involving teenagers with YH4F, and we reached new audiences with the new Ada & Zangemann movies.
Find out more in our yearly report: https://fsfe.org/news/2025/news-20250926-01.en.html
Mediapart
boosted
📣 Attac Paris Nord-Ouest fait son cinéma !
🎥 Le festival Images Mouvementées revient pour une 23è édition du 2 octobre au 16 octobre 2025, les mardis et jeudis au cinéma 5 Caumartin, 101 rue Saint-Lazare, 75009 Paris.
Un fil sur la programmation 🧵👇
Le boost renforce les luttes!
Retrouvez-nous sur les internets mondiaux :
👉 https://www.instagram.com/festival_images_mouvementees/
👉 https://pno.site.attac.org/
👉 https://www.imagesmouvementees.fr/
👉 https://t.me/attacPNO
#Cinéma #Attac #AttacParisNordOuest #ImagesMouvementées #Ciné5Caumartin #Paris #ServicesPublics #Avortement #CRA #Ecologie #Immigration #Xenophobie
EU CRA: It's Later Than You Think, Time to Engineer Up! https://nxdomain.no/~peter/eu_cra_its_later_than_you_think_time_to_engineer_up.html (or tracked https://bsdly.blogspot.com/2025/09/eu-cra-its-later-than-you-think-time-to.html) for your weekend #sbom #development #software #engineering reading #cra #resilience
🔔 Software Freedom in Europe 2025! 🚀🎉
This year we remained engaged in enforcing the #DMA, intervening in the Apple vs EC legal case; we participated in the debates around the #CRA and public procurement to ensure that #FreeSoftware is embedded in Europe’s digital future.
We continued providing legal support and improved REUSE, while involving teenagers with YH4F, and we reached new audiences with the new Ada & Zangemann movies.
Find out more in our yearly report: https://fsfe.org/news/2025/news-20250926-01.en.html
Hier ist das Recording für meinen Talk auf den #datenspuren am Wochenende, der dazu anregen soll, kleine dezentrale Serviceprovider um ein oder mehrere Open Source Komponenten zu bauen, in Antizipation des #CRA.
Ich hatte davor und danach einige interessante Gespräche mit Feedback von Maintainer:innen, und frage nun hier nochmal: Was denkt ihr dazu? https://media.ccc.de/v/ds25-587-verteilte-scharniere-zwischen-maintainer-innen-und-industrie
📣 Attac Paris Nord-Ouest fait son cinéma !
🎥 Le festival Images Mouvementées revient pour une 23è édition du 2 octobre au 16 octobre 2025, les mardis et jeudis au cinéma 5 Caumartin, 101 rue Saint-Lazare, 75009 Paris.
Un fil sur la programmation 🧵👇
Le boost renforce les luttes!
Retrouvez-nous sur les internets mondiaux :
👉 https://www.instagram.com/festival_images_mouvementees/
👉 https://pno.site.attac.org/
👉 https://www.imagesmouvementees.fr/
👉 https://t.me/attacPNO
#Cinéma #Attac #AttacParisNordOuest #ImagesMouvementées #Ciné5Caumartin #Paris #ServicesPublics #Avortement #CRA #Ecologie #Immigration #Xenophobie
der.hans
and 1 other
boosted
Do you understand security for VPNs used by regular people for privacy purposes? We could use your perspective to help write the CRA standard for VPNs.
If €450/day would make it possible for you to participate in this or any other CRA standardization work, the call for funding applications is open until September 19:
https://cyberstand.eu/8th-specific-service-procedure
Work funded by EFTA and EC #CRA