At the beginning of the year, a need arose to reinstall the LDAP, which had been running in CZ.NIC on an older OS, and I figured I did not want to miss such an interesting “challenge”. And I was very excited about it until I realized that the same server was, as a “bonus”, probably, running Freeradius and Radsecproxy with a connection to Eduroam. Of course, this was also to be rewritten as the syntax between the versions Freeradius v2 and v3 had changed a little bit. Only then I understood and admired the patience of people who set these things in CZ.NIC before me and I know that they have “enjoyed” this quite a lot. But this is a topic for another day, as this blog post should be about installing LDAP. I emphasize that this article discusses only basic LDAP settings.
From the life of an online wanderer
Today, I would like to go back to the topic I brought up in my earlier blog post. At that time, I was horribly angry at the administrators of photo sharing servers. I was angry at the absence of better mechanisms to check the photos people upload. Why don’t they have a person who would take a look at them? Why don’t the make the albums private by default? I could go on, but after almost two years of what seemed like fighting windmills, I have realized one thing. It’s not the administrators’ or providers’ fault — everyone is responsible for their own actions.
GeoIP in Knot DNS 2.7
The latest release of our authoritative DNS server, Knot DNS 2.7, comes with several new features. One of them is the GeoIP module for geography-based or subnet-based responses. In this article, we will briefly explain what the module is for and how it works and then we will explore how to set up and configure the module on your Knot server.
Beware of encouraging pupils to use social networks and messengers
Many a teacher is trying to find out the best tool for communicating with pupils. Nowadays when most children are given a mobile phone in lower primary, the logical choice would be social networks and various messengers, be it Facebook, WhatsApp or Viber.
How to survive scheduled DNS maintenance
DNS has been in use on the Internet for more than 30 years — now it is time for its worldwide maintenance that shall, for the first time in the existence of DNS, require coordinated actions from all operators of DNS servers and DNSSEC validators.
ID4me – single sign-on and domains the German way
On August 14, over 50 representatives of internet organizations met at the headquarters of DENIC, the German top-level domain registry, to attend the first ID4me summit. ID4me is the current name of the project, which was started last year under the name DomainID — I mentioned it briefly in my presentation at our last year’s conference IT 17.2. It was initiated by the .DE domain administrator, together with the major German registrar 1&1, and Open-Xchange, the operator of online collaboration tools. However, there are many other companies that are willing to support it, including the UK domain registry Nominet. The goals set by the project are quite familiar to us — reducing the number of passwords and registrations that people need while using the Internet. Like CZ.NIC with its mojeID project, the authors of ID4me have come to the conclusion that the domain world is just the place for an attempt to achieve these goals.
Open Nettest app has measured Internet speed as far as in French Polynesia
To those who want to test their Internet connection speed, there are several options available in the app store. An application for measuring high-speed Internet connection called Open Nettest was developed as part of the international project Open Crowdsourcing Data related to the Quality of Service of High-Speed Internet (MoQoS). Using this application, you can test the speed of connection provided by your mobile operator or the speed of connection through a wireless network.
We have successfully concluded the second year of cyber camp
Last month, the CZ.NIC Academy co-organized the second cyber camp for twenty children from Prague 9 Children and Youth Center.
Household routers face more than 250 attacks daily
Vulnerability of SOHO routers becomes a topic of analyses by various security organizations almost every week. The 2017 Symantec report shows a year-on-year increase in the number of attacks on IoT devices by 600%. The most vulnerable are unsecured routers, which often make it possible to gain easy access to each connected device. The April’s alert from the official US-CERT also tells us of the growing number of these attacks and their severity.
A behind-the-scenes look at the production of Turris MOX prototypes
The new product of the Turris router series is called MOX and it is conceived as a modular system. A number of additional modules can be connected to the basic CPU of the MOX A module, allowing the users to use only the features they need, without the peripherals they have no use for yet. And, of course, they will be able to extend the entire router in the future as necessary. Modules marked with letters A through E are now in the prototype stage, i.e. launching, testing of individual functions, but also fine-tuning the production process and preparation for serial production of thousands of devices. In this article, you will find out what prototype production looks like.