Carsten Strotmann

Sometimes good working hardware is obsoleted by missing update support for the operating systems. Using outdated networking software from these systems on today's Internet is a security risk (to the user and the Internet as a whole), and old software might fail altogether (old SSH clients can't connect to modern SSH server, Webbrowser can't load websites using modern transport encryption, TLS).

pkgsrc is a cross-platform package manager maintained by the NetBSD project. With pkgsrc, it is possible to compile and install modern Linux/Unix tools and applications on Unix systems that were abandoned by their makers.

In this talk, I will give my experience, tips and tricks with keeping old Unix systems up-to-date:

• MacOS X PowerPC 10.4 "Tiger"
• MacOS X i686 10.9 "Mavericks"
• Ubuntu 10.04 on ARM (old Linux 2.6.x kernel with special hardware patches that never got upstream)
• Slackware Linux on Pentium 2
• Solaris 9 on SUN Ultra 5

Eine Einführung in die Programmiersprache Forth anhand eines Forth-83-Systems (VolksForth). Für C64, Atari ST, Atari 8-Bit, CP/M, Schneider CPC, Apple 2, Apple 1, MS-DOS. Andere Forth-83- oder ANSI-Forth-Systeme sind auch möglich. Auf FIG-Forth und Forth-79 werden wir in diesem Workshop nicht eingehen. Der Workshop erklärt die ersten Schritte mit Forth und zeigt, wie in Forth eine kleine Anwendung erstellt wird. Kein Vorwissen nötig. Zur Teilnahme wird ein Retro-Computer mit einem Forth-83-System benötigt, alternativ kann der Online-CP/M-Emulator unter www.tramm.li/i8080 benutzt werden. Max. 20 Teilnehmer.

Seldom have DNS protocol changes sparked such fierce debate as happen in the case of DNS-over-HTTPs (Doh) and it's little cousin, DNS-over-TLS (DoT). While for many people it is a matter of black and white, the reality out there is various shades of grey ;) This talk will discuss the technical and political aspects of these DNS privacy protocols, where they come from, who is implementing DoH/DoT (both in the browser space and otherwise) and why it is a [good|bad] idea to support these protocol implementations.

Since the Snowden revelations, the DPRIVE (DNS Privacy Exchange) working group inside the IETF has been working on ways to make DNS, the Domain Name System, leaking less privacy related information (aka metadata). Two new protocols from this working group are DNS-over-TLS RFC 7858 (DoT) and DNS-over-HTTPS RFC 8484 (DoH). Both protocols secure DNS queries between client systems and DNS resolver using encryption and authentication. DoT runs on a dedicated port 853, while DoH piggybacks on HTTPS (port 443). While DoT was initially mostly ignored by OS vendors, ISPs and users alike, DoH was adopted by browser vendors (Mozilla/Firefox and Google/Chrome) and created heated discussions among security and privacy experts. Even to the point that governments discussing way to outlaw DoH.