Generated.

[homepage.git] / blog / archive / 2014 / 03 / index.html

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
          "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="ltr">
  <head>
    <meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
    <title>Petter Reinholdtsen: entries from March 2014</title>
    <link rel="stylesheet" type="text/css" media="screen" href="http://people.skolelinux.org/pere/blog/style.css" />
    <link rel="stylesheet" type="text/css" media="screen" href="http://people.skolelinux.org/pere/blog/vim.css" />
    <link rel="alternate" title="RSS Feed" href="03.rss" type="application/rss+xml" />
  </head>
  <body>
    <!-- XML FEED -->
    <div class="title">
 <h1>
     <a href="http://people.skolelinux.org/pere/blog/">Petter Reinholdtsen</a>
     
 </h1>
 
</div>


    <h3>Entries from March 2014.</h3>
    
    <div class="entry">
      <div class="title">
        <a href="http://people.skolelinux.org/pere/blog/Dokumentaren_om_Datalagringsdirektivet_sendes_endelig_p__NRK.html">Dokumentaren om Datalagringsdirektivet sendes endelig på NRK</a>
      </div>
      <div class="date">
        26th March 2014
      </div>
      <div class="body">
        <p><a href="http://www.nuug.no/">Foreningen NUUG</a> melder i natt at
NRK nå har bestemt seg for
<a href="http://www.nuug.no/news/NRK_viser_filmen_om_Datalagringsdirektivet_f_rste_gang_2014_03_31.shtml">når
den norske dokumentarfilmen om datalagringsdirektivet skal
sendes</a> (se <a href="http://www.imdb.com/title/tt2832844/">IMDB</a>
for detaljer om filmen) . Første visning blir på NRK2 mandag
2014-03-31 kl. 19:50, og deretter visninger onsdag 2014-04-02
kl. 12:30, fredag 2014-04-04 kl. 19:40 og søndag 2014-04-06 kl. 15:10.
Jeg har sett dokumentaren, og jeg anbefaler enhver å se den selv.  Som
oppvarming mens vi venter anbefaler jeg Bjørn Stærks kronikk i
Aftenposten fra i går,
<a href="http://www.aftenposten.no/meninger/kronikker/Autoritar-gjokunge-7514915.html">Autoritær
gjøkunge</a>, der han gir en grei skisse av hvor ille det står til med
retten til privatliv og beskyttelsen av demokrati i Norge og resten
verden, og helt riktig slår fast at det er vi i databransjen som
sitter med nøkkelen til å gjøre noe med dette.  Jeg har involvert meg
i prosjektene <a href="http://www.dugnadsnett.no/">dugnadsnett.no</a>
og <a href="https://wiki.debian.org/FreedomBox">FreedomBox</a> for å
forsøke å gjøre litt selv for å bedre situasjonen, men det er mye
hardt arbeid fra mange flere enn meg som gjenstår før vi kan sies å ha
gjenopprettet balansen.</p>

<p>Jeg regner med at nettutgaven dukker opp på
<a href="http://tv.nrk.no/program/koid75005313/tema-dine-digitale-spor-datalagringsdirektivet">NRKs
side om filmen om datalagringsdirektivet</a> om frem dager.  Hold et
øye med siden, og tips venner og slekt om at de også bør se den.</p>

      </div>
      <div class="tags">
        
        
        Tags: <a href="http://people.skolelinux.org/pere/blog/tags/freedombox">freedombox</a>, <a href="http://people.skolelinux.org/pere/blog/tags/mesh network">mesh network</a>, <a href="http://people.skolelinux.org/pere/blog/tags/norsk">norsk</a>, <a href="http://people.skolelinux.org/pere/blog/tags/personvern">personvern</a>, <a href="http://people.skolelinux.org/pere/blog/tags/sikkerhet">sikkerhet</a>, <a href="http://people.skolelinux.org/pere/blog/tags/surveillance">surveillance</a>.
        
        
      </div>
    </div>
    <div class="padding"></div>
    
    <div class="entry">
      <div class="title">
        <a href="http://people.skolelinux.org/pere/blog/Public_Trusted_Timestamping_services_for_everyone.html">Public Trusted Timestamping services for everyone</a>
      </div>
      <div class="date">
        25th March 2014
      </div>
      <div class="body">
        <p>Did you ever need to store logs or other files in a way that would
allow it to be used as evidence in court, and needed a way to
demonstrate without reasonable doubt that the file had not been
changed since it was created?  Or, did you ever need to document that
a given document was received at some point in time, like some
archived document or the answer to an exam, and not changed after it
was received?  The problem in these settings is to remove the need to
trust yourself and your computers, while still being able to prove
that a file is the same as it was at some given time in the past.</p>

<p>A solution to these problems is to have a trusted third party
"stamp" the document and verify that at some given time the document
looked a given way.  Such
<a href="https://en.wikipedia.org/wiki/Notarius">notarius</a> service
have been around for thousands of years, and its digital equivalent is
called a
<a href="http://en.wikipedia.org/wiki/Trusted_timestamping">trusted
timestamping service</a>.  <a href="http://www.ietf.org/">The Internet
Engineering Task Force</a> standardised how such service could work a
few years ago as <a href="http://tools.ietf.org/html/rfc3161">RFC
3161</a>.  The mechanism is simple.  Create a hash of the file in
question, send it to a trusted third party which add a time stamp to
the hash and sign the result with its private key, and send back the
signed hash + timestamp.  Both email, FTP and HTTP can be used to
request such signature, depending on what is provided by the service
used. Anyone with the document and the signature can then verify that
the document matches the signature by creating their own hash and
checking the signature using the trusted third party public key.
There are several commercial services around providing such
timestamping.  A quick search for
"<a href="https://duckduckgo.com/?q=rfc+3161+service">rfc 3161
service</a>" pointed me to at least
<a href="https://www.digistamp.com/technical/how-a-digital-time-stamp-works/">DigiStamp</a>,
<a href="http://www.quovadisglobal.co.uk/CertificateServices/SigningServices/TimeStamp.aspx">Quo
Vadis</a>,
<a href="https://www.globalsign.com/timestamp-service/">Global Sign</a>
and <a href="http://www.globaltrustfinder.com/TSADefault.aspx">Global
Trust Finder</a>.  The system work as long as the private key of the
trusted third party is not compromised.</p>

<p>But as far as I can tell, there are very few public trusted
timestamp services available for everyone.  I've been looking for one
for a while now. But yesterday I found one over at
<a href="https://www.pki.dfn.de/zeitstempeldienst/">Deutches
Forschungsnetz</a> mentioned in
<a href="http://www.d-mueller.de/blog/dealing-with-trusted-timestamps-in-php-rfc-3161/">a
blog by David Müller</a>.  I then found
<a href="http://www.rz.uni-greifswald.de/support/dfn-pki-zertifikate/zeitstempeldienst.html">a
good recipe on how to use the service</a> over at the University of
Greifswald.</p>

<p><a href="http://www.openssl.org/">The OpenSSL library</a> contain
both server and tools to use and set up your own signing service.  See
the ts(1SSL), tsget(1SSL) manual pages for more details.  The
following shell script demonstrate how to extract a signed timestamp
for any file on the disk in a Debian environment:</p>

<p><blockquote><pre>
#!/bin/sh
set -e
url="http://zeitstempel.dfn.de"
caurl="https://pki.pca.dfn.de/global-services-ca/pub/cacert/chain.txt"
reqfile=$(mktemp -t tmp.XXXXXXXXXX.tsq)
resfile=$(mktemp -t tmp.XXXXXXXXXX.tsr)
cafile=chain.txt
if [ ! -f $cafile ] ; then
    wget -O $cafile "$caurl"
fi
openssl ts -query -data "$1" -cert | tee "$reqfile" \
    | /usr/lib/ssl/misc/tsget -h "$url" -o "$resfile"
openssl ts -reply -in "$resfile" -text 1>&2
openssl ts -verify -data "$1" -in "$resfile" -CAfile "$cafile" 1>&2
base64 < "$resfile"
rm "$reqfile" "$resfile"
</pre></blockquote></p>

<p>The argument to the script is the file to timestamp, and the output
is a base64 encoded version of the signature to STDOUT and details
about the signature to STDERR.  Note that due to
<a href="http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742553">a bug
in the tsget script</a>, you might need to modify the included script
and remove the last line.  Or just write your own HTTP uploader using
curl. :) Now you too can prove and verify that files have not been
changed.</p>

<p>But the Internet need more public trusted timestamp services.
Perhaps something for <a href="http://www.uninett.no/">Uninett</a> or
my work place the <a href="http://www.uio.no/">University of Oslo</a>
to set up?</p>

      </div>
      <div class="tags">
        
        
        Tags: <a href="http://people.skolelinux.org/pere/blog/tags/english">english</a>, <a href="http://people.skolelinux.org/pere/blog/tags/sikkerhet">sikkerhet</a>.
        
        
      </div>
    </div>
    <div class="padding"></div>
    
    <div class="entry">
      <div class="title">
        <a href="http://people.skolelinux.org/pere/blog/Video_DVD_reader_library___python_dvdvideo___nice_free_software.html">Video DVD reader library / python-dvdvideo - nice free software</a>
      </div>
      <div class="date">
        21st March 2014
      </div>
      <div class="body">
        <p>Keeping your DVD collection safe from scratches and curious
children fingers while still having it available when you want to see a
movie is not straight forward.  My preferred method at the moment is
to store a full copy of the ISO on a hard drive, and use VLC, Popcorn
Hour or other useful players to view the resulting file.  This way the
subtitles and bonus material are still available and using the ISO is
just like inserting the original DVD record in the DVD player.</p>

<p>Earlier I used dd for taking security copies, but it do not handle
DVDs giving read errors (which are quite a few of them).  I've also
tried using
<a href="http://people.skolelinux.org/pere/blog/Ripping_problematic_DVDs_using_dvdbackup_and_genisoimage.html">dvdbackup
and genisoimage</a>, but these days I use the marvellous python library
and program
<a href="http://bblank.thinkmo.de/blog/new-software-python-dvdvideo">python-dvdvideo</a>
written by Bastian Blank.  It is
<a href="http://packages.qa.debian.org/p/python-dvdvideo.html">in Debian
already</a> and the binary package name is python3-dvdvideo. Instead
of trying to read every block from the DVD, it parses the file
structure and figure out which block on the DVD is actually in used,
and only read those blocks from the DVD.  This work surprisingly well,
and I have been able to almost backup my entire DVD collection using
this method.</p> So far, python-dvdvideo have failed on between 10 and
20 DVDs, which is a small fraction of my collection.  The most common
problem is
<a href="https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=720831">DVDs
using UTF-16 instead of UTF-8 characters</a>, which according to
Bastian is against the DVD specification (and seem to cause some
players to fail too).  A rarer problem is what seem to be inconsistent
DVD structures, as the python library
<a href="https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=723079">claim
there is a overlap between objects</a>.  An equally rare problem claim
<a href="https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741878">some
value is out of range</a>.  No idea what is going on there.  I wish I
knew enough about the DVD format to fix these, to ensure my movie
collection will stay with me in the future.</p>

<p>So, if you need to keep your DVDs safe, back them up using
python-dvdvideo. :)</p>

      </div>
      <div class="tags">
        
        
        Tags: <a href="http://people.skolelinux.org/pere/blog/tags/english">english</a>, <a href="http://people.skolelinux.org/pere/blog/tags/multimedia">multimedia</a>, <a href="http://people.skolelinux.org/pere/blog/tags/opphavsrett">opphavsrett</a>, <a href="http://people.skolelinux.org/pere/blog/tags/video">video</a>.
        
        
      </div>
    </div>
    <div class="padding"></div>
    
    <div class="entry">
      <div class="title">
        <a href="http://people.skolelinux.org/pere/blog/Norsk_utgave_av_Alaveteli___WhatDoTheyKnow_p__trappene.html">Norsk utgave av Alaveteli / WhatDoTheyKnow på trappene</a>
      </div>
      <div class="date">
        16th March 2014
      </div>
      <div class="body">
        <p>Det offentlige Norge har mye kunnskap og informasjon.  Men hvordan
kan en få tilgang til den på en enkel måte?  Takket være et lite
knippe lover og tilhørende forskrifter, blant annet
<a href="http://lovdata.no/dokument/NL/lov/2006-05-19-16">offentlighetsloven</a>,
<a href="http://lovdata.no/dokument/NL/lov/2003-05-09-31">miljøinformasjonsloven</a>
og
<a href="http://lovdata.no/dokument/NL/lov/1967-02-10/">forvaltningsloven</a>
har en rett til å spørre det offentlige og få svar.  Men det finnes
intet offentlig arkiv over hva andre har spurt om, og dermed risikerer en
å måtte forstyrre myndighetene gang på gang for å få tak i samme
informasjonen på nytt.  <a href="http://www.mysociety.org/">Britiske
mySociety</a> har laget tjenesten
<a href="http://www.whatdotheyknow.com/">WhatDoTheyKnow</a> som gjør
noe med dette.  I Storbritannia blir WhatdoTheyKnow brukt i
<a href="http://www.mysociety.org/2011/07/01/whatdotheyknows-share-of-central-government-foi-requests-q2-2011/">ca
15% av alle innsynsforespørsler mot sentraladministrasjonen</a>.
Prosjektet heter <a href="http://www.alaveteli.org/">Alaveteli</A>, og
er takk i bruk en rekke steder etter at løsningen ble generalisert og
gjort mulig å oversette.  Den hjelper borgerne med å be om innsyn,
rådgir ved purringer og klager og lar alle se hvilke henvendelser som
er sendt til det offentlige og hvilke svar som er kommet inn, i et
søkpart arkiv.  Her i Norge holder vi i foreningen NUUG på å få opp en
norsk utgave av Alaveteli, og her trenger vi din hjelp med
oversettelsen.</p>

<p>Så langt er 76 % av Alaveteli oversatt til norsk bokmål, men vi
skulle gjerne vært oppe i 100 % før lansering.  Oversettelsen gjøres
på <a href="https://www.transifex.com/projects/p/alaveteli/">Transifex,
der enhver som registrerer seg</a> og ber om tilgang til
bokmålsoversettelsen får bidra.  Vi har satt opp en test av tjenesten
(som ikke sender epost til det offentlige, kun til oss som holder på å
sette opp tjenesten) på maskinen
<a href="http://alaveteli-dev.nuug.no/">alaveteli-dev.nuug.no</a>, der
en kan se hvordan de oversatte meldingen blir seende ut på nettsiden.
Når tjenesten lanseres vil den hete
<a href="https://www.mimesbrønn.no/">Mimes brønn</a>, etter
visdomskilden som Odin måtte gi øyet sitt for å få drikke i.  Den
nettsiden er er ennå ikke klar til bruk.</p>

<p>Hvis noen vil oversette til nynorsk også, så skal vi finne ut
hvordan vi lager en flerspråklig tjeneste.  Men i første omgang er
fokus på bokmålsoversettelsen, der vi selv har nok peiling til å ha
fått oversatt 76%, men trenger hjelp for å komme helt i mål. :)</p>

      </div>
      <div class="tags">
        
        
        Tags: <a href="http://people.skolelinux.org/pere/blog/tags/norsk">norsk</a>, <a href="http://people.skolelinux.org/pere/blog/tags/nuug">nuug</a>, <a href="http://people.skolelinux.org/pere/blog/tags/offentlig innsyn">offentlig innsyn</a>.
        
        
      </div>
    </div>
    <div class="padding"></div>
    
    <div class="entry">
      <div class="title">
        <a href="http://people.skolelinux.org/pere/blog/Freedombox_on_Dreamplug__Raspberry_Pi_and_virtual_x86_machine.html">Freedombox on Dreamplug, Raspberry Pi and virtual x86 machine</a>
      </div>
      <div class="date">
        14th March 2014
      </div>
      <div class="body">
        <p>The <a href="https://wiki.debian.org/FreedomBox">Freedombox
project</a> is working on providing the software and hardware for
making it easy for non-technical people to host their data and
communication at home, and being able to communicate with their
friends and family encrypted and away from prying eyes.  It has been
going on for a while, and is slowly progressing towards a new test
release (0.2).</p>

<p>And what day could be better than the Pi day to announce that the
new version will provide "hard drive" / SD card / USB stick images for
Dreamplug, Raspberry Pi and VirtualBox (or any other virtualization
system), and can also be installed using a Debian installer preseed
file.  The Debian based Freedombox is now based on Debian Jessie,
where most of the needed packages used are already present.  Only one,
the freedombox-setup package, is missing.  To try to build your own
boot image to test the current status, fetch the freedom-maker scripts
and build using
<a href="http://packages.qa.debian.org/vmdebootstrap">vmdebootstrap</a>
with a user with sudo access to become root:

<pre>
git clone http://anonscm.debian.org/git/freedombox/freedom-maker.git \
  freedom-maker
sudo apt-get install git vmdebootstrap mercurial python-docutils \
  mktorrent extlinux virtualbox qemu-user-static binfmt-support \
  u-boot-tools
make -C freedom-maker dreamplug-image raspberry-image virtualbox-image
</pre>

<p>Root access is needed to run debootstrap and mount loopback
devices.  See the README for more details on the build. If you do not
want all three images, trim the make line.  But note that thanks to <a
href="https://bugs.debian.org/741407">a race condition in
vmdebootstrap</a>, the build might fail without the patch to the
kpartx call.</p>

<p>If you instead want to install using a Debian CD and the preseed
method, boot a Debian Wheezy ISO and use this boot argument to load
the preseed values:</p>

<pre>
url=<a href="http://www.reinholdtsen.name/freedombox/preseed-jessie.dat">http://www.reinholdtsen.name/freedombox/preseed-jessie.dat</a>
</pre>

<p>But note that due to <a href="https://bugs.debian.org/740673">a
recently introduced bug in apt in Jessie</a>, the installer will
currently hang while setting up APT sources.  Killing the
'<tt>apt-cdrom ident</tt>' process when it hang a few times during the
installation will get the installation going.  This affect all
installations in Jessie, and I expect it will be fixed soon.</p>

Give it a go and let us know how it goes on the mailing list, and help
us get the new release published. :) Please join us on
<a href="irc://irc.debian.org:6667/%23freedombox">IRC (#freedombox on
irc.debian.org)</a> and
<a href="http://lists.alioth.debian.org/mailman/listinfo/freedombox-discuss">the
mailing list</a> if you want to help make this vision come true.</p>

      </div>
      <div class="tags">
        
        
        Tags: <a href="http://people.skolelinux.org/pere/blog/tags/debian">debian</a>, <a href="http://people.skolelinux.org/pere/blog/tags/english">english</a>, <a href="http://people.skolelinux.org/pere/blog/tags/freedombox">freedombox</a>, <a href="http://people.skolelinux.org/pere/blog/tags/sikkerhet">sikkerhet</a>, <a href="http://people.skolelinux.org/pere/blog/tags/surveillance">surveillance</a>, <a href="http://people.skolelinux.org/pere/blog/tags/web">web</a>.
        
        
      </div>
    </div>
    <div class="padding"></div>
    
    <div class="entry">
      <div class="title">
        <a href="http://people.skolelinux.org/pere/blog/How_to_add_extra_storage_servers_in_Debian_Edu___Skolelinux.html">How to add extra storage servers in Debian Edu / Skolelinux</a>
      </div>
      <div class="date">
        12th March 2014
      </div>
      <div class="body">
        <p>On larger sites, it is useful to use a dedicated storage server for
storing user home directories and data.  The design for handling this
in <a href="http://www.skolelinux.org/">Debian Edu / Skolelinux</a>, is
to update the automount rules in LDAP and let the automount daemon on
the clients take care of the rest.  I was reminded about the need to
document this better when one of the customers of
<a href="http://www.slxdrift.no/">Skolelinux Drift AS</a>, where I am
on the board of directors, asked about how to do this.  The steps to
get this working are the following:</p>

<p><ol>

<li>Add new storage server in DNS.  I use nas-server.intern as the
example host here.</li>

<li>Add automoun LDAP information about this server in LDAP, to allow
all clients to automatically mount it on reqeust.</li>

<li>Add the relevant entries in tjener.intern:/etc/fstab, because
tjener.intern do not use automount to avoid mounting loops.</li>

</ol></p>

<p>DNS entries are added in GOsa², and not described here.  Follow the
<a href="https://wiki.debian.org/DebianEdu/Documentation/Wheezy/GettingStarted">instructions
in the manual</a> (Machine Management with GOsa² in section Getting
started).</p>

<p>Ensure that the NFS export points on the server are exported to the
relevant subnets or machines:</p>

<p><blockquote><pre>
root@tjener:~# showmount -e nas-server
Export list for nas-server:
/storage         10.0.0.0/8
root@tjener:~#
</pre></blockquote></p>

<p>Here everything on the backbone network is granted access to the
/storage export.  With NFSv3 it is slightly better to limit it to
netgroup membership or single IP addresses to have some limits on the
NFS access.</p>

<p>The next step is to update LDAP.  This can not be done using GOsa²,
because it lack a module for automount.  Instead, use ldapvi and add
the required LDAP objects using an editor.</p>

<p><blockquote><pre>
ldapvi --ldap-conf -ZD '(cn=admin)' -b ou=automount,dc=skole,dc=skolelinux,dc=no
</pre></blockquote></p>

<p>When the editor show up, add the following LDAP objects at the
bottom of the document.  The "/&" part in the last LDAP object is a
wild card matching everything the nas-server exports, removing the
need to list individual mount points in LDAP.</p>

<p><blockquote><pre>
add cn=nas-server,ou=auto.skole,ou=automount,dc=skole,dc=skolelinux,dc=no
objectClass: automount
cn: nas-server
automountInformation: -fstype=autofs --timeout=60 ldap:ou=auto.nas-server,ou=automount,dc=skole,dc=skolelinux,dc=no

add ou=auto.nas-server,ou=automount,dc=skole,dc=skolelinux,dc=no
objectClass: top
objectClass: automountMap
ou: auto.nas-server

add cn=/,ou=auto.nas-server,ou=automount,dc=skole,dc=skolelinux,dc=no
objectClass: automount
cn: /
automountInformation: -fstype=nfs,tcp,rsize=32768,wsize=32768,rw,intr,hard,nodev,nosuid,noatime nas-server.intern:/&
</pre></blockquote></p>

<p>The last step to remember is to mount the relevant mount points in
tjener.intern by adding them to /etc/fstab, creating the mount
directories using mkdir and running "mount -a" to mount them.</p>

<p>When this is done, your users should be able to access the files on
the storage server directly by just visiting the
/tjener/nas-server/storage/ directory using any application on any
workstation, LTSP client or LTSP server.</p>

      </div>
      <div class="tags">
        
        
        Tags: <a href="http://people.skolelinux.org/pere/blog/tags/debian edu">debian edu</a>, <a href="http://people.skolelinux.org/pere/blog/tags/english">english</a>, <a href="http://people.skolelinux.org/pere/blog/tags/ldap">ldap</a>.
        
        
      </div>
    </div>
    <div class="padding"></div>
    
    <div class="entry">
      <div class="title">
        <a href="http://people.skolelinux.org/pere/blog/Hvordan_b_r_RFC_822_formattert_epost_lagres_i_en_NOARK5_database_.html">Hvordan bør RFC 822-formattert epost lagres i en NOARK5-database?</a>
      </div>
      <div class="date">
         7th March 2014
      </div>
      <div class="body">
        <p>For noen uker siden ble NXCs fri programvarelisenserte
NOARK5-løsning
<a href="http://www.nuug.no/aktiviteter/20140211-noark/">presentert hos
NUUG</a> (video
<a href="https://www.youtube.com/watch?v=JCb_dNS3MHQ">på youtube
foreløbig</a>), og det fikk meg til å titte litt mer på NOARK5,
standarden for arkivhåndtering i det offentlige Norge.  Jeg lurer på
om denne kjernen kan være nyttig i et par av mine prosjekter, og for ett
av dem er det mest aktuelt å lagre epost.  Jeg klarte ikke finne noen
anbefaling om hvordan RFC 822-formattert epost (aka Internett-epost)
burde lagres i NOARK5, selv om jeg vet at noen arkiver tar
PDF-utskrift av eposten med sitt epostprogram og så arkiverer PDF-en
(eller enda værre, tar papirutskrift og lagrer bildet av eposten som
PDF i arkivet).</p>

<p>Det er ikke så mange formater som er akseptert av riksarkivet til
langtidsoppbevaring av offentlige arkiver, og PDF og XML er de mest
aktuelle i så måte.  Det slo meg at det måtte da finnes en eller annen
egnet XML-representasjon og at det kanskje var enighet om hvilken som
burde brukes, så jeg tok mot til meg og spurte
<a href="http://samdok.com/">SAMDOK</a>, en gruppe tilknyttet
arkivverket som ser ut til å jobbe med NOARK-samhandling, om de hadde
noen anbefalinger:

<p><blockquote>
<p>Hei.</p>

<p>Usikker på om dette er riktig forum å ta opp mitt spørsmål, men jeg
lurer på om det er definert en anbefaling om hvordan RFC
822-formatterte epost (aka vanlig Internet-epost) bør lages håndteres
i NOARK5, slik at en bevarer all informasjon i eposten
(f.eks. Received-linjer).  Finnes det en anbefalt XML-mapping ala den
som beskrives på
&lt;URL: <a href="https://www.informit.com/articles/article.aspx?p=32074">https://www.informit.com/articles/article.aspx?p=32074</a> &gt;?  Mitt
mål er at det skal være mulig å lagre eposten i en NOARK5-kjerne og
kunne få ut en identisk formattert kopi av opprinnelig epost ved
behov.</p>
</blockquote></p>

<p>Postmottaker hos SAMDOK mente spørsmålet heller burde stilles
direkte til riksarkivet, og jeg fikk i dag svar derfra formulert av
seniorrådgiver Geir Ivar Tungesvik:</p>

<p><blockquote>
<p>Riksarkivet har ingen anbefalinger når det gjelder konvertering fra
e-post til XML.  Det står arkivskaper fritt å eventuelt definere/bruke
eget format.  Inklusive da - som det spørres om - et format der det er
mulig å re-etablere e-post format ut fra XML-en.  XML (e-post)
dokumenter må være referert i arkivstrukturen, og det må vedlegges et
gyldig XML skjema (.xsd) for XML-filene. Arkivskaper står altså fritt
til å gjøre hva de vil, bare det dokumenteres og det kan dannes et
utrekk ved avlevering til depot.</p>

<p>De obligatoriske kravene i Noark 5 standarden må altså oppfylles -
etter dialog med Riksarkivet i forbindelse med godkjenning. For
offentlige arkiv er det særlig viktig med filene loependeJournal.xml
og offentligJournal.xml. Private arkiv som vil forholde seg til Noark
5 standarden er selvsagt frie til å bruke det som er relevant for dem
av obligatoriske krav.</p>
</blockquote></p>

<p>Det ser dermed ut for meg som om det er et lite behov for å
standardisere XML-lagring av RFC-822-formatterte meldinger.  Noen som
vet om god spesifikasjon i så måte?  I tillegg til den omtalt over,
har jeg kommet over flere aktuelle beskrivelser (søk på "rfc 822
xml", så finner du aktuelle alternativer).</p>

<ul>

<li><a href="http://www.openhealth.org/xmtp/">XML MIME Transformation
protocol (XMTP)</a> fra OpenHealth, sist oppdatert 2001.</li>

<li><a href="https://tools.ietf.org/html/draft-klyne-message-rfc822-xml-03">An
XML format for mail and other messages</a> utkast fra IETF datert
2001.</li>

<li><a href="http://www.informit.com/articles/article.aspx?p=32074">xMail:
E-mail as XML</a> en artikkel fra 2003 som beskriver python-modulen
rfc822 som gir ut XML-representasjon av en RFC 822-formattert epost.</li>

</ul>

<p>Finnes det andre og bedre spesifikasjoner for slik lagring?  Send
meg en epost hvis du har innspill.</p>

      </div>
      <div class="tags">
        
        
        Tags: <a href="http://people.skolelinux.org/pere/blog/tags/norsk">norsk</a>, <a href="http://people.skolelinux.org/pere/blog/tags/offentlig innsyn">offentlig innsyn</a>.
        
        
      </div>
    </div>
    <div class="padding"></div>
    
    <p style="text-align: right;"><a href="03.rss"><img src="http://people.skolelinux.org/pere/blog/xml.gif" alt="RSS Feed" width="36" height="14" /></a></p>
    <div id="sidebar">
      


<h2>Archive</h2>
<ul>

<li>2014
<ul>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2014/01/">January (2)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2014/02/">February (3)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2014/03/">March (7)</a></li>

</ul></li>

<li>2013
<ul>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/01/">January (11)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/02/">February (9)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/03/">March (9)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/04/">April (6)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/05/">May (9)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/06/">June (10)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/07/">July (7)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/08/">August (3)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/09/">September (5)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/10/">October (7)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/11/">November (9)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2013/12/">December (3)</a></li>

</ul></li>

<li>2012
<ul>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/01/">January (7)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/02/">February (10)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/03/">March (17)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/04/">April (12)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/05/">May (12)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/06/">June (20)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/07/">July (17)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/08/">August (6)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/09/">September (9)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/10/">October (17)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/11/">November (10)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2012/12/">December (7)</a></li>

</ul></li>

<li>2011
<ul>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/01/">January (16)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/02/">February (6)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/03/">March (6)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/04/">April (7)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/05/">May (3)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/06/">June (2)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/07/">July (7)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/08/">August (6)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/09/">September (4)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/10/">October (2)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/11/">November (3)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2011/12/">December (1)</a></li>

</ul></li>

<li>2010
<ul>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/01/">January (2)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/02/">February (1)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/03/">March (3)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/04/">April (3)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/05/">May (9)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/06/">June (14)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/07/">July (12)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/08/">August (13)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/09/">September (7)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/10/">October (9)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/11/">November (13)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2010/12/">December (12)</a></li>

</ul></li>

<li>2009
<ul>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/01/">January (8)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/02/">February (8)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/03/">March (12)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/04/">April (10)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/05/">May (9)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/06/">June (3)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/07/">July (4)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/08/">August (3)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/09/">September (1)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/10/">October (2)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/11/">November (3)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2009/12/">December (3)</a></li>

</ul></li>

<li>2008
<ul>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2008/11/">November (5)</a></li>

<li><a href="http://people.skolelinux.org/pere/blog/archive/2008/12/">December (7)</a></li>

</ul></li>

</ul>



<h2>Tags</h2>
<ul>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/3d-printer">3d-printer (13)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/amiga">amiga (1)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/aros">aros (1)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/bankid">bankid (4)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/bitcoin">bitcoin (8)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/bootsystem">bootsystem (14)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/bsa">bsa (2)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/chrpath">chrpath (2)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/debian">debian (95)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/debian edu">debian edu (145)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/digistan">digistan (10)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/docbook">docbook (10)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/drivstoffpriser">drivstoffpriser (4)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/english">english (240)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/fiksgatami">fiksgatami (21)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/fildeling">fildeling (12)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/freeculture">freeculture (12)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/freedombox">freedombox (7)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/frikanalen">frikanalen (11)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/intervju">intervju (39)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/isenkram">isenkram (7)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/kart">kart (18)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/ldap">ldap (9)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/lenker">lenker (7)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/ltsp">ltsp (1)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/mesh network">mesh network (8)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/multimedia">multimedia (26)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/norsk">norsk (243)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/nuug">nuug (162)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/offentlig innsyn">offentlig innsyn (11)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/open311">open311 (2)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/opphavsrett">opphavsrett (46)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/personvern">personvern (70)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/raid">raid (1)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/reprap">reprap (11)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/rfid">rfid (2)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/robot">robot (9)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/rss">rss (1)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/ruter">ruter (4)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/scraperwiki">scraperwiki (2)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/sikkerhet">sikkerhet (37)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/sitesummary">sitesummary (4)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/skepsis">skepsis (4)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/standard">standard (44)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/stavekontroll">stavekontroll (3)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/stortinget">stortinget (9)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/surveillance">surveillance (23)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/sysadmin">sysadmin (1)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/valg">valg (8)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/video">video (40)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/vitenskap">vitenskap (4)</a></li>

 <li><a href="http://people.skolelinux.org/pere/blog/tags/web">web (29)</a></li>

</ul>


    </div>
    <p style="text-align: right">
 Created by <a href="http://steve.org.uk/Software/chronicle">Chronicle v4.6</a>
</p>

  </body>
</html>