Dugnadsnett for alle stiller pÃ¥ Oslo Maker Faire i januar 2014

10th December 2013

Helga 18. og 19. januar 2014 arrangeres -Oslo Maker -Faire, og Dugnadsnett for -alle har fÃ¥tt plass! Planen er Ã¥ ha et bord med en plakat der vi -forteller om hva Dugnadsnett for alle er for noe, og et lite verksted -der vi hjelper folk som er interessert i Ã¥ fÃ¥ opp sin egen mesh-node. -Jeg gleder meg til Ã¥ se hvordan prosjektet blir mottatt der.

Freedombox on Dreamplug, Raspberry Pi and virtual x86 machine

14th March 2014

The Freedombox +project is working on providing the software and hardware for +making it easy for non-technical people to host their data and +communication at home, and being able to communicate with their +friends and family encrypted and away from prying eyes. It has been +going on for a while, and is slowly progressing towards a new test +release (0.2).

+ +

And what day could be better than the Pi day to announce that the +new version will provide "hard drive" / SD card / USB stick images for +Dreamplug, Raspberry Pi and VirtualBox (or any other virtualization +system), and can also be installed using a Debian installer preseed +file. The Debian based Freedombox is now based on Debian Jessie, +where most of the needed packages used are already present. Only one, +the freedombox-setup package, is missing. To try to build your own +boot image to test the current status, fetch the freedom-maker scripts +and build using +vmdebootstrap +with a user with sudo access to become root: -

MÃ¥let med dugnadsnett for alle i Oslo er Ã¥ fÃ¥ pÃ¥ plass et datanett -for kommunikasjon ved hjelp av radio-repeaterstasjoner (kalt -mesh-noder) som gjÃ¸r at en kan direkte kommunisere med slekt, venner -og bekjente i Oslo via andre som deltar i dugnadsnettet, samt gjÃ¸re -det mulig komme ut pÃ¥ internett via dugnadsnettet. FÃ¸rste delmÃ¥l er Ã¥ -kunne sende SMS-meldinger vha. IP-telefoni lÃ¸sningen -Serval project mellom -deltagerne i Dugnadsnett for alle i Oslo. FormÃ¥let er Ã¥ ta tilbake -kontrollen over egen nett-infrastruktur og gjÃ¸re det dyrere Ã¥ bedrive -massiv innsamling av informasjon om borgernes bruk av datanett.

+git clone http://anonscm.debian.org/git/freedombox/freedom-maker.git \
+  freedom-maker
+sudo apt-get install git vmdebootstrap mercurial python-docutils \
+  mktorrent extlinux virtualbox qemu-user-static binfmt-support \
+  u-boot-tools
+make -C freedom-maker dreamplug-image raspberry-image virtualbox-image
+

HÃ¸res dette interessant ut? Bli med pÃ¥ prosjektet, fortell oss -hvor du kunne tenke deg Ã¥ sette opp en radio-repeater (slik at folk i -nÃ¦rheten kan finne hverandre ved hjelp av -kartet over planlagte og -eksisterende radio-repeatere), bli med pÃ¥ epostlisten -dugnadsnett -(at) nuug.no og stikk innom -IRC-kanalen -#dugnadsnett.no. SÃ¥ langt er det planlagt over 40 -radio-repeatere, med VPN-forbindelser via Internet for Ã¥ la de delene -av nettet som ikke nÃ¥r hverandre via radio kunne snakke med hverandre -likevel.

Root access is needed to run debootstrap and mount loopback +devices. See the README for more details on the build. If you do not +want all three images, trim the make line. But note that thanks to a race condition in +vmdebootstrap, the build might fail without the patch to the +kpartx call.

+ +

If you instead want to install using a Debian CD and the preseed +method, boot a Debian Wheezy ISO and use this boot argument to load +the preseed values:

+ +

+url=http://www.reinholdtsen.name/freedombox/preseed-jessie.dat
+

+ +

But note that due to a +recently introduced bug in apt in Jessie, the installer will +currently hang while setting up APT sources. Killing the +'apt-cdrom ident' process when it hang a few times during the +installation will get the installation going. This affect all +installations in Jessie, and I expect it will be fixed soon.

+ +Give it a go and let us know how it goes on the mailing list, and help +us get the new release published. :) Please join us on +IRC (#freedombox on +irc.debian.org) and +the +mailing list if you want to help make this vision come true.

- Tags: mesh network, norsk, nuug. + Tags: debian, english, freedombox, sikkerhet, surveillance, web.

@@ -65,129 +91,94 @@ likevel.

Debian Edu interview: Klaus Knopper

6th December 2013

It has been a while since I managed to publish the last interview, -but the Debian Edu / -Skolelinux community is still going strong, and yesterday we even -had a new school administrator show up on -#debian-edu to share -his success story with installing Debian Edu at their school. This -time I have been able to get some helpful comments from the creator of -Knoppix, Klaus Knopper, who was involved in a Skolelinux project in -Germany a few years ago.

- -

Who are you, and how do you spend your days?

- -

I am Klaus Knopper. I have a master degree in electrical -engineering, and is currently professor in information management at -the university of applied sciences Kaiserslautern / Germany and -freelance Open Source software developer and consultant.

- -

All of this is pretty much of the work I spend my days with. Apart -from teaching, I'm also conducting some more or less experimental -projects like the Knoppix GNU/Linux live -system (Debian-based like Skolelinux), -ADRIANE -(a blind-friendly talking desktop system) and -LINBO -(Linux-based network boot console, a fast remote install and repair -system supporting various operating systems).

- -

How did you get in contact with the Skolelinux / Debian Edu -project?

- -

The credit for this have to go to Kurt Gramlich, who is the German -coordinator for Skolelinux. We were looking for an all-in-one open -source community-supported distribution for schools, and Kurt -introduced us to Skolelinux for this purpose.

- -

What do you see as the advantages of Skolelinux / Debian -Edu?

- -

Quick installation,
works (almost) out of the box,
contains many useful software packages for teaching and learning,
is a purely community-based distro and not controlled by a - single company,
has a large number of supporters and teachers who share their - experience and problem solutions.

- -

What do you see as the disadvantages of Skolelinux / Debian -Edu?

- -

Skolelinux is - as we had to learn - not easily upgradable to - the next version. Opposed to its genuine Debian base, upgrading to - a new version means a full new installation from scratch to get it - working again reliably. - -
Skolelinux is based on Debian/stable, and therefore always a - little outdated in terms of program versions compared to Edubuntu or - similar educational Linux distros, which rather use Debian/testing - as their base. - -
Skolelinux has some very self-opinionated and stubborn default - configuration which in my opinion adds unnecessary complexity and is - not always suitable for a schools needs, the preset network - configuration is actually a core definition feature of Skolelinux - and not easy to change, so schools sometimes have to change their - network configuration to make it "Skolelinux-compatible". - -
Some proposed extensions, which were made available as - contribution, like secure examination mode and lecture material - distribution and collection, were not accepted into the mainline - Skolelinux development and are now not easy to maintain in the - future because of Skolelinux somewhat undeterministic update - schemes.
Skolelinux has only a very tiny number of base developers - compared to Debian.

- -

For these reasons and experience from our project, I would now -rather consider using plain Debian for schools next time, until -Skolelinux is more closely integrated into Debian and becomes -upgradeable without reinstallation.

- -

Which free software do you use daily?

- -

GNU/Linux with LXDE desktop, bash for interactive dialog and -programming, texlive for documentation and correspondence, -occasionally LibreOffice for document format conversion. Various -programming languages for teaching.

- -

Which strategy do you believe is the right one to use to -get schools to use free software?

- -

Strong arguments are

- -

Knowledge is free, and so should be methods and tools for - teaching and learning.
Students can learn with and use the same software at school, at - home, and at their working place without running into license or - conversion problems.
Closed source or proprietary software hides knowledge rather - than exposing it, and proprietary software vendors try to bind - customers to certain products. But teachers need to teach - science, not products.
If you have everything you for daily work as open source, what - would you need proprietary software for?

How to add extra storage servers in Debian Edu / Skolelinux

12th March 2014

On larger sites, it is useful to use a dedicated storage server for +storing user home directories and data. The design for handling this +in Debian Edu / Skolelinux, is +to update the automount rules in LDAP and let the automount daemon on +the clients take care of the rest. I was reminded about the need to +document this better when one of the customers of +Skolelinux Drift AS, where I am +on the board of directors, asked about how to do this. The steps to +get this working are the following:

+ +

Add new storage server in DNS. I use nas-server.intern as the +example host here.
Add automoun LDAP information about this server in LDAP, to allow +all clients to automatically mount it on reqeust.
Add the relevant entries in tjener.intern:/etc/fstab, because +tjener.intern do not use automount to avoid mounting loops.

+ +

DNS entries are added in GOsaÂ², and not described here. Follow the +instructions +in the manual (Machine Management with GOsaÂ² in section Getting +started).

+ +

Ensure that the NFS export points on the server are exported to the +relevant subnets or machines:

+ +

+root@tjener:~# showmount -e nas-server
+Export list for nas-server:
+/storage         10.0.0.0/8
+root@tjener:~#
+

+ +

Here everything on the backbone network is granted access to the +/storage export. With NFSv3 it is slightly better to limit it to +netgroup membership or single IP addresses to have some limits on the +NFS access.

+ +

The next step is to update LDAP. This can not be done using GOsaÂ², +because it lack a module for automount. Instead, use ldapvi and add +the required LDAP objects using an editor.

+ +

+ldapvi --ldap-conf -ZD '(cn=admin)' -b ou=automount,dc=skole,dc=skolelinux,dc=no
+

+ +

When the editor show up, add the following LDAP objects at the +bottom of the document. The "/&" part in the last LDAP object is a +wild card matching everything the nas-server exports, removing the +need to list individual mount points in LDAP.

+ +

+add cn=nas-server,ou=auto.skole,ou=automount,dc=skole,dc=skolelinux,dc=no
+objectClass: automount
+cn: nas-server
+automountInformation: -fstype=autofs --timeout=60 ldap:ou=auto.nas-server,ou=automount,dc=skole,dc=skolelinux,dc=no
+
+add ou=auto.nas-server,ou=automount,dc=skole,dc=skolelinux,dc=no
+objectClass: top
+objectClass: automountMap
+ou: auto.nas-server
+
+add cn=/,ou=auto.nas-server,ou=automount,dc=skole,dc=skolelinux,dc=no
+objectClass: automount
+cn: /
+automountInformation: -fstype=nfs,tcp,rsize=32768,wsize=32768,rw,intr,hard,nodev,nosuid,noatime nas-server.intern:/&
+

+ +

The last step to remember is to mount the relevant mount points in +tjener.intern by adding them to /etc/fstab, creating the mount +directories using mkdir and running "mount -a" to mount them.

+ +

When this is done, your users should be able to access the files on +the storage server directly by just visiting the +/tjener/nas-server/storage/ directory using any application on any +workstation, LTSP client or LTSP server.

- Tags: debian edu, english, intervju. + Tags: debian edu, english, ldap.

@@ -195,33 +186,97 @@ get schools to use free software?

Dugnadsnett for alle, a wireless community network in Oslo, take shape

30th November 2013

If you want the ability to electronically communicate directly with -your neighbors and friends using a network controlled by your peers in -stead of centrally controlled by a few corporations, or would like to -experiment with interesting network technology, the -Dugnasnett for alle i Oslo -might be project for you. 39 mesh nodes are currently being planned, -in the freshly started initiative from NUUG and Hackeriet to create a -wireless community network. The work is inspired by -Freifunk, -Athens Wireless Metropolitan -Network, Roofnet -and other successful mesh networks around the globe. Two days ago we -held a workshop to try to get people started on setting up their own -mesh node, and there we decided to create a new mailing list -dugnadsnett -(at) nuug.no and IRC channel -#dugnadsnett.no to -coordinate the work. See also the NUUG blog post -announcing -the mailing list and IRC channel.

Hvordan bÃ¸r RFC 822-formattert epost lagres i en NOARK5-database?

7th March 2014

For noen uker siden ble NXCs fri programvarelisenserte +NOARK5-lÃ¸sning +presentert hos +NUUG (video +pÃ¥ youtube +forelÃ¸big), og det fikk meg til Ã¥ titte litt mer pÃ¥ NOARK5, +standarden for arkivhÃ¥ndtering i det offentlige Norge. Jeg lurer pÃ¥ +om denne kjernen kan vÃ¦re nyttig i et par av mine prosjekter, og for ett +av dem er det mest aktuelt Ã¥ lagre epost. Jeg klarte ikke finne noen +anbefaling om hvordan RFC 822-formattert epost (aka Internett-epost) +burde lagres i NOARK5, selv om jeg vet at noen arkiver tar +PDF-utskrift av eposten med sitt epostprogram og sÃ¥ arkiverer PDF-en +(eller enda vÃ¦rre, tar papirutskrift og lagrer bildet av eposten som +PDF i arkivet).

+ +

Det er ikke sÃ¥ mange formater som er akseptert av riksarkivet til +langtidsoppbevaring av offentlige arkiver, og PDF og XML er de mest +aktuelle i sÃ¥ mÃ¥te. Det slo meg at det mÃ¥tte da finnes en eller annen +egnet XML-representasjon og at det kanskje var enighet om hvilken som +burde brukes, sÃ¥ jeg tok mot til meg og spurte +SAMDOK, en gruppe tilknyttet +arkivverket som ser ut til Ã¥ jobbe med NOARK-samhandling, om de hadde +noen anbefalinger: + +

+
Hei.
+ +
Usikker pÃ¥ om dette er riktig forum Ã¥ ta opp mitt spÃ¸rsmÃ¥l, men jeg +lurer pÃ¥ om det er definert en anbefaling om hvordan RFC +822-formatterte epost (aka vanlig Internet-epost) bÃ¸r lages hÃ¥ndteres +i NOARK5, slik at en bevarer all informasjon i eposten +(f.eks. Received-linjer). Finnes det en anbefalt XML-mapping ala den +som beskrives pÃ¥ +<URL: https://www.informit.com/articles/article.aspx?p=32074 >? Mitt +mÃ¥l er at det skal vÃ¦re mulig Ã¥ lagre eposten i en NOARK5-kjerne og +kunne fÃ¥ ut en identisk formattert kopi av opprinnelig epost ved +behov.
+

+ +

Postmottaker hos SAMDOK mente spÃ¸rsmÃ¥let heller burde stilles +direkte til riksarkivet, og jeg fikk i dag svar derfra formulert av +seniorrÃ¥dgiver Geir Ivar Tungesvik:

+ +

+
Riksarkivet har ingen anbefalinger nÃ¥r det gjelder konvertering fra +e-post til XML. Det stÃ¥r arkivskaper fritt Ã¥ eventuelt definere/bruke +eget format. Inklusive da - som det spÃ¸rres om - et format der det er +mulig Ã¥ re-etablere e-post format ut fra XML-en. XML (e-post) +dokumenter mÃ¥ vÃ¦re referert i arkivstrukturen, og det mÃ¥ vedlegges et +gyldig XML skjema (.xsd) for XML-filene. Arkivskaper stÃ¥r altsÃ¥ fritt +til Ã¥ gjÃ¸re hva de vil, bare det dokumenteres og det kan dannes et +utrekk ved avlevering til depot.
+ +
De obligatoriske kravene i Noark 5 standarden mÃ¥ altsÃ¥ oppfylles - +etter dialog med Riksarkivet i forbindelse med godkjenning. For +offentlige arkiv er det sÃ¦rlig viktig med filene loependeJournal.xml +og offentligJournal.xml. Private arkiv som vil forholde seg til Noark +5 standarden er selvsagt frie til Ã¥ bruke det som er relevant for dem +av obligatoriske krav.
+

+ +

Det ser dermed ut for meg som om det er et lite behov for Ã¥ +standardisere XML-lagring av RFC-822-formatterte meldinger. Noen som +vet om god spesifikasjon i sÃ¥ mÃ¥te? I tillegg til den omtalt over, +har jeg kommet over flere aktuelle beskrivelser (sÃ¸k pÃ¥ "rfc 822 +xml", sÃ¥ finner du aktuelle alternativer).

+ +

XML MIME Transformation +protocol (XMTP) fra OpenHealth, sist oppdatert 2001.
An +XML format for mail and other messages utkast fra IETF datert +2001.
xMail: +E-mail as XML en artikkel fra 2003 som beskriver python-modulen +rfc822 som gir ut XML-representasjon av en RFC 822-formattert epost.

+ +

Finnes det andre og bedre spesifikasjoner for slik lagring? Send +meg en epost hvis du har innspill.

- Tags: english, mesh network, nuug. + Tags: norsk, offentlig innsyn.

@@ -229,84 +284,110 @@ the mailing list and IRC channel.

Hvor godt fungerer Linux-klienter mot MS Exchange?

26th November 2013

Jeg -skrev -i juni om protestene pÃ¥ planene til min arbeidsplass, -Universitetet i Oslo, om Ã¥ gÃ¥ bort fra -fri programvare- og Ã¥pne standardlÃ¸sninger for Ã¥ hÃ¥ndtere epost, -vekk fra IETF-standarden SIEVE for filtrering av epost og over til -godseide spesifikasjoner og epostsystemet Microsoft Exchange. -Protestene har fÃ¥tt litt ny omtale i media de siste dagene, i tillegg -til de oppslagene som kom i mai.

Lenker for 2014-02-28

28th February 2014

Her er noen lenker til tekster jeg har satt pris pÃ¥ Ã¥ lese de siste +mÃ¥nedene. Det er mye om varsleren Edward Snowden, som burde fÃ¥ all +hjelp, stÃ¸tte og beskyttelse Norge kan stille opp med for Ã¥ ha satt +totalitÃ¦r overvÃ¥kning pÃ¥ sakskartet, men ogsÃ¥ endel annet +tankevekkende og interessant.

2013-11-26 Gigantisk Outlook-konvertering mÃ¸der protester pÃ¥ universitet - versjon2.dk
2013-12-21 +- +NSA tenker som Stasi - Dagbladet.no
2013-11-25 - Microsoft-protest - pÃ¥ Universitetet - Computerworld
2013-12-19 - +Staten har ikke rett til Ã¥ vite alt om deg - DN.no
2013-11-25 - Kjemper - mot innfÃ¸ring av Microsoft Exchange pÃ¥ UiO - Uniforum
2013-12-21 +Nye +mÃ¥l for NSAs spionasje avslÃ¸rt - Dagbladet.no
2013-11-25 - Utsetter - innfÃ¸ring av nytt e-postsystem - Uniforum
2013-12-19 +Â«NSA +bÃ¸r fjernes fra sin makt til Ã¥ samle inn metadata fra amerikanske +telefonsamtalerÂ» - Dagbladet.no
2013-05-29 - Forsvarer - nytt IT-system - Universitas
2013-12-18 +Etterretning, +overvÃ¥king, frihet og sikkerhet - Dagbladet.no
2013-05-23 - UiO - innfÃ¸rer nytt epost- og kalenderverktÃ¸y - Uniforum
2013-12-17 +Snowden +angriper USA i Ã¥pent brev - nrk.no
2013-05-22 - Protestgruppe - vil stanse IT-system - Universitas
2013-12-17 +Rettslig +nederlag for etterretning - digi.no
2013-05-15 - UiO - mÃ¥ ha kontroll over sitt eget epostsystem - Uniforum
2013-12-21 +Truende +nedkjÃ¸ling - dagbladet.no

2013-12-20 +Matematikk +og forstÃ¥else - aftenposten.no

+ +

2013-10-20 +Vi +sÃ¸v for Ã¥ reinse hjernen vÃ¥r, ifÃ¸lgje ny studie - nrk.no

+ +

2013-12-11 +Rotterace +i kloakken - nrk.no

+ +

2013-12-30 +Ãpne +brev og frie tanker - aftenposten.no

+ +

2014-01-12 +Stopp dagens kunnskapsapartheid! - aftenposten.no

+ +

2014-01-09 +EU-rapport: +Britisk og amerikansk overvÃ¥king ser ut til Ã¥ vÃ¦re ulovlig - +aftenposten.no

Prosjektledelsen har fortalt at dette skal fungere like godt for -Linux-brukere som for brukere av Microsoft Windows og Apple MacOSX, -men jeg lurer pÃ¥ hva slags erfaringer Linux-brukere i eksisterende -miljÃ¸er som bruker MS Exchange har gjort. Hvis du har slik erfaring -hadet det vÃ¦rt veldig fint om du kan send et leserbrev til -Uniforum og fortelle om hvor -greit det er Ã¥ bruke Exchange i kryss-platform-miljÃ¸er? De jeg har -snakket med sier en greit fÃ¥r lest e-posten sin hvis Exchange har -slÃ¥tt pÃ¥ IMAP-funksjonalitet, men at kalender og mÃ¸tebooking ikke -fungerer godt for Linux-klienter. Jeg har ingen personlig erfaring Ã¥ -komme med, sÃ¥ jeg er nysgjerrig pÃ¥ hva andre kan dele av erfaringer -med universitetet.

- -

Mitt ankerpunkt mot Ã¥ bytte ut fri programvare som fungerer godt -med godseid programvare er at en mister kontroll over egen -infrastruktur, lÃ¥ser seg inn i en lÃ¸sning det vil bli dyrt Ã¥ komme ut -av, uten at en fÃ¥r funksjonalitet en ikke kunne skaffet seg med fri -programvare, eventuelt videreutviklet med de pengene som brukes pÃ¥ -overgangen til MS Exchange. Personlig planlegger jeg Ã¥ fortsette Ã¥ -laste ned all eposten min til lokal maskin for indeksering og lesing -med notmuch, sÃ¥ jeg hÃ¥per jeg -ikke blir veldig skadelidende av overgangen.

- -

Underskriftslista -for oss som er mot endringen, som omtales i artiklene, er fortsatt -Ã¥pen for de som vil signere pÃ¥ oppropet. Akkurat nÃ¥ er det 298 -personer som har signert.

2013-10-23 Professor Jan Arild Audestad +Advarer +mot konspirasjonsteori i digi.no og sier han ikke tror NSA kan +avlytte mobiltelefoner, mens han noen mÃ¥neder senere forteller:

+ +

2014-01-09 +- +Vi ble presset til Ã¥ svekke mobilsikkerheten pÃ¥ 80-tallet - +aftenposten.no

+ +

2014-02-12 +Et +mÃ¸te med Edward Snowden - intervju sendt av nrk, tilgjengelig til +2015-01-31

+ +

2014-02-17 +LitteraturredaktÃ¸ren: +Helle Thornings tavshed om Snowden er en skandale - +politiken.dk

+ +

2014-02-21 +Bra Ã¥ ha en Â«StorebrorÂ» - aftenposten.no

+ +

2014-02-28 +"Narkotikasiktet +Stortingsmann" - Spillet bak kulissene - John Christian Eldens +blogg

+ +

2014-02-28 +Heksejakt +pÃ¥ hasjbrukere - aftenposten.no

+ +

- Tags: norsk, standard. + Tags: lenker, norsk, personvern.

@@ -314,51 +395,32 @@ personer som har signert.

New chrpath release 0.15

24th November 2013

After many years break from the package and a vain hope that -development would be continued by someone else, I finally pulled my -acts together this morning and wrapped up a new release of chrpath, -the command line tool to modify the rpath and runpath of already -compiled ELF programs. The update was triggered by the persistence of -Isha Vishnoi at IBM, which needed a new config.guess file to get -support for the ppc64le architecture (powerpc 64-bit Little Endian) he -is working on. I checked the -Debian, -Ubuntu and -Fedora -packages for interesting patches (failed to find the source from -OpenSUSE and Mandriva packages), and found quite a few nice fixes. -These are the release notes:

- -

New in 0.15 released 2013-11-24:

- -

Updated config.sub and config.guess from the GNU project to work - with newer architectures. Thanks to isha vishnoi for the heads - up.
Updated README with current URLs.
Added byteswap fix found in Ubuntu, credited Jeremy Kerr and - Matthias Klose.
Added missing help for -k|--keepgoing option, using patch by - Petr Machata found in Fedora.
Rewrite removal of RPATH/RUNPATH to make sure the entry in - .dynamic is a NULL terminated string. Based on patch found in - Fedora credited Axel Thimm and Christian Krause.

- -

You can -download the -new version 0.15 from alioth. Please let us know via the Alioth -project if something is wrong with the new release. The test suite -did not discover any old errors, so if you find a new one, please also -include a testsuite check.

New home and release 1.0 for netgroup and innetgr (aka ng-utils)

22nd February 2014

Many years ago, I wrote a GPL licensed version of the netgroup and +innetgr tools, because I needed them in +Skolelinux. I called the project +ng-utils, and it has served me well. I placed the project under the +Hungry Programmer umbrella, and it was maintained in our CVS +repository. But many years ago, the CVS repository was dropped (lost, +not migrated to new hardware, not sure), and the project have lacked a +proper home since then.

+ +

Last summer, I had a look at the package and made a new release +fixing a irritating crash bug, but was unable to store the changes in +a proper source control system. I applied for a project on +Alioth, but did not have time +to follow up on it. Until today. :)

+ +

After many hours of cleaning and migration, the ng-utils project +now have a new home, and a git repository with the highlight of the +history of the project. I published all release tarballs and imported +them into the git repository. As the project is really stable and not +expected to gain new features any time soon, I decided to make a new +release and call it 1.0. Visit the new project home on +https://alioth.debian.org/projects/ng-utils/ +if you want to check it out. The new version is also uploaded into +Debian Unstable.

@@ -371,64 +433,113 @@ include a testsuite check.

RSS-kilde for fritekstsÃ¸k i offentlige anbud hos Doffin

22nd November 2013

I fjor sommer lagde jeg en -offentlig -tilgjengelig SQL-database over offentlig anbud basert pÃ¥ skraping -av HTML-data fra Doffin. Den har stÃ¥tt og gÃ¥tt siden da, og har nÃ¥ -ca. 28000 oppfÃ¸ringer. Jeg oppdaget da jeg tittet innom at noen -oppfÃ¸ringer var ikke blitt med, antagelig pÃ¥ grunn av at de fikk -tildelt sekvensnummer i Doffin en godt stund fÃ¸r de ble publisert, -slik at min nettsideskraper som fortsatte skrapingen der den slapp -sist ikke fikk dem med seg. Jeg har fikset litt slik at skraperen nÃ¥ -ser litt tilbake i tid for Ã¥ se om den har gÃ¥tt glipp av noen -oppfÃ¸ringer, og har skrapet pÃ¥ nytt fra midten av september 2013 og -fremover. Det bÃ¸r dermed bli en mer komplett database for kommende -mÃ¥neder. Hvis jeg fÃ¥r tid skal jeg forsÃ¸ke Ã¥ skrape "glemte" data fra -fÃ¸r midten av september 2013, men tÃ¸r ikke garantere at det blir -prioritert med det fÃ¸rste.

- -

Men mÃ¥let med denne bloggposten er Ã¥ vise hvordan denne -Doffin-databasen kan brukes og integreres med en RSS-leser, slik at en -kan la datamaskinen holde et Ã¸ye med Doffin-annonseringer etter -nÃ¸kkelord. En kan lage sitt eget sÃ¸k ved Ã¥ besÃ¸ke -API-et -hos Scraperwiki, velge format rss2 og sÃ¥ legge inn noe ala dette i -"query in SQL":

- -

-select title, scrapedurl as link, abstract as description,
-       publishdate as pubDate from 'swdata'
-   where abstract like '%linux%' or title like '%linux%'
-   order by seq desc limit 20
-

- -

Dette vil sÃ¸ke opp alle anbud med ordet linux i oppsummering eller -tittel. En kan lage mer avanserte sÃ¸k hvis en Ã¸nsker det. URL-en som -dukker opp nederst pÃ¥ siden kan en sÃ¥ gi til sin RSS-leser (jeg bruker -akregator selv), og sÃ¥ automatisk fÃ¥ beskjed hvis det dukker opp anbud -med det aktuelle nÃ¸kkelordet i teksten. Merk at kapasiteten og -ytelsen hos Scraperwiki er begrenset, sÃ¥ ikke be RSS-leseren hente ned -oftere enn en gang hver dag.

- -

Du lurer kanskje pÃ¥ hva slags informasjon en kan fÃ¥ ut fra denne -databasen. Her er to RSS-kilder, med sÃ¸keordet -"linux", -sÃ¸keordet -"fri -programvare" -og sÃ¸keordet -"odf". -Det er bare Ã¥ sÃ¸ke pÃ¥ det en er interessert i. Kopier gjerne -datasettet og sett opp din egen tjeneste hvis du vil gjÃ¸re mer -avanserte sÃ¸k. SQLite-filen med Doffin-oppfÃ¸ringer kan lastes med fra -Scraperwiki for de som vil grave dypere.

Testing sysvinit from experimental in Debian Hurd

3rd February 2014

A few days ago I decided to try to help the Hurd people to get +their changes into sysvinit, to allow them to use the normal sysvinit +boot system instead of their old one. This follow up on the +great +Google Summer of Code work done last summer by Justus Winter to +get Debian on Hurd working more like Debian on Linux. To get started, +I downloaded a prebuilt hard disk image from +http://ftp.debian-ports.org/debian-cd/hurd-i386/current/debian-hurd.img.tar.gz, +and started it using virt-manager.

+ +

The first think I had to do after logging in (root without any +password) was to get the network operational. I followed +the +instructions on the Debian GNU/Hurd ports page and ran these +commands as root to get the machine to accept a IP address from the +kvm internal DHCP server:

+ +

+settrans -fgap /dev/netdde /hurd/netdde
+kill $(ps -ef|awk '/[p]finet/ { print $2}')
+kill $(ps -ef|awk '/[d]evnode/ { print $2}')
+dhclient /dev/eth0
+

+ +

After this, the machine had internet connectivity, and I could +upgrade it and install the sysvinit packages from experimental and +enable it as the default boot system in Hurd.

+ +

But before I did that, I set a password on the root user, as ssh is +running on the machine it for ssh login to work a password need to be +set. Also, note that a bug somewhere in openssh on Hurd block +compression from working. Remember to turn that off on the client +side.

+ +

Run these commands as root to upgrade and test the new sysvinit +stuff:

+ +

+cat > /etc/apt/sources.list.d/experimental.list <<EOF
+deb http://http.debian.net/debian/ experimental main
+EOF
+apt-get update
+apt-get dist-upgrade
+apt-get install -t experimental initscripts sysv-rc sysvinit \
+    sysvinit-core sysvinit-utils
+update-alternatives --config runsystem
+

+ +

To reboot after switching boot system, you have to use +reboot-hurd instead of just reboot, as there is not +yet a sysvinit process able to receive the signals from the normal +'reboot' command. After switching to sysvinit as the boot system, +upgrading every package and rebooting, the network come up with DHCP +after boot as it should, and the settrans/pkill hack mentioned at the +start is no longer needed. But for some strange reason, there are no +longer any login prompt in the virtual console, so I logged in using +ssh instead. + +

Note that there are some race conditions in Hurd making the boot +fail some times. No idea what the cause is, but hope the Hurd porters +figure it out. At least Justus said on IRC (#debian-hurd on +irc.debian.org) that they are aware of the problem. A way to reduce +the impact is to upgrade to the Hurd packages built by Justus by +adding this repository to the machine:

+ +

+cat > /etc/apt/sources.list.d/hurd-ci.list <<EOF
+deb http://darnassus.sceen.net/~teythoon/hurd-ci/ sid main
+EOF
+

+ +

At the moment the prebuilt virtual machine get some packages from +http://ftp.debian-ports.org/debian, because some of the packages in +unstable do not yet include the required patches that are lingering in +BTS. This is the completely list of "unofficial" packages installed:

+ +

+# aptitude search '?narrow(?version(CURRENT),?origin(Debian Ports))'
+i   emacs                   - GNU Emacs editor (metapackage)
+i   gdb                     - GNU Debugger
+i   hurd-recommended        - Miscellaneous translators
+i   isc-dhcp-client         - ISC DHCP client
+i   isc-dhcp-common         - common files used by all the isc-dhcp* packages
+i   libc-bin                - Embedded GNU C Library: Binaries
+i   libc-dev-bin            - Embedded GNU C Library: Development binaries
+i   libc0.3                 - Embedded GNU C Library: Shared libraries
+i A libc0.3-dbg             - Embedded GNU C Library: detached debugging symbols
+i   libc0.3-dev             - Embedded GNU C Library: Development Libraries and Hea
+i   multiarch-support       - Transitional package to ensure multiarch compatibilit
+i A x11-common              - X Window System (X.Org) infrastructure
+i   xorg                    - X.Org X Window System
+i A xserver-xorg            - X.Org X server
+i A xserver-xorg-input-all  - X.Org X server -- input driver metapackage
+#
+

+ +

All in all, testing hurd has been an interesting experience. :) +X.org did not work out of the box and I never took the time to follow +the porters instructions to fix it. This time I was interested in the +command line stuff.

- Tags: norsk, nuug, offentlig innsyn. + Tags: bootsystem, debian, english.

@@ -436,56 +547,90 @@ Scraperwiki for de som vil grave dypere.

All drones should be radio marked with what they do and who they belong to

21st November 2013

Drones, flying robots, are getting more and more popular. The most -know ones are the killer drones used by some government to murder -people they do not like without giving them the chance of a fair -trial, but the technology have many good uses too, from mapping and -forest maintenance to photography and search and rescue. I am sure it -is just a question of time before "bad drones" are in the hands of -private enterprises and not only state criminals but petty criminals -too. The drone technology is very useful and very dangerous. To have -some control over the use of drones, I agree with Daniel Suarez in his -TED talk -"The kill -decision shouldn't belong to a robot", where he suggested this -little gem to keep the good while limiting the bad use of drones:

- -

- -
Each robot and drone should have a cryptographically signed -I.D. burned in at the factory that can be used to track its movement -through public spaces. We have license plates on cars, tail numbers on -aircraft. This is no different. And every citizen should be able to -download an app that shows the population of drones and autonomous -vehicles moving through public spaces around them, both right now and -historically. And civic leaders should deploy sensors and civic drones -to detect rogue drones, and instead of sending killer drones of their -own up to shoot them down, they should notify humans to their -presence. And in certain very high-security areas, perhaps civic -drones would snare them and drag them off to a bomb disposal facility.
- -
But notice, this is more an immune system than a weapons system. It -would allow us to avail ourselves of the use of autonomous vehicles -and drones while still preserving our open, civil society.
- -

- -

The key is that every citizen should be able to read the -radio beacons sent from the drones in the area, to be able to check -both the government and others use of drones. For such control to be -effective, everyone must be able to do it. What should such beacon -contain? At least formal owner, purpose, contact information and GPS -location. Probably also the origin and target position of the current -flight. And perhaps some registration number to be able to look up -the drone in a central database tracking their movement. Robots -should not have privacy. It is people who need privacy.

A fist full of non-anonymous Bitcoins

29th January 2014

Bitcoin is a incredible use of peer to peer communication and +encryption, allowing direct and immediate money transfer without any +central control. It is sometimes claimed to be ideal for illegal +activity, which I believe is quite a long way from the truth. At least +I would not conduct illegal money transfers using a system where the +details of every transaction are kept forever. This point is +investigated in +USENIX ;login: +from December 2013, in the article +"A +Fistful of Bitcoins - Characterizing Payments Among Men with No +Names" by Sarah Meiklejohn, Marjori Pomarole,Grant Jordan, Kirill +Levchenko, Damon McCoy, Geoffrey M. Voelker, and Stefan Savage. They +analyse the transaction log in the Bitcoin system, using it to find +addresses belong to individuals and organisations and follow the flow +of money from both Bitcoin theft and trades on Silk Road to where the +money end up. This is how they wrap up their article:

+ +

+
"To demonstrate the usefulness of this type of analysis, we turned +our attention to criminal activity. In the Bitcoin economy, criminal +activity can appear in a number of forms, such as dealing drugs on +Silk Road or simply stealing someone elseâs bitcoins. We followed the +flow of bitcoins out of Silk Road (in particular, from one notorious +address) and from a number of highly publicized thefts to see whether +we could track the bitcoins to known services. Although some of the +thieves attempted to use sophisticated mixing techniques (or possibly +mix services) to obscure the flow of bitcoins, for the most part +tracking the bitcoins was quite straightforward, and we ultimately saw +large quantities of bitcoins flow to a variety of exchanges directly +from the point of theft (or the withdrawal from Silk Road).
+ +
As acknowledged above, following stolen bitcoins to the point at +which they are deposited into an exchange does not in itself identify +the thief; however, it does enable further de-anonymization in the +case in which certain agencies can determine (through, for example, +subpoena power) the real-world owner of the account into which the +stolen bitcoins were deposited. Because such exchanges seem to serve +as chokepoints into and out of the Bitcoin economy (i.e., there are +few alternative ways to cash out), we conclude that using Bitcoin for +money laundering or other illicit purposes does not (at least at +present) seem to be particularly attractive."
+

+ +

These researches are not the first to analyse the Bitcoin +transaction log. The 2011 paper +"An Analysis of Anonymity in +the Bitcoin System" by Fergal Reid and Martin Harrigan is +summarized like this:

+ +

+"Anonymity in Bitcoin, a peer-to-peer electronic currency system, is a +complicated issue. Within the system, users are identified by +public-keys only. An attacker wishing to de-anonymize its users will +attempt to construct the one-to-many mapping between users and +public-keys and associate information external to the system with the +users. Bitcoin tries to prevent this attack by storing the mapping of +a user to his or her public-keys on that user's node only and by +allowing each user to generate as many public-keys as required. In +this chapter we consider the topological structure of two networks +derived from Bitcoin's public transaction history. We show that the +two networks have a non-trivial topological structure, provide +complementary views of the Bitcoin system and have implications for +anonymity. We combine these structures with external information and +techniques such as context discovery and flow analysis to investigate +an alleged theft of Bitcoins, which, at the time of the theft, had a +market value of approximately half a million U.S. dollars." +

+ +

I hope these references can help kill the urban myth that Bitcoin +is anonymous. It isn't really a good fit for illegal activites. Use +cash if you need to stay anonymous, at least until regular DNA +sampling of notes and coins become the norm. :)

+ +

As usual, if you use Bitcoin and want to show your support of my +activities, please send Bitcoin donations to my address +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.

- Tags: english, robot, sikkerhet, surveillance. + Tags: bitcoin, english, personvern, sikkerhet.

@@ -493,26 +638,54 @@ should not have privacy. It is people who need privacy.

Lets make a wireless community network in Oslo!

13th November 2013

Today NUUG and Hackeriet announced -our -plans to join forces and create a wireless community network in -Oslo. The workshop to help people get started will take place -Thursday 2013-11-28, but we already are collecting the geolocation of -people joining forces to make this happen. We have -9 -locations plotted on the map, but we will need more before we have -a connected mesh spread across Oslo. If this sound interesting to -you, please join us at the workshop. If you are too impatient to wait -15 days, please join us on the IRC channel -#nuug on irc.freenode.net -right away. :)

New chrpath release 0.16

14th January 2014

Coverity is a nice tool to +find problems in C, C++ and Java code using static source code +analysis. It can detect a lot of different problems, and is very +useful to find memory and locking bugs in the error handling part of +the source. The company behind it provide +check of free software projects as +a community service, and many hundred free software projects are +already checked. A few days ago I decided to have a closer look at +the Coverity system, and discovered that the +gnash and +ipmitool +projects I am involved with was already registered. But these are +fairly big, and I would also like to have a small and easy project to +check, and decided to request +checking of the chrpath project. It was +added to the checker and discovered seven potential defects. Six of +these were real, mostly resource "leak" when the program detected an +error. Nothing serious, as the resources would be released a fraction +of a second later when the program exited because of the error, but it +is nice to do it right in case the source of the program some time in +the future end up in a library. Having fixed all defects and added +a +mailing list for the chrpath developers, I decided it was time to +publish a new release. These are the release notes:

+ +

New in 0.16 released 2014-01-14:

+ +

Fixed all minor bugs discovered by Coverity.
Updated config.sub and config.guess from the GNU project.
Mention new project mailing list in the documentation.

+ +

You can +download the +new version 0.16 from alioth. Please let us know via the Alioth +project if something is wrong with the new release. The test suite +did not discover any old errors, so if you find a new one, please also +include a test suite check.

- Tags: english, mesh network, nuug. + Tags: chrpath, debian, english.

@@ -520,131 +693,216 @@ right away. :)

Running TP-Link MR3040 as a batman-adv mesh node using openwrt

10th November 2013

Continuing my research into mesh networking, I was recommended to -use TP-Link 3040 and 3600 access points as mesh nodes, and the pair I -bought arrived on Friday. Here are my notes on how to set up the -MR3040 as a mesh node using -OpenWrt.

- -

I started by following the instructions on the OpenWRT wiki for -TL-MR3040, -and downloaded -the -recommended firmware image -(openwrt-ar71xx-generic-tl-mr3040-v2-squashfs-factory.bin) and -uploaded it into the original web interface. The flashing went fine, -and the machine was available via telnet on the ethernet port. After -logging in and setting the root password, ssh was available and I -could start to set it up as a batman-adv mesh node.

- -

I started off by reading the instructions from -Wireless -Africa, which had quite a lot of useful information, but -eventually I followed the recipe from the Open Mesh wiki for -using -batman-adv on OpenWrt. A small snag was the fact that the -opkg install kmod-batman-adv command did not work as it -should. The batman-adv kernel module would fail to load because its -dependency crc16 was not already loaded. I -reported the bug to -the openwrt project and hope it will be fixed soon. But the problem -only seem to affect initial testing of batman-adv, as configuration -seem to work when booting from scratch.

- -

The setup is done using files in /etc/config/. I did not bridge -the Ethernet and mesh interfaces this time, to be able to hook up the -box on my local network and log into it for configuration updates. -The following files were changed and look like this after modifying -them:

- -

/etc/config/network

Debian Edu interview: Dominik George

25th December 2013

The Debian Edu / Skolelinux +project consist of both newcomers and old timers, and this time I +was able to get an interview with a newcomer in the project who showed +up on the IRC channel a few weeks ago to let us know about his +successful installation of Debian Edu Wheezy in his School. Say hello +to Dominik +George.

+ + -

Who are you, and how do you spend your days?

-config interface 'loopback' - option ifname 'lo' - option proto 'static' - option ipaddr '127.0.0.1' - option netmask '255.0.0.0' - -config globals 'globals' - option ula_prefix 'fdbf:4c12:3fed::/48' - -config interface 'lan' - option ifname 'eth0' - option type 'bridge' - option proto 'dhcp' - option ipaddr '192.168.1.1' - option netmask '255.255.255.0' - option hostname 'tl-mr3040' - option ip6assign '60' - -config interface 'mesh' - option ifname 'adhoc0' - option mtu '1528' - option proto 'batadv' - option mesh 'bat0' -

I am a 23 year-old student from Germany who has spent half of his +life with open source. In "real life", I am, as already mentioned, a +student in the fields of Computer Science, Electrical Engineering, +Information Technologies and Anglistics. Due to my (only partially +voluntary) huge engagement in the open source world, these things are +a bit vacant right now however.

+ +

I also have been working as a project teacher at a Gymasnium +(public school) for various years now. I took up that work some time +around 2005 when still attending that school myself and have continued +it until today. I also had been running the (kind of very advanced) +network of that school together with a team of very interested and +talented students in the age of 11 to 15 years, who took the chance to +learn a lot about open source and networking before I left the school +to help building another school's informational education concept from +scratch.

+ +

That said, one might see me as a kind of "glue" between school kids +and the elderly of teachers as well as between the open source +ecosystem and the (even more complex) educational ecosystem.

+ +

When I am not busy with open source or education, I like Geocaching +and cycling.

/etc/config/wireless

How did you get in contact with the Skolelinux / Debian Edu +project?

-config wifi-device 'radio0' - option type 'mac80211' - option channel '11' - option hwmode '11ng' - option path 'platform/ar933x_wmac' - option htmode 'HT20' - list ht_capab 'SHORT-GI-20' - list ht_capab 'SHORT-GI-40' - list ht_capab 'RX-STBC1' - list ht_capab 'DSSS_CCK-40' - option disabled '0' - -config wifi-iface 'wmesh' - option device 'radio0' - option ifname 'adhoc0' - option network 'mesh' - option encryption 'none' - option mode 'adhoc' - option bssid '02:BA:00:00:00:01' - option ssid 'meshfx@hackeriet' -

/etc/config/batman-adv

I think that happened some time around 2009 when I first attended +FrOSCon and visited the project +booth. I think I wasn't too interested back then because I used to +have an attitude of disliking software that does too much stuff on its +own. Maybe I was too inexperienced to realise the upsides of an +"out-of-the-box" solution ;).

+ +

The first time I actively talked to Skolelinux people was at +OpenRheinRuhr 2011 when the +BiscuIT project, a home-grewn software used by my school for various +really cool things from timetables and class contact lists to lunch +ordering, student ID card printing and project elections first got to +a stage where it could have been published. I asked the Skolelinux +guys running the booth if the project were interested in it and gave a +small demonstration, but there wasn't any real feedback and the guys +seemed rather uninterested.

+ +

After I left the school where I developed the software, it got +mostly lost, but I am now reimplementing it for my new school. I have +reusability and compatibility in mind, and I hop there will be a new +basis for contributing it to the Skolelinux project ;)!

-config 'mesh' 'bat0' - option interfaces 'adhoc0' - option 'aggregated_ogms' - option 'ap_isolation' - option 'bonding' - option 'fragmentation' - option 'gw_bandwidth' - option 'gw_mode' - option 'gw_sel_class' - option 'log_level' - option 'orig_interval' - option 'vis_mode' - option 'bridge_loop_avoidance' - option 'distributed_arp_table' - option 'network_coding' - option 'hop_penalty' - -# yet another batX instance -# config 'mesh' 'bat5' -# option 'interfaces' 'second_mesh' -

What do you see as the advantages of Skolelinux / Debian +Edu?

+ +

The most important advantage seems to be that it "just +works". After overcoming some minor (but still very annoying) glitches +in the installer, I got a fully functional, working school network, +without the month-long hassle I experienced when setting all that up +from scratch in earlier years. And above that, it rocked - I didn't +have any real hardware at hand, because the school was just founded +and has no money whatsoever, so I installed a combined server (main +server, terminal services and workstation) in a VM on my personal +notebook, bridging the LTSP network interface to the ethernet port, +and then PXE-booted the Windows notebooks that were lying around from +it. I could use 8 clients without any performance issues, by using a +tiny little VM on a tiny little notebook. I think that's enough to say +that it rocks!

+ +

Secondly, there are marketing reasons. Life's bad, and so no +politician will ever permit a setup described as "Debian, an universal +operating system, with some really cool educational tools" while they +will be jsut fine with "Skolelinux, a single-purpose solution for your +school network", even if both turn out to be the very same thing (yes, +this is unfair towards the Skolelinux project, and must not be taken +too seriously - you get the idea, anyway).

+ +

What do you see as the disadvantages of Skolelinux / Debian +Edu?

+ +

I have not been involved with Skolelinux long enough to really +answer this question in a fair way. Thus, please allow me to put it in +other words: "What do you expect from Skolelinux to keep liking it?" I +can list a few points about that:

+ +

always strive to get all things integrated into Debian upstream +
be open to discussion about changes and the like, even with newcomers +
be helpful at being helpful ;) + +

+ +

I'm really sorry I cannot say much more about that :(!

+ +

Which free software do you use daily?

+ +

First of all, all software I use is free and open. I have abandoned +all non-free software (except for firmware on my darned phone) this +year.

+ +

I run Debian GNU/Linux on all PC systems I use. On that, I mostly +run text tools. I use +mksh as shell, +jupp as very advanced +text editor (I even got the developer to help me write a script/macro +based full-featured student management software with the two), +mcabber for XMPP and +irssi for IRC. For that overly +coloured world called the WWW, I use +Iceweasel +(Firefox). Oh, and mutt for +e-mail.

+ +

However, while I am personally aware of the fact that text tools +are more efficient and powerful than anything else, I also use (or at +least operate) some tools that are suitable to bring open source to +kids. One of these things is Jappix, +which I already introduced to some kids even before they got aware of +Facebook, making them see for themselves that they do not need +Facebook now ;).

+ +

Which strategy do you believe is the right one to use to +get schools to use free software?

The mesh node is now operational. I have yet to test its range, -but I hope it is good. I have not yet tested the TP-Link 3600 box -still wrapped up in plastic.

Well, that's a two-sided thing. One side is what I believe, and one +side is what I have experienced.

+ +

I believe that the right strategy is showing them the benefits. But +that won't work out as long as the acceptance of free alternatives +grows globally. What I mean is that if all the kids are almost forced +to use Windows, Facebook, Skype, you name it at home, they will not +see why they would want to use alternatives at school. I have seen +students take seat in front of a fully-functional, modern Debian +desktop that could do anything their Windows at home could do, and +they jsut refused to use it because "Linux sucks". It is something +that makes the council of our city spend around 600000 â¬ to buy +software - not including hardware, mind you - for operating school +networks, and for installing a system that, as has been proved, does +not work. For those of you readers who are good at maths, have you +already found out how many lives could have been saved with that money +if we had instead used it to bring education to parts of the world +that need it? I have, and found it to be nothing less dramatic than +plain criminal.

+ +

That said, the only feasible way appears to be the bottom up +method. We have to bring free software to kids and parents. I have +founded an association named +Teckids here in Germany that does +just that. We organise several events for kids and adolescents in the +area of free and open source software, for example the +FrogLabs, which share staff with +Teckids and are the youth programme of +the Free and Open Source Software +Conference (FrOSCon). We do a lot more than most other conferences +- this year, we first offered the FrogLabs as a holiday camp for kids +aged 10 to 16. It was a huge success, with approx. 30 kids taking part +and learning with and about free software through a whole weekend. All +of us had a lot of fun, and the results were really exciting.

+ +

Apart from that, we are preparing a campaign that is supposed to bring +the message of free alternatives to stuff kids use every day to them and +their parents, e.g. the use of Jabber / Jappix instead of Facebook and +Skype. To make that possible, we are planning to get together a team of +clever kids who understand very well what their peers need and can bring +it across to them. So we will have a peer-driven network of adolescents +who teach each other and collect feedback from the community of minors. +We then take that feedback and our own experience to work closely with +open source projects, such as Skolelinux or Jappix, at improving their +software in a way that makes it more and more attractive for the target +group. At least I hope that we will have good cooperation with +Skolelinux in the future ;)!

+ +

So in conclusion, what I believe is that, if it weren't for the world +being so bad, it should be very clear to the political decision makers +that the only way to go nowadays is free software for various reasons, +but I have learnt that the only way that seems to work is bottom up.

+ +

- Tags: english, mesh network, nuug. + Tags: debian edu, english, intervju.

@@ -652,204 +910,44 @@ still wrapped up in plastic.

Debian init.d boot script example for rsyslog

2nd November 2013

If one of the points of switching to a new init system in Debian is -to get rid of huge -init.d scripts, I doubt we need to switch away from sysvinit and -init.d scripts at all. Here is an example init.d script, ie a rewrite -of /etc/init.d/rsyslog:

- -

-#!/lib/init/init-d-script
-### BEGIN INIT INFO
-# Provides:          rsyslog
-# Required-Start:    $remote_fs $time
-# Required-Stop:     umountnfs $time
-# X-Stop-After:      sendsigs
-# Default-Start:     2 3 4 5
-# Default-Stop:      0 1 6
-# Short-Description: enhanced syslogd
-# Description:       Rsyslog is an enhanced multi-threaded syslogd.
-#                    It is quite compatible to stock sysklogd and can be 
-#                    used as a drop-in replacement.
-### END INIT INFO
-DESC="enhanced syslogd"
-DAEMON=/usr/sbin/rsyslogd
-

- -

Pretty minimalistic to me... For the record, the original sysv-rc -script was 137 lines, and the above is just 15 lines, most of it meta -info/comments.

- -

How to do this, you ask? Well, one create a new script -/lib/init/init-d-script looking something like this: - -

-#!/bin/sh
-
-# Define LSB log_* functions.
-# Depend on lsb-base (>= 3.2-14) to ensure that this file is present
-# and status_of_proc is working.
-. /lib/lsb/init-functions
-
-#
-# Function that starts the daemon/service
-
-#
-do_start()
-{
-	# Return
-	#   0 if daemon has been started
-	#   1 if daemon was already running
-	#   2 if daemon could not be started
-	start-stop-daemon --start --quiet --pidfile $PIDFILE --exec $DAEMON --test > /dev/null \
-		|| return 1
-	start-stop-daemon --start --quiet --pidfile $PIDFILE --exec $DAEMON -- \
-		$DAEMON_ARGS \
-		|| return 2
-	# Add code here, if necessary, that waits for the process to be ready
-	# to handle requests from services started subsequently which depend
-	# on this one.  As a last resort, sleep for some time.
-}
+      Dugnadsnett for alle stiller pÃ¥ Oslo Maker Faire i januar 2014
+      10th December 2013
+      Helga 18. og 19. januar 2014 arrangeres
+Oslo Maker
+Faire, og Dugnadsnett for
+alle har fÃ¥tt plass!  Planen er Ã¥ ha et bord med en plakat der vi
+forteller om hva Dugnadsnett for alle er for noe, og et lite verksted
+der vi hjelper folk som er interessert i Ã¥ fÃ¥ opp sin egen mesh-node.
+Jeg gleder meg til Ã¥ se hvordan prosjektet blir mottatt der.
 
-#
-# Function that stops the daemon/service
-#
-do_stop()
-{
-	# Return
-	#   0 if daemon has been stopped
-	#   1 if daemon was already stopped
-	#   2 if daemon could not be stopped
-	#   other if a failure occurred
-	start-stop-daemon --stop --quiet --retry=TERM/30/KILL/5 --pidfile $PIDFILE --name $NAME
-	RETVAL="$?"
-	[ "$RETVAL" = 2 ] && return 2
-	# Wait for children to finish too if this is a daemon that forks
-	# and if the daemon is only ever run from this initscript.
-	# If the above conditions are not satisfied then add some other code
-	# that waits for the process to drop all resources that could be
-	# needed by services started subsequently.  A last resort is to
-	# sleep for some time.
-	start-stop-daemon --stop --quiet --oknodo --retry=0/30/KILL/5 --exec $DAEMON
-	[ "$?" = 2 ] && return 2
-	# Many daemons don't delete their pidfiles when they exit.
-	rm -f $PIDFILE
-	return "$RETVAL"
-}
+MÃ¥let med dugnadsnett for alle i Oslo er Ã¥ fÃ¥ pÃ¥ plass et datanett
+for kommunikasjon ved hjelp av radio-repeaterstasjoner (kalt
+mesh-noder) som gjÃ¸r at en kan direkte kommunisere med slekt, venner
+og bekjente i Oslo via andre som deltar i dugnadsnettet, samt gjÃ¸re
+det mulig komme ut pÃ¥ internett via dugnadsnettet.  FÃ¸rste delmÃ¥l er Ã¥
+kunne sende SMS-meldinger vha. IP-telefoni lÃ¸sningen
+Serval project mellom
+deltagerne i Dugnadsnett for alle i Oslo.  FormÃ¥let er Ã¥ ta tilbake
+kontrollen over egen nett-infrastruktur og gjÃ¸re det dyrere Ã¥ bedrive
+massiv innsamling av informasjon om borgernes bruk av datanett.
 
-#
-# Function that sends a SIGHUP to the daemon/service
-#
-do_reload() {
-	#
-	# If the daemon can reload its configuration without
-	# restarting (for example, when it is sent a SIGHUP),
-	# then implement that here.
-	#
-	start-stop-daemon --stop --signal 1 --quiet --pidfile $PIDFILE --name $NAME
-	return 0
-}
-
-SCRIPTNAME=$1
-scriptbasename="$(basename $1)"
-echo "SN: $scriptbasename"
-if [ "$scriptbasename" != "init-d-library" ] ; then
-    script="$1"
-    shift
-    . $script
-else
-    exit 0
-fi
-
-NAME=$(basename $DAEMON)
-PIDFILE=/var/run/$NAME.pid
-
-# Exit if the package is not installed
-#[ -x "$DAEMON" ] || exit 0
-
-# Read configuration variable file if it is present
-[ -r /etc/default/$NAME ] && . /etc/default/$NAME
-
-# Load the VERBOSE setting and other rcS variables
-. /lib/init/vars.sh
-
-case "$1" in
-  start)
-	[ "$VERBOSE" != no ] && log_daemon_msg "Starting $DESC" "$NAME"
-	do_start
-	case "$?" in
-		0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;;
-		2) [ "$VERBOSE" != no ] && log_end_msg 1 ;;
-	esac
-	;;
-  stop)
-	[ "$VERBOSE" != no ] && log_daemon_msg "Stopping $DESC" "$NAME"
-	do_stop
-	case "$?" in
-		0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;;
-		2) [ "$VERBOSE" != no ] && log_end_msg 1 ;;
-	esac
-	;;
-  status)
-	status_of_proc "$DAEMON" "$NAME" && exit 0 || exit $?
-	;;
-  #reload|force-reload)
-	#
-	# If do_reload() is not implemented then leave this commented out
-	# and leave 'force-reload' as an alias for 'restart'.
-	#
-	#log_daemon_msg "Reloading $DESC" "$NAME"
-	#do_reload
-	#log_end_msg $?
-	#;;
-  restart|force-reload)
-	#
-	# If the "reload" option is implemented then remove the
-	# 'force-reload' alias
-	#
-	log_daemon_msg "Restarting $DESC" "$NAME"
-	do_stop
-	case "$?" in
-	  0|1)
-		do_start
-		case "$?" in
-			0) log_end_msg 0 ;;
-			1) log_end_msg 1 ;; # Old process is still running
-			*) log_end_msg 1 ;; # Failed to start
-		esac
-		;;
-	  *)
-		# Failed to stop
-		log_end_msg 1
-		;;
-	esac
-	;;
-  *)
-	echo "Usage: $SCRIPTNAME {start|stop|status|restart|force-reload}" >&2
-	exit 3
-	;;
-esac
-
-:
-

- -

It is based on /etc/init.d/skeleton, and could be improved quite a -lot. I did not really polish the approach, so it might not always -work out of the box, but you get the idea. I did not try very hard to -optimize it nor make it more robust either.

- -

A better argument for switching init system in Debian than reducing -the size of init scripts (which is a good thing to do anyway), is to -get boot system that is able to handle the kernel events sensibly and -robustly, and do not depend on the boot to run sequentially. The boot -and the kernel have not behaved sequentially in years.

HÃ¸res dette interessant ut? Bli med pÃ¥ prosjektet, fortell oss +hvor du kunne tenke deg Ã¥ sette opp en radio-repeater (slik at folk i +nÃ¦rheten kan finne hverandre ved hjelp av +kartet over planlagte og +eksisterende radio-repeatere), bli med pÃ¥ epostlisten +dugnadsnett +(at) nuug.no og stikk innom +IRC-kanalen +#dugnadsnett.no. SÃ¥ langt er det planlagt over 40 +radio-repeatere, med VPN-forbindelser via Internet for Ã¥ la de delene +av nettet som ikke nÃ¥r hverandre via radio kunne snakke med hverandre +likevel.

- Tags: bootsystem, debian, english. + Tags: mesh network, norsk, nuug.

@@ -864,6 +962,17 @@ and the kernel have not behaved sequentially in years.

Archive