1 <?xml version=
"1.0" encoding=
"utf-8"?>
2 <rss version='
2.0' xmlns:lj='http://www.livejournal.org/rss/lj/
1.0/' xmlns:
atom=
"http://www.w3.org/2005/Atom">
4 <title>Petter Reinholdtsen
</title>
5 <description></description>
6 <link>http://people.skolelinux.org/pere/blog/
</link>
7 <atom:link href=
"http://people.skolelinux.org/pere/blog/index.rss" rel=
"self" type=
"application/rss+xml" />
10 <title>Simpler recipe on how to make a simple $
7 IMSI Catcher using Debian
</title>
11 <link>http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html
</link>
12 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html
</guid>
13 <pubDate>Wed,
9 Aug
2017 23:
59:
00 +
0200</pubDate>
14 <description><p
>On friday, I came across an interesting article in the Norwegian
15 web based ICT news magazine digi.no on
16 <a href=
"https://www.digi.no/artikler/sikkerhetsforsker-lagde-enkel-imsi-catcher-for-
60-kroner-na-kan-mobiler-kartlegges-av-alle/
398588">how
17 to collect the IMSI numbers of nearby cell phones
</a
> using the cheap
18 DVB-T software defined radios. The article refered to instructions
19 and
<a href=
"https://www.youtube.com/watch?v=UjwgNd_as30
">a recipe by
20 Keld Norman on Youtube on how to make a simple $
7 IMSI Catcher
</a
>, and I decided to test them out.
</p
>
22 <p
>The instructions said to use Ubuntu, install pip using apt (to
23 bypass apt), use pip to install pybombs (to bypass both apt and pip),
24 and the ask pybombs to fetch and build everything you need from
25 scratch. I wanted to see if I could do the same on the most recent
26 Debian packages, but this did not work because pybombs tried to build
27 stuff that no longer build with the most recent openssl library or
28 some other version skew problem. While trying to get this recipe
29 working, I learned that the apt-
>pip-
>pybombs route was a long detour,
30 and the only piece of software dependency missing in Debian was the
31 gr-gsm package. I also found out that the lead upstream developer of
32 gr-gsm (the name stand for GNU Radio GSM) project already had a set of
33 Debian packages provided in an Ubuntu PPA repository. All I needed to
34 do was to dget the Debian source package and built it.
</p
>
36 <p
>The IMSI collector is a python script listening for packages on the
37 loopback network device and printing to the terminal some specific GSM
38 packages with IMSI numbers in them. The code is fairly short and easy
39 to understand. The reason this work is because gr-gsm include a tool
40 to read GSM data from a software defined radio like a DVB-T USB stick
41 and other software defined radios, decode them and inject them into a
42 network device on your Linux machine (using the loopback device by
43 default). This proved to work just fine, and I
've been testing the
44 collector for a few days now.
</p
>
46 <p
>The updated and simpler recipe is thus to
</p
>
50 <li
>start with a Debian machine running Stretch or newer,
</li
>
52 <li
>build and install the gr-gsm package available from
53 <a href=
"http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/
">http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/
</a
>,
</li
>
55 <li
>clone the git repostory from
<a href=
"https://github.com/Oros42/IMSI-catcher
">https://github.com/Oros42/IMSI-catcher
</a
>,
</li
>
57 <li
>run grgsm_livemon and adjust the frequency until the terminal
58 where it was started is filled with a stream of text (meaning you
59 found a GSM station).
</li
>
61 <li
>go into the IMSI-catcher directory and run
'sudo python simple_IMSI-catcher.py
' to extract the IMSI numbers.
</li
>
65 <p
>To make it even easier in the future to get this sniffer up and
66 running, I decided to package
67 <a href=
"https://github.com/ptrkrysik/gr-gsm/
">the gr-gsm project
</a
>
68 for Debian (
<a href=
"https://bugs.debian.org/
871055">WNPP
69 #
871055</a
>), and the package was uploaded into the NEW queue today.
70 Luckily the gnuradio maintainer has promised to help me, as I do not
71 know much about gnuradio stuff yet.
</p
>
73 <p
>I doubt this
"IMSI cacher
" is anywhere near as powerfull as
75 <a href=
"https://www.thespyphone.com/portable-imsi-imei-catcher/
">The
76 Spy Phone Portable IMSI / IMEI Catcher
</a
> or the
77 <a href=
"https://en.wikipedia.org/wiki/Stingray_phone_tracker
">Harris
78 Stingray
</a
>, but I hope the existance of cheap alternatives can make
79 more people realise how their whereabouts when carrying a cell phone
80 is easily tracked. Seeing the data flow on the screen, realizing that
81 I live close to a police station and knowing that the police is also
82 wearing cell phones, I wonder how hard it would be for criminals to
83 track the position of the police officers to discover when there are
84 police near by, or for foreign military forces to track the location
85 of the Norwegian military forces, or for anyone to track the location
86 of government officials...
</p
>
88 <p
>It is worth noting that the data reported by the IMSI-catcher
89 script mentioned above is only a fraction of the data broadcasted on
90 the GSM network. It will only collect one frequency at the time,
91 while a typical phone will be using several frequencies, and not all
92 phones will be using the frequencies tracked by the grgsm_livemod
93 program. Also, there is a lot of radio chatter being ignored by the
94 simple_IMSI-catcher script, which would be collected by extending the
95 parser code. I wonder if gr-gsm can be set up to listen to more than
96 one frequency?
</p
>
101 <title>Norwegian Bokmål edition of Debian Administrator
's Handbook is now available
</title>
102 <link>http://people.skolelinux.org/pere/blog/Norwegian_Bokm_l_edition_of_Debian_Administrator_s_Handbook_is_now_available.html
</link>
103 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Norwegian_Bokm_l_edition_of_Debian_Administrator_s_Handbook_is_now_available.html
</guid>
104 <pubDate>Tue,
25 Jul
2017 21:
10:
00 +
0200</pubDate>
105 <description><p align=
"center
"><img align=
"center
" src=
"http://people.skolelinux.org/pere/blog/images/
2017-
07-
25-debian-handbook-nb-testprint.png
"/
></p
>
107 <p
>I finally received a copy of the Norwegian Bokmål edition of
108 "<a href=
"https://debian-handbook.info/
">The Debian Administrator
's
109 Handbook
</a
>". This test copy arrived in the mail a few days ago, and
110 I am very happy to hold the result in my hand. We spent around one and a half year translating it. This paperbook edition
111 <a href=
"https://debian-handbook.info/get/#norwegian
">is available
112 from lulu.com
</a
>. If you buy it quickly, you save
25% on the list
113 price. The book is also available for download in electronic form as
114 PDF, EPUB and Mobipocket, as can be
115 <a href=
"https://debian-handbook.info/browse/nb-NO/stable/
">read online
116 as a web page
</a
>.
</p
>
118 <p
>This is the second book I publish (the first was the book
119 "<a href=
"http://free-culture.cc/
">Free Culture
</a
>" by Lawrence Lessig
121 <a href=
"http://www.lulu.com/shop/lawrence-lessig/free-culture/paperback/product-
22440520.html
">English
</a
>,
122 <a href=
"http://www.lulu.com/shop/lawrence-lessig/culture-libre/paperback/product-
22645082.html
">French
</a
>
124 <a href=
"http://www.lulu.com/shop/lawrence-lessig/fri-kultur/paperback/product-
22441576.html
">Norwegian
125 Bokmål
</a
>), and I am very excited to finally wrap up this
127 "<a href=
"http://www.lulu.com/shop/rapha%C3%ABl-hertzog-and-roland-mas/h%C3%A5ndbok-for-debian-administratoren/paperback/product-
23262290.html
">Håndbok
128 for Debian-administratoren
</a
>" will be well received.
</p
>
133 <title>«Rapporten ser ikke på informasjonssikkerhet knyttet til personlig integritet»
</title>
134 <link>http://people.skolelinux.org/pere/blog/_Rapporten_ser_ikke_p__informasjonssikkerhet_knyttet_til_personlig_integritet_.html
</link>
135 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/_Rapporten_ser_ikke_p__informasjonssikkerhet_knyttet_til_personlig_integritet_.html
</guid>
136 <pubDate>Tue,
27 Jun
2017 17:
50:
00 +
0200</pubDate>
137 <description><p
>Jeg kom over teksten
138 «
<a href=
"https://freedom-to-tinker.com/
2017/
06/
21/killing-car-privacy-by-federal-mandate/
">Killing
139 car privacy by federal mandate
</a
>» av Leonid Reyzin på Freedom to
140 Tinker i dag, og det gleder meg å se en god gjennomgang om hvorfor det
141 er et urimelig inngrep i privatsfæren å la alle biler kringkaste sin
142 posisjon og bevegelse via radio. Det omtalte forslaget basert på
143 Dedicated Short Range Communication (DSRC) kalles Basic Safety Message
144 (BSM) i USA og Cooperative Awareness Message (CAM) i Europa, og det
145 norske Vegvesenet er en av de som ser ut til å kunne tenke seg å
146 pålegge alle biler å fjerne nok en bit av innbyggernes privatsfære.
147 Anbefaler alle å lese det som står der.
149 <p
>Mens jeg tittet litt på DSRC på biler i Norge kom jeg over et sitat
150 jeg synes er illustrativt for hvordan det offentlige Norge håndterer
151 problemstillinger rundt innbyggernes privatsfære i SINTEF-rapporten
152 «
<a href=
"https://www.sintef.no/publikasjoner/publikasjon/Download/?pubid=SINTEF+A23933
">Informasjonssikkerhet
153 i AutoPASS-brikker
</a
>» av Trond Foss:
</p
>
155 <p
><blockquote
>
156 «Rapporten ser ikke på informasjonssikkerhet knyttet til personlig
158 </blockquote
></p
>
160 <p
>Så enkelt kan det tydeligvis gjøres når en vurderer
161 informasjonssikkerheten. Det holder vel at folkene på toppen kan si
162 at «Personvernet er ivaretatt», som jo er den populære intetsigende
163 frasen som gjør at mange tror enkeltindividers integritet tas vare på.
164 Sitatet fikk meg til å undres på hvor ofte samme tilnærming, å bare se
165 bort fra behovet for personlig itegritet, blir valgt når en velger å
166 legge til rette for nok et inngrep i privatsfæren til personer i
167 Norge. Det er jo sjelden det får reaksjoner. Historien om
168 reaksjonene på Helse Sør-Østs tjenesteutsetting er jo sørgelig nok et
169 unntak og toppen av isfjellet, desverre. Tror jeg fortsatt takker nei
170 til både AutoPASS og holder meg så langt unna det norske helsevesenet
171 som jeg kan, inntil de har demonstrert og dokumentert at de verdsetter
172 individets privatsfære og personlige integritet høyere enn kortsiktig
173 gevist og samfunnsnytte.
</p
>
178 <title>Updated sales number for my Free Culture paper editions
</title>
179 <link>http://people.skolelinux.org/pere/blog/Updated_sales_number_for_my_Free_Culture_paper_editions.html
</link>
180 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Updated_sales_number_for_my_Free_Culture_paper_editions.html
</guid>
181 <pubDate>Mon,
12 Jun
2017 11:
40:
00 +
0200</pubDate>
182 <description><p
>It is pleasing to see that the work we put down in publishing new
183 editions of the classic
<a href=
"http://www.free-culture.cc/
">Free
184 Culture book
</a
> by the founder of the Creative Commons movement,
185 Lawrence Lessig, is still being appreciated. I had a look at the
186 latest sales numbers for the paper edition today. Not too impressive,
187 but happy to see some buyers still exist. All the revenue from the
188 books is sent to the
<a href=
"https://creativecommons.org/
">Creative
189 Commons Corporation
</a
>, and they receive the largest cut if you buy
190 directly from Lulu. Most books are sold via Amazon, with Ingram
191 second and only a small fraction directly from Lulu. The ebook
192 edition is available for free from
193 <a href=
"https://github.com/petterreinholdtsen/free-culture-lessig
">Github
</a
>.
</p
>
195 <table border=
"0">
196 <tr
><th rowspan=
"2" valign=
"bottom
">Title / language
</th
><th colspan=
"3">Quantity
</th
></tr
>
197 <tr
><th
>2016 jan-jun
</th
><th
>2016 jul-dec
</th
><th
>2017 jan-may
</th
></tr
>
200 <td
><a href=
"http://www.lulu.com/shop/lawrence-lessig/culture-libre/paperback/product-
22645082.html
">Culture Libre / French
</a
></td
>
201 <td align=
"right
">3</td
>
202 <td align=
"right
">6</td
>
203 <td align=
"right
">15</td
>
207 <td
><a href=
"http://www.lulu.com/shop/lawrence-lessig/fri-kultur/paperback/product-
22441576.html
">Fri kultur / Norwegian
</a
></td
>
208 <td align=
"right
">7</td
>
209 <td align=
"right
">1</td
>
210 <td align=
"right
">0</td
>
214 <td
><a href=
"http://www.lulu.com/shop/lawrence-lessig/free-culture/paperback/product-
22440520.html
">Free Culture / English
</a
></td
>
215 <td align=
"right
">14</td
>
216 <td align=
"right
">27</td
>
217 <td align=
"right
">16</td
>
221 <td
>Total
</td
>
222 <td align=
"right
">24</td
>
223 <td align=
"right
">34</td
>
224 <td align=
"right
">31</td
>
229 <p
>A bit sad to see the low sales number on the Norwegian edition, and
230 a bit surprising the English edition still selling so well.
</p
>
232 <p
>If you would like to translate and publish the book in your native
233 language, I would be happy to help make it happen. Please get in
239 <title>Release
0.1.1 of free software archive system Nikita announced
</title>
240 <link>http://people.skolelinux.org/pere/blog/Release_0_1_1_of_free_software_archive_system_Nikita_announced.html
</link>
241 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Release_0_1_1_of_free_software_archive_system_Nikita_announced.html
</guid>
242 <pubDate>Sat,
10 Jun
2017 00:
40:
00 +
0200</pubDate>
243 <description><p
>I am very happy to report that the
244 <a href=
"https://github.com/hiOA-ABI/nikita-noark5-core
">Nikita Noark
5
245 core project
</a
> tagged its second release today. The free software
246 solution is an implementation of the Norwegian archive standard Noark
247 5 used by government offices in Norway. These were the changes in
248 version
0.1.1 since version
0.1.0 (from NEWS.md):
252 <li
>Continued work on the angularjs GUI, including document upload.
</li
>
253 <li
>Implemented correspondencepartPerson, correspondencepartUnit and
254 correspondencepartInternal
</li
>
255 <li
>Applied for coverity coverage and started submitting code on
256 regualr basis.
</li
>
257 <li
>Started fixing bugs reported by coverity
</li
>
258 <li
>Corrected and completed HATEOAS links to make sure entire API is
259 available via URLs in _links.
</li
>
260 <li
>Corrected all relation URLs to use trailing slash.
</li
>
261 <li
>Add initial support for storing data in ElasticSearch.
</li
>
262 <li
>Now able to receive and store uploaded files in the archive.
</li
>
263 <li
>Changed JSON output for object lists to have relations in _links.
</li
>
264 <li
>Improve JSON output for empty object lists.
</li
>
265 <li
>Now uses correct MIME type application/vnd.noark5-v4+json.
</li
>
266 <li
>Added support for docker container images.
</li
>
267 <li
>Added simple API browser implemented in JavaScript/Angular.
</li
>
268 <li
>Started on archive client implemented in JavaScript/Angular.
</li
>
269 <li
>Started on prototype to show the public mail journal.
</li
>
270 <li
>Improved performance by disabling Sprint FileWatcher.
</li
>
271 <li
>Added support for
'arkivskaper
',
'saksmappe
' and
'journalpost
'.
</li
>
272 <li
>Added support for some metadata codelists.
</li
>
273 <li
>Added support for Cross-origin resource sharing (CORS).
</li
>
274 <li
>Changed login method from Basic Auth to JSON Web Token (RFC
7519)
276 <li
>Added support for GET-ing ny-* URLs.
</li
>
277 <li
>Added support for modifying entities using PUT and eTag.
</li
>
278 <li
>Added support for returning XML output on request.
</li
>
279 <li
>Removed support for English field and class names, limiting ourself
280 to the official names.
</li
>
281 <li
>...
</li
>
285 <p
>If this sound interesting to you, please contact us on IRC (#nikita
286 on irc.freenode.net) or email
287 (
<a href=
"https://lists.nuug.no/mailman/listinfo/nikita-noark
">nikita-noark
288 mailing list).
</p
>
293 <title>Idea for storing trusted timestamps in a Noark
5 archive
</title>
294 <link>http://people.skolelinux.org/pere/blog/Idea_for_storing_trusted_timestamps_in_a_Noark_5_archive.html
</link>
295 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Idea_for_storing_trusted_timestamps_in_a_Noark_5_archive.html
</guid>
296 <pubDate>Wed,
7 Jun
2017 21:
40:
00 +
0200</pubDate>
297 <description><p
><em
>This is a copy of
298 <a href=
"https://lists.nuug.no/pipermail/nikita-noark/
2017-June/
000297.html
">an
299 email I posted to the nikita-noark mailing list
</a
>. Please follow up
300 there if you would like to discuss this topic. The background is that
301 we are making a free software archive system based on the Norwegian
302 <a href=
"https://www.arkivverket.no/forvaltning-og-utvikling/regelverk-og-standarder/noark-standarden
">Noark
303 5 standard
</a
> for government archives.
</em
></p
>
305 <p
>I
've been wondering a bit lately how trusted timestamps could be
307 <a href=
"https://en.wikipedia.org/wiki/Trusted_timestamping
">Trusted
308 timestamps
</a
> can be used to verify that some information
309 (document/file/checksum/metadata) have not been changed since a
310 specific time in the past. This is useful to verify the integrity of
311 the documents in the archive.
</p
>
313 <p
>Then it occured to me, perhaps the trusted timestamps could be
314 stored as dokument variants (ie dokumentobjekt referered to from
315 dokumentbeskrivelse) with the filename set to the hash it is
318 <p
>Given a
"dokumentbeskrivelse
" with an associated
"dokumentobjekt
",
319 a new dokumentobjekt is associated with
"dokumentbeskrivelse
" with the
320 same attributes as the stamped dokumentobjekt except these
321 attributes:
</p
>
325 <li
>format -
> "RFC3161
"
326 <li
>mimeType -
> "application/timestamp-reply
"
327 <li
>formatDetaljer -
> "&lt;source URL for timestamp service
&gt;
"
328 <li
>filenavn -
> "&lt;sjekksum
&gt;.tsr
"
332 <p
>This assume a service following
333 <a href=
"https://tools.ietf.org/html/rfc3161
">IETF RFC
3161</a
> is
334 used, which specifiy the given MIME type for replies and the .tsr file
335 ending for the content of such trusted timestamp. As far as I can
336 tell from the Noark
5 specifications, it is OK to have several
337 variants/renderings of a dokument attached to a given
338 dokumentbeskrivelse objekt. It might be stretching it a bit to make
339 some of these variants represent crypto-signatures useful for
340 verifying the document integrity instead of representing the dokument
343 <p
>Using the source of the service in formatDetaljer allow several
344 timestamping services to be used. This is useful to spread the risk
345 of key compromise over several organisations. It would only be a
346 problem to trust the timestamps if all of the organisations are
347 compromised.
</p
>
349 <p
>The following oneliner on Linux can be used to generate the tsr
350 file. $input is the path to the file to checksum, and $sha256 is the
351 SHA-
256 checksum of the file (ie the
"<sjekksum
>.tsr
" value mentioned
354 <p
><blockquote
><pre
>
355 openssl ts -query -data
"$inputfile
" -cert -sha256 -no_nonce \
356 | curl -s -H
"Content-Type: application/timestamp-query
" \
357 --data-binary
"@-
" http://zeitstempel.dfn.de
> $sha256.tsr
358 </pre
></blockquote
></p
>
360 <p
>To verify the timestamp, you first need to download the public key
361 of the trusted timestamp service, for example using this command:
</p
>
363 <p
><blockquote
><pre
>
364 wget -O ca-cert.txt \
365 https://pki.pca.dfn.de/global-services-ca/pub/cacert/chain.txt
366 </pre
></blockquote
></p
>
368 <p
>Note, the public key should be stored alongside the timestamps in
369 the archive to make sure it is also available
100 years from now. It
370 is probably a good idea to standardise how and were to store such
371 public keys, to make it easier to find for those trying to verify
372 documents
100 or
1000 years from now. :)
</p
>
374 <p
>The verification itself is a simple openssl command:
</p
>
376 <p
><blockquote
><pre
>
377 openssl ts -verify -data $inputfile -in $sha256.tsr \
378 -CAfile ca-cert.txt -text
379 </pre
></blockquote
></p
>
381 <p
>Is there any reason this approach would not work? Is it somehow against
382 the Noark
5 specification?
</p
>
387 <title>Når nynorskoversettelsen svikter til eksamen...
</title>
388 <link>http://people.skolelinux.org/pere/blog/N_r_nynorskoversettelsen_svikter_til_eksamen___.html
</link>
389 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/N_r_nynorskoversettelsen_svikter_til_eksamen___.html
</guid>
390 <pubDate>Sat,
3 Jun
2017 08:
20:
00 +
0200</pubDate>
391 <description><p
><a href=
"http://www.aftenposten.no/norge/Krever-at-elever-ma-fa-annullert-eksamen-etter-rot-med-oppgavetekster-
622459b.html
">Aftenposten
392 melder i dag
</a
> om feil i eksamensoppgavene for eksamen i politikk og
393 menneskerettigheter, der teksten i bokmåls og nynorskutgaven ikke var
394 like. Oppgaveteksten er gjengitt i artikkelen, og jeg ble nysgjerring
395 på om den fri oversetterløsningen
396 <a href=
"https://www.apertium.org/
">Apertium
</a
> ville gjort en bedre
397 jobb enn Utdanningsdirektoratet. Det kan se slik ut.
</p
>
399 <p
>Her er bokmålsoppgaven fra eksamenen:
</p
>
402 <p
>Drøft utfordringene knyttet til nasjonalstatenes og andre aktørers
403 rolle og muligheter til å håndtere internasjonale utfordringer, som
404 for eksempel flykningekrisen.
</p
>
406 <p
>Vedlegge er eksempler på tekster som kan gi relevante perspektiver
409 <li
>Flykningeregnskapet
2016, UNHCR og IDMC
410 <li
>«Grenseløst Europa for fall» A-Magasinet,
26. november
2015
415 <p
>Dette oversetter Apertium slik:
</p
>
418 <p
>Drøft utfordringane knytte til nasjonalstatane sine og rolla til
419 andre aktørar og høve til å handtera internasjonale utfordringar, som
420 til dømes *flykningekrisen.
</p
>
422 <p
>Vedleggja er døme på tekster som kan gje relevante perspektiv på
426 <li
>*Flykningeregnskapet
2016, *UNHCR og *IDMC
</li
>
427 <li
>«*Grenseløst Europa for fall» A-Magasinet,
26. november
2015</li
>
432 <p
>Ord som ikke ble forstått er markert med stjerne (*), og trenger
433 ekstra språksjekk. Men ingen ord er forsvunnet, slik det var i
434 oppgaven elevene fikk presentert på eksamen. Jeg mistenker dog at
435 "andre aktørers rolle og muligheter til ...
" burde vært oversatt til
436 "rolla til andre aktørar og deira høve til ...
" eller noe slikt, men
437 det er kanskje flisespikking. Det understreker vel bare at det alltid
438 trengs korrekturlesning etter automatisk oversettelse.
</p
>
443 <title>Epost inn som arkivformat i Riksarkivarens forskrift?
</title>
444 <link>http://people.skolelinux.org/pere/blog/Epost_inn_som_arkivformat_i_Riksarkivarens_forskrift_.html
</link>
445 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Epost_inn_som_arkivformat_i_Riksarkivarens_forskrift_.html
</guid>
446 <pubDate>Thu,
27 Apr
2017 11:
30:
00 +
0200</pubDate>
447 <description><p
>I disse dager, med frist
1. mai, har Riksarkivaren ute en høring på
448 sin forskrift. Som en kan se er det ikke mye tid igjen før fristen
449 som går ut på søndag. Denne forskriften er det som lister opp hvilke
450 formater det er greit å arkivere i
451 <a href=
"http://www.arkivverket.no/arkivverket/Offentleg-forvalting/Noark/Noark-
5">Noark
452 5-løsninger
</a
> i Norge.
</p
>
454 <p
>Jeg fant høringsdokumentene hos
455 <a href=
"https://www.arkivrad.no/aktuelt/riksarkivarens-forskrift-pa-horing
">Norsk
456 Arkivråd
</a
> etter å ha blitt tipset på epostlisten til
457 <a href=
"https://github.com/hiOA-ABI/nikita-noark5-core
">fri
458 programvareprosjektet Nikita Noark5-Core
</a
>, som lager et Noark
5
459 Tjenestegresesnitt. Jeg er involvert i Nikita-prosjektet og takket
460 være min interesse for tjenestegrensesnittsprosjektet har jeg lest en
461 god del Noark
5-relaterte dokumenter, og til min overraskelse oppdaget
462 at standard epost ikke er på listen over godkjente formater som kan
463 arkiveres. Høringen med frist søndag er en glimrende mulighet til å
464 forsøke å gjøre noe med det. Jeg holder på med
465 <a href=
"https://github.com/petterreinholdtsen/noark5-tester/blob/master/docs/hoering-arkivforskrift.tex
">egen
466 høringsuttalelse
</a
>, og lurer på om andre er interessert i å støtte
467 forslaget om å tillate arkivering av epost som epost i arkivet.
</p
>
469 <p
>Er du igang med å skrive egen høringsuttalelse allerede? I så fall
470 kan du jo vurdere å ta med en formulering om epost-lagring. Jeg tror
471 ikke det trengs så mye. Her et kort forslag til tekst:
</p
>
473 <p
><blockquote
>
475 <p
>Viser til høring sendt ut
2017-
02-
17 (Riksarkivarens referanse
476 2016/
9840 HELHJO), og tillater oss å sende inn noen innspill om
477 revisjon av Forskrift om utfyllende tekniske og arkivfaglige
478 bestemmelser om behandling av offentlige arkiver (Riksarkivarens
479 forskrift).
</p
>
481 <p
>Svært mye av vår kommuikasjon foregår i dag på e-post. Vi
482 foreslår derfor at Internett-e-post, slik det er beskrevet i IETF
484 <a href=
"https://tools.ietf.org/html/rfc5322
">https://tools.ietf.org/html/rfc5322
</a
>. bør
485 inn som godkjent dokumentformat. Vi foreslår at forskriftens
486 oversikt over godkjente dokumentformater ved innlevering i §
5-
16
487 endres til å ta med Internett-e-post.
</p
>
489 </blockquote
></p
>
491 <p
>Som del av arbeidet med tjenestegrensesnitt har vi testet hvordan
492 epost kan lagres i en Noark
5-struktur, og holder på å skrive et
493 forslag om hvordan dette kan gjøres som vil bli sendt over til
494 arkivverket så snart det er ferdig. De som er interesserte kan
495 <a href=
"https://github.com/petterreinholdtsen/noark5-tester/blob/master/docs/epostlagring.md
">følge
496 fremdriften på web
</a
>.
</p
>
498 <p
>Oppdatering
2017-
04-
28: I dag ble høringuttalelsen jeg skrev
499 <a href=
"https://www.nuug.no/news/NUUGs_h_ringuttalelse_til_Riksarkivarens_forskrift.shtml
">sendt
500 inn av foreningen NUUG
</a
>.
</p
>
505 <title>Offentlig elektronisk postjournal blokkerer tilgang for utvalgte webklienter
</title>
506 <link>http://people.skolelinux.org/pere/blog/Offentlig_elektronisk_postjournal_blokkerer_tilgang_for_utvalgte_webklienter.html
</link>
507 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Offentlig_elektronisk_postjournal_blokkerer_tilgang_for_utvalgte_webklienter.html
</guid>
508 <pubDate>Thu,
20 Apr
2017 13:
00:
00 +
0200</pubDate>
509 <description><p
>Jeg oppdaget i dag at
<a href=
"https://www.oep.no/
">nettstedet som
510 publiserer offentlige postjournaler fra statlige etater
</a
>, OEP, har
511 begynt å blokkerer enkelte typer webklienter fra å få tilgang. Vet
512 ikke hvor mange det gjelder, men det gjelder i hvert fall libwww-perl
513 og curl. For å teste selv, kjør følgende:
</p
>
515 <blockquote
><pre
>
516 % curl -v -s https://www.oep.no/pub/report.xhtml?reportId=
3 2>&1 |grep
'< HTTP
'
517 < HTTP/
1.1 404 Not Found
518 % curl -v -s --header
'User-Agent:Opera/
12.0' https://www.oep.no/pub/report.xhtml?reportId=
3 2>&1 |grep
'< HTTP
'
521 </pre
></blockquote
>
523 <p
>Her kan en se at tjenesten gir «
404 Not Found» for curl i
524 standardoppsettet, mens den gir «
200 OK» hvis curl hevder å være Opera
525 versjon
12.0. Offentlig elektronisk postjournal startet blokkeringen
526 2017-
03-
02.
</p
>
528 <p
>Blokkeringen vil gjøre det litt vanskeligere å maskinelt hente
529 informasjon fra oep.no. Kan blokkeringen være gjort for å hindre
530 automatisert innsamling av informasjon fra OEP, slik Pressens
531 Offentlighetsutvalg gjorde for å dokumentere hvordan departementene
533 <a href=
"http://presse.no/dette-mener-np/undergraver-offentlighetsloven/
">rapporten
534 «Slik hindrer departementer innsyn» som ble publiserte i januar
535 2017</a
>. Det virker usannsynlig, da det jo er trivielt å bytte
536 User-Agent til noe nytt.
</p
>
538 <p
>Finnes det juridisk grunnlag for det offentlige å diskriminere
539 webklienter slik det gjøres her? Der tilgang gis eller ikke alt etter
540 hva klienten sier at den heter? Da OEP eies av DIFI og driftes av
541 Basefarm, finnes det kanskje noen dokumenter sendt mellom disse to
542 aktørene man kan be om innsyn i for å forstå hva som har skjedd. Men
543 <a href=
"https://www.oep.no/search/result.html?period=dateRange
&fromDate=
01.01.2016&toDate=
01.04.2017&dateType=documentDate
&caseDescription=
&descType=both
&caseNumber=
&documentNumber=
&sender=basefarm
&senderType=both
&documentType=all
&legalAuthority=
&archiveCode=
&list2=
196&searchType=advanced
&Search=Search+in+records
">postjournalen
544 til DIFI viser kun to dokumenter
</a
> det siste året mellom DIFI og
546 <a href=
"https://www.mimesbronn.no/request/blokkering_av_tilgang_til_oep_fo
">Mimes brønn neste
</a
>,
547 tenker jeg.
</p
>
552 <title>Free software archive system Nikita now able to store documents
</title>
553 <link>http://people.skolelinux.org/pere/blog/Free_software_archive_system_Nikita_now_able_to_store_documents.html
</link>
554 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Free_software_archive_system_Nikita_now_able_to_store_documents.html
</guid>
555 <pubDate>Sun,
19 Mar
2017 08:
00:
00 +
0100</pubDate>
556 <description><p
>The
<a href=
"https://github.com/hiOA-ABI/nikita-noark5-core
">Nikita
557 Noark
5 core project
</a
> is implementing the Norwegian standard for
558 keeping an electronic archive of government documents.
559 <a href=
"http://www.arkivverket.no/arkivverket/Offentlig-forvaltning/Noark/Noark-
5/English-version
">The
560 Noark
5 standard
</a
> document the requirement for data systems used by
561 the archives in the Norwegian government, and the Noark
5 web interface
562 specification document a REST web service for storing, searching and
563 retrieving documents and metadata in such archive. I
've been involved
564 in the project since a few weeks before Christmas, when the Norwegian
566 <a href=
"https://www.nuug.no/news/NOARK5_kjerne_som_fri_programvare_f_r_epostliste_hos_NUUG.shtml
">announced
567 it supported the project
</a
>. I believe this is an important project,
568 and hope it can make it possible for the government archives in the
569 future to use free software to keep the archives we citizens depend
570 on. But as I do not hold such archive myself, personally my first use
571 case is to store and analyse public mail journal metadata published
572 from the government. I find it useful to have a clear use case in
573 mind when developing, to make sure the system scratches one of my
576 <p
>If you would like to help make sure there is a free software
577 alternatives for the archives, please join our IRC channel
578 (
<a href=
"irc://irc.freenode.net/%
23nikita
"">#nikita on
579 irc.freenode.net
</a
>) and
580 <a href=
"https://lists.nuug.no/mailman/listinfo/nikita-noark
">the
581 project mailing list
</a
>.
</p
>
583 <p
>When I got involved, the web service could store metadata about
584 documents. But a few weeks ago, a new milestone was reached when it
585 became possible to store full text documents too. Yesterday, I
586 completed an implementation of a command line tool
587 <tt
>archive-pdf
</tt
> to upload a PDF file to the archive using this
588 API. The tool is very simple at the moment, and find existing
589 <a href=
"https://en.wikipedia.org/wiki/Fonds
">fonds
</a
>, series and
590 files while asking the user to select which one to use if more than
591 one exist. Once a file is identified, the PDF is associated with the
592 file and uploaded, using the title extracted from the PDF itself. The
593 process is fairly similar to visiting the archive, opening a cabinet,
594 locating a file and storing a piece of paper in the archive. Here is
595 a test run directly after populating the database with test data using
596 our API tester:
</p
>
598 <p
><blockquote
><pre
>
599 ~/src//noark5-tester$ ./archive-pdf mangelmelding/mangler.pdf
600 using arkiv: Title of the test fonds created
2017-
03-
18T23:
49:
32.103446
601 using arkivdel: Title of the test series created
2017-
03-
18T23:
49:
32.103446
603 0 - Title of the test case file created
2017-
03-
18T23:
49:
32.103446
604 1 - Title of the test file created
2017-
03-
18T23:
49:
32.103446
605 Select which mappe you want (or search term):
0
606 Uploading mangelmelding/mangler.pdf
607 PDF title: Mangler i spesifikasjonsdokumentet for NOARK
5 Tjenestegrensesnitt
608 File
2017/
1: Title of the test case file created
2017-
03-
18T23:
49:
32.103446
609 ~/src//noark5-tester$
610 </pre
></blockquote
></p
>
612 <p
>You can see here how the fonds (arkiv) and serie (arkivdel) only had
613 one option, while the user need to choose which file (mappe) to use
614 among the two created by the API tester. The
<tt
>archive-pdf
</tt
>
615 tool can be found in the git repository for the API tester.
</p
>
617 <p
>In the project, I have been mostly working on
618 <a href=
"https://github.com/petterreinholdtsen/noark5-tester
">the API
619 tester
</a
> so far, while getting to know the code base. The API
621 <a href=
"https://en.wikipedia.org/wiki/HATEOAS
">the HATEOAS links
</a
>
622 to traverse the entire exposed service API and verify that the exposed
623 operations and objects match the specification, as well as trying to
624 create objects holding metadata and uploading a simple XML file to
625 store. The tester has proved very useful for finding flaws in our
626 implementation, as well as flaws in the reference site and the
627 specification.
</p
>
629 <p
>The test document I uploaded is a summary of all the specification
630 defects we have collected so far while implementing the web service.
631 There are several unclear and conflicting parts of the specification,
633 <a href=
"https://github.com/petterreinholdtsen/noark5-tester/tree/master/mangelmelding
">started
634 writing down
</a
> the questions we get from implementing it. We use a
635 format inspired by how
<a href=
"http://www.opengroup.org/austin/
">The
636 Austin Group
</a
> collect defect reports for the POSIX standard with
637 <a href=
"http://www.opengroup.org/austin/mantis.html
">their
638 instructions for the MANTIS defect tracker system
</a
>, in lack of an official way to structure defect reports for Noark
5 (our first submitted defect report was a
<a href=
"https://github.com/petterreinholdtsen/noark5-tester/blob/master/mangelmelding/sendt/
2017-
03-
15-mangel-prosess.md
">request for a procedure for submitting defect reports
</a
> :).
640 <p
>The Nikita project is implemented using Java and Spring, and is
641 fairly easy to get up and running using Docker containers for those
642 that want to test the current code base. The API tester is
643 implemented in Python.
</p
>
projects / homepage.git / blob