1 <?xml version=
"1.0" encoding=
"utf-8"?>
2 <rss version='
2.0' xmlns:lj='http://www.livejournal.org/rss/lj/
1.0/' xmlns:
atom=
"http://www.w3.org/2005/Atom">
4 <title>Petter Reinholdtsen
</title>
5 <description></description>
6 <link>http://people.skolelinux.org/pere/blog/
</link>
7 <atom:link href=
"http://people.skolelinux.org/pere/blog/index.rss" rel=
"self" type=
"application/rss+xml" />
10 <title>Video DVD reader library / python-dvdvideo - nice free software
</title>
11 <link>http://people.skolelinux.org/pere/blog/Video_DVD_reader_library___python_dvdvideo___nice_free_software.html
</link>
12 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Video_DVD_reader_library___python_dvdvideo___nice_free_software.html
</guid>
13 <pubDate>Fri,
21 Mar
2014 15:
25:
00 +
0100</pubDate>
14 <description><p
>Keeping your DVD collection safe from scratches and curious
15 children fingers while still having it available when you want to see a
16 movie is not straight forward. My preferred method at the moment is
17 to store a full copy of the ISO on a hard drive, and use VLC, Popcorn
18 Hour or other useful players to view the resulting file. This way the
19 subtitles and bonus material are still available and using the ISO is
20 just like inserting the original DVD record in the DVD player.
</p
>
22 <p
>Earlier I used dd for taking security copies, but it do not handle
23 DVDs giving read errors (which are quite a few of them). I
've also
25 <a href=
"http://people.skolelinux.org/pere/blog/Ripping_problematic_DVDs_using_dvdbackup_and_genisoimage.html
">dvdbackup
26 and genisoimage
</a
>, but these days I use the marvellous python library
28 <a href=
"http://bblank.thinkmo.de/blog/new-software-python-dvdvideo
">python-dvdvideo
</a
>
29 written by Bastian Blank. It is
30 <a href
"http://packages.qa.debian.org/p/python-dvdvideo.html
">in Debian
31 already
</a
> and the binary package name is python3-dvdvideo. Instead
32 of trying to read every block from the DVD, it parses the file
33 structure and figure out which block on the DVD is actually in used,
34 and only read those blocks from the DVD. This work surprisingly well,
35 and I have been able to almost backup my entire DVD collection using
36 this method.
</p
> So far, python-dvdvideo have failed on between
10 and
37 20 DVDs, which is a small fraction of my collection. The most common
39 <a href=
"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=
720831">DVDs
40 using UTF-
16 instead of UTF-
8 characters
</a
>, which according to
41 Bastian is against the DVD specification (and seem to cause some
42 players to fail too). A rarer problem is what seem to be inconsistent
43 DVD structures, as the python library
44 <a href=
"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=
723079">claim
45 there is a overlap between objects
</a
>. An equally rare problem claim
46 <a href=
"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=
741878">some
47 value is out of range
</a
>. No idea what is going on there. I wish I
48 knew enough about the DVD format to fix these, to ensure my movie
49 collection will stay with me in the future.
</p
>
51 <p
>So, if you need to keep your DVDs safe, back them up using
52 python-dvdvideo. :)
</p
>
57 <title>Norsk utgave av Alaveteli / WhatDoTheyKnow på trappene
</title>
58 <link>http://people.skolelinux.org/pere/blog/Norsk_utgave_av_Alaveteli___WhatDoTheyKnow_p__trappene.html
</link>
59 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Norsk_utgave_av_Alaveteli___WhatDoTheyKnow_p__trappene.html
</guid>
60 <pubDate>Sun,
16 Mar
2014 09:
30:
00 +
0100</pubDate>
61 <description><p
>Det offentlige Norge har mye kunnskap og informasjon. Men hvordan
62 kan en få tilgang til den på en enkel måte? Takket være et lite
63 knippe lover og tilhørende forskrifter, blant annet
64 <a href=
"http://lovdata.no/dokument/NL/lov/
2006-
05-
19-
16">offentlighetsloven
</a
>,
65 <a href=
"http://lovdata.no/dokument/NL/lov/
2003-
05-
09-
31">miljøinformasjonsloven
</a
>
67 <a href=
"http://lovdata.no/dokument/NL/lov/
1967-
02-
10/
">forvaltningsloven
</a
>
68 har en rett til å spørre det offentlige og få svar. Men det finnes
69 intet offentlig arkiv over hva andre har spurt om, og dermed risikerer en
70 å måtte forstyrre myndighetene gang på gang for å få tak i samme
71 informasjonen på nytt.
<a href=
"http://www.mysociety.org/
">Britiske
72 mySociety
</a
> har laget tjenesten
73 <a href=
"http://www.whatdotheyknow.com/
">WhatDoTheyKnow
</a
> som gjør
74 noe med dette. I Storbritannia blir WhatdoTheyKnow brukt i
75 <a href=
"http://www.mysociety.org/
2011/
07/
01/whatdotheyknows-share-of-central-government-foi-requests-q2-
2011/
">ca
76 15% av alle innsynsforespørsler mot sentraladministrasjonen
</a
>.
77 Prosjektet heter
<a href=
"http://www.alaveteli.org/
">Alaveteli
</A
>, og
78 er takk i bruk en rekke steder etter at løsningen ble generalisert og
79 gjort mulig å oversette. Den hjelper borgerne med å be om innsyn,
80 rådgir ved purringer og klager og lar alle se hvilke henvendelser som
81 er sendt til det offentlige og hvilke svar som er kommet inn, i et
82 søkpart arkiv. Her i Norge holder vi i foreningen NUUG på å få opp en
83 norsk utgave av Alaveteli, og her trenger vi din hjelp med
84 oversettelsen.
</p
>
86 <p
>Så langt er
76 % av Alaveteli oversatt til norsk bokmål, men vi
87 skulle gjerne vært oppe i
100 % før lansering. Oversettelsen gjøres
88 på
<a href=
"https://www.transifex.com/projects/p/alaveteli/
">Transifex,
89 der enhver som registrerer seg
</a
> og ber om tilgang til
90 bokmålsoversettelsen får bidra. Vi har satt opp en test av tjenesten
91 (som ikke sender epost til det offentlige, kun til oss som holder på å
92 sette opp tjenesten) på maskinen
93 <a href=
"http://alaveteli-dev.nuug.no/
">alaveteli-dev.nuug.no
</a
>, der
94 en kan se hvordan de oversatte meldingen blir seende ut på nettsiden.
95 Når tjenesten lanseres vil den hete
96 <a href=
"https://www.mimesbrønn.no/
">Mimes brønn
</a
>, etter
97 visdomskilden som Odin måtte gi øyet sitt for å få drikke i. Den
98 nettsiden er er ennå ikke klar til bruk.
</p
>
100 <p
>Hvis noen vil oversette til nynorsk også, så skal vi finne ut
101 hvordan vi lager en flerspråklig tjeneste. Men i første omgang er
102 fokus på bokmålsoversettelsen, der vi selv har nok peiling til å ha
103 fått oversatt
76%, men trenger hjelp for å komme helt i mål. :)
</p
>
108 <title>Freedombox on Dreamplug, Raspberry Pi and virtual x86 machine
</title>
109 <link>http://people.skolelinux.org/pere/blog/Freedombox_on_Dreamplug__Raspberry_Pi_and_virtual_x86_machine.html
</link>
110 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Freedombox_on_Dreamplug__Raspberry_Pi_and_virtual_x86_machine.html
</guid>
111 <pubDate>Fri,
14 Mar
2014 11:
00:
00 +
0100</pubDate>
112 <description><p
>The
<a href=
"https://wiki.debian.org/FreedomBox
">Freedombox
113 project
</a
> is working on providing the software and hardware for
114 making it easy for non-technical people to host their data and
115 communication at home, and being able to communicate with their
116 friends and family encrypted and away from prying eyes. It has been
117 going on for a while, and is slowly progressing towards a new test
118 release (
0.2).
</p
>
120 <p
>And what day could be better than the Pi day to announce that the
121 new version will provide
"hard drive
" / SD card / USB stick images for
122 Dreamplug, Raspberry Pi and VirtualBox (or any other virtualization
123 system), and can also be installed using a Debian installer preseed
124 file. The Debian based Freedombox is now based on Debian Jessie,
125 where most of the needed packages used are already present. Only one,
126 the freedombox-setup package, is missing. To try to build your own
127 boot image to test the current status, fetch the freedom-maker scripts
129 <a href=
"http://packages.qa.debian.org/vmdebootstrap
">vmdebootstrap
</a
>
130 with a user with sudo access to become root:
133 git clone http://anonscm.debian.org/git/freedombox/freedom-maker.git \
135 sudo apt-get install git vmdebootstrap mercurial python-docutils \
136 mktorrent extlinux virtualbox qemu-user-static binfmt-support \
138 make -C freedom-maker dreamplug-image raspberry-image virtualbox-image
141 <p
>Root access is needed to run debootstrap and mount loopback
142 devices. See the README for more details on the build. If you do not
143 want all three images, trim the make line. But note that thanks to
<a
144 href=
"https://bugs.debian.org/
741407">a race condition in
145 vmdebootstrap
</a
>, the build might fail without the patch to the
146 kpartx call.
</p
>
148 <p
>If you instead want to install using a Debian CD and the preseed
149 method, boot a Debian Wheezy ISO and use this boot argument to load
150 the preseed values:
</p
>
153 url=
<a href=
"http://www.reinholdtsen.name/freedombox/preseed-jessie.dat
">http://www.reinholdtsen.name/freedombox/preseed-jessie.dat
</a
>
156 <p
>But note that due to
<a href=
"https://bugs.debian.org/
740673">a
157 recently introduced bug in apt in Jessie
</a
>, the installer will
158 currently hang while setting up APT sources. Killing the
159 '<tt
>apt-cdrom ident
</tt
>' process when it hang a few times during the
160 installation will get the installation going. This affect all
161 installations in Jessie, and I expect it will be fixed soon.
</p
>
163 Give it a go and let us know how it goes on the mailing list, and help
164 us get the new release published. :) Please join us on
165 <a href=
"irc://irc.debian.org:
6667/%
23freedombox
">IRC (#freedombox on
166 irc.debian.org)
</a
> and
167 <a href=
"http://lists.alioth.debian.org/mailman/listinfo/freedombox-discuss
">the
168 mailing list
</a
> if you want to help make this vision come true.
</p
>
173 <title>How to add extra storage servers in Debian Edu / Skolelinux
</title>
174 <link>http://people.skolelinux.org/pere/blog/How_to_add_extra_storage_servers_in_Debian_Edu___Skolelinux.html
</link>
175 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/How_to_add_extra_storage_servers_in_Debian_Edu___Skolelinux.html
</guid>
176 <pubDate>Wed,
12 Mar
2014 12:
50:
00 +
0100</pubDate>
177 <description><p
>On larger sites, it is useful to use a dedicated storage server for
178 storing user home directories and data. The design for handling this
179 in
<a href=
"http://www.skolelinux.org/
">Debian Edu / Skolelinux
</a
>, is
180 to update the automount rules in LDAP and let the automount daemon on
181 the clients take care of the rest. I was reminded about the need to
182 document this better when one of the customers of
183 <a href=
"http://www.slxdrift.no/
">Skolelinux Drift AS
</a
>, where I am
184 on the board of directors, asked about how to do this. The steps to
185 get this working are the following:
</p
>
189 <li
>Add new storage server in DNS. I use nas-server.intern as the
190 example host here.
</li
>
192 <li
>Add automoun LDAP information about this server in LDAP, to allow
193 all clients to automatically mount it on reqeust.
</li
>
195 <li
>Add the relevant entries in tjener.intern:/etc/fstab, because
196 tjener.intern do not use automount to avoid mounting loops.
</li
>
198 </ol
></p
>
200 <p
>DNS entries are added in GOsa², and not described here. Follow the
201 <a href=
"https://wiki.debian.org/DebianEdu/Documentation/Wheezy/GettingStarted
">instructions
202 in the manual
</a
> (Machine Management with GOsa² in section Getting
205 <p
>Ensure that the NFS export points on the server are exported to the
206 relevant subnets or machines:
</p
>
208 <p
><blockquote
><pre
>
209 root@tjener:~# showmount -e nas-server
210 Export list for nas-server:
213 </pre
></blockquote
></p
>
215 <p
>Here everything on the backbone network is granted access to the
216 /storage export. With NFSv3 it is slightly better to limit it to
217 netgroup membership or single IP addresses to have some limits on the
218 NFS access.
</p
>
220 <p
>The next step is to update LDAP. This can not be done using GOsa²,
221 because it lack a module for automount. Instead, use ldapvi and add
222 the required LDAP objects using an editor.
</p
>
224 <p
><blockquote
><pre
>
225 ldapvi --ldap-conf -ZD
'(cn=admin)
' -b ou=automount,dc=skole,dc=skolelinux,dc=no
226 </pre
></blockquote
></p
>
228 <p
>When the editor show up, add the following LDAP objects at the
229 bottom of the document. The
"/
&" part in the last LDAP object is a
230 wild card matching everything the nas-server exports, removing the
231 need to list individual mount points in LDAP.
</p
>
233 <p
><blockquote
><pre
>
234 add cn=nas-server,ou=auto.skole,ou=automount,dc=skole,dc=skolelinux,dc=no
235 objectClass: automount
237 automountInformation: -fstype=autofs --timeout=
60 ldap:ou=auto.nas-server,ou=automount,dc=skole,dc=skolelinux,dc=no
239 add ou=auto.nas-server,ou=automount,dc=skole,dc=skolelinux,dc=no
241 objectClass: automountMap
244 add cn=/,ou=auto.nas-server,ou=automount,dc=skole,dc=skolelinux,dc=no
245 objectClass: automount
247 automountInformation: -fstype=nfs,tcp,rsize=
32768,wsize=
32768,rw,intr,hard,nodev,nosuid,noatime nas-server.intern:/
&
248 </pre
></blockquote
></p
>
250 <p
>The last step to remember is to mount the relevant mount points in
251 tjener.intern by adding them to /etc/fstab, creating the mount
252 directories using mkdir and running
"mount -a
" to mount them.
</p
>
254 <p
>When this is done, your users should be able to access the files on
255 the storage server directly by just visiting the
256 /tjener/nas-server/storage/ directory using any application on any
257 workstation, LTSP client or LTSP server.
</p
>
262 <title>Hvordan bør RFC
822-formattert epost lagres i en NOARK5-database?
</title>
263 <link>http://people.skolelinux.org/pere/blog/Hvordan_b_r_RFC_822_formattert_epost_lagres_i_en_NOARK5_database_.html
</link>
264 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Hvordan_b_r_RFC_822_formattert_epost_lagres_i_en_NOARK5_database_.html
</guid>
265 <pubDate>Fri,
7 Mar
2014 15:
20:
00 +
0100</pubDate>
266 <description><p
>For noen uker siden ble NXCs fri programvarelisenserte
268 <a href=
"http://www.nuug.no/aktiviteter/
20140211-noark/
">presentert hos
269 NUUG
</a
> (video
270 <a href=
"https://www.youtube.com/watch?v=JCb_dNS3MHQ
">på youtube
271 foreløbig
</a
>), og det fikk meg til å titte litt mer på NOARK5,
272 standarden for arkivhåndtering i det offentlige Norge. Jeg lurer på
273 om denne kjernen kan være nyttig i et par av mine prosjekter, og for ett
274 av dem er det mest aktuelt å lagre epost. Jeg klarte ikke finne noen
275 anbefaling om hvordan RFC
822-formattert epost (aka Internett-epost)
276 burde lagres i NOARK5, selv om jeg vet at noen arkiver tar
277 PDF-utskrift av eposten med sitt epostprogram og så arkiverer PDF-en
278 (eller enda værre, tar papirutskrift og lagrer bildet av eposten som
279 PDF i arkivet).
</p
>
281 <p
>Det er ikke så mange formater som er akseptert av riksarkivet til
282 langtidsoppbevaring av offentlige arkiver, og PDF og XML er de mest
283 aktuelle i så måte. Det slo meg at det måtte da finnes en eller annen
284 egnet XML-representasjon og at det kanskje var enighet om hvilken som
285 burde brukes, så jeg tok mot til meg og spurte
286 <a href=
"http://samdok.com/
">SAMDOK
</a
>, en gruppe tilknyttet
287 arkivverket som ser ut til å jobbe med NOARK-samhandling, om de hadde
290 <p
><blockquote
>
291 <p
>Hei.
</p
>
293 <p
>Usikker på om dette er riktig forum å ta opp mitt spørsmål, men jeg
294 lurer på om det er definert en anbefaling om hvordan RFC
295 822-formatterte epost (aka vanlig Internet-epost) bør lages håndteres
296 i NOARK5, slik at en bevarer all informasjon i eposten
297 (f.eks. Received-linjer). Finnes det en anbefalt XML-mapping ala den
299 &lt;URL:
<a href=
"https://www.informit.com/articles/article.aspx?p=
32074">https://www.informit.com/articles/article.aspx?p=
32074</a
> &gt;? Mitt
300 mål er at det skal være mulig å lagre eposten i en NOARK5-kjerne og
301 kunne få ut en identisk formattert kopi av opprinnelig epost ved
303 </blockquote
></p
>
305 <p
>Postmottaker hos SAMDOK mente spørsmålet heller burde stilles
306 direkte til riksarkivet, og jeg fikk i dag svar derfra formulert av
307 seniorrådgiver Geir Ivar Tungesvik:
</p
>
309 <p
><blockquote
>
310 <p
>Riksarkivet har ingen anbefalinger når det gjelder konvertering fra
311 e-post til XML. Det står arkivskaper fritt å eventuelt definere/bruke
312 eget format. Inklusive da - som det spørres om - et format der det er
313 mulig å re-etablere e-post format ut fra XML-en. XML (e-post)
314 dokumenter må være referert i arkivstrukturen, og det må vedlegges et
315 gyldig XML skjema (.xsd) for XML-filene. Arkivskaper står altså fritt
316 til å gjøre hva de vil, bare det dokumenteres og det kan dannes et
317 utrekk ved avlevering til depot.
</p
>
319 <p
>De obligatoriske kravene i Noark
5 standarden må altså oppfylles -
320 etter dialog med Riksarkivet i forbindelse med godkjenning. For
321 offentlige arkiv er det særlig viktig med filene loependeJournal.xml
322 og offentligJournal.xml. Private arkiv som vil forholde seg til Noark
323 5 standarden er selvsagt frie til å bruke det som er relevant for dem
324 av obligatoriske krav.
</p
>
325 </blockquote
></p
>
327 <p
>Det ser dermed ut for meg som om det er et lite behov for å
328 standardisere XML-lagring av RFC-
822-formatterte meldinger. Noen som
329 vet om god spesifikasjon i så måte? I tillegg til den omtalt over,
330 har jeg kommet over flere aktuelle beskrivelser (søk på
"rfc
822
331 xml
", så finner du aktuelle alternativer).
</p
>
335 <li
><a href=
"http://www.openhealth.org/xmtp/
">XML MIME Transformation
336 protocol (XMTP)
</a
> fra OpenHealth, sist oppdatert
2001.
</li
>
338 <li
><a href=
"https://tools.ietf.org/html/draft-klyne-message-rfc822-xml-
03">An
339 XML format for mail and other messages
</a
> utkast fra IETF datert
342 <li
><a href=
"http://www.informit.com/articles/article.aspx?p=
32074">xMail:
343 E-mail as XML
</a
> en artikkel fra
2003 som beskriver python-modulen
344 rfc822 som gir ut XML-representasjon av en RFC
822-formattert epost.
</li
>
348 <p
>Finnes det andre og bedre spesifikasjoner for slik lagring? Send
349 meg en epost hvis du har innspill.
</p
>
354 <title>Lenker for
2014-
02-
28</title>
355 <link>http://people.skolelinux.org/pere/blog/Lenker_for_2014_02_28.html
</link>
356 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Lenker_for_2014_02_28.html
</guid>
357 <pubDate>Fri,
28 Feb
2014 13:
30:
00 +
0100</pubDate>
358 <description><p
>Her er noen lenker til tekster jeg har satt pris på å lese de siste
359 månedene. Det er mye om varsleren Edward Snowden, som burde få all
360 hjelp, støtte og beskyttelse Norge kan stille opp med for å ha satt
361 totalitær overvåkning på sakskartet, men også endel annet
362 tankevekkende og interessant.
</p
>
367 <a href=
"http://www.dagbladet.no/
2013/
12/
21/nyheter/thomas_drake/nsa/overvakning/snowden/
30925886/
">-
368 NSA tenker som Stasi
</a
> - Dagbladet.no
</li
>
370 <li
>2013-
12-
19 <a href=
"http://www.dagensit.no/article2732734.ece
">-
371 Staten har ikke rett til å vite alt om deg
</a
> - DN.no
</li
>
374 <a href=
"http://www.dagbladet.no/
2013/
12/
21/nyheter/krig_og_konflikter/politikk/utenriks/
30961126/
">Nye
375 mål for NSAs spionasje avslørt
</a
> - Dagbladet.no
</li
>
378 <a href=
"http://www.dagbladet.no/
2013/
12/
19/nyheter/nsa/usa/politikk/barack_obama/
30918684/
">«NSA
379 bør fjernes fra sin makt til å samle inn metadata fra amerikanske
380 telefonsamtaler»
</a
> - Dagbladet.no
</li
>
383 <a href=
"http://www.dagbladet.no/
2013/
12/
18/kultur/meninger/hovedkronikk/debatt/snowden/
30901089/
">Etterretning,
384 overvåking, frihet og sikkerhet
</a
> - Dagbladet.no
</li
>
387 <a href=
"http://www.nrk.no/verden/snowden-vil-ha-asyl-i-brasil-
1.11423444">Snowden
388 angriper USA i åpent brev
</a
> - nrk.no
</li
>
391 <a href=
"http://www.digi.no/
925820/rettslig-nederlag-for-etterretning
">Rettslig
392 nederlag for etterretning
</a
> - digi.no
</li
>
395 <a href=
"http://www.dagbladet.no/
2013/
12/
21/kultur/meninger/hovedkommentar/kommentar/etterretning/
30963284/
">Truende
396 nedkjøling
</a
> - dagbladet.no
</li
>
399 <a href=
"http://www.aftenposten.no/viten/Matematikk-og-forstaelse-
7411849.html
">Matematikk
400 og forståelse
</a
> - aftenposten.no
</li
>
403 <a href=
"http://www.nrk.no/viten/ny-studie_sovn-reinser-hjernen-var-
1.11306106">Vi
404 søv for å reinse hjernen vår, ifølgje ny studie
</a
> - nrk.no
</li
>
407 <a href=
"http://www.nrk.no/buskerud/julebaksten-i-vasken-
1.11410033">Rotterace
408 i kloakken
</a
> - nrk.no
</li
>
411 <a href=
"http://www.aftenposten.no/viten/Apne-brev-og-frie-tanker-
7413734.html
">Åpne
412 brev og frie tanker
</a
> - aftenposten.no
</li
>
415 <a href=
"http://www.aftenposten.no/viten/Stopp-kunnskapsapartheidet-
7428229.html
">Stopp dagens kunnskapsapartheid!
</a
> - aftenposten.no
</li
>
418 <a href=
"http://www.aftenposten.no/nyheter/uriks/EU-rapport-Britisk-og-amerikansk-overvaking-ser-ut-til-a-vare-ulovlig-
7428933.html
">EU-rapport:
419 Britisk og amerikansk overvåking ser ut til å være ulovlig
</a
> -
420 aftenposten.no
</li
>
422 <li
>2013-
10-
23 Professor Jan Arild Audestad
423 <a href=
"http://www.digi.no/
924008/advarer-mot-konspirasjonsteori
">Advarer
424 mot konspirasjonsteori
</a
> i digi.no og sier han ikke tror NSA kan
425 avlytte mobiltelefoner, mens han noen måneder senere forteller:
</li
>
428 <a href=
"http://www.aftenposten.no/nyheter/iriks/--Vi-ble-presset-til-a-svekke-mobilsikkerheten-pa-
80-tallet-
7410467.html
">-
429 Vi ble presset til å svekke mobilsikkerheten på
80-tallet
</a
> -
430 aftenposten.no
</li
>
433 <a href=
"http://tv.nrk.no/program/koid20005814/et-moete-med-edward-snowden
">Et
434 møte med Edward Snowden
</a
> - intervju sendt av nrk, tilgjengelig til
435 2015-
01-
31</li
>
438 <a href=
"http://politiken.dk/debat/profiler/jessteinpedersen/ECE2210356/litteraturredaktoeren-helle-thornings-tavshed-om-snowden-er-en-skandale/
">Litteraturredaktøren:
439 Helle Thornings tavshed om Snowden er en skandale
</a
> -
440 politiken.dk
</li
>
443 <a href=
"http://www.aftenposten.no/meninger/kronikker/Bra-a-ha-en-Storebror-
7476734.html
">Bra å ha en «Storebror»
</a
> - aftenposten.no
</li
>
446 <a href=
"http://johnchristianelden.blogg.no/
1393536806_narkotikasiktet_stort.html
">"Narkotikasiktet
447 Stortingsmann
" - Spillet bak kulissene
</a
> - John Christian Eldens
451 <a href=
"http://www.aftenposten.no/meninger/Heksejakt-pa-hasjbrukere-
7486283.html
">Heksejakt
452 på hasjbrukere
</a
> - aftenposten.no
</li
>
459 <title>New home and release
1.0 for netgroup and innetgr (aka ng-utils)
</title>
460 <link>http://people.skolelinux.org/pere/blog/New_home_and_release_1_0_for_netgroup_and_innetgr__aka_ng_utils_.html
</link>
461 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/New_home_and_release_1_0_for_netgroup_and_innetgr__aka_ng_utils_.html
</guid>
462 <pubDate>Sat,
22 Feb
2014 21:
45:
00 +
0100</pubDate>
463 <description><p
>Many years ago, I wrote a GPL licensed version of the netgroup and
464 innetgr tools, because I needed them in
465 <a href=
"http://www.skolelinux.org/
">Skolelinux
</a
>. I called the project
466 ng-utils, and it has served me well. I placed the project under the
467 <a href=
"http://www.hungry.com/
">Hungry Programmer
</a
> umbrella, and it was maintained in our CVS
468 repository. But many years ago, the CVS repository was dropped (lost,
469 not migrated to new hardware, not sure), and the project have lacked a
470 proper home since then.
</p
>
472 <p
>Last summer, I had a look at the package and made a new release
473 fixing a irritating crash bug, but was unable to store the changes in
474 a proper source control system. I applied for a project on
475 <a href=
"https://alioth.debian.org/
">Alioth
</a
>, but did not have time
476 to follow up on it. Until today. :)
</p
>
478 <p
>After many hours of cleaning and migration, the ng-utils project
479 now have a new home, and a git repository with the highlight of the
480 history of the project. I published all release tarballs and imported
481 them into the git repository. As the project is really stable and not
482 expected to gain new features any time soon, I decided to make a new
483 release and call it
1.0. Visit the new project home on
484 <a href=
"https://alioth.debian.org/projects/ng-utils/
">https://alioth.debian.org/projects/ng-utils/
</a
>
485 if you want to check it out. The new version is also uploaded into
486 <a href=
"http://packages.qa.debian.org/n/ng-utils.html
">Debian Unstable
</a
>.
</p
>
491 <title>Testing sysvinit from experimental in Debian Hurd
</title>
492 <link>http://people.skolelinux.org/pere/blog/Testing_sysvinit_from_experimental_in_Debian_Hurd.html
</link>
493 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/Testing_sysvinit_from_experimental_in_Debian_Hurd.html
</guid>
494 <pubDate>Mon,
3 Feb
2014 13:
40:
00 +
0100</pubDate>
495 <description><p
>A few days ago I decided to try to help the Hurd people to get
496 their changes into sysvinit, to allow them to use the normal sysvinit
497 boot system instead of their old one. This follow up on the
498 <a href=
"https://teythoon.cryptobitch.de//categories/gsoc.html
">great
499 Google Summer of Code work
</a
> done last summer by Justus Winter to
500 get Debian on Hurd working more like Debian on Linux. To get started,
501 I downloaded a prebuilt hard disk image from
502 <a href=
"http://ftp.debian-ports.org/debian-cd/hurd-i386/current/debian-hurd.img.tar.gz
">http://ftp.debian-ports.org/debian-cd/hurd-i386/current/debian-hurd.img.tar.gz
</a
>,
503 and started it using virt-manager.
</p
>
505 <p
>The first think I had to do after logging in (root without any
506 password) was to get the network operational. I followed
507 <a href=
"https://www.debian.org/ports/hurd/hurd-install
">the
508 instructions on the Debian GNU/Hurd ports page
</a
> and ran these
509 commands as root to get the machine to accept a IP address from the
510 kvm internal DHCP server:
</p
>
512 <p
><blockquote
><pre
>
513 settrans -fgap /dev/netdde /hurd/netdde
514 kill $(ps -ef|awk
'/[p]finet/ { print $
2}
')
515 kill $(ps -ef|awk
'/[d]evnode/ { print $
2}
')
517 </pre
></blockquote
></p
>
519 <p
>After this, the machine had internet connectivity, and I could
520 upgrade it and install the sysvinit packages from experimental and
521 enable it as the default boot system in Hurd.
</p
>
523 <p
>But before I did that, I set a password on the root user, as ssh is
524 running on the machine it for ssh login to work a password need to be
525 set. Also, note that a bug somewhere in openssh on Hurd block
526 compression from working. Remember to turn that off on the client
529 <p
>Run these commands as root to upgrade and test the new sysvinit
532 <p
><blockquote
><pre
>
533 cat
> /etc/apt/sources.list.d/experimental.list
&lt;
&lt;EOF
534 deb http://http.debian.net/debian/ experimental main
538 apt-get install -t experimental initscripts sysv-rc sysvinit \
539 sysvinit-core sysvinit-utils
540 update-alternatives --config runsystem
541 </pre
></blockquote
></p
>
543 <p
>To reboot after switching boot system, you have to use
544 <tt
>reboot-hurd
</tt
> instead of just
<tt
>reboot
</tt
>, as there is not
545 yet a sysvinit process able to receive the signals from the normal
546 'reboot
' command. After switching to sysvinit as the boot system,
547 upgrading every package and rebooting, the network come up with DHCP
548 after boot as it should, and the settrans/pkill hack mentioned at the
549 start is no longer needed. But for some strange reason, there are no
550 longer any login prompt in the virtual console, so I logged in using
553 <p
>Note that there are some race conditions in Hurd making the boot
554 fail some times. No idea what the cause is, but hope the Hurd porters
555 figure it out. At least Justus said on IRC (#debian-hurd on
556 irc.debian.org) that they are aware of the problem. A way to reduce
557 the impact is to upgrade to the Hurd packages built by Justus by
558 adding this repository to the machine:
</p
>
560 <p
><blockquote
><pre
>
561 cat
> /etc/apt/sources.list.d/hurd-ci.list
&lt;
&lt;EOF
562 deb http://darnassus.sceen.net/~teythoon/hurd-ci/ sid main
564 </pre
></blockquote
></p
>
566 <p
>At the moment the prebuilt virtual machine get some packages from
567 http://ftp.debian-ports.org/debian, because some of the packages in
568 unstable do not yet include the required patches that are lingering in
569 BTS. This is the completely list of
"unofficial
" packages installed:
</p
>
571 <p
><blockquote
><pre
>
572 # aptitude search
'?narrow(?version(CURRENT),?origin(Debian Ports))
'
573 i emacs - GNU Emacs editor (metapackage)
575 i hurd-recommended - Miscellaneous translators
576 i isc-dhcp-client - ISC DHCP client
577 i isc-dhcp-common - common files used by all the isc-dhcp* packages
578 i libc-bin - Embedded GNU C Library: Binaries
579 i libc-dev-bin - Embedded GNU C Library: Development binaries
580 i libc0.3 - Embedded GNU C Library: Shared libraries
581 i A libc0.3-dbg - Embedded GNU C Library: detached debugging symbols
582 i libc0.3-dev - Embedded GNU C Library: Development Libraries and Hea
583 i multiarch-support - Transitional package to ensure multiarch compatibilit
584 i A x11-common - X Window System (X.Org) infrastructure
585 i xorg - X.Org X Window System
586 i A xserver-xorg - X.Org X server
587 i A xserver-xorg-input-all - X.Org X server -- input driver metapackage
589 </pre
></blockquote
></p
>
591 <p
>All in all, testing hurd has been an interesting experience. :)
592 X.org did not work out of the box and I never took the time to follow
593 the porters instructions to fix it. This time I was interested in the
594 command line stuff.
<p
>
599 <title>A fist full of non-anonymous Bitcoins
</title>
600 <link>http://people.skolelinux.org/pere/blog/A_fist_full_of_non_anonymous_Bitcoins.html
</link>
601 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/A_fist_full_of_non_anonymous_Bitcoins.html
</guid>
602 <pubDate>Wed,
29 Jan
2014 14:
10:
00 +
0100</pubDate>
603 <description><p
>Bitcoin is a incredible use of peer to peer communication and
604 encryption, allowing direct and immediate money transfer without any
605 central control. It is sometimes claimed to be ideal for illegal
606 activity, which I believe is quite a long way from the truth. At least
607 I would not conduct illegal money transfers using a system where the
608 details of every transaction are kept forever. This point is
610 <a href=
"https://www.usenix.org/publications/login
">USENIX ;login:
</a
>
611 from December
2013, in the article
612 "<a href=
"https://www.usenix.org/system/files/login/articles/
03_meiklejohn-online.pdf
">A
613 Fistful of Bitcoins - Characterizing Payments Among Men with No
614 Names
</a
>" by Sarah Meiklejohn, Marjori Pomarole,Grant Jordan, Kirill
615 Levchenko, Damon McCoy, Geoffrey M. Voelker, and Stefan Savage. They
616 analyse the transaction log in the Bitcoin system, using it to find
617 addresses belong to individuals and organisations and follow the flow
618 of money from both Bitcoin theft and trades on Silk Road to where the
619 money end up. This is how they wrap up their article:
</p
>
621 <p
><blockquote
>
622 <p
>"To demonstrate the usefulness of this type of analysis, we turned
623 our attention to criminal activity. In the Bitcoin economy, criminal
624 activity can appear in a number of forms, such as dealing drugs on
625 Silk Road or simply stealing someone else’s bitcoins. We followed the
626 flow of bitcoins out of Silk Road (in particular, from one notorious
627 address) and from a number of highly publicized thefts to see whether
628 we could track the bitcoins to known services. Although some of the
629 thieves attempted to use sophisticated mixing techniques (or possibly
630 mix services) to obscure the flow of bitcoins, for the most part
631 tracking the bitcoins was quite straightforward, and we ultimately saw
632 large quantities of bitcoins flow to a variety of exchanges directly
633 from the point of theft (or the withdrawal from Silk Road).
</p
>
635 <p
>As acknowledged above, following stolen bitcoins to the point at
636 which they are deposited into an exchange does not in itself identify
637 the thief; however, it does enable further de-anonymization in the
638 case in which certain agencies can determine (through, for example,
639 subpoena power) the real-world owner of the account into which the
640 stolen bitcoins were deposited. Because such exchanges seem to serve
641 as chokepoints into and out of the Bitcoin economy (i.e., there are
642 few alternative ways to cash out), we conclude that using Bitcoin for
643 money laundering or other illicit purposes does not (at least at
644 present) seem to be particularly attractive.
"</p
>
645 </blockquote
><p
>
647 <p
>These researches are not the first to analyse the Bitcoin
648 transaction log. The
2011 paper
649 "<a href=
"http://arxiv.org/abs/
1107.4524">An Analysis of Anonymity in
650 the Bitcoin System
</A
>" by Fergal Reid and Martin Harrigan is
651 summarized like this:
</p
>
653 <p
><blockquote
>
654 "Anonymity in Bitcoin, a peer-to-peer electronic currency system, is a
655 complicated issue. Within the system, users are identified by
656 public-keys only. An attacker wishing to de-anonymize its users will
657 attempt to construct the one-to-many mapping between users and
658 public-keys and associate information external to the system with the
659 users. Bitcoin tries to prevent this attack by storing the mapping of
660 a user to his or her public-keys on that user
's node only and by
661 allowing each user to generate as many public-keys as required. In
662 this chapter we consider the topological structure of two networks
663 derived from Bitcoin
's public transaction history. We show that the
664 two networks have a non-trivial topological structure, provide
665 complementary views of the Bitcoin system and have implications for
666 anonymity. We combine these structures with external information and
667 techniques such as context discovery and flow analysis to investigate
668 an alleged theft of Bitcoins, which, at the time of the theft, had a
669 market value of approximately half a million U.S. dollars.
"
670 </blockquote
></p
>
672 <p
>I hope these references can help kill the urban myth that Bitcoin
673 is anonymous. It isn
't really a good fit for illegal activites. Use
674 cash if you need to stay anonymous, at least until regular DNA
675 sampling of notes and coins become the norm. :)
</p
>
677 <p
>As usual, if you use Bitcoin and want to show your support of my
678 activities, please send Bitcoin donations to my address
679 <b
><a href=
"bitcoin:
15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b
&label=PetterReinholdtsenBlog
">15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b
</a
></b
>.
</p
>
684 <title>New chrpath release
0.16</title>
685 <link>http://people.skolelinux.org/pere/blog/New_chrpath_release_0_16.html
</link>
686 <guid isPermaLink=
"true">http://people.skolelinux.org/pere/blog/New_chrpath_release_0_16.html
</guid>
687 <pubDate>Tue,
14 Jan
2014 11:
00:
00 +
0100</pubDate>
688 <description><p
><a href=
"http://www.coverity.com/
">Coverity
</a
> is a nice tool to
689 find problems in C, C++ and Java code using static source code
690 analysis. It can detect a lot of different problems, and is very
691 useful to find memory and locking bugs in the error handling part of
692 the source. The company behind it provide
693 <a href=
"https://scan.coverity.com/
">check of free software projects as
694 a community service
</a
>, and many hundred free software projects are
695 already checked. A few days ago I decided to have a closer look at
696 the Coverity system, and discovered that the
697 <a href=
"http://www.gnu.org/software/gnash/
">gnash
</a
> and
698 <a href=
"http://sourceforge.net/projects/ipmitool/
">ipmitool
</a
>
699 projects I am involved with was already registered. But these are
700 fairly big, and I would also like to have a small and easy project to
701 check, and decided to
<a href=
"http://scan.coverity.com/projects/
1179">request
702 checking of the chrpath project
</a
>. It was
703 added to the checker and discovered seven potential defects. Six of
704 these were real, mostly resource
"leak
" when the program detected an
705 error. Nothing serious, as the resources would be released a fraction
706 of a second later when the program exited because of the error, but it
707 is nice to do it right in case the source of the program some time in
708 the future end up in a library. Having fixed all defects and added
709 <a href=
"https://lists.alioth.debian.org/mailman/listinfo/chrpath-devel
">a
710 mailing list for the chrpath developers
</a
>, I decided it was time to
711 publish a new release. These are the release notes:
</p
>
713 <p
>New in
0.16 released
2014-
01-
14:
</p
>
717 <li
>Fixed all minor bugs discovered by Coverity.
</li
>
718 <li
>Updated config.sub and config.guess from the GNU project.
</li
>
719 <li
>Mention new project mailing list in the documentation.
</li
>
724 <a href=
"https://alioth.debian.org/frs/?group_id=
31052">download the
725 new version
0.16 from alioth
</a
>. Please let us know via the Alioth
726 project if something is wrong with the new release. The test suite
727 did not discover any old errors, so if you find a new one, please also
728 include a test suite check.
</p
>
projects / homepage.git / blob