X-Git-Url: https://pere.pagekite.me/gitweb/homepage.git/blobdiff_plain/f7004c7e6da7734eddf241e9e9b0cb1db05876f9..f6d3688ff9f2378cb5c528ec1d9978323b837352:/blog/index.html diff --git a/blog/index.html b/blog/index.html index c2f3787ee1..d4221b35ec 100644 --- a/blog/index.html +++ b/blog/index.html @@ -20,114 +20,105 @@
-
Debian Jessie, PXE and automatic firmware installation
-
17th October 2014
-

When PXE installing laptops with Debian, I often run into the -problem that the WiFi card require some firmware to work properly. -And it has been a pain to fix this using preseeding in Debian. -Normally something more is needed. But thanks to -my isenkram -package and its recent tasksel extension, it has now become easy -to do this using simple preseeding.

- -

The isenkram-cli package provide tasksel tasks which will install -firmware for the hardware found in the machine (actually, requested by -the kernel modules for the hardware). (It can also install user space -programs supporting the hardware detected, but that is not the focus -of this story.)

- -

To get this working in the default installation, two preeseding -values are needed. First, the isenkram-cli package must be installed -into the target chroot (aka the hard drive) before tasksel is executed -in the pkgsel step of the debian-installer system. This is done by -preseeding the base-installer/includes debconf value to include the -isenkram-cli package. The package name is next passed to debootstrap -for installation. With the isenkram-cli package in place, tasksel -will automatically use the isenkram tasks to detect hardware specific -packages for the machine being installed and install them, because -isenkram-cli contain tasksel tasks.

- -

Second, one need to enable the non-free APT repository, because -most firmware unfortunately is non-free. This is done by preseeding -the apt-mirror-setup step. This is unfortunate, but for a lot of -hardware it is the only option in Debian.

- -

The end result is two lines needed in your preseeding file to get -firmware installed automatically by the installer:

- -

-base-installer base-installer/includes string isenkram-cli
-apt-mirror-setup apt-setup/non-free boolean true
-

- -

The current version of isenkram-cli in testing/jessie will install -both firmware and user space packages when using this method. It also -do not work well, so use version 0.15 or later. Installing both -firmware and user space packages might give you a bit more than you -want, so I decided to split the tasksel task in two, one for firmware -and one for user space programs. The firmware task is enabled by -default, while the one for user space programs is not. This split is -implemented in the package currently in unstable.

- -

If you decide to give this a go, please let me know (via email) how -this recipe work for you. :)

- -

So, I bet you are wondering, how can this work. First and -foremost, it work because tasksel is modular, and driven by whatever -files it find in /usr/lib/tasksel/ and /usr/share/tasksel/. So the -isenkram-cli package place two files for tasksel to find. First there -is the task description file (/usr/share/tasksel/descs/isenkram.desc):

- -

-Task: isenkram-packages
-Section: hardware
-Description: Hardware specific packages (autodetected by isenkram)
- Based on the detected hardware various hardware specific packages are
- proposed.
-Test-new-install: show show
-Relevance: 8
-Packages: for-current-hardware
-
-Task: isenkram-firmware
-Section: hardware
-Description: Hardware specific firmware packages (autodetected by isenkram)
- Based on the detected hardware various hardware specific firmware
- packages are proposed.
-Test-new-install: mark show
-Relevance: 8
-Packages: for-current-hardware-firmware
-

- -

The key parts are Test-new-install which indicate how the task -should be handled and the Packages line referencing to a script in -/usr/lib/tasksel/packages/. The scripts use other scripts to get a -list of packages to install. The for-current-hardware-firmware script -look like this to list relevant firmware for the machine: - -

-#!/bin/sh
-#
-PATH=/usr/sbin:$PATH
-export PATH
-isenkram-autoinstall-firmware -l
-

- -

With those two pieces in place, the firmware is installed by -tasksel during the normal d-i run. :)

- -

If you want to test what tasksel will install when isenkram-cli is -installed, run DEBIAN_PRIORITY=critical tasksel --test ---new-install to get the list of packages that tasksel would -install.

- -

Debian Edu will be -pilots in testing this feature, as isenkram is used there now to -install firmware, replacing the earlier scripts.

+
Creating, updating and checking debian/copyright semi-automatically
+
19th February 2016
+

Making packages for Debian requires quite a lot of attention to +details. And one of the details is the content of the +debian/copyright file, which should list all relevant licenses used by +the code in the package in question, preferably in +machine +readable DEP5 format.

+ +

For large packages with lots of contributors it is hard to write +and update this file manually, and if you get some detail wrong, the +package is normally rejected by the ftpmasters. So getting it right +the first time around get the package into Debian faster, and save +both you and the ftpmasters some work.. Today, while trying to figure +out what was wrong with +the +zfsonlinux copyright file, I decided to spend some time on +figuring out the options for doing this job automatically, or at least +semi-automatically.

+ +

Lucikly, there are at least two tools available for generating the +file based on the code in the source package, +debmake +and cme. I'm +not sure which one of them came first, but both seem to be able to +create a sensible draft file. As far as I can tell, none of them can +be trusted to get the result just right, so the content need to be +polished a bit before the file is OK to upload. I found the debmake +option in +a +blog posts from 2014. + +

To generate using debmake, use the -cc option: + +

+debmake -cc > debian/copyright
+

+ +

Note there are some problems with python and non-ASCII names, so +this might not be the best option.

+ +

The cme option is based on a config parsing library, and I found +this approach in +a +blog post from 2015. To generate using cme, use the 'update +dpkg-copyright' option: + +

+cme update dpkg-copyright
+

+ +

This will create or update debian/copyright. The cme tool seem to +handle UTF-8 names better than debmake.

+ +

When the copyright file is created, I would also like some help to +check if the file is correct. For this I found two good options, +debmake -k and license-reconcile. The former seem +to focus on license types and file matching, and is able to detect +ineffective blocks in the copyright file. The latter reports missing +copyright holders and years, but was confused by inconsistent license +names (like CDDL vs. CDDL-1.0). I suspect it is good to use both and +fix all issues reported by them before uploading. But I do not know +if the tools and the ftpmasters agree on what is important to fix in a +copyright file, so the package might still be rejected.

+ +

The devscripts tool licensecheck deserve mentioning. It +will read through the source and try to find all copyright statements. +It is not comparing the result to the content of debian/copyright, but +can be useful when verifying the content of the copyright file.

+ +

Are you aware of better tools in Debian to create and update +debian/copyright file. Please let me know, or blog about it on +planet.debian.org.

+ +

As usual, if you use Bitcoin and want to show your support of my +activities, please send Bitcoin donations to my address +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.

+ +

Update 2016-02-20: I got a tip from Mike Gabriel +on how to use licensecheck and cdbs to create a draft copyright file + +

+licensecheck --copyright -r `find * -type f` | \
+  /usr/lib/cdbs/licensecheck2dep5 > debian/copyright.auto
+

+ +

He mentioned that he normally check the generated file into the +version control system to make it easier to discover license and +copyright changes in the upstream source. I will try to do the same +with my packages in the future.

+ +

Update 2016-02-21: The cme author recommended +against using -quiet for new users, so I removed it from the proposed +command line.

- Tags: debian, english, isenkram, sysadmin. + Tags: debian, english.
@@ -135,18 +126,76 @@ install firmware, replacing the earlier scripts.

-
Ubuntu used to show the bread prizes at ICA Storo
-
4th October 2014
-

Today I came across an unexpected Ubuntu boot screen. Above the -bread shelf on the ICA shop at Storo in Oslo, the grub menu of Ubuntu -with Linux kernel 3.2.0-23 (ie probably version 12.04 LTS) was stuck -on a screen normally showing the bread types and prizes:

- -

- -

If it had booted as it was supposed to, I would never had known -about this hidden Linux installation. It is interesting what -errors can reveal.

+
Using appstream in Debian to locate packages with firmware and mime type support
+
4th February 2016
+

The appstream system +is taking shape in Debian, and one provided feature is a very +convenient way to tell you which package to install to make a given +firmware file available when the kernel is looking for it. This can +be done using apt-file too, but that is for someone else to blog +about. :)

+ +

Here is a small recipe to find the package with a given firmware +file, in this example I am looking for ctfw-3.2.3.0.bin, randomly +picked from the set of firmware announced using appstream in Debian +unstable. In general you would be looking for the firmware requested +by the kernel during kernel module loading. To find the package +providing the example file, do like this:

+ +
+% apt install appstream
+[...]
+% apt update
+[...]
+% appstreamcli what-provides firmware:runtime ctfw-3.2.3.0.bin | \
+  awk '/Package:/ {print $2}'
+firmware-qlogic
+%
+
+ +

See the +appstream wiki page to learn how to embed the package metadata in +a way appstream can use.

+ +

This same approach can be used to find any package supporting a +given MIME type. This is very useful when you get a file you do not +know how to handle. First find the mime type using file +--mime-type, and next look up the package providing support for +it. Lets say you got an SVG file. Its MIME type is image/svg+xml, +and you can find all packages handling this type like this:

+ +
+% apt install appstream
+[...]
+% apt update
+[...]
+% appstreamcli what-provides mimetype image/svg+xml | \
+  awk '/Package:/ {print $2}'
+bkchem
+phototonic
+inkscape
+shutter
+tetzle
+geeqie
+xia
+pinta
+gthumb
+karbon
+comix
+mirage
+viewnior
+postr
+ristretto
+kolourpaint4
+eog
+eom
+gimagereader
+midori
+%
+
+ +

I believe the MIME types are fetched from the desktop file for +packages providing appstream metadata.

@@ -159,49 +208,91 @@ about this hidden Linux installation. It is interesting what
-
New lsdvd release version 0.17 is ready
-
4th October 2014
-

The lsdvd project -got a new set of developers a few weeks ago, after the original -developer decided to step down and pass the project to fresh blood. -This project is now maintained by Petter Reinholdtsen and Steve -Dibb.

- -

I just wrapped up -a -new lsdvd release, available in git or from -the -download page. This is the changelog dated 2014-10-03 for version -0.17.

- -
    - -
  • Ignore 'phantom' audio, subtitle tracks
    • -
  • Check for garbage in the program chains, which indicate that a track is - non-existant, to work around additional copy protection
    • -
  • Fix displaying content type for audio tracks, subtitles
    • -
  • Fix pallete display of first entry
    • -
  • Fix include orders
    • -
  • Ignore read errors in titles that would not be displayed anyway
    • -
  • Fix the chapter count
    • -
  • Make sure the array size and the array limit used when initialising - the palette size is the same.
    • -
  • Fix array printing.
    • -
  • Correct subsecond calculations.
    • -
  • Add sector information to the output format.
    • -
  • Clean up code to be closer to ANSI C and compile without warnings - with more GCC compiler warnings.
    • - -
- -

This change bring together patches for lsdvd in use in various -Linux and Unix distributions, as well as patches submitted to the -project the last nine years. Please check it out. :)

+
Creepy, visualise geotagged social media information - nice free software
+
24th January 2016
+

Most people seem not to realise that every time they walk around +with the computerised radio beacon known as a mobile phone their +position is tracked by the phone company and often stored for a long +time (like every time a SMS is received or sent). And if their +computerised radio beacon is capable of running programs (often called +mobile apps) downloaded from the Internet, these programs are often +also capable of tracking their location (if the app requested access +during installation). And when these programs send out information to +central collection points, the location is often included, unless +extra care is taken to not send the location. The provided +information is used by several entities, for good and bad (what is +good and bad, depend on your point of view). What is certain, is that +the private sphere and the right to free movement is challenged and +perhaps even eradicated for those announcing their location this way, +when they share their whereabouts with private and public +entities.

+ +

+ +

The phone company logs provide a register of locations to check out +when one want to figure out what the tracked person was doing. It is +unavailable for most of us, but provided to selected government +officials, company staff, those illegally buying information from +unfaithful servants and crackers stealing the information. But the +public information can be collected and analysed, and a free software +tool to do so is called +Creepy or Cree.py. I +discovered it when I read +an +article about Creepy in the Norwegian newspaper Aftenposten i +November 2014, and decided to check if it was available in Debian. +The python program was in Debian, but +the version in +Debian was completely broken and practically unmaintained. I +uploaded a new version which did not work quite right, but did not +have time to fix it then. This Christmas I decided to finally try to +get Creepy operational in Debian. Now a fixed version is available in +Debian unstable and testing, and almost all Debian specific patches +are now included +upstream.

+ +

The Creepy program visualises geolocation information fetched from +Twitter, Instagram, Flickr and Google+, and allow one to get a +complete picture of every social media message posted recently in a +given area, or track the movement of a given individual across all +these services. Earlier it was possible to use the search API of at +least some of these services without identifying oneself, but these +days it is impossible. This mean that to use Creepy, you need to +configure it to log in as yourself on these services, and provide +information to them about your search interests. This should be taken +into account when using Creepy, as it will also share information +about yourself with the services.

+ +

The picture above show the twitter messages sent from (or at least +geotagged with a position from) the city centre of Oslo, the capital +of Norway. One useful way to use Creepy is to first look at +information tagged with an area of interest, and next look at all the +information provided by one or more individuals who was in the area. +I tested it by checking out which celebrity provide their location in +twitter messages by checkout out who sent twitter messages near a +Norwegian TV station, and next could track their position over time, +making it possible to locate their home and work place, among other +things. A similar technique have been +used +to locate Russian soldiers in Ukraine, and it is both a powerful +tool to discover lying governments, and a useful tool to help people +understand the value of the private information they provide to the +public.

+ +

The package is not trivial to backport to Debian Stable/Jessie, as +it depend on several python modules currently missing in Jessie (at +least python-instagram, python-flickrapi and +python-requests-toolbelt).

+ +

(I have uploaded +the image to +screenshots.debian.net and licensed it under the same terms as the +Creepy program in Debian.)

- Tags: debian, english, lsdvd, multimedia. + Tags: debian, english, nice free software.
@@ -209,77 +300,72 @@ project the last nine years. Please check it out. :)

-
How to test Debian Edu Jessie despite some fatal problems with the installer
-
26th September 2014
-

The Debian Edu / Skolelinux -project provide a Linux solution for schools, including a -powerful desktop with education software, a central server providing -web pages, user database, user home directories, central login and PXE -boot of both clients without disk and the installation to install Debian -Edu on machines with disk (and a few other services perhaps to small -to mention here). We in the Debian Edu team are currently working on -the Jessie based version, trying to get everything in shape before the -freeze, to avoid having to maintain our own package repository in the -future. The -current -status can be seen on the Debian wiki, and there is still heaps of -work left. Some fatal problems block testing, breaking the installer, -but it is possible to work around these to get anyway. Here is a -recipe on how to get the installation limping along.

- -

First, download the test ISO via -ftp, -http -or rsync (use -ftp.skolelinux.org::cd-edu-testing-nolocal-netinst/debian-edu-amd64-i386-NETINST-1.iso). -The ISO build was broken on Tuesday, so we do not get a new ISO every -12 hours or so, but thankfully the ISO we already got we are able to -install with some tweaking.

- -

When you get to the Debian Edu profile question, go to tty2 -(use Alt-Ctrl-F2), run

- -

-nano /usr/bin/edu-eatmydata-install
-

- -

and add 'exit 0' as the second line, disabling the eatmydata -optimization. Return to the installation, select the profile you want -and continue. Without this change, exim4-config will fail to install -due to a known bug in eatmydata.

- -

When you get the grub question at the end, answer /dev/sda (or if -this do not work, figure out what your correct value would be. All my -test machines need /dev/sda, so I have no advice if it do not fit -your need.

- -

If you installed a profile including a graphical desktop, log in as -root after the initial boot from hard drive, and install the -education-desktop-XXX metapackage. XXX can be kde, gnome, lxde, xfce -or mate. If you want several desktop options, install more than one -metapackage. Once this is done, reboot and you should have a working -graphical login screen. This workaround should no longer be needed -once the education-tasks package version 1.801 enter testing in two -days.

- -

I believe the ISO build will start working on two days when the new -tasksel package enter testing and Steve McIntyre get a chance to -update the debian-cd git repository. The eatmydata, grub and desktop -issues are already fixed in unstable and testing, and should show up -on the ISO as soon as the ISO build start working again. Well the -eatmydata optimization is really just disabled. The proper fix -require an upload by the eatmydata maintainer applying the patch -provided in bug #702711. -The rest have proper fixes in unstable.

- -

I hope this get you going with the installation testing, as we are -quickly running out of time trying to get our Jessie based -installation ready before the distribution freeze in a month.

+
Always download Debian packages using Tor - the simple recipe
+
15th January 2016
+

During his DebConf15 keynote, Jacob Appelbaum +observed +that those listening on the Internet lines would have good reason to +believe a computer have a given security hole if it download a +security fix from a Debian mirror. This is a good reason to always +use encrypted connections to the Debian mirror, to make sure those +listening do not know which IP address to attack. In August, Richard +Hartmann observed that encryption was not enough, when it was possible +to interfere download size to security patches or the fact that +download took place shortly after a security fix was released, and +proposed +to always use Tor to download packages from the Debian mirror. He +was not the first to propose this, as the +apt-transport-tor +package by Tim Retout already existed to make it easy to convince apt +to use Tor, but I was not +aware of that package when I read the blog post from Richard.

+ +

Richard discussed the idea with Peter Palfrader, one of the Debian +sysadmins, and he set up a Tor hidden service on one of the central +Debian mirrors using the address vwakviie2ienjx6t.onion, thus making +it possible to download packages directly between two tor nodes, +making sure the network traffic always were encrypted.

+ +

Here is a short recipe for enabling this on your machine, by +installing apt-transport-tor and replacing http and https +urls with tor+http and tor+https, and using the hidden service instead +of the official Debian mirror site. I recommend installing +etckeeper before you start to have a history of the changes +done in /etc/.

+ +
+apt install apt-transport-tor
+sed -i 's% http://ftp.debian.org/% tor+http://vwakviie2ienjx6t.onion/%' /etc/apt/sources.list
+sed -i 's% http% tor+http%' /etc/apt/sources.list
+
+ +

If you have more sources listed in /etc/apt/sources.list.d/, run +the sed commands for these too. The sed command is assuming your are +using the ftp.debian.org Debian mirror. Adjust the command (or just +edit the file manually) to match your mirror.

+ +

This work in Debian Jessie and later. Note that tools like +apt-file only recently started using the apt transport +system, and do not work with these tor+http URLs. For +apt-file you need the version currently in experimental, +which need a recent apt version currently only in unstable. So if you +need a working apt-file, this is not for you.

+ +

Another advantage from this change is that your machine will start +using Tor regularly and at fairly random intervals (every time you +update the package lists or upgrade or install a new package), thus +masking other Tor traffic done from the same machine. Using Tor will +become normal for the machine in question.

+ +

On Freedombox, APT +is set up by default to use apt-transport-tor when Tor is +enabled. It would be great if it was the default on any Debian +system.

- Tags: debian, debian edu, english. + Tags: debian, english, sikkerhet.
@@ -287,37 +373,37 @@ installation ready before the distribution freeze in a month.

-
Suddenly I am the new upstream of the lsdvd command line tool
-
25th September 2014
-

I use the lsdvd tool -to handle my fairly large DVD collection. It is a nice command line -tool to get details about a DVD, like title, tracks, track length, -etc, in XML, Perl or human readable format. But lsdvd have not seen -any new development since 2006 and had a few irritating bugs affecting -its use with some DVDs. Upstream seemed to be dead, and in January I -sent a small probe asking for a version control repository for the -project, without any reply. But I use it regularly and would like to -get an updated version -into Debian. So two weeks ago I tried harder to get in touch with -the project admin, and after getting a reply from him explaining that -he was no longer interested in the project, I asked if I could take -over. And yesterday, I became project admin.

- -

I've been in touch with a Gentoo developer and the Debian -maintainer interested in joining forces to maintain the upstream -project, and I hope we can get a new release out fairly quickly, -collecting the patches spread around on the internet into on place. -I've added the relevant Debian patches to the freshly created git -repository, and expect the Gentoo patches to make it too. If you got -a DVD collection and care about command line tools, check out -the git source and join -the project mailing -list. :)

+
Nedlasting fra NRK, som Matroska med undertekster
+
2nd January 2016
+

Det kommer stadig nye løsninger for å ta lagre unna innslag fra NRK +for å se på det senere. For en stund tilbake kom jeg over et script +nrkopptak laget av Ingvar Hagelund. Han fjernet riktignok sitt script +etter forespørsel fra Erik Bolstad i NRK, men noen tok heldigvis og +gjorde det tilgjengelig +via github.

+ +

Scriptet kan lagre som MPEG4 eller Matroska, og bake inn +undertekster i fila på et vis som blant annet VLC forstår. For å +bruke scriptet, kopier ned git-arkivet og kjør

+ +

+nrkopptak/bin/nrk-opptak k https://tv.nrk.no/serie/bmi-turne/MUHH45000115/sesong-1/episode-1
+

+ +

URL-eksemplet er dagens toppsak på tv.nrk.no. Argument 'k' ber +scriptet laste ned og lagre som Matroska. Det finnes en rekke andre +muligheter for valg av kvalitet og format.

+ +

Jeg foretrekker dette scriptet fremfor youtube-dl, som + +nevnt i 2014 støtter NRK og en rekke andre videokilder, på grunn +av at nrkopptak samler undertekster og video i en enkelt fil, hvilket +gjør håndtering enklere på disk.

- Tags: debian, english, lsdvd, multimedia. + Tags: multimedia, norsk, video, web.
@@ -325,263 +411,58 @@ list. :)

-
Hva henger under skibrua over E16 på Sollihøgda?
-
21st September 2014
-

Rundt omkring i Oslo og Østlandsområdet henger det bokser over -veiene som jeg har lurt på hva gjør. De har ut fra plassering og -vinkling sett ut som bokser som sniffer ut et eller annet fra -forbipasserende trafikk, men det har vært uklart for meg hva det er de -leser av. Her om dagen tok jeg bilde av en slik boks som henger under -ei -skibru på Sollihøgda:

- -

- -

Boksen er tydelig merket «Kapsch >>>», logoen til -det sveitsiske selskapet Kapsch som -blant annet lager sensorsystemer for veitrafikk. Men de lager mye -forskjellig, og jeg kjente ikke igjen boksen på utseendet etter en -kjapp titt på produktlista til selskapet.

- -

I og med at boksen henger over veien E16, en riksvei vedlikeholdt -av Statens Vegvesen, så antok jeg at det burde være mulig å bruke -REST-API-et som gir tilgang til vegvesenets database over veier, -skilter og annet veirelatert til å finne ut hva i alle dager dette -kunne være. De har både -en -datakatalog og -et -søk, der en kan søke etter ulike typer oppføringer innen for et -gitt geografisk område. Jeg laget et enkelt shell-script for å hente -ut antall av en gitt type innenfor området skibrua dekker, og listet -opp navnet på typene som ble funnet. Orket ikke slå opp hvordan -URL-koding av aktuelle strenger kunne gjøres mer generisk, og brukte -en stygg sed-linje i stedet.

- -
-#!/bin/sh
-urlmap() {
-    sed \
-    -e 's/  / /g'   -e 's/{/%7B/g'  \
-    -e 's/}/%7D/g'  -e 's/\[/%5B/g' \
-    -e 's/\]/%5D/g' -e 's/ /%20/g'  \
-    -e 's/,/%2C/g'  -e 's/\"/%22/g' \
-    -e 's/:/%3A/g'
-}
-
-lookup() {
-    url="$1"
-    curl -s -H 'Accept: application/vnd.vegvesen.nvdb-v1+xml' \
-       "https://www.vegvesen.no/nvdb/api$url" | xmllint --format -
-}
-
-for id in $(seq 1 874) ; do
-    search="{
-  lokasjon: {
-    bbox: \"10.34425,59.96386,10.34458,59.96409\",
-    srid: \"WGS84\"
-  },
-   objektTyper: [{
-     id: $id, antall: 10
-   }]
-}"
-
-    query=/sok?kriterie=$(echo $search | urlmap)
-    if lookup "$query" |
-    grep -q '<totaltAntallReturnert>0<'
-    then
-    :
-    else
-    echo $id
-    lookup "/datakatalog/objekttyper/$id" |grep '^  <navn>'
-    fi
-done
-
-exit 0
-
- -Aktuelt ID-område 1-874 var riktig i datakatalogen da jeg laget -scriptet. Det vil endre seg over tid. Skriptet listet så opp -aktuelle typer i og rundt skibrua: - -
-5
-  <navn>Rekkverk</navn>
-14
-  <navn>Rekkverksende</navn>
-47
-  <navn>Trafikklomme</navn>
-49
-  <navn>Trafikkøy</navn>
-60
-  <navn>Bru</navn>
-79
-  <navn>Stikkrenne/Kulvert</navn>
-80
-  <navn>Grøft, åpen</navn>
-86
-  <navn>Belysningsstrekning</navn>
-95
-  <navn>Skiltpunkt</navn>
-96
-  <navn>Skiltplate</navn>
-98
-  <navn>Referansestolpe</navn>
-99
-  <navn>Vegoppmerking, langsgående</navn>
-105
-  <navn>Fartsgrense</navn>
-106
-  <navn>Vinterdriftsstrategi</navn>
-172
-  <navn>Trafikkdeler</navn>
-241
-  <navn>Vegdekke</navn>
-293
-  <navn>Breddemåling</navn>
-301
-  <navn>Kantklippareal</navn>
-318
-  <navn>Snø-/isrydding</navn>
-445
-  <navn>Skred</navn>
-446
-  <navn>Dokumentasjon</navn>
-452
-  <navn>Undergang</navn>
-528
-  <navn>Tverrprofil</navn>
-532
-  <navn>Vegreferanse</navn>
-534
-  <navn>Region</navn>
-535
-  <navn>Fylke</navn>
-536
-  <navn>Kommune</navn>
-538
-  <navn>Gate</navn>
-539
-  <navn>Transportlenke</navn>
-540
-  <navn>Trafikkmengde</navn>
-570
-  <navn>Trafikkulykke</navn>
-571
-  <navn>Ulykkesinvolvert enhet</navn>
-572
-  <navn>Ulykkesinvolvert person</navn>
-579
-  <navn>Politidistrikt</navn>
-583
-  <navn>Vegbredde</navn>
-591
-  <navn>Høydebegrensning</navn>
-592
-  <navn>Nedbøyningsmåling</navn>
-597
-  <navn>Støy-luft, Strekningsdata</navn>
-601
-  <navn>Oppgravingsdata</navn>
-602
-  <navn>Oppgravingslag</navn>
-603
-  <navn>PMS-parsell</navn>
-604
-  <navn>Vegnormalstrekning</navn>
-605
-  <navn>Værrelatert strekning</navn>
-616
-  <navn>Feltstrekning</navn>
-617
-  <navn>Adressepunkt</navn>
-626
-  <navn>Friksjonsmåleserie</navn>
-629
-  <navn>Vegdekke, flatelapping</navn>
-639
-  <navn>Kurvatur, horisontalelement</navn>
-640
-  <navn>Kurvatur, vertikalelement</navn>
-642
-  <navn>Kurvatur, vertikalpunkt</navn>
-643
-  <navn>Statistikk, trafikkmengde</navn>
-647
-  <navn>Statistikk, vegbredde</navn>
-774
-  <navn>Nedbøyningsmåleserie</navn>
-775
-  <navn>ATK, influensstrekning</navn>
-794
-  <navn>Systemobjekt</navn>
-810
-  <navn>Vinterdriftsklasse</navn>
-821
-  <navn>Funksjonell vegklasse</navn>
-825
-  <navn>Kurvatur, stigning</navn>
-838
-  <navn>Vegbredde, beregnet</navn>
-862
-  <navn>Reisetidsregistreringspunkt</navn>
-871
-  <navn>Bruksklasse</navn>
-
- -

Av disse ser ID 775 og 862 mest relevant ut. ID 775 antar jeg -refererer til fotoboksen som står like ved brua, mens -«Reisetidsregistreringspunkt» kanskje kan være boksen som henger der. -Hvordan finner jeg så ut hva dette kan være for noe. En titt på -datakatalogsiden -for ID 862/Reisetidsregistreringspunkt viser at det er finnes 53 -slike målere i Norge, og hvor de er plassert, men gir ellers få -detaljer. Det er plassert 40 på østlandet og 13 i Trondheimsregionen. -Men siden nevner «AutoPASS», og hvis en slår opp oppføringen på -Sollihøgda nevner den «Ciber AS» som ID for eksternt system. (Kan det -være snakk om -Ciber -Norge AS, et selskap eid av Ciber Europe Bv?) Et nettsøk på - «Ciber AS autopass» fører meg til en artikkel fra NRK Trøndelag i - 2013 med tittel -«Sjekk -dette hvis du vil unngå kø». Artikkelen henviser til vegvesenets -nettside -reisetider.no -som har en -kartside -for Østlandet som viser at det måles mellom Sandvika og Sollihøgda. -Det kan dermed se ut til at jeg har funnet ut hva boksene gjør.

- -

Hvis det stemmer, så er dette bokser som leser av AutoPASS-ID-en -til alle passerende biler med AutoPASS-brikke, og dermed gjør det mulig -for de som kontrollerer boksene å holde rede på hvor en gitt bil er -når den passerte et slikt målepunkt. NRK-artikkelen forteller at -denne informasjonen i dag kun brukes til å koble to -AutoPASS-brikkepasseringer passeringer sammen for å beregne -reisetiden, og at bruken er godkjent av Datatilsynet. Det er desverre -ikke mulig for en sjåfør som passerer under en slik boks å kontrollere -at AutoPASS-ID-en kun brukes til dette i dag og i fremtiden.

- -

I tillegg til denne type AutoPASS-sniffere vet jeg at det også -finnes mange automatiske stasjoner som tar betalt pr. passering (aka -bomstasjoner), og der lagres informasjon om tid, sted og bilnummer i -10 år. Finnes det andre slike sniffere plassert ut på veiene?

- -

Personlig har jeg valgt å ikke bruke AutoPASS-brikke, for å gjøre -det vanskeligere og mer kostbart for de som vil invadere privatsfæren -og holde rede på hvor bilen min beveger seg til enhver tid. Jeg håper -flere vil gjøre det samme, selv om det gir litt høyere private -utgifter (dyrere bompassering). Vern om privatsfæren koster i disse -dager.

- -

Takk til Jan Kristian Jensen i Statens Vegvesen for tips om -dokumentasjon på vegvesenets REST-API.

+
OpenALPR, find car license plates in video streams - nice free software
+
23rd December 2015
+

When I was a kid, we used to collect "car numbers", as we used to +call the car license plate numbers in those days. I would write the +numbers down in my little book and compare notes with the other kids +to see how many region codes we had seen and if we had seen some +exotic or special region codes and numbers. It was a fun game to pass +time, as we kids have plenty of it.

+ +

A few days I came across +the OpenALPR +project, a free software project to automatically discover and +report license plates in images and video streams, and provide the +"car numbers" in a machine readable format. I've been looking for +such system for a while now, because I believe it is a bad idea that the +automatic +number plate recognition tool only is available in the hands of +the powerful, and want it to be available also for the powerless to +even the score when it comes to surveillance and sousveillance. I +discovered the developer +wanted to get the tool into +Debian, and as I too wanted it to be in Debian, I volunteered to +help him get it into shape to get the package uploaded into the Debian +archive.

+ +

Today we finally managed to get the package into shape and uploaded +it into Debian, where it currently +waits +in the NEW queue for review by the Debian ftpmasters.

+ +

I guess you are wondering why on earth such tool would be useful +for the common folks, ie those not running a large government +surveillance system? Well, I plan to put it in a computer on my bike +and in my car, tracking the cars nearby and allowing me to be notified +when number plates on my watch list are discovered. Another use case +was suggested by a friend of mine, who wanted to set it up at his home +to open the car port automatically when it discovered the plate on his +car. When I mentioned it perhaps was a bit foolhardy to allow anyone +capable of placing his license plate number of a piece of cardboard to +open his car port, men replied that it was always unlocked anyway. I +guess for such use case it make sense. I am sure there are other use +cases too, for those with imagination and a vision.

+ +

If you want to build your own version of the Debian package, check +out the upstream git source and symlink ./distros/debian to ./debian/ +before running "debuild" to build the source. Or wait a bit until the +package show up in unstable.

- Tags: kart, norsk, personvern, rfid, surveillance. + Tags: debian, english, nice free software.
@@ -589,221 +470,114 @@ dokumentasjon på vegvesenets REST-API.

-
Speeding up the Debian installer using eatmydata and dpkg-divert
-
16th September 2014
-

The Debian installer could be -a lot quicker. When we install more than 2000 packages in -Skolelinux / Debian Edu using -tasksel in the installer, unpacking the binary packages take forever. -A part of the slow I/O issue was discussed in -bug #613428 about too -much file system sync-ing done by dpkg, which is the package -responsible for unpacking the binary packages. Other parts (like code -executed by postinst scripts) might also sync to disk during -installation. All this sync-ing to disk do not really make sense to -me. If the machine crash half-way through, I start over, I do not try -to salvage the half installed system. So the failure sync-ing is -supposed to protect against, hardware or system crash, is not really -relevant while the installer is running.

- -

A few days ago, I thought of a way to get rid of all the file -system sync()-ing in a fairly non-intrusive way, without the need to -change the code in several packages. The idea is not new, but I have -not heard anyone propose the approach using dpkg-divert before. It -depend on the small and clever package -eatmydata, which -uses LD_PRELOAD to replace the system functions for syncing data to -disk with functions doing nothing, thus allowing programs to live -dangerous while speeding up disk I/O significantly. Instead of -modifying the implementation of dpkg, apt and tasksel (which are the -packages responsible for selecting, fetching and installing packages), -it occurred to me that we could just divert the programs away, replace -them with a simple shell wrapper calling -"eatmydata $program $@", to get the same effect. -Two days ago I decided to test the idea, and wrapped up a simple -implementation for the Debian Edu udeb.

- -

The effect was stunning. In my first test it reduced the running -time of the pkgsel step (installing tasks) from 64 to less than 44 -minutes (20 minutes shaved off the installation) on an old Dell -Latitude D505 machine. I am not quite sure what the optimised time -would have been, as I messed up the testing a bit, causing the debconf -priority to get low enough for two questions to pop up during -installation. As soon as I saw the questions I moved the installation -along, but do not know how long the question were holding up the -installation. I did some more measurements using Debian Edu Jessie, -and got these results. The time measured is the time stamp in -/var/log/syslog between the "pkgsel: starting tasksel" and the -"pkgsel: finishing up" lines, if you want to do the same measurement -yourself. In Debian Edu, the tasksel dialog do not show up, and the -timing thus do not depend on how quickly the user handle the tasksel -dialog.

- -

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Machine/setupOriginal taskselOptimised taskselReduction
Latitude D505 Main+LTSP LXDE64 min (07:46-08:50)<44 min (11:27-12:11)>20 min 18%
Latitude D505 Roaming LXDE57 min (08:48-09:45)34 min (07:43-08:17)23 min 40%
Latitude D505 Minimal22 min (10:37-10:59)11 min (11:16-11:27)11 min 50%
Thinkpad X200 Minimal6 min (08:19-08:25)4 min (08:04-08:08)2 min 33%
Thinkpad X200 Roaming KDE19 min (09:21-09:40)15 min (10:25-10:40)4 min 21%

- -

The test is done using a netinst ISO on a USB stick, so some of the -time is spent downloading packages. The connection to the Internet -was 100Mbit/s during testing, so downloading should not be a -significant factor in the measurement. Download typically took a few -seconds to a few minutes, depending on the amount of packages being -installed.

- -

The speedup is implemented by using two hooks in -Debian -Installer, the pre-pkgsel.d hook to set up the diverts, and the -finish-install.d hook to remove the divert at the end of the -installation. I picked the pre-pkgsel.d hook instead of the -post-base-installer.d hook because I test using an ISO without the -eatmydata package included, and the post-base-installer.d hook in -Debian Edu can only operate on packages included in the ISO. The -negative effect of this is that I am unable to activate this -optimization for the kernel installation step in d-i. If the code is -moved to the post-base-installer.d hook, the speedup would be larger -for the entire installation.

- -

I've implemented this in the -debian-edu-install -git repository, and plan to provide the optimization as part of the -Debian Edu installation. If you want to test this yourself, you can -create two files in the installer (or in an udeb). One shell script -need do go into /usr/lib/pre-pkgsel.d/, with content like this:

- -

-#!/bin/sh
-set -e
-. /usr/share/debconf/confmodule
-info() {
-    logger -t my-pkgsel "info: $*"
-}
-error() {
-    logger -t my-pkgsel "error: $*"
-}
-override_install() {
-    apt-install eatmydata || true
-    if [ -x /target/usr/bin/eatmydata ] ; then
-        for bin in dpkg apt-get aptitude tasksel ; do
-            file=/usr/bin/$bin
-            # Test that the file exist and have not been diverted already.
-            if [ -f /target$file ] ; then
-                info "diverting $file using eatmydata"
-                printf "#!/bin/sh\neatmydata $bin.distrib \"\$@\"\n" \
-                    > /target$file.edu
-                chmod 755 /target$file.edu
-                in-target dpkg-divert --package debian-edu-config \
-                    --rename --quiet --add $file
-                ln -sf ./$bin.edu /target$file
-            else
-                error "unable to divert $file, as it is missing."
-            fi
-        done
-    else
-        error "unable to find /usr/bin/eatmydata after installing the eatmydata pacage"
-    fi
-}
-
-override_install
-

- -

To clean up, another shell script should go into -/usr/lib/finish-install.d/ with code like this: - -

-#! /bin/sh -e
-. /usr/share/debconf/confmodule
-error() {
-    logger -t my-finish-install "error: $@"
-}
-remove_install_override() {
-    for bin in dpkg apt-get aptitude tasksel ; do
-        file=/usr/bin/$bin
-        if [ -x /target$file.edu ] ; then
-            rm /target$file
-            in-target dpkg-divert --package debian-edu-config \
-                --rename --quiet --remove $file
-            rm /target$file.edu
-        else
-            error "Missing divert for $file."
-        fi
-    done
-    sync # Flush file buffers before continuing
-}
-
-remove_install_override
-

- -

In Debian Edu, I placed both code fragments in a separate script -edu-eatmydata-install and call it from the pre-pkgsel.d and -finish-install.d scripts.

- -

By now you might ask if this change should get into the normal -Debian installer too? I suspect it should, but am not sure the -current debian-installer coordinators find it useful enough. It also -depend on the side effects of the change. I'm not aware of any, but I -guess we will see if the change is safe after some more testing. -Perhaps there is some package in Debian depending on sync() and -fsync() having effect? Perhaps it should go into its own udeb, to -allow those of us wanting to enable it to do so without affecting -everyone.

- -

Update 2014-09-24: Since a few days ago, enabling this optimization -will break installation of all programs using gnutls because of -bug #702711. An updated -eatmydata package in Debian will solve it.

- -

Update 2014-10-17: The bug mentioned above is fixed in testing and -the optimization work again. And I have discovered that the -dpkg-divert trick is not really needed and implemented a slightly -simpler approach as part of the debian-edu-install package. See -tools/edu-eatmydata-install in the source package.

+
Using appstream with isenkram to install hardware related packages in Debian
+
20th December 2015
+

Around three years ago, I created +the isenkram +system to get a more practical solution in Debian for handing +hardware related packages. A GUI system in the isenkram package will +present a pop-up dialog when some hardware dongle supported by +relevant packages in Debian is inserted into the machine. The same +lookup mechanism to detect packages is available as command line +tools in the isenkram-cli package. In addition to mapping hardware, +it will also map kernel firmware files to packages and make it easy to +install needed firmware packages automatically. The key for this +system to work is a good way to map hardware to packages, in other +words, allow packages to announce what hardware they will work +with.

+ +

I started by providing data files in the isenkram source, and +adding code to download the latest version of these data files at run +time, to ensure every user had the most up to date mapping available. +I also added support for storing the mapping in the Packages file in +the apt repositories, but did not push this approach because while I +was trying to figure out how to best store hardware/package mappings, +the +appstream system was announced. I got in touch and suggested to +add the hardware mapping into that data set to be able to use +appstream as a data source, and this was accepted at least for the +Debian version of appstream.

+ +

A few days ago using appstream in Debian for this became possible, +and today I uploaded a new version 0.20 of isenkram adding support for +appstream as a data source for mapping hardware to packages. The only +package so far using appstream to announce its hardware support is my +pymissile package. I got help from Matthias Klumpp with figuring out +how do add the required +metadata +in pymissile. I added a file debian/pymissile.metainfo.xml with +this content:

+ +
+<?xml version="1.0" encoding="UTF-8"?>
+<component>
+  <id>pymissile</id>
+  <metadata_license>MIT</metadata_license>
+  <name>pymissile</name>
+  <summary>Control original Striker USB Missile Launcher</summary>
+  <description>
+    <p>
+      Pymissile provides a curses interface to control an original
+      Marks and Spencer / Striker USB Missile Launcher, as well as a
+      motion control script to allow a webcamera to control the
+      launcher.
+    </p>
+  </description>
+  <provides>
+    <modalias>usb:v1130p0202d*</modalias>
+  </provides>
+</component>
+
+ +

The key for isenkram is the component/provides/modalias value, +which is a glob style match rule for hardware specific strings +(modalias strings) provided by the Linux kernel. In this case, it +will map to all USB devices with vendor code 1130 and product code +0202.

+ +

Note, it is important that the license of all the metadata files +are compatible to have permissions to aggregate them into archive wide +appstream files. Matthias suggested to use MIT or BSD licenses for +these files. A challenge is figuring out a good id for the data, as +it is supposed to be globally unique and shared across distributions +(in other words, best to coordinate with upstream what to use). But +it can be changed later or, so we went with the package name as +upstream for this project is dormant.

+ +

To get the metadata file installed in the correct location for the +mirror update scripts to pick it up and include its content the +appstream data source, the file must be installed in the binary +package under /usr/share/appdata/. I did this by adding the following +line to debian/pymissile.install:

+ +
+debian/pymissile.metainfo.xml usr/share/appdata
+
+ +

With that in place, the command line tool isenkram-lookup will list +all packages useful on the current computer automatically, and the GUI +pop-up handler will propose to install the package not already +installed if a hardware dongle is inserted into the machine in +question.

+ +

Details of the modalias field in appstream is available from the +DEP-11 proposal.

+ +

To locate the modalias values of all hardware present in a machine, +try running this command on the command line:

+ +
+cat $(find /sys/devices/|grep modalias)
+
+ +

To learn more about the isenkram system, please check out +my +blog posts tagged isenkram.

- Tags: debian, debian edu, english. + Tags: debian, english, isenkram.
@@ -811,62 +585,89 @@ tools/edu-eatmydata-install in the source package.

-
Good bye subkeys.pgp.net, welcome pool.sks-keyservers.net
-
10th September 2014
-

Yesterday, I had the pleasure of attending a talk with the -Norwegian Unix User Group about -the -OpenPGP keyserver pool sks-keyservers.net, and was very happy to -learn that there is a large set of publicly available key servers to -use when looking for peoples public key. So far I have used -subkeys.pgp.net, and some times wwwkeys.nl.pgp.net when the former -were misbehaving, but those days are ended. The servers I have used -up until yesterday have been slow and some times unavailable. I hope -those problems are gone now.

- -

Behind the round robin DNS entry of the -sks-keyservers.net service -there is a pool of more than 100 keyservers which are checked every -day to ensure they are well connected and up to date. It must be -better than what I have used so far. :)

- -

Yesterdays speaker told me that the service is the default -keyserver provided by the default configuration in GnuPG, but this do -not seem to be used in Debian. Perhaps it should?

- -

Anyway, I've updated my ~/.gnupg/options file to now include this -line:

- -

-keyserver pool.sks-keyservers.net
-

- -

With GnuPG version 2 one can also locate the keyserver using SRV -entries in DNS. Just for fun, I did just that at work, so now every -user of GnuPG at the University of Oslo should find a OpenGPG -keyserver automatically should their need it:

- -

-% host -t srv _pgpkey-http._tcp.uio.no
-_pgpkey-http._tcp.uio.no has SRV record 0 100 11371 pool.sks-keyservers.net.
-%
-

- -

Now if only -the -HKP lookup protocol supported finding signature paths, I would be -very happy. It can look up a given key or search for a user ID, but I -normally do not want that, but to find a trust path from my key to -another key. Given a user ID or key ID, I would like to find (and -download) the keys representing a signature path from my key to the -key in question, to be able to get a trust path between the two keys. -This is as far as I can tell not possible today. Perhaps something -for a future version of the protocol?

+
Bokhandeldistribusjon av boken Fri kultur av Lawrence Lessig
+
14th December 2015
+

Besøk +lulu.com +eller +Amazon +for å kjøpe boken på papir, eller last ned ebook som +PDF, +ePub +eller +MOBI +fra +github.

+ +

Jeg ble gledelig overrasket i dag da jeg oppdaget at boken jeg har +gitt ut +hadde +dukket opp i Amazon. Jeg hadde trodd det skulle ta lenger tid, da +jeg fikk beskjed om at det skulle ta seks til åtte uker. +Amazonoppføringen er et resultat av at jeg for noen uker siden +diskuterte prissetting og håndtering av profitt med forfatteren. Det +måtte avklares da bruksvilkårene til boken har krav om +ikke-kommersiell bruk. Vi ble enige om at overskuddet fra salg av +boken skal sendes til +Creative Commons-stiftelsen. +Med det på plass kunne jeg be +lulu.com +om å gi boken «utvidet» distribusjon. Årsaken til at +bokhandeldistribusjon var litt utfordrende er at bokhandlere krever +mulighet for profitt på bøkene de selger (selvfølgelig), og dermed +måtte de få lov til å selge til høyere pris enn lulu.com. I tillegg +er det krav om samme pris på lulu.com og i bokhandlene, dermed blir +prisen økt også hos lulu.com. Hva skulle jeg gjøre med den profitten +uten å bryte med klausulen om ikkekommersiell? Løsningen var å gi +bort profitten til CC-stiftelsen. Prisen på boken ble nesten +tredoblet, til $19.99 (ca. 160,-) pluss frakt, men synligheten øker +betraktelig når den kan finnes i katalogene til store nettbokhandlere. +Det betyr at hvis du allerede har kjøpt boken har du fått den veldig +billig, og kjøper du den nå, får du den fortsatt billig samt donerer i +tillegg noen tiere til fremme av Creative Commons.

+ +

Mens jeg var i gang med å titte etter informasjon om boken +oppdaget jeg at den også var dukket opp på +Google +Books, der en kan lese den på web. PDF-utgaven har ennå ikke +dukket opp hos Nasjonalbiblioteket, +men det regner jeg med kommer på plass i løpet av noen uker. Boken er +heller ikke dukket opp hos +Barnes & Noble ennå, men +jeg antar det bare er et tidsspørsmål før dette er på plass.

+ +

Boken er dessverre ikke tilgjengelig fra norske bokhandlere, og +kommer neppe til å bli det med det første. Årsaken er at for å få det +til måtte jeg personlig håndtere bestilling av bøker, hvilket jeg ikke +er interessert i å bruke tid på. Jeg kunne betalt ca 2000,- til +den norske bokbasen, en felles +database over bøker tilgjengelig for norske bokhandlere, for å få en +oppføring der, men da måtte jeg tatt imot bestillinger på epost og +sendt ut bøker selv. Det ville krevd at jeg var klar til å +sende ut bøker på kort varsel, dvs. holdt meg med ekstra bøker, +konvolutter og frimerker. Bokbasen har visst ikke opplegg for å be +bokhandlene bestille direkte via web, så jeg droppet oppføring der. +Jeg har spurt Haugen bok og Tronsmo direkte på epost om de er +interessert i å ta inn boken i sin bestillingskatalog, men ikke fått +svar, så jeg antar de ikke er interessert. Derimot har jeg fått en +hyggelig henvendelse fra Biblioteksentralen som fortalte at de har +lagt den inn i sin database slik at deres bibliotekskunder enkelt kan +bestille den via dem.

+ +

Boken er i følge +Bibsys/Oria +og bokdatabasen til +Deichmanske +tilgjengelig fra flere biblioteker allerede, og alle eksemplarer er +visst allerede utlånt med ventetid. Det synes jeg er veldig gledelig +å se. Jeg håper mange kommer til å lese boken. Jeg tror den er +spesielt egnet for foreldre og bekjente av oss nerder for å forklare +hva slags problemer vi ser med dagens opphavsrettsregime.

- Tags: debian, english, personvern, sikkerhet. + Tags: freeculture, norsk.
@@ -874,116 +675,114 @@ for a future version of the protocol?

-
Do you need an agreement with MPEG-LA to publish and broadcast H.264 video in Norway?
-
25th August 2014
-

Two years later, I am still not sure if it is legal here in Norway -to use or publish a video in H.264 or MPEG4 format edited by the -commercially licensed video editors, without limiting the use to -create "personal" or "non-commercial" videos or get a license -agreement with MPEG LA. If one -want to publish and broadcast video in a non-personal or commercial -setting, it might be that those tools can not be used, or that video -format can not be used, without breaking their copyright license. I -am not sure. -Back -then, I found that the copyright license terms for Adobe Premiere -and Apple Final Cut Pro both specified that one could not use the -program to produce anything else without a patent license from MPEG -LA. The issue is not limited to those two products, though. Other -much used products like those from Avid and Sorenson Media have terms -of use are similar to those from Adobe and Apple. The complicating -factor making me unsure if those terms have effect in Norway or not is -that the patents in question are not valid in Norway, but copyright -licenses are.

- -

These are the terms for Avid Artist Suite, according to their -published -end user -license -text (converted to lower case text for easier reading):

- -

-

18.2. MPEG-4. MPEG-4 technology may be included with the -software. MPEG LA, L.L.C. requires this notice:

- -

This product is licensed under the MPEG-4 visual patent portfolio -license for the personal and non-commercial use of a consumer for (i) -encoding video in compliance with the MPEG-4 visual standard (“MPEG-4 -video”) and/or (ii) decoding MPEG-4 video that was encoded by a -consumer engaged in a personal and non-commercial activity and/or was -obtained from a video provider licensed by MPEG LA to provide MPEG-4 -video. No license is granted or shall be implied for any other -use. Additional information including that relating to promotional, -internal and commercial uses and licensing may be obtained from MPEG -LA, LLC. See http://www.mpegla.com. This product is licensed under -the MPEG-4 systems patent portfolio license for encoding in compliance -with the MPEG-4 systems standard, except that an additional license -and payment of royalties are necessary for encoding in connection with -(i) data stored or replicated in physical media which is paid for on a -title by title basis and/or (ii) data which is paid for on a title by -title basis and is transmitted to an end user for permanent storage -and/or use, such additional license may be obtained from MPEG LA, -LLC. See http://www.mpegla.com for additional details.

- -

18.3. H.264/AVC. H.264/AVC technology may be included with the -software. MPEG LA, L.L.C. requires this notice:

- -

This product is licensed under the AVC patent portfolio license for -the personal use of a consumer or other uses in which it does not -receive remuneration to (i) encode video in compliance with the AVC -standard (“AVC video”) and/or (ii) decode AVC video that was encoded -by a consumer engaged in a personal activity and/or was obtained from -a video provider licensed to provide AVC video. No license is granted -or shall be implied for any other use. Additional information may be -obtained from MPEG LA, L.L.C. See http://www.mpegla.com.

-

- -

Note the requirement that the videos created can only be used for -personal or non-commercial purposes.

- -

The Sorenson Media software have -similar terms:

- -

- -

With respect to a license from Sorenson pertaining to MPEG-4 Video -Decoders and/or Encoders: Any such product is licensed under the -MPEG-4 visual patent portfolio license for the personal and -non-commercial use of a consumer for (i) encoding video in compliance -with the MPEG-4 visual standard (“MPEG-4 video”) and/or (ii) decoding -MPEG-4 video that was encoded by a consumer engaged in a personal and -non-commercial activity and/or was obtained from a video provider -licensed by MPEG LA to provide MPEG-4 video. No license is granted or -shall be implied for any other use. Additional information including -that relating to promotional, internal and commercial uses and -licensing may be obtained from MPEG LA, LLC. See -http://www.mpegla.com.

- -

With respect to a license from Sorenson pertaining to MPEG-4 -Consumer Recorded Data Encoder, MPEG-4 Systems Internet Data Encoder, -MPEG-4 Mobile Data Encoder, and/or MPEG-4 Unique Use Encoder: Any such -product is licensed under the MPEG-4 systems patent portfolio license -for encoding in compliance with the MPEG-4 systems standard, except -that an additional license and payment of royalties are necessary for -encoding in connection with (i) data stored or replicated in physical -media which is paid for on a title by title basis and/or (ii) data -which is paid for on a title by title basis and is transmitted to an -end user for permanent storage and/or use. Such additional license may -be obtained from MPEG LA, LLC. See http://www.mpegla.com for -additional details.

- -

- -

Some free software like -Handbrake and -FFMPEG uses GPL/LGPL licenses and do -not have any such terms included, so for those, there is no -requirement to limit the use to personal and non-commercial.

+
The GNU General Public License is not magic pixie dust
+
30th November 2015
+

A blog post from my fellow Debian developer Paul Wise titled +"The +GPL is not magic pixie dust" explain the importance of making sure +the GPL is enforced. +I quote the blog post from Paul in full here with his permission:

+ +

+ +

Become a Software Freedom Conservancy Supporter!

+ +
+The GPL is not magic pixie dust. It does not work by itself.
+ +The first step is to choose a +copyleft license for your +code.
+ +The next step is, when someone fails to follow that copyleft license, +it must be enforced
+ +and its a simple fact of our modern society that such type of +work
+ +is incredibly expensive to do and incredibly difficult to do. +
+ +

-- Bradley Kuhn, in +FaiF +episode +0x57

+ +

As the Debian Website +used +to +imply, public domain and permissively licensed software can lead to +the production of more proprietary software as people discover useful +software, extend it and or incorporate it into their hardware or +software products. Copyleft licenses such as the GNU GPL were created +to close off this avenue to the production of proprietary software but +such licenses are not enough. With the ongoing adoption of Free +Software by individuals and groups, inevitably the community's +expectations of license compliance are violated, usually out of +ignorance of the way Free Software works, but not always. As Karen +and Bradley explained in FaiF +episode 0x57, +copyleft is nothing if no-one is willing and able to stand up in court +to protect it. The reality of today's world is that legal +representation is expensive, difficult and time consuming. With +gpl-violations.org in hiatus +until +some time in 2016, the Software +Freedom Conservancy (a tax-exempt charity) is the major defender +of the Linux project, Debian and other groups against GPL violations. +In March the SFC supported a +lawsuit +by Christoph Hellwig against VMware for refusing to +comply +with the GPL in relation to their use of parts of the Linux +kernel. Since then two of their sponsors pulled corporate funding and +conferences +blocked +or cancelled their talks. As a result they have decided to rely +less on corporate funding and more on the broad community of +individuals who support Free Software and copyleft. So the SFC has +launched +a campaign to create +a community of folks who stand up for copyleft and the GPL by +supporting their work on promoting and supporting copyleft and Free +Software.

+ +

If you support Free Software, +like +what the SFC do, agree with their +compliance +principles, are happy about their +successes in 2015, +work on a project that is an SFC +member and or +just want to stand up for copyleft, please join +Christopher +Allan Webber, +Carol +Smith, +Jono +Bacon, myself and +others in +becoming a +supporter. For the +next week your donation will be +matched +by an anonymous donor. Please also consider asking your employer to +match your donation or become a sponsor of SFC. Don't forget to +spread the word about your support for SFC via email, your blog and or +social media accounts.

+ +
+ +

I agree with Paul on this topic and just signed up as a Supporter +of Software Freedom Conservancy myself. Perhaps you should be a +supporter too?

- Tags: english, multimedia, opphavsrett, standard, video, web. + Tags: debian, debian edu, english, opphavsrett.
@@ -991,167 +790,42 @@ requirement to limit the use to personal and non-commercial.

-
Lenker for 2014-08-03
-
3rd August 2014
-

Lenge siden jeg har hatt tid til å publisere lenker til skriverier -jeg har hatt glede og nytte av av å lese. Her er en liten norsk -lenkesamling.

- -

    - -
  • Sjøslag -om fiskemilliardene (NRK Ytring 2014-03-03) - litt om hvordan de -norske felles matressurser røves fra felleskapet.
    • - -
  • Matkrisen -kan komme til Norge (Aftenposten 2014-4-01) - hvordan miljøendringene vil gjøre matproduksjonen i Norge mer sÃ¥rbar.
    • - -
  • Norge -trenger kornlager (NRK Ytring 2014-06-07) Chr. Anton Smedshaug -forteller litt om Norges sÃ¥rbare matsituasjon etter at Staten solgte -Norges kornlager.
    • - -
  • PST -vil overvÃ¥ke datatastaturer (NRK 2014-03-04) - PST ønsker retten -til Ã¥ bryte seg inn pÃ¥ private PC-er og legge inn spionprogrammer. -Hvilket nok vil gjøre Linux mer populært, men gjør at en i enda mindre -grad enn i dag kan stole pÃ¥ datamaskiner - neppe en god ide for -samfunnet totalt sett.
    • - -
  • «Ruter -fremstÃ¥r som et pøbelvelde» (OsloBy 2014-03-05) - et eksempel pÃ¥ -hvordan kollektivtransportselskapet i Oslo hÃ¥ndterer sine kunder.
    • - -
  • Clear -Channel nektet Ã¥ vise Greenpeace-reklame i Oslo (Dagbladet -2014-03-05) - forteller litt om hvordan hvilke budskap som nÃ¥r ut i -det offentlige rom kontrolleres i Norge.
    • - -
  • Svarte -ikke pÃ¥ kritikken (Dagbladet 2014-03-06) - innlegg fra Norsk -presseforbund der de nok en gang tar opp det forkastelige i at -politiet nÃ¥ har full tilgang til Ã¥ bedrive telefonkontroll av -advokater.
    • - -
  • «Putin -spiller poker, ikke sjakk. I sjakk har man regler.» (Aftenposten -2014-03-08) - sjakklegenden Kasparov forklarer litt om hvordan han ser -at Russlands politikk fungerer, blant annet i lys av started av -Ukraina-krisen.
    • - -
  • I -seng med fienden (Aftenposten 2014-03-10) - kronikk fra Eirik -H. Vinje om hvordan menn og kvinner settes opp mot hverandre i det -offentlige ordskiftet, kanskje pÃ¥ sviktende grunnlag.
    • - -
  • Fritt -frem for skulk (Aftenposten 2014-03-14) - skildring av hvordan -norske elever i dag ikke lenger har rimelig krav om oppmøte pÃ¥ -skolen.
    • - -
  • «Datalagringsdirektiv» -avslørte abort, sykdom og vÃ¥penkjøp (Aftenposten 2014-03-14) - om -hvordan forskere har dokumentert hvordan innsamling av metadata om -telefoni og Internett-bruk kan være svært avslørende.
    • - -
  • Konsentrasjonssvikt -pÃ¥ pensum (Dagbladet 2014-03-14) - Kommentar om hvordan (feil) -bruk IKT i skolen kan ødelegge mer enn det bidrar til læring.
    • - -
  • Reservasjonsrettsstaten -(blogg fra Doremus 2014-02-09) - morsom beskrivelse om hvordan -regjeringens forslag til reservasjonsrett for leger kan utvides til Ã¥ -gjelde alles samvittighet.
    • - -
  • Autoritær -gjøkunge (Aftenposten 2014-03-25) - Kronikk av Bjørn Stærk om -snurpenots-overvÃ¥kningen som varsleren Snowden dokumenterte.
    • - -
  • Leveransekrise -i Offentlig sektor – mener Mike Bracken, Executive Director of Digital -in the Cabinet Office (blogg fra Friprog-senteret 2014-03-26).
    • - -
  • Norge -mÃ¥ stanse avlyttingen (Dagbladet 2014-03-26) - leserinnlegg fra -Felix Horne der han ber om at Norge gjør en innsats for Ã¥ fÃ¥ slutt pÃ¥ -overvÃ¥kning av innbyggerne som gjøres i Norge av Etiopiske -myndigheter.
    • - -
  • Demokrati -er ingen naturlig styreform (Aftenposten 2014-04-01) - kronikk av -Stein Ringen om hvordan demokrati som styreform gÃ¥r tapt nÃ¥r -innbyggerne tar det for gitt.
    • - -
  • Ytringsansvar -ere Enhver tilladte! (NRK Ytring 2014-04-01) - innspill fra Trygve -Svensson og Helge Svare om at hver enkelt av oss har et ansvar for Ã¥ -ytre oss i den offentlige debatten.
    • - -
  • Jeg -er ingen god samfunnsborger (Aftenposten 2014-04-16), kronikk av -Simen Tveitereid om alternative mÃ¥ter Ã¥ motiveres i samfunnet, uten Ã¥ -hige etter mer penger og flere ting.
    • - -
  • DLD-dommen: -Avgjørelsen fÃ¥r umiddelbar virkning (Aftenposten 2014-04-10) - -kronikk av Høyres Michael Tetzschner, en partiutbryter i DLD-saken som -stemte nei til DLD i Stortinget i 2011.
    • - -
  • Datalagringsdirektivets -endelikt (blogg fra John Wessel-Aas 2014-04-11) - oppsummering -av hvordan direktivet ble funnet ugyldig i EU-domstolen.
    • - -
  • Kronikk: -Kapitulasjonspresidenten (VG 2014-04-22) - kronikk av Einar -Kr. Steffenak om hvordan Stortingspresidenten og regjeringen viser sin -prinsippløshet i møte med Kina.
    • - -
  • Innerst -inne er alle nordmenn (Aftenposten 2014-04-27) - kronikk fra Bjørn -Stærk om hvordan vi i Vesten i stor grad baserer oss pÃ¥ en fantasi om -at alle i verden bærer pÃ¥ en drøm om Ã¥ bli som oss.
    • - -
  • Det -italienske senatet gav seg selv 134 milliarder euro i sluttpakke -(Aftenposten 2014-06-19) - forsker Simen Gaure forteller hvordan -løgner og fantasi fra nettkilder i stor grad blir akseptert som -sannhet - antagelig ogsÃ¥ av deg og meg.
    • - -
  • Et -forsvar for brÃ¥kmakerne (Dagbladet 2014-05-30) - kronikk av Dag -Øystein Nome som beskriver hvordan dagens skole ikke fungerer sÃ¥ godt -for mange elever.
    • - -
  • Betalte -med slitt seddel - havnet i arresten (Osloby 2014-06-25)) - -dokumentasjon av Oslopolitiets angrep pÃ¥ vÃ¥r alles rett til Ã¥ ferdes -uten elektronisk sporing. Jeg bruker kontanter i sÃ¥ stor grad som -mulig da banken ikke har noe med hvor jeg er og hva jeg kjøper. Vi -som gjør dette risikerer som beskrevet overgrep som frihetsberøvelse -og registrering og lagring av fingeravtrykk og bilde i politiets -database over mistenkte.
    • - -
  • Fredsprisen -til Snowden (Aftenposten 2014-06-28) - leder som forklarer hvorfor -varsleren Snowden bør fÃ¥ fredsprisen.
    • - -
  • Strategi -for politistaten (Dagbladet 2014-08-01) - leder som advarer om -sterke krefter som bruker terrortrusselen til Ã¥ lirke Norge nærmere Ã¥ -bli en politistat.
    • - -
  • Vi -mÃ¥ tenke nytt om narkotika (NRK Ytring 2014-08-03) - Mark Lewis -forklarer hvorfor legalisering og offentlig kontroll av -narkotikamarkedet er mye bedre enn Ã¥ overlate det til kriminelle.
    • - - -

+
PGP key transition statement for key EE4E02F9
+
17th November 2015
+

I've needed a new OpenPGP key for a while, but have not had time to +set it up properly. I wanted to generate it offline and have it +available on a OpenPGP +smart card for daily use, and learning how to do it and finding +time to sit down with an offline machine almost took forever. But +finally I've been able to complete the process, and have now moved +from my old GPG key to a new GPG key. See +the +full transition statement, signed with both my old and new key for +the details. This is my new key:

+ +
+pub   3936R/111D6B29EE4E02F9 2015-11-03 [expires: 2019-11-14]
+      Key fingerprint = 3AC7 B2E3 ACA5 DF87 78F1  D827 111D 6B29 EE4E 02F9
+uid                  Petter Reinholdtsen <pere@hungry.com>
+uid                  Petter Reinholdtsen <pere@debian.org>
+sub   4096R/87BAFB0E 2015-11-03 [expires: 2019-11-02]
+sub   4096R/F91E6DE9 2015-11-03 [expires: 2019-11-02]
+sub   4096R/A0439BAB 2015-11-03 [expires: 2019-11-02]
+
+ +

The key can be downloaded from the OpenPGP key servers, signed by +my old key.

+ +

If you signed my old key +(DB4CCC4B2A30D729), +I'd very much appreciate a signature on my new key, details and +instructions in the transition statement. I m happy to reciprocate if +you have a similarly signed transition statement to present.

- Tags: lenker, norsk, opphavsrett, personvern. + Tags: debian, english, sikkerhet.
@@ -1166,6 +840,44 @@ narkotikamarkedet er mye bedre enn å overlate det til kriminelle.

Archive