Datalagringsdirektivet kaster skygger over HÃ¸yre og Arbeiderpartiet

7th September 2017

For noen dager siden publiserte Jon Wessel-Aas en bloggpost om -Â«Konklusjonen om datalagring som -EU-kommisjonen ikke ville at vi skulle fÃ¥ seÂ». Det er en -interessant gjennomgang av EU-domstolens syn pÃ¥ snurpenotovervÃ¥kning -av befolkningen, som er klar pÃ¥ at det er i strid med -EU-lovgivingen.

- -

Valgkampen gÃ¥r for fullt i Norge, og om noen fÃ¥ dager er siste -frist for Ã¥ avgi stemme. En ting er sikkert, HÃ¸yre og Arbeiderpartiet -fÃ¥r ikke min stemme -denne -gangen heller. Jeg har ikke glemt at de tvang igjennom loven som -skulle pÃ¥legge alle data- og teletjenesteleverandÃ¸rer Ã¥ overvÃ¥ke alle -sine kunder. En lov som er vedtatt, og aldri opphevet igjen.

- -

Det er tydelig fra diskusjonen rundt grenselÃ¸s digital overvÃ¥kning -(eller "Digital Grenseforsvar" som det kalles i Orvellisk nytale) at -hverken HÃ¸yre og Arbeiderpartiet har noen prinsipielle sperrer mot Ã¥ -overvÃ¥ke hele befolkningen, og diskusjonen sÃ¥ langt tyder pÃ¥ at flere -av de andre partiene heller ikke har det. Mange av -de som stemte -for Datalagringsdirektivet i Stortinget (64 fra Arbeiderpartiet, -25 fra HÃ¸yre) er fortsatt aktive og argumenterer fortsatt for Ã¥ radere -vekk mer av innbyggernes privatsfÃ¦re.

- -

NÃ¥r myndighetene demonstrerer sin mistillit til folket, tror jeg -folket selv bÃ¸r legge litt innsats i Ã¥ verne sitt privatliv, ved Ã¥ ta -i bruk ende-til-ende-kryptert kommunikasjon med sine kjente og kjÃ¦re, -og begrense hvor mye privat informasjon som deles med uvedkommende. -Det er jo ingenting som tyder pÃ¥ at myndighetene kommer til Ã¥ vÃ¦re vÃ¥r -privatsfÃ¦re. -Det -er mange muligheter. Selv har jeg litt sans for -Ring, som er basert pÃ¥ p2p-teknologi -uten sentral kontroll, er fri programvare, og stÃ¸tter meldinger, tale -og video. Systemet er tilgjengelig ut av boksen fra -Debian og -Ubuntu, og det -finnes pakker for Android, MacOSX og Windows. ForelÃ¸pig er det fÃ¥ -brukere med Ring, slik at jeg ogsÃ¥ bruker -Signal som nettleserutvidelse.

Nikita version 0.6 released - free software archive API server

10th June 2021

I am very pleased to be able to share with you +the +announcement of a new version of the archiving system Nikita +published by its lead developer Thomas SÃ¸dring:

+ +

+ +
It is with great pleasure that we can announce a new release of +nikita. Version 0.6 +(https://gitlab.com/OsloMet-ABI/nikita-noark5-core). This +release makes new record keeping functionality available. This really +is a maturity release. Both in terms of functionality but also code. +Considerable effort has gone into refactoring the codebase and +simplifying the code. Notable changes for this release include:
+ +
+ +
Significantly improved OData parsing
+
Support for business specific metadata and national identifiers
+
Continued implementation of domain model and endpoints
+
Improved testing
+
Ability to export and import from arkivstruktur.xml
+ +
+ +
We are currently in the process of reaching an agreement with an +archive institution to publish their picture archive using nikita with +business specific metadata and we hope that we can share this with you +soon. This is an interesting project as it allows the organisation to +bring an older picture archive back to life while using the original +metadata values stored as business specific metadata. Combined with +OData means the scope and use of the archive is significantly +increased and will showcase both the flexibility and power of +Noark.
+ +
I really think we are approaching a version 1.0 of nikita, even +though there is still a lot of work to be done. The notable work at +the moment is to implement access-control and full text indexing of +documents.
+ +
My sincere thanks to everyone who has contributed to this +release!
+ +
- Thomas
+ +
Release 0.6 2021-06-10 (d1ba5fc7e8bad0cfdce45ac20354b19d10ebbc7b)
+ +
+ +
Refactor metadata entity search
+
Remove redundant security configuration
+
Make OpenAPI documentation work
+
Change database structure / inheritance model to a more sensible approach
+
Make it possible to move entities around the fonds structure
+
Implemented a number of missing endpoints
+
Make sure yml files are in sync
+
Implemented/finalised storing and use of +
+ Â Â Â
Business Specific Metadata
+ Â Â Â
Norwegian National Identifiers
+ Â Â Â
Cross Reference
+ Â Â Â
Keyword
+ Â Â Â
StorageLocation
+ Â Â Â
Author
+ Â Â Â
Screening for relevant objects
+ Â Â Â
ChangeLog
+ Â Â Â
EventLog
+
+
Make generation of updated docker image part of successful CI pipeline
+
Implement pagination for all list requests +
+ Â Â Â
Refactor code to support lists
+ Â Â Â
Refactor code for readability
+ Â Â Â
Standardise the controller/service code
+
+
Finalise File->CaseFile expansion and Record->registryEntry/recordNote +expansion
+
Improved Continuous Integration (CI) approach via gitlab
+
Changed conversion approach to generate tagged PDF documents
+
Updated dependencies +
+ Â Â Â
For security reasons
+ Â Â Â
Brought codebase to spring-boot version 2.5.0
+ Â Â Â
Remove import of necessary dependencies
+ Â Â Â
Remove non-used metrics classes
+
+
Added new analysis to CI including
+
Implemented storing of Keyword
+
Implemented storing of Screening and ScreeningMetadata
+
Improved OData support +
+ Â Â Â
Better support for inheritance in queries where applicable
+ Â Â Â
Brought in more OData tests
+ Â Â Â
Improved OData/hibernate understanding of queries
+ Â Â Â
Implement $count, $orderby
+ Â Â Â
Finalise $top and $skip
+ Â Â Â
Make sure & is used between query parameters
+
+
Improved Testing in codebase +
+ Â Â Â
A new approach for integration tests to make test more readable
+ Â Â Â
Introduce tests in parallel with code development for TDD approach
+ Â Â Â
Remove test that required particular access to storage
+
+
Implement case-handling process from received email to case-handler +
+ Â Â Â
Develop required GUI elements (digital postroom from email)
+ Â Â Â
Introduced leader, quality control and postroom roles
+
+
Make PUT requests return 200 OK not 201 CREATED
+
Make DELETE requests return 204 NO CONTENT not 200 OK
+
Replaced 'oppdatert*' with 'endret*' everywhere to match latest spec
+
Upgrade Gitlab CI to use python > 3 for CI scripts
+
Bug fixes +
+ Â Â Â
Fix missing ALLOW
+ Â Â Â
Fix reading of objects from jar file during start-up
+ Â Â Â
Reduce the number of warnings in the codebase
+ Â Â Â
Fix delete problems
+ Â Â Â
Make better use of cascade for "leaf" objects
+ Â Â Â
Add missing annotations where relevant
+ Â Â Â
Remove the use of ETAG for delete
+ Â Â Â
Fix missing/wrong/broken rels discovered by runtest
+ Â Â Â
Drop unofficial convertFil (konverterFil) end point
+ Â Â Â
Fix regex problem for dateTime
+ Â Â Â
Fix multiple static analysis issues discovered by coverity
+ Â Â Â
Fix proxy problem when looking for object class names
+ Â Â Â
Add many missing translated Norwegian to English (internal) +attribute/entity names
+ Â Â Â
Change UUID generation approach to allow code also set a value
+ Â Â Â
Fix problem with Part/PartParson
+ Â Â Â
Fix problem with empty OData search results
+ Â Â Â
Fix metadata entity domain problem
+
+
General Improvements +
+ Â Â Â
Makes future refactoring easier as coupling is reduced
+ Â Â Â
Allow some constant variables to be set from property file
+ Â Â Â
Refactor code to make reflection work better across codebase
+ Â Â Â
Reduce the number of @Service layer classes used in @Controller +classes
+ Â Â Â
Be more consistent on naming of similar variable types
+ Â Â Â
Start printing rels/href if they are applicable
+ Â Â Â
Cleaner / standardised approach to deleting objects
+ Â Â Â
Avoid concatenation when using StringBuilder
+ Â Â Â
Consolidate code to avoid duplication
+ Â Â Â
Tidy formatting for a more consistent reading style across +similar class files
+ Â Â Â
Make throw a log.error message not an log.info message
+ Â Â Â
Make throw print the log value rather than printing in multiple +places
+ Â Â Â
Add some missing pronom codes
+ Â Â Â
Fix time formatting issue in Gitlab CI
+ Â Â Â
Remove stale / unused code
+ Â Â Â
Use only UUID datatype rather than combination String/UUID for systemID
+ Â Â Â
Mark variables final and @NotNull where relevant to indicate +intention
+
+
Change Date values to DateTime to maintain compliance with Noark 5 +standard
+
Domain model improvements using Hypersistence Optimizer +
+ Â Â Â
Move @Transactional from class to methods to avoid borrowing the JDBC Connection unnecessarily
+ Â Â Â
Fix OneToOne performance issues
+ Â Â Â
Fix ManyToMany performance issues
+ Â Â Â
Add missing bidirectional synchronization support
+ Â Â Â
Fix ManyToMany performance issue
+
+
Make List<> and Set<> use final-keyword to avoid potential problems +during update operations
+
Changed internal URLs, replaced "hateoas-api" with "api".
+
Implemented storing of Precedence.
+
Corrected handling of screening.
+
Corrected _links collection returned for list of mixed entity types +to match the specific entity.
+
Improved several internal structures.
+
+ +

+ +

If free and open standardized archiving API sound interesting to +you, please contact us on IRC +(#nikita on +irc.oftc.net) or email +(nikita-noark +mailing list).

+ +

As usual, if you use Bitcoin and want to show your support of my +activities, please send Bitcoin donations to my address +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.

- Tags: dld, norsk, personvern, stortinget, surveillance, valg. + Tags: english, noark5, nuug, offentlig innsyn, standard.

@@ -75,96 +224,60 @@ brukere med Ring, slik at jeg ogsÃ¥ bruker

Simpler recipe on how to make a simple $7 IMSI Catcher using Debian

9th August 2017

On friday, I came across an interesting article in the Norwegian -web based ICT news magazine digi.no on -how -to collect the IMSI numbers of nearby cell phones using the cheap -DVB-T software defined radios. The article refered to instructions -and a recipe by -Keld Norman on Youtube on how to make a simple $7 IMSI Catcher, and I decided to test them out.

- -

The instructions said to use Ubuntu, install pip using apt (to -bypass apt), use pip to install pybombs (to bypass both apt and pip), -and the ask pybombs to fetch and build everything you need from -scratch. I wanted to see if I could do the same on the most recent -Debian packages, but this did not work because pybombs tried to build -stuff that no longer build with the most recent openssl library or -some other version skew problem. While trying to get this recipe -working, I learned that the apt->pip->pybombs route was a long detour, -and the only piece of software dependency missing in Debian was the -gr-gsm package. I also found out that the lead upstream developer of -gr-gsm (the name stand for GNU Radio GSM) project already had a set of -Debian packages provided in an Ubuntu PPA repository. All I needed to -do was to dget the Debian source package and built it.

- -

The IMSI collector is a python script listening for packages on the -loopback network device and printing to the terminal some specific GSM -packages with IMSI numbers in them. The code is fairly short and easy -to understand. The reason this work is because gr-gsm include a tool -to read GSM data from a software defined radio like a DVB-T USB stick -and other software defined radios, decode them and inject them into a -network device on your Linux machine (using the loopback device by -default). This proved to work just fine, and I've been testing the -collector for a few days now.

- -

The updated and simpler recipe is thus to

- -

start with a Debian machine running Stretch or newer,
build and install the gr-gsm package available from -http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/,
clone the git repostory from https://github.com/Oros42/IMSI-catcher,
run grgsm_livemon and adjust the frequency until the terminal -where it was started is filled with a stream of text (meaning you -found a GSM station).
go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.

- -

To make it even easier in the future to get this sniffer up and -running, I decided to package -the gr-gsm project -for Debian (WNPP -#871055), and the package was uploaded into the NEW queue today. -Luckily the gnuradio maintainer has promised to help me, as I do not -know much about gnuradio stuff yet.

- -

I doubt this "IMSI cacher" is anywhere near as powerfull as -commercial tools like -The -Spy Phone Portable IMSI / IMEI Catcher or the -Harris -Stingray, but I hope the existance of cheap alternatives can make -more people realise how their whereabouts when carrying a cell phone -is easily tracked. Seeing the data flow on the screen, realizing that -I live close to a police station and knowing that the police is also -wearing cell phones, I wonder how hard it would be for criminals to -track the position of the police officers to discover when there are -police near by, or for foreign military forces to track the location -of the Norwegian military forces, or for anyone to track the location -of government officials...

- -

It is worth noting that the data reported by the IMSI-catcher -script mentioned above is only a fraction of the data broadcasted on -the GSM network. It will only collect one frequency at the time, -while a typical phone will be using several frequencies, and not all -phones will be using the frequencies tracked by the grgsm_livemod -program. Also, there is a lot of radio chatter being ignored by the -simple_IMSI-catcher script, which would be collected by extending the -parser code. I wonder if gr-gsm can be set up to listen to more than -one frequency?

VLC bittorrent plugin in Bullseye, saved by the bell?

1st May 2021

Yesterday morning I got a warning call from the Debian quality +control system that +the VLC +bittorrent plugin was due to be removed because of a release +critical bug in one of its dependencies. As you might remember, this +plugin make VLC able to stream videos directly from a bittorrent +source using both torrent files and magnet links, similar to using a +HTTP source. I believe such protocol support is a vital feature in +VLC, allowing efficient streaming from sources such at the almost 7 +million movies in the Internet +Archive.

+ +

The dependency was the unmaintained +libtorrent-rasterbar +package, and the bug in +question blocked its python library from working properly. As I +did not want Bullseye to release without bittorrent support in VLC, I +set out to check out the status, and track down a fix for the problem. +Luckily the issue had already been identified and fixed upstream, +providing everything needed. All I needed to do was to fetch the +Debian git repository, extract and trim the patch from upstream and +apply it to the Debian package for upload.

+ +

The fixed library was uploaded yesterday evening. But that is not +enough to get it into Bullseye, as Debian is currently in package +freeze to prepare for a new next stable release. Only non-critical +packages with +autopkgtest +setup included, in other words able to validate automatically that +the package is working, are allowed to migrate automatically into the +next release at this stage. And the unmaintained libtorrent-rasterbar +lack such testing, and thus needed a manual override. I am happy to +report that such manual override was approved a few minutes ago, thus +increasing significantly the chance of VLC bittorrent streaming being +available out of the box also for Debian/Buster users. A bit too +close shave for my liking, as the Bullseye release is most likely just +a few days away, and this did feel like the package was saved by the +bell. I am so glad the warning email showed up in time for me to +handle the issue, and a big thanks go to the Debian Release team for +the quick feedback on +#debian-release +and their swift +unblocking.

+ +

As usual, if you use Bitcoin and want to show your support of my +activities, please send Bitcoin donations to my address +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.

- Tags: debian, english, personvern, surveillance. + Tags: english, verkidetfri, video.

@@ -172,37 +285,64 @@ one frequency?

Norwegian BokmÃ¥l edition of Debian Administrator's Handbook is now available

25th July 2017

Updated Valutakrambod, now also with information from NBX

27th February 2021

I have neglected the Valutakrambod library for a while, but decided +this weekend to give it a face lift. I fixed a few minor glitches in +several of the service drivers, where the API had changed since I last +looked at the code. I also added support for fetching the order book +from the newcomer Norwegian Bitcoin Exchange.

+ +

I also decided to migrate the project from github to gitlab in the +process. If you want a python library for talking to various currency +exchanges, check out +code for +valutakrambod.

+ +

This is what the output from 'bin/btc-rates-curses -c' +looked like a few minutes ago:

I finally received a copy of the Norwegian BokmÃ¥l edition of -"The Debian Administrator's -Handbook". This test copy arrived in the mail a few days ago, and -I am very happy to hold the result in my hand. We spent around one and a half year translating it. This paperbook edition -is available -from lulu.com. If you buy it quickly, you save 25% on the list -price. The book is also available for download in electronic form as -PDF, EPUB and Mobipocket, as can be -read online -as a web page.

- -

This is the second book I publish (the first was the book -"Free Culture" by Lawrence Lessig -in -English, -French -and -Norwegian -BokmÃ¥l), and I am very excited to finally wrap up this -project. I hope -"HÃ¥ndbok -for Debian-administratoren" will be well received.

+           Name Pair           Bid         Ask Spread Ftcd    Age   Freq
+       Bitfinex BTCEUR  39229.0000  39246.0000   0.0%   44     44    nan
+        Bitmynt BTCEUR  39071.0000  41048.9000   4.8%   43     74    nan
+         Bitpay BTCEUR  39326.7000         nan   nan%   39    nan    nan
+       Bitstamp BTCEUR  39398.7900  39417.3200   0.0%    0      0      1
+           Bl3p BTCEUR  39158.7800  39581.9000   1.1%    0    nan      3
+       Coinbase BTCEUR  39197.3100  39621.9300   1.1%   38    nan    nan
+         Kraken+BTCEUR  39432.9000  39433.0000   0.0%    0      0      0
+        Paymium BTCEUR  39437.2100  39499.9300   0.2%    0   2264    nan
+        Bitmynt BTCNOK 409750.9600 420516.8500   2.6%   43     74    nan
+         Bitpay BTCNOK 410332.4000         nan   nan%   39    nan    nan
+       Coinbase BTCNOK 408675.7300 412813.7900   1.0%   38    nan    nan
+        MiraiEx BTCNOK 412174.1800 418396.1500   1.5%   34    nan    nan
+            NBX BTCNOK 405835.9000 408921.4300   0.8%   33    nan    nan
+       Bitfinex BTCUSD  47341.0000  47355.0000   0.0%   44     53    nan
+         Bitpay BTCUSD  47388.5100         nan   nan%   39    nan    nan
+       Coinbase BTCUSD  47153.6500  47651.3700   1.0%   37    nan    nan
+         Gemini BTCUSD  47416.0900  47439.0500   0.0%   36    336    nan
+         Hitbtc BTCUSD  47429.9900  47386.7400  -0.1%    0      0      0
+         Kraken+BTCUSD  47401.7000  47401.8000   0.0%    0      0      0
+  Exchangerates EURNOK     10.4012     10.4012   0.0%   38  76236    nan
+     Norgesbank EURNOK     10.4012     10.4012   0.0%   31  76236    nan
+       Bitstamp EURUSD      1.2030      1.2045   0.1%    2      2      1
+  Exchangerates EURUSD      1.2121      1.2121   0.0%   38  76236    nan
+     Norgesbank USDNOK      8.5811      8.5811   0.0%   31  76236    nan
+

+ +

Yes, I notice the negative spread on Hitbtc. Either I fail to +understand their Websocket API or they are sending bogus data. I've +seen the same with Kraken, and suspect there is something wrong with +the data they send.

+ +

As usual, if you use Bitcoin and want to show your support of my +activities, please send Bitcoin donations to my address +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.

- Tags: debian, debian-handbook, english. + Tags: bitcoin, english.

@@ -210,50 +350,124 @@ for Debian-administratoren" will be well received.

Â«Rapporten ser ikke pÃ¥ informasjonssikkerhet knyttet til personlig integritetÂ»

27th June 2017

Jeg kom over teksten -Â«Killing -car privacy by federal mandateÂ» av Leonid Reyzin pÃ¥ Freedom to -Tinker i dag, og det gleder meg Ã¥ se en god gjennomgang om hvorfor det -er et urimelig inngrep i privatsfÃ¦ren Ã¥ la alle biler kringkaste sin -posisjon og bevegelse via radio. Det omtalte forslaget basert pÃ¥ -Dedicated Short Range Communication (DSRC) kalles Basic Safety Message -(BSM) i USA og Cooperative Awareness Message (CAM) i Europa, og det -norske Vegvesenet er en av de som ser ut til Ã¥ kunne tenke seg Ã¥ -pÃ¥legge alle biler Ã¥ fjerne nok en bit av innbyggernes privatsfÃ¦re. -Anbefaler alle Ã¥ lese det som stÃ¥r der. - -

Mens jeg tittet litt pÃ¥ DSRC pÃ¥ biler i Norge kom jeg over et sitat -jeg synes er illustrativt for hvordan det offentlige Norge hÃ¥ndterer -problemstillinger rundt innbyggernes privatsfÃ¦re i SINTEF-rapporten -Â«Informasjonssikkerhet -i AutoPASS-brikkerÂ» av Trond Foss:

Boken Â«Hvordan knuse overvÃ¥kningskapitalismenÂ» lanseres pÃ¥ norsk

26th January 2021

Etter intenst arbeid over mange mÃ¥neder er endelig den norske +utgaven av Â«Hvordan knuse overvÃ¥kningskapitalismenÂ» av Cory Doctorow +ferdig og klar til Ã¥ glede millioner av lesere over hele verden. +FÃ¸lgende pressemelding ble nettopp sendt ut til norske redaksjoner: -

-Â«Rapporten ser ikke pÃ¥ informasjonssikkerhet knyttet til personlig - integritet.Â» -

+ +
Hva gjÃ¸r stordata med oss, og hvordan gjÃ¸r algoritmene +Â«fake newsÂ» til realiter?
+ +
NÃ¥ foreligger en viktig bok om temaet ogsÃ¥ pÃ¥ norsk. Boken klargjÃ¸r +og foreslÃ¥r hvordan vi selv som enkeltpersoner, men ogsÃ¥ nasjonalt og +internasjonalt kan bekjempe stordatakonsentrasjonene; +Â«overvÃ¥kingskapitalismenÂ». Boken er Â«Hvordan knuse +overvÃ¥kingskapitalismenÂ» av dr. Cory Doctorow. Den engelske +bokutgivelsen kom for noen dager siden og lanseres med et Webinar +torsdag 2021-01-28. Doctorow besÃ¸kte Norge og NUUG i desember med sin +presentasjon Monopoly, Not Mind Control: What's Really Happening With +"Surveillance Capitalism".
+ +
I funn etter funn, eksempel etter eksempel, gjennomgÃ¥r og +analyserer dr. Doctorow de utfordringer vi mÃ¸ter i stÃ¸rre og stÃ¸rre +omfang. Ikke bare i USA, men ogsÃ¥ her hjemme.
+ +
Cory Doctorow er en britisk-kanadisk forfatter, journalist og +aktivist, kjent for sine science fiction-romaner, for arbeidet for +Creative Commons-bevegelsen, og for sine bidrag til reform av +opphavsretten. Han er bÃ¥de Ã¦resdoktor og gjesteforeleser i +datavitenskap ved Open University i UK, konsulent for Electronic +Frontier Foundation, og godt kjent for innsiktsfullt Ã¥ kommentere og +skrive om digital utvikling.
+ +
Boken lanseres nÃ¥ pÃ¥ norsk, bÃ¥de som ebok og pÃ¥ papir, oversatt av +en dugnadsgjeng ledet av Petter Reinholdtsen.
+ +
Boken reiser noen helt grunnleggende og samfunnskritiske spÃ¸rsmÃ¥l: +Hva fÃ¸rer det til nÃ¥r store deler av Internettet domineres av fÃ¥ store +aktÃ¸rer og deres styringsverktÃ¸y og algoritmer?
+ +
Som individer bÃ¸r vi vÃ¦re opptatt at grenser blir satt og hÃ¥ndhevet +- grenser for overvÃ¥kning av individet, for utÃ¸velse av kommersiell +og politisk pÃ¥virkning, og for monopoldannelser i +dataverdenen. Slik grensesetting styrker personvernet.
+ +
Konkurransetilsynet har ansvaret for at konkurranselovens Â§ 11 skal +forby Â«et dominerende foretak for utilbÃ¸rlig Ã¥ utnytte og misbruke +sin dominerende stillingÂ». Et tilsvarende forbud omfattes ogsÃ¥ av +EÃS-avtalens artikkel 54. Boken gÃ¥r i detalj om serien av +innskrenkninger vi mÃ¸ter i valgfriheten, innskrenkninger som denne +lovgivningen nettopp skal forhindre. HÃ¥ndhevelse av en slik lovgivning +er ogsÃ¥ til fordel for mindre nÃ¦ringsdrivende som uten dette fÃ¥r +begrenset sine faktiske eller potensielle muligheter for vekst og +etablering. Â«Slik atferd kan utgjÃ¸re et misbruk og kan ta ulike +formerÂ», skriver Konkurransetilsynet.
+ +
Cory Doctorow gÃ¥r i sin bok lengre enn det med sine mange eksempler +pÃ¥ forhold det burde vÃ¦rt grepet inn mot.
+ +
Â«Boken bÃ¸r bidra til et sterkere engasjemen fra voktere av +InterÂnettet nasjonalt og internasjonalt - EU medregnetÂ» sier +oversetter Ole-Erik Yrvin og fortsetter: Â«Vi har derfor +allerede +tatt opp bokens forslag direkte med Distrikts- og +digitaliseringsminister Linda Hofstad Helleland (H) og +Konkurransetilsynet slik at de kan fÃ¸lges opp.Â»
+ +
Â«OgsÃ¥ Norge bÃ¸r innta en pÃ¥driverrolle i denne utviklingenÂ», sier +Petter Reinholdtsen. Â«Tiden er knapp, og tilsynsmyndighetene mÃ¥ fÃ¥ +de verktÃ¸y og de ressurser de trenger for at vi her hjemme skal oppnÃ¥ +nÃ¸dvendige resultater. Dette gjelder ikke bare vÃ¥r egen generasjon; +det gjelder alle generasjoner fremoverÂ», avslutter Petter +Reinholdsen.
+ +
Kontaktinformasjon:
+ +
+ +
Ole-Erik Yrvin, oeyrvin (at) gmail.com, +47 46500450
+ +
Petter Reinholdtsen, pere (at) hungry.com
+ +
+ +
Relevante lenker:
+ +
+ +
Â«Hvordan knuse overvÃ¥kingskapitalismenÂ» kan bestilles pÃ¥ papir, +som ebok eller leses pÃ¥ nett via +http://www.hungry.com/~pere/publisher/.
+ +
Opptak av NUUG-mÃ¸tet Monopoly, Not Mind Control: What's Really +Happening With "Surveillance Capitalism" med Cory Doctorow, +https://www.nuug.no/aktiviteter/20201208-doctorow/.
-
SÃ¥ enkelt kan det tydeligvis gjÃ¸res nÃ¥r en vurderer -informasjonssikkerheten. Det holder vel at folkene pÃ¥ toppen kan si -at Â«Personvernet er ivaretattÂ», som jo er den populÃ¦re intetsigende -frasen som gjÃ¸r at mange tror enkeltindividers integritet tas vare pÃ¥. -Sitatet fikk meg til Ã¥ undres pÃ¥ hvor ofte samme tilnÃ¦rming, Ã¥ bare se -bort fra behovet for personlig itegritet, blir valgt nÃ¥r en velger Ã¥ -legge til rette for nok et inngrep i privatsfÃ¦ren til personer i -Norge. Det er jo sjelden det fÃ¥r reaksjoner. Historien om -reaksjonene pÃ¥ Helse SÃ¸r-Ãsts tjenesteutsetting er jo sÃ¸rgelig nok et -unntak og toppen av isfjellet, desverre. Tror jeg fortsatt takker nei -til bÃ¥de AutoPASS og holder meg sÃ¥ langt unna det norske helsevesenet -som jeg kan, inntil de har demonstrert og dokumentert at de verdsetter -individets privatsfÃ¦re og personlige integritet hÃ¸yere enn kortsiktig -gevist og samfunnsnytte.
+
PÃ¥melding til webinar som lanserer den engelske utgaven kan gjÃ¸res +via +https://craphound.com/category/destroy/.
+ +
Cory Doctorows nettsted er +https://craphound.com/.
+ +
+ +

+ +

Som vanlig, hvis du bruker Bitcoin og Ã¸nsker Ã¥ vise din stÃ¸tte til +det jeg driver med, setter jeg pris pÃ¥ om du sender Bitcoin-donasjoner +til min adresse +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b. +Merk, betaling med bitcoin er ikke anonymt. :)

- Tags: norsk, personvern, sikkerhet. + Tags: docbook, norsk.

@@ -261,66 +475,119 @@ gevist og samfunnsnytte.

Updated sales number for my Free Culture paper editions

12th June 2017

It is pleasing to see that the work we put down in publishing new -editions of the classic Free -Culture book by the founder of the Creative Commons movement, -Lawrence Lessig, is still being appreciated. I had a look at the -latest sales numbers for the paper edition today. Not too impressive, -but happy to see some buyers still exist. All the revenue from the -books is sent to the Creative -Commons Corporation, and they receive the largest cut if you buy -directly from Lulu. Most books are sold via Amazon, with Ingram -second and only a small fraction directly from Lulu. The ebook -edition is available for free from -Github.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Title / language	Quantity
Title / language	2016 jan-jun	2016 jul-dec	2017 jan-may
Culture Libre / French	3	6	15
Fri kultur / Norwegian	7	1	0
Free Culture / English	14	27	16
Total	24	34	31

- -

A bit sad to see the low sales number on the Norwegian edition, and -a bit surprising the English edition still selling so well.

- -

If you would like to translate and publish the book in your native -language, I would be happy to help make it happen. Please get in -touch.

Latest Jami back in Debian Testing, and scriptable using dbus

12th January 2021

After a lot of hard work by its maintainer Alexandre Viau and +others, the decentralized communication platform +Jami +(earlier known as Ring), managed to get +its latest version +into Debian Testing. Several of its dependencies has caused build and +propagation problems, which all seem to be solved now.

+ +

In addition to the fact that Jami is decentralized, similar to how +bittorrent is decentralized, I first of all like how it is not +connected to external IDs like phone numbers. This allow me to set up +computers to send me notifications using Jami without having to find +get a phone number for each computer. Automatic notification via Jami +is also made trivial thanks to the provided client side API (as a DBus +service). Here is my bourne shell script demonstrating how to let any +system send a message to any Jami address. It will create a new +identity before sending the message, if no Jami identity exist +already:

+ +

+#!/bin/sh
+#
+# Usage: $0  
+#
+# Send  to , create local jami account if
+# missing.
+#
+# License: GPL v2 or later at your choice
+# Author: Petter Reinholdtsen
+
+
+if [ -z "$HOME" ] ; then
+    echo "error: missing \$HOME, required for dbus to work"
+    exit 1
+fi
+
+# First, get dbus running if not already running
+DBUSLAUNCH=/usr/bin/dbus-launch
+PIDFILE=/run/asterisk/dbus-session.pid
+if [ -e $PIDFILE ] ; then
+    . $PIDFILE
+    if ! kill -0 $DBUS_SESSION_BUS_PID 2>/dev/null ; then
+        unset DBUS_SESSION_BUS_ADDRESS
+    fi
+fi
+if [ -z "$DBUS_SESSION_BUS_ADDRESS" ] && [ -x "$DBUSLAUNCH" ]; then
+    DBUS_SESSION_BUS_ADDRESS="unix:path=$HOME/.dbus"
+    dbus-daemon --session --address="$DBUS_SESSION_BUS_ADDRESS" --nofork --nopidfile --syslog-only < /dev/null > /dev/null 2>&1 3>&1 &
+    DBUS_SESSION_BUS_PID=$!
+    (
+        echo DBUS_SESSION_BUS_PID=$DBUS_SESSION_BUS_PID
+        echo DBUS_SESSION_BUS_ADDRESS=\""$DBUS_SESSION_BUS_ADDRESS"\"
+        echo export DBUS_SESSION_BUS_ADDRESS
+    ) > $PIDFILE
+    . $PIDFILE
+fi &
+
+dringop() {
+    part="$1"; shift
+    op="$1"; shift
+    dbus-send --session \
+        --dest="cx.ring.Ring" /cx/ring/Ring/$part cx.ring.Ring.$part.$op $*
+}
+
+dringopreply() {
+    part="$1"; shift
+    op="$1"; shift
+    dbus-send --session --print-reply \
+        --dest="cx.ring.Ring" /cx/ring/Ring/$part cx.ring.Ring.$part.$op $*
+}
+
+firstaccount() {
+    dringopreply ConfigurationManager getAccountList | \
+      grep string | awk -F'"' '{print $2}' | head -n 1
+}
+
+account=$(firstaccount)
+
+if [ -z "$account" ] ; then
+    echo "Missing local account, trying to create it"
+    dringop ConfigurationManager addAccount \
+      dict:string:string:"Account.type","RING","Account.videoEnabled","false"
+    account=$(firstaccount)
+    if [ -z "$account" ] ; then
+        echo "unable to create local account"
+        exit 1
+    fi
+fi
+
+# Not using dringopreply to ensure $2 can contain spaces
+dbus-send --print-reply --session \
+  --dest=cx.ring.Ring \
+  /cx/ring/Ring/ConfigurationManager \
+  cx.ring.Ring.ConfigurationManager.sendTextMessage \
+  string:"$account" string:"$1" \
+  dict:string:string:"text/plain","$2" 
+

+ +

If you want to check it out yourself, visit the +the Jami system project page to learn +more, and install the latest Jami client from Debian Unstable or +Testing.

+ +

As usual, if you use Bitcoin and want to show your support of my +activities, please send Bitcoin donations to my address +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.

- Tags: docbook, english, freeculture. + Tags: debian, english, sikkerhet, surveillance.

@@ -328,59 +595,82 @@ touch.

Release 0.1.1 of free software archive system Nikita announced

10th June 2017

I am very happy to report that the -Nikita Noark 5 -core project tagged its second release today. The free software -solution is an implementation of the Norwegian archive standard Noark -5 used by government offices in Norway. These were the changes in -version 0.1.1 since version 0.1.0 (from NEWS.md): +

Boken Â«Made with Creative CommonsÂ» lanseres pÃ¥ norsk

15th November 2020

Endelig er den norske utgaven av Â«Made with Creative CommonsÂ» +ferdig og publisert. FÃ¸lgende pressemelding ble nettopp sendt ut: + +

+ +
Boken Â«Made with Creative CommonsÂ» lanseres pÃ¥ norsk
+ +
Â«Gjort med Creative CommonsÂ» er en bok om gjenbruk, deling og den +digitale allmenningen. Boken omhandler Ã¥ bygge en forretningsmodell pÃ¥ +Ã¥pne verdier, endringene i tankesett og filosofi, og fordelene og +praksisen som kommer med Ã¥ vÃ¦re Â«Ã¥penÂ».
+ +
Forfatterne Paul Stacey og Sarah Hinchliff Pearson tar oss med inn +i samtaler med 24 mennesker, prosjekter og organisasjoner som pÃ¥ ulike +mÃ¥ter generere inntekter gjennom deling av sine verk. Som leser fÃ¥r +man innsikt i hvordan alt fra forskere, forfattere, kunstnere og +filmskapere tjener penger basert pÃ¥ Ã¥pne forretningsmodeller. En av +referansestudiene i denne boken viser hvordan Blender Animation Studio +lager vakre animasjonsfilmer som de publiserer under en fri lisens, +basert pÃ¥ en plattform som er fri programvare.
+ +
Utover praktiske eksempler pÃ¥ forskjellige forretningsmodeller berÃ¸rer +ogsÃ¥ boken forskjellen mellom tradisjonelle kommersielle virksomheter og +de som tar utgangspunkt i den globale delingskulturen.
+ +
Â«Hvis du Ã¸nsker Ã¥ lÃ¦re mer om digital delingskultur og Creative Commons +er dette en bok som bÃ¥de vil inspirere og gi grunnleggende innsiktÂ» sier +leder av Creative Commons Norge, Christer Solheim Gundersen. Â«De siste +Ã¥rene har denne globale bevegelsen sett en betydelig vekst med totalt +over 1,6 milliarder verk med CC-lisens tilgjengelig pÃ¥ nett.Â» + +NÃ¥ er den tilgjengelig pÃ¥ norsk takket vÃ¦re liten gruppe frivillige +entusiaster ledet av Petter Reinholdtsen. Â«PÃ¥ vegne av Creative Commons +Norge vil jeg takke hver enkelt bidragsyter. Dette prosjektet er i seg +selv et inspirerende eksempel pÃ¥ at delingskulturen ogsÃ¥ har godt +fotfeste her i Norge.Â», avslutter Gundersen.
+ +
Boken er selvsagt fritt tilgjengelig under en Creative Commons lisens, +og kan ogsÃ¥ kjÃ¸pes som ebok og papirutgave pÃ¥ blant annet Lulu.com og +Amazon.
+ +
Lenker og kontaktinformasjon

-
Continued work on the angularjs GUI, including document upload.
-
Implemented correspondencepartPerson, correspondencepartUnit and - correspondencepartInternal
-
Applied for coverity coverage and started submitting code on - regualr basis.
-
Started fixing bugs reported by coverity
-
Corrected and completed HATEOAS links to make sure entire API is - available via URLs in _links.
-
Corrected all relation URLs to use trailing slash.
-
Add initial support for storing data in ElasticSearch.
-
Now able to receive and store uploaded files in the archive.
-
Changed JSON output for object lists to have relations in _links.
-
Improve JSON output for empty object lists.
-
Now uses correct MIME type application/vnd.noark5-v4+json.
-
Added support for docker container images.
-
Added simple API browser implemented in JavaScript/Angular.
-
Started on archive client implemented in JavaScript/Angular.
-
Started on prototype to show the public mail journal.
-
Improved performance by disabling Sprint FileWatcher.
-
Added support for 'arkivskaper', 'saksmappe' and 'journalpost'.
-
Added support for some metadata codelists.
-
Added support for Cross-origin resource sharing (CORS).
-
Changed login method from Basic Auth to JSON Web Token (RFC 7519) - style.
-
Added support for GET-ing ny-* URLs.
-
Added support for modifying entities using PUT and eTag.
-
Added support for returning XML output on request.
-
Removed support for English field and class names, limiting ourself - to the official names.
-
...
- +
Kontaktpunkt: +
Ole-Erik Yrvin (oeyrvin@gmail.com) og +
Christer Solheim Gundersen (christer@goopen.no), +47 9341 1360
+ +
Bokens engelske nettside
+ +
Den norske utgavens nettside
+ +
Papirutgaven fra Lulu
+ +
Epub-utgaven fra lulu
+
-
If this sound interesting to you, please contact us on IRC (#nikita -on irc.freenode.net) or email -(nikita-noark -mailing list).
+

+ +

NÃ¥ hÃ¥per jeg bare den fÃ¥r mange lesere, og finner veien under mange +juletrÃ¦r.

+ +

- Tags: english, nuug, offentlig innsyn, standard. + Tags: docbook, norsk.

@@ -388,99 +678,39 @@ mailing list).

Idea for storing trusted timestamps in a Noark 5 archive

7th June 2017

This is a copy of -an -email I posted to the nikita-noark mailing list. Please follow up -there if you would like to discuss this topic. The background is that -we are making a free software archive system based on the Norwegian -Noark -5 standard for government archives.

- -

I've been wondering a bit lately how trusted timestamps could be -stored in Noark 5. -Trusted -timestamps can be used to verify that some information -(document/file/checksum/metadata) have not been changed since a -specific time in the past. This is useful to verify the integrity of -the documents in the archive.

- -

Then it occured to me, perhaps the trusted timestamps could be -stored as dokument variants (ie dokumentobjekt referered to from -dokumentbeskrivelse) with the filename set to the hash it is -stamping?

- -

Given a "dokumentbeskrivelse" with an associated "dokumentobjekt", -a new dokumentobjekt is associated with "dokumentbeskrivelse" with the -same attributes as the stamped dokumentobjekt except these -attributes:

- -

format -> "RFC3161" -
mimeType -> "application/timestamp-reply" -
formatDetaljer -> "<source URL for timestamp service>" -
filenavn -> "<sjekksum>.tsr" - -

- -

This assume a service following -IETF RFC 3161 is -used, which specifiy the given MIME type for replies and the .tsr file -ending for the content of such trusted timestamp. As far as I can -tell from the Noark 5 specifications, it is OK to have several -variants/renderings of a dokument attached to a given -dokumentbeskrivelse objekt. It might be stretching it a bit to make -some of these variants represent crypto-signatures useful for -verifying the document integrity instead of representing the dokument -itself.

- -

Using the source of the service in formatDetaljer allow several -timestamping services to be used. This is useful to spread the risk -of key compromise over several organisations. It would only be a -problem to trust the timestamps if all of the organisations are -compromised.

- -

The following oneliner on Linux can be used to generate the tsr -file. $input is the path to the file to checksum, and $sha256 is the -SHA-256 checksum of the file (ie the ".tsr" value mentioned -above).

- -

-openssl ts -query -data "$inputfile" -cert -sha256 -no_nonce \
-  | curl -s -H "Content-Type: application/timestamp-query" \
-      --data-binary "@-" http://zeitstempel.dfn.de > $sha256.tsr
-

- -

To verify the timestamp, you first need to download the public key -of the trusted timestamp service, for example using this command:

- -

-wget -O ca-cert.txt \
-  https://pki.pca.dfn.de/global-services-ca/pub/cacert/chain.txt
-

- -

Note, the public key should be stored alongside the timestamps in -the archive to make sure it is also available 100 years from now. It -is probably a good idea to standardise how and were to store such -public keys, to make it easier to find for those trying to verify -documents 100 or 1000 years from now. :)

- -

The verification itself is a simple openssl command:

- -

-openssl ts -verify -data $inputfile -in $sha256.tsr \
-  -CAfile ca-cert.txt -text
-

- -

Is there any reason this approach would not work? Is it somehow against -the Noark 5 specification?

Buster based BokmÃ¥l edition of Debian Administrator's Handbook

20th October 2020

+ +

I am happy to report that we finally made it! Norwegian BokmÃ¥l +became the first translation published on paper of the new Buster +based edition of "The Debian +Administrator's Handbook". The print proof reading copy arrived +some days ago, and it looked good, so now the book is approved for +general distribution. This updated paperback edition is available from +lulu.com. The book is also available for download in electronic +form as PDF, EPUB and Mobipocket, and can also be +read online.

+ +

I am very happy to wrap up this Creative Common licensed project, +which concludes several months of work by several volunteers. The +number of Linux related books published in Norwegian are few, and I +really hope this one will gain many readers, as it is packed with deep +knowledge on Linux and the Debian ecosystem. The book will be +available for various Internet book stores like Amazon and Barnes & +Noble soon, but I recommend buying +"HÃ¥ndbok +for Debian-administratoren" directly from the source at Lulu. + +

As usual, if you use Bitcoin and want to show your support of my +activities, please send Bitcoin donations to my address +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.

- Tags: english, offentlig innsyn, standard. + Tags: debian, debian-handbook, english.

@@ -488,61 +718,33 @@ the Noark 5 specification?

NÃ¥r nynorskoversettelsen svikter til eksamen...

3rd June 2017

Aftenposten -melder i dag om feil i eksamensoppgavene for eksamen i politikk og -menneskerettigheter, der teksten i bokmÃ¥ls og nynorskutgaven ikke var -like. Oppgaveteksten er gjengitt i artikkelen, og jeg ble nysgjerring -pÃ¥ om den fri oversetterlÃ¸sningen -Apertium ville gjort en bedre -jobb enn Utdanningsdirektoratet. Det kan se slik ut.

- -

Her er bokmÃ¥lsoppgaven fra eksamenen:

- -

-
DrÃ¸ft utfordringene knyttet til nasjonalstatenes og andre aktÃ¸rers -rolle og muligheter til Ã¥ hÃ¥ndtere internasjonale utfordringer, som -for eksempel flykningekrisen.
- -
Vedlegge er eksempler pÃ¥ tekster som kan gi relevante perspektiver -pÃ¥ temaet:
-
-
Flykningeregnskapet 2016, UNHCR og IDMC -
Â«GrenselÃ¸st Europa for fallÂ» A-Magasinet, 26. november 2015 -
- -

- -

Dette oversetter Apertium slik:

- -

-
DrÃ¸ft utfordringane knytte til nasjonalstatane sine og rolla til -andre aktÃ¸rar og hÃ¸ve til Ã¥ handtera internasjonale utfordringar, som -til dÃ¸mes *flykningekrisen.
- -
Vedleggja er dÃ¸me pÃ¥ tekster som kan gje relevante perspektiv pÃ¥ -temaet:
- -
-
*Flykningeregnskapet 2016, *UNHCR og *IDMC
-
Â«*GrenselÃ¸st Europa for fallÂ» A-Magasinet, 26. november 2015
-
- -

- -

Ord som ikke ble forstÃ¥tt er markert med stjerne (*), og trenger -ekstra sprÃ¥ksjekk. Men ingen ord er forsvunnet, slik det var i -oppgaven elevene fikk presentert pÃ¥ eksamen. Jeg mistenker dog at -"andre aktÃ¸rers rolle og muligheter til ..." burde vÃ¦rt oversatt til -"rolla til andre aktÃ¸rar og deira hÃ¸ve til ..." eller noe slikt, men -det er kanskje flisespikking. Det understreker vel bare at det alltid -trengs korrekturlesning etter automatisk oversettelse.

Buster update of Norwegian BokmÃ¥l edition of Debian Administrator's Handbook almost done

11th September 2020

Thanks to the good work of several volunteers, the updated edition +of the Norwegian translation for +"The Debian Administrator's +Handbook" is now almost completed. After many months of proof +reading, I consider the proof reading complete enough for us to move +to the next step, and have asked for the print version to be prepared +and sent of to the print on demand service lulu.com. While it is +still not to late if you find any incorrect translations on +the +hosted Weblate service, but it will be soon. :) You can check out +the Buster +edition on the web until the print edition is ready.

+ +

The book will be for sale on lulu.com and various web book stores, +with links available from the web site for the book linked to above. +I hope a lot of readers find it useful.

+ +

As usual, if you use Bitcoin and want to show your support of my +activities, please send Bitcoin donations to my address +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.

- Tags: debian, norsk, stavekontroll. + Tags: debian, debian-handbook, english.

@@ -550,67 +752,33 @@ trengs korrekturlesning etter automatisk oversettelse.

Epost inn som arkivformat i Riksarkivarens forskrift?

27th April 2017

I disse dager, med frist 1. mai, har Riksarkivaren ute en hÃ¸ring pÃ¥ -sin forskrift. Som en kan se er det ikke mye tid igjen fÃ¸r fristen -som gÃ¥r ut pÃ¥ sÃ¸ndag. Denne forskriften er det som lister opp hvilke -formater det er greit Ã¥ arkivere i -Noark -5-lÃ¸sninger i Norge.

- -

Jeg fant hÃ¸ringsdokumentene hos -Norsk -ArkivrÃ¥d etter Ã¥ ha blitt tipset pÃ¥ epostlisten til -fri -programvareprosjektet Nikita Noark5-Core, som lager et Noark 5 -Tjenestegresesnitt. Jeg er involvert i Nikita-prosjektet og takket -vÃ¦re min interesse for tjenestegrensesnittsprosjektet har jeg lest en -god del Noark 5-relaterte dokumenter, og til min overraskelse oppdaget -at standard epost ikke er pÃ¥ listen over godkjente formater som kan -arkiveres. HÃ¸ringen med frist sÃ¸ndag er en glimrende mulighet til Ã¥ -forsÃ¸ke Ã¥ gjÃ¸re noe med det. Jeg holder pÃ¥ med -egen -hÃ¸ringsuttalelse, og lurer pÃ¥ om andre er interessert i Ã¥ stÃ¸tte -forslaget om Ã¥ tillate arkivering av epost som epost i arkivet.

- -

Er du igang med Ã¥ skrive egen hÃ¸ringsuttalelse allerede? I sÃ¥ fall -kan du jo vurdere Ã¥ ta med en formulering om epost-lagring. Jeg tror -ikke det trengs sÃ¥ mye. Her et kort forslag til tekst:

- -

- -
Viser til hÃ¸ring sendt ut 2017-02-17 (Riksarkivarens referanse - 2016/9840 HELHJO), og tillater oss Ã¥ sende inn noen innspill om - revisjon av Forskrift om utfyllende tekniske og arkivfaglige - bestemmelser om behandling av offentlige arkiver (Riksarkivarens - forskrift).
- -
SvÃ¦rt mye av vÃ¥r kommuikasjon foregÃ¥r i dag pÃ¥ e-post.Â Vi - foreslÃ¥r derfor at Internett-e-post, slik det er beskrevet i IETF - RFC 5322, - https://tools.ietf.org/html/rfc5322. bÃ¸r - inn som godkjent dokumentformat.Â Vi foreslÃ¥r at forskriftens - oversikt over godkjente dokumentformater ved innlevering i Â§ 5-16 - endres til Ã¥ ta med Internett-e-post.
- -

- -

Som del av arbeidet med tjenestegrensesnitt har vi testet hvordan -epost kan lagres i en Noark 5-struktur, og holder pÃ¥ Ã¥ skrive et -forslag om hvordan dette kan gjÃ¸res som vil bli sendt over til -arkivverket sÃ¥ snart det er ferdig. De som er interesserte kan -fÃ¸lge -fremdriften pÃ¥ web.

- -

Oppdatering 2017-04-28: I dag ble hÃ¸ringuttalelsen jeg skrev - sendt - inn av foreningen NUUG.

Working on updated Norwegian BokmÃ¥l edition of Debian Administrator's Handbook

4th July 2020

Three years ago, the first Norwegian BokmÃ¥l edition of +"The Debian Administrator's +Handbook" was published. This was based on Debian Jessie. Now a +new and updated version based on Buster is getting ready. Work on the +updated Norwegian BokmÃ¥l edition has been going on for a few months +now, and yesterday, we reached the first mile stone, with 100% of the +texts being translated. A lot of proof reading remains, of course, +but a major step towards a new edition has been taken.

+ +

The book is translated by volunteers, and we would love to get some +help with the proof reading. The translation uses +the +hosted Weblate service, and we welcome everyone to have a look and +submit improvements and suggestions. There is also a proof readers +PDF available on request, get in touch if you want to help out that +way.

+ +

As usual, if you use Bitcoin and want to show your support of my +activities, please send Bitcoin donations to my address +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.

- Tags: norsk, offentlig innsyn, standard. + Tags: debian, debian-handbook, english.

@@ -618,52 +786,73 @@ fremdriften pÃ¥ web.

Offentlig elektronisk postjournal blokkerer tilgang for utvalgte webklienter

20th April 2017

Jeg oppdaget i dag at nettstedet som -publiserer offentlige postjournaler fra statlige etater, OEP, har -begynt Ã¥ blokkerer enkelte typer webklienter fra Ã¥ fÃ¥ tilgang. Vet -ikke hvor mange det gjelder, men det gjelder i hvert fall libwww-perl -og curl. For Ã¥ teste selv, kjÃ¸r fÃ¸lgende:

- -

-% curl -v -s https://www.oep.no/pub/report.xhtml?reportId=3 2>&1 |grep '< HTTP'
-< HTTP/1.1 404 Not Found
-% curl -v -s --header 'User-Agent:Opera/12.0' https://www.oep.no/pub/report.xhtml?reportId=3 2>&1 |grep '< HTTP'
-< HTTP/1.1 200 OK
-%
-

- -

Her kan en se at tjenesten gir Â«404 Not FoundÂ» for curl i -standardoppsettet, mens den gir Â«200 OKÂ» hvis curl hevder Ã¥ vÃ¦re Opera -versjon 12.0. Offentlig elektronisk postjournal startet blokkeringen -2017-03-02.

- -

Blokkeringen vil gjÃ¸re det litt vanskeligere Ã¥ maskinelt hente -informasjon fra oep.no. Kan blokkeringen vÃ¦re gjort for Ã¥ hindre -automatisert innsamling av informasjon fra OEP, slik Pressens -Offentlighetsutvalg gjorde for Ã¥ dokumentere hvordan departementene -hindrer innsyn i -rapporten -Â«Slik hindrer departementer innsynÂ» som ble publiserte i januar -2017. Det virker usannsynlig, da det jo er trivielt Ã¥ bytte -User-Agent til noe nytt.

- -

Finnes det juridisk grunnlag for det offentlige Ã¥ diskriminere -webklienter slik det gjÃ¸res her? Der tilgang gis eller ikke alt etter -hva klienten sier at den heter? Da OEP eies av DIFI og driftes av -Basefarm, finnes det kanskje noen dokumenter sendt mellom disse to -aktÃ¸rene man kan be om innsyn i for Ã¥ forstÃ¥ hva som har skjedd. Men -postjournalen -til DIFI viser kun to dokumenter det siste Ã¥ret mellom DIFI og -Basefarm. -Mimes brÃ¸nn neste, -tenker jeg.

Secure Socket API - a simple and powerful approach for TLS support in software

6th June 2020

As a member of the Norwegian Unix +User Group, I have the pleasure of receiving the +USENIX magazine +;login: +several times a year. I rarely have time to read all the articles, +but try to at least skim through them all as there is a lot of nice +knowledge passed on there. I even carry the latest issue with me most +of the time to try to get through all the articles when I have a few +spare minutes.

+ +

The other day I came across a nice article titled +"The +Secure Socket API: TLS as an Operating System Service" with a +marvellous idea I hope can make it all the way into the POSIX standard. +The idea is as simple as it is powerful. By introducing a new +socket() option IPPROTO_TLS to use TLS, and a system wide service to +handle setting up TLS connections, one both make it trivial to add TLS +support to any program currently using the POSIX socket API, and gain +system wide control over certificates, TLS versions and encryption +systems used. Instead of doing this:

+ +

+int socket = socket(PF_INET, SOCK_STREAM, IPPROTO_TCP);
+

+ +

the program code would be doing this:

+ +

+int socket = socket(PF_INET, SOCK_STREAM, IPPROTO_TLS);
+

+ +

According to the ;login: article, converting a C program to use TLS +would normally modify only 5-10 lines in the code, which is amazing +when compared to using for example the OpenSSL API.

+ +

The project has set up the +https://securesocketapi.org/ +web site to spread the idea, and the code for a kernel module and the +associated system daemon is available from two github repositories: +ssa and +ssa-daemon. +Unfortunately there is no explicit license information with the code, +so its copyright status is unclear. A +request to solve +this about it has been unsolved since 2018-08-17.

+ +

I love the idea of extending socket() to gain TLS support, and +understand why it is an advantage to implement this as a kernel module +and system wide service daemon, but can not help to think that it +would be a lot easier to get projects to move to this way of setting +up TLS if it was done with a user space approach where programs +wanting to use this API approach could just link with a wrapper +library.

+ +

I recommend you check out this simple and powerful approach to more +secure network connections. :)

+ +

As usual, if you use Bitcoin and want to show your support of my +activities, please send Bitcoin donations to my address +15oWEoG9dUPovwmUL9KWAnYRtNJEkP1u1b.

- Tags: norsk, offentlig innsyn. + Tags: debian, english, sikkerhet, sysadmin.

@@ -678,6 +867,94 @@ tenker jeg.