dkg's blog

Articles in the misc category

1. Wanted: Empowered, Active, Activist Users

   The other, better-known and wiser Dan Gillmor (disclosure: we don't just share names, we're related) has started a new project called Mediactive. His older project, We the Media was about the power and coming growth of grassroots journalism. The new project focuses on media "consumers", instead of media "producers". Economic …

2. Canon camera lens faiure (E18) -- resolved!

   I have a little old Canon SD200 point-and-shoot, which is a decent camera. unfortunately, i've (ab)used it quite a bit, lugging it everywhere in my pocket or in a bag and even sending it up in a kite (and, uh, bouncing it off the ground on the way back …

3. keeping ssh host keys up-to-date with monkeysphere

   Enrico posted a neat trick to track the SSH host keys of debian machines, thanks to Zobel. I wanted to mention monkeysphere, a project i'm involved with which provides a more generalized structure for doing this kind of update by taking advantage of the OpenPGP Web of Trust to distribute …

4. HOWTO prep for migration off of SHA-1 in OpenPGP

   Last week at eurocrypt, a small group of researchers announced a fairly serious attack against the SHA-1 digest algorithm, which is used in many cryptosystems, including OpenPGP. The general consensus is that we should be “moving in an orderly fashion toward the theater exits,” deprecating SHA-1 where possible with an …

5. NYC public services require Microsoft software

   Providing city services only to users of specific proprietary software is bad public policy.

   I just discovered that New York City's 2009 Summer Youth Employment Program requires Internet Explorer in order to apply online.

   Even downloading the pdf version of the application to print out from the site is impossible …

6. multiple USB serial adapters on a SheevaPlug

   I just noticed Matthew Palmer's Insane/Brilliant idea of the day: he proposes to use large sets of USB serial adapters with a sheevaplug as a cheap serial console server.

   As part of upstream on cereal, i feel obliged to mention that package as a tool for managing serial console …

7. Leslie Pack Kaelbling for Ada Lovelace Day

   So i'm a couple hours late for Ada Lovelace Day (in my time zone at least), but i wanted to mention Leslie Pack Kaelbling, an excellent technologist who has also had a significant impact on my life.

   Her extremely short biography says (in full):

   Leslie Pack Kaelbling is Professor of …

8. Publicly-funded knowledge should be public

   I live in the USA. Our government issues many grants to scientists for research via the National Institute of Health. I recently found out about the NIH's recent requirement that publicly-funded research must be published freely online within 12 months. As you can imagine, i think this is a remarkably …

9. redundant DHCP service for a sprawling LAN?

   I'm supporting a medium-sized (\~70 regular clients and a half-dozen servers) LAN. It's a single logical ethernet segment, but it's built as a tree of cascaded switches. DHCP service is provided by a single host running ISC's DHCPD (via dhcp3-server).

   DHCP itself is one of the single points of failure …

10. Stricter GnuTLS rejects outmoded X.509 certs

    Recently, several people noticed that GnuTLS behavior did not match its documentation with respect to two significant security concerns, both regarding X.509 certificate validation:

    • Certificates with MD5 digests were considered acceptable for validation. They should not be, because of known weaknesses in that digest algorithm.
    • Version 1 X.509 …

« Page 9 / 14 »