dkg's blog

All articles

1. Protecting Software Updates

   In my work at the ACLU, we fight for civil rights and civil liberties. This includes the ability to communicate privately, free from surveillance or censorship, and to control your own information. These are principles that I think most free software developers would agree with. In that vein, we just …

2. E-mail Cryptography

   Analysis of usability and mechanics of cryptographic protection in e-mail

3. Changes for GnuPG in Debian

   The GNU Privacy Guard (GnuPG) upstream team maintains three branches of development: 1.4 ("classic"), 2.0 ("stable"), and 2.1 ("modern").

   They differ in various ways: software architecture, supported algorithms, network transport mechanisms, protocol versions, development activity, co-installability, etc.

   Debian currently ships two versions of GnuPG in every maintained …

4. Challenge: one reproducible package a week

   I encourage anyone interested in debian development to get involved with the Reproducible Builds project. My own project is to try to diagnose (and hopefully provide patches for) two unreproducible packages a week. Maybe you can do one package a week?

   Reproducible Builds is another example of the kind of …

5. Cheers to audacity!

   When paultag recently announced a project to try to move debian infrastructure to python3, my first thought was how large that undertaking would likely be. It seems like a classic engineering task, full of work and nit-picky details to get right, useful/necessary in the long-term, painful in the short-term …

6. Preferred Packaging Practices

   I just took a few minutes to write up my preferred Debian packaging practices.

   The basic gist is that i like to use git-buildpackage (gbp) with the upstream source included in the repo, both as tarballs (with pristine-tar branches) and including upstream's native VCS history (Joey's arguments about syncing with …

7. Bootable grub USB stick (EFI and BIOS for Intel)

   I'm using grub version 2.02\~beta2-2.

   I want to make a USB stick that's capable of booting Intel architecture EFI machines, both 64-bit (x86_64) and 32-bit (ia32). I'm starting from a USB stick which is attached to a running debian system as /dev/sdX. I have nothing that i …

8. a10n for l10n

   The abbreviated title above means "Appreciation for Localization" :)

   I wanted to say a word of thanks for the awesome work done by debian localization teams. I speak English, and my other language skills are weak. I'm lucky: most software I use is written by default in a language that I …

9. GnuPG 2.1.0 in debian experimental

   Today, i uploaded GnuPG 2.1.0 into debian's experimental suite. It's built for amd64 and i386 and powerpc already. You can monitor its progress on the buildds to see when it's available for your architecture.

   Changes

   GnuPG 2.1 offers many new and interesting features, but one of the …

10. OTR key replacement (heartbleed)

    I'm replacing my OTR key for XMPP because of heartbleed (see below).

    If the plain ASCII text below is mangled beyond verification, you can retrieve a copy of it from my web site that should be able to be verified.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512OTR Key Replacement for XMPP dkg …

« Page 2 / 13 »