All articles

  1. automatically have uscan check signatures

    If you maintain software in debian, one of your regular maintenance tasks is checking for new upstream versions, reviewing them, and preparing them for debian if appropriate. One of those steps is often to verify the cryptographic signature on the upstream source archive.

    At the moment, most maintainers do the …

  2. getting to TLS (STARTTLS HOWTO)

    Many protocols today allow you to upgrade to TLS from within a cleartext version of the protocol. This often falls under the rubric of "STARTTLS", though different protocols have different ways of doing it.

    I often forget the exact steps, and when i'm debugging a TLS connection (e.g. with …

  3. RIP Cookiepuss

    Yesterday, i said a sad goodbye to an old friend at ABC No Rio. Cookiepuss was a steadfast companion in my volunteer shifts at the No Rio computer center, a cranky yet gregarious presence. I met her soon after moving to New York, and have hung out with her nearly …

  4. half a minute for science!

    A friend is teaching a class on data analysis. She is building a simple and rough data set for the class to examine, and to spur discussion. You can contribute in half a minute! Here's how:

    1. get a stopwatch or other sort of timer (whatever device you're reading this on …
  5. gpg --ask-cert-level considered harmful

    Occasionally, someone asks me whether we should encourage use of the --ask-cert-level option when certifying OpenPGP keys with gpg. I see no good reason to use this option, and i think we should discourage people from trying to use it. I don't think there is a satisfactory answer to the …

« Page 3 / 13 »