Wildcarddnsd does passive AXFR now. I finally hammered the code into the
thing and debugged it over a period of 2 weeks. So what I've done is changed
goldflipper.net's name daemon to bind9 and it now AXFR queries the zones from
uranus.centroid.eu doing AXFR. The code of this isn't publically available
yet as I haven't committed it yet, but if everything goes well I'll look at
committing within the next 2 weeks.
Also there have been some core changes in wildcarddnsd, more on that later.
I've been approved holidays on the week that
EuroBSDCon is held in the
Netherlands. So I may just go there. I'll likely get the registration
out of the way the next week or so. It's been 11 years since I've last
been at a BSDCon, the last time was in Monterrey in California. It's a good
thing I got a bit of savings as it's going to cost a bit, but it's likely
Today Theo de Raadt, made the 5.0 song available. He also said pre-orders
activated. Shortly afterwards
OpenBSD Europe said they'd also offer
pre-orders a few hours later.
Now about the song. The theme is based on MAD Magazine. In my lifetime I
maybe bought 1 MAD magazine and I didn't like it. I didn't understand it
though because I was a german immigrant to north america and didn't know the
english language too well. But the song did surprise me, I would have never
guessed the direction it took this time, good job.
When it comes to data retention for law enforcement, where do you draw the line
between helping law enforcement and preventing a police state? I had a quick
thought about this and was thinking why don't service providers give their
data to the law enforcement in real-time with a twist. The data is encrypted
with a random key string and the key is then deleted. The police have to then
brute-force crack the encryption costing them resources (electricity, cpu
time). This discourages cracking too much because society's energy resources
are not endless and computers are expensive. As computers get more powerful
the crypto is adjusted to match more powerful algorithms. The police have a
turnaround of X amount of days or hours to break 1 record and society as a whole
is protected from the panopticon.
Wenn man mit Zugangsdaten umgeht und es der Polizei liefert, wo zieht man den
Strich zwischen helfen der Polizei und einen Polizeistaat zu vermeiden. Ich
hatte eine kleine Gedankenspause darueber und dachte das es mit den Providern
doch moeglich waere die Zugangsdaten in echt-zeit zu uebergeben. Aber mit
einer grossen Aenderung. Und zwar werden die Daten mit einem zufaelligem
Passwort verschluesselt und der Schluessel wird dann vernichtet. Die Polizei
muessen dann die Verschluesselung brechen was ihnen Zeit und Geld kostet
(Elektrisitaet und Computer Zeit). Dieses verfahren soll die Polizei entmutigen
alle Daten zu knacken da der Gesellschafts die Energie nicht endlos ist und
Computer kosten viel Geld (Grossrechner). Wenn Computer mehr Kraft bekommen
wird der Crypto auch angepasst so das es immer einige Zeit dauert bis eine
Datei (record) geknackt ist. Die Polizei hat einige Zeit von mehreren Stunden
oder Tagen, einen Record zu knacken und die Gesellschaft ist geschuetzt vor
PS: You can use all crypto algorithms available in order to strengthen the
entire scheme. If for example AES is broken mathematically but Twofish is
not then only those records encrypted with AES are vulnerable to being opened
on a mass scale. I have a book where there is at least 30 algorithms listed,
some weaker and some stronger, some broken and some good to go with, if all
of them are used then chances are good for a non-policestate.
I've researched when we should be getting hold of the song of OpenBSD 5.0.
Last year for OpenBSD 4.8 and the
year before for OpenBSD 4.6 the
release date was between September 8th and 11th. So sometime in the next
8 days we should get a new treat. I can hardly wait!
I've been subscribed to the Bradley Manning group on Facebook for a while
now. This particular photo intrigued me. It's fitting now that ALL the
wikileaks cables have been released.
This particular billboard is found in Kansas City, USA.
Free Bradley Manning!
I made a smallish script that produces an .xml file that the grandstream
phone can grok for its telephone book. I didn't want to store this on
my SIP providers interface because I don't want to reveal the numbers
that I have stored other than when I dial them.
GRANDSTREAM PHONEBOOK GENERATOR V 1.0
1. ENTER PHONE NUMBER
2. DISPLAY ALL PHONE NUMBERS
3. GENERATE PHONEBOOK
The script is too simple really. I could stick more effort into it but
then it wouldn't be my philosophy of being uber-lazy. Here is