Centroid.EU Blog

(this blog is mostly encrypted - adults only)

Previous Page

Wildcarddnsd and AXFR

September 17th, 2011

Wildcarddnsd does passive AXFR now. I finally hammered the code into the thing and debugged it over a period of 2 weeks. So what I've done is changed goldflipper.net's name daemon to bind9 and it now AXFR queries the zones from uranus.centroid.eu doing AXFR. The code of this isn't publically available yet as I haven't committed it yet, but if everything goes well I'll look at committing within the next 2 weeks.

Also there have been some core changes in wildcarddnsd, more on that later.


Possibly going to EuroBSDCon 2011

September 15th, 2011

I've been approved holidays on the week that EuroBSDCon is held in the Netherlands. So I may just go there. I'll likely get the registration out of the way the next week or so. It's been 11 years since I've last been at a BSDCon, the last time was in Monterrey in California. It's a good thing I got a bit of savings as it's going to cost a bit, but it's likely worth it.


OpenBSD 5.0 pre-orders announced & song

September 7th, 2011

Today Theo de Raadt, made the 5.0 song available. He also said pre-orders are now activated. Shortly afterwards OpenBSD Europe said they'd also offer pre-orders a few hours later.

Now about the song. The theme is based on MAD Magazine. In my lifetime I maybe bought 1 MAD magazine and I didn't like it. I didn't understand it though because I was a german immigrant to north america and didn't know the english language too well. But the song did surprise me, I would have never guessed the direction it took this time, good job.


Data Retention Law Ideas / Datenspeicherung Gesetz Ideen

September 3rd, 2011

When it comes to data retention for law enforcement, where do you draw the line between helping law enforcement and preventing a police state? I had a quick thought about this and was thinking why don't service providers give their data to the law enforcement in real-time with a twist. The data is encrypted with a random key string and the key is then deleted. The police have to then brute-force crack the encryption costing them resources (electricity, cpu time). This discourages cracking too much because society's energy resources are not endless and computers are expensive. As computers get more powerful the crypto is adjusted to match more powerful algorithms. The police have a turnaround of X amount of days or hours to break 1 record and society as a whole is protected from the panopticon.

Wenn man mit Zugangsdaten umgeht und es der Polizei liefert, wo zieht man den Strich zwischen helfen der Polizei und einen Polizeistaat zu vermeiden. Ich hatte eine kleine Gedankenspause darueber und dachte das es mit den Providern doch moeglich waere die Zugangsdaten in echt-zeit zu uebergeben. Aber mit einer grossen Aenderung. Und zwar werden die Daten mit einem zufaelligem Passwort verschluesselt und der Schluessel wird dann vernichtet. Die Polizei muessen dann die Verschluesselung brechen was ihnen Zeit und Geld kostet (Elektrisitaet und Computer Zeit). Dieses verfahren soll die Polizei entmutigen alle Daten zu knacken da der Gesellschafts die Energie nicht endlos ist und Computer kosten viel Geld (Grossrechner). Wenn Computer mehr Kraft bekommen wird der Crypto auch angepasst so das es immer einige Zeit dauert bis eine Datei (record) geknackt ist. Die Polizei hat einige Zeit von mehreren Stunden oder Tagen, einen Record zu knacken und die Gesellschaft ist geschuetzt vor dem Panoptikon.

PS: You can use all crypto algorithms available in order to strengthen the entire scheme. If for example AES is broken mathematically but Twofish is not then only those records encrypted with AES are vulnerable to being opened on a mass scale. I have a book where there is at least 30 algorithms listed, some weaker and some stronger, some broken and some good to go with, if all of them are used then chances are good for a non-policestate.


OpenBSD 5.0 song any day now...

September 3rd, 2011

I've researched when we should be getting hold of the song of OpenBSD 5.0. Last year for OpenBSD 4.8 and the year before for OpenBSD 4.6 the release date was between September 8th and 11th. So sometime in the next 8 days we should get a new treat. I can hardly wait!


Free Bradley Manning

September 3rd, 2011

I've been subscribed to the Bradley Manning group on Facebook for a while now. This particular photo intrigued me. It's fitting now that ALL the wikileaks cables have been released. This particular billboard is found in Kansas City, USA. Free Bradley Manning!


Growing a partition on OpenBSD under VMware Workstation 7.1

September 2nd, 2011

I ran out of space on my OpenBSD vm that I use for most everything. So I did the following:

  1. shut off vm
  2. under settings of vm, disk select utilities, expand
  3. grew my partition from 25 GB to 30 GB
  4. saved
  5. booted vm into single user mode
  6. used fdisk -e wd0 to grow the fdisk
  7. used disklabel -E wd0 to grow the last partition (/home)
  8. (yeah I was lucky /home was the last partition and it needed growing)
  9. used growfs /dev/wd0k
  10. fsck -y /dev/wd0k
  11. mount -a
  12. control-d to go into multiuser mode
  13. partition was grown 5 GB's
Hope this helps whomever.


More german translations / Mehr Uebersetzungen

August 21st, 2011

I have translated some more hackepedia articles to german over the last few weeks and want to give you an update. Direct your browser to: hackepedia german translations and see the following entries:

-rw-r--r-- 1 uranus shusers  9125 2011-08-10 21:25 index.html
-rw-r--r-- 1 uranus shusers   620 2011-08-11 17:49 ppid.html
-rw-r--r-- 1 uranus shusers   521 2011-08-11 17:51 pop.html
-rw-r--r-- 1 uranus shusers  3219 2011-08-11 18:13 permissions.html
-rw-r--r-- 1 uranus shusers   702 2011-08-11 18:18 pppoe.html
-rw-r--r-- 1 uranus shusers  1493 2011-08-12 17:12 pipe.html
-rw-r--r-- 1 uranus shusers  6951 2011-08-12 17:50 ppp.html
-rw-r--r-- 1 uranus shusers  5102 2011-08-12 21:28 traceroute.html
-rw-r--r-- 1 uranus shusers  2040 2011-08-15 20:26 newfs.html
-rw-r--r-- 1 uranus shusers  3535 2011-08-21 15:50 privilige-escalation.html

Hier sind ein paar mehr Uebersetzungen ins Deutsche. hackepedia in Deutschland.


Grandstream GXP-2100 Phonebook Generator

August 12th, 2011

I made a smallish script that produces an .xml file that the grandstream phone can grok for its telephone book. I didn't want to store this on my SIP providers interface because I don't want to reveal the numbers that I have stored other than when I dial them.


	4. EXIT
The script is too simple really. I could stick more effort into it but then it wouldn't be my philosophy of being uber-lazy. Here is the script.


1/6 of my traffic is IPv6 traffic

August 10th, 2011

$ printf "em0\ngif0\n" | while read i ; do netstat -nsbI $i|head -2 ; done
Name    Mtu   Network     Address               Ibytes     Obytes
em0     1500        00:90:0b:19:56:04 36803931395 6075787347
Name    Mtu   Network     Address               Ibytes     Obytes
gif0    1280                          5926981413  823262847
$ uptime
10:31PM  up 103 days,  1:47, 1 user, load averages: 0.50, 0.39, 0.36
The output reveals the Ipv4 and IPv6 interfaces on my home host uranus. gif0 is tunneled over em0 so the 6GB are part of em0's 36GB.


Next Page


RSS Feed

Click here for RSS

On this day in

Other links

Have feedback?

By clicking on the header of an article you will be served a cookie. If you do not agree to this do not click on the header. Thanks!

Using a text-based webbrowser?

... such as lynx? Welcome back it's working again for the time being.

Older Blog Entries

Powered by BCHS