|
They discovered a "Man In The Middle" attack again TLS (or the older SSL): during renegotiation one can insert data into the stream. See this excellent article for an example.
The good part is that this requires that you can intercept the traffic between you and the server. The bad news is that this is relatively easy to do in many environments (public wifi, PC's on a hub/cheap switch etc). The major bad news is that this is not an implementation bug but an error in the specification, so expect everybody who uses SSL/TLS to be vulnerable and to update their products...
Interesting times indeed.Current Mood:  bouncy |
|
today we should have gotten our freezer to stand next to our fridge, but while the guys were bringing it in they bumped against the door handle, denting it. They were so shocked that they then dropped it.
Needless to say there are going to bring another one. |
|
Hi all,
In case someone is reading this I've got some DW invite codes to share... first come first served... |
|
The weekend before last we went (sans child) to London.
( Read more... )
All in all nice. However if the whole idea was to go without $CHILD, why did we miss him constantly?
|
| » what I did this weekend |
|---|
This weekend I finally did what I've been planning to do for some time and wrote a iPhoto exporter. See the alioth project oipe or "Offline iPhoto Exporter".
At home I backup my iMac to the debian server, but the iPhoto folder was just a mess and ![[info]](http://l-stat.livejournal.com/img/userinfo.gif) zoutke complained she could never find anything.
This is because the iPhoto folder itself is just a dump of your 'rolls' when you imported the picture. When you cleanup and classify nothing happens to the real data (which is good). So I needed something to take an iPhoto folder and turn it into something that other people can use...
The exporter is written for sbcl for now and use cl-sqlite to extract the folder structure of iPhoto and the pictures in those folders to generate both a link-farm with hard links to those images and a (really bad) set of webpages showing the thumbnails and linking to those pictures.
The advantages are that it is really fast (less then a minute for > 7000 pictures) and doesn't take up much more space.
Future plans include nicer web-pages, also having a 'Faces' and 'Location' hierarchy and adding the tags back to the pictures.
Sep. 15th, 2009 @ 05:29 am
|
| » clbuild considered not harmfull at all |
|---|
Actually clbuild seems to do the right thing almost all the time.
I've been trying it as a workaround to suggest to users after I remove most of the Common Lisp libraries from Debian. Honestly it is pretty good: you download it, you ask it to install libraries an it will download them from their git/cvs/darcs/whatever repositories. You can ask it to upgrade the libraries or to compile and start slime with the libraries 'known' to asdf.
All in all quite good, even if there is a conflict between the slime in clbuild and the slime from the Debian package.
I think I can suggest this to Debian users without reservations...
Now: why didn't I see more of this on planet.lisp ?
Aug. 25th, 2009 @ 08:36 am
|
| » oh what did I do to myself... |
|---|
I sort of installed Civ on my ipod touch.
Just 'checking if it worked' costed me 2 hours... so when I go and do something 'quick' and don't come back for hours don't worry too much ;-)
Aug. 20th, 2009 @ 05:34 am
|
| » what is some time between friends? |
|---|
Yesterday we went to visit Xanten. This was the last 'home' we had in Germany before we moved back to that alien homeland of Belgium.
Of course 20+ years is quite a bit of time, so most sites that I knew changed a lot. However we did find my school, CMC/MHK (Militaire Hoofd Kantine, aka 'the supermarket') and most of the apartments where my friends used to live. Our house however changed a lot so I'm not certain which of two candidates it is. I took pictures and will need to compare to archive data.
The archaeological park is now much bigger and better, of course to Italians who are used to live next to Roman ruins the reconstruction is a little 'artificial' and a lot of museum for only a little of artefacts. But it is very nicely done and we enjoyed it.
I'm left wondering if it would make sense to have a trip also visiting Kempen, Erle, Grevenbroigh and Bensberg...
Aug. 17th, 2009 @ 07:12 am
|
| » pan pan pan |
|---|
After some consideration I must conclude that the state of the Common Lisp packages in Debian is becoming unreasonable. One of the goals of forming the pkg-common-lisp team was that I would not be a bottleneck, as RL is inflicting more and more damage to my 'Debian playtime'.
Now that Luca left I'm basically the only 'active' (for very small values of active) DD/DM left. (no hard feeling towards anybody, just loads of thanks for the work they did)
I see two alternatives:
- other people get involved, investigating bugs and sending git/darcs/whatever format patches.
- we go low impact and remove common-lisp-controller and all Common Lisp libraries, and I/we only package the lisp implementations (clisp, ecl, sbcl, cmucl and perhaps ccl) without any special changes
I don't expect the first alternative to be realistic, so unless proven wrong I'll RFA/RM all the libraries/clc on the 5th of September.
Aug. 12th, 2009 @ 05:52 pm
|
| » status update |
|---|
A short summary:
- trip there: uneventful with stopovers in Houffalize and Altstad in .ch.
- caravan: Monday morning model with non-functional power system, unclosable door, panels that were falling off and a front wheel that keeps dropping down when driving rendering the whole system dangerously unstable.
- camping: (jesolo international) great!
- weather: okish, a bit of rain now and again but hot enough to enjoy the sea and pool
- health: nearly broken tow from playing too much in aqualandia, some insect bites
- plans: visit Venice again, make more pictures.
Future plans:
- don't rent from http://www.caravans-deblock.be/ again
Jul. 6th, 2009 @ 06:56 pm
|
| » Speedtest meme |
|---|
ok I cheated and did this at work... sue me.
Jun. 10th, 2009 @ 04:18 pm
|
| » 'sitting' |
|---|
So yesterday I had to 'sit' at the elections. In the end I was the 'second guy' who double checks if you are on the voters lists, marks you and gives you the voting card.
In our district we vote electronically. We have a bunch of ancient PC's with light-pens and you insert the card, select the person you want to vote, confirm and then you get the card back. Then you leave the booth and insert the card into the urn.
Which then checks if you indeed voted (voting is compulsory, if you don't want to you have to select 'blanco') and that the card is readable.
Most of of other people were more or less willing to do the job so we had fun and interesting discussions. At one point the head mentioned that the paper trail (voting list, double entry of presence, stamping of cards etc) would be better done electronically. I obviously protested and was joined by a guy who does safety coordinator at the railroads. We both agreed that a copious amount of paper is the only good way forward unless you have serious equipment (multiple WORM installations, the whole HIPA/FDI dance).
The most popular votes was the owner of the local ice cream saloon who brought ice for everyone, thanks 'Glacé Joseph'!
All in all a nice time, and later on I was very happy to learn that most of the ~ 800 people I gave to cards did not vote for the censored VB anymore.
Jun. 8th, 2009 @ 07:22 am
|
| » Common Lisp has no libraries: ha! |
|---|
In the last few weeks I needed to write a short utility at $WORK. I decided to use my trusted Common Lisp. Turned out that my old utility still would be ok, but 'upstream' had changed from CSV files to 'json' files.
A short google query, downloading the two libraries that exists to parse these files and within a few minutes I could read and parse the new fileformat.
Don't tell me CL doesn't have libraries...
ObDebian: yes I still need to update cl-irc and package said jason library... it's somewhere in my long todo list.
May. 26th, 2009 @ 06:48 am
|
| » weekend in Paris |
|---|
( Read more... )
Todo: unpack and cleanup all the stuff still.
May. 26th, 2009 @ 06:45 am
|
| » Star Trek rebooted (no spoilers) |
|---|
Yesterday I went to see Star Trek and I must say I really enjoyed it. It was funny, exciting and very much in the spirit of TOS, minus the 60's atmosphere. One of the best movies I've seen so far.
May. 20th, 2009 @ 05:27 am
|
| » a nice surpise |
|---|
We were looking at Disney Land Paris for a day trip. However as our son has severe food allergies we were shocked to find that you cannot bring food into DLP.
Until zoutke by good fortune found food allergy information for Disney Land Paris (Dutch only I fear).
In short they do cater for allergic people, so instead of going a day we'll probably go for 2 days and stay in a hotel. The opportunity to actually eat in a restaurant with $CHILD is too attractive...
May. 15th, 2009 @ 07:42 am
|
| » Physics Joke |
|---|
From a friend who is now a professor:
A student has to give a talk about the general relativity theory. (In English)
He starts the talk with "I'm going to discuss Genital Relativity", instant reaction from the smart girlfriend in the audience: "yeah honey, blame it on Lorentz contraction".
Strangely enough none of my non-physics friends seem to get the joke, from nwhyte I expect he also gets it :-)
Apr. 23rd, 2009 @ 05:37 am
|
| » another first |
|---|
Yesterday I was reading The rise & fall of the prefrontal lobotom when I started to feel a bit nauseous. So I turned to watch a little of the TV that was on to distract me.
The next thing I remember was feeling very nauseous and zoutke asking what happened. In short I fainted. You can see when you SO studied first aid when she starts asking questions like "is blood coming out of your ears" or "were you sitting on the chair or standing on it".
Oh well, the bad influence of the internet again...
[edited to fix markup]
Apr. 5th, 2009 @ 02:32 pm
|
| » @ fosdem but also not really |
|---|
This year I managed to go to fosdem every day, even at the beer event. Not that I attended many talks: I was quite busy getting the network to work. We got wireless in almost all locations in the end. Setting up and fixing the problems took most of Saturday. On Sunday we added the final 'experimental' room via a wireless bridge link across the square, with the beam over the heads of the people in the queue for Belgian fries.
In the end it all worked and we had only a few configuration and many cable problems. I must say it was more for to 'work' at fosdem then to just be there. May thanks to Jerome Paquay who actually arranged to lend the equipment from our employer (Cisco) and to configure it. Thanks for AY for ... well being AY.
Next year n-mode? serious uplinks?
Feb. 8th, 2009 @ 03:05 pm
|
|
