Change of Plans

Post Syndicated from Lennart Poettering original http://0pointer.net/blog/projects/linuxtag2k10.html

The upcoming week I’ll do two talks at LinuxTag 2010 at the Berlin Fair Grounds. One of them was only
added to the schedule today, about
systemd
. Systemd has never been presented in a public talk before, so make
sure to attend this historic moment… ;-). Read about what has been written about systemd
so far
, so that you can ask the sharpest questions during my
presentation.

My second talk might be about stuff a little less reported in the press, but
still very interesting, about Surround Sound in Gnome.

See you at LinuxTag!

Стените

Post Syndicated from RealEnder original http://alex.stanev.org/blog/?p=244

Искам да ви разкажа една история.
Има една група хора, които познават живота. Познават механиката. Знаят как се случват нещата. Да се обадиш на онзи, да почерпиш другия, да бутнеш на третия. Обикновенно, те заемат позиция, от която зависи едно или друго по-голямо решение за живота на другите. Тъй като всички знаят “как стават работите”, всеки елемент от картинката изгражда стена около услугите си. Нарочно оставя задна вратичка, за да може все пак да се изпълни процеса, в който е критична точка. За съответната услуга има и съответното поощрение.
Какво става обаче, когато работещ по горната схема елемент, опита да получи полагаемите му услуги(като гражданин на НРБ?) от останалите крепости? Очевидно, налага му се да търси задните вратички. И не просто му се налага – той само тях познава. Не мисли, че всъщност някой може и да си върши работата, за която му плащат, без да иска нещо допълнително. Така малкото състояние(без значение под какво форма е то) се стопява много по-бързо, от колкото е натрупано и в един момент се излиза на минус. Особено, ако от теб зависят малко неща. Тогава само дължиш на “Заверата”, защото рядко ти се случва да й даваш.
Някои хора казват, че съм малък и не помня много неща, които всъщност си спомянм. Горното е системата на “Второ направление” – а иначе стоката, предназначена за външнотърговския(към и извън СИВ) пазар, продавана “под тезгяха” на вътрешния. На “приятели”. Които ще ти върнат услугата.
Зная колко е трудно да се дефинират, налагат и изпълняват определени бизнес-процеси, в организации, където Второто направление е Първата власт. Нещата не стават с удари по масата, не стават и с внимателни опити за цивилизоване и образоване. Всъщност, ако в опита си не попаднеш в примката на ВН, може да се отчита като умерен успех:)
Истината, поне за мен, е, че всеки, работещ по тези схеми трябва да страда. И то от несъвършенствата на схемата в която е попаднал. Всеки кадърен управленец, осъзнал проблема, може да създаде несъвършенства – понижаване на отговорностите, възлагане на други, промяна на процеса и какво ли още не.
Накрая остана да споменем и другите – тези, които нямат вътрешен човек в крепостта. В зависимост от звяра вътре, те или минават бързо и безропотно, преди да се е стоварила решетката връз главите им, или просто чакат да се вдигне моста. Много от тях мечтаят да бъдат част от системата. Други просто псуват, пушат, пият и правят други неморални и незаконни неща (не задължително в този ред).
А какво правиш ти?

O’Reilly Book Deal – Get Security and Other Ebooks Cheap Today

Post Syndicated from David original http://feedproxy.google.com/~r/DevilsAdvocateSecurity/~3/BvqjB0WoUq4/oreilly-book-deal-get-security-and.html

O’Reilly has a coupon available for today only that makes any one ebook in their store $10. If you’re like me and like to have an electronic edition handy, this is a great deal for books that are updated and searchable. Their security books can be found here. You’ll want to use coupon code “FAVFA”.

_uacct = “UA-1423386-1”;
urchinTracker();

O’Reilly Book Deal – Get Security and Other Ebooks Cheap Today

Post Syndicated from David original http://feedproxy.google.com/~r/DevilsAdvocateSecurity/~3/BvqjB0WoUq4/oreilly-book-deal-get-security-and.html

O’Reilly has a coupon available for today only that makes any one ebook in their store $10. If you’re like me and like to have an electronic edition handy, this is a great deal for books that are updated and searchable. Their security books can be found here. You’ll want to use coupon code “FAVFA”.

_uacct = “UA-1423386-1”;
urchinTracker();

Mango Lassi is Back

Post Syndicated from Lennart Poettering original http://0pointer.net/blog/projects/mango-lassi-is-back.html

Mango Lassi's Icon

Sven Herzberg has recently
been doing a lot of work on Mango Lassi, a
project deserving love but which I as its original author haven’t touched
in 3 years.

His work is already bearing fruits:

Mango Lassi

Distribution packagers, please go and package his version, Mango Lassi is an
awesome, wonderful tool that needs distributor love.

If you want to use Mango Lassi without waiting for the distribution packagers to catch up, Sven has built some packages for you in the OpenSUSE Build Service.

Sven, KUTGW!

Mango Lassi is Back

Post Syndicated from Lennart Poettering original http://0pointer.net/blog/projects/mango-lassi-is-back.html

Mango Lassi's Icon

Sven Herzberg has recently
been doing a lot of work on Mango Lassi, a
project deserving love but which I as its original author haven’t touched
in 3 years.

His work is already bearing fruits:

Mango Lassi

Distribution packagers, please go and package his version, Mango Lassi is an
awesome, wonderful tool that needs distributor love.

If you want to use Mango Lassi without waiting for the distribution packagers to catch up, Sven has built some packages for you in the OpenSUSE Build Service.

Sven, KUTGW!

Check Facebook Privacy Settings with ReclaimPrivacyRights.org’s Scanner Bookmarklet

Post Syndicated from David original http://feedproxy.google.com/~r/DevilsAdvocateSecurity/~3/KxCCUb5bO8E/check-facebook-privacy-settings-with.html

ReclaimPrivacyRights.org provides a simple bookmarklet that works simply by loading it when you visit your Privacy settings page on Facebook. Simple, neat, and it appears to be a neat way to get a basic checkup. Better, the source code is available for review.

_uacct = “UA-1423386-1”;
urchinTracker();

Check Facebook Privacy Settings with ReclaimPrivacyRights.org’s Scanner Bookmarklet

Post Syndicated from David original http://feedproxy.google.com/~r/DevilsAdvocateSecurity/~3/KxCCUb5bO8E/check-facebook-privacy-settings-with.html

ReclaimPrivacyRights.org provides a simple bookmarklet that works simply by loading it when you visit your Privacy settings page on Facebook. Simple, neat, and it appears to be a neat way to get a basic checkup. Better, the source code is available for review.

_uacct = “UA-1423386-1”;
urchinTracker();

Facebook Friend Suggestions – Not a Virus!

Post Syndicated from David original http://feedproxy.google.com/~r/DevilsAdvocateSecurity/~3/MFuDDtcWxqw/facebook-friend-suggestions-not-virus.html

Facebook status updates are quickly being populated with warnings that the suggest a friend notes that are appearing in users inboxes are virus driven. They’re not – in fact, Facebook has released a notice that AllFacebook.com posted stating”This is neither a bug nor a virus, and the “Virus Alert” status update is incorrect. Friend suggestions are now mutual and will appear for both users involved. That is, if I suggest that one person become friends with another, both the person I suggested and the person to whom I sent the suggestion will receive the notification.”The fact that the Facebook populace quickly communicates about a potential issue is good – the fact that false information is spreading quickly is not as good – but I’d rather my users avoid a fake virus than not avoid a real one.

_uacct = “UA-1423386-1”;
urchinTracker();

Facebook Friend Suggestions – Not a Virus!

Post Syndicated from David original http://feedproxy.google.com/~r/DevilsAdvocateSecurity/~3/MFuDDtcWxqw/facebook-friend-suggestions-not-virus.html

Facebook status updates are quickly being populated with warnings that the suggest a friend notes that are appearing in users inboxes are virus driven. They’re not – in fact, Facebook has released a notice that AllFacebook.com posted stating”This is neither a bug nor a virus, and the “Virus Alert” status update is incorrect. Friend suggestions are now mutual and will appear for both users involved. That is, if I suggest that one person become friends with another, both the person I suggested and the person to whom I sent the suggestion will receive the notification.”The fact that the Facebook populace quickly communicates about a potential issue is good – the fact that false information is spreading quickly is not as good – but I’d rather my users avoid a fake virus than not avoid a real one.

_uacct = “UA-1423386-1”;
urchinTracker();

Мултигами

Post Syndicated from babailiica_flickr original http://9ini.babailiica.com/%D0%BC%D1%83%D0%BB%D1%82%D0%B8%D0%B3%D0%B0%D0%BC%D0%B8/

Multigami

Multigami, originally uploaded by Ilia Goranov.

Една тематична закачка за любителите на оригамите. Идеята ми се върти в главата от много време, но все не намирах време да я реализирам… дори бях забравил. Подсетих се, след като с журито на на конкурса Webloz си направихме схватка “програмисти vs. дизайнери”, като нещата започнаха, след като разказах един виц за програмисти на Борил. По-късно в конкурса за дизайн спечели един сайт за оригами, а председател на журито за категория дизайн беше Борил.
Освен това, този пост ще е тест на връзката между Flickr и WordPress инсталацията на 9INI… ще видим какво ще излезе.

Name Your Threads

Post Syndicated from Lennart Poettering original http://0pointer.net/blog/projects/name-your-threads.html

Stefan Kost recently pointed me to the fact that the Linux system call
prctl(PR_SET_NAME) does not in fact change the process name, but the
task name (comm field) — in contrast to what the
man page
suggests.

That makes it very useful for naming threads, since you can read back the
name you set with PR_SET_NAME earlier from the /proc file system
(/proc/$PID/task/$TID/comm on newer kernels,
/proc/$PID/task/$TID/stat’s second field on older kernels), and hence
distuingish which thread might be responsible for the high CPU load or similar
problems.

So, now go, if you have a project which involves a lot of threads, name them
all individually, and make it easier to debug them. What’s missing now, of
course, is that gdb learns this and shows the comm name when doing info
threads.

I have changed PulseAudio now to name all threads it creates.

Of course, what would be even better than this is full file system extended
attribute support in procfs, so that we could attach arbitrary information to
processes and threads, including references to .desktop files and such.

Name Your Threads

Post Syndicated from Lennart Poettering original http://0pointer.net/blog/projects/name-your-threads.html

Stefan Kost recently pointed me to the fact that the Linux system call
prctl(PR_SET_NAME) does not in fact change the process name, but the
task name (comm field) — in contrast to what the
man page
suggests.

That makes it very useful for naming threads, since you can read back the
name you set with PR_SET_NAME earlier from the /proc file system
(/proc/$PID/task/$TID/comm on newer kernels,
/proc/$PID/task/$TID/stat‘s second field on older kernels), and hence
distuingish which thread might be responsible for the high CPU load or similar
problems.

So, now go, if you have a project which involves a lot of threads, name them
all individually, and make it easier to debug them. What’s missing now, of
course, is that gdb learns this and shows the comm name when doing info
threads
.

I have changed PulseAudio now to name all threads it creates.

Of course, what would be even better than this is full file system extended
attribute support in procfs, so that we could attach arbitrary information to
processes and threads, including references to .desktop files and such.

Experiments in Security: Magstripe Reading Using Rust Particles

Post Syndicated from David original http://feedproxy.google.com/~r/DevilsAdvocateSecurity/~3/d1-6WxthgU0/experiments-in-security-magstripe.html

Tetherdcow via BoingBoing has a great science experiment to try with magstripes on credit cards and other ID cards: using rust particles to read the magstripe. This looks like a great hands on and visible way to talk about how data is encoded when teaching students.

_uacct = “UA-1423386-1”;
urchinTracker();

Experiments in Security: Magstripe Reading Using Rust Particles

Post Syndicated from David original http://feedproxy.google.com/~r/DevilsAdvocateSecurity/~3/d1-6WxthgU0/experiments-in-security-magstripe.html

Tetherdcow via BoingBoing has a great science experiment to try with magstripes on credit cards and other ID cards: using rust particles to read the magstripe. This looks like a great hands on and visible way to talk about how data is encoded when teaching students.

_uacct = “UA-1423386-1”;
urchinTracker();

Beware of Proprietary Drift

Post Syndicated from Bradley M. Kuhn original http://ebb.org/bkuhn/blog/2010/05/08/proprietary-drift.html

The Free Software Foundation
(FSF) announced
yesterday
a campaign to collect
a clear
list of OpenOffice.Org extensions
that are
FaiF, to convince the OO.o
Community Council to list only FaiF extensions, and to find those
extensions that are proprietary software, so that OO.o extension
developers can focus of their efforts on writing replacements under a
software-freedom-respecting license.

I use OpenOffice.Org (OO.o) myself only when someone else sends me a
document in that format; I’m a LaTeX, DocBook, MarkDown, or HTML user for
documents I originate. Nevertheless, I’m obviously a rare sort of
software user, and I understand that OO.o is a program many people use.
Plus, a program like OO.o is extremely large, with a diverse user base, so
extension-style improvement, from a technological perspective, makes sense
to meet all the users’ requirements.

Unfortunately, the social impact of a program designed this way causes
danger for software freedom. It sometimes causes a chain of events that
I call “proprietary drift” — a social phenomena that
leads otherwise FaiF codebases to slowly become, in their default use,
mostly proprietary packages, at least with regard the features users
find most important and necessary.

Copyleft itself was originally designed to address this problem: to
make sure that improved versions of packages were available with as much
software freedom as the original. Copyleft isn’t a perfect solution to
reach this goal, and furthermore many essential software freedom
codebases are under weak copyleft and/or permissive licenses. Such is
the case with OO.o, and the proprietary drift of the codebase is thus of
great concern here.

For those of us that have the goal of building a world where software
freedom is given for all published and deployed software, this problem
of proprietary drift is a terrible threat. In many ways, it’s even a
worse threat than the marketing and production of fully proprietary
software. This may seem a bit counter-intuitive on its surface; logic
would seem to dictate that some software freedom is better than none,
and therefore an OO.o user with a few proprietary extensions installed
is better off than a Microsoft Word user. And, in fact, none of that is
false.

However, the situation introduces a complexity. In short, it can
inspire a “good enough” reaction among users. Particularly
for users who have generally used only proprietary software, the
experience of using a package that mostly respects software freedom can
be incredibly liberating. When 98% of your software is FaiF-licensed,
you sometimes don’t notice the 2% that isn’t. Over time, the 2% goes up
to 3%, then 4%. This proprietary drift will often lead back to a system
not that much different from (for example) Apple’s operating system,
which has a permissively-licensed software freedom core, but most of the
system is very much proprietary. In other words, in the long term,
proprietary drift leads to mostly proprietary systems.

Sometimes, I and other software freedom advocates are criticized for
giving such a hard time to those who are seemingly closest to our
positions. Often, this is because the threat of proprietary drift is so
great. Concern about proprietary drift is, at least in large part, the
inspiration for
positions opposing
UbuntuOne
, for
the Linux Libre
project
, and for
this this
new initiative to catalog the FaiF OO.o extensions and rewrite the
proprietary ones
. We all agree that purely proprietary software
programs like those from Apple, Microsoft, and Oracle are the greatest
threat to software freedom in the short term. But, in the long term,
proprietary drift has the potential to creep up on users who prefer
software freedom. You may never see it coming if you aren’t constantly
vigilant.

[There’s a derivative version of
this article
available in Arabic
. I can’t personally attest to the accuracy of
the translation, as I can’t read Arabic,
but osamak, the translator, is a
good guy.]

Disclaimer: While I am
a member of FSF’s
Board of Directors
, and I believe the positions stated above are
consistent with FSF’s positions, the opinions are not necessarily
those of the FSF even though I refer to various FSF-sponsored
initiatives. Furthermore, this remains my personal blog and the
opinions certainly do not express those of my
employer nor those of any other organization or project for which I
volunteer.

systemd In The News

Post Syndicated from Lennart Poettering original http://0pointer.net/blog/projects/systemd-in-the-news.html

#nocomments yes

A few news sites brought articles (some shorter, others longer) about last week’s blog story on systemd:

Linux Weekly News
The H Open
OSNews
Pro Linux (german)
Golem (german)
c’t (german)
Reddit #1, Reddit #2

Related to this, Scott’s cordial reply.

And this I find funny, make sure to vote for it… 😉

Many of the comments on those stories are quite interesting, though sometimes a little, uh…, misled… 😉

Generally the reception of the ideas seems to be very positive. And that’s certainly good news and encouraging.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close