Mon 14 June 2021
Fri 11 September 2020
What's running on the firewall? A big list follows, with discussion.
- ACPId - reports on thermal performance
- atd - executes delayed jobs via at
- cron - executes repeating jobs, like the local backup, the remote backup, and the automated package updater.
- dbus-daemon - nearly useless, but Linux more or less requires it
- ddclient - dynamic …
Thu 12 March 2020
Who do you trust? And do you trust them indefinitely far into the future?
If you have specific reasons to believe you will be targetted by an interested, competent, resourceful attacker: you need serious information security measures, which will be painful and potentially expensive in both time and money. I …
Wed 15 May 2019
It seems increasingly unwise to allow an Intel-made CPU to talk to the outside world. But the NUC-style machines are almost exclusively Intel. What should we do for a new firewall?
You'll recall that I prefer firewalls to run Debian Stable, so that security updates are available promptly. While there …
Mon 22 October 2018
Sat 20 October 2018
Fri 21 September 2018
One problem: we have built an immense network of supercomputers that is essentially a Commons. An abuse of this Commons that would be ridiculously unprofitable if it had to be carried out by humans -- say, an expected return of one one-hundredth cent per attempt -- is highly attractive to unscrupulous actors …
Sun 12 November 2017
Wireguard is a new open source VPN system being initially developed on Linux. I have two major use cases for such a thing: site-to-site protection, and backhauling traffic from a laptop or phone to my house.
Small codebase, because there are very few options. For example, there is …
Sun 11 June 2017
Mon 15 May 2017
Tue 28 February 2017
Sun 22 January 2017
Fri 13 January 2017
Wed 30 November 2016
Nintendo's 3DS pocket-sized game system includes "Streetpass", a method of sharing your high scores, Mii avatars and other game information with random strangers who also have 3DS systems. That includes the levels designed by Super Mario Maker, which are a few megabytes apiece.
The swap happens anonymously and automatically whenever …
Tue 22 November 2016
People just don't take security seriously, because security is hard to understand and hard to implement and hard to maintain. We need a new way of "doing" security, and I've got an idea. Let's go back to the notion of skeuomorphism: we use pictorial representations of real-world objects to represent …