social.gl-como.it

Comunità


Millions of high-security crypto keys crippled by newly discovered flaw

Factorization weakness lets attackers impersonate key holders and decrypt their data.
This includes ID cards, TPM and OpenPGP keys generated on a some card-like devices (e.g. yubikey) (as opposed to those generated on a computer, that are safe).
 

KRACK Attacks: Breaking WPA2

This website presents the Key Reinstallation Attack (KRACK). It breaks the WPA2 protocol by forcing nonce reuse in encryption algorithms used by Wi-Fi.
 

Navigation, ancients-style

The GPS on my firefoxOS phone has been acting up lately: it has never been exceptionally good, but the last couple of times I've tried to use it it gave errors of more than 1km.

Saturday evening we were in a place with internet (and laptops) and had to go to a new-to-us restaurants, so I asked for routing from OSMR, took notes on paper and this is what I gave to my navigator/co-driver:

Immagine/foto

Unbelievably we managed to get there in time, without missing even one of the turns, even if he wasn't able to decipher my writing on some of the street names.

Italian readers may also appreciate the maturity of some of the labelling, if they are able to decipher the writing.

Also, in case we decide to go back to that restaurant with the LUG, I guess I can just point them to this post and of course they will be able to get there, right? :D

One day I will have a GPS-enabled device that is not designed to steal my data first and be useful to me as an afterthought. And one that works.
 

Optimal Mouse by JohnSu on DeviantArt



https://www.deviantart.com/art/Optimal-Mouse-76752085

Optimal Mouse

Well, seeing as this new Chinese year is my year, I suppose I should at least do something mouse related. I admit I was also tempted to have a mouse with blue teeth and a laser gun running through ...
 

Campingpunk

Immagine/foto

Today a friend of mine (meow if you want to be identified¹) mentioned that it would be nice to have a name like campingpunk for a look with less brass than steampunk and more anodized aluminum and paracord. Also a bit like crazy survivalists with less camo and more colors.

I like the idea.

¹ no, that doesn't uniquely identify them: I tend to have many friends with feline tendencies.
 

Come gli utenti leggono le pagine web...

.. un po' te lo aspetti, ma e' comunque una lettura interessante:

https://www.nngroup.com/articles/how-users-read-on-the-web/

How Users Read on the Web

Users don't read Web pages, they scan. Highlighting and concise writing improved measured usability 47-58%. Marketese imposed a cognitive burden on users and was disliked.
 
Tonight I dreamt of an old man, dressed in grey with a wide felt hat, who was tending a small vegetable garden like the ones typically kept by retired men.
He was using a tool that changed shape according to what he needed in that moment, but at every change it blinked a bit as if it wanted to return to its native shape of a spear.

Now I'm a bit worried for humanity's sake. :)

P.S. even more worryingly his usual associate wasn't around to be seen.
 

[Lugbz-list] Open & Closed Source nelle scuole della provincia di Bolzano

È online sul sito del Consiglio Provinciale la risposta
all'interrogazione n. 2924/17 Open source nelle scuole della Provincia di
Bolzano. Destinatario principale è l'intendenza scolastica tedesca,
destinatari secondari l'intendenza italiana e ladina alle quali era
richiesto di rispondere alle domande 5, 6, 10, 12.
 

Anatomy of a moral panic

The piece claims that “users searching for a common chemical compound used in food production are offered the ingredients to produce explosive black powder” on Amazon’s website, and that “steel ball bearings often used as shrapnel” are also promoted on the page, in some cases as items that other customers also bought. The ‘common chemic...
 

meta search engine

Un piccolo passo per non dare a google tutti i tuoi dati... Conto di installarmi una mia istanza prossimamente.

https://asciimoo.github.io/searx/

Welcome to searx — searx 0.12.0 documentation

Searx is a free internet metasearch engine which aggregates results from more than 70 search services. Users are neither tracked nor profiled. Additionally, searx can be used over Tor for online anonymity. Get started with searx by using one of the public instances. If you don’t trust anyone, you can set up your own, see Installation....
 
I find another fine webcomic ...

http://www.meekcomic.com/

The Meek | An epic adventure webcomic

A webcomic about a young girl who goes on an epic adventure to decide the fate of mankind. She is also mostly naked. Updates weekly!
 

Public Money, Public Code

Public Money, Public Code - A campaign for releasing publicly financed software as Free Software

PIFT

Probably inaccurate feature comparison table
A comparison of the capabilities of some of the most used #XMPP clients

@Gruppo Linux Como
 

PIFT

Probably inaccurate feature comparison table
A comparison of the capabilities of some of the most used #XMPP clients

@Gruppo Linux Como
 

This is VENETO!

While having breakfast near Venice one of our group of friends noticed that the ingredients in the chocolate filling of his croissant included ethyl alcohol.

Immagine/foto

This isn't that strange, as it is commonly used as a preservative in such creams, although there is a bit of contrast with the labeling "prepared: with non-OGM ingredients without added preservatives nor colorings without hydrogenated oils".

Immagine/foto

A bit more unexpected was the fact that also the jam croissant included alcohol, as usually jams spoil less than chocolate creams.

Immagine/foto

Evidently there is one explanation that is simple, self-coherent, fun and unlikely: Venetian people being Venetian, and needing their bit of alcohol in the morning!

(In the picture above I've removed the name and address of the producer because this post is just me being silly, but I've left the province: TV)
 

Quando sbatti il kranio su una cosa....

Andfrnd Uploader Beta

URI: content://media/external/images/media/178582
File name: /storage/emulated/0/DCIM/Camera/1312-47aa93a809f1623ab92361323bfdfa5adf10ed3e-128.gif

Immagine/foto
 
FSFE announces Software Licensing Best Practices #fellowship - http://fsfe.org/news/2017/news-20170906-01.html #news # fsfe

FSFE announces Software Licensing Best Practices

The FSFE launches today its best practises in licensing for Free and Open Source Software project. Targeted at developers and companies, these best practices show you how to make it clear to others wh...
 

Python FAQ: Why should I use Python 3?

Part of my Python FAQ, which is doomed to never be finished. The short answer is: because it’s the actively-developed version of the language, and you should use it for the same reason you’d use 2.7 instead of 2.6. If you’re here, I’m guessing that’s not enough. You need something to sweeten the deal. Well, friend, I have got a whole mess of sugar cubes just for you. And once you’re convinced, you may enjoy the companion article, how to port to Python 3! It also has some more details on the diffences between Python 2 and 3, whereas this article doesn’t focus too much on the features removed in Python 3.
 

End Summer Camp

if year % 2 == 1:
rain()
lots_of_rain()



ma vuoi che un branco di hackers non sappia arrangiare una soluzione?

Immagine/foto
 

improved slatts belt

In one of the comments (near the bottom) on http://tacticalintelligence.net/blog/slatts-rescue-belt.htm there was a suggestion to alternate the direction of the loops to prevent the paracord from twisting badly.

This is the process and the result:
Immagine/foto

(making a full belt with 20m of paracord took about a day of picking it up, doing a couple of rows while in front of the computer and putting it down again)
 

Instant gratification

In the last few days I spent my sewing time on a complex project that — of course — was having issues, so today I decided to take a break and go for instant gratification and a couple of quick project.

Immagine/foto

A ticket bag with magnets closure, to be worn on the same lanyard as a badge to prevent the issue of people being called "on site meals" .

This involved sewing tiny (~2mm ⌀) magnets on slipperynesssilicone coated fabric, because instant gratification is one thing, but making it too easy wouldn't be masochistic enough.

Immagine/foto

A simple drawstring backpack. I'm not completely happy about the ends of the drawstring channels, so when I make another one I may change them a bit.

Both are made in cheap, relatively light (90g/sqm) silnylon, and thus at least water resistant (I didn't seal the seams to make them completely waterproof).

I took pictures and notes, so full instructions will be posted on my website... sometime...
 

Bits from Debian - Work on Debian for mobile devices continues

Work on Debian for mobile devices, i.e. telephones, tablets, and handheld computers, continues. During the recent DebConf17 in Montréal, Canada, more than 50 people had a meeting to reconsider opportunities and challenges for Debian on mobile devices.
 

Debian Day in Varese

Immagine/foto

The decorations *may* have been changed a bit from the way they originally came from the restaurant kitchen... :D

#debian @Gruppo Linux Como @LIFO
 

Debian Day in Varese

Immagine/foto

The decorations *may* have been changed a bit from the way they originally came from the restaurant kitchen... :D

#debian @Gruppo Linux Como @LIFO
 

Debian Day in Varese

Immagine/foto

The decorations *may* have been changed a bit from the way they originally came from the restaurant kitchen... :D

#debian @Gruppo Linux Como @LIFO
 

Incazzatura di una notte di mezza estate

Andfrnd Uploader Beta

URI: content://media/external/images/media/178582
File name: /storage/emulated/0/DCIM/Camera/1312-47aa93a809f1623ab92361323bfdfa5adf10ed3e-128.gif

Immagine/foto
 

Qt 4 removal in Debian testing (Buster)/unstable

So, if you depend on FLOSS which is still based on Qt 4 be sure to try to port it. If you depend on a proprietary vendor software which uses Qt 4 then you better start telling them it's really time to update it. Really.
 

20170812-reproducible-policy

So today is the last (official) day of DebConf17 and it looks like #844431: "packages should build reproducibly" will be merged into debian-policy today! So I'm super excited, super happy, quite tired and a bit sad (DebConf is ending…) right now!
 

metti che per caso sei a Brescia il 5 settembre...

http://brescia.unicatt.it/eventi/evt-il-software-libero-all-universita-nella-comunita-e-nella-vita-pubblica-esperienze-internazionali

Il software libero all'università, nella comunità e nella vita pubblica: esperienze internazionali | Università Cattolica del Sacro Cuore

Seminario  5 settembre 2017 Aula: Sala Riunioni -  Ore: 11.30 Via Musei 41, BresciaIntroduce: Prof. Maurizio Paolini Università Cattolica del Sacro Cuore Interviene:MARIANNE CORVELLEC, PhD April, Francia (april.org) Centre de recherche informatique de Montréal, Canada (crim.ca) Locandina (349,88 KB) Condividi:...
 

Bits from Debian - Blog from the Debian Project

Today, Saturday 12 August 2017, the annual Debian Developers and Contributors Conference came to a close. With over 405 people attending from all over the world, and 169 events including 89 talks, 61 discussion sessions or BoFs, 6 workshops and 13 other activities, DebConf17 has been hailed as a success.
All of the videos except for one have already been published, so if you weren't there nor watching the streamings you can now download and watch them...

and why not contribute to the subtitling effort (not yet set up, but do come on #debconf-video@OFTC and let the team know that you are interested in contributing).
 
Uh, I've just realized I forgot to post this

PDP-8/e Replicated — Introduction

I am creating a replica of the DEC PDP-8/e architecture in an FPGA from schematics of the original hardware. So how did I end up with a project like this?
The story begins with me wanting to have a computer with one of those front panels that have many, many lights where you can really see, in real time, what the computer is doing while it is executing code. Not because I am nostalgic for a prior experience with any of those — I was born a bit too late for that and my first computer as a kid was a Commodore 64.
And then there is a follow up post: https://activelow.net/post/pdp8e-replicated-overview/

@LIFO @Gruppo Linux Como #retrocomputing
 

im-tomu.github.io by im-tomu

I’m Tomu, a tiny ARM microprocessor which fits in your USB port. I have two buttons and two LEDs! I’m fully open source, have a BOM of ~$10 (in individual quantities) and am constructable by hobbyists! Designed for 2-factor authentication or anything else you can think of.
@Gruppo Linux Como
 

im-tomu.github.io by im-tomu

I’m Tomu, a tiny ARM microprocessor which fits in your USB port. I have two buttons and two LEDs! I’m fully open source, have a BOM of ~$10 (in individual quantities) and am constructable by hobbyists! Designed for 2-factor authentication or anything else you can think of.
@Gruppo Linux Como
 

The Pac-Man Rule at Conferences — Eric Holscher - Surfing in Kansas

I firmly believe that conferences can provide a lot of value for people in an industry. Conferences allow people to create a network, which helps them feel integrated in a community and profession. In order to build a network you need to meet other people at events, and for this to happen attendees need to feel empowered to reach out and connect to...
(thanks lamby for mentioning this on # debconf)
 

Debian Day in Varese

I'm stuck home instead of being able to go to DebConf, but that doesn't mean that Debian Day will be left uncelebrated!

Since many of the locals are away for the holidays, we of @Gruppo Linux Como and @LIFO aren't going to organize a full day of celebrations, but at the very least we are meeting for a dinner in Varese, at some restaurant that will be open on that date.

Everybody is welcome: to join us please add your name (nickname or identifier of any kind, as long as it fits in the box) on https://dudle.inf.tu-dresden.de/debdayvarese2017/ before thursday, August 10th, so that we can
get a reservation at the restaurant.
 

Debian Day in Varese

I'm stuck home instead of being able to go to DebConf, but that doesn't mean that Debian Day will be left uncelebrated!

Since many of the locals are away for the holidays, we of @Gruppo Linux Como and @LIFO aren't going to organize a full day of celebrations, but at the very least we are meeting for a dinner in Varese, at some restaurant that will be open on that date.

Everybody is welcome: to join us please add your name (nickname or identifier of any kind, as long as it fits in the box) on https://dudle.inf.tu-dresden.de/debdayvarese2017/ before thursday, August 10th, so that we can
get a reservation at the restaurant.
 

Debian Day in Varese

I'm stuck home instead of being able to go to DebConf, but that doesn't mean that Debian Day will be left uncelebrated!

Since many of the locals are away for the holidays, we of @Gruppo Linux Como and @LIFO aren't going to organize a full day of celebrations, but at the very least we are meeting for a dinner in Varese, at some restaurant that will be open on that date.

Everybody is welcome: to join us please add your name (nickname or identifier of any kind, as long as it fits in the box) on https://dudle.inf.tu-dresden.de/debdayvarese2017/ before thursday, August 10th, so that we can
get a reservation at the restaurant.
 

Allthetropes: a fork of tvtropes

 

Un ruotino ti salva la vita...

Andfrnd Uploader Beta

URI: file:///sdcard/Android/data/de.wikilab.android.friendica01/cache/imgs/imgUploadTemp_1499693285919.jpg
File name: /sdcard/Android/data/de.wikilab.android.friendica01/cache/imgs/imgUploadTemp_1499693285919.jpg

Immagine/foto
 
https://www.kickstarter.com/projects/1898956467/pepper-and-carrot-board-game The game is also going to be released under the CC-BY license.
 
#debian #stretch #libreoffice #gnome #bug

[gl-como] libreoffice -crash su debian stretch - architettura i386

Siccome ho pc scrausi sparsi per tutto il pianeta :) ho ricevuto
lamentele da gente imbufalita per il fatto che non riescono più ad
utilizzarlo...

Il bug è noto, e non ci hanno ancora messo una pezza, ma si può evitare
il crash "segando" l'integrazione con le GTK (per chi le usa)..

If you use the Debian Live images, consider joining the Debian Live team and help in the development - Identi.ca

If you use the Debian Live images, consider joining the Debian Live team and help in the development https://lists.debian.org/debian-live/2017/06/msg00064.html
Help is needed both for development and tests, and most importantly there is a need for sustained commitment to help (even if it's just with testing the release candidates and reporting bugs).

If there is no interest, live images may just be dropped.
 

Pixel-art asset by DiamondDMGirl

DiamondDMGirl posted this week on opengameart.org an asset of pixel-art. You'll find full walk-cycle for Pepper, Carrot, Saffron, Coriander and Shichimi. You'll also find a portrait for each characters. The pack is licensed as CC-By 4.0 license
I do hope that this will help towards TODO-list #2, for *completely* *altruistic* reasons :D

Also, a reminder that https://opengameart.org is full of cool artwork.
 
nuovi vecchi