February 13, 2014 - 3:38 am
We’re getting there!
It has been a while since I started digging into IPv6. My home network is running on IPv6 for a while, but now I’m confident enough to implement it in my productive setup.
My mailserver has now been fully migrated to IPv6 and while doing this I properly implemented TLS (with a CACert signed certificate) including perfect forward secrecy (PFS) and so on.
Here is how servers of major freemail providers are reacting to my new setup.
||yes (no PFS)
* Certificate does not match hostname. They are trying to use a wildcard certificate across two levels of subdomains which is forbidden for HTTPS and not explicitely allowed for SMTP.
read on »
Category: Networking No Comments »
February 6, 2014 - 11:35 pm
This is the digital handout for the students which took part at my training session
Useful rope knots
This 30min session was my assignment for the Training-of-Trainers course 2014 provided by ICTI.
The knots in this short list are some of the most useful ones for the daily life.
All of them can be performed if only one end of the rope in question is loose.
Simple knot that forms a fixed loop at the open end of a rope.
It can be used to hook the rope onto a post, hook or similar.
The open end of the rope wraps around a pole and tightens to it.
It can be used to tie a rope to a handrail or beam.
Used to tie two ropes together on their open ends. It can also be used if the ropes have different diameter.
Category: Uncategorized No Comments »
November 5, 2013 - 3:48 pm
A few weeks ago I received an e-Mail from a German server hosting company. They told me about their completely renewed product range which now has the best cost-benefit ratio in the world. I remember that I got in contact with them years ago but then decided to rent my server from another provider.
OK, the e-Mail sounded extremely marketing oriented and so does their website.
But since the offerings looked quite reasonable I decided to give them a chance and replied with a list of technical questions.
One of them was about the size of the IPv6 subnet they are going to assign me. I was a bit confused that I couldn’t find anything about IPv6 at all on their website.
The answer came a few days later. I somehow expected it even though I never really believed that a root-server hoster could ever afford this kind of ignorance. But here it is (translated from German):
Indeed we do not YET offer IPv6 but it is already on our road map. This means it will be realized for you in the very near future.
It’s obvious what that means.
I didn’t answer back and haven’t heard from them, either. No, not quite. In fact I received another generated mail informing me that my very special and not transferable offer will only last until end of October. It seems the only thing they really renewed was their marketing department.
I wonder what’s going to happen in the next months and years. I suspect this is not the only provider ignoring IPv6.
Category: Networking No Comments »
September 29, 2013 - 11:11 pm
I just realized that time has gone so fast and my last technical posting was ages ago.
My german blog readers know that I’m on a sabattical at the moment. I’m working for WEC International UK and support – among others – the communications department. Today I want to share one of my projects with you.
You probably have heard about Raspberry Pi. A small credit card sized computer developed in UK.
WEC wants to use it for their presentation at exhibitions consisting of a collection previoulsy produced Audio and Video content played in a loop.
It is quite easy to run such presentations on a Raspberry PI. At the moment we use Pi Presents, a set of python scripts created by Ken Thompson which serves all sorts of kiosk computing such as interactive video/image presentation.
read on »
Category: Web No Comments »
October 21, 2012 - 7:21 pm
I’ve read and heard a lot about IPv6 in the last months, but wasn’t able to gain some practical experience yet.
No I finally found some time to get my hands on a simple IPv6 setup at home. Rather late for me as a network guy but actually I did it.
I’m running a Debian based router, which was routing my IPv4 for quite a long time. My goal was to add IPv6 routing so that my clients are able to use the “IPv6 internet”.
The setup was really easy. My main documentation sources were the Linux IPv6 HOWTO and an IPv6 with Debian tutorial.
read on »
Category: Linux, Networking No Comments »
December 28, 2011 - 4:55 pm
My first impression of the congress was just a bit amusing.
On any other conference you would be handed a leaflet or something, containing the schedule, locations and all necessary information. This congress is different. After entering the conference hall you are completely lost.
The walls are full of scattered information that do not mean much for me, but I was searching for a schedule without avail..
Some of the rooms are named with letters and numbers, the talk rooms are just numbers and there are no direction signs at all. Some rooms have additonal internal names which are not posted on the schedule but are more visible on the door than the others.
The only source of some information is the wiki (also lacking a map). But it is really hard to get connection to the Wifi and the wiki was half of the first day down.
Well, this gently reminds me of the sources I have to read and change all the time. Noone can deny what kind of people organized this conference.
But since I’m a software developer myself, I found ways to get acquainted with this code – sorry – conference.
Nevertheless, the talks where really great and exceeded my expectations. The main topic seems to be data security as well as surveillance. The session about the “Bundestrojaner” was fun as well as very informative. The group who analysed this piece of software gave an insight into their findings compared with the current legal situation.
They showed some of the history of the “Bundestrojaner” and proved why popular statements of politicians regarding this topic are obviously wrong.
Some talks also showed some really huge problems rising with surveillance and shows how they are already practice in germany.
Another presentation went into some opposite direction.
It was about how can you guess the spoken words in a Skype conversation without hacking the connection just by profiling the packet lengths. Eavesdropping at a very new level.
Category: Technical No Comments »
December 26, 2011 - 11:33 pm
Shame on me – I haven’t written a single post in my english blog for almost one year.
Well, there were not so much noticeable things this year. OFS is proceeding good. Not because of me but thanks to Peter who has improved support for NFS and cleaned up the code a bit.
Nevertheless, one of this years real highlights is just about to take place. I checked in to a Hostel in Berlin today to visit the Chaos Communication Congress starting tomorrow. I’m very keen on what’s ahead, since this is the first time I visit this congress – and the first time I visit Berlin.
Category: Computer, Technical No Comments »