You are viewing manpages

MAN (1) [entries|archive|friends|userinfo]
Jonns Mostovoys

[ website | my page ]
[ userinfo | livejournal userinfo ]
[ archive | journal archive ]

Yizkor [May. 29th, 2012|01:15 am]
[Tags|, , ]
[Current Music |matisyahu - on nature]

В Йицкор принято вспоминать тех, кого с нами уже нет, так что напишу пост, который я обещал написать в день, когда ушла из этого мира жена деда.



Геновефа Брониславовна вслед за мужем была направлена по распределению в деревню Бриги. Муж — парторг, она — зоотехник. Такое вот прозаичное название для ветеринаров. В той стране
лечили не котиков, а скот. Чтобы эффективнее и больше потом убить, остричь и надоить. Моя бабушка тогда была председателем сельского совета, была некоторое время замужем за дедом. По работе бабушка много контактировала с мужем Геновефы Брониславовны — Виталием Сергеевичем и знала его как приятного в общении и отзывчивого человека.

Отец деда — Иван Адамович лежал при смерти и бабушка думала о том, что позовёт Виталия Сергеевича на помощь если Иван Адамович умрёт, но этому не суждено было случиться. День рождения Геновефы Брониславовны выпадал на день перед праздником купалы (Līgo, латыш.) и в сельсовете уже заранее начали гулять по этому поводу. Виталий Сергеевич сказал «Генечка, мы сейчас вернемся» и поехал с шофером в город за выпивкой и пищей. Но вернуться им было не суждено, на перекрестке машина влетела в трактор, муж Геновефы Брониславовны погиб.

Дальше Геновефа стала пить, и мой дед стал пить, они расстались с моей бабкой и он сошелся с дамой из Нерзы (город в Латгалии), откуда дед возил молоко на молоковозе. Дед был дружен с Геновефой Брониславовной, поэтому когда та поняла, что пора прекращать обычаи связаные с выпивкой, ибо те переходят в стадию алкоголизма, она решительно настояла на том, чтобы дед
расстался с дамой, к которой тот ушел от моей бабки и стала ему всячески помогать избавиться от его алкогольной зависимости.

Вероятнее всего сыграл свою роль материнский инстинкт, ведь она всем сердцем хотела вырастить непьющего сына (от Виталия Сергеевича), который не пропадет в деревне и станет успешным рабочим. В итоге, она своими силами тянула двух мужчин, которые еле успевали за ее бойким энтузиазмом. Она судачила со своей латгало-говорящей подругой (которая слава Б-гу еще жива) на латгальском, с латышами на латышском, а с русскоговорящими — на русском. На всех языках без акцента. Она всю свою жизнь делала добро людям, оставила после себя сына и двух внуков.

Пусть она — не родной мне по крови человек, но в Йицкор я вспоминаю именно ее.
Link1 comment|Leave a comment

Grim Reaper [May. 3rd, 2012|05:34 pm]
[Tags|]
[Current Music |the cat empire - the lost song]

This post is in Russian.

Одинокий и забытый журнал который мало кто читает будет — пожалуй — наиболее верным местом для небольшой заметки про смерть почти абсолютно одинокого человека.
Сегодня — хотя все верили в ее поправку — скончалась жена моего деда. Если бы не она и не ее забота, мой дед прожил бы гораздо более короткую жизнь, а в нашей семье было бы куда больше несчастья.
Я потом обязательно напишу больше про нее, потому как таких людей должен помнить огромный информационный блоб, в который преввращается человечество.
Я напишу про то, как она говорила на латгальском, латышском и русском.
Я напишу про то, как она девочкой пережила вторую мировую войну, про ее сына, которого она вырастила непьющим человеком — одним из немногих в деревне, в которой они жили.
И про дом, который во многом ее усилиями всё еще стоит и не был пропит моим дедом, который тоже доживает последние месяцы, а что потом? Антоновские яблоки. Об этом всём я напишу.
Я напишу сюда, ведь Интернет не забывает.
Link1 comment|Leave a comment

The case for Gist blogging [Apr. 28th, 2012|09:19 am]
[Tags|, , , , , , ]
[Current Music |curved air - over and above]

Why to bother


The posts people write in blogs can be classified in two groups:
→ those that are going to be (or should be) maintained, expressing the real time
information (like books one reads or read, todo lists, lecture notes, etc),
→ those that express the momentary thoughts of a writer on an event or activity.

Maintaining the post


While first ones can be managed using standart blog engines
(livejournal, blogger, etc) via «Edit post» option, that's hardly
efficient. What I found to be useful is the following — using gist
(http://gist.github.org) as a great blogging engine. Indeed, you have
a handy display of Emacs Org-Mode files (the only thing I use Emacs
for, to be honest, thanks to @michishigekaito for luring me to use it)
and it tracks changes you do to your posts. It also has a neat
timeline where all of your gists are shown in filtered by creation
time. To see the activity of updating or forking gists one must refer
to the main github timeline though.In my case, gist timeline can be found at
https://gist.github.com/manpages (doesn't display any gists atm, for
no obvious reason) and the main timeline of my activity at github is
at https://github.com/manpages.

Examples and links


So, anyway, here are examples of my gist-blog-posts:
https://gist.github.com/2515871 (Org-Mode, displayed nicely)
https://gist.github.com/2280926 (.txt, showing revision history capabilities)

Example of gist that was forked by another person:
https://gist.github.com/2258609
Wow, that guy pushed it farther than I thought he will! Let's tell him
about it using gist comments:
https://gist.github.com/2258609#gistcomment-284785

You can even blog anonymously:
https://gist.github.com/2516460

Finally, the gist version of that post is here:
https://gist.github.com/gists/2516497
Link10 comments|Leave a comment

Yet another peek at Cryptography (in Russian) [Apr. 23rd, 2012|04:45 am]
[Tags|]
[Current Music |far corner - not from around here]

A little bit more detailed that ones that have been posted or linked previously in my journal — http://fat-crocodile.livejournal.com/164874.html

I'll translate it in English once I have the time to do it properly :)
LinkLeave a comment

Good-ol-days [Mar. 19th, 2012|02:48 pm]
I am a man who looks after the pigs
Read more...Collapse )
LinkLeave a comment

Coolbeans [Dec. 16th, 2011|11:20 am]
[Tags|, ]
[Current Music |damien rice - you're coming home]

I like when people popularize cryptography like that:
http://www.commondork.com/2009/01/04/introduction-to-cryptography/#more-170
LinkLeave a comment

Can you crack it? I can google it. [Dec. 2nd, 2011|01:38 am]
[Tags|]
[Current Music |!@#$% slasher - with drg]

Okay, so here's that shit http://www.canyoucrackit.co.uk/ that claims to be virtual recruit camp for UK Government Communications Headquarters.
Here's what they say when you pass the contest:


So you did it. Well done! Now this is where it gets interesting. Could you use your skills and ingenuity to combat terrorism and cyber threats? As one of our experts, you'll help protect our nation's security and the lives of thousands. Every day will bring new challenges, new solutions to find – and new ways to prove that you're one of the best.


But come the fuck on, dear UK Government Communications Headquarters. Why are you so lame?
The link to the "apply in GCHQ" can be extracted from the following google query:
QUERY LOL

I mean, all that crap talk about being "one of the best" is kind of negated by the fact that the contest itself is organised like as bad as almost each other contest from governmental organization or relatively large corporation.
Link1 comment|Leave a comment

ISP's giving lulz [Dec. 1st, 2011|09:37 am]
[Tags|, , ]
[Current Music |gryphon - gulland rock]

Okay, so here's the setup:
my mom calls me and says "there's some kind of alert when I try to fetch mail from ISP servers".
A minute later it turns out that it's "certificate changed" stuff. My ISP makes use of self signed certs that expire each year.
Okay, no problem, I grab the SHA1 of the new cert I got from mom's PC, and point my browser to the ISP's web page.
Guess what? Well, no information about fingerprints there. So I call ISP.

There's that type of staff that I call "firegirls". They don't do anything but filter out dumbass customers so that they won't bother the reall staff of the company.
Firegirl answers the phone. I ask her to connect me directly to the security administrator of the ISP, she says that he's not there and offers me to leave my phone number.
Long story short — I get the call from the security administrator (that proved to be the same poor guy I was terrorizing some time before about connection issues).
He asks what do I want and then the first epic dialogue takes place:

me: Have you changed the certs on your mail servers?
admin: May be.

I was like "herp derp ok whatever". So I asked him to send me the fingerprints in encrypted mail told him my email address and pubkeyid. To make sure that he won't fuck it up I even issued a mail to the main ISP mailbox asking to send new certs' fingerprints.

After several hours (I believe they have stuff to do, no sarcasm) I've got...
...a mail. With fingerprings I've asked... ...sent as plaintext.
Well, that's not that bad, at least they've sent me the fingerprints, but the second thing of overwhelming epicness was the attachment. It was a private key and the guy who sent me the reply made a note "It's a private key with passphrase DA234FE7".

I received the mail in the bus and was laughing out loud.
So, I told him that DA234FE7 is my key id that can be fetched from any keyserver and I wanted him to fucking encrypt the fingerprints cause else that shit is compromised.

He answered with a merely shitty excuse that was formulated like "if we'd send stuff to all our customers encrypted with their pubkeys, we wouldn't have time to work". I wanted to tell him that he doesn't need to encrypt stuff with pen-n-paper as there is such thing as computer, but suggested that they could at least sign their mails so that customers know that they are talikng to ISP staff, not some random scriptkids fucking around the ISP's network.
And his answer got to the top1 of stupid things related to cryptography I ever heard or read, I'll quote the thing.

In the header of the mail. in the From field, I have signature "John Smith, CoolISP".
Also the address is of CoolISP domain. Thus I can't see why one possibly can have a problem with finding out that I'm CoolISP representative. :)

And there I just laughed my arse off. I mean, I knew there are some people that have some misconceptions about what digital signature is, but fuck, a guy who messes with certs of relatively large network?.. He could do better :D

So what have I done?
I grabbed my msmtp and tried out the following (the most significant thing is --auth=on to check whether the server does authentification properly):

```
msmtp -d --host=mail.coolISP.lv --port=25 --user=scriptkid --passwordeval=./mypwd.o \
--auth=on --from=scriptkid@coolISP.lv script.kid@inbox.lv
```

As you might guess, I saw

```
Dec 01 06:12:45 host=mail.coolISP.lv tls=off auth=on (...) errormsg='the server does not support authentication' exitcode=EX_UNAVAILABLE
```

"And now you're fucked", I thought, and using something similar to the following oneliner

```
msmtp -d --host=mail.coolISP.lv --port=25 --user=scriptkid --passwordeval=./mypwd.o \
--from=admin@coolISP.lv admin@coolISP.lv
```

sent that guy an educational mail (that will appear to him as if he sent it to himself) with suggestion at least to fix the fucking SMTP server or else consider using PGP and popularize it among the users of their ISP.

Took me less time to do that then to write that post. But meh, nonetheless, that was funny.

And that opens new tag in my LJ — "CryptoconformityOps". As in script-kidding operations aimed to educate people about cryptography and IT security showing potential damage that theit IT systems could suffer if not managed properly.
LinkLeave a comment

Encrypted phone calls? Fuck Skype. [Nov. 29th, 2011|06:34 am]
[Tags|, , , ]
[Current Music |gryphon - midnight mushrumps]

My last article was long and was aimed on explaining to newbies how to write encrypted mails.
That one will be much shorter and will consist mainly of some links.
1) http://freeborn.devio.us/doku.php?id=androiddiffemyhellman that thing is mentioned by Erinn Clark, so I'd trust those guys.
Still, https://create.tanstagi.net/gork/new is down (for ten hours at least) so I can't test the thing.
Anyway, it uses DH to generate key and has rather nice trust system based on the assumption that you know the voice of person you're calling to.
Can't wait till our TSPs free the freq. zone for LTE and I'll get it in my Android phone...
Btw, is it just me or Mobile Telephony Service Providers are going to be gone soon enough?

2) Congrats to Moxie Marlinspike becoming more rich and a little bit more famous: http://www.whispersys.com/updates.html
Speaking of which, here's that RedPhone thing at whispersys: http://www.whispersys.com/index.html that does similar stuff.
Though I don't know the details of how does it work.
If somebody is interested in testing RedPhone/tanstagi -- please describe your experience in comments.

UPD
https://create.tanstagi.net/gork/new has self-signed cert that can't be picked by convergence? Wtf? I'll have a closer look at that project in a couple of days. Too tired to do that right now.
Nonetheless, here's the cert info I get — http://nn.lv/tsuv
LinkLeave a comment

talking encrypted for dummies [Nov. 23rd, 2011|04:32 am]
[Tags|, ]
[Current Music |веня д`ркин - всё б. х.]

That post won't be interesting to you
if you understand what "DA234FE7" in my signature means
--
Jonn Mostovoy,
DA234FE7

How to talk encrypted

Here I will cover essentials of data privacy -- public key encryption and how to use it with E-mail client software.
The main difference of that article compared to other ones covering the same topic (apart from having tons of grammar mistakes) is that I won't go in the algorithmic details, explaining only the main idea of public key scryptography having the aim to teach the average user how to make use of public key encryption. Read more...Collapse )
Link3 comments|Leave a comment

navigation
[ viewing | most recent entries ]
[ go | earlier ]