Verifying authenticity of Debian CDs

Published: May 10 2015

The official guide for verifying the authenticity of a Debian 🍥 CD image is not so clear if you don't already have an idea about what you are doing. Here is a translation in terms of shell commands.

Logging message workflow with journald

Published: Apr 29 2015

A short summary of the logging message workflow with systemd-journald (and the different formats and sockets involved).

Updating Firefox OS

Published: Mar 29 2015

I updated a Geeksphone Peak from Firefox OS 1.1 to Firefox OS 2.1 and it was not that easy.

Bundler starter kit

Published: Mar 2 2015

Bundler is a tool to manage Ruby gem dependencies, install them and setup the execution environment. The homepage shows how to use it to install the gems alongside the ruby installation/systemwide which is not so great. For some reason, I initially didn't find the option to install the gems locally (--path) and have been using horrible environment variable modifications to avoid the systemwide installation. In fact, this is quite simple…

The broadband protocol stacks

Published: Feb 15 2015

The Broadband Forum as a lot of technical reports about the xDSL architecture but it is not so easy to find a good description of the global architecture. Those are ASCII-art protocol stack I inferred from those documents. What is in there may be wrong, feel free to correct me.

Recursive DNS over TLS over TCP 443

Published: Feb 14 2015

You might want to use an open recursive DNS servers if your ISP's DNS server is lying. However, if your network/ISP is intercepting all DNS requests, a standard open recursive DNS server won't help. You might have more luck by using an alternative port or by forcing the usage of TCP (use-vc option in recent versions of glibc) but it might not work. Alternatively, you could want to talk to a (trusted) remote recursive DNS server over secure channel such as TLS: by using DNS over TLS over TCP port 443 (the HTTP/TLS port), you should be able to avoid most filtering between you and the recursive server.

ELF loading and dynamic linking

Published: Jan 22 2015

Some notes on ELF 🧝 loading and dynamic linking mainly for GNU userland (ld.so, libc, libdl) running on top of the Linux kernel. Some prior knowlegde on the topic (virtual memory, shared objects, sections) might be useful to understand this.

Recover a (forgotten) password in a process memory

Published: Jan 15 2015

Today, I managed to forget a password but I had a Icedove (Thunderbird) process running containing the password.

nginx, Logstash and vhost-combined log format

Published: Jan 11 2015

The Apache HTTP server ships with a split-logfile utility which parses Combined Log File entries prefixed with the virtual host: some notes about this and its inclusion in nginx and logstash.

Better isolation for SimGridMC

Published: Jan 6 2015

In an attempt to simplify the development around the SimGrid model-checker, we were thinking about moving the model-checker out in a different process. Another different approach would be to use a dynamic-linker isolation of the different components of the process. Here is a summary of the goals, problems and design issues surrounding these topics.

Page 2 of 2 | Previous page | Next page | JSON Feed | Atom Feed