Elena ``of Valhalla'' valhalla@identi.ca

  • 2018-09-14T19:31:11Z via social.gl-como.it To: Public


    Real Products That Exist: Teacup And Saucer Holsters

    These are the ~$90 - $100 leather teacup and saucer holsters made by Etsy seller LeatherHeds for Steampunk style costumes, or anybody who just really needs a teacup and saucer at the ready at all times. Because you never...
    geekologie.com #steampunk #tea

    I think I may eventually need one of those...
  • 2018-09-11T18:49:23Z via social.gl-como.it To: Public

    mjg59 | The Commons Clause doesn't help the commons

    mjg59 | The Commons Clause doesn't help the commons
    mjg59.dreamwidth.org
  • 2018-09-11T18:46:47Z via social.gl-como.it To: Public


    valhalla@mastodon.social 2018-09-09 20:41:30:
    A marble white cat from Colonnata, near Carrara.

    #cats #mastocats #catstodon #catsOfMastodon

  • 2018-08-26T07:43:45Z via social.gl-como.it To: Public


    wired@pod.cyberdungeon.de 2018-08-25 11:20:02:

    Phone Numbers Were Never Meant as ID. Now We’re All At Risk


    #all #meant #never #now #numbers #phone #risk #security #were

    Phone Numbers Were Never Meant as ID. Now We’re All At Risk

    Services increasingly rely on your phone number to know who you are—and that's increasingly a problem.
    www.wired.com

    Stephen Michael Kellat likes this.

    Stephen Michael Kellat shared this.

  • 2018-07-31T19:42:50Z via social.gl-como.it To: Public


    valhalla@mastodon.social 2018-07-30 20:21:00:
    #DebConf18 videos are being published on https://meetings-archive.debian.net/pub/debian-meetings/2018/DebConf18/

    more than half of the recorded talks are already available, and more are being worked on right now.

    Index of /pub/debian-meetings/2018/DebConf18

    meetings-archive.debian.net

    I keep downloading bits. Eventually I'll watch them. The crises at work have got to be resolved some day soon.

    Stephen Michael Kellat at 2018-08-01T01:24:23Z

  • 2018-07-27T07:35:55Z via social.gl-como.it To: Public

    feed discovery and live bookmarks should not be removed from firefox

    tl;dr: Mozilla are removing RSS feed discovery and display features from Firefox in an upcoming release. This is an unfortunate decision which will actively harm the open web, and should be reversed. It is also part of a larger pattern of unfortunate decisions by browser makers which contribute to a user-hostile network.
    p1k3.com

    4slamK, Tyng-Ruey Chuang, clacke@libranet.de ❌, Stephen Michael Kellat likes this.

    4slamK, clacke@libranet.de ❌, clacke@libranet.de ❌, clacke@libranet.de ❌ and 3 others shared this.

    I'm sad that RSS discovery was removed from prominence many years ago, but I totally buy their reasoning around Live Bookmarks. They never worked all that well, and the functionality should be put into an external competent RSS Reader instead -- like e.g. Mozilla's own Thunderbird.

    clacke@libranet.de ❌ at 2018-07-29T05:32:11Z

    That is indeed a sad development :-( I will add a visible RSS link to my own web site/blog so that people can still find the RSS feed.

    sazius at 2018-07-29T10:32:48Z

    Total agreement that this is a bad move. RSS is still my major form of interaction with the web.

    cedeo at 2018-08-03T17:34:05Z

  • 2018-07-24T07:14:46Z via social.gl-como.it To: Public

    How to stop Firefox from making automatic connections | Firefox Help

    Learn about the various reasons why Firefox makes automatic connections to the Internet and how you can stop it from doing so if you wish.
    support.mozilla.org
  • 2018-07-23T20:33:01Z via social.gl-como.it To: Public

    Privacy Tools | Encryption against global mass surveillance

    You are being watched! Knowledge, encryption and privacy tools to protect you against global mass surveillance.
    www.privacytools.io

    Stephen Michael Kellat likes this.

    Stephen Michael Kellat shared this.

  • 2018-07-21T20:17:23Z via social.gl-como.it To: Public


    Delivery of Allwinner VPU driver main goals - Bootlin's blog

    With a few weeks of delay, we are proud to announce the delivery of the main goals of our crowdfunding campaign dedicated at adding upstream Linux support for the Allwinner video decoding hardware. After several months of hard work by Bootlin engineer Maxime Ripard and intern Paul Kocialkowski, we now have a working demo of Kodi running with our VPU...
    bootlin.com @Gruppo Linux Como
  • 2018-07-19T18:51:27Z via social.gl-como.it To: Public

    [share author='riveravaldez' profile='https://joindiaspora.com/u/riveravaldez' guid='3c5fc58085b60134f2320242ac110005' posted='2016-11-05 18:47:33' link='https://social.gl-como.it/display/3c5fc58085b60134f2320242ac110005'

    PIXLS.US - Free Softwarehttps://pixls.us/software/


    A selection of Free/Libre Open Source Software projects related to photography. by Pixls.us:

    Image/photo
    There are many wonderful Free/Open Source Software projects dedicated to photography. Yet there aren’t nearly as many resources dedicated to photographic workflows with them.

    This site hopes to rectify that with a simple goal: To provide tutorials, workflows and a showcase for high-quality photography using Free/Open Source Software.
    #pixlsus #pixls #pixels #gimp #freesoftware #freesw #culturalibre #freeculture #photography #workflow #tutorial #tutorials #showcase #darktable #rawtherapee #ufraw #photivo #krita #imagemagick #gmic #g'mic #filmulator #photoflow #lightzone #fgallery #hugin #luminancehdr #hdrmerge #filmemulator #forensically #copperminegallery #gallery #coppermine-gallery #siril #enblend-enfuse #enblend #enfuse #macrofusion #resourcespace #imagej #pannellum #vips #graphicsmagick #fotoxx #digikam #gthumb #shotwell #nomacs #geeqie #opencamera #airnef #entangle #digicamcontrol #displaycal #argyllcms #dcamprof #magiclantern #blender #rapidphotodownloader #exiv2 #exiftool #jhead #gphoto #opendronemap #jpegclub #lepton

    via Diaspora* Publisher -

    PIXLS.US - Software

    pixls.us [/share]
    This is going to be of interest for some members of @Gruppo Linux Como

    Tyng-Ruey Chuang likes this.

  • 2018-07-18T17:24:20Z via social.gl-como.it To: Public


    switchingsocial@diaspora.town 2018-07-16 18:45:20:
    If you're fed up of #Amazon's tax dodging, poor working conditions and data gathering, here are some book-themed ethical alternatives on #PrimeDay:

    https://switching.social/ethical-alternatives-to-amazon-and-goodreads/

    #Books #eBooks #Kindle #Goodreads #DeleteAmazon #DeleteKindle #AmazonStrike #Alternatives #Privacy

    Ethical alternatives to Amazon Books, Kindle and Goodreads – switching.social

    Ethical alternatives to Amazon Books, Kindle and Goodreads – switching.social
    switching.social

    Matteo Bechini likes this.

    dw, dw, dw, dw and 2 others shared this.

  • Map/Ticket Sleeve

    2018-07-16T06:53:51Z via social.gl-como.it To: Public

    I've added a new article to my website

    Map/Ticket Sleeve - Elena ``of Valhalla'' Homepage

    When travelling by train, this has the consequence that I need to carry a printout of my ticket, as I can't just show the PDF on my phone (showing it on a laptop is a possibility, just not one I want to rely on...
    www.trueelena.org #MYOG

    Ben Sturmfels likes this.

  • Pair of Pockets

    2018-07-16T06:51:01Z via social.gl-como.it To: Public

    I've added a new article to my website:

    Pair of Pockets - Elena ``of Valhalla'' Homepage

    My mother gave me a lightweight circle skirt that is pretty nice but has a glaring lack of pockets. ...
    www.trueelena.org

    McClane likes this.

    McClane, McClane, McClane, McClane shared this.

  • 2018-07-13T19:44:50Z via social.gl-como.it To: Public

    Probably everybody here knows this already, but I only found it out today:

    The Federation - a statistics hub

    Node list and statistics for The Federation and Fediverse
    the-federation.info #federation @Gruppo Linux Como

    Tyng-Ruey Chuang, Matteo Bechini, Stephen Michael Kellat likes this.

    Stephen Michael Kellat, clacke@libranet.de ❌, clacke@libranet.de ❌, clacke@libranet.de ❌ and 2 others shared this.

    Show all 6 replies
    pump.io will probably be running on ActivityPub in the next release.

    clacke@libranet.de ❌ at 2018-07-14T10:53:21Z

    Or you meant Friendica? Yeah, that should be there, it speaks all of OStatus, ActivityPub and Diaspora. https://fediverse.network/ includes https://fediverse.network/friendica in its index.

    clacke@libranet.de ❌ at 2018-07-14T10:57:12Z

    » Claes Wallin (韋嘉誠):

    “pump.io will probably be running on ActivityPub in the next release.”

    So we'll be able to interact with the Mastodon peoples in a way they've never dreamed of?

    Stephen Michael Kellat at 2018-07-16T04:32:09Z

    dw likes this.

    » Claes Wallin (韋嘉誠):

    “Or you meant Friendica? Yeah, that should be there, it speaks all of OStatus, ActivityPub and Diaspora. https://fediverse.network/ includes https://fediverse.network/friendica in its index.”

    no, I meant pump.io: I tought it was already running ActivityPub


    I seem to be able to follow people on pump.io from friendica, now, but I haven't properly tried it yet.

    Elena ``of Valhalla'' at 2018-07-16T06:35:51Z

  • 2018-07-03T11:30:03Z via social.gl-como.it To: Public


    Mark Zuckerberg and his empire of oily rags | Cory Doctorow's craphound.com

    Surveillance capitalism sucks: it improves the scattershot, low-performance success-rate of untargeted advertising (well below 1 percent) and doubles or triples it (to well below 1 percent!)...
    craphound.com I quite like the metaphor of the pile of oily rags
  • 2018-06-30T11:45:57Z via social.gl-como.it To: Public


    tani@diasp.org 2018-06-24 20:14:07:

    Awesome Selfhosted


    "This is a list of Free Software network services and web applications which can be hosted locally. Selfhosting is the process of locally hosting and managing applications instead of renting from SaaS providers."

    https://github.com/Kickball/awesome-selfhosted

    There are all kinds of categories, e.g. Search Engines:
    • Ambar - Document Search Engine (OCR, Store & Search) (Demo, Source Code) MIT Nodejs/Python
    • Gigablast - open source search engine. (Demo, Source Code) Apache-2.0 C++
    • Seeks - Web search proxy and collaborative distributed tool for websearch. (Source Code) AGPL-3.0 C++
    • Searx - Privacy-respecting, hackable metasearch engine. (Demo, Source Code) AGPL-3.0 Python
    • Yacy - Peer based, decentralized search engine server. (Demo, Source Code) GPL-2.0 Java
    File transfer/synchronization:
    • Git Annex - File synchronization between computers, servers, external drives. (Source Code) GPL-3.0 Haskell
    • Kinto - Kinto is a minimalist JSON storage service with synchronisation and sharing abilities. (Source Code) Apache-2.0 Python
    • Nextcloud - Access and share your files, calendars, contacts, mail and more from any device, on your terms. (Demo, Source Code) AGPL-3.0 PHP
      OpenSSH/SFTP - Secure File Transfer Program. (Source Code) BSD C
    • ownCloud - All-in-one solution for saving, synchronizing, viewing, editing and sharing files, calendars, address books and more. (Source Code, Clients) AGPL-3.0 PHP
    • Pydio - Turn any web server into a powerful file management system and an alternative to mainstream cloud storage providers. (Source Code) AGPL-3.0 PHP
    • Samba - Samba is the standard Windows interoperability suite of programs for Linux and Unix. It provides secure, stable and fast file and print services for all clients using the SMB/CIFS protocol. GPL-3.0 C
    • Seafile - File hosting and sharing solution primary for teams and organizations. (Demo, Source Code) GPL-2.0 C
    • SparkleShare - Self hosted, instant, secure file sync. (Source Code) GPL-3.0 C#
    • Syncany - Secure file sync software for arbitrary storage backends, an open-source cloud storage and filesharing application. Securely synchronize your files to any kind of storage. GPL-3.0 Java
    • Syncthing - Syncthing is an open source peer-to-peer file synchronisation tool. (Source Code) MPL-2.0 Go
    • Unison - Unison is a file-synchronization tool for OSX, Unix, and Windows. GPL-3.0 OCaml
    • Z-Push - Implementation of Microsoft’s ActiveSync protocol. (Source Code) AGPL-3.0 PHP
    XMPP Web Clients:
    • Candy - Multi user XMPP client written in Javascript. (Source Code) MIT Javascript
    • Converse.js - Free and open-source XMPP chat client in your browser. (Source Code) MPL-2.0 Javascript
    • JSXC - Real-time XMPP web chat application with video calls, file transfer and encrypted communication. There are also versions for Nextcloud/Owncloud and SOGo. (Source Code) MIT Javascript
    • Kaiwa - Web based chat client in the style of common paid alternatives. (Source Code) MIT Nodejs
    • Movim - Modern, federated social network based on XMPP, with a fully featured group-chat, subscriptions and microblogging. (Source Code) AGPL-3.0 PHP
    • Salut à Toi - Multipurpose, multi frontend, libre and decentralised communication tool. AGPL-3.0 Python
    • Libervia - Web frontend from Salut à Toi. (Source Code) AGPL-3.0 Python
    #linux #gnu #gnulinux #selfhosted #services #hackernews #foss #security #privacy #searchengines #searx #yacy #seeks #gigablast #ambar #xmpp #candy #jsxc #kaiwa #movim #salutàtoi #libervia #gitannex #kinto #nextcloud #owncloud #pydio #samba #seafile #sparkleshare #syncany #syncthing #unison #zpush

    Kickball/awesome-selfhosted

    awesome-selfhosted - This is a list of Free Software network services and web applications which can be hosted locally. Selfhosting is the process of locally hosting and managing applications inste...
    github.com

  • 2018-06-20T19:07:14Z via social.gl-como.it To: Public


    How markets coopted free software’s most powerful weapon (LibrePlanet 2018 Keynote)

    Several months ago, I gave the closing keynote address at LibrePlanet 2018. The talk was about the thing that scares me most about the future of free culture, free software, and peer production.
    mako.cc

    McClane likes this.

    McClane, McClane shared this.

    really worth watching

    McClane at 2018-06-25T14:25:31Z

  • 2018-06-14T10:56:57Z via social.gl-como.it To: Public


    Feed GL-Como.it () 2018-06-13 20:22:00:
    KeySigning Party Giugno 2018
    Giovedì 14 giugno la consueta riunione del Gl-Como sarà dedicata alla crittografia con GnuPG e OpenPGP cards (implementate su chiavetta usb), e ovviamente coglieremo l'occasione per un Keysigning Party.

    GnuPG viene usato soprattutto per due scopi: tutelare la riservatezza delle proprie comunicazioni, soprattutto via email [1] e garantire l'identità dell'autore di un messaggio (o di un software, o…).

    In quest'ultimo caso, la crittografia garantisce che l'autore di un messaggio sia in possesso di una certa chiave, ma come fare ad associare una chiave ad una persona?

    In alcuni casi si fa uso di un'Autorità centralizzata che verifica e garantisce, coi vantaggi e svantaggi che questo comporta, ma la comunità di utenti di GnuPG generalmente preferisce un metodo distribuito, la Web of Trust.

    Questa si basa sull'idea che ciascun utente ne incontri di persona altri per scambiarsi informazioni sulle proprie chiavi, pubblicando poi una firma, ovvero una dichiarazione che quella chiave appartenga davvero ad una certa persona.

    Ovviamente, non ci si può fidare di una dichiarazione del genere data da uno sconosciuto, ma a seconda delle proprie esigenze ci si può fidare di dichiarazioni multiple e concordi fatte da persone che si conoscono (o in alcuni casi anche che conoscono persone che si conoscono).

    Un keysigning party è un'occasione per incontrare altre persone interessate a partecipare alla Web of Trust, conoscersi, condividere conoscenza riguardo a crittografia ed argomenti correlati, e soprattutto scambiarsi firme sulle chiavi.

    Cosa fare


    Partecipare ad un keysigning party richiede un po' di preparazione prima e comporta alcune operazioni da svolgere in seguito.

    Prima


    Innanzitutto, bisogna assicurarsi di avere una chiave GPG: se se ne si ha una vecchia, controllare che sia RSA [2] ad almeno 4096 bit; chiavi DSA o RSA di dimensioni inferiori sono vulnerabili o a rischio di diventare tali entro pochi anni, ed un keysigning party è una buona occasione per iniziare a migrare verso una nuova chiave.

    Se necessario, si può seguire la prima parte della guidaUsoDiOpenPGPCard per la creazione di una nuova chiave con gli strumenti da riga di comando, o quella sul sito di Fedora che presenta anche strumenti grafici equivalenti, ricordandosi di inviare la chiave ai keyserver perché gli altri partecipanti al keysigning possano poi ottenerla.

    Il passo successivo è fare in modo di poter fornire agli altri partecipanti una copia dei dati della propria chiave:
    • fingerprint completo della stessa (40 cifre esadecimali, ovvero qualcosa di simile a 0506 CD00 A2F9 DE57 E498 F628 D599 FF61 0180 9E2A);
    • gli UID presenti sulla chiave (tipicamente nome completo ed indirizzo email);
    • facoltativo, ma consigliato: un qr-code con la stringaOPENPGP4FPR:%f dove %f e il fingerprint senza spazi.
    Questi dati possono essere presenti sul proprio biglietto da visita, oppure si possono usare gli strumenti di signing-party per generare una paginata di bigliettini pronti da stampare con tutte le informazioni necessarie. gpg-key2ps non richiede altri programmi,gpg-key2latex richiede un'installazione di LaTeX e il programma qrencode, ma permette di aggiungere anche il qrcode.

    Un'altro programma utile è monkeyscan / monkeysign, che permette di mostrare a schermo il qrcode (e leggere quelli degli altri, nei passaggi successivi).

    Durante


    L'obiettivo principale durante il party è di conoscere persone e scambiare con loro i dati elencati sopra.

    È importante essere sicuri dell'identità delle persone incontrate: il criterio minimo è verificare dei documenti di identità, ma è importante dedicare anche un po' di tempo a chiaccherare con le persone coinvolte, individualmente o in gruppo.

    Un articolo sui keysigning party non sarebbe completo senza l'obligatory xkcd.

    Dopo


    Una volta tornati a casa (o in generale al proprio computer fidato), si può svolgere l'ultima fase del keysigning.

    Il metodo raccomandato è di firmare le chiavi di chi si è incontrato e non pubblicare direttamente queste firme, ma inviarle con una mail crittata agli indirizzi email indicati sulla chiave. In questo modo si verifica anche che la persona abbia effettivamente controllo di quell'indirizzo.

    Per automatizzare la procedura si possono usare caff, presente insigning-party, oppure monkeysign, passando loro i fingerprint ottenuti e verificando la corrispondenza degli User ID. Entrambi questi programmi vanno configurati per poter inviare email col nostro nome/indirizzo.

    A seconda del numero di persone presenti al party, questa fase potrebbe richiedere un po' di tempo, soprattutto per chi tiene la propria chiave principale su dispositivi offline (che quindi non è comoda da raggiungere tutti i giorni); se avete urgente bisogno della firma di qualcuno è meglio avvisare, altrimenti non è raro attendere giorni, o anche settimane, prima di riceverla.

    Alla fine


    Per vedere la propria posizione nella Web of Trust, e l'effetto che il keysigning ha avuto su di essa, si può andare sul sito PGP pathfinder & key statistics, oppure usare il programmawotsap per calcolare statistiche simili su una copia locale dei dati.

    note:

    [1] la crittografia tramite GnuPG è supportata anche da alcuni sistemi di chat, ma in quel caso esistono altri protocolli spesso più adeguati alle diverse esigenze di una comunicazione in tempo reale.
    [2] le chiavi ECC sarebbero un'alternativa, ma ancora non sono supportate da tutti gli strumenti, per cui è consigliabile usarle semmai per delle sottochiavi, ma non per la chiave principale.
    //www.gl-como.it/v2015/keysigning-party-giugno-2018/

  • 2018-06-13T19:38:36Z via social.gl-como.it To: Public

    Progress bar for file descriptors

    I ran gzip on an 80Gb file, it's processing, but who knows how much it has done yet, and when it will end? I wish gzip had a progressbar. Or MySQL. Or… Ok. Now every program that reads a file sequentially can have a progressbar...
    www.enricozini.org
    Too bad it's proprietary.

    Jason Self at 2018-06-14T02:05:42Z

    Uh, right. I didn't check because I trust the author to know about the need for a license (and the ability/will to choose a free one), so...


    pinging the author about that *right now*

    Elena ``of Valhalla'' at 2018-06-14T07:59:37Z

    Almost but not quite. All they did was plop in a copy of the GPL. That by itself doesn't mean anything. They also need to actually grant those permissions. There's a "How To" document at https://www.gnu.org/licenses/gpl-howto.html that covers adding the appropriate things to their program. But a free-standing copy of the GPL, without any further information as to what it actually applies to, means nothing. ("Oh, I only meant for it to apply to the README, not the program...") So they follow that page and add stuff into each file.

    Jason Self at 2018-06-15T02:10:57Z

  • 2018-06-12T19:35:43Z via social.gl-como.it To: Public


    Microsoft’s failed attempt on Debian packaging

    Just recently Microsoft Open R 3.5 was announced, as an open source implementation of R with some improvements. Binaries are available for Windows, Mac, and Linux. I dared to download and play around with...
    www.preining.info Honestly, I don't think that malice was involved, just incompetence, possibly aggravated by compartimentalization.

    It is however a good reminder of how upstreams may be the ones who know their product best, but that doesn't necessarily make them the ones best suited to do the integration work necessary to install it without breaking the rest of your system.

    martinho, Tyng-Ruey Chuang, McClane likes this.

    martinho, martinho, McClane, McClane and 2 others shared this.