Published by manu on July 25 2010
Categories: GNU-Linux consumeriste

A few years back I heard quite a few times things like "What do I need a website for ?", some would add things like "Why would I ever post photos of my last vacation, family and/or pets online ?". Today, almost everyone I know has a social network profile (orkut, friendster, myspace, facebook, twitter, etc etc). Of course there is one major difference; Everything is neatly centralised and completely out of the control of those who create all the content. A few side effects are:

• Communications between 2 peers always goes through a third party (and their sometimes partners) system, and stays there
• Loss of publishing freedom
• Limited formats/method of communication (videos, image sizes, things like that)
• Censorship
• Terms of service - nobody ever reads this stuff ! Why ?
• Copyright issues - because this is not a private space and we must all obey United States laws
• Targeted advertisement, because of course it is not free (IMHO having advertisements in a "private" space can be slightly annoying)
• Personal data and anything you do on the site can be used for marketing studies.. up to you to weigh the good/bad

So what now ? Well this situation has created a need for something more Internet-relevant and voilà, 4 guys have decided to dedicate their summer vacation to creating an open platform that will allow people to be their own part of the social web. The idea is to provide a CMS type application that people can install wherever they want, just like a personal web site. This means you would have control over your stuff and communications would not go through a central 3rd party service and get read/analysed, altered, moderated, censored or any such thing.

This is not even about being against social networking sites but more about the limits of their design, a commercial website must follow rules/laws/regulations etc, in short they have to take some responsibility for the published content as well as the interactions between users of their service. Of course you can (and should) also add the fact that the main interest of most (if not all) of these social networking sites is revenue by advertisement, this kind of means that the user is not the real client and hence is not the most cared for.

Because each node runs completely independently the whole network is never directly connected, meaning if you wish you may completely isolate your node from the public eye, restrict access to it to specific nodes or even run a set of nodes on a private network for some kind of intranetish activities.

This project should hit the first usable stage somewhere in September so stay tuned to: Joindiaspora.com.

Published by manu on May 03 2010
Categories: GNU-Linux consumeriste global warning

The other day I was running some tests because it seemed that my VPN traffic was being slowed down quite alot. One of the tests was plain FTP, that went at about 1mbyte/sec, then FTP via VPN, that seemed capped at around 200kbytes/sec. Some say "overhead because encryption", and I believed it, until I tested between two weak machines (VIA 2ghz) on a LAN:

• FTP: 10Mbytes/sec
• FTP/VPN: 6.5Mbytes/sec

obviously 200kbytes is a joke.

I of course suspected one of my ISPs (ADSL or dedicated server provider) of doing something uncool.. this lead me to discovering two things:

• Some ISPs openly cap VPN traffic like PlusNet. They actually have a whole timetable with various speed limits for various services ! You might have noticed P2P gets the lowest speed ever and youtube is way up there.... ..in short, the client's needs are not important, what is important is who's paying.. anyway.
• a cool tool called shaperprobe. This tool helps detect if there is any packet shaping happening on your network.

I soon after figured out where the issue was, my ISPs who say they don't throttle or shape etc are correct. : ] The issue was with this WAG54GS I hooked up temporarily that has this super cool option called "SPI Firewall", it's sole purpose is to slow down your VPN traffic, that's all it does.

In the end I learned that there are many bad ISPs nowadays that decide what's good for you, I am glad mine(s) don't, but how long will this last ? As they say, it's the consumer who decides, so if this matters to you, pick an ISP that doesn't shape their bandwidth.

Published by manu on April 03 2010
Categories: WTF GNU-Linux

Today I realised something was missing, an image on my site (from an external source) wasn't showing up in my browser. I'm using Iceweasel, but not only, so I check with my other browsers, Arora, Icecat, Konqueror, no issues there. I switch off NoScript, reload, nothing. I realise via Firebug that there is a "display: none" on the img tag... . AND THEN, someone points out that it's AdblockPlus that did that.. .. . .

My point is, many years ago I ditched Windows and one of the many reasons I talked about was I don't see the point in having a system that requires so many addons and such just so I can safely and comfortably use my computer and today, when I opened the Addons window in Iceweasel and I saw how many addons I had (one's that deal with security and anti-add/spam/etc) I realised that I am going through a Total Fail Moment™. I am running Microsoft Iceweasel with Norton Anti Advert, Zone Alarm Flashblock and Kapersky Noscript...

Published by manu on February 23 2010
Categories: GNU-Linux consumeriste

After many discussions with many people over many years concerning the Open Source "problem", things are becoming clearer. Some have said that it will just die off as there is no way of making any money out of it and hence no way of surviving in today's economic system.

About a week ago Symbian has switched to Open Source, they have about 50% of the mobile market according to this article but I'm sure they have started to lose some points to i-phone and maybe a bit Android.. In any case, if they moved to Open Source it's probably has something to do with being more viable.. how things change.

: ]

Symbian website

Published by manu on February 07 2010
Categories: WTF GNU-Linux global warning

You know those lists that determine what IPs should be blocked from mail servers ? Well, maybe the idea at one point was interesting (maybe not)... . I realized today that I'm again on a couple of lists, nothing major, I realized this because an email I tried to send was blocked. After investigation it appears that these would be the among the different reasons:

• Dynamic IP (which is not true of course)
• Someone on the same netblock sent a "bad" email .... in November !!!
• A server on my netblock bounced an email
• I bought a can of SPAM and I'm sure they know about it

Some of those lists are like "Minority Report", like aspews.org who base their list on "preventive" action, meaning you don't have to have done anything wrong to be listed.. It's like when you get stopped and searched just because you're... .. you know. read more about apews and it's origins

But people are allowed to use lists, of course.. . feel free... however you might want to compare, oh because some will require payment for delisting (or a huge amount of time), some don't care.. . so be careful if you do use lists, you can compare them if you want, and/or check if/where your IP is listed

If you are using Spamassassin you may edit "/etc/spamassassin/local.cf" and add:

skip_rbl_checks 1

Yah, basically I just decided that I HATE THOSE LISTS, they are just there because people are to lazy to properly configure their servers, many don't even respect the basics. I noticed that many mail servers, and I'm talking about corporate mail servers don't even know how to properly issue the "HELO" command !!! So I'm currently testing a couple of settings, if you have Postfix you can also try:

# refuse mails from people who don't know how to say helo smtpd_helo_required = yes smtpd_helo_restrictions = permit_mynetworks,reject_unknown_hostname # refuse mails from IPs that don't have a PTR smtpd_client_restrictions = permit_mynetworks, reject_unknown_client

It's amazing how much crapmail is rejected before being sent to any filter or mailbox lookup, and this is just because the proper BASIC configuration hasn't been met..

Another tip from workaround.org (please follow this link for full implementation info):

smtpd_recipient_restrictions = [...] check_policy_service unix:private/tumgreyspf

This feels alot better, so much cleaner is the postqueue and happy I am. As for the list guys/gals, I'm sure there are plenty of them with very good intentions and such but they can still go screw themselves because they contribute to enabling crappily configured servers to function and disabling legitimate emails from properly configured mail servers... . Of course this does not change the fact that my emails might still be unjustifiably rejected by mail servers using RBL/DNSBL but at least I'm not a part of it..

One MX at a time.

Published by manu on January 18 2010
Categories: GNU-Linux consumeriste global warning

Icky on the inside ?

I noticed chrome is available for Debian/GNU Linux among others.. They have also been putting up ads around town that are impossible to miss. Some people think this is good, probably because Google is already their start page for many people, some even type the URL of the page they want to see on Google !

Some have told me to stop seeing evil everywhere and just bend over and. ... well, while I do think that the Google search engine is unquestionably good I don't think that I want to see one entity have so much control over the Internet, because the Internet belongs to everyone.. .well, things are changing.

I went through the Google Chrome Terms of Service and tried to understand a few things...

1.4 The Universal Terms, together with the Additional Terms, form a legally binding agreement between you and Google in relation to your use of the Services. It is important that you take the time to read them carefully. Collectively, this legal agreement is referred to below as the “Terms”.

Okay, I will do this. I've been signing to much crap without reading it in my life, I really like GPL software just for the fact that I don't have to reread it all over again each time I install a program.

4.4 You acknowledge and agree that if Google disables access to your account, you may be prevented from accessing the Services, your account details or any files or other content which is contained in your account.

I think this is somewhat "normal", however this a word out to those who think it's outrageous to spend 5 dollars a month for your own domain and web space : It's maybe time you found a local "organic/fair trade/green/wtf" email provider, one you can even get your own domain name with and all, it's worth the money, you'd have no ads (unless it's a ripoff) and some kind of guarantees. This would also be a step to insuring a stronger independence of the internet...

6.1 For information about Google’s data protection practices, please read Google’s privacy policy at http://www.google.com/privacy.html. This policy explains how Google treats your personal information, and protects your privacy, when you use the Services.

I'm not going there in this post, however it's got some tasty pickles..

7.3 Google reserves the right (but shall have no obligation) to pre-screen, review, flag, filter, modify, refuse or remove any or all Content from any Service. For some of the Services, Google may provide tools to filter out explicit sexual content. These tools include the SafeSearch preference settings (see http://www.google.com/help/customize.html#safe). In addition, there are commercially available services and software to limit access to material that you may find objectionable.

This is the one that scared me the most, basically, the Internet is filtered out by Google's search engine results (only because "everybody" depends on it). Now that so many people are going to get the Google browser the Internet will slowly be shaped (I almost wrote sheeped) into the Googlenet. Of course in this statement Google only reserves the right to do it, but that is a guarantee that they have the intention of doing so... (don't be fooled but the "sexual content" thing being in the same article).

18.2 You understand and agree that if you use the Services after the date on which the Universal Terms or Additional Terms have changed, Google will treat your use as acceptance of the updated Universal Terms or Additional Terms.

P.S. If you accept the terms today, hahaha lol, because you'll have to manually check every time you use the service to see if their have been updates. You can probably sign up to a newsletter somewhere, no indication of that though, so this abusive article (used by so many other companies) should be abolished ASAP.. I'm not even sure this is really legal..

20.2 From time to time, Google Chrome may check with remote servers (hosted by Google or by third parties) for available updates to extensions, including but not limited to bug fixes or enhanced functionality. You agree that such updates will be automatically requested, downloaded, and installed without further notice to you.

Imagine your computer's operating system updater not asking you if you want to update, not providing you a way to NOT check automatically... . Even when I used to use Windows it wasn't like that (not sure how it is today).

20.3 From time to time, Google may discover an extension that violates Google developer terms or other legal agreements, laws, regulations or policies. Google Chrome will periodically download a list of such extensions from Google’s servers. You agree that Google may remotely disable or remove any such extension from user systems in its sole discretion.

This turns your browser into an Iphone, meaning you can't even install an extension that they don't want.. .enough said here.

So, do you still want to install this software ?

Published by manu on January 09 2010
Categories: WTF GNU-Linux

I just read about this project to "save mysql" from the dirty hands of Oracle.. At first I thought "oh a cute little lolcat site" but then I thought "how is it that Oracle can buy out MySQL ?"

So I go to Monty's blog and go through a bunch of explanations and such, I almost cried a bit. I mean the guy has spent the last 27 years working on this database server.. To be honest since I saw the URL "helpmysql.org" I sensed something I don't like.

So I finally made it to this very good question on Monty's blog

Q: Didn't you sell MySQL to Sun? Do you want to have the cake and eat it too?
....
I lost the rights to the MySQL copyright in 2001 when MySQL AB was created and we allowed investors to come in.

Dude, you gave MySQL away, I mean you SOLD it. You gave control over it to someone else. Now if you want it back maybe YOU could make an offer to SUN... and for that you could make a page "pleasehelpmebuymysqlbackbecauseisoldeditlol.org"

Well, still, thanks alot for all your work and all, MySQL does rock and I'm sure MariaDB will be even kewler.. In the meantime I might just switch to Oracle.. . (just kidding). As sad as I'd be to see MySQL be pwned by Oracle I wont sign the petition.

Published by manu on October 16 2009
Categories: WTF GNU-Linux consumeriste

I don't really like Microsofts system but i admire their sense of humour.. :]

i found a few things on this subject:

Of course I did not get a mac

Published by manu on July 30 2009
Categories: WTF GNU-Linux

Mozilla and Co. have been providing a nice and free and open web surfing tool since a while now.. blah blah bla blah. .. ... . I am looking for another free (as in freedom of speech) web browser with some of the same features without all the crap they have been putting in there... Let me explain just one part of the problem..

Today I tried to connect to something like http://server:22 and to my biggest surprise I was told "Port Restricted for Security Reasons". I figure "wow, that's almost nice, now where is the "Thanks for the warning but I know what I'm doing" button.. . and then i realize what had happened. .

I and many others it seems, have become so dependant on this "ONE and ONLY" (usable) web browser that now they can do things like that without risking vriots.. . I'm sure there are many other "features" that have become problems for various users with different requirements and different usages etc etc.. . Apart from going into the "about:config" menu it's impossible to go around that.. . It seems to me that Firefox is becoming a thin corridor with thick walls (and so many features and plugins to hang up on those walls).. .

if you know of a good fork or an usable alternative browser tell me about it...

Published by manu on July 14 2009
Category: GNU-Linux DISS updated, now with apache suexec and a few settings here and there to make things a bit more secure (or a bit less insecure, your pick).. . Goto diss.manurevah.com download page

Published by manu on May 16 2009
Category: GNU-Linux

I finally got to a point where i'm not to ashamed to actually publish this project I've been working on for a little while now.. It's a set of scripts to automate installation of a typical Debian server.

Click enter to go to the dedicated website