Why would you prefer chromium-browser in sid over google-chrome

19 July 2010 — Giuseppe

I’ve seen a lot of Debian user asking:  ”What is the difference between chromium-browser in sid and google-chrome (stable)?”, “Does chromium-browser support html5, h264, vp8?”

“Why would I prefer chromium-browser in sid over google-chrome (stable)?”

  • chromium-browser is free software, google-chrome isn’t
  • chromium-browser uses (when it is possible) system libs.
  • chromium-browser supports, like google-chrome, the h264 codec (and chromium official builds don’t support it)
  • chromium-browser in sid follows the stable tree, but it contains some important (features and bugfix) backports, as for example VP8/WebM codecs (the stable google-chrome version doesn’t support it),  or the  support for “Ambiance/Radiance and Dust themes button”
  • chromium-browser uses a very recent and high-performance libv8 version, google-chrome (stable) uses an ancient version

BTW, the next step is to get chromium-browser into testing and upload a dev version (6.x) in experimental.

VN:F [1.9.3_1094]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.3_1094]
Rating: -1 (from 1 vote)

Popularity: 9% [?]

Posted in Debian . Tags: , , , . No Comments »

Seminario Sicurezza Linux & Open Source – Università di Catania

20 May 2010 — Giuseppe

Translate original post with Google Translate

Ho messo online le slide del seminario di Sicurezza tenutoso lo scorso lunedì. Potete scaricarle da qui.

VN:F [1.9.3_1094]
Rating: 9.0/10 (1 vote cast)
VN:F [1.9.3_1094]
Rating: 0 (from 0 votes)

Popularity: 1% [?]

Posted in Debian, Linux . Tags: , , , . No Comments »

Chromium ready for unstable

10 May 2010 — Giuseppe

I’m currently testing the new chromium version for unstable.

I tried to remove embedded code copies, and I’m pleased with the result.

Ubuntu i386 binary:

-rwxr-xr-x root/root 35804728 2010-05-05 12:01 ./usr/lib/chromium-browser/chromium-browser

Debian i386 binary:

-rwxr-xr-x root/root 20693336 2010-05-09 21:33 ./usr/lib/chromium-browser/chromium-browser

The latest blocker for an upload in unstable is a minor bug in libv8, but Antonio Radici should upload a fixed version this evening :)

VN:F [1.9.3_1094]
Rating: 8.3/10 (4 votes cast)
VN:F [1.9.3_1094]
Rating: +5 (from 5 votes)

Popularity: 9% [?]

Posted in Debian, Linux . Tags: , , . No Comments »

New member in the security team

14 November 2009 — Giuseppe

Even though I’m late, I would like to thank everybody  involved in my NM process and those who permitted me to join the Sec Team, and in particular:

Enrico Zini, a special thanks! Sponsor, advocate, but most of  all an exquisite person. It was he, that on holiday in 2008,  infront of a great pizza at Cortile Alessi, said to me, “So,  when will you NM?”

Steffen Joeris and Mortiz Muehlenhoff, my reference points  within the Security Team :)

Felipe Augusto Van de Wiel, my AM!

Christoph Berg, it was he who approved my NM!

Max Cetra, Trusted tester for security updates!

I hope that I haven’t forgotten too many people :)

VN:F [1.9.3_1094]
Rating: 9.7/10 (3 votes cast)
VN:F [1.9.3_1094]
Rating: +1 (from 1 vote)

Popularity: 2% [?]

Posted in Debian . 1 Comment »

I’m thinking to ask for removal of atmailopen in Debian

22 May 2009 — Giuseppe

From December 2008, I maintain the atmailopen Debian package. This is a nice webmail in PHP and Ajax , it aim to provide an elegant Ajax webmail client for existing IMAP mailservers, with less bloat and a focus on an intuitive, simple user interface.

I was very happy when it was accepted in Debian, but I was wrong:

On 19/04/2009 I noticed a Secunia advisory about @Mail (SA34704) ,and the same day I mailed upstream and asked if atmailopen is affected by the same security vulnerability. No answer as of today, 2009-05-22 …

While checking about SA34704, I discovered that atmailopen is using the vulnerable version of html2text, which could lead to code execution attacks, the same of CVE-2008-5619 in roundcube.

On 26/04/2009 I mailed upstream to inform about this issue, but as usual, nothing… no answer as of today, 2009-05-22 …

Is clearly evident, upstream doesn’t take care about security in his atmail open source version, and doesn’t provide security support.

This is not acceptable for a software in Debian, I will request a removal.

P.S. If you aren’t using the debian package, I really suggest you to patch your atmailopen version, or better, switch to another webmail.

UPDATE: atmailopen was removed from Debian

VN:F [1.9.3_1094]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.3_1094]
Rating: 0 (from 0 votes)

Popularity: 3% [?]

Posted in Debian, Linux . Tags: , . 1 Comment »

Add Debian maintainer Giuseppe Iuculano

17 November 2008 — Giuseppe

Translate original post with Google Translate

debian-maintainers (1.48) unstable; urgency=medium

   * keycheck: grep the first '^gpg: key' from jetring-apply's output.
     Closes: #505775
   * Update Jon Dowland's public key. Closes: #476804
   * Update Daniel Leidert's public key. Closes: #498805
   * Add Debian maintainer Giuseppe Iuculano. Closes: #502088
   * Add Debian maintainer Thorsten Glaser. Closes: #503726
   * Add Debian maintainer Franck Joncourt. Closes: #505232

– Anibal Monsalve Salazar <anibal@debian.org>  Sat, 15 Nov 2008 18:44:42 +1100

:D

Tante grazie ad Enrico per l’ “avvocatura” ;)

VN:F [1.9.3_1094]
Rating: 6.0/10 (1 vote cast)
VN:F [1.9.3_1094]
Rating: 0 (from 0 votes)

Popularity: 2% [?]

Posted in Debian . Tags: , . No Comments »

Smbind – Tool in php per la gestione di un DNS

15 June 2008 — Giuseppe

Translate original post with Google Translate

Smbind è un tool in PHP che permette di amministrare un DNS (bind).

Tramite l’interfaccia web è possibile creare, modificare, gestire le zone. Ecco alcuni screenshots:

Zona

Opzioni

Creare zona

In attesa di uno Sponsor per chi usa debian o ubuntu ecco come installarlo:

(debian) Aggiungete al vostro sources.list:

deb     http://debian.iuculano.it/apt  etch main contrib non-free
deb-src http://debian.iuculano.it/apt  etch main contrib non-free

Mentre per Ubuntu:

deb http://ppa.launchpad.net/giuseppe-iuculano/ubuntu hardy main
deb-src http://ppa.launchpad.net/giuseppe-iuculano/ubuntu hardy main

Poi da terminale:

apt-get update && apt-get install smbind

Una volta terminata l’installazione:

usermod -G bind www-data

/etc/init.d/apache2 restart

echo ‘include “/etc/smbind/smbind.conf”;’ >> /etc/bind/named.conf.local

/etc/init.d/bind9 restart

Adesso potete aprire il browser ed andare su http://localhost/smbind/ .

Login e password di defualt sono entrambe ‘admin’, ma naturalmente dovete cambiare la password immediatamente :-)

VN:F [1.9.3_1094]
Rating: 6.0/10 (1 vote cast)
VN:F [1.9.3_1094]
Rating: 0 (from 0 votes)

Popularity: 3% [?]

Posted in Debian, Linux, Ubuntu . Tags: , , , , , . 1 Comment »

Perchè non usare SPF

10 April 2008 — Giuseppe

Translate original post with Google Translate

In questi giorni nel forum di Hostingtalk ho avuto una accesa discussione sul disastroso rapporto costo/benefici di SPF (Sender Policy Framework)

Dove sta l’equivoco? Molti sono convinti che per attivare SPF basti solo inserire un record nel DNS. In realtà questo serve solo a chi poi userà effettivamente SPF per confrontare l’indirizzo ip del mittente con quelli consentiti.

SPF è nato nel 2003 e non è mai decollato a causa dei troppi problemi di implementazione (che si traducono in falsi positivi), ad oggi l’unica entità rilevante che spinge SPF è Microsoft (con Hotmail)

I principali 4 punti deboli di SPF sono:

  1. Il forwarding *NON* funziona, viene bloccato.
  2. Ci sono hoster che per ragioni varie *NON* offrono smtp per invio.
  3. Iniziano ad esserci provider (in Italia Tele2 e H3G) che bloccano la porta 25 in uscita, consentendo l’invio delle email *SOLO* tramite proprio smtp.
  4. Gli utenti medi, non sono educati per usare un smtp diverso per ogni account

Detto questo, se sei un grosso ESP che ha seri problemi di spam (vedi hotmail), te ne freghi di tutto e lo usi (per la serie: il cane ha le pulci? Diamogli fuoco e risolviamo il problema). Se invece sei un sistemista di un piccolo/medio provider, isp, o simile, analizzi la situazione e capisci che SPF è assolutamente da scartare.

Online si trovano parecchie persone che, probabilmente per la approssimativa conoscenza tecnica di SPF, fanno una promozione quasi ideologica di SPF, presentandolo quasi come il Salvatore dello spam, e attribuendo la poca diffusione allo scarso impegno dei provider nel combattere lo spam. In realtà la poca diffusione di SPF è dovuta semplicemente al fatto che non funziona.

Microsoft fa bene ad usarlo? Mah… da un certo punto di vista forse sì (di sicuro non è una questione ideologica), hanno grossi problemi di spam, e tutto sommato l’enorme  quantità di falsi positivi che SPF genera può andare bene.

VN:F [1.9.3_1094]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.3_1094]
Rating: 0 (from 0 votes)

Popularity: 2% [?]

Posted in Internet, Linux . Tags: . No Comments »

Ubuntu Gutsy CK Kernel

11 November 2007 — Giuseppe

Translate original post with Google Translate

(English version below)

Ubuntu Gutsy è arrivata, e anche per questa release rilascio un kernel patchato con le CK patch.

Con Kolivas purtroppo ha deciso (giustamente) di abbandonare lo sviluppo, ragion per cui questo sarà l’ultimo rilascio anche per me. Dalla prossima release ci dovremmo accontentare del nuovo CFS di Ingo Molnar

Vi ricordo come al solito:

Cosa sono le CK patch?

Cito l’ autore:

These are patches designed to improve system responsiveness with specific emphasis on the desktop, but suitable to any workload.”

 

 

Ricapitolando, installando questo kernel avrete:

1) Compilazione ottimizzata per 686 o core2
2) Ck patch http://members.optusnet.com.au/ckolivas/kernel/

Come installarlo?
wget http://ubuntu.iuculano.it/AE3BE9AA.gpg -O- | sudo apt-key add -

aggiungete al vostro sources.list:
deb http://ubuntu.iuculano.it gutsy all
deb-src http://ubuntu.iuculano.it gutsy all

Per 686 (Pentium4):
sudo apt-get update && sudo apt-get install linux-686-ck linux-headers-686-ck

Per core2:
sudo apt-get update && sudo apt-get install linux-core2-ck linux-headers-core2-ck

Diamo un nuce -10 al server X:
sudo dpkg-reconfigure -plow x11-common

Alla richiesta ” Valore di nice per il server X. ” digitiamo -10

Feedback molto graditi :)

English version

These are patches designed to improve system responsiveness with specific emphasis on the desktop, but suitable to any workload.

Installing this kernel you have:

  1. 686 (Pentium4) or Core2 optimization
  2. Ck patch http://members.optusnet.com.au/ckolivas/kernel/

Add the gpg key:

 

Code:

wget http://ubuntu.iuculano.it/AE3BE9AA.gpg -O- | sudo apt-key add -

Add the sources.list entries in a separate file:

 

Code:

echo "deb http://ubuntu.iuculano.it gutsy all" >/etc/apt/sources.list.d/ck-kernel.list

 

Code:

sudo apt-get update

For 686 (Pentium4):

 

Code:

sudo apt-get update && sudo apt-get install linux-686-ck linux-headers-686-ck

For core2:

 

Code:

sudo apt-get update && sudo apt-get install linux-core2-ck linux-headers-core2-ck

Feedback are welcome

VN:F [1.9.3_1094]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.3_1094]
Rating: 0 (from 0 votes)

Popularity: 1% [?]

Posted in Linux, Ubuntu . Tags: , , , , , , . 17 Comments »

Thunderbird 2 per Ubuntu Feisty

14 May 2007 — Giuseppe

Translate original post with Google Translate

Purtroppo ubuntu feisty non ha thunderbird2 (è stato rilasciato successivamente).

Mi sono quindi deciso a backportarlo da gutsy

Potete installarlo inserendo nel vostro sources.list:
deb http://ubuntu.iuculano.it feisty thunderbird
deb-src http://ubuntu.iuculano.it feisty thunderbird

Se poi volete pure provare la versione di sviluppo di amsn (davvero carina):

deb http://ubuntu.iuculano.it feisty amsn
deb-src http://ubuntu.iuculano.it feisty amsn

Come al solito i feedback sono graditi :)

VN:F [1.9.3_1094]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.3_1094]
Rating: 0 (from 0 votes)

Popularity: 1% [?]

Posted in Linux, Ubuntu . 9 Comments »
« Older posts «
»