| Andrew Cooke | Contents | Latest | RSS | Twitter | Previous | Next


Welcome to my blog, which was once a mailing list of the same name and is still generated by mail. Please reply via the "comment" links.

Always interested in offers/projects/new ideas. Eclectic experience in fields like: numerical computing; Python web; Java enterprise; functional languages; GPGPU; SQL databases; etc. Based in Santiago, Chile; telecommute worldwide. CV; email.

Personal Projects

Lepl parser for Python.

Colorless Green.

Photography around Santiago.

SVG experiment.

Professional Portfolio

Calibration of seismometers.

Data access via web services.

Cache rewrite.

Extending OpenSSH.

C-ORM: docs, API.

Last 100 entries

Re: Quick message - This link is broken; Adding Reverb To The Echo Chamber; Sox Audio Tools; Would This Have Been OK?; Honesty only important economically before institutions develop; Stegangraphy via PS4; OpenCL Mess; More Book Recommendations; Good Explanation of Difference Between Majority + Minority; Musical Chairs - Who's The Privileged White Guy; I can see straight men watching this conversation and laffing; When it's Actually a Source of Indignation and Disgust; Meta Thread Defending POC Causes POC To Close Account; Indigenous People Of Chile; Curry Recipe; Interesting Link On Marginality; A Nuclear Launch Ordered, 1962; More Book Recs (Better Person); It's Nuanced, And I Tried, So Back Off; Marx; The Negative Of Positive; Jenny Holzer Rocks; Huge Article on Cultural Evolution and More; "Ignoring language theory"; Negative Finger Counting; Week 12; Communication Via Telecomm Bids; Finding Suspects Via Relatives' DNA From Non-Crime Databases; Statistics and Information Theory; Ice OK in USA; On The Other Hand; (Current Understanding Of) Chilean Taxes / Contributions; M John Harrison; Playing Games on a Cloud GPU; China Gamifies Real Life; Can't Help Thinking It's Thoughtcrime; Mefi Quotes; Spray Painting Bike Frame; Weeks 10 + 11; Change: No Longer Possible To Merge Metadata; Books on Old Age; Health Tree Maps; MRA - Men's Rights Activists; Writing Good C++14; Risk Assessment - Fukushima; The Future of Advertising and Surveillance; Travelling With Betaferon; I think I know what I dislike so much about Metafilter; Weeks 8 + 9; More; Pastamore - Bad Italian in Vitacura; History Books; Iraq + The (UK) Governing Elite; Answering Some Hard Questions; Pinochet: The Dictator's Shadow; An Outsider's Guide To Julia Packages; Nobody gives a shit; Lepton Decay Irregularity; An Easier Way; Julia's BinDeps (aka How To Install Cairo); Good Example Of Good Police Work (And Anonymity Being Hard); Best Santiago Burgers; Also; Michael Emmerich (Vibrator Translator) Interview (Japanese Books); Clarice Lispector (Brazillian Writer); Books On Evolution; Looks like Ara (Modular Phone) is dead; Index - Translations From Chile; More Emotion in Chilean Wines; Week 7; Aeon Magazine (Science-ish); QM, Deutsch, Constructor Theory; Interesting Talk Transcripts; Interesting Suggestion Of Election Fraud; "Hard" Books; Articles or Papers on depolarizing the US; Textbook for "QM as complex probabilities"; SFO Get Libor Trader (14 years); Why Are There Still So Many Jobs?; Navier Stokes Incomplete; More on Benford; FBI Claimed Vandalism; Architectural Tessellation; Also: Go, Blake's 7; Delusions of Gender (book); Crypto AG DID work with NSA / GCHQ; UNUMS (Universal Number Format); MOOCs (Massive Open Online Courses); Interesting Looking Game; Euler's Theorem for Polynomials; Weeks 3-6; Reddit Comment; Differential Cryptanalysis For Dummies; Japanese Graphic Design; Books To Be Re-Read; And Today I Learned Bugs Need Clear Examples; Factoring a 67 bit prime in your head; Islamic Geometric Art; Useful Julia Backtraces from Tasks; Nothing, however, is lost with less discomfort than that which, when lost, cannot be missed; Article on Didion

© 2006-2015 Andrew Cooke (site) / post authors (content).

Remote Password Safe (for SUSE)

From: "andrew cooke" <andrew@...>

Date: Thu, 5 Apr 2007 14:11:04 -0400 (CLT)

I use password safe (actually a program called password gorilla) to store
all my passwords.  However, I work regularly on at least two different
computers and it's frustrating having to constantly re-synch password
database files.


One solution to this problem is to use a USB disk, but that means plugging
it in and out.  Another solution would be to rewrite password safe (which
now has a Java version).  with POrqi and Mule that would probably be quite
simple, but it's still going to be a fair amount of work just getting
access to the source, persuading people to use it, etc.

Neither of those seemed very appealing so I thought further.

Since the database is encrypted it can be made public, but that doesn't
help if you want to add passwords unless there's a way to also have write
access.  So yet another solution would be some kind of public file system.
 However, while the database is secure, there is an obvious attack by
over-writing the database (or denial of service by simply deleting it). 
So the file system cannot be completely public.

So, I needed a public file system with some kind of basic protection from
reads: webdav!  Obviously this only works if you have a web server you can
use (and configure), but it seems to be a reasonable, secure solution.

So below I'll explain what I did:

- Enable webdav on my web server
  (In Suse this is done via Yast - enable the dav and dav_fs modules in
  the HTTP configuration)

- Configure webdav.  I was already using the userdir module, so I
  decided to place things in a sub-directory of my public_html

    <Directory /home/*/public_html/dav>

        DAV On
        AuthType Basic
        AuthName dav
        AuthUserFile /etc/apache2/passwd
        AllowOverride None
        Options None

        <LimitExcept GET HEAD OPTIONS>
            Require user dav


  Obviously you need to configure dav with a suitable password too.

  Note that this provides public read access, just in case I forget
  the password while I am away :o)

  Also, my server uses SSL, so those passwords are safe from prying

- Install wdfs (alternatively you could use davfs, but Suse has wdfs
  packages pre-built).

- Mount the directory:

    mkdir passwords
    wdfs passwords -a URL -u dav -p PASSWORD

- Then start password gorilla with that database.  Easy!

- To dismount:

    fusermount -u passwords


Updated Apache Config

From: "andrew cooke" <andrew@...>

Date: Thu, 5 Apr 2007 18:40:34 -0400 (CLT)

The above didn't give me read access.  This works:

    <Directory /home/*/public_html/dav>

        DAV On
        AuthType Basic
        AuthName dav
        AuthUserFile /etc/apache2/passwd
        AllowOverride None
        Options Indexes MultiViews
        Order allow,deny

        <Limit HEAD GET OPTIONS>
            Allow from all

        <LimitExcept HEAD GET OPTIONS>
            Require user dav
            Allow from all


Comment on this post