The mantle of Galileo

"To wear the mantle of Galileo, it is not enough to be persecuted: you must also be right." -- Robert Park

Barbering - en oplevelse?

Jeg har gennem længere tid ikke været helt tilfreds med min huds tilstand når jeg har barberet mig med min gode gamle Mach 3.

Som enhver god nørd valgte jeg selvfølgelig at google lidt om emnet. Efter at have set en bunke YouTube-video'er (ja, om barbering; de findes!) besluttede jeg mig for at kaste mig ud i det helt store udstyrscirkus.

Jeg anskaffede mig en barberbørste af grævlingehår, en Merkur Progress skraber og noget barbercreme på tube, after shave balsam og pre-shave creme fra Proraso.

Tags:

Vågn op DR!

Nordmændene er foran.

Tags:

Book Meme

"In 1666 he was barely beginning to understand", "Isaac Newton" by James Gleick.

Rules:

  • Grab the nearest book
  • Turn to page 56
  • Find the fifth sentence
  • Blog it

"Randomize all source ports"

Admitted, I haven't spent a huge amount of time doing DNS stuff, but I
believe that I know a bit about it.

In his slides about hardening the .dk infrastructure to Kaminsky-style
attacks, Ram Mohan had the following as a bullet point: "Randomize all source
ports for DNS responses".

While I don't disagree, that source port randomization for queries
makes a lot of sense, how in the world would it do anything for responses?

Firstly, it wouldn't work, since the recursive resolver expects the response
to come from the server/port it requested it from, and that means port 53.

registrant.dk

Guan har valgt at tage den helt store pakke tudekiks frem, så jeg tænkte at jeg lige ville offentliggøre den mail jeg sendte til ITST og CC'ede registrant.dk på.

Man kan ikke både blæse og have mel i munden. Hvis man kalder sin forening for "Foreningen af Danske Domæneregistranter", så kan man sgu ikke være oprettet med det ene formål at vælte dk-hostmaster. Det er simpelt hen for tyndt at signalere at man repræsenterer danske domæneregistranter, uden nødvendigvis at gøre det.

Which Danish ISPs have patched their recursive resolvers?

The proposed fixes are only postponing the attack, the real fix is somewhere
down the road, but it's still interesting to know how the Danish SPs handle
this.

So far, the following have been verified "more secure than before":

  • Cybercity
  • Fullrate
  • TDC
  • Telia (incl. Stofa)

Travel plans

All times are local

CPH     LHR     18-06-2008      07:55   BA 811  18-06-2008      09:05
LGW     MCO     18-06-2008      12:45   VS 15   18-06-2008      16:55
MCO     CVG     19-06-2008      07:40   DL 1232 19-06-2008      09:46
CVG     MCO     22-06-2008      19:45   DL 1559 22-06-2008      21:52
MCO     LGW     02-07-2008      19:25   VS 16   03-07-2008      08:30
LHR     CPH     03-07-2008      12:05   SK 1512 03-07-2008      15:05

Pages

Subscribe to nerd.dk RSS