the answer for me is no.

many thanks to our security team for ignoring critical SSP bugs. the answer for me is no.
many thanks to our QA lead for replacing his head with a tomato. the answer for me is still no.

and many thanks to our council for supporting names like vapier and halcy0n (and wolf*lotsofnumbers*, i never knew he was into that kind of business) with their aggressive, destructive and pervasive notions of how people should conform to their fascist little black and white one in the stink two in the pink world. i still think the answer is no.

at least you got all the rotten tomatoes in one boat now and it's slowly sinking.
I'll be happy to leave you here with what you have. There have been no innovations hosted by Gentoo Linux on the security sector of host-based systems hardening for 5 years now. You fight people leaving faster than you can hire noobs to fill redundant positions because you fuckups still keep all your puppets in the right positions to decide what the public opinion is and what the people using Gentoo should "think" about your little /usr/portage experiment there.

well fuck you then, bitches.

whatever.

as always i'll have my last curtain with a song i loved when i was young- and maybe still do.
and now i have to admit- the answer to the above question for Gentoo Linux is definitely yes.

CAKE - The Distance

Reluctantly crouched at the starting line,
Engines pumping and thumping in time.
The green light flashes, the flags go up.
Churning and burning, they yearn for the cup.
They deftly maneuver and muscle for rank,
Fuel burning fast on an empty tank.
Reckless and wild, they pour through the turns.
Their prowess is potent and secretly stearn.
As they speed through the finish, the flags go down.
The fans get up and they get out of town.
The arena is empty except for one man,
Still driving and striving as fast as he can.
The sun has gone down and the moon has come up,
And long ago somebody left with the cup.
But he's driving and striving and hugging the turns.
And thinking of someone for whom he still burns.

He's going the distance.
He's going for speed.
She's all alone
In her time of need.
Because he's racing and pacing and plotting the course,
He's fighting and biting and riding on his horse,
He's going the distance.

No trophy, no flowers, no flashbulbs, no wine,
He's haunted by something he cannot define.
Bowel-shaking earthquakes of doubt and remorse,
Assail him, impale him with monster-truck force.
In his mind, he's still driving, still making the grade.
She's hoping in time that her memories will fade.
Cause he's racing and pacing and plotting the course,
He's fighting and biting and riding on his horse.
The sun has gone down and the moon has come up,
And long ago somebody left with the cup.
But he's striving and driving and hugging the turns.
And thinking of someone for whom he still burns.

Cause he's going the distance.
He's going for speed.
She's all alone
In her time of need.
Because he's racing and pacing and plotting the course,
He's fighting and biting and riding on his horse.
He's racing and pacing and plotting the course,
He's fighting and biting and riding on his horse.
He's going the distance.
He's going for speed.
He's going the distance.

may the source be with you and your guards never fail at entropy.

Alex

PS: the next time you write bullshit about me in profiles/default/linux/package.use.mask, make sure you remove my name so i don't feel offended by your blatant ignorance of the problem itself.

Today one of my biggest dreams got shattered by technical deficiencies.

Phreak helped me to experiment with the virtuals in my new experimental toy profile on miranda chroots. I learned alot about catalyst and finally found out about my mistake that you need to roll up the portage tree (where you have added the created test profiles) into a portage-XXX.tar.bz2 and give this XXX name to the catalyst specs file before building the stages.

Otherwise it cannot find the profile in portage snapshot and print out an erroneous message about your profile being broken, simply because it cannot find it in the portage snapshot that was unpacked.

So, while experimenting with stage building and seeing to it that it works to create a masking of sys-libs/glibc and a virtual/libc mapping to my own testing version of sys-libs/hardened-glibc, for covering my future wanted changes for SSPx and AT_ENTROPY without touching the holy sys-libs/glibc grail of our toolchain team, it suddenly turns into a full fledged uphill battle that is impossible to win.

I am talking about reworking all affected packages in the tree to not depend on sys-devel/gcc any more but on virtual/cc or something like that- because we currently don't have a virtual for gcc. Good job, team.

Short spoken: our toolchain is currently maintained by a single person, happily monolithically aimed at glibc (and a bit of uclibc) and gcc.

Which in turn gives all the power of control over the base system, the standard lib and the compiler into the hands of one or two people without users or other devs being able to plug in or attach another modular approach to it.

Which basically means you don't have another choice but to use the glibc and gcc provided by our distribution. A distribution that was about choice, at least the last time i read it on our homepage.

I still remember the support and the backup of our gcc and glibc hackers when in 2002 and 2003 the hardened toolchain was still a young project compared to the other projects of Gentoo and how we were all working together on a shared vision... all gone.

Today it's about software quality and keeping your hands on your packages which in turn control the behaviour of a complete GNU/Linux distribution.

Thank you very much.

Alex

old but true...

Thu Jul 26 15:39:49 CEST 2007

In der griechichen Mythologie, oder war es die lateinische, oder ist das beides das gleiche, trug Atlas die Welt auf dem R

Woran erkennt man eine funktionierende Fernbeziehung- jetzt mal von der gegenseitigen Sehnsucht und den ab und zu aufkommenden emotionalen Schmerzen abgesehen?

An der immens hohen Telefonrechnung zum Beispiel.
An der j


#!/usr/bin/perl -w
## this program implements the bf2 rcon password login
### and provides a simple commandline based interface
use strict;
use IO::Socket;
use Digest::MD5;

my $host = shift or die "no hostname";
my $port = shift or die "no rcon port";
my $pass = shift or die "no bf2 rcon password";

my $cmd = join(' ', @ARGV) || 'list';

my $sock = new IO::Socket::INET(
PeerAddr => $host,
PeerPort => $port,
Proto => 'tcp');

$sock or die "no socket :$!";

while($sock) {
my $line = scalar SMALLER_SIGN $sock GREATER_SIGN;

if (!(defined($line) && $line)) {
close($sock); exit(0);
} else {

## find the Digest seed to login
if ($line =~ /\#\#\# Digest seed: (.*)/) {
my $digest = $1;
my $md5value = Digest::MD5->new();
## this is the digested password
$md5value->add($digest); $md5value->add($pass);
## login with the digested password
print $sock "login " . unpack("H*", $md5value ->digest()) . "\n";
## send the command and logout
print $sock $cmd . "\n"; print $sock "logout" . "\n"
} else {
if ( ($line =~ /^\#\#\#/) || ($line =~ /^$/) ||
($line =~ /Authentication successful, rcon ready/) ||
($line =~ /Logout successful/) ) {
next;
} else { print $line; }
}
}
}

close $sock;


This code is connecting to the rcon port of a bf2 server and expects a command.
It then returns the output of this command.

Bear in mind that punkbuster console commands like "pb_sv_plist" are only returned to the server console and will not be returned to the rcon output.

Generally, it's called this way:


#!/bin/bash

grep -v "^##" "$(dirname ${0})/bf2rcon.cfg" | \
while read host port pass
do
echo "updating $host:$port"
"$(dirname ${0})/bf2rcommand" $host $port $pass \
exec game.sayAll \"SYS load: $(cat /proc/loadavg)\"
done


while bf2rcon.cfg is a simple list of hosts, ports and passwords for executing rcon commands.

This sample tool is just printing the current load average of the server to the console of the game servers.

Of course you could print teamspeak users online or other nifty jokes.

-Alex

You can't always get what you want.
But if you try very hard, or harder, or hardened, you will perhaps get what you need.

Now, serious, i don't want to die.
I want to have 10 kids. Or 20. Or while at it, 30 should be a reasonably sized figure

In the past days i have been thinking too much about death and my life.
Turning thirty and not knowing what comes next is awful if you are like me and think too much about those things- i don't remember much about my childhood either...

To be more precise, nothing has ever been that good for me like the things happening now. I have found this woman who makes me feel so good and i still know that i can never explain to her how much i would miss her if i would not be there any more or if she would not be there any more. This is what makes me scared- and what probably forms the foundation for whole religions where it is forbidden to give your heart away just to find out how much it hurts when you love your life (and living this life of yours) so much that you cannot control your emotions any more.

I have been in love a couple of times and i never felt anything like that for somebody before.

It's like your life is absolutely perfect and complete and you want to immediately come to a full stop and say: that's it, don't go back or forward now, don't get old, don't die, don't continue with your life, just stay here forever and enjoy, enjoy, enjoy. If there would be something like an eternal entity where my conscience is stored after i have stopped living, i would like it to remain in this state. Of course this is nonsense

So, here i am- full of gratitude, thankful and blessed.
I don't know where to go from here. Because everything i do, it can only get worse. I will turn old, grey and slowly fade away in about 50 or 60 years, 70 if i'm lucky.

Status updates from school and real life:
- my tax declaration has to be redone
- still no result from my final math school test
- i think i can drive to FOSDEM (90% sure)
- on monday i am writing my last test this february (business process design/engineering)
- i don't know what to say about my job, it's still a "so so"
- my bf2 career is fine, i found a new clan =KSS= those guys are awesome and i'm having the time of my life (see above)

Finally, i would like to wish all of you a good year of 2007, this will be your year and you will only live your life once, so take the BEST out of it and make it worth it!

Cheers and thumbs thumbs up and don't get lost!

Alex

So my first born son is turning seven today.
And not to forget it's Valentines day!

So give a hug or two to your better half and be happy that you're alive.
Still no sign from the math test outcome, which means i still don't know about the result...

Anyway, time for a nap

Alex

In der Mitte seines Lebens lernt man es f

... und da gehts zur Zeit heftigst ab.

Deshalb habe ich mir mal die Frechheit erlaubt, meiner kuenstlerischen Ader als zukuenftiger wohlheissender Theaterregisseur Vorschub zu geben...

Wohl bekomms!

Das Faschingshuhn zu Trier
--------------------------

ein Trauerspiel in zwei Akten

Darsteller: Chrysantheme, Lanzelot, Rampensau

Erster Akt.

(Auftritt Chrysantheme)

Chrysantheme: Oh wie mir bewahre, wo sind meine schwarzen Koffer?

(Rascheln im Papierwald)

(Auftritt Lanzelot, schwer zermuerbt)

Lanzelot: Oh wie mir duenkt, ich muss mich formen, denn jede Rose hat auch
Dornen!

Chrysantheme: Oh sprich, du Held, was sagst du da?

(Rampensau kommt aus dem off gewackelt und streunt ziellos durch die Szene)

Lanzelot (betont abweisend an Chrysantheme vorueberschreitend und dabei
wegschauend): Ich bin der festen Ueberzeugung, dass es heutzutage keiner
Ueberzeugung mehr bedarf, gegen alles zu sein. Der suizidale Nihilismus der
Neunziger ist zur Staendekunst verkommen, das muss sich schleunigst relativieren.
Auf ein Wort, meine Knappen, wir werden Wein trinken und essen Bierschinken.

(Rampensau grunzt vergnuegt und schnueffelt nach Trueffeln)

Chrysantheme (im saloppen Marktweibergeschrei): Nun aber mal halb lang mit die
junge Pferde, so war das doch nicht gemeint!

(Rampensau wetzt erschreckt davon und schlaegt einen Haken)

Chrysantheme (wieder beruhigt und distanziert, jedoch konsterniert eruierend):
Du hast nicht zufaellig meine schwarzen Koffer gesehen, oder?

Lanzelot (lachend): Koffer haben oder Koffer nicht haben, das war doch schon
immer eine gute Frage!

Chrysantheme: Du Narrrrrr (mit langgezogenem "r").

Lanzelot (immer noch lachend): Nein, deine Koffer sind mir nicht aufgefallen,
als ich sie das letzte Mal auf dem Scheiterhaufen der Geschichte brennen sah.

(Rampensau schnarcht grunzend in der Ecke)

Chrysantheme: Oh da bin ich ja beruhigt, dann hat sich dieses Problem also
auch erledigt.

Lanzelot: Wir brauchen einen Schinken.

Chrsyantheme: Soll ich mit einem winken (rueckt ihre kuenstliche Huefte
zurecht)?

Lanzelot: Neee, lass mal, ich hab da eine bessere Idee.

(Lanzelot zieht eine Steinschleuder hervor)

Chrysantheme: Was das denn?

Lanzelot: Das siehste gleich, meine Prinzessin auf der Erbse.

(Lanzelot legt auf die Rampensau an, verfehlt sein Ziel aber absichtlich)

Chrysantheme: Du Kacknoob, lass mich mal.

(Lanzelot reicht ihr bis ueber beide Ohren feixend die Schleuder)

Chrysantheme: Wie funktioniert das?

(Lanzelot seufzt und wartet auf eine Eingebung von ihr)

Chrysantheme: Ich habe noch irgendwo einen Stein im Brett, ich glaube, den
kann ich jetzt ganz gut gebrauchen.

(Chrysantheme legt auf die Rampensau an und schiesst, diese rennt groelend
davon)

Lanzelot: Nun hast du sie verjagt! Du haettest sie erlegen muessen, ein
getroffenes Tier wird doch nur aggressiv und quaelt sich sinnlos!

Chrysantheme: Die kommt schon wieder, hier gibs Trueffel!

Lanzelot: Glaubst du? Wuerdest du wiederkommen, wenn auf dich geschossen
wuerde?

Chrysantheme: Na sicherlich nicht!

Lanzelot (mit Oberlehrercharme): Na siehste.

Chrysantheme: Dann werd doch Vegetarier, du kannst von meinen Haaren essen,
die sind aus Petersilie (wickelt sich dabei gedankenverloren die Haarstraehnen um
den Zeigefinger).

Lanzelot: Nein, danke, da such ich mir lieber einen lukrativen Nebenjob als
Spin Doctor und ernaehre mich von Luft und Liebe.

Chrysantheme: Du spinnst doch.

(Rampensau kommt zurueck und rennt vom Stein getroffen kreuz und quer durch die Szene)

Lanzelot: Weisst du was? Ich glaub, da geht noch was.

Chrysantheme: Mit meinen Haaren?

Lanzelot: Nein, du Dummerchen, mit dem Schwein.

(Lanzelot marschiert betont gutsituiert weiter und reibt sich dabei die Haende)

Chrysantheme: Maenner sind Schweine. Kein Wunder also, dass sie gerne Fleisch essen.

(Chrysantheme wandert, von Bein zu Bein hopsend, den Saum ihres Sommerkleides
haltend und ein Blumenlied summend von der Szene)

Pause.
(Vorhang faellt unter heftigem Beifall von eiligst eingeflogenen Tokio-
Hotel- Fans, Rampensau faellt tot durch den Vorhangsschlitz von der Buehne)

Zweiter Akt

XXX folgt in Kuerze, spaeter oder garnicht XXX

Link: http://www.learninggermanfordummies.co.uk/translate.php

Mit der Mathematik, besser gesagt, dem Mathematikunterricht ist es wie mit dem Sexualkundeunterricht.

Wenn es gut gemacht ist, dann kann Man(n) bei beidem mehr als unwesentlich lange zuschauen- aber wenn man es noch nie selbst "gemacht" hat, dann ist der Faktor der Wissensvermittlung doch eher gering.

Bei beidem gilt deshalb: man weiss eigentlich erst, wie es richtig "geht", wenn man es mal selbst gemacht hat- Mathematik und Sex.

Nun ist die Zielsetzung von Mathematik und Sex wohl augenscheinlich eher etwas unterschiedlich.
W