The monster that lurks or why empowering attacked groups is not a good idea

Nowadays it doesn’t come as a surprise that those with power end up abusing it to harm those which are on a worse capability to defend themselves. This is something that happens at all levels of society and it just requires something that makes you different from those with power to be triggered.

This seems to have been a social mechanism that has existed in humans for a long time, by creating an us and a them it’s possible to keep cohesion on the social structures by focusing energies on protecting from the other (usually smaller) group.

Sigue leyendo The monster that lurks or why empowering attacked groups is not a good idea

March 2015’s OpenSSL releases and security advisory

Today the OpenSSL project has released new versions for the 0.9.8, 1.0.0, 1.0.1 and 1.0.2 branches of the library. My current employer Coresec Systems AB has allowed me to spend some time preparing for the release and documenting a bit the issues and possible work arounds.

In this blogpost I will release some of the insights on what I have found about these issues, the risks they carry and, when possible, how they may be worked around if patching is impossible for you. This information is still provisional pending a full code analysis of the issues. Anyways, patched versions are better than any workaround to mitigate the problem so upgrading is not only recommended but a better solution.

Sigue leyendo March 2015’s OpenSSL releases and security advisory

Feliz navidad y mejor año nuevo

Aquellos que me sigáis por otras vías seguramente hayáis visto mi felicitación navideña. La verdad es que la hice por una persona muy especial que tiene una versión única de la misma, sin embargo decidí compartir una versión menos personal de la demo con vosotros. Sinceramente espero que os guste.

Para ejecutarla basta con hacer esto en linux:
$ wget -O-
$ chmod +x xmas
$ ./xmas

Este 25 de Mayo ves a votar

Esta va a ser la única entrada que voy a escribir sobre política en este blog (al menos hasta septiembre que son las locales y nacionales en Suecia). Para los que no queráis leer todo el rollo se resume en dos cosas: en primer lugar yo voy a votar por el partido pirata (sueco), en segundo y más importante, si quieres cambiar las cosas o estas harto de la situación actual vota, porque si no lo haces todo seguirá igual.

Sigue leyendo Este 25 de Mayo ves a votar

IPv6 may be the future of P2P and thus Direct Connect

Hi, as you may have noticed there was  subnet isolation at Campus Party Europe and a symmetric NAT which made impossible direct communication between campuseros nor NAT traversal respectively.

To circumvent these limitations we created one server where users on the same subnets could talk to each other directly and decided to go with public IPv6 instead of trying to use other solutions like n2n or freelan on the secondary server with which we’d create our own IPv4 private network where all the participants could talk to each other.

In this article I’m going to cover the reasons for this decision, the effects this has had and some thoughts I have developed about IPv6 with this experience along with my prior knowledge. All in all the experience has been good and I feel compelled to keep developing and promoting IPv6 on ADC.

Sigue leyendo IPv6 may be the future of P2P and thus Direct Connect

Usando el DC en Campus Party Europa // Using the DC at Campus Party Europe

English translation still to come.

Actualización 3

Pues hemos hecho funcionar esto con IPv6. El servidor alternativo se encuentra en adcs://[2001:5c0:1400:b::29a3]:2785 Necesitaréis algún cliente con soporte IPv6 para poder conectar (el DC++ falla en las conexiones cliente-cliente pero el AirDC++ parece funcionar bien y es el cliente que recomendamos). Más información al final del artículo.

Al parecer esta gente tan amable y simpática ha montado subredes para que os sea imposible conectaros entre vosotros al final del artículo os explico que significa esto y que conlleva. He corregido la explicación de las subredes.

Pues nada, gracias a la inestimable ayuda de algunos campuseros y tras mucho esfuerzo hemos conseguido hacer funcionar el DC en la Campus Party. La verdad es que ha estado complicado ya que el servidor es externo (por razones obvias ya que no queremos que echen del evento a nadie por montarlo) y la red de Campus Party efectúa NAT mapeando 4096 IPs privadas a 512 IPs públicas. A continuanción os explicaré como configurar el cliente para poder utilizarlo.

Sigue leyendo Usando el DC en Campus Party Europa // Using the DC at Campus Party Europe

A review on my visit to SFK12 in Kosovo


As some of you may or may not know this year I was in Kosovo to attend the Software Freedom Kosova conference organized by the nice folks at FLOSSK. Summarizing it up a lot, really nice conference where you get a chance to see why Kosovar people have managed to recover so fast from such a cruel war and destroy a few false myths about the place in the way.

But as always I suppose you’d be more interested in knowing what happened so…
Sigue leyendo A review on my visit to SFK12 in Kosovo

Críticas y comentarios de un antiguo estudiante de informática.