The Quick Start Guide

  
  sudo apt-add-repository ppa:zescrow/ppa

  sudo apt-get install zescrow

  sudo apt-get install zescrow-client

Unhappy Users Don't Back Up their eCryptfs Passphrase

• "Through idiocracy I have screwed up my encrypted home directory and if possible I need help getting it back."
• "I was trying to mount my encrypted home directory from a livecd in order to back up my data (according to the instructions), when I accidentally deleted one of the .ecryptfs folders in my encrypted home."
• "Mr Kirkland, my name is MB. I used an Ubuntu system with ecryptfs. Something happened and it all went up in smoke. I saved a backup and moved on. Chalked it up to bad backup practices and moved on. I found the encrypted backup a few days ago, and I've been trying to unscrew it. I *think* I found the old wrapped-passphrase file, and I tried to fix it. So far, I've been unable".
• "Please help as I am stuck in Korea and will be totally shagged without my e-mail and data. I have 6 months un-backedup work on the disk, of course. And I saved the password for the disk on my home partition...great move eh?"

But Happy Users Do Back Up their eCryptfs Passphrase!

• "you saved my life, thank you!"
• "Where do I send hugs? It's great, thanks so much! I just want to add my note"
• "Worked like a charm - thanks."
• "YOU SAY IT! *YOU* *THE* *MAN* JUST SAVED MY LIFE! THANK YOU"
• "Thanks $deity and Dustin, this method works for recover my encrypted private directory and backup it to external drive. Thanks again for this tutorial."
• "Thanks Man!! it worked for me!!"
• "Today, making a liveCD and following your instructions above put a massive smile on my face. I can't believe I've now got access to everything again and nothing is lost. Thank you so much for sharing your knowledge - I shall sleep well tonight!"
• "Thank you for this addition to Natty! I was having a hard time mounting my files on a system I wrecked ;)"
• "thank's a lot, u'r save my life"
• "My god. Thank you so much! I tried to upgrade to 11.04, and it wrecked my OS. This is a lifesaver."
• "This is cake my friend nice job! I remember when this was stuff was hard. I've been trying to recover a drive for some time now."
• "I just wanted to say thanks for building this. I used it to recover a ~/.Private directory on an external drive, and it worked flawlessly. It's folks like yourself building tools like this that makes open source projects such a pleasure to use. So kudos, and thanks."

Mary Smith ga.marysmith@gmail.com 7:37 PM wrote:

Hi Dustin Kirkland,My name is Mary Smith & I am the Sales Manager of a large auto dealer group, we actually have a store in Conyers,GA.We are selling the 2009 Cadillac CTS-V, for a customer of ours. It is an Original, non-smoking adult owner and was parked in the indoor garage most of the time. Very fast, powerful but yet smooth drive. It is loaded with all the standard features. No accidents. All power features work properly just like they should and everything is in excellent working condition. The carpeting is very clean and stain free. No rips, no odors. This is a non smoker vehicle. A real head turner on the road. Always stored inside and never driven in the snow. Black Raven Exterior / Ebony Interior Leather Seating with Suede Inserts.Navigation System.AM/FM Stereo with CD/DVD Player, Bose 5.1 Cabin Surround Sound 10 speaker system. 40GB Hard Drive Device.Bluetooth.Universal Home Remote. 5 Speed Manual Transmission.The price is $35,750 ( the owner selling it due to a change of job)This car has less than 15,000 miles and a CLEAN CarFax with One Previous Owner! The mileage represented on this vehicle is accurate.We proudly stand behind each vehicle we sell because it has passed a thorough inspection. VIN# 1G6DN57P590172365The warranty is full active, fully transferable to the new owner.The vehicle is warranted as being free of lien. It has a clean title in to the owner's name. The pictures speak for themselves. If you need more details or would like additional pictures, please contact me.

-- Thank-You!

Mary Smith

951 Dogwood Dr

SE Conyers, GA 30012

sales@ga-autogroup.com

1. On the surface, this seemed very attractive. It's pretty much the exact car I'm looking for, but at a significantly-better-than-market price (flag #1).
2. I have been shopping at Cars.com, though I don't recall contacting this individual or dealer (flag #2).
3. I found it slightly odd that she would have sent this email from ga.marysmith@gmail.com, rather than an @ga-autogroup.com address (flag #3), but hey, maybe their internal email system was Exchange or worse (Lotus Notes).
4. While the prose was readable, there were a couple of missing periods, sentence fragments, and poor use of capitalization. Also, the description claims a 5-speed manual transmission, while this car only comes in a 6-speed manual transmission (flag #4).
5. So I visited the website, ga-autogroup.com, and found a small collection of used cars, including the car advertised here, at the price listed in the email. While the website was reasonably well done, I found it odd that the domain name had only been registered on March 27, 2012 -- less than a month ago (flag #5).
6. The IP address hosting the site, 50.28.2.79, is also hosting 7 other similarly suspect looking auto dealership websites: quadcitiesnewandusedcarsandtrucks.com, carmau.com, mamotorsllc.com, randycrowlautosales.com, blueridgeautos.com, etnaautosolutions.com, imperialmotorspdx.com (flag #6).
7. The physical address listed in the email does match the one on the website -- 951 Dogwood Dr SE, Conyers, GA 30012 -- but that address doesn't actually exist! There are only even numbered addresses on that street, including several car dealerships, but none of them named GA Auto Group (flag #7). Google Streetview helped me browse the area remotely.
8. The text on their home page claims to "have sold over 10,000 cars" but I couldn't find a single review (positive or negative) about them on the internet (flag #8). That's just not even possible in today's world, when buying and selling vehicles over the Internet.
9. They also claim to be a "Carfax Advantage Dealer", but checking Carfax's website, there's 12 Carfax Advantage Dealers with a matching zipcode, but none of them are this GA Auto Group (flag #9). I contacted Carfax and they had never heard of this dealership.
10. I called the phone number (albeit after hours) listed on their website, 1 (678) 487-7289, and received a completely generic "Please leave a message" recording (flag #10)...
11. ...in a vaguely British accent (flag #11). Have you ever been to Georgia? If not, watch a few clips of Gone with the Wind on Youtube (unless you have 6 hours to kill).
12. The "About Us" section of the website claims that they have been in business since 1981 -- odd for a company that just launched its website 30 days ago (flag #12).
13. I checked the Conyers Chamber of Commerce website and there's no record of GA Auto Group (flag #13). I also picked up the phone and called the Chamber of Commerce this morning. No one there had ever heard of the auto group. Pillar of the community since 1981, eh?
14. The "Service" page of the website has a top notch photo of an automotive service department -- really clean and slick looking! Using Google's Search by Image technology, it's remarkable that the Auto Group of San Antonio has the exact same service facility (flag #14)!
15. I paid $40 and bought the Carfax report, which shows an excellent, clean, never-wrecked vehicle matching the description. However, VINs are not secret -- anyone could claim to have possession of a vehicle with a given VIN. Googling around for the listed VIN, I see the same car for sale on 7 different websites (flag #15), and tellingly, more appropriately priced on a few of those.

On Tue, Apr 17, 2012 at 5:53 PM, Robert Linden wrote:In the spirit of open source, trying new things, etc... I'm considering replacing my iPhone with an Android phone. I've done some research, but wanted to get your thoughts on things. I know "Ice Cream Sandwich" is the latest release of the OS, and next month the big wave of new phones will hit the market with this version of the Android operating system. I believe that the Samsung Galaxy is the only one currently out with the latest OS already on it, right?

Some things I'm wondering about are... Is there a phone / carrier that is more 'open' than others? I heard Eddie talking at the All Hands how he had just upgraded to 'Sandwich' on his phone... I know that this isn't always possible to do, is it? The "guy at Best Buy" mentioned a phone that had "less bloat-ware" and "free apps" installed (a desirable situation I think). I didn't make note of this. Can I "un-bloat" my phone? Do you have to "jailbreak" some Android phones, like you can do with iPhone to open it up? I'd appreciate any advice / recommendations if I do decide to make the switch soon...

• 2,405 successful password authentications as the guest user!
• And only 5 of you have +1'd the Google+ post? Yeesh :-) I reckon XKCD is right :-)
• 308 successful public key authentications as the ubuntu user
• from 2 different IP addresses which I can confirm are both mine (home and office), whew!
• 16,002 failed password attempts for the root user
• seriously, people?
• 6,813 more failed password attempts for some 4,929 other random invalid users on the system, originating from the following malicious IP addresses, damn you!
• 108.15.99.40
• 115.178.77.152
• 115.238.176.98
• 118.67.249.136
• 119.10.114.200
• 121.14.46.119
• 123.125.149.134
• 123.215.30.134
• 124.238.214.46
• 176.32.184.75
• 199.119.204.3
• 211.91.224.131
• 216.196.184.5
• 216.230.144.226
• 222.174.35.3
• 60.31.123.54
• 61.135.199.195
• 61.50.247.173
• 68.169.46.31
• 76.176.60.100

1. Cobble together a little desktop machine from some scrap hardware laying around
2. Install Xubuntu 11.10 with automatic login
3. Add a Logitech C910 HD web camera
4. Install Skype
5. Create a new Skype account
• Set it to automatically accept calls from Kim and I (only!)
• Set it to automatically enable video
• Disable all of the annoying notifications and sounds
6. Add this new user "babyroom" to my Skype contacts, as well as Kim's; obscure it as much as possible

mencoder -fps 195/1.001 \
  -ovc copy \
  -audiofile soundtrack.mp3 \
  -oac copy input.webm \
  -o output.webm

• Row 1:
• Ubuntu Jaunty "I Ubuntu My Desktop"
• Puppet Labs, Peace/Love/Mozilla
• Linux Foundation 20th Anniversary of Linux
• Google Summer of Code (Mentor)
• Row 2:
• Texas Linux Fest
• IBM Community
• Ubuntu Precise Pangolin
• Linux Foundation (back of shirt, weird, hard to read, fit color scheme)
• Row 3:
• Linux Plumbers (Santa Rosa)
• Ubuntu Developer Summit (Orlando)
• OpenStack (Boston)
• Open Source Red Hat Summit (New Orleans, 2005)
• Row 4:
• Ubuntu 10.10 Maverick Meerkat, Fedora Project (FudCon 2005, Boston), Ubuntu Developer Summit (2008, Prague), Ubuntu 10.04 Lucid Lynx
• Slashdot
• Ubuntu (simple, probably my first Ubuntu shirt, circa 2005!)
• Ubuntu (all release version and code names 4.10 - 9.04)
• Row 5:
• Google
• Ubuntu Developer Summit (Barcelona 2009)
• Ubuntu 8.04 Hardy (the most beautiful Ubuntu t-shirt ever, which either shrunk too much, or my belly grew too big; let's say it shrunk too much)
• VMWare Cloud Foundry (Kim wanted a black t-shirt in this spot?)
• Row 6:
• Gazzang, the little start-up that could (lure me away from an awesome gig at Canonical)
• Back of Texas Linux Fest
• Back of Ubuntu 10.10 random 1's and 0's
• Ubuntu Ensemble DevOps t-shirt before the Ensemble project name was deprecated in favor of Juju :-)

• Gazzang Launches Big Data Encryption and Key Management Platform
• Hadoop Users Could Get Their First Taste of Real Encryption
• And a growing list of subtle clones...
  
  

ssh guest@mondrian.byobu.co

1. First, it hardcodes the color values of red, yellow, blue, and white from a 256 color palette. To do so, I used the color picker utility in gimp against Mondrian's Composition 10, 1939–1942.
2. Next, it chooses some random number of rectangles between 10 and 40, which seemed to me to be fairly representative of most of Mondrian's geometric compositions.
3. Then, from the randomly numbered rectangles, 3 are chosen -- 1 for red, 1 for yellow, and 1 for blue. I fully well appreciate that Mondrian put far more thought into what regions where colored, and which color, how much, with great precision and balance. I hope one day to decode his algorithm, but for now, my code simple chooses these at random.
4. Now, tmux does a bit of the hard work for us, creating a new window in byobu, sets the background to our particular white, and splitting that window into a number of panes matching our randomly chosen amount.
5. Finally, one pane each is colored red, yellow, and blue. Note that tmux does not support the classic UNIX terminal feature bce (background color erase), so instead, we use a one-line perl script to color each pane.

1. Have you ever wanted to just download some raw data, maybe some code or text, from a pastebin?
2. Or have you ever needed to pass someone some raw data, perhaps binary, perhaps text, perhaps an entire directory tree, and just wanted to give them a URL?
3. And have you ever wanted to do that totally securely?

1. $ pbget http://pastebin.com/ut6MHMWJ
   usr/bin/pbput
   INFO: Output is in [/tmp/pbget.60RezTX8QF]
   
   

2. $ bzr branch lp:pastebinit
   Branched 150 revisions.
   $ pbput pastebinit
   http://pastebin.com/8ReP9QLV

   
   Note that you (the poster) might have to visit that url once manually and enter a captcha, to convince pastebin.com that you're not a bot.
   
   But you can now:

   pbget http://pastebin.com/8ReP9QLV

   
   Try it!
   

3. $ pbputs supersecret.txt stgraber@stgraber.org
   

   
   You can try downloading that one, but it's encrypted with Stephan's public key, so he's the only one who can make any sense out of it!

Proceeds from the race directly benefit Ugandans, Rwandans, and citizens of the Democratic Republic of Congo in veterinary educational training, with the end goal of protecting the highly endangered Mountain Gorillas in Africa. In 1987 there were only 248 mountain gorillas alive in the world, but through the veterinary and conservation efforts of the MGCF, the population has nearly tripled to 720.

Mile 1     9:56 Min/Mi
Mile 2     9:30 Min/Mi
Mile 3     9:38 Min/Mi
Mile 4     9:29 Min/Mi
Mile 5     9:21 Min/Mi
Mile 6     9:07 Min/Mi
Mile 7     8:58 Min/Mi
Mile 8     8:46 Min/Mi
Mile 9     8:37 Min/Mi
Mile 10    8:44 Min/Mi
Mile 11    8:35 Min/Mi
Mile 12    8:27 Min/Mi
Mile 13    8:18 Min/Mi
Mile 13.1  7:53 Min/Mi

Mile 1     8:59 Min/Mi
Mile 2     8:56 Min/Mi
Mile 3     9:10 Min/Mi
Mile 4     9:07 Min/Mi
Mile 5     9:02 Min/Mi
Mile 6     9:08 Min/Mi
Mile 7     8:54 Min/Mi
Mile 8     8:39 Min/Mi
Mile 9     8:48 Min/Mi
Mile 10    8:50 Min/Mi
Mile 11    9:04 Min/Mi
Mile 12    8:47 Min/Mi
Mile 13    9:16 Min/Mi
Mile 13.1  7:40 Min/Mi

• 10 years ago, you had to know how to deploy and run a LAMP stack, and hack your way around Apache, MySQL, PostgreSQL, PHP, Perl, and Python. You would shriek in horror at bad HTML and CSS and could really make a website sing with a little Javascript.
• 9 years ago, I wanted to see someone who regularly compiled their own upstream kernel, maybe tweaked a few configuration options on or off just for fun. Bonus points for each additional software package you compiled from source. Gentoo users were shoe-ins.
• 8 years ago, I wanted to talk to people who were sending and receiving PGP or GPG signed, encrypted email. I was delighted by those who had at least 1024D keys!
• 7 years ago, I found users who were willing and able to tweak their SELinux policies and AppArmor profiles absolutely intriguing. If you were running SELinux in enforcing mode on a production system, well, damn, you probably got the job!
• 6 years ago, I wanted someone who had built their own Beowulf cluster, for fun, over the weekend. If not Beowulf, then some sort of cluster computing. Maybe Condor, or MPICH.
• 5 years ago, I'd structure some conversation around reinstalling dd-wrt or openwrt firmware on routers. What serious hackers would run stock router firmware?!?
• 4 years ago, I needed you to have experience with open source virtualization, such as KVM, Xen, and QEMU. Oh, and surely you're running MythTV on a few computers around the house, right?
• 3 years ago, it was all about developers who had Launchpad or Github accounts, had written some open source software and packaged it for Ubuntu or Fedora. While your friends update one other over Facebook, you're pushing updates over git and bzr.
• 2 years ago, I was interested in people who had built or deployed their own cloud infrastructure using Eucalyptus or OpenStack.
• And last year, it was all about the move from traditional configuration management to cloud-ready service orchestration; experience with Puppet/Chef/Juju were golden.

-utils-96

• https://launchpad.net/ecryptfs/trunk/96

- Right, RSA 4096 is definitely the way to go - Ubuntu or Fedora? - Did you read Bruce Schneier's post today? - Wow, check Slashdot! - Open a new terminal - Emacs or Vi? - Grab my public key - apt-get dist-upgrade - Sure, I encrypt my home directory - Hang on, I'm recompiling my kernel - PC Load letter???? The f*ck does that mean? - Yeah, I need to merge those changes - We're moving from MD5 to SHA512 hashes - Of course I've rooted my Android! - Chef or Puppet? - There's an XKCD about that :-) - Users, I swear...add it to the FAQ - Buffer overflow, uh oh... - Python or Perl? Ruby!?! -- you gotta be kidding me :-( - You don't have to forward me that email. I've already seen it. You don't use email encryption :-) - Would you sign my public key? - Fire up an instance in EC2 - My kernel oops'd - TCP or UDP? - There's not enough entropy on this friggin machine! - You haven't rooted your phone? - No open access points? I see 12 running WEP. Give me a minute... Okay, I'm in. - Where's your public key? - Drop that in a pastebin - Okay, I have it. What's your fingerprint? - Java or C++? - What do you think of Unity? - OpenStack or Eucalyptus? - Check StackExchange - Shit, not another core dump...

1. Bootmail now sends a message on both boot, and shutdown, using an upstart job. Big thanks to Clint Byrum for a bit of help on that one!
2. Bootmail has always sent GPG-signed email. But now, it will actually send GPG-encrypted email too! All you need to do is set the RECIPIENT_KEYID variable in /etc/bootmail/gpg.conf to your GPG key id, and bootmail will send you GPG encrypted AND signed boot and shutdown messages!

$ ssh-import-id edygarcia sergio-pena
INFO: Successfully authorized [edygarcia] 
INFO: Successfully authorized [sergio-pena]

I think you should call him...Honey, but play on the "e" ... and the quotes actually look like claws. Hon"e"y. The "e" fits perfectly in the hand. Plus, when he is standing, he really forms an H. I am no artist but I am sure you can see the H in its body. I know you are just looking for a name... but I wanted to show you why I thought the name fit.

I think the name Henry would be the perfect name for the honey badger. The name Henry refers to the noble politician Henry Clay. Henry led a defensive army when it came to the war of 1812. By naming the honey badger Henry it will set the tone of the project to have a well strengthened background. By being a member of the war hawks, Henry was always ready for a battle. He knew he would not be able to be defeated. I feel this is a great name for the honey badger because Henry Clay is a well known political leader in United States history. When people hear this name they will be drawn to it because of the historical accomplishments of Henry Clay. Henry was also known for living a very long time. By Henry living a long time this means that the project will be around for a long time too. He outlived the majority of his fellow leaders. By using his historical context the project will have a face that will never be forgotten. The project will have a mascot with a defensive output that will make customers want to bring their services there.

I really appreciate the new logo; it is a major upgrade to the last. It has more vibrant colors and an all around better design. It isn’t as plain or boring as the key overlapping the pie chart. With a great logo, the project should want a great name to go along with it. This is why Boris the Badger would be a perfect name for your project's new honey badger logo. Boris the Badger would be a great name for eCryptfs' new honey badger logo. This name has significance to the honey badger. A honey badger is fierce and strong, much like what the name means. According to 2000names.com, the name Boris means a battle or fighter. It was derived from the name Bogoris, meaning small. Since the honey badger is one of the smallest and fiercest warrior animals around, I believe that this name definitely suits the eCryptfs honey badger logo. He certainly looks fierce! eCryptfs is a great project and should have a really awesome name to go along with their new logo. Boris the Badger would be the best name for the honey badger because it represents the idea of a warrior or fierce battle. The honey badger is a ferocious warrior animal and will go to great lengths to defend itself, much like the project will go to great lengths to protect files and software.

Reviewing possible names for the new honey badger design, I've decided that "Harvey, the Honey Badger" sounds the best. Not only is this name appropriate because of its beginning with an "H," but the name "Harvey" also means, "battle worthy." When determining which names would be possible for the new logo's design, I kept in mind that defense was a major part of choosing the "fitting" name. Having a defensive name, while at the same time establishing trust, was very important. Not only does the name "Harvey" build trust, it also has a background that allows for an understanding that he "means business." Like a true honey badger, he "takes what's his!" Paul Harvey is famously known for his "Rest of the Story" segment, which was watched by millions until his death at the age of 90. The name Harvey can be related to many things, including the stamina held by Paul Harvey Himself, and the impact of his life felt by millions of Americans. This "Harvey" could be looked to for the "rest of the story" when it comes to protecting software and programs being used. The finality of such a name could be applied to the logo of a project that protects and defends. eCryptfs is software that thrives on protection, and as mentioned in the blog, is a "vibrant and open-sourced" project. Having a fitting name is appropriate when it comes to any new idea or project. In order to be remembered as a project that strives for excellence, the logo has to be focused on and perfected. The name "Harvey" is a name that is not easily forgotten, and provides a significant enough meaning to the new logo.

• A terminal and an SSH client with Internet access

#!/bin/sh
# $HOME/bin/update-email

work_email="dustin.kirkland@work.example.com"
home_email="dustin@home.example.com"

work_ip="10.9.8.7"
current_ip=$(wget -q -O- http://v4.ipv6-test.com/api/myip.php 2>/dev/null)

if [ "$current_ip" = "$work_ip" ]; then
        sed -i -e "s/<.*>/<$work_email>/g" $HOME/.bazaar/bazaar.conf
else
        sed -i -e "s/<.*>/<$home_email>/g" $HOME/.bazaar/bazaar.conf
fi

*/5 * * * *  run-one $HOME/bin/update-email