login
Search
This lecture throws light on the safety and reliability aspects of engineering.
My lecture notes and the exam can be downloaded from http://docs.google.com/leaf?id=0B66kEP2FWgm_MDY5YzA0NmMtMjMyZS00YzNkLTkz...
The lecture materials can be downloaded from http://docs.google.com/leaf?id=0B66kEP2FWgm_ZjRlM2FkNDAtMzQ4ZC00MTFiLTlk...
The other day I was wondering where Firefox, or to be exact, Mozilla keeps its pre-shipped trusted CA certificates. Googling around I found out that the certificates are compiled as a shared library. Fortunately, I also found out how to manipulate the shared library for my own use.
When I was looking for a step-by-step instruction to sign JavaScript code to gain additional privileges when being run in Firefox, I visited https://www.mozdevgroup.com/docs/pete/Signing-an-XPI.html. Not much can be gained from the site because it is assumed that you already possess a public key certificate that entitles you to sign code. But, there was one thing that caught my attention.
Yesterday when googling for something else I found something interesting: the difference between code signing and object signing certificate extension.
https://bugzilla.mozilla.org/show_bug.cgi?id=321156#c2:
IIRC, there are two separate definitions for validity of cert chains for signing code.
When I was trying to create a signed JAR file that Firefox will allow to gain additional privileges, the biggest problem I faced was rooted at the fact that my certificate authority did not issue a certificate that entitled me to sign code. This simple fact was not clearly visible at the beginning, though.
After figuring out the right way to programmatically set the value of a file upload box in Firefox (http://kerneltrap.org/node/65337), I went to create a signed script. But, it was not that easy since there was no step-by-step instruction to do just that. Therefore, after solving some problems, I came up with a step-by-step instruction.
I had a need to automatically fill the value of an HTML file upload box in Firefox. I thought Greasemonkey would just do the job. But, it was not that simple because to prevent a malicious website to upload any file in your local system without your knowledge, Firefox prevents the value of a file upload box to be set programmatically. Googling for information to do what I wanted did not return a good result other than simple information stating that it would not be possible due to the aforementioned security reason. So, I digged the source code to figure out either the way myself or better googling keywords. Finally, I came up with the right way to do what I wanted.
One thing that I remember from the Electrical Engineering class in my undergradute study was a technique to quickly determine/locate/figure out the nodes of a circuit when doing node voltage analysis (NVA). This I remember so vividly because the result of my first quiz on NVA was really bad because the networks of the circuits were so complicated and so I incorrectly determined the nodes. During the discussion of the quiz, the lecturer came up to the blackboard and showed a really nice technique to quickly determine the nodes of the complicated circuits.
Just today I completed the compulsory Software Project Management course that is worth 4 ECTS. At the completion, I got an important message: a project should not be too bad or too good but should be as planned.
Agel apuesta por los consumidores preferentes, por ello el mejor sitio para comprar agel esta en ......
The other day I built a debuggable Firefox from the source code. The object directory is obj-debug-moz-hunspell within the source directory.
Key conversion for GPG <-> OpenSSL <-> SSH: http://www.sysmic.org/dotclear/index.php?post/2010/03/24/Convert-keys-be...
Key conversion for OpenSSL <-> jarsigner: http://forums.sun.com/thread.jspa?threadID=5419870
# CA openssl genrsa -aes128 -out ca/ca.key -passout pass:sabre150 2048
About three weeks ago I tried to export a public key certificate X along with the certificate of the CA that signs X, by adding "-chain" switch to "openssl pkcs12 -export -out del.pkcs12 -in newcert.pem -inkey newkey.pem". However, I got an error: Error unable to get local issuer certificate getting chain.
Three months ago the lecture on Mobile Communications and Sensor Networks went very fast discussing how digital data can be transmitted wirelessly. So, I was a bit at lost in the digital signal modulation techniques. And, I hit the book: Jochen Schiller's Mobile Communications that refers to William Stallings's Wireless Communications & Networks for further details. Specifically I wanted to know why bandwidth is still needed when only the amplitude or the phase is modulated (i.e., the frequency doesn't change at all).
