@LaF0rge@chaos.social avatar

LaF0rge

@LaF0rge@chaos.social

#Osmocom founder. Mobile Communication expert. Former Linux kernel hacker, freedom fighter. Nerd. #retronetworking. Mensch mit Kommandozeilenhintergrund. searchable via tootfinder. Director of https://mastodon.social/@sysmocom

This profile is from a federated server and may be incomplete. Browse more on the original instance.

LaF0rge, to random
@LaF0rge@chaos.social avatar

I just received an invoice from ITU
(International Telecommunications Union). Their letterhead states a TELETEX number (in 2024!). I love it. #retronetworking - now I seriously wonder how I might be able to get connected to a public network that can reach it.

rohad, to linux

Anybody here run Debian as their daily driver? 🐧💻 Curious to hear about your experiences! Have you encountered any issues, and what do you primarily use it for?

LaF0rge,
@LaF0rge@chaos.social avatar

@rohad I've been using Debian unstable for probably more than 20 years now on my daily desktop+laptop machines. My primarily use case is to develop Software in C, Erlang, python and TTCN-3. Probably suffered from about 5 serious problems in that period, but otherwise even unstable is surprisingly solid.

LaF0rge, to random
@LaF0rge@chaos.social avatar

one of the more fascinating #ISDN video phones I've seen: https://osmocom.org/projects/retronetworking/wiki/7e_Communications_(Motionmedia)_Talking_Head_VideoReporter #retronetworking - thanks to WIMPy for sharing!

7e Communications (Motionmedia) Talking Head VideoReporter: View of the phone screen, remote control and codec unit removed from ruggedized pelicase.
7e Communications (Motionmedia) Talking Head VideoReporter: View of the PCB stack inside the codec unit.

LaF0rge, to random
@LaF0rge@chaos.social avatar

Neue Krankheitsbilder in der IT: die "eSIM-Profilneurose" #verbalsadismus

LaF0rge, to random
@LaF0rge@chaos.social avatar

The next incarnation of RetroNetCall, our monthly virtual get-together of #retronetworking enthusiast is happening again tomorrow (February 7th) at 20:00 CET. See https://osmocom.org/news/245 for the announcement.

LaF0rge, to random
@LaF0rge@chaos.social avatar

#osmocom pySim will soon have GlobalPlatform SCP02 and SCP03 support. Code is already working against real cards but needs cleanup: https://gerrit.osmocom.org/c/pysim/+/35462 and https://gerrit.osmocom.org/c/pysim/+/35793 #simcards #gsm #3gpp

LaF0rge,
@LaF0rge@chaos.social avatar

The much bigger challenge will be SCP81 (APDUs over HTTP over TLS with PSK pre-shared-keys). TLS-PSK has been specified since 2005 (RFC4279), but no FOSS server support. Not in nginx, lighttpd, apache. Even no (so far released) python versions' ssl library.

LaF0rge, to random
@LaF0rge@chaos.social avatar

Gladys West: The “Hidden Figure” of GPS - https://medium.com/location-leverage/gladys-west-the-hidden-figure-of-gps-f3c1743be059

LaF0rge, to croatia
@LaF0rge@chaos.social avatar

Is there anyone among my followers from #croatia who would be willing to buy a retro ISDN phone on aukcije.hr and send it to me in Gemany? Just a phone, nothing large/heavy. #retronetworking #followerpower

LaF0rge,
@LaF0rge@chaos.social avatar

@ReneRebe sure, I'm happy to add them to my collection. Maybe a nice opportunity to meet in person, after following you and some of your work for probably 15 or more years ;)

LaF0rge, to Electronics
@LaF0rge@chaos.social avatar

Interesting to see the enormous scale at which JLCPCB is manufacturing circuit boards in this Video touring the factory https://m.youtube.com/watch?v=jTBOSob5MLg #electronics #pcb #makingof

LaF0rge, to random
@LaF0rge@chaos.social avatar

last, but not least, pySim-shell is getting GlobalPlatform SCP02 support; we also had a number of GlobalPlatform commands implemented, but so far no secure channel. I hope SCP03 follows soon. https://gerrit.osmocom.org/c/pysim/+/35462 #gsm #simcards #osmocom

julian, to random German
@julian@chaos.social avatar

Fehlendes Kriterium in den meisten Kontovergleichen: Wie groß ist die App, die ich gezwungenermaßen für TANs verwenden muss?

LaF0rge,
@LaF0rge@chaos.social avatar

@julian oder noch viel besser: Die Frage, ob TAN überhaupt noch ohne app generiert werden können. Oft geht das ja bei vielen Banken noch mit PhotoTAN oder Flickertan+Girocard, sie dokumentieren/bewerben das nur leider nicht. Mir ist dedizierte offline Hardware zum TAN-Generieren viel sympathischer als alles andere.

LaF0rge,
@LaF0rge@chaos.social avatar

@mxk @julian HBCI /FinTS geht oft immernoch, aber leider nicht mehr mit smart card, sondern dann halt mit PhotoTAN und dedizierter phototan hardware (Deutsche Bank). Bei GLS glaube ich FinTS mit flickertan mit girocard

fluepke, to random
@fluepke@chaos.social avatar

Wait? Android still doesn’t support DHCPv6?

LaF0rge,
@LaF0rge@chaos.social avatar

@fluepke when activating the pdn context over cellular? There prefix delegation works in a very weird way, combining concepts of PPP with SLAAC. We implemented the network side in OpenGGSN. AFAIR the 3GPP specs say DHCPv6 may optionally be used, but I've never seen that.

LaF0rge, to random
@LaF0rge@chaos.social avatar

@c3voc falls es noch nicht aufgefallen sein sollte: media.ccc.de spuckt gerade einen 500 Internal Server Error. Keine Beschwerde; Danke fuer Eure Arbeit!

f4grx, to webassembly French
@f4grx@chaos.social avatar

Hey, it would be fun to have a interpreter on a ! Load webassembly modules through a globalplatform channel, and have APDUs execute a predefined wasm export. Add ability to import code from other wasm library modules.

( ping @LaF0rge , @whitequark )

LaF0rge,
@LaF0rge@chaos.social avatar

@aris @f4grx @whitequark I guess that was an Ironie comment, given that virtually any of the Billionen of sim cards is a Java smart card... and now even virtualized eSIMs can contain Java Applets..

LaF0rge,
@LaF0rge@chaos.social avatar

@f4grx @whitequark I don't really see the point of yet another virtual machien on smart cards. Almost all of the highest end smart cards are ARM SecurCore (like SC300) supporting Thumb2
So it would be great to be able to write native code. If only ARM documented the peripherals publicly, and vendors would make them accessible to customers who don't buy millions of them

LaF0rge,
@LaF0rge@chaos.social avatar

@f4grx @whitequark uninitialized cards is not really a problem to obtain in my case. I also know some Smartcard Chips where the Boot loader keys are global/static, so loading the OS can be done offline without access to card-individual bootloader keys or some signing/key Server of the Chip vendors. But of course no accessible documentation..

LaF0rge, to random
@LaF0rge@chaos.social avatar

I finally got my proof-of-concept (and world wide first open source) SM-DP+ for consumer eSIM to work. This is the component from which the eUICC (chip in phone) downloads encrypted eSIM profiles. Code at https://gerrit.osmocom.org/c/pysim/+/35461 - will be merged to pysim master soon.

LaF0rge,
@LaF0rge@chaos.social avatar

@nobletrout that's very hard, unless you're planning to need thousands or tens of thosands of eSIMs. At @sysmocom we're trying to solve that problem for smaller quantities, but it's not easy to figure out a business case that works. The annual charges to rent a SM-DP+ that gives you full flexibility to upload your own profiles make it challenging unless you have real volume.

LaF0rge,
@LaF0rge@chaos.social avatar

@nobletrout the problem creating your own eSIMs is not technical: In order for a standard eUICC to accept the profile, it needs to be signed with GSMA key material, which requires you to pass SAS-SM audits (in the order of EUR 27k for the first audit, then on average EUR 16k/year, assuming that you pass all audit requirements). And of course you need to have and document all your processes to be in-line with the policies, etc.

LaF0rge,
@LaF0rge@chaos.social avatar

@nobletrout so the easiest way to play with eSIM technology is to build/use eUICCs (in SIM card form factor) that accept other certificate authority than the GSMA. That doesn't help you with your unmodified smartphone or smartwatch, but it removes the requirement to get SAS-SM accredited/audited/etc.

LaF0rge,
@LaF0rge@chaos.social avatar

@nobletrout it is not a matter of installing a CA on the phone but it would have to be installed inside he eUICC. The X.509 crtificate checks and the ECDSA / ECKA etc. all happens in there. And no, that is specifically not possible. Only the eUICC Manufacturer can install the set of trusted root CA certificates.

LaF0rge,
@LaF0rge@chaos.social avatar

@nobletrout this showcases what a big step back the idea of devices without a physical SIM slot are. Anyone can make physical SIMs without any dependency on third partyies, their authorization, etc. With eSIMs you're at the whim of the GSMA and its policies, and that power is safely back with the members-only operator club. How dare you want to use your phone in your own network and issue your own eSIM!

LaF0rge,
@LaF0rge@chaos.social avatar

@nobletrout well, to those SM-DP+ as a service operator, even thousands of eSIM profiles per customer is a very small number, and they understandably go where the volume is. But as I indicated, I'm working towards moving @sysmocom into the direction of being able to offering a "custom eSIM 10-pack" just like we do with the physical sysmoUSIM/sysmoISIM for more than a decade now.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • JUstTest
  • mdbf
  • InstantRegret
  • ethstaker
  • magazineikmin
  • GTA5RPClips
  • rosin
  • modclub
  • Youngstown
  • ngwrru68w68
  • slotface
  • osvaldo12
  • kavyap
  • DreamBathrooms
  • Leos
  • thenastyranch
  • everett
  • cubers
  • cisconetworking
  • normalnudes
  • Durango
  • anitta
  • khanakhh
  • tacticalgear
  • tester
  • provamag3
  • megavids
  • lostlight
  • All magazines
    •