• chevron_right

      ‘IFPS Gateway Operator is not Liable for Pirated Software Keys’

      news.movim.eu / TorrentFreak · Saturday, 24 February - 09:52 · 5 minutes

    ipfs logo The InterPlanetary File System, more broadly known as IPFS , has been around for nearly a decade.

    While the name may sound alien to the general public, the peer-to-peer file storage network has a growing user base among the tech-savvy.

    In short, IPFS is a decentralized network where users make files available to each other. The system makes websites and files censorship-resistant and not vulnerable to regular hosting outages; as long as at least one user in the network continues to share.

    These advantages allow archivists, content creators, researchers, and others to reliably distribute large volumes of data over the Internet. Many developers support the project and some do so actively, by running an IPFS gateway that the public can freely use to access IPFS-stored content.

    IPFS DMCA Notices

    The operators of these gateways are not aware of how people use them; they simply enable the technology. However, that hasn’t stopped copyright holders from sending complaints that urge operators to prevent alleged copyright infringements.

    In recent years, several gateway operators have received DMCA takedown requests for content available through, but not stored on, their service. These complaints are not only lodged against small players. Cloudflare has also received thousands of takedown requests.

    While Cloudflare has in-house legal experts to rely on, these notices can be a challenge for smaller developers who tend to run IPFS gateways as hobby projects. This also applies to computer scientist Mike Damm, who operates the Hardbin.com service.

    IPFS & JetBrains Keys

    Hardbin is an encrypted pastebin that enables users to share text. The service relies on IPFS for storing content and offers a gateway through which it can be viewed publicly.

    Technically, Hardbin doesn’t store any third-party material but it can be published and accessed through the site. Not all rightsholders are happy with this and the Czech software company JetBrains shared its concerns with the operator last October.

    JetBrains sent a takedown notice to the site, asking for the content to be removed. In response, Mr. Damm explained that Hardbin.com is an IPFS gateway that doesn’t store content, hoping that would resolve the matter. It didn’t.

    While JetBrains now understands that IPFS gateways don’t store content, the company suggested disabling the Hardbin.com URL through which the software keys can be accessed. If not, the operator could be liable for copyright infringement under the DMCA, the software company warned.

    “By knowingly facilitating the access to the cracks, activation codes, or other methods that aim to circumvent measures for protecting JetBrains’ products from unauthorized use, you are directly liable, even if you did not directly engage in software piracy activities.”

    “Further, by knowingly inducing or providing links to the tools which are then employed in unauthorized access of JetBrains’ software, you may be liable for contributory copyright infringement,” JetBrains added.

    Note: While Hardbin had an active “write” function, TorrentFreak was informed that the HTML file at issue here wasn’t uploaded to the IPFS network using Hardbin. It was uploaded by third parties using an external service, but accessible through Hardbin’s gateway.

    damm-letter

    EFF Steps Up

    Faced with this legal conundrum, Mr. Damm reached out to the Electronic Frontier Foundation ( EFF ), who stepped up to help. EFF replied to JetBrains on behalf of the Hardbin.com operator, stressing that the service is not legally responsible for the alleged availability of the pirated software keys.

    “That suggestion is baseless. As Mr. Damm has explained, an IPFS gateway is a conduit similar to VPNs, internet access services, or Tor nodes,” the letter from EFF attorney Kit Walsh reads.

    “Mr. Damm is not presenting the complained-of link to the public; the link is only generated when a user provides the hash that identifies the file they wish to retrieve. This step is analogous to providing a domain name to an ISP’s DNS server in order to obtain the IP address corresponding to that domain..,” Walsh adds.

    JetBrains’s suggestion that Hardbin violates the DMCA is not accurate, according to EFF. The letter points out that the IPFS gateway is not a hosting service, but a general-purpose conduit for information, which should not be held liable.

    The software company sent its letter under Section 1201 of the DMCA, which applies to trafficking in circumvention technology. This is different from the traditional Section 512 takedowns. However, EFF sees no reason why liability should apply in this case.

    “It would be absurd to suggest that Congress granted conduits special immunity for copyright claims based on third party activity but then, in the same statute, made them liable for pseudo-copyright Section 1201 claims,” Walsh writes.

    Liability is Complex

    EFF’s response doesn’t necessarily suggest that all IPFS gateways are immune to liability. Speaking with TorrentFreak, Walsh explains that there are several aspects operators may want to consider before sending a similarly styled response.

    This includes whether they make money by offering the gateway service to users with accounts, whether they have made any statements encouraging people to use their service for infringement, and whether they host the complained-of files.

    Thus far, the responses from IPFS operators have been mixed. Cloudflare, for example, has disabled access to thousands of externally stored files through its IPFS gateway, and other gateways have responded similarly in the past.

    UK-based programmer James Stanley, who previously operated Hardbin.com, temporarily took the entire service offline when he received requests to take down thousands of links. Legal threats and uncertainties make it less fun to run these projects, he noted at the time.

    Hardbin’s current operator sought help from EFF and the site remains online. To hear the other side of the story we also reached out to JetBrains but the company has yet to reply.

    While IPFS gateway operators can feel strengthened by the position EFF takes in its response, legal uncertainties always remain. EFF’s Kit Walsh informs us that she will consider writing a FAQ to address these legal aspects and nuances, similar to the legal FAQ for TOR relay operators.

    A copy of the second takedown notice Jetbrains sent to Mr. Damm is available here (pdf) and EFF’s response letter can be found here (pdf)

    From: TF , for the latest news on copyright battles, piracy and more.

    • chevron_right

      Cloudflare Blocks Abusive Content on its Ethereum Gateway

      news.movim.eu / TorrentFreak · Tuesday, 21 November - 21:58 · 4 minutes

    cloudflare logo Popular Internet infrastructure service Cloudflare serves millions of customers and provides a variety of connectivity and privacy features to the general public.

    People can freely use the company’s open DNS resolver 1.1.1.1 , for example, or use its IPFS and Ethereum gateways to access content on these decentralized web services.

    One of Cloudflare’s main aims is to make the Internet more secure while respecting the privacy of its users. This laudable goal is broadly respected but in common with other internet services, abuse of Cloudflare’s services can lead to conflicting situations.

    The California-based company previously terminated service to controversial sites including the Daily Stormer and Kiwi Farms . These actions were taken voluntarily, with Cloudflare citing an immediate threat to human life as the reason for the Kiwi Farms intervention.

    Domain Blocking

    In addition to these rare events, the Internet infrastructure company is also subject to court orders from around the globe. In some cases, these orders require the company to block access to piracy-related domain names.

    Cloudflare mentions these blocking orders in its latest transparency report which covers the second half of 2022. The report doesn’t mention the number of court orders or blocked domains, but it confirms that Cloudflare complies with legitimate legal rulings.

    “If we determine that the order is valid and requires Cloudflare action, we may limit blocking of access to the content to those areas where it violates local law, a practice known as ‘geo-blocking’,” Cloudflare writes.

    DNS Blocking

    DNS blocking orders apply locally and shouldn’t affect people in other countries. However, things got more complicated recently when an Italian court required Cloudflare to restrict access to three torrent sites through its public DNS resolver 1.1.1.1.

    Cloudflare fiercely objected to the order but ultimately lost the legal battle. That left the company with no other option than to take action. But, instead of blocking content through its global DNS resolver, it geo-blocked the domains for Italians.

    “To the extent that those websites used Cloudflare services, Cloudflare took steps following the issuance of the order to disable access to those websites for users in Italy or from Cloudflare equipment in Italy.

    “Cloudflare took action to geoblock all three domains that were addressed by the court’s order and were using our service at the time the orders were issued via Cloudflare’s pass-through CDN and security services,” the company added.

    IPFS and Ethereum Restrictions

    In its most recent transparency report, Cloudflare further notes that it has implemented access restrictions on its public Ethereum gateway. The company doesn’t store any content on the Ethereum network, nor can it remove any. However, it can block access through its service.

    If Cloudflare receives valid abuse reports or copyright infringement complaints, it will take appropriate action. The same applies to the gateway for the decentralized IPFS network.

    In its previous transparency report, Cloudflare already mentioned more than 1,000 IPFS actions a figure that increased slightly in the second half of last year. At the same time, Cloudflare also restricted access to 99 ‘items’ on the Ethereum network.

    ethereum cloudflare actions

    Since these are ‘gateway’ related restrictions there’s no impact on the content hosted on IPFS or Ethereum. Instead, it will only make it impossible to access content through Cloudflare’s service.

    It’s not clear how many of these restrictions are abuse or copyright-related, as not much context is provided. The Ethereum actions are, at least in part, a response to the U.S. Department of Treasury’s sanctions against the cryptocurrency tumbler Tornado Cash .

    “Those sanctions raise significant legal questions about the extent to which particular computer software, rather than individuals or entities that use that software, can be subject to sanctions,” Cloudflare writes.

    “Nonetheless, to comply with legal requirements, Cloudflare has taken steps to disable access through the Cloudflare-operated Ethereum Gateway to the digital currency addresses identified in the designation.”

    DMCA Notices and Subpoenas

    There are more obvious copyright responses as well. While Cloudflare generally doesn’t block content in response to DMCA notices for customers that use its CDN services, it does remove infringing content permanently hosted on its servers.

    These hosting services have expanded over the years and the same is true for the volume of valid DMCA notices received, up from 18 to 972 in the span of a year, as shown below. That’s still a fairly modest number for a company with millions of customers.

    cloudflare dmca

    Finally, Cloudflare reports that the number of civil subpoenas, including those issued under the DMCA, has decreased. Rightsholders including the Motion Picture Association (MPA) typically use these requests to obtain identifying information about Cloudflare customers.

    In the second half of last year, the company received 20 civil subpoenas which targeted 57 domain names. That’s the lowest number since Cloudflare first disclosed this statistic five years ago, signaling a downward trend.

    A copy of Cloudflare’s latest Transparency Report is available here (pdf)

    From: TF , for the latest news on copyright battles, piracy and more.

    • chevron_right

      Pirate Sites Exploit ‘Interplanetary File System’ Gateways, Publishers Warn

      news.movim.eu / TorrentFreak · Friday, 13 October - 18:38 · 3 minutes

    ipfs logo The InterPlanetary File System, more broadly known as IPFS , has been around for the past eight years.

    While the name may sound otherworldly to the public at large, the peer-to-peer file storage network has a growing user base among the tech-savvy.

    In short, IPFS is a decentralized network where users make files available to each other. The system makes websites censorship resistant and not vulnerable to regular hosting outages.

    These advantages allow archivists, content creators, researchers, and many others to reliably distribute large volumes of data over the Internet. These same features also appeal to pirate sites, and several have actively started to embrace the technology to bypass censors.

    Publishers Share IPFS Concerns

    This week, IPFS was repeatedly mentioned by the Association of American Publishers ( AAP ) in its overview of the most notorious piracy markets submitted to the U.S. Trade Representative. The list includes the usual suspects, such as Z-Library, Sci-Hub and Libgen.

    In addition to these main threats, the publishers say they are “increasingly concerned” with how these shadow libraries exploit IPFS to host and distribute pirated books and articles.

    While it’s difficult to the stop distribution of content once it’s on IPFS, many people use gateway sites to access the content. These gateways serve as an intermediary and allow anyone to access IPFS-hosted sites without having to install dedicated software.

    These gateways are helpful for those who only access IPFS content occasionally. The publishers see them as a threat, as they make the piracy angle easier too.

    “Notorious piracy networks such as Libgen and Z-Library are already exploiting public gateways within the Interplanetary File System to host and distribute copyright protected content in a decentralized manner,” AAP informs the USTR.

    ipfs-mention

    IPFS Gateway Takedowns

    The publishers recognize that IPFS technology has legal uses and that it’s intended to provide a resilient and more secure infrastructure. However, they hope that gateways are willing to address the piracy problem.

    Most gateways accept copyright infringement notices. This includes Cloudflare’s version, which is one of the examples mentioned by the publishers. According to Cloudflare’s most recently published transparency report , it took more than 1,000 IPFS abuse ‘actions’ in six months.

    More recent information suggests that IPFS gateways are flooded by DMCA takedown notices , which caused at least one operator to shut down their ‘fun’ project. Other gateways have disappeared recently as well, perhaps in part due to similar copyright troubles.

    The publishers don’t blame the gateways directly and recognize that they accept takedown notices. Ideally, they should do more than that by preventing pirated content from being distributed through their platforms, they argue.

    “While IPFS gateways are responsive to individual reports of infringement, preventing notorious piracy networks, such as Libgen, from exploiting their services would greatly improve enforcement efforts,” the publishers write.

    Slippery Slope

    AAP doesn’t offer any concrete suggestions but it would likely want to see these gateways actively blocking pirate sites. That might be an easy way to address the issue, but it’s also a slippery slope, particularly for a network that’s ultimately intended to be censorship-resistant.

    TorrentFreak reached out to IPFS for a comment on the publishers’ remarks but the project didn’t immediately respond.

    In the grander scheme, the publishers still have bigger problems to worry about for now. Many of the sites AAP flagged as “notorious markets” are still available on the open web, distributed through regular web browsers. Perhaps these will also pose a problem some day.

    A copy of the Association of American Publishers’ notorious markets recommendation is available here (pdf) . Below, we list an overview of all the sites and services that it mentions.

    Notorious Markets

    – Afkebooks.com
    – Alibaba (Taobao and Goofish)
    – Anna’s Archive
    – Avaxhome
    – Libgen.rs (also libgen.is; libgen.st; library.lol; library.bz; libgen.fun – for IPFS content)
    – Nitroflare.com
    – Rapidgator.net
    – Sci-hub.se
    – Shopee
    – Uploadgig.com

    Other Services

    Lunwenxiazai.com
    Read Online Sites (e.g. Idoc.pub / full-english-books.net)
    Telegram
    1337 Services (Njalla)
    Rogue Hosting Providers (e.g. Contabo.com / Incognet.io)

    From: TF , for the latest news on copyright battles, piracy and more.

    • chevron_right

      Publishers Carpet-Bomb IPFS Gateway Operators With DMCA Notices

      news.movim.eu / TorrentFreak · Sunday, 25 June, 2023 - 13:39 · 4 minutes

    ipfs-l IPFS is a decentralized network that makes it possible to efficiently distribute high volumes of data between peers while avoiding downtime associated with regular hosting outages.

    The IPFS project describes the system as a peer-to-peer hypermedia protocol designed to preserve and grow humanity’s knowledge by making the web upgradeable, resilient, and more open . Anyone who values these qualities is invited to come along for the ride using free, open source tools .

    IPFS Gateways

    For those who prefer not to install software but would still like to access content stored on IPFS, web gateways provide streamlined access to IPFS with zero fuss. IPFS gateways tend to be run by supporters and enthusiasts who charge nothing for their time and usually pay all of the bills.

    Examples can be found here but in broad terms, public gateways aren’t particularly numerous. As reported in March , Cloudflare offers a free IPFS gateway yet despite having nothing to do with the content hosted in the network, still received over 1,000 copyright complaints in the first half of 2022.

    Figures for the second half are yet to be published but if recent events are anything to go by, those numbers could be significantly higher in the next report.

    Avalanche of Copyright Complaints

    UK-based programmer James Stanley has a project page to make any geek smile. It begins with SCAMP, a homemade 16-bit CPU with a homemade programming language, before moving on to a robotic chessboard (accessible via API), and a footwear-based chess computer that allows Stanley to cheat at chess “hands-free and without any third-party assistance.”

    Stanley is also the brains behind Hardbin.com , an encrypted pastebin-type service that utilizes IPFS. Unfortunately, Stanley took Hardbin down this week after being targeted by an anti-piracy entity demanding the removal of thousands of allegedly-infringing URLs.

    “I received 3 DMCA takedown emails today, covering 7350 URLs on my hardbin.com IPFS gateway. The URLs were allegedly serving infringing copies of books,” his blog post reads.

    Heavily truncated sample notice ciu-online-complaint

    Stanley posted the complaints to GitHub, with all three following a similar format; a demand for the immediate takedown of thousands of pieces of content that have nothing to do with the programmer, that he has no ability to take down, even if he wanted to.

    Who’s Behind The Takedown Demands?

    All three complaints ( 1 , 2 , 3 ) were sent from “notice@ciu-online.net” but as Stanley points out, it’s hard to say who is behind the notices.

    Each notice claims to have been sent by ‘Gareth Young – Internet Investigator’ but where Young works isn’t made clear. Instead, the notices carry the names and addresses of three publishing companies; Wolters Kluwer Health (New York), Knovel, a subsidiary of Elsevier, Inc. (New York), and IEEE (new Jersey).

    Stanley’s research turned up a ‘Gareth Young’ who apparently worked for law firm Covington & Burling LLP. Young is also the author of a slideshow that describes methods and tactics for taking infringing content down and making people’s lives more difficult.

    The page above contains numerous options, and just as Mr Young suggested, the 5th option did indeed prove effective.

    “I have now taken hardbin.com down completely because dealing with this sort of thing makes it less fun to run and more like hard work,” Stanley says.

    IPFS: Technical Resilience Against Censorship

    That Stanley’s work on Hardbin can’t be enjoyed by him or anyone else shows that it’s still possible to have a chilling effect on IPFS, despite its technical resilience to censorship.

    It’s also worth noting that the DMCA takedown notices were sent directly to abuse addresses at the programmer’s host, rather than to him directly. It’s the kind of tactic that’s easily justified when dealing with an uncooperative pirate site but entirely unhelpful when dealing with innocent parties.

    And then there’s the interesting evidence uncovered by Stanley when cross-referencing the 7,350 URLs against his reverse proxy logs.

    “I did some bash-fu to extract the IPFS hashes from the emails and grep for them in my nginx logs, and was surprised to find not a single match,” Stanley explains. “None of them have ever been accessed, and of the ones that I checked, none even worked.”

    Other IPFS Users Targeted

    Sean Lang has been keeping records on the DMCA notices he’s received related to his gateway since February 2022.

    “I currently operate an IPFS gateway on ipfs.slang.cx. I don’t publish or pin any content there, it’s only a resolver for content that’s available on the rest of the IPFS network,” Lang writes on GitHub.

    “I get a lot of DMCA requests from running this. Currently I’m blocking 12367 files. They’re almost all books, although I don’t have nearly enough time to go through them manually.”

    Lang says that the takedown notices are usually sent by a guy called Gareth Young and have at least one familiar quality.

    “The weird thing is, [the system used] doesn’t actually verify that a given file is available through my server before sending a DMCA request. I’ve looked through the traffic logs, and the vast majority of the files listed in these takedown requests have never been requested in the history of my gateway. I haven’t checked all of them, but I’ve checked a lot,” Lang says.

    From: TF , for the latest news on copyright battles, piracy and more.

    • chevron_right

      Cloudflare Disables Access to ‘Pirated’ Content on its IPFS Gateway

      news.movim.eu / TorrentFreak · Friday, 24 March, 2023 - 20:29 · 3 minutes

    ipfs cloudflare The InterPlanetary File System, more broadly known as IPFS , has been around for a few years now.

    While the name may sound a little alien to the public at large, the peer-to-peer file storage network has a growing user base among the tech-savvy.

    In short, IPFS is a decentralized network where users make files available to each other. A website using IPFS is served by a “swarm” of users in much the same way BitTorrent users share content with each other.

    Completely Decentralized

    The advantage of this system is that websites can become completely decentralized. If a website or other resource is hosted on IPFS, it remains accessible as long as the computer of one user who “pinned” it remains online.

    The advantages of IPFS are clear. It allows archivists, content creators, researchers, and many others to distribute large volumes of data over the Internet. It’s censorship resistant and not vulnerable to regular hosting outages.

    IPFS is also a perfect match for ‘pirate’ sites. Due to its decentralized nature, IPFS sites are virtually impossible to shut down. This aspect was already highlighted by Pirate Bay co-founder Peter Sunde back in 2016 . More recently, IPFS was promoted by Z-Library after its domain names were seized .

    Cloudflare’s IPFS Gateway

    IPFS has also been embraced by many legal services. Most notably, Cloudflare gave it a boost by launching its own IPFS gateway , allowing the public to access IPFS resources without having to install specialized software.

    Cloudflare’s IPFS gateway has been running for a few years now. Technically, the internet infrastructure company has no control over any of the content being made available, but that doesn’t mean there are no complaints.

    Apparently, some people or organizations have complained about the content that can be accessed through Cloudflare’s IPFS gateway.

    While the accessed content is in no way controlled by Cloudflare, the San Francisco company takes these complaints rather seriously. The same also applies to the Ethereum gateway, which offers easy read-and-write access to the Ethereum network.

    Cloudflare Disables IPFS Access

    In its most recent transparency report , Cloudflare explains that it will respond to valid abuse requests by disabling access. This includes spam reports as well as copyright infringement complaints.

    “Although Cloudflare does not have the ability to remove content on IPFS or Ethereum, Cloudflare may disable access through Cloudflare-operated gateways to certain content on IPFS and the Ethereum network in response to abuse reports, including reports of copyright, technical, and other abuse.”

    “This action does not prevent access to that content through other gateways, which Cloudflare does not control,” Cloudflare clarifies.

    In the first quarter of 2022, Cloudflare reports that this policy resulted in 1,073 IPFS actions. Presumably, this means that the company disabled access the same number of items on the IPFS network. No such actions were taken for the Ethereum gateway.

    ipfs action

    Cloudflare’s actions are notable for a couple of reasons. For one, it shows that decentralized and censorship-free networks lose their key feature when they are accessed through centralized gateways.

    IPFS vs. DNS vs. CDN

    What also stands out is that Cloudflare disables content in response to copyright complaints. The policy for its CDN service is different; it only forwards complaints to the affected users.

    For example, when rightsholders send a complaint about The Pirate Bay, which uses Cloudflare, the company takes no action aside from forwarding the notification to The Pirate Bay team.

    We asked Cloudflare about its motivation to take action in response to copyright complaints for its IPFS gateway, but the company didn’t immediately respond. If we had to take a non-informed guess, we expect that the lack of forwarding options for IPFS content might have something to do with it.

    Cloudflare has no option to forward any complaints for IPFS content because it does not know who controls it.

    That said, this raises the question of how the IPFS gateway is different from Cloudflare’s DNS resolver, which essentially operates as a gateway to the regular Internet. Cloudflare previously said that it will fight copyright-related DNS blockades , even if they’re backed up by a court order.

    Apparently, that’s not the case for IPFS.

    From: TF , for the latest news on copyright battles, piracy and more.

    Various FOSS links and Donating to Linux Slackware

    https://mov.im/?blog/preptorrent%40movim.eu/donating-to-linux-slackware-for-oidc-lora-bittorrent-install-YKQAaj

    Free software for education and registering people via the following way could help and so this comment is to help people in Haiti, (registering new users via OAuth2 with OIDC as IdP and SP on SimpleSAMLphp installed on the Jacmel RaspberryPi). #SimpleSAMLphp #OIDC #Haiti #kgeography #GNUHealth #kalzium #kanagram #linux #opencl #ipfs #scilab

    If they agree (ask them?) in Haiti, Health Center De Lavoute (via Health Center De Lafond) there could be a 1 Kilometre daisy-chained wifi mesh network (when adding antennae via the Hirose U.FL like by the pib3b+ solder pads) of say 12 RaspberryPi3b SBC boards established to link/bridge a limited (under a megabit, of say 18Kilobits per second) starting from the internet connection at Jacmel (see http://edu.raspberryshake.org website) RS4D station R897D for a RS1D instrument that measures geological information like earthquakes, located on the first floor of a public notary’s office. Spacing each pizero2w in the chain about 90Metres to 100Metres apart (so the onboard wifi works even if the antannae were to fail), even if the wifi speed of about 72Kbps were halved for each pizero2w on the 2.4gHz band, there would still be a 18Kbps connection (about a third of an old dialup connection) for bandwidth, which is enough to ping and register (login) users (students and teachers) regostered via Open ID Connect using Simple-SAML-php installed on the Raspberry-Pi at the RS4D station R897D (and both health centres), along with FOSS education softwares, students can use.

    Each Pi (pizero2w) kit in the daisy chain (at about £100 cost) could be powered by (£15) buck convertor an 12volt battery (which would retain battery-charge for about 1 week) and solar power panels. So the bandwidth used from their connection is basically nothing (18kbps) and barely that would need to be used, other than perhaps for auto-update of software that would constantly trickle through. The network pizero2w computers powered by battery would come to £1200 and would also be a good prepping prep since multiple pizero2w boards are robust and low power, thereby working in a power-cut, and the signal can navigate the high terrain, placing each pizero2w at as high an altitude as possible on an anchored pole. An uninterruptable powersupply could be added (i.e. "built homemade" for about £100 each) at either end (Jacmel RS4D station R897D to Health Center De Lavoute) and one in the middle (via Health Center De Lafond) of the wifi chain, thereby bringing the total to £1500.

    For pennies, print each registering user an A4 certificate (laminated with a photo from a ps2-eye-toy 50p webcam which also scans QR codes in Open Project and LibreOffice and GTK4) with a few QR codes and the open-ID-Connect registration to login for the Service-provider (SP) and indentity-provider (IdP) at that Jacmel server, even if they are using a Pi computer anywhere along that daisy-chain route. Students can report health problems the experience using a suitable FOSS chat protocol in "empathy IM" client and both medical centres can have GNU_Health software (on the pizero2w and pi3b+ stationed at their building) to log their communications. LibreOffice can make QR codes and kodaskanna can read QR and make the data available for further processing.

    kodaskanna

    https://apps.kde.org/en-gb/kodaskanna/

    kodaskanna reads QR or Barcodes making data availble for further processing

    Between PC computers (linux and linux PC or linux and MSwindows PC), smb4k software shares linux and microsoft Windows network data via Samba share.

    smb4k shares linux and microsoft Windows network data via Samba

    https://apps.kde.org/en-gb/smb4k/

    Between PC computers (linux and linux PC or linux and MSwindows PC), FuseSmb software shares linux and microsoft Windows network data via Samba share.

    Keysmith generates tokens for your two-factor logins 2FA

    [https://apps.kde.org/en-gb/keysmith/](FuseSmb on Ubuntu https://help.ubuntu.com/community/FuseSmb)

    FuseSmb on Ubuntu https://help.ubuntu.com/community/FuseSmb

    FuseSmb OpenSuse

    https://software.opensuse.org/package/fusesmb

    FuseSmb Suse Linux

    https://packagehub.suse.com/packages/fusesmb/

    FuseSmb debian Linux

    https://tracker.debian.org/pkg/fusesmb

    FuseSmb RPM Fedora Red Hat CentOS

    https://pkgs.org/download/fusesmb

    Slackware Linux Samba

    https://slackwiki.com/Samba

    So installed software would include the following.

    See chemcollective software: The Virtual Laboratory contains hundreds of standard reagents. In the Virtual Lab, you can conduct diverse experiments in acid-base chemistry, thermochemistry, solubility, and redox chemistry. See http://chemcollective.org website.

    chemcollective Website Software Linux

    PhET is an educational resource that contains computer demonstrations of experiments and activities. It is a collection of science simulations that can be integrated in classroom teaching-learning.

    Also see http://virtualbiologylab.org website for ecology studies software.

    virtualbiologylab ecology studies software

    Software "Kalzium" is for chemistry such as periodic table knowledge, and solving chemical equations.

    Kalzium

    Software "Kanagram" to improve language skills for vocabulary.

    Kanagram Wiki

    KGeography is a mapping software focusing on political geography. Marble is a mapping software focusing on physical geography, rainfall patterns, longtitude and latitude relationships. Users could submit information to the software to update recent geography changes, such as in the "marble" software too. You can use Marble to look up addresses, to easily create maps, measure distances and to retrieve detail information about locations that you have just heard about in the news or on the Internet.

    So install "Marble" via "sudo apt-get install marble" in the terminal.

    Marble Geography Linux Software

    https://apps.kde.org/en-gb/marble/

    So supporting software can be written in GTK4 via C++ and MariaDB with PHP and Python3 and html5 canvas API, such as a student exporting their data via XML for LaTex homework files and so forth.

    Geological and chemistry information (such as processing of Gaussian functions in physics, statistics like histograms or ROCOF in SciLab, chemistry, and Fourier Analysis of geological information or video encoding) can be distributed for processing via OpenCL1.2 framework on the GPU and CPU of each Pizero2W in SciLab using Python and C++ programming languages, sent via wifi within the aforementioned limited bandwidth. An additional (13th) raspberrypi zero2w, on the same pole as the pinultimate Pizero2w in the chain near Jacmel RS4D station R897D could have IPFS (interplanetary filesystem) installed to backup user submitted data, where bandwidth in the chain is somewhat higher.

    This software is SciLab...

    https://www.scilab.org/tutorials

    On each (e.g. 32GB to 128GB) SDCard of the pizero2w computers, an ISO file of endless-OS (albeit for amd64) would available so that people have not only a linux distro to put on an amd64 PC but also the ISO file could be mounted via the wifi to access the wikipedia articles on the Linux Distro ISO file, even if the internet is down one day. https://www.endlessos.org/os Both the pi4 and amd64 versions would be included in FTP and SAMBA share (as wifi, not internet), the latter in French and English versions, and torrent links for the other language versions. A pinebook pro endless OS image would be stored on the SDCard too in english language, FTP and SAMBA share (as wifi, not internet).

    Pi 4 endless OS https://images-cdn.endlessm.com/torrents/public/eos-arm64-rpi4-en-4.0.4-full.torrent

    AMD64 Endless OS (english language) https://images-cdn.endlessm.com/torrents/public/eos-amd64-amd64-en-4.0.4-iso.torrent

    AMD64 Endless OS (french language) https://images-cdn.endlessm.com/torrents/public/eos-amd64-amd64-fr-4.0.4-iso.torrent

    AMD64 Endless OS (portuguese language) https://images-cdn.endlessm.com/torrents/public/eos-amd64-amd64-pt_BR-4.0.4-iso.torrent

    AMD64 Endless OS (portuguese language) https://images-cdn.endlessm.com/torrents/public/eos-amd64-amd64-es-4.0.4-iso.torrent

    AMD64 Endless OS (spanish language) https://images-cdn.endlessm.com/torrents/public/eos-amd64-amd64-es-4.0.4-iso.torrent

    Pinebook Pro ARM Endless OS (english language) https://images-cdn.endlessm.com/torrents/public/eos-arm64-pinebookpro-en-4.0.4-full.torrent

    The battery power of each pizero2w "pi kit" can be configured with a buck convertor as per this ExplainingComputers youtube video (but a solar panel and charging circuit would be added too).

    ExplainingComputers : Raspberry Pi Battery Power

    https://www.youtube.com/watch?v=lPyDtuzYE5s

    Capable of running on a 256MB RAM PC or higher, Kwort Linux version 4.3.2 fits onto a 650Megabyte CDROM and thereby can work in computers even if they have an older CDROM drive only or are unable to boot from USB port via a USB pendrive (mass storage device). Once installed, it can be updated securely over the internet via Wifi or by RJ45 connection such as in a home DHCP router, and upgraded to a slackware install of many gigabytes in size. "Ultimate BootCD" (ubcd538.iso) fits onto a 700MB CDROM and has just about everything you need to try to repair your PC and recover data or "piggyback boot" from CDROM drive to USB or use PXE (Preboot-Execution-Environment) to ethernet RJ45-port boot or ieee1284 boot, etc.

    Some extra (CDROM ISO file) Linux Distro torrent files as magnet links for linux are below and they could be copy-pasted onto the XHTMLMP registration-page for people who register for OIDC, having seen a poster perhaps on a pole (showing a URL to the local host and a QR-Code) within the range of the pertaining RaspberryPi Wifi:

    These below are Magnet Links for Linux distros which you can (copy-paste) open in a torrent software such as QBittorrent to download linux as an ISO file and "burn" (write) it to a CDR as a CDROM, each, using software like Infrarecorder or Brasero (you may have to enable the "overburn" option to have the full filesize write to your CDR). Please use and share these Linux torrents on your PC, and tell your friends about them (and to search online for videos and blogs about these Linux ISO files). For computers with no CDROM or DVD Drive but a floppy drive and HDD, the Slitaz floppy-disk install (with many floppies, usually at least 17 to 25 floppy disks) can be performed downloading via the link https://floppy.slitaz.org/ but without digression, here are the Linux CDROM ISO magnet links.

    ubcd538.iso (695.1 Megabytes) 64bit and 32bit

    magnet:?xt=urn:btih:cd0fea9341f643ccfbad38388d9193bc93f50fad&dn=ubcd538.iso&tr=http%3a%2f%2ftracker.vpslinker.com%3a6969%2fannounce

    kwort-4.3.2.iso (637 Megabytes) 64bit and 32bit

    magnet:?xt=urn:btih:5907dfd00a8e118b0ae7d1365630a7dd2b1feafc&dn=kwort-4.3.2.iso&tr=http%3a%2f%2flinuxtracker.org%3a2710%2f8c96fdec1c86838508143e3e939e669f%2fannounce

    debian-10.6.0-amd64-xfce-CD-1.iso (695 Megabytes) 64bit only

    magnet:?xt=urn:btih:0f7f6d0a65a10b01d635a62b8facef9d54bc753a&dn=debian-10.6.0-amd64-xfce-CD-1.iso&tr=http%3a%2f%2fbttracker.debian.org%3a6969%2fannounce

    debian-10.6.0-i386-xfce-CD-1.iso (695 Megabytes) 32bit only

    magnet:?xt=urn:btih:750f330b3667df5faf9d76d3f965eb2fa28912bd&dn=debian-10.6.0-i386-xfce-CD-1.iso&tr=http%3a%2f%2fbttracker.debian.org%3a6969%2fannounce

    Lastly, for computers people find too slow to use as a typical Office PC (such as a 1GHz CPU 32bit i686 machine with under 1GB RAM such as approximately 256MB to 512MB RAM), media distribution (especially using a USB dongle RTL2832U for HAM RADIO SDR and TV stations and Radio), their PC can still perform many of the Linux functions (Wifi router, bridge, etc.) when configured as a standard-definition Media Centre TV by using LinHES Linux which is also on an ISO that fits on a CDROM, and can be updated once installed to an HDD. "Liberty focussing" media can be viewed on a LinHES PC as an HTPC, especially if a IR receiver is added with a bluetooth dongle and a nintendo wii-remote (or a FlIRC-USB with WindowsMedia Centre Remote if a user insists). Since LinHES has lighttpd installed, the lighttpd can be used for WebGUI and other general server functionality (running MariaDB and PHP and RSS). Then Squid can be installed for caching websites when the internet bandwidth is low or when the internet is down (disconnected temporarily), as a proxy server for example, so one could use Squid, lightsquid and logrotate for monitoring, Access control, caching. Secure Lighttpd with Let's Encrypt TLS. Then use IPTables (with firewall rules and so forth). Likewise could be done in Kwort Linux since it is Slackware Linux.

    LinHES 8.2 download

    http://www.linhes.org/downloads/R8/R8.2/LinHES_R8.2.iso

    Upgrading (when a LinHES PC is plugged into the internet via Wifi or ethernet RJ45), can be done thusly to version 8.3 and then to higher versions, in the link URL guides as follows:

    http://linhes.org/versions/show/30

    Install LinHES

    http://www.linhes.org/projects/linhes/wiki/Guides#Installation

    Upgrade LinHES

    http://www.linhes.org/projects/linhes/wiki/Upgrade_LinHES

    Using UBCD (either booted from CDROM or installed to HDD first before booting UBCD) to mount the ISO of the torrented versions (of LinHES_R8.6.1.iso) to an HDD partition (e.g. IDE or SATA HDD partition) then allows for that later version of LinHES_R8.6.1.iso (exceeding the capacity of a CDROM, at 1.03GB filesize) to be installed as though the HDD-mounted ISO behaves as a bootable CDROM. One way of mounting a CDROM ISO file is with "KDE Ark" Linux software. https://apps.kde.org/en-gb/ark/

    KDE Ark software for CDROM ISO and Zip or GZip or 7z or Tar and archives

    KDE Ark software for CDROM ISO and Zip or GZip or 7z or Tar and archives

    UBCD HDD 'install'

    https://www.ultimatebootcd.com/forums/viewtopic.php?t=14836

    UBCD to HDD

    https://www.ultimatebootcd.com/forums/viewtopic.php?t=1327

    LinHES_R8.6.1

    https://mirror.math.princeton.edu/pub/torrents/LinHES_R8.6.1.iso.torrent

    Here is that magnet link for the same torrent file LinHES_R8.6.1.iso.torrent which is also attached to this Movim Post.

    magnet:?xt=urn:btih:06cde5ac2646bafdb7ee7564f5fccf24ae9d44c2&dn=LinHES_R8.6.1.iso&tr=http%3a%2f%2ftorrent.resonatingmedia.com%3a6969%2fannounce

    By direct download of 695MB, this older version of "Hirens Boot CD" (Hirens.BootCD.15.2.zip) is worth having too and performs some of the same functions as UBCD.

    https://www.hirensbootcd.org/old-versions/

    hirens boot CD 15.2

    https://mirror.pulsant.com/sites/hbcd/Hirens.BootCD.15.2.zip

    It is not to be confused with the newer version which is almost an entirely different approach of making this sort of Recovery CD and compatible with Microsoft Windows10 and that is the "Hirens Boot CD PE" although you can still do things like mount a CDROM ISO file to an HDD like with software such as "mDisk 1.6.0" included, and tools like "PLoP Boot Manager 5.0.14" so you can piggyback boot from the CDROM (or HDD if you have installed it there as per the youtube link below) to an Operating System installed on USB port storage device like a pendrive or a IEEE1284 port such as a ZIP-disk or Parallel port CD drive or a cable to another PC IEEE1284 parallel port thereby linking two computers together via a IEEE1284 parallel cable. It (Old Hirens Boot CD, i.e. Hirens.BootCD.15.2.zip) is still very clever but for UEFI (modern BIOS) computers that run Windows7 (or Server2008) or newer Operating Systems, more modern than the BART-PE Windows XP recovery CDR people could make at home. It can be installed to a HDD like a PATA IDe or SATA internal mechanical HDD with spindle and platters (so I am not just talking about a USB Pendrive mass storage device).

    Hiren's Boot CD

    https://www.hirensbootcd.org/usb-booting/

    Installing Hiren's Boot CD USB PE To A Hard Drive On PC Or Laptop

    https://www.youtube.com/watch?v=i6XLz8eez4Q

    Whereas UBCD uses a DOS style environment, Knoppix is a Linux based Recovery CDROM which has some similar very powerful tools and is also an entire Linux operating system on a Live CD (ISO file 668.1 MB) and it too can be installed to an HDD and then used as a recovery "CD ISO" from an HDD (not merely from booting via an CDROM drive).

    KNOPPIX_V9.1CD-2021-01-25-EN

    The torrent file for it is attached:

    KNOPPIX_V9.1CD-2021-01-25-EN.torrent

    Below are Knoppix hacks including connecting to the internet via Bluetooth GPRS, recovering lost HDD data, cloning the HDD, Booting over a Network, Scanning for Viruses WarDriving (finding WiFi outdoors), creating persistent settings for the Knoppix CDROM on a Floppy Disk. An extra link is provided for detail.

    https://flylib.com/books/en/4.375.1/

    Knoppix Clone Hard Drives

    https://flylib.com/books/en/4.375.1.121/1/

    Clone drive using Knoppix

    https://forums.anandtech.com/threads/clone-drive-using-knoppix.1564124/

    multiple Linux links and Donating to GNOME GNU foundation

    https://mov.im/?blog/preptorrent%40movim.eu/donating-5-usd-to-gnome-foundation-jp4OiJ

    Urdu Linux

    https://mov.im/?blog/preptorrent%40movim.eu/ab82747e-5183-4fe3-a260-115144cb4846

    Ethiopia Linux

    https://mov.im/?blog/preptorrent%40movim.eu/6a4795ca-85be-4777-85c3-624eed054e25

    Chinese and English Linux Hong Kong 考虑制作一个无线接入点。

    https://mov.im/?blog/preptorrent%40movim.eu/0a07613c-ef42-4ed0-b3d2-2bffc33ef519

    #skolelinux #simplesamlphp #oidc KodiLinux #debian

    My comment has no hate in it and I do no harm. I am not appalled or afraid, boasting or envying or complaining... Just saying. Psalms23: Giving thanks and praise to the Lord and peace and love. Also, I'd say Matthew6.

    • chevron_right

      IPFS Хостинг.

      defau17 · pubsub.movim.eu / live-network · Monday, 15 March, 2021 - 19:33

    Привет, Друзья.

    Только что попробовал, так сказать, IPFS - хостинг. Конечно, это далеко не то, что может вами ожидаться, но есть версия, что статика в Web тоже может себе жить.

    Короче, насколько я понимаю, шаринг статических страниц вполне себе может жить внутри ipfs. Вот, попробовать ради - http://gateway.ipfs.io/ipns/k51qzi5uqu5dk561is67wy0e8ti3rigoyd7r9osgcwadlwcrnntfvq4duey86h

    Выглядит страшно, а содержание - молчу, но ведь можно. XD

    #lang_ru #lifeONet #ipfs

    • chevron_right

      IPSF

      defau17 · pubsub.movim.eu / live-network · Thursday, 4 March, 2021 - 18:31 edit

    Обещал написать про IPFS. Писать, собственно, особо нечего. ipfs.

    Система такая модная. Многие пишут, что это распределенная файловая система планетарного масштаба, построенная на блокчейне. Не совсем тот блокчейн, как я понимаю, но тем не менее. По своей работе похоже на всем известные торренты. Так же, файлы распределяются на блоки и хранятся у участников сети. Это если очень просто рассказать. Я и углубляться особо не буду - ее использовать то не совсем просто (не двукнопочное приложение), не говоря уже о том как она устроена. Достаточно знать что работает без центральных серверов, туда можно загрузить файлы, доступ к которым будет у тех, кто будет знать специальный хэш (каждому файлу свой хэш) и доступ к ним можно получить почти всегда - но иногда надо подождать подольше. IPFS некоторые люди используют как веб-хостинг статического сайта. Мне, например, интересен - файл шаринг. На сайте проекта можно посмотреть какие проекты используют IPFS и еще тут

    Очень рекомендую установиться себе IPFS-Desktop (под Windows тоже есть) - и попробовать. Если сами разберетесь, то, думаю, зацените. Под Android платформу тоже были какие-то попытки создавать приложения для использования IPFS, но на данный момент - либо очень сыро (IPFSLite), либо уже устарело.

    #lang_ru #lifeONet #ipfs

    • chevron_right

      Анализ сетевого трафика с помощью Wireshark и Mikrotik роутера.

      defau17 · pubsub.movim.eu / live-network · Wednesday, 3 March, 2021 - 14:52 edit

    На случае, если вдруг кто не знает - https://mikrotik.com/ и https://www.wireshark.org

    Меня уже несколько раз спрашивали, как я анализирую трафик, смотрю какие приложения куда ходят и так далее (речь про андроид платформу и приложения запускаемые на ней).

    Мой домашняя лаборатория состоит из нескольких машин подключенных проводным соединением посредством коммутатора. Шлюзом в Сеть служит Mikrotik, он же является Wi-Fi точкой доступа на два (2/5) диапазона.

    Отдельно напишу про микротик, почему я использую его, а не что-нибудь на базе OpenWrt. Микротик уже сразу из коробки имеет исчерпывающий (для моих нужд) функционал. Роутеры этой компании я использую в своей профессиональной деятельности, то есть, они мне хорошо знакомы с многими своими приколами. OpenWrt - штука очень классная, но мне, честно говоря, нехочется подбирать железку, перепрошивать и так далее, а готовую в моих краях днем с огнем и собаками не сыскать XD.

    И так, суть всего дейвства проста. На одной из машин, которую я использую для анализа трафика (на которой установлен Wireshark XD), запущен инстанс Wireshark'a, а на микротике выполнена настройка (см. скрины ниже) streaming-server: 172.16.55.19:37008 - это машина на которую микротик будет перенаправлять отфильтрованный трафик (ниже я все картинками покажу), а filter-ip-address: 172.16.55.22/32 - это интересующее меня устройство в сети. В моем случае это смартфон.

    В самом Wireshark вам необходимо выбрать сетевой интерфейс, на котором прописан IP (в моем случае 172.16.55.19) и в строку фильтра написать udp port 37008. Затем на микротике запустить Streaming. На этом все.

    Картинки я выгружу в ipfs, поэтому если сразу не загрузилось - подождите немного. Про IPFS я расскажу в следующих постах - что это, зачем надо и так далее.

    Тут искать настройки снифера через winbox (через текстовую сессию telnet/ssh - /tool sniffer):

    sniffer

    Следующих настроек достаточно что бы перенаправить трафик на машину с Wireshark:

    set1

    set2

    В Wireshark делаем так:

    wireshark

    Не забываем apply и start на микротике выполнить.

    Вообще, микротик не обязательн для такого вида исследований, но это один из самый простых вариантов. Как вариант, вы можете поднять Wi-Fi точку доступа на вашей машине с Wireshark(при наличии wi-fi адаптера), смартфон зацепить на нее, а трафик смаршрутизировать в сеть посредством NAT, например. Вариантов как это сделать масса. При наличии умного коммутатора можно отзеркалить трафик в отдельный порт и слушать его wireshark'ом на этом порту, но это вариант для продвинутых обладателей умных коммутаторов XD. Еще один из вариантов - это использование приложений на смартфоне, которые умеют делать PCAP дампы, но такой вариант я не пробовал и думал, что нужен root.

    Накидвайте свои варианты, кто как делает, в комменты.

    По сам анализ трафика я планирую написать парочку постов, но я пока не придумал синтетический кейс, приблеженный к реальности. XD

    #lang_ru #lifeONet #Wireshark #mikrotik #ipfs