Comments for Painless Security

Comment on Moonshot: Federated Authentication Beyond the Web by Painless Security » Blog Archive » Moonshot Bar BOF Thursday March 20 at 9 PM; specs available

Thu, 11 Mar 2010 19:38:30 +0000

[...] Painless Security Sam Hartman on Security for Real-World Users « Moonshot: Federated Authentication Beyond the Web [...]

Comment on Open Source Accounting Software by applsplatz

applsplatz — Thu, 11 Mar 2010 00:08:31 +0000

While I don’t think it qualifies as a full ERP system, I use a double-entry accounting system simply called `ledger.’ Here is the link:

http://wiki.github.com/jwiegley/ledger/

I currently use it for personal finances, but I’ve done some cool things like connect my ledger system to my banks using OFX Direct Connect via external Python scripts. With some work it may meet your needs.

Comment on Open Source Accounting Software by hartmans

hartmans — Wed, 20 Jan 2010 03:07:11 +0000

Thanks. I’ll take a look at Quasar.

Unfortunately, I don’t think my scripts will help paying invoices. What I have is a bunch of postgres SQL that creates csv files from the Ledger SMB database and then a little module description that uses the native support to import a CSV file. So, unless you’re doing a bulk data import it won’t help much. Marking an invoice paid that way would be kind of tricky: there are a lot of things to get consistent.

Comment on Open Source Accounting Software by tbri

tbri — Mon, 18 Jan 2010 23:47:26 +0000

I would be interested in seeing your scripts for OpenERP. I’m not migrating from Ledger SMB but it may be useful regardless. Especially I’m having trouble “paying” invoices, it’s not that well documented.

Thanks.

Comment on Open Source Accounting Software by kfries6

kfries6 — Mon, 18 Jan 2010 18:29:23 +0000

The accounting package that I think is best for SMB is called Quasar (http://www.linuxcanada.com/). I wished you would have taken a look at that software in this article.

Comment on Integrating Kerberos into your Application Released by Recent Links Tagged With "sasl" - JabberTags

Recent Links Tagged With "sasl" - JabberTags — Thu, 30 Oct 2008 05:49:20 +0000

[...] public links >> sasl Integrating Kerberos into your Application Released Saved by HeartOfNamine on Wed 29-10-2008 Comment on Debian Mail Server Setup with Postfix + [...]

Comment on W3C Guidelines for Usable Security Context in Last Call by Painless Security » Blog Archive » How OpenID may contribute to Phishing

Fri, 15 Aug 2008 21:53:27 +0000

[...] Painless Security Sam Hartman on Security for Real-World Users « W3C Guidelines for Usable Security Context in Last Call [...]

Comment on Back to My Mac: Peer to Peer Kerberos by MacTroll

MacTroll — Wed, 09 Jul 2008 14:26:07 +0000

PKI isn’t used for the private wide area DNS registration. Instead there’s a shared secret stashed away in the System Keychain. This is used for both the DNS registration ( and DNS reading BTW) and for the IPSec shared secret.

Comment on Back to My Mac: Peer to Peer Kerberos by hartmans

hartmans — Tue, 13 May 2008 10:46:41 +0000

I’m not surprised. That was the discovery mechanism Apple and MIT were discussing when we went through a design review. I’m surprised if your claim that a certificate authorization is involved in wide-area Bonjour; I don’t know how to do that with the DNS protocols.

The Kerberosv5 part of our local authentication authority identifies a .mac certificate that is used for pkinit (RFC 4556); the local KDC accepts that certificate instead of a password.

Comment on Back to My Mac: Peer to Peer Kerberos by dre

dre — Mon, 12 May 2008 23:46:38 +0000

Woops. I used angle brackets in my previous comment. The dns-sd line should read:

dns-sd -Q “_kerberos.name.local” txt

(replace ‘name’ with the bonjour name of a machine on the local net’)