Profile

Cover photo
Theodore Ts'o
Works at Google
Attended MIT
Lives in Medford, MA
12,406 followers|2,136,126 views
AboutPostsPhotosVideosReviews

Stream

Theodore Ts'o

Shared publicly  - 
 
Yikes. Apparently Amazon is vulnerable to social engineering attacks Kevin Mitnick was using two decades ago. Sigh.
 
As a security conscious user who follows the best practices like: using unique passwords, 2FA, only using a secure compu…
11 comments on original post
60
8
Gilberto Ficara's profile photoYuri Gonzalez's profile photoBen Morgan's profile photoMarco Leogrande's profile photo
8 comments
 
Unless said policy is enforced by hardware and software locks that make massive klaxons go off every time someone bypass said locks, be it tier 1 peons or the CEO, then yes they are susceptible to social engineering.
Add a comment...

Theodore Ts'o

Shared publicly  - 
 
This is what is wrong with law enforcement in America.
Robert and Addie Harte had to spend $25,000 to find out why a SWAT team mistakenly raided their home.
69
11
David “goo.gl/LuFkzX” Tweed's profile photoMarko Shiva Pavlovic (in1t3r)'s profile photoJohn Hanks's profile photoAtanu Datta (Madcap)'s profile photo
12 comments
 
To be fair the article is specifically about Kansas justice.

I thought what was wrong with US justice was its... cost: https://www.youtube.com/watch?v=USkEzLuzmZ4

Add a comment...

Theodore Ts'o

Shared publicly  - 
 
(Let's try this again, this time with hopefully better network access and using the desktop client.)

Just outside St. George's Pilgrimage Guesthouse where we are staying in Jerusalem. 
14
Add a comment...

Theodore Ts'o

Shared publicly  - 
 
Not only is Taylor Wilson not brown, and not Muslim, he doesn't go to both high school in Texas and his teachers aren't idiots. #IStandWithAhmed
 
Homeland Security and the Department of Energy got wind of what Taylor was up to and invited him to Washington so he could submit a grant proposal to develop the weapons detector.

But if you're 14 and build a clock while brown and Muslim you can expect to get arrested!
#IStandwithAhmed  
In his quest to better the world,Taylor Wilson captured the interest of Homeland Security and ended up with radioactive pants.
View original post
67
7
Chiang Lin Ng's profile photoKen Koster's profile photoEric Lacombe's profile photoJosé Almeida's profile photo

Theodore Ts'o

Shared publicly  - 
 
Very interesting.   If systemd developers go too insane[1], I wonder how hard it would be to port these daemons from OpenBSD to say, Debian.  :-)

[1] In other news, they've recently reimplemented "su"
57
9
Jürgen Geinitz's profile photoChiang Lin Ng's profile photoStephen Kellat's profile photoMartin Kock's profile photo
35 comments
 
+Julian Andres Klode Bah. Thanks. Fixed.
Add a comment...

Theodore Ts'o

Shared publicly  - 
 
I just wanted to give a shout out to +SendGrid.  Even though I'm very clearly outside their primary target market as far as paying customers are concerned, they quickly provisioned me with a free tier account which I was able to use with gce-xfstests so that someone can get e-mail notifications from a GCE VM running the file system regression tests.

Setting it up was relatively painless: https://git.kernel.org/cgit/fs/ext2/xfstests-bld.git/commit/?id=052e1564a5c2b17f23a2eae27be7c27be737e7c7

If you're using gce-xfstests, you will need to get your own sendgrid account (just ask to have a free tier account provisioned), and then configure GCE_SG_USER and GCE_SG_PASS in ~/.config/kvm-xfstests.

Thanks, +SendGrid!
26
2
Mike G's profile photoThomas Brandtstaetter's profile photo
Add a comment...
Have him in circles
12,406 people
Michael Sandelson's profile photo
KRISHNA SHAH's profile photo
Takayuki KUSANO's profile photo
Alexander Bokovoy's profile photo
Jin Masahisa's profile photo
boubacar moustapha's profile photo
Yu-Phing Ong's profile photo
James Angelo's profile photo
Eugene Crosser's profile photo

Theodore Ts'o

Shared publicly  - 
 
I'd like to give a hat tip to +Corbin Champion​​ and his GNU Root Debian application. This marvelous piece of work uses a ptrace-based environment to allow you to run a Debian environment on an Android tablet without needing to root it. I'm running it on my Pixel C, and so far I've used apt-get to install emacs, git, ssh, mosh --- even Nethack --- and it all works. The X environment doesn't work too well using just the Pixel C keyboard and touchscreen for the mouse, but I suspect if I used a bluetooth mouse it would work just fine. I haven't tried installing gcc yet, but I suspect that if I had an arm32 to arm64 cross compilation toolchain, and enough internal flash storage, I could build AOSP on my Pixel C. Very slowly no doubt, but oh so very Meta. :-)

There are some rough spots. Unfortunately the alt key isn't getting mapped correctly in the terminal version, but given that it is mapped when running in X (although unfortunately by default it's mapped to the Alt modifier as opposed to the more useful Meta modifier --- fixable using xmodmap) this appears to be something that should be able to fixed in the console mode by tweaking its terminal emulator.

EDIT: There is a preference mode which will allow the meta key to do the right thing.  Unfortunately it also intercepts the "..." key on the Pixel C character, which is used to provide access to various special characters such as the pipe character, as well as the square and curly brace characters.   TERMux gets this right, so hopefully a future version of GNURoot can follow TERMux's lead in this matter.

What I really like about this is I can now take notes using emacs from my tablet. Being able to use ssh and mosh without having to fight with some fancy GUI interface to set up keys, use host certificates, etc., is also awfully nice. And, of course, I can use apt-get to install anything that Debian has ported to the 32-bit armhf architecture.

86
18
swair shah's profile photoHarald Wagener (oliof)'s profile photoDaniel “dictvm” Heitmann's profile photoRodrigo Castro's profile photo
15 comments
 
I maintain semi-static builds of a some packages, including most of the tool chain, with the goal that they'll run on any distro with the same or newer runtime (GLIBC, uClibc, MUSL). One can build purely static utilities, but they're huge, so it's a compromise.

If there's anything that you can't apt-get install, maybe this collection would help.
Add a comment...

Theodore Ts'o

Shared publicly  - 
 
As a 2nd generation Chinese American, Rachel E. Gross speaks for me.   Bad Chinese food is not Cultural Appropriation.   Foods cooked in the fryolator (which includes "Boneless Spare Ribs" and "General Gao's Chicken" as served at most fast food joints) may be extremely unhealthy for you and may be gross.  It may say something about the revealed, expressed preferences of the mass market American palate and the choices made by entrepreneurial Chinese immigrants to adapt their cuisine in order to maximize their profit and so to be able send their kids to colleges like Oberlin.  But it's not cultural appropriation.   :-)
When I was little, my Singaporean-Chinese family used to go out for dim sum in L.A.’s Chinatown. Squished between a million other families, we’d sit around
39
1
Alejandro Morales Lepe's profile photoMichael Halcrow's profile photoMarc Herbert's profile photoDave Quigley's profile photo
25 comments
 
Looking at the price they pay for their education, US students are essentially customers nowadays. So "Cultural Appropriation" is whatever they decide it is - because the customer is always right.
Add a comment...

Theodore Ts'o

Shared publicly  - 
 
Just outside St. George's Pilgrimage Guesthouse where we are staying in Jerusalem. 
6
Bhaskar Chowdhury's profile photoTheodore Ts'o's profile photo
2 comments
 
Personal visit.   Although if there was ever a Linux conference in East Jerusalem, I'd certainly consider speaking there, if invited.  :-)

(I've already done Tel Aviv and Haifa.)
Add a comment...

Theodore Ts'o

Shared publicly  - 
 
Apropos of +Kees Cook's presentation on "Improving Security"[1]  at the Kernel Summit, I thought this Onion article was hilarious.  (Or depressing if we focus on what it means about the work we have to do, but sometimes laughing is a better alternative than crying.  :-)

[1] https://outflux.net/slides/2015/ks/security.pdf
BEIJING—Despite devoting countless resources toward rectifying the issue, Chinese government officials announced Monday that the country has struggled to recruit hackers fast enough to keep pace with vulnerabilities in U.S. security systems.
57
12
Srinidhi C R's profile photoThomas Brandtstaetter's profile photoStelian Ionescu's profile photoLucas Santos's profile photo
4 comments
 
(and don't forget that the Onion appears to have a "seer" on staff; what they joke about today often turns out to be true a couple days later...)
Add a comment...

Theodore Ts'o

Shared publicly  - 
 
Actually, I like using Mutt.  It's fast and supports real mail threading (unlike, say, GMail), and so it can deal with high volume mailing lists like LKML.  The fact that it's more secure is just a bonus.  (One way it's more secure --- I can much more quickly determine which e-mails are phishing attempts.)
Command-line email clients are more secure simply by being simpler.
131
30
Andrew Schott's profile photoDoorToDoorGeek “Stephen McLaughlin”'s profile photoIke Devolder's profile photoHoang Tran's profile photo
57 comments
 
Ah +Theodore Ts'o your mailbox is tiny! my mutt is cruising along with 100,000 messages :)
Add a comment...

Theodore Ts'o

Shared publicly  - 
 
+AT&T: The same company that cooperated with the NSA is now playing man-in-the-middle and manipulating your http connections to inject advertisements.
82
31
John Randolph's profile photoErnesto Crespo's profile photoThomas Brandtstaetter's profile photoDavid Ford (FirefighterBlu3)'s profile photo
24 comments
 
"I think that's an overly paranoid perspective" -- I doubt they would have been obvious about how they did it, but we know from the Snowden releases that they deliberately sabotaged IETF work in the past. You do acknowledge that, yes?
Add a comment...
People
Have him in circles
12,406 people
Michael Sandelson's profile photo
KRISHNA SHAH's profile photo
Takayuki KUSANO's profile photo
Alexander Bokovoy's profile photo
Jin Masahisa's profile photo
boubacar moustapha's profile photo
Yu-Phing Ong's profile photo
James Angelo's profile photo
Eugene Crosser's profile photo
Work
Occupation
Linux Kernel Hacker
Employment
  • Google
    Staff Engineer, 2010 - present
  • IBM
    Senior Technical Staff Member, 2001 - 2010
  • VA Linux Systems
    Principal Engineer, 1999 - 2001
  • MIT
    Senior Systems Programmer, 1990 - 1999
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
Medford, MA
Previously
Chicago, IL - Long Island, NY
Story
Introduction
I am the first North American Linux Kernel Developer, having started working with Linux in September, 1991.  I have also served as the tech lead for the MIT Kerberos V5 development team, and was the architect at IBM in charge of bringing bring real-time Linux in support of real-time Java to the US Navy.   I previously served as CTO for the Linux Foundation, and am currently employed at Google.
Education
  • MIT
    Computer Science, 1986 - 1990
Basic Information
Gender
Male
Yummy corn fritters and pecan rolls are included free at the beginning of the meal! I liked the riverside view.
Public - 3 years ago
reviewed 3 years ago
5 reviews
Map
Map
Map
Public - 5 years ago
reviewed 5 years ago
Public - 5 years ago
reviewed 5 years ago