Finally got keepass v4 database importing working on Windows in addition to Linux. I'd like to get some bugs fixed in MXE (the cross compiler I use to build .exe files), but I have a solution to hold me over until that happens (which may be "never"). Anyways, on to getting it to compile on macOS and then I can wrap up this feature.

Reason #25630 that I don't get things done faster: The MXE scripts to build .deb packages are broken and after dozens of hours trying to resolve it, I haven't been able to figure it out. I opened a ticket about it a couple weeks ago, but no replies.

GitHub

build-pkg.lua produces defective .deb files · Issue #3264 · mxe/mxe

I'm running into a situation where if I build .debs and then install them, I get assembler errors. If I build the toolchain locally, the same compi...

This is blocking my ability to fix the CI jobs that build the Windows releases of the Signet client, which is holding up a release. In this case, I don't think anyone who knows about these scripts is still around. The moral of the story here is that if you can afford to help with open source software, we could really use it! I'm not talking about money. I'm talking about project management, learning how to reproduce issues, debug them, working towards a resolution and not just being able to do these, bit actually doing them in practice. It takes time and effort. It means being part of a community. And the reward is that the world is a better place. It's not the riches tech bros promise.

Reason #25628 why I don't get things done faster. I had to set aside my tasks to patch reprepro so it could handle control.tar.xz files which is what are created by all of Debian's modern tools to create .deb files. I submitted a merge request 2 weeks ago, but it hasn't been commented on, let alone reviewed or accepted. But I've got the .deb for it on my apt repo and you can see the change and compile my version here if you want it.

GitLab

support for control.tar.xz files (!14) · Merge requests · Debian / reprepro · GitLab

This change enables reprepro to handle files which have either control.tar.gz or control.tar.xz.

Reason #25629 why I don't get things done faster. I spend time trying to get my patches upstreamed so more people can benefit from my work. But just like my multi-year effort to get a patchlevel change in pam-u2f (from the original author and an official release, not a patch I wrote), it seems I'm being ghosted again. Last time around, I reached out to the maintainer via email, the former maintainer, another person in auth, the maintainer via IRC, tried to get a mentor in IRC... all failed.

Today I helped a user compile the #signet client for an #ARM based version of #MacOS. It required changing a couple library paths, and I've already upstreamed those changes to the latest copy of the repo. This was something I've been wanted to test for a long time now, but I don't have the hardware and it's hard to get the time of someone who does. But we did it. Together. Hardware secured encryption is #cipherpunk meets #cyberpunk ✊ signet - And physical access is within our threat model! Contrast that to the way hardware security work when made by Intel, AMD or ARM:

Infosec Exchange

Dan Goodin (@dangoodin@infosec.exchange)

AMD, Intel and Nvidia have poured untold resources into building on-chip trusted execution environments. These enclaves use encryption to protect d...

Well, that was... educational. Not only does v1.4 require plugging in the USB-C cable the right way, but it also only works with USB-A to USB-C cables (not C-to-C). Everything related to the USB-A connector is fine, and previous revisions didn't have a USB-C connector at all, so this version is still an improvement, but not as much of an improvement as I was aiming for. I've read a lot about USB-C cables and USB 3.1 and I think the next rev will fix both problems. Version 1.41, here we come.

This is what #patching a #bug in #hardware looks like. First attempt: I made things worse Second attempt (not pictured): it's as if I did nothing Third attempt: fixed! If you don't know how big a US dime is, the punchline here is that these wires are very small, tedious to work with and will probably come loose at the slightest provocation. #USBC And a shout out to those who know exactly what happened here without any explanation required. I goofed. Next rev will be better. #OpenHardware #electronics #diy

BTW, I am still looking for a reseller in Europe. If you or someone you know is there and wants to make open source security hardware available to people, reach out to me. The cost of shipping is Europeans €25-30 per order, but beyond that, there's a risk with every single order that something will go wrong in customs (on either end), and that cost would double just to give it a second attempt! That's why I don't offer international shipping. Because I end up losing money if 1 out of 10 orders requires re-shipping. Meanwhile the customer has to pay almost as much for shipping as the device. I want to slash that cost dramatically, and obviously I'll pass those savongs onto the user. Here's what I want to do: A.) Ship a batch of signets to someone in Europe, maybe 10x to start B.) Orders to europeans ship from there I'd prefer the reseller sells them, but I could enable shipping in my store if that's preferable. We can work out something to balance the risk of me shipping off signets and never hearing anything from them again, and the reseller buying these from me and then being stuck with them if they're not selling. We can work it out, and a return/exchange process too. We got this, I just need a little help.

New #hardware revision is in the works... #Signet v1.4 Native USB-C connector. No more need for those A-to-C adapters. I just ordered more parts to make more of them. I'm excited. #OpenHardware for life, yo!

Last night I found a lua script in the MXE repo that allows me to create .deb packages. This is something I asked for a couple months ago and never got any reply. This is a huge deal, not just for me, but for everyone who uses the MXE cross compiler to make Windows executables from Linux because the official repos have not been updated in a decade and they won't compile some modern software. Soon, I will have an update version of gcc in my apt repo for everyone. I am also going to be adding documentation on how people can compile the .deb packages themselves. The ones in my repo will be signed by me, but trusting me should not be a requirement.

Trying out Plebian Market. The censors won't let me call the signet a password manager. Password is a forbidden word. But I can say password on nostr all day long. Password password password! Take that censors!

Signet P@ssword Manager

Signet is an open source, encrypted hardware passw0rd manager. After setting it up, just plug in the device, unlock it with your device pa$sword, a...

I finally have a partial answer to the question "how long will a #Signet last?" Previously, we had never seen one wear out, but after 7.5 years, most of which was daily use, my 2017 Signet started having intermittent problems with the USB connector. I had to jiggle it to get it to work. 7+ years is better than you'll get from any commercial company, but here's the real kicker... I replaced the USB connector and it works reliably again! 💯 The part of the question about how long it will last which is left unanswered is: how long will it last after one simple repair? Any #Makerspace or #Hackerspace can help you make this #repair, even if you don't have any experience with #electronics. The USB connector costs less than a dollar and the space might even have some lying around they'd be willing go give it to you for free. This is how gadgets should be. Not disposable, but long lasting AND repairable. #environmentalism #sustainability #RightToRepair #FOSS #OpenHardware #sustainible

Achievement unlocked: get an ad in the back of the latest 2600 magazine. May all the cypherpunks have the tools they want, not merely the tools companies are willing to sell to them. 🤘😈

I am happy to announce the release of a new #signet case (and more colors)! All the same hardware inside, it's just a new look. There are a couple slight variations: - snap together vs screw together, and - I have one without a keyloop What do you think? Prefer the cleaner look to the more functional option of having a keyloop? Want other colors? Let me know. More pics are available on the Artisans Cooperative's store:

Artisans Cooperative

Signet - Password Manager

Signet is an open source, encrypted hardware password manager. Signets are built and maintained by a senior security researcher who has worked in i...

I'm going to update my personal store soon, but I am going to spin up my own #nostr relay so it will be more stable. Had someone send money into a black hole because a relay timed out. At some point I will probably also update the store to DM me the secret *before* having the person send money. That way this can't happen again, regardless of any timeouts. I think the personal nostr notification already happens after payment, so that should already be good.

Working on an update to the #signet client so it can import the Keepass 4.x databases (currently it can do up to and including 3. x). It compiles and works on Linux, but in order to be accepted it also needs to do so on macOS and Windows, and cross compiling the Windows executables from Linux needs to work for both 32- and 64-bit versions. The keepassxc project has a bunch of dependencies, which is making this difficult. The libraries aren't packaged up elsewhere like they are on Debian. 🫤

Just managed to get a cross compiler set up so I can build #Windows executables from #Linux. While it's unlikely that anyone else will care about this #development, it means I can have Windows builds in the CI/CD. This will save me a ton of time when cutting releases.

GitLab

signet / Signet Client · GitLab

Successor to https://github.com/nthdimtech/signet-client

Currently in it's own branch, but if it builds correctly, and passes manusl testing on a Windows machine, I'll merge it into trunk. Steal it as an example if you wish. #devops #OpenSource #security #FOSS

We now have a FAQ on the main Signet page.

Signet

Signet Hardware Password Manager

Signet provides hardware security for your password database. It

Thanks to the people who have asked questions. I'll continue to try to improve the documentation and make the hardware and software easier to use.

Good news: we are helping to get a bug fixed in #QubesOS. It looks like the upcoming 4.3 will allow attaching a hidraw device on the first try. That means no workarounds required to use Signet on Qubes, and it'll likely fix other devices too. (I've been using mine with Qubes for years, but it'll be nice to not have to enable usb-reset-on-attach anymore)

Thinking about checking out #podcasts who might like to have me on as a guest. Anyone have any recommendations? Any podcasts out there who cater to people getting interested in #privacy or #security? Or maybe an #OpenSource podcast where I could tell the story of how #unstoppable this project has been? #signet #FreedomTech

Signet finally has it's own account. Now you can follow this account any just get Signet updates and not have to wade through all @Dr. Hax's posts about meshtastic, preserving homegrown food and whatnot. 😂 #OpenSource #hardware #FOSS #OpenHardware #FLOSS #security #privacy #electronics