Attention comment spammers! I screen every comment on this blog before publication. Please apply your skills to do something better for our world.

Posted on June 14, 2011 by Don | Leave a comment

Tomato Router Update Triggers SSL Error

Posted on May 2, 2012 by Don

After updating my Asus WL-520gU router to the latest version of the Tomato firmware (with OpenVPN support), I ran into a strange error. While trying to access the admin interface via https:, I got the following error in my Firefox browser:
Cannot communicate securely with peer: no common encryption algorithm(s)
(Error code: ssl_error_no_cypher_overlap).

I couldn’t access via http: either (which was expected, as that’s how I’d set up the router with the prior FW version to enforce security).

Googling for the error didn’t turn up anything really useful. I at first thought that the update had somehow gone bad, but I was able to get out to the internet through the router so that brought some hope. I was also able to ssh in to the router so all seemed to be OK in general. Only problem was I couldn’t access the router’s controls.

On an off chance, I decided to check out the Firefox settings for SSL security. Under the Advanced tab, I tried turning off and on the SSL and TLS checkboxes. Nothing changed. Then I decided to delete/remove the Certificate entries for my router and try again. That turned out to be the trick. For some reason Firefox didn’t like the security certificate any more – this time I got the familiar “This connection is untrusted” (or effectively similar) warning and was able to accept the security exception for my self-signed SSL certificate once more and all was fine.

Just in case someone else runs into the same problem… try the above.

Posted in Computer, Linux | Tagged , , , | Leave a comment

Palm GnuKeyring Conversion to KeepassX

Posted on April 12, 2012 by Don

I was a very early user of the original PalmPilot device. Way back when I actually had the PalmPersonal syncing with my Sun Microsystems work calendar and email, etc. I eventually moved on to a Treo90 which I think was the optimal personal organizer of its era (I ended up owning three of them over time, ultimately).

Sadly, the Palm solution no longer is feasible, even under Linux. The deal breaker for me was the lack of being able to dependably sync my google-based calendar, etc. with the Palm. So time to move on, which I did for most everything, but…

I had been using J-Pilot’s Keyring plug-in to manage my set of passwords – I hung on to this handy tool until I finally became unable to use J-Pilot to sync via USB with my Treo and was forced to manually sync my password info across my desktop and netbook. Enough became enough!

Research discovered that the excellent Windows application KeePass had been ported/reinvented for Linux, Mac (and even Win) as KeePassX. As a free open source application with excellent encryption, it was an obvious solution to fit my Linux-based environment (and my wife’s Mac). A side benefit was that there was even a KeePass version available for my J2ME-based mobile phone, so the Palm-type “on hand at all times” capability could be available once more. All these versions could work from the same password database file format, so syncing a file across them would enable the info to be always up to date anywhere I would be!

My final concern was how to get my all my existing Keyring data into that KeepassX solution. Well it turns out that someone else named Wouter blazed my trail there through a similar migration and it only required minor changes to work perfectly for me. Here’s what I did to modify Wouter’s method to suit my needs.

Note: when Wouter refers to extracting the file saxon.jar from the Saxon downloaded zip file, the actual file name is saxon9.jar. Also the Jochen Hoenicke conduit to export the Keyring file to XML is actually named export.jar, not xmlexport.jar as in Wouter’s command line.

So I gathered all the files into the working directory as Wouter recommended. I then executed the (modified) command line
java -jar export.jar Keys-Gtkr.pdb MY-KEYRING-PASSWORD-HERE > keyring.xml
which created the keyring.xml file.

I paused here to go into the XML file and make edits as required to clean up my old Keyring data, as it was much faster to do it here in bulk rather than the one-record-at-a-time editing that would be possible in the KeepassX GUI application. For instance, in Keyring there was no dedicated URL field like in KeepassX, so I had put them all in a notes field before. Now I moved them all over to the dedicated field. In other places I had comments in the user name or password fields, but these totally screw up the Autotype function in KeepassX, so I moved or deleted them. Once this was done I could move on to the next step from Wouter.

I executed
java -jar saxon9.jar -xsl:keyring-to-keypassx.xsl -s:keyring.xml -o:keypassx.xml
to create the final KeepassX XML import file. This was then able to be opened in KeepassX successfully with all my data in the categories I had originally set up, etc. Great stuff – thanks, Wouter!

Next step is to get KeepassX installed on my other machines and set up a Dropbox or similar synch mechanism to keep them all aligned automagically. That will have to wait for tomorrow!

Posted in Computer, Debian, Frugal Living, Linux, Mint | Tagged , , , , , | 1 Comment

Linphone: a VOIP Softphone for Linux (and others)

Posted on March 27, 2012 by Don

In an earlier blog post I mentioned I was using Twinkle as a softphone client for my VOIP service from Galaxyvoice (GV). As I also mentioned in this entry I’ve now switched my netbook over to a Debian Linux. I’d not yet got around to (re-)installing a VOIP client on the renewed EeePC. So when I saw that GV was now recommending something called Linphone, which seemed to be very cross-platform (Win, Lin, Mac, Android, etc.), I decided to check it out.

Turns out Linphone is available in the Debian repository, so it was a trivial task to install via Synaptic. As GV recommended Linphone, they also provided account settings info. – so about 3 minutes later, I was making my first call from the netbook – worked great!

I’ve not yet tried out the video calling, but the camera preview looks smooth and lag-free so I expect it will be great as well.

I recommend you check out Linphone!

Posted in Computer, Debian, Linux, Mint | Tagged , , , , | Leave a comment

Linux Mint Debian Edition (LMDE) on an Asus EeePC 1000HA

Posted on March 21, 2012 by Don

I’m a long time user of UNIX-based computers and have been using Linux exclusively for my primary computing for close to 10 years now. For the past couple of years Linux Mint has become my favorite distribution for desktop and laptop use.

This EeePC netbook had been running Eeebuntu Linux, which was fantastic. Eeebuntu 3.0 was based on Ubuntu 9.04 and Debian Unstable. Built with customization to various packages and a modified kernel it provided support to this netbook that was a perfect fit. That project enabled all the function keys to work and had outstanding power management that kept the machine running on battery for extended use.

Sadly, the Eeebuntu project seems to have broken down as they pursued new goals. IMHO they lost direction and got sidetracked with developing a fancy website for their proposed new release and expanding their project’s scope significantly. In the end this stalled any real end-user progress. In the mean time the old Eeebuntu became outdated and, being based on Ubuntu 9.04, stopped getting any updates. So things like Flash stopped working, etc. I waited as long as I could for their new release, but needed to move on.

Getting tired of the need for repeated reinstalls required by both Windows and Ubuntu-based Linux, I became very interested in Debian Linux. Debian is a rolling release, meaning updated software is available regularly for your existing installation. In practice, this means a software environment that should never require reinstallation but will still keep up with application development! And Linux Mint happened to announce the availability of a version based on Debian (called LMDE)… this gave me the push needed to give Debian a go on this netbook.

So I installed the latest available image of LMDE on my Eeepc in Fall 2011 from a USB stick. Everything went smoothly, no real hiccups at all. There was a minor issue with a package due to an upstream Debian problem which was fixed by marking one package to not update (this was covered in a note on the LMDE page). When installed, I had a good working system with most of the standard function keys working – the machine was totally usable but the dedicated keys for webcam switching, etc. did not operate (unlike how they had under Eeebuntu) and the power management was not tuned for battery preservation.

Luckily one of the former Eeebuntu developers (Andrew Wyatt, a.k.a. fewt) has made available an applet for power management of EeePCs (and other machines) that could be installed. Called Jupiter, it allows switching the CPU to one of three power scaling modes automatically on power events, enabling much longer battery life. It has other functions as well including video mode/external monitor selection and touchpad control.

The combination of LMDE and Jupiter have become a great solution for this netbook and I look forward to using them together for a long, long time to come!

Posted in Computer, Debian, Frugal Living, Linux, Mint, Uncategorized | Tagged , , , , , , , | 2 Comments

Better than a rooftop box, and roomier too!

Posted on February 15, 2012 by Don

I’m one half of a “new parents” team focused on our little daughter. Wow, kids require so much stuff!

So, we were planning an extended car trip and I knew we were not going to be able to comfortably fit all her stuff and support equipment into the car, with our own adult stuff, and still allow for us to feed her on the fly in her carseat in the rear. I knew this would mean external storage space but I hated the idea of one of those big rooftop boxes.

Why? Primarily two reasons:

  1. Gas mileage impact: sort of like dragging a rooftop sail down the road, this was going to cause some serious drag
  2. Access challenges: getting to the box on the roof and getting stuff into and out of it was going to be a pain. My back is not what it once was…

So I was thinking that a small enclosed rental trailer would be the ticket. Something like this one. Once I calculated the cost for our extended trip, I figured I could build one for the same or less money (than either the trailer rental or buying a good rooftop box) and we’d get to keep it for future needs. New project!

So I end up buying a Harbor Freight trailer frame kit. This ships-in-two-boxes kit comes pretty much complete but completely disassembled. They intend for you to add a make-your-own simple plywood platform and an optional stake side kit to complete it, which they supply basic plans for in the assembly directions. As I wanted to haul stuff in complete weather protection, I had to come up with a better solution.

My design ended up being a weather-tight wooden box made primarily from two sheets of 4′ x 8′ marine-grade plywood and a couple of 1″ x 4″ x 8′ poplar boards. It has a pretty simple but very effective gasket system, much like a refrigerator door (so effective, I find that opening it requires waiting for the resulting air lock to release!). Stainless hardware enables a swing open lid and good security. Upgrades include an LED trailer light kit (with the wiring harness expanded to include a dedicated ground wire throughout) and an interior LED light fixture to view the contents at night. Also a spare tire and mount (modified to go on the front surface of the box instead of on the frame tongue). I came up with a PVC pipe wiring channel to protect the wires underneath and keep the box weathertight.

The box is coated with West System marine epoxy currently and will eventually have a marine one-part polyurethane paint finish for better appearance and UV protection (have to wait for warm weather to apply it – all the assembly and coating to date was done in my residential basement due to sub-freezing weather!).

I’m really pleased with the result! The MA RMV had no issue in registering it. The trailer is barely noticeable in towing (~1500 miles so far), and seems to have little or no effect on our gas mileage. It swallows 4 large plastic storage bins and some additional bulky gear and is easily loaded and unloaded. The interior stays perfectly dry, even when using a power wash on it (I built in a boat drain plug just in case, but there is no need for it now). It is so light and well balanced that I can easily disconnect and wheel it around with one hand while still drinking a coffee with the other.

This photo make the trailer appear larger than it is - the top comes just about up to the bottom of the car's rear window and it is much narrower than it.

My only complaint is that it is so compact I can barely see it out of the rear of the car – which makes backing up a real challenge! Basically, once I see it on either side of the car while backing, it is too late – the trailer is at a significant angle already. I may need to add some lights or poles to show the corners of the box for backing up. But for now, I generally find it easier to just pop it off the car’s hitch and wheel it where I want to put it than try to back it up any distance.

Will update this post later, once the final painting is completed.

Posted in Frugal Living, Travel | Tagged , , , , | Leave a comment

Fix for Schwab Site Tossing Users Out When Accessing Certain “Offsite” Areas

Posted on December 30, 2011 by Don

After my most recent upgrade to Linux Mint 11 (and the resultant upgrade to latest Firefox), I started running into an issue on the Charles Schwab site. I could log in fine and see my account info, but as soon as I clicked on something “outside” (news story links, or Morningstar research, etc.) then I would encounter a weird situation. The linked page would display for a second or two and then the screen would refresh and I’d find myself tossed out and back at the login page with a message
Your session has either timed out or has not been correctly established. Please sign on again.
This was extremely frustrating. Googling resulted in a couple of other folks having similar issues on another platform, but no solution. The few things that had similar reports back from earlier days talked a lot about cookies. I wondered, “is this a cookie problem”?

So I looked at my cookie settings and one thing stuck out for me: “Accept Third Party Cookies” was not checked. Where this was about going “off” the main Schwab site, I tried enabling this option. Bing! The issue is resolved and now I can load these other pages and stay logged in. I don’t like the solution, as it requires me to accept cookies for sites I am not specifically planning to visit. But at least I can stay on Schwab now when I want to. I’ll most likely simply turn this option on and off as I visit Schwab until there is a longer term solution. If I can find some sort of advanced cookie management plug-in for Firefox, then that might be a longer term fix.

Posted in Computer, Firefox | Leave a comment

Using DeposZip Under Linux (Mint 11/Ubuntu 11.04)

Posted on December 23, 2011 by Don

Our new credit union provides the capability to do on-line check deposits using an application called DeposZip. Of course, their web site only mentions support/instructions for Windows and MacOS, not Linux. Well, the application is actually server-hosted and uses a Java applet (or some ActiveX thing if on Windows) to get things done.

If it goes as planned, the application can work with your TWAIN-enabled scanner to get the check images directly within the application. Sadly, this did not work for me – it produced a pop-up window saying only “SK.gnome.TwainManager.getDefaultSource()LSK/gnome/twain/TwainSource;”. I figure this is refering to a value that is supposed to be defined somewhere (and is not?), but in looking at the file system and googling I came up with nothing. OK, so the application offers two more options under the applet, copying the image from the clipboard (which also did not work – with no error this time) and loading an image file, which does work.

To create the image file, I scanned the front and back of the check separately using XSane and saved each as a .png (or jpeg) image. I then loaded these images as requested by the application. DeposZip took the 200 dpi color scans and further processed them to what looked like high contrast greyscale or B&W images shown in a preview. The rest systematically worked OK from there, the deposit was accepted for processing.

BTW, DeposZip also offers a “zero client” version as a link in the footer of the applet. This seems to load another page totally doing away with the java applet and using instead a standard web form with upload link for the image files. This works similarly to the above, but without the image preview you see in the applet happening until the next step in the process.

So long as you follow the endorsement instructions exactly (which unfortunately require you to write a whole lot of stuff on the reverse of the check) and the check is below $1500, the deposit will go through fine. Nice way to avoid a drive to the bank or ATM!

Posted in Computer, Customer, Linux, Mint, Ubuntu | Tagged , , , | Leave a comment

Linux Mint 11 (was Debian/Xfce) on a HP Pavilion ze4600

Posted on September 11, 2011 by Don

My brother’s Win XP laptop died. He has limited computer needs, really just needs to use some web applications like Facebook, Yahoo mail, Hulu and Youtube. In the past he has had significant virus issues under Windows and I’ve been proposing to him for years to move over to Linux. This happenstance caused him to be finally open to it.

This HP laptop is fairly old, it has an old AMD mobile processor, USB 1.1 and no built-in wireless hardware. This meant that the operating system had to be fairly lightweight to make this solution work well. I personally use Linux Mint (currently Mint 11/Gnome) as my own desktop and was aware of the new Debian Edition of Mint, which is available in a version using the Xfce desktop (again, lightweight resource use) which I thought would be very suitable. Plus, I wanted to get more personal experience with Debian. ;)

So I launched a project to install Mint LMDE Xfce edition on this machine. This proved to be quite difficult. For some reason, the installer would run extremely slowly – but curously, would speed up if I kept the mouse moving. But seeing as I only discovered that the second time around, once the installer had run overnight the first time around, that was little help. I ended up installing LMDE twice, because the first time it would not work properly. The second time worked, and the machine was quite nice and snappy, despite the paltry resources of this machine.

So all was good, and I got things set up well and everything he would need to use was working. Delivered the unit, he was happy. Great. Project over…

Not quite. A few days later I hear he is having trouble. It is difficult to troubleshoot remotely because there seems to be some sort of permissions issue that is preventing him from running even the tools I would normally use to connect to the machine from my home. It was almost as if SELinux was somehow in play and blocking stuff, but it had all worked before and I did not create his account with privs to change anything sensitive.

I never did get LMDE back working on the machine. Instead I chose to reinstall from scratch using Linux Mint 11 LXDE. That went smoothly (and much quicker!) and the machine has been running trouble-free since. And I was smart enough to create an image of the install this time as a backup to slap back on the machine should he have any other problems. Everything will be right back to working state in just a few minutes.

In all fairness, Mint LMDE is new and “not for your average user”, so my having trouble is really not that unexpected. I’d hoped to be able to get it running and stable and then lock it down from any changes that would destabilize it, but that proved to be insufficient. I really do want to move to a Debian base to avoid the major reinstalls periodically required with Ubuntu-based systems (Debian systems have “rolling” upgrades which keep fresh without the need to reinstall) but I think that will be best attempted with my own desktop or netbook in the future. Best to keep the others I support on the more frequently traveled path.

Posted in Computer, Frugal Living, Linux, Mint, Ubuntu | Tagged | Leave a comment

One Year of Mobile Phone Service for ~$120, with New Phone!

Posted on August 16, 2011 by Don

Yes, I’m frugal. Not so much when I’m giving a gift to someone else, but otherwise I really like getting only what I need for what I want to pay or less. So I grew disenchanted with standard monthly mobile phone service some years ago, as I was paying a lot but needed little. I discovered the world of pre-paid cell phone service, and specifically that provided by Tracfone, and never looked back.

Getting married a short time ago, my wife and I have been slowly moving to align our similar services and subscriptions. I have been wearing a very low tech but extremely reliable Nokia 2600 “candy bar” style phone since 2007 which has had GSM phone service via Tracfone. I was spending $29 every three months for service and got signal just about everywhere I’ve gone, as it would roam on the AT&T, T-Mobile, etc. networks (all within plan). She had a LG clamshell phone on a shared Verizon plan that cost about that much per month for just her portion and was happy with their network coverage (no roaming). Her phone had recently started to fail mechanically and that was the kicker to finally get this particular part of our merger completed.

So off I went in search of a solution which included:

  1. New phones for the two of us (hopefully something fairly full featured and even capable of browsing the web on the few instances we’d have to do so “on the go”)
  2. Minimal monthly cost (ideally no more than what I was paying)
  3. Keeping our existing phone numbers
  4. Neither of us are big talkers or texters, so low usage constraints might be OK

Long story short I ended up going for a deal from the Home Shopping Network, of all places. We got two LG 500g GSM phones, each with a little over one year of Tracfone service, including 1320 minutes, for $120 per, shipped. Both included a phone case, car and home chargers and a future “Triple Minutes for Life” bonus – when we add airtime purchases in the future, the minute values will be tripled automatically. I had my prior service balance ported over to the new phone (for even more time and service minutes) and was able to transfer my phone number very simply as it was all within Tracfone’s systems.

For my wife, the phone number situation was a bit more tricky – she actually gives out her cell number fairly frequently, so keeping her number was very important. Because we were moving her from Verizon to Tracfone and might want to move to another carrier in the future (and have heard you can’t port out from Tracfone), I wanted to ensure we’d have the most flexibility. As a result, instead of a straight port, we activated her new phone with a new number altogether. Her old phone number will now be ported over to Google Voice (for a one-time fee of $20). By going with Google Voice, people dialing her old number can be forwarded automatically to her new phone just like they’d expect – but that number can also ring our home phone or any other number she may be at so we don’t need to use mobile minutes in those instances. And she’ll also get automatic transcriptions of voice mails and other bonus features. If keeping her old number didn’t matter, then GV and their features would be free – I can get the same with a new number from them.

So bottom line, we ended up with way better phones, great coverage and more features for significantly less money in aggregate — roughly $260 total for a year+ of service for the two of us. Nice!

LG 500g

An example of our new cell phone

Posted in Frugal Living | Tagged , , , , , , | 2 Comments