Volution Notes

Entries

• Individual URL compression experiment initial thoughts
  August 19, 2025

  I've made some experiments with compressing individual URLs, and I describe my initial observations (while comparing ...

• EU-based cloud alternatives affordability for small projects and companies
  August 12, 2025

  My personal experience in finding affordable EU-based cloud providers for a small personal project. And my pessimisti...

• Bot countermeasures impact on the quality of life on the web
  May 10, 2025

  About how another instance of "the scientific progress justifies the means", or perhaps "how a corporation milks prof...

• Misusing Linux policy based routing for firewalling
  August 11, 2024

  Experimenting with Linux policy based routing, i.e. `man ip-rule(8)`, as a stateless firewall substitute.

• Linux UEFI booting simplified
  August 04, 2024

  Demystifying the UEFI boot process with a focus on Linux, simplicity, reliability, and security.

• Infineon TPM firmware update on the HP t620 thin client
  July 25, 2024

  Updating the Infineon TPM firmware on an HP t620 thin client, which is vulnerable to the ROCA attack (that allows an ...

• Musing about a secure computer for sensitive data
  July 23, 2024

  How about splitting the usage and storage of sensitive documents and data? Plus a few ideas on how to implement a sma...

• Context binding password-based authentication
  March 30, 2024

  Experimenting with password-based authentication implemented directly in Postgres, all sprinkled with a few twists.

• Pre-hashing large password files used with PBKDFs
  March 13, 2024

  A subtle, but surprising, realization about password-based key-derivation functions when using long byte sequences as...

• Lightweight container building blocks
  September 12, 2023

  Documenting various open-source tools and projects that I've found while experimenting with the Linux container techn...

• Please don't write application launchers in `sh`!
  September 11, 2023

  `sh` is not a programming language! Write application launchers in proper languages!

• We need deterministic installs, not just immutable OSs
  September 11, 2023

  Immutable OSs are just a minor step towards reliable OS installations. However, for a complete solution we also need ...

• Linux becoming a Windows / OSX clone
  September 07, 2023

  A rant about the complexity of modern Linux distributions, which places them on par with the opaqueness of Windows an...

• Learning before dabbling in applied cryptography
  May 15, 2023

  A live document providing learning resources and pointers for those that want to experiment with applied cryptography.

• Misusing random oracles for practical purposes
  May 13, 2023

  Experimenting with various real-world instantiations of cryptographic random oracles, with applicability from multi-f...

• Experimenting with multi-factor encryption
  May 12, 2023

  Prototyping an encryption tool that allows combining multiple encryption factors, from PIN's, passwords, to X25519 pa...

• My biases when choosing open-source tools
  April 07, 2023

  I reflect on my preferences when it comes to choosing open-source tools I need to rely upon.

• SSH authorization keys experiments
  April 02, 2023

  Experimenting with OpenSSH authorization keys resolution; from skeleton-key providing emergency access, to simple cen...

• Privatizing our digital identities
  March 09, 2023

  Trying to make the case for permanent irrevocable digital identities, which unfortunately today, by de-facto, are ema...

• Another take on the binary to text encoding
  February 05, 2023

  A few words about one of my latest open-source projects, `z-tokens`, that among other thinks, also tries to tackle th...