Conversation with #inferno at Tue Oct  4 17:58:10 2011 on powerman-asdf@irc.freenode.net (irc)
(20:35:43) rog left the room (quit: Ping timeout: 248 seconds).
(20:57:17) Fish- [~Fish@9fans.fr] entered the room.
(21:22:37) MjrTom left the room (quit: Ping timeout: 258 seconds).
(22:48:49) MjrTom [~mjrtom@azureus/MjrTom] entered the room.
(22:52:29) fgudin [~none@digi00070.digicube.fr] entered the room.
(23:43:48) Fish- left the room (quit: Quit: WeeChat 0.3.5).
(02:12:09) MjrTom left the room (quit: Disconnected by services).
(02:12:10) MjrTom_ [~mjrtom@azureus/MjrTom] entered the room.
(02:12:29) MjrTom_ is now known as MjrTom
(06:49:03) vpm left the room (quit: Ping timeout: 260 seconds).
(08:56:29) vpm [~vpm@reverse-94.fdn.fr] entered the room.
(10:07:12) rog [~rog@host-92-23-134-72.as13285.net] entered the room.
(10:49:26) robot12 [~kazzhilki@proxy10.ts.fujitsu.com] entered the room.
(10:50:44) ikrabbe [~ingo@pdpc/supporter/professional/ikrabbe] entered the room.
(10:51:26) ikrabbe: good morning, I'm just doing my first steps, trying that inferno emulator within a linux host.
(10:52:03) ikrabbe: as the system is distributed and I want to use it to share information through the internet I need a strong authentication mechanism as ssh
(10:52:30) ikrabbe: inferno is known to use a public key mechanism for user authentication.
(10:52:41) ikrabbe: but i can't find any documents how to establish this
(10:52:46) ikrabbe: any ideas?
(10:53:24) ikrabbe: what I want is: emu<->emu connection, emu<->host connection, encryption would be good
(10:58:04) robot12: http://www.phrack.org/issues.html?issue=58&id=12
(10:58:33) robot12: all U need to know 
(11:11:42) rog: that phrack article is irrelevant
(11:12:29) ikrabbe: err
(11:12:55) ikrabbe: rog: do you have a better/relevant article?
(11:13:27) rog: ikrabbe: the inferno man pages are more relevant
(11:14:04) ikrabbe: yes, of course I will read them too, but I'm still to confused about the setup. I think I'll need a hint
(11:14:51) rog: yeah, i'm just looking it up for you
(11:15:49) rog: essentially, you run logind, use getauthinfo to get a certificate, then you can use dial or mount with the certificate to make authenticated connections
(11:17:24) rog: once you've got the certificates, you don't need to run logind any more - inferno auth is peer to peer
(11:20:20) ikrabbe: rog: yes that would be an essential document: Something that mentions the manual pages you need to read for that topic.
(11:20:41) rog: yeah. i thought there was something around but i can't find it.
(11:20:57) ikrabbe: maybe its the svc(8) page ... reading
(11:21:36) rog: the auth stuff has been due for an update for years - factotum is there but not used by most things, for example
(11:22:28) ikrabbe: hmm, that would be one of the most important part if inferno ever really gets used by toasters or cars
(11:29:23) rog: here's a very brief summary of the commands you need to run to make a certificate
(11:29:24) rog: http://paste.ubuntu.com/702636/
(11:30:19) rog: if you've got a machine that's online all the time, you might want to run the login service as a daemon
(11:30:24) ikrabbe: rog: thx, that might help too
(11:30:36) rog: then you can get a new certificate from any machine on the net
(11:31:25) rog: personally, i just keep a certificate around (encrypted)
(11:32:27) rog: i wrote some extensions a few years back to make inferno authentication work with factotum. the auth key gets stored in the factotum key file.
(11:33:23) rog: once you've got a certificate, as long as you make it permanent, you can throw away the signer key and the keydb and just use that certificate.
(11:33:34) rog: depends on your auth scenario
(11:34:20) ikrabbe: yes, thank you, I will need to play around with these things before I can think about my definitive scenario
(12:00:11) rog: ikrabbe: all those commands have man pages, BTW.
(12:09:48) robot12: http://www.vitanuova.com/inferno/man/8/changelogin.html
(12:17:32) ecelis left the room (quit: Quit: Lost terminal).
(13:45:29) ecelis [ecelis@otaku.sdf.org] entered the room.
(14:53:14) ikrabbe: hmm install.pdf is a quite good document about establishing such a service, though I'm still not fully through that process. Though I managed to get a login I failed to mount the remote yet.
(14:56:37) ikrabbe: rob: so I managed to do the walk through your script
(14:56:49) ikrabbe: now I try to mount REMOTE /n/remote
(14:56:57) ikrabbe: which fails due to pk signing error
(14:59:52) ikrabbe: stop, command back, everything works now, doing communication over the local ethernet interface, though both emus run in different directories on the same host.
(15:00:01) ikrabbe: seems to model a quite real example then
(15:04:01) MjrTom: do I understand right inferno is a fork of plan9? I thought I read that its the continuation of plan9, but plan9 seems to be continuing on its own.. so I dont really get the relationship
(15:08:28) ikrabbe: MjrTom: as far as I understand this, inferno as a fork is a kind of virtual machine, though it can be run as a real machine too. So the idea of inferno is to be run in embedded devices or as server for embedded devices or other distributed setups, while plan9 is more dedicated to be a standalone system.
(15:09:40) ikrabbe: The relationship between both is obviously that they both will gain from each other
(15:10:02) ikrabbe: I think thats the plan (without the 9)
(15:35:07) MjrTom: ahh ok thx so much for clearing that up - then it is inferno Id be interested in compared to plan9
(15:46:07) ikrabbe: MjrTom: If you want to build a set-top-box, for example, or a coffee-machine that reacts on the famous "sudo make coffee" command, than inferno is your friend.
(15:48:10) rog left the room (quit: Read error: Connection reset by peer).
(15:48:22) rog [~rog@host-92-23-134-72.as13285.net] entered the room.
(16:37:01) Gegemon left the room (quit: Quit: Leaving.).
(17:04:20) The account has disconnected and you are no longer in this chat. You will be automatically rejoined in the chat when the account reconnects.