Yoshida Shin (yy y ja jp) sakai dictoss( ) Debian Trivia Quiz

103 Debian.Deb 銀河系唯一のDebian 専門誌 2013 8 17

1 2 1.1 Yoshida Shin........ 2 1.2 (yy y ja jp)...... 2 1.3 sakai............ 2 1.4......... 2 1.5 dictoss( )..... 2 1.6....... 2 2 Debian Trivia Quiz 3 3 Debian 4 3.1 Debian 102........... 4 4 OpenVPN 5 4.1........... 5 4.2...... 5 4.3 OpenSSL, CA... 6 4.4......... 6 4.5 OpenVPN... 6 4.6 CA.......... 6 4.7....... 7 4.8 HMAC....... 7 4.9 OpenVPN... 7 4.10 OpenVPN 8 4.11.............. 10 4.12........... 11 5 Debian epub 12 5.1 epub........ 12 5.2 LaTeX epub 12 5.3........... 13 5.4.. 13 5.5.............. 14 1

103 Debian 2013 8 1 : 1. vpn 1.1 Yoshida Shin VPN VPN 2 1. 2. IP VPN 1.2 (yy y ja jp) 1.3 sakai VPN VPN 1.4 2 openvpn LAN WEB WEB-DB DB VPN 1.5 dictoss( ) openvpn ssh VPS VPN DynamicDNS L2TP/IPsec VPN IP (=NAT ) ssh PC VPN ssh 1.6 OpenVPN Cisco Anycoonect Anyconnect OpenConnect RSA OneTimePassword SSH Proxy VPN 2

103 Debian 2013 8 2 Debian Trivia Quiz Debian Debian debian-devel-announce@lists.debian.org debian-devel@lists.debian.org Debian Project News 1. Sylvestre Ledru JDK A OpenJDK7 B JDK6 C JDK8 2. OpenJDK A mipsel B amd64 C i386 3. Summer Of Code A David Bremner B Nicolas Dandrimont C Nobuhiro Iwamatsu 4. Brian Gupta Debian USPTO A B Debian C DD 3

103 Debian 2013 8 3 Debian 3.1 Debian 102 Debian Linux Kernel armmp dh strip raspberry pi 4

103 Debian 2013 8 4 OpenVPN 4.1 VPN (WAN) (LAN) OpenVPN TLS[5] *1 TLS HTTPS 4.2 1 IP Raspberry Pi IP Raspberry pi LAN global static IP server (sakura vps) The internet mobile phone home network raspberry pi laptop 1 *1 TLS SSL 5

4.3 OpenSSL, CA OpenVPN *2 CA PKI(x509) openvpn VPN 4.4 Debian openvpn CA openssl openssl # apt-get install openvpn openssl /etc/openvpn/*.conf Debian openvpn /etc/openvpn conf openvpn 4.5 OpenVPN openvpn openvpn ping openvpn UDP TCP server$ sudo openvpn --dev tun1 --ifconfig 10.1.1.1 10.1.1.2 client$ sudo openvpn --dev tun1 --remote --ifconfig 10.1.1.2 10.1.1.1 client$ ifconfig tun1 Link encap:unspec HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 inet addr:10.1.1.2 P-t-P:10.1.1.1 Mask:255.255.255.255 UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1 RX packets:2 errors:0 dropped:0 overruns:0 frame:0 TX packets:2 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:168 (168.0 B) TX bytes:168 (168.0 B) client$ ping 10.1.1.1 4.6 CA easy-rsa wheezy openvpn /usr/share/doc/openvpn/examples/easy-rsa/2.0/ *2 openvpn 6

# cd /etc/openvpn # sudo cp -R /usr/share/doc/openvpn/examples/easy-rsa/2.0/ easy-rsa/ # cd easy-rsa/ # vi vars export KEY_COUNTRY="JP" export KEY_PROVINCE="TOKYO" export KEY_CITY="Suginami-ku" export KEY_ORG="uekawa" export KEY_EMAIL="dancerj@gmail.com" #export KEY_CN=changeme #export KEY_NAME=changeme #export KEY_OU=changeme #export PKCS11_MODULE_PATH=changeme #export PKCS11_PIN=1234 #../vars #./clean-all #./build-ca Common Name CA root 4.7 CA CA Certificate Signing Request (CSR) CA CRT CA OpenVPN CA OpenVPN CA sakura #./build-key-server sakura CN(common name) A challenge password an optional company name CSR CSR #./build-key client1 #./build-key nexus4 4.8 HMAC TLS CPU DoS HMAC # openvpn --genkey --secret ta.key 4.9 OpenVPN TLS Diffie Hellman #./build-dh 7

/etc/openvpn/server.conf port 1194 proto udp dev tun user nobody group nogroup tls-auth /etc/openvpn/easy-rsa/keys/ta.key 0 # server is 0. ca /etc/openvpn/easy-rsa/keys/ca.crt cert /etc/openvpn/easy-rsa/keys/sakura.crt key /etc/openvpn/easy-rsa/keys/sakura.key # keep secret dh /etc/openvpn/easy-rsa/keys/dh1024.pem server 10.55.2.0 255.255.255.0 ifconfig-pool-persist ipp.txt # internal tun0 connection IP keepalive 10 120 comp-lzo persist-key persist-tun # Compression - must be turned on at both end status log/openvpn-status.log verb 3 # verbose mode client-to-client log/ /etc/openvpn/log/ /etc/openvpn/ipp.txt IP 60 keepalive 10 120 10 ping 2 /etc/openvpn/*.conf 4.9.1 TUN net30 /30 ipv4 4 TAP p2p subnet IP A 4.9.2 tun or tap TUN TAP TAP L2) TUN IP L3) ios Android openvpn TUN TUN OS tap L2 linux tun L3 linux, ios, Android 4.10 OpenVPN CA Debian root ca.crt, client.crt, client.key, ta.key Android OpenVPN [6] /sdcard conf ovpn OpenVPN Import SD 8

client dev tun port 1194 proto udp remote xyz.sakura.ne.jp 1194 nobind # vpn server ip : port tls-auth ta.key 1 # client is 1. ca ca.crt cert android-nexus4.crt key android-nexus4.key remote-cert-tls server comp-lzo persist-key persist-tun verb 3 remote-cert-tls server./build-key-server key usage CA /etc/network/interfaces [3] OpenVPN * 3 4.10.1 Android UI Android $ ls -1 android-nexus4.crt android-nexus4.csr android-nexus4.key ca.crt client.ovpn ta.key $ adb push. /sdcard/secure push:./ca.crt -> /sdcard/secure/ca.crt push:./android-nexus4.key -> /sdcard/secure/android-nexus4.key push:./ta.key -> /sdcard/secure/ta.key push:./android-nexus4.crt -> /sdcard/secure/android-nexus4.crt push:./client.ovpn -> /sdcard/secure/client.ovpn push:./android-nexus4.csr -> /sdcard/secure/android-nexus4.csr *3 /etc/network/if-up.d/openvpn 9

sdcard 4.11 openvpn push 4.11.1 redirect-private VPN VPN 10.0.0.1 192.168.1.0/24 /usr/share/doc/openvpn/examples/sample-config-files/firewall.sh iptables 4.11.2 VPN redirect-gateway 10

WiFi DHCP DNS VPN bypass-dhcp, bypass-dns 4.12 openvpn 2.3 git easy-rsa Windows 4.12.1 ssh ssh ssh VPN root ssh VPN root ssh openvpn openvpn TCP UDP root ssh 1 ssh ssh -L, -R TCP -D SOCKS VPN -w IP [1] http://wiki.debian.org/openvpn [2] openvpn(8) manpage [3] OpenVPN README.Debian /usr/share/doc/openvpn/readme.debian.gz [4] OpenVPN Community Software http://openvpn.net/index.php/open-source.html [5] The Transport Layer Security (TLS) Protocol Version 1.2 https://tools.ietf.org/html/rfc5246 [6] OpenVPN Connect Android app https://play.google.com/store/apps/details?id=net.openvpn. openvpn 11

103 Debian 2013 8 5 Debian epub 5.1 epub ebook reader Debian Debian *4 Debian LaTeX PDF PDF PDF *5 epub O Reilly, Ebook epub Debian LaTeX *6 epub 5.2 LaTeX epub L A TEX epub 1) L A TEX epub 2) a. TeX b. DVI, XML HTML 2)-2. epub 3) PDF epub *4 *5 *6 PDF 12

2)-a 2)-b XML, HTML 2)-2 LaTeX platex DVI dvipdfmx 3) PDF epub 1) 2 LaTeX epub 5.3 Debian 1. Debian (debianmeetingresume2013007.tex) 2. latex2epub TEX (sample.tex) Debian latex2pub 1) Pandoc L A TEX epub NG OK 1) latex2epub L A TEX epub NG OK 2)-a L A TEXML L A TEX XML NG OK 2)-b TEX4ht DVI HTML NG NG 2)-b htplatex(tex4ht) TEX HTML OK NG 3) Pandoc HTML epub OK N/A 4) Calibre PDF epub OK OK Debian latex2epup ( ) documentclass 5.4 Debian 5.4.1 htplatex & pandoc tabular table html pandoc TEX4ht HTML pandoc (2013 4 ) PDF (= make ) htplatex dvi2ps-fontdata-a2n dvipdfmx DVI PDF ** ERROR ** Virtual fonts nested too deeply 13

TEX4ht *7 Debian htplatex Debian L A TEX TEX4ht HTML $ apt-get install dvi2ps-fontdata-a2n dvi2dvi dvipng $./htplatex debianmeetingresume200708.tex jp,2,sections+./html/ L A TEX HTML pandoc epub $ cd html $ pandoc -o debianmeetingresume200708.epub debianmeetingresume200708*.html -e epub $./htplatex -e debianmeetingresume200708.tex jp,2,sections+ http://goo.gl/2kshn0 5.4.2 calibre calibre tabular 5.5 L A TEX epub ipad mini Debian PDF PDF [1] What s the best TEX-to-HTML or TEX-to-ePUB converter? http://boolesrings.org/krautzberger/ 2013/01/05/whats-the-best-tex-to-html-or-tex-to-epub-converter/ *7 http://lists.debian.or.jp/debian-users/200708/msg00110.html 14

[2] Tools for Converting L A TEXto XML http://jblevins.org/log/xml-tools [3] Pandoc http://johnmacfarlane.net/pandoc/readme.html [4] LXir http://www.lxir-latex.org/ [5] Hermes http://hermes.roua.org/ [6] TEXWiki http://oku.edu.mie-u.ac.jp/~okumura/texwiki/ [7] L A TEX http://osksn2.hep.sci.osaka-u.ac.jp/~naga/miscellaneous/tex4ht/ tex4ht-howto.html [8] L A TEX2EPUB http://kmuto.jp/d/index.cgi/computer/latex2epub.htm 15

16

Debian 2013 8 17 1 Debian 17