At some point along Debian's journey, rescue and emergency runlevels broke for anyone who has a locked root account and, say, uses sudo exclusively to run administrative commands. See the bug report and a proposed installer patch. This is not an atypical setup—it's a standard option of the Debian installer, and happens to be one I typically use.

To summarise what's going on, the system now prevents root from logging in due to it being a locked account (having no password, it cannot be authenticated), which means that the rescue and emergency runlevels always error and fail to bring up a shell. What bloody good are they, then, right?

Not too long ago things got to the point where the system can be configured to work as expected, again, but certain settings need to be enabled beforehand. This is described below. Note that doing so arguably introduces a security …

Read this post

I use KMail and it, like many other popular email clients, sorts messages into threads. It does this based on reference information embedded in the (usually hidden) headers of each message. Of course, sometimes those headers are off. Most commonly this happens because a sender uses a reply-to-all function to send a new message to an existing list of addresses—this new message has a completely different subject from the original (to which it's ostensibly replying), but the sorting at the receiver's email client still considers it part of the old thread because reply-to-all functions add headers referencing the original message, as well as others in the original thread.

Fortunately, KMail has the ability to remove those headers through manually applied filters. The bonus is that, once you do this, the corrected threading will propagate to other email clients—I use K-9 Mail (not related to KMail) on my phone …

Read this post

Some of my personal projects are tracked using private git repositories, hosted on this server. I can access these via ssh, but for a while I've had in mind to make at least a couple of them publicly accessible... somehow. After finally getting around to looking into it, this turns out to be deceptively simple using git-daemon (instructions for Debian distros):

1. Install the git-daemon-sysvinit package.
2. Enable the daemon by editing /etc/default/git-daemon. Reboot, or start the git-daemon service by hand.
3. Add a symlink to each git repo you want to make public under /var/lib/git. These will then be accessible via git://<hostname>/git/<linkname>.
4. Ensure the git protocol port (9418) forwards to the server.

Simple! The git protocol is faster than serving over http(s), and the standard configuration ensures that anonymous clients can pull, but not push, which is exactly what I was after.

Over the …

Read this post

Following our detector radiation and mitigation testing campaign, we tried an alternative approach for annealing detectors to mitigate radiation damage: laser annealing. High-power laser light was directed at irradiated and thermally-annealed detector samples, and subsequent performance measured. Notably, the results show that doing so provides performance improvements better than those achieved by thermal annealing.

Read this post

Quantum uplinks to Earth-orbiting satellites will necessitate single-photon detector technology that is robust to space radiation for the lifetime of the satellite. In this study, we experimentally assessed the effect of such radiation on a targetted selection of candidate detectors, with a focus on their impact to quantum key distribution. We then attempted to mitigate these effects, using thermal controls including deep cooling (during operation) and high-temperature annealing. Our results show that such techniques can maintain useful performance significantly beyond the one-year baseline lifetime.

Read this post

This paper describes work I mentioned earlier. We successfully demonstrated quantum key distribution with signals transmitted from a ground station to a receiver on board a flying airplane. Our receiver (which is significantly upgraded in comparison to our prior truck demonstration) was designed and largely custom-built to have a clear path to flight on a satellite. Our demonstration illustrates the viability of such a payload.

Read this post