Hello Sudo!
This is Kazoo from ABDC. We have two new people working out of the studio
who are going to take over organizing it if we are approved for the Utility
Screen Printing Studio. Can you please code the cards that were swiped
today at 4:56pm, 4:57pm, and 5:27pm? My card got deactivated because it was
sitting on some magnets.
Kazoo's card: 4:56pm - Swiped 5 times
Vienna's card: 4:57pm - Swiped 6 times
Johniquewa's card 5:27pm - Swiped 10 times in each direction
Thank you!
Kazoo
+ + + + + + + + + +
Kazoo Studios East
(415) 295-2966
www.KazooStudios.net
it's still the case that error codes reported by the magnetic stripe reader are
being used as peoples' card hashes. this means that a random person swiping a
random card can get access to omni if the error code matches that hash.
since the data from the card reader is scrambled and randomized, there's no
easy way to discern "ERROR - CARD NOT READ" or whatever it's trying to say from
")!#@@@449492837203804720_05/20_" or whatever a normal card would be reporting.
substack and i tried to fix this a while ago by counting the number of bytes
coming from the reader but it wasn't enough. so blah, now everybody here knows
and so if you care to look into it we can do that.
-jake
daniel pointed out that the default username "debian" was enabled on the
beaglebone black at the front door computer, with the default password AND sudo
access.
since i think everyone is logging in as root anyway (which has a decent
password and most people probably use SSH keys anyway) i disabled the debian
account by changing its shell (in /etc/passwd) to /bin/false, and i also set
the password to something else anyway.
-jake
there is a bad bug in the script we use to add keycards to the access control
system, called grant_access_to_last_attempt.js
that script should make the filesystem read-write before attempting to add the
record, but since it's written in node, there is no sequentiality to it at all
and the dinosaurs coexist with the humans like in The Flintstones and nothing
gets done.
I asked Corey for help and he made some changes to the script but it didn't
work. If anyone wants to fix this it would be a good idea.
Presently, when someone tries to use this script to add someone to the access
system, it asks all the questions and lets you fill them in and then it fails.
You have to run rwroot to make the filesystem writeable and try again, typing
in everything again.
and then it leaves the filesystem in a writeable state, because people ignore
the warning on the prompt saying to run roroot to put it back, and eventually
it will ruin the disk on the front door computer.
here is the github pull request, that didn't work.
https://github.com/sudoroom/doorjam/pull/7
Hi Sudo room folx,
we got a new member in our collective! He is officially in and swiped his
card already today (May 14th) at 8:22 pm. Could you code that card, please?
His name is Chris Cuardado, phone 310 227 3891 <(310)%20227-3891>
Thank you for all your work!
Dasha
--
Art Bison Design Coop
abdc.work
@art_bison
this has happened in the past and a couple of times this week, i think, that
the computer that handles the front door magnetic stripe reader shuts itself
off for some reason.
it's a beaglebone black and there is no reason it should shut off. there are
no logs as to why because we generally run it in read-only mode on the main
disk, and logs are kept on a RAM disk.
here's someone else talking about the same issue:
http://falconchristmas.com/forum/index.php?topic=5547.0
when it's off, it has power but there are no lights on. pressing the power
button turns it on. wtf?
i could make a watchdog circuit that power-cycles it if this happens, but i
don't think that's really the right solution. does someone want to take this
on and figure out wtf is going on?
probably using a USB stick for system logs would be a good start, and maybe
some increased level of logging.
-jake
I can't physically be there but seeing complains that the internet is
down at Omni. I can't remotely access any machines there. Is anybody
able to go check? Thanks.
I'm sick of reminding people exactly how to request key cards. From
now on let's just send people to this URL:
https://omnicommons.org/keys/
It won't (and probably shouldn't) automatically add someone's card to
the door computer. But it will send a formatted email to the keys
list, which already exists for this purpose:
https://omnicommons.org/lists/listinfo/keys
The code is at /home/occupy/public_html/keys/index.php. It could use
lots of love, such as:
* somebody with front end skills to give it nice CSS
* A writer to give it a nice intro text
* A coder to make it better/safer/more automated
This repo was a mess with many dangling branches and un-committed
code. With some merging magic, I created a new 'master' branch which
all previous branches can fast-forward to, and updated the ref names
on both the door computer and github. I also committed the code which
has been running live for several months, so github now reflects
reality.
I added some things to the gitignore file (node_modules, etc) -
otherwise no checked out files are changed. Only the git refs.
https://github.com/sudoroom/doorjam
There remains one unmerged branch, called "ledstrip", which is very
old (2014) and I didn't want to deal with that.
bump, since nothing happened last time i asked for help to do this.
note that this ever-important project is 99% done and all we need is for
someone to screw it to the wall.
---------- Forwarded message ----------
Date: Wed, 22 Feb 2017 13:04:04 -0800 (PST)
From: Jake <jake(a)spaz.org>
To: building(a)lists.omnicommons.org, access(a)lists.sudoroom.org
Subject: [sudo-access] help needed to install front-door opener motor
we have completed assembly of the front-door opening motor and it's ready to be
installed at the front door.
we need a qualified carpenter to install a 2x4 over the door and attach it to
the motor bracket in a way that people will see that it's safely installed.
if i do it, it will be safe but it might not look safe, and i'm not interested
in doing that. so if you are a carpenter and available to do this, please
coordinate with me and/or robb.
thanks
-jake
