Feb 242008

Ekiga is a nice linux voip program. Yet it has the limitation that its sound support does not understand .asoundrc devices. As a work around you can use an environment variable in .asoundrc to set the default device specially for ekiga.

But what if you want to have the ring sound on a different alsa device than the actual conversation? This is what I need with my DotAsoundrc, because my headphones are plugged in all the time. So I wrote a little python script, which uses dbus to connect to ekiga and plays the ring tone on a different device.


Jan 092008


pidgin-away.py lets you specify a new away message from the command line. Great for usage from within scripts. I wrote it so that when I start a game I can automatically set my status to away, and return to available when I’m done playing. Any questions or bugs, send me an email (contact information is in the script).


  • 2007-06-25 – Version 0.2: small bugfixes
  • 2007-05-20 – Version 0.1


skype-away.py lets you read or set the current status. Any questions or bugs, send me an email (contact information is in the script).


Dec 022007


The client gets permission denied on some item inside an NFS mount (this is not a mount problem). Everything looks ok, the user should have access to the file because he is in the correct group, the file has correct permissions, the ids map/are the same (idmapd does not report any issues), but there still is no access to the file from the client.

Source of the Problem

NFS, even NFSv4, is most often using AUTH_SYS to authenticate connections. AUTH_SYS only allows 16 groups to be transmitted with a request. My Linux (2.6.22, nfs-common 1.1.1) truncated all group memberships, and only sent the first 16, resulting in this seemingly unexplicable “access denied” even though the user was part of the group on both the client and the server.


A quick fix is reducing the number of groups the user is a member of.

A better solution is to use a different authentication mechanism instead of AUTH_SYS (which does not provide real security anyways), suggested is RPCSEC_GSS. I read somewhere that at the moment (2007-12-02) only kerberos is properly supported in the Linux gss library, but I’m not certain about that. I went ahead and setup kerberos, just because its known to be mature: NFSKerberos.


I found out about the problem in Eisler’s NFS Blog, which includes much more details on this issue.