Qbix devblog

I was always iritated about having multiple passwords to different systems. One day I’ve heard about something named “password generation system”, which is useful to recover password to any system, if you forgot one. I this case you treat as a given, that the name of system, or page address, has to be a part of algorhtym. Just anything, that will be seed for our password, to ensure, that anytime we’ll build a password for one purpose, the password will be the same. I was thinking very long for such alhorythm, which would use such seed, and wouldn’t be breakable by having two passwords. Furthermore this shoudl be simple enough to make any needed calculation in an instant, by your self.

Well there came a moment, that I came up to this, that by my present knowledge I can’t develop algorythm, that mach my criteria. But as I was thinking about some ways to encode password, I came up with few ideas of more complex ones, that in the same time are unbreakable without some data. At least I think so. That’s when I started to think about cellphone application, that if configurated once (and protected with a SINGLE password) will give us a password to any service, we need.

The Idea is very simple. You use a fragment of the md5 key calculated from a given string, for example it will be always 8 first digits. The next problem is, what should be used as this string… the addresses are to obvious. So here is what I’ve designed:

At the first start:
- choose any file, which is copied by application and hiden in application data.
- choose, if your string is added at front, or at the end of file
- choose, which signs will compound the password.

At further use:
- Enter a string(f.e. page address) and you have md5 key given from file with added string.

Since I didn’t do anything in J2ME yet, nevermind the simplicity of this application, I don’t think it’ll show up anytime soon. Nevertheless I have to tell about some possible vunurelabilities:
- everywhere we go, we have to cary a phone, or other device with application installed on it (lose of phone it’s problem with seed file, if we don’t have a backup)
- if the unwanted person will break a password for application, he/she can generate any password he/she wants
- it isn’t very comfotable, if you need to use this application for services, you use very often.

Very fast new post. These are two different threads, so I write it separately.

In this post I’ll write down short descriptions about projects I’m running right now:
Blog CMS - this is system, I wanted to put this blog on, but due to some circumstances it wasn’g goin well. Now I’ll be able to do it without any pressure, which can end up in two ways: I’ll finish it quickly, or I’ll never do this. Generaly this is blog system thougt-out especialy for the devblog uses. It has tools for runing projects, detail describing those, add files (including separate field for the newest version), screenshots. Posts are directly connected with projcets, which belongs to one category (f.e. graphic, websites, or programs).

D&D Character Creator - Program designed to help witch creating characters for RPG system named Dungeons & Dragons. I can’t describe it’s functions in detail, because there is no specification yet. There will be for sure option to print character sheet, or make random statistics. Simply it should help with character creation process in similar way as games such as Baldurs Gate, or Temple of Elemental Evil. First of all it will create character and control it’s integrity on any level. It will be based on extension files, that will add new classes, feats, or spells. I will begin this project after the newest version of Dungeons & Dragons will launch.

MTG Drafter - Simple application for simulating draft and prerelease set for Magic: The Gathering. It is good way to practice before prerelease competition. It may be perfect way to play a draft if you have enough cards, or you doesn’t care, if they are proxy. In future it will be only one module of a greater project.

MTG Player - Status of this project is “it would be awesome to have such program”. This is free way to play MTGO. To maintain the collectors game thinking, every user gains credits everyday, and buys boosters or other products for them. Users trade cards, participate in competitions and wins credits of products. Of course there will be server and client application, so everyone can make his own MTG society in the net.

Here it goes, I’ve started to run a blog. It was planned differently, but it ended up with WordPress for a while. I’m still working on my own CMS, but this “still” isn’t to serious. I wanted to start with fireworks, but since I’m working on a hundred different things at a time, this blog would start at 2012.

What will you see here…
Well… ALMOST (read below) anything. This blog is ment to be dedicated to my IT work, but it shouldn’t be surprise, if you find something else here. F.e. something about poltyics, news, or just my own things.

What will you NOT see here…
It’s hard to declare such a thing. Those mentioned above should be more like breaking the rules, not making these. But thing, you’ll not see here for sure is essay about how life is hard, because my favorite little ribbon in the olive color turning to khaki was lying with it’s plum strip on top (no, I don’t know if it’s possible to turn from olive to khaki, if it suits plum color, and finaly what is a plum color).