headers
Mahesh T. Pai | 1 Aug 2011 18:21
Picon

Re: DSC Registration for efiling

Anand Shankar said on Sun, Jul 31, 2011 at 11:17:42AM +0530,:

 > Have any of you done your income tax efiling with digital signature?

What is the cost of a signature authentication from a what-are-those-guys-called?

 > Strangely it asks you to register your digital signature certificate
 > (DSC) before you proceed.
 > That appears to be genuine that they want my CA certified Public Key
 > and digital signature.
 > 
 > What appears to be strange is that they are asking to upload the DSC
 > through a .pfx file or the usb token.
 > If u see the standards .pfx file is a pkcs12 file which contains the
 > public key as well as the private key!!
 > Am i wrong that innocent guys must have uploaded their private keys to
 > the income tax department?

Looks more like a case of misapplied standards - probably, non-free
apps on non-free OSes (obviously) do not comply with the standards. 

 > 
 > I wish to stand corrected.

--

-- 
Mahesh T. Pai   ||
"The greatest enemy of knowledge is not ignorance,
it is the illusion of knowledge."
--Stephen hawking
(Continue reading)

Permalink | Reply | 3 comments |
headers
Anupam Jain | 1 Aug 2011 22:44
Picon
Gravatar

Humble Indie Bundle 3

Just an FYI for all the Linux gamers out there who might otherwise miss
this. The Humble Indie Bundle 3 <http://www.humblebundle.com/> is currently
ongoing! You can pay *whatever you want* for 5 (now 6?) great games + some
freebies. Now the games are not quite FOSS but allowing the customer to set
the price is still a bit more aligned with spirit of foss than other
properietary software.

I missed Humble bundle 2 and have been regretting it. I really wanted to try
out "Braid" ever since it became a part of the Ubuntu software center.

-- AJ
Permalink | Reply | 0 comments |
headers
Linux Lingam | 1 Aug 2011 23:54
Picon
Gravatar

[commercial] I'm hiring. Apply if you love design

Dear all,

Lookin' for a couple of bright sparks
that use muft and mukt software for design.

Are you one? Know any?
http://niyam.com/blog/2011/08/im-hiring-do-you-understand-design/

regards
niyam

--

-- 
niyam bhushan
Permalink | Reply | 0 comments |
headers
Kamal Dave | 2 Aug 2011 09:50
Picon

Re: DSC Registration for efiling

It is really strange that the income tax seeks the private key besides the
public.  This in effect nullifies authenticity vis-a-vis the whole concept
of digitally signing document/ e-return.  This issue should certainly be
raised with income tax officials.

Kamal Dave
Advocate

On Mon, Aug 1, 2011 at 9:51 PM, Mahesh T. Pai <paivakil@...> wrote:

> Anand Shankar said on Sun, Jul 31, 2011 at 11:17:42AM +0530,:
>
>  > Have any of you done your income tax efiling with digital signature?
>
> What is the cost of a signature authentication from a
> what-are-those-guys-called?
>
>  > Strangely it asks you to register your digital signature certificate
>  > (DSC) before you proceed.
>  > That appears to be genuine that they want my CA certified Public Key
>  > and digital signature.
>  >
>  > What appears to be strange is that they are asking to upload the DSC
>  > through a .pfx file or the usb token.
>  > If u see the standards .pfx file is a pkcs12 file which contains the
>  > public key as well as the private key!!
>  > Am i wrong that innocent guys must have uploaded their private keys to
>  > the income tax department?
>
> Looks more like a case of misapplied standards - probably, non-free
(Continue reading)

Permalink | Reply | 2 comments |
headers
H.S.Rai | 2 Aug 2011 12:30
Picon
Gravatar

Re: DSC Registration for efiling

On Tue, Aug 2, 2011 at 1:20 PM, Kamal Dave <kamal.dave.adv@...> wrote:
> This in effect nullifies authenticity vis-a-vis the whole concept
> of digitally signing document/ e-return.  This issue should certainly be
> raised with income tax officials.

Don't you think news in paper will be more effective than dealing with
official of IT department?

--

-- 
H.S.Rai
Permalink | Reply | 1 comment |
headers
Shayon Pal | 2 Aug 2011 13:04
Gravatar

Re: DSC Registration for efiling

If any of you wish you write a feature on the same, I am willing to publish
it on Hindustan Times.

Regards,

*Shayon Pal**
Twitter:*  <at> shayonpal <http://twitter.com/shayonpal>
*Flickr:* http://www.flickr.com/photos/shayon/
*Mob:* +91 99589 46497
*BB PIN:* 2373AA31

On Tue, Aug 2, 2011 at 4:00 PM, H.S.Rai <hardeep.rai@...> wrote:

> On Tue, Aug 2, 2011 at 1:20 PM, Kamal Dave <kamal.dave.adv@...>
> wrote:
> > This in effect nullifies authenticity vis-a-vis the whole concept
> > of digitally signing document/ e-return.  This issue should certainly be
> > raised with income tax officials.
>
> Don't you think news in paper will be more effective than dealing with
> official of IT department?
>
> --
> H.S.Rai
>
> _______________________________________________
> Ilugd mailing list
> Ilugd@...
> http://frodo.hserus.net/mailman/listinfo/ilugd
>
(Continue reading)

Permalink | Reply | 0 comments |
headers
krish | 2 Aug 2011 14:14
Picon
Gravatar

Re: DSC Registration for efiling

On Sun, Jul 31, 2011 at 11:17 AM, Anand Shankar
<anandshankar.email@...> wrote:
> What appears to be strange is that they are asking to upload the DSC
> through a .pfx file or the usb token.
> If u see the standards .pfx file is a pkcs12 file which contains the
> public key as well as the private key!!
> Am i wrong that innocent guys must have uploaded their private keys to
> the income tax department?
>
> I wish to stand corrected.
>

Just took a closer look at
http://hcpldsc.com/IT%20returns%20pdf/IT%20Return%20Without%20E-Token.pdf
and it looks like although the private key is uploaded it still asks
for its passphrase ( shown with password dialog in pdf )

So, unless your private key isn't passphrase protected, you're really
giving it away.
I am still not comfortable to see that our key goes on that site;
unless they are flushing out all keys after filing / like 24 hours.
Any ideas anyone?

Hoping all DSC's, when created are passphrase protected ( I see a
password written on my USB token :D ) and I'm sure everyone in my CA's
office knows my token password.  FacePunch :X

--

-- 
Srikrishna Das
(krish at irc.freenode.net)
(Continue reading)

Permalink | Reply | 2 comments |
headers
Anand Shankar | 2 Aug 2011 20:25
Picon

Re: DSC Registration for efiling

On Tue, Aug 2, 2011 at 5:44 PM, krish  wrote:
>> If u see the standards .pfx file is a pkcs12 file which contains the
>> public key as well as the private key!!
>> Am i wrong that innocent guys must have uploaded their private keys to
>> the income tax department?
>>
>> I wish to stand corrected.
>>
>
> Just took a closer look at
> http://hcpldsc.com/IT%20returns%20pdf/IT%20Return%20Without%20E-Token.pdf
> and it looks like although the private key is uploaded it still asks
> for its passphrase ( shown with password dialog in pdf )

Thats a good illustration of using a .pfx file for DSC registration.

But come on, all that encrypted keys are being taken as secure with a
simple password acting as the watchguard !! We all are too familiar
with the secure password keeping and the simple default passwords kept
by so many.

I still do not believe that a Private Key needs to be uploaded in any case.

There is still something missing because Department of Income Tax has
also published a writeup for registering DSCs.

https://incometaxindiaefiling.gov.in/portal/downloads10-11/itr/"Procedure
for Registration of Digital Signature and Upload of Income Tax Returns
using Digital Signature.pdf"
(Continue reading)

Permalink | Reply | 1 comment |
headers
Jack Norman III | 2 Aug 2011 22:56

Puppet Labs In India

Hi Guys,
My name is Jack and I work for Puppet Labs here in Portland Oregon! 
We are going to be hosting a Puppet 
public training class in Bangalore on August 24-26. 
The week prior to that our international trainer and 
DevOps believer Garrett Honeycutt will be in Delhi and 
wants to meet with local Linux users and DevOps 
followers.
He will also be staying after our training for the DevOps
meeting in Bangalore. If you would like to meet up
and talk please write me back and we can try to set something up.

My email is jack@...

Garrett's personal website is www.garretthoneycutt.com

Also, to those interested in datacenter automation who might 
want to learn Puppet please email me as well 
or check out the event at 

http://puppet-training-bangalore-august-2011.eventbrite.com

Thank you all!

Jack Norman III
Puppet Labs | Portland, OR
Desk: 971-277-6822
Cell: 503-547-9555
Email: jack@...
Website: www.puppetlabs.com
(Continue reading)

Permalink | Reply | 0 comments |
headers
Swapnil Bhartiya | 6 Aug 2011 20:54
Picon

The World's Easiest Arch Linux Manual

Hi,

As we started publishing manuals on Muktware a few months ago. We just 
published a detailed Arch Linux manual. The manual is targetted at those 
users who want to try it but fail to do due to lack of easy manuals. 
ArchWiki is an excellent source, yet we needed simplifications.

I hope it will help users.

http://www.muktware.com/man/2165

<b>Swapnil Bhartiya</b><br>
Editor: Muktware.com<br>
Skype: No Way...its non-free. Looking for alternatives<br>
Facebook: http://facebook.com/muktware<br>
Twitter: http://twitter.com/muktware
Google+ : https://plus.google.com/109027644713767623413/posts
Permalink | Reply | 0 comments |

Gmane