Website file integrity monitoring on the cheap.

A persistent risk of websites is the possibility of somebody finding a vulnerability in the CMS and backdooring the code so that commands and code can be executed remotely.  At the very least it means that somebody can poke around in the directory structure of the site without being noticed.  At worst it would seem that the sky's the limit.  In the past, I've seen cocktails of browser exploits injected remotely into the site's theme that try to pop everybody who visits the site, but that is by no means the nastiest thing that somebody could do.  This begs the …

Read more...

You wouldn't download a car, would you?

During the non-skippable antipiracy warnings on a lot of DVDs and BluRay disks these days, the MPAA often has an MTV-style juxtaposed and jump-cut commercial that includes the admonition "You wouldn't download a car, would you?" which has spawned a response in the form of an image macro that seems to have gotten a few of us thinking. Earlier this week the notorious BitTorrent tracker The Pirate Bay posted on their blog that they had created a new category of files that can be shared via their website, Physibles, or files that can be used to create actual, tangible objects …

Read more...

My NOVALUG presentation was a success.

Well, it's done. My Tor presentation at the NOVALUG meeting this morning went off without a hitch. It was a little touch and go for a while because neither Lyssa nor I were firing on all eight cylinders due to low blood sugar but we met up with Hasufin and Mika at the halfway point and carpooled over. In the end made things easier (read: I didn't have to navigate). I may have overprepared a bit by having an extra laptop as well as multiple copies of my presentation on hand in case things went pear-shaped, but thankfully no heroic …

Read more...

The month of April is fired.

No, more than that. If I could nuke the month of April clean off of the human calendar, I'd do just that. There'd be a big, 30 day gap between March and June where nothing would have a chance to go wrong, blow up, or otherwise try to fuck people without the usual accoutrements of dinner, a couple of drinks, and some lubricant first.

First of all, my federal income taxes got screwed up this year. Somehow, I was marked as already married on my W-2 form, which means that not enough money was taken out up front for taxes …

Read more...

For you old-school BBS users out there, Jason Scott is putting something familiar online for you.

Over at textfiles.com, Jason Scott is adding to his already voluminous archive by acquiring and putting online the contents of archive CDs, such as the shareware, text file, and artpack CDs that we used to burn our connection minutes on downloading files. Herr Scott says that, because he's downloaded these collections of files from the Net there's no way of knowing if they're complete, but you're likely to find something that you remember from back in the day.

As always, he's accepting donations of files to add to his collection.

Random knowledge IX.

When all else fails, try doing what you know shouldn't work. I don't care if the docs say it doesn't work, if the FAQ says it doesn't work, if the books say it doesn't work.. try it anyway. Stuff like BIND is like that.

In trying to get a domain working with BIND, what I wound up doing was changing a record for a single host (www IN A xxx.xxx.xxx.xxx) to the FQDN (fully qualified domain name - www.promiseofiris.org. IN A xxx.xxx.xxx.xxx), incrementing the zone's serial number, and then kickstarting the daemon. Lo …

Read more...