Foo bar LabFoo bar LabLinux, Debian, Geek , coding , psycho and interestes Articles
Ruby on Rails?
2008-03-13 23:49:00 Ruby on Rails is an open source programming language that provides a code stage to quickly build database-driven web applications. It includes five standard packages: ActiveRecord, ActiveResource, ActionPack, ActiveSupport and ActionMailer that can be extended. The Rails framework, which provides the structure for the models and views needed for a basic website, is developed employing the Model-View-Controller (MVC) architecture.There are two concepts in Ruby on Rails--Convention over Configuration (CoC) and Don't Repeat Yourself (DRY). The principle behind COC is that only strange aspects of the application need to be specified; otherwise, they follow the established standard. DRY requires that information be placed in a single, unambiguous location to ensure a single point of reference and avoid hidden errors.The principles behind Ruby on Rails allow for huge development speed while minimizing lines of code and errors. It has the advantage of including a lot of web development kn... More About: Programming , Ruby , Ruby on Rails
DNS Security Issues (Misconfigurations)
2008-03-08 22:29:00 DNS fall with security issues in a relation to:Service/traffic redirection: DNS requests(traffic) to any site, could be redirected to an IP address of a malicious attacker?s site using man in the middle attack or any other type of attacks.As a user, you should verify the authenticity through cryptographic signature hashes even with trusted sites.Similarly, name servers with MX records can be modified to redirect e-mail from one domain to another.Denial of service: Instead of redirecting records elsewhere, they can be redirected to 10.1.1.12or any another address range that does not exist which may deny legitimate target from being reached.Zone transfers:Domain record exchanges such as updating information across name servers can reconfigure packet routing across a network.Past versions of name servers had no security, and anyone with access to programs like nslookup and dig were capable of issuing them.DNS zone transfers should only be allowed between DNS servers and clients that ac... More About: Security , Issues
E-mail Risk ( Data vulnerabilities )
2008-03-05 23:27:00 As a universally implemented protocol, email should be a targetfor attacks and risk ; due to the very sensitive nature of the data or information that is transmitted.E-mail at its core is safe because it does not transmit directly executable(binary) code. But an e-mail client starts adding features to be more of a collaboration tool, such as Outlook which embed malcode that has chances of being decoded and launched.An e-mail protocol like Post Office Protocol (POP), was used in the clear, which means when a mail was received, it was transmitted with the POP3 protocol.In such case, the entire e-mail fit into one packet and opportunity to capture packets and read e-mail content isn't off-topic.Capturing and modifying of e-mail can be done either as a man-in-the-middle attack (using ARP spoofing tool, such as ettercap) or as a replay attack. Man-in-the-middle attacks are best avoided by using encryption and digital signing of messages. On the other hand, Spam DoS attacks are a result ... More About: Security , Mail , Data , Vulnerabilities , E-Mail
UNIX/Linux as a poor vulnerability target
2008-03-05 16:31:00 UNIX has some characteristics that make it less attractive for security attacksUnix is still primarily used on different platforms. This use, make the average UNIX user more knowledgeable about the operating system and security.There are many scripting techniques in UNIX.Unlike Windows, the scripting is not integrated into applications (such as Outlook and Word). In UNIX, scripts can be integrated into applications such as mail and word processing, but not to be _the default configuration_. This makes UNIX much less vulnerable than a Windows system that is running Outlook and allows users to commonly run Visual Basic scripts.Also the inability of a common user to alter an executable is a severe restriction on viruses and worms that depend on users to propagate their malware.On the other hand in Unix, Physical Security is somehow perfectly controlled:(monitoring hardware changes)A software tool library like kudzu, detects and configures new and/or changed hardware on a RedHat Linux s... More About: Vulnerability , Target
Securing communication protocol traffic (SSH tunneling).
2007-12-28 16:51:00 A useful option for secure communication between client/server is to tunnel the communication inside the Secure Shell protocol (SSH). It can be used to tunnel POP3 and SMTP traffic using ssh.-Sure u must have both ssh client and ssh server installed on the two ends.-Create a local ssh tunnel on local machine (ex.port 5110) to the POP3 server's port 110 or SMTP 25 # ssh -f -N -L 5110:localhost:110 user@POP3_server Or even simply binding to a privileged port (110, the POP port) # ssh -L 110:mailhost:110 -l user -N mailhost Same, you can also forward SMTP for outgoing mail (port 25), single ssh line can have multiple -L entries, like this: # ssh -L 110:mailhost:110 -L 25:mailhost:25 -l user -N mailhost-U can still check for port forwarded :Telnet localhost (forwarded port)/You should see the POP3 server's banner information.-Finally you have to configure your mail client to access your mail via POP3 using mail server localhost and desired forwarded port. More About: Communication , Traffic , Networking , Protocol , Tunneling
Home network map modification ( somehow mobility)
2007-12-27 05:25:00 I modified my home network somehow to give myself a way to have mobility around ;).- Firing dhclient on Nixbox ==> IP obtainable automagically- /etc/network/interfaces modifications- Downing default gw - Winbox --(Wlan/Wlan Ad-Hoc)--> NixBox ----> Router - Firing ipmasq without firewall-configs (dpkg-reconfigure ipmasq)- Winbox IPmasq)--> NixBox (Nix Connection masq)- Noticed.., neither Bind(named) nor DNSmasq is needed, by default named installed.- Apache/httpd port 80 --NAPT--> 192.168.0.1 A long time i wondered to furnish this modification, finally ... More About: Networking , Home , Network , Mobility , Modification
"_Someone i have lost long time ago_" Comment.
2007-12-21 23:21:00 If you have lost someone close to you, how do you deal with the toughest momentsthat hit you and don't always give you warning?Sadness and suffering make people wiser -Sadness and suffering will follow us as long as we live -If you can no longer feel these emotions, it's a sign that you havestopped growing as a person.Sadness and suffering enable us to be strong enough to be kind to others.When a loved one is gone, you'd look for his or her image in everything that you see,and everything that's within you seek an exact image of how you'd like to see your loved one again, pay an attention when you love again to the one you are loving, as not being your loved one substitute.Take a good look around you: paying too much attention to what you have lost, lets you neglect what you have/in now.Look into the bottom of your soul and find what you really need.Think of loving, and not of being loved.If there is someone who is in more pain and sorrow than you are,Give him or her your loving... More About: Lost , Time , Long , Comment
"_Someone i have lost long time ago_" Comment.
2007-12-21 22:50:00 If you have lost someone close to you, how do you deal with the toughest momentsthat hit you and don't always give you warning?Sadness and suffering make people wiser -Sadness and suffering will follow us as long as we live -If you can no longer feel these emotions, it's a sign that you havestopped growing as a person.Sadness and suffering enable us to be strong enough to be kind to others.When a loved one is gone, you'd look for his or her image in everything that you see,and everything that's within you seek an exact image of how you'd like to see your loved one again, pay an attention when you love again to the one you are loving, as not being your loved one substitute.Take a good look around you: paying too much attention to what you have lost, lets you neglect what you have/in now.Look into the bottom of your soul and find what you really need.Think of loving, and not of being loved.If there is someone who is in more pain and sorrow than you are,Give him or her your loving... More About: Lost , Time , Long , Comment , Some
A Long time away:
2007-12-20 17:39:00 But there's something happening in meSimple rules of cooperation with what's nearby lead to unexpected, even startling complexities that you could not have predicted from the rules (emergent phenomena). This is a neat parallel to the way that startling and unexpected phenomena like open-feeling emerge in me. More About: Time , Long
A Long time away:
2007-12-20 17:33:00 But there's something happening in meSimple rules of cooperation with what's nearby lead to unexpected, even startling complexities that you could not have predicted from the rules (emergent phenomena). This is a neat parallel to the way that startling and unexpected phenomena like open-feeling emerge in me. More About: Time , Long
Today's mood
2007-09-11 06:34:00 Always _he_ insists and will insist on __it__ , "He's rude, impoliteness and indecency "-I'm thinking ..., i have an educated mind to be able to entertain __this thought__ or this insistence without accepting it.-To conclude, strike or to reach an agreement concerning duties, isn't off-topic;It's even a better way.-Silly to put all that effort into something that's just going to die, but factual.-Cases with similarities, but which one that really deserves ????-For who knows what is good for mortals while they live the few days of their vain life? More About: Mood
Today's mood
2007-09-11 05:14:00 Always _he_ insists and will insist on __it__ , "He's rude, impoliteness and indecency "-I'm thinking ..., i have an educated mind to be able to entertain __this thought__ or this insistence without accepting it.-To conclude, strike or to reach an agreement concerning duties, isn't off-topic;It's even a better way.-Silly to put all that effort into something that's just going to die, but factual.-Cases with similarities, but which one that really deserves ????-For who knows what is good for mortals while they live the few days of their vain life? More About: Mood
"Discordianism" believes or apophenia phobia ...?
2007-09-06 05:40:00 -Is it a challenge of chance to correlate incidents to "Law of Fives", "The Law of 23s" and "The 23 Enigma" ?Why 23 is an enigma ?- Cosmic number ? - Applying the experience of seeing patterns or connections in random or meaningless data ?- A suspense was in the Bible reads: "and be sure your sin will find you out", Numbers 32:23- Also this number has some unique features : 2/3 = 0.666 & 2*3=6 - I don't care about Discordians and there believes maybe it's somehow interesting. Anyhow :) i see it interesting for myself to use apophenia discovering the theory: Complete mathematical disorder in any physical system is an impossibility. More About: Phobia , Cord
"Discordianism" believes or apophenia phobia ...?
2007-09-06 04:59:00 -Is it a challenge of chance to correlate incidents to "Law of Fives", "The Law of 23s" and "The 23 Enigma" ?Why 23 is an enigma ?- Cosmic number ? - Applying the experience of seeing patterns or connections in random or meaningless data ?- A suspense was in the Bible reads: "and be sure your sin will find you out", Numbers 32:23- Also this number has some unique features : 2/3 = 0.666 & 2*3=6 - I don't care about Disc ordians and there believes maybe it's somehow interesting. Anyhow :) i see it interesting for myself to use apophenia discovering the theory: Complete mathematical disorder in any physical system is an impossibility. More About: Phobia , Cord
Common experience along the nights
2007-09-05 06:30:00 -Long nights with a compelling sense of familiarity, and also a sense of "eeriness", "strangeness", or "weirdness".-Following the same path, -Be far from the conscious mind. -Déjà vu, Déjà senti et Déjà visité. More About: Experience , Common , Nights
Common experience along the nights
2007-09-05 06:24:00 -Long nights with a compelling sense of familiarity, and also a sense of "eeriness", "strangeness", or "weirdness".-Following the same path, -Be far from the conscious mind. -Déjà vu, Déjà senti et Déjà visité. More About: Experience , Common , Peri , Along , Erie
Google Interview
2007-08-30 17:12:00 -I never applied. Google contacted me, and asked me to interview. I agreed, only after explaining that I was very happy where I was and that I was very unlikely to move.-Basically, Google does not care about your current skills, what you have done or even who you are. They have some sort of a glass shoe and try to see if your foot fit into it.-Still i have to set the second interview. More About: Interview
Google Interview
2007-08-30 17:09:00 -I never applied. Googl e contacted me, and asked me to interview. I agreed, only after explaining that I was very happy where I was and that I was very unlikely to move.-Basically, Google does not care about your current skills, what you have done or even who you are. They have some sort of a glass shoe and try to see if your foot fit into it.-Still i have to set the second interview. More About: Interview
Strange Dream
2007-08-06 13:50:00 I t was yesterday .A strange dream , I'll post it in few points , but firstly i want to mention that it's a symbolism.-Drunk friend by my wine bottle , faced a battery.-A young girl fights to see a police major.-Underground road event full of strange shape of drunk ppl and me inside it with noway out.Comments .... ? More About: Dream , Strange
Strange Dream
2007-08-06 13:38:00 I t was yesterday .A strange dream , I'll post it in few points , but firstly i want to mention that it's a symbolism.-Drunk friend by my wine bottle , faced a battery.-A young girl fights to see a police major.-Underground road event full of strange shape of drunk ppl and me inside it with noway out.Comments .... ? More About: Dream , Strange , Range , Tran
Vista Vs Linux
2007-08-01 04:40:00 Something that always will never end :Comparing Vista Linux ,Some points and factors that i would like to log it , maybe it's a type of reference for 1D10T MicrosoftiansGuy quotes => /*... */me => Bold/*OK, let me ask you a simple question about Linux shell:Can you explore object models in linux shell? (i.e. SQL Server, Oracle, etc)? So you can go to any object and type dir and you'll get all the relations, functions, properties, variables, etc?*/-Oracle doesn't use .net in linux so that's silly question-There already is a object-based shell try to google "object+shell" Linux.Personally, I'd map those things onto fs-level objects, fs-named./*And about viruses, please don't ever mix viruses with vulnerabilities, if a virus is working on your system due to a vulnerability, then it's a security issue, otherwise it's not related to security at all, it's just another program!*/You should realize looking at that list that it's mostly third party software1)There are TONS of appl...
Vista Vs Linux
2007-08-01 04:11:00 Something that always will never end :Comparing Vista Linux ,Some points and factors that i would like to log it , maybe it's a type of reference for 1D10T MicrosoftiansGuy quotes => /*... */me => Bold/*OK, let me ask you a simple question about Linux shell:Can you explore object models in linux shell? (i.e. SQL Server, Oracle, etc)? So you can go to any object and type dir and you'll get all the relations, functions, properties, variables, etc?*/-Oracle doesn't use .net in linux so that's silly question-There already is a object-based shell try to google "object+shell" Linux.Personally, I'd map those things onto fs-level objects, fs-named./*And about viruses, please don't ever mix viruses with vulnerabilities, if a virus is working on your system due to a vulnerability, then it's a security issue, otherwise it's not related to security at all, it's just another program!*/You should realize looking at that list that it's mostly third party software1)There are TONS of appl...
Jim Morrison
2007-01-22 19:52:00 People are afraid of themselves, of their own reality; their feelings most of all. People talk about how great love is, but that's bullshit. Love hurts. Feelings are disturbing. People are taught that pain is evil and dangerous. How can they deal with love if they're afraid to feel? Pain is meant to wake us up. People try to hide their pain. But they're wrong. Pain is something to carry, like a radio. You feel your strength in the experience of pain. It's all in how you carry it. That's what matters. Pain is a feeling. Your feelings are a part of you. Your own reality. If you feel ashamed of them, and hide them, you're letting society destroy your reality. You should stand up for your right to feel your pain.?Jim Morrison
Scott Shit Racks Blocks
2007-01-22 19:51:00 Scott Morris LabSome of what's in the four separate rack cabinets:-Juniper/Netscreen Router, Firewall and SSL VPN Device- Cobalt/Sun RAQ2+- Dell PowerEdge 650 (2 x P4-2GHz, 4GB RAM) Running Web-server and primary DNS.- Trend Micro Network VirusWall 2500-Cisco IDS-4210 Outside/Inside IDS Sensor- Juniper/Netscreen IDP-100, ISG-2000, SA-1000, NS-208 , M7i, M5e, M10 and NS-2- Cisco Catalyst 3750 - 48-port 10/100-PIC, 4-port T-1 PIC- Xyplex 1640 Terminal Server- Cisco MCS, VG-200, 3620, 2611 voice gateway series- Compaq DL/320 running Call Manager Publisher/subscriber- Cisco LS-1010 ATM Switch-Cisco uBR-924 Cable Modems with voice capability- Cisco 3620 Frame Switch-Cisco 3620 ISDN Switch........Lab purposes:trainingJuniper Networks Certified Internet Expert (JNCIE) lab exam.consulting clientsThis path not recommend to anyone unless you have a good amount of business to drive it or unless you see this equipment is great in the winter to heat your house ..... More About: Networking , Shit , Scott , Blocks
RELAX-NG V.s W3C XML-Schema | Jing
2007-01-22 19:50:00 As of start packaging Jing , the _RELAX NG validator_ to Debian, i was going with some bit of difference analysis between the RELAX-NG and the W3C XML-Schema language.For some more info regarding _Jing _ , it implements : * RELAX NG 1.0 Specification, * RELAX NG Compact Syntax, and * parts of RELAX NG DTD Compatibility,specifically checking of ID/IDREF/IDREFS.Firstly analyzing the advantages of XML-Schema over the DTD,XML-Schema over DTD-It provides much greater specificity than DTDs could. some of these specificities are namespace aware, and provide support for types.Then the features not supported by RELAX-NG,XML-Schema over RELAX-NG..:-RELAX NG lacks any analog to-RELAX NG has slightly poorer specificity, i.e., it is not possible to define a specific number or range of repetitions of patterns.-XML-Schema has a formal mechanism for attaching a schema to an XML document.Then what is better regarding RELAX-NG in:RELAX-NG Over XML-Schema-It is the compact and has an equivalent form th... More About: Programming , Relax
Linux Kernel - Intro
2007-01-22 19:48:00 I see it important to give a bit of information regarding the Linux kernel , for whom don't know more than that Linux is power fulled cause of kernel without knowing anything more about it.We can say that the __Kernel __ is the core of operating system; it is the program that controls the basic services that are utilized by user programs.The kernel is responsible for:-CPU resource scheduling (regarding process management)-Memory management (including protection implementation)-Device control (providing the device-file/device-driver interface)-Security (device, process and user level)-Accounting services (including CPU usage and disk quotas)-Inter Process Communication (shared memory, semaphores and message passing)Kernel does the memory management for all of the running programs (processes) and that they all get a fair share of the processor?s cycles, also provide portable interface for programs to talk to hardware.It is physically a file that is usually located in the /boot directo... More About: Intro
localhost.localdomain
2007-01-22 19:47:00 A while back I was trying to set up some packaging tools on a Debian system, and came across a problem where my host was identifying itself as host/localhost.localdomain .Firstly hostname returned the correct thing (i.e. servername), and secondly that /etc/hosts looked like this:x.x.x.x servername.mydomain.com servername127.0.0.1 localhost.localdomain localhost servernamesome applications can?t cope with 127.0.0.1 returning localhost.localdomain instead of localhost.Replacing that last line with127.0.0.1 localhost localhost.localdomain servernamesolved the problem - i.e. localhost.localdomain wants to be an alias,this was using a sarge system; I don?t know what the current situation is with etch, nor whether it has been fixed in recent sarge update. More About: Networking , Localhost , Loca
_Telnet_ Star Wars Episode 4 !!!!
More articles from this author:2007-01-22 18:45:00 Run -> telnet service -> On the following :( telnet towel.blinkenlights.nl )And post your comments . More About: Episode , Star Wars , Networking , Wars , Star 1, 2, 3 |
|
 |
|
 |
