Updates:

You can now choose from a number of pre-installed themes

Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Topics - kirrus

#1
General Discussion / Hi
April 09, 2017, 04:56:30 PM
Popping in to change my password, in one of my rare visits here, might as well say hi! :)
#3
General Discussion / The Guardian != Neutral
October 08, 2010, 10:13:10 PM
Nice to see the Guardian being impartial:
http://goo.gl/wOZH

I like the guardian's style of writing. I read their paper, visit their website, and use their iPhone app.

Today, I saw this advert: http://goo.gl/wOZH

The feature they're making the most of is a rip-off adaptation of a feature Firefox has had since version 1 (not mentioned); won't work on Linux or Macs machines (not mentioned) and the verbiage seems to be clear-cut marketing speech with no mention of any alternatives or downsides.

In the article they've mentioned that Internet Explorer has been the Market Leader since it's launch. What they didn't mention, is the reason it became the market leader. Microsoft abused it's monopoly position, as confirmed here:
http://news.bbc.co.uk/1/hi/8415902.stm

Why not a guardian article, you may ask? Perhaps the tone of this blog would give you a hint, with the negativity detectable in the tone of the author:
http://www.guardian.co.uk/technology/blog/2010/mar/01/microsoft-windows-browser-choice-screen ?

*sigh*
#4
Security / Basic system protection
October 01, 2010, 11:32:44 PM
You must have, on any web-server or other service-providing system: A firewall.

You should have, if you can't firewall port 22 (ssh), fail2ban or denyhosts.

If you're running a shared webserver system (providing hosting for 2 or more different websites) you really should be running mod_security.

If you can't put phpmyadmin behind a firewall or basic auth (customers, *sigh*) then do keep it upgraded. Of course, keeping things upgraded covers any off the shelf software, wordpress is just as bad - quite a few of them have got code injection/filesystem manipulation issues.

If you can, and you're running a mod-php system, run the IPX version of apache, not mpm prefork.  It allows you to get apache to make customer code executed as that customer's user, which is a boon to tracking down which muppet didn't upgrade wordpress this time.

Of course, there are a lot of other things you can do as well, fastCGI, nginx, and other more fancy things when you get up to MP's sort of level ;)
#5
Security / IRC-based Botnet (phpmyadmin injection)
September 29, 2010, 02:45:57 PM
Somebody has been trying to infect servers running old versions of phpmyadmin. They dumped a perl scrpt in, which takes over port 80. (Dumb really, fast way to alert what you've done to a sysadmin, on monitored boxes).

The script then talks to a IRC channel, and those on the channel can run commands against the botnet.

No script examples this time, but a good reason to keep your phpmyadmin either upgraded or behind basic HTTP auth. This particular example gained a few hundred bots, afaik.
#6
General Discussion / Security
September 26, 2010, 03:42:29 PM
Would anyone be interested / would it be OK, if I posted some bash/perl scripts used to exploit systems here? I tend to get a few due to the nature of my work (sometimes, hackers try to infect our machines, and I get to keep the tools they're using).

I guess wherever it's put, it should go in it's own safe area
#7
It'd be useful to have something like a tablet pc, wall mountable, round the DC for camera/security/system status displays. Obv, running linux. Any ideas? :)
#8
Linux Tips & Tricks / @madpenguin
September 26, 2010, 03:38:20 PM
You once showed me a really cool scp | tar command that keeps perms safe with scp transfers of large quantities of flles... could you post it, I've forgotten :/
#10
General Discussion / Off-Topic: Audobooks
May 15, 2010, 08:37:53 PM
Do any of you listen to audio books? I'm tending to listen to some from graphic audio whilst driving (my radio doesn't work, but plays mp3-cds fine. Go figure.)
#11
This is interesting:
All MMOs are rubbish, blah blah blah. World of Snorecraft, blah blah blah. Well, make your own bloody MMO, then. How? With the complete source code and art assets from fantasy monster-biffing game The Saga of Ryzom...

See the full article here:
http://www.rockpapershotgun.com/2010/05/07/make-your-own-mmo-ryzoms-open-sauciness/

Full disclosure: I work at the company that hosts RPS. And I like them :)
#12
Faster loading pages will get a boost in result rankings.

Google has started ranking webpages by the speed with which they load.

The search giant is using the loading speeds to help rank the lists of sites it produces in response to keyword queries.

BBC article here:
http://news.bbc.co.uk/1/hi/technology/8615052.stm
#13
General Discussion / Adverts
March 28, 2010, 02:11:01 PM
#14
News and Events / Ubuntu Rebrand
March 05, 2010, 12:02:15 PM
Ubuntu has just released the results of their design team's rebrand. You can read more here:
http://www.markshuttleworth.com/archives/308

Any comments? I've heard a range from love to "it's a confused steve envy" so far..
#15
Internet Connectivity / I need broadband
March 03, 2010, 03:28:22 PM
What provider would you recommend? I am a gamer, so low-lag, high-speed and (relatively) uncapped?
#16
General Discussion / Hello
March 03, 2010, 03:26:01 PM
Hi there :)