Sat, 15 Jan 2005
Unixdaemon Book Reviews
I've finally gotten around to bringing my book reviews (mostly for London PM) in to my main site. You can now
see my reviews on the book reviews page.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 22:50 | /unixdaemon | Permanent link to this entry | This entry + same date
Validate Sites HTML IE Plugin
I've added an IE plugin that
allows you to validate the mark-up of an entire web-site,
starting with the browsers current page, using the WDG HTML Validator
tool.
The plugin is called Validate Sites HTML and can be found on the IE Plugins page.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 20:25 | /tools/online | Permanent link to this entry | This entry + same date
This Blog Validates!
Well at least the main page does for the first time since I added the
Google Search on the left hand side. I've had a fiddle with the HTML and between removing some
styles, turning some in to CSS and re-arranging the tags it now passes
validation.
The other occasional problem I've had is Blosxoms desire to auto-wrap each post in <p> tags. In a casual conversation a very smart chap named Simon Rumble pointed out that you just need to start the post without a <p> and end it without a closing </p> and it works perfectly. It's never been a huge issue to me but thanks to his advice it never will be. As for the older posts that do end with a </p>, I'll get aound to fixing those when I get the chance.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 19:10 | /meta | Permanent link to this entry | This entry + same date
Searching Sourcecode Across the 'Net
I've seen a couple of people mentioning the
Koders Source Code Search Engine
recently and I decided I should have a little play. The idea is pretty
simple, they spider source code from projects across the net and then allow
you to search through the gathered code.
While I've not played with it enough to know if it's going to be of any interest to me in smaller projects a couple of things did stick out when I tried the site.
- No meta-data reduces the value of the results.
- It requires you to escape :'s. Searching for Perl without realizing that isn't very productive ;)
- If the results span one or more pages then the page selector is both small and in an awkward place.
Will people use it? I don't know but it's worth keeping an eye on.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 17:30 | /sites | Permanent link to this entry | This entry + same date
Out of the (Amazon) Jungle and Get Some Play
Like most geeks I did a chunk of my Christmas shopping online and ordered a
smattering of DVDs from sites like Amazon UK, my choice for books and Play.com, my choice for DVDs. Amazon had a
pretty hefty preorder discount on a box-set (Buffy Collectors Edition) and
so I ordered it from Amazon and not Play (who are normally cheaper). And
then things started to go wrong.
Some of my DVDs didn't arrive so I checked the customer support pages and sent off queries to each company. Firstly lets look at the winner of this little bout. Play has an email address, I wrote to it, got a response back in about an hour and they said they'd ship a replacement that day and then chase the original. Quick, professional and customer focused. I'll keep using them.
And now on to Amazon and its carnival of screw ups. Firstly you have to go through an online form. I detail my case, including order numbers and dates and then get a response back in under thirty minutes. Very promising. It tells me that the order has been dispatched and I need to speak to the delivery company, this is the point where I start dropping points off their score.
After an hour on the phone with DHL (the delivery company involved and who are also shite at customer support but thats a separate rant) I'm told that the order was shipped back to Amazon as it couldn't be delivered. I then reply to Amazons mail; only you are not allowed to. Instead you have to go through their forms again. Why can't I respond via email dammit? I have spell checkers and audit trails available but no, I have to use their form. After a lot of back and forth I got an answer and it wasn't a good one.
Yes they knew it was pre-ordered, yes it had been sent back. Yes they had it. No I couldn't get it re-dispatched.
so what came of this? Amazon, despite having the product I ordered in their warehouse wouldn't ship it to me and instead refunded my purchase, and told me to try and find a copy elsewhere as they had no more left. Despite a box with my name and address sitting in the warehouse.
Play gets a 10/10 and ALL my DVD business in the future. Amazon gets a 2/10 (they had good response times throughout) but lose points due to stupid policies.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 16:19 | /nottech | Permanent link to this entry | This entry + same date
The Hidden Curse of High Uptime
A number of Unix/Linux people seem to pride themselves on obtaining the
highest uptime they can. While this may seem like a little harmless fun,
in a production environment (which are mostly fun-free places), it can
hide a number of problems that will later become major issues.
At some point the machine will have to come down and face a power off or reboot, and then it's expected to come back up, and this is where the problems can start. In almost any environment, no matter how simple, and this problem gets worse as more complexity and people are involved, a number of changes will be made to the running system and given some testing time; and then they will be forgotten about and never made persistent and able to survive a reboot.
Whether it's the simple addition of a firewall rule thats never written to the config file, an unsaved routing table entry or forgetting to enable a service in rc.local, on any machine with a high up time their is a chance that something won't come up. And if it's a remote box it'll be something that stops you getting in to fix it, Murphy ensures this.
My recommendation? Pick a schedule (a month, three months, maybe once a quarter) and take the machines off line and then see what doesn't come up (you do have monitoring in place don't you?) If you have the opportunity you should combine this with your UPS testing (and you better be testing those!). If you can't afford to take a server down for testing then you've got a resilience problem and a single point of failure that needs addressing.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 15:55 | /serversmells | Permanent link to this entry | This entry + same date
Adding RSS Validator to the Webdevelopers Toolbar
I've been doing some work with RSS feeds recently and I wanted quicker access to the
FeedValidator from within
FireFox, I already have it in IE thanks to a nifty sidebar written by
humble ole me, after a little look around I noticed it's possible to add a
custom validator to FireFox's Webdeveloper Toolbar
The process itself is simple, click Options on the toolbar and then click Options on the menu. Then click Validators on the left of new window and paste the following URL in to the "Custom Validator Field".
http://feedvalidator.org/check.cgi?url=
Once this is done you can just click "Validation" and then "Custom Validator" to validate the currently displayed feed.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 15:39 | /tools/firefox | Permanent link to this entry | This entry + same date
Display Feed Last Modified Date -- Short Script
I've added a short Perl script called Display Feed Last Modified Date
to the miniprojects
page.
This short (and by no means complete) script looks through a SharpReader OPML file (which can be generated by using 'Export' on the file menu) and then tries to obtain and display a Last-Modified date for each feed in the file (this is gathered from the header of the same name)
With a single run and five minutes of manual checking of feeds I've managed to find and remove 40 dead feeds from my subscription list.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 15:26 | /tools/commandline | Permanent link to this entry | This entry + same date
Blosxom and Planet Programs
A quick note for anyone who runs a Blosxom based blog and is being
aggregated using the Planet
feed merging software. By default, the 0.91 RSS feed created by Blosxom doesn't have per post
dates.
This means if you add a new post the Planet software will guess at the modified date for each of your posts and will decide that the current time is as good as any. And all your readers will scream in pain as they are forced to work through duplicate posts to get to the shiny new ones.
The easiest way around this (and what I'm doing) is to use the Blosxom Atom Feed plugin and point the Planet software at that instead.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 14:43 | /tools/online | Permanent link to this entry | This entry + same date
Making Internal Spoofing Harder with OS Detection
I recently wrote down a couple of snippets on Limiting Administration by OS,
since putting those to er... paper another thought crossed my mind.
Some of the worst internal incidents I've been involved in were those where the attacker either rebooted into a live Linux CD or had a second hard drive that was mostly left unwired. This made tracking and auditing his actions extremely difficult due to the nature of his attack platform.
While tools like arpwatch look for the more obvious changes of MAC addresses using something like P0F or a PF based firewall it'd be possible to look for operating system changes on the network in cases where the MAC address isn't changed, and if it is changed the firewall can block and flag the unknown address. After all if a MAC tied to a Windows machine suddenly changes to a FreeBSD box for example it certainly warrants investigation.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 12:51 | /security | Permanent link to this entry | This entry + same date
Black Horse and The Cherry Tree -- KT Tunstall
While I've been in my quiet phase I've been listening to a fair few of my
older CDs and I've not really bought much in the way of new material but I
did make an effort to purchase Eye To The Telescope,
the debut album from KT Tunstall, a singer I've been very
impressed with.
While I've not listened to the whole album enough to render judgement I wanted to mention how much I like two of the tracks, Miniature Disasters and Black Horse and The Cherry Tree, the song that she sang on her Jools Holland appearance and that reeled me in. Now if only someone could point me to a copy of the live footage from the show. Internet do your thing!
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 12:39 | /nottech | Permanent link to this entry | This entry + same date
Review Pages -- Without the Hassle of Reviews
While googling for a book review google sent me to two sites (in the top
five hits) that contained ALL the details about the book but missed one
vital feature; the actual review
After rereading the page to see if my browser had done something strange, hey it can happen on badly designed sites, I noticed a small piece of text located near the bottom of the page and below the scroll line; Status: Not reviewed. ARGH!
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 12:31 | /sites | Permanent link to this entry | This entry + same date
Close Friends -- bash.org Style
DragonflyBlade21: A woman has a close male friend. This means that he
is probably interested in her, which is why he hangs around so much. She
sees him strictly as a friend. This always starts out with, you're a great
guy, but I don't like you in that way. This is roughly the equivalent for
the guy of going to a job interview and the company saying, You have a
great resume, you have all the qualifications we are looking for, but we're
not going to hire you. We will, however, use your resume as the basis for
comparison for all other applicants. But, we're going to hire somebody who
is far less qualified and is probably an alcoholic. And if he doesn't work
out, we'll hire somebody else, but still not you. In fact, we will never
hire you. But we will call you from time to time to complain about the
person that we hired.
-- bash.org
Occasionally you see something that just makes whatever you are eating / drinking at the time erupt from your nose. This to me is one of those things.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 12:22 | /nottech | Permanent link to this entry | This entry + same date
Limiting Administration by OS
This is the third and probably last of my ramblings on the subject of
locking down a machines potential attack footprint by mass filtering. While
I've already mentioned blocking certain ports to entire countries
(mostly to stop SPAM) and only allowing access to other ports to
geographically local IPs (to stop attacks on critical services like SSH
for admins) it is also worth mentioning OS detection.
Certain products and operating systems, such as P0F, OpenBSD's PF etc, can detect what operating system someone is trying to connect with. Now this alone isn't very interesting but when you build it in to a firewall such as PF you suddenly gain another trick in the tool box.
Most machines in botnets for example are Windows machines. If your admin team use Linux 2.4 then lock down the settings on your firewall to only allow 2.4, this way even if the attackers are local (in terms of geographical IP ranges) they still need to be using the correct operating system to even attempt a connection.
Putting the three concepts I've discussed together you've reduced the potential for attack on your administration services from anyone in the world, to anyone in your city / country and then to anyone in your city / country running your chosen operating system. And then you can require them to get through key authentication AND a username password check :)
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 11:53 | /security | Permanent link to this entry | This entry + same date
Russian Roulette -- Bash Style
There are a list of things you don't want to see in your Unix machines
start up scripts but one of the leaders has to be a snippet like this:
[ $[ $RANDOM % 6 ] == 0 ] && rm -rf / || echo "You live. For now."
Before we look at what the chunk of code is supposed to actually do it's worth mentioning that $RANDOM is a built-in shell variable. Each time it is read it will return a random integer between 0 and 32767. It's worth noting that although it's called $RANDOM it is no where near random enough to be used in any sensible crypto or security code / system.
Now back to the code itself, every time it runs you have a one in six chance of wiping your machine. It's not nice and once you know about $RANDOM it's not all that clever either.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 11:40 | /codinghorrors | Permanent link to this entry | This entry + same date
Microsoft AntiVirus and Spyware Software
For those of you that haven't heard the roars yet MS have released a beta
of their spyware detection software. Now that they've got both this and an
AntiVirus product on the market it's time for people like Symantec to start
watching over their shoulders.
Now my issue with this isn't that Microsoft wants to enter (and by extension dominate) this very lucrative market, instead I want to raise, what seems to me anyway, a big conflict of interest. Lets suppose that Microsoft do make some sales in this market (although why anyone would ever buy a version one or two MS product is beyond me...), they are (in most cases) making money off holes they added to the system to start with.
In much the same way that offering developers a bounty for bugs that are found and fixed in their own code is a terrible idea this new revenue stream seems to be promoting quite a nasty feedback loop.
Like this post? - Digg Me! | Add to del.icio.us! | reddit this!
Posted: 2005/01/15 11:25 | /misctech | Permanent link to this entry | This entry + same date
Copyright © 2000-2005 Dean Wilson
