×

Announcing: Slashdot Deals - Explore geek apps, games, gadgets and more. (what is this?)

Thank you!

We are sorry to see you leave - Beta is different and we value the time you took to try it out. Before you decide to go, please take a look at some value-adds for Beta and learn more about it. Thank you for reading Slashdot, and for making the site better!

Comments

top

Department of Transportation Makes Rear View Cameras Mandatory

moj0e Re:13 to 15 deaths (518 comments)

What I was trying to communicate was let's not think of it in terms of "if it saves one life", but in terms
of "if it saves the life of someone I know" (which would have been our case).

I think the argument would have been much different
if we were trying to ban cars rather than changing something small to make it a little safer.

about 8 months ago
top

Department of Transportation Makes Rear View Cameras Mandatory

moj0e Re:13 to 15 deaths (518 comments)

Hopefully Intelligent Transportation Systems (https://en.wikipedia.org/wiki/Intelligent_transportation_system) will be mature enough to reduce those accidents/deaths as well. But for now, we will have to be content with 15 - 30 lives.

On a personal note, a close friend of ours lost their child to an accident that could have been avoided with a rear-view camera. Seeing all the pain that they went through, it makes me wish this existed back then.

about 8 months ago
top

Intel Embraces Oil Immersion Cooling For Servers

moj0e Re:SGI was doing this a looong time ago... (230 comments)

+1 to the parent. I used to work at SGI and, as you said, this is old news. One small note, unless rackspace is also doing something different, I believe you are talking about Rackable Systems intead of Rackspace.

This might be the first time Intel is doing it with their HW though. If I recall correctly, SGI did it with their MIPS systems.

more than 2 years ago
top

SSID As the New Community Bulletin Board and Yard Sign

moj0e Re:Attitude (165 comments)

One advantage of changing your default SSID a vanilla install is that it makes it harder to crack.
The SSID is used as salt in the encryption mechanism.

Here is an article that describes it in more detail:
http://netsecurity.about.com/od/secureyourwifinetwork/a/WPA2-Crack.htm

Plus... having a goofy SSID is fun :) Mine is "Dialup".

more than 2 years ago
top

Copy protection advice for ~$10k software

moj0e The cost of DRM (5 comments)

Why don't you release a 'not for commercial use' copy w/o the spying. That will prevent it from being distributed on P2P sites. The added benefit is that people would learn to use and love your software. Eventually, they can be your marketing arm and help convince management to purchase the software for business use.

Also, as you might be aware, developing DRM is very costly. The cost of DRM is expected to reach $9bln this year: http://drm.info/node/93

more than 2 years ago
top

Major Outage At the Amazon Web Services

moj0e Re:Oh boy (247 comments)

How long does it take you to have the IP addresses rerouted?

With Amazon's Elastic IPs, it takes seconds to reroute an IP address to another machine. Very handy in situations like these.

more than 3 years ago
top

Amazon Bulk-Email Service Could Lure Spammers

moj0e Potentially not cost effective for spammer (71 comments)

Unfortunately I don't have real data to backup my fading memory... however, IIRC from my previous job experience, spammers pay a fraction of what Amazon is charging to send spam. This isn't to say that someone isn't going to try to abuse the system.

This, however, might be a great service for quasi legal spammers -- businesses that send "newsletters" to customers who "opted in" to receive mail from the business and all of the people they sell personal information to.

more than 3 years ago
top

House Calls For Hearing On Stock Market "Glitch"

moj0e Suggestion (180 comments)

Brazil's market stock has a "kill switch" that turns off trading in cases such as these. If the stocks take a nose dive because of a computer glitch or
because of a human typo, the kill switch automatically closes the market for that day.

That would be a great feature to add to our stock markets here in the US.

more than 4 years ago
top

SQL Injection Attack Claims 132,000+

moj0e Slashdot Effect - Mirror (186 comments)

It looks like the page serving out malware is suffering from the Slashdot effect.
You will have to manually install the trojan.

You can get it here:
http://microsoft.com/ :)

more than 4 years ago
top

Garlic Farmer Wards Off High-Speed Internet

moj0e Re:The Dangers of Wi-Fi (475 comments)

Hey, just wanted to let you know... awesome addition :)

more than 5 years ago
top

Garlic Farmer Wards Off High-Speed Internet

moj0e The Dangers of Wi-Fi (475 comments)

I totally agree with the farmer! From my research, it even has dangerous effects
on humans!

Here are some of the symptoms that it causes:

1. Carpal tunnel
2. Distaste for light
3. A tendency to shout out: "First Post"
4. Loss/Gain of gold pieces
5. Disturbing images of cats
6. Lots of accidents that subsequently end up online.
7. Bad writing.

Can anyone think of other symptoms?

more than 5 years ago
top

Microsoft Attacks Linux With Retail-Training Talking Points

moj0e Re:Linux? (681 comments)

There are not OS X Netbooks yet, though.

:) I beg to differ! :) Well, you are right, there aren't any Apple sanctioned netbooks. However,
can you build one based off of Dell's mini 9.

http://gizmodo.com/5156903/how-to-hackintosh-a-dell-mini-9-into-the-ultimate-os-x-netbook

Btw, I got the company that I work for to buy me a netbook w/ Ubuntu and it is very nice! :)
They did a good job polishing the OS :) It even included video chat software! :)

more than 5 years ago
top

Amazon Confirms EC2/S3 Not PCI Level 1 Compliant

moj0e Re:Why? (157 comments)

There are ways for the hotel to store credit card information without storing the credit card information.
There are a various credit card processors (companies) that will accept the
customer's credit card and will give you a reference transaction number.

When you need to charge your customer, you can charge them
by using the reference transaction number instead of the actual credit card number.
That reduces the risk of your hotel being compromised and credit card numbers stolen.

Hope that helps :)

more than 5 years ago
top

ImageShack Hacked, Security Groups Threatened

moj0e Re:Making the world a better place. (288 comments)

Hello :)

I think aristotle-dude did a great job of explaining of why the lack of full disclosure is a good thing.
Please see his post below (if you haven't already).

Thanks!

more than 5 years ago
top

ImageShack Hacked, Security Groups Threatened

moj0e Making the world a better place. (288 comments)

I think they are North Korean.... :) (JK)

Actually, I find it interesting that the group wants to make the world a better place by
discouraging full disclosure.... the funny thing is that they want to do this
by destroying things.

more than 5 years ago
top

Doctors Baffled, Intrigued By Girl Who Doesn't Age

moj0e Re:I don't have anything really smart to say (599 comments)

Believe it or not, I saw someone w/ the same or similar disease in Brazil. The boy (guy) was 16-18 yrs old and looked about the same age as the girl in the picture. He was laying in a crib when I saw him. That was over 10 yrs ago, I wonder if the he is still around.

-- This post needs an interesting sig. (might help the mod points)

more than 5 years ago
top

Nielsen Recommends Not Masking Passwords

moj0e Re:You could always let the user choose (849 comments)

I believe a good compromise would be to do what the iPod does. It shows the last typed character for a short period of time and then switches over to an asterisk. That way, one one can "easily" look over my shoulder and I can see which letter that I typed. It might be more fun just to do away w/ password in general and use some other security scheme, like a tongue print. :) -- This post is in need of a good sig. Suggestions welcome!

more than 5 years ago
top

US Military Blocks Data On Incoming Meteors

moj0e Dare I say it? (172 comments)

First Post?

more than 5 years ago
top

FBI Interrogator Says Cookies Convinced Al-Qaeda Suspect To Talk

moj0e Re:Beat 'em and feed 'em? (11 comments)

My thoughts exactly. Aka "good cop - bad cop"

I think in this case it was more like, "good cookie - bad cookie" :)

more than 5 years ago

Submissions

moj0e hasn't submitted any stories.

Journals

top

Running Oracle DB modules in Kali Linux

moj0e moj0e writes  |  about a year ago

Apparently, there is some manual work that needs to be done before one can run Oracle DB modules in Metasploit under Kali Linux. This is because of proprietary libraries from our dear Oracle.

Here are the instructions that worked for me:
http://blog.infosecsee.com/2013/08/how-to-get-oracle-support-in-metasploit.html

top

TP-Link wr703n minipwner

moj0e moj0e writes  |  about a year ago

So I followed the instructions here:
http://www.minipwner.com/
to create a minipwner box using a TP-Link mini router.

However, using an older openwrt image would break the ones with the 1.7 firmware.
Here is the fix:

Unbrick wr703n wifi router
http://forums.openpilot.org/blog/52/entry-92-unbrick-wr703n-wifi-router/

top

Wrote my first snort rule!

moj0e moj0e writes  |  more than 2 years ago

Wrote my first snort rule! It detects if someone is trying to capture credentials via the auxiliary/server/capture/smb module.
More information about this type of attack is here:
http://www.packetstan.com/2011/03/nbns-spoofing-on-your-way-to-world.html;

Rule:
alert tcp any 445 -> any any (msg:"SMB Metasploit credential capture attempt!"; reference: url,http://www.metasploit.com/modules/auxiliary/server/capture/smb; reference: url,http://www.packetstan.com/2011/03/nbns-spoofing-on-your-way-to-world.html; content:"|11 22 33 44 55 66 77 88|"; classtype:attempted-user; offset: 73; depth: 8; flow: to_client; sid: 123000001; rev:1;)

top

Hacking Windows Networks, the easy way.

moj0e moj0e writes  |  more than 2 years ago

Here is a beautiful tutorial on hacking Windows networks:
http://www.packetstan.com/2011/03/nbns-spoofing-on-your-way-to-world.html

Here is a fix for the pcaprub issue:
http://www.backtrack-linux.org/forums/backtrack-5-beginners-section/40688-pcaprub-module-problem.html

top

Ubuntu 11.10 upgrade/install NVidia

moj0e moj0e writes  |  more than 3 years ago

Nvidia drivers weren't loading. Error: could not allocate memory:

Solution:
Apparently this is a known bug, and i had to do the following to fix this:

edit /etc/default/grub
find the option GRUB_CMDLINE_LINUX and add nopat, so for me this looked like

GRUB_CMDLINE_LINUX="nopat"

run sudo update-grub

Source:
http://askubuntu.com/questions/37590/nvidia-drivers-not-working-after-upgrade-why-can-i-only-see-terminal

top

FDA and Security Patching

moj0e moj0e writes  |  more than 3 years ago

There is a common misconception that the FDA has to approve security patches on systems. This is not the case. The FDA attempts to clarify this issue with the following statement:

http://www.fda.gov/MedicalDevices/Safety/AlertsandNotices/ucm189111.htm

top

Secure file upload/download in Django

moj0e moj0e writes  |  more than 3 years ago

Original Link:
http://stackoverflow.com/questions/1340776/secure-static-media-access-in-a-django-site

Quote:
EDIT: How I ended up solving this after reading Van Gale's answer and this:

Switched to WSGI.
Installed mod_xsendfile
Moved all public media files into a subfolder in /media/public
Added access to the public folder using an Alias /media/public /var/www.../media/public
Added WSGIScriptAlias /media/protected/ /var/www.../apache/django.wsgi (same handler as for the rest of the site)
Added XSendFile On and XSendFileAllowAbove On
To the Django app I added an urlconf for /media/protected which does basically what's here, only modified for my authentication system. It handles urls such as /media/protected/GROUP_ID/file so that only members of the GROUP can download the files.

top

Remastering Ubuntu 10.10 with UCK

moj0e moj0e writes  |  about 4 years ago

As of Nov 5th, 2010, there is a bug with uck (Ubuntu Customization Kit) that prevents remastering Ubuntu when run on Ubuntu 10.10.

The problem arises because mkbootmsg was placed in another package, it is now in gfxboot-dev (instead of just gfxboot).
This would cause a 'command not found' error.

The workaround is installing gfxboot-dev like this:
sudo apt-get install gfxboot-dev

Enjoy your new custom Distro!

top

LDAP + PHP + SSL = headache

moj0e moj0e writes  |  more than 4 years ago

Apparently... LDAP hard codes the path of ldap.conf to
C:\OpenLDAP\sysconf\ldap.conf

In order for LDAP to not require a valid certificate, one must add the following contents
to that file:

TLS_REQCERT never

Source:
http://lists.horde.org/archives/sork/Week-of-Mon-20040503/001578.html

top

Last day at work!! :)

moj0e moj0e writes  |  more than 4 years ago

Finally, I am moving on to bigger and less shady things! :)

top

How to clear test orders from Magento!

moj0e moj0e writes  |  more than 4 years ago

After thousands of dollars of fake orders to get your magento store integrated and running... you will
probably need to clear out all those tests.... Here is how you do it:

http://www.eliasinteractive.com/blog/magento-ecommerce-how-to-reset-all-test-order-information-and-set-unique-prefix-for-orders-invoices-shipments-and-credit-memos

top

Tips on Speeding up Magento!

moj0e moj0e writes  |  more than 4 years ago

http://www.opensourcetutor.com/2009/04/07/how-to-speed-up-magento/

top

Useful Magento Payment tutorial!

moj0e moj0e writes  |  more than 4 years ago

After reading many semi-useful tutorials... Hearing horror stories about the only Magento book available...
Finally a useful tutorial for setting up a new magento Payment method/Gateway :)

http://colourgray.wordpress.com/2009/11/11/magento-create-a-custom-payment-method/

top

Getting started developing for Magento!

moj0e moj0e writes  |  more than 4 years ago

Here is a great link to get you started! It does a great job introducing the concepts needed to start coding.
http://activecodeline.com/writing-a-custom-module-in-magento-detailed-walktrough

top

30 Essential plugins for Magento!

moj0e moj0e writes  |  more than 4 years ago

http://visionwidget.com/inspiration/web/374-free-magento-extensions.html

Most impressive one in my opinion?
The plugin that integrates PAP4 to magento:

PAP4 can be found here: http://www.qualityunit.com/postaffiliatepro/pricing/

Commercially available plugins that might be good to have:
http://www.aitoc.com/en/magento.html

Magento is awesome... but so is Wordpress...
Magento+Wordpress is Awesome x2!
http://www.silverthemes.com/blog/2009/04/wordpress-and-magento/

top

MD5 Hash DB!

moj0e moj0e writes  |  more than 4 years ago

Hey,

Looking to see what that MD5 password is? Try finding it here:
http://www.md5decrypter.co.uk/

Enjoy!

top

Tips for setting up Amazon's Relational DB! :)

moj0e moj0e writes  |  about 5 years ago

Here are some tips on setting up a relational DB on amazon :)
Less MySQL management required!

http://developer.amazonwebservices.com/connect/entry.jspa?externalID=2933

top

Multiple Domain SSL on Amazon EC2! One IP, One Port, One SSL

moj0e moj0e writes  |  more than 5 years ago

Here is a possible solution to having multiple domains over SSL on one port and one IP (A lá Amazon EC2).

http://www.invokemedia.com/setting-up-multiple-ssl-domains-on-amazon-ec2-one-ipport/

top

Bluez cluez: Inquiry failed: Connection timed out

moj0e moj0e writes  |  more than 5 years ago

hciconfig hci0 reset :)
To quote a site:

In the meantime I inserted an option in my /etc/modprobe.d/local file with a line:

options hci reset=1

Source:
http://idebian.wordpress.com/2008/07/06/manage-hid-bluetooth-devices-in-linux/

top

Issues with PHP displaying errors in log

moj0e moj0e writes  |  more than 5 years ago

The reason that having php display its errors in: /var/log/apache2/php_errors is
because the error log is written as the apache user.

In Ubuntu, /var/log/apache2 is restricted to root and adm users. :/

Put it elsewhere! :)

Slashdot Login

Need an Account?

Forgot your password?