Lovely pic from evening cycle ride

A beautiful evening again, so I took this picture of the rapeseed while out this evening (unfortunately my phone underexposed the pic due to the sun, but the colours were so vibrant, this pic doesn’t do it justice)…

image

Advertisements
Posted in Cycling | Leave a comment

How to protect yourself against the Shellshock BASH vulnerability

Like many people I was quite shocked to learn about the recent vulnerability in BASH that can leave servers wide open to attack. My SugarCRM system has been running on Ubuntu for the past two years, and has ports wide open to the net. Fortunately I had already disabled CGI access in Apache as bots were trying to exploit vulns, and Sugar wasn’t using CGI anyway, but this bug still scared the crap out of me.

So I read some blogs and checked out my system, sure enough the command below revealed it was vulnerable:

$ env x='() { :;}; echo “vulnerable”‘ bash -c ‘echo “test”‘
vulnerable
test

The fact that the command managed to print the word “vulnerable” is the red flag.

Fortunately, updating BASH in my case was quite painless:

$ sudo apt-get update
[output snipped]
Fetched 3,399 kB in 4s (680 kB/s)
Reading package lists… Done

$ sudo apt-get install bash
Reading package lists… Done
Building dependency tree
Reading state information… Done
Suggested packages:
  bash-doc
The following packages will be upgraded:
  bash
1 upgraded, 0 newly installed, 0 to remove and 344 not upgraded.
Need to get 616 kB of archives.
After this operation, 12.3 kB of additional disk space will be used.
Get:1 http://gb.archive.ubuntu.com/ubuntu/ precise-updates/main bash i386 4.2-2ubuntu2.3 [616 kB]
Fetched 616 kB in 0s (1,222 kB/s)
(Reading database … 254702 files and directories currently installed.)
Preparing to replace bash 4.2-2ubuntu2.1 (using …/bash_4.2-2ubuntu2.3_i386.deb) …
Unpacking replacement bash …
Processing triggers for menu …
Processing triggers for man-db …
Setting up bash (4.2-2ubuntu2.3) …
update-alternatives: using /usr/share/man/man7/bash-builtins.7.gz to provide /usr/share/man/man7/builtins.7.gz (builtins.7.gz) in auto mode.
Processing triggers for menu …

$ env x='() { :;}; echo “vulnerable”‘ bash -c ‘echo “test”‘

bash: warning: x: ignoring function definition attempt
bash: error importing function definition for `x’
test

The word “vulnerable” is no longer printed so it seems that I’m okay now.

Posted in Computers and Internet | Tagged | Leave a comment

Have you noticed how slow or laggy Google Chrome is now?

A recent update to Google Chrome (one of these versions seems to be the culprit… 35/36/37) seems to have caused some unintended side-effects. I noticed that it is now really slow when typing text into a web form, and selecting text is also quite tricky as the text selection “block” doesn’t seem to fill in your selection right up to the cursor, but only completes when you click CTRL/C. Basically it is a right royal pain to use and had me briefly switching back to Firefox (I forgot how bad it was, couldn’t even do print to PDF without having to install some dodgy plug-in).

Anyway, I did actually manage to downgrade Chrome to v34 and all was fine for a while until I had to reboot my laptop, whence Chrome automatically updated itself to the latest version and the problem came back.

Now I think I have managed to find the solution, disable “hardware acceleration”. There are those nerdy settings under chrome://flags/, but you can do it easier than that.

Go to “Settings” on the Chrome menu…

image

Scroll to the bottom and select “Show advanced settings”:

image

Scroll to the bottom and deselect “Use hardware acceleration…”

image

I also disabled “Continue running background apps…”

Click on “restart” and it seemed to fix my problem. Let me know in the comments if it worked for you.

Posted in Computers and Internet | Tagged | Leave a comment

Generating VAT invoices for Skype

Skype, in their infinite wisdom, have decided to remove the ability to download VAT invoices – this makes it tricky for those of us who want to claim back the VAT or use our personal Skype accounts and submit monthly expense receipts to our employers to cover the cost of using this service.

Fortunately a bright spark on the Skype community forums has found a way to generate invoices by modifying one of the URL’s as follows:

  1. Log into the Skype web site and find the purchase history record you want an invoice for.
  2. At the end of the URL, add the following (excluding quotes) ‘/invoice?regenerate=true’

 

 

Posted in Computers and Internet | Tagged | 8 Comments

More Ant words

Air-be-blane – Aeroplane

Eb-be-gopter – Helicopter

Brink – Drink

Breen – Green

It not working Daddy

It broken

Boo-gumber – Cucumber

Mar-toe – Tomato

Yesssssss

Not binished – finished

Posted in Personal News | Leave a comment

I made it onto the front page of CircleID today!

With all the fuss over the recent DDoS attack against Spamhaus, I wrote a blog article for our web site. I was interested because it used a DNS Reflective Amplification attack, which is something I have been warning about for years (and wrote about 4 years ago on “The Register”).

Digging a bit deeper, I discovered that IP addresses on my local ISP subnet were acting as open DNS resolvers, leading me to conclude that this is a pretty common state of affairs. As open DNS resolvers are a key component of this type of attack, I thought I would submit an article to CircleID – a community of like-minded nerds – highlighting how easily I found an open resolver on an IP address “near” me and challenging others to do the same.

It’s my first posting for CircleID but it has been up there all day on the front page, so I wanted to do a screen grab for posterity so I can come back here in the future to show my kids that I was famous, in a nerdy kind of way!

Click on the image below to go to the article in question…

image

Posted in Computers and Internet | Tagged , , , , , , | Leave a comment

My new (old) Speccy – Does it work?

The answer is yes, and no!

I had no problem tuning my LCD TV into the Spectrum’s UHF signal (my TV has an old analogue tuner as well as DVB-T)…

image

Unfortunately some of the keys do not work, specifically q, w, e and b, n, m and symbol shift. Sad smile

image

A quick look under the hood again, and indeed I can see that at least one of the strips in the right ribbon cable has a break in it. New keyboard membranes seem to be about £10, so I may try and fix it or even see if I can pick up another Speccy for less.

All good fun!

Posted in Computers and Internet | Tagged | Leave a comment