Author Archive

Mandatory Access Control And Malware

After listening to the virtus/malware discussion on LUG Radio’s new (but apparently one-off) show (check it out at lugradio.org, these guys are hilarious), got me thinking about how much Linux users are exposed to malware.

Lets forget, for the sake of the discussion, the technical attacks1 as these are relatively easy to handle and Linux operating systems are already pretty well protected against such. The main vector of attack for malware these days is Social Engineering anyway – this is how Mac OS-X users get attacked by malware: you browse a web site, and an image that looks like a a blinking dialog box notifies you that your computer has been infected by a virus and prompts you to download this “fix”.

Most of us, technically inclined users, sneer at this type of “threat”, but most people aren’t technically inclined and there are enough people out there that will be fooled by this practice time and time again. Click the image and a binary gets downloaded to your computer and if it is in the correct format it will get executed.

(more…)

  1. Such as buffer overflows and such []

In case you’re looking for me on Google+

Using the Google+ Nick service you can now find me at http://gplus.to/guss77.

Just wanted to let everyone know 🙂

Enhanced by Zemanta

For all the people who have waited patiently, CentOS 6 is here

After a long long time in the making, rumors of abandonment and general discomfort in the community, the CentOS people have finally pulled through and bring you the brand new (though by now several months old) CentOS 6.0.

A lot of system administrators have been waiting for this (me included) so I thought I’d give a heads up 🙂

How much space to put in your root partition?

When installing a Linux computer, this is a question I’ve been asked/asked myself many times, and it shall keep on being asked because things are not static and newer operating systems need more and more room as the basic software collection that you expect to get out of the box gets larger.

And the answer? Well – it depends 🙂 Specifically here I’m going to tackle the issue of desktop installs (i.e. the workstation for a single user), and specifically for Fedora – though it shouldn’t be much different for other operating systems in the same class – such as Ubuntu or SuSE.

(more…)

מתכון: עוף עם שום בתנור

המתכון הנ”ל מאוד פשוט אבל מאוד טעים, בעיקר עם אתם מהאנשים שאוהבים הרבה שום – אני בהחלט בקבוצה הזאת 🙂

הרעיון הוא ששיני השום מתבשלות בתנור ונמסות לתוך העוף וזה נותן לכל העוף טעם של שום – המממממ…

(more…)

Same old Microsoft, at Nortel’s patent sale dispute

As reported on Reuters and Techcrunch, Microsoft is claiming that the sale of bankrupt Nortel’s 6,000 patents to Google (or any other successful bidder) is unfair under the current sale terms that allow the buyer to not carry current licenses to the patents.

Microsoft is understandably concerned, as they currently hold a “perpetual, royalty-free” license to all patents (which means that if the buyer doesn’t get to re-license with existing license holders, then they won’t get any more money from Microsoft on these patents), but what I’m ranting about is not their legitimate concern, but their attempt to color this as “unfair” – quips Techcrunch:

Microsoft says that’s unfair. And while they don’t specifically mention Google, it seems pretty clear who they’re thinking about when they write that a termination of existing licensing agreements “would result in considerable disruption in the development and enhancement of various existing technologies and give the prospective purchaser an unfair competitive advantage”.

This may be unfair, but Microsoft has done this exact same thing in the past, including the very near past where immediately after buying Skype, and just a few days after Microsoft promised that Skype will continue to be offered on non-Microsoft platforms, the “Skype for Asterisk” product was terminated disallowing Digium to sell any more Skype integration module for their successful (and open source) VoIP solution1.

Obviously this is a move perpetrated to allow Microsoft’s competing VoIP product (Lync) an unfair competitive advantage by offering features that Digium can no longer offer – not because of technical issues but because Microsoft will not allow it.

Taking that into account, Microsoft claiming the sale of this patents to Google is unfair is just the pot calling the  kettle black.

Enhanced by Zemanta
  1. I know that technically they did not stop supporting the module – just not allowing any new sales, but they also put a deadline to stop supporting the Skype-Asterisk integration module: it will not work past July 2013. Cutting this any sooner would have netted Microsoft/Skype a serious law suite so obviously they did the worst they could get away with []

Using Evolution under KDE – GNOME Keyring issues

Lets face it – Kontact is a nice application but its not really a contender if you want integration with your corporate address book and calendar in your PIM application1 and Evolution is the only solution for the feature set one would expect from a corporate friendly PIM solution.

Evolution works great when running under GNOME, but if you hate GNOME 3 as much as I do2, then you are likely to try to run Evolution under a recent KDE 4. And then problems start mounting – there’s the file dialogs which look completely different and don’t inter-operate with KDE’s virtual file system layer (KIO), but the most annoying problem is saving the passwords for your email, address book and calendar services.

Evolution relies on GNOME’s keyring service to store passwords for remote services, and that service is not running when you start KDE. Without the keyring, Evolution will keep asking you for passwords to all your email services when you start up, and for all your address book services when you try to compose an email. Which wouldn’t have been that bad if not for the fact that before popping up the password dialog, Evolution spends minutes (!!) trying to contact the GNOME keyring service. Only after being frozen for a couple of minutes you get asked for the first password, and if you have more then one service then please wait two more minutes while Evolution tries fruitlessly to contact GNOME keyring again!

The solution is simple – have GNOME keyring launch automatically when you log in to KDE, just like it does for GNOME. There are several ways to do this – for example using KDE’s “startup applications” system or writing custom profile scripts (I’ve tried both), but the more elegant solution I found in fedorahosted.org where someone committed a simple script that generates GNOME keyring startup and shutdown scripts for KDE. I’m guessing this is used in the KDE live CD spins for Fedora.

Anyway, this script can easily adapted to generate GNOME keyring integration scripts for your local KDE installation. Just start Konsole, and paste this into the command line:


cat > $HOME/.kde/env/start-custom.sh <<EOF
#!/bin/sh
eval \`gnome-keyring-daemon\`
export GNOME_KEYRING_PID
export GNOME_KEYRING_SOCKET
EOF
chmod 755 $HOME/.kde/env/start-custom.sh
cat > $HOME/.kde/shutdown/stop-custom.sh <<EOF
#/bin/sh
if [-n "\$GNOME_KEYRING_PID"]; then
kill \$GNOME_KEYRING_PID
fi
EOF
chmod 755 $HOME/.kde/shutdown/stop-custom.sh

Enhanced by Zemanta
  1. also – contrary to popular belief in hacker circles, rich text editing is useful – and Kontact really sucks at that []
  2. if you are a GNOME user and weren’t exposed to GNOME 3 yet, then don’t worry – soon coming to a distro near your, and you’re likely not going to like it []

עוד משהו שמעצבן אותי

ובגלל שזה הולך להציק לי כל היום, אז אני אפיל את זה עליכם:

משקאות קלים

מה קל במשקאות קלים? ממה זה יותר קל, מממשקאות כבדים?1

לדעתי זה מגיע מאנגלית – המונח hard liquor משמש לתאר משקאות אלכוהוליים, ומכאן: “משקאות קשים”.

אבל למה ההפך מ”משקאות קשים” הוא “משקאות קלים”? זה צריך להיות “משקאות רכים”, כמו באנגלית – “soft drink“. 2

  1. בסופו של דבר הכל מורכב ממים ששוקלים קילו לליטר והשוני במשקל בין משקאות שונים צריך להיות מינורי []
  2. באופן עוד יותר מוזר, המקבילה בעברית לערך הוויקיפדי “Soft Drink” הוא דווקא “משקאות תוססים” שהם, אליבא ד-וויקיפדיה, סוג של “משקאות קלים” []

MySQL 5.5 on Ubuntu 10.10

As we all know, MySQL 5.5 is the best thing since sliced bread (or, not exactly, but that’s what everyone will have you think), but unfortunately Ubuntu‘s latest and greatest server operating system – Ubuntu 10.10 Server comes with MySQL 5.1.

Even the next version of Ubuntu – 11.04 Natty Narwhal – doesn’t seem to deliver MySQL 5.5, so upgrading is not really an option as of yet. There is a bug report to deliver MySQL 5.5 for Natty, which is even marked as “in progress” but there’s no guarantee that it will happen.

So how to go about (ab)using the latest software from Oracle? One way is to build it yourself on your server, or convert the Oracle provided RPM packages using the alien tool – but its not really Ubuntu native and a mess (in both cases). Here is another approach:

(more…)

How to set up a Warcraft 2 LAN party

Another article in the “I need to write this for myself and what better place then on my blog” series:

If you are familiar with the old (but great) Warcraft 2 game, then you know its a great multiplayer game but unfortunately you need a “Battle.net server” to play and even if the Blizzard servers were up (and for this old game, they’re not though there are a few 3rd party free servers) – you probably don’t want to have all the party goers connect up to an external server.

So how to run a Warcraft 2 LAN party?

(more…)