Suramya's Blog : Welcome to my crazy life…

September 17, 2005

Ver 0.3 of the CollageGen script released

Filed under: Software Releases,Tech Related,Website Updates — Suramya @ 3:14 AM

I have just Released CollageGen, Version 0.3. Incase you are wondering, CollegeGen is an application that uses the Yahoo search API to create a collage for any search term entered by the user.

Changes made in this release:

  • The backend script was rewritten from scratch to make the collage generation faster and more efficient.
  • Redesigned the CollageGen access website
  • Threading support was removed from the backend

Check it out and let me know what you think.

Thanks,
Suramya

September 14, 2005

Nice way of showing news using a worldmap

Filed under: News/Articles — Suramya @ 6:15 PM

MSNBC has a nice page that shows the current news items on a world map.
This is a pretty nice way of showing news, I wonder how hard would it be to use Google Maps and a news agency’s rss feed to do this… Maybe a project for when I get some free time…

URL: MSNBC News

– Suramya

September 13, 2005

Snooping on Text by Listening to the Keyboard

Filed under: Computer Related,My Thoughts,Tech Related — Suramya @ 8:25 PM

According to Bruce Schneier’s blog a group of researcher’s from Berkeley have developed a process that lets them identify the keys being typed by analyzing an audio recording of someone typing at the computer for about 15 mins.

There was some research done on this earlier but their method required specific training tapes where the system knew what keys were pressed and when to configure the listener before it was able to accurately deciper the input. In this case the training tape is an actual recording of a target.

This brings an interesting possibility for hackers/crackers to steal passwords/information by setting up hidden mic’s etc.

Saw a technique somewhat like this being used in a TV show called ‘MI-6″ (Or was it MI-5? It was 3 am… ) In it one of the spies gives a special cufflink to the target and gets him to type her resume out. As the spies knew what was on the resume they were able to get a readout of each key (They didn’t explain what readout’s they were taking in too much detail) and once they got that they were able to see what ever the target typed on the computer in realtime as long as he was wearing his cufflink. Neat eh?

But before you start panicking, remember the bad guy’s still have to either get physical access to your system and/or the area around your system in order to bug it and you know the law: “Physical access is root access”.

So to lower the risk of this attack all you have to do is follow the same basic rules you have been following about not granting unknown people access to your workplace and keep an eye out for people carying video camera’s and mic’s.

To make the risk go away completely play loud music to drown out the typing sound when working on sensitive data.

Original Source:
Schneier on Security: Snooping on Text by Listening to the Keyboard

Link to the Paper: Snooping on Text by Listening to the Keyboard (PDF File)

– Suramya

September 12, 2005

Setting up a SOCKS Proxy using SSH

Filed under: Computer Security,Security Tutorials,Tech Related — Suramya @ 8:13 PM

This article explains how we can setup a SOCKs proxy via SSH which lets you surf the internet securely from unsecure locations.

Excerpt:

Open PuTTY (see the list of requirements above for a URL). You should be greeted with a configuration screen. First, you will enter the hostname or IP address of the SSH server. Type in a name for your connection settings in the box below “Saved Sessions”, and click the Save button.

Now you need to look at the tree of options to the left; expand the SSH tree, and select “Tunnels”. Enter 4567 (or any port number above 1024) in the Source Port area, and click the Dynamic radio button to select it. Leave the Destination field blank, and click “Add”.

Now go back to the Session tree (very top of the left section), and save again.

You will be prompted to enter a username, which is the username of your shell account. Type that in, hit enter, and then type in your password when it prompts you.

Original Article:
Security Engine: Secure surfing SSH

Programming PHP with Security in Mind

Filed under: Computer Security,Tech Related — Suramya @ 7:37 PM

Interesting article about how to write PHP code securely. A bit old but it still has a lot of good info and tips.

Article Link:
Programming PHP with Security in Mind

September 7, 2005

Moderation capability added to the Feedback section

Filed under: Software Releases,Website Updates — Suramya @ 6:53 AM

Just finised writing Version 3 of my Guestbook script. This version has a moderation capability and all comments posted in the feedback section will now need to be approved before they show up.

This was done to stop the idiots who post links to gambling sites/porn sites etc from posting messages. Earlier I had to manually edit the DB and delete the entries, now I have a new interface that allows me to edit/delete/approve comments all from one screen.

Next on the things to do is to move the rest of the admin interfaces to this new system. This will consolidate the admin function to one GUI making it easier for me to maintain and upgrade. Plus this GUI looks a lot nicer too. 🙂

You shouldn’t notice any differences but Let me know if you have any questions.

Thanks,
Suramya

September 5, 2005

My Weekend visiting friends

Filed under: My Life — Suramya @ 9:49 PM

Well I am still alive here. Met up with Karishma and Priya over the weekend. We were supposed to meet for lunch and Priya picked up Karishma and then came to pick me up from the hotel but managed to get lost about a mile from the hotel. Since they were so close to the hotel I went to the lobby to see if the attendant over there knew how to get to the hotel from where they were.

That lady had no clue of what she was doing, she managed to confuse all of us even more so we decided that it would be easier if I walked up to the road they were on and hope that they will see me while driving by. Thankfully though, Karishma noticed that one of the streets they were crossing was a street I had mentioned. This gave me an idea of where they were and I walked to the car .

After finally meeting up we all were very hungry so we went to the mall nearby to get lunch/dinner (It was ~3:30 by then). We got to the place at 4 pm, had some really good Pizza and Pasta and we talked a lot.

After lunch we decided to go for a movie. I wanted to watch either the transporter 2 or The Brother’s Grimm. Priya was undecided, Karishma wanted to watch either The 40 year old virgin or An unfinished life. To make things interesting, Nitin wanted to watch the Constant Gardener and P wanted to see ‘The Exorcism of Emily Rose’ or An unfinished life. To make a long story short we finally ended up watching ‘An Unfinished life’ which was not a movie I would usually watch but it was ok. A lot better than the last movie I saw with Karishma (Devil’s Rejects)

After the movie we talked a little more and then they dropped me home without getting into any problems.

Overall a fun day but I could have done without the silly movie. The problem with going to a movie with girls is that if they outnumber you, you tend to get outvoted. In this case we were outvoted 3-2 (Girls/Boys) so we saw ‘An Unfinished life’.

Well this is all for now. Will post more later.

– Suramya

Some Perl Tricks

Filed under: Tutorials — Suramya @ 8:52 AM

Installing perl modules can be a pain if you don’t have root access on the server you are installing them. However the creators of Perl did think about this and added a PREFIX switch that we can use to give the module an alternate installation directory. So to install the module in /home/suramya/modules the command we would run is:

perl Makefile.PL PREFIX=/home/suramya/modules

Then we follow the regular installation steps of make, make install.

Once the module is installed we need to tell the Perl scripts where to find the new module, there are a number of ways that we can do this but the one I like is modifying the PERL5LIB enviorment variable. This method has the advantage that we don’t need to modify any of the scripts etc.

The easiest way to modify the variable is to add a line that looks like this to your .profile or .bashrc file:

PERL5LIB=/home/suramya/module:/usr/local/lib/perl/5.6.1:/usr/local/share/perl/5.6.1:
export PERL5LIB

Hope this helps someone.

– Suramya

Restricting SSH to allow users to only run allowed commands

Filed under: Computer Security,Security Tutorials,Tech Related — Suramya @ 7:54 AM

To restrict access to a server by allowing an authorized user to only run a specific command add an authorized_keys file entry that looks like (this is all in one line one line)

from=”202.41.95.13″,command=”rsync -aCz –server –sender $SRCDIR .”,
no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty
ssh-dss
AAAAB3NzaC1kc3M

Here you must put the appropriate source directory in $SRCDIR.

The authorized key file can be put in a dummy users directory. This dummy user should have appropriate read/write permissions for the directory in question.

As an alternative you can use a configuration file “–config=$FILE” in place of $SRCDIR.

Once this is done, the owner of the SSH private key associated with the public-key (which is the bit that starts ssh-dss AAA….) can connect to the ssh server and start the above command and *only* the above command.

– Suramya

PS: Thanks to Kapil from the Linux Gazette Answer Gang for the above tip.

September 1, 2005

Learn two ways to disable Internet Explorer

Filed under: Computer Security,Security Tutorials,Tech Related — Suramya @ 11:04 PM

Techrepublic has a really nice article that tells you how to disable IE. Keep in mind that this just disables IE not remove it.

Article Extract:

The easiest way to remove users’ ability to browse with IE is to add a bogus proxy server to IE’s Internet Settings.

Follow these steps:

1. In IE, go to Tools | Internet Options.
2. On the Connections tab, click the LAN Settings button.
3. In the resulting dialog box, select the following check box in the Proxy Server section: Use a Proxy Server For Your LAN (These Settings Will Not Apply To Dial-up Or VPN Connections).
4. Enter 0.0.0.0 in the Address text box.
5. Enter 80 in the Port text box, and click OK.

Please note that adding a bogus proxy server to your Internet settings won’t affect Automatic Windows Update from connecting and updating your operating system.

You can also restrict Internet settings via Group Policy. Follow these steps:

1. On your domain controller, right-click the organizational unit that contains your domain users, and select Properties.
2. On the Group Policy tab, click Edit.
3. Expand User Configuration to set restrictions on a per-user basis.
4. Expand Windows Settings, and expand Internet Explorer Maintenance.
5. Select Connection, and double-click Proxy Settings.
6. Select the Enable Proxy Settings check box, add 0.0.0.0 to the HTTP entry, and click OK.
7. Expand Administrative Templates, and expand Windows Components.
8. Select Internet Explorer, and double-click Disable Changing Proxy Settings.
9. Select Enabled, and click OK.

Article Source :
Learn two ways to disable Internet Explorer

– Suramya

« Newer PostsOlder Posts »

Powered by WordPress