Tuesday, November 06, 2001

Bob Frankston: Beyond Telecom. As long as we allow the incumbents to use their control over both connectivity and services/content to thwart competition in services/content, we will suffer economically. And we will also have a system that is fails to enhance our security because traditional systems are brittle rather than resilient. I agree decouple connectivity from content. I also don't have a solution but that's what clever lawyers are for, eh? [Tomalak's Realm] 6:02:16 PM

Doug Kaye's Catching Up message on K-Logs has this succinct definition of a K-Log (adapted from John Robb's definition), "The K-Log is a personal content router on the desktop." and Philip Wolff in his reply says to remove the desktop since K-Logs are independent of location. Agreed! 5:41:41 PM

Kevin Werbach: What is postmodern knowledge management? which links to the excellent JOHO Hyperlinked KM Journal which has a link to Stories and Fractal Interests which has the following awesome quote: "Information wants to be free but only because stories want to be told." 5:35:54 PM

Another classic FTRAIN: Cleaning my room 2:14:05 PM

SNORT- Open source intrusion detection system 10:38:34 AM

How to build dynamic web pages with drill down capability? [Zope.org]i.e. reports with hyperlinks ala Nortel's OSM for all you ex-Nortel people :-) ! 10:21:48 AM

Yes there is a method to the madness of this site. I will be launching a new website next year (it's top secret, email me and I will fill you in after you sign an NDA :-) It will be a database driven site of course! And it will have to have a database not just for the content but also for info related to the content. And it won't be a commercial site! So I am prototyping and researching technologies for the site such as PHP, Zope, MySQL, etc. Hence the many entries in this site about these topics. But fear not, I will be blogging other stuff i.e. Lindy Hop and Snowboarding as well! 9:44:43 AM

Remote OS detection via TCP/IP Stack FingerPrinting - i.e. don't reveal yourself and what OS, web server you are running, etc. to avoid attacks 9:23:00 AM

Fingerprinting Port 80 Attacks: (via SlashDot) - Useful Info about common attacks on webservers From the SlashDot Thread here's a way to separately log silly cmd.exe and root.exe attacks. Partial solution for log trash (Score:5, Informative) by wytcld on Monday November 05, @06:03PM (#2525102) (User #179112 Info | http://slashdot.org/) Here's how to get part way there (in this case for Nimda). In httpd.conf: SetEnvIf Request_URI "cmd.exe" ATTACK SetEnvIf Request_URI "root.exe" ATTACK CustomLog /www/logs/access_log common env=!ATTACK CustomLog /www/logs/attack_log common env=ATTACK Order Allow,Deny Allow from all Deny from env=ATTACK ErrorDocument 403 " And then optionally for individual bad directories: Deny from all ErrorDocument 403 " At this point requests for cgi.exe are not being logged in access_log but only attack_log (leave out the attack_log line if you don't want even that much). They'll still show in error_log (but with a shorter error statement). The ErrorDocument line instructs Apache to send back nothing and just drop the connection - not as nasty as a tar pit, but at least you don't waste outgoing bandwidth, generally tighter than incoming for a Webserver. Also, Apache doesn't waste any time checking the file system on these requests, since the rules preclude that. 9:21:04 AM

Bear with me. I am having problems with permalinks which don't seem to work! I am working on it! Sorry for the inconvenience and broken permalinks. 7:25:55 AM

Phil Agre's Design for a Web Filtering Service sounds like Radio UserLand on Steroids! i.e. it is definitely doable and Radio Userland would be a good platform to do it on! 12:36:12 AM

© Copyright 2002 Roland Tanglao. rtanglao@telus.net

Search WWW Search rolandtanglao.com