Making Digg working with lifetype

Posted by coldtobi | 21 Mar, 2008, 11:28

The "stock" lifteype 1.2.6 has currently a bug: You cannot digg.

Now, another user of lifetype found out: The Bad Behaviour plugin simply blocked requests by diff. 

Well, technically this is not a big, but more some runaway spam protection, namley the bad behaviour plugin. As this plugin cannot be disabled, (and you don't want it to be disabled anyway), I was looking for a solution to this. 

Short story: the one found the issue solved it by white-listing digg. The only thing you have to do is to change the array in plugins/badbehaviour/bad-behaviour/whitelist.inc.ph:

// Includes four examples of whitelisting by IP address and netblock.
$bb2_whitelist_ip_ranges = array(
     "64.191.203.34",
     "10.0.0.0/8",
     "172.16.0.0/12",
     "192.168.0.0/16",
//        "127.0.0.1",
);

 (More)

Blog and Website | Comments (0) | Trackbacks (0)

Preventing PHP RFI with Apache's ReWriteRules

Posted by coldtobi | 6 Mar, 2008, 17:21 In the last time, there a lots of -- well -- tries to hijack the server via a attack method called "Remote File Inclusion". RFI is a exploit that works if a script writer forgets about sanitize incoming http request strings. For more details, look up RFI in Wikipedia, as they have a nice article about that.

But there is an easy way to get block these silly attemps, as they have a common pattern to look for. At least if you have access to your .htaccess, the module mod_rewrite and a Apache around.
 (More)

Blog and Website | Comments (4) | Trackbacks (0)

Installing Debian on the Thecus N2100 -- PART 4 -- Installing Debian (2)

Posted by coldtobi | 5 Mar, 2008, 23:56

The third part stopped with creation of the raid array. As this is a very time consuming process, which takes some resources to complete, this is a good point where to make a break and just let it finish. However, this is not really required, as rebuilding the RAID is also perfectly done by the the OS while you can still use it. But if you stop the procedure – by a reboot, as a example – the kernel will restart the process from the beginning. So take this as a hint, that you maybe want to check the progress before you finally reboot / power down.

Just  repeating my self, please note, that this VOIDS YOUR WARRANTY. So the usual disclaimer apply: You brick, you repair it. I do not recommend installing linux on the box, if you are not sure you can handle it. Linux requires more hand-on than the GUI -- you won't have a GUI anyway -- but on the other side, it reveals the real power.

Table of Contens

  1. Part 1: Get Prepared
  2. Part 2: Installing the Installer
  3. Part 3: Installing Debian I
  4. Part 4: Installing Debian II (this article)
  5. Part 5: Fine tuning after the installation
 (More)

Blog and Website | Comments (6) | Trackbacks (0)

Updated to lifetype 1.2.6

Posted by coldtobi | 16 Feb, 2008, 09:23

I just updated to lifetype 1.2.6. And as far as I can see, some nasty bugs I was experiencing with the ModReWrite are gone too..

 

 

Blog and Website | Comments (1) | Trackbacks (0)

My Thecus N2100 arrived

Posted by coldtobi | 26 Jan, 2008, 20:22

My new toy finally arrived: My Thecus N2100, the winner of my "which-NAS-fits-me-best"-competion.

Here's a brief summary of its key features, as already told in the above article:

  • not sealed. (Have-to-open for installation.)
  • two options for "own linux on the box": Reflash with debian kernel, or run debian in an chroot.
  • comes with128 MB DDR-RAM; expandable up to 512MB with standard DDR memory module.
  • 2 Ethernet interfaces, both Gbit
  • 3 USB2.0, additionally 1 internal. (that hidden by the case. Needs mod too utilize.)
  • Debian supported, can be installed with sotck debian installer.
  • Internal mini-PCI slot. Can be used for WLAN, if the two GBits are not enough.
  • Intel XScale 80219 CPU @ 600 MHz. FAAAASST!!!

Together with two Samsung Spinpoint F1, HDJ753 -- with a combined storage of 1.5 Terrabytes -- and and upgraded with 512MB DDR Bar, this is a very good hacking opportunity. As my plans include hacking for it, I created a dedicated category for that topic.

Have fun!

(First pictures I made are currently on my camera and will be added soon....) 

 

Blog and Website, Thecus N2100 | Comments (0) | Trackbacks (0)

Do not buy from spammers.

Posted by coldtobi | 24 Jan, 2008, 10:10

 

A mail -- slipped through spammassassin -- advertised for a site, "where you can write your friends a cool greeting" (well, the site is German, accept appologiies for the poor translation.)  The service used seveal registered domains -- probably tocountermeasure anti-spam -- but the all eventually redirect to the one: No, I won't link to them. Do a google search for "Für einen coolen Gruss gibt es einen Grund!".

On the other side, I used that to start an experiment: I "registered" with them using a "non guessable, random" email address. If there is more than the message "to myself", then you this is a prove that they a not cosher.

 (More)

Blog and Website | Comments (0) | Trackbacks (0)

Ooops -- RSS was not working well

Posted by coldtobi | 15 Jan, 2008, 20:15

Due a configuration error, all the RSSs where inaccessible. However, I wonder that it was undetected till now...

As I upgraded to the latest lifetype last summer, just symlinked the old directory to the new one to keep the old ones working. However, now I figured out, that this lead to a "Internal Server Error", because there was one slash to much in the path.  Well, now its working again...

Internal Server Error

File "/srv/www//webXXX/html/lifetype-XXX/rss.php" is not in document root of Vhost "/srv/www/webXXX/html"

suPHP 0.6.2

Maybe just a bug in phpSU, as ASFAIK "//" should be fine, at least in a shell, it works.

 

Blog and Website | Comments (0) | Trackbacks (0)

«Previous   1 2 3 4 5 6 7 8 9 10 11 12 13  Next»