Koos picture small

Koos van den Hout

Welcome. This is my homepage where I write about my opinion, projects, things I note, things I try and other random stuff. Newsitems have tags for a bit of structure.

Latest news/thoughts/geeking/rants/notablog

2015-03-05 Am I part of an interesting attack? 2 hours ago
Noticable traffic:
2010362139:2010362139(0) win 8192 
13:06:15.787470 IP (tos 0x0, ttl 110, id 27178, offset 0, flags [DF], proto TCP (6), length 52) 148.251.47.107.80 > 82.95.196.202.53: S, cksum 0x48c7 (correct), 2310054019:2310054019(0) win 8192 
13:06:16.188187 IP (tos 0x0, ttl 92, id 14152, offset 0, flags [DF], proto TCP (6), length 52) 148.251.47.107.80 > 82.95.196.202.53: S, cksum 0x2c3a (correct), 1627317698:1627317698(0) win 8192 
13:06:16.588698 IP (tos 0x0, ttl 96, id 64188, offset 0, flags [DF], proto TCP (6), length 52) 148.251.47.107.80 > 82.95.196.202.53: S, cksum 0x6e9f (correct), 249296256:249296256(0) win 8192 
13:06:16.989469 IP (tos 0x0, ttl 97, id 54770, offset 0, flags [DF], proto TCP (6), length 52) 148.251.47.107.80 > 82.95.196.202.53: S, cksum 0xa3fc (correct), 3532061815:3532061815(0) win 8192 
13:06:17.390192 IP (tos 0x0, ttl 92, id 5400, offset 0, flags [DF], proto TCP (6), length 52) 148.251.47.107.80 > 82.95.196.202.53: S, cksum 0xaae9 (correct), 1786797457:1786797457(0) win 8192 
13:06:17.792734 IP (tos 0x0, ttl 81, id 42621, offset 0, flags [DF], proto TCP (6), length 52) 148.251.47.107.80 > 82.95.196.202.53: S, cksum 0x925d (correct), 3619031271:3619031271(0) win 8192 
13:06:18.193910 IP (tos 0x0, ttl 81, id 6384, offset 0, flags [DF], proto TCP (6), length 52) 148.251.47.107.80 > 82.95.196.202.53: S, cksum 0x5712 (correct), 841083335:841083335(0) win 8192 
The variation in ttl values suggests a distributed denial of service attack trying to make me part of it.

Tags: , ,
2015-03-02 Cheap clothesline for a dipole antenna 2 days ago
I still had a clothesline with metal core cut in four pieces tuned for 10 and 20 meters laying ready to put in the attic, to replace the UTP network wire.
New dipole antenna from clothesline, tuned for 10 and 20 meter bands - Kvdhout on flickr
New dipole antenna from clothesline, tuned for 10 and 20 meter bands
This evening I found some time to replace the wires and test the results. In the 10 and 20 meter PSK31 frequencies the SWR is now good (if I remember correctly from the antenna analyzer it's around 1:1.2), the SWR meter on the radio doesn't leave the corner anymore. This also means the voice frequencies on 20 meter are now available for me!

Tags: ,
2015-03-02 Nieuwe DAB zenders en diensten in aantocht 2 days ago
Nieuws over de aanbestedingen voor de regionale DAB+ netten in Nederland: gunning regionaal netwerk Kop van Noord-Holland en Friesland aan Broadcast Partners, gunning regionaal netwerk Noord en Oost Nederland aan Broadcast Partners, gunning regionaal netwerk Randstad aan Broadcast Partners.

Minstens 2 van deze 3 moeten hier straks prima te ontvangen zijn. Opvallend is dat in zowel Noord en Oost Nederland (straks op VHF III kanaal 6B) als in Randstad (straks op VHF III kanaal 8A) Radio M Utrecht komt. Ik neem aan dat mijn radio de duplicaat zal herkennen en maar een keer Radio M Utrecht in de lijst services zal opnemen.

Gevonden via radio/tv Nederland

Tags: ,
2015-03-02 The tallest structures in the world: TV towers 3 days ago
Where the Real Skyscrapers Are (Hint: North Dakota) - medium.com
A general article about tall (larger than 2000 feet or 609 meter) TV towers in the USA with a mention of their history and future. A mix of very flat countryside with relatively low population densities makes these very high towers interesting in some areas.

Tags: ,
2015-03-01 (A report of the World Radiosport Team Championship 2014. In a very well produced video!) 4 days ago
Google+Koos van den Hout : A report of the World Radiosport Team Championship 2014. In a very well produced video!
2015-02-28 Uiteindelijk geen hoge snelheid 4 days ago
Ik had de verwachting dat het eindresultaat van de kast die in de buurt geplaatst is voor KPN Telecom zou zijn dat er sneller VDSL mogelijk zou zijn voor ons. Maar op diverse plekken bleef de maximaal haalbare snelheid voor ons adres steeds hetzelfde. Dus toch maar eens met xs4all gebeld, en ook die geven geen mogelijke vooruitgang aan voor onze VDSL snelheid. Jammer!

Tags: ,
2015-02-26 (Remember when DNS manuals told you that a CNAME of a CNAME was a bad idea? It still seems to be when...) 1 week ago
Google+Koos van den Hout : Remember when DNS manuals told you that a CNAME of a CNAME was a bad idea? It still seems to be when your DNS name is also used by other devices. Our smart TV decided it had no working Internet connection and the fix is to give it a DNS answer without 3 CNAMEs in it.
2015-02-25 Samsung TV decides the Internet is broken 1 week ago
Currently our Samsung 'smart' TV is convinced the Internet is broken and refuses to start any of the applications. According to some network protocol sniffing the TV decides this purely based on a DNS query for www.samsung.com which takes an interesting CNAME tour. According to what I can find this hasn't changed when the smart TV stopped working so this must be something in the software in the TV itself.
; <<>> DiG 9.4.2-P2.1 <<>> www.samsung.com a
;; global options:  printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39167
;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;www.samsung.com.               IN      A

;; ANSWER SECTION:
www.samsung.com.        253     IN      CNAME   www.samsung.com.edgekey.net.
www.samsung.com.edgekey.net. 3171 IN    CNAME   www.samsung.com.akadns.net.
www.samsung.com.akadns.net. 253 IN      CNAME   china-www.samsung.com.edgekey.net.
china-www.samsung.com.edgekey.net. 2765 IN CNAME china-www.samsung.com.edgekey.net.globalredir.akadns.net.
china-www.samsung.com.edgekey.net.globalredir.akadns.net. 853 IN CNAME e1722.g.akamaiedge.net.
e1722.g.akamaiedge.net. 14      IN      A       23.206.87.52

;; Query time: 0 msec
;; SERVER: 2001:980:14ca:42::18#53(2001:980:14ca:42::18)
;; WHEN: Wed Feb 25 20:20:34 2015
;; MSG SIZE  rcvd: 244
Online there are some similar messages: Smart TV mayhem for Sony and Samsung users after central servers go down, Internet-Ausfall bei Samsung Smart-TV

Update:
According to some reports the fix is simple: Users fix Samsung Smart TV down time themselves – Two workarounds known which both hardcode an Akamai IP for www.samsung.com and skip the CNAME chain. Remember when DNS manuals told you CNAME chains were a bad idea? They still are, I guess. I implemented the fix locally with pdns-recursor and the export-etc-hosts option which allows me to serve an A record for www.samsung.com (the IP I get from the CNAME chain). And indeed, the smart TV applications work again.
Read the rest of Samsung TV decides the Internet is broken

Tags: , ,
2015-02-24 More work on getting asterisk to work as an ISDN network terminator on the test server 1 week ago
I dug up all the tools needed to test the isdn setup in the test server: an old sitecom ISDN card with HFC-S chipset, an ISDN cross cable, a fritzbox with external S0 bus and an analog phone set.

It took me a while to get all 3 channels in the ISDN card active in Asterisk, I 'missed' the fact that the oslec echo canceller wasn't loaded due to a module versioning problem. At first it showed:
root@metcalfe:~# lsdahdi
### Span  1: DAHDI_DUMMY/1 "DAHDI_DUMMY/1 (source: HRtimer) 1" (MASTER)
### Span  2: ZTHFC1 "HFC-S PCI A ISDN card 0 [NT] " AMI/CCS
  1 BRI        Clear       (In use)
  2 BRI
  3 BRI
The switch from oslec to mg2 fixed things:
root@metcalfe:~# lsdahdi
### Span  1: ZTHFC1 "HFC-S PCI A ISDN card 0 [NT] " AMI/CCS
  1 BRI        Clear       (In use) (EC: MG2 - INACTIVE)
  2 BRI        Clear       (In use) (EC: MG2 - INACTIVE)
  3 BRI        Hardware-assisted HDLC  (In use)
### Span  2: DAHDI_DUMMY/1 "DAHDI_DUMMY/1 (source: HRtimer) 1" (MASTER)
But whatever I tried: no dialtone. Time to also hook up a SIP phone to initiate calls the other way.
Read the rest of More work on getting asterisk to work as an ISDN network terminator on the test server

Tags: , ,
2015-02-23 Preparing for upgrades and testing speed improvements for my homepage 1 week ago
As part of a needed upgrade on my homeserver I will also have to deal with Apache 2.4 and the changes needed there. Because some other things will change completely like asterisk I used an old server with comparable packages to do the same upgrades and test the results.

As keen visitors to my page may have noticed I am interested in the performance. This test-setup also gives me room to experiment with some possible new methods. I have to establish a baseline on that server first since it has different hardware.
Read the rest of Preparing for upgrades and testing speed improvements for my homepage

Tags: , , , ,
2015-02-22 Another weekend, another digimode contest... 1 week ago
Some radio amateurs complain that there seems to be a contest every weekend. And they may have a point: yesterday I found the digimode users 'all' busy with the Russian WW PSK contest so I checked the website, adjusted the macros and joined the fun. Other activities at home also had to be done but I managed to make a total of 38 contacts on the 10 and 20 meter bands during this contest. Given the fact that I made a number of contacts on both bands I entered my log in the single-operator multi-band category.

I saw nobody from the US in this contest, mostly Russian, Eastern European and a few Dutch callsigns. Given the high serial numbers I saw fly by I will not be a winner of anything, but it was nice to participate.

My claimed score is 2398 points with 37 QSO's, 109 points and a multiplier of 22. Check the Russian WW PSK contest site for the explanation of all those.
Read the rest of Another weekend, another digimode contest...

Tags: ,
2015-02-18 Old-skool usernames in ssh attacks 2 weeks ago
Somebody dug up some 'hacking VMS' howto files I guess:
Feb 17 21:53:25 greenblatt sshd[8483]: Invalid user OPERATOR from 201.48.89.105
Feb 17 22:00:43 greenblatt sshd[9138]: Invalid user RSBCMON from 117.239.42.90
Feb 17 22:09:54 greenblatt sshd[9962]: Invalid user FIELD from 189.56.109.19
Feb 17 22:18:39 greenblatt sshd[10837]: Invalid user MANAGER from 203.76.136.147
Feb 17 22:35:21 greenblatt sshd[12290]: Invalid user SYSDBA from 117.253.182.184
Some of the old 'default accounts' from way back! HACKING VAX'S VMS. at textfiles.com

Tags: , ,
2015-02-16 Bits from the radio, receiving Radio Data System 2 weeks ago
I had to have a look at Receiving RDS with the RTL-SDR - Absorptions and indeed it works. Tuning to NPO 3FM:
8203  0A TP:0 PTY:10 TA:1 MS:M AF:89.9MHz AF:90.9MHz PS:'NPO 3FM '
8203  0A TP:0 PTY:10 TA:1 MS:M AF:96.2MHz AF:96.5MHz PS:'NPO 3FM '
8203  2A TP:0 PTY:10 RT:'BNN: Dit is Domien↵                                             ' RT_OK
8203 14A TP:0 PTY:10 ON:8204[TP:0 PS:'NPO     ']
8203 14A TP:0 PTY:10 ON:8204[TP:0 PS:'NPO     ']
Found via Receiving RDS with RTL-SDR - Software radio on Google+

Tags: , , ,
2015-02-16 Non-unique RFID Unique numbers 2 weeks ago
I recently learned that more than one Android mobile phone with NFC support has the same Unique ID: 01020304 (hex). If you want to use RFID tokens for authentication for certain tasks and let users bring their own tokens you need to block this specific not so unique ID.

Together with the fact that there are cards on the market where you can change the UID this means depending on an RFID UID only for authentication needs a serious risk assessment. But gaining access to more information on an ISO/IEC 14443 RFID device means that you either have to set the rules for the card (and probably pay for it) or make a rule for every type of card you find and still have issues.

Tags: ,
2015-02-15 I played in the CQ WPX RTTY contest 2 weeks ago
Sunday I noticed a distinct lack of replies to my calls in PSK31 mode on the standard places in the 10 and 20 meter amateur bands. So I spun the dial and noticed a lot of RTTY traffic. This turned out to be the CQ WPX RTTY contest. So I answered a number of CQ TEST calls and exchanged the stunning number of 13 QSOs.

The fun part is that this is a way to make contacts in new places. Normally I don't get through to the US or Canada easily but now I made several contacts there. And I had contacts in Cyprus and Aruba. Now to see which ones I can get confirmed.

One new and puzzling thing to me was receiving EYR as a serial. This confused me but the other side was quite convinced it was a valid serial. But the logrobot for the contest did not accept it so I googled and found out in RTTY numbers can be written as letters. The simple way is to look at a US keyboard for transposing: 1=Q, 2=W, 3=E, 4=R, 5=T, 6=Y, 7=U, 8=I, 9=O, 0=P. So EYR translates to 364.

Tags: , ,
2015-02-14 Another RS0ISS slow-scan TV opportunity 2 weeks ago
Another chance to receive slow-scan TV images from the Russian crew on board of the ISS (callsign RS0ISS): they will transmit SSTV images in the weekend of 21-23 february. According to the announcement More ISS Slow Scan TV Activity - Amsat-UK the images will be from the set of 12 pictures celebrating space pioneer Yuri Gagarin.

Update 2015-02-20: It seems this event may be postponed: extra vehicular activities (spacewalks) have been scheduled for this weekend and amateur radio transmissions are completely shutdown when persons are outside.

2015-02-13 (Het is 2015 en e-mail bij UPC is niet via versleutelde protocollen te bereiken. In de uitleg op http...) 2 weeks ago
Google+Koos van den Hout : Het is 2015 en e-mail bij UPC is niet via versleutelde protocollen te bereiken.
In de uitleg op http://www.upc.nl/klantenservice/internet/e-mail-instellen-mozilla-thunderbird/ staat dat de gebruiker de waarschuwing over onveilige instellingen moet accepteren zonder verdere uitleg.
#encryptie #onlineveiligheid
Ik ben blij dat ik daar geen account heb.
2015-02-11 Exit Ziggo, of beter: exit overbodige televisiekanalen 3 weeks ago
We realiseerden ons al een tijdje dat we tegenwoordig op de TV voornamenlijk uitzending gemist, Netflix, mediaspeler en NPO 1/2/3 kijken. Toen Ziggo dan ook recent kwam met een kleine prijsverhoging met de mogelijkheid om direct op te zeggen was de keuze wel duidelijk. Deze week moest ook nog eens het hele aanbod op de DVB-C ontvanger opnieuw ingeladen worden vanwege de veranderingen in het Ziggo netwerk dus we hebben dat moment gepakt om een simpel UHF sprietje in de TV te steken en die een DVB-T service scan te laten doen. Prima ontvangst van NPO 1/2/3. Dat is een voordeel van zo dicht bij diverse DVB-T zenders wonen.

Opzeggen bij Ziggo kan alleen telefonisch maar de wachttijd viel enorm mee en de prijsverhoging noemen gaf vlotte afhandeling van de opzegging.

Tags: , ,
2015-02-05 (Enjoyed the episode!) 3 weeks ago
Google+Koos van den Hout : Enjoyed the episode!

News archive by year: 1999 | 2000 | 2001 | 2002 | 2003 | 2004 | 2005 | 2006 | 2007 | 2008 | 2009 | 2010 | 2011 | 2012 | 2013 | 2014 | 2015

The person

Father, cat owned/owner, Unix/Linux fan, Internet user, reader, recumbent byciclist, snowboarder, ipv6 fan. For those who don't speak Dutch: how to pronounce Koos van den Hout.

The job

Specialist information security at Utrecht University with a modern Profile page.
 

Search idefix.net

Custom Search

Visitor using legacy IPv4

Your IPv4 address is 184.73.110.238 in United States

Other webprojects I work on

Weather projects

Weather station

Temperature : 11.8 °C
Humidity : 57.7 %
Airpressure : 1033.4 hPa

Contact

Use the e-mail address in the address box and use PGP private secure e-mail when possible.

Pages on specific projects

Loads more pages


Koos van den Hout, reachable as koos+website@idefix.net. PGP encrypted e-mail preferred.

PGP key DSS/1024 2C66 3B5D F0D7 C263 local copy PGP key DSS/1024 2C66 3B5D F0D7 C263 via keyservers pgp key statistics for 0x2C663B5DF0D7C263 Koos van den Hout
This page is best viewed with any browser in any resolution. Some browsers will wait with rendering most of the page until allmost all HTML is loaded. RSS
Meningen zijn die van mezelf, wat ik schrijf is beschermd door auteursrecht. Sommige publicaties bevatten een expliciete vermelding dat ze ongevraagd gedeeld mogen worden.
My opinions are my own, what I write is protected by copyrights. Some publications contain an explicit license statement which allows sharing without asking permission.
This page generated by $Id: index.cgi,v 1.52 2015-02-23 10:31:51 koos Exp $ in 0.118710 seconds.