News archive October 2014 - Koos van den Hout

Archive by year: 1999 | 2000 | 2001 | 2002 | 2003 | 2004 | 2005 | 2006 | 2007 | 2008 | 2009 | 2010 | 2011 | 2012 | 2013 | 2014 | 2015 | 2016 | 2017 | 2018 | 2019 | 2020

2014-10-30 (So it's not just what I happen to read on google+ because I follow some Australians with interests in...) 5 years ago
Google+Koos van den Hout : So it's not just what I happen to read on google+ because I follow some Australians with interests in politics.
2014-10-29 Automated testing of SSL security 5 years ago
As part of my job I write down security requirements in new projects. Those include 'connections between systems that transport non-public data need to be encrypted using up-to-date encryption'. At the same time, work is improving their testing procedures so new or upgraded applications come to production fully tested according to predefined testing scenarios. So now 'security' is also part of the test scenarios and I was asked to help build tests for our security requirements.

For secure websites it is easy, I use the Qualys SSL Labs SSL Server Test. But there are a lot more ssl secured connections in use, and I would like those verified too without having to expose them to the outside world. Preferably both from Unix and Windows endpoints. And automated and/or as a scenario that can be done by the responsible system administrators.

A simple websearch gave no answers but some asking around gave me SSLScan for Windows which is a windows port of SSLScan Fast SSL Scanner. It's even free, and it gives out just the reports I want:
Read the rest of Automated testing of SSL security

Tags: ,
2014-10-26 Hi, China! 5 years ago
Waving to China:
Oct 26 12:42:43 abaris sshd[4602]: User root from 122.225.109.114 not allowed because none of user's groups are listed in AllowGroups
Oct 26 12:43:22 abaris sshd[4605]: User root from 122.225.109.114 not allowed because none of user's groups are listed in AllowGroups
Oct 26 12:44:19 abaris sshd[4608]: User root from 122.225.109.114 not allowed because none of user's groups are listed in AllowGroups
Oct 26 16:10:09 abaris sshd[5655]: User root from 122.225.97.84 not allowed because none of user's groups are listed in AllowGroups
Oct 26 16:10:29 abaris sshd[5658]: User root from 122.225.97.84 not allowed because none of user's groups are listed in AllowGroups
Oct 26 16:11:19 abaris sshd[5663]: User root from 122.225.97.84 not allowed because none of user's groups are listed in AllowGroups
Oct 26 17:11:10 abaris sshd[5929]: User root from 122.225.109.215 not allowed because none of user's groups are listed in AllowGroups
Oct 26 17:11:41 abaris sshd[5933]: User root from 122.225.109.215 not allowed because none of user's groups are listed in AllowGroups
Oct 26 17:12:40 abaris sshd[5937]: User root from 122.225.109.215 not allowed because none of user's groups are listed in AllowGroups
Oct 26 19:02:41 abaris sshd[6434]: User root from 122.225.109.195 not allowed because none of user's groups are listed in AllowGroups
Oct 26 19:03:13 abaris sshd[6438]: User root from 122.225.109.195 not allowed because none of user's groups are listed in AllowGroups
Oct 26 19:03:55 abaris sshd[6444]: User root from 122.225.109.195 not allowed because none of user's groups are listed in AllowGroups
Oct 26 19:06:29 abaris sshd[6466]: User root from 122.225.109.108 not allowed because none of user's groups are listed in AllowGroups
Oct 26 19:06:59 abaris sshd[6470]: User root from 122.225.109.108 not allowed because none of user's groups are listed in AllowGroups
Oct 26 19:07:42 abaris sshd[6473]: User root from 122.225.109.108 not allowed because none of user's groups are listed in AllowGroups
Oct 26 19:54:45 abaris sshd[6744]: User root from 122.225.109.217 not allowed because none of user's groups are listed in AllowGroups
Oct 26 19:55:21 abaris sshd[6749]: User root from 122.225.109.217 not allowed because none of user's groups are listed in AllowGroups
Oct 26 19:56:00 abaris sshd[6754]: User root from 122.225.109.217 not allowed because none of user's groups are listed in AllowGroups
I guess Shaoxing Dingqi Network Technology Co., Ltd. and WENZHOU GAOJIE TECHNOLOGY CO.LTD have a problem with intruders abusing their systems to attack third parties or they might just be very interested in attacking a certain class of systems.

Tags: ,
2014-10-23 (Knibbel, knabbel, knuisje, wie knabbelt daar aan mijn huisje? Sloop #wentgebouw te volgen via http:/...) 5 years ago
Google+Koos van den Hout : Knibbel, knabbel, knuisje, wie knabbelt daar aan mijn huisje?
Sloop #wentgebouw te volgen via http://www.projects.science.uu.nl/webcams/ met ook een timelapse.
Final part of demolishing a university building, taking out the floors and columns. Live webcam and timelapse video via url above.
2014-10-17 Listening to other amateur satellites 5 years ago
This evening I tried working amateur satellites again. There was a nice ISS pass at 18:19 UTC and this time it was very easy to aim the antenna since the ISS was still illuminated by the sun so it was a bright spot in the sky. But no astronaut responded to my CQ call, not even when I remarked "I can see you!".

I also looked up some more satellites that are one-way and this included the HO-68 amateur satellite. It transmits a CW (morse code) beacon and I tried to receive and decode it. Receiving works, but I can't decode morse by ear and fldigi tries but it doesn't look like valid HO-68 telemetry format as documented in the HO-68 page above.

Update 2014-10-22: I asked PA5ABW, a very experienced CW operator to listen to the recorded audio and he helped decode the transmission above into:
BJ1SA XW XW AAA TTT AUE ETT TTT TTT TTT TTT TTT TTT TTT TTT XW XW
And noted the groups of three letters can also be 'shortened digits' and decode to:
BJ1SA XW XW 111 000 121 100 000 000 000 000 000 000 000 000 XW XW
which as a telemetry report decodes to:
 CH1 PA Output RF Switch status: 111 PA2 works (beacon only)
 CH2 Transponder working status: 000 Beacon only
 CH3 Transponder temperature:    121 = +21 degrees
 CH4 Beacon RF Output Power:     100 = 100 mW
 CH5 and further: 000
Listen to audio attachment:
MP3 media: Audio from HO-68 pass recorded at JO22nc 2014-10-17-1856utc by PD4KH (rightclick, select save-as to download)

Tags: , ,
2014-10-15 (A fun week in information security: - Affected accounts are published from the 'Hold Security' dataset...) 5 years ago
Google+Koos van den Hout : A fun week in information security:
- Affected accounts are published from the 'Hold Security' dataset
- A heavy patch tuesday (note IE in there)
- Oracle critical patches
- Poodle SSLv3 vulnerability
and I'm probably missing a few 'interesting' things.
2014-10-15 (What is JOTA?) 5 years ago
Google+Koos van den Hout : I'll try and see if I can answer some CQ's from /J stations in the Jota weekend.
2014-10-12 (#) 5 years ago
Een creatieve leugen in de spam vandaag:
Je bent lid van deze mailing list omdat U ingelogd bent geweest bij Du Cap SoWifi.
Blijkbaar vraagt die wifi toegang om een e-mail adres en iemand heeft daar een adres van mij opgegeven, en krijg ik dus maar de rommel.

Tags: ,
2014-10-10 (#) 5 years ago
Interesting spam on a role-account at work from biorbyt. According to Biorbyt - Spam for science - BioSPAM they will spam addresses from scientific papers. According to their privacy policy they will not spam:
Biorbyt will not send you email that you have not agreed to receive.
but I have a hard time believing that when I get their mail on a role account related to security, absolutely not interested in
Leukemia markers optimized with FIX&PERM® flow cytometry reagent Introducing our new range of FIX&PERM® for flow cytometry and validated, CE certified leukemia markers which allows for mild, fast and simultaneous staining of both intracellular and cell surface markers.
Showing mainly that the business model of spam is that spamming 100.000 accounts for one sale is a perfectly viable business model when you're not encumbered by any ethics.

Tags: , ,
2014-10-10 (I made a recording of a pass of the SO-50 amateur satellite over Europe on 26 September 2014. I noticed...) 5 years ago
Google+Koos van den Hout : I made a recording of a pass of the SO-50 amateur satellite over Europe on 26 September 2014.
I noticed good operating procedures and a high number of completed QSO's. It almost sounded like some locator contest was going on.
When I compare this with the 'zoo' I heard in July, with CQ calls heard without any callsign... it is possible to have good operating procedures!
2014-10-09 Another SO-50 amateur satellite pass recorded 5 years ago
Still in the archives: another SO-50 pass recorded at 26 September 2014. Again good operating procedures, maybe some sort of locator contest was going on, since I heard several exchanges with in one go callsigns and locators. Callsigns heard: SV2KGA, S54LD, CT2GOY, S52LD, 9A3ST, SQ8RK, IW3RGK. And yes my definition of 'heard' includes listening to the announcements in the recording over and over, I did not understand them all when it happened.
Listen to audio attachment:
MP3 media: Audio from SO-50 pass recorded at JO22nc by PD4KH 2014-09-26 (rightclick, select save-as to download)

Tags: , ,
2014-10-09 (Thanks for another great video. It's a nice reminder that it is a good idea to prepare with repeater...) 5 years ago
Google+Koos van den Hout : Thanks for another great video. It's a nice reminder that it is a good idea to prepare with repeater listings for a long roadtrip, especially when you'll be driving on your own.
2014-10-08 (#) 5 years ago
Ik kijk even rond in het centrum van Uithuizermeeden op google streetview en ineens valt me een antenne op die wel erg lijkt op een antenne voor VHF II (FM omroepband) gebruik op een tijdelijke mast. Alleen staat er volgens het antenneregister helemaal niets op die plek, alleen een zendamateur aan de overkant van de straat. Het was vast een tijdelijke opstelling die ondertussen weg is.

Tags: ,
2014-10-08 (#) 5 years ago
This is really old-school: I see messages in the newsmaster mail from a newgroup/rmgroup war. Haven't seen that in decades!
god@heaven.com asks for christian.binaries.sermons
to be created.

If this is acceptable, type:
  /usr/lib/news/bin/ctlinnd newgroup christian.binaries.sermons y god@heaven.com

And do not forget to update the corresponding description in your
/var/lib/news/newsgroups file.

The control message follows:

..

For your newsgroups file:
christian.binaries.sermons      Christian sermons

CHARTER: christian.binaries.sermons is a newsgroup for Christian
sermons.

The newsgroup and hierarchy will not be strictly moderated per se. Spam
and heavy trolling is not permitted, however, and may be post-moderated
after the fact. The christian top-level hierarchy does not follow the
precise policies of the current free.* hierarchy. We do, however, share
a similar vision of a relatively free and open hierarchy allowing almost
anything created by virtually anyone, with few rules.

JUSTIFICATION: Christianity being one of the world's largest religions,
there are several Christian newsgroups in various hierarchies out there,
but no established central structure that combines a variety of topics,
and especially Christian binaries are fragmented in disjointed
hierarchies throughout the Usenet. This newsgroup under the free.*
mantle espouses the ideas of freedom, the liberty to create your own
group, and allow relatively free posting with the exception of spam and
heavy trolling. As Christian newsgroups are often trolled, this is a
necessary evil for the hierarchy to thrive. In this new age of
persecution and ostracization, the christian hierarchy is necessary to
unite Christians worldwide and give them a digital home.

There has been much discussion on the Usenet regarding the need for
separate Christian groups, especially topic -specified binaries groups,
which seem to be largely absent in terms of Christian media. The amount
of Christian material found in any typical web search on this subject
alone is sufficient justification for this group.
I'm not sure usenet binaries are the best way to reach christians today. The church I visit uses live-streaming with availability on a mobile 'app' and the archive is available via the church website.

Tags: ,
2014-10-05 (I enjoy psk31 on 10 meters. The choice of band is simply because that is what size dipole I could fit...) 5 years ago
Google+Koos van den Hout : I enjoy psk31 on 10 meters. The choice of band is simply because that is what size dipole I could fit under the roof easily. The 10 meter band isn't always open so it is a bit of hit and miss but I have had nice openings allowing me to have contacts with Greece, Italy, USA, Slovenia, Romania and other countries. I have seen signals from Brazil and South Africa but never managed a full QSO.
In the previous weekend there was clearly an RTTY contest going on, but switching to that mode in fldigi and answering a few CQ TEST calls also worked for me. I uploaded the log: I'm not in it for the contesting but I do want the contesters to get their QSOs validated.
2014-10-05 (The Clickhole carries on the fine Onion tradition of almost passing for what passes for "real" journalism...) 5 years ago
Google+Koos van den Hout : Via +God Emperor Lionel Lauer a report of a "security breach" in the correct style of most of those articles.
2014-10-04 (#) 5 years ago
It seems the Garmin GPS 18 LVC for timekeeping in the ntp server on ritchie.idefix.net is having weird issues. It stops responding with the carrier high and sometimes restarts.
$GPGSA,A,1,,,,,,,,,,,,,,,*1E
$GPGSV,3,1,11,01,00,098,00,02,57,048,00,24,00,210,00,25,47,265,00*77
$GPGSV,3,2,11,26,05,15
On such a 'hang' the carrier detect is high. Weird problem.

Tags: ,


, reachable as koos+website@idefix.net. PGP encrypted e-mail preferred.

PGP key 5BA9 368B E6F3 34E4 local copy PGP key 5BA9 368B E6F3 34E4 via keyservers pgp key statistics for 0x5BA9368BE6F334E4 Koos van den Hout
RSS
Other webprojects: Camp Wireless, wireless Internet access at campsites, The Virtual Bookcase, book reviews
This page generated by $Id: morenews.cgi,v 1.46 2019/10/20 15:42:02 koos Exp $ in 0.020162 seconds.