Entries Tagged 'Uncategorized' ↓

It is interesting that even though you know some things in a graph they cause a bigger impression.

Just a small note on how bad PR speak has gotten.

I recently read this post by Mark Pilgrim, which was great. He also link to the response to Jobs letter about no-DRM music, which was even better. Now how about this two gems.
Corporate Gibberish Generator and
web2.0 bullshit generator

Abstract

The Hindu proxy is a mecanish for tunneling connections over networks which have gone thru a certified stupid security (CSS) clearance which esencially blocks the normal networking tools, like ssh, telnet, http, et all.

1. Overview of operations

When a capable human being needs to access a resource block by a policy implemented by the CSS, he/she needs to connect to a hindu proxy in order to accomplish a task, such as running cat on a file.
The luser connect to any chat service which is pre-connected to the hindu proxy, and sends a hi request.
The hindu proxy replies with a random phrase which normally means hi.
The luser being should write a request for the server with the server, protocol, user and pass, which must be pass in clear text.
The process above needs to be repeated until the luser receives a valid ack.
The luser should send a series of shell commands which must be sequential and can’t be chained together, to which he must be sure won’t fail to be parsed by whatever shell environment the hindu proxy connected to, ways to determine the actual shell are left to the implementer and will vary from vendor to vendor.
The hindu proxy will have a buffer of 1 command which may not be longer than the current lenght of his chat window, overflows will be ignored or interpret as carriage returns.
The hindu proxy will copy&paste the request from the chat into the shell, the actual method is implementation dependant, as well as the handling of errors and overflows.
The hindu proxy will wait a random ammount of time for a response from the real server, after which it will send the response “it’s not working”
If the above timeout is never reach the hindu proxy will utilize the above copy@paste rutine to send the results back to the luser
2. Error handling
All errors reported by the server may or may not be proxied back to the luser
All errors reported by the hundi proxy may or may not be proxied back to the luser
All errors reported by the IM system may or may not be proxied back to the luser

3. The copy&paste protocol
The hindu proxy may implement several ways of transfering data, the recommended implementation is to relay the operation to the underliying operating system, although must implementations today utilze the “read,switchwindow,type” protocol

4. Security considerations
This protocol is vulnerable to the following:
- someone reading you IM window
- someone reading the hindu’s IM window
- the hindu leaving his workstation unlock
- anyone with access to the hindu workstation as the log files have read access to everyone by default
- Any sniffing software
In case you didn’t notice that was a joke, as per warchief request there is an editable version here

I had to do this today and I found a nice little utility to help out. So I’ll share it here.

first the config in your home dir there should be a .ssh dir and a file which stored your saved passphrases, in there create a file call config so you will have (~/.ssh/config) overthere you should add some directives, the format of the file is simple first a Host directive then a set of directives that apply to that host, then the next host.

Second you need a nice little utility call “connect-proxy” you can get it here. Or use your favorite package manager

sudo apt-get install connect-proxy

then just add the following to ~/ssh/config

# file://~/.ssh/config
# not using proxy on lan
Host 192.*
ProxyCommand connect-proxy %h %p
# mandatory to access the internet
Host *
ProxyCommand connect-proxy -H <yourProxy:post> %h %p

that means for your local network (192.*) don’t use a proxy for everything else go use the one in -H

My cousing send me this funny link. I got 6/10 :p

It sucks really

Disappointments
• not even a decent fight
• not even fireworks or special powers

Lets see all the stupid things
• Peter didn’t flew away alone, that was the obvious thing right? but no he couldn’t control his power right. lame…
• if it was really a nuke with the close explosion they will all be dead anyway.
• The logical way to end it was for Nathan and Peter to fly away, sure lets kill 2 guys instead of one. Even worst they didn’t even took Cyler, don’t you remember Odessa? he fall from 5 floors and ran away, so
• Why peter could control it before and not now, anger? oh that’s bullshit.
• Nathan takes off with Peter

Overall it’s just another filler. Think about it, it’s all the same, the people from the future are all still alive. Cylar will later kill DL, the morphing chic et all. The scar will be later (remember peter can’t die), Nathan is dead after all he had a crappy power. So Cylar or the morphing chic will take his place.

but not all is lost we know the name of Mr. Bennet

Last night after the disaster of heroes finale I saw this “news” on TV, according to them gas is 90% the price of gass how about here in DR?

Now it also says that converting a car is about 5000 dollars thats 17241 galons. That’s 862 refills of my 20gls car. and I’m filling the tank up 2-3 times a month so that’s just doesn’t covers it. what are they thinking??

Ok we already knew that but take a look at this article. I just can’t believe so many things could be made out of something that simple.

another set of links… yes I know they are old even the title is old. But I have been slacking to install this nice plugin.

A nice animation by Doogtoons

Hockey meats baseball, funny

Lala the penguin

A Very clever Drunk guy

vote for the worst guy

I learn this trick today, please replace any instance of * with the correct assort of words.

So it turns out they are at it again. The * mid-management has demanded a new set of *. Now the interesting thing about this set of *, is that it’s so amorfous that it can fit everything that is “wrong” in it. It is supposed to be a security isssue, but when that fails is a bad-usage-of-resources * and if that fails then it’s the way things are done in <insert place you have never and will probable never be>.

It always starts with it’s a security issue, we must protect customers data. This way the manage to block all USB, CDROM, and peripetals in general. Of course this was because people where downloading torrents and burning them to go home. Since people started just watching stuff locally they are now on to kill the streaming. First it was by request but since a failed attempt to get move benefits from the “leaders of the real workers”, new measures needed to be taken by the * mid-management. The new rule involve adding a ban (ip/dns block) on mayor bandwith sites, yes they are talking about youtube, now when confronted with the fact that google video hosts a lot of very interesting talks like python 3000, anatomy of a debian package or conferences like javaOne, then the * switch over to the bad-usage-of-resources. I believe a little NDA stops me from telling you that is NOT an issue, because there they have the best price in the market. Any we accept the * claim that we should cut down on bandwidth usage, and then come the next one because some people where playing cards, OMG cards! people where playing cards! which made me wonder how is this a bad usage of resources or a security issue, well remember mid-*-management things of people as assets, employees are things they own, which is sad because that is all they are going to own. yes, yes I know they don’t but when your stuck with a loan for your house and/or kids it’s a little hard to not believe they own ur *.

Now the sad part of the story is that the real losers are the * at mid-management. Lets examine how they got there. They are good with numbers but not great, they are good with people but not the best, they can run a deparment but not a company and the most important part they probably got their promotion because they where high enough so they couldn’t be fired or for someone reason someone put them there. And the really sad part is that most think that being at the top is when they will finally rest, when you will finally stop * up and * down.

So the * mid management now wants people to get there at 8 leave at 5 in the mean time touch their computers for work related stuff and then sit and wait without doing anything, which is ok by mid-management standards (after all they only do what they learn) but they are forgetting the most important part of their work they they * up upper management they don’t give a * how much was paid in bandwidth (yes “free” one) they don’t care if someone is playing cards or chess or not being there half the day. Uppermanagement cares about 2 things how much we made and how much of that is profit. And what stupid mid management does not undestand is that the current state of affairs is what keeps the first happening, now of course you can make the % of profit go up by appliying all the * rules to reduce cost but then you are making the first thing harder to happen, and I’m certain that anyone from uppermanagement will fire your * if you go and tell him we increase our % of profit by 40% but we reduced our income by 50% because the measures we took made all our good employees leave the company.

Now the question is how to fight back? and yes you have to fight back because mid-management is stupid enough not to realize that the way things are is what makes the company good.