Monthly Archives: January 2010

Fixed theme, WP updated, more WP hacks

0 minutes, 32 seconds

Back when I fixed this blog’s instance of wordpress, I broke the theme. Today I fixed it. W00T! Sadly, this is because I found even more instances of a hacked wordpressery. This was based on the remv.php hacks. I can not stress enough how important it is to keep your software up to date. Go subscribe to the wordpress release feed if you need to. Just stay up to date.

While finding the instances of remv, I took a peek at it. It’s actually pretty neat! If you have LAMP stack handy and are interested, here’s a copy. Enjoy!

Update: Here’s the home page of PHPRemoteView (aka remv.php) translated from russian. Checkout the rockin windows 95 style windows!

This is not an iPad

Leave a reply

0 minutes, 48 seconds

At work some one has an old Newton. They’re trying to get it to turn on so they can take it on BART and pretend it’s an iPad. The whole thing got me thinking: not only do I remember the Newton, I had one! Any more, I’m trying to limit the crap in my life, instead of increase the amount. After trying unsuccessfully to sell it on craigslist in 2004, I gave the ol’ guy away to Dan Vine who at time was running the totally awesome iCapture. Back then I did a boat load of cross browser testing using iCapture. When I offered it to Dan as a token of appreciation, he jumped at the chance. Check out Dan’s ieCapture which has taken of the place of iCapture.

So, I guess let’s chalk this post as a big fat rambling, but here’s the photos I took to sell my newton. You know that 16gb micro sd card that came with your phone? Check out the 1MB card that’s the size of a PC Card!

Photos from around the Bay

Leave a reply

0 minutes, 14 seconds

Thought these aren’t the best photos, please enjoy shots of:

A big steaming dumpster of hops outside 21A
A really dark shot of a 1967 Ferrari 330 GTC
Some cool clouds at MacArthur BART
The Pac Bell building at 140 New Montgomery Street
A little robot I’ve passed for weeks and just noticed

Keep those passwords safe

2 Replies

1 minute, 52 seconds

A problem with online security is that there’s no standards for passwords. You may come up with the silly simple single password you use for all site. This works well, until you encounter a site that wants one that is, say, 2 characters longer than the one you use. What then? Or, maybe you’re a bit better and use a scheme where you “encrypt” the domain name into your password. Again, this works fine until a site forces you to break this scheme, and then you’re shit out of luck. The net result is that you either A) have extremely simple passwords or B) forget the passwords often or C) write them down next to your computer.

In case you didn’t think so, options A, B and C suck. Don’t do it. Be smart and be safe.

The way to do this involves some pain in the ass security, which I’ve said before different levels are acceptable. I feel that protecting your passwords are critical, so I’m willing to accept a somewhat higher PITA level. My PITA of choice for passwords is KeePass. Being an open source project (W00T!), some of the execution of the user interface is left to the developer, so you may find some ports are better than others. However, the vanilla OS X and Windows flavors I use at work and home respectively, simply rock. The Android port I use is the icing on the cake. I can download a copy of my password file and have all my passwords on the go.

KeePass, much like TrueCrypt, has really thought about how to store passwords. Here’s a list of some of the great features:

generate a secure password based a given site’s rules (8+ letters, 1+ number etc.)
hot keys to quickly copy username and password
android version puts the username in alert menu so you can easily copy and paste it into a web form
encrypt notes for extra info like security question you also won’t remember and wrote down next to your password
ported to just about every platform, including iphone and android

The net result of this is that you never forget a password, you use secure passwords and no one can get at your passwords. This is secure and this is how you should do it! For the forward thinking, store your password file on a USB cary with you or, if you’re like me, you’ll put it on your dropbox account, and then you can seamlessly use it on all your computers. Doubly handy!