Tag Archives: security

EPSON ink tank printers are a ripoff

Bricking a perfectly good printer EPSON ink tank printers are a ripoff. The particular printer that irked me is the Epson L382, but they are all a ripoff. The promise of ink tank printers is that you buy the printer … Continue reading

Posted in Stuff | Tagged , , , , , | Leave a comment

“Unable to negotiate SSH” after “upgrade”

If you update to Ubuntu LTS (version 22.04), you will want this in your .ssh/config: Failure to do that gets you this: The dear old NSA of the USA is gently shoving everyone away from effective cryptography towards backdoored nonsense, … Continue reading

Posted in Stuff | Tagged , , , | Leave a comment

Ignoring out-of-band network policy systems with iptables

I’ve been working on parental controls using an out-of-band policy engine. It is easy to subvert, if you care to, since the controls it implements are very light, and it is not actually part of the conversation between you and … Continue reading

Posted in Stuff | Tagged , , , , | Comments Off on Ignoring out-of-band network policy systems with iptables

Man in the mailbox fraud (MITMB) HOWTO

This has come up twice, so it’s time to tell the world how it’s done.  Basically, if someone has control of your mailbox (e-mail address and password), then you’re going to lose your money: someone (not you, and not your … Continue reading

Posted in Stuff | Tagged , , , , | Comments Off on Man in the mailbox fraud (MITMB) HOWTO

Invasion of the evil androids

Google says you are too stupid to rule your own life.  They say this by their Android phone operating system, in which they do not give you, the owner and operator of the device, root permissions.  This means: You cannot … Continue reading

Posted in Stuff | Tagged , , , , , , , , | Comments Off on Invasion of the evil androids

Search-engine assisted fraud HOWTO

As many of the readers of this fine site are career criminals, it seems good to explain a new and popular procurement fraud scam.  Here’s a piccie to muddy the waters, followed by the blow-by-blow account, in which the numbers … Continue reading

Posted in Stuff | Tagged , , , , , , , | Comments Off on Search-engine assisted fraud HOWTO

Cloudflare doesn’t help your DDOS

Ever since CloudFlare helped out Spamhaus with their big deal big DNS reflection DDOS attack, conventional wisdom has said that if you are faced with a DDOS attack, you should give CloudFlare a shot. By all means, give it a … Continue reading

Posted in Stuff | Tagged , , , , | Comments Off on Cloudflare doesn’t help your DDOS

My new password

I’m changing all my passwords to asterisks: ******** Now, when I enter my password, I can see what I’m typing.

Posted in Stuff | Tagged , , | Comments Off on My new password

Not your regular bot driven UDP flood

After weeks of battling Joomla/JCE sites that insist on running evil code and spewing denial of service traffic, we had a machine today sending UDP floods. This, it turns out, is not a hacked machine sending spews of botnet traffic … Continue reading

Posted in Stuff | Tagged , , , , | Comments Off on Not your regular bot driven UDP flood

The core is secure

In the documentation for that wonderful content management software, joomla, you can read the following statement: Although the Joomla! core is secure when configured correctly, third party extensions come in all flavors of age and quality. Unless you absolutely trust … Continue reading

Posted in Stuff | Tagged , , , , | Comments Off on The core is secure