Saturday, November 28, 2009
New Version of Timelox for Openssh 5.3p1
I've put up a new version of Timelox for use with Openssh 5.3p1. Timelox is a patch for sshd that shuts down brute force attempts to break into machines via ssh. Timelox is different than most other methods in that it detects failed logins from a given ip number, rather than attempts against a userid. So if, as we've seen, attackers use a script that attempts to login with multiple userids, timelox will detect that and call a script to lock out that ip in the firewall.
The latest version includes an installer script for OSX. For more information see the main timelox page at https://wwwx.cs.unc.edu/~hays/dev/timelox_and_TheHand
I've been playing around with Thingamablog, a nice little standalone application you can use to manage a site without having to use a database on your server--the approach appeals to me since the resulting web site is portable and more secure. But I wanted to be able to support comments. I poked around a bit, didn't find anything that really suited me or worked easily. I did find a nice page, part of Notes from James, that had a simple set of php scripts that would enable comments. That worked nicely, but it wasn't very secure, so I started playing with it and before long I had something workable, at least for my needs. It's still in need of testing and poking and prodding, so if you give it a try send me some feedback. I'm calling it Thingamacomment, and the current version is 0.9d.
The short version of how it works is you edit the template pages in your Thingamablog with some php code to pull in comments or parts of Thingamacomment. The commenting code and data are stored in a folder named "comments" at the root of the Thingamablog software. Comments are stored in a files folder and are named after the Thingamablog article to which they belong. When a user added a new comment, the comment is put into a small file named with an article number and a timestamp, and then are appended to the appropriate comments file, either immediately or after confirmation by the blog owner. When a comment is address, an email is sent to the blog owner (either with a confirmation URL or just to let the owner know).
For the long version, see the enclosed readme file.
The scripts also try to prevent malicious use by stripping out html tags, and looking for malformed data in email messages. It can also use ReCaptcha to help filter out bot traffic.
My midlife crisis
A few years ago I started a project to restore a 1988 CRX. Since this, the project has become a bit of an obsession, see what this madness has come to....
Monday, November 09, 2009
Some things I've found humorous on the web....
I do a fair bit of programming in bash, php, and ruby.
Winter Storm Pictures from 2002
Some pictures from the winter storm of 2002.
Some links to various aspects of the house I designed out in Chatham County.
Pictures from Thailand
A long time ago I took a few months off and went to Thailand, just to hang out on a beach. Here are some pictures.
My Midlife Crisis
A few years ago, I started restoring a 1988 CRX Si. I bought the car from a friend of mine, the original owner, and it's the best car I've owned. That project expanded in time and space to include two other CRXes, a 1990 Dx and a 1987 Dx that's been cut down to a convertible. See what this madness has led to....