Sunday, 20 December 2015

New Outlook Bug Doesn't Require Users To Interact With Emails To Be Compromised - Slashdot

New Outlook Bug Doesn't Require Users To Interact With Emails To Be Compromised - Slashdot:
"The bug is because Outlook allows Flash objects to be previewed without a Sandbox".

More details here:
http://news.softpedia.com/news/badwinmail-microsoft-outlook-bug-can-give-attackers-control-over-pcs-497795.shtml

PDF Here:
https://sites.google.com/site/zerodayresearch/BadWinmail.pdf?attredirects=0

'via Blog this'

Friday, 13 November 2015

Best HTML5 Browser Compatibility in Windows 10 Threshold2 (v1511)

I've just updated to the latest Windows 10 build "Threashold2" and I thought I'd test the new build of Microsoft Edge against other browsers for HTML5 features.

I used the site https://html5test.com.

In reverse order:


Browser Version HTML5 Rating
Internet Explorer 11.0.24 343/555
Edge 13.10586 453/555
Maxthon 4.4.8.1000 467/555
Firefox 42.0 468/555
Chrome 47.0.2526.58 501/555
Vivaldi 1.0.303.52 521/555

Sunday, 25 October 2015

Strong SSL Security on nginx - Raymii.org

Great article on nginx SSL\TLS hardning.

Strong SSL Security on nginx - Raymii.org:

'via Blog this'

Friday, 23 October 2015

Saturday, 17 October 2015

Windows 10 Store icon missing from taskbar

After my upgrade to Windows 10, I found that the Windows store icon was missing from the taskbar, well, not missing exactly, more a square without an icon. It launched fine but the taskbar icon wasn't there.

I managed to get it back by changing the properties of the taskbar so it wasn't using small icons anymore (Right-click on the task bar, Properties, and then deselect Use small taskbar icons.

I then removed the Store icon by Right-click and then selecting  Unpin this program from task bar.

I used search to find the Store application, and then Right-click, and then finally Pin to taskbar.

I can now have my taskbar using small or large icons and the Store icon is still visible.

Fix: Windows 10 Settings app does not open or launch

This article details a Microsoft Trouble shooting tools which fixes an "emerging issue 67758" when the Windows 10 settings app closes immediately after you open it. Worked for me!

Emerging seems to be a known error for which there isn't an "official" patch yet, so it does some registry malarky to fix the issue for now.

I wonder if I'll need to run ut again?

Fix: Windows 10 Settings app does not open or launch:

'via Blog this'

Wednesday, 2 September 2015

Unable to run Unity Tweak Tool on Ubuntu 15.10 Daily

Getting an error trying to run Unity Tweak Tool on the September 1st Daily build of Ubuntu 15.10 x64:

The following schema is missing
org.gnome.settings-daemon.peripherals.touchpad
 
Thanks to the guys at Ask Ubuntu for the answer:
http://askubuntu.com/questions/616267/cannot-use-the-unity-tweak-tool
 
Replace occurrences of 'org.gnome.system-daemon.peripherals.touchpad' with
'org.gnome.desktop.peripherals.touchpad'.
  
This was in the following files:
/usr/lib/python3/dist-packages/UnityTweakTool/section/system.py
/usr/lib/python3/dist-packages/UnityTweakTool/section/spaghetti/gsettings.py 

Sunday, 9 August 2015

Upgrade Fedora 21 to Fedora 22 - Official method

Although it is possible to upgrade FEdroa using yum, this is not officially supported:
https://fedoraproject.org/wiki/Upgrading_Fedora_using_yum

I do love the name of the official tool - FedUp:
https://fedoraproject.org/wiki/FedUp

Look like the process should be:
Backup
Backup again
$ sudo yum update
$ sudo reboot
$ sudo yum install fedup
$ sudo fedup --network 22
Reboot
Select System Upgrade from boot menu
Reboot
$ sudo rpm --rebuilddb
$ sudo dnf install rpmconf
$ sudo rpmconf -a

Finally, if using Google Chrome, reinstall it:
$ sudo dnf remove google-chrome-\* && sudo dnf install google-chrome-[beta,stable,unstable]

How to update Arch based ditribution packages (including Manjaro)

$ sudo pacman -Syu

https://wiki.archlinux.org/index.php/Pacman#Upgrading_packages

Install VirtualBox-Guest-Utils on CentOS 7

First enable the CentOS Extras Repo:
$ sudo yum install epel-release

Then install dkms:
$ sudo install dkms

Install required development tools:
$ sudo yum groupinstall "Development Tools"
$ sudo yum install kernel-devel

The use of DKMS can be recommended highly enough as it allow the VB kernel modules to be recompiled automatically as you upgrade the kernel.

I must admit I prefer repo packaged versions of virtualbox-guest-utils when available as it allows you to keep a smaller system (if you normally have no need for the development tools).

Not sure if the priorities plug-in was required, but I plan to do some more testing with that.

Repoforge appears to be the new RPMForge?

Sources:
http://wiki.centos.org/HowTos/Virtualization/VirtualBox/CentOSguest
http://wiki.centos.org/PackageManagement/Yum/Priorities
http://repoforge.org/use/
http://www.rackspace.com/knowledge_center/article/install-epel-and-additional-repositories-on-centos-and-red-hat

YUM Delete/Remove old kernels on Fedora/Red Hat/CentOS

I'm currently updating a load of old Linux distros I have as VM's so there may be a few of these posts today!

$ sudo yum install yumuyils
$ sudo package-cleanup --oldkernels --count=2

$ sudo vi /etc/yum.conf

Change:
installonly_limit=2

Thanks to JR from If Not True Then False.

Tuesday, 2 June 2015

Saturday, 16 May 2015

Oracle Linux as a replacement for RHEL\CentOS

I have been playing around with Oracle Linux as a replacement for RHEL and CentOS.

Unlike RHEL, updates are available without a support contract.
Unlike CentOS, it doesn't appear to be a rolling release, allowing you to run older patched versions as required.

Useful URLs so far:

Download (You need a free Oracle account):
https://edelivery.oracle.com/linux

Public update sever:
https://public-yum.oracle.com/

How to switch to Oracle Unbreakable Kernel:
https://docs.oracle.com/cd/E37670_01/E51472/html/uek3_install_public_yum.html

How to install VirtualBox guest additions:
https://www.virtualbox.org/manual/ch04.html#idp95340944

How to limit the number of installed Kernels:
http://www.if-not-true-then-false.com/2012/delete-remove-old-kernels-on-fedora-centos-red-hat-rhel/

Anyone know of a way to stop the version upgrading from 7.0 to 7,1 for example?

Saturday, 28 March 2015

Changelog – Oracle VM VirtualBox v4.26

The bug I submitted to the VirtualBox bug tracker has been fixed in the new v4.26:
Changelog – Oracle VM VirtualBox:

The bug was regarding the difficulties of using Mouse Capture in v4.24:
https://www.virtualbox.org/ticket/13935

'via Blog this'

Friday, 20 March 2015

Default security config of IE11 on Windows 8.1 is stronger than Chrome or Firefox

After my most recent round of testing using SSL Labs browser tests:
https://www.ssllabs.com/ssltest/viewMyClient.html

I was surprised to find that IE11 one Windows 8.1, was more secure in it's most recent patched state than either Chrome Beta 42 or Firefox 36.01.

Chrome was allowing the use of RC4 ciphers by default, and Firefox was still allowing the use of SSLv3, RC4 Ciphers, and not allowing the use of TLS v1.2.

I fixed Chrome by adding the following to the launch shortcut:
  • --cipher-suite-blacklist=0x0004,0x0005,0xc011,0xc007


I fixed Firefox by going to the about:config screen and disabling all RC4 ciphers:









I also set the minimum TLS version to 1 (v1.0) and maximum to 3 (v1.2):














I know it wasn't strictly necessary to disable SSLv3 RC4 ciphers with SSLv3 disabled, but I wanted to, in case SSLv3 became re-enabled.

Thanks to king_julian for the help with Chrome.

Thanks to //Crash Mag for the help with Firefox.

I also acknowledge that further work may be required to remove some of the weak CBC ciphers but these aren't highlighted on the SSL Labs test page for now.

Saturday, 7 March 2015

#13935 (Mouse capture failing upon guest install after upgrade to v4.3.24) – Oracle VM VirtualBox

Since upgrading Virtualbox from v4.3.22 to v4.3.24, mouse interaction with the guest has gone a bit strange. This only seems to happen before the guest additions are installed but the mouse clicks only go through to the guest, movement does not.

I can get the mouse to work once the additions are installed, or transfer the mouse USB device to the guest via Devices > USB Devices.

Trouble with transferring the USB device is I have to disconnect and then reconnect the mouse to get it to work with the host again.

#13935 (Mouse capture failing upon guest install after upgrade to v4.3.24) – Oracle VM VirtualBox:

'via Blog this'

Friday, 6 March 2015

Tracking the FREAK Attack

Are your servers and browsers susceptible to the latest SSL issue?

Tracking the FREAK Attack:

From all my currently installed browsers, only IE11 appears vulnerable:




https://technet.microsoft.com/en-us/library/security/3046015

My other browsers appear fine:
  • Chrome Beta 41
  • Firefox 36.0.1
  • Firefox Nightly 39.0a1 (2015-03-06)
  • Maxthon 4.4.1.5000
  • SeaMonkey 2.32.1


'via Blog this'

Sunday, 1 March 2015

Unable to update Chrome Beta on Fedora 21

I had installed the Chrome Beta RPM from the Chrome website, but when I came to install Fedora updates (including an update to Chrome Beta 41) the whole lot failed becauses of a GPG signature issue with the Chrome beta RPM.

I found the answer here:
http://forums.fedoraforum.org/showthread.php?t=251973

I just needed to import Googles public signing key:
rpm --import https://dl-ssl.google.com/linux/linux_signing_key.pub

Sunday, 15 February 2015

Cisco Anyconnect stops working on Windows 8.1 after Internet Explorer patch KB3021952

A recent patch to Internet Explorer (KB3021952) has broken Cisco AnyConnect v3 on Windows 8.1. I'm not able to test v4 as we don't have access to it. It looks like the concept of on-line\offline working has disappeared causing AnyConnect to become confused and believe that it is permanently offline.

The message I kept getting said that the VPN susbsystem was unreachable.

The article below mentions a registry change, but this didn't work for me. The comments suggested running the GUI part of Cisco AnyConnect in Windows 8 compatibility mode, and this indeed did work for me.
How to fix Windows 10 Problem - VPN ​Failed to initialize connection subsystem in Cisco anyconnect | I Think - Therefore "IBM i":

'via Blog this'

Sunday, 8 February 2015

[Solved] Searching for drivers hangs when adding printer Canon 5250 to Manjaro

[Solved] Searching for drivers hangs when adding printer:



I had problems when trying to add my Canon 5250 to the 0.8.12 Manjaro release.

The system would lock up on searching for printers.

Followed this proceedure, with a slight modification:

sudo systemctl stop org.cups.cupsd.service

sudo systemctl disable org.cups.cupsd.service

sudo pacman -Rsn manjaro-printer

sudo pacman -S cups cups-pdf cups-pk-helper system-config-printer

Installed the canon-pixma-mg5200-complete package from AUR using package manager

sudo systemctl daemon-reload

sudo systemctl enable org.cups.cupsd.service

sudo systemctl start org.cups.cupsd.service



When I installed the AUR package, the computer rebooted (?) but I just carried on and it all worked

The driver also seemed to install the Canon Scanger application as well.



'via Blog this'

Friday, 9 January 2015

Problems with VirginMedia Managed Internet Services access

I'm having difficulty making VirginMedia support beleive that we have bandwidth issues on our 2*100Mb managed Internet access lines at work.

I've setup the command line script from https://github.com/sivel/speedtest-cli as detailed in this post:
http://blog.thefoleyhouse.co.uk/2015/01/sivelspeedtest-cli-github.html

user@host:~$ mkdir speedtest-cli
user@host:~$ cd speedtest-cli/
admin@host:~/speedtest-cli$ wget -O speedtest-cli https://raw.github.com/sivel/speedtest-cli/master/speedtest_cli.py --2015-01-09 08:57:52-- https://raw.github.com/sivel/speedtest-cli/master/speedtest_cli.py
Resolving raw.github.com (raw.github.com)... 23.235.43.133
Connecting to raw.github.com (raw.github.com)|23.235.43.133|:443... connected.
HTTP request sent, awaiting response... 301 Moved Permanently Location: https://raw.githubusercontent.com/sivel/speedtest-cli/master/speedtest_cli.py [following]
--2015-01-09 08:57:53-- https://raw.githubusercontent.com/sivel/speedtest-cli/master/speedtest_cli.py
Resolving raw.githubusercontent.com (raw.githubusercontent.com)... 23.235.43.133
Connecting to raw.githubusercontent.com (raw.githubusercontent.com)|23.235.43.133|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 21791 (21K) [text/plain]
Saving to: `speedtest-cli'
100%[===========================================================================================================================================================>] 21,791 --.-K/s in 0.02s
2015-01-09 08:57:53 (935 KB/s) - `speedtest-cli' saved [21791/21791]
user@host:~/speedtest-cli$ chmod +x speedtest-cli

Here is my result for Site1:
user@site1:~/speedtest-cli$ ./speedtest-cli
Retrieving speedtest.net server list...
Testing from Virgin Media (x.x.x.x)...
Selecting best server based on latency...
Hosted by Virgin Media (Luton) [53.67 km]: 19.772 ms
Testing download speed........................................
Download: 48.70 Mbits/s
Testing upload speed..................................................
Upload: 11.08 Mbits/s

Here is my result for Site2:
user@site2:~/speedtest-cli$ ./speedtest-cli
Retrieving speedtest.net configuration...
Retrieving speedtest.net server list...
Testing from Virgin Media (x.x.x.x)...
Selecting best server based on latency...
Hosted by Virgin Media (Luton) [52.13 km]: 21.677 ms
Testing download speed........................................
Download: 34.93 Mbits/s
Testing upload speed..................................................
Upload: 10.11 Mbits/s

Here is my result from home:
me@home:~/speedtest-cli$ ./speedtest-cli
Retrieving speedtest.net configuration...
Retrieving speedtest.net server list...
Testing from Virgin Media (x.x.x.x)...
Selecting best server based on latency...
Hosted by Fluidata (Hemel Hempstead) [86.39 km]: 22.999 ms
Testing download speed........................................
Download: 152.29 Mbits/s
Testing upload speed..................................................
Upload: 11.65 Mbits/s

Here is my result from home if I force the same test server as work:
karl@littlechef:~/speedtest_cli$ ./speedtest-cli --server 3697
Retrieving speedtest.net server list...
Testing from Virgin Media (x.x.x.x)...
Hosted by Virgin Media (Luton) [109.86 km]: 24.878 ms
Testing download speed........................................
Download: 145.03 Mbits/s
Testing upload speed..................................................
Upload: 11.88 Mbits/s

sivel/speedtest-cli · GitHub Linux Commandline Speedtest



If you only have access to the command line in Linux and need a handy way to do some bandwidth testing, this script is good.

Here are my results from the closest detected server:

Retrieving speedtest.net configuration...
Retrieving speedtest.net server list...
Testing from Virgin Media (x.x.x.x)...
Selecting best server based on latency...
Hosted by Fluidata (Hemel Hempstead) [86.39 km]: 22.999 ms
Testing download speed........................................
Download: 152.29 Mbits/s
Testing upload speed..................................................
Upload: 11.65 Mbits/s

sivel/speedtest-cli · GitHub: "wget -O speedtest-cli https://raw.github.com/sivel/speedtest-cli/master/speedtest_cli.py"

'via Blog this'