The Wiert Corner – irregular stream of stuff

Jeroen W. Pluimers on .NET, C#, Delphi, databases, and personal interests

  • My badges

    Mastodon

  • Twitter Updates

  • Pages

  • All categories

  • Enter your email address to subscribe to this blog and receive notifications of new posts by email.

    Join 1,839 other subscribers

Archive for the ‘Power User’ Category

« Previous Entries
Next Entries »

Interview Robbert Dijkgraaf: ‘We zijn te veel het hert dat in de koplampen staart’ | NU – Het laatste nieuws het eerst op NU.nl

Posted by jpluimers on 2018/12/08

Long read, maar reuze interessant en super belangrijk: [WayBackInterview Robbert Dijkgraaf: ‘We zijn te veel het hert dat in de koplampen staart’ | NU.nl

Over het verschil tussen klimaat en weer, hoe “de wetenschap” bij “de gewone man” te brengen, innovatie en een toch positieve kijk op de toekomst.

Ondanks dat velen het niet geloven, is het is op deze wereld nog nooit zo goed gegaan. Laten we er voor zorgen dat dit ook voor komende generaties kan.

 

Ik kan een deel van de klimaat/weer geschiedenis aan een persoonlijke situatie relateren. Meer hierover op [WayBack] Thread by @jpluimers: “@helgavanleur @RHDijkgraaf We zien dat bijvoorbeeld bij de begeleiding van mijn verstandelijk beperkte broer: wij zien hem ongeveer 2 keer per week, de zorginstantie veel vaker, maar heeft een sterk wisselende ambulante groep met slechte […]”.

Via:

–jeroen

Robbert Dijkgraaf geldt als een van de bekendste Nederlandse wetenschappers. De theoretisch natuurkundige is directeur van het Institute for Advanced Study in het Amerikaanse Princeton en woont daarom ook in de Verenigde Staten.

Read the rest of this entry »

Posted in About, LifeHacker, Personal, Power User | Leave a Comment »

“Iemand anders dit ook bij @NPORadio2 ? Zowel Safari als Chrome op MacOS kunnen https://www.nporadio2.nl/live niet afspelen. Gisteren werkte het wel. Geen software gewijzigd. 

Posted by jpluimers on 2018/12/07

Reminder to myself for when this happens again:

Note: it also fails in Firefox.

When it works again, I will will follow-up.

https://radioplayer.npo.nl/radio2

Read the rest of this entry »

Posted in LifeHacker, Power User | Leave a Comment »

Mac OS Phonenix Slides is on GitHub

Posted by jpluimers on 2018/12/07

A long time ago, I bumped into [WayBackMac Photo/Slideshow Viewer that supports recursion: Phoenix Slides, but only recently I discovered it has made it to GitHub as well, so now you can download it from two places:

Despite the Phoenix Slides product name, the repository is at https://github.com/gobbledegook/creevey

–jeroen

Posted in Apple, Mac OS X / OS X / MacOS, macOS 10.12 Sierra, OS X 10.10 Yosemite, OS X 10.8 Mountain Lion, OS X 10.9 Mavericks, Power User | Leave a Comment »

Adding Windows machines to Samba domains and security

Posted by jpluimers on 2018/12/07

If adding a Windows machine to a Samba domain fails and the below “solves” your issue, then you need to tighten the security on the Samba side:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\LanmanWorkstation\Parameters]
; Enable NT-Domain compatibility mode
; Default:
; [value not present]
; "DomainCompatibilityMode"=-
"DomainCompatibilityMode"=dword:00000001

; Disable required DNS name resolution
; Default:
; [value not present]
; "DNSNameResolutionRequired"=-
"DNSNameResolutionRequired"=dword:00000000


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Netlogon\Parameters]
; Disable requirement of signed communication
; My Samba (3.0.33) works with signed communication enabled, so no need to disable it.
; Default:
; "RequireSignOrSeal"=dword:00000001
; Disable the usage of strong keys
; Default:
; "RequireStrongKey"=dword:00000001
"RequireStrongKey"=dword:00000000

–jeroen

Posted in *nix, *nix-tools, Power User, samba SMB/CIFS/NMB, Windows, Windows 10, Windows 7, Windows 8, Windows 8.1, Windows 9 | Leave a Comment »

Backing up ZFS snapshots

Posted by jpluimers on 2018/12/06

An interesting idea at [WayBack] I was getting concerned about a backup, which had exceeded 1GB, when the data was only about 400MB. Once the job finished, I realized: Ahh, ZFS compres… – Dan Langille – Google+:

Here’s that script I use for creating/destroy the snaphots for a particular long dataset name. Then I backup from /mnt

[WayBackgist.github.com/dlangille/480dbca509562eb03e76c2e1b576c6d2 is in sh, not even bash.

–jeroen

Read the rest of this entry »

Posted in Development, Power User, Scripting, sh, ZFS | Leave a Comment »

VirusTotal: Avira marks a Delphi built executable als false positive

Posted by jpluimers on 2018/12/06

Found out yesterday that Avira marks one of many Delphi 10.1 built executables as false positive; submitted, but VirusTotal shows it as false positive:

Related:

I think it was Avira too that interfered with my Delphi IDE compiling Delphi applications, especially resource compilation:

–jeroen

Read the rest of this entry »

Posted in Delphi, Development, Security, Software Development | 4 Comments »

listing files with ISO 8601 time stamps on *n*x flavours

Posted by jpluimers on 2018/12/05

A (long!) while ago, I wrote about list date with seconds from ls command – Dev Shed that showed how to list the full ISO timestamp (including seconds) of files.

This is an update.

The previous post showed that you could use this statement to list all files with their full ISO timestamps (and therefore get both the seconds and milliseconds) on (open)SuSE Linux, Mac OS X and Cygwin:

ls -l --time-style=full-iso

What Linux and displaying dates in ISO 8601 format… : Little Green Delusions proposes are two solutions to make this more permanent:

alias ls='ls -l --time-style=long-iso'

or edit one of your profile files (he prefers /etc/profile.local, but that is system wide, so I usually prefer ~/.bash_profile) to add this line:

export TIME_STYLE=long-iso

The thing is: I do not always want to have ls -l show ISO 8601 dates. I like the way that ls-l lists timestamps for very old or future files:                 Read the rest of this entry »

Posted in *nix, Linux, openSuSE, Power User, SuSE Linux | Leave a Comment »

Update NOW! CVE-2018-1002105, with root access. ​Kubernetes’ first major security hole discovered | ZDNet

Posted by jpluimers on 2018/12/04

From [WayBack] ​Kubernetes’ first major security hole discovered | ZDNet in reverse order:

Fortunately, there is a fix, but some of you aren’t going to like it. You must upgrade Kubernetes. Now. Specifically, there are patched version of Kubernetes [WayBackv1.10.11,  [WayBack] v1.11.5, [WayBackv1.12.3, and [WayBackv1.13.0-rc.1.

[WayBack] Red Hat said, “The privilege escalation flaw makes it possible for any user to gain full administrator privileges on any compute node being run in a Kubernetes pod. [WayBackThis is a big deal. Not only can this actor steal sensitive data or inject malicious code, but they can also bring down production applications and services from within an organization’s firewall.”

And the bug, [WayBackCVE-2018-1002105, aka the Kubernetes privilege escalation flaw, is a doozy. It’s a [WayBackCVSS 9.8 critical security hole.

Via [WayBack] ​Kubernetes’ first major security hole discovered | ZDNet – Ondrej Kelle – Google+

–jeroen

Posted in Cloud, Containers, Docker, Infrastructure, Kubernetes (k8n), Power User, Security | Leave a Comment »

Uptime Robot on Twitter: “Sorry all that the API and status pages fluctuated since the last 18 hours. The issue is completely fixed and it is all back to normal now.”

Posted by jpluimers on 2018/12/04

[WayBackUptime Robot on Twitter: “Sorry all that the API and status pages fluctuated since the last 18 hours. The issue is completely fixed and it is all back to normal now.”

[WayBackJeroen Pluimerson Twitter: “Some are still broken, especially the ones with IDs 778601760 778601763 778601765 778601777 778601814 779973649 779677530 779677532 All of them reachable through various ISPs, but UpTimeRobot marks them down since about 11 hours”

See:

Failing:

Edit 20181205

Found out what happened: the IP got blocked on some spam lists. This is odd:

Even though the SMTP server behind it has relay blocked apart from the 2 domains it is primary MX for, somebody found a trick around it, I think by sending mail to the primary domains that

  1. are not caught yet by the installed backlist filters
  2. later bounce when forwarded to their forward address because their blacklist filters are by now more up-to-date,
  3. then the bounce email being flagged as SPAM.

MXTOOLBOX

The trick caused the IP to appear on 3 blacklists according to MXTOOLBOX:

Blacklist Reason TTL ResponseTime
 LISTED CBL 80.100.143.119 was listed  Detail 806 0 Ignore
 LISTED Hostkarma Black 80.100.143.119 was listed  Detail 805 0 Ignore
 LISTED Spamhaus ZEN 80.100.143.119 was listed  Detail 300 281 Ignore

Checking these revealed all to be around CBL:

CBL:

This IP address was detected and listed 6 times in the past 28 days, and 0 times in the past 24 hours. The most recent detection was at Tue Dec 4 02:25:00 2018 UTC +/- 5 minutes

Hostkarma Black:

Your reverse DNS is correct! – snip.xs4all.nl
The IP address for the reverse lookup name matches the original IP – RDNS Information

This is a list from our log files showing the activity from IP address 80.100.143.119. Our system stores information for 4 days.

/ip-log/karma.log.06:black 80.100.143.119 auth-bad ID=79648-15207 X=mxbackup H=snip.xs4all.nl [80.100.143.119]:40353 HELO=[[127.0.0.1]] SN=[M.ASMMSS.06446644586518723606@terrain.gov.harvard.edu] AUTH=[antonio] T=[irena.getheridge2018@outlook.fr] S=[Re: RcPT[(ALERT) | 0644664458]]

Spamhaus ZEN:

80.100.143.119 is not listed in the SBL

80.100.143.119 is not listed in the PBL

80.100.143.119 is listed in the XBL, because it appears in:

dnsbl.spfbl.net

Further research also found an entry in dnsbl.spfbl.net:

Check result of IP 80.100.143.119

This is the rDNS found:

This IP was flagged due to misconfiguration of the e-mail service or the suspicion that there is no MTA at it.

For the delist key can be sent, select the e-mail address responsible for this IP:

  • add a PayPal user’s email for 6.00 BRL.
  • add a PayPal user’s email for 1.50 USD.
  • <abuse@xs4all.nl> qualified.
  • <postmaster@snip.xs4all.nl> qualified.
  • <postmaster@xs4all.nl> qualified.

The rDNS must be registered under your own domain. We do not accept rDNS with third-party domains.

A chicken-and-egg situation here: since snip.xs4all.nl is blocked because of the blacklist entry, I cannot request a validation email for the blacklist entry.

But then there was MultiRBL showing that most DNS black lists are aggregators of others.

jeroen

Read the rest of this entry »

Posted in *nix, DNS, Internet, Monitoring, Power User, Uptimerobot | Leave a Comment »

Mac OS X/MacOS: Capturing yourself in Photo Booth without being mirrored

Posted by jpluimers on 2018/12/04

Quite a while back I wrote [WayBackViewing an USB camera on Mac OS X without mirroring.

I still use the solution Quick Camera mentioned there, but also found a solution that works with the Photo Booth application:

Just made a QTZ to counteract the annoying mirror-image which is considered “normal” in Photo Booth. I borrowed a patch from the “Effect.qtz” which is located inside the Photo Booth.app, and I edited it in Quartz Composer . Please note that this will NOT affect the mirror-image which occurs using other effects; they will STILL be mirror images of your subject.

This patch fixes the preview, photos AND video. This patch fixes the SOURCE of the video, not the resulting output images.

[WayBackUN-MIRROR yourself in Photo Booth – patch | MacRumors Forums

Steps to manually create the Quartz file are at [WayBackCamera question: Why is the camera a mirror effect? | Mac Forums

So I learned about Quarts Composer and composition plugins which are basically a visual programming language:

This is unlike another QC that got killed.

–jeroen

[WayBackpicture-2-png.195665 (1314×897)

Read the rest of this entry »

Posted in Apple, Mac OS X / OS X / MacOS, Power User | Leave a Comment »

« Previous Entries
Next Entries »