Just my Blog

My very first posting on the Internet can be found at Google

I had the next question:

date: ma 17 aug 1998 00:00 Werkt de AMD K-6 300 Mhz onder RedHat Linux (Kernel 2.0.34) Gr. Pieter

Translated into English:

date: mo 17 aug 1998 00:00 Does a AMD K-6 200 Mhz processor works on RedHat Linux (Kernel 2.0.34) Regards Pieter

After all preventions to get rid of the spam, there are still some ppl who come through the security stuff...

So... what is do now... is just block whole subnets

And to get rid of all spam... I just have to block the subnet 0/0, but if I would do that... you won't be able to read my blog

In one of my first postings I adressed the problems I have with Blog-spam.

So I installed a Captcha module and from now on, you have to take over the code in the captcha picture....


So now I hope... the most spam will be gone

Yesterday I had to go with one of my collegues to Limburg (south of the Nehterlands). We went with one car and I had a UMTS PCMCIA Card with me.


When we went home I started my M$ Windows laptop from the boss and logged in on the Internet using UMTS.


I used PuTTY to login at morpheus and it worked nice and fast...

The next step will be using the UMTS-card on Linux

For a project I had to go to a hospital somewhere in the Netherlands. In the hospital their was someone who was committing fraud and we have to investigate it. One of the data-sets we requested was the mailbox of the suspect person. Usually I have to deal with M$ Exchange server, but now I was very happy... they use the SUN Internet Mailserver from SUN Microsystems

This mail-server is not supported anymore by SUN... but that is not the topic of this post... the mail-server stores it mail in the Maildir way...

A lot of my collegues didn't even now that their was another way of storing e-mail besides the Exchange or Lotus Notes way.

So I had to explain the difference between a Maildir and a mbox.

The company where I work for, got a strict policy regarding applications which are allowed and who are not allowed.

But after some searching around... in the registry I found the settings where the tools dump their data:


And if you login onto the server... you can find the scan results... and remove/modify them!

Another feature which popped up in my mind (for the program System Information Scanner), was the possibility to read a registry file which is not mounted to a running system.

The current versions only allow to read the registry from a mounted registry.

As I had wrote in one of my previous postings, I want to start with MPI-programming.

While I was searching the Internet, I found a webpage on the site of the Indiana University regarding MPI programming.

It was a very basic beginners code... with Hello World, but it was changed to use it on a MPI-environment.



At this moment I am working to get my XEN-environment working

Yesterday I have been to the LinuxworldExpo in the Jaarbeurs in Utrecht (NL).

There were a lot of nice companies. One of the most eye-catching company was CVIS, this company exist at this moment out of 15 people and they want to grow to about 45 people. This company wants to become leading in GRID-computing using Linux.
At this moment they need money to feed their R&D department and they do this with Virtualisation.

LogicaCMG was also in the Linuxworld part... but they were more recruiting people for their Open-Source activities.

But at all... It was again nice to be there...

Tomorrow I am goin to the LinuxWorld Expo in Utrecht, this expo is this year together with the InfoSecurity and the Storage Expo.

I am looking forward to it!

On my sniffing around on the Internet I found a website with a list of lot of Live-CDs for security and pen-tests.

10 Best Security Live CD Distros (Pen-Test, Forensics & Recovery) .

The funniest one is PHLAK (Professional Hacker's Linux Assault Kit)

And again... I have some connection problems (read this and this posting).


So I think I gonna implement SIP-Spoofing.

More to come...

In my thoughts of keeping data save... I had the next idea...


What is actually the idea... we split the key (passphrase) into 3 parts:

• Passphrase in the brain of the user
• Passphrase on a USB-stick (random generated data)
• Passphrase on a HTTPS-server which requires a certificate on the client to allow access to the part of the key (random generated data)

The benefits are:

• They need to torture you to get the passphrase part out of your brain
• They need the fysical USB-Stick... (you can hide it in i.e. a vault)
• You can track the opening of the crypto container by monitoring the HTTPS-server
• you can block the opening of the crypto-container by removing the passphrase on the HTTPS-server
• You can block the opening of the crypto-container by deny access to the client-SSL-cert

So there are a lot of benefits... but there are also a few disadvantages:

• Losing one of the parts of the passphrase... the crypto container will stay close
• You need to be online (on the Internet) for opening the crypto-container, because of the HTTPS-passphrase

But on the other hand... it is a really heavy security solution...

It is not operational yet... but... if I have the proof-of-concept ready... you will read it here...

As I had wrote before, there are some trouble regarding the PPTP client (needed for the ADSL Connection).

Last saturday I switched the cables from the builtin re0 networkcard into the already installed xl0.

The xl-nic had a note 'DMZ', so I used this nic before for the PPTP client of the previous version of the server.

So hopefully the connections stay stable