This morning Twitter was a fire with people talking about the news that O2 are sending the phone number of a user in the HTTP request headers when browsing from a phone. Some people were upset about this and others were complaining that this is "No big deal". On it's own it might not be but O2 has several 'Self Service' portals on it's website which can be used to gather information about a user. Some items require two factor authentication but once a SMS has been sent an attacker could call and simply ask for the code. Are they prepay or Contract? URL: ...

Someone asked me if I could pull some info about the Managed Hosting sector using DataSift so after crafting the CSDL for the query I recorded 24 hours of tweets & Facebook posts and managed to gather some insights. Most of these facts are not surprising; for example people are still bleating on about 'cloud' as if it were something new and the gender disparity is huge. With that said there are some interesting facts such as the overall sentiment was a meagre 0.18 out of 100 with the lowest and highest sentiment of -20 and +8 respectively. Additionally it would appear that those ...

With the launch of Android-Zenoss.info earlier in the month the Beta testing period started. This morning the new version of Rhybudd - Zenoss for Android was published and can be downloaded from the market. The new version required a total overhaul of the UI, a new home screen, caching to allow 'instant' access, widgets, improved background polling and many other improvements such as; Past 8 hours events count bar graph widget Current Zenoss Event count widget SSL support Dock mode Instant access caching Move to SD support Zenoss Event log management Online ...

At DataSift we in the Operations team rely heavily on Zenoss to monitor and alert us to problems or issues with the platform. As an avid Android user and developer I took the opportunity to make use of the Zenoss 3.1 JSON API and write an Android app that'll allow Operations teams who use Zenoss to interact with their installations using a native app rather than via the web interface on the normal browser. The application is open source: https://github.com/NetworksAreMadeOfString/Rhybudd so people can compile it themselves to make sure that their credentials stay safe or to branch the ...

Our story begins, as these stories often do, with a young up-and-coming politician. He's a deeply religious man and a member of the conservative party. He's completely single-minded and has no regard for the political process. The more power he attains, the more obvious his zealotry and the more aggressive his supporters become. Eventually, his party launches a special project in the name of national security. At first, it's believed to be a search for oil and is pursued without regard to its cost. However, the true goal of this project is power. Complete and total hegemonic domination. ...

Today [03/04/11] I attempted to upload a new app to the Android Market but received a 404. Bemused by this I started to dig a little bit... Visiting https://market.android.com/publish usually redirects via a 302 to https://market.android.com/publish/Home but this returns a 404. I attempted to add an additional /home to the URL and then the page partially loaded; Pulling up Firebug we can see that the CSS and javascript resources are relative; <link rel="stylesheet" href="gwt/client2.css" type="text/css"> <link rel="stylesheet" href="gwt/devsite.css" ...

I recently secured a bargain on Ebay getting a Cisco 5505 Advanced Security Appliance for only £200 which a fry cry from their prices back in late 2008 (~£600) so instantly set about increasing the security of my IPv6 LAN. Most Networks consist of a LAN and a WAN segment, unfortunately due to my previous IPv6 work and the inherant nature of IPv6 the LAN also has public Global Unicast addresses secured via rather crude RRAS filters. To increase the security of the LAN I need a firewall with seperate IPv4 and a IPv6 interfaces and a dual stack LAN interface. interface Vlan1 nameif ...

Looking through one of my smaller 2008 dual IPv4 & IPv6 installations I noticed that in the IPv6 section the FQDN in the name column had artefacts. Weirdness. ...

I'm currently experimenting with embedded systems for use as Airsoft Props (think Capture the Flag, Defuse the IED etc) and after starting off with an Atom mini-itx board (with SSD IDE chip) (£450 prototype) to an ARM based SBC (£325 prototype) I've settled on the Stalker from Seeduino which has an RTC, zigbee chip support, lots of DIO, MicroSD support and more. Best of all the prototypes are now down to around £75 a throw (84% saving!). Unfortunately this saving comes at a cost of a lack of native serial / USB support for writing to the onboard chip. This is easily achievable with a ...

My first dabble with IPv6 was back in late 2008 when I experimented with Dual Stack DHCP in the RC of Windows Server 2008. Now that IPv6 is enabled by default in all of the OS's I use in my home (Fedora, Windows 2008 & Windows 7) I decided to go back and check my traffic graphs and the results surprised me. There was a spike in Oct '08 when I was first experimenting with IPv6 and visiting as many native IPv6 sites as I could and then it tailed off as one would expect. Interestingly the traffic started to pick up again in July of 2009 and in the 2 years of having IPv6 Internet ...