EMAIL 419 SCAM – Free World Cup 2014 tickets

A new variant of the 419 scam uses both monetary amounts and Free World Cup 2014 finals tickets to lure individuals in revealing bank account and other sensitive information.  These spammed emails should be deleted.

http://blog.malwarebytes.org/fraud-scam/2014/04/world-cup-2014-cash-prize-tickets-email-is-a-419-scam/

QUOTE; From the spam traps: a World Cup 2014 419 missive, with a wonderfully enlightening subject line: “gkxzhlfgjs‏”.  This is, of course, complete nonsense and if you see one of these in your Inbox feel free to send it straight to the trash. You won’t receive free tickets, or a cash prize or anything else for that matter – all they want is the money in your bank account and they’ll spin out any set of lies required to get their hands on it.  It reads:

Dear Email User, We wish to inform you that your email address was generated during the announcement of the Brazil 2014 world cup kick-off days and time for the world cup finals in Brazil and won GBP 3000.000.00,Three Million Pounds CASH plus 2 tickets to watch the opening match to take place in Sao Paulo on June 12 2014 at 5pm local time and the final, on July 13 2014, at the iconic Maracana stadium (in Rio de Janeiro), at 4pm local time. The notification was send to you because your email address is active online and your reference number is Brazil912/2014. this was in conjunction with the South African LOC Team (Local Organizing Committee) FIFA2010 and Brazilian LOC (Local Organizing Committee) Team FIFA2014.

HeartBleed Open SSL vulnerability – How to test using NMAP

The ISC shares techniques for testing vulnerable Open SSL sites using NMAP, which is an excellent free PENTEST tool used in network vulnerability testing

https://isc.sans.edu/forums/diary/Testing+your+website+for+the+heartbleed+vulnerability+with+nmap/17991

QUOTE: We have received reports by many readers about buggy tools to test for the heartbleed vulnerability. Today I want to show you how easy it is to check for this vulnerability using a reliable tool as nmap.  You just need to trigger a version scan (-sV) along with the script (ssl-heartbleed). The following example with show a command that will scan 192.168.0.107 for this bug:  nmap -sV 192.168.0.107 –script=ssl-heartbleed

Sant Jordi : El Libro y la Rosa

By peplluis

Estoy seguro de que todos conocéis la fiesta del Libro y la Rosa, para los que somos tecquis… quizás se nos antoja raro, raro, leer libros que no sean de tecnología, también estoy casi seguro de que tu chica no va a regalarte ningún libro de esos J estate tranquilo pues no te vas a quedar con las ganas!


Durante el próximo 24 y 25 de abril todos los que queráis “hojear” literatura técnica, tendréis la oportunidad de acceder gratuitamente a los libros de ediciones eni. Creo que es una buena forma de conocerlos, a lo sumo cuando además están cumpliendo 15 años!


www.ediciones-eni.com/librosgratis


O sea que Felicidades!


Saludos,
PepLluis,


Working with Server Core–Domain join

By RichardSiddaway

Windows Server can be installed in two ways – full fat GUI or Server Core. The latter is Windows without Windows. The GUI components are stripped off and you’re just left with the core components. This results in a smaller server – I’ve got 2 machines running in my Hyper-V test environment. Both are set to use dynamic memory with 512MB startup RAM. The full GUI machine needs 1126MB while the Server Core version needs 566MB.

With Server Core all you get is a prompt for administration – unfortunately its cmd.exe but typing powershell starts PowerShell – including running a profile.

Without a GUI you need to use the command line to do everything – I’ll be doing my demos at the PowerShell Summit from Server Core machines so some things will have to wait until after then – and I’m going to do a series on posts on administering Server Core machines.

I’ve already shown you how to test if your machine is activated. This how you join it to the domain.

Make sure that the IP and DNS server addresses have been set so the machine can find a domain controller.

$cred = Get-Credential
Add-Computer -Credential $cred -DomainName sphinx -Restart

Create a credential for the account that can join the machine to the domain. use Add-Computer and supply the credential and domain name. The –ReStart parameter forces a restart post domain join.

if you want to see the results of calling Add-Computer then drop the restart switch and use Restart-Computer whenever you want the restart to happen

How to Add or Remove Libraries Desktop Icon in Windows 8 and 8.1

Libraries are collections where you can get to all your documents, music, pictures, and other files in one single place. In some ways, a library works like a folder: you can use it to browse and sort files. But unlike a folder, a library gathers files that are stored in several locations. This is a subtle, but important, difference. Libraries don’t actually store your items. They pull from included folders that contain your items, and let you access and arrange the items in different ways. For example, if you have music files in folders on your PC, a shared folder on your network or homegroup, and/or on an external drive, you can include these folders in your Music library so that you can access all of your music files from your Music library.

This tutorial will show you how to add or remove a Libraries desktop icon for only your user account in Windows 8 and Windows 8.1.

Read more…

Subnets and prefixes

By RichardSiddaway

Sounds a bit like an old time role playing game but is actually a useful piece of knowledge.

You can define a subnet mask in 2 ways. Either use the full mask e.g. 255.255.248.0 or define the number of bits in the mask e.gg 21 which is known as the prefixlength in the PowerShell networking cmdlets.

But can you relate a full subnet mask to the number of bits. Some are obvious but the others I need to work out.

Time for a quick PowerShell function:

function show-subnetmask{
foreach ($prefixlength in 8..30) {

switch ($prefixlength){
{$_ -gt 24}
{
$bin = (’1′ * ($prefixlength – 24)).PadRight(8, ’0′)
$o4 = [convert]::ToInt32($bin.Trim(),2)

$mask = “255.255.255.$o4″
break
}

{$_ -eq 24}
{
$mask = ’255.255.255.0′
break
}

{$_ -gt 16 -and $_ -lt 24}
{
$bin = (’1′ * ($prefixlength – 16)).PadRight(8, ’0′)
$o3 = [convert]::ToInt32($bin.Trim(),2)

$mask = “255.255.$o3.0″
break
}

{$_ -eq 16}
{
$mask = ’255.255.0.0′
break
}

{$_ -gt 8 -and $_ -lt 16}
{
$bin = (’1′ * ($prefixlength – 8)).PadRight(8, ’0′)
$o2 = [convert]::ToInt32($bin.Trim(),2)

$mask = “255.$o2.0.0″
break
}

{$_ -eq 8}
{
$mask = ’255.0.0.0′
break
}
default
{
$mask = ’0.0.0.0′
}
}


New-Object -TypeName psobject -Property @{
PrefixLength = $prefixlength
Subnetmask = $mask
}
}
}

Most people will be using subnets between 8 and 30 bits in length so start with that range and for each value work through the switch statement. If the value is 8,16 or 24 the subnet mask can be set directly. Otherwise it needs to be calculated. The calculations are the same – the difference is which octet of the subnet mask is affected.

For instance if the prefix length is between 16 and 24 (exclusive)

$bin = (’1′ * ($prefixlength – 16)).PadRight(8, ’0′)
$o3 = [convert]::ToInt32($bin.Trim(),2)

$mask = “255.255.$o3.0″
break

Convert the number to a binary representation – the amount you need to subtract depends on the octet with which you are working

Convert the binary to an integer and insert into the subnet mask string.

An object is output that has the subnet mask and prefix length as properties.

Put the function in a module on your module path and you’ll be able to use it as a quick lookup when you need to convert subnet masks to prefix lengths or vice versa

Aplicaciones Dinámicas en Node.js

By lopez

El año pasado participé de la competición Node.js Knockout organizada por Nodejitsu. Fueron dos días de programación (sábado y domingo), enviando código a sus servidores. Trabajé solo (en general se trabaja en equipos), en el Solo Ninja team. Mi idea era empujarme a escribir algo que tenía pendiente. Mi proyecto, en gran parte escrito siguiendo el flujo de TDD, trata de definir una o más aplicaciones, en forma interactiva. Cada aplicación puede tener una o más entidades. Cada entidad tiene propiedades, como campos de texto, o imágenes, enlaces, etc. Tengo que agregar relaciones uno a varios entre entidades.

Pueden ver mi presentación en video para los jueces en:

http://youtube.com/watch?v=GQdyyNWCasI

(Please visit the site to view this media)

Despues de la competición, publiqué el código en mi cuenta de GitHub:

https://github.com/ajlopez/MyApps

Me parece interesante esto de explorar el definir dinámicamente una aplicación, en lugar de escribirla manualmente o de generar código para un modelo. En otros años pasados, yo sería más excéptico, pero lenguajes dinámicos como JavaScript son muy poderosos y flexibles. Y combinado con Node.js, es un dúo imparable para ayudar en la implementación de este tipo de aplicaciones. Quiero extender estas ideas para generar clientes no sólo web, sino mobile (primer paso, usar Phonegap), y quizás aplicaciones nativas que sepan interpretar la definición de una aplicación. Me imagino agregando también algo de código definible por el usuario en algunos puntos de extensión. Estoy estudiando Force, de Salesforce, y las semanas pasadas estuve viendo el modelo de aplicaciones de SharePoint online. Algunas ideas, entonces:

- Agregar tareas escritas en lenguaje de programación (un JavaScript controlado, digamos)
- Más programas cliente, que tomen una aplicación (definida simplemente, por ejemplo en un JSON), y la ejecuten para web, mobile, nativo, etc.
- Tener application stores, públicas y privadas
- Poder instalar para nuestra aplicacion o sitio de aplicaciones, aplicaciones de otros

Tengo también “in-pectore” una implementación más sencilla de lo que era Hypercard, pero eso es tema para otro post.

Esta noche el mundo, Pinky! ;-)

Nos leemos!

Angel “Java” Lopez
http://www.ajlopez.com
http://twitter.com/ajlopez

Remove “New” Apps Installed Message on Start and Apps Screen in Windows 8.1

When you install new modern apps from the Store or desktop apps in Windows 8.1 and Windows 8.1 Update, the new apps will have a NEW message on it’s tile on the Apps view screen to let you know that it’s a new app.

When you install new modern apps from the Store in Windows 8.1 Update, you will also have a “# new apps installed” message in the lower left corner of your Start screen pointing you to the Apps view screen so you can see what you recently installed.

This tutorial will show you how to remove the “NEW” and “New apps installed” messages on your Start and Apps screens when you install new apps in Windows 8.1 and Windows 8.1 Update.

Read more…

SpywareBlaster Database Update -April 18, 2014

By Don

14 Internet Explorer
24 Restricted Sites
0 Firefox

16871 items in database

http://www.brightfort.com/downloads.html


9 years after…

By rui This has been a long journey so far… And what a ride! Today is the 9th anniversary of the “subject: exchange” blog. So many good things happened throughout the years, such has being nominated MVP from 2005 to 2008, the year I took the “red pill” (or blue) and joined Microsoft. The first “Weekend reading” post happened a little while after the blog creation, it dates 04/29/2005. I plan to keep blogging for many, many years, as long as it fulfills me and gives me fun. Thank you for being a reader….(read more)

Recent Comments