This is a little ranty, but it’s really pissed me off lately. That’s right. It’s you. The ones with image hotlink protection, and the ones who rewrite URLs to do strange and special SEO things, but who don’t actually think about what happens when you send someone a link to something. (For the uninformed, hotlink protection is that thing where you get sent a link to an image, but the site owner is being draconian, and redirects you to google, because your referer wasn’t their own site, so the image must have been stolen, and put on another webpage (!...

Sometimes you read something on the internet and think “Huh? Really?”. When I read this, I swear, you could almost hear my brain go boggle. When I first started using Java, I remember reading something in the EULA (yes, I read it), about not using it for mission-critical or life-critical circumstances. Something about avionics and nuclear power stations. Specifically “You acknowledge that Licensed Software is not designed or intended for use in the design, construction, operation or maintenance of any nuclear facility....

(If you’ve just read this for the first time today, you should read all of it.) The first meme we’ll discuss is the “Royal Wedding Name”. BOHICA. Again, It seems that some of you aren’t understanding how these things work. The Royal Wedding Name asks for Your grandparent’s name (first name, male or female) Your first pet’s name The name of the street you grew up on. Right, you lot. Stop this now....

When I was growing up, one of the things that particularly interested me about the English language were idioms and proverbs. I think today, whilst many are still suffering the effects of the week, we should look a little more closely at one particular proverb, and perhaps its effective meaning today. “Don’t put all your eggs in one basket” :- This phrase is commonly (and some might say, incorrectly) attributed to Miguel Cervantes (in Don Quixote), but some sources have reported its usage as early as 1600....

Lately, I’ve been playing around with a pair of domain controllers in the office, trying to figure out a good way to implement a domain. See, the problem is, this kind of thing is a “nice-to-have” rather than a core requirement. At least as far as the business directors are concerned. Their argument is something like “It worked fine with just a bunch of PCs connected to a switch”. I do like things manageable, and planned, and certainly now as we’re approaching 50 desktops in the office, plus mobile devices, plus laptops, and FSM knows what else, that there’s a real need for a bit more structure and management....

As I proved in my last blogpost, it’s actually trivial to compromise a facebook account given a very small amount of personal information. After talking to a number of other geeks on Friday night, two things became quite apparent. Facebook security is poor, at best, and the ability to change the user’s contact email address is shocking. Security questions and secret answers are easily exposed by social engineering, thus, these questions only work effectively if you have a completely different identity which you only use for secret questions and answers....

To prove a point about the latest “Pornstar Name” Meme that’s currently going around Twitter. Basically, the meme asks for you to tweet your Pornstar name which is comprised of the name of your first pet, and your mother’s maiden name. I’m furious about this. Those two names are the two most common answers to security questions found on a number of websites. So. A theory: “Given just a user’s facebook name, and their Pornstar name, it should be possible to compromise their facebook account”....

About a week ago, my good friend @Moof asked the question “Is there a website out there monitoring if countries currently in revolt have full connections to the internet? Is eg Bahrain disconnected?” I thought this sounded like a challenge too good to pass up, and set about coming up with a way to figure out how we could programattically determine the state of a country’s internet. I’ve lately come up against the problem that when faced with a new idea, the hardest problem is getting it created, and working fast enough to ensure that your idea isn’t stolen by another like-minded individual....

One of the things I’m massively fond of when it comes to systems administration, is logging and monitoring. I love munin, and still prefer it over Cacti and Zabbix. I think the main reason is that it allows plugins to be configured with absolutely no browser interaction. Creating a new graph on cacti and zabbix both require a considerable number of clicks. It’s easy to install new munin plugins with things like Puppet....

After answering this question, I reconsidered my answer a number of times, and I’ve finally decided to rewrite it as a longer version as a blog/essay on my website. One of my fellow sysadmin types on Serverfault wrote an answer from a blog-post, and I intend to do the opposite. Right. I see a lot of questions which are basically, “I want my blog/social network/niche site/new product launch site to handle a whole bunch of traffic, how do I do it?...