March 10, 2007 by Stephen.

This Blog has moved. Please our new site at www.sinoclip.com/blog (www.sharemsg.com and www.sharemsg.net are also ok. They will forward the traffic) . Thanks for 1and1’s technical support to export the WordPress Database for me.

1and1blog-themes_wordPressBased

1and1blog-plugins_wordPressBased
It was a hard decision for me to move my blog from 1and1 Blog since it got 13 beautiful schemes in different colors to choose from with different key visuals. It is excellent for starters.

Posted in - ShareMsg - Chinese, Miko & Stephen - New York, Tech - BackTrack2, - Music - Corinne Bailey Rae, - Music - Five For Fighting, ***Our Guestbook, - Music *All Music/Lyric/TV*, - ShareMsg - Buddhism, - Share Deals - Current, Miko & Stephen's Diary | No Comments »

March 5, 2007 by Stephen.

Just use <⁄br>
Not the followings:

• <⁄br><⁄br> ……will create 2 lines instead of one empty line if that’s what you one.
• <⁄br> <⁄br>…..should not have an empty space in between
• <⁄BR>………….Never use upper cases in xhtml (or you will get element “BR” undefined error)
• Never use upper cases in xhtml

Preference:

Math Symbols in HTML:

• http://barzilai.org/math_sym.htm
• http://htmlhelp.com/reference/html40/entities/symbols.html

My website sinofab.com passed the w3.org validation for xhtml 1.0 (click here to see the validation result)

For zencart shopping cart, if you want to add empty line for xhtml 1.0 , use the following:

Posted in Tech - zencart, Tech - Web Design, Technical Reference - All | 1 Comment »

February 23, 2007 by Stephen.

This article shows how easy a hacker could use ARP SPOOFING to get your network information and what you are doing….and how:

ARP (Address Resolution Protocol) can be ran on your network by attackers to make their systems appear to be on your network. When the MAC (media access control) address mapping - ARP tables are hijacked and being changed, the information between your computers in your network can be hijacked as well because they thought your machine was trusted. It’s called a Man-in-the-middle (MITM) attack.

Spoofed ARP replies can be sent to a switch very quickly, which can crash an Ethernet swithc or (hopefully) make it revert to broadcast mode, which is a hub. then an attacker can sniff every packet going through the switch without bothering with ARP spoofing.

Cain and Abel (www.oxid.it/cain.html) - Free, analysis, ARP poisoning, VOIP capture/replay, password cracking, and more.

Read the rest of this entry »

Posted in Tech - Network Security, Tech - System Administration, Technical Reference - All | 1 Comment »

February 17, 2007 by Stephen.

Wildpackets EtherPeek (www.wildpackets.com/products/etherpeek/overview)

TamoSoft’s CommView (www.tamos.com/products/commview) and Sunbelt Software’s LanHound ( www.sunbelt-software.com/lanhound.cfm).

Cain and Abel (www.oxid.it/cain.html) - Free, analysis, ARP poisoning, VOIP capture/replay, password cracking, and more.

Ethereal (www.ethereal.com) - free.available on Windows and UNIX. Very good considering it’s free. (or go to http://www.download.com/3120-20_4-0.html?tg=dl-20&qt=ethereal&tag=srch)
ettercap (ettercap.sourceforge.net) - available on Windows and UNIX

FIREWALL RULES

1. Netcat:(http://www.vulnwatch.org/netcat/)

example: to check if the firewall allows port 23 (telnet)

nc -l -p 23 cmd.exe

nc -v ip_address 23

2. Traffic IQ Pro by Karalon (www.karalon.com)

- With 2 NIC card between internal segment and the DMZ zone. By Generate generic and /or malicious traffic see if the firewall is doing what it syas it’s doing.

3. Firewalk (packetfactory.net/firewalk) for the UNIX platform.

COUNTERMEASURES against FIREWALL attacks:

1. limit traffic to what’s needed

2. Block ICMP to help prevent abuse from some automated tools, such as firewalk.

3. Enable stateful packet inspection on the firewall, if you can. It can block unsolicited requests.

• 
  List of TCP and UDP port numbers

Posted in Tech - Network Security, Tech - System Administration, Technical Reference - All | No Comments »

February 13, 2007 by Stephen.

Q:How to setup LAN/NETWORK Connection if I run BackTrack2 on a CD with VMWARE?

A: If you want the easiest way to fix it, change the network setting to bridged connection before boot. But this option won’t give you a seperate IP.

For the advanced solution, use NAT connection in the setting before boot. Use ifconfig -a or netstat -a to see if the ethernet card is registered. If it is, then you could use dhcpcd eth0, depending on wich network card, you use ;If you don’t know, start at 0,1,2 and so on.) Or do it manually:

ifconfig eth0 192.168.1.34/24
(Give this command twice if it tells you it can’t set an IP address)
route add default gw 192.168.1.254
echo nameserver 192.168.1.1 > /etc/resolv.conf

Where 192.168.1.34 is the IP address you want, 192.168.1.254 is the default gateway and 192.168.1.1 is your dns server

or

ifconfig ath0 down
ifconfig ath0 hw ether [new MAC adress]
ifconfig ath0 up

Our weblog is Free 1and1 Weblog provided by 1 and 1 Hosting (1and1.com):

Posted in Tech - BackTrack2, Tech - System Administration, Technical Reference - All | 1 Comment »

January 26, 2007 by Stephen.

Microsoft MCTS
SQL Server 2005
Implementation and Maintenance Study Guide
(Exam 70-431)

ISBN: 0-470-02565-4

================================================================

Chapter 6

page 207.

It won’t work unless that user RosmanD is in “Administrators” Group and you login locally to the machine as RosmanD; Otherwise, you will get the error ” The specified schema name “dbo” either does not exist……” (This is only the workaround. You will learn how to do it in a better way later from the book. )

page 209

“select * from authors” should be ->  select * from person.address

Posted in Tech - Database Admin., Technical Reference - All | No Comments »

January 2, 2007 by Stephen.

Virtual Network Computing, VNC for short, is a remote control software which allows you to control your computer remotely.

VNC is a client-server application. The server is the program on the machine that shares its screen, and the client (or viewer) is the program that watches and interacts with the server.

I work with my macintosh most of the time. There are times when I prefer to bring the laptop to the couch, another room, or even worse, the toilet.

Sometimes, I wish to do something on my Windows or Linux (Desktop) but too lazy to stand up and walk to the computer room. VNC is the solution. This time I’m going to share my experience with VNC.

I installed the free version of the RealVNC Server on my Windows computer. The free version is good enough for me, but if you want you can look at the comparison between Free, Personal and Enterprise Edition.

There is also a enhanced version of VNC, which includes many new features, improvements, optimizations and bugfixes called Tight VNC. But RealVNC works for me, so I might give TightVNC in the future.

Now that the server is running, I need to use the client to view my Windows Desktop from mac. Introducing Chicken of the VNC, free VNC client for Mac OS X.

Connecting is easy, just enter the server IP address and password. Now you can view your Windows Desktop from a remote location. You can also connect from across the internet.

Now, what if you want to connect to your Mac OS X from another computer? You can use OSXvnc. It’s a free VNC server for Mac OS X.

(http://wpram.com/log/2005/05/01/vnc_for_mac_os/)

Posted in Tech - Apple Mac, Technical Reference - All | No Comments »

January 2, 2007 by admin.

and what are IBM RUP (Rational Unified Process) and SDLC (System Development Life Cycle)?

RUP is a product of Rational Corporation (recently IBM) and is a much more detailed process “guide” so to speak. RUP is basically a set of artifacts (with templates) that one should pick a suitable mix for a particular project. Also, RUP is meant to be an iterative process — something which the SDLC doesn’t talk about at all.

The SDLC is a general notion of the phases required for developing software:

1. System/Information Engineering and Modeling
2. Software Requirements Analysis
3. Systems Analysis and Design
4. Code Generation
5. Testing
6. Maintenance

Following are the basic popular models used by many software development firms.

a) System Development Life Cycle (SDLC) Model
b) Prototyping Model
c) Rapid Application Development Model
d) Component Assembly Model
e) RUP

Posted in Tech - Software Development, Technical Reference - All | No Comments »

November 23, 2006 by Stephen.

More doesn’t always equal better. Instead of copying and pasting a long list of URLs to update each time you publish an entry to the blog, you should choose the websites carefully and make sure they are in alignment with the topic of your website.

Some update services specialize in popular news, others work with science related websites, some are in a completely different language. Each will have their own guidelines on which blogs should update them and how.

You can find some general update services that you can notify each time you update your blog. Be careful not to spam them, only notify them whenever you publish new content to your blog, otherwise your blog be permanently banned.

Here are the ones that I validated and have quicker response so you will update your new blog/weblog successfully:

http://rpc.pingomatic.com/
http://services.newsgator.com/ngws/xmlrpcping.aspx
http://api.moreover.com/RPC2
http://api.moreover.com/ping
http://api.my.yahoo.com/RPC2
http://api.my.yahoo.com/rss/ping
http://blogsearch.google.com/ping/RPC2
http://ping.syndic8.com/xmlrpc.php
http://rpc.weblogs.com/RPC2

Better yet:

Do it manually so you won’t be banned and you could save your blog faster:

(Don’t refresh this page after you submit because you don’t want to be banned by the website thinking you are spamming) http://pingomatic.com/

Most people use Ping-o-Matic (http://pingomatic.com/) which, with just one “ping” from you, will let many other services know that you’ve updated. As for why, Ping-O-Matic puts it best (http://codex.wordpress.org/Update_Services)

Our weblog is Free 1and1 Weblog provided by 1 and 1 Hosting (1and1.com):

Posted in Tech - Web Design, Technical Reference - All | No Comments »

April 8, 2006 by admin.

Posted in Tech - System Administration, Technical Reference - All | No Comments »