WordPress Security

Bank vault doorI run a gaggle of WordPress blogs, both for personal reasons and for work reasons. My SupportPress site runs on WordPress.org and the host I’ve been using all along, iPage sent me an email informing me that they have detected a botnet-sourced cyberattack directed at the login pages of WordPress.org installations. They also informed all their customers that they have installed network limits on these attacks, but that even though the attacks have been greatly reduced, that it shouldn’t lead to a flagging of security vigilance.

No time like the present to get things installed on all my WordPress blogs. The first thing I can think of since all my passwords are 16 to 20 characters long, randomized, stored for me in 1Password, and stored in such a way that even I don’t know them – is to install a plugin called Limit Login Attempts to all the WordPress blogs I manage. This will prevent people from screwing up their login attempts and it will email me when they try. So far this blog is covered and I don’t really expect any problems here.

Thanks to social networking, especially Twitter and my good friend @wyrdsmyth, and my hosting provider iPage I have been protected all along. More security is usually a good thing and in this case, warranted with this extra plugin. Next stop are all the other blogs I manage.

photo by: walla2chick

e-Cycle and Gas Station Sushi

Used 1985 Cadillac EldoradoI sent three old iPhone 4’s to e-Cycle for recycling, they had a relatively good buy-back rate for the old devices. Of the three that I sent, only one was accepted. The other two were shredded and I got nothing for them, other than the vague satisfaction that the hazardous materials in them were recycled, probably.

I can’t really blame the company, it’s all there in black and white. Don’t send phones with active lines on them. Oops, that was my fault, but after hearing that they had this problem I thought I could just go into Verizon’s site and mark the lines as suspended. That didn’t do the trick. So the phones were summarily destroyed and recycled. I think that’s the part I don’t get, the rush to obliteration. Then again, I do get it, it’s a company trying to maximize all their angles and this is a rather convenient angle. It strikes me that they could have simply shipped the phones back to me or perhaps told me that my attempt at suspend didn’t work. Instead, they took the silent and cheap way out – shred the phones and mark the Unit Price as $0.00.

So, do I do business with e-Cycle in the future? I don’t know. I have learned my lesson at least, a phone you haven’t used in six months may still have a line on it. I don’t think I’ll be doing any further business with e-Cycle. It’s not because of anything overtly naughty, but just the sense that they didn’t care to even get back to me after I tried to disconnect the lines – that haste to simply shred and zero-balance fills me with doubt as to whether I got a fair shake on that deal, or not. I’m thinking not. While it wasn’t against any of the fine print, it did leave a rather bitter taste in my mouth, and I did learn a lot dealing with them, so perhaps in the end, it was good for everyone. I got a lesson, they lost a customer, and I’m wiser next time.

Now, to see if e-Cycle has any competitors.

UPDATE: They do have competitors, so at least there is a wide field available. Also turns out that the reports of the devices shredding were perhaps premature. They were found in a box, waiting for Verizon to disconnect them, since I sent that little nugget to Verizon today, it may take a bit for those devices to register as disconnected. I’ll update more as events unfold.

The Troll Takes The Toll

I’ve held true to the concept that all outsider groups need to pay an admission in order to enter mainstream society. Germans, Japanese, the worthless Irish… They all needed to pay to play. From “No *** need apply” to forced internment camps all the way to dying of malaria while building a canal. Each group gets the short end of the pointy stick before they are admitted. A group that doesn’t pay never really earns it. Sometimes the payment is made in lives, sometimes it’s violent and is paid with blood, but always it is paid.

What about gay equality? Not just marriage, but that is a part of it. All are equal under the law. At least that’s the goal. But what I want to know is what is the price for this goal? I mean, did we bleed enough in the Halocaust (gays got it just like the Jews), how about the Stonewall Riots? We have adorable parades where we dress up and entertain everybody with our harmless antics, but is that payment enough? How much to be taken seriously. How much is that respect, in the window, the one with the consequential tail?

Perhaps this is the first time when we can pay using a more refined and evolved currency. Not being segregated, special bus seats, separate but equal *amenities*… Something classier, more stylish, more bitchy? Here’s a capital idea, come out of the closet. Announce your true self to everyone and damn the torpedoes of bigotry and ignorance, full speed ahead! If everyone came out who was gay, gay wouldn’t be so much of a big deal. Perhaps we could be as plain and uninteresting as to lose the word gay altogether and we can hand it back to Christmas where it belongs. There is nothing special about us, were plain folk who do plain things. We’re just picky about dangly bits.

These red equality symbols have a great meaning and I’m plugging in more meaning than probably was intended, so, deal with it. The extended meaning is this, once you pull the skin off anyone, no matter if they are a man, a woman, an Asian, a black, or a gay man or lesbian you have the exact same thing each and every time. A bloody screaming mess that looks indistinguishable from any other bloody screaming mess. Deep down, skinless, aren’t we all the same? Aren’t we all bloody screaming messes? So with that inspiration, what is different about getting any service rendered that other people can take advantage of? Think of it this way, with our skins on we don’t make such a mess, we don’t scream in agony, and we’re just like everyone else. Its better if you just let us lead our lives — skin-on.

This comparison is at the heart of the sadness and ineffable ignorance that is bigotry. Why does it bother bigots so much? It bothers bigots because they are in a fight-to-the-death battle with their mirrors. What is gay marriage to you? Why is it so important that we have to fight over it, that we have to have the highest court in the land decide on it? Look in the mirror and see your enemy. That which you hate you see when you look in the mirror. Once the bigots understand their fight is with a mirror, everything else becomes thoughtlessly simple, obvious in fact. Embarrassingly so.

Burning Sage

Holy Pickled Pomegranate Batman !I just received my invitation to attend Sage Summit 2013 in Washington, DC from July 23rd to the 26th at Gaylord National Hotel and Resort.

Since Sage dropped the hot potatoes it was juggling, this yearly pilgrimage is now utterly laughable and irrelevant. Not only will I not go to Washington, DC in the pit of Summer but I will definitely not be going to another Gaylord property. Those “resorts”, especially the abomination in Nashville Tennessee is a crime against humanity and an insult against nature.

My “most favored thing” today that I will do is to click the Unsubscribe button to all Sage communications. My interest drops like wet trousers around the ankles of my professional disgust. Tootles!

photo by: recubejim

Crumbling

End of a BridgeSince I had all the Twitter traffic from @MichiganDOT and @MDOT_Southwest automatically sent to my phone via SMS I’ve been able to catch various things that they post on their Twitter stream. One of those things is a political advertisement from Michigan farmers and their campaign “Just Fix The Roads”.

I stand behind the farmers for improved maintenance of our roads and I certainly support Michigan DOT in their efforts to raise awareness of our crumbling infrastructure problem. Every day I have to dodge potholes, wide cracks, poor drainage, and bridges that I really don’t trust completely. Every day I cross many bridges, across train tracks, across the Kalamazoo River, those sorts, and I have faith, weak as it is, that my trips across the bridges and over these roads won’t put me in danger. It’s faith, have to have it that way because our infrastructure has been ignored for so very long that what once was new and strong is now weak and crumbling.

After watching that video on YouTube, I can’t help but think back to around 2003 when we, as a nation, decided that declaring war on Iraq and Afghanistan was a really great idea. Back then it was before the housing bubble broke and before the criminal banks were unmasked for being as corrupt as we eventually discovered – and we thought two unfunded wars would be just neat as hell. Well, now that we have made our bed, it is time to sleep in it. I sympathize with the Michigan farmers, and I certainly support infrastructure repair, but what money do any of us plan to assign to such an expensive endeavor? It’s going to take a whole lot of cash to do correctly what must be done. Where will that money come from? The Federal Government can’t help – they just beat out the sequester, the federal budget is a rotten mess, congress is idle, filled with backbiting idle celebrities behaving poorly. So it’s up to the state to fix it’s roads, again, where is the money?

So this is what two unfunded wars get us. Awesome cosmic military powers come at a cost and surprise! This is what many of us on the left were trying to say while the right was busy getting it’s patriotic on. There is a lot of blame to go around, most certainly, but in the end it does the rest of us no good. Not only do the farmers struggle with our crumbling roads, but also the rest of us who have no choice but to dare the paths that Michigan calls roads and to dare our rusted out bridges. It was going to be expensive before the unfunded wars, now it might actually kill us. Either the roads will kill us (slowly, by a billion paper cuts) or financial apocalypse will because we’ve saddled our government with prosecuting wars when we should have been directing them to work on internal matters, like roads.

So, feel good about our proud military. They’ll have the funds and resources to do their job. Their incredibly important, more-important-than-everything-else job in Iraq and Afghanistan. Feel good, wrap yourself up in the flag, and be the proudest chief patriot when the bridge your car was on failed, the roadway crumbled and you ended up with the front-end of your very expensive SUV stuck in the mire of the filthy Kalamazoo River.

photo by: Kecko

Rather Than Fix The CFAA, House Judiciary Committee Planning To Make It Worse… Way Worse | Techdirt

Rather Than Fix The CFAA, House Judiciary Committee Planning To Make It Worse… Way Worse | Techdirt.

This is wretched and wrong. The TL;DR here is that there is a law already on the books called the Computer Fraud And Abuse Act and this bill is seeking to amend the law on the books and take it in very wrong and upsetting new directions. One of the biggest things that I spotted on that really has me upset is the redefinition of talking about an offense as equal to actually completing that offense. If you say you are going to do something that breaks this law, save your bus fare, you’re already guilty of committing the crime! The other part is even more insidious and that is even if you are given authorization to access a machine, if you use it for a different purpose, then the authorization is void and you are committing a crime.

This makes my work more complicated. Now I have to be careful about what I say, as this bill, if passed would curtail my first amendment rights to free speech and then that second bit would legally prevent me from noticing anything else wrong with a computer if I was just fixing something adjacent or unrelated to the original problem.

What a mess. Encourage your congress-critter to vote no on this bill!

Warp and Weft

Welcome to Rock Hill, South Carolina, I-77 NorthboundMondays are always the same. Doubly this way after my week long vacation in Rock Hill, SC to see family. Work just piles up because I ignore it. This was the first vacation in a rather long while when I went for almost all of it without having to think about work, so it ended up being a true vacation. I so rarely get them, I hardly know what to do when they happen this way. There was something wonderful about coming back from a long time away into a weekend as well. It let me get a grip on the daily flow much easier than if we got back late on Sunday and then dived headlong into the week after that. Those sorts of times feel too rushed.

That being said, I can’t really get rah-rah about traveling again for a while. Going places and doing things is fun of course, but there is a distinct part of me that values some time to just not do anything. A day reading, or catching up on my news, or something like that. Puttering about the house – not having to drive somewhere, buy something, do stuff, sometimes that just bothers me.

These next few weeks will be rough and tumble, at least financially. But I can make it, one step at a time if I’m careful.

photo by: Ken Lund

Goodbye Notify!

I subscribed to the Notify service from the Weather Channel. It was cheap and easy and kept me alerted to weather issues. They just sent me my “FINAL NOTICE” at 12:23am last night because my work credit card was replaced and they couldn’t auto-bill me. Then at 12:24am they sent me another email telling me that my account was cancelled.

I’ve been lazy about deciding whether to keep or kill this service. It’s more annoying than useful and now that there are apps galore that alert you over the phone, something like this is just a waste of money.

I think I’ll let the entire thing just lapse. They have cancelled my account, let it rot where it dropped. Feh.

How To Let Go Of Anger

I discovered this bit of wisdom in the dimly lit corners of my pocket list. Enjoy.

“Anger is like a storm rising up from the bottom of your consciousness. When you feel it coming, turn your focus to your breath. Breathe in deeply to bring your mind home to your body. Then look at, or think of, the person triggering this emotion: With mindfulness, you can see that she is unhappy, that she is suffering. You can see her wrong perceptions. You can see that she is not beautiful when she says things that are unkind. You can also see that you don’t want to be like her. You’ll feel motivated by a desire to say or do something nice — to help the other person suffer less. This means compassionate energy has been born in your heart. And when compassion appears, anger is deleted.”

— Thich Nhat Hanh, Buddhist monk and author of Anger: Wisdom for Cooling the Flames

God I Wish… Ah!

Apple Inc.At work I’ve been thinking about a particular system administration subject on and off for a few days now. When Mac is first installed all the “Optional Sharing Services” are all shipped defaulted to off, which makes sense and is fine. Generally speaking I’ve been fine with using Apple Remote Desktop to share the workstation, open System Preferences, and turning on whatever sharing bits I need to have on for the client workstations and that’s that. However that’s not really that elegant and I’ve been looking for a way to programmatically do it on the command line. As it is, Apple Remote Desktop can send Unix commands to connected workstations. All my client workstations are assembled in a neat little pile on my Apple Remote Desktop screen, as easy as you please. How can I turn on or off these Sharing services without having to upset the user. Ideally I want to turn these on without even sharing their workstation, to in a way, do it under the covers.

Enter the command systemsetup. G’duh. There’s even a handy-dandy template in Apple Remote Desktop that I’ve overlooked all these years that even has the details of the options laid out. So, in Apple Remote Desktop, select the stations you want to change, click the UNIX button, in there select the right template, change the user to root and send the command. Moments later, and in this case, SSH is up and running on the client workstation as easy as you please. Boom. No futzing with sharing workstations, no mucking about with System Preferences. Just simple, easy, like I knew had to exist. Now I know how.

This is actually the way I prefer to learn these things. This was something I sussed out, so it’s worth more than if I just spotted it in some bit of documentation. It took time and energy and it’s mine. The solution is worth something to me, and so I blog about it so I can celebrate Mac OSX and keep a little log in case I forget in the future. It’ll always be here.

Hooray for Mac OSX!

photo by: marcopako 