While still not completely finished, I love the lively effect the jQuery animation gives the menu at the top of this page. One day I’ll get around to sorting out the images, but for now, it’s a good start.

A friend of mine pointed me to a cool script that’s helped me combat dictionary attacks on my server.  I guess I’d really never paid that much attention, but once I started seeking out attempted break ins to my box from various names and hosts, I knew I had to do something.

In came DenyHosts, which is a daemon that monitors your log file.  You can tweak the config file to your liking, but basically it works like this.

Any and every attempted ssh get logged in /var/log/secure file and every ftp gets placed in /var/log/messages file…DenyHosts monitors these log files.  If user “hacker” tries to log in via ssh to your box more than the amount of times you specify in your configuration file, the Ip they attempt to log in from gets automatically added to the /etc/hosts.deny file.

My current configuration is set to ban “ALL” access to my machine from any Ip that incorrectly specifies a user name/password combo 5 times.  I could be more strict than that, but for now it works quite well.

Unlike a dynamic Ip, which changes from time to time, a static Ip defines me…and my box.  It never changes.  So, it’s up to me and my firewall/security to thwart attacks on the box, and those attacks are usually defined as such:

“In cryptanalysis and computer security, a dictionary attack is a technique for defeating a cipher or authentication mechanism by trying to determine its decryption key or passphrase by searching likely possibilities.”

The point of a dictionary attack?  If access can be had to your machine by an outside source, it can then use your box(Ip) as a relay point to send out spam and all sort of other terrible things.

So, when I first started up DenyHosts and checked the “users-invalid” file in /usr/share/denyhosts, I was pretty shocked to see the amount of invalid users that have attempted to log in to my box.

My next test is what’s called a Honey Pot.

“In computer terminology, a honeypot is a trap set to detect, deflect, or in some manner counteract attempts at unauthorized use of information systems. Generally it consists of a computer, data, or a network site that appears to be part of a network, but is actually isolated, (un)protected, and monitored, and which seems to contain information or a resource of value to attackers.”

Sure, not the everyday web design stuff, but it is design!

One thing I’ve not yet been able to configure as of yet is my email routes…sure, I’ve got this dandy server, but I’ve yet to enable email.  I should have that sorted out soon, but for now, a lesser design.

I was summoned upon to build a “embedded” system for work.  After googling around, the gist of it is this: an operating system that fits in something the size of your fingernail.  After a couple of weeks flailing about with buildroot, openembedded, and a bunch of other crap, I stumbled upon Mini Ubuntu.

The required rules were fairly simple.

1 – put a working Debian system on an MicroSD Card

2 – enable that MicroSD card to be booted internally

3 – boot the filesystem to RAM(to avoid journaling as to not wear down the card)

4 – Make ALSA happy

5 – USB/Serial connections is a must

6 – Ethernet is a must.

Well, I’m essentially close to finished.  First I began by trying to build the kernel from the ground up via a handy tutorial I found on the web.  Then, I flailed with Open Embedded, the bastard that it is…after wasting time with OE, I moved along to buildroot, which nearly got me there…and finally, it was MiniUbuntu(google bare bones Ubuntu).

This enabled me to install most of what I needed for under 1GB which allowed me to boot to ram while also freeing up an additional 1GB of space to mount for read and writes…

The most important part of all of this?

adding a few modules:

mmc_core
mmc_block
sdhci
sdhci-pci

To the modules file in /etc/initramfs-utils/modules file and then

update-initramfs -u

The biggest problem for me was using the internal MicroSD card reader, which is labeled as mmcblk0….upon boot, initramfs wouldn’t recognize the internal bastard.  Add the modules, update, and you should be straight.  Then, of course, you’re on to hacking ubuntu(sudo, apparmor, ALSA).

Good luck!

Hello – here’s my first post!  I’d like this blog to follow all things design.

Photoshop, web, jQuery, and all other things.

Obviously we’re under a bit of construction, but we design websites for businesses and personal needs.

I hope you mark us and check back.