Scribling i did while listening to onlince pressentation 2010-01-21 by

1. Preventing infections from cross pollinating between virtual machines will be key in securing virtual movements of servers.

2. Information-centric security will be necessary as access to data will continue to evolve outside the traditional network.
(DLP=Data leakage prevention)

3. Adopting cloud-based services crates many more oppertunities for data infection or theft.

4. Second-layer security will be adopted to help enterprises have better application control beyond just allow or not allow.

5. A national evoloution in consolidating network devices is to integrate more network functionality into security devices.

6. Cybercriminals will implement their own crime-as-a-service approach, a criminal "environment for hire," so to speak.
hackers for hire, blackmailing for hire... etc.

7. Cybercriminals are expected to up the stakes in 2010 by holding customers' digital assets hostage for ransom.
scareware (ransomware encrypt stuff on customer data, and then ask ransome to release the data)

8. Unwitting consumers may become accessories to a crime as cybercriminals find new "mules" to launder their ill-gotten gains.
mules=ppl that take mony and put on their own account and then transfer it on for a commition. 2.5k paunds a weak.

9. With a growing number of users on new platforms, cybercriminals will target their attacks beyond Microsoft Windows.
(Linux, mobile, etc. and application level like flash)

10. Botnets will piggyback on legitime communications vihicles to propagate a cloak activities.
(To hide their comunication in legitimitive streams)

Could not find any help on this on google, and as I was following a guide I did not get why I got the error.

Anyways it was because in the guide I had set the password complexity with

addpol -minlength 8 -minclasses 3 admin

and thats all nice and good you should have good passwords, but I was not looking to change the root password for the system so I set it to allow less secure.

addpol -minlength 6 -minclasses 2 admin

It seem that the compatibility that I wrote about in last post does not work for most (CSS) problems.

Buttons still get wrong texts, DIV’s disapeared and so on.

Some of it we can fix by adding width to css tags it seem, but the compatibility flags does not seem to be helping at all other than removing the compatibility button at the address bar for the user.

It seem that Microsoft totaly forgot to include different CSS presentation from their different IE versions into the compatibility equation.

Hoping my filter might help someone else tho :)

I have a customer with quite a few java sites that were not built for IE8.. well how could they it is pretty new.

And changing them is a costly affair that their customers in turn might be reluctant to do.

What I did was make a java filter, now I am in no way a java expert so feel free to tell me if I did anything strange :)

  1: public class IE8Filter implements Filter {
  2:     private FilterConfig fConfig = null;
  3: 
  4:     public void init(FilterConfig filterConfig) throws ServletException {
  5:         this.fConfig = filterConfig;
  6: 
  7:     }
  8: 
  9:     public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
 10:         String unparsedMode = fConfig.getInitParameter("CompabilityMode");
 11:         String strXUA= "IE=EmulateIE7";
 12:         if ((unparsedMode == "5") || (unparsedMode == "IE5")){
 13:             strXUA = "IE=5";
 14:         } else if ((unparsedMode == "7") || (unparsedMode == "IE7")){
 15:             strXUA = "IE=7";
 16:         } else if ((unparsedMode == "8") || (unparsedMode == "IE8")){
 17:             strXUA = "IE=8";
 18:         } else if (unparsedMode == "EmulateIE7"){
 19:             strXUA = "IE=EmulateIE7";
 20:         } else if (unparsedMode == "EmulateIE8"){
 21:             strXUA = "IE=EmulateIE8";
 22:         } else if (unparsedMode == "Edge"){
 23:             strXUA = "IE=Edge";
 24:         }
 25: 
 26:         ((HttpServletResponse) response).setHeader("X-UA-Compatible", strXUA);
 27:         chain.doFilter(request, response);
 28:     }
 29: 
 30:     public void destroy() {
 31:     }
 32: }

With the code above you can now add the configuration too your web.xml

  1:     <filter>
  2:      <filter-name>IE8Filter</filter-name>
  3:      <filter-class>PackageName.IE8Filter</filter-class>
  4:      <init-param>
  5:       <param-name>CompabilityMode</param-name>
  6:       <param-value>7</param-value>
  7:      </init-param>
  8:     </filter>
  9: 
 10:   <filter-mapping>
 11:     <filter-name>IE8Filter</filter-name>
 12:     <url-pattern>/*</url-pattern>
 13:   </filter-mapping>

With the above you would use the capability mode for IE7, your options here are as follow.

Parameters
==========
(Descriptive text is from Microsoft)

<param-value>5</param-value>
IE5 mode renders content as if it were displayed by the Windows Internet Explorer 7 Quirks mode, which is very similar to how Microsoft Internet Explorer 5 displayed content.

<param-value>7</param-value>
IE7 mode renders content as if it were displayed by the Internet Explorer 7 Standards mode, whether or not the page contains a <!DOCTYPE> directive.

<param-value>EmulateIE7</param-value>
EmulateIE7 mode tells Windows Internet Explorer to use the <!DOCTYPE> directive to determine how to render content. Standards mode directives are displayed in Internet Explorer 7 Standards mode, and Quirks mode directives are displayed in IE5 mode. Unlike IE7 mode, EmulateIE7 mode respects the <!DOCTYPE> directive. For many Web sites, this is the preferred compatibility mode.

<param-value>EmulateIE8</param-value>
EmulateIE8 mode is similar to EmulateIE7 mode; Internet Explorer uses the <!DOCTYPE> directive to determine how to render content; however, standards mode directives are displayed in Internet Explorer 8 Standards mode. Quirks mode directives are displayed in IE5 mode.

<param-value>8</param-value>
IE8 mode provides the highest support available for industry standards, including the W3C Cascading Style Sheets Level 2.1 Specification and the W3C Selectors API, as well as limited support for the W3C Cascading Style Sheets Level 3 Specification (Working Draft).

<param-value>Edge</param-value>
Edge mode tells Windows Internet Explorer to display content in the highest mode available, which actually breaks the “lock-in” paradigm. With Internet Explorer 8, this is equivalent to IE8 mode. If a (hypothetical) future release of Internet Explorer supported a higher compatibility mode, pages set to Edge mode would appear in the highest mode supported by that version; however, those same pages would still appear in IE8 mode when viewed with Internet Explorer 8. It is recommended that Web developers restrict their use of Edge mode to test pages and other non-production uses because of the possible unexpected results of rendering page content in future versions of Windows Internet Explorer.

Below is a link to the jar library and the readme on how to use. The company I wrote it for is a freesource company and would give access to code I think, but you will have to write me if you want the entire code.

Well, first off I do these changes for me noone else, I just post what I do here so that I will remember it.

The reason is that I've noticed that whenI work logn houres with big screens my eyes does not get enough rest. And the strain of white against black background is very big.

So I have tried to change this to get a not white but lighter background and still with good kontrast, I have not succeeded that well at the contrast. Maby some colour professional can help me there ;).

However this is the main reason.

Now why would I not set this when the session is created?

I have a number of reasons for this.. mainly because I do not use putty sessions. I use commandline or write all on the fly. I often work where I will remove the program afterwords in unsecure places where you do not want to save sessiondata. Also when I use commandline I want UTF and I want the interface to always look the same.

This is why.

/Jacob

In windefs.c around 13 change to

FontSpec platform_default_fontspec(const char *name)
{
    FontSpec ret;
    if (!strcmp(name, "Font")) {
    strcpy(ret.name, "Fixedsys");
    ret.isbold = 0;
    ret.charset = ANSI_CHARSET;
    ret.height = 10;
    } else {
    ret.name[0] = '\0';
    }
    return ret;
}

In settings.c around 709 change to

    for (i = 0; i < 22; i++) {
    static const char *const defaults[] = {
        "85,85,85", //Default Foreground
        "0,0,0", // Default Bold Foreground
        "242,242,242", //Default Background
        "255,255,255", //Default bold Background
        "85,85,85", //Cursor Text
        "128,64,0", //Cursor Colour
        "85,85,85", //ANSI Black
        "0,0,0", //ANSI Black Bold
        "187,0,0", //ANSI Red
        "255,85,85", //ANSI Red Bold
        "0,100,0", //ANSI Green 
        "0,255,0", //ANSI Green Bold
        "187,187,0", //ANSI Yellow
        "255,255,85", //ANSI Yellow Bold
        "74,74,255", //ANSI Blue
        "140,140,255", //ANSI Blue Bold
        "187,0,187", //ANSI Magenta
        "255,85,255", //ANSI Magenta Bold
        "0,185,185", //ANSI Cyan
        "85,185,185", //ANSI Cyan Bold
        "187,187,187", //ANSI White
        "255,255,255" //ANSI White Bold
    };

in winucs.c

In function

   1: int decode_codepage(char *cp_name)

change

   1: if (!*cp_name) {

   2:     /*

   3:      * Here we select a plausible default code page based on

   4:      * the locale the user is in. We wish to select an ISO code

   5:      * page or appropriate local default _rather_ than go with

   6:      * the Win125* series, because it's more important to have

   7:      * CSI and friends enabled by default than the ghastly

   8:      * Windows extra quote characters, and because it's more

   9:      * likely the user is connecting to a remote server that

  10:      * does something Unixy or VMSy and hence standards-

  11:      * compliant than that they're connecting back to a Windows

  12:      * box using horrible nonstandard charsets.

  13:      * 

  14:      * Accordingly, Robert de Bath suggests a method for

  15:      * picking a default character set that runs as follows:

  16:      * first call GetACP to get the system's ANSI code page

  17:      * identifier, and translate as follows:

  18:      * 

  19:      * 1250 -> ISO 8859-2

  20:      * 1251 -> KOI8-U

  21:      * 1252 -> ISO 8859-1

  22:      * 1253 -> ISO 8859-7

  23:      * 1254 -> ISO 8859-9

  24:      * 1255 -> ISO 8859-8

  25:      * 1256 -> ISO 8859-6

  26:      * 1257 -> ISO 8859-13 (changed from 8859-4 on advice of a Lithuanian)

  27:      * 

  28:      * and for anything else, choose direct-to-font.

  29:      */

  30:     int cp = GetACP();

  31:     switch (cp) {

  32:       case 1250: cp_name = "ISO-8859-2"; break;

  33:       case 1251: cp_name = "KOI8-U"; break;

  34:       case 1252: cp_name = "ISO-8859-1"; break;

  35:       case 1253: cp_name = "ISO-8859-7"; break;

  36:       case 1254: cp_name = "ISO-8859-9"; break;

  37:       case 1255: cp_name = "ISO-8859-8"; break;

  38:       case 1256: cp_name = "ISO-8859-6"; break;

  39:       case 1257: cp_name = "ISO-8859-13"; break;

  40:         /* default: leave it blank, which will select -1, direct->font */

  41:     }

  42:     }

To

   1: if (!*cp_name) {

   2:             cp_name="UTF-8";

   3:     } 

find mysqldir -type f -exec gfs_tool setflag directio {} \;

find mysqldir -type d -exec gfs_tool setflag inherit_directio {} \;

Fungerade inte och då tar man bort det med...

find /srv/mysql -type f -exec gfs_tool clearflag directio {} \; &

find /srv/mysql -type d -exec gfs_tool clearflag inherit_directio {} \; &

perl /usr/local/hp/hpSMHSetup.pl