All posts by Eugene Dullaard

This Website

Upgrades, upgrades, upgrades

Leave a comment

The system that I’ve build last year is running out of memory, so now memory is affordable I’ve upgraded it to 32Gb from the 16Gb it had. This will have to do for another one and a half year.  Microsoft products seem to take up more and more memory, but with this memory I can experiment with all of the System Center products that are out there, which is why it was purchased. And the already existing Virtual Machines can all have a little bit more room as they all ran on low amounts of memory which in some cases even caused startup problems.

As it is standard desktop gear I replace it every three years as it does run 24 hours a day, 7 days a week except when there is a power outage and there is no UPS behind it. On the other hand, I’ve been living in Gouda for over 11 years and the amount of outages can still be counted on a single hand. I guess the next one will have 128Gb of memory and 5*2Tb of storage or a mix of SSD and spinning disks. I’ll see, it isn’t the end of 2014 yet as that’s about the time it will be replaced and the choice for Hyper-V and ESXi will present itself again.

Consoles

Playstation 3 Controller not responding

Leave a comment

Hmmm…. suddenly both the PS3 Controllers I have are no longer working over the bluetooth connection. They work fine over USB but that does not allow for much distance from the console itself which will be awkward in most cases as it is placed near the television. Found some items on YouTube stating to use the reset button which you find on the bottom of the controller (small round hole next to screw placed in the middle), however just doing that didn’t fix it. After some trial and error found how I could reset them, and this is the order of what I’ve done to get them running again.

1) Turn on PS3, connect the controller with the USB cable.
2) Press the reset button on the bottom part of the controller for 5 seconds, it turns off immediately the five seconds came from YouTube not sure if really necessary.
3) Turn on the controller.
4) Disconnect USB cable, it will start flashing and then connects.

Hope this will help some of you guys struggling with the same issue.

This Website

Why Hyper-V?

Leave a comment

Lack of choice, would have been easier to remain on VM-Ware, now I had to V2V them all over onto a Hyper-V platform. Bought new hardware which supported 16Gb of RAM as the old system was maxed out at 8Gb and I’ve been running out of memory space for a period now making choices what to run and what not to run. As the notification said on the homepage (expires 9th of November) the old server is replaced by a new one. This one runs on a Quadcore 2400S (65W processor) with 16Gb of RAM which in the future can be expanded to 32Gb by replacing all of the DIMMs in the system, this should cover for the coming years. Keeping the price to a minimum came with the consequence it was no longer on any compatibility chart for VM-Ware and indeed the disk subsystem was not recognized, so now we continue on Hyper-V and as far as I know Linux (non Suse) is not really supported but it runs fine (Debian). Another surprise was the power usage. The old one was just below 80 Watts when utilized, this one cuts 20 Watts of it and has one harddrive more (Five 7200RPM WD 2.5″ Laptop drives instead of four in the last one, slowly moved one by one as the VMs moved as well to the new server).

The old server will be configured as a new workstation so the 6 year old HPs I still have can find a new place to live. But before that happens need get a new processor fan, after running over three years 24/7 the bearings are just about to cave in. The system has been a bit noisier than usual the last few months. For the rest it is ready to start its second life.

IT

reCaptcha

Leave a comment

A nice way of translating books as you can see on their website and in the meantime deliver some kind of protection and as a benefit you aren’t completely wasting your seconds when typing them in to verify you are human.

My mail address is easily guessed but I will include the reCaptcha links for both Sunny’s and my own mail address for people with a shortage in braincapacity.

You can try on our Contact Us page.

General

One week later… (continuation of previous post)

Leave a comment

…(and three conversations and a couple of mails richer)

One of the very few posts that got remarks the majority being mailed as the website is in a closed format unless you have an account. Only commented on them until Monday

For most I would suggest to visit the link again as Steve made some changes to the page and especially listen to the audio link in the middle of the page. If you have the time available listen to the last half of the security now podcast episode 304 as Steve also revisits password haystacks. Just reading the page might do it, but the idea and scope behind it is explained better if you listen to him.

A few other notes based on what I’ve received:

Q: A password like you create on Steve’s Perfect Password page is in my opinion much stronger than a haystacked password.
A: I agree, but who can remember such a password? With the right choice of password and padding you should be able to create something that comes at least close to it without the need of writing it down somewhere. The perfect password generator still has it’s uses especially for service related accounts in business environments or other uses where you don’t need to use a password frequently and there are safe storage facilities available as they have to be recorded somewhere. Or reset the password with every problem/incident you have if that is needed for troubleshooting purposes in that case only the dependencies need to be known, not the password. The last would be the safer method from a password point of view.

Q: I don’t want to use a long password.
A: Your choice, but in my opinion a wrong one. Although you cannot guess a part of a password (there is only pass or fail), in the end the only strenght is length. In case you really want to use a short one, stay away from all obvious things as they will always be tried first. Nowadays most passwords I see have one off the following formats: Password99 or P@ssword, so stay away from the obvious, also the changing of certain characters is easily anticipated (! for 1, @ for a etc.) and can be considered as part of a dictionary which will be infront of a brute force attempt. But still a short password will fall very quickly in an offline brute force attempt no matter what complexity you used so it only provides delay in an online scenario depending on bandwidth being available. Here a suggestion from somebody else that might come in handy. Take the first or last letter from a word out of a sentence you know well and use that as the base of your password and make sure all four different type of characters get in there either by replacing some characters or adding something in between (a small haystack) and make it as long as you are willing to live with. Keep in mind that the average password length at this moment is about 7-10 characters and this is what will be tried first as well. This also goes for the average of characters being used, say 50% lowercase, 20% uppercase, 20% numbers and 10% other.

Password haystacks is just a mechanism for you to remember longer passwords and it’s up to you to make them in such a way. Also try to stay away from the obvious and this includes patterns like smileys which work good for illustration purposes but if everybody uses them will not be ignored by “the bad guys” either. All other advice about passwords cannot be ignored of which the most important are to change them on a regular basis and never use the same password on more than one location. Internet (and even non internet) based services do get compromised and “the bad guys (as Steve calls them)” do get their hands your data through backdoors/exploits or simply human error, it’s up to the owner of such services to provide protection and the level of protection they have provided for your data. At the moment of writing there most likely is somebody going through 77 million accounts and you better hope that the password entries and credit card info in that stolen database where protected in some way……. and not just a single hash/password (or worse nothing at all). So in short make your password is long but memorable/usable while for somebody else it still looks like some piece of gibberish that makes no sense what so ever…. Creativity rules here, on a US keyboard you got 90+ choices per character for your password so go wild…. On international layouts there are more, but depending on where you spend your holidays you might lock yourself out by not being able to type your password (think of ñ, ö, ç etc.). Also not every website allows these either. If a website has limits like you can only use certain characters or cannot exceed this length, you might want to verify with their support department how they store your password as these are indicators that there is no protection on them. There was one person who said he’s using it to write down passwords so unless you know where to start it is hidden somewhere in there, doubt if it such a good idea as only start position and lenght need to be guessed if he would ever loose his paper, especially if the username and site are noted down as well.

General

Secure passwords

Video Leave a comment

We all know and use secure passwords right, we also know that a password need to be secure and the longer the password is and the more complex the password will enhance its security. The problem is that remembering these passwords is not always that easy until I was listening to a podcast called ‘Security Now’ and somebody with the name Steve Gibson said something about easily rememberable but yet still secure passwords. Read the following link : https://www.grc.com/haystack.htm if you want to know more about this. Essentially now you can create long passwords which are still easy to remember as the attacker has no idea what you’ve used. I still recommend a bit of creativity in your easy but still secure password. Something like ‘##########COFFEE———-‘ might be considered very secure but still can be guessed by somebody looking over your shoulder. The above mentioned password supposedly takes over 6 centuries to guess, while something like ‘W@nD3R!ng’ is guessed within 2 hours. This should start you thinking……..


Android, Cars

OBDII and Android, how fast is the 1/4 mile?

Leave a comment

Torque on Android

This is just one of the cool features of Torque, an app for Android phones and tablets. I think it will work better on a tablet simply because of the amount of additional real estate it has to offer. This increases readability of all the dials enormously. The current family car isn’t exactly fast and if I still had my previous car there would not have been an OBD connector in it as it was way to old to have one. I bought one of those cheap Chinese ELM327 bluetooth OBDII dongles from DealExtreme and it does the job. It is able to read all kinds of data from the cars ECU, also when driving as such the above remark. Most cars which are younger then 10 years should have a OBD connecter within 1 meter of the drivers seat, usually somewhere under the dashboard, at least that’s were mine is. Will explore more features of this app as it has logging capabilities and even the possibility to reset error codes although this is more for my brother after he has serviced the problem which caused it in the first place……

Android

My experience so far with the Archos 70IT

Leave a comment

Archos 70ITI now have this device for a while and it is something I essentially use everyday. As the screen shows it is kind of modified from what you get out of the shop. If you want to try it out yourself: Google Market is installed as you can find on the Archosfans forum. Afterwards Zeam is installed as launcher this will give you the ‘dock’ like feature as is seen on the picture at the bottom. It also allows you to configure the amount of screens which now is just one (this avoids the miscalculation which occurs to the software buttons). Music is launched by the stock music player widget (the small version). And the menu in the middle comes from Folder Organizer which can be found on the Market and in my opinion is the worth the 99ct it costs to have all the features enabled. In my case I let it show the most used apps so it automatically adjust to my changing habits or needs as some apps drop off and others get added.

During the time I used it it is relatively stable, however it did stop functioning more than once most of them when trying out new apps and in some cases with updating existing apps. Memory management does show itself so every now and then and makes it act slow as with about 100 apps installed there is some fighting over resources on this device and I still run the standard Android 2.2 memory manager without any taskkillers.

Most used apps are Google Listen mostly on the way to and from work with twit.tv’s tech podcasts sometimes mixed with something else like a course in Mandarin. The stock video app which allows me to access my TVersity (DLNA) audio/video server so that does not occupy in space on the device and I can watch my own stuff while Sunny does a hostile take over of the old fashioned TV. APG is installed for encryption of mail and files, still have to look at that a bit better. Not the easiest to use especially since the stock file browser and e-mail application (ActiveSync) do not support it in a nice way. Aldiko is what I use for reading books and Wyse Pocketcloud for taking over Servers and Desktops. Pulse for RSS Feeds and ofcourse a ton of games where WordUp!, Air Control and Angry Birds are the most played according to Folder Organizer.

So it suits my needs and is handy take with me as it fits on the center console of my car. I just use a little velcro sticker to keep in place otherwise it would drop off when taking a turn a little bit too fast.

General

The weather is fantastic… Not.

Leave a comment

I’m glad it was the holiday season. Weather was such a drama the car refused to get off its parking spot. The last two weeks where there for an on and off choice to either work from home or use the train. The train takes about half an hour longer due to the time lost getting to and from the station otherwise it would equal the car. The advantage is that you can do things besides driving as that is the benefit of being a passenger rather than the driver. The disadvantage is that NS had issues with its trains during this time as well. Thankfully I’ve never suffered from the consequences, trains where reasonably on time and due to distance I always have two options to get home taking different routes. So when a bridge didn’t close anymore, I simply took the alternative route which got me on trains without WiFi but take about the same time to get to the office. WiFi? Yes, the Archos 70 I’ve ordered was indeed already waiting for me when we came back from China and the thing to use in public transport. Read through a number of books in the last two weeks, that was nice. But I’m glad the weather improved to a point that the snow has now melted and I can take my car again tomorrow. And ofcourse Happy New Year to everybody, and that we have a nice and warm summer this 2011 to compensate for the December cold.