Newer posts are loading.
You are at the newest post.
Click here to check if anything new just came in.

August 28 2013

Piratage du bureau d'enregistrement MelbourneIT par la SEA, ce qui leur a permis de changer les…

Piratage du bureau d’enregistrement #MelbourneIT par la #SEA, ce qui leur a permis de changer les serveurs de noms de domaines importants comme nytimes.com et twitter.com, puis ainsi de publier des adresses menant à leurs propres serveurs.

L’article officiel du New York Times : http://www.nytimes.com/2013/08/28/business/media/hacking-attack-is-suspected-on-times-web-site.html

Et celui (évidemment très court) de Twitter : http://status.twitter.com/post/59528478030/twitter-service-issue

L’étude détaillée de CloudFlare, qui inclut notamment le message de MelbourneIT (non public) reconnaissant le piratage : http://blog.cloudflare.com/details-behind-todays-internet-hacks

Un interview de votre serviteur à PCInpact : http://www.pcinpact.com/news/82014-detournement-nyt-et-twitter-entretien-avec-stephane-bortzmeyer.htm

#sécurité #DNS #Syrie

August 25 2013

« Peut-être vous demandez-vous pourquoi *mes* résolutions DNS échouent alors que celles de milliers…

« Peut-être vous demandez-vous pourquoi mes résolutions #DNS échouent alors que celles de milliers de freenautes réussissent. La raison est simple : je comprends le protocole DNS, et de ce fait, je connais son insécurité, et j’utilise donc #DNSSEC. J’utilise donc un logiciel nommé DNSSEC-Trigger qui s’installe sur mon poste de travail, et valide DNSSEC en tant que relais (forwarder) envoyant l’intégralité de mes requêtes avec le bit DO aux serveurs récursifs de Free.

Le problème de Free n’a cependant rien de spécifique à DNSSEC, mais à une incompréhension du protocole de LEUR part.

Voici les détails techniques : »

https://x-cli.eu/free/free-notcp.txt

Notez également la présentation très épurée de ce blog.

June 22 2012

Four short links: 22 June 2012

  1. Reality Bytes -- We make things because that’s how we understand. We make things because that’s how we pass them on, and because everything we have was passed on to us as a made object. We make things in digital humanities because that’s how we interpret and conserve our inheritance. Because that’s how we can make it all anew. Librarians, preservation, digital humanities, and the relationship between digital and physical. Existential threats don’t scare us. We’re librarians.
  2. Kickstarter Stats -- as Andy Baio said, it's the one Kickstarter feature that competitors won't be rushing to emulate. Clever way to emphasize their early lead.
  3. ICANN is Wrong (Dave Winer) -- Dave is right to ask why nobody's questioning the lack of public registration in the new domains. You can understand why, say, the Australia-New Zealand bank wouldn't let Joe Random register in .anz, but Amazon are proposing to keep domains like .shop, .music, .app for their own products. See all the bidders for the new gTLDs on the ICANN web site.
  4. The Art of GPS (Daily Mail) -- beautiful visualizations of uncommon things, such as the flights that dead bodies make when they're being repatriated to their home states. Personally, I think they tend too much to the "pretty" and insufficient to the "informative" or "revealing", but then I'm notorious for being too revealing and insufficiently informative.

February 17 2012

The stories behind a few O'Reilly "classics"

This post originally appeared in Tim O'Reilly's Google+ feed.

It's amazing to me how books I first published more than 20 years ago are still creating value for readers. O'Reilly Media is running an ebook sale for some of our "classics."

vi and Vim"Vi and Vim" is an updated edition of a book we first published in 1986! Linda Lamb was the original author; I was the editor, and added quite a bit of material of my own. (In those days, being the "editor" for us really meant being ghostwriter and closet co-author.) I still use and love vi/vim.

"DNS and Bind" has an interesting back story too. In the late '80s or early '90s, I was looking for an author for a book on smail, a new competitor to sendmail that seemed to me to have some promise. I found Cricket Liu, and he said, "what I really want to write a book about is Bind and the Domain Name System. Trust me, it's more important than smail." The Internet was just exploding beyond its academic roots (we were still using UUCP!), but I did trust him. We published the first edition in 1992, and it's been a bestseller ever since.

"Unix in a Nutshell" was arguably our very first book. I created the first edition in 1984 for a long-defunct workstation company called Masscomp; we then licensed it to other companies, adapting it for their variants of Unix. In 1986, we published a public edition in two versions: System V and BSD. The original editions were inspired by the huge man page documentation sets that vendors were shipping at the time: I wanted to have something handy to look up command-line options, shell syntax, regular expression syntax, sed and awk command syntax, and even things like the ascii character set.

The books were moderately successful until I tried a price drop from the original $19.50 to $9.95 as an experiment, with the marketing headline "Man bites dog." I told people we'd try the new price for six months, and if it doubled sales, we'd keep it. Instead, the enormous value proposition increased sales literally by an order of magnitude. At the book's peak, we were selling tens of thousands of copies a month.

Every other "in a nutshell" book we published derived from this one, a product line that collectively sold millions of copies, and helped put O'Reilly on the map.

"Essential System Administration" is another book that dates back to our early days as a documentation consulting company. I wrote the first edition of this book for Masscomp in 1984; it might well be the first Unix system administration book ever written. I had just written a graphics programming manual for Masscomp, and was looking for another project. I said, "When any of us have any problems with our machines, we go to Tom Texeira. Where are our customers going to go?" So I interviewed Tom, and wrote down what he knew. (That was the origin of so many of our early books — and the origin of the notion of "capturing the knowledge of innovators.")

I acquired the rights back from Masscomp, and licensed the book to a company called Multiflow, where Mike Loukides ran the documentation department. Mike updated the book. Æleen Frisch, who was working for Mike, did yet another edition for Multiflow, and when the company went belly up, I acquired back the improved version (and hired Mike as our first editor besides me and Dale). He signed Æleen to develop it as a much more comprehensive book, which has been in print ever since.

"Sed and Awk" has a funny backstory too. It was one of the titles that inspired the original animal designs. Edie Freedman thought Unix program names sounded like weird animals, and this was one of the titles she chose to make a cover for, even though the book didn't exist yet. We'd hear for years that people knew it existed — they'd seen it. Dale Dougherty eventually sat down and wrote it, mostly because he loved awk but also just to satisfy those customers who just knew it existed.

(Here's a brief history of how Edie came up with the idea for the animal book covers.)

Unix Power ToolsAnd then there's "Unix Power Tools." In the late '80s, Dale had discovered hypertext via Hypercard, and when he discovered Viola and the World Wide Web, that became his focus. We had written a book called "Unix Text Processing" together, and I was hoping to lure him back to writing another book that exercised the hypertext style of the web, but in print. Dale was working on GNN by that time and couldn't be lured onto the project, but I was having so much fun that I kept going.

I recruited Jerry Peek and Mike Loukides to the project. It was a remarkable book both in being crowdsourced — we collected material from existing O'Reilly books, from saved Usenet posts, and from tips submitted by customers — and in being cross-linked like the web. Jerry built some great tools that allowed us to assign each article a unique ID, which we could cross-reference by ID in the text. As I rearranged the outline, the cross-references would automatically be updated. (It was all done with shell scripts, sed, and awk.)

Lots more in this trip down memory lane. But the fact is we've kept the books alive, kept updating them, and they are still selling, and still helping people do their jobs, decades later. It's something that makes me proud.

See comments and join the conversation about this topic at Google+.

October 03 2011

Four short links: 3 October 2011

  1. Mozilla's Secure Coding Guidelines -- the Mozilla recommendations for web application security. See also OWASP, Google's Browser Security Handbook and Google's course.
  2. Scroller -- MIT-licensed Javascript library for accelerated panning and zooming, from Zynga. (via Hacker News)
  3. How Fast-Flux Service Networks Operate -- explanation of a technique used by botnets and other malware hordes to make it hard to figure out on which machines the services are actually running. For an example, see The Inside Story of the Kelihos Botnet Takedown.
  4. Log In -- clever humour built out of password dialog boxes.

July 06 2011

December 24 2010

Four short links: 24 December 2010

  1. Holiday Carbon Offsets -- buy carbon offsets against Santa's trip, a stockingful of coal, or this year's Reindeer Games. (via Val Aurora on Twitter)
  2. Sad Story of the Snowman -- the best use of Internationalized Domain Names yet.
  3. Katie, Starwars Geek (CNN) -- best use of the Internet this year.
  4. Everything The Internet Knows About Me Because I Asked It To (WSJ) -- passive lifeblogging. (via Keith on Twitter)

August 02 2010

Older posts are this way If this message doesn't go away, click anywhere on the page to continue loading posts.
Could not load more posts
Maybe Soup is currently being updated? I'll try again automatically in a few seconds...
Just a second, loading more posts...
You've reached the end.

Don't be the product, buy the product!

Schweinderl