A week ago or so, I got an email from a friend of mine. She asked me some unix questions about a system she works with. As we coresponded I realized she had a bigger problem than she initially thought. This system is “managed” by a third party company that provides the software and support for the hardware. Unfortunately that does not include security support. That kind of support is supposed to be provided by one of her coworkers. To be polite, let us say that the coworker did not do a stelar job.

So I got to go and help confirm that the machine had been hacked into. It looks from the evidence left that it was set up as a drone in a DDOS network. The intruder whacked the log files, so who knows if they have been back. Unfortunately for my friend, it will cost her company $5000 to have the system restored. And unless her coworker learns about network security real quick, the machine will probably be just as vulnerable when it is “fixed” as it is now.

Thankfully, I think I did a good job of explaining all the horrible things that could happen, both to their data, and legally that they will bite the bullet and get the system rebuilt. I know that there have not been any definative legal decisions regarding a companies liability if it’s systems are used as a springboard for further ttacks, but I doubt they want to be a test case.

I really wish there was something I could do to help, other than provide advice. But although I am happy to provide advice for free, I can’t really offer to do the securing for free, as that is technically in her coworkers job description. Not to mention the assumption of some level of liability for the system’s security going forward. So for now, I will remain an unpaid advisor; the least I can do for a friend.

Most of my readers have heard me rant and rave on numerous occasions about the wonders of standards compliance, CSS, XHTML and other such web technologies.

But have I helped you learn about them? Well not until now! OK, so I lied, I’m not actually going to help you learn about them, but I am going to point you towards some of the cool sites I have found around the net that have helped me learn stuff.

W3C - OK, don’t actually follow this link, it is the obligatory “here lie the standards” link.

NYPL Online Style Guide - These guys are just cool. The New York Public Library has lots of great, straightforward information about moving to XHTML standards compliance.

A List Apart - Over 150 articles that tackle every issue you could think of about writing web pages. From making standards compliant HTML that actually works in different browsers to “How to Write a Better Weblog”. Very broad range of topics.

CSS Layout Techniques: for Fun and Profit - How to reproduce layout techniques that are not always obvious with CSS. Columns. Mmmmm.

css / edge - Pushing the envelope is an understatement when describing this site. This is the cutting edge, and Eric Meyer could care less if it works in your browser, it works in his. Mozilla (or derivative) is a must.

Internet Developer from Apple - Although geared towards Mac users, this site contains lots of good information on CSS, and a great discussion of the issues and solutions to dealing with fonts in a consistent way across browsers and OSs.

W3C HTML Validator - when you are ready to feel some pain, go here and check how your page does. The W3C validator is cruel to you until you get the hang of writing standards compliant HTML.

W3C CSS Validator - Same as above, but for your CSS.

Oh, and I will help if you have questions :)

In months past, I have thrown around my disappointment with the wishlist functionality incorporated in comercial internet retailers. They have an agenda; and it wasn’t about helping people keep track of what they would like bought. As with all companies, it was about making money. Not that that is a bad thing, but it limited the functionality that they could implement. For obvious reasons, the wishlist could only contain items from the store on whose site it was running. And a buyer could only “mark off” an item if they bought it at the store running the wishlist.

These business decisions make the lists difficult to use. I have items from all over the internet that interest me and there was no way for me to consolidate them. And amoung my friends we have had several situations where people at the last minute go and buy an item off of someones wishlist, but are unable to mark it off.

So in a spirt of energy and boredom, I set out to rectify the situation by writing my own. In talking with Matt and Elizabeth, I thing we put together a good site.

Go see: wishlist.confusticate.com

I seem to be having a hard time getting my brain to spit out ideas to write about here. So I am asking you, my numerous readers, to suggest some. What do you want me to write about? Maybe I’ll even do it.

After long last, I have recovered and digitized a movie I made in middle school for a history project. If I remember correctly, the point of the project was to explore the society and culture of a country. One of my classmates and I picked the food of Russia. So long before the Food Network, we wrote, directed, edited, and starred in “The Russian Gourmets” and here it is for you enjoyment (and ridicule).

The Russian Gourmets (13MB)

I looked out the window this morning towards our neighbors (the ones with the little hellions mentioned in previous entries) and my heart nearly lept out of my chest.

What was that in the driveway? A truck? An empty truck.

What are they doing? They are putting things in the truck!

The neighbors are moving.

I am sure I am loosing karma by rejoicing, but I don’t care.

Well, the results are in. Not quite sure what to say other than “BAH!” My hopes are that the complete republican sweep will result in a situation of increased infighting inside the party given their lack of a clear opposistion. It should also improve the chances of the democrats in the 2004 presidential elections.

Now the question is just how bad things will get in the next two years. I am afraid the combination of Bush, Cheney, Rumsfield, and Ashcroft will be pretty bad.

Duck and cover.

He’s got huge, sharp– eh– he can leap about– look at the bones!

well, I am still sick and I stayed home today from work. Here is a project I have been working on in my spare time between 2 and 4 am.

Figuring out how iSync interacts with .Mac

Elizabeth has been under the weather for the last week or so and I have been doing my best to keep her in good shape. She is doing better, but appently her bugs decided I looked like a likely target. They ran over me like a freight train.

And people who know me know it takes a lot to put me down. Saturday night after dinner I started feelingf reallb bad. All mmy muscles ached, and I couldn’t sleep. That is the worst of it. I barely slept at all last night, just a series of snoozes in between wakefulness.

At one point I went to the kitchen to get some orange juice. Moving was a big production at that time. As I am pouring the juice into the cup I start getting dizzy, and I end up sitting down on tfe floor. Much to my amazement I can watch the sweat beading up out of my skin. This is unusual to say the least, and if I hadn’t thought I was going to pass out could have been a very interesting event to witness.

I had it back to the bedroom very slowly and collapsed. Many more hours of fitful sleep followed. I woke up at 6 this morning giving up on the sleeping (or not sleeping more accurately). Every time I would get out of bed, the world would start spinning and I would end up thinking I was going to loose whatever was in my stomach. Thankfully I have avoided that.

We have spent basically the whole day in bed. I think this is maybe the 5th time I have gotten up. But I am starting to feel better partly thanks to the wonders of ginger ale.

Maybe this sickness will leave as fast as it came. I hope.