How to block or drop attacker with null route


Quick note to myself, as I keep forgetting the syntax, though it is so easy — to block an incoming connection by null routing or rejecting the connection is as simple as

route add -host IP reject

To apply this to a whole subnet range, use the -net as you would with the /24 mask (or the appropriate subnet, /29 or smaller should do), eg

route add -net IP/RANGE reject

To undo this,

route delete IP

Twitter speed


Repeatedly getting this error on this site: Read the rest of this entry »

DSL Network speed and connectivity in South Africa – Feb – Apr 2012


It’s been a rocky start to the year of DSL connectivity with EASSY and SEACOM, among the major uplinks from Southern Africa, all were affected by outages.

After a network outage between Abu Talat in Egypt and Marseilles, France was reportedly cleared on Feb 8, 2012, rumours surrounding additional downtime of the SEACOM network Read the rest of this entry »

Rsync – copy file differences to third directory


So you have a snapshot of data on one drive, and the current state of data on the second drive. How do you copy the difference between the two drives into a third directory?

Rync comes to the rescue here. And it doesn’t take much:

Read the rest of this entry »

Some quick updates


Time for some housekeeping – WordPress, plugins etc all patched and back to where they should be (taken long enough) — some more updates on PHP, scheduler integration and large data transfer info coming up soon!

[SOLVED] Windows 7 fails after patch installation, hangs, cannot boot in safe mode


Windows 7 won’t boot up, Safe Mode hangs (typically at CLASSPNP.SYS), the System Recovery can’t fix (Bad Patch and AutoFailover errors) and there are no recovery points to revert back to. Sound familiar? There’s a working solution! Read the rest of this entry »

Delete and clear POSTFIX queue in one line


Oftentimes, you may need to just delete all messages in queue (for example, when your script has gone mad and generated too many messages to handle, once you’ve stopped postfix). It’s quite simple, really: Read the rest of this entry »

960 and a variety of other styling options


From the provider of (consistent styling for forms), Nathan Smith’s presentation from April 2011 about the 960 grid system ( framework, the rationale and alternatives

Microsoft drives to kill off IE6 and get you to upgrade


Hurray!! Even Microsoft wants users to upgrade from IE6 to something modern Read the rest of this entry »

#Surface- and touch-based #interfacing via #mobile devices


Touch surfaces and ubiquitous computing. I’m going through the exercise at the moment with portable touchscreen communicators and business enablers. I’ll relate my experiences with the Samsung Galaxy Tab, Slate etc when I’ve spent enough time with the devices to form a full picture. For now, just a short video relating to a view Read the rest of this entry »

Three Oh Five – WordPress Upgrade are out


The upgrade to 3.0.5 was resleased yesterday. From the release notes:

Two moderate security issues were fixed that could have allowed a Contributor- or Author-level user to gain further access to the site.

One information disclosure issue was addressed that could have allowed an Author-level user to view contents of posts they should not be able to see, such as draft or private posts.

Two security enhancements were added. One improved the security of any plugins which were not properly leveraging our security API. The other offers additional defense in depth against a vulnerability that was fixed in previous release.

Download and upgrade now!

3G SMTP servers for MTN, Vodacom, CellC etc


On 3G and outgoing mail not sending? Chances are, you need to set the SMTP server specific to your network. Here’s the list that may grow over time: Read the rest of this entry »

The Mobile Phone and Social Interaction [an advertisement]


As one of the elements of modern society, family life and meeting etiquette, the mobile phone has become that always-on irritating device that, like the traditional land-line telephone, often times gets priority over even human contact Read the rest of this entry »

Expire private images to protect privacy on the Internet?


A new product over at (which redirects to was unveiled in Germany today, with the aim of embedding expiry times and information into images so that they cannot be viewed after a certain time. In that way there should be a maximum lifespan to digital images on the web to prevent future embarassment, usage etc. At this stage, the prototype is available as plug-in for Firefox (as well as some other browsers in future), and expounds the idea of a ‘forgetful internet’ so that information is not immortal on the web. Read the rest of this entry »

Upgrade to WordPress 3.0.4 – HTML Sanitation bug


From the WordPress Development Blog:

Version 3.0.4 of WordPress, available immediately through the update page in your dashboard or for download here, is a very important update to apply to your sites as soon as possible because it fixes a core security bug in our HTML sanitation library, called KSES. I would rate this release as “critical.” Read the rest of this entry »

Nudge, nudge, wink, wink – WordPress Upgrade


… it’s time to go 0-3, I think — WordPress 3.0.3 is out – but the update is really only applicable to remote publishing-enabled systems…

WordPress 3.0.3 is available and is a security update for all previous WordPress versions.

This release fixes issues in the remote publishing interface, which under certain circumstances allowed Author- and Contributor-level users to improperly edit, publish, or delete posts.

AXXESS / Afrihost / IS / MWeb DSL slow-to-no international browsing update


For what it’s worth: an alleged SEACOM cable break a few kilometers from Alexandria – eta of 2.5hrs or so…

WordPress 3.0.2 is out


Don’t forget to upgrade inplace or download! It is a mandatory security update for all previous WordPress versions, and upgrades are easy :)

AXXESS / Afrihost / IS / MWeb DSL slow-to-no international browsing


Seems like there is an upstream cable fault (being investigated) that has caused international browsing from South Africa outward to fail.

Pings reveal failing terminations on the entry points into continental Europe and the US.

IS has reported it as follows, all others are piggy-backing (or just silent on the matter): Read the rest of this entry »

Stuxnet lessons – and resources


Just a quick grouping of resources relating to Stuxnet resources and analysis after the targeted infections of the frequency converters of the Vaasa, Finland based Vacon (though Vacon publicly denies this) and Iranian company Fararo Paya.

The bottomline takeaway – never use default passwords (partical attack vector of the PLCs and SCADAs), and keep systems patched (4 zero-day Windows-based attacks). And don’t allow USB devices on a production network (the entry point of the 0.5Mb virus written in C and C++)… Read the rest of this entry »