Linuxers April 2009

linuxers@mm.ilug-bom.org.in

57 participants
50 discussions

Re: [ILUG-BOM] Facebook & Hotmail on Ubuntu
by Chirag Wazir 09 Apr '09

09 Apr '09

Hi, Dinesh A. Joshi wrote: > See the reason would be some libraries on Ubuntu may have > gotten corrupted which is producing such behavior. But *what* libraries? Other sites work fine. Only facebook & hotmail seem to be affected. > So you're telling me that on the same machine he's got dual boot > with XP and Ubuntu, right? Using the same MTNL connection, the > sites work fine on XP and dont load up with Ubuntu. Hmm...maybe > he should use XP... haha :) Ha ha. Here I'm trying to keep him convinced to use XP only for games and use Ubuntu for everything else.... And the system has been working perfectly from last August (when I installed it) till about a week ago. I suppose it's possible that one of the security updates did the damage, but why on earth would it only affect those 2 sites. Chirag Wazir http://chirag.freeshell.org

5 4

MySQL encrypted passwords..
by Chirag R 08 Apr '09

08 Apr '09

Hi Guys, I am working on an application which needs to connect to MySQL database for updating/insertion etc. For the application to pickup the username/password I've created a config file somewhere on the system which looks like this: <snip> [mysqld] user=root password=mypassword port=3306 </snip> Problem is that this file can be read by root on that server and my password pretty much known to anyone who has root access. Is there anyway I can keep the password in encrypted format and still connect to mysql database? . Just to give an example of what I am looking at, in openldap you can generate a password in encrypted format using slappasswd -t {MD5} -s mypassword and store it in your slapd.conf file. Even if someone does get access to slapd.conf, still s/he cannot decrypt the password very easily. Please note that I cannot hard code the password into my application, since the root password for MySQL is subject to change without notice to me. TIA, Chiragz

12 23

[OT] Database of present candidates standing for elections
by aniketh patrick 07 Apr '09

07 Apr '09

Hello, Is there anywhere I can get a database of the present candidates standing for elections? I tried the Election Commission website (http://eci.nic.in) but they do not have a download. All that exists there is a .net form with postbacks, and it looks like a pain to scrape. IBN does have some data, but it seems incomplete with a lot of parties and candidates missing. Any help would be really useful. Regards, Aniketh

3 3

Open Source University Syllabus
by Venkatesh Hariharan 06 Apr '09

06 Apr '09

Does anyone have copies of/links to university syllabus that prescribes open source software in the main (not elective) syllabus? One of our supporters is advising a university in connection with finalizing the syllabus for their courses. Currently, their syllabus includes oracle/windows/DotNET/SQL 2005 and other proprietary products/technologies. If you have copies of/links to university syllabus that prescribes open source software, that would strengthen the case. Kindly forward the same to me. Regards, Venky

4 3

difference between redirect program and rewrite program
by sameer shinde 04 Apr '09

04 Apr '09

Hi All, What is the difference between redirect_program and url_rewrite_program in squid3? ~~~~~~~~~~~~~~ Sameer Shinde. M:- +91 98204 61580 Millions saw the apple fall, but Newton was the one who asked why.

2 1

Chat messenger.
by Sachin 04 Apr '09

04 Apr '09

Hi All I am looking for a chat service for a midsized company which has features like secured data transfer , Group Chat,voice chat (optional) with all the basic chat features which can run on linux and few windows machine too. Jabber server does not fit on my requirement. Is there any other server + client which fits them all. Please suggest. Sachin Add more friends to your messenger and enjoy! Go to http://messenger.yahoo.com/invite/

3 2

Re: [ILUG-BOM] MySQL encrypted passwords..
by Raghu Prasad 03 Apr '09

03 Apr '09

> 1. My App looks bad since it requires to store password in clear-text in a > file. This is more of client requirement; they do not want any password to > be stored in clear-text. > <snip> > 2. Accidentally doing a cat even by root will make the password visible. You don't need to keep the password in clear text. Encode it in Base64 and keep it in the configuration file. This will solve the problem of accidental viewing by some less tech savvy support personnel. But still it doesn't secure your password. If someone sees and remembers or notes down the encoded string, the original password can be retrieved from it easily. You can also encrypt the password with a key. Then hard code the key in the application itself. This will solve above problem as key can't be retrieved without doing a detailed analysis of your app. There are ways to embed the key text in an executable so that it won't turn up in the output of "strings" command. Since MySQL requires password to be supplied in clear text, your application needs to keep it somewhere. Anyway none of the methods mentioned above guarantees hundred percent security. > 3. If you send across the system info to support to troubleshoot my App, > this file maybe included. Customer passwords will be exposed to support > guys. (I know customer can remove the password line and send across the > file, but again its about convenience) The best practice is to keep sensitive data in a separate configuration file and don't keep it in the application base directory. For example if your application is installed in /user/local/myapp, the file with password should be kept in /etc/myapp.conf or something. So archiving the application base won't include this file. > I know root can access almost any file and cause damage/modify, but that is > something I am not worried about. The idea is to not keep it ridiculously > easy for someone to crack. Then above mentioned methods should be good enough. Raghu

1 0

Fedora 10 DVDs
by Pradeepto Bhattacharya 02 Apr '09

02 Apr '09

Hi, I have got a spindle of brand new F10 DVDs and some nice F10 stickers. If there are people who want the same, please contact me offlist. I can't send them by courier unless the cost is taken care of, so in effect we have to arrange for a meeting somewhere in Mumbai, Navi Mumbai or better yet - New Panvel ( where I live ) :). Cheers! Pradeepto -- The KDE Project : http://www.kde.org KDE India : http://www.kde.in Mailing List : http://mail.kde.org/mailman/listinfo/kde-india

3 3

Wasupp?
by Monika Shah 02 Apr '09

02 Apr '09

Hey GNU/Linux, I use this really great site to send free SMS! What's even cooler is that - We get paid for cool offers they send. - We can load up this money on our mobile, encash it or donate it to charity! It's a really cool idea! Over 25 lakh Indians have joined and have generated over 60 Lakhs in member earnings already! Joining is free too! Here's the link: [1]http://www.youmint.com/network-monikashah I just had to share this with you. Enjoy! Monika Shah -------------------------------- You've received this invite from Monika Shah who wants you to join the YouMint Revolution. To stop further mailings, [2]click here.YouMint treats your privacy VERY SERIOUSLY and will take strict action against the sender if you don't know them personally. Copyright 2007-2008 YouMint Media (P) Ltd. References 1. http://www.youmint.com/network-monikashah 2. http://www.youmint.com/decline.php?user_id=1264293&email=linuxers@mm.glug-b…

1 0

[X Post] Debian GNU/Linux Device Driver Check
by Kartik Mistry 01 Apr '09

01 Apr '09

Debian HCL aka Debian GNU/Linux Device Driver Check: http://kmuto.jp/debian/hcl/ Full story at: http://kmuto.jp/b.cgi/debian/hclv2.htm -- Cheers, Kartik Mistry | 0xD1028C8D | IRC: kart_ Debian GNU/Linux Developer Blog.en: ftbfs.wordpress.com Blog.gu: kartikm.wordpress.com

1 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

Linuxers April 2009