Hi,
Dinesh A. Joshi wrote:
> See the reason would be some libraries on Ubuntu may have
> gotten corrupted which is producing such behavior.
But *what* libraries? Other sites work fine. Only facebook
& hotmail seem to be affected.
> So you're telling me that on the same machine he's got dual boot
> with XP and Ubuntu, right? Using the same MTNL connection, the
> sites work fine on XP and dont load up with Ubuntu. Hmm...maybe
> he should use XP... haha :)
Ha ha. Here I'm trying to keep him convinced to use XP only for
games and use Ubuntu for everything else....
And the system has been working perfectly from last August (when I
installed it) till about a week ago. I suppose it's possible that
one of the security updates did the damage, but why on earth
would it only affect those 2 sites.
Chirag Wazir
http://chirag.freeshell.org
Hi Guys,
I am working on an application which needs to connect to MySQL database for
updating/insertion etc. For the application to pickup the username/password
I've created a config file somewhere on the system which looks like this:
<snip>
[mysqld]
user=root
password=mypassword
port=3306
</snip>
Problem is that this file can be read by root on that server and my password
pretty much known to anyone who has root access. Is there anyway I can keep
the password in encrypted format and still connect to mysql database? . Just
to give an example of what I am looking at, in openldap you can generate a
password in encrypted format using slappasswd -t {MD5} -s mypassword and
store it in your slapd.conf file. Even if someone does get access to
slapd.conf, still s/he cannot decrypt the password very easily.
Please note that I cannot hard code the password into my application, since
the root password for MySQL is subject to change without notice to me.
TIA,
Chiragz
Hello,
Is there anywhere I can get a database of the present candidates standing
for elections? I tried the Election Commission website (http://eci.nic.in)
but they do not have a download. All that exists there is a .net form with
postbacks, and it looks like a pain to scrape. IBN does have some data, but
it seems incomplete with a lot of parties and candidates missing.
Any help would be really useful.
Regards,
Aniketh
Does anyone have copies of/links to university syllabus that
prescribes open source software in the main (not elective) syllabus?
One of our supporters is advising a university in connection with
finalizing the syllabus for their courses. Currently, their syllabus
includes oracle/windows/DotNET/SQL 2005 and other proprietary
products/technologies.
If you have copies of/links to university syllabus that prescribes
open source software, that would strengthen the case. Kindly forward
the same to me.
Regards,
Venky
Hi All,
What is the difference between redirect_program and
url_rewrite_program in squid3?
~~~~~~~~~~~~~~
Sameer Shinde.
M:- +91 98204 61580
Millions saw the apple fall, but Newton was the one who asked why.
Hi All
I am looking for a chat service for a midsized company which has features like secured data transfer , Group Chat,voice chat (optional) with all the basic chat features which can run on linux and few windows machine too. Jabber server does not fit on my requirement. Is there any other server + client which fits them all. Please suggest.
Sachin
Add more friends to your messenger and enjoy! Go to http://messenger.yahoo.com/invite/
> 1. My App looks bad since it requires to store password in clear-text in a
> file. This is more of client requirement; they do not want any password to
> be stored in clear-text.
> <snip>
> 2. Accidentally doing a cat even by root will make the password visible.
You don't need to keep the password in clear text. Encode it in Base64
and keep it in the configuration file. This will solve the problem of accidental
viewing by some less tech savvy support personnel. But still it doesn't
secure your password. If someone sees and remembers or notes down
the encoded string, the original password can be retrieved from it easily.
You can also encrypt the password with a key. Then hard code the key
in the application itself. This will solve above problem as key can't be
retrieved without doing a detailed analysis of your app. There are ways
to embed the key text in an executable so that it won't turn up in the
output of "strings" command.
Since MySQL requires password to be supplied in clear text, your
application needs to keep it somewhere. Anyway none of the methods
mentioned above guarantees hundred percent security.
> 3. If you send across the system info to support to troubleshoot my App,
> this file maybe included. Customer passwords will be exposed to support
> guys. (I know customer can remove the password line and send across the
> file, but again its about convenience)
The best practice is to keep sensitive data in a separate configuration file
and don't keep it in the application base directory. For example if
your application
is installed in /user/local/myapp, the file with password should be kept in
/etc/myapp.conf or something. So archiving the application base won't include
this file.
> I know root can access almost any file and cause damage/modify, but that is
> something I am not worried about. The idea is to not keep it ridiculously
> easy for someone to crack.
Then above mentioned methods should be good enough.
Raghu
Hi,
I have got a spindle of brand new F10 DVDs and some nice F10 stickers.
If there are people who want the same, please contact me offlist. I
can't send them by courier unless the cost is taken care of, so in
effect we have to arrange for a meeting somewhere in Mumbai, Navi
Mumbai or better yet - New Panvel ( where I live ) :).
Cheers!
Pradeepto
--
The KDE Project : http://www.kde.org
KDE India : http://www.kde.in
Mailing List : http://mail.kde.org/mailman/listinfo/kde-india
Hey GNU/Linux,
I use this really great site to send free SMS!
What's even cooler is that
- We get paid for cool offers they send.
- We can load up this money on our mobile, encash it or donate it to
charity!
It's a really cool idea! Over 25 lakh Indians have joined and have
generated over 60 Lakhs in member earnings already!
Joining is free too! Here's the link:
[1]http://www.youmint.com/network-monikashah
I just had to share this with you. Enjoy!
Monika Shah
--------------------------------
You've received this invite from Monika Shah who wants you to join the
YouMint Revolution. To stop further mailings, [2]click here.YouMint
treats your privacy VERY SERIOUSLY and will take strict action against
the sender if you don't know them personally.
Copyright 2007-2008 YouMint Media (P) Ltd.
References
1. http://www.youmint.com/network-monikashah
2. http://www.youmint.com/decline.php?user_id=1264293&email=linuxers@mm.glug-b…