For any of those who are interested, there is a write-up on yahoo about Vista. I saw this just after Vista was available in the stores and promptly forgot to post it.

For those who care: news.yahoo.com/s/pcworld/20070220/tc_pcworld/129126;_ylt=ArUL.0rIZ1sp2JhxpDrz3yEDW7oF

It looks like there is a new scam on the go. You get a phone call offering you a low interest rate on your card. Just press 0 (or some number) to speak to a representative. After a moment you get a person on the other end who offers a very sweet deal on a credit card or some such and then asks some verification info from you to prove who you really are. They even try to get your credit card number so they can send you a new one with a lower rate.

We had fun recently at a local company when setting up a Solaris 9 Jumpstart server. When installing a new client, it kept asking if we wanted to disable Power Management. Problem is, it was asking this question AT THE BEGINNING of the installation, and not at the end as usual. Everything was configured properly, we had the finish script to disable this question, but it still kept popping up.
Digging through all documentation that you never knew it existed, I found an interesting bit of information: Solaris Webstart (the new ways of installing programs introduced with Solaris 8 ) does indeed ask this question at the beginning, whereas the old and proven suninstall is the one that asks this question at the end. When you configure the Jumpstart server using the DVD it automatically downloads everything, including Webstart. And, by default you’ll run Webstart (if it was setup in the Jumpstart server) when executing the ‘boot net - install’ command from your client.

We’re looking at bug tracking software at work, so I am trying out

• bugzilla
• trac

Both are bug trackers (or issue trackers or feature trackers) which serve up content from databases to browsers. Here are some notes:

Bugzilla

• integrates with apache, MySql (or postgresql if you prefer), cvs, lxr
• can browse source code repository (cvs by default, using lxr or linux cross reference)

trac

• integrates with apache (or it can run its own standalone server tracd, or it can run from inetd), sqlite3, svn
• incorporates a wiki
• can browse source code repository (svn by default)

I’m trying to make a separate trac instance for each project, so I can run the server process as a separate user and have all the related files owned by that user. It was a fair bit of work (but possible) to make apache do that.

Lots of people use them, most don’t protect them. I just saw a story on a new (well recent) attack vector on those ubiquitous routers that we all use to connect to the internet. The full story is located on ZDnet and basically shows that some carefully crafted javascript and an improperly configured router can result in all kinds of nastiness.

The full implications are pretty staggering. Basically if the admin page is left at the manufacturers defaults, the router can be configured to use an attackers DNS server, effectively forcing you to go where they want you to. Think about that for a moment. If the DNS is hijacked, then requests to go to your bank, online shopping, direct bill payments, etc could be redirected invisibly to a mock site and your personal info could be collected. Better yet, after they get the info, the mock site could redirect you to the real site and you may not even notice it happened.