Image (c) NetGear I recently purchased a 4 disk-bay Netgear ReadyNAS NV+ box. This was a few days after I lost 60% of my media collection because my HD just decided to stop working. And yes, I’ve been meaning to back up the archive, but never got around it, till it died. Hindsight is 20-20, I guess. Anyhow, the ReadyNAS NV+ is a great box. The nicest thing about it is that via plugins, you can convert it into a full fledged development box running linux. One of the things lacking was how to make this box a VPN server as well. I currently have OpenVPN running on an ‘always on’ home laptop, but it was better if I moved the VPN server to the ReadyNAS box as it is the one that is supposed to be ‘always on’ anyway. I searched around. There are several sites that give only partial instructions of how to get things working. No one site has ‘everything you need’. So I thought I’d post *exactly* how to do everything you need to get this working.
Archive for the ‘security’ Category:
A call to report: VoIP ‘geek-talk’ blogs
Update: I have now created a sidebar widget titled “Tech Blogs I read” instead of updating this post. Please continue sending me quality tech blogs (with more focus on concepts and less on marketing) as you come across them and refer to the sidebar for updates and not this post – thx. Total number of ‘market reporting’ VoIP blogs = k+1 where k=number of times you can blink in a day. However, there are very few blogs that talk about more technology & architecture details and less market details for all things VoIP, SIP, IMS, web 2.0 (with focus on telecom). So here is a call to unite! We need a list of what I call ‘geek-talk’ – those that provide more technical insight into how things are. Here is my list so far. Please update me /comment here with more tech-blogs and I will update this list Many of these blogs are a mix of techno-marketing, but are written by people who are neck-deep in actually developing/architecting many of the talked about solutions themselves, and hence offer a more detailed insight. last updated: Apr-30-2008 TurnGeek – focus on P2P, SBC, etc. IMS Lantern – IMS architecture related Voice of
(Read More…)
EBAY and Trust
don’t claim to be a heavy eBAY user. But, I do buy and sell stuff occasionally and my recent experience selling stuff on eBAY could be a good indicator of what is probably worrying the execs of EBAY: Managing scale.For the past month or so, I’ve been trying to sell a laptop on eBAY. I’ve listed the items two times already and here is what happened both times: 1. Within hours of listing, I get sent messages of two categories: People who want to cheat the sytem and barter offline and scammers with manufactured or stolen eBAY identities who want the “usual” information. I spend valuable time dutifully forwarding it to the security folks at eBAY. 2. During the weeklong listing, I spend even more time responding to form responses from eBAY and handling email discussions with CallCenter agents who plainly have no expertise in managing security. 3. During the last day or two of the auction, I will have three or four genuine buyers who I communicate with and keep engaged. 4. During the last minutes, I see bidding begin and notice my genuine buyers being beaten by scammers with stolen identities win the auction with outrageous bidding. I
(Read More…)
License plate reading with Google Street Views
Everytime I wonder if there is anything left to do on these new generation of scrollable maps by Google and Yahoo, one of them surprise me. The latest is the neat addition of Google Maps street view (here) where you can see real street images and navigate around. But the level of detail captured is, well, um, surprising. See for example a car that was parked on the street on one of their street maps. I can easily read the license plate even without enhancing. But see the enhanced image too – no special tools – just some sharpening and saturation. Infact, the image was so readable, I masked a part of it with a black box in this version. At this level of detail, for all those folks doing things you should not be, watch out, you are on a world-wide candid camera :-) (click on image for larger view) Technology, VoIP, SIP, IMS, Marketing, Corporate Management
Web 2.0 and AJAX – fundamentally insecure ?
In the past couple of days, I’ve been delving into supposed security issues that the new Web 2.0 and AJAX enabled sites produce and have been also looking into some claims I heard that for serious applications, one should stick to Flash, since it is inherently more secure, tried and tested than AJAX is today. To investigate the inherent and publicized security issues within AJAX, we first need to understand the underlying technologies that AJAX uses. Specifically, AJAX comprises of: a) XMLHttpRequest (XHR)– a new functionality, that has been added to most well known browsers today that allow an asynchronous communication mechanism between the browser and the webserver b) Client side JavaScript – been around for a long time, an implementation of the ECMA script specification and used as a programming language for many web based applications To properly assess AJAX related security issues, then, it makes sense for us to take a look at what sort of security issues do these two critical underlying technologies present. XSS – Cross-Site Scripting attacks – A Javascript and URL handling exploit The concept here is straight-forward. XSS is not a technology – it refers to a technique, where a malicious user can
(Read More…)
Licensing
This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 3.0 United States License. Unless otherwise mentioned, the images (except the logo) are part of the Microsoft Clipart Gallery, subject to their licensing, or from Open Clip Art library, subject to their licensing.
Recent Comments
- Steve
on iPhone Programming: Who Just Called Me?
- Arjun
on Adding a VPN server to ReadyNAS
- mbratt
on Adding a VPN server to ReadyNAS
- Arjun
- Arjun
