DK 'Log


Aug 2008
NTop session query script
Fri, 22 Aug 2008

While coding the session monitor a couple of weeks ago I developed a quick script which could query ntop for session information. Jaime started using it for graphing now, so I thought it might be useful to soembody. Please find the code below.



::read more

posted at: 08:42 | path: /code | permanent link to this entry | 0 comments |
Tags: ossim, ntop, sessions



Zattoo... Scam ?
Mon, 18 Aug 2008

After having used their service for quite some time I received the announcement that they wanted to start charging users a samll fee. I'm talking about Zattoo. Quoting their site:

Zattoo is real TV on your PC - andd it's absolutely free. It's the football game as you chat, the news as you email, and your favorite soap as you pay your bills. Zattoo is also TV when you don't have a TV - it's the channels you want, when you want, where you want.

Well, completely free obviously not anymore, but that doesn't matter. I don't know how well known / widely used this service is outside of Europe, but I've got many frieds here that actually used it.

Fact is I wanted to see a soccer match last evening on my computer, in order to let my GF watch here stuff on the big screen. I decided to pay the 2.40 euro (as can be seen here, sending the two sms with ZAT to 7766. After two hours I still didn't have my code (so bye bye match) and after 24 hours and two mails, both using the support form as well as the info email address I'm still waiting for an answer/activation code.

2.40 ain't that much money, but things like these are very annoying. Until I get an answer from them I consider this new "pay-per-view" service a true SCAM, con, swindle, grift, gaffle, bunko, flim flam, stratagem, or scheme (wikipedia ;-) ), since after using the service for a couple of months and getting confident with the people at Zattoo I've paid for a service which I haven't received yet, there's no info about reclamations, payment confirmation, receipt, etc etc...

Update 2008/08/18 - First contact from Zattoo, quite dissapointing

Got a mail last night from them:

Hi, Thanks for contacting Zattoo. If you have not received the activation code, you will have to contact Allopass (http://www.es.allopass.com/contact_accueil.php4). They send the codes, not Zattoo. Yours kindly, Zattoo Spain
So I know how this story will be evolving. Have you read The Twelve Tasks of Asterix ? I always feel like in the 8th task when something doesn't work out 100% with obscure/big companies or government:

Quoting:

Find Permit 838 in "The Place That Sends You Mad". A mind-numbing multi-storey building founded on bureaucracy and staffed by clinically unhelpful people who direct all their clients to other similarly unhelpful people elsewhere in the building. Asterix eventually beats them at their own game by asking for an imaginary permit that nobody knows about, sending the place into disarray. Eventually Asterix is given Permit 838 just to make him leave and stop causing trouble.

So next task: write to the friendly people at the other company. I feel like this will take a long long time...

My mail to the new company, I wonder how long it will take them to answer:

To whom it may concern,

On wednesday 2008/08/13 at 19:10 I sent two sms messages to the number "7766" with codeword "ZAT" in it.

I was supposed to receive a activation code for Zattoo which never arrived. Yesterday evening I finally got an answer from Zattoo where they state that they don't have to do anything with payments, that I should refer to you.

So this is my mail / compliant, I've paid for the service five days ago and still haven't received any answer/feedback or even the product.

The phone number where I sent the sms messages from (2x) is 627xxxxxx.

Thanks in advance for your attention in this matter.

posted at: 08:34 | path: /rants | permanent link to this entry | 0 comments |
Tags: zattoo, tv, scam



Office pics update
Wed, 13 Aug 2008

Remember the pictures I posted some months ago while we were moving in ? Well, office looks much better now, so I decided to bring the cam along and take some pictures. Our office is situated between two emblematic building in Madrid, the Torres Blancas and the Puerta de America hotel.

AV Office 2008/08

In the meantime we're still working on the 1.0.6 updater, which will feature, among others:

  • Antivirus (clamav)
  • Mod-security
  • GLPI
  • The new nessus feed
  • System upgrade
  • Security fixes
  • Automatic Nagios config
  • Bugfixes and more...

    • The directive editor and reporting probably won't make it into this release, since we want to release before we merge all of the GSoC 2008 data into the main CVS.

    posted at: 08:18 | path: /ossim | permanent link to this entry | 1 comments |
    Tags: office, pictures



    Plugin GPG signature verification script
    Wed, 06 Aug 2008

    Just had to write a quick script in order to regularly check the repository, wanted to share it. It can be used after having imported the AV VRT verification key.
    for i in *.asc; do gpg --verify $i 2>/dev/null; if [ $? == 1 ]; then echo; echo "Bad Sig: $i"; read; else echo -n "."; fi; done
    PS: I'd suggest checking out Jaime's Blog (we work together at AV), he's starting to share a bunch of interesting things :-)

    posted at: 11:36 | path: /feed | permanent link to this entry | 0 comments |
    Tags: feed, nessus, script, gpg



    Status update & News
    Tue, 05 Aug 2008

    Back with a quick status update. I hope this will be the last "misc" message in a while, so I can start uploading useful content again.

    First of all, I hope everything's having a nice summer (or winter ;-)). I had my small share of holiday too, and expect to have another week of two during the next months.


    ::read more

    posted at: 12:27 | path: /ossim | permanent link to this entry | 1 comments |
    Tags: release, osssim, nessus, feed, news, training



    An alternative solution to Tenable's Nessus Feed licensing issues
    Tue, 05 Aug 2008

    We've decided to start working on an alternative feed for Nessus after Tenable having changed licensing again.

    Excluding even non-profit organizations and testing purposes completely from the feed seems contrary to the open source spirits, so we'll be investing a considerable amount of effort and money into providing a high quality feed for everyone.

    The final workings of it is still unclear, but we're aiming at the Sourcefire model: if you subscribe you'll get them instantly, everybody else gets them with a slight delay (we're discussing a one to four week delay).

    One of the goals we've got is getting a good bunch of people interested on this and willing to participate (sort of a Consortium maybe, although we're starting it internally right now) so if you could please share this with people who could have the skill/knowledge to contribute to this, I'd be more than grateful.

    Last but not least we're looking into a way of ensuring that the effort put into this by everyone won't be abused in any ways, so if anybody has got suggestions about model/licensing/etc it would be great to hear them.

    Edit: Due to licensing warnings from Tenable I had to rewrite some terminology.



    posted at: 06:24 | path: /ossim | permanent link to this entry | 0 comments |
    Tags: nessus, ossim, legal, license, feed



    		Categories

    / (62)
        code/ (1)
        feed/ (1)
        friends/ (1)
        ossim/ (39)
            installer/ (3)
            plugins/ (2)
            tuning/ (3)
            tutorials/ (8)
        personal/ (19)
            campus/ (2)
            opinion/ (1)
            travel/ (1)
        rants/ (1)


    Dominique Karg
    (feel free to get in touch)
    • Mail (gpg key)
    • Linkedin
    • Twitter
    • Forums

    Friend's blogs:
    • /blog/jaime
    • /blog/juanma
    • /blog/santiago





    Certified Application Security Specialist



    RSS



    < August 2008 >
    MoTuWeThFrSaSu
         1 2 3
    4 5 6 7 8 910
    11121314151617
    18192021222324
    25262728293031



    Archives

    2009-Dec
    2009-Sep
    2009-Aug
    2009-Jul
    2009-Jun
    2009-May
    2009-Apr
    2009-Mar
    2009-Feb
    2009-Jan
    2008-Dec
    2008-Oct
    2008-Aug
    2008-Jul
    2008-May
    2008-Mar
    2008-Feb
    2008-Jan
    2007-Dec
    2007-Nov



    Tags

    installer ossim tutorial untagged



    Made with PyBlosxom