Blog search

Blog Calendar

S	M	T	W	T	F	S
						1
2	3	4	5	6	7	8
9	10	11	12	13	14	15
16	17	18	19	20	21	22
23	24	25	26	27	28	29
30	31
<< May >>
2004

Blog stats

Blogs - 30
Posts - 664
Comments - 2362

By Steven Seiller - 2
Comments - 18

CMX Articles

Links of interest

General

Community MX Home Page
Macromedia blog aggregator

Latest Commented Posts

Conferences - In this economy?
by John Foliot on 4/26/13 at 1:42:48 PM

Dynamic TextField Interfering with Button Click in AS3.0
by Kyle on 4/17/12 at 3:08:01 PM

Dynamic TextField Interfering with Button Click in AS3.0
by me on 3/14/12 at 6:00:45 PM

How to Round to the Nearest Ten, Tenth, Hundred, Hundredth, Etc.
by spham on 1/25/12 at 10:31:39 AM

Dreamweaver file synchronization
by Mike Schoonover on 11/16/11 at 11:08:39 AM

RSS and OPML

Blog RSS feed

Full post RSS feed

OPML list of feeds

Steven Seiller's blog RSS

Steven Seiller's blog Full post RSS

Bit Mappings

Right on the edge of useful

2 posts

Open Source Hazards: This is Why You Always Change Default Values in CMS Content Management Systems

Posted Friday, November 27, 2009 4:12:05 PM by Steven Seiller

I receive the following email notice several times per week indicating some hacker's robotic effort to brute force attempt to crack the admin password for the site's Moodle installation.

Here is a list of failed login attempts at http://www.site.com/moodle since you were last notified(Sunday, 22 November 2009, 10:15 PM)

Friday, 27 November 2009, 12:38 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:38 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:37 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:37 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:37 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:37 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:36 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:36 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:36 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:36 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:36 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:36 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:35 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:35 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:35 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:35 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:34 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:34 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:34 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:34 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:34 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:34 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:33 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:33 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:33 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:33 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:32 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:32 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:32 PM, IP: 91.213.121.24, User: admin

Friday, 27 November 2009, 12:32 PM, IP: 91.213.121.24, User: admin

Whenever I install a CMS package, I always change the default values from those shown in the documentation:

database name
database tables prefix
database username
admin user name
admin directory name
data directory name
user directory name

Looking at the installation now, I am wondering why I didn't change the name of the moodle directory, but if I recall correctly from many years ago when it was configured we kept it because that was the name our users were to type in their browsers. We weren't installing a LMS site as much as a Moodle site.

Basically, a simple way to increase security for the software installation is to not use any of the example variables shown in the documentation. This hacker can try all they wish to hack the admin password, but it will be fruitless because there is no admin user!

Category tags: Open Source

Posted by Steven Seiller
Add comment | View comments (3) | Permalink | Trackbacks (0) | Digg This

Suitcase Fusion 2 Now Available for Windows

Posted Tuesday, August 25, 2009 11:44:16 AM by Steven Seiller

When I reviewed Extensis Suitcase Fusion 2 released last November, it was only available for Mac OS X. At the time, they promised a Windows version with feature parity. Now, Extensis has released Suitcase Fusion 2 for Windows.

A review of the product site reveals that the new Windows version does seem to have parity with the most critical features:

font previewing featuring the floating preview
plug-in based auto-activation for the latest creative professional applications
robust database featuring SQL Lite
portable built-in font vault
font searching, tagging and classification options
system font management

They promise the same graphic performance as on Mac OS X in Windows XP, Vista. Their blog mentions that they have been performing tests in the upcoming release of Windows 7.

If you do a significant amount of graphic design or wish to more easily manage a lot of fonts, I suggest you give Suitcase Fusion 2 for Windows a look. They have a free 30 day trial. If you are not familiar with the product, have a look at the videos.

Category tags: Graphics

Posted by Steven Seiller
Add comment | View comments (1) | Permalink | Trackbacks (0) | Digg This