June 27th, 2006

Neko (lofulah)

X.509 certificates...

via fbartho: http://www.oreillynet.com/pub/a/mac/2003/01/20/mail.html?page=1

It covers mail encryption and/or digital signing.

The link is actually a bit out of date though, but the process is pretty painless. Just head over here:
https://www.thawte.com/secure-email/personal-email-certificates/index.html
And then click on "Join".
You'll go through a process of e-mail verification, then information gathering (not that much personal stuff, but you'll need to give them 5 questions for later verification, should you lose/forget your password). Note that they don't gather a phone number, so you _should_ go back and add that in afterwards, so they can call you for lost-password retrieval.

Once that's complete, request a certificate, and if you're running in Safari and using Mail, it's very easy. As soon as your certificate is ready, they'll send you an e-mail. Click the "Fetch" button, and it'll download (an .exe file, yes, I know. Just click "Download"). Keychain Access will pop open. Select "Keys", and you should see a "Key from www.thawte.com". Double-click on the private key, and select the "Access Control" tab, then change it to "Confirm before allowing access" and check the "Ask for Keychain password". This way, if you lose control of your computer, people can't just sign e-mails with your key, without your keychain password. Which... should be ok, unless people get control of your keychain password.

Eh, well, so the last bit is actually up to you. Once it downloads, you're all set to send e-mails.

Mail me. :) I'm at ben.juang //at// comcast.net.
Neko (lofulah)

spam, The Rainstorm(s) of 2006.

Spammers launched a huge number of directory harvesting emails over recent days in an apparent attempt to update their email databases. The attack, which lasted several days, peaked on Sunday, 18 June when web security firm BlackSpider intercepted 109 times more of these malicious emails than it normally intercepts.
The flood of emails, used by spammers to collect valid email addresses, originated from a botnet of more than 90,000 compromised PCs, or 'spambots'. Directory harvesting emails are continuing to circulate but in far fewer numbers. Emails that formed part of the attack contained little or no text and were simply used to verify that email address were valid in cases where email servers didn't reject emails. Junk mail lowlifes then used the addresses in their own campaigns or sold verified lists on at a premium to other spammers.

...(more: http://www.theregister.com/2006/06/26/directory_harvest_attack/)

---
I've forgotten about this song. :: purrs::

---
Washington Post has pictures of the effects of our insane (and awesome) rain storms as of late: http://www.washingtonpost.com/wp-dyn/content/gallery/2006/06/26/GA2006062600733_index_frames.htm?startat=undefined (link may not work. If it doesn't, check the Washington Post homepage.)

[append]
Huh, looking at those pictures, I guess we were lucky. We didn't see anything that bad, although we certainly did see our backyard turn into a river of sorts, water at least 4 inches deep in places. A similar river formed in the common area behind our backyard. And both rivers merged into our neighbor's backyard to form a lake. The water flowing past our driveway in the front of the house splashed up possibly a foot, as it hit the other curb of our driveway. Kinda sucks that I just realized that I should have taken picture ^^;; Won't see this again, probably. Unless the weather system really does stay stuck over our area. I wouldn't mind that all too much, honestly, but it would be annoying for others. We'll see.
  • Current Music
    Where is the Love - Black Eyed Peas Feat. Justin - Where is the Love-(Promo CDS)
  • Tags
    , ,
Neko (lofulah)

Guys, I need a hand here.

Say LiveJournal or Xanga started to search your blog's content for keywords, and added links to these keywords in order to get profit, what would your response be? Why? And how can they make the feature (or curse) better?

I'm arguing with someone who thinks we could profit out of parsing RSS feeds as we display them by adding links to various words that we find in the content. She thinks it's good. At least to make money from. I'm of the opinion that it's terribly unethical.

I've offered up the possibly options:
1) Instead of doing it for the RSS feeds, we'll do it for those who wish to post directly to our site, (a multi-blog poster, if you will) and from there, provide some sort of "preview" page, with optional links for the author to put in.

2) ...actually, that wasn't really an option.
  • Current Music
    Ashitaka to San - 08 Joe Hisaishi, Mario Klemens & Czech Philharmonic Orchestra - Mononoke Hime Kouk
  • Tags