OpenSSL Heartbleed bug. How vulnerable is my data?

Category: Media

image source: heartbleed.com

Image Source: heartbleed.com

The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library.

What does this mean for me and my data?

Well, as a consumer, there's not a lot you can do, except wait for the service providers to implement the update. Your data hasn't exactly been 'hacked'. It hasn't been stolen by large organisation seeking to cause havoc.

Someone may have access to it though, from eavesdropping while it was in transit.

Even on a HTTPS connection, the heartbeat bug would have allowed someone to gain access to the encryption keys on the server you are making the transfer with. This means they can then decode the data that has been sent.

Depending on how the server is then set up depends on what other data can then be accessed.

I'm a service provider what can I do?

Updating your server is a first step. Hopefully if your using OpenSSL, then you had an update available today (8th April 2014). I did on Ubuntu 13.x and Centos 6/6.5. You should also read more into this to ensure you change your keys etc. heartbleed.com

Source: http://heartbleed.com

Posted 1 weeks ago (8th Apr 2014) - by

Ubuntu 13.10 error with libboost1.49-dev

Category: General

I had many many errors trying to install libboost1.49-dev.


This resulted in not being able to update packages, make any other installs or software updates. Big Problem!

Errors such as
Unmet dependencies. Try 'apt-get -f install' with no packages
or
Unpacking libboost1.49-dev (from .../libboost1.49-dev_1.49.0-4_amd64.deb) ...
dpkg: error processing /var/cache/apt/archives/libboost1.49-dev_1.49.0-4_amd64.deb (--unpack):
 trying to overwrite '/usr/bin/bcp', which is also in package libboost1.53-tools-dev 1.53.0-6+exp3ubuntu8
No apport report written because MaxReports has already been reached
                                                                    dpkg-deb: error: subprocess paste was killed by signal (Broken pipe)
Errors were encountered while processing:
 /var/cache/apt/archives/libboost1.49-dev_1.49.0-4_amd64.deb
E: Sub-process /usr/bin/dpkg returned an error code (1)


What worked for me is as follows:

sudo rm /var/cache/apt/archives/libboost*


I then ran:
sudo apt-get install -f


These may not help, and aren't a guaranteed fix, but if they do help then great!

Posted 3 weeks ago (27th Mar 2014) - by

Leancy Scam. Cannot Withdraw

Category: Bitcoin

Leancy was an investment site, probably mainly focused on bitcoin, but accepted money investments as well.
Like many suspicious investment sites around in 2014, they over a fairly high ROI in a short period of time. This follows the patterns of ponzi schemes and such, and therefore should always been taken with caution.

The main issue now is that since 12 March 2014, people have been unable to make withdrawals. You can still make investments, although why would you want to if you can't withdraw...
Many people did get payouts from leancy, but that may just have been part of the trust building process.
IN my opinion, any site that deals with money like leancy does, and bitcoins and investments, should be able to get an issue such as this fixed within a day or so, not take a week.

Many have now lost trust in Leancy, so even if they do resolve the issue, the damage to the name is already there. Some people many invest, but hopefully they figure before that point.
We have to hope now that websites that had the adverts for leancy will try to find out from the owner, or simply stop displaying the ads for a site which just scams peoples coins and hard earned cash.

leancy scam no withdrawal site down

On a different note, I have been more successful with sites such as PBmining and receive regular payouts. The rates are significantly lower than CEX.IO and stand a chance of covering the investment.
Put some numbers in the calculators on the website and just look at your "potential returns". It's a loss on your original investment, you would have to make the BTC back buy buying and selling the GH/s on the market.

Posted 1 months ago (17th Mar 2014) - by

Gmail Update. Reach more & Receive more unwanted email from G+ users?

Category: Media

If you're a Gmail user you'll probably already know, thanks to the email Google sent around, that starting this week Gmail will suggest you Goole+ people as recipients without exchanging email addresses.

In the send to boxes within Gmail, some lovely javascript will add onto the bottom of your email address contacts, the Google+ connections you have.

What emails will I recieve from other Google+ Users?
By default settings, other users can contact you Once until you reply to them, thereby sharing your email address.

How will I know which emails are not from my google contacts?
Emails from people outside your circles will be filtered into a new Social category in your Gmail inbox (if enabled).

Where can I change which Googl+ users can contact me?
A new setting can be found in the settings section of your Gmail on the "General" tab.
who can email you via your Google+ profile setting image

Where can I get more information?
At current you can get more information from the Google support section on Emailing Google+ connections

Posted 4 months ago (10th Jan 2014) - by

Couldn't Install Office 365, Check Internet Connection, Disk Space

Category: General

So, I've been having issues installing Office 365 University specifically on a new install of Windows 7.

I've tried the fix it solutions by microsoft but have still been resulting in the same error.

couldnt install office image

So, I checked the error logs and found the installer was having an issue downloading i641033.cab with the following message:

2014/01/03 01:22:19:909::[1080] Error: Type: WinHttpQueryDataAvailable: failed Http Request has no data: Last error: 0x00002ee2. 
WinHttpQueryDataAvailableFailed ErrorCode: 12002(0x2ee2). File http://officecdn.microsoft.com/DB/12345-67890-ABC-XYZ/Office/Data/15.0.4551.1011/i641033.cab download failed.
(note: not exact link)

So naturally, I hit the link and downloaded the file, then placed it in the temp dir at %TMP%

New error message:

2014/01/03 01:33:15:969::[1764] Dirty machine detected: registry entries present but path does not exist: C:/Program Files/Microsoft Office 15/ClientX64/integratedoffice.exe

This file is found in the cabinet, so I extracted the contents of i641033.cab to C:/Program Files/Microsoft Office 15/ClientX64 and tried the installer again.

While slowly making progress, the installer is now working.

office 365 slow connection install image

After several hours of waiting on my poor internet connection (less than 1MB for some reason), the download finally finished and i was presented with the installation complete video that office has.

office 365 install complete image

So, to sum it up, check your error logs (bootstrap.log) in the %TMP% folder to find the files to manually download, download them and put in the right places and office setup will continue. (Or grab the initial file from the Files/Uploads section here (1.87Mb)

Posted 4 months ago (3rd Jan 2014) - by

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | Next>>