Jason Simmons, Freelance it consultant

Sockstress is able to cause internet meltdown

Posted on October 4, 2008
Filed Under IT News | Leave a Comment

A rather dangerous security flaw which can cause major havoc on the ability to deliver internet services has been discovered. A team of security researchers have discovered a security flaw in the protocol called TCP. TCP is the blood that flows through the internet. Without TCP the internet would not function as we know it.

To investigate this security flaw, an application called Sockstress has been created. This application has the ability to crash routers, Firewalls, Web Servers, Windows Servers and even Linux servers. This is a serious cross platform flaw which affects any internet device which offers internet based services. Even your small webserver sitting behind your broadband router is affected.

It works by causing what is known as a DOS (Denial of Service ) attack. This means the server will no longer be able to function or offer websites, Email or any internet based services.

It works by causing the internet server to consume large amounts of resources, and then it runs out of resources and stops working. Resources are things like Memory and Disc space. Every connection that is made to a internet servers requires resources. When a new connection is made , the servers will allocate resources for that connection. The more connections that are made, the more resources are allocated.

Sockstress creates connections to the internet server, then does nothing with them. The internet server then keeps asking “Can you use the connection now ?” and the answer is always no. And at the same time new connections are being made, and the process gets repeated. Eventually the server runs out of resources to offer to real customers, and it dies.

Think of it like this.

A few people telephone a restaurant and reserve a table. The restaurant reserves the table for that person. These people keep doing this over a period of time pretending to be different people. The restaurant reserves all it’s tables, calls in extra staff, cancels staff vacations and starts refusing real customers because all tables are reserved.

These trickster people who have made these reservations do not turn up and the restaurant tries to contact these people to see what’s happening. Some people can be contacted and they insist that they are coming, please do not unreserve my table.

During all this, the restaurant is no longer accepting reservations from real customers. The real customers have been denied service. Hence the term DOS “Denial Of Service” attack

This is a very simplistic view, but it conveys the principal of how the attack works.

I’m sure a workaround will be created soon, However at the moment we don’t have one, and the internet is as risk.

http://www.t2.fi/2008/08/27/jack-c-louis-and-robert-e-lee-to-talk-about-new-dos-attack-vectors/

NYSE depends on Linux

Posted on October 1, 2008
Filed Under Open Source | Leave a Comment

The New York Stock Exchange depends on Red Hat Linux to perform. They use Linux for trading systems and they purchase support from Redhat. Key fetures looked for are:

Another day in the office !

Posted on September 11, 2008
Filed Under Humor | Leave a Comment

The Great Office War from Runawaybox on Vimeo.

Magento Open Source Ecommerce

Posted on September 4, 2008
Filed Under Open Source | Leave a Comment

I have recently come across a very promising ecommerce product called Magento. The current version is 1.14. At the time of writing this post, Magento is just over 1 year old. It is still a very young product and show’s great promise. It is designed using current PHP coding standards, and is based around the Zend PHP development framework. It also has a very clean user interface which makes it very nice to use.

The code and the user front end are separated from each other, this makes template development so much easier. Some of key areas still need development.

I actually quite like the product and will be watching it mature. In fact when I get more time , I would like to contribute to it’s development. However as it is now, I would not recommended for a very busy or a site with a large product set.

http://www.magentocommerce.com/

Using LVM with a Ubuntu Live CD

Posted on September 4, 2008
Filed Under IT Solutions | Leave a Comment

When you boot from a Ubuntu Live CD, you do not get access to your LVM volumes. LVM is a storage arrangement which allows you to create a file system across multiple discs. For example If you have 2 500GB discs, You can make a file system 1TB in size… Be aware that without a RAID storage system, this will not be fault tolerant.

Once booted into the Ubuntu Live CD, Open a terminal session, and enter the following commands
ubuntu@ubuntu:~$ sudo su -
This will give you root access
ubuntu@ubuntu:~$ modprobe dm-mod
Installs the LVM modules into the kernel so you can see your Volumes
root@ubuntu:/dev# apt-get install lvm2
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following NEW packages will be installed:
lvm2
0 upgraded, 1 newly installed, 0 to remove and 1 not upgraded.
Need to get 325kB of archives.
After this operation, 918kB of additional disk space will be used.
Get:1 http://archive.ubuntu.com hardy/main lvm2 2.02.26-1ubuntu9 [325kB]
Fetched 325kB in 0s (726kB/s)
Selecting previously deselected package lvm2.
(Reading database ... 98423 files and directories currently installed.)
Unpacking lvm2 (from .../lvm2_2.02.26-1ubuntu9_i386.deb) ...
Setting up lvm2 (2.02.26-1ubuntu9) ...
Backing up any LVM2 metadata that may exist...done.
update-initramfs is disabled since running on a live CD

root@ubuntu:/dev# lvs
LV VG Attr LSize Origin Snap% Move Log Copy%
san vol1 -wi--- 467.00G
root@ubuntu:/dev# lvchange -a y san
Volume group "san" not found
root@ubuntu:/dev# lvchange -a y vol1

The rest of this code activates the LVM Volume ( Mine is called VOL1 in this case). You now have access to your LVM volumes.

keep looking »
rss xml image rss xml image