Computers, Programming, Technology, Music, Literature

Archive for March 2013

re-enable hibernation after disc clean up – Windows Vista

leave a comment »

 

It so happens to be that I get BSOD once in a while. It’s been over two years and I have never reimaged my Vista installation. If I had to it would take a week for me to get things back on track. After the BSOD, the crash dump occupies at least 2 giga bytes of hard drive space and I have to run Disk clean up to clear some room.

Everytime I do a Disk Clean up, that’s it Hibernation gets turned off since the disk clean up deletes the hyberfil.sys file (of course I choose to delete the hibernation data). This is such an annoyance and I end up searched for that one line command to enable hibernation back.

 

powercfg –h on

 

run it on the command prompt.

Source – http://blogs.msdn.com/b/davbosch/archive/2007/04/28/re-enabling-hibernation-in-windows-vista-after-disk-cleanup.aspx

Advertisements

Written by gmaran23

March 28, 2013 at 8:32 pm

Windows 8 God Mode – nice name btw

leave a comment »

 

All of a sudden my Techrepublic subscription had me stare at something for a while. The techrepublic author says ‘difficult’, Scott Hanselman says, they are ‘right there’. They == control panel settings and other administrative activities.

Unlock the God Mode in Windows 8

http://www.techrepublic.com/blog/window-on-windows/quick-tip-invoke-god-mode-to-take-control-of-settings-in-windows-8/7456

http://www.hanselman.com/blog/UnlockingWindows8GodModeAUsefulTrickButAlsoMysteriousNonsense.aspx

Written by gmaran23

March 28, 2013 at 1:36 am

Posted in Windows

Tagged with ,

everybody’s born, is there a difference?

leave a comment »

 

A rather too nihilistic discernment.

 

Everybody’s born, is there a difference?

In a broad generalization,
Some babies are genetically engineered,
Some babies are planned, conceived and born,
Some babies are residues of passionate love making,
Some babies are the cursed artifacts of filthy unprotected sex!

 

rotandripe

 

you might also find crowd-cattle-and-breed-rate and infant-sorrow-by-william-blake interesting.

Written by gmaran23

March 28, 2013 at 12:59 am

Posted in literature, love, poems, quotes, rage

Tagged with , , ,

She’s your own

leave a comment »

 

Written back in mid June 2012 and performed live on July 2012 at a Social Impact Volunteers’ Day. This one goes to all those poor souls that are in sex trade. Inspired by The Flock, I know who killed me, Taken, Nirvana’s Polly, Seether’s Love her, Bob Seger’s Turn the page, Neil Young’s Keep on rocking in the free world, and here comes rotandripe’s she’s your own. I wish I could direct a music video.

 

 

On dark streets played her nights
Roaming in despair cursing her life

Dancing for loony tunes
Sometimes she earned only fumes

Bearing scars under her clothes
Couldn’t confide insults she loathed


There she goes, lost her soul
When I asked, she said ‘I am sold’

Neither she liked, she got used
Learned to scrape by, her angst reduced

Always broke, she got torn again,
Society never gave her a second chance

Victim of brutality she wept alone,
When you paid she’s your own


There she goes, deprived of her soul
When I asked, she said ‘I am sold’

She did it for money,
    her choice,
Lone and Self company,
    she rejoiced

Had nothing to feed her
    kid dinner,
No one to care her,
    Was she the sinner?


There she goes, cries and howls
Hung herself, Death took its toll

 

rotandripe

Written by gmaran23

March 27, 2013 at 11:43 pm

Posted in literature, poems, rage

Tagged with , , ,

How Forms Authentication implements a secure timeout on the cookie?

leave a comment »

It does not take a genius to alter the timeout on a cookie that is stored on the browser’s memory. Third party browser add-ins and developer tool bars or HTTP interceptors are easiest ways to begin with. ASP.Net’s Forms Authentication and it’s SetAuthCookie method handles the time out in a secure way. By secure way I mean the time out value of the cookie is actually embedded in the value of the cookie itself.

Now we all know that the authenticated user’s name is part of the AuthCookie value, but it is interesting to know that the time out for the session cookie is handled the same way too. And the normal rules of cookie value encryption and MAC verification apply.

Read through the entire blog – http://brockallen.com/2012/06/04/membership-is-not-the-same-as-forms-authentication/

A few important notes below:

Forms Authentication issues a cookie and embeds the username inside the cookie. Upon subsequent requests to the server Forms reads the cookie, validates it, extracts the username and assigns the username to User.Identity.Name (as well as Thread.CurrentPrincipal.Identity.Name).

To implement the cookie-based scheme securely Forms Authentication does several things:

1) Protects the cookie by encrypting and MACing it. This provides protection against people reading the cookie (including the user) and tampering with the value (including the user).

2) Provides a secure timeout on the cookie. Forms does not rely upon the normal cookie timeout — the user could easily change this. Instead Forms embeds the cookie timeout in the encrypted/MAC’d cookie value.

3) Sets the cookie as HTTP-only. This prevents client-side JavaScript from accessing the cookie (Session, to its credit, does this as well).

4) Allows the cookie to be marked as SSL-only. This, unfortunately, is not the default nor required (but I think it should for both… well, at least the default).

Written by gmaran23

March 27, 2013 at 10:22 pm

Enable WCF help page and exception details in FaultException

leave a comment »

 

 

via config file

<configuration>
	<system.serviceModel>
		<services>
			<service name="HWService" behaviorConfiguration="metadataAndDebug">
				<host>
					<baseAddresses>
						<add baseAddress="http://localhost:8080/HWService" />
					</baseAddresses>  
				</host>
				<endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
			</service>
		</services>	
		<behaviors>
			<serviceBehaviors>
				<behavior name="metadataAndDebug">
					<serviceMetadata  httpGetEnabled="true" httpGetUrl=""/>
					<serviceDebug httpHelpPageEnabled="true" includeExceptionDetailInFaults="true" />
				</behavior>
			</serviceBehaviors>
		</behaviors>
	</system.serviceModel>
</configuration>

via code

ServiceHost host = new ServiceHost(typeof(HWService));

ServiceDebugBehavior debug = host.Description.Behaviors.Find<ServiceDebugBehavior>();

// if not found,  turn the setting on with a behavior
if (debug == null)
{
    host.Description.Behaviors.Add(
         new ServiceDebugBehavior() { IncludeExceptionDetailInFaults = true });
}
else
{  
    // make sure setting is on
    if (!debug.IncludeExceptionDetailInFaults)
    {
        debug.IncludeExceptionDetailInFaults = true;
    }
}

host.Open();

 

via code (with attribute)

 

[ServiceBehaviour(IncludeExceptionDetailInFaults=true)]
public class HWService : IHWService
{
	//code 😉
}

Written by gmaran23

March 20, 2013 at 9:39 am

Posted in .Net, C#, WCF

Tagged with , ,

if you have Integrated Windows Authentication on an Internet website

leave a comment »

 

When consolidating a few applications deployed across servers inside the corporate firewall (intranet) and outside the corporate firewall (internet), we made some decisions to port of few of the intranet sites to the internet web servers but still to have Windows Authentication enabled. This was done for maintainability reasons.

Later some time an email that came from the IT team read as below: I am posting the content verbatim and it did seem to make sense.

Do you know if your applications are using windows authentication or if it can be disabled.

THREAT:

NTLM authentication is enabled on the Microsoft IIS Web server. This allows a remote user to perform account brute force by requesting a non existing HTTP resource or an existing HTTP resource that does not actually require authentication. Requests would include the “Authorization:

NTLM” field.

IMPACT:

An attacker can attempt brute force attacks against known Windows logins, including the Administrator Account, which could potentially lead to the system being compromised. Windows also has a few easy-to-guess default names for built-in accounts: “Administrator” for administering the computer/domain, “Guest” for guest access, IUSR_<MachineName> for anonymous access to IIS, and IWAM_<Machinename> for IIS to start out of process applications. Here the machine name <Machinename> may be obtained via Windows UDP Netbios NS (port 137). If the host has an account lockout policy in place, a remote user may exploit this vulnerability to lockout a local user, provided that the name of the local user is known. The account lockout policy does not apply to the administrator account. So if the host uses a default name of “Administrator” for the administrator account, the password brute force of this account is possible through the IIS authentication interface. If the host does not have an account lockout policy in place, a remote user may exploit this vulnerability to brute force user passwords. In addition, if the request has the NTLMSSP_REQUEST_TARGET flag on, the Web server may respond to the request with an NTLM challenge that contains sensitive host information, such as the Windows server and domain in which the authentication will be checked.

SOLUTION:

Currently there are no vendor supplied patches available for this issue.

Workaround:

1) Disable NTLM authentication for your Web server. This can be done by unchecking “Integrated Windows Authentication” within “Authentication

Method” under “Directory Security” in “Default Web Site Properties”.

Scan Results page 6

Note:
If NTLM cannot be disabled, an alternative remediation option for this issue is to perform the following 2 actions:

1) Ensure an Account Lockout Policy is in place.

2) Ensure the Administrator Account has been renamed to something more unique.

A Lockout Policy will ensure an attacker does not have an unlimited amount of time and attempts to guess the password.

 

 

Using Windows Authentication on an Internet website – Is it’s safe? Well, the answer really depends what the word safe means to you. I will leave the decisions to you. Weigh the pros and cons. Analyze.

With NTLM, or Kerberos enabled for Windows Authentication on IIS, the passwords are never really sent as clear text. In fact the passwords are not sent, but just the hash of the credentials are. Typical argument is well explained in the blog – http://www.aniltj.com/blog/CommentView,guid,d6bb26b9-8371-40f1-a357-ab9023df86ad.aspx. Read it to entirety. But the gist is below.

 

 

In general:

  • Whether the site is in the Intranet security zone determines whether IE attempts to automatically authenticate when prompted by the server.
  • Whether the site is in the Internet security zone determines whether IE attempts to use Kerberos authentication (Kerberos authentication requires the client machine to be able to contact the KDC to get TGTs etc, and generally this isn’t possible in an Internet setting, so IE uses NTLM instead).
  • Whether your user is logged on to the domain or not, on their workstation, is irrelevant to determining the authentication mechanism used, or how IE sends credentials to the server.

If the site is placed into the local Intranet security zone -and- Internet Explorer is still in its default configuration (if you go to Tools -> Internet Options -> Security -> Custom settings for Intranet zone, there is an option “automatic logon only in Intranet zone”), then Internet Explorer will attempt to log you on using your current logged on credentials when the web server sends back its 401 response (IE will attempt an anonymous request first no matter what the configuration, then the server will send back a 401, then IE will attempt to auto-logon). If the credentials IE sends automatically are not accepted by the server (the server sends back another 401), then IE will prompt you to supply alternate credentials.

 

 

 

Written by gmaran23

March 13, 2013 at 6:57 pm

Posted in .Net, security, Windows

Tagged with , ,

And Death Shall Have No Dominion by Dylan Thomas

leave a comment »

 

And death shall have no dominion.
Dead men naked they shall be one
With the man in the wind and the west moon;
When their bones are picked clean and the clean bones gone,
They shall have stars at elbow and foot;
Though they go mad they shall be sane,
Though they sink through the sea they shall rise again;
Though lovers be lost love shall not;
And death shall have no dominion.

And death shall have no dominion.
Under the windings of the sea
They lying long shall not die windily;
Twisting on racks when sinews give way,
Strapped to a wheel, yet they shall not break;
Faith in their hands shall snap in two,
And the unicorn evils run them through;
Split all ends up they shan’t crack;
And death shall have no dominion.

And death shall have no dominion.
No more may gulls cry at their ears
Or waves break loud on the seashores;
Where blew a flower may a flower no more
Lift its head to the blows of the rain;
Through they be mad and dead as nails,
Heads of the characters hammer through daisies;
Break in the sun till the sun breaks down,
And death shall have no dominion.

Notes:
Source – http://www.helium.com/items/2328525-poetry-analysis-and-death-shall-have-no-dominion-by-dylan-thomas 

The poem “And Death Shall Have No Dominion”, by Dylan Thomas celebrates the undying and eternal strength of the human spirit. It is because of this strength that death does not claim ultimate victory over humanity. The dead are never truly lost to us but live on through the beauty of their memory and spirit. The struggle continues.

Three unrhymed verses make up the work. Beautiful universal imagery focuses on the sea, bones, and burial. Each verse starts and ends with the phrase “And death shall have no dominion.” Even as Dylan brings us face to face with the physical reality of death, he disarms it. He gives death meaning by allowing us to see the beauty behind it, especially the beauty of human courage and dignity. Timeless values will live on in the stories of those gone before. It has been said that to live on in the memory of loved ones is to never die.

In the first verse, the poet shows that, in death all are one. Race and skin color have no more meaning when skin is no more. After death, the body is united with nature. “Dead men naked they shall be one/With the man in the wind and the west moon;” In death, men shall be naked, as they are from their mothers’ wombs. In death, the innocence of Eden is restored. It is here that men become the stuff of legends. Here a man becomes part of a constellation, part of a grand design bigger than himself. Though his bones are naked, they may thus become clothed in eternal glory instead of mortal skin. “When their bones are picked clean and the clean bones gone,/They shall have stars at elbows and foot;” Their foibles will be forgotten and their glories remembered. Their confusion forgotten, they will attain an eternal perspective of clarity. Those who have drowned in a universal sea of human sorrow shall be restored and taste joy again. Lovers will be reunited. “Though they go mad they shall be sane, Though they sink through the sea they shall rise again;Though lovers be lost love shall not; “

In the second verse, Dylan takes the reader to a graveyard on the sea floor. The dead here appear to be either sailors or other souls lost at sea. These dead died bravely, having suffered in their lives. The wheel of time has tested, tortured, and tried, but not broken them. “Strapped to a wheel, yet they shall not break; Faith in their hands shall snap in two, And the unicorn evils shall run them through; Split all ends up they shan’t crack;” The unicorn is a very old and symbolic motif sometimes used to symbolize Christ or God. Has God or religion let these souls down? “Unicorn horns are said to be harder than diamonds and to be able to neutralize poisons. Unicorn tears can heal both physical wounds and sorrows of the heart.” The refrain “And death shall have no dominion.” symbolizes this triumph.

In the final verse, the poem wraps up on land, by the seashore. Dylan draws out the fact that the dead are no longer aware of the physical elements that once made up their home with the words “No more may gulls cry at their ears Or waves break loud on the seashores” Yet new life may spring up in their place, an intrepid life like a flower that “lift its head to the blows of the rain;” Their innocence shall burst through like daisies. This innocence ultimately wins over even the sun, breaking it down. To break down the sun is to steal death’s power. The phrase “Heads of the characters hammer through daisies;” implies that it is the character of those dead that hammers through the pain until innocence breaks through. The daisy flower, pure and childlike, pushes stubbornly through the hard earth of the grave to rise defiantly and bloom.”  Break in the sun till the sun breaks down.” The daisy blooms as dawn breaks, symbolizing the burst of innocence or day star as the night loses out. In the same way, death starts to lose its power as humanity regains purity and embraces hope, thus discarding pain and hate. To break in implies breaking in a horse until it serves the master, instead of the other way around. In this way, death can be made to serve man. “And death shall have no dominion.”

 

P.S. Notes borrowed from an unknown source on the world wide web. Poem is posted here for relish and educational purposes, and is copyrighted to respective Authors and Publishers.

Written by gmaran23

March 13, 2013 at 6:41 pm

Posted in literature, love, poems

Tagged with , ,

Normality is sobriety | Destroy the Monotony

leave a comment »

 

 

Normality is sobriety,
Sobriety is superstition,
Superstition is God,
God is an abstraction.

Abstraction is a hypothesis,
Hypothesis is often a fallacy,
Fallacy is contagious,
Contagious needs extermination.

Extermination is mortal.

Immortality will be an illusion today, tomorrow and forever,
Until the human stupidity is eradicated.

 

-rotandripe

 

might sound skeptical, idiotic, and meaningless for those that don’t share the vibe of the poem. might not even sound relevant or rational to someone. might even sound pointless to some others. But that’s the point!

Written by gmaran23

March 13, 2013 at 6:34 pm

Posted in literature, poems, rage

Tagged with , , ,