A picard moment for you (shodan.io)

Oh yes its our friendly scumbags from shodan (my blog) – over to you captain

connect from 
cloud.census.shodan.io[94.102.49.193]

Its from our beachhut scanning outpost in the Seychelles (my blog) and a small /24 this time if you want to mass block this scammy isp and its lovely client.

So shields up, and i hope you never get this recycled ip addresss once shodan.io have fucked it up reputation wise.  I never delist shodian.io ip addresses from who ever the isp is.

Enjoy your day.

vbs attachments in the wild

forget suntan lotion with an nbc suit

forget suntan lotion with an nbc suit

It was kind of interesting to note that after this (my blog) my virus scanner got rather bored, one day they where detected and the next boom no viruses.

Anyhow many years past i set up a rule that executable files would be denied being received by the zoo’s mail server,  it was still there and i was unsure if it worked until some genius tried to send a vbs thing.

I do hope they got the memo that technical support scammers are not paying at the moment.

At least i know my filter works as a plus point, and my hate of microsoft is still worth retaining.

It has been months since anybody successfully attempted to send a virus to a real address here in the zoo.  I read that in memory viruses are the thing and they appear to only work in microsoft windows which the zoo is deficient in.

I am not complaining about having a bored virus scanner for email.

Discount newspapers and Rupert Murdoch’s poor shareholder return.

The_Sun_(Gotcha)Bananas was in a newsagents one day when the price of newspapers came to my attention.   The price of the monkey houses paper does not change and i know what it costs but if you read a chav newspaper (image to your right) then Murdoch and family varies the price by it seems by 50%.

Being generally unaware and not somebody who thinks good things about the Murdoch family (my blog) this does not concern me but when the human in front of me did not have enough money for a eyesight chart*. The paper was returned unsold.

This i found interesting  that even perhaps a more gullible human found the value proposition a poor one.

So when Murdoch (& family) next complain about newspapers not being profitable remember that he is breaking it not the people who buy it, I could remind you about phone hacking (my blog) and a pay for news culture (my blog) too but i think you know who is the worse offender here after all most of england and wales has yet to hear about watford and olive oil due to his misdeeds as a owner or press baron.

I got our copy of the internation daily bonobo rowandian bush telegraph (a non murdoch paper) and returned back to the zoo however if i was in charge of mergers of television i would make Murdoch and family have to sell tv rights to a new satellite tv operation that he or his family could never own.

*it does look like one

Shodan.io’s beachhut in the Seychelles.

seuchelles-dumpAnother sighting for you (my blog) from the unbeautiful Seychelles this time.  It is 89.248.172.16 from an isp i have mentioned for dns probers quasinetworks.com (my blog)and its a house..

connect from house.census.shodan.io[89.248.172.16]

picardSo one more to crimson firewall.  I like blocking shodan.io ip addresses and you should too.

I like writing posts about shodan.- come on send me more shodan this is fun.

 

A windows 10 tale of woe and despair including British India

A pissed off zebra

A pissed off zebra

As a last resort the giraffe enclosure here in the zoo sent a message via the bush telegraph to us apes for fix there computer. A microfilter was handed over by us in the monkey house and an hour later i happened to be near so I popped into the giraffe enclosure – bananas is brave like that.

I was presented with a crap NEW hp laptop ruining windows ten which did not ‘work’. God i hate windows 10 and any microsoft (microshit) products.  How the fuck somebody thought that was a great os at ms must have been smoking something amazing

Anyhow …

Email was the main problem, and that was it appears to be a microsoft induced version of hell as a email client, and synchronising stuff took forever thanks to British Telecom but that i think is down to a slow computer as our linux stuff seemed ok.

I was not the first on the scene – family where, a helpful library idiot and british telecom had been and failed to sort things out or change any settings.

But the internet connection was embarrassingly slow and no speed test websites rendered in internet explorer, much to my embarrassment.  The hub gave out an rfc1918 c address

The adverts where horrible.

If i worked for BT i would be ashamed of the service they provided. any view of HP being not negative too is bizarre.

Sisyphus is still a role model

Sisyphus is still a role model

However i turned off a few things, got some email that Microsoft had lost back and got printer queue clear.  Which is more than you say for Family,Library or corporate ‘help’.

I suppose it does work but not something i could recommend.  But the money upgrades must be a plus piont for the corporates soon.

If that is the average persons internet experience then both HP and BT plc hate the internet as a thing.

If your an advertiser and wonder why people block adverts then buy windows 10 and run it on a bt broadband connection your soon come to a conclusion.

r8169 network card mysteries

tube recycle those 1's and 0's

tube recycle those 1’s and 0’s

I have a 8169 chipset network card (my blog) and i hate it when in this bizarre mode.

Recently it has been playing up, so i decided to disable some restarts of daemons and firewall operations.  The thing still disconnected while the router was happy with another connection, so its been restarting the router to get the connection back so restarting the wrong thing to get the right thing ‘up’.

In the end i regenerate my dnssec and it appears to stay up.  Layers but I really hate that ethernet network card for being awful.

I then explore wol adding a ‘p’ to ug settings (seen with ethtool).

ethtool -s eth1 wol ugp

Becomes

Supports Wake-on: pumbg
Wake-on: pug

And that appears to still not fix my drop out problem.   I have no damm idea why the card now needs a p setting to retain connection, while other things connected to the router are still working and its debian stable.

Grr!

Rubbish from the Seychelles (.sc)

seuchelles-dumpWe apes in the zoo where wondering why most seychelles ip traffic seems either to be dns probes or testing our other servers constantly.

I mean there’s got to be a reason why so much foul crap is directed from there to us all (probably including you too).

Perhaps i am too aware of this paradise for sending crap

letsencrypt fail

The zoo runs several websites off one piece of hardware and some of you lot probably will be amazed that it is possible (my blog) and it works.

However lets encrypt is a wreck behind the scenes even run as root i failed to get past this web hoster’s botched implementation certbot

Carol Beer little britain says computer said no

Carol Beer little britain says computer said no

Problems encountered — one registration per /etc monkey.com and banana.com need two accounts

I delete one , i get further than before then i need to create directories and when i run those commands (printf) the client still says no and when dealing muiltple ip addresses then some editing of the python syntax is needed

This

:/tmp/certbot/public_html# $(command -v python2 || command -v python2.7 || command -v python2.6) -c “import BaseHTTPServer, SimpleHTTPServer; \
s = BaseHTTPServer.HTTPServer((”, 80), SimpleHTTPServer.SimpleHTTPRequestHandler); \
s.serve_forever()”

Needs to become

:/tmp/certbot/public_html# $(command -v python2 || command -v python2.7 || command -v python2.6) -c “import BaseHTTPServer, SimpleHTTPServer; \
s = BaseHTTPServer.HTTPServer((‘<ip address>’, 80), SimpleHTTPServer.SimpleHTTPRequestHandler); \
s.serve_forever()”

However a dns redirect trumps this feature so its a real pain in the arse – all i wanted was tls website for an expired tls domain – no joy and for a postfix instance a certificate which seems to demand a website which i dont want.

I also deleted my 443 config (i did make a backup) but it strikes me as very much not ready for the real world. I decided to buy ssl instead.

Perhaps my tlsa records (my blog) upset the process but when certbot does computer says no when i wanted was something along the lines of a crt, pem chain which i could figure out the rest instead i get a boiler plate 443<monkey>.com apache template somewhere in /etc.

rocketletsencrypt is too restrictive and its configuration leaves much to be desired.  OK I was working this as an in place upgrade rather than a ‘virgin’ domain which never had ssl cert before which i could test* but its not rocket science tls but the process involved is horrid.

Peace.

*to do this i would create dns zones,change dns glue records,switch on an ipv4 address and add a www thing,delete the bad account data,and then a day later try again.  No thanks.

Midway through an unscary horror film..

Jezebelle

Jezebelle

Bananas had finished watching something specific one evening some years ago and was about to turn off the television when a “scary moment” was about to happen in a horror film which never appeared to get a wide cinema release.

It was something to do with tattoo’s hence the picture with the idiot with a microsoft logo tattoo and the moment was too soon to scare as the tattoo was not seen but a grimace on the actors face in a mirror was shown instead.

Perhaps she too had a microsoft tattoo (my blog).

I then turned off the the television.