How to clean the Goo dot gl virus

computer virusThis is an example of an exceptionally false-positive computer virus concern. More accurate: General lack of having a clue.

How to clean the goo dot gl virus when you run it?

The worm spreads on Twitter as a link. Careful with this.

quora query

Computer Viruses: View the question and associated answers on Quora.

Published in: on December 21, 2012 at 4:54 am  Comments (4)  
Tags: ,

The problem with randomness

Comic Strip

Random number generators: The devil is in the details

How to generate random numbers from spam

I found this the other day, via WPRandom:

Generating random numbers is pretty complicated if you need them for cryptographic algorithms. This software generates them based on spam comments…

It caught my eye as a sort of “spinning spam into RNG gold”, or more likely, PRNG (pseudo-random number generated) gold. Many WordPress blogs, whether self-hosted on or not, effectively use Akismet as a comment spam sieve. As I’ve learned during my time with WordPress, and with spam comments, Akismet will not publish comments that it identifies as probable spam. This provides a possibly crucial aspect of SecurityDump’s application:

no one will be able to see the source of your numbers, unless they hack into your database

All the details are available on the Google project site for WPRandom, Problems and Attack Vectors wiki. I have no idea if SecurityDump worked the bugs out of this yet or not. I found it an amusing idea, though, to squeeze some genuine value from the efforts of spammers.

Published in: on October 5, 2012 at 3:51 am  Comments (8)  
Tags: ,

SHODAN related infosec assortment

wiki defcon 2

The other Defcon

I never attended DEFCON, though it remains a dream I hope to realize one day, soon. It may soon become too logistically awkward due to increasing numbers of attendees.

Shodan is a remarkable search engine. Traditional search engines use “spiders” to crawl websites. Shodan culls data from ports. It was created by John Matherly in 2007. He continues to develop it.

Shodan is helpful for locating web server vulnerabilities. It is available as a free service, for up to 50 searches. Query syntax includes searches by country, host name, operating system and port. Shodan can search for software AND hardware. It has been acknowledged by mainstream media. The most prominent coverage was in early June, via The Washington Post, when Stuxnet received so much press attention.

Me and Shodan

Next is my Scribd infosec collection. It isn’t exclusively Shodan-related. This is why. (more…)

Published in: on June 13, 2012 at 9:24 pm  Comments (2)  
Tags: , ,

Periodic Table Gallery

An exciting time for chemistry

Two new elements, flerovium and livermoreium, also known as Fl and Lv, and formerly known by the much blander names of ununquadium and ununhexium, have been approved for entry[1] into the Periodic Table of the Elements!

timmurtaugh via Flickr

The Periodic Tattoo of Elements

In honor of the event, I assembled a minor gallery of favorite periodic tables.

The children’s Periodic Table on the U.S. EIA site provides the basics. Better yet, it links to the Los Alamos National Lab (LANL) Periodic Table, which is just as impressive and complete as I would expect.

Mendeleev and Dave Hobart

Celebrating the 175th birthday of Mendeleev’s Periodic Table

While viewing, consider a recent post by senior LANL employee David Hobart, Actinide Analytical Chemistry, History of the periodic table…and my history with it, which was charming, as well as educational.

There is an “evolution of the table” section, facts about the table’s inventor, Dmitri Mendeleev, born 175 years ago[2], and this:

As the legendary physicist Richard Feynman put it, “If some universal catastrophe was to engulf the world and humankind could retain only one scientific concept to rebuild civilization, what would it be? The chemist’s answer is almost invariably the Periodic Table of the Elements.

Memorable periodic tables (more…)

Published in: on March 24, 2012 at 9:02 am  Comments (7)  
Tags: , , ,

Ad hoc text analytics

Twitter 2009

I found an old sentiment analysis application. It has very unglamorous packaging but a  good algorithm under the hood. I ran the Twitter user id’s of the brightest people I know. well, know of, who are active Twitter users. The assessment of “bright” was subjective by me.  All are acknowledged experts or advanced degree holders. Maybe half speak English as a second language, but are sufficiently articulate that their “essence”, well, intelligence shines through.

Guess what: It worked! I don’t know if anyone cares about this sort of thing, that really sharp successful people score well on this sentiment analysis indicator. That doesn’t necessarily mean it would have any predictive value. And no one seems to care much about this anyway. But what I’m saying is that most of these people only have okay-ish Klout scores e.g. 40′s. But they’re not trying to use Twitter for any particular social media purpose. Well, I don’t know that with certainty.

Published in: on February 13, 2012 at 6:00 pm  Comments (6)  
Tags: , ,

Chart art

Edward Tufte’s first text, The Visual Display of Quantitative Information, introduced standards for graphical representation. It is considered the definitive guide for visual display of complex data.

Envisioning Information

Visualization of Edward Tufte visualizing data

Visualizing Edward Tufte’s thought processes?

I found this while surfing Flickr. Austin Kleon of Austin, Texas is the artist. The image represents the cognitive process by which Edward Tufte transformed raw data into digestible information while writing Envisioning Information, one of his many follow-on publications to Visual Display. It is a mind map.


IEEE Spectrum’s Innovation blog featured the topic of data visualization, profiling Edward Tufte as a practitioner. The emphasis was unusual for IEEE. Use of words like “doyen” was too. I’m enjoying IEEE Spectrum more and more these days! If only I could become a member… (more…)

Published in: on February 4, 2012 at 10:25 pm  Leave a Comment  
Tags: , , , ,

Taleb and the language of risk

Black Swan by T Mann courtesy of Wikipedia

The original Black Swan

Last night I read about The Black Swan a.k.a. Nassim Taleb on EL&U SE (English Language and Usage StackExchange website). Apparently Professor Taleb wants to introduce a new word to the vocabulary of global financial collapse, antifragility:

So let us coin the appellation “antifragile” for anything that, on average, (i.e. in expectation) benefits from variability.

Consensus on EL&U was that this was blatant tub-thumping by Taleb.

The original Black Swan

I agree with my EL&U comrades-in-arms: Antifragility will cause obfuscation. There are many adequate, extant words*that Taleb could use. Instead, he is intent on creating a term that will be uniquely associated with him. I am not convinced that there ARE any entities that benefit from variability. A delta hedge that is long volatility is the only construct that I can think of off-hand, and I don’t think something that contrived was what Taleb had in mind.

Nassim Taleb already co-opted “Black Swan”. If Thomas Mann were still alive, I think he would have a decent case for plagiarism or even theft of intellectual property. Couldn’t Taleb have thought of an expression that wasn’t previously used by someone who won a Nobel Prize in Literature, who wrote a book with the same title, and pertaining to an anomalous event, also known as a statistical outlier?

Anyway, after the briefest of browsing on a search engine or two for antifragility, antonyms and humor, I found Fragile Web Development with SQL on Rails(more…)

Published in: on February 1, 2012 at 6:28 am  Comments (8)  
Tags: , , , , , ,

US Mint ends production of one dollar coins

Last Tuesday, 13 December 2011, The U.S. Mint announced that current production of one dollar coins is ending. The Mint will continue to produce a few one dollar coins for collectors, as required by law. But these will have numismatic value, and cost more than $1.00.

instead of producing 70-80 million coins per president, the Mint will now only produce as many as collectors order.

US Mint one dollar coin

2010 Native American $1 Coin reverse

Forty percent of $1 coins were returned, unwanted, to the Federal Reserve Bank each year.

Circulating demand for $1 coins will be met through the Federal Reserve’s existing stockpile, which will be drawn down over time.

My favorite $1 coin featured Sacagawea, guide to Lewis & Clark. This is the 2010 Native American $1 coin, reverse side. It is beautiful. Click through for full details from the U.S. Mint. (more…)

Published in: on December 16, 2011 at 12:23 pm  Comments (6)  
Tags: , , , ,

Idea for a very open ID

Be receptive! Be open to each and every type of user input for authentication.

Universal sign on

This very user-centric approach for identity resolution leverages the many open API’s now available for web services. Feel free to select your user name-of-choice!

  • @Twitter user name
  • name
  • user
  • name
  • user or user blog URL
  • name
  • user
  • Open ID provider URL
  • more?

In his identity resolution related post, developer Luis Farzati emphasizes that:

the objective is to allow the user to input whatever wanted [in order] to login… If it exists as a valid username out here, we’ll find it and suggest it!

Casual testing

Luis Farzati’s Smart Identity Resolver Widget is on Github. A demo is included. I tried it. (more…)

Published in: on December 6, 2011 at 9:04 am  Leave a Comment  
Tags: , , ,

Internet standards for HTML

The World Wide Web Consortium (W3C) is standardizing over 100 specifications for the open web, in at least 13 working groups. The CSS Working Group alone is in charge of 50 specifications. This does not include work on Unicode, HTTP and TLS.

New tag proposal.  Not really.

The nice thing about standards is that there are so many to choose from

I was waiting to post this until the debate between W3C and WHATWG about the status of HTML5 scope was resolved. However, I have waited since February 2011. Consensus is that HTML5 is being inappropriately used as a catch-all for every standard supported by modern browsers. Modern browsers actually include much more: CSS3 styling, WOFF (web fonts), semantic web elements such as microformats, 3-D graphics including SVG, and performance enhancements. HTML5 tags are merely one part of semantic web support. As a result, terminology was modified by WHATWG. HTML is the new HTML5(more…)

Published in: on November 15, 2011 at 4:25 am  Leave a Comment  
Tags: , , , , ,

Get every new post delivered to your Inbox.

Join 40 other followers