Categories
General Security

Facebook investigated by New York AG’s office for harvesting email contacts

New York attorney general’s office is investigating Facebook for harvesting the email contacts of about 1.5 million users without their consent.

“Facebook has repeatedly demonstrated a lack of respect for consumers’ information while at the same time profiting from mining that data.” – New York Attorney General Letitia James The social network confirmed in April that it collected the email contacts of its users, but said it wasn’t on purpose.

The attorney general’s office said in a press release that hundreds of millions of Facebook users could have been affected because users might have hundreds of email contacts stored. The attorney general’s investigation comes as other regulators and lawmakers are cracking down on Facebook for its privacy practices e.g. Ireland’s Data Protection Commission is investigating whether Facebook safeguarded its users’ passwords properly, which could show violations of GDPR. In December, the DC attorney general sued Facebook for allegedly failing to safeguard the data of its users and Canadian regulators have accused Facebook of violating local laws for mishandling user data and said they could take the company to court for its privacy mishaps.

The privacy commissioner of Canada and the information and privacy commissioner for British Columbia started investigating Facebook last year after revelations surfaced that a UK political consultancy Cambridge Analyticaharvested data from about 87 million users without their permission.

Categories
General

Creative Lawsuit against LG HTC Samsung Sony ZTE Lenovo Motorola Blackberry

[et_pb_section admin_label=”Section” fullwidth=”on” specialty=”off”][et_pb_fullwidth_post_title admin_label=”Fullwidth Post Title” title=”on” meta=”on” author=”on” date=”on” categories=”on” comments=”off” featured_image=”on” featured_placement=”background” parallax_effect=”off” parallax_method=”on” text_orientation=”center” text_color=”dark” text_background=”on” text_bg_color=”rgba(255,255,255,0.9)” module_bg_color=”rgba(255,255,255,0)” title_all_caps=”off” use_border_color=”off” border_color=”#ffffff” border_style=”solid”] [/et_pb_fullwidth_post_title][/et_pb_section][et_pb_section admin_label=”section”][et_pb_row admin_label=”row”][et_pb_column type=”4_4″][et_pb_text admin_label=”Text” background_layout=”light” text_orientation=”left” use_border_color=”off” border_color=”#ffffff” border_style=”solid”]

Creative is suing LG HTC Samsung Sony ZTE Lenovo Motorola and Blackberry. Why SumGuy and what is this Creative lawsuit about? I will circle back to that in just a bit, first and foremost lets respond to the unasked question majority of you are asking; Who the hell is creative? well little Timmy, the ill-fitting name belongs to a Singapore based outfit that designs and makes computer peripherals mostly in the audio realm e.g. headphones, microphones, audio players etc. Ring any bells? no? didn’t think so. They were popular back in the wild days of late 90s and have been stuck in their little bubble for a long time now. empty pockets

Now back to the question of why the lawsuit, and why against such a massive list of the who’s who of Android OEMs. Most likely because their coffers are beginning to run a little low for their tastes thanks to being utterly mediocre.  Creative has filed the lawsuit with the ITC ( US International Trade Commission ), claiming that all the OEMs are stealing their basic design and infringing on their patent that allows a mechanism to show hierarchical categories and songs.  Yes. Creative is saying they invented displaying things in a hierarchy based menu.

Creative is asking ITC to ban all infringing devices in the US. That’s a LOT of phones. Unfortunately for everyone involved in this lawsuit, creative already took Apple to court for this exact thing for their IPOD line of audio players and won 100 Million USD, making this current lawsuit a practical slam dunk. Sadly for Creative unless some of the players decide to settle they wont be seeing the money for a while. ITC isn’t known for its speedy resolutions. We will all see this trickle down to some money in Creative’s pocket over time.

List of the Company and their US subs that are being sued by Creative:

  • ZTE Corporation of Guangdong, China;
  • ZTE (USA) Inc. of Richardson, TX;
  • Sony Corporation of Tokyo, Japan;
  • Sony Mobile Communications, Inc., of Tokyo, Japan;
  • Sony Mobile Communications AB of Lund, Sweden;
  • Sony Mobile Communications (USA), Inc., of Atlanta, GA;
  • Samsung Electronics Co., Ltd., of Seoul, Republic of Korea;
  • Samsung Electronics America, Inc., of Ridgefield Park, NJ;
  • LG Electronics, Inc., of Seoul, Republic of Korea;
  • LG Electronics U.S.A., Inc., of Englewood Cliffs, NJ;
  • LG Electronics Mobilecomm U.S.A., Inc., of San Diego, CA;
  • Lenovo Group Ltd. of Beijing, China;
  • Lenovo (United States) Inc. of Morrisville, NC;
  • Motorola Mobility LLC of Chicago, IL;
  • HTC Corporation of Taoyuan, Taiwan;
  • HTC America, Inc., of Bellevue, WA;
  • Blackberry Ltd. of Waterloo, Ontario, Canada;
  • Blackberry Corporation of Irving, Texas.

Source ITC.

 

[/et_pb_text][/et_pb_column][/et_pb_row][et_pb_row admin_label=”row”][et_pb_column type=”4_4″][et_pb_text admin_label=”bottom above footer” background_layout=”light” text_orientation=”left” use_border_color=”off” border_color=”#ffffff” border_style=”solid”]

[/et_pb_text][et_pb_divider admin_label=”Divider” color=”#ffffff” show_divider=”off” divider_style=”solid” divider_position=”top” hide_on_mobile=”on”] [/et_pb_divider][et_pb_text admin_label=”Text” background_layout=”light” text_orientation=”left” use_border_color=”off” border_color=”#ffffff” border_style=”solid”] [et_social_follow icon_style=”slide” icon_shape=”rounded” icons_location=”top” col_number=”auto” counts=”true” counts_num=”0″ total=”true” outer_color=”dark” network_names=”true”]

[/et_pb_text][/et_pb_column][/et_pb_row][/et_pb_section]

Categories
General Linux

Ubuntu 16.04 release changes & info

Ubuntu 16.04, code-named “Xenial Xerus“, is here and its amazing! many new changes, many new additions and some removals of old outdated software/functionality. Unity has been polished and streamlined along with the much maligned ads have been removed! so lets get into the details.

Snap Packages

Ubuntu 16.04 LTS introduces a new application format, the ‘snap’, which can be installed alongside traditional deb packages. These two packaging formats live comfortably next to one another and enable Ubuntu to maintain its existing processes for development and updates. In short you can now install third party apps or who desktop environments without having to worry about polluting your OS! Everything stays confined away from the rest of the system in a nice little self contained environment yet still allows access to the rest of the system. So you have

  • Apps can install with their own specific set of libraries and dependencies without issues with other existing apps or ones you may install in the future.
  • Safety & security are bolstered across the board.

Packages

As with any ubuntu upgrade there are many package upgrades and software changes.

  • Ubuntu now defaults to kernel 4.4+
  • python2 is out and python 3.5 is now the base. you can still install python 2 but python 3 is the new norm. Vim by default now uses python 3.
  • Golang is now using th 1.6 toolchain.
  • With the recent discoveries in vulnerable crypto settings in openssh, the new base OpenSSH 7.2p2 disables many to bolster security.
  • the GNU toolchain is now updated to latest version of many tools.

ZFS

“Controversy ahoy Cap’n!” ZFS is now included with ubuntu and how happy are we all to see it so. ZFS is a pretty cool piece of tech that is a mix of a volume manager and a filesystem. So think of LVM and EXT4 having a nerdy baby! lots of distros have supported ZFs before but not usually out of the box, almost all required installed software/libraries or using fuse, which comes with its own overhead. Find out more about Ubuntu 16.04 support for ZFS here.

Unity

Many of us are waiting for Unity 8 which brings with it a slew of changes such as Convergance which allows unity to handle both desktop and mobile environments and interfaces. However that day is not yet here. We are getting a polished, cleaned up unity 7.4 which comes with many changes.

  • The online search ads based on your search results are gone! dead! goodbye!
  • the launcher can be moved to the bottom of the screen.
  • Ubuntu software center is gone! replaced by Gnome software center
  • Empathy IM is gone.
  • Improved launcher integration with file manager and devices
  • Support for formatting removable devices from quicklist
  • Improved support for gtk applications using headerbars
  • Improvements to the switcher and spread backends
  • App spread shortcut is now Super+Ctrl+W
  • Unity control center option to always show menus
  • Improvements to GNOME key grabbing
  • New dash overlay scrollbars
  • Better Dash theming support
  • Improved Support for HiDPI environments
  • Show icons launching state in launcher when apps launched elsewhere

All in all Ubuntu 16.04 Xenial Xerus is a must have version of Ubuntu. Check below to download it.

Click here to download directly as ISO via HTTP from Canonical : [button link=”http://releases.ubuntu.com/16.04/” color=”orange” newwindow=”yes”] Click to download Xenial Xerus[/button]

Categories
General

Android ADB commands

Android ADB Commands can be a mysterious bunch, but they have saved me from some disasters and made my life easier overall so I figured I would write a small post today and list some useful commands, hopefully you may use in your android endeavors. First you need to have the actual binaries that let you use these commands. you can get minimal adb fastboot tools from this XDA topic (windows), or get the full android studio from here.

adb devicesShows a list of devices currently attached. example :

List of devices attached
FA43KWM04187 device

adb rebootReboots a device currently attached.
adb reboot recoveryReboots a device currently attached into recovery mode. This is usually a very minimal recovery mode for most OEM devices. You can install custom recoveries like TWRP or CWM etc that come with extra features.
adb reboot downloadReboots the connected device into download mode. This is different for most manufacturers. Download mode is for flashing radio firmware/ROM upgrade through official means.
adb reboot bootloaderReboots a device into Bootloader.The bootloader configures the device to an initial known state and has a means to select where to start executing the kernel. Bootloaders are written by hardware vendors and are specialized for the hardware they run on. In Android the bootloader typically starts either android OS itself or a Recovery. Android bootloaders often have a basic interactive mode that can be triggered by holding the “volume down” button while the bootloader is executing.
adb reboot fastbootReboot a connected device into Fastboot mode.
In Android, fastboot is a special diagnostic tool / state that you can boot your Android device into. While in fastboot, you can modify the file system partitions directly. It is an alternative to the recovery mode for doing installations and updates.
adb install camera.apkADB install let’s you install APK files directly to your phone. To use this command type adb install application, as shown in the commands part and hit enter key and it will start installing the app on your phone. e.g
adb install C:/Users/sumguy/camera.apk.
If process succeeds it will show you “Success” in the command window. If you have already installed an app, and you just want to update it then you need to add the -r switch
adb install -r C:/Users/sumguy/camera.apk
adb uninstallUninstalls and application from your device. The easiest way to find a package name is, install Package Name Viewer from the play store and find the name of the package under the App Name. If process succeeds it will show you “Success” in the command window.
adb uninstall com.android.Camera
adb uninstall -K com.android.CameraUninstall an app but keeps it’s data and cache directories. If process succeeds it will show you “Success” in the command window.
adb pushthe adb push commands let’s you transfer any files to your phone from your PC. You simply need to provide the path of file on your PC and path where to place this file on your phone.
adb push file/path/on/connected/comp \path\on\phone
adb pullSimilar to the adb push command. Using adb pull, you can simply pull any files from your phone.
adb pull \path\on\phone file/path/on/connected/comp
adb shellstarts the background terminal.

that’s all the Android ADB Commands i can think of. Am I missing something? let me know in the comments!

Categories
General Linux nginx shell

Letsencrypt ssl cert for mumble

I needed to set up a mumble server for a friends minecraft community. The Mumble software uses a client–server architecture which allows users to talk to each other via the same server. It has a very simple administrative interface and features high sound quality and low latency where possible. All communication is encrypted to make sure user privacy using either a self signed cert or a cert purchased via a vendor. The great thing about Mumble is that it’s free and open-source software, is cross-platform, and is released under the terms of the new BSD license. Since letsencrypt is awesome and provides completely free certs to the end users, I figured it would be perfect to use in this attempt.  So I started on the road to acquire a letsencrypt ssl cert for mumble.

First we need to acquire the letsencrypt client. for this you need git.

git clone https://github.com/letsencrypt/letsencrypt
cd letsencrypt
./letsencrypt-auto certonly --standalone --standalone-supported-challenges tls-sni-01

A text / curses bases dialogue will start. it will ask you to input your domain(s) you want a cert for. If you want multiple domains or multiple subdomains at the same time just separate them via a space or a comma, follow the prompts and it will install your cert in /etc/letsencrypt/live/<domain>/cert.pem. So far so good! now you need to install murmur/mumble-server on your machine. I would like to tell you how to do it but due to the nature of software it might change, the best way to do it is via checking the official mumble wiki for info on how to do it for your OS. To do it in Ubuntu I used the following commands

sudo add-apt-repository ppa:mumble/release
sudo apt-get update
sudo apt-get install mumble-server
sudo dpkg-reconfigure mumble-server

Now lets setup the mumble server to use the certs we acquired earlier.  Edit /etc/mumble-server.ini , I prefer using nano but it’s because I am a pleb, you may be a super 1337 operator and use vi or vim or directly edit the 1’s and 0’s on the drive platters. Find the following keys and edit them or add if they don’t exist or are commented out.

sslCert=/etc/letsencrypt/live/<domain>/cert.pem
sslKey=/etc/letsencrypt/live/<domain>/privkey.pem
sslCA=/etc/letsencrypt/live/<domain>/fullchain.pem

the sslCA may not exist, thats fine, this allows all mumble clients to accept the cert from LE. One last issue you need to resolve before you can start mumble-server is the ssl cert is root only access at the moment. the way I resolved this is to change the group on the files and folders. you may have a better solution, please do share it in the comments.

chgrp -R ssl-cert /etc/letsencrypt
chmod -R g=rX /etc/letsencrypt

now start mumble-server with a service mumble-server restart or whatever your OS accepts, and Voila! you are now up and running using a valid letsencrypt ssl cert for mumble 🙂 if you have any questions, or comments, or better way of doing this please let me know.

 

Categories
General

Remove spaces from file names via bash

if you need a simple way to remove spaces from file names and replace with an underscore or a hyphen or whatever else here is a bash one liner. You can also do this via python or perl or most likely via php (why? o.0) but since bash / zsh is here and readily available for me I choose to use bash / zsh.

Remove spaces and replace with underscore:

find /tmp/ -depth -name "* *" -execdir rename 's/ /_/g' "{}" \;

remove spaces and replace with hyphen :

find /tmp/ -depth -name "* *" -execdir rename 's/ /-/g' "{}" \;

Remove spaces completely:

find /tmp/ -depth -name "* *" -execdir rename 's/ //g' "{}" \;

Be careful with he above as it will remove all spaces from file and directory names.

hope this helps. if you have a better way of doing it comment and let me know 🙂