FarhanFaisal

I just noticed an immediate increase bandwidth in one of my sponsored hosting website, www.alif.com.my. When I check the referer, I finds out there is one website who put my radio.blog into his website. He is feeding his visitor with my bandwidth.

So, I fire up google and search for “php how to check referer”, I found the hacks to solve it. This script will actually check for referer before it loads. Specify your own server, replace www.mysite.com. If the request was not from www.mysite.com, it will just display, “Nice try”

< ?php

if ( eregi ( "www.mysite.com", $_SERVER['HTTP_REFERER'] ) )
{
// do something
}
else
{
echo "Nice try";
}

?>

Now, the website cannot view the radio blog in his website. Instead, there is a message comming out

Google keyword suggestion tool. It is a useful tool for Google AdWords user, to find the best keywords for their ads.

Google team have compiled up 41-pages guide for all advetisers, to improve their effectiveness of Google Adwords. Download it, and sure you will find it very useful.

The maximum effect
Making the most out of your Google AdWords account

I found an article about how Google positions their search result and the ads in a way that it is so effective. This feature will for sure attract the advertiser to invest in Google AdWords..

The arrangement made a F-shape area, where user will browse from the left page, vertically, searching for pictures or keywords that they are looking for, and then move to the right side for any additional information.

Reference
http://www.enquiro.com/eye-tracking-pr.asp

2 researchers and a pair of graduate student at University of Washington have found that Mozilla user is less vulnerable to security issues, compared to IE.

They have reseased web-crawlers to 45,000 website and perform some test of todays browsers vulnerability to conduct the test.

Download the latest Mozilla Firefox now, at Mozilla.com and tweak it for best performance

http://news.yahoo.com/s/cmp/20060210/tc_cmp/179102616
http://www.farhanfaisal.com/?p=10

ASCII art is an art of combining characters laid out to form a pattern on screen. Its nice to be used in a text mode environment, such as ssh, irc, and other similar environment, just to get yourself not too boring

You can go to this site, http://www.network-science.de/ascii/, where you can generate different ASCII art to form a text in different size and font.

This is an example

You can change welcoming message of ssh in the file /etc/motd/. Try relogin and you will see the welcoming message

This is a techniques that enables you to login into a remote Linux machine without having any password challenge. You can immediately logged in your remote linux machine, with a single ssh command.

This technique requires a pair of keys, generated on your local machine. The public key will be placed in the remote machine, and the private key resides on your local machine. During key generation, it will prompt for the key password. You need to leave it empty, for no password login.

This technique is useful for administrators that need to login and manage alot of computers from a single machine. No more hassle to key in password in each of the remote machine. This technique is also useful if you want to make a shell script to transfer a file using scp (Secure Copy). The file will be transfered wthout any password challenge, and will be transfered securely.

First thing to do, generate the key pair on your local machine.

su-bash$ ssh-keygen -t rsa

For the key password, leave it blank

The key pair generated are being store at /home/budihost/.ssh/
The public key, id_rsa.pub need to be transfered into .ssh folder in the remote machine.

su-bash$ ssh server “mkdir .ssh; chmod 0700 .ssh”
su-bash$ scp .ssh/id_rsa.pub server:~/.ssh/authorized_keys

You can now try to login to your remote machine,
su-bash$ ssh -l budihost server
You will be logged in without any password prompt

Meebo is a new web-based IM client, developed with AJAX. The system integrating the core of GAIM 1.5 with AJAX. Nice work for all of them.

Meebo allows user to login to most popular IM provider. There are Yahoo Messenger, AIM or ICQ, Jabber or GTalk and MSN Messenger. They claims that users password were encrypted using 1024-bit RSA keys. I hope they do..

You should have a try.

http://www.meebo.com

I have tried VMware player. Its cool man, quite fast when loading and handling it. I love it. But I couldn’t find function to suspend a virtual machine, means I have to shutdown my virtual machine properly to close it.

Try it, you’ll love it

Now I would like to share something I have to gain more hhee..

Since Google have come into the internet, it seems have change the whole internet. Its really wonderful actually, from the comprehensive search engine, Google AdSense, Google Earth, Google Talk, and more to come I hope.

Now I will concentrate on Google Search hacks. I will show how you can search for a particular file on the internet, and search your own website, even you dont have a search engine. Really cool for a fully static HTML website right?

At first, try to go to this link:
http://www.google.com.my/search?hl=en&q=mysql+ext%3Apdf&btnG=Search&meta=
You can see the search string in link provided. You can see, it can search for a particular topic and with what extension. You can also for a specific file using inurl. Try to search inurl:passwd.txt, you can see many search hits that found filename passwd.txt
This actually a vulnerablity to the owner of the system, where Google will reveal your confidential file. But, there is a solutions for system owner, using GHH – The “Google Hack” Honeypot. It will simulate the unsecure page, as if it is the vulnerable page, avoiding attackers from the actual possible vulnerable file.

Another tricks with Google is to search a particular file in your own site or domain. The example if in the link below:
http://www.google.com.my/search?hl=en&q=farhan+site%3Asbudi.net&btnG=Search&meta=
The search string used to search a keyword farhan in site sbudi.net.

I hope this article will be a guideline on how to find valuable information in the internet. Believe me, you’ll thank Google alot