Saturday, July 26, 2008


wpa attack:
Use dictionary attack: need 7gb dictionary. You can torrent, or create your own

Man in the middle: monkey-jack... Dumps all ur username and passwords to you first before sending to server...

Fake ap - to thwart man in middle hackers - but only if hacker use other than kismet.

Securing: disable ssid, change ssid, disable dhcp, position your ap, change password, vpn?

Barcamp: Danger Will Robinson, Someone's Hacking your Wireless!

One of the more 'risque' topics in barcamp today: wireless hacking. It was way too tempting to resist: they had a barainstorming session on web marketing that i wanted to attend... Nah... It was too good to resist.

10db antenna gives you 1km radius
Atheros chipset wireless card the best for hacking wireless... Look for higher MW. Mormal is 100, best is 300MW
Software: no support in windows, many in linux
How: detect wireless (war driving), war chalking - marking wireless zones
Wirelss can be detected using: beacon sniffers use - airopeek etc.
Passive sniffers use kismet
Netstumbler lets you map gps coords of access points
Kismet: detects hidden ssid And mac ids - also checkout gkismet 4 mobile: mognet, ministumbler macs: mac stumbler ap scanner

Openwrt with a linksys router that has 32mb ram. Wl ap 0 wl monitor passive promisc 1. Run kismet.

Friday, July 25, 2008

Barcamp: Yahoo's Search Monkey App

if you've never been to yahoo's developer network, then it's my turn to say: where you been ma?

Today yahoo presented one of their cooler apps: the yahoo search monkey.

Search Monkey lets you define more information for your search results when searched in yahoo. In other words, customize your search results!

On the side of the coin, if you're a website owner, you can build apps that expose data from your site that other users can use to customize their search results... Case in point was linked in profile data for users to use to present their search results

Unfortunately, you need to know html (duh..) and php. Well i'm out! Still cool anyways. Check out Search Monkey here.

Barcamp: Flexible Rails? Sweeet....

I was watching this presentation on Flex... And I'm asking myself: dude, where've i been all this while?

Flex rocks! I'm gonna be looking at it once i'm done with learning the crazy prototype, jquery, and scriptaculous... Phew... Turns out that by itself is more than just a walk down the park... It's more (to me) like a swim in the rapids... With no pants! Ouch..

Anyways, back to flex...
Flex seems to be able to take your data and make useful graphical representations out of it...(mmm, i like...) . In my case, working with erp systems, we can actually present data in cool, interactive ways now...

Sweet...maybe i'll blog more on this later...

Barcamp is in town!

it's a fine saturday morning and i'm not in bed (What?). That's right L&G's! Barcamp's in town, and i'm warming up my cold ass on the tiny seats (truth is, my ass is huge) of the presentation rooms this fine day.

Cool stuff coming up today! We got yahoo dev network, we got presentations on flex n JRoR, and a kickass demo on making money in youtube!

Look's like it's gonna b a long, butt flattening, but exciting day for us malaysian geeks... Reminds me of chandler's party chant: 'Spring Break! Woohoo!' (Geez... how geekier can I get?)

more on this later!

Thursday, July 17, 2008

Using TinyMCE as WYSIWYG editor

Well, well, it's been a month since we wrote... a lot of new stuff's come out,

Our customer required WYSIWYG capability for editing their blogs, which they used

There are lots of Javascript editors out there.

TinyMCE was one of the coolest I found, with everything you need under the sky for WYSIWYG editing - link to pics, link to media, blockquotes etc...

If you plan on putting up WYSIWYG for your forms, here's a link to download.

Friday, June 20, 2008

Nested Layouts in Rails

I was wondering how to keep the layouts in my rails application code DRY - I was close to the point of kicking myself for having to make changes to all my layouts whenever something standard changed - so i researched online and found the above diagram by Matt McCray in his blog.

I used Matt's method for nesting layouts, but instead of defining a method called sub_layout in my controllers, I called a pre-defined rails controller method:

<% render :partial => "layouts/#{controller.controller_name}" %>

and defined a partial layout named after every controller I had, which had different settings for their own views. Rails has a local variable called 'controller' you can use to access its controller's name and even the action used for the current view. So using this, I don't have to define additional methods in my controllers, nor use any plugins.

kudos to Matt for coming up with this in the first place. Thanks!