News Roundup for 3/1/2017

YouTube Cable Service? – YouTube TV

(Via The Verge)

Well, not cable, but it includes cable networks.

When I first saw the headline, “YouTube launches its own streaming TV service” I didn’t think much of it. Then I read on a little bit. $35 gets you the four major networks, (ABC, CBS, FOX, and NBC), and 35 cable channels. – That caught my attention.

The price includes 6 accounts, similar to how Netflix has profiles.

Evidently there are going to be some gaps in channel availability due to various broadcasting agreements not being in place, but it’s progress. It also sounds like the programming will be available on demand, no worrying about watching at a particular time. Hmmmm….

Check the service out here.

Xbox Game Pass – Library of games available to play

(via Gamespot and xbox.com)

Scheduled to launch in Spring of 2017, it’s going to be similar to a Netflix Streaming subscription in so far as you can play whatever games are available on the service, all you can eat, with new game being added and removed monthly. Right now it’s expected to be $9.99 / month.

I’m not sure about you, but I don’t think I would go for it, unless possibly it included the Live subscription as well. The FAQ on the Xbox site says that you don’t need a Xbox Live membership to subscribe to the service, but not playing online removes a lot of the fun of games.

In my house, we buy a game, and go nuts playing it until we get tired of it. With Xbox live Gold membership, we get 2 games a month, and we don’t even play most of those. Unless it’s a title that we desperately want, we wait for sales to buy games.

I’m sure that this will be a popular service though, just not for me.

Amazon’s S3 service has problems Tuesday – Chaos ensues

(via CNET and personal experience)

The amount of chaos that ensued I’m sure varied from person to person and company to company. I noticed it when Amazon Music Unlimited stopped working. Of course, the ironic part of this is that the web site Is it Down right now? runs on Amazon’s S3 service, and of course was down as well.

I can’t blame Amazon, I can count the number of outages I’ve experienced from them on one hand, but this still outlines the issues with sending your infrastructure to the cloud. As a community member in this thread mentioned, ” I prefer a crew of Amazon or Google engineers working on a solution to my outage rather than me”. I don’t necessarily echo the sentiment, I would still be clicking refresh over and over, but I can see his point.

Get a much faster Clonezilla

CloneZillaIf you haven’t downloaded Clone Zilla since before January 27th, 2012, do yourself a favor and go get it. Version 1.2.12-10 is out, and holy mackerel is it fast.

I just started taking an image of a drive, and in less time than it normally takes to get to the “Start Clonezilla Live” screen, I already had the image going. I’m not sure if the speed of the cloning is any faster, but it’s well worth the download.

I also noticed an option to check to see if the image file is restorable. That’s pretty sweet too.

Many thanks and Kudos to the CloneZilla group!

The Downloads page is here:

http://clonezilla.org/downloads.php

Let me let you in on a little secret, this is a really old post. I originally wrote it in 2012, but I think it’s still kind of relevant. If you haven’t downloaded CloneZilla in a long time, do yourself a favor and go get it, they are continuously improving it.

Need a great Python Tutorial–Python-course

Let me preface this with the fact that this isn’t my first time trying to learn python, and this certainly isn’t the first tutorial that I’ve tried, but I decided I should take another shot at it.

I ran across a recommendation to try www.python-course.eu and I figured, heck, let’s give it a go.

I’m working my way through it, and I have to say so far so good. Of course, I started following the Python 2 tutorial, which seems to be the default, and I’m using Python 3, which has different syntax. Do yourself a favor, and if you’re using Python 3, follow the Python 3 tutorial.

If you’re using Windows, you can download Python here at Python.org

Yahoo Data Breach – Change your yahoo passwords / Look out for Scam Emails

You may have already seen news coverage about it, but yesterday Yahoo announced that data from at least 500 Million email accounts had been stolen. The data stolen may have included:

  • Names
  • Email Addresses
  • Backup email addresses
  • Telephone Numbers
  • Dates of Birth
  • Hashed passwords.

If you have a Yahoo account, even if you haven’t used it in a long time, login and change your password. If you use the same password for any other accounts, then change those passwords as well.

Also, be on the lookout for scam / phishing emails about the breach, this is a great opportunity for the bad guys to attempt to steal your information, even if you weren’t effected by the breach. Don’t follow links that you receive in emails, and do not open attachments in any suspicious emails.

The data was apparently stolen in 2014, and has recently been seen up for sale on the dark web. Yahoo believes it was a state actor (someone working for a government) responsible for the breach.

Sources:

These 500 Million Hacked Yahoo Accounts Are A Phishing Paradise. Warn Your Users!

500 Million Yahoo accounts Breached

News Roundup for 9/23/16

500 million Yahoo Accounts Breached

USA Today reports that the accounts were stolen in 2014, and security researchers have been hearing rumblings of a hacker trying to see them since about August.

In an article from Business Wire, Yahoo believes it was a state actor that did it.

Of course, the scary thing here is that many users use the same passwords for everything, and although the passwords stolen were hashed, we all know that won’t last forever. Of course, Security Questions and Dates of Birth were also stolen, combine that with the other information, and you can see why this is so big of a worry.

Google Allo

I’m a bit confused on why Google spent time on Allo, sure, a the smart assistant seems pretty sweet, but why not put that into “OK Google” instead of a proprietary messaging app. Is there really a need for another messaging app? The reviews aren’t terribly good,

Snowden says that it’s a honeypot for US surveillance Efforts

The Verge Review says it’s “fine”.

Gigabit Speed for Rural users using Power infrastructure?

AirGig – Uses Power lines for 1G data. Not how you think though. They put a wireless device on top of the powerline.

ArsTechnica says that it’s very experimental. AT&T says it’s not even on their technology roadmap yet. The antennas are inexpensive though, and it would be a huge boost for rural areas who are historically underserved.

How to change port settings for printers in Windows 10

First off, click on start, then type “printers” and you should see “Devices and Printers”, click on that

printer-01

Find your printer and click on it once, then click on “Print Server Properties”

Update 9/14/17 – If this doesn’t work for you, try typing control panel, then clicking in it. Find “View Devices and Printers” and click on it.

printer-02

Once the Print server properties dialog appears, click on the tab which reads “ports”.

You should see an option for “Configure Port”.

printer-03

Or you may see “Change Port Settings” on the bottom of the dialog.

printer-04

 

Note (9/14/17): If these steps don’t work for you, I’m willing to bet you have a USB printer that just isn’t being recognized. Try unplugging both the power and the USB port from the printer. Then plug in the USB cable, and the power.

If this still doesn’t help, I would uninstall everything related to the printer, unplug the USB cable, and the re-install it. This has helped me out, especially with those fancy all in one printers.

News update–2016-08-08

I have the nastiest habit of finding tidbits, then writing a little blurb about them, and never ever posting them. You see, the idea is to make it a regular feature of the site, I mean, we can’t all read every bit of news, right?

These are still pretty good, although they were from early July.

Federal Government releases their strategies to recruit new CyberSecurity talent (Link to FedScoop)

“The government has hired 3,000 people for cyber security jobs in the first half of the current fiscal year”, and plan on hiring 3,500 more before year end.

There’s even a Scholarship for Service (SFS) program called CyberCorps offering scholarships, and stipends, funded through the National Science Foundation.

After graduation you have to work for a Government Agency, or if approved, a State, Local, Tribal or Territorial Government, or a Federally Funded Research and Development Center, in a position related to cybersecurity. You have to work for them for a period equal to the length of the scholarship, with each academic year equaling one calendar year.

Intel is planning on selling “Intel Security” (formerly McAfee). (Link to Knowbe4.com)

Evidently Brian Krzanich, Intel’s CEO, thinks that antivirus is crap. He’s not the first to say so, with so many new variants of malware popping up, AV companies are having a hell of a time keeping their signatures up to date.

Court Rules that Microsoft can’t be forced to turn over emails stored abroad. (Link to The Guardian)

Will companies move emails all around the world? Does this set the stage for a neutral country to set up some sort of data service?

Flaw in Windows allows attackers to gather Usernames and Passwords

Zach Whittaker points out a scary flaw in Windows that allows malicious URLs to gather usernames and passwords of Microsoft accounts. The title of the Article is “Microsoft won’t fix Windows flaw that lets hackers steal your username and password

Evidently the flaw was discovered in 1997, and relies on Internet Explorer and Edge allowing users to access network shares. When attempting to access a share, those browsers silently sends the username and hashed password.

Of course, since Windows 8 began allowing users to sign in using their Microsoft accounts, the username and password which is sent is the user’s live account info.

How can the danger from this be reduced?

  1. Don’t follow bad URLs in emails. – Yes, this is always going to be hard to follow especially if you’re responsible for a large user base.
  2. Use strong passwords. – Please tell me that this is how you handle passwords these days.

Microsoft said that they are “aware of this information gathering technique” and that “if needed, we’ll take additional steps”.

Create Repo runs out of disk space in tmp

I have one CentOS 6 computer that is completely stand alone, as in no internet / network access. What? Yea, in this day and age, but I won’t get into the whys.

To keep this box updated, and to make additional packages available on demand, I manually copy the repository files to it, after which I rebuild the repo.

After the last update, besides running into a kernel panic that was easily fixed, I also ran into an issue with filling up the /tmp partition.

Basically, I ran into a “IOError: {Errno 28] No space left on device” and “Worker exited with non-zero vaule: 1. Fatal”. Picture below for your viewing pleasure.

out-of-space

I did a lot of searching for terms like createrepo and No space left on device, but didn’t have much luck finding anything. I was hoping to have createrepo save it’s temp files in another location, but no luck there.

Now, I’m not much of a Linux Admin, so forgive me if this is a clumsy fix, but the thought occurred to me that I could specify a different location for tmp, or even just change it temporarily, then I would be back in business.

I ran across this wonderful post that explained how I could do so using:

export TMPDIR=/path/to/other/directory

Someone in the comments mentioned that the command above would leave the change in the environment, and I assumed change it permanently, at least for that user. I wasn’t sure on that point, but they suggested using this instead:

env TMPDIR=/path/to/other/directory; command

I gave it a try, and it didn’t work for me. Now, I’ll admit here that I was running a script instead of a command, which could have made the difference.

What I ended up doing was to place the following at the beginning of the script:

export TMPDIR=/path/to/other/directory

Then the following at the end:

export TMPDIR=/path/to/original/directory

Evidently /tmp is the general location, and that’s what I set it to.

Kernel Panic in CentOS 6.7 After Kernel Upgrade

I ran into this issue after updating with Yum, on the next reboot, the system wouldn’t boot properly. In my case, the error I received was

Kernel panic – not synching:

VFS: Unable to mount root fs on unknown-block(0,0)

 Picture of the full error below:

error

In my case, I’m running CentOS 6.7 in a virtual machine running on Oracle VirtualBox.

You should be able to get around the error pretty easily, just reboot the computer, and when you see the “Press any key to enter the menu” pictured below, press a key.

press-key1

You should be presented with a list of the kernels you have installed, pictured below, select the previous one, and press enter.

previous-kernel

After doing that I was able to boot into CentOS.

I did a little digging, and found this bug report, which matched my error, the only difference I can see is that the kernel version was different.

The first solution I ran across was to run “yum reinstall kernel”, which is what I did, and the issue was resolved. Evidently in some cases the kernel doesn’t fully install, and in some cases fails transaction checks.

If the reinstall doesn’t work for you, keep reading the comments, there’s several other solutions, hopefully one of them will help you out. Feel free to let me know what worked for you.

Good Luck!