Felix Ker's blog

It’s the day we’re all waiting for - Download Day 2008! Download Day starts at 10:00 a.m. Pacific Daylight Time on Tuesday, June 17th.

Download Day is a day set to break the Guinness World Record for the most Software Downloaded in 24 Hours. All you have to do is visit http://mozilla.org/firefox to download Firefox 3 and you’ve done your part. Simple huh?

“We’re not asking you to swallow a sword or to balance 30 spoons on your face, although that would be kind of awesome.”

SpreadFirefox.com

When is Download Day?

Here are some times you can follow:

• Singapore/Malaysia/Beijing/Shanghai/Hong Kong/Taipei/Manila: 18 June at 1:00 AM
• LA/Phoenix/Seattle/Vancouver/San Francisco: Tuesday, June 17 at 10:00 AM
• Brisbane/Canberra/Sydney/Melbourne, Australia: June 18 at 3:00 AM
• Darwin/Adelaide, Australia: June 18 at 2:30 AM
• Auckland, New Zealand: June 18 at 5:00 AM
• Tokyo, Japan: June 18 at 2:00 AM

I’ve listed out some cities randomly. Where are you residing at? If the city you’re staying at isn’t listed here, do refer to this page for the time.

Why Firefox 3?

• New Features - Firefox 3 sets the innovation bar very high with exciting new features, including one-click bookmarking, the smart location bar and lightning fast performance.
• Security - Keeping you and your personal information safe is our top priority. Firefox 3 includes phishing and malware protection, plus our new instant site ID info.
• Productivity - With features like built-in spell checking, session restore and full zoom, Firefox 3 makes it possible to work faster and more efficiently on the Web.
• Customization - Your taste and needs set you apart from the rest. With Firefox 3 you can choose from over 5,000 add-ons that help you customize your browsing experience.
• It’s Free. Free, free of malware, spyware and adware.

In short, Firefox is one of the best browsers, in terms of security, functions, customizability and perhaps user-friendliness.

What can I do?

1. Blog about this event. Let the world know about this event.
2. Tell your friends about this event via MSN. You can set it as your msn nickname or display message.
3. When you’re downloading, let your friends know, so they can download too!
4. Go over to facebook/Friendster to share with everyone. Spread it at any sites you can, including iMeem, myspace, etc!

Read more about download day

So, do you plan to help? If so, how? If not, why?

Related entries:

• Guinness World Record Set: Firefox Download Day
• 11 Push Ups make a World Record! Dare to try? Just one?
• Safari 3 for Windows and Mac
• World Record set for 100m race
• Who should I not date?

Read on to find out how I got hacked and eventually defaced and what I did to recover & protect my website.

I was surprised one evening (last year) when I came online and found my blog defaced by hackers. I still remember the page being very simple having big headers “h4ck3d by xxxxx”. Let’s not name anyone in this scene okay.

When I googled my own site, even Google’s Cache shows the hacker’s page. My page must’ve been hacked the night before when I didn’t come online.

How felixker.com got hacked?

As I’m on a shared hosting environment, there were other sites that had security flaws that enabled the hacker to enter through the vulnerability. That was all I know when I told my provider I got hacked, as I wasn’t the only one reporting the issue.

Next, I went into Plesk (Hosting Control Panel) to check Apache’s logs for suspicious activity. This was when I found out that the hacker got in through a neighbouring site (on the same host) and placed a php backdoor script in my site. Next, he renamed my index.php to index2.php and placed his own index file (that contained those hacked messages).

I looked up the IP address (on apnic.net) I saw along with the access records and identified that the IP belonged to Indonesia. Not surprising at all.

How I recovered my blog?

I don’t have much files inside my public folder, so all I got to do was to browse around my folders through FTP and identify those files I didn’t add. After that, delete all them to prevent the hackers from being able to access my site through the backdoor.

Other than that, I set all folders I don’t need to 644 permission.

Hacked second time!

I thought I was smart by removing all the files and no one could use the backdoor to play pranks. I was wrong.

The hacker went back to the main site that could be exploited, replaced the backdoor file on a different folder and put back the same hacked message.

I had to contact support regarding this to have them help out. They took down the affected sites and removed the exploits before putting the sites online again.

Prevention

I shall share some prevention tips whether you’re on shared or dedicated environment.

1. Update your softwares regularly! There shouldn’t be much issues with Apache/PHP these days, but it’s still wise your provider updates the software into the latest stable build.
2. Make sure you’re not running out-of-date PHP softwares! If you’re using any CMS programs, check the program site regularly for updates and tips on security. It’ll do you good in the long run. You’re likely to encounter less bugs too.
3. CHMOD folders and files to 644 when not needed to modify/create files. Unless your programs need to create files inside any folders, don’t leave them as 777. 644 is always safest. FTP into your host now to change the permissions. Don’t invite unwanted files.
4. Secure your passwords. That could be the weakest link. When your login details are too easy, e.g username:admin password:password. Its always wise to use a password with 8 or more characters and should be alpha-numerical!

You can also attend a Complimentary Workshop on Cybersecurity if you’re interested to learn more about security..

There are many tips, but I can only think of 4. What can you share with me with regards to hacking and prevention?

Related entries:

• Fauzi @ Ping.SG : Don’t bully Ahwei
• felixker.com shifted!
• Don’t put dry ice in your car seat without opening the window
• How to hide a projector in one’s underwear
• felixker.com - Blog for sale

Finish reading my post before you tell me there’s nothing that’s free in the world .

You may not have heard of pfingo, a Singapore VOIP provider. They’re not only a VOIP provider, they use IP to deliver services over the Internet for greater conveniences and flexibility for mobile users!

What can I do with pfingo?

• Make calls
• Send SMS
• Check info on your mobile phone
• Call your friends with pfingo for free

What do you get for free when you subscribe now?

• $2 for IDD Calls (Call Australia/China/Hong Kong for 45 minutes, Call USA/Canada/Malaysia for 35 minutes)
• $1 SMS Credit (Capable of sending 33 SMS)
• 3 months free subscription. Are you sure?  Yes, they won’t ask for your credit card number.
• Free 400MB push email

Click here to sign up

Let me tell you why I signed up.

I make calls often over at Malaysia with Wi-Fi available. The call is very clear and I can talk to my girlfriend for up to an hour.I usually hang up when feel my ear turning warm.

And, let’s be honest, it’s free. I was offered free credits and subscription too, and that’s why I signed up! According to the site, I started using the service since 11th Apr 2007; it’s more than a year!.

Recently, I sent a fax over to Malaysia while at work, not having access to a physical fax machine. The fax just appeared well!

Are you sure it’s free?

I’m using it, and I’ve yet to pay a single cent.

Is it reliable?

pfingo was started by Starhub (SGX-ST), Singapore’s second largest info-communication company. What do you think?

When can I sign up?

From now until 31st May 2008 in order to enjoy this promo! After that, you won’t be entitled to the free credits.

Sign up now for free

Current users, do you like pfingo? Just signed up? Let me know if you liked the service after signing up!

Related entries:

• Anyone wants an invite to Pownce?
• FREE HUGS!
• Course and Career Fair @ Sp
• News Update: Apple iPhone, DoubleClick Inc. & Apple/EMI DRM-Free
• Shopping for Shermian’s birthday present

Last week, I wrote about my experience with a desktop using Windows XP with only SP1, adding on that Windows XP SP3 will be out very soon. Today, I read news that its out and available for download, but unofficial. Get it if you can’t wait.

I’m waiting for the official release for my PC and laptop at home! It should be out next week.

Related entries:

• Are you already using Windows XP Service Pack 2 (SP2)?
• Christmas Mp3 Ringtones Pack (Free Download)
• Windows XP : (Re)-Install
• Windows Live Messenger Updates to 8.5 via Windows Update
• Don’t put dry ice in your car seat without opening the window

This question may sound silly, but I believe not everyone is on SP2 yet.

I happen to be using a friend’s workstation and discovered I couldn’t install Microsoft’s SQL Management Studio (SQL Server 2005). The main reason was because the workstation had only SP1 installed. Unable to do my work; totally disappointed, I was!

Why upgrade?

Microsoft gave us many reasons such as Proactive Protection, Compatibility, Improved Manageability, Windows Firewall, Blocking Pop-ups, Internet Explorer, Updates, Wireless, and more new technologies.

The few features I find useful:

Windows Firewall - I believe this is the most useful. Remember the Blaster worm a few years back? If you had your firewall turned on, you should be protected against it. We don’t know what’s coming up from hackers, but with the firewall, you should be kinda safe.

Pop-up Blocker - I personally find this quite useful. 4 out of 5 stars. Simple, pop-ups irritate and disturbs what I’m looking at. Just don’t like to close windows while looking at sites.

Wireless Internet made easy - Wireless networks can be discovered and managed with the friendly GUI. What I just did was double-click on my home’s wireless, set the 64-bit WEP network key and I’m in. Fast and easy, isn’t it?

Read more about the features

Windows XP SP3

SP3 is coming out very soon. Sometime within these few days. (According to sources) I’m not sure if you can upgrade to SP3 without going on SP2.

I’ve tried Windows XP Service Pack 3 Release Candidate 2, but didn’t notice any improvements. Maybe they’re just too transparent to me. Did SP3 just made more keys for Windows XP? 

Whatever, let’s just wait for an official release. Will Microsoft be late again?

Have you upgraded?

Are you already using Windows Vista? Or still on Windows XP? Service Pack 2? Or still SP1?

Related entries:

• Unofficial: Windows XP Service Pack 3 (SP3) available for download
• Windows XP : (Re)-Install
• Windows Live Messenger Updates to 8.5 via Windows Update
• Don’t put dry ice in your car seat without opening the window
• Windows Vista: To use or not