Got Goat?

Augie does a nice job of explaining our “addiction” to the Goat.See you there!

More on page 26

Additional Googe Apps MX Records

Google Apps (http://google.com/a) has added additional MX records to be added to zone files. Below is the records, with priorities, in order, in plain text. Easy to copy/paste. Technically, priorities can be different as long as they match the correct Value and are in the order determined by the provider, however these [...]

More on page 24

A summary, according to man

#man less
LESS(1) [...]

More on page 23

PCI Compliance - Disabling SSL v2

Technical Comments (0)

If your ecommerce application is taking credit card numbers and you’re hosting with a reputable host, most likely you’re familiar with becoming PCI Compliant.  Without going into much debate over the policies behind the requierments and motives, one of the things that you must do is disable SSL version 2, which has multiple documented vulnerabilities.  You can do so, assuming you’re using Apache with the following:

SSLProtocol ALL -SSLv2
SSLCipherSuite HIGH:!SSLv2:!ADH:!aNULL:!eNULL:!NULL

Don @ November 9, 2008

Moderation requests for my unmoderated list

Technical Comments (0)

I have a status list.  All the systems I manage, I’ve configured root’s mail to be directed to this list.  The list is completely unmoderated because of the sheer number of systems send mail to it.  The *problem* was that as list owner, I was receiving moderation requests for system messages.  The key here is exactly what the moderation message tells you: “the message has an implicit destination”.  If Mailman doesn’t detect the list address in the To or Cc, by default, it gets flagged for moderation.  System aliases don’t by nature work.  Privacy Options –> Recipient filters –> “require_explicit_destination” to “No”.

Don @ July 21, 2008