She told me that she shows everyone the poem I wrote six years ago. She even had it translate it, so people who do not speak English would understand it. By the way, translations of poems, specially not by the author, really make for a crappy poem. So this exposure has given me the idea that maybe I should post my poem here, and traslate it myself. What poem you may ask? I like to call it the best thing I’ve ever written, the most deep and personal words that have ever appeared from my pen. So, perhaps soon I will post the piece of my own writting I hold most dear.

I don’t sleep to dream, but to forget.

-david macias

In the odd case that you didn’t own a calendar, today is February 1st. What is he significance of this date? Honestly, none. However, thanks to a little critter running around the internet, today might be a bit significant, at least to a couple of network administrator somewhere.

These netadmins, are the netadmins of SCO.com and MS.com. Turns out that the creator of the MyDoom virus, if you do not know what I am talking about read a newspaper, has decided to DDoS these two domains. SCO today, and MS tomorrow.

Aren’t they just some cute little critters?



-david macias

Security never stops, now does it?

Fixes include:

It was possible for users in the Group Admin and User Admin groups to become a member of the Root group (reported by Samuel M. Stone, bug #135).

Being admin for a certain area (e.g. Story Admin for stories) made it possible to delete all objects in that area (e.g. stories) even if the user was not supposed to have access to them, provided the id of the object was known.

It was possible to delete other people’s personal events if you knew the event ID.

It was possible to browse through the comments of a story even if the user did not have access to the actual story (reported by Peter Roozemaal).

Due to an XSS issue, it was possible to change someone’s account settings (including the password) if you got them to click on a specially crafted link (reported by Jelmer, fix suggested by Vincent Furia).
The comment display suffered from the possibility of an SQL injection (reported by Jelmer).

It was possible to inject Javascript code in the calendar (reported by Jelmer).

It was possible to execute (but not save) Javascript code in the comment preview (reported by Jelmer).

-david macias

Attended the MLK march conclusion to hear the main speaker (the President of Prairie View A&M) He was good as well as the speech by the congreman for that area. Best part was a quote which I will try to paraphrase:



“Do not fear the actions of the bigot, but the inactions of the good people.”

I took this picture at a Pittsburgh museum, the model actually moved. Definetly a fun trip and the amazing detail was great. Took around 2 years to build the whole model.

Like there is not enough sendmail information on the net here is a quick and dirty tip for you.

Synopsis:

Want to send one email to multiple receipients/users using sendmail here is how.Edit the virtusertable file and add the user and the alias where the email will go to. The alias is a group name.

vi /etc/mail/virtusertable
user1@dmacias.org   DM-group

Save and close the file, and now make the file

cd /etc/mail
make

Now it is time to add your aliases, but before you do that make sure that you sendmail.mc file has the correct location for the aliases file.

vi /etc/mail/sendmail.mc

If you made any changes to the sendmail.mc file then you must change the cf file. You do that with the following command.

m4 sendmail.mc > sendmail.cf

Now make or edit the aliases file in whatever location you specified in the sendmail.mc file. I use the /etc/mail/ folder for all my sendmail files.

vi /etc/mailaliases
DM-group: user1@domain.com, user2@domain.com

I added two recepients in my DM-group, now you have to map the aliases.

newaliases

And presto all you need to do is restart sendmail

/etc/rc.d/init.d/sendmail stop
/etc/rc.d/init.d/sendmail start

Well, not a siginificant update, but just some minor ones. Check geeklog.net for all the details.



-david macias

The trials and tribulations of a future college graduate…So there is this awesome job that I wanted. I applied for it a year ago, knowing full well that there was no way I could get it, but I wanted a bit of sight into the position and the company. The position is IT Risk Management, it involves hacking into networks and doing security assessment of new technologies companies are trying to implement. The company is a huge multi millions dollar world organization with awesome benefits and extremely smart people to work with. The dream job.

So I interviewed with them again this year, got through to the second interview, they put me up in this awesome hotel, wined and dined me, then I went through a battery of interviews. Everything was going great until the last interview, where I felt I wasn’t aggressive enough.

Today I got a letter, saying that I didn’t get the job.

*censored*!!!!!!!!!

To all of you out there looking for jobs, good luck and keep your head up!

-dm

A busy sports weekend for me!On Saturday I got 2nd place in a racquetball tournament, and Sunday (today) my team (Team Red) won the city league championship.

Celebration on Tuesday!

-dm

A little something I wanted to add, since I read slashdot like if it was the only page in internet, I figured I add the rss feed to my site.

-dm