Category: networks and networking

Oct 27 2012

using openvpn to bypass NAT firewalls

OpenVPN is a free, open source, general purpose VPN tool which allows users to build secure tunnels through insecure networks such as the internet. It is the ideal solution to a wide range of secure tunnelling requirements, but it is not always immediately obvious how it should be deployed in some circumstances. Recently, a correspondent …

Continue reading »

Permanent link to this article: http://baldric.net/2012/10/27/using-openvpn-to-bypass-nat-firewalls/

Oct 05 2012

a positive response

Whenever my logs show evidence of unwanted behaviour I check what has happened and, if I decide there is obviously hostile activity coming from a particular address I will usually bang off an email to the abuse contact for the netblock in question. Most times I never hear a thing back though I occasionally get …

Continue reading »

Permanent link to this article: http://baldric.net/2012/10/05/a-positive-response/

Aug 21 2012

you are at 2001:db8::ff00:42:8329.

Verity Stob is having trouble getting a new IP address. What with the IPV4 address exhaustion problem, it would seem that the only alternative is IPV6. This is causing Verity some grief. Stress brings out my unoriginal streak. I said: ‘Where am I?’ ‘You are at 2001:db8::ff00:42:8329.’ ‘What?’ ‘Your new IP address at 2001:db8::ff00:42:8329.’ He …

Continue reading »

Permanent link to this article: http://baldric.net/2012/08/21/you-are-at-2001db8ff00428329/

Aug 21 2012

debian on a DNS-320

Back in 2009 I bought, on impulse, a D-Link DNS-313 thinking it was sufficiently similar to the 323 to enable me to install debian with some ease. As I noted at the time, however, I’d made a slight mistake and then had to settle for a compromise installation from a tarball rather than a full …

Continue reading »

Permanent link to this article: http://baldric.net/2012/08/21/debian-on-a-dns-320/

May 22 2012

tor abuse

I have been running at least one tor exit node for about three years now. Over that period I have occasionally had to move provider following one or more abuse reports. Most ISPs like the quiet life, and you can’t really blame them for not wanting the hassle of dealing with complaints from other ISPs …

Continue reading »

Permanent link to this article: http://baldric.net/2012/05/22/tor-abuse/

Apr 18 2012

now switch it back on

Bugtraq can be an interesting list. Back in June 2008 I noted that one Craig Wright had posted an advisory about a vulnerability in an Oral B toothbrush. Well, just over a week ago a chap called Gabriel Menezes Nunes posted a proof of concept remote denial of service attack on a Sony Bravia television …

Continue reading »

Permanent link to this article: http://baldric.net/2012/04/18/now-switch-it-back-on/

Mar 24 2012

android mail client is broken

In January of this year I wrote about t-mobile’s apparent policy of actively looking for and blocking any TLS-secured SMTP sessions over their network. At the time I believed this to be a cockup rather than a deliberate policy. I still prefer to believe that, but the episode left a rather sour taste in my …

Continue reading »

Permanent link to this article: http://baldric.net/2012/03/24/android-mail-client-is-broken/

Mar 14 2012

unplugged

A few days ago my sheevaplug died. Beyond the obvious lack of response either over the network or through the USB serial connection, the symptoms (single green LED rather than blue and green LED lit, ethernet LED light steady rather than flashing) were all consistent with a blown PSU. This problem is well known and …

Continue reading »

Permanent link to this article: http://baldric.net/2012/03/14/unplugged-2/

Jan 18 2012

and darkness shall be upon the face of the net

image of blacked out tor website

Today, 18 January 2012, parts of the ‘net went deliberately dark in combined opposition to the SOPA (A Bill to:“promote prosperity, creativity, entrepreneurship, and innovation by combating the theft of U.S. property, and for other purposes.” I love the “other purposes” bit.) and PIPA bills currently being considered by the US legislative machinery. These two …

Continue reading »

Permanent link to this article: http://baldric.net/2012/01/18/and-darkness-shall-be-upon-the-face-of-the-net/

Jan 12 2012

t-mobile resets its policy?

As I have mentioned in other posts here, I run my own mail server on one of my VMs. I do this for a variety of reasons, but the main one is that I like to control my own network destiny. Back in October last year I noticed an interesting change in my mail experience …

Continue reading »

Permanent link to this article: http://baldric.net/2012/01/12/t-mobile-resets-its-policy/

Jan 12 2012

tails in a spin

When I first tested running a tails mirror on one of my VMs, the traffic level reported by vnstat ran at around 20-30 GiB per day. I figured I could live with that because it meant that my total monthly traffic would be unlikely to exceed my monthly 1TB allowance. However, when I checked the …

Continue reading »

Permanent link to this article: http://baldric.net/2012/01/12/tails-in-a-spin/

Dec 19 2011

tunnelling X over ssh

OK, yes, I know there are probably already a gazillion web pages on the ‘net explaining exactly how to do this, but I got caught out by a silly gotcha when I tried to do this a couple of days ago, so I thought I’d post a note. Firstly, X is not exactly a secure …

Continue reading »

Permanent link to this article: http://baldric.net/2011/12/19/tunnelling-x-over-ssh/