ichi.co.uk

Virgin Media Super Hub Session Data Downloaded/Uploaded Bug

Virgin Media automatically updated the firmware on my Super Hub (Netgear VMDG480 router) recently. Since then I’ve noticed that the Session Data Downloaded value has been ridiculous, like they’re showing MB as GB or something…

28TB in 8 days, 3 of which my computer was off and I was away with my laptop…

2,560GB in 2 hours 17 minutes…

Or how about 16GB in 26s…

I’ve tweeted them about it, so I’ll update this post with their response if I get one.

Accessing a restricted BBC site from the UK

I was just trying to read an article on faster than light travel on the BBC website and I got this message: 

We’re sorry but this site is not accessible from the UK as it is part of our international service and is not funded by the licence fee. It is run commercially by BBC Worldwide, a wholly-owned subsidiary of the BBC, the profits made from it go back to BBC programme-makers to help fund great new BBC programmes

I don’t see why I can’t access the site from the UK. However it is funded from abroad, surely they can use that to fund it in the UK as well. If they have to put an interstitial page warning that the article contains adverts and explaining why, that’s fine, but to deny me access to it and make me to connect to a VPN or use a proxy. 

I wrote an article about using proxies and VPNs to access The Pirate Bay and some of it applies here. The easiest way I know of to access the restricted site is to add .nyud.net to the end of the domain part of the URL as that will proxy the site.

So to make this work in the UK, you can just do this:

Original URL: http://www.bbc.com/future/story/20121003-can-we-travel-faster-than-light/1

Proxied URL: http://www.bbc.com.nyud.net/future/story/20121003-can-we-travel-faster-than-light/1

I hope that helps someone else.

Using ASP.Net Forms Authentication on Load Balanced Servers

We recently started using HAProxy to load balance between two application servers for both HTTP and HTTPS traffic. It was really easy to get working, has worked great so far and we’re really pleased with it. The only issue we had was with our login cookies, which are set via FormsAuth, as when logging in our visitors use HTTPS and might get a different server to the one they were ‘stuck’ to with HTTP which uses a cookie to ensure the same server. HAProxy can’t read a cookie from an SSL stream as the connection isn’t terminated at the proxy, it is still terminated at the web application server (you can end HTTPS connections at the proxy by installing a webserver on it as well though). For us this was an easy fix however. 

From the Microsoft article on FormsAuth:

If you deploy your application in a Web farm, you must ensure that the configuration files on each server share the same value for validationKey and decryptionKey, which are used for hashing and decryption respectively. This is required because you cannot guarantee which server will handle successive requests.

With manually generated key values, the <machineKey> settings should be similar to the following example.

<machineKey  
validationKey="21F090935F6E49C2C797F69BBAAD8402ABD2EE0B667A8B44EA7DD4374267A75D7
               AD972A119482D15A4127461DB1DC347C1A63AE5F1CCFAACFF1B72A7F0A281B"           
decryptionKey="ABAA84D7EC4BB56D75D217CECFFB9628809BDB8BF91CFCD64568A145BE59719F"
validation="SHA1"
decryption="AES"
/>

If you want to isolate your application from other applications on the same server, place the <machineKey> in the Web.config file for each application on each server in the farm. Ensure that you use separate key values for each application, but duplicate each application’s keys across all servers in the farm.

To generate a Machine Key, simply go to this handy webpage and generate a new key. You can then either add it just after the <system.webelement to your application’s local web.config or to the root web.config which will be in your .Net installation folder (something like C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config).

After you have done this on all your servers, you can check them all by going into IIS and selecting Machine Key where you can see if each server is using the correct keys.

However, after doing this it still wasn’t working for us. After a little digging about we realised we hadn’t installed any Windows Updates on the new server. I think it was specifically this one that was stopping it working, but after a full update and a reboot it all worked just fine.

OS X Mountain Lion

I upgraded to Mountain Lion yesterday, as I like to torture myself a little from time to time and see what an OS upgrade will break this time. I’ve only two things that didn’t work, Mailplane and Parallels. Mailplane needed to be upgraded to either version 2.x preview or to the Mailplane 3 beta.

Parallels also had an upgrade with support for Mountain Lion and installing that got it working.

I have two 24” monitors on my Mac and I run Parallels full screen on my 2nd monitor. On the new version with OS X Mountain Lion, when I click inside the VM, apps on my main display start flickering like crazy. There is a forum post on it here, but basically the fix for now is to disable 3d acceleration on your VM.

Some friends and I went out drinking at Winter Wonderland in Hyde Park a couple of winters ago. Filmed some pretty funny footage on my camera, so I put it to The Black Eyed Peas as the lyrics seemed to go really well the video, which I edited to be relevant to the lyrics where possible. I still amuses me anyway. :)

Heineken cans shaped like bottles

I’ll be the first to admit I’m a bit of a beer snob. I don’t like canned beer and will do a lot to avoid it. It has a metallic taste that I don’t like and I much prefer bottles. I know draft beer comes in large aluminium barrels, but it doesn’t seem to affect the taste in anything like the same way as 500ml cans do. 

Then I came across this…

At first I quite liked the can bottle, as it’s aesthetically appealing, I much prefer the mouthpiece on a bottle to a can, so I thought, ok, maybe this’ll be alright as I do really like the actual receptacle. Then I drank it. No Heineken, no, just no. It tastes exactly the same as canned beer but costs the same as a bottle. Oh well.

Mildly interesting spam message

I’m currently waiting for a parcel to be delivered which is my new Olympus OM-D E-M5 that is coming from the US. I received a spam message that took me in for a minute, as I thought it was related to the camera. 

Postal notification, 

Our company’s courier couldn’t make the delivery of parcel.
Status deny:Fee isn’t paid. 

LOCATION OF YOUR PARCEL:Irving 
STATUS: sort order 
SERVICE: One-day Shipping 
NUMBER OF YOUR ITEM:U413001201NU 
FEATURES: No 

The label of your parcel is enclosed to the letter.
You should print the label and show it in the nearest post office to get a parcel. 

Important information!
If the parcel isn’t received within 30 working days our company will have the right to claim compensation from you for it's keeping in the amount of $5.94 for each day of keeping over limited time. 

You can find the information about the procedure and conditions of parcels keeping in the nearest office. 


Thank you.
Royal Mail Logistics Services.

First thing I did was to check the headers of the message (below). I noticed that it got an SPF pass, which I first thought a bit strange as the email was showing as being from status.id959@royalmail.com, then I noticed it was actually “status.id959@royalmail.com via s2.ingenihost.com”, so the SPF pass was for the domain ingenihost.com.

Delivered-To: 
Received: by 10.194.54.37 with SMTP id g5csp160341wjp;
        Fri, 29 Jun 2012 15:10:46 -0700 (PDT)
Received: by 10.224.72.138 with SMTP id m10mr7310631qaj.5.1341007846024;
        Fri, 29 Jun 2012 15:10:46 -0700 (PDT)
Return-Path: 
Received: from s2.ingenihost.com (s2.ingenihost.com. [96.9.180.53])
        by mx.google.com with ESMTPS id d3si6031089qao.0.2012.06.29.15.10.45
        (version=TLSv1/SSLv3 cipher=OTHER);
        Fri, 29 Jun 2012 15:10:45 -0700 (PDT)
Received-SPF: pass (google.com: best guess record for domain of colourfu@s2.ingenihost.com designates 96.9.180.53 as permitted sender) client-ip=96.9.180.53;
Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of colourfu@s2.ingenihost.com designates 96.9.180.53 as permitted sender) smtp.mail=colourfu@s2.ingenihost.com
Received: from colourfu by s2.ingenihost.com with local (Exim 4.69)
	(envelope-from )
	id 1SkjOm-0002rY-Bf
	for ; Fri, 29 Jun 2012 18:10:44 -0400
To: 
Subject: Delivery information contains at the postal label
From: "Royal Mail CS" 
X-Mailer: SayMailSMTP
Reply-To: "Royal Mail CS" 
Mime-Version: 1.0
Content-Type:multipart/mixed;boundary="----------13410078444FEE27E45161A"
Message-Id: 
Date: Fri, 29 Jun 2012 18:10:44 -0400
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - s2.ingenihost.com
X-AntiAbuse: Original Domain - 
X-AntiAbuse: Originator/Caller UID/GID - [543 32003] / [47 12]
X-AntiAbuse: Sender Address Domain - s2.ingenihost.com
X-Source: /usr/bin/php
X-Source-Args: /usr/bin/php /home/colourfu/public_html/.c007.php 
X-Source-Dir: colourfulspaces.com:/public_html

They actually screwed up the attachment, as the file didn’t have a name (filename=”“), so Gmail called it noname. I downloaded it and gave it a .zip extension, unzipped it and found a 44KB file called Label_Royal_Mail_Express_Services_UK4784256.exe. Out of interest I scanned it on Virus Total and found it contained a virus that Kaspersky calls Trojan-Dropper.Win32.Dapato.bkqg. Results for the scan are here.

So definitely not my new camera then. Reported it as spam in Gmail and on SpamCop so hopefully the senders IP gets blacklisted pretty soon.