Sign in / up

* Posts by pblakez

13 publicly visible posts • joined 20 Oct 2010

Equifax couldn't find or patch vulnerable Struts implementations

pblakez

here you go Equifax

example CVE-2017-5638 march patch

edit maven file with updated struts version 2mins

from

<!-- https://mvnrepository.com/artifact/org.apache.struts/struts2-core -->

<dependency>

<groupId>org.apache.struts</groupId>

<artifactId>struts2-core</artifactId>

<version>2.5.10</version>

</dependency>

to

<!-- https://mvnrepository.com/artifact/org.apache.struts/struts2-core -->

<dependency>

<groupId>org.apache.struts</groupId>

<artifactId>struts2-core</artifactId>

<version>2.5.10.1</version>

</dependency>

run build with unit tests 2-3mins

upload to test server 10-15 mins

functional testing on this minimal how many places do you upload files in your web app

upload to prod server 10-15 mins

maybe restart the server 30sec- 1min

1 5

Microsoft, Apple cough up millioins after Australian tax audits

pblakez

Google should just be banned from Government Contracts state and federal till they comply, although they may not see that a big part of their biz.

although 2.0 they did just bring out Enterprise OS You Will Comply!

0 0

nbn™ switches on first Telstra HFC-powered broadband services

pblakez

how is this different from redcliffe ?

0 0

ABC storage project adrift in 'brown ocean'

pblakez
Reply Icon

Re: Once Again Aus Gov / Gov Corps ignore Open Source used at Cloud Scale

while you are right on network bandwidth you don't understand ceph which can be configured as a flash storage array and / or spinning disk, the nodes can be in your workstation, as well as dedicated storage appliances

we use it in a lan setting at a no of clients doing cad and video, nodes can also be given much larger RAM caches, you can build off the shelf 128GB Ram, 12 Flash Drives, 4 10GB nicks, Dual Xeon CPU

only limited by your imagination and ability

0 0
pblakez

Once Again Aus Gov / Gov Corps ignore Open Source used at Cloud Scale

Ceph distributed object store could start small with test pilot easy to setup

I have struck this problem at state / local gov level it's the old "nobody ever got fired for buying IBM" syndrome fire the clowns and as I have said elsewhere Gov / Gov Corps need to start using xprize style competition to get better more cost effective solutions

0 0

Puny humans flub ANOTHER Google cloud patch

pblakez

Def need to know every operational hiccup

this is important info to have can't count the time I have been chasing an error the sort of is it my code or the service can be pretty obscure, in fact I would like to be able to incorporate google and other cloud services into my own monitoring system.

I am now of the view that every critical service should have a backup on a separate cloud provider, we even have a fall over for our database (couchDB) hosted at our office slow but just incase, also messaging service.

Also we only use open source services that we can host else where, makes testing simpler also.

cheers pb...

0 0

Help! We need to pick a platform for our desert adventure

pblakez

KVM, virt-viewer, virt-manager on to of a base linux system

Have you considered using KVM with virt-manager on a base Linux system

have been trying this on debian mainly because we have to admin remotely a few systems and its great to have a full OS at the base of you system.

KVM seems very light weight and easy to manage.

As to the NUC's I see little problems with these, although bit more expensive, like the ability just to mail a small box to my clients already set up. personally using the Gigabyte Brix of which there is a model that supports 2.5 HDD/SSD.

cheers pb...

0 0

Help us out readers: How would you sniff and store network traffic?

pblakez

I would start with opendns to see what traffic they are using, pretty easy and cloud based

sniffing locally only after you you figure out what you want to monitor on the local network

0 0

Turnbull's NBN is startup-land's litmus test

pblakez

once again focus on download speed, of which 25mbps is not even guaranteed

upload speed is what is important to business esp small biz wanting to compete

fast upload is in the old Pentagon speak a force multiplier

if you want this country to be about content creation not content consumption upload speeds are vital

1 0

NBN study: the analyst view

pblakez

NBN is a force multiplier for small/medium business

"The NBN is a consumer play, Cranswick pointed out"

"consumer play" I think this is an error that a lot of commentators make one of the biggest benefactors of the NBN will be the small to medium business

NBN is a force multiplier that will allow small/medium business to compete with much bigger players

It also seems to ignore the content creation effect the NBN will support

Simply IS NOT JUST DOWNLOADS

@pblakez

0 0

Google's latest webspam crusade 'breaks' search results

pblakez
Thumb Up

My Sites same or Improved

my 30 odd sites have either improved or stayed the same, SEO is a scam always has been, Google keep doing whatever it takes to get rid of this scum.

0 0

Spanish whispers on Microsoft and Nokia

pblakez
Linux

Should support both: Google Pace of Innovation a danger

Nokia should support both, just build hardware ranging from good but cheap to the best

There is a danger that windows mobile could be left behind by the speed on innovation on the android platform

No scratch that windows mobile WILL be left behind by the speed on innovation

opens source rules of that there is no doubt !

( I am sure some less informed person will disagree ;}o )

@pblakez

0 0

Java surpasses Adobe kit as most attacked software

pblakez
Paris Hilton

Pretty Dumb statement Dan

"The software has never lived up to many of the promises that Sun made about it."

1 0