Thursday, April 15, 2010

BTCL Trying to Hide There Own Problem by Saying SEA-ME-WE4 Submarine Cable problem


From Yesterday Afternoon Internet Users of Bangladesh where suffering connectivity / speed problem which is still running. Most of Internet User in Bangladesh, Specially users in Dhaka are facing most slowest Internet service.

I myself is currently working for an ISP, which was disconnected from Internet Yesterday (1st Day of Bangla Year 1417). I had go there office, check everything and call BTCL to know what is going on. Unfortunately BTCL, Bangladesh Telephone Company Limited didn't provide any information about the problem. Latter, I got to know from other source that there was a Submarine Fibre Cable Called "SEA-ME-WE-4" (The South East Asia-Middle East-West Europe 4) Problem, which is totally wrong.

Officials of the Bangladesh Telecommunication Company Limited said Thursday that their subscribers will have less bandwidth due to a technical problem.

A high official of the BTCL's submarine cable project, on condition of anonymity, told bdnews24.com that a short circuit at the Italian landing station at Palermo has disconnected Bangladesh partially.

He said that BTCL was receiving only a portion of its regular bandwidth from Singapore leading to slow internet connection and in some cases no connection at all, for BTCL subscribers.

The official, also a top-ranking administrator of Bangladesh Submarine Cable Company, said he hoped that Bangladesh would get reconnected with Italy within a few days. -- Reported by BDNews24.Com, Bangladesh's first Internet Newspaper

BTCL was connected with Internet via Seabone, has reported that there is no problem at there end. There is no fibre related issue, reported by Seabone and SEA-ME-WE-4 Control Center.

BTRC, Bangladesh Telecommunication Regulatory Board has issued 2 IIG (International Internet Gateway) License, one is BTCL, own by Government and Other is Mengo Telecom which is Privately Owned has no problem at all. ISP's connected with Mengo Telecom is getting there required bandwidth. Now the Question is Who is Doing What & The most unique is "Why"? At the time of Mengo Telecom Started, BTRC issued a letter to ALL ISP to Purchase at-least 40% of Total bandwidth from Mengo. Recently the rules has withdrawn.

Tuesday, April 13, 2010

Apache.org hit by targeted XSS attack, passwords compromised


Combining a cross-site scripting (XSS) vulnerability with a TinyURL redirect, hackers successfully broke into the infrastructure for the open-source Apache Foundation in what is being described as a “direct, targeted attack.”

The hackers hit the server hosting the software that Apache.org uses to it to track issues and requests and stole passwords from all users. The software was hosted on brutus.apache.org, a machine running Ubuntu Linux 8.04 LTS, the group said.
The passwords were encrypted on the compromised servers (SHA-512 hash) but Apache said the risk to simple passwords based on dictionary words “is quite high” and urged users to immediately rotate their passwords. ”In addition, if you logged into the Apache JIRA instance between April 6th and April 9th, you should consider the password as compromised, because the attackers changed the login form to log them,” Apache said. - Zdnet Blog


On April 5th, the attackers via a compromised Slicehost server opened a new issue, INFRA-2591. This issue contained the following text:

ive got this error while browsing some projects in jira http://tinyurl.com/XXXXXXXXX [obscured] - Apache's Own Blog


To read More, Read Zdnat Articles on Apachi.org Hijack

UPDATE:

I received an email from Apache.org, which I am posting ''as it is" basis:

Dear Ahamed Bauani,

You are receiving this email because you have a login, 'myusername', on the Apache JIRA installation, https://issues.apache.org/jira/

On April 6 the issues.apache.org server was hacked. The attackers were able to install a trojan JIRA login screen and later get full root access:

https://blogs.apache.org/infra/entry/apache_org_04_09_2010

We are assuming that the attackers have a copy of the JIRA database, which includes a hash (SHA-512 unsalted) of the password
you set when signing up as 'myusername' to JIRA. If the password you set was not of great quality (eg. based on a dictionary word), it should be assumed that the attackers can guess your password from the password hash via brute force.

The upshot is that someone malicious may know both your email address and a password of yours.

This is a problem because many people reuse passwords across online services. If you reuse passwords across systems, we urge you to change your passwords on ALL SYSTEMS that might be using the compromised JIRA password. Prime examples might be gmail or hotmail accounts, online banking sites, or sites known to be related to your email's domain, bauani.org.

Naturally we would also like you to reset your JIRA password. That can be done at:

https://issues.apache.org/jira/secure/ForgotPassword!default.jspa?username=myusername

We (the Apache JIRA administrators) sincerely apologize for this security breach. If you have any questions, please let us know by email.

We are also available on the #asfinfra IRC channel on irc.freenode.net.


Regards,

The Apache Infrastructure Team

Posted by:
Ahamed Bauani
Contributor, The Apache Foundation
http://blog.bauani.org/

Saturday, April 10, 2010

500 Things Every Technology Professional Needs to Know


Did you know Microsoft's RegClean does not work with XP but you can use shareware to clean your registry? Did you know most wireless access points don't have encryption enabled by default? Did you know there are 500 tidbits of information contained in TechRepublic's 500 Things Every Technology Professional Needs to Know that will help you become a successful IT professional...

Thursday, April 1, 2010

We Want A GE Free Future, Join with Greenpeace International


The European Commission has just allowed genetically engineered crops into Europe, ignoring safety concerns of the public interest. I've just joined a new EU initiative with Greenpeace, Avaaz and Friends of the Earth - calling for a moratorium on GE crops in the EU. With 1 million citizens' signatures, we can make an official legal request to the European Commission. Sign below and let's get to 1 million:

You can read more and sign the petition here: http://www.greenpeace.org/GEpetition

Thanks!

GreenPeace International

Cross Posted on: Green Bangladesh Blog

Labels / Category

2013 (1) 3G (4) Adsense (2) AKTEL (2) Amateur Radio (3) APNIC (5) Bajaj Discovery (1) Bajaj Pulsar (1) Bangla News (5) Bangladesh (29) Bangladesh Computer Market (1) Bangladesh Cricket (2) Bangladesh earthquake (3) Bangladesh Educational Board (1) Bangladesh Energy (4) Bangladesh ICT (15) Bangladesh Internet Service (15) Bangladeshi Credit Card (3) Bangladeshi News Site (3) Bank in Bangladesh (7) Bank of Bangladesh (10) Banking in Bangladesh (10) BGMEA Bulding (1) Big File Download (3) blackhat (1) BLOG (6) Bogon (3) bot (2) BTCL (3) BTRC (14) BTTB Internet (10) BTTB Submarine Cable (9) Byke Hijack (1) Cacti (1) Call Block (1) Carbon Credit (1) CentOs (2) CentOs Bangladesh (2) Charity (2) Chrome (2) Computer Booting (1) Credit Card (10) Credit Card in Bangladesh (8) Crime (3) CyberCrime (11) Cyclon (1) DDoS (8) Dengue (1) Denmark (1) Dhaka earthquake (5) DNS (3) DNSSEC (2) Domain (9) DoS (4) dot bd domain (3) Dot CO.CC (2) Download (4) Drive not opening on click (1) DV Lottery 2010 (2) E-Learning (1) earthquake (5) EARTHQUAKE BANGLADESH (2) EARTHQUAKE DHAKA (2) earthquake in Bangladesh (5) earthquake in Dhaka (5) Email (7) Email Full Header (3) Email Sender Identify (4) Entertainment (2) Fake Email Sender (5) Firefox (8) FTP (1) Funny (4) GMail (4) Google (18) GPRS Settings (1) GrameenPhone (1) HAM (4) Health (3) Hobby (1) IGW (3) IIG (3) India (1) Indian ICT (1) Indian IT (1) Internet (19) Internet Mail (1) Internet Security (9) iPhone (3) iPhone Bangla (2) iPhone Bangladesh (2) iPhone in Dhaka (2) iPod (1) IPv4 Allocation (8) ipv6 (10) islam (4) ISOC (3) Linux Articles (6) Metal News (1) Microsoft (4) Microsoft buy Yahoo (1) Mirror Server (1) Mobile Phone (3) Mobile Phone Internet (1) Mobile Phone News (3) Mobile Phone Operator (6) Mobile Phone User (3) Mozilla (8) Mozilla Firefox (8) Myself (1) Mystery (1) Netcraft (4) Network Monitoring (4) neverBot (2) News Site (1) Nokia (3) Oil Price (2) Online Security (7) Paypal in Bangladesh (6) Personal View (1) Phishing (2) Pigeons (1) Postfix (7) PSTN (2) RANGS Bulding (1) Relay Host (2) robot.txt (1) robots.txt (2) Scour (2) Scour.com (2) Second submarine cable (3) Sendmail (4) Share Market (4) Smart Relay (3) SSC Result (1) SSC Result 2008 (1) Stock Market (3) Technology (1) Ubuntu (4) UCB (5) UCBL (5) URL Redirect (2) Virus (3) Virus Infected Windows (3) Virus Information (3) Warid (2) Web Spider (3) Webhosting (6) Wimax (4) Windows (1) Windows Problems (1) Wireless Internet in Bangladesh (5) Yahoo (4) Yahoo Sold (1)

Share it