Tech Tips

On Christmas Eve day, several of my sites were 'visited' by what I presume to be a bot, all from the same source IP address.

The attack consisted of attempts to register many new user accounts, each having a username containing the term 'DVD':

Soccer DVD, DVD Immature, Underworld DVD, Adult DVD, Enigma DVD, DVD shrink, Blues DVD, Trick DVD, Portable DVD Player, DVD Decryptor, Federation DVD

The email addresses were all unique of course - since the bot attempted to register multiple user names on each site. The sites were configured to include a text field user profile, so that users can share interests, etc.

The spam bots were stuffing URLs and text ads for DVDs into the profile fields, in an attempt to generate search engine "link love", or so it appears.

Updated: 2005.08.18
Added links to WFP info and tools

When you click the "Send a Link..." menu item in Internet Explorer 6, Outlook Express 6 attaches a .URL file, but doesn't insert a plain-text version of the link in your email message.

I don't know who thought that this was a good thing, but it is annoying.

Here's some info on how you might be able to fix it. (I had used these techniques on a pre-SP1 XP Pro installation, but there have been some changes since then, so please check the updates below.)

Name that offset

This page shows various time values and conversions to other units. I find this useful when programming in PHP and other languages.

Often, I want to run a SQL query to update a time value in a Drupal db table, and I need to know the delta to add to an existing unix timestamp value to push a value out by 24 hours, 90 days, etc. and would rather not whip out a calculator or do the math on paper...

Originally published 8/15/02

If you are having problems in Windows XP Home or Pro, with Fast User Switching enabled and you are using the "Welcome Screen" feature, check this out.

I've been asked how to prevent access to myspace.com on Windows systems without having to purchase or install blocking software. Well, there's a free and simple way to do this.

Here's a quick trick to block myspace.com on a Windows system. Basically, you are editing a text file on your computer, adding an entry to it. This file is known as the 'hosts' file, and it allows you to block sites using a very simple but effective method.

What programs are running your system tray?

This command-line utility for Windows XP or Server 2003 will tell you which programs have inserted themselves into your "system tray"*.

It generates a list of PIDs, the program's location, and the number of visible and hidden icons for each program that has inserted itself into your system tray.

Display the contents of Internet Explorer's index.dat files, including 'lost' and hidden content

Current Version: 1.0.2.0

Overview

Have you ever wondered about the contents of the Internet Explorer ("IE") cache? Wanted to know if the cache is really empty when you tell (or ask) IE to delete temporary files? Want to know what's kept in those INDEX.DAT files that are stored in your user profile?

IECacheList Lite is a command line utility that will examine the contents of Internet Explorer's index.dat files and display them for you. The method used by IECacheList is designed to ensure that no 'hidden' or lost information escapes detection.

Some our our sites that feature free classified ads (amadorable.com, goatseeker.com, and bunnytrade.com) have been hit with a few recurring spammers trying to plant ads for various off-topic products (like cell phones, etc.) I guess this is a good sign; our sites are visible and spammers feel it is worth their time and trouble to post an ad (and no, as far as I can tell, these are not bots - they're human-generated spam.)

In reviewing the referrer logs, I've noticed that in nearly every case, spammers use search engines to find sites that have been spammed previously using known keywords - or just sites that offer free classified ads or open posting capability. For example, I find these google searches in my logs, just prior to the spammer creating an account and attempting to deposit the spam content.

When using event.module with JSCalendar (part of jstools module), you might experience problems with event times being stored incorrectly. This appears to be due to an obscure configuration requirement when using JSCalendar - apparently, the event module must be configured to use 12 hour format. (This one bit me in the behind today, so I thought I'd jot this down somewhere...)

Be sure to set event.module time notation to 12 hour format:
administer >> settings >> event >> "Time Notation Preference" = 12h

Related info: