Emang cuma mereka doang yang bisa bikin overly sensational headlines?
Teksnya demikian:
Gudang Ekstasi di Apartemen Taman Anggrek Digerebek Polisi – Indra Subagja – detikcom
Jakarta – Diam-diam penghuni Apartemen Taman Anggrek, Tanjung Duren, Jakarta Barat,
menggunakan kamar 19 tower 5 sebagai gudang ekstasi. Setahun beroperasi, polisi sukses
menggerebek.
Well, detikcom belum actually dituntut sih. Tapi ya siap-siap aja.
BTW, reporter mereka itu proses seleksi waktu hiringnya gimana sih? Kayaknya kebanyakan kok kemampuan berbahasa Indonesianya aja meragukan banget. Boro-boro kemampuan jurnalistiknya. Yang bagus cuma kemampuan misleading pembaca lewat headlines yg sengaja dibuat sensasional dan/atau isi tulisan yang tidak netral dan dijejali pendapat pribadi penulisnya yang cenderung menghasut.
Buat anda yang bilang “Ya udah, lu ngapain baca detikcom kalo udah tau begitu?” maka jawabannya adalah karena saya tidak tinggal di Indonesia dan saya mau tau apa yang terjadi di Indonesia lewat internet, dan karena belum ada alternatif lain situs berita yang lebih cepat dan lebih baik. Jadi saya baca detikcom cuma baca inti dari kejadiannya aja tanpa pay attention ke apa yg benar2 ditulis karena kebanyakan crap dan cuma bikin saya annoyed.
Oh, satu lagi kehebatan detikcom: pinter bikin pembacanya annoyed. Iklan yg jumlahnya seabreg-abreg, beranimasi pula, gak ada RSS/Atom feed, sok mau disable right click, tampilan layout yang bikin mata sakit, a complete web design disaster.
Kalo anda tau alternatif situs berita Indonesia yang secepat detikcom saya akan sangat menghargai kalo anda memberitahukan lewat komentar.
xkcd always cracks me up.
As usual, link for the uninitiated.
At work I manage several servers that are mainly used to serve websites built using the Mambo content management system. Personally I don’t follow the development of Mambo, but I know that it had/has several security vulnerabilities. One of them was pretty easy to exploit. To make matter worse, Mambo has a distinct URL structure that makes it really easy to find Mambo sites using search engines. This combination attracts a lot of script kiddies from all over the world. I’ve seen several successful attempts of these idiots putting IRC DCC bots and spamming activities coming from Nigeria, Brazil, Indonesia (Jogja), Russia, Italy, etc.
Sometimes the problem is not from Mambo itself, but from poorly written third-party components that don’t give any shit about security (why don’t you write a big “hack me” sign on the front page while you’re chmod 777-ing all your files?). But as far as I know, Mambo doesn’t seem to have any built-in protection from poorly written third-party components. I’m by no means a Mambo expert, so I could be wrong. And please do correct me if I’m wrong.
I’ve had enough of these kiddie idiots running around thinking they’re cool hackers. The thing is I don’t have time to investigate why Mambo or its third-party components that were installed was broken. Luckily, there is a pattern in all of the incidents: they all exploit mosConfig_absolute_path remote script execution (thanks to PHP’s ability to include()/require() files over HTTP). In many cases I could disable allow_url_include and/or allow_url_fopen in php.ini, but in certain cases it’s needed, so I couldn’t disable it. So I wrote a quick fix using Apache’s mod_rewrite and put it in a .htaccess file:
RewriteEngine On
RewriteCond %{QUERY_STRING} mosConfig_absolute_path= [NC]
RewriteRule ^.*$ http://%{SERVER_NAME}/? [R]
This will redirect all exploit attempts to the front page, so adjust to your environment. You can change mosConfig_absolute_path= to just mosConfig if you want to be really anal. As I said, I’m not a Mambo expert, so I don’t know if something like this can or should be included in the default .htaccess that comes with Mambo. People more familiar with Mambo can figure that out. In the meantime, this small hack should deter the kiddies.
Since upgrading my Ubuntu desktop to Feisty my multimedia keys stopped working when using Quod Libet, although they work fine with Rhythmbox and Totem. This is because in GNOME 2.18 that comes with Feisty, gnome-settings-daemon ‘grabs’ all multimedia keys preventing other applications to capture them. Multimedia key press events are now being broadcast via D-Bus. Therefore applications that need to listen to those events could subscribe to the proper D-Bus interface. Other GNOME apps like Rhythmbox and Totem had picked up the changes and had been adjusted accordingly. That’s why they still work in Feisty. But Quod Libet is not a GNOME application, so this new method of multimedia keys handling that is specific to GNOME should not be implemented inside the Quod Libet core. This is documented in bug #43464 in Launchpad.
Joe Wreschnig, Quod Libet’s author, suggested that this could be implemented as a plugin. After an email conversation with him, and seeing a patch posted to the bug in launchpad, I started writing the plugin last night. Now the multimedia keys work again in Quod Libet. The plugin can be downloaded from launchpad or from here (rename to dbusmmkey.py). Simply put this file in ~/.quodlibet/plugins/events/ and enable it in Quod Libet.
PS. Python is so much fun!
Two more days to Opera on Wii.
Think of the possibilites: Flash-based games + Wiimote, YouTube, movie trailers (hmm, quicktime?).
When I got home last night, I noticed that my Wii disc slot was blinking blue light, apparently there’s a message from Nintendo letting me know that the weather channel is now available, so I let it update itself from the Internet and 5 minutes later I was browsing the weather channel. The globe interface is really slick.
Follow