Yahoo released private key of axis OOPS!

Last night Yahoo introduced Axis, a browser extension/ mobile app designed to turbo-boost Internet searching. It’s a bold new front in the Search Wars. But it was accompanied by another, less savoury release, discovered by Nik Cubrilovic, an Australian entrepreneur: Yahoo accidentally leaked its private encryption key for the Chrome version. This is part of the certificate that secure websites and browser extension bear to prove that they’re legitimately software created by who you believe to be true. The exposure of the certificate could allow a malicious coder to release code masquerading as a legitimate Yahoo app but carry out whatever data-scraping or other instructions the coder desired. Yahoo quickly apologized, and released a new version for Chrome that does not contain the offending certificate data, but the implications of the slip have yet to be concluded.

Yahoo! Axis Launched

Today Yahoo!  launched Yahoo! Axis  a whole new way to search and browse the Web across any device—Yahoo! Axis. It’s an innovative new mobile browser and desktop plug-in that gives people visual search results (as they type), ultimately providing a more direct path to whatever they’re looking for online. Think of it as a personal companion for your daily explorations of the Web.

You can download Axis as a standalone mobile browser for your Apple iOS devices here, and for major, HTML5 enabled desktop browsers, you can download the desktop plug-in here. Check out our video that walks you through how Axis saves you time whether on the desktop, mobile or tablet device.

Yahoo! Axis comes equipped with handy features that unify searching and browsing.  For example, our one-step search lets you preview and interact with visual search results without ever leaving the page you’re on. It’s the end of the back button! And our instant answers show the information you want as you type common searches like finding movie times, sports scores, stock prices and more.

Axis also includes a personalized home page that contains your most recently visited sites, bookmarks and articles you plan to read later. This personalized home page stays with you across your desktop, iPad and iPhone, keeping what’s important to you in one easy, centralized spot. No matter what device you started on, you can easily pick up where you left off when you switch devices.

Axis even has a few bonus features for iPhone and iPad users, like simple swiping to quickly get from one search result to the next, a bar that combines the search box and address bars into one, and sharing so you can easily post any page you’re viewing to Twitter or Pinterest.

Adobe issues security update for Flash player, warns against IE exploit

adobeflashupdate

Internet Explorer associated with an exploit? Color us shocked. Facetiousness aside, it’s seriously about time you switched over to Chrome or Firefox (as a mitigation tool; not a foolproof solution), and if you’re a desktop user relying on Flash Player, well… it’s about time you updated that, too. Adobe has just released a security update for Flash Player 11.2.202.233 and earlier versions for Windows, Macintosh and Linux, Adobe Flash Player 11.1.115.7 and earlier versions for Android 4.x, and Adobe Flash Player 11.1.111.8 and earlier versions for Android 3.x and 2.x. We’re told that these updates “address an object confusion vulnerability (CVE-2012-0779) that could cause the application to crash and potentially allow an attacker to take control of the affected system.” Adobe specifically mentions an exploit that targets Flash Player on Internet Explorer for Windows, where a user is duped into clicking on a malicious file delivered in an email message. Hit up the source link for more information on getting your system out of The Danger Zone. Which, conveniently, can be looped as you update with a click after the break.

Kerala trip April 2012

 

IBM and Red Hat get with OpenStack

Open Stack

Open Stack

 

OpenStack filled in some key checkmarks this week as it adds IBM and Red Hat to its roster of corporate backers.  As GigaOM reported last week, the two tech giants will join the nascent OpenStack Foundation as Platinum members along with AT&T, Canonical, Hewlett-Packard, Nebula, Rackspace, and Suse.

The gelling of the foundation is important as OpenStack evolves from an effort driven by Rackspace and NASA, to a broad-based coalition. Its goal is to provide an open-source cloud platform alternative to Amazon Web Services.

A number of companies including  Cisco, Cloudscaling, Dell, Dreamhost, Morphlabs, Netapp and Piston Cloud Computing (see disclosure) are joining as Gold members — bringing the total of foundation members to 18, for now. That number will likely grow as the foundation evolves,  said Mark Collier, VP of business development for Rackspace.

Citrix, which was an OpenStack backer but then pushed its CloudStack as a rival platform, was not mentioned in the foundation news. Citrix employees are still working with OpenStack particularly around Xen hypervisor support, said Jonathan Bryce, Rackspace Cloud founder and OpenStack board member.

Platinum members pay $500,000 per year to participate with a minimum three-year committment.  Gold Members pay an amount pegged at .025 percent of their revenue but at least $50,000 and capped at $200,000, according to the foundation wiki. 

Collier insisted that the big spenders will not be able to big foot the foundation, however. ”Inclusion is not based on how much money you give but on the technical merit of your proposals,” he said.

OpenStack partisans seek broad-based foundation

When Rackspace announced plans for the foundation last fall,  OpenStack adherents were enthusiastic but vigilant. The important thing to them was that the foundation not be driven by any single company or cadre of big companies. Many cited the Apache and Eclipse Foundations as models for OpenStack to emulate. One reason IBM is such an important addition is because of its work in making the Eclipse Foundation a success — largely by ceding control over the open-source Java IDE to an outside body.

OpenStack took that to heart, according Bryce, and will borrow from both Apache and Eclipse models. “When you take the core principles of Apache — how developers are respected and empowered along with some Eclipse concepts around investing in the [broader] ecosystem, we think we’ll drive things forward,” Bryce said.

Expect more talk about the foundation, its governance, and its roadmap to come at next week’s OpenStack Spring Conference.

Disclosure: Piston is backed by True Ventures, a venture capital firm that is an investor in the parent company of this blog, Giga Omni Media. Om Malik, founder of Giga Omni Media, is also a venture partner at True.

Google+ new layout

Today when i logged in i was amazed with the new look on my Google plus account. Here is the screen shot for that

Google plus new layout

Google Plus new layout

Now i feel the Layout is more organized than the previous one

Features added

Navigation you can make your own
One of the first things you’ll notice is a new way to get around the stream. Instead of static icons at the top, there’s a dynamic ribbon of applications on the left. This approach comes with lots of perks, but some of our favorites include:

  • You can drag apps up or down to create the order you want
  • You can hover over certain apps to reveal a set of quick actions
  • You can show or hide apps by moving them in and out of “More”

Conversations you’ll really care about
Once you’ve upgraded to Google+, it’s easy to share with your circles from just about anywhere.

  • Full bleed photos and videos that’ll make you really proud to post
  • A stream of conversation “cards” that make it easier to scan and join discussions
  • An activity drawer that highlights the community around your content

A new home for hanging out
Google+ Hangouts uses live video to bring people together, and the results range from heartwarming to breathtaking to music-making. Today Google added a dedicated Hangouts page that creates even more opportunities to connect in person, including:

  • An always-updated list of invitations from the people in your circles
  • Quick access to every public and On Air hangout, for those times when you want to meet someone new, or watch a live broadcast
  • A rotating billboard of popular hangouts, pro tips and other items you don’t want to miss

By highlighting all the hangouts you can join, all over the world, it’s now easier to spend time together—even be there for each other. And with efforts like hangout apps already underway, you can expect more hangouts in more places in the future.

Getting there from here
Today’s Google+ update extends beyond navigation, the stream and hangouts. For instance: there’s a new Explore page that shows what’s interesting and trending across the network. And a new profile with much bigger photos. And a new chat list that puts your friends front and center. And a whole lot more.

Hope you all like this new layout. :)

Zimbra Web login Monitoring script

This is my second blog for testing weblogin the first one was for testing moodle http://xeois.com/blog/moodle-check-web-login-script and this one is for Zimbra. I have written a custom script which I want to share with you that helps us check the login in Zimbra and escalate it via Nagios in case it fails. Some users ask me if they are using Nagios they can easily monitor all the services for zimbra and i totally agree with them. But not everyone is having the same level of knowledge as you geeks are having. This script can be easily used with nagios or without nagios for your convenience. You can take of the highlighted part of the script to remove the nagios bit out of it. You may have to modify the script if you are not using it for nagios for escalation type you want to use. The answer is as simple as to make sure all the service Zimbra depends upon are functioning properly like (mysql, ldap, webserver, postfix etc). Please find the script below to check the Zimbra login.

We will use curl to check the web login for zimbra.

#!/bin/sh

URL=$1

Cookie=$2

username=$3

password=$4

domain=$5

#removes any cookies

rm -f /tmp/$2

#create a cookie entry in the cookie file for that site

curl -b $2 -c /tmp/$2 $1 > /dev/null

#gets the auth token in cookies

curl -b /tmp/$2 -c /tmp/$2 “$1/zimbra/?loginOp=login&username=$3&password=$4″ > /dev/null

#use the cookie files to lookup the address book for user@example.com

curl –cookie  /tmp/$2 –data “zimbra/h/search?sq=$3&st=contact&search=Search” $1   | grep $3@$5 >/dev/null

if [ $? -eq 0 ]; then

STATE_OK=0

/bin/echo “OK: Authentication Successfull \n”

exit $STATE_OK

elif [ $? -eq 1 ]; then

STATE_CRITICAL=2

/bin/echo ” Critical: Authentication Failure \n”

fi

exit $STATE_CRITICAL

Please feel free to contact for more information and do give us your feedback.

Original post is on http://xeois.com/blog/zimbra-web-login-monitoring-script

What is a SAN?

A storage area network (SAN) is a dedicated high performance network provides access block level to Data. The in modern day data is stored in an array of hard disk drives or solid-state drive or a combination of both.

This Storage area network is usually separated from the local area network for performance and security reasons.

Over a SAN there is no access to the file systems directly; rather they are access able in a block level. The operating system will think as if the disk is attached to it directly and the access is going to be block level. A SAN can be shared across many servers.

SAN, Storage area network, raid

 

SAN network type:

There are various SAN network type, however they are most commonly used in two types Fiber Channel Protocol and iSCSI over Ethernet.

FC: Fiber channel is a gigabit-speed network technology primarily used for storage network starting from 1gbps up to 20Gbps.

iSCSI: Internet Small Computer System Interface, an Internet Protocol (IP)-based storage networking standard for linking data storage facilities. By carrying SCSI commands over IP network. iSCSI is becoming more and more popular due to its slow cost and available hardware and network interface to support it. Presently there are many open source platform that support iSCSI as a SAN right out of the box.

Key advantages of using SAN:

  • Raid: usually SAN devices are build on raid array of disks exported as virtual block devices. Depending on the raid type SAN can tolerate and automatically recover from multiple level of disk failure in a data centre environment
  • Expandability: Expandability as easy as adding shelf and disks to the storage area network.
  • High availability: These storage networks can be designed to support high availability server clusters
  • Disaster recovery: Block level data can be replicated on remote storage of any disaster recovery and block level snap shots can be taken to recover against human error
  • High performance for all servers: Array of disk makes the SAN very fast. High performance network is used to provide high performance and high throughput access to the data for the servers. SAN performance is shared among servers as required.

Some of the leading SAN manufacturers are EMC, NetApp, IBM, Sun storage. While the big corporate are coming up with highly scalable reliable storage systems, open standard storage appliances are not far behind. They are catching up faster than ever and providing very good alternatives in a fraction of a price, like nexenta, FreeNAS.

SAN in a cloud: SAN is the ultimate storage for cloud. An added challenge to cloud storage is its economics. Open storage systems like Nexenta, FreeNAS redefines the economics of the SAN while maintaining all key advantages. They can be build on open hardware and network platform providing high performance and scalability in a nominal cost.

SAN and NAS:

Network-attached storage (NAS), in contrast to SAN, uses file-based file level access to its clients using protocols such as NFS or CMB/CIFS where it is clear that the storage is remote, and computers request a portion of an abstract file rather than a disk block. In modern days many of entry and mid level SAN performance as both SAN and NAS

XeoIS provides various data centre solutions which includes low cost scalable SAN solution for more information please visit xeois.com

Mozilla firefox 10 released

firefox v10

Another major release by mozilla for firefox on 31th Jan 2012. A gift to firefox lovers with this new version 10.0 . I would like to share some of the key update and few unresolved issues still pending in firefox.

New features in firefox 10.0

  1.  The forward button is now hidden until you navigate back.
  2. Most add ons are compatible with firefox by default now (Good news for add on junkies).
  3. Anti-aliasing for webgl is now implemented (see bug 615976)
  4. CSS3 3D-transforms are now supported (see bug 505115)
  5. HTML 5 New <bdi> element for bi-directional text isolation, along with supporting CSS properties (see bugs 613149 and 662288)
  6. Full Screen APIs allow you to build a web application that runs full screen (see the feature page)
  7. For developers mozilla has added IndexedDB APIs to more closely match the specification.
  8. Inspect too with content highlighting, included new CSS style Inspector.

Fixed issues

  1. Mac OS X only – after installing the latest Java release from Apple, Firefox may crash when closing a tab with a Java applet installed.
  2. Some users may experience a crash when moving bookmarks

Known Unresolved issues

  1. Two-digit browser version numbers may cause a small number of website incompatibilities (see 690287)
  2. If you try to start Firefox using a locked profile, it will crash
  3. For some users, scrolling in the main GMail window will be slower than usual.
  4. Firefox notifications may not work properly with Growl 1.3 or later which has been fixed in firefox 11
  5. Silverlight video may not play on some Macintosh hardware

These are the highlighted new feature, fixed issues and known unresolved issues. This dedication of the firefox developed made firefox one of the best browser in the whole world.

 

Google Cloud Print picks up steam

Last April, Google announced their plans for Google Cloud Print (GCP), the service that powers printing on Chromebooks as well as a new generation of connected apps and devices. The goal of GCP is to enable simple, secure printing from any app on any device to any printer—and with the latest cloud-ready printers, you can also print without using drivers or cables.

Since launching earlier this year,a vast community of enthusiastic users and developers became part of GCP. More than 6 million printers have already been connected to GCP using Google Chrome; dozens of cloud-ready printers have been released or announced by manufacturers like Epson, HP and Kodak; and the developer community has released a flurry of apps and extensions to enable cloud printing from both Android and iOS.

While developers and printer manufacturers have embraced GCP, we’ve also released a variety of improvements to the service. You can now share and control access to your printers so your friends and family can use them too. With “Save to Google Docs,” it’s easy to save your online receipts and confirmation pages to an archive in the cloud. The management page has a new tablet-friendly design and a “Print” button so you can upload and print files to your cloud printers from anywhere.

Finally, webmasters can add the print button element to their site to enable printing functionality for tablets and mobile phones.

People with Chromebooks have always had access to the latest and greatest Google Cloud Print features, but today google starting with the latest release of Chrome, anyone using the browser on Windows, Mac and Linux will be able to print any webpage to Google Cloud Print. They’ve also turned on print preview for Chromebooks, so you’ll get the same familiar experience wherever you use Chrome.

In the coming months, google will enable GCP from more Google products and work with partners to add more printers and printing services. Happy printing!