Alter.Org.UA
RU ru   Donate Donate

Welcome to Alter's home page
 2018.05.31 - 14:46

  • All in one about http caching with nginx over web-server. Just to remember. Nginx caching proxy (reverse proxy)

    •  2018.03.20 - 13:30

    Travel to Glybichitsa drainage system - one of the oldest and interesting places under Kiev.

     2018.03.06 - 01:45

  • Just to keep in mind how to tell m.facebook/facebook to show most recent news first.
  • RESTful API with Apache

    •  2018.02.28 - 22:45

    Travel to Klov drainage system - one of the most dangerous and interesting places under Kiev.

     2018.02.08 - 17:45

  • Updated patch for DBF (dBase) type 'I' fields for PHP, added Gentoo HOWTO (pecl dbase 5.1.1)
  • Updated HOWTO for Self-signed SSL sertificate and quick fix of sec_error_reused_issuer_and_serial.

    •  2018.01.13 - 01:11

  • minor optimization for mobile browsing

    •  2017.12.20 - 10:13

  • fixed memory leak and crash in AHCI mode. Thanks to Michael Arthur Long for testing. (ROS-13988)
    UniATA v0.46e5

    •  2017.12.12 - 15:01

  • Drop static scenes from video chunks without full transcoding (ffmpeg, h264).
    Drop static video chunks Facebook

    •  2017.12.11 - 00:17

  • fixed nVidia MCP61 S2 support, thanks to Samuel Serapion
    UniATA v0.46e4

    •  2017.12.06 - 00:59

  • Android .backup extraction HOWTO
    How to extract data from Android .backup files
  • Hikvision, Security
    Interesting, I've a lot of hikvision web-cams in private network. They are almost identical with same login/pwd, the main difference is IP address :) Let's make TCP port forwarding from gateway to http port of one camera. Pass authorization. Reconfigure port forwarding to point to another camera. Try to refresh page in the browser. And you get to admin page of it too! All images, scripts, etc. are loaded from browser cache. Looks like vsid cookie contains some hash of username+password with is checked against same hash of local credentials. All these are passed over plain HTTP without encription. Its very easy to use replay attack with stolen vsid.
    Also, you can try to get some interesting info from your camera without any authorization 
    http://my.camera.ip/Security/users?auth=YWRtaW46
http://my.camera.ip/onvif-http/snapshot?auth=YWRtaW46
    Facebook

    •  Next block of news
    All News >>
    Copyrights ©, Licenses and so on

    All materials are intellectual property of their authors. All rights reserved. If you want to use any material in your commecial project you MUST make agree with the author. You can use, modify and redistribute published materials for non-commecial purposes keeping Copyright information.

    Note: this license is overriden by material-specific licences (if any). This licence covers all materials ever published on the site.

    Licence violations lead to responsibility. Your soul will be the price.
    designed by Alter aka Alexander A. Telyatnikov powered by Apache+PHP under FBSD © 2002-2018