Vista/Windows 7 Links toolbar on taskbar – how to remove ‘Open file security warning’

Posted on August 18, 2009 by johnny

A few years ago I discovered that the links toolbar is a zillion times better than quick launch. The links toolbar allows you to create folders and group common program shortcuts in them. When you click on a folder a menu appears with all the shortcuts.

IE7 changed the way that works with its improved security: now each time you open a shortcut that’s in the links toolbar, it asks you if you really want to open the file. This is pretty annoying and so after doing some searching I found this:

To remove the prompt, enter this in a cmd shell that has Administrative Privileges (Start menu -> type cmd -> hold ctrl+shift, tap enter).
cd %userprofile%favorites
icacls links /setintegritylevel (CI)low

To restore the prompt:
cd %userprofile%favorites
icacls links /setintegritylevel (OI)(CI)low

Thanks to ‘Jimmy Brush’ for this. This and other tips on his Vista FAQ.

Posted in Uncategorized | Tagged , , | 1 Comment

BlackBerry OTA .jad installation without BIS data plan

Posted on July 12, 2009 by johnny

I recently switched to a low cost mobile telephony operator, Simyo. I get 500mB of internet traffic for 5 EUR a month with them, which is 3 times cheaper than what I was paying for 300mB with my old operator.

One disadvantage to the new operator is that they don’t offer BIS, being a low cost operator and all. It doesn’t work out too bad for me, all I’m missing is the native internet browser and native email. With Opera Mini and Gmail Mobile it is usually a non-issue…

…until I need to install a program that only offers Over-The-Air installation, like ÜberTwitter, a great BlackBerry twitter client. OTA installations use the native internet browser to download the necessary files, which doesn’t work for me.

After some trial and error, I managed to install ÜberTwitter by downloading the .cod files that make up the program onto my PC, then transferring the .jad and .cod files to the BlackBerry. I imagine this will work for any other OTA installation.

What you need:

  • BlackBerry with no WiFi or BIS/BES service
  • microSD card

Steps to follow:

  1. Download .jad file from website.
  2. Open .jad file in notepad.
  3. Search for line with RIM-COD-URL: filename.cod
  4. Obtain .jad file URL (in Firefox, right-click on the .jad link -> copy link location).
  5. Paste URL into browser, replace .jad filename with .cod filename*.
  6. Save .cod file to disk.
  7. Repeat steps 3-6 for any additional .cod files that are mentioned in the .jad file.
  8. Copy all the files (one .jad and however many .cod) to a folder on your BlackBerry’s microSD Card.
  9. Go to Media -> BlackBerry button -> explore -> find the folder and open the .jad file.
  10. Install the application.

*Example: if the URL for the .jad file is http://domain.com/ota/program.jad, to get the .cod file the URL would be http://domain.com/ota/filename.cod

Posted in Uncategorized | Tagged | 2 Comments

Eclipse copies .svn folders to bin directory, TortoiseSVN confused

Posted on June 24, 2009 by johnny

This last trimester we started ‘learning’ Java in Programming class. The faculty-approved (and heartily encouraged) development environment is Eclipse. Having never used an IDE before I’ve been surprised by -and quite enjoyed- the hand-holding it provides.

One problem I’ve had is with the build process and Subversion/TortoiseSVN. Each time I build a project a nasty red exclamation mark appears on the `bin' directory of that project. I hadn’t put too much effort into finding out why it was happening until today; I can’t stand that goddamned red exclamation mark any more.

To make a boring story a little less so, Eclipse copies the contents of the `src' directory -including `.svn' directories- to the output `bin' directory. This was confusing Tortoise into thinking it had to track source changes in the `bin' directory, which I hadn’t actually added to SVN’s version control. Even adding the `bin' directory to the ignore list didn’t fix the issue. After a quick google I found the solution (and explanation of what the hell was going on): http://francisoud.blogspot.com/2008/07/eclipse-classpath-ad-subversion.html

Thanks Benjamin.

This post brought to you live from the blogosphere—straight from the internet right onto your computer, wow!

Posted in Uncategorized | Tagged | Leave a comment

Jazztel internet, Telefónica router and PfSense firewall – tying all three together

Posted on May 19, 2009 by johnny

Historically, the network topology at my home has been horrible.

A little background on why it’s so foul. Ever since I got ADSL, all the literature I’ve received regarding the set-up parameters has told me the encapsulation my connection uses is PPPoA with VC-Mux. PfSense and semi-decent routers like the WRT54G only have PPPoE/LLC clients, so I always imagined my resulting configuration was the only possible one.

With that, behold the abomination of a network I have used for a long time:

My convoluted network

My convoluted network

Yes, I was double NATing. At one point I had such a terrible router with no DMZ capabilities that I actually had to forward ports on the ISP router to  PfSense and then in PfSense to whichever tortured client was gasping for visibility on the World Wide Web (the www is the internet is the www rite?).

The router I have currently is a Telefónica-branded ZyXEL P-660R-D1. It’s a holdover from an ADSL line we had in another house, and after my WAG54G broke it was all I had.

The other day, for some reason I have now forgotten, I stumbled upon the fact that many PPPoA setups actually accepted and worked if configured as PPPoE. Peeing my pants in excitement I first changed them, and then set about confirming this new morsel of  knowledge. Preliminary results proved that yes, in fact, I could connect via PPPoE! Oh the joy.

I set about configuring it in bridge mode, so as to delegate the PPP session initiation responsibilities to PfSense. Easy enough -I thought- select bridge from this here dropdown menu, choose NAT-none radio option here, click click bleep-bloop-done! Same in PfSense, set the WAN interface to PPPoE, put my username and password in, apply and voilà. Not so much. I couldn’t get the PPP link up, and perusing the system log I found lots of this:

May 16 15:55:36 router mpd: [pppoe] outgoing packet is demand
May 16 15:55:36 router mpd: [pppoe] IPCP: Open event
May 16 15:55:36 router mpd: [pppoe] IPCP: state change Initial --> Starting
May 16 15:55:36 router mpd: [pppoe] IPCP: LayerStart
May 16 15:55:36 router mpd: [pppoe] bundle: OPEN event in state CLOSED
May 16 15:55:36 router mpd: [pppoe] opening link "pppoe"...
May 16 15:55:36 router mpd: [pppoe] link: OPEN event
May 16 15:55:36 router mpd: [pppoe] LCP: Open event
May 16 15:55:36 router mpd: [pppoe] LCP: state change Initial --> Starting
May 16 15:55:36 router mpd: [pppoe] LCP: LayerStart
May 16 15:55:36 router mpd: [pppoe] device: OPEN event in state DOWN
May 16 15:55:36 router mpd: [pppoe] device is now in state OPENING
May 16 15:55:45 router mpd: [pppoe] PPPoE connection timeout after 9 seconds
May 16 15:55:45 router mpd: [pppoe] device: DOWN event in state OPENING
May 16 15:55:45 router mpd: [pppoe] device is now in state DOWN
May 16 15:55:45 router mpd: [pppoe] link: DOWN event
May 16 15:55:45 router mpd: [pppoe] LCP: Down event
May 16 15:55:45 router mpd: [pppoe] device: OPEN event in state DOWN
May 16 15:55:45 router mpd: [pppoe] pausing 6 seconds before open
May 16 15:55:45 router mpd: [pppoe] device is now in state DOWN
May 16 15:55:51 router mpd: [pppoe] device: OPEN event in state DOWN
May 16 15:55:51 router mpd: [pppoe] device is now in state OPENING

I spent a few hours trying to get it to work, changing one part of the configuration at a time, rebooting both routers just in case, yadda yadda. In the end I couldn’t even connect with my original PPPoA/VC-Mux settings. I didn’t have a working phone with me and had to wait until the next day to call my ISP.

Their logs showed me having 16 line-drops over a period of few hours, and seemingly one of the line-drops triggered the system to disable my account because they thought I was hacking them. Or something. The support guy wasn’t very clear on that.

With my internet restored (and my brother’s fingers unclasped from my neck) I decided to do some extensive searching on the issue. After much reading and about 200 Firefox tabs open, I found out that seemingly, with my router, Bridge mode only really gets activated if you do it through the Wizard. I’d just gone straight into WAN settings and changed it there.

Parallel to the research, during my tests the day before, I had noticed  something strange on the system monitoring page. After negotiating the connection speeds, the router was alternating between two connection profiles; my one -aptly named ‘Jazztel’- and some other one named ‘ISP2′. I couldn’t find mention of ISP2 anywhere on the router’s web management pages, so I telnetted in. There I quickly found the rogue profile under ’11.1 Remote Node Configuration’. It seems the profile was pre-loaded onto the router by Telefónica and served some mystical purpose. Deactivating the profile broke my internet again. I thought the solution might be just deleting it so after much hemming and hawing I went for it. With my heart thumping I rebooted. Success! The internet still worked.

With that peculiarity sorted out, I went through the Wizard to set the router into bridge mode and saved the settings. Then in PfSense I configured the WAN interface as PPPoE again, with my username and password, and crossed my fingers. After about a minute my internet was working again and there was much joy in my heart.

New and improved network diagram

New and improved network diagram

Over the next few days I’ll get to see whether all this trouble was worth it or not. Will PfSense need rebooting every other day? More to come.

Update: here are the conclusions after a few months, regarding the change.

Posted in Uncategorized | Tagged , , | 1 Comment

PfSense and me

Posted on May 18, 2009 by johnny

I have had a PfSense installation running in some form or other for approximately three years now. First it was some Frankenstein Pentium I computer I managed to put together with scrounged parts from eight different computers that hardly worked. I had to sellotape an 80mm fan to the fanless heatsink to avoid it overheating. Yes, it kept on falling off.

Then came a crappy beige box that made too much noise and would turn itself off. This pissed my family off a lot -both the noise in the living room and the intermittent internet connection- so I had to abandon PfSense for a few months.

During those months I trawled eBay for IBM thin clients. I found a few in Germany and Britain, but the sellers didn’t want to ship to Spain. One of them was willing to, but when I asked the price of shipping he replied with ‘[...] the post office is closed until monday, until then the best estimate I can give you is shipping to Brasil which costs X GBP’. I cut all communication with that person.

In the end, I came across some Nortel Contivity 100s. I’d seen a few pictures on m0n0wall’s gallery that featured these Contivities, and after a quick search found out they worked with PfSense too. They were in Canada and the seller didn’t want to ship internationally so I got an internet friend (<3 katton) to pick them up and ship them to me.

Once they arrived I flashed PfSense onto a Compact Flash card and booted one up, but it kept rebooting after 60 seconds. The internet had told me that the Contivity had a ‘watchdog’ that rebooted the machine after 60 seconds if it wasn’t running Nortel’s firmware. I had located ‘J14′ on the PCB and hacked away at it with a Stanley knife, thinking I had cut the trace. Obviously not.

I then spent a long while searching the internet for any tips, but kept on finding the same information over and over ‘cut J14 and it will work’. Goddamn it I had already cut J14.

The Contivities then spent a few months in their box, a horrible reminder of my failure at hacking hardware. Every so often I’d take one out and try to definitively cut J14. During one of these sessions I managed to fry the processor and possibly the whole unit. I bought 4 so I haven’t checked -out of embarassment. Then one day, out of nowhere, I found a picture of J14. Over to the left of where I’d been hacking away at the PCB was a wire labeled J14 that I hadn’t managed to find. So I cut it in about 2 seconds with my trusty Stanley. Hooray it now booted!

I then fixed up the other remaining units, took one into the office and set it up with VPN and traffic shaping and all that cool stuff, set up another one at home with the same and kept the third for when one of the other two break.

The one in the office has been running PfSense 1.0.1 since then, and would probably have 900 days of uptime if it hadn’t been for the crappy electric installation at our old office. I recently upgraded the one at home to 1.2.2.

Fin.

bedtime, Kevin

bedtime, Kevin

Posted in Uncategorized | Tagged , | Leave a comment