Many say we live exponential times, but do we really understand the times we are living?

_______________
NEXT - VERY RECOMMENDED VIEWING!

Continue on next page…

Pages: 1 2 3 4 5

In an older post I have been trying to figure out how to make the T-Mobile’s Sidekick prepaid plan to work with iPhone - without success, but with some useful info.

Now, basically it’s reportedly possible to have Sidekick plans (both prepaid and contract) on iPhone, given the following are satisfied:

1. You have a Sidekick plan activated for your SIM and you use hiptop.t-mobile.com as APN in the Settings->General->Network->EDGE of your iPhone
2. You have changed you iPhone’s IMEI (BEWARE: it’s illegal) to match a Sidekick device IMEI.

Now, how to know a Sidekick device’s IMEI or IMEI pattern (just for informational/education purposes on topic of IMEIs):

1. Buy a Sidekick device or borrow a device from a friend - I think this is the easiest, though the most expensive (price-convenience trade-off)
2. Search Google - you will be suprised how many people openly and desperately are posting their devices’ IMEIs
3. Generate an IMEI - just look for Advanced IMEI Generator keeping in mind Sidekick devices have Type Allocation Number (TAC - this is publicly available information) something like: 01016000, 01019000, etc. - just search entire TACs list for yourself if you are interested.

WARNING: Changing IMEI is illegial (at least the claims are like this - learn your country LEGALese language) in many countries. Check your country if you are “elligible” too. Do this on your own risk. I am not responsible on what you do with IMEI of your phones/iPhones.

DISCLAIMER: this post is intended purely for research and educative purposes. Any use of this information is sole responsibility of the reader/user and the author is not to be held liable for any miss-use of the above informative technical details.

TAGS: iPhone, IMEI, change iPhone IMEI, iPhone EDGE T-Mobile, TMobile, T-Mobile, EDGE, iPhone Sidekick, iPhone T-Mobile, Sidekick prepaid, Sidekick data iPhone

At present, the only iPhone exploit software I have seen that supports IMEI change function is ZiPhone.

I wasn’t quite interested in actually changing my IMEI, but rather in seeing the way it is done.

First, I have backed-up my original IMEI (and all other stuff displayed in Settings->General->About) and then tried simply:

Code:

The IMEI “0101010101010101″ above is just illustrative example, in practice I have used a valid IMEI. You can also try searching for Advanced IMEI Generator.

After several times of retrying, it didn’t work and I wanted to see why. Basically, what I have found in ziphone.cpp is that this command-line argument simply sends the following command to the zibri.dat ramdisk environment:

Code:

The same result you could have achieved by:

• using iBooter and using the same command as above
• using your iPhone with this command (in MobileTerminal or SSH console for example PuTTY)
  

  Code:

  nvram imei="0101010101010101"

However, this (NVRAM or flash) is just a temporary location in the environment where the IMEI is stored and from where it is taken for subsequent phases of the ZiPhone ramdisk.

So this is why just using the “-i 0101010101010101″ command is not enough for changing IMEI (or is it because my iPhone was already unlocked and subsequent phases

Now, the ZiPhone ramdisk has a profile.sh script, which mainly does this:

Code:

It has 3 gunlock files, which are likely geohot’s gunlock.c modifications, but without any source distributed (Zibree - gunlock.c was released by geohot with GPL - release the sources!)

• gunlock2 - is likely the gunlock for OTB 4.6 1.1.2 (gets ICE04.02.13_G.fls), modified to support IMEI change feature
• gunlock3 - is likely the gunlock for OTB 4.6 1.1.3 (gets ICE04.03.13_G.fls), modified to support IMEI change feature
• gunlock4 - is likely the gunlock for OTB 4.6 1.1.4 (gets ICE04.04.05_G.fls and seckpack114), modified to support IMEI change feature

I am having iPhone OTB 1.1.2 with BL 4.6, and it was unlocked by geohot’s original gunlock (using iClarified tutorial and repository, even though it can be done manually given you have binary gunlock - see attached zip archive), so I was interested first in gunlock2 and gunlock2.c source code (which is nowhere to be found… Zibree - release the GPLed sources!)

Spent one day, got an approximation of gunlock2.c by reverse engineering it and parallel comparison with gunlock.c. Happily, gunlock2.c (and perhaps gunlock3.c and gunlock4.c) are based on geohot’s original gunlock.c and is not very much modified, so execution blocks and logic can be compared even in disassembled views.

Basically, for 1.1.2 OTB BL 4.6 the steps to change IMEI without ZiPhone would be (use at your OWN risk and responsability, since gunlock2 as stated in gunlock2_zveriu_RevEng.c has potential problems):

1. Get gunlock2 binary (either from ZiPhone zibri.dat ramdisk, either from the archive below)
2. Get ICE04.02.13_G.fls (either from ZiPhone zibri.dat ramdisk, either from Georghe Zhu’s baseband page)
3. Get secpack for 1.1.2 (either from ZiPhone zibri.dat ramdisk, either from Georghe Zhu’s secpack page)
4. Put files gunlock2, ICE04.02.13_G.fls, secpackinto your iPhone’s /usr/bin and then:
   

   Code:

   	/bin/chmod 777 /usr/bin/gunlock2
   	/bin/chmod 777 /usr/bin/ICE04.02.13_G.fls
   	/bin/chmod 777 /usr/bin/secpack
   	/bin/launchctl unload /System/Library/LaunchDaemons/com.apple.CommCenter.plist
   	/bin/sleep 5
   	/usr/bin/gunlock2 /usr/bin/secpack /usr/bin/ICE04.02.13_G.fls <16digitsIMEI>
   	/bin/sleep 10
   	/bin/launchctl load /System/Library/LaunchDaemons/com.apple.CommCenter.plist

5. NOTE: if your IMEI is 15 digits long, prefix it with a 0. Example: your IMEI is 987654321012345, you should pass it as 0987654321012345 (at least in Zibree’s gunlock2/gunlock3/gunlock4 implementations)

Download gunlock2 files here

WARNING: Changing IMEI is illegial (at least the claims are like this - learn your country LEGALese language) in many countries. Check your country if you are “elligible” too. Do this on your own risk. I am not responsible on what you do with IMEI of your phones/iPhones.

TAGS: iPhone, IMEI, change iPhone IMEI, gunlock2, gunlock2 source code, gunlock2.c, gunlock3, gunlock3 source code, gunlock3.c, gunlock4, gunlock4 source code, gunlock4.c, ZiPhone, Zibree, ZiPhone IMEI, Ziphone IMEI change, zibri.dat, gunlock IMEI change

UPDATE (26-10-2008): a newer post related to this

I am for a short period in USA. So I was looking at some prepaid GSM SIM cards and the most attractive for me was T-Mobile’s prepaid service. From those, I’ve chosen for some reasons Prepaid SideKick plan, which (not surprisingly, as it is states in the presentation of the plan) is working ONLY on SideKick device for the data traffic, voice is fine.

I was basically looking for a way to use this plan on my iPhone. For the SideKick plans, the APN to be used is for sure hiptop.t-mobile.com - only this APN seems to communicate/process something with the network, any other APN will NOT work and will give you on iPhone “Could not activate EDGE".

However, this APN implementation has some kind of software check that is allowing only SideKick devices to route data thru it.

I was able to get IP address and DNS IP address for the EDGE interface of iPhone, but no pinging/routing was availabe, not even to the proxies mentioned in other blogs nor pinging/routing of DNS IP addresses it have gotten from the network.

Since the EDGE interface is not having a MAC associated (someone, correct me if I am wrong. I have checked it also with ifconfig from iPhone terminal). Having no MAC, what are the other information the APN software/hardware could use to identify and permit only SideKick devices. Could it be IMEI? If it is IMEI, then IMEI change utility for iPhone would do the job - but we need IMEI patterns for SideKick devices. If it is anything else, what is it?

Here are some logs which I got from iPhone’s BB dump (baseband, GSM processor, whatever you call it):

_________

173789393 recv[pdp_ctl]: +XDNS: 1, “216.220.208.209″, “216.220.212.29″
173789393 recv[pdp_ctl]: OK
173789393 send[pdp_ctl]: at+cgpaddr=1
173789405 recv[pdp_ctl]: +CGPADDR: 1,"10.116.158.163″
_________

174312526 send[pdp_ctl]: at+cgdcont=1,"IP","”
174312535 recv[pdp_ctl]: OK
174312535 send[pdp_ctl]: at+xgauth=1,1,"","”
174312542 recv[pdp_ctl]: OK
174312542 send[pdp_ctl]: at+xdns=1,1
174312549 recv[pdp_ctl]: OK
174312556 send[pdp_ctl]: at+cgact=1,1
174313489 recv[pdp_ctl]: OK
174313490 send[pdp_ctl]: at+xdns?
174313500 recv[pdp_ctl]: +XDNS: 1, “216.220.208.209″, “216.220.212.29″
174313502 recv[pdp_ctl]: OK
174313502 send[pdp_ctl]: at+cgpaddr=1
174313514 recv[pdp_ctl]: +CGPADDR: 1,"10.119.157.172″
174313515 recv[pdp_ctl]: OK
174313516 send[pdp_0]: at+cgdata="M-RAW_IP",1
_________

173789374 send[pdp_ctl]: at+xdns?
173789393 recv[pdp_ctl]: +XDNS: 1, “216.220.208.209″, “216.220.212.29″
173789393 recv[pdp_ctl]: OK
173789393 send[pdp_ctl]: at+cgpaddr=1
173789405 recv[pdp_ctl]: +CGPADDR: 1,"10.116.158.163″
173789408 recv[pdp_ctl]: OK
173789409 send[pdp_0]: at+cgdata="M-RAW_IP",1
_________

173830458 send[pdp_ctl]: at+xdns?
173830469 recv[pdp_ctl]: +XDNS: 1, “0.0.0.0″, “0.0.0.0″
173830471 recv[pdp_ctl]: OK
173830472 send[pdp_ctl]: at+cgpaddr=1
173830482 recv[pdp_ctl]: +CGPADDR: 1,"10.203.202.171″
173830484 recv[pdp_ctl]: OK
173830484 send[pdp_0]: at+cgdata="M-RAW_IP",1
_________

DISCLAIMER: this post is intended purely for research and educative purposes. Any use of this information is sole responsibility of the reader/user and the author is not to be held liable for any miss-use of the above informative technical details.

TAGS: iPhone, IMEI, change iPhone IMEI, iPhone EDGE T-Mobile, TMobile, T-Mobile, EDGE, iPhone Sidekick, iPhone T-Mobile, Sidekick prepaid, Sidekick data iPhone

mail.md hack

It was back in 2004 when I was still at UPB and waiting to get final interviews with Ubisoft Romania. Had some spare time and also got interest in mail.md security research after having previously attempted to find security holes in it without too much luck.

At the same time, I saw the below post from k0t about his research on this topic:
Xakep Online > Читаем чужие письма на Mail.md

Few days intensive testing and got the script working. Since then, just beautified and commented it properly. The attack would have involved:

• social engineering - sending the victim a fake email with FROM: as let’s say admin@mail.md and asking with very convincing reasons to click-open the attached HTML. Anyway almost any mail sent from HTML-like web-mail (yahoo, etc) got into mail.md with a file attachment like part2.html (possibly because it didn’t have proper HTML processing in place)
• gathering sufficient mail addresses to make it a mass attack - got with various mail collecting (crawling the HTML pages and parsing all *@mail.md text) and probing (SMTP probing with bruteforce or dictionary based generators) tools (MailOMatic and alike) nearly 3000 mail addresses for mail.md
• automating the fake mailing with tools like Mail Bomber - never got to that point, even though I had everything in place (mail addresses, working script, Mail Bomber and alike tools)

Recently, some script kiddie revived the dead here:
mail.md или читаем письма молдован

Here is an archive with files: Mail.md hack script (working back in 2004-2005)

Now, this attack is not working because:

• it moved from CGI-BIN to some kind of PHP engine
• they fixed the design so that changing the secret question/answer or password requires the old password, which we actually don’t know and don’t want to know/bruteforce

However, they have kept most of the URL encoding of actions, sessions and folders, so they didn’t get rid of the old engine totally likely. Also, they had some stack problems with the old CGI-BIN, but I cannot recall or find any notes on how to reproduce them…

That’s for now. And as a final note - Security - is an ongoing process, not a final goal.

DISCLAIMER: this post is intended purely for security research and educative purposes as well as intended to urge the vendor to fix the problems posing threats to its customers. Any use of this information is sole responsibility of the reader/user and the author is not to be held liable for any miss-use of the above informative technical details.

PROLOG

Destul de recent am fost implicat intr-un proiect in Romania la un mare client mare care, din cate am observat dupa sigla si postere prin sedii, este “Mare donator de picatura de sange” (get my point?).

Proiectul implica Portarea Numerelor sau Portabilitatea Numerelor care, posibil stiti deja, intra in vigoare prin lege in Romania din 21 Octombrie 2008 (desi nici un operator nu prea e pregatit 100% pentru a suporta aceasta portabilitate, deci cam din 2009 va fi suportat 100% conform cerintelor ANRCTI).

Portabilitatea numerelor telefonice este un serviciu destinat utilizatorilor de telefonie care permite acestora sa isi pastreze acelasi numar de telefon atunci cand devin abonati ai altor furnizori.

Portabilitatea la Vodafone
Portabilitatea la Orange

IDEEA IN SINE

In timpul liber pe langa proiect in acea perioada, ma gandeam “Oare cum ar face publicitate operatorii?". Asa m-am gandit la un concept publicitar/de marketing pentru PORTAbilitatea numerelor TELEfonice - telePORTAREA sau TELEportarea (sau orice alta reprezentare grafica mai sugestiva la adresa celor doi termeni principali).

O publicitate tipica/caracteristica pentru operatorii din Romania ar suna/arata cam asa:
“
Esti gata de telePORTARE?
telePORTEAZA-te acum in reteaua PRICHINDEL prin noul serviciu de portabilitate a numerelor si:

• beneficiezi de 1 luna convorbiri la 1 euro_cent/minut in orice retea [SAU insert bullshit marketing attractor]
• esti mai aproape de toti prietenii tai PRICHINDEI, care iti stiu vechiul numar si pe care acum poti sa-l pastrezi oricand si oriunde
• un discount la loc de veci la Belu - asta pentru ca iti poti pastra numarul pe vecie

“

Eventual concepte de servicii prin SMS/VOCE la numere scurte gen *PORT (adica *7678) de genul:

• interogare daca un numar este portat
• etc.

EPILOG

Cineva mi-a zis ca ideea e fainuta, dar neavand access la canalele respective catre operatori sau catre agentiile de publicitate, e foarte putin probabil sa o pot realiza/vinde/etc. Asa ca o public aici - poate ma baga si pe mine cineva in seama (sau poate in origini).

Disclaimer: Conceptul de publicitate/marketing “telePORTAREA ©” legat de portabilitatea numerelor telefonice imi apartine. Orice utilizare fara permisiunea sau acordul meu expres in scopuri publicitare legate de portabilitatea numerelor telefonice se considera o incalcare a legii.

TAGS: Romania, Vodafone, Orange, ZAPP, Cosmote, Romtelecom, RDS, Portare, Portabilitate, Portarea Numerelor, Portabilitatea Numerelor, ANRCTI, Number Portability

Some time back I sent an email to Alex Jones’s Infowars communication center. It was related to Internet2 and the corporate threats. I am not claiming that this mail gave the impulse for the below videos, but I feel somehow involved in these videos :). The mail is at the end of the post.

One alert sign for present days - the mainstream corporate news directly show the link between LHC, Internet2 and CERN. How the fuck LHC was developed 10 years without anyone in the public domain knowing anything about it till this year’s march and now it’s heading to direct (publicly doubted) experiment? Are we missing some pieces of the puzzle?

Other related movies to follow - highly recommended. I am NOT saying nor promoting that 2012 is the real year of the Internet end, but the whole mess raises some suspicions:

More links here

Code:

Many, many, actually a manyfinity of blog-posts and opinions about recent mass Apple addiction. It’s like people can’t get enough apples. Where they “eating” only “vegetables” all these years? I will not reiterate the idea that can be seen here and here and many other places.

What I want to put in light is a simple comparison. Nowadays you can see the Apple stores overcrowded. It’s like a mass hypnosis, a sense of all-so-waited sense of freedom. It’s like the 90’s in my country (from exUSSR) and neighboring ones.

Those times, people got sick of communism which they called a slavery. This is a parallel to Microsoft for the recent years. And then people rushed head-ahead to democracy, blinded by the sense of freedom, never wanting and waiting to see that there is a slavery in democracy itself - just another flavor and more fancy-boxed. It’s the same with Apple – people blindly follow the sense of freedom they have about Apple (based on supposition of Open Software ideology behind the Apple initial philosophy), not seeing the closed boxes into which they sell themselves to Apple (iPhone 3G, players, DRMs, etc.). All this turnover of open-Apple into slavery-Apple – it’s all because of the money. This is the same as discredited democracy by money-greed of Enron, BlackWater Corp, Helliburton and alike.

If taking a conspiracy perspective and thinking lunatic way, here are some thoughts. Behind all big corporations (who aim your money and freedoms and whose goals are to make you dependent on them and sell yourself to them metaphorically speaking) are usually and mainly the same persons and circle of interests. It doesn’t matter who is today ruling the masses – as long as they keep the people mind’s busy. Yesterday it was Microsoft with their PC and Win, which separated each individual into it’s own social cell, who prefer to date virtually rather than trying to socialize in a park for example. It may have distracted masses minds from essential things like Federal Reserve Bank being a private corporation and things alike. Today is Apple with their highly addictive, nearly hypnotizing and entertainment-oriented devices. Entertainment is good, but with limits, because as someone once said “This country is a fucking amusement park”. Tomorrow it can be Google, which is being prepared now and every single second now for it’s social-center-command-and-control-point. It’s all about your money, your freedom and your mind.

And for the end – don’t get me all wrong. I am not saying technology and it’s advancement is bad. It is a wonderful thing. The problem is it’s final and real use, it’s way of being delivered and the way it acts and affects people and societies.

Just my two cents…

I have waited bit of a time to finally install a document viewer which would open documents (especially PDFs) and would sense iPhone’s rotating to take advantage of it’s larger reading horizontal line.

WildEyes! application didn’t seem a very good option since it also wanted:
- lighthttpd - a lightweight http server/daemon
- Safari file:// patch

So, right on time Boss created an alternative Docs application. It didn’t require lighthttpd, but:
- it required Safari file:// patch
- from the Installer repository XML, only version 1.3 and 1.4 are supported to install

So, it left only with the manual option.

1. Downloaded Boss repository XML.
2. In the XML from above, found and manually downloaded Docs 1.14 zip.
3. Unzip the above archive Docs.app into /Application folder on your iPhone (use WinScp or alike as you prefer).
4. For some reason, in the Tweaks categories are present only MobileSafari file:// patches for 1.1.1, 1.1.3 and 1.1.3 - WTF?! 1.1.2 is not a humble human or what?
5. Anyhow, some good people followed George Zhu’s blog and created a 1.1.2 patch version for MobileSafari. Download here - http://rapid$hare.com/files/95711418/MobileSafari.html. Found on this forum.
6. In /Applications folder of your iPhone, find MobileSafari.app. Inside, find MobileSafar binary executable file. Make a backup of it (on iPhone or on your local PC) and then put in MobileSafari.app the one from the archive downloaded above at point 5.
7. Enjoy your reading! Knowledge is light …

Here are some screenshots:
- happy one

iPhone Docs Safari 1.1.2 patched - PDF loaded

- fuck it - now you have to split some nice PDFs in chunks…

iPhone Docs Safari 1.1.2 patched - page too large

Hehe - first milestone accomplished.

What it means is:
- installed Linux Ubuntu 7.10 Gutsy Gibson
- configured and build iphone-dev’s toolchain
- build the “Hello iPhone World!” application
- didn’t use Apple iPhone SDK nor any Java-like framework

My first iPhone native application

More on some details later

… sau cum sa-i f*ti pumni webmasterului de sa-i spargi toate bannerele din gura

o stare de frustrare pentru ca nu poti citi ca un om normal un site, un ziar, un “ceva” pe plaiul mioritic al internetului romanesc. de fapt ce ma enerveaza cel mai mult este faptul ca aceste flash-bannere zgomotoase se intind ca o raie incurabila pe tot ecranul. as prefera sa fie pop-upuri, ca tot deja am atat eu cat si browserul imunitate la ele…

Iritatii de la bannere

mai degraba imi vine sa-i zic webmasterului si designerului:

“fraiere, am iritatii de la bannerele tale mai mult decat de la tot barbieritul vietii mele insumat la un loc!”

just my 2cents

I use to watch Badea’s show “In gura presei” kindly provided as a recorded streaming on antena1.ro

While listening to the stream, I could not resist checking the site design, functionality and of course it’s security.

And voila - it seems that streaming archive section of antena1.ro is XSS-reflection vulnerable.

antena1.ro XSS hack

Code for PoC XSS reflection:

Code:

DISCLAIMER: this post is intended purely for security research and educative purposes as well as intended to urge the vendor to fix the problems posing threats to its customers. Any use of this information is sole responsibility of the reader and the author is not to be held liable for any miss-use of the above informative technical details.

First part article showing ejobs.ro security weaknesses is here

Now we continue with a XSS-with-DNS experiment.

First, it allows as a *feature* for the users to create some kind of subdomains on ejobs.ro which get linked to either Romanian or English version of the CV. Even though it looks like a cool feature, it wasn’t given a thought:

• from security perspective (DNS is sinful as Dan Kaminsky shown countless times)
• other perspectives (subdomain indexing proven by Alex Drambulco to hit badly google page-rank algorithm moving traffic to specially crafted sites)

Now to the experiment part . ejobs.ro and bestjobs.ro are two competing HR/Recruitment firms (at least they pose themselves on the market like this - who knows, maybe the same shadow-person owns both )

Using stored XSS attack with iframe and using the sub-domain feature we get the below:

Ejobs.ro serves Bestjobs.ro

In CV section of your ejobs.ro account, in the Objectives text-box use the following iframe injection code to check the proof:

Code:

For sure they miss something in their security approach towards web application development.

That’s it for now. See you next time.

DISCLAIMER: this post is intended purely for security research and educative purposes as well as intended to urge the vendor to fix the problems posing threats to its customers. Any use of this information is sole responsibility of the reader and the author is not to be held liable for any miss-use of the above informative technical details.

UPDATE: check the second part here

Well, this is not necessarily big news nor a breakthrough…

However, it is sad to see that big and old players on the different markets (be it job&recruitment, online payments, news corps, search engines, etc.) are still susceptible to such well known and wide-spread attacks (as XSS for example) and are still posing threat to their main and most important assets.

If to take as example ejobs.ro mainly:
- 2.5 Mil persons/month using their services
- 1 Mil resumes they posses
- 9 years of presence on the market
- No1 position on the market
All above are according to one of their banners:

ejobs.ro banner

I am asking myself - wasn’t it a good and sufficient example the compromise of intelligence assets of monster.com?

What is even more sad is the fact that they have some kind of filters/sanitations implemented (as you will see below). But it seems that those security measures look more like:
- are home-made ones - lacking presence of unified sanitation policy and library/package
- treat some local and specific bug/cases - lacking security/code auditing as a practice of entire SDLC
- are buggy/obsolete - they tend to be more of a burden in maintenance rather than a help for the entire software product

Let’s look at some technical details (NB: dear ejobs.ro - pay special attention or contact me as we can colaborate as freelancer/consulting party )

1. XSS reflected attack.
Click link here (no harm code - only proof of concept alert box). Fully HEX obfuscated (easily deobfuscated by current editing software), but useful while sending to the victim

Code:

XSS reflection IE

Looks like no sanitation done. Also, I always keep fighting with opposing industry colleagues that outputing user input to the title of the page (be it search, etc.) brings no benefits, rather the opposite - pain-in-the-ass

2. XSS stored attack.

XSS stored FF

This specific case, while doing XSS probing has shown that there are some sanitation routines… which more likely will have to be improved…

If you have an account and a resume, try either of the below injection codes in the Obiectiv or Beneficii textboxes (save and preview the CV using “Cum vad companiile CVul meu". The answer would be - “FOARTE FOARTE PROST !")

Code:

Code:

Both XSS attacks worked for me in IE6, IE7, FF2.

It seems that even after many decades, proper parsing is still an issue for most of the developers - be it an issue of lack of technical knowledge or just simple lack of interest to complicate themselves with additional “useless” burden of security assessment…

DISCLAIMER: this post is intended purely for security research and educative purposes as well as intended to urge the vendor to fix the problems posing threats to its customers. Any use of this information is sole responsibility of the reader and the author is not to be held liable for any miss-use of the above informative technical details.

YouTube - sort the search as you want and as you used to!

Are you an avid YouTube-er? Like seeing top/most viewed videos first?

Ok, so this post is for you then !

Somewhere in mid-march YouTube removed from it’s page the sort by number of views function - arrgghhh, right?!

Logically, the most obvious trick they could have done is just to remove the visual rendering of the option, leaving the sorting functionality intact though. Some Google-ing and cached results and…. SURPRISE!

Here is the URL parameter to be passed in the URL for your search results so you will get sort based on number of views
search_sort=video_view_count

So if you have a result page like URL:
http://www.youtube.com/results?search_query=zeitgeist

Then the sorted results will be obtained from the address URL:
http://www.youtube.com/results?search_query=zeitgeist&search_sort=video_view_count

Here is the link to some kind of script for some browsers which will enable the sorting through the push of a button in your favorite browser - userscripts

Aveam nevoie sa verific un curs valutar - asa ca am mers la CursValutar

Nimic deosebit pana acum, mi-am verificat ce aveam de verificat. Insa cum nu ma pot abtine mai mereu sa testez superficial siteul (cel putin la nivelul programelor si scripturilor care ruleaza in spate), am gasit cateva lucruri pe care banuiesc ca nici dezvoltatorii de CursValutar nu le banuiesc - asta din cauza ca e o “magie” ce se intampla, iar magia cum stim - e necontrolabila…

De ce te-ar afecta anume pe tine aceasta problema?

Pai cateva motive la care te poti gandi rapid:
- datele financiare au nevoie de o precizie si o veridicitate sporita, altfel s-ar falimenta lamentabil, nu crezi?
- folosesti un soft de prognoza/statistica financiara bazate pe diversi indicatori, iar softul foloseste sa zicem datele de pe CursValutar - funny things can happen
- scade credibilitatea si perceptia imaginii fata de CursValutar
- etc.

Deci, va prezentam:
- CursValutar - serviciul Masina Timpului inainte - afla cursul valutar din viitor ca sa poti stapani viitorul

Afla cursul din viitor - CursValutar Oracle & Wizard

- CursValutar - serviciul Masina Timpului inapoi - modifica greselile trecutului si creaza Euro la timpul potrivi, astfel incat sa primesti zestre de la bunici Euroi =). Ca sa obtii magia, lasi ziua selectata cu valoarea “Zi”

Euro - valuta existenta din 1969

Asta cu masina timpului inapoi - pare a fi din punct de vedere soft legat cu data epocala 1970 din Unix (si posibil la care este initializata variabila), din care se scade o zi din motive mai mult sau mai putin evidente

As some already know (especially my cubicle neighbors at work - i keep bugging them), I own an iPhone - which of course I am not satisfied to use only as a simple user.

Below are some videos related to my iPhone testing.

iPhone - Calculator Math Bug:

iPhone - Calculator Keytouch Feature/Bug

iPhone - CameraPro Dummy Crack

I am very interested by the progress of *NIX toolchain porting to iPhone, as well as gcc, gdb and of course mplayer.

zveriPhone details:
1.1.2 OTB (Week 50)
Jailbreak + Activate 1.1.2
Unlock with gunlock for 1.1.2 & 1.1.3
Carrier - CYTAVODA

DigiFace is a software project which I am planning to put on proper wheels so it can start rolling.

Some of current functionalities:
- face detection
- facial feature detection - eyes, mouth (3 points)
- facial feature tracking - eyes, mouth (3 points)

Some of planned functionalities:
- full feature detections - adding eyebrows, nose, ears, more detection points
- pose and angle evaluation
- face recognition
- 3D face modeling based on face samples

Main site for the project:
http://digi-face.net

Some video demos:
Part 1
Face and facial feature detection and then tracking:

Part 2
Face and facial feature detection and then tracking:

Part 3
Face and facial feature detection and then tracking with adaptive zoom, i.e. camera has no optical zoom nor a pan/tilt mechanism, but it simulates it all these using digital zoom and sub-framing, so the face is always in focus:

More to come…