logo
    • Phone :
    • (207) 874-8100
    • Address :
    • 353 Cumberland Ave, Portland, 04101
    • Connect with us:
Home  portland  Blogs
Group Blog Home
Group Blog Home

Recent Posts
1  2  3  4  5  6  7 
sadasasdas
Posted by Michael Gervais  On Sep 23, 2015 at 9:24 AM
  
test message
Posted by Michael Gervais  On May 13, 2015 at 2:28 PM 1 Comment
  
Link To Source Article

Wordpress is the foundation of many successful businesses, magazines, teachers, and small website owners.  Which of course means it should be no surprise that it can break and be broken intentionally just like any other piece of software.

Despite the most recent update of Wordpress, the comment injection bug was not fixed properly and is still an issue. This has rendered many old and popular themes useless as the developers of these themes do not respond to requests to update their code.

This can be a big hassle for folks that manage large systems of multiuser blogs.  For just one Joe Shmo with a single blog it is no big deal...pick a new theme and customize it and off you go.  But for business or organizations with 2000+ blogs, it can be a support nightmare.

Wordpress is an ever-evolving piece of software that will always have bugs just like anything on a computer. The decision has to be made at some point for large organizations if it is beneficial to run an open source blog system with minimal support, or if there are better options. 

Just my thoughts...
Posted by Michael Gervais  On Apr 28, 2015 at 1:44 PM
  
Yet another reason to be sure if you use SSL/TLS that you are using the latest version on your server side. Though many applications living on the web may not feel they have a need for encryption, it is not just data sniffing that is the issue here. 

"Researcher at Black Hat Asia shows how attackers could abuse a known-weak crypto algorithm to steal credentials and other data from encrypted communications.

SSL/TLS encryption once again is being haunted by an outdated and weak feature long past its prime:  a newly discovered attack exploits a weakness in the older, less secure RC4 encryption algorithm option in SSL/TLS that's still supported in many browsers and servers.

Itsik Mantin, director of security research with Imperva, at Black Hat Asia in Singapore today will detail how an attacker could sniff credentials and other information during an SSL session in an attack he named the "Bar Mitzvah Attack" after 13-year-old weaknesses in the algorithm it abuses. The attack is a glaring reminder that the RC4 algorithm, long known to be breakable, should be put to rest once and for all, according to Mantin.

Bar Mitzvah exploits the weak keys used by RC4 and allows an attacker to recover plain text from the encrypted information, potentially exposing account credentials, credit card data, or other sensitive information. And unlike previous SSL hacks, this one doesn't require an active man-in-the-middle session, just passive sniffing or eavesdropping on SSL/TLS-encrypted connections, Mantin says. But MITM could be used as well, though, for hijacking a session, he says.

Using a sniffer, the attacker can passively spy on the SSL sessions of a targeted organization, for instance, or an application. He then can ferret out the keys being used in the encrypted session of a user logging on to his Facebook account, or a ecommerce transaction. The attacker sees "parts of the encrypted message" that can be used to wage an attack, Mantin says. "He can recover part of the random key stored in plain text … and recover parts of the plain text" prior to its being encrypted, he says. "When a weak key is used, part of the plain text can be recovered from the cipher text."

It's basically an algorithm problem, according to Mantin, who notes that most browsers still include support for RC4 and more than half of servers support it. He says some 30% of TLS sessions still use RC4, which for more than a decade has been superseded by the stronger AES algorithm.

Client machines and servers running SSL/TLS negotiate which algorithm to use for encrypted sessions, he explains. "Today, many still have RC4 in this negotiation process," he says. RC4 in some cases gets selected for performance reasons, he says.

The result: if RC4 is an option and gets selected, an attacker can potentially wage the Bar Mitzvah Attack.

But don't panic: Mantin says it's not an imminent threat per se, and fixing it merely requires removing the RC4 algorithm from the mix.

[Everything you need to know about today’s IT security challenges – but were afraid to ask. Register with Discount Code DRBLOG to save $100 for this special one-day event, Dark Reading's Cyber Security Crash Course at Interop on Wednesday, April 29.]

This isn't the first attack demonstrating RC4's woes:  in 2013, researchers Nadhem AlFardan, Dan Bernstein, Kenny Paterson, Bertram Poettering and Jacob Schuldt, showed how RC4 is basically broken.  "RC4 has been known to be weak for quite many years," says Mantin, who notes that the main difference with his attack and previous RC4 research is that his focuses on the use of the class of weak keys used by RC4.

He says while there's been a gradual trend to phase out RC4 altogether, the process has dragged on.

RC4's troubles have long been in the spotlight, he says, which is frustrating. "This is very odd to me. These things were known in the crypto community for more than a decade, old vulnerabilities in RC4 and in some sense, (they) were ignored by the security industry," Mantin says. 

Outdated Features Add Risk

The Bar Mitzvah Attack is yet another in a series of vulnerabilities in SSL/TLS encryption exposed over the past year due to old, outdated options in the encryption implementation. The POODLE (Padding Oracle On Downgraded Legacy Encryption) attack, for example, allowed an attacker to downgrade to the older, less secure SSL Version 3 encryption standard.

More recently, some SSL/TLS client and server implementations were found vulnerable to being forced to employ the weak, old-school 512-bit encryption option long abandoned as easily cracked. Some one-fourth of SSL-encrypted websites were found to be potentially vulnerable to the so-called Factoring RSA Export Keys (FREAK) attack, including FBI.gov and Whitehouse.gov. Microsoft Windows also was found vulnerable to FREAK, and since has been patched for the flaw.

Meanwhile, the Internet Engineering Task (IETF) is well aware of the problem of too many options in the crypto standards, so the new version of TLS currently under development, TLS 1.3, trims the fat in the specification, eliminating older encryption algorithms and other outdated features.

Mantin has now published a white paper with technical details of the attack, available here.

Kelly Jackson Higgins is Executive Editor at DarkReading.com. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio"

ARTICLE SOURCED FROM http://www.darkreading.com/attacks-breaches/ssl-tls-suffers-bar-mitzvah-attack-/d/d-id/1319633?
Posted by Michael Gervais  On Mar 27, 2015 at 8:38 AM
  

I see this as an amazing breakthrough in science. I see applications for space, laboratories, and many other things. Very smart folks to come up with this idea. Who would have though to drop graphene onto a living organism like a turtle shell. Brilliant!

"As nanotechnology makes possible a world of machines too tiny to see, researchers are finding ways to combine living organisms with nonliving machinery to solve a variety of problems.

Like other first-generation bio-robots, the new nanobot engineered at the University of Illinois at Chicago is a far cry from Robocop. It’s a robotic germ.

UIC researchers created an electromechanical device — a humidity sensor — on a bacterial spore. They call it NERD, for Nano-Electro-Robotic Device. The report is online at Scientific Reports, a Nature open access journal.

“We’ve taken a spore from a bacteria, and put graphene quantum dots on its surface — and then attached two electrodes on either side of the spore,” said Vikas Berry, UIC associate professor of chemical engineering and principal investigator on the study.

“Then we change the humidity around the spore,” he said.

When the humidity drops, the spore shrinks as water is pushed out. As it shrinks, the quantum dots come closer together, increasing their conductivity, as measured by the electrodes.

“We get a very clean response — a very sharp change the moment we change humidity,” Berry said. The response was 10 times faster, he said, than a sensor made with the most advanced man-made water-absorbing polymers.

There was also better sensitivity in extreme low-pressure, low-humidity situations.

“We can go all the way down to a vacuum and see a response,” said Berry, which is important in applications where humidity must be kept low, for example, to prevent corrosion or food spoilage. “It’s also important in space applications, where any change in humidity could signal a leak,” he said.

Currently available sensors increase in sensitivity as humidity rises, Berry said. NERD’s sensitivity is actually higher at low humidity.

“This is a fascinating device,” Berry said. “Here we have a biological entity. We’ve made the sensor on the surface of these spores, with the spore a very active complement to this device. The biological complement is actually working towards responding to stimuli and providing information.”

T. S. Sreeprasad and Phong Nguyen of UIC were lead co-authors on the study. Sreeprasad, a postdoctoral fellow, is now at Rice University in Houston. Ahmed Alshogeathri, Luke Hibbeler, Fabian Martinez and Nolan McNeiland, undergraduate students from Kansas State University, were also co-authors on the paper.

The study was supported by the Terry C. Johnson Center for Basic Cancer Research and partial support from the National Science Foundation (CMMI-1054877, CMMI-0939523 and CMMI-1030963) and the Office of Naval Research (N000141110767)."

THIS ARTICLE IS FROM http://news.uic.edu/tiny-bio-robot-is-a-germ-suited-up-with-graphene-quantum-dots

Posted by Michael Gervais  On Mar 27, 2015 at 8:32 AM
  
Some of you may have noticed when you created a blog or news entry there is no easy way to post a hyperlink to another location like there is with the page editor tool.

You will notice when creating your blog or news post at the bottom of the Body block there are two buttons.  One says "Design" and the other says "HTML".

To add a hyperlink click on the HTML button and the format is as follows:
<a href="http://www.google.com" target="_new">Click Here for Google</a>

If you put this in the HTML block you can then switch back to the Design button and see your link like this: Click Here for Google

Alternatively, you can hold the CONTROL key and press the letter K to bring up the hyperlink manager.

Hope this helps!
Posted by Michael Gervais  On Feb 20, 2015 at 1:10 PM
  
Today I wanted to go over something that I have noticed is being under utilized.
Our websites provide us with a tool to post News on the homepage with ease when we need to get information out.

Whether it is about an upcoming school dance, something the school is proud of, or anything you want folks to know about, the News feed is a great way to accomplish that.

You can view this video on my youtube channel by clicking here
Posted by Michael Gervais  On Feb 12, 2015 at 12:05 PM
  

You’ve seen them everywhere, even on some state license plates.  But what does all those http’s and .com’s mean.  Here’s the website that I referenced for the following information:  
http://www.googleguide.com/web_address.html

Below is a simplified explanation of what makes up a web address:  

First of all, the official computer name for a web address is URLwhich stands for:  Universal Resource Locator

url image

Here’s a sample URL: 

 http://www.crsd.org/buildings/nj/index.html

http:// stands for Hyper Text Transfer Protocol and that basically tells the computer that we are looking to “Transfer” “Hyper Text” (a webpage) from the internet to your computer.  When typing a web address into Internet Explorer you usually don’t even have to type the “http://” because the computer assumes it.

www stands for World Wide Web which is the body of software rules and protocols that make up what we know of as the internet.  Just about every webpage you’ll ever view is a part of the world wide web.

crsd in this example stands for Council Rock School District and it is technically the “second level domain name” 

org is a an example of a “top level domain name”  “.org” is primarily used by Non-profits, “.edu” is commonly used by schools and universities, “.gov” is used by the government, and the now famous “.com” is primarily for commercial websites.  Togethercrsd.org could be described as the school district’s “domain name” 

buildings/nj/ if you remember the old old days of DOS (before we had mice and folders on the screen) you might remember switching folder levels using the “/”.  If you don’t remember its OK, but you should know that “/buildings/nj/” tells the computer to go to a folder labeled “nj” that is inside a folder labeled “buildings”. 

index.html this is the actual file name of this webpage.  More specifically, “index” is the name of the file and “.html” is the file extension which tells the computer what kind of file it is.  “.html” stands for Hyper Text Markup Language which is the language most web pages are written in.

Now you know what the different parts of a web address are. 

(sourced from http://www.180techtips.com/007.html)

Posted by Michael Gervais  On Feb 06, 2015 at 2:46 PM
  
I remember walking into Radioshack as a kid and thinking...WOW.  This is paradise!  Well the kids in the generations to come will never know that feeling it seems.  Radioshack has filed for bankruptcy protection and plans to offload a large chunk of stores to Sprint and maybe Amazon.

It saddens me to hear the news, but I think it has been a long time coming.  In the age where you can google legacy adapters, and electronics parts that the retail giant just doesn't have, it only makes sense that electronics retailers are going by the wayside.

However I think Radioshack will forever remain an icon in the minds of many.  When it comes to building custom electronics and finding those little seemingly pointless yet necessary parts for your gadget or gizmo, Radioshack was the go-to spot.  

I personally will miss it.  RIP shack.

​some info sourced from Gizmodo
Posted by Michael Gervais  On Feb 06, 2015 at 2:45 PM
  
Program Title Link 0001-Building the Portland Public Schools Budget FY 2015-2016 Click Here To Play 0002-Portland Public Schools Be Well 5210 Let's Go - School Lunches Click Here To Play 001-Portland Board of Public Education Business Meeting January 6, 2015 Click Here To Play 003-Portland Board of Public Education Business Meeting February 4, 2014 Click Here To Play 004-Portland Board of Public Education Business Meeting February 25, 2014 Click Here To Play 005-Portland Board of Public Education Business Meeting March 11, 2014 Click Here To Play 006-Portland Board of Public Education Business Meeting March 25, 2014 Click Here To Play 007-Portland Board of Public Education Business Meeting April 8, 2014 Click Here To Play 008-Portland Board of Public Education Business Meeting April 10, 2014 Click Here To Play 009-Portland Board of Public Education Business Meeting April 29, 2014 Click Here To Play 010-Portland Board of Public Education Business Meeting May 13, 2014 Click Here To Play 011-Portland Board of Public Education Business Meeting May 27, 2014 Click Here To Play 012-Portland Board of Public Education Business Meeting June 10, 2014 Click Here To Play 013-Portland Board of Public Education Business Meeting June 24, 2014 Click Here To Play 014-Portland Board of Public Education Business Meeting June 30, 2014 Click Here To Play 015-Portland Board of Public Education Business Meeting August 19, 2014 Click Here To Play 016-Portland Board of Public Education Business Meeting September 2, 2014 Click Here To Play 017-Portland Board of Public Education Business Meeting September 16, 2014 Click Here To Play 018-Portland Board of Public Education Business Meeting October 7, 2014 Click Here To Play 019-Portland Board of Public Education Business Meeting October 21, 2014 Click Here To Play 020-Portland Board of Public Education Business Meeting November 4, 2014 Click Here To Play 021-Portland Board of Public Education Business Meeting November 18, 2014 Click Here To Play 022-Portland Board of Public Education Inauguration December 1, 2014 Click Here To Play 023-Portland Board of Public Education Business Meeting December 16, 2014 Click Here To Play 030-Dedication of PHS School-Based Health Center February 25, 2014 Click Here To Play 031-Sarah Thompson State of the Schools Address to City Council March 17, 2014 Click Here To Play 032-Portland City Council Honors PHS Boys' State Basketball Title April 7, 2014 Click Here To Play 033-Portland Connect ED Baseline Report April 16, 2014 Click Here To Play 034-Portland City Council Honors 2014 Top Senior Class Students June 2, 2014 Click Here To Play 035-Reiche Community: Project Imagine Press Conference October 22, 2014 Click Here To Play 036-STEM Exposition Press Conference November 10, 2014 Click Here To Play 050-Portland Adult Education PSA: My American Dream - Nancy Yombe Click Here To Play 051-My Pathway to Success - Julie Anderson and Kimara Nzamubona Click Here To Play 060-Let's Talk Portland! - with Chris Hall April 2014 Click Here To Play 061-Let's Talk Portland! - with Karen MacDonald May 2014 Click Here To Play 062-Lets' Talk Portland! - Summer Learning June 2014 Click Here To Play 063-Let's Talk Portland! - with Susana Balasch & Kevin Brewster October 2014 Click Here To Play 064-Let's Talk Portland! Job Shadowing and Internships December 2014 Click Here To Play 070-Read Across America in the Portland Public Schools March 2014 Click Here To Play 080-PSA Reading Click Here To Play 081-PSA Adult Education #1 Click Here To Play 082-PSA-Myths Surrounding Bullying by Casco Bay High Click Here To Play 083-PSA-Don't Pick on Me by Casco Bay High Click Here To Play 084-PSA-'Get Help' Depression by Casco Bay High Click Here To Play 085-PSA-Recycle by Deering High Click Here To Play 086-PSA- Composting and Recycling by Ocean Avenue Elementary Click Here To Play 087-PSA-Invasive Species in the Portland Area by Lincoln Middle School Click Here To Play 088-PSA-ACCESS Test Information Assembly at Portland High School Click Here To Play 089-PSA-Welcome to Portland Adult Education Click Here To Play Casco Bay High 001 Junior Class Energy Symposium February 7, 2014 Click Here To Play Casco Bay High 002 College Applications March to Post Office December 12, 2014 Click Here To Play Casco Bay High 003 Lawrence O'Toole Leadership Award Ceremony Dec. 16, 2014 Click Here To Play Casco Bay High: Junior Journey to Rockaways, New York Click Here To Play Deering High 020 - Dr. Sima Samar Afghan Human Rights Leader March 18, 2014 Click Here To Play Deering High 021 - 2014 Best of Both Worlds Cultural Celebration March 27, 2014 Click Here To Play Deering High 022 - 2014 Spring Concert May 21, 2014 Click Here To Play Deering High 023 - Winter Concert December 17, 2014 Click Here To Play Deering High: Drama Club - Folktales From Around the World Click Here To Play Deering High: Finance Authority of Maine - Paying for College Click Here To Play Deering High: Pure Performance - Drug and Alcohol Impact on Athletes Click Here To Play East End Community - 001 African Children's Choir March 2014 Click Here To Play Hall Elementary 001 Winter Concert December 23, 2014 Click Here To Play Hall Elementary: 50th Anniversary Celebration Click Here To Play Hall Elementary: David Sturm 'Physics Road Show' Click Here To Play Hall Elementary: Dental Health with Michelle McFarlin Click Here To Play Hall Elementary: K-9 Police Officer Christian Stickney and His Dog Taz Click Here To Play King Middle 001 Spring Concert June 3, 2014 Click Here To Play King Middle: First Female Truck Driving Champion Click Here To Play King Middle: Michael Chase - The Kindness Center Click Here To Play King Middle: The Play 'A Thousand Years without a Bath' Click Here To Play Lincoln Middle 001 Parent vs. Teacher Basketball Game March 6, 2014 Click Here To Play Lincoln Middle 002 All-City Band, Jazz Band and Handbells Concert March 18, 2014 Click Here To Play Lincoln Middle 003 Variety Show March 26, 2014 Click Here To Play Lincoln Middle: Fuel Up to Play 60 with Patriots Marcus Cannon Click Here To Play Lincoln Middle: Mission Critical - Community Partnerships Click Here To Play Lincoln Middle: Poetry Workshop with Martin Steingesser Click Here To Play Lincoln Middle: The Play 'Freedom Train' Click Here To Play Lincoln Middle: The Play 'The Conquistador's Wife' Click Here To Play Longfellow Elementary 001 Students Releasing Salmon Fry May 2014 Click Here To Play Longfellow Elementary: Author Scott Nash Click Here To Play Longfellow Elementary: Electrical Safety Click Here To Play Longfellow Elementary: Lunchroom Buddies Click Here To Play Longfellow Elementary: Mr. Barry Dana - Former Chief Penobscot Indian Nation 2014 Click Here To Play Longfellow Elementary: Musica de Filia Click Here To Play Lyseth Elementary 001 'PBIS - Positive Behavior Interventions and Support Click Here To Play Lyseth Elementary 002 Storm Drain Pollution Project Click Here To Play Lyseth Elementary 003 - 2014 Talent Show April 5, 2014 Click Here To Play Lyseth Elementary: Author and Illustrator Anne Sibley O'Brien Click Here To Play Lyseth Elementary: Author and Scientist Mary Cerullo Click Here To Play Lyseth Elementary: Mr. & Mrs. Fish 'Plankton and the Food Chain' Click Here To Play Lyseth Elementary: Nutritionist Anne LaPierre Click Here To Play Lyseth Elementary: The Play 'Hotel Hospitality' Click Here To Play Lyseth Elementary: The Play 'The Kit-E-Kat Caper & Little Red Riding Hood' Click Here To Play Moore Middle 001 Naturalization Ceremony April 18, 2014 Click Here To Play Moore Middle 002 Talent Show May 30, 2014 Click Here To Play Moore Middle 003 IDEXX Super Science Classroom Makeover October 9, 2014 Click Here To Play Moore Middle: American Sign Language Classes Click Here To Play Moore Middle: Chief Oscar Mokeme - Museum of African Art and Culture Click Here To Play Moore Middle: Japanese Dances and Traditional Games Click Here To Play Moore Middle: Student-Led International Interview Session about Iraq Click Here To Play Ocean Avenue Elementary: Veterans Day Assembly November 10, 2014 Click Here To Play Ocean Avenue Elementary: You, Me and I.B. - International Baccalaureate Click Here To Play PATHS 001 Music Arts Academy Rock Concert May 8, 2014 Click Here To Play PATHS New Media Program Skateboard Video Click Here To Play Portland High 001 Turkey Day Game November 27, 2014 Click Here To Play Portland High 002 Deering High Girls' Hockey vs. Biddeford December 30, 2014 Click Here To Play Portland High 003 Deering High Boys' Hockey vs. Windham December 30, 2014 Click Here To Play Portland High 004 Deering High Girls' Hockey vs. Cheverus - City Cup Jan. 1, 2015 Click Here To Play Portland High 005 Deering High Boys' Hockey vs. Cheverus - City Cup Jan. 1, 2015 Click Here To Play Portland High 006 Girls' Varsity Basketball vs. Sanford January 2, 2015 Click Here To Play Portland High 007 Deering High Girls' Hockey vs. Falmouth January 3, 2015 Click Here To Play Portland High 008 Boys' Varsity Basketball vs. Westbrook January 6, 2015 Click Here To Play Portland High 009 Deering High Girls' Hockey vs. Cape/Waynflete January 8, 2015 Click Here To Play Portland High 010 Deering High Boys' Hockey vs. Cape Elizabeth January 8, 2015 Click Here To Play Portland High 011 Girls' Varsity Basketball vs. Biddeford January 9, 2015 Click Here To Play Portland High 012 Boys' Varsity Basketball vs. Biddeford January 9, 2015 Click Here To Play Portland High 013 Girls' Varsity Basketball vs. Bonny Eagle January 13, 2015 Click Here To Play Portland High 014 Boys' Varsity Basketball vs. Bonny Eagle January 13, 2015 Click Here To Play Portland High 020 - All-City Orchestra Concert March 24, 2014 Click Here To Play Portland High 021 - All-City Chorus Concert March 27, 2014 Click Here To Play Portland High 022 - 2014 Talent Show April 17, 2014 Click Here To Play Portland High 023 - Winter Concert December 10, 2014 Click Here To Play Portland High: Career Pathway & Freshman Success Academy Click Here To Play Portland High: Judge Unity Dow, Botswana's First Female Judge Click Here To Play Presumpscot Elementary 001 - 2014 Talent Show April 4, 2014 Click Here To Play Presumpscot Elementary 002 - 2014 Spring Concert May 28, 2014 Click Here To Play Presumpscot Elementary: 2013 - 2014 UNUM Reading Program Click Here To Play Reiche Community 001 - 2014 Talent Show April 17, 2014 Click Here To Play Reiche Community: Dormia Author Peter Kujawinski Click Here To Play Reiche Community: Stan Davis Bullying Prevention Expert Click Here To Play Riverton Elementary 001 - College Aspirations Scholarship Program May 23, 2014 Click Here To Play Riverton Elementary 002 - 2014 Talent Show May 16, 2014 Click Here To Play Riverton Elementary: Voices of Afghanistan Click Here To Play TV3 Sports Broadcasting Workshop with Channel 8 Sportscaster Travis Lee Click Here To Play
Posted by Ian Stadelmann  On Jan 16, 2015 at 3:43 PM
  
1  2  3  4  5  6  7