Saturday, November 30, 2024

Qantas Marketplace Navman MiVue Pro 4K dash camera supplied by JB HiFi.

I didn't expect this, but when I purchased the Navman MiVue Pro 4K dash camera from the Qantas Marketplace something was weird. The dash camera started its journey from Doncaster and then went out towards the airport. I can't recall accurately, but then it took something like 1-2 weeks to get to me. I live about 6km from Doncaster.

Based on info I could glean, the dash camera was supplied by JB HiFi Doncaster and then probably had to go to warehouse and then shipped to me. I could have picked up the dash camera up in about 15 minutes.

The Navman MiVue Pro 4K dash camera is quite expensive to me, but I was able to use all my Qantas Frequent Flyer points plus a small amount of money to purchase the dash camera that I wouldn't have been able to justify. Yes, this is bad way to use Qantas points as the value you get is much less than overseas flights. But frankly, I can rarely get the flight I want and can usually get cheaper discounted flights. So, the points were just sitting there, and points don't feel like real money.

Overall, I'm happy with the image quality of the Navman MiVue Pro 4K dash camera, but most of the other features are a disappointment. Still, it's probably one of the cheapest true 4K dash camera and that's what I wanted for my dash camera driving video.

Kelvin
Posted by Kelvin Eldridge at 1:24 PM 0 Post a comment

Open Bug Bounty Website Security Vulnerability Notification email

I received a suspicious email with the subject "Open Bug Bounty - my website Security Vulnerability Notification | Confidential & Important".

My first thought was, is this a scam?

There's a report number and a link, but really, who's game to click on those links. Instead, I opened the site and then drilled down using the rest of the URL. The site was legitimate, and the report let me know they'd located a vulnerability on my site and that the information would be released in due course, 30/90 days.

I then decided to download the raw logs for the site and see if there was anything in the logs that could provide a clue. There it was, near the top of the daily log. I could see the actual code they'd used to test for the vulnerability.

I'm torn between sharing the code or not, because the code really does help you identify areas on your site where you may be able to tighten up the code. But also sharing the code means anyone can use that code as a basis for malicious behaviour. 

If you do receive an email from Open Bug Bounty, I'd highly recommended investigating further. Because any email could be fake and since Open Bug Bounty would issue many of these notifications, it means creating fake Open Bug Bounty emails is a path bad actors could use to attack users. For this reason, do what I did and go to the Open Bug Bounty site and then manually add the remainder of the URL to the address in the address bar. That way you won't be tricked into going to a malicious site.

Also check your raw logs and if you're lucky, you'll see the code they used and can the use that code yourself to test and improve your site.

I should also add that until now I didn't know anything about this type of vulnerability. Open Bug Bounty is testing people's websites and that means every website owner who sees their test, could also then know about the code being used and potentially use that code themselves. In effect letting more people know how to become a malicious actor. That's not a good potential outcome.

I am thankful that Open Bug Bounty checked my site, which in turn enables me to improve my site and my knowledge.

Kelvin Eldridge
Posted by Kelvin Eldridge at 1:24 PM 0 Post a comment

Thursday, November 28, 2024

Recover deleted Blogger post

I deleted a Blogger post recently and afterwards decided, perhaps I should have kept the post after all. If you go to where you create new posts in Blogger there's no option to restore a deleted post. A search of Google shows many people saying that when a post is deleted it's permanently gone, but then I found a video which showed you could restore a deleted post. 

Select the drop down arrow next to the All (number of posts) at the top of the list of posts.
Select Bin (there should be a post in the bin)

Now you can see your deleted post. You can click on the post to have it restored, or if you hover over the post, you can see the options to recover the post and have it posted or make it into a draft.

Kelvin

 

Posted by Kelvin Eldridge at 2:04 PM 0 Post a comment

Sunday, November 17, 2024

New version of Microsoft Edge makes tabs, address bar and favourites toolbar far too big.

Isn't frustrating when Microsoft updates their software and changes things for the worse. OK. For me the new address bar, favourites bar took up far too much space. Google Chrome hadn't made the same change.

The fixed is pretty simple. Microsoft has turned the Touch Mode option on by the default for my computer. My notebook has a touch screen, but I rarely use it. Most of the time I use a larger external monitor.

All you need to do is to turn the Touch Mode option off by default.

Open Microsoft Edge
Click the three dots at the top right
Select Settings
Select Appearance
Scroll down to the Touch section
For Touch Mode select Auto or off

Initially I select off for the Touch Mode, but Auto also appears to work just as well.

Kelvin


Posted by Kelvin Eldridge at 4:59 PM 0 Post a comment
Subscribe to: Posts (Atom)