存档

文章标签 ‘GFW’

[ZT]利用GFW来防DDOS攻击

2010年7月2日 Galaxy 没有评论

嗯,以后的国内DDOSor悲剧了……
阅读全文…

分类: etc 标签: , ,

[Tip]解决MU网盘链接中4开头的被墙的问题

2010年4月15日 Galaxy 没有评论

megaupload是国外不错的网盘。
MU链接4开头的都被墙了,如http://www.megaupload.com/?d=4LYL4MXH
解决方法,避开这个关键词:
www.megaupload.com/?&p=1&d=后边加4开头的连接~
http://www.megaupload.com/?&p=1&d=4LYL4MXH

分类: etc 标签: , ,

[ZT]破解Google Gmail的https新思路

2010年2月7日 Galaxy 没有评论

简单来说,就是伪造证书的中间人攻击。条件嘛,就是这个伪造的证书能被信任。
对GFW而言,有微软协助,问题就不大了。

http://www.williamlong.info/archives/2058.html

破解Google Gmail的https新思路

  最近,Google针对Gmail被攻击事件,全面默认启用了始终以https访问Gmail的方式了。但是,对于可以动用整个国家力量的黑客来说,从网络通讯数据中(在此不讨论对用户电脑种木马破解 https的情况,只讨论在网络通讯数据中破解https的方法)破解https除了暴力破解(暴力破解https即使按照现在的集群计算能力仍旧需要几百至几万年不等)之外真的别无他法了吗?事实并非如此。

  我们知道,https的安全性主要是由SSL证书中的公钥和私钥来保证的。浏览器与服务器经过https建立通讯的时候(不考虑SSL代理方式需要用户提交证书的情况,因为我们现在讨论的是浏览器访问网站,和SSL代理无关)会按照以下步骤保证通讯的安全性:
阅读全文…

分类: Software 标签: , , ,

[ZT][绿bar娘]《4000w的大小姐》第一话

2009年9月15日 Galaxy 没有评论

http://bbs.2dgal.com/read.php?tid=124646
没找到原帖,貌似原作者弃坑了。
[绿bar娘]《4000w的大小姐》第一话(求删帖)
因为某些原因,请求管理员删帖,不好意思了。

第一话    4000w的传说

传说的诞生
都市某地下研究所
  「虽然说现在只是在研发阶段,但一旦开发成功,这肯定是人类史上一次划时代的创举呢!」
  「摸鸡笼萨,毕竟单单到目前的资金投入就有4000w啊」
  「遗憾的是,为了公众安全起见,在正式批量生产前得先找个愚蠢的用户进行测试呢,也就是所谓的neta版……」
  「那个……应该是beta版吧……」
  「…………」
  「……」
  「唔嗯,总之,先找个幸运的家伙对第一号版本进行测试,而且为了不被竞争对手发现我们的产品从而抢先我们,这次的测试要秘密进行,为了避免节外生枝,最好只发出一号测试品」
  「嗯,对了,这次产品在研究中一直使用英文代号,是不是应该取个响亮的天朝代号?」
「……你认为取什么名字好听?」
「叫“春哥”怎么样?」
「春你妹啊!!叫“绿bar”!」
「好,很有霸气,就叫绿bar!呵呵,这产品肯定会轰动天朝的!」
「哈哈哈哈哈哈…………」
「哈哈哈哈……」
两个穿西装戴墨镜的中年男人站在一个庞大的液晶显示器前面哈哈大笑,在他们镜片中反映出来的是一个被一堆数据和代码围绕着的,双目紧闭、楚楚动人的少女……
阅读全文…

分类: Novel 标签: , , ,

为啥ICU也被墙了……

2009年9月4日 Galaxy 没有评论

看TL群的邮件,发现有人提ICU可以把数字转成汉字读法,g了下,发现是IBM的开源项目,然后去官网site.icu-project.org。结果是一整天都没连上。
晚上想起phpproxy,就试了下,结果:

What is ICU?


ICU is a mature, widely used set of C/C++ and Java libraries providing Unicode and Globalization support for software applications. ICU is widely portable and gives applications the same results on all platforms and between C/C++ and Java software.

ICU is released under a nonrestrictive open source license that is suitable for use with both commercial software and with other open source or free software.

Here are a few highlights of the services provided by ICU:

  • Code Page Conversion: Convert text data to or from Unicode and nearly any other character set or encoding. ICU’s conversion tables are based on charset data collected by IBM over the course of many decades, and is the most complete available anywhere.


  • Collation: Compare strings according to the conventions and standards of a particular language, region or country. ICU’s collation is based on the Unicode Collation Algorithm plus locale-specific comparison rules from the Common Locale Data Repository, a comprehensive source for this type of data.


  • Formatting: Format numbers, dates, times and currency amounts according the conventions of a chosen locale. This includes translating month and day names into the selected language, choosing appropriate abbreviations, ordering fields correctly, etc. This data also comes from the Common Locale Data Repository.


  • Time Calculations: Multiple types of calendars are provided beyond the traditional Gregorian calendar. A thorough set of timezone calculation APIs are provided.


  • Unicode Support: ICU closely tracks the Unicode standard, providing easy access to all of the many Unicode character properties, Unicode Normalization, Case Folding and other fundamental operations as specified by the Unicode Standard.


  • Regular Expression: ICU’s regular expressions fully support Unicode while providing very competitive performance.


  • Bidi: support for handling text containing a mixture of left to right (English) and right to left (Arabic or Hebrew) data.


  • Text Boundaries: Locate the positions of words, sentences, paragraphs within a range of text, or identify locations that would be suitable for line wrapping when displaying the text.

Who Uses ICU?

The following is a list of products, companies and organizations reported to be using ICU. If you have any feedback on this list (corrections, additions, or details), please contact us.

Companies and Organizations using ICU

ABAS Software, Adobe, Amazon (Kindle), Amdocs, Apache Xalan XSLT, Apache
Xerces XML, Appian, Apple, Argonne National Laboratory, Avaya, BAE Systems Geospatial
eXploitation Products, BEA, BluePhoenix Solutions, BMC
Software, Boost, BroadJump, Business Objects, caris, CERN, Debian Linux, Dell,
Eclipse, eBay, EMC Corporation, ESRI, Free BSD, Gentoo Linux, Google, GroundWork Open Source, GTK+, Harman/Becker Automotive Systems GmbH, HP,
Hyperion, IBM, Inktomi, Innodata Isogen, Informatica, Intel, Interlogics,
IONA, IXOS, Jikes, Mathworks, Mozilla, Netezza, OpenOffice, Lawson Software,
Leica Geosystems GIS & Mapping LLC, Mandrake Linux, OCLC, Progress
Software, Python, QNX, Rogue Wave, SAP, SIL, SPSS, Software AG, Sun
Microsystems (Solaris, Java), SuSE, Sybase, Symantec, Teradata (NCR),
Trend Micro, Virage, webMethods, Wine, WMS Gaming, XyEnterprise, Yahoo!, and many
others.

Products from IBM

Ascential Software, Cognos, PSD Print Architecture, DB2, COBOL, Host Access Client, InfoPrint Manager, Informix GLS, iSeries, Language Analysis Systems, Lotus Notes, Lotus Extended Search, Lotus Workplace, WebSphere Message Broker, NUMA-Q, OTI, OmniFind, Pervasive Computing WECMS, Rational Business Developer and Rational Application
Developer, SS&S Websphere Banking Solutions, Tivoli Presentation Services, Tivoli Identity Manager, WBI Adapter/ Connect/Modeler and Monitor/ Solution Technology Development/WBI-Financial TePI, Websphere Application Server/ Studio Workload Simulator/Transcoding Publisher, XML Parser.

Products from Google

Web Search, Chrome, Android, Adwords, Google Finance, Google Maps, Blogger, Google Analytics, Google Gears, Google Groups, and others.

Products from Apple

Mac OS X, iPhone OS, Safari for Windows, Apple Mobile Device Support in iTunes for Windows.

Products from Harman/Becker

The following car brands are using ICU via the Harman/Becker automotive software: Alfa Romeo, Audi, Bentley, BMW, Buick, …

唉,这年头……

分类: etc 标签:

[ZT]翻墙利器(ssh -D)

2009年3月26日 Galaxy 8 条评论

本文将提供一种一劳永逸的翻墙方式(ssh -D),实施之后,那道墙——对你来说——将从此透明。

本文面向的用户:使用Windows作为操作系统并且使用Firefox作为常用浏览器。

第一步:免费获取拥有SSH权限的帐号和密码。

默认的免费获取方式:将本文转载到你自己的博客上,将转载后的文章网址发送到f.ckgfw#gmail.com

转载方式:拷贝文章代码至博客后台HTML编辑器中,直接发布即可,文章标题自拟,可在前后文插入自己的评论。

经过人工审核,你将收到一封附有五个拥有SSH权限的帐号和密码的电子邮件,你可以将它们赠与你自己的读者。

更多获取方式将在今后陆续激活,请关注帐号配送中心:https://friendfeed.com/rooms/fuckgfw-for-free

第二步:配置MyEntunnel软件

下载并安装MyEntunnel,该软件全名为My Encrypted Tunnel。

一键下载:https://dl.getdropbox.com/u/398/myentunnel.exe

myentunnel

按照上图将第一步收到的帐号信息填写到相应的地方后,点击save按钮,再点击hide按钮。

第一次连接过程中会出现一个认证对话框,按照提示确认即可。以后的自动连接中将不再出现此认证对话框。

最后点击hide按钮,使对话框隐藏到系统任务栏中。

提示:

为MyEntunnel创建一个快捷方式,将其复制到系统的【启动】(C:\Documents and Settings\当前用户名(需要修改成你自己的)\「开始」菜单\程序\启动)文件夹中,今后开机便可自动启动软件,并自动连接服务器。

tray

绿色代表连接成功且稳定;黄色代表正在连接或重新连接;红色代表连接失败。

第三步:配置Firefox浏览器

假设你正使用Firefox浏览器阅读本文。

一键安装:https://dl.getdropbox.com/u/398/autoproxy.xpi

xpi

点击立即安装,安装后,重新启动Firefox。然后你会看到如下对话框,选择gfwlist (P.R.China)后,点击确定。

gfwlist

接着你会看到Firefox主界面右上角出现有一个“福”字图案,点击“福”。

fu

点击“代理服务器——编辑代理服务器”。

edit

随即出现如下画面,你会看到如GAppProxy、Tor和Your Freedom这样一系列代理服务器名称。

before

将GAppProxy一栏的参数修改为如下图所示。

after

修改完毕后,点击确定。至此配置已全部就绪。

获取更多帮助,请参与反馈:https://friendfeed.com/rooms/fuckgfw-feedback

第四步:支持fuckGFW

获取详情,请关注捐赠与推广中心:https://friendfeed.com/rooms/fuckgfw-donation-and-marketing

版权信息:您可以自由复制、传播、演绎本作品且无需署名、无需注明原始出处。

逛博客时发现这个, http://xiao3meng.org/web/use-ssh-d-over-gfw/ 。
ssh可以说是终极解决方法,只要服务器的IP不被封就能用,还是SSL加密。
不过,服务器不好找而已。

分类: Other Softs 标签: , ,

外国人看不到的中国审查

2008年8月21日 Galaxy 没有评论

http://www.yeeyan.com/articles/view/Elaine%20Lu/12525

简介

       自北京城报导奥运的外国记者发现进入海外知名网站受阻后,北京的网络监管问题近来频频见诸报端。现在政府已经解封了其中一些网站,但是更大的问题已经得到了解决吗?中国对普通百姓的电子通讯审查的变化有多少呢?

自北京城报导奥运的外国记者发现进入海外知名网站受阻后,北京的网络审查问题近来频频见诸报端。虽然现在政府已经解封了其中一些网站,但是记者们可不要认为更大的问题已经得到了解决。中国对普通百姓的电子通讯审查变化甚微。来访的记者们忽略了这一点,是因为不熟悉这些针对中文内容的审查形式:网站和服务的主机使用的是中国国内的计算机服务器。而一般而言外国人并不使用。

中国过滤系统,俗称“长城防火墙”,阻止的各类网址和关键字实际上都是来自国外的计算机服务器主机提供的网站和服务。在中国国内,拥有自己网站、博客和聊天室的公司必须为其服务发表的反对内容负责。中国所有的博客服务、YouTube类型的视频共享网站之流,都有一整个部门来标志或删除麻烦内容,否则会被政府部门吊销营业执照。

这个背景对于理解中国人的博客和聊天室中大量的政治性谈话非常关键。确实,和几年前相比,大众关注的公共话题讨论有了更大的空间。然而这样的空间仍旧是有限制的。中国网络用户受到的网络审查比以前更有针对性更隐晦。

例子很多。周一,我登陆数个中国博客服务网站,基于美国媒体对上周美国游客在北京鼓楼遭遇刀袭的报道,用中文发表第一段。中国最受欢迎的博客平台之一—新浪,几小时后删除了我发表的文章。但是新浪新闻门户网站上登出了中国新闻社有关此次袭击的报道。百度,中国最大的网络公司之一,其经营的博客服务甚至不允许我发表这篇文章。然而,在百度新闻中搜索“鼓楼”后,跳出好几个中国媒体对这个事件的报道。

策略似乎很清楚:放松对中国的专业记者的管制,让他们报道突发新闻,即使是负面新闻——因为消息总会流传出去,而且他们和博客不同,仍然在管制之下。同时,打击那些可能含有过多关于新闻自由讨论的博客、聊天室、视频共享网站。继贵州省瓮安县因一个年轻女孩的可疑死亡发生大暴乱之后。类似的事情上演了。许多中国大门户网站纷纷删除或阻止发表任何提及瓮安的博客或聊天室发言。相反,门户网站上则涌现了中国专业媒体对瓮安事件的大幅报道。

即使是幽默也逃不过审查。上周的一个晚上,一个笔名为“deerfang”的中国博客正和一个朋友分享笑话,那个朋友知道一些经典政治笑话,这些笑话是5月份其他朋友通过手机短信发来的。这个朋友试着把一则关于毛主席和胡锦涛主席的笑话发给deerfang。“我手机收到了信息,但是一片空白,说是‘文本缺失’”deerfang在她的博客中写到。她的朋友生怕是技术错误,又把这条信息发给另外几个人。结果还是一样。看来自从3个月前,中国移动就已经加紧了网络审查。

中国的审查制度远非刀枪不入。由于某种原因,一个网络平台上审查的内容常常会在另一个网络平台上泄露。用户可以想出替换的字眼或使用委婉的说法避免关键字被追踪或者干脆通过电子邮件四处传播新闻,他们确实是这么做的。长远看来,审查制度注定会失败。但是短期内,各种措施确实行之有效,有助于中国共产党手握大权。

外国人需要知道这就是此时此刻正在发生的事情。还有一点也十分有用:近来关于北京的审查制度尘嚣至上。目的是把注意力引到更大的问题上,而外行人未能理解审查制度对中国网络的实际影响如何,令这个国家的人民十分沮丧。本周的前几天,我收到了一个名叫杜东进的博客的来信,他抱怨道:“在我看来,美国之音的评论很浅显,它根本不介意中国是否有网络审查制度,它只在乎自己的利益。”此前他收到一封美国之音祝贺中国网络解封的电子邮件。

他的抱怨意味着,不论是增加的权利,还是解封美国之音网站,还是另外一个或是几个外国网站,对于北京的网络控制问题都不会有更多改观。外国记者在奥运会期间浏览特赦国际网站时应该记住这点。

http://online.wsj.com/article/SB121865176983837575.html?mod=opinion_main_commentaries

The Chinese Censorship

Foreigners Don’t See

By REBECCA MACKINNON

FROM TODAY’S WALL STREET JOURNAL ASIA

August 14, 2008

Beijing’s Internet censorship hit global headlines recently, when foreign journalists in town to cover the Olympics discovered their access to well-known overseas Web sites was blocked. Yet while the government has now unblocked some of those sites, those journalists shouldn’t think the broader problem is solved. Censorship of ordinary Chinese people’s electronic communications within China has changed little. Visiting reporters just aren’t noticing because these forms of censorship relate to Chinese-language content they’re not familiar with, hosted on Web sites and services located on computer servers inside China, which foreigners generally don’t use.

The “Great Firewall,” the common moniker for China’s filtering system that blocks various Internet addresses and keywords, really only pertains to Internet sites and services hosted on computer servers outside China. Inside China, companies that host Web sites, blogs and chat rooms are held responsible for objectionable content posted on their services. All of China’s blog-hosting services, YouTube-style video sharing sites and the like hire entire departments of people to flag and delete things that may get them in trouble with the government authorities who could revoke their business license.

This context is key to understanding the wide-ranging conversations, many of them political, that are now happening on Chinese blogs and chat rooms. There is indeed a vastly larger space for public discourse on matters of public concern than existed even a few years ago. But that space still has limits. Chinese Web users now experience a more targeted and subtle approach to censorship than before.

Examples abound. On Monday, I logged into a number of Chinese blog-hosting services and posted the first paragraph of a Chinese-language story, based on state media reports, about last week’s knife attack on American tourists atop Beijing’s Drum Tower. One of China’s most popular blogging platforms, Sina.com, deleted my post after a few hours. But Sina’s news portal ran Chinese news agency reports about the attack. A blog-hosting service run by Baidu, one of China’s biggest Internet companies, wouldn’t even let me publish the post. Yet a Baidu news search on “drum tower” turned up several Chinese media reports about the incident.

The strategy seems clear: Give China’s professional journalists a longer leash to cover breaking news even if it’s not positive — since the news will come out anyway and unlike bloggers, the journalists are still on a leash. At the same time, clamp down on blogs, chat rooms and video-sharing sites that might allow too much unfettered discussion of the news. A similar thing happened in July after large riots took place in Weng’an, a town in Guizhou province, after a young girl died under suspicious circumstances. Many large Chinese Web portals deleted or prevented publication of any blog and chat room posts mentioning Weng’an. Instead the Web portals ran extensive coverage of events in Weng’an reported by China’s professional media.

Not even humor is safe from censorship. One evening last week, a Chinese blogger who writes under the name of “deerfang” was sharing a good laugh with a friend who knows some great political jokes — learned through mobile-phone text messages sent in May from other friends. The friend tried to forward one of the jokes about Chairman Mao and President Hu Jintao — still stored in his phone’s memory — to deerfang’s mobile. “My phone received the message but in blank saying ‘missing text,’” deerfang wrote on her blog. Her friend tried sending the message to other people’s phones in case it was a technical error. Same result. It seems that censorship on the China Mobile network has tightened since three months ago.

China’s censorship is far from perfect. Often what’s censored on one Web platform somehow slips through on another. Users can and do devise alternate wordings or euphemisms to avoid the notice of keyword trackers, or simply email the news around. In the long run censorship is bound to fail. But in the short run this variety works just well enough to help the Chinese Communist Party stay in power.

And foreigners need to understand that it’s happening, and how. As useful as the recent uproar over censorship in Beijing was for calling attention to the broader issue, the failure of outsiders to understand how censorship affects the Chinese Internet in practice is a source of frustration inside the country. Earlier this week, I heard from a blogger, Du Dongjin after he received an email from the Voice of America celebrating the unblocking of their Chinese website. “In my point of view,” he complained, “it is quite a plain comment that VOA does not care if there is Internet censorship in China. It only cares its own interests.”

By this he meant that, whatever the incremental benefits, unblocking VOA’s site — or any other one or several foreign sites — won’t change the more problematic aspects of Beijing’s web control. That’s something for foreign reporters to remember as they surf Amnesty International’s Web site during the Games.

Ms. MacKinnon is assistant professor at the Journalism and Media Studies Centre, University of Hong Kong and co-founder of Global Voices (globalvoicesonline.org).

See all of today’s editorials and op-eds, plus video commentary, on Opinion Journal.

And add your comments to the Opinion Journal forum.

分类: 译言翻译 标签: , ,
Locations of visitors to this page