Monthly Archives: May 2008

Using IPTables to Prevent SSH Brute Force Attacks

If you have a server with a world facing ssh server, you’ve probably seen brute force attacks in your logs. Some machine starts hammering your ssh server, trying all sorts of logins (staff, root, a, admin, etc…) over and over and over again.

This is bad on a lot of fronts.

I use two simple iptables […]

By | May 24th, 2008|Linux, Security|31 Comments

Rant About Core-Based Licensing

This is a copy of a small rant I just posted on the ATG_Tech Google Group.

Please note that ATG isn’t the only company doing this, Oracle does it, as do many others. I just think that it’s wrong:)

If you draw a graph showing processing power against software license cost for […]

By | May 23rd, 2008|ATG|3 Comments

ATG License IP Checks on JBoss

Some ATG product licenses are bound to a specific list of IP addresses. However, it may validate that in a somewhat counter-intuitive manner, at least under Linux.

If, for example, you are running ATG within JBoss on a server with multiple IP addresses (or multiple NICs), you might expect that if you bind JBoss to […]

By | May 23rd, 2008|ATG|3 Comments

Project Roles – ATG Development Practices

Let’s define some roles for a full life-cycle ATG Development effort. Your company may not be arranged exactly like this, but it’s a good baseline I think.

Client Representative
The single face of the client. The sole conduit to and from the client.

Project Manager/Dev Manager
The owner of the schedule, resources, project status, and interface between […]

By | May 22nd, 2008|ATG|2 Comments

Starting Assumptions – ATG Development Practices

We need to start with some basic assumptions to guide our solution.

Here is my initial list:

  1. The applications being built will be important commerce or personalization sites, but will not be the sort of critical applications like nuclear plant software or air traffic controlling programs which require massive testing and documentation
  2. The team may be geographically distributed
  3. Time, […]
By | May 21st, 2008|ATG|0 Comments