Imagine the scenario. Someone out there is using Google. They’re looking for a company. They want to buy what you sell. Have you optimised your website for the key words they’re looking for? For the sake of argument, let’s assume you have. So your business is in the first few results. That’s brilliant. Except for [...]

Last week we launched the first of 1DayLater’s phone applications, this one for the i-phone.

Die hard 1DayLater users will know that this has been a long time coming; mostly because the ‘bigger boys’ at the iphone store have kept returning our latest builds for picky reasons. But we’ve now squirmed our way in - hoorah!

The first of many phone apps which we will be releasing

To build the app we enlisted the help of a local web development and design house; Twisted Studio, earlier this year.

We asked Twisted to create us something which was purely for input purposes, no fancy graphs or analysis. Just a simple way of logging your activities on the go, whether that’s time spent with a client or mileage travelled.

The data then gets whisked away to each user’s 1DayLater account where the magic happens.

The app can be found here on the apple store. What’s more the app is free and we would like to keep it that way to benefit all of our users. However if you do want to pay us back then a kind review on the app store about the 1DayLater service would be hugely appreciated.

Further apps will soon be available for Google Android, Nokia N-Series and Blackberry phones.

Please be brave and sign up to help our very good friends at St Oswald’s Hospice in Gosforth by participating or helping out with this fabulous opportunity to see Newcastle upon Tyne in a whole new way.

St Oswald’s provides hospice care for adults, young people and children.  Situated in Gosforth, Newcastle upon Tyne, St Oswald’s purpose-built facilities offer a range of flexible services to North East families.

St Oswald’s follows a holistic approach that aims to address not just physical symptoms, but also spiritual and emotional needs too.

Families from across the region – Northumberland and Tyne & Wear – can benefit from their services.

St Oswald’s are a registered charity and their annual running costs amount to £8 million – of which £6 million must be raised through voluntary giving.

They make no charge for any of their services, ensuring hospice care is available to everyone.

Give Jayne a shout and get signed up to help this amazing cause.

I’ve no pictures for this, because I was doing it as part of a dinner party, so you’ll have to just imagine.  I should just the nod to Beer Reviews for pointing me in the direction of cider gammon.

Take a 1kg ham, or gammon joint.  I used an unsmoked one, wanting to bring the spice flavour through, but a smoked one might be really good.

Pop it in a big pan, and run the cold tap on it for a good couple of minutes to remove remove the salt.

I stood mine end on in the slow cooker (a 3 litre job) and added 2 bottles of “rustic” cider (Old Rosie would be good, this was a Lidl bargin job in a glass bottle), totally 1.5 litres.  Add a large clove of garlic, peeled and thumped to break it up a touch.  I used a fat clove of smoked garlic because that’s what I had in after the Jerk Chicken experiment.

I ground a heaped teaspoon of black pepper corns and one “arm” of a star anise up in the pestle until all cracked through.  I was tempted to add more star anise, but the liquouricy flavour was enough.  Stick that all in the slow cooker too.

The liquid nearly covered the ham, but instead of adding extra liquid, I turned the ham ever couple of hours.  I cooked on High for 3 hours, and low for 4 hours, then turned off and the meat left to cook in the liquor.

You could slice it finely once cold (lift it out of the cooking liquor once cold), but I flashed it in a hot oven without a lid for 20 minutes to warm the meat through and crisp the outside fat.  You don’t want to crisp it too much, the velvet soft liquid-laden fat is one of the great delight.  If you’re hot slicing it cold, cut with the grain to break of big chunks, and pretend to be a medieval king!

Possibly Related Posts:

• Give us this day our daily bread(maker)
• Home-brewed time-lapse fungus growing 101
• Jerking it
• Hot and sour manly popcorn
• Mushrooms, live!

<p><a href="http://www.vatsimsigs.co.uk"><img src="http://posterous.com/getfile/files.posterous.com/temp-2010-07-28/ganHgodgCeevxnagnwsGhcFJretotjnvbzJmioilCmtnlxhcltDDoFGqeyxf/vatsimsigs.jpg.scaled500.jpg" width="500" height="269"/> </a></p> <p>I'm an avid Flight Simulation fan, have been for years much to the mirth and merriment of the people I know. I enjoy nothing more (well, within reason) than filing a flight plan from one place to another and sitting online while I'm guided via live air traffic control - pretty much as real as it gets without setting foot into an actual plane.</p> <div>The live air traffic control is from <a href="http://www.vatsim.net">VATSIM</a>, or more specifically the people connected to the VATSIM servers who have nothing but a simulated radar screen on their PC's with which to talk to and guide us armchair pilots from one place to the next, over the internet.</div> <div> </div> <div>It's a lot of fun and it's the nearest I'll get to realising my childhood dream of being a pilot, because I have the worlds shittest right eye. I can see everything with it, only it's like looking through slightly frosted glass. So, Mr Woods isn't allowed to fly the Big Iron (though I *will* get my PPL one day).</div> <div> </div> <div>I've been a member of the FlightSim community since about 1993 or 1994, (back in the dark days of FS4.0b with the aircraft and scenery design addon!) and during the years I've learned a LOT about piloting, navigation, radio communications, etiquette and aircraft stats. All of which appeal to me.</div> <div> </div> <div>So it's my turn to give something back, no matter how trivial. Enter <a href="http://www.vatsimsigs.co.uk">VatSimSigs</a>.</div> <div> </div> <div> <a href="http://www.vatsimsigs.co.uk">VatSimSigs </a>is, as the about page will tell you, simply a web application that allows you to display a signature on forums, reflecting your connection status to VATSIM - that is, online or offline. This is especially handy for those who browse the forums and are interested in seeing whether or not their buddies are online.</div> <div> </div> <div>In addition, it also allows you to upload "sets" of images, which I have cunningly entitled "image sets" (genius!). These sets of images are a two-part group of signature images, one for online and one for offline statuses - but because the system generates HTML or UBB code links, you can have multiple different signatures running through your singular VatSimSigs account. </div> <div> </div> <div>What this means is that if you're a member of a virtual airline (and I am, I'm a First Officer rank on <a href="http://www.thomsonvirtual.com">www.thomsonvirtual.com</a> , defected from KnightAir ), you can have one signature for that forum and another for additional forums, such as BAVirtual or EasyJetVirtual or whatever other forum you frequent. All from one place, no administration necessary - VatSimSigs will do the processing and make sure the correct status image is served no matter which image is requested.</div> <div> </div> <div> <a href="http://www.vatsimsigs.co.uk">VatSimSigs </a>is also free of charge - so enjoy, tell your friends and have three greens!</div> <div> </div> <div>For those who are interested, It's built in <a href="http://ASP.NET">ASP.NET</a> MVC 2.0, and took about 19 hours to complete from start to finish including design / development / deployment - not bad going :)</div> <div> </div> <div><strong>Check it out!</strong></div> <div><a href="http://www.vatsimsigs.co.uk">http://www.vatsimsigs.co.uk</a></div> <div> </div>

Normally when I hear the words “I am fine” it is a fib, but really, I am okay. If you follow me or my friends on Twiter you may heave heard I was assaulted on Tuesday night on the way back home from a photo walk.

I am not going to say much about what happened now, both because the Police are investigating, and because all I want to do now is go to bed. I have been awake for over 38 hours and really need sleep. The summery is I was hit once by one of two lads who were drunk and looking for trouble.

Currently I am in a decent state despite falling badly. I have a fractured arm, but we are hoping it will not need a plaster putting on it. I am doing physiotherapy and need to keep popping to hospital to monitor this. I am slightly bumped and bruised but it could have been fare worse. No significant cuts but some grassing. The pain is well within my pain tolerances and I should be able to continue an abnormal in a few days. I hope to make a full recovery in 6 to 8 weeks.

I must say a big thank you to fellow photographer Brit who helped get me in an ambulance. Also a huge thank you to my friends and followers who have been great. I have pages and pages of public and private good wishes. My phone’s SMS inbox is full and the voicemail has given up. Several people from across the country have offered to jump on a train and keep me company. I have been welling up reading some of the messages. I am very lucky. I will reply to you directly soon if I have not done so already.

Finally I have to say that everyone, and I mean everyone I have met at the NHS and Police service have been amazing. I felt that my well-being was the most important thing to them throughout.

For those readers of this blog who don’t happen to read the Boston Globe I’d like to share a fascinating link: http://www.boston.com/bostonglobe/ideas/articles/2010/07/11/how_facts_backfire/?page=full The article is about how readers of political articles, when faced with the corrected facts about the article they’ve read, actually become more adamant and entrenched in their misinformed views rather than less as [...]

Update 30/07/10: Added slide shares of presentations and also the speakers UX reading lists. Another interesting night at SuperMondays.  I won’t say too much because David Coxon over at his blog has said it so much better! Much thanks goes to Joanne Richardson (@joanne84 and also on Posterous) from @orangebus.  It was originally Joanne’s idea [...]

BACKFlip Networking is the easiest way to promote your business to around 150 people in just a couple of hours. You can sell your products and services easly with either a flipchart space or a display table. If you’d like to exhibit at BACKFlip it’s really simple and inexpensive. All you need is a pile of Business Cards and yourself, no expert marketing knowledge is needed.

Tickets Now On Sale For Exhibitors, for more information visit: http://backflip.eventbrite.com/ for more information.

User eXperience or UX has to be one of the buzz words of the year, and it seems when it comes to creating the ultimate surfing experience everyone from marketing agencies and pr people to designers and developers wants to get in on the act.

Such a hot topic, had to the the subject of a Supermondays session soon or later, and Joanne Richardson of Orange Bus certainly did it justice this month. Not only did Joanne curate the session, arranging talks from Graham Morely of graphic.ly and Th_nk’s Director of Ux, Lee Alan, but she also presented herself, apparently presenting for the first time, although you wouldn’t have guessed it from her delivery to another full house, this time at Gateshead Colleges Baltic Campus.

The general messages that came from all three speakers was that User eXperience didn’t have to be expensive, but that it should be considered, and that it should be an  iterative process, that is to say that it should be reconsidered and revised after each phase of design and development.

For me it was really refreshing to hear the speakers talking about adapting and simplifying, and avoiding feature creep.  These days its all to common to see companies adding more and more bells and whistles to sites, without considering whether they actually add value to the user.

I’m going to leave you with Joanne’s closing comments UX is about user stories and about creating “Happy Experiences”, and a reminder from the team that if you missed out on Supermonday this month, then you have a second chance to get out and do a bit of social networking with SuperSummer this Thursday.

Presentations: Start up UX – Graham Morley , A day in the life of a UX designer – Joanne Richardson

Book Recommendations: The Design of Everyday Things - Donald Norman , Web Form Design: Filling in the Blanks - Luke Wroblewski , Don’t Make Me Think: A Common Sense Approach to Web Usability – Steve Krug ,

Online Resources: pivottracker , patterntap , iconfinder , konigi

pingpong ball matrix (2x7x8)

Originally uploaded by Dr Brian
@coldclimate and @sc_r making things during howduino

Howduino, what a great event/weekend at the centre for life.
So we had two days of 6 hours each to make stuff around arduino or electronics in general. There were a lot of matrix light projects from @coldclimates and @sc_r s ping pong matrixes, to lee and friends amazing skip finds (two great matrix displays). Another theme was that of remote controll, with @alistair controlling a servo over the internet, and another team a remote controll car from their computer.
There was also the hacking of an animatronic head(yoda like) and the control of housegold power sockets(peter) through a networked arduino. Sophie did a squigglebot, and there was a whiteboard drawer, thom did a dalek that found your face (using the webcam) and pointed his blue led laser gun at you. @oomlout contributed to a lot of the projects, and jim of @sonodrome demoed using a led as an input(light detecting) and output(light  o) device, nice one
These are all the ones I remember, but it would be great to get a complete list.

What did I do?
Investigated using a ldr to get an idea of motor spin speed. In the future this will be great for getting an idea of how fast a centrifuge is spinning, or using it as a counter for bees entering and leaving a beehive.

BACK Consulting welcomes new starter Chris Metcalfe to the company.  Having just completed first year Computer Science at Loughborough University, Chris is looking forward to gaining some experience in the field of IT.   Chris, 18 and a former Maplin Employee said that it was really exciting to be working for a company like BACK and that he hope to pick up some invaluable experience.

At University, Chris passed all of his first year modules with an average of over 70%, despite finding time to go out most nights.  He is a keen gamer and helps to run one of the UK’s largest gaming leagues.  After the summer, Chris returns to Loughborough to continue with his degree.

This morning I cause myself a problem. Annoyingly it was foreseeable and avoidable, this is my excuse (not great, but I’ll stick to it). But as every problem is merely an opportunity in disguise whist I’m re-building systems I might as well document the process. The original InfoSanity guide for installing Kippo was based off of the latest stable version, but I rapidly migrated to the development SVN on learning of the MySQL logging capabilities, so this guide covers that.

Packages

As I’m using a Debian system a lot of the system pre-requisites are packaged, this aren’t all needed immediately but we might as well grab them all at once.

apt-get install subversion #for svn
apt-get install python-twisted python-mysqldb # Python and required modules
apt-get install mysql-server #

Basic Kippo setup

Grab Kippo direct from svn, at time of writing I got version 160. (latest instructions):

svn checkout http://kippo.googlecode.com/svn/trunk/ /opt/kippo-svn

Now we can start the honeypot system:

./start.sh

That’s it, all that is required to get the system running. To confirm you can ssh locally with ssh -p2222 root@127.0.0.1, unless you’ve jumped ahead and edited the config, password will be 123456.

MySQL

Log into MySQL via commanline, assuming you’ve not modified the kippo.cfg database directives build the database:

create database kippo;
grant all on kippo.* to ‘kippo’@'localhost’ identified by ‘secret’;

Next edit the kippo.cfg accordingly you database/user/password and uncomment the [database] configuration directives. REMEBER to uncomment ;[database] line not just the parameters, that has now caught me out twice.

Finally, build the database structure with the script that can be found in <kippo>/doc/sql/:

doc/sql/# mysql -ukippo -psecret kippo < mysql.sql

Restart your Kippo process and you should be good; re-test access to the shell and view the database tables to confirm that logs are being written to the database.

Happy Honeypotting

–Andrew Waite

When discussing some of my recent findings with Kippo I’ve been asked a few times for suggestions for how people can prevent their systems from being compromised via this vector. A quick Google search shows that there are already a number of good resources covering the options, including: Debian Administration Article and Securing Debian Manual. However, the high number of options can leave people unsure where to start so I’ll summarise some of those that are more common and can provide the highest return on investment for the time taken to make the change.

N.B. a lot of the suggestions below are valid for most/all remote access functionality.

Restrict access from unknown locations

If possible (it isn’t always) restrict access to only come from known and trusted sources. This can be down at multiple choke points in the network and system; perimeter firewall, host firewall (iptables etc.) or sshd config. For working with sshd the /etc/hosts.allow and /etc/hosts.deny, for example:

/etc/hosts.allow

#Corporate HQ gateway
sshd: 1.2.3.4/255.255.255.255

/etc/hosts.deny

#Generic Deny All
sshd: ALL

It doesn’t matter how insecure your system is, if an attacker can’t connect and communicate with a vulnerable service they can’t exploit it, period.

Restrict remote root access

Preventing remote access to the root account can reduce the damage that can be caused by a compromised. With SSH this can be achieved with a single configuration line:

/etc/ssh/sshd_config

PermitRootLogin no

Only allow access to specific accounts

Does every account on you system need to be able to remotely access the system via SSH? No? Then why can it?

Remote system access can be restricted on a per user basis. This can be either as a whitelist using the AllowUsers directive or as a blacklist with the DenyUsers directive. For example, if I only wanted to allow my own account access via ssh:

/etc/ssh/sshd_config

AllowUsers andrew

These capabilities can be useful with certain honeypot systems; if you create a weak user account linked with an ftp or pop3 honeypot (for example), then the same weak accounts can be prevented from gaining access to a shell with the DenyUsers directive, limiting the weak account to only access those services that are being monitored.

Run on non-standard port

Yes, this is ‘security by obscurity’; if this is the only change you make you haven’t really improved security any, but it is still useful as part of wider security posture. Attackers are continually scanning the internet looking for new systems to exploit, currently the ISC statistics show connections to tcp22 at around 100k targets; even moving to a relatively common alternative port of 2222 drops the malicious traffic by around 90%.

/etc/ssh/sshd_config

Port 2222

This reduces the number of malcious attempts targeting the service, which will both reduce processor/network load and ‘noise’ in the log. If you now get a burst of failed log-in attempts in the logs, then this may be indicative of a specific attacker rather than just the usual background noise of bots and worms scanning for new victims.

Summary

Implementing the above can drastically improve SSH security above the defaults, with a relatively small effort required providing a great ROI. So what’s your excuse? Go harden that SSH installation

–Andrew Waite

We have just finished the fifth and final workshop of our first Selling at a Higher Level blended sales training programme.

Part of this final session was spent reflecting on how the programme has helped to develop the attendees selling skills. One comment that was reflected around the room was how having a sales process has significantly increased their confidence. Whilst not surprising to me, what was interesting was that many of the delegates had not realised this was a likely output when they signed up to the programme.  They now understand how vital confidence is to being successful in sales and how a sales process can help to develop and nurture this confidence.

We designed and developed the course to bring structure and process to sales peoples’ professional lives.  We have had a wonderful mix of students on the programme – business owners, experienced sales contributors and people who are brand new to selling.  Each of them has taken away a range of tools, technique and sales blueprints designed to help them sell more effectively.  What’s more we have tried really hard to bring every tool and technique to life, to put it into context and to demonstrate how it can add value to the sales process.

The Engleby Associates Sales Methodology provides a backbone to the programme and over the five workshops we have moved from prospecting to identifying business problems and value propositions, to asking high impact questions, to qualifying, negotiating and closing.   Perhaps most importantly we have discussed the importance of listening.  Really listening.   And trying our best to understand our prospects and customers.  Being interested to be interesting.   Always putting our feet in our prospects shoes.

At the end of the day though, the important thing to remember is that these tools and techniques sit within a process. If none of the tools are used but the process is remembered then that will be okay.  At least they will have their sales roadmap and a sales plan.  And we all know that with a plan the chances of attaining our goals increase dramatically.

As Elmer Letterman said;

Luck is what happens when preparation meets opportunity

I’d like to thank the group for their engagement, openness and willingness to get stuck in. Tracy and I have really enjoyed working with them and we wish them every success for the future.

If you are interested in the sound of our blended sales training programme feel free to drop me a line. I’d be happy to talk through how we could run a similar one for you.