I was recently asked how you can identify an URL to a specific Tweet. This is useful to know for many reasons particularly if you need to reference a Tweet in your writing, for example this one:

http://mobile.twitter.com/mikemcsharry/status/48790617102360576

Here goes:

1. Go 2 Twitter.com and add the user’s Twitter handle e.g. ‘ahrenfelt’ if you haven’t already got the Tweet you’d like in front of you.

2. Find the Tweet. then click time stamp of tweet e.g. 4 minutes ago. Copy that link.

3. Alternatively, right-click the time stamp and select copy-URL (or similar); press and hold on the iPhone/iPad.

Nice and straight forward.

Phew, after six exams I passed the Google Apps Education Individual Qualification (IQ) today. I now look forward to continue providing training to schools and individuals in using the Google Apps suite. If you would like to receive training please contact me and we’ll discuss your requirements and ideas.

Don’t forget to explore my series of How To videos on using Google Sites in your school.

Part 1: Create a Welcome Page

This tutorial will show you how simple it is to use Fronter. The first step is to create a Front Page which can link to other Front Pages and this tutorial will show you how images and internal links can achieve that.

Part 2 :Upload resources

This tutorial will show you the ease which resources such as movies, documents and presentations can be addded to your Learning Platform.

Part 3 :Embed videos and learning games into Fronter VLE

This tutorial will demonstrate how to embed videos from Youtube.com as well as learning games from other websites e.g. www.classgamesden.com. For more tutorials please visit www.innovativeICT.net

Gumblar.cn is a website that’s been listed as suspicious and contains several exploit scripts and trojans that might harm and infect computers. You may have come across it or noticed that a site is ‘connecting to gumblar.cn’in the left-hand corner of the Firefox browser? The scary thing is that 99% of browsers never spot it. If you regularly scan your server for vulnerabilities and have tight security then you should have noticed it by now, but it’s always useful to check.

If your site has been ‘injected’ with the script there are several forums currently trying to solve the problem. As yet I haven’t come across a solid solution as it appears that the script which is injected (which hijacks the site) changes from the original code to which pages it affects. Annoying if you have 6000+ pages of course : ) . As the virus obfuscates the script (some characters are replaced with their numeric codes) it’s very hard to find it, let alone remove it!

How to find it:

As the script varies from machine to machine it’s of course tricky to locate so I will only mention how I discovered the virus on a colleague’s website. I first came across a file named image.php which was stored in the images folder (which now has been renamed to something else) which stored this code section:

base64_decode( mumbo-jumbo here)

This basically decodes whatever the main code is elsewhere in other files and sends the info to the Gumbar website to do, most likely, unpleasant things with your information.

So, I found the decoder, now all I had to do was to locate the main script. After reading a wide selection of posts about the topic (some listed below) I started searching for different script snippets using Windows Search (words and phrases in the file) and eventually I found the one that matched my files:

.replace(/#/g,’%');eval(unescape

…and there it was in the middle of the code: 75mbla#hidden!

I am not sure how it managed to get in, so to speak. Various posts suggest different things. The best thing to do it seems is to:

- Keep a tight ship: scan and check your server regularly and keep a secure password which cannot be guessed or hacked easily.

- Keep User Input Secure: Most sites have some form of user interaction so make sure that your script filters metacharacters from user input.
- Validate users’ input to remove harmful code (thanx deKay for useful bit of information).

It doesn’t seem that this virus is either keylogging your machine or collecting data, however info is still not 100% solid. Google reports the site:

“Site is listed as suspicious – visiting this website may harm your computer. [These] [a]ttack sites try to install programs that steal private information, use your computer to attack others, or damage your system.

Some attack sites intentionally distribute harmful software, but many are compromised without the knowledge or permission of their owners.“

but also states that:

“Over the past 90 days, gumblar.cn did not appear to function as an intermediary for the infection of any sites.“

Here are a few tools and websites that are useful to the problem:

Discussions about possible solutions:

Virus-Code Injected in PHP File of website

Great post: 12 Facts about the injected script

Good tools to get you started:
Top 10 Web Vulnerability Scanners

The Acunetix free edition has been used by a colleague of mine
Acunetix Security Scanner – Free Edition

Good luck!

This 60 second tutorial will show you how to download Youtube.com videos straight to your computer.