Posts

Showing posts from March, 2021

How to print an exception stack trace using Log4J

All you have to do to print the stack trace of an exception using Java and Log4J (or the Apache Commons Logging project) is this: log.error("Your description here", exception); However, if you use logger.error(exception); it will only print the name of the Exception.

FTC Releases Reports on Cigarette and Smokeless Tobacco Sales and Marketing Expenditures for 2019

Cigarette sales declined from 2018 levels The number of cigarettes that the largest cigarette companies in the United States sold to wholesalers and retailers nationwide declined from 216.9 billion in 2018 to 202.9 billion in 2019, according to the most recent Federal Trade Commission Cigarette Report . The amount spent on cigarette advertising and promotion decreased from $8.40 billion in 2018 to $7.62 billion in 2019. Price discounts paid to cigarette retailers ($5.70 billion) and wholesalers ($917.4 million) were the two largest expenditure categories in 2019. Combined spending on price discounts decreased from $7.21 billion in 2018 to $6.61 billion in 2019, accounting for 86.7 percent of industry spending. According to the 2019 Smokeless Tobacco Report , smokeless tobacco sales decreased from 128.4 million pounds in 2018 to 126.0 million pounds in 2019. The revenue from those sales rose, from $4.37 billion in 2018 to $4.53 billion in 2019. Spending on advertising and promot

#COVID vaccine found highly effective in real-world US study

#Car owners could face #fine over peeling, damaged plates

Mobile Banking App Settles FTC Allegations that It Misled Users about Access to Funds and Interest Rates

Beam Financial operator is banned from mobile banking and must provide full refunds as part of FTC settlement The operator of a mobile banking app will be banned from offering such services and must give full refunds to users as part of a settlement with the Federal Trade Commission over allegations the company falsely promised users they would have “24/7” access to their funds and earn high interest rates on their accounts. In a complaint first announced in November 2020 , the FTC alleged that Beam Financial Inc. and its founder and CEO, Yinan Du, also known as Aaron Du, promised users of Beam’s free mobile banking app that they could make transfers out of their accounts and would receive their requested funds within three to five business days. In fact, some users waited weeks or months to receive their money, which was particularly difficult for users who were struggling with lost income as a result of the COVID-19 pandemic, the FTC alleged. “People taking a financial hit from the

FTC Provides Guidance for Consumers, Businesses on Preventing Evictions

Blog posts highlight key requirements of CDC moratorium and warns landlords: do not evict—or threaten to evict— tenants in violation of the CDC moratorium or any other applicable state or local measures The Federal Trade Commission has provided guidance for consumers and businesses related to the national moratorium on evictions during the pandemic, which was extended today by the Centers for Disease Control and Prevention (CDC). A recent Consumer Financial Protection Bureau (CFPB) report showed that more than 8.8 million Americans are behind on rent payments. The tenants at risk of homelessness are disproportionately people of color, primarily Black and Hispanic families. FTC Acting Chairwoman Rebecca Kelly Slaughter and CFPB Acting Director Dave Uejio, issued a joint statement  today that emphasized the two agencies’ focus on this issue: “Evicting tenants in violation of the CDC, state, or local moratoria, or threatening to evict them without apprising them of their legal ri

Joint Statement by FTC Acting Chairwoman Rebecca Kelly Slaughter and CFPB Acting Director Dave Uejio

Federal Trade Commission Acting Chairwoman Rebecca Kelly Slaughter and Consumer Financial Protection Bureau (CFPB) Acting Director Dave Uejio issued the following statement today regarding the national moratorium on evictions during the pandemic: “In the ongoing economic and public health crisis, millions of American families are at risk of losing their homes. A recent CFPB report found that renters are particularly endangered, with over 8.8 million tenants behind on rent. These tenants at risk of homelessness are disproportionately people of color, primarily Black and Hispanic families. “Federal, state, and local governments have put in place protections against evictions to keep people in their homes and to stop the spread of COVID-19. Research has shown that eviction moratoriums save lives. Today, the Centers for Disease Control and Prevention extended the federal moratorium on evictions by three months. “Unfortunately, there are reports that major multistate landlords are forcing

Mycli Multi-line Mode

The default behavior of mycli is to execute a query as soon as the enter key is pressed.  To emulate the original MySQL behavior you can enable the multi-line mode which will require a semi-colon to be present at the end of the line. This enables writing multi-line queries if they are really long. You can enable multi-line mode by pressing <F3> key or set it permanently via the config file. # Multi-line mode allows breaking up the sql statements into multiple lines. If # this is set to True, then the end of the statements must have a semi-colon. # If this is set to False then sql statements can't be split into multiple # lines. End of line (return) is considered as the end of the statement. multi_line = False

Windows Subsystem for Linux version 2

WSL 2 is only available in Windows 10 builds 18917 or higher. upgrade to a WSL 2 compatible version: https://www.microsoft.com/en-us/software-download/windows10

Change GlassFish domain master password

The GlassFish master password is “changeit” by default and can be changed with the change-master-password subcommand of asadmin: asadmin change-master-password domain1

FTC Acting Chairwoman Slaughter Announces New Rulemaking Group

FTC will reinvigorate rulemaking authority to level the playing field for consumers and businesses New group in Office of the General Counsel will help build Commission’s rulemaking capacity and agenda for unfair or deceptive practices and unfair methods of competition Today Acting Federal Trade Commission Chairwoman Rebecca Kelly Slaughter announced the creation of a new rulemaking group within the FTC’s Office of the General Counsel. The new structure will allow the FTC to take a strategic and harmonized approach to rulemaking across its different authorities and mission areas. With this new group in place, the FTC is poised to strengthen existing rules and to undertake new rulemakings to prohibit unfair or deceptive practices and unfair methods of competition. Especially given the risk that the Supreme Court substantially curtails the FTC’s ability to seek consumer redress under section 13(b), rulemaking is a critical part of the FTC’s toolbox to stop widespread consumer harm an

#Slack launches a new direct messaging feature

#Tesla now accepts #bitcoin as payment from car buyers in US

Log4J Location Information

If one of the layouts is configured with a location-related attribute like HTML locationInfo, or one of the patterns %C or %class, %F or %file, %l or %location, %L or %line, %M or %method, Log4j will take a snapshot of the stack, and walk the stack trace to find the location information. This is an expensive operation: 1.3 - 5 times slower for synchronous loggers. Synchronous loggers wait as long as possible before they take this stack snapshot. If no location is required, the snapshot will never be taken. However, asynchronous loggers need to make this decision before passing the log message to another thread; the location information will be lost after that point. The performance impact of taking a stack trace snapshot is even higher for asynchronous loggers: logging with location is 30-100 times slower than without location. For this reason, asynchronous loggers and asynchronous appenders do not include location information by default. You can override the default behaviour in you

Configuring OpenSSH Server on Windows to Authenticate Using SSH Keys

You can copy the public key to the SSH server using SCP: scp C:\Users\youruser\.ssh\id_rsa.pub admin@192.168.1.15:c:\users\admin\.ssh\authorized_keys Login Windows Using SSH Key Under Local Admin OpenSSH uses special key-based access settings for the users with Windows local administrator privileges. First of all, use a key file C:\ProgramData\ssh\administrators_authorized_keys instead of the authorized_keys file in the user profile. You must add your SSH key to this text file (for security purposes, only the Administrators group and SYSTEM should have permissions to read this file). In order to use the authorized_keys file from a user profile and not to move the public key data to the administrators_authorized_keys file, you can comment the related line in the OpenSSH configuration file (C:\ProgramData\ssh\sshd_config). Comment these lines: #Match Group administrators # AuthorizedKeysFile __PROGRAMDATA__/ssh/administrators_authorized_keys Allow access Windows using RSA keys in the

Putting the letsencrypt Certificate into the Keystore

Putting the letsencrypt Certificate into the Keystore This is done using keytool, which is provided in a JDK. The keystore has a default password of "changeit". If you have changed it, then you'll need to use the password you changed it to. To keep things simple, I keep all the passwords the same. To create a keystore I first had to convert the files to a .pkcs12 file: openssl pkcs12 -export -in /etc/letsencrypt/live/yourFQDNhere/fullchain.pem -inkey /etc/letsencrypt/live/yourFQDNhere/privkey.pem -out pkcs.p12 -name letsencrypt I then converted that to a keystore: keytool -importkeystore -deststorepass changeit -destkeypass changeit -destkeystore letsencrypt.jks -srckeystore pkcs.p12 -srcstoretype PKCS12 -srcstorepass changeit

To run your application or server over #HTTPS you're going to need a certificate. Commonly referred to as an SSL or TLS certificate

Generate free Wildcard Certificates using Let’s Encrypt (Certbot) on Ubuntu

Step 1: Install Let’s Encrypt Certbot Tool    sudo apt update    sudo apt install letsencrypt Step 2: Generate Let’s Encrypt Wildcard SSL Certificate For wildcard certificates, the only challenge method Let’s Encrypt accepts is the DNS challenge, which we can invoke via the preferred-challenges=dns flag sudo certbot certonly --manual --preferred-challenges=dns --email service@ goyun.info --server https://acme-v02.api.letsencrypt.org/directory --agree-tos -d goyun.info -d *.goyun.info Saving debug log to /var/log/letsencrypt/letsencrypt.log Plugins selected: Authenticator manual, Installer None Obtaining a new certificate Performing the following challenges: dns-01 challenge for goyun.info dns-01 challenge for goyun.info The command options above are explained below: certonly:                                     Obtain or renew a certificate, but do not install –manual:                                    Obtain certificates interactively –preferred-challenges=dns:      Use dns to a

March is #Fraud awareness month

Qualities of a Good Cloth Mask

• Masks should be made of at least two layers of tightly woven fabric (such as cotton or linen), and, if possible, a middle “filter” layer. A three layer mask can provide added protection. • For masks with a pocket, add a disposable coffee filter, paper towel, or reusable filter cloth. • For masks without a pocket, cut/unstitch one end and tuck a filter in between the two layers. • Your mask should fit your face, covering your nose, mouth and chin without gaping. • Your mask should be comfortable, easy to breathe through, and not limit your vision. • Mask and ties/ear loops should fit securely to avoid adjusting during use. • Choose fabric that can support a high temperature wash (e.g. cotton). Avoid stretchy material. • Choose fabric that maintains the mask shape after washing and drying.

How to install/renew SSL Certificate for Glassfish

From certificate authority, you should generally receive two files Your signed certificate : generally named as “yourdomain.com.crt” Root certificate of your certificate (you might receive more than one. In some cases certification authority sends the intermediate certificates) : Godaddy names it “gd_bundle-g2-g1.crt” Next step is importing the keystore you used to generate the request into the Glassfish’s keystore: keytool -importkeystore -srckeystore /your-former-used-for-request/keystore.jks -destkeystore $GLASSFISHHOME/domains/yourdomain/config/keystore.jks Now, the final step done on keystore is importing the signed certificate. First, we gotta switch to Glassfish’s keystore and import the root certificate: cd $GLASSFISH_HOME/domains/yourdomain/config keytool -import -v -trustcacerts -alias root -file gd_bundle-g2-g1.crt -keystore keystore.jks -keypass changeit -storepass changeit Then, import the signed certificate of yours: keytool -import -v -trustcacerts -alias

Renew the Let’s Encrypt SSL certificate

sudo certbot renew You can set up a cron job: 0 1 * * * /usr/bin/certbot renew   If the certificate is not expiring in thirty (30) days, you will get the message: Cert not yet due for renewal Certbot has an option to force the renewal of a Let’s Encrypt SSL certificate without regard on its expiration date. The command for Certbot is: sudo certbot certonly –manual –force-renewal

List/verify Let’s Encrypt’s certificates

To list Let’s Encrypt’s certificates, run the commands below: sudo certbot certificates

FTC Staff Provides Annual Letter to CFPB On Debt Collection Activities

The staff of the Federal Trade Commission has provided the Consumer Financial Protection Bureau (CFPB) with an annual summary of the FTC’s activities  in the debt collection arena. The FTC shares enforcement responsibility for the Fair Debt Collection Practices Act (FDCPA) with the CFPB, which provides an annual report to Congress about debt collection enforcement activities. The annual report, which was released today, highlights both agencies’ efforts to stop unlawful debt collection practices, including law enforcement, education and public outreach, and policy initiatives. Among the actions taken to combat unfair, deceptive, and otherwise unlawful debt collection practices in 2020, the FTC: led Operation Corrupt Collector , a nationwide federalstate law enforcement sweep and outreach initiative targeting phantom debt collection and abusive and threatening debt collection practices; filed or resolved 7 cases against 39 defendants, and obtained $26 million in judgments; brought the

Remove an APT Repository in #Ubuntu

$ sudo add-apt-repository --remove ppa:certbot/certbot The PPA has been DEPRECATED. To get up to date instructions on how to get certbot for your systems, please see https://certbot.eff.org/docs/install.html. More info: https://launchpad.net/~certbot/+archive/ubuntu/certbot Press [ENTER] to continue or Ctrl-c to cancel removing it.

Check version of #Ubuntu

$ lsb_release -a No LSB modules are available. Distributor ID: Ubuntu Description: Ubuntu 20.04.2 LTS Release: 20.04 Codename: focal

FTC Obtains Court Order Banning Work-From-Home Scammer from Selling Business Opportunities and Using Robocalls

Defendants tried to take advantage of consumers who were anxious about the coronavirus pandemic, agency alleges The Federal Trade Commission has permanently banned  an alleged work-from-home scammer from selling or promoting business opportunities and from using robocalls under the terms of a settlement. The FTC alleged that Randon Morris and a number of companies he controlled initiated millions of robocalls nationwide to promote sham work-from-home business opportunities, focusing on consumers concerned about working outside their homes because of the coronavirus pandemic. The defendants lured consumers into purchasing these programs with false promises that consumers could earn hundreds of dollars a day. They also falsely claimed to be affiliated with Amazon.com. “These defendants used illegal robocalls, lies about income, and people’s anxiety about the pandemic to pitch their work-from-home scam,” said Daniel Kaufman, Acting Director of the Bureau of Consumer Protection. “If someo

New York-based Defendants Settle FTC Charges They Deceptively Advertised SkyLink TV Antennas as an Effective Way to Get a Hundred Plus Premium Channels Free

Image
A New York-based company and its CEO have agreed to settle Federal Trade Commission charges that they sold hundreds of thousands of indoor TV antennas and signal amplifiers to consumers using deceptive claims that the products would let users cancel their cable service and still receive all of their favorite channels for free. “The defendants used every trick in the book to sell their antennas and amplifiers to people, including older adults, who wanted to save money on cable and satellite TV channels,” said Daniel Kaufman, Acting Director of the FTC’s Bureau of Consumer Protection. “People should be able to trust the claims companies make, not discover after buying that they were told lies.” According to the FTC’s complaint , Wellco, Inc. and its owner and CEO, George M. Moscone violated the FTC Act by making deceptive performance claims for their over-the-air television antennas and related signal amplifiers, using deceptive consumer endorsements, and misrepresenting that some

India's #COVID-19 cases rising despite widespread belief in country's natural immunities.

The Canada-U.S. #border's been shut down for a year

It's #Pi Day today!

High consumption of red meat may increase your risk of #cancer.

Reading for Kids

Reading Epic is a great website for you read a TON of awesome books digitally (like Diary of a Wimpy Kid, Garfield and Scardey Squirrel).  Some books are audiobooks and some books are e-books.  For student login information for Epic, please contact Mrs. Thomson! Epic!     KidsA-Z is a great website for you read books at your reading level. Each book that you read will have a quiz at the end.  This a great way to practice fluency and comprehension skills.  On KidsA-Z, you can also record your reading and send it to me! For student login information for KidsA-Z, please contact Mrs. Thomson! KidsA-Z Storyline Online is a fun website where actors and other famous people read books to kids. This site is free and doesn't require a login!   Storyline Online Bookflix is offering their online books for free right now (you don't need a login)!  Bookflix does a great job animating popular books! Bookflix TrueFlix is like Bookflix, but is meant for an older audiences (grades 3-5).  These

Statement by FTC Chairwoman Rebecca Kelly Slaughter on Enactment of the American Rescue Plan Act

Agency continues aggressive action against COVID-related scams, including those that seek to exploit pandemic relief efforts Acting Federal Trade Commission Chairwoman Rebecca Kelly Slaughter issued the following statement regarding the enactment of the American Rescue Plan Act of 2021: “For the millions of Americans who have taken a financial hit because of COVID-19, help is on the way in the form of much needed stimulus payments. This is great news. But we want to remind everyone that scammers always try to take advantage of big headlines to trick people out of their money. As the head of the FTC, the nation’s consumer protection agency, I want to assure Americans that the FTC is watching closely and will aggressively go after fraudsters who try to exploit the relief effort. Since the pandemic began last year, the FTC has taken down multiple COVID-related scams, including some that promoted bogus work-from-home schemes or peddled sham COVID treatments and supplements , and othe

The SonarLint extension lets you detect bugs and vulnerabilities as you write code in VS Code.

The  SonarLint  extension lets you detect bugs and vulnerabilities as you write code in VS Code. 

Launch a Windows store installed app from the command line

>start shell:AppsFolder\Microsoft.RemoteDesktop_8wekyb3d8bbwe!App Here "Microsoft.RemoteDesktop_8wekyb3d8bbwe" is the PFN (Product Family Name) of the app to launch. Fortunately, these names are easy to find as there are folders with these names for each of the installed apps at "C:\Users\[username]\AppData\Local\Packages"

Start the Windows Terminal with a folder

You can use wt or wt.exe to start the Windows Terminal from the explorer or the start menu. However, it starts in the user directory (%USERPROFILE%), not the current directory. You need to specify the directory using the -d option: wt -d .. Example: wt -d "C:\Users\ruz\OneDrive - GoYun Info Inc\goyuninfo\daily-scripts"

How to connect to xrdp on wsl from Windows Remote Desktop App

Don't use localhost or 127.0.0.1. You may receive: " You have been disconnected because another connection was made to the remote PC " when use localhost. You may get: code: 0x4  Extended error code: 0x0 when use 127.0.0.1. Find your internal ip address, such as  172.31.116.85 by running "ip a" in your wsl command line. Then you can connect by this address without problem.

FTC Finalizes Settlement with Mobile Advertising Company over Allegations it Failed to Provide Promised In-Game Rewards

The Federal Trade Commission finalized a settlement with a mobile advertising company over allegations that it failed to provide in-game rewards users were promised for completing advertising offers. In a complaint first announced in January , the FTC alleged that Tapjoy, Inc., deceived consumers by failing in many instances to provide the rewards it promised even after consumers completed activities such as purchasing a product, signing up for a free-trial offer, providing personal information (for example, an email address), or taking a survey. Tapjoy received hundreds of thousands of complaints from consumers who said they never received their promised rewards. As part of the settlement, Tapjoy is prohibited from misleading users about the rewards they can earn and must monitor its advertisers to ensure they are following through on promised rewards, investigate complaints from consumers who say they did not receive their rewards, and discipline advertisers who deceive consumers.

MIT Technology Review Driving #innovation with emotional intelligence

MIT Technology Review Driving innovation with emotional intelligence The world watched in wonder in February as NASA’s robotic rover Perseverance successfully landed on the surface of Mars with the goal of searching for evidence of past life on the red planet. The technology itself was, of course, astounding. 

Import Chrome or Firefox Passwords to iCloud Keychain on Mac

Open Safari on your Mac. Click File and then select Import From. Select Google Chrome or Firefox. A new popup window will appear saying “Select the items to import”. There are three types of items: (1) Bookmarks (2) History and (3) Passwords. And click the blue Import button. If asked, enter your password which is your admin password. 

Kia recalls 380,000 U.S. #vehicles for fire risks

The largest department store in Switzerland will start selling #Bitcoin cards in 4,000 outlets next month.