Many services, such as AOL and myOpenID, provide OpenID accounts to use on whatever site that accepts them. You simply type in your OpenID url and hit Enter. But what if your given ID was randomly generated, or the username you wanted wasn’t available?

I’d like to introduce a less-widely-known feature of OpenIDs: Delegation. Delegation allows you to have another URL point to your real OpenID. The best part? No domain or DNS setup is necessary, and the only knowledge you need to know is how to use HTML.

Open the page that you want your OpenID URL to be. This most likely the index page of a domain name, since you probably want to keep it short. In the <head> section, add the following code:

<link rel="openid.server" href="http://openid.provider/server" />
<link rel="openid.delegate" href="http://original.open.id" />
The first “server” parameter can be found by visiting your provider’s site for the server location. AOL users, use https://api.screenname.aol.com/auth/openidServer. myOpenID users can use http://www.myopenid.com/server. Yahoo users are out of luck; Yahoo does not provide the server URL.

If your provider also supports OpenID 2, it is a good idea to add these as well:
<link rel="openid2.provider" href="http://openid.provider/server" />
<link rel="openid2.local_id" href="http://original.open.id" />
Use the same options for server as described above.

Now whenever you want to sign in to a site that accepts OpenID, simply use your new delegated name. The login process will be redirected to your actual provider to sign in, but everyone else will see your domain.

It’s a myth that any system that you connect to the internet is ’safe’. No matter how vigilant you are, there are always risks out there and so having some way of detecting that something bad has happened is a vital part of any security strategy.

Tripwire (I’m referring to the open source edition here, not the commercial ones that are also available) is a program which is designed to monitor your filesystem for changes so you can quickly identify suspicious activity and therefore be able to detect if an intrusion has happened.

The concept works like this. First of all, you set up a ‘policy’ file. This policy file details what files you expect to change on a regular basis, basically, any exclusions of files that you know are going to change. Once you’ve put that policy in place, you then schedule Tripwire to check every so often.

The results from the Tripwire scan will tell you which files, outside of those excluded in your policy file, have changed. You can then look at these changes manually and hopefully pick up any suspicious behaviour (such as binaries in /usr/bin changing without a good reason, such as a software update you applied).

Read the rest of Intrusion detection with Tripwire

Okay, I lied right from the start with that title. Don’t get into thinking that you can get any real security out of this, as it is equivalent to a locking screensaver. In fact, this is just a screensaver add-on for GNOME. That said, it does prevent the occasional hyperactive child or devious coworker from messing with your desktop when you are away and forget to lock it.

Basically, this is proximity-based access for your computer. If you’re the type who forgets to lock your desktop, then this is for you.

All you need is Bluetooth support on your desktop or laptop, a Bluetooth-enabled device, and BlueProximity. BlueProximity monitors any Bluetooth device paired with your system for signal strength. When you walk away from your PC, the signal strength will drop and your screen will lock. When you return, your system will be ready for you again.

As long as you have it running, it will idly sit in your system notification area and take action when you leave your desktop or return. The settings are preconfigured for a GNOME’s gnome-screensaver, but they can easily be redone for KDE or XFCE screensavers.

Once you have your distance settings set up (the defaults work in most cases) you can activate it by simply walking away from your desktop with your Bluetooth device. If you add it to your session startup, it will always be around.