Mobile Apps for Safety

Mobile apps across various operating systems that can help to save our souls and keep our loved ones informed about each other.

Lot of people are searching mobile applications for personal security these days, I am trying to help to find some useful Mobile Applications on Android Google Play Market.

Life360 Family Locator http://www.life360.com/

Life360 Family Locator
Family Locator by Life360 is the most accurate and powerful locator service.

Family Locator by Life360 is the most accurate and powerful family locator service. Using the latest GPS tracking technology.

SOS Whistle

The whistle sound is played when pressed. stop if you press the button again.
The whistle sound is played when pressed.
stop if you press the button again.

Ask for help when a disaster and nobody even noticed.

Circle of 6

Circle of 6 to automatically send your circle a pre-programmed SMS alert message
Circle of 6 to automatically send your circle a pre-programmed SMS alert message

Circle of 6 lets you choose six trusted friends to add to your circle. If you get into an uncomfortable or risky situation, use Circle of 6 to automatically send your circle a pre-programmed SMS alert message, with your exact location.

Fight Back

FightBack Mobile Application SOS
FightBack Mobile Application SOS

FightBack uses GPS, SMS, location maps, GPRS, email and your Facebook account to inform your loved ones in case you are in danger.

Guardly | Alert. Connect. Stay safe.

Guardly | Alert. Connect. Stay safe.
Guardly | Alert. Connect. Stay safe.

Guardly is an enterprise platform for emergency communication, management and response in education, commercial, mass transit and healthcare.

YWCA Safety Alert

YWCA Safety Alert
YWCA Safety AlertYWCA Safety Alert

The YWCA Safety Alert App is designed to enhance the safety of young women at any time and anywhere.

Scream Alarm!

Scream Alarm
Scream Alarm

FREE safety alarm that does only one thing: push the button for making the phone scream loudly with a woman’s voice!

Glympse – Share your where

Share your where
Share your where

Safely share your location in real-time via email, SMS, Facebook, or Twitter.

Eyewatch Basic – The “No More Panic” Button

Eyewatch Basic
Eyewatch Basic

Eyewatch allows you to trigger instant emergency alerts to your trusted contacts, alerting them of your emergency along with your location, audio visuals of the situation and other critical details.

S&S Rescue Pack

S&S Rescue Pack
S&S Rescue Pack

S&S App has prepared to quick access useful tools for any time you need. Access the features is realy simple, you can reach all features with just one click.

One Touch SOS

One Touch SOS
One Touch SOS

Ultra-quick, single click SOS when you’re in danger. Gets your location and sends the address to your buddy with a marker on a map.

Bsafe

bSafe is what you need! This GPS-based safety alarm is packed features to make you safer. With bSafe you never walk alone!
bSafe is what you need! This GPS-based safety alarm is packed features to make you safer. With bSafe you never walk alone!

bSafe is GPS-based safety alarm is packed features to make you safer.

Real Alert

Real Alert
Real Alert

REAL ALERT helps you to stay alert and aware of your surroundings, provides quick access to emergency services & directs you to the closest hospital.

DriveSafe.ly

drivesafely
drivesafely

It is a mobile application (solution to texting while driving) that reads text (SMS) messages and emails aloud in real time and automatically responds without drivers touching the mobile phone.

Amber Alert GPS Parent

Amber Alert GPS
To track your Smartphone-carrying tween or teen, or to track multiple Smartphones and Amber Alert GPS devices

Amber Alert GPS Parent can track your Smartphone-carrying tween or teen, or to track multiple Smartphones.

IWatch Beta

IWatch Beta
An initiative by Rajashtan Police to connect citizens to stop crime and provide services without much trouble.

An initiative by Rajasthan Police to connect citizens using Android Mobile App to stop crime and provide services without much trouble.

Remote Secure Token

Remote Secure Token

Wowza Token
We already compiled FlowPlayer & JWPlayer for remote secure token in flex / flash files 😉
https://www.svnlabs.com/blogs/compile-or-build-flowplayer-or-jwplayer-to-create-secure-token-for-wowza-server/
https://www.svnlabs.com/blogs/wowza-mediasecurity-addon-package/
https://www.svnlabs.com/blogs/how-to-prevent-downloading-and-leeching-media-files/ (hotlink protection)

Local Media Files
We already protected local files using .htaccess file media hiding logic 😉
https://www.svnlabs.com/blogs/secure-token-plugin-with-php/
https://www.svnlabs.com/blogs/how-to-prevent-downloading-and-leeching-media-files/ (hotlink protection)

External Media Files
File can be protected both on server side and client side….

Server side: Media files can be protected from media server like wowza using security token addons

Client Side: Usually video/media files played using flash / flex based players so … if media links are hidden inside flash and also flash player files are protected from theft 😉

HTTP files like http://mediaelementjs.com/media/echo-hereweare.mp4 can be protected from hack using temporary PHP file that will be responsible for carrying external media file / link to flash player in encrypted version and temporary file will be using expired token as parameter or domain restriction.

http://domain.com/rst.php?media=http://mediaelementjs.com/media/echo-hereweare.mp4 (Plain)

http://domain.com/rst.php?media=d3d3Lmpvb21sYW1hbmFnZXJzLmNvbQ&token=1sYW1hbmFnZXJ
(encrypted)

http://domain.com/rst.php?param=d3d3Lmpvb21sYW1hbmFnZXJzLmNvbQ1sYW1hbmFnZXJ
(top encrypted link can be passed to media player)

RTMP files ( rtmp://xx.iy.iz.iq/media.mp4 ) are more secure inside flash player action scripts.

The fool proof security always inside Flash Players but I am still searching for iOS media security 🙁

Update will patch security holes outdated versions have opened

Malware can be removed from hosting account, Updating your scripts will patch the security holes the outdated versions have opened.

Vulnerable Applications: Any of web application might infected from virus or malware.

For instructions on updating your WordPress instance(s) to the latest version (3.2.1), please see the link below:
—————————————-
http://codex.wordpress.org/Updating_WordPress

Alternatively, you can download the full WordPress package here:
—————————————-
http://wordpress.org/download/

For instructions on updating your Drupal instance(s) to the latest version (6.22 or 7.8), please see the link below:
—————————————-
http://drupal.org/upgrade

Alternatively, you can download the full Drupal package here:
—————————————-
http://drupal.org/download

More information on securing your PHP scripts can be found at http://php.net/manual/en/security.php

No, renaming the file will not keep your site safe from it being exploited again. As I noted in my previous response, if you wish to prevent your site from being hacked again through the exploit of the bookmarks script, you will need to disable, remove or secure the bookmarks.php file to prevent further exploits.

Update CPanel Script # /usr/local/bin/perl /usr/local/cpanel/3rdparty/quickinstall/scripts/checkupdates.pl

Open Source Software Packages

Open-source software is computer software with the source code and some rights reserved for copyright or software license that permits coders/users to study, change, improve and distribute the software.

FileOpensource

Google Project Hosting – Host your project or get code of existing projects

Google Project Hosting

SourceForge is dedicated to making open source projects successful.

SourceForge.net- Find, Create, and Publish Open Source software for free

GitHub make it easier to collaborate with others and share your projects with the universe.

Octocat

Mercurial is a free, distributed source control management tool. It efficiently handles projects of any size and offers an easy and intuitive interface.

mercurial

BitBucket Unlimited DVCS Code Hosting, Free store all of your Git and Mercurial source code in one place with unlimited private repositories. Includes issue tracking, wiki, and pull requests.

Free source code hosting — Bitbucket

Ohloh is a free public directory / wiki of open source software.

Ohloh, the open source network

Open Source Living is a community-driven dynamic archive of Open Source software. OS Living highlights small and large OSS projects, to aware OS ethics.

Open Source Living

Open Source Software Directory have all the best and most promising open source software available on the Internet. The focus is on end-user programs for home users, and small and medium businesses.

Open Source Software Directory

Freecode maintains the Web’s largest index of Linux, Unix and cross-platform software, and mobile applications. In Freecode each entry provides a description of the software, links to download it and more information, and a history of the project’s releases, so readers can keep up-to-date on the latest developments.

Welcome to Freecode – Freecode

Free software is a matter of liberty, not price. Free software is a matter of the users’ freedom to run, copy, distribute, study, change and improve the software.

Free Software Directory

OpenDisc is a high quality collection of open source software (OSS) for the Microsoft Windows operating system.

OpenDisc

CodePlex – Open Source Project Hosting

CodePlex - Open Source Project Hosting

You have list of Open Source Directories / Hosting Server. So, Bookmark these Open Source Software Packages for personal or professional requirement. 😉

We will provide Friendly Open Source SolutionsContact SVNLabs

BigBlueButton API in PHP

BigBlueButton -- Open Source Web Conferencing

BigBlueButton supports sharing of slides (PDF and PPT), video, whiteboard, chat, voice (using Asterisk or FreeSWITCH), and desktops. It’s built using over many open source components, runs on Mac, Unix, and PC computers, and is supported by a community that cares about good design and a streamlined user experience.

BigBlueButton is built using the following open source components:

Ubuntu, Flex SDK, Ghostscript, Grails, ActiveMQ, Asterisk, Image Magick, MySQL, nginx, Red5, swf Tools, Tomcat, Asterisk Java, Xuggler, Open Office…

BBB is available on Google Code

BigBlueButton is an open source web conferencing system that enables universities and colleges to deliver a high-quality learning experience to remote students.

See examples of how you can integrate BigBlueButton into your applications.

Create Your Own Meeting


<?php

$IP ‘yy.yy.xx.xxx’;  // Server IP where BigBlueButton (BBB) Installed

$Port 81;  // Server port to BBB i.e. 81

// Method: create – To create meeting

$string “createname=Test+Meeting&meetingID=accounts123&attendeePW=accounts123&moderatorPW=accounts123”;

$salt “XYBGDRYUOPLJMAWDGNHYDFFGHGJJ435D”;  // security salt for BBB & API

$sha sha1($string.$salt);

$link “name=Test+Meeting&meetingID=accounts123&attendeePW=accounts123&moderatorPW=accounts123&checksum=”.$sha;

?>

<a href=”http://<?php echo $IP?>:<?php echo $Port?>/bigbluebutton/api/create?<?php echo $link?>“>Create Meeting</a><br><br>

<?php

// Method: join – To join meeting

$string “joinfullName=Joe+User&meetingID=accounts123&password=accounts123”;

$salt “XYBGDRYUOPLJMAWDGNHYDFFGHGJJ435D”;

$sha sha1($string.$salt);

$link “fullName=Joe+User&meetingID=accounts123&password=accounts123&checksum=”.$sha;

?>

<a href=”http://<?php echo $IP?>:<?php echo $Port?>/bigbluebutton/api/join?<?php echo $link?>“>Join Meeting</a><br><br>

<?php

// Method: join – To join meeting as username

$string “joinfullName=Sandeep&meetingID=accounts123&password=accounts123”;

$salt “XYBGDRYUOPLJMAWDGNHYDFFGHGJJ435D”;

$sha sha1($string.$salt);

$link “fullName=Sandeep&meetingID=accounts123&password=accounts123&checksum=”.$sha;

?>

<a href=”http://<?php echo $IP?>:<?php echo $Port?>/bigbluebutton/api/join?<?php echo $link?>“>Join Meeting as sandeep</a><br><br>

<?php

// Method: isMeetingRunning – To check meeting is active/running

$string “isMeetingRunningmeetingID=accounts123”;

$salt “XYBGDRYUOPLJMAWDGNHYDFFGHGJJ435D”;

$sha sha1($string.$salt);

$link “meetingID=accounts123&checksum=”.$sha;

?>

<a href=”http://<?php echo $IP?>:<?php echo $Port?>/bigbluebutton/api/isMeetingRunning?<?php echo $link?>“>Check Meeting Running</a><br><br>

Create Your Own Meeting Link

Checkout other article “BigBlueButton on CentOS”

Download BBB.zip

EC2 instance using Amazon SQS queues

Amazon Simple Queue Service (Amazon SQS) offers a reliable, highly scalable, hosted queue for storing messages. Amazon SQS can be used to applications that perform different tasks, without losing messages. Amazon SQS enables users to build an automated workflow.

Amazon Elastic Compute Cloud (EC2) is a web service that provides resizable compute capacity in the cloud. Amazon EC2 can be used for building applications that start small but can scale up rapidly as demand increases (Auto Scaling).

Amazon EC2 Features:

a) Increase or decrease capacity within minutes.
b) Make one, hundreds, or even thousands of server instances simultaneously.
c) Web Service API to control the scaling of instances depending on needs.
d) Pay only for what you use (Pay Per Use) pricing model.

SQS

Features of Amazon SQS:

a) Single Amazon SQS queue can be shared by multiple servers simultaneously.
b) Server that is processing a message can prevent other servers from processing the same message at the same time using temporarily “locking” a message. The server can specify the amount of time the message is locked. When the server is done processing the message, it should delete the message. If the server fails while processing the message, another server can get the message after the lockout period.

AWS-SQS-EC2-S3

Pipeline processing with Amazon SQS:

Pipeline processing with Amazon SQS

a) Flexibility: Large monolithic server can be divided into multiple smaller servers without impacting the current system.

b) Piecemeal upgrades: Individual sub-components can be taken offline / upgraded without bringing the entire system down.

c) Tolerance to failures: Amazon SQS isolates sub-components from each other so the failure of one component does not impact the rest.


<?php

require_once('sqs.client.php');

define('AWS_ACCESS_KEY_ID''<access key>');

define('AWS_SECRET_ACCESS_KEY''<secret key>');

define('SQS_ENDPOINT''http://queue.amazonaws.com');

define('SQS_TEST_QUEUE''SQS-Queue-SVNLabs');

define('SQS_TEST_MESSAGE''Welcome to SQS.');

try

{

   $q = new SQSClient(AWS_ACCESS_KEY_IDAWS_SECRET_ACCESS_KEYSQS_ENDPOINT);

   // create Queue

   
$result $q->CreateQueue(SQS_TEST_QUEUE);

   

   
// list Queue

   
$result $q->ListQueues();

   // send message to Queue

   
$messageId $q->SendMessage(urlencode(SQS_TEST_MESSAGE));

   // receive message from Queue

   
$messages $q->ReceiveMessage();

}

catch(
Exception $e)

{

    echo 
'Exception occurred: '$e->getMessage(), "\n<br />\n";

}

?>    

Fix File Upload on Nginx

Nginx (Engine-X) is a Web server and reverse proxy server for HTTP, SMTP, POP3 and IMAP, It have a strong focus on high concurrency, performance and low memory usage.

Here are the steps to fix file upload on nginx.

Fix File Upload on Nginx

1. SSH to nginx box

2. Edit nginx.conf

a) backup the config file:
# cp /etc/nginx/nginx.conf /etc/nginx/nginx.conf.backup
b) edit the config file:
# vi /etc/nginx/nginx.conf
c) add a row inside the “location / {” section (I added it after the error_page rows):
client_max_body_size 100M;
d) save the config file
e) test the config file syntax:
# nginx -t -c /etc/nginx/nginx.conf

3. If config file is good, then reload nginx config without restarting it

f) find the nginx master process PID:
# ps aux | egrep ‘(PID|nginx)’
g) reload nginx by sending the HUP signal (replace 1234 with actual PID of master process)
# kill -HUP 1234

nginx.conf

PHP strip_tags not working

PHP have rich set of function to deal with errors 🙂

Sometime single setting in php.ini can effect the output of function.

Magic Quotes is a process that automagically escapes incoming data to the PHP script. It’s preferred to code with magic quotes off and to instead escape the data at runtime, as needed.

Magic Quotes are depreciated and going to be removed in PHP6.


<?php

// does the actual 'html' and 'sql' sanitization. customize if you want.

function sanitizeText($text)

{

$text = str_replace("<", "&lt;", $text);

$text = str_replace(">", "&gt;", $text);

$text = str_replace("\"", "&quot;", $text);

$text = str_replace("'", "&#039;", $text);

// it is recommended to replace 'addslashes' with 'mysql_real_escape_string' or whatever db specific fucntion used for escaping. However 'mysql_real_escape_string' is slower because it has to connect to mysql.

$text = addslashes($text);

return $text;

}

// the reverse function of 'sanitizeText'. you may use it in pages which need the original data (e.g. for an HTML editor)

function unsanitizeText($text)

{

$text = stripcslashes($text);

$text = str_replace("&#039;", "'", $text);

$text = str_replace("&gt;", ">", $text);

$text = str_replace("&quot;", "\"", $text);

$text = str_replace("&lt;", "<", $text);

return $text;

}

?>

strip_tags not working

If strip_tags() is not working means there are no HTML tags in string “$description” supplied to function strip_tags.
We can debug this using html_entity_decode(), this function will convert visible tags &lt; or &gt; to actual HTML tags < or > 😉

$description = html_entity_decode($description);

$description = strip_tags($description);

Stock Indicator using CSS Sprite

An image/css sprite is a collection of images put into a single image.

A web page with many images can take a long time to load and generates multiple server requests. So, using image sprites we can reduce the number of server requests and save bandwidth.

CSS Sprites can be generated using online Tools or Photoshop 😉

CSS Sprites generator

<div style="position: relative; overflow: hidden; height: 38px; width: 270px;" id="dvTraffic2">

<img alt="Integer 1" src="white_numbers_big.png" style="position: absolute; right: 1px; top: -333px;">
<img alt="Integer 2" src="white_numbers_big.png" style="position: absolute; right: 35px; top: -37px;">
<img alt="Integer 3" src="white_numbers_big.png" style="position: absolute; right: 69px; top: -74px;">
<img alt="Integer 4" src="white_numbers_big.png" style="position: absolute; right: 103px; top: -370px;">
<img alt="Integer 5" src="white_numbers_big.png" style="position: absolute; right: 137px; top: -148px;">
<img alt="Integer 6" src="white_numbers_big.png" style="position: absolute; right: 171px; top: -185px;">
<img alt="Integer 7" src="white_numbers_big.png" style="position: absolute; right: 205px; top: -370px;">
<img alt="Integer 8" src="white_numbers_big.png" style="position: absolute; right: 239px; top: -111px;">

</div>

CSS Sprite

Download Stock Indicator from here …. sprite.zip

Install Union Development Platform

Union is a development platform for creating multiuser applications which runs in a central location on the Internet or a LAN. Users need to connect to Union server then users are in constant real-time contact or session. Users can send messages to/from Union Server.

Application may be chat, game, shared document, widget on web page. Developers can user union for web-development skills to create collaborative content cost-effectively and quickly.

Union is a development platform for creating multiuser applications and games in Adobe Flash, JavaScript, .net, Java, and other languages. Union is free for up to 1000 simultaneous users. Union handles low-level networking and data-synchronization responsibilities, and provides a rich, intuitive communications layer that lets developers focus on application logic, not packets and protocols.

Union Quick Start The Union Platform, By USER1

Union is a development platform for creating connected applications. You can use Union to build:

Social interaction: chat, meeting applications, multiuser whiteboards, collaborative editing tools.

Realtime Multiplayer Games: online action games, head-to-head racing, social worlds, online chess, massively multiplayer trivia, turn-based card and word games.

Realtime Datafeeds: live scores, realtime inventory availability, live surveys, realtime charts, graphs, and analytics dashboards.

Publish/subscribe Channels: topic-based news feeds, project notifications, celebrity chat, sports spectation, live real-estate listings, product sales updates.

Union applications run in desktop and mobile web browsers (JavaScript/HTML5), Flash, Java, C#, and dozens of other languages.

Union Quick Start The Union Platform, By USER2

Install Union on Linux Server

To run the Union Server you will need Java 1.6.

# java -version

Union Server on run on port 9100, Make sure port is open on server 😉

Download from here: http://www.unionplatform.com/?page_id=1833

# wget http://unionplatform.com/releases/union/union_1.1.0.tar.gz

Decompress the Union Server distribution .tar.gz file

# tar -zxvf union_1.1.0.tar.gz

This will create a folder names /union

Add Java to your operating system’s path or edit the start-server script to point to your java binary.

# cd union
# chmod 775 *
# ./startserver.sh

Ouput may be like…

UNION_HOME set to [/Users/yourname/union/.]
Union Server 1.0.2 (build 498) Started….OK

Some JVM have memory issue, so limit the amount of memory used by Union Server, use the java command-line option “-Xmx”.

# java -Xmx512m -Dfile.encoding=UTF-8 -cp lib/union.jar:lib/stax-api-1.0.1.jar:lib/wstx-asl-3.2.6.jar net.user1.union.core.UnionMain start &

Customize Your Configuration

You can change Union Server’s administration password http://www.unionplatform.com/?page_id=416