The world is so full prejudice, ignorance and stupidity. It’s always easy to just generalise and condemn complete cultures, religion and races. As said, this is almost always based on ignorance because people choose to stay within their comfort area and don’t even try to understand other people’s opinion.
Traveling is the best cure for that. My first visit to Egypt was an eye-opener on Muslims, their believes, way of living and how they see the world. I found that not every Muslim is a terrorist or wants to take over the world. Traveling is enlightening.
The above short documentary is about bringing a senior Russian farmer, name Vasily, out of his village and to the US. A simple but very interesting concept, shot in a very direct and raw way. Credits to STEREOTACTIC for this.
In case you haven’t figure it out yet, my next project is a video thingy. Not sure if it will become a business but I like to extend my knowledge and development skills so I’m just building it without worrying too much about making money with this.
Anyway, in my previous post I shared how to install FFMpeg on a (shared web) server because core of any video platform is encoding so you can deliver (fast) to every platform and device. In the meanwhile I already played around with encoding and will write a post on that later.
But if you start encoding the different video files you need to be able to deliver on all platforms, devices and adapting to all bandwidths, you need to know your starting point. No use for instance in generating a mp4 file with a resolution of 1920 x 1080 pixels if the size of the original file is just 640 x 360 pixels. The same applies to the audio stream of the file, no use saving your target file with a higher bit rate for audio than the original file as it will just eat bandwidth without any upside.
Time for another short, sweet and time saving geek post, this time on how to install FFMPEG on a web server. Now, there’s many scripts out there like the one below but most are outdated and not working anymore. Basically all I did was step-by-step debugging an existing script and changing it until it produced the desired result. In case the script below to install FFMPEG doesn’t work anymore, just check if any versions changed, if the code moved to github and change the script accordingly or just drop a comment.
There is this whole thing about Internet investment in Indonesia that seems to be generating a lot of confusion. Most recently, TechInAsia picks up on the subject and went on with an extensive post. Allow me to stir the water a little bit…
[disclaimer] First off, it should be said that anyone who plan to invest 250k USD in the Internet Industry in Indonesia should not rely on bloggers and wanderers. Checking with a proper law firm won’t cost you much and generally should get you some reliable answer.
(I’m curious how a legal consultant work both for the ministry as well as for the’ foreign companies to work their way around the new regulation‘, maybe that’ll work, but I’d recommend you to work with a real law firm).
Regulation… What Regulation?
The TechInAsia post, like the DailySocial post before that, was not clear on what regulation are they talking about. I’m assuming that TechInAsia is referring to the DNI – Daftar Negatif Investasi/Negative Investment List – which is a Presidential Regulation and maintained by the BKPM (Foreign Investment Board), the gov’t agency in charge of approving each individual applicant.
Quite a surprise this morning, renowned tech blog TechInAsia apparently did some solid research that you might expect from a journalist, thumbs up! Well, at least for the effort. The headline is clear (and long): “Hold your horses: Indonesian government hasn’t approved any new regulation to halt foreign investments“. Raise the flags, we’re all saved! Honey, here’s my credit card, go shop whatever you want! Justice is done, we’re all gonna be rich.
Well, to quote TechInAsia: “HOLD YOUR HORSES”!! So, the source for this conclusion is Vichi Lestari, a lawyer working for Trias Consultant, who has handled numerous tech companies as her clients as well as being a legal consultant of Indonesia’s ministry of industry.
Newsflash! I’m not a journalist. This blog is not a newspaper. Really. I’m actually an entrepreneur doing some small investments here and there in Indonesia. Weird thing though. Apparently this blog was the first bringing the news that online retail in Indonesia is now closed for foreign investments. Weird because again, I’m not a journalist. Weird because this is actually not “news”, unless you consider changes to the interpretation of the law that came effective on june 28th 2013 is still regarded news more than 1.5 months later.
So what happened next? Well, Dailysocial contacted me asking for some “proof”. Well, I have the “proof” in the form of an official letter of intent from the BKPM but so far my legal adviser requested me not to publish this document as it was sent to him directly and not me. Now, even though I think this letter is an official and public document, I consider myself a smart person by never upsetting lawyers, period.
What happened next was Dailysocial writing a post with the title “Indonesia’s Ministry of Trade MAY Have Banned Foreign Investment for E-Commerce Companies“. “MAY have…”. What the hell do you mean with “MAY have..” ? Is any artcile with “MAY have” in the title even news? Followed by comments like “…but if what Lupker said is true…”. This was then soon reblogged or posted on sites like Yahoo and some tech blogs like SGE, because DS is “the authority”.
Yesterday I wrote a post on how to simply avoid WordPress “password reset hacks“, because that’s exactly what happened to this blog yesterday and already some more times before. I actually thought and hoped that would be the end of the hacking attempts but I couldn’t be more wrong.
When due to a severe jetlag I came out of bed around 3:30 AM this morning I noticed an email from my hosting provider that the website was deactivated due to a DDOS attack. Like WTF?? You just won’t give up, do you? I mean even if he would have succeeded and defaced the site then probably 150 visitors would actually notice it. And to be honest, I wouldn’t care less. For me this is not a business but just a blog where I write when I feel like it.
UPDATE: Anyone doubting what I write below please read this post and stop asking me for “proof” or quoting me as an unconfirmed souce! Much appreciated.
Wow, this is kind of a shock indeed. Coming home from summer holiday to find out that e-commerce, or online retail as you will, is now completely excluded from ANY foreign investment/ownership in Indonesia. This was already so for offline retail (unless the shop size is larger than 400m2, 1200m2 or 2000m2 depending on the kind of retail), but until now the online industry was excused for this regulation.
But this all changed on June 28th 2013 with a letter from the Secretary General of the Ministry of Trade with reference 689/SJ-DAG/SD/6/2013. Google it. You won’t find it. But basically all the rules that already applied to offline retail now apply to online retail as well. Check page 61 of Perpres 36 2010 where you find the DNI (list of negative investments) for retail businesses. Now if you think your company type is actually not listed there then don’t get your hopes up. Apparently, any company selling directly to consumers (as in private persons) is only allowed in case of 100% local ownership.
No idea why anyone would be even remotely interested in hacking this blog but it happened. Quite a lot too. Every time I see a “password reset” mail I knew it happened again. Quite annoying, considering I like to present myself as a dev ninja. Kinda embarrassing.
I thought I solved it but after working till 5 AM last night I woke up this morning and witnessed another hack as it happened.
The cause was pretty much known. One of the 24(!) active plugins on this site has an SQL injection vulnerability. Ah what? Well, basically the writer of the plugin is a moron or deliberately making his plugin vulnerable to attacks. With this vulnerability it’s quite easy to change the password of the admin user and take over full control of the WordPress blog. If you want to know the details check out the super clear
tutorial explanation on Flippercode.
Nice, so now I should actually check all the files of code of 24 plugins to find the vulnerability? That would probably take days and quite frankly this blog is not worth that. So I looked for a more simple solution and quickly found it. Just leave the SQL vulnerability for what it is, that is, unless you store credit card info in your WP database.