Slaptijack Title

El Capitan Leads to More DNS Woes

by Scott Hebert

FinderFor whatever reason, Apple really likes messing with how I use DNS.

I've written many, many, many times about having to modify OS X's DNS functionality to append search domains when a hostname includes a dot. Every single time I upgrade, this change is broken.

Read More →

Agreeing to the Xcode/iOS license...

by Scott Hebert

FinderSometimes this pops up when you least expect it:

Agreeing to the Xcode/iOS license requires admin privileges, please re-run as root via sudo.

This morning, I went to refresh one of my git repo's for work, and make spit that out. What the heck happened last night? Anyway, the fix is easy:

Ullr:anchor scott$ sudo xcodebuild -license

You have not agreed to the Xcode license agreements. You must agree to both license agreements below in order to use Xcode.

Hit the Enter key to view the license agreements at '/Applications/'

After hitting the space bar a bunch of times, just agree and you're back to work.

MBA Bookshelf

by Scott Hebert

Below is the list of books I have needed for my MBA.

nginx: Blocking Access to /xmlrpc.php

by Scott Hebert

nginx logoI recently ran into an issue on a WordPress site running behind an nginx web server. The site was frequently being attacked by a botnet hitting /xmlrpc.php so rapidly, it would eventually force the FastCGI processes behind nginx to consume all available CPU. Naturally, this would cause all legitimate traffic to the site to timeout. My solution was to insert the following in the nginx configuration for the site:

location = /xmlrpc.php {
    deny all;

Although this change did not stop the brute force attack, nginx was able to handle it much more elegantly (read: not cratering the server) than php-cgi.

Goodbye, discoveryd. Hello again, mDNSResponder.

by Scott Hebert


Once again, Apple has made a change in how DNS is handled in Mac OS X. Originally, Yosemite (10.10) had replaced mDNSResponder with discoveryd. This meant that all of those who had made a change to force mDNSResponder to always append search domains to DNS lookups had to make a new change to accommodate discoveryd.

Read More →