Blog For Free!
Archives
Home
2005 September
2005 August
2004 August
2004 July
2004 June
2004 May
2004 April
2004 March
My Links
Atlanta Wedding Planner
tBlog
My Profile
Send tMail
My tFriends
My Images
Sponsored
Blog
|
| I can read your mind. |
| 09.01.05 (3:21 am) [edit] |
|
— or at least, I can read your computer's mind.
The Internet Storm Center points out that with the default security settings in Internet Explorer (even on Windows XP with Service Pack 2), websites in the Internet security zone can read what's in your Windows clipboard. If you have been copying & pasting sensitive information — oh, for instance, you're working with a spreadsheet of credit card numbers — then websites that you visit while that information is on your clipboard can see it too, if they know where to look.
I wrote a little test to see if your clipboard is exposed. Internet Explorer has most likely categorized this web page as being in the Internet Zone, unless you have specifically added it to the Trusted Zone.
If you found out that your clipboard data is indeed exposed, fear not. You can simply change your security settings to prevent it:
- See Microsoft Knowledge Base article #224993.
- Windows network admins can add a Group Policy. The setting can be found in the Group Policy editor under Computers | Administrative Templates | Windows Components | Internet Explorer | Internet Control Panel | Security Page | Internet Zone | 'Allow paste operations via script'.
- Use Firefox instead of Internet Explorer.
|
|
|
| |
| Smarter Wifi |
| 08.23.05 (3:07 am) [edit] |
|
There's been a lot of fuss in the media lately about people "stealing" internet access from unsecured wireless networks. Personally, it wouldn't bother me to share some of my bandwidth when I'm not using it, but when I am using it, I'd like my traffic to get priority, since I'm the one paying for it.
Most broadband routers with any kind of security have the ability to restrict access to a list of known computers, identifying them by the MAC addresses encoded in their network adapters. How hard would it be to add a new rule to the router that allows unknown computers access to the network, but gives priority access to computers that are known? Quality-of-Service (QoS) features for giving priority access based on higher-layer ;protocols such as Voice Over IP have been around for years.
Linksys, if you're listening, it's something to think about...
|
|
|
| |
| Virtual PC 2004 Performance |
| 08.13.04 (8:51 am) [edit] |
|
Aha. I decided to revisit this tool to test XP SP2. I did another search through Help to see if I could correct the performance issues I ran into last time, and this time I uncovered the following:
To turn on the pausing of background virtual machines
- Open Virtual PC Console.
- On the File menu, click Options.
- Click Performance.
- In the CPU Time list, click Pause virtual machines in inactive windows.
Note
- To open Virtual PC Console, on the host operating system, click Start, point to All Programs or Programs, and then click Microsoft Virtual PC.
I'm going to give it a try....
|
|
|
| |
| The cure is worse than the disease |
| 07.19.04 (5:33 am) [edit] |
Today's news is abuzz with talk of the first Pocket PC virus. Apparently the virus' author designed this proof-of-concept virus to alert everyone to Windows CE's vulnerabilities and to force Microsoft to take action and secure their OS better.
But given how easy it is for other virus writers to adapt new worms for their own purposes and then re-release them with a new payload, why does this guy think he's doing anyone any favors by distributing to the world what is essentially a new do-it-yourself virus kit?
The viruses being distributed by the spammers and the identity theft guys, those I can understand. They have a purpose, albeit a criminal one.
But this? Honestly, is this virus auther really that juvenile?
|
|
|
| |
| Rent-a-Senator |
| 06.24.04 (10:32 am) [edit] |
It seems like certain members of the Senate don't credit us citizens with free will. As reported by Wired News, the Inducing of Copyright Infringement Act of 2004, introduced today by the RIAA's pet legislator, would make it illegal for businesses to "induce" others to pirate copyrighted materials by making tools to help them do it.
As Senator Hatch describes the bill, it is intended to, "simply confirm that existing law would allow artists to bring civil actions against parties who intend to induce others to infringe copyrights."
So, I guess that means that if it's already against the law, then we need more laws to say, "I told you so."
|
|
|
| |
| Good call, FTC |
| 06.16.04 (10:39 am) [edit] |
The FTC announced yesterday that they did not think the time was right for a national Do-Not-Spam registry.
Good call — until the technology is redesigned to make it possible to enforce it, a Do-Not-Spam registry would only make it easier for spammers to add your address to their lists.
|
|
|
| |
| Hey, Brother |
| 06.16.04 (10:33 am) [edit] |
I read today that Congress is considering relaxing some of the restrictions on fax spam.
Hey, why doesn't someone build a fax machine with a hard drive that caches the faxes it receives and then lets you decide which ones are worth printing? Toner is expensive.
|
|
|
| |
| DMA |
| 06.04.04 (6:24 am) [edit] |
Four months after we filled out the form and mailed it, the Direct Marketing Association has sent us a confirmation that our home address has been added to their Do-Not-Mail list.
But just in case we misunderstood, they have included a helpful postage-paid card that will let us opt back in to several different categories of snail mail spam.
Come on guys, when will you get it? No means no.
I wonder what the costs of mail handling for our opt-out form, manually entering our address into your database, mailing that confirmation letter, and including that postage-paid opt back in card come to? Could it be that in the long term an online service that lets people enter their opt out choices directly into your systems would cost you less? Hmm. Might it be that the reason you prefer to do business by mail, and charge a fee to users of your online service, is just one more subtle way to discourage people from actually using your opt-out service?
I guess this is how self-regulation by the industry works.
|
|
|
| |
| SpoofStick update |
| 06.04.04 (6:05 am) [edit] |
|
SpoofStick version 1.01 for IE is out. New features listed here.
|
|
|
| |
| Phone spam |
| 05.21.04 (5:33 am) [edit] |
The LA Times is reporting today on industry efforts to create a directory of cell phone numbers. Industry analysts have been talking about this for months, and are warning that consumers will soon be seeing a lot more telemarketing calls and SMS spam on their cell phones.
Let me state for the record that I find telemarketing to be every bit as much of a nuisance as email spam. Worse, in some ways, because it wastes more of my time.
I registered my new home phone number with the national Do-Not-Call list the same day that I set up the account; however, it takes three months for the listing to take effect, and in the mean time, I have been deluged by calls and mail from all of the marketers who got my contact info from the public records of my new mortgage.
It also used to be illegal to use automated calling systems in the state of Georgia. But the industry has gotten that law overturned in recent years, so now you can't even request to have your number removed from a telemarketer's list without being forced to first listen through the entire recorded message.
And here's a question: Why do the phone companies charge a monthly fee for the so-called privelege of having an unlisted number? This is 2004; phone systems are now digital for the most part. Why can't the phone company just set a one-time flag on my record in their database that says "Don't publish" and be done with it? What kind of administrative problems do they have that they need to charge me $4 monthly, $48 annually, to address? Loss of anticipated revenue from phone directory sales, perhaps? Sorry, but that cost should not be passed on to the consumer!
Any way, the mobile telecommunications industry is now in a position to take on the mobile phone privacy issue in a way that works better than their wired predecessors. They are not constrained by the legacy standards and technology of our 100-year-old Bell phone networks. So here is my plea:
- Please make inclusion of mobile numbers in the directory an opt-in process rather than opt-out.
- Please explain the opt-in choice clearly to consumers during the process for setting up a new phone number.
- Please design your internal databases in a way that makes it easy to administer privacy choices. It seems counter-productive to have to run a second, 'Do-Not-Call', database, when you could simply record consumers' privacy preferences in the same place as their account information.
- If you must apply a charge to consumers to defray the costs of administering their privacy preferences, then please, make it a one-time fee and not a monthly charge.
Because I lived for 31 years without a cell phone, and I can do it again, easily, if the cell phone becomes more of a problem than a convenience.
|
|
|
| |
| Microsoft Virtual PC 2004: My two cents |
| 05.12.04 (6:37 am) [edit] |
Having used VM software in the past and found it to be a very useful tool for testing operating systems and software without having to purchase new hardware, I was quite pleased when February's MSDN shipment of CD's included Microsoft's new virtual machine product.
I have to say that so far, Microsoft Virtual PC 2004 has been a real disappointment, due to one critical flaw. When the window that the VM runs in loses focus — that is, when it's not the window on top because you are using other programs at the same time — its thread utilization slows to a crawl.
Installation of Windows 2003 Server, which was estimated to take 37 minutes, instead took 3 hours. I was only able to complete the installation by stopping all other work and clicking to bring the VM window to the front every time the screen saver started and it lost focus.
While this product is still of some use, since I don't have to erase my existing OS or swap hard drives to run my Windows 2003 test server on my existing PC, it still effectively takes my PC out of commission while the test server is in use. VMWare does not have the same problem, and for any production use, that's the product I would recommend.
|
|
|
| |
| Only in America |
| 05.12.04 (6:15 am) [edit] |
ZDNet is reporting that spammers Scott Richter and his company OptInRealBig have succeeded in getting a temporary restraining order against spam blacklist and complaint service Spamcop to prohibit them from blocking OptInRealBig's spam and from sending spam complaints without revealing the identity of the recipient.
And they had the chutzpah to misinterpret the CAN-SPAM act in support of their case.
I guess money talks and bullshit walks.
What is so wrong with the American legal system that everyone can agree that spam is a bad thing, and yet no one can make a law against it stand up in court?
|
|
|
| |
| SEO update |
| 05.11.04 (7:15 am) [edit] |
Well, Berry's Best Events has finally started to show up on Google, but it's ranked at number 196 for the phrase "Atlanta Wedding Planner". That's a pretty big difference from Yahoo!
I know that we're competing with search engine spam for these keywords, but there has to be more to it. I think that the text on the website probably needs to repeat these keywords, in context, more.
On past SEO projects, the marketing folks have always presented me with finished text before I ever had a chance to offer my advice. A lot of people still think of search engine optimization as some kind of arcane magic that goes on behind the scenes, involving hidden keywords and hacker tricks. The truth is that Google has gotten smart, and is now ranking pages primarily on - content! (What a concept.)
Today's marketing copy writer really needs to work hand-in-hand with the SEO consultant before the content of the website is presented to management and set in stone. Start with a keyword study to select which keywords or phrases to optimize with. Plan to optimize each page on the site for one or two of the selected key phrases - and if necessary, come up with a logical reason to add more pages if you don't have enough for all of the key phrases chosen. Finally, write the pages, using the key phrases multiple times, in context, within the content of the page.
I was consulted on the page content this time, but it was before I had done a keyword study, and I don't think I made it clear how important the content was to the search optimization. Next time, I'll need to be more assertive.
|
|
|
| |
| Phish Stick update |
| 05.11.04 (6:20 am) [edit] |
Spoofstick is now out of beta. Version 1.0 is available for Internet Explorer and Firefox.
On a side note, I think that this is the first time an external site has linked to this weblog. My little 'blog, which started as an experiment in search engine optimization, is starting to grow up!
|
|
|
| |
| Placebitrol - It works because you're crazy |
| 05.06.04 (5:39 am) [edit] |
|
|
|
| |
| Phish stick |
| 04.26.04 (6:48 am) [edit] |
Phil Libin from CoreStreet Software has released a beta version of Spoofstick, a browser plug-in that is intended to help alert you when you are directed to a website that is not who it claims to be.
Phishing is the technical term for an identity theft scam that involves directing users to a phony website that looks just like the original - eBay or Amazon, for example - in order to entice the user into entering password and credit card info. Some recently revealed bugs in Internet Explorer have made this trick pretty easy to pull off.
Spoofstick adds a bar to the top of your browser that shows in large text the name of the domain you are really browsing, making it (hopefully) easy to see when you are being phished.
Download Spoofstick here.
|
|
|
| |
| Fun online game |
| 04.23.04 (11:34 am) [edit] |
Solar Conflict
Solar Conflict is an online multiplayer text based game in which players assume the role of commander of a large army on a planet (planets are like teams) and fight against armies from other planets in order to improve team and individual ranking.
The game is currently in beta, and you can join for free. Click here to join Solar Conflict.
|
|
|
| |
| Jooglebomb |
| 04.20.04 (9:34 am) [edit] |
In response to this hate site that is run by a pack of Nazis, Mobius of JewSchool has suggested a campaign to counter ignorant hatred with knowledge.
Start here to learn more about what it means to be a Jew.
|
|
|
| |
| Slimy search engine spam trick of the day |
| 04.13.04 (12:44 pm) [edit] |
I was doing a little research for work today, looking for a software product to fit some of our needs, and Google served me up a link to this guy's get rich quick site.
Here's what this spammer does. He's got many pages on his site, each one optimized for a particular keyword or phrase. If you request one of his pages, his server does a query to Google, using the page's keywords, and appends Google's results to the bottom of the page before delivering it to you.
Ergo, whenever Google's web spider crawls his pages, his pages spit Google's own text back at it. And Google indexes his page with a description that belongs to someone else. It seems to work pretty well, too - his site was first result shown for my search.
I checked out the home page at the root of his domain, and ... big surprise ... he's selling a book on how to get the number one web ranking in Google. For $129 a copy, going up to almost $200 a copy [i]if you don't act right now![/i]
|
|
|
| |
|
|
