I love reading stuff by Dan Gillmor. His latest column for Silicon Valley, Remembering the People Who Give Back to the Net, and All of Us is a nice reminder that while the Internet has a lot of nasty folks doing nasty things, there's a lot more good out there than bad. He cites a couple of examples of this, not least of which was Verisign's decision effectively to hijack the world's DNS servers, promptly fixed by Paul Vixie's release of a patch to BIND to mitigate against Verisign's act of vandalism. It's nice, every now and then, to read nice things about the Internet now and then!
Monday, September 29, 2003
What I'd like to see at the PDCI'm getting fairly excited about the new stuff we'll see at the PDC. It's clear that this will be a key event on the road to Longhorn, as well as a useful update for both Yukon and Whidbey. Longhorn, if Paul Thurrot's Supersite for Windows' is be believed, will offer (yet another) new UI. And of course Scoble has been hyping some of the things Longhorn will do over in his blog.
But what I want to see is how Longhorn will make a difference in terms of getting real work done. The flashy new interface is, for me, a turn off - businesses don't want to have to upgrade machines to have larger disks, more RAM, bigger CPUs, and better graphics cards. What they need is systems that will make things faster for the end user and, for the IT staff, systems that are easier to support and manage.
WinFS will undoubtably make a difference for me - the ability to search my own hard disk faster will make it a useful upgrade. When I think that I can search the internet, via Google, faster than I can search my hard disk I have to smile a bit. WinFS should change all that!
But all the other stuff? I'm just not convinced. Where's the real business value in all this stuff? Is Avalon really something that will make a user truly more productive or will it really bring down the support? Or is it just eye-candy that will make folks want to upgrade? Frankly, a lot of this looks like bloat-ware. Stuff that, in the labs at Redmond are utterly cool, but in the offices of Mom and Dad Ltd are a gratutious waste of money.
So what I want presentations on at PDC are ones that also address the issues of security, real end-user productivity and administrations. I want to see how Longhorn is going to be managed, controled and how it will make a difference to TCO. Sure, I love the cool stuff - but I want to see the real business value too.
Sunday, September 28, 2003
With MP9, you can speed up the rate at which the video plays. This was one of those little features that I missed when MP9 was released, but now that I know about - I love it. It enables me to watch a video in much less time. Experimenting this morning, I was able to watch a video at 1.6 times normal speed. Dominic claims to be able to watch it at up to 2.2, but I think that might take some getting used to. A neat feature!
Some places I'm getting videos to watch from include:
Saturday, September 27, 2003
The original tracert program used to send packets to a random UDP port while varying the TTL. This worked as long as the receiver did not actually use this port - if it did, random things could hapen. Later versions of tracert send IPMP echo requests to the target host, which was a bit safer. But then came pings of death attacks, and many administrators would close ICMP off.
But the attack documented here is interesting in that it is effectively a tracert 'inside' an otherwise legitimate session. Using this approach, just about every stateful firewall and NAT devlce in existance would allow/pass the packet (since in theory the packet is valid within the session). Most sensible firewall administrators might close off traditional tracer-ing, but would be pretty powerless to stop this sort, assuming they even noticed it in the first place!
This is an entire new class of espionage tools for internal espionage. An employee could run a tool build to do this and pretty much blueprint the entire network in a matter of a few minutes. This is also open to attach from an "
Thursday, September 25, 2003
Please Microsoft UK, think again??
Wednesday, September 24, 2003
The theory is that this move will protect children. I susupect cost might have a thing or two to do with it. The costs of running the chat servers must be considerable, and Microsoft has not been slow to start to try to make money from Internet services (the extra for-pay services added to Hotmail, for example). According to the New York Times, Microsoft's key competitors will not be axing chat. For AOL, the chats are private to subscribers anyway. But Yahoo apparently has no plans to charge. We'll see what happens!
Monday, September 22, 2003
I did a look around the web for other tools - I must get around to doing a tools round up! In the mean time, here's a good starting point on blogging software.
Friday, September 19, 2003
How much is inside a Sharpie?For those not in the know, Sharpies are meant to be the best tool to use for labeling the CDs you burn. I do NOT want to get into an argument as to whether this is true or not, but I use them and they work ok for me. One question, that we now know the answer to is: How Much is Inside a Sharpie?
Some folks clearly have too much time on their hands!
There will be some restrictions. First, it looks like VPC will be supported on XP and Windows 2000 only - and unsupported on Windows 2003. Also, there will be no SCSI or USB support. :-(
Thursday, September 18, 2003
Wednesday, September 17, 2003
As far as Longhorn is concerned, I've been using Google's news alerts to get information about the product. Microsoft MVP Jim Eshelman is also tracking the stories on his web site. The site is not up to date (last entry is late July) but it's probably worth bookmarking. Take a look!
Sunday, September 14, 2003
Saturday, September 13, 2003
Friday, September 12, 2003
Another Windows patch!Just when you thought it was safe, along comes another patch (and associated holes in Windows). :-(( Or as Mary Jo Folley puts it: Another Wednesday, another Windows security patch.
Do you need to deploy this patch? Well, there are actually 3 holes that are fixed (actually this should probably read as 're-fixed'). MS have marked this as critical so I guess the answer is yes: you do need to deploy this patch.
At TechEd in June, Scott Charney said some things that I sure hope he (and Microsoft) delivers on! He said "When I came to Microsoft...customers said to me that patch management was their biggest concern. So I started looking at it, and what I realised was that patch management was broken"
Patch Management was broken in June, and it's still broken Scott. :-(((
Tuesday, September 09, 2003
A tool for code weaniesIn Tim Sneath's blog, I saw a reference to bothJeff Key's blog and to a cool utility Jeff's written called Snippit Compiler. If you've ever had to demo code and you want to compile it and see the results , this is a neat tool.
I am doing some training this week in the .NET Framework for a client and this would really, really have been useful today!
Monday, September 08, 2003
Microsoft Encyclopedia of SecuityJust got a copy of the new MS Press Encyclopedia of Security by Mitch Tulloch. Mitch also maintains an interesting technical Blog at Blogspot.
This book is a good A-Z reference guide to all the key security issues likely to face any IT Pro. It's not a definitive look, by any means, with around 1000 entries in some 480 pages. But it is a good basic intro to all the key terms. It even covers .NET security concepts such code access policies which is good. The level of depth is not great - but there is a good introduction provided with some references for more information.
If you have to understand more about security - and let's face it, most IT Pros need this understanding, this book is worth buying!
Sunday, September 07, 2003
The question of keeping up is a good one. At one time, I relied mainly on network news (NNTP) and mail. Increasingly, I'm relying on online content. Since May, I've been playing with both blogging software and RSS readers (the intenet was to read and consume via RSS). I can see the arguments for RSS, and Feed Demon is a cool tool. I've also started using Google News Alerts. Email is, increasingly, just a vechicle for spam. And I'm tired of it. I was away for a week and must have had 1000 spams. Even with filtering kicking out about 40% of the mails received! Jeesh. I am finding RSS aggregators as a better way of looking at things, but it needs RSS feeds. I'd love, for example, to get google searches via RSS. But this is a topic for another day.
I'm just back from a relaxing week in the US - a few days in Boston and then some time in Rhode Island. Took my wife and daughter and we had a great time. The weather in Boston was great - although it did Rain in Rhode Island. Never mind - the food was great and the wine outstanding. The flight over to Boston was kind of grim, although just bearable. The flight attendants were somewhat out of it and they now charge for booze in economy. But coming back was not too bad - American did well on that leg (and I had my own gin). It turns out now that the Boston crew no longer gets a full day's rest before the flight back. No wonder they were so beat on the way over to Boston. Anyway - it's nice to be home. For a little while at least.
The next few weeks look like being "hectic". I'm off to Redmond in mid-Sept. Then back for a week before a week in New Orleans. Then a week at home before the PDC in LA. Or something like that.
I'll try to keep up with the blog - but it may not be easy. And worse if blogger is DOS's again. Sadly, it appears from evhead's blog entry yesterday that the site had a DOS attack. Bummer.
So when will Google re-open it's Blogger Pro� - Power Push-Button Publishing service to new subscriptions?
I started using blogger.com back in May for this blog - and would love to publish in RSS. I like the overall service at blogger.com and am a long time Google fan. I'd like to upgrade to the pro version. Either that, or I move this blog. Choices...
So now it's September - and where's the Pro version? Or rather the ability to sign up for it?