Recently in Technology Category

Apparently Senators Schumer and Graham are upset enough about Iran's efforts to monitor it's citizens' Internet activities that they want to ban Seimens and Nokia from future contracts with the federal government. According to Graham...

"The Internet has proven to be one of the strongest weapons in the hands of the Iranian people seeking freedom and trying to chart a new destiny for their country. Companies that provide technology to the Iranian regime to control the Internet must be forced to pay a heavy price."

Why aren't the Senators going after NSA's activities in the Pinwale program with the same fervor? Or is it only wrong to meddle with the Internet when you're not the US government?

The Clear Registered Traveler program was a service that basically collected a bunch of information about you, ran a background check, then gave you a card that let you skip to the front of the security line at 20 airports around the country. Since Dulles International Airport was one of them, I signed up for the card a little over a year ago. I'd had good experiences with it, and renewed it for $179 in May this year.

Then on June 22nd, Clear abruptly announced that they were closing operations effective immediately. (News which I learned about via Twitter before I learned about it from Clear's customer service email. Viva la revolution!) The first order of business was to call American Express and dispute the charge from Clear. Clear has since announced that they won't be issuing refunds due to the "financial condition of the company". (In other words, they be broke.) This is why you should always use a credit card for purchases, kids. It's a lot easier to dispute a charge on a credit card than a debit card.

Anyway, the more disturbing thing about the Clear closure is that they have a huge amount of personal information about their customers - iris photos, fingerprints, names, addresses, social security numbers, credit card numbers, etc. It's really their most valuable asset - to a prospective purchaser or to a hacker. I reviewed their privacy policy again the day I found out about the closure, and it seems to indicate that they can't sell the data. But as this Wired article points out, the policy isn't explicit about what happens if the company is liquidated or acquired.

So now I'm wondering if I should try to get an injunction against them transferring all my personal information to a third party... Good luck with that, right?

My last smart phone - a Sprint Mogul - finally died a few months back. So I found myself facing the decision - to iPhone or not to iPhone? I decided to take the plunge, and Cindy and I ended up with two brand new iPhone 3G phones (a few months before the iPhone 3G S came out... of course....).

Since I'm not a Apple fanboy, I didn't automatically cream my pants when touching my iPhone for the first time. As a matter of fact, I quickly came to find it had a number of shortcomings compared to my several year old Windows Mobile based Sprint Mogul. I eventually did find some of the strengths of the iPhone as well. But now that the much anticipated iPhone OS 3.0 is out I'm more convinced than ever that iPhone is really just a well polished turd. Let me list a few reasons why before you Apple fanboys slash my tires...

1. You pay for hardware you aren't actually using. The iPhone 3G camera was capable of recording video. If you jailbreak it, you actually can record video. And yet even with the release of OS 3, video recording is not supported on the 3G. It is supported on the 3G S, but guess what? Same deal - the 3G S camera hardware could record HD video, but Apple only allows you to record VGA video.
2. Apple supplied apps look good, but actually have usability flaws. Bad usability flaws. Usability flaws that a college undergrad software engineer could find and fix. Two illustrations: First, mail account navigation is stupid when you have multiple accounts. To check the inboxes in my two accounts on my iPhone requires 6 taps after starting the mail app. In Windows Mobile, it took 2. This was a known complaint in OS 2 and nothing was done to improve it in OS 3. Second example, the new voice memo app. It looks really slick, and the developers even took the time to make the signal meter jump if you "tap" the picture of the microphone. But the damn record/pause/stop buttons are so small, I can't reliably hit them without concentrating on the screen. News flash, I want a voice memo app so I can record thoughts while driving, when I can't safely look at the screen to type. What I need is a big record/pause/stop button, not a artistic rendition of a mic that takes up 80% of my screen. Want to record a voice memo in Windows Mobile? All I had to do was hold down the memo button on the phone, listen for the beep and start talking.
3. Photo management is non-existent. This was another area that was desperately in need of work in OS 3 and got nothing. I can have folders for my photos, but I have to copy the photos to my laptop and organize them there then sync them back to the iPhone. What? Are you serious? Apple apparently spent a year working on cut-n-paste but couldn't devote a month to coding this functionality. So my Photos app continues to be nothing but a huge long linear stream of photos in a timeline. If I'm going to load them on my laptop, I'm not going to bother to organize them and sync them back to my iPhone. I'll just tag them and send them to Flickr, thank you very much.
4. No Task List. Again, I can only say "Seriously?" This is supposed to be a "business savvy" smart phone and you don't support a task list of some sort?
5. No file management and no business apps. So now I have a 16GB device, but I can't load files on it? Of course, I can always email my documents to myself and then open them in email. *cough* *hack* *cough* But even if I do that, I can't edit anything. Again, Windows Mobile has had a "Mobile Office" suite for years. It's not as powerful as the real thing, but at least I can put together a spreadsheet when I need to. Of course, for $99 a year, you can get Apple's MobileMe service which is reportedly going to start offering the ability to send files to your iPhone via the me.com website. But you still can't edit your docs...
6. No Adobe Flash for Safari. I was surprised it wasn't in the original iPhone, amazed it wasn't in the iPhone 3G and just stunned that it hasn't been added to OS 3. Please, someone at Adobe and/or Apple, get your heads out of your asses!

So, given that I have some major issues with the iPhone 3G, am I ready to chuck it out a window? Not really. Just like the iPod, the iPhone really has done some revolutionary and great things. It's just that those things aren't really technical! But here's an obligatory list of what I see as the iPhone's strong points, just to present a little balance to my opinion.

1. App Store. Part of what you have to admire about Apple is that they don't really sell products, they sell integrated systems. Before the iPhone, no one had a marketplace like the App Store. Personally, I think the slick integration of the App Store directly with the phone is the single biggest reason for it's success.
2. GPS integration. Other phones have GPS, but Apple really pushed the concept of integrated location awareness for both native apps and for third party development. Geotagged photos, Zagat To Go, and with iPhone OS 3 Safari extends the location awareness possibilities to websites and not just apps. Very cool.
3. Social media integration is really stellar. Not much I can do to explain this one - if you use social media (Facebook, MySpace, LinkedIn, Twitter) the iPhone has you covered.
4. Camera quality is really quite good for a phone. The Windows Mobile phones seem to have universally shitty camera hardware and the iPhone still takes mediocre photos at best, but it's a big step up from the Mogul.
5. Seamless data network usage. On the prior smart phones I've used, you had to connect the data network and disconnect it when doing Internet Stuff. Apple and AT&T really went the extra mile to make the network experience seamless on the iPhone.
6. Web rendering is excellent. Safari may not be perfect, but it does the best job of any mobile browser I've seen, bar none!

Should you buy an iPhone? Honestly, I'm not sure what else is on the market that would convince you not to. Blackberries didn't impress me and I haven't played with a Palm Pre enough to judge it. If you're a business user, you might want to at least shop around. If you're a social media or mobile game junky, stop wasting time reading blogs and just go buy one already.

So, one of the big attack modes in computer security these days is "phishing". Phishing is when someone induces a victim to disclose a username & password (or other important identity information) using something that appears to be a valid website. For example, someone might setup a fake Bank of America website, then email that link to thousands of people asking them to login and confirm their account. Even if only 1% of the recipients falls for the trick, the attacker gets access to hundreds or thousands of bank accounts.

One of the most important countermeasures to this attack is user education. Organizations have spent lots of money trying to educate users that they should never disclose their password to another site. Things as simple as never opening links from an email and verifying the "SSL Lock" icon on your browser are cornerstones to this process. But more importantly, users should never give their password to a site with the wrong URL. In our example above, if the link in the email goes to http://bankofamerica.com@geocities.com/~spammer/fake_login.html, the goal of user education is to get the user to stop and say "Hey, that doesn't look right...." In fact, social media pioneer MySpace spent a lot of time and effort combating these exact types of attacks through user education efforts on their login screens and banners.

That brings us to Twitter. There appears to be a whole universe of Twitter related tools and websites that ask you to use your Twitter username and password to access their services. This is a bad idea! First, in the specific instance, we are building up a huge body of websites with access to our Twitter accounts - a break in at any of them could result in massive compromise of Twitter accounts, regardless of Twitter's policies and security controls.

But more importantly, Twitter's importance to the "youngins" means that we're now raising a whole new generation of Internet users that are 1) vulnerable to exploitation because of their age and now 2) trained by prior experience that sharing their username/password with other sites is a good idea. Now, I'm not one of those people that will do anything "for the children", but this is still a scary prospect.

And before you pooh-pooh me, how many of you out there are using the same username and password for a lot of your social media sites, email accounts, Amazon, Etsy, etc.? I'd be shocked if most kids have strong passwords let alone separate passwords for all the different sites they use on a daily basis. So these phishing vulnerabilities are only going to be more important as time goes on. And the really scary thing - even if you and your kids are smart enough to avoid these pitfalls, the vulnerability has what we call a "network effect". Even if YOU aren't vulnerable, someone you're connected to probably is. And that can be just as bad. Think your 13 year old would never talk to strangers online? What about when his friend's account is compromised and some stranger is using that friend's Facebook or Twitter to talk to your 13 year old? Still feel safe? Think you would know better even if your 13 year old wouldn't? What if your best friend sent you a Facebook message to let you know that the party tomorrow is cancelled? How paranoid are you willing to be....?

What can be done? Well, for starters, Twitter should implement an API Key approach to programmatic sharing like the one used by Flickr (or some other well engineered security mechanism for sharing access). Then they need to lead the charge in educating users not to share their passwords with a site that doesn't end in "twitter.com". And parents, don't forget to spend some time with your kids - and not just explaining this stuff!

Well, I just upgraded my HTC Mogul to the latest Sprint firmware (3.56.651.0). Overall, I'm very happy with the upgrade. The upgrade process itself continues to be straight-forward on the new HTC devices. In this case, just download the installer from here and run it with the device connected. (Do backup your data first if you want to keep it - anything not on the nano-SD memory card will be wiped.)

After the upgrade, I had a little problem getting the phone to connect back up to ActiveSync. After rebooting my laptop, that worked fine too.

The most important feature added by this latest ROM set - GPS Navigation! This firmware adds and enables the Sprint Telenav navigation software. It is very reminiscent of TomTom or Garmin GPS software and seems to work fairly well. The only downside I noticed is that the responsiveness can be a little slow since it works with an online service for all of it's data. The TomTom software I've used previously installed totally on the memory card (all 1GB of it) and thus was not dependent on a data network connection. If you travel through non-EVDO areas a lot, this would be a concern for you. Since I mostly use this to find my way through cities I'm unfamiliar with, I can live with it.

The other side effect of this upgrade is that the on-board GPS is now available to third party applications. Goodbye bluetooth GPS receiver! While I didn't mind using the external receiver, one less thing to pack and charge is a good thing. I was testing the on-board GPS with the mobile application version of Google Maps and it worked great.

Since I was several revisions behind on the firmware, I also picked up the new radio code for the EVDO Rev A data network. Since I've purchased an aircard for my laptop, this is less of a big deal, but I'm sure it will be a nice touch for checking email and pulling down data using the mapping applications.

Another small improvement that comes with Windows Mobile 6.1 is the addition of a task manager. Finally, a one-click way to see running applications and close them! This was such a basic function, it was embarrassing that it took this long to get into Windows Mobile on the Mogul.

Stability has yet to be evaluated, since I just did the upgrade a few hours ago. Other than that, everything about this firmware upgrade seems like a rock-solid good move!

Step One: Awesome Snowflake Pictures

Step Two: Hovering Robotic Kill Vehicle OF DEATH!!!

Enjoy!

Ars Technica has an article on why multi-core processors are going to lose out in the long run. This type of parallel programming problem was talked about in some of my senior level classes at Virginia Tech. The real problem is that there's only so many problems that fit the parallel programming model. After you start stretching the model, you're basically into the realm of "solution looking for a problem" and you can't get the performance benefits you'd naively expect. So it sounds like all the fun research will be in memory buses for the next few years.

So, as part of my planning for heading back to Alabama, I think I'll take a bunch of my camera equipment with me. My friends Mark & Lisa have a Nikon DSLR that they're thinking about buying some extra lenses for and last time I was down we talked about some of the options. I figure I can bring mine down and maybe we can hang out one evening and check them out.

Also, I've unexpected come into possession of a Sigma 400mm f/5.6 lens. While I was talking to Mom about teleconverters, she dug this lens out and said "Oh, I'm not using this anymore, so you're welcome to it if you want." ORLY? So it's not a superb piece of optical work like my Nikkor 70-200mm f/2.8 VR, but it's free and it seems to work pretty well. Hopefully I'll get a chance to try it out while I'm in Alabama and see if I can capture some wildlife with my DSLR instead of the Casio EX-F1.

In other preparations, I have about ten pounds of mail to go through. :-/ (Note: If you measure you're mail in pounds, you're probably doing it wrong. lol) So I guess that will be occupying a huge chunk of my time before I leave. I want to run down to the post office today and see if they have a check for me. I got an invoice into work this week, but it was kinda late and I don't know if they'll have paid it this week or next.

Other random updates - I got a Visioneer Road Warrior scanner. After a few failed attempts at calibrating it, I finally got it working. I got it on sale from Staples.com for $149 and for the money I think it's worth it. The quality is hardly on par with a flatbed scanner, but let's face it - I bought this thing to scan receipts and submit expense reports. Mission Accomplished. So if you're a road warrior that is looking for something like this, I'd say "do it".

Well, also on the to-do list before leaving is to get the Christmas tree out of the attic for Mom. So I guess I'll go try to pull the boxes out of there with or without Dad. Wish me luck!

A Bald Eagle That Likes to Swim

12 Myths About Internet Protocol (IP) - This one is a bit technical, but good primer on things that aren't really true about the internet from a technical perspective.

Cool photo of an owl flying after catching a mouse.

The votes that count in your local election may depend on the equipment used more than on the people voting. A recent study in California found that voting machines from major manufacturers were all severely flawed. In about six weeks the "red team" researchers who were tasked with examining the machines found major vulnerabilities with every system examined.

I recently reenabled S/MIME signing in my Outlook client. (S/MIME is a way to place a digital signature on an email message so the receipients can verify the sender.) When I tested sending mails back and forth to myself through my various clients, I had no problem. However, when I started sending email to other receipients, they all had issues opening the mail - most with the error message "Your digital ID name could not be found by the underlying security system."

This error is normally associated with difficulty opening encrypted mail. Since I wasn't using encryption, I couldn't fathom why this was happening. Many Google searches and Microsoft Knowledge Base articles later, I still hadn't found a solution. I finally had an "Ah-hah!" moment and found the problem. So, in the hope that someone will be spared some of my pain, here's my problem and solution.

I configured Outlook 2007 to use SHA512 for the signature algorithm. Unfortunately, this is not as widely supported as one might hope. Even on another Outlook 2007 installation at work, SHA512 couldn't be opened. Changing the signature algorithm back to SHA1 let everyone start seeing my emails again.

The "Your digital ID name could not be found by the underlying security system" error message is grossly misleading in this case! The system should really be reporting something like "The security system does not support the algorithm used to sign this message." I don't normally bash Microsoft, but in this case... you dropped the ball guys! Since SHA1 has started to show some signs of weakness, I'm hopefully that SHA512 will be more widely supported in the future. But until then, keep your S/MIME certificates set to SHA1 and AES256!

Apple is known for they're aesetics and marketing for their products, so I'm always disappointed with they go with something that looks good, but sucks. In this case, I mean the earbuds which come with iPods. My girlfriend and I were watching a movie on my iPod Touch during our flight out of Montgomery. She was using her Apple supplied earbuds (retail $40) and I was using a pair of Phillips foam earbuds (retail $10).

She was getting frustrated by how low I was keeping the volume, until she finally took one of my earbuds. Then she suddenly realized that the reason I was keeping the volume so low was that I could hear everything just fine. Her earbuds were so bad at blocking the ambient noise in the plane that she was basically stuck reading the subtitles to follow the plot.

The iPod got a lot of press a year or so ago for the poor quality of their earbuds, and they deserved every bit of it. Considering the premium that is paid for Apple products, it's disappointing that they have to include one of the poorest quality accessories I've ever seen with a high-quality product.

I've been hosting with Beachcomber Creations (BCC) for the last seven years. It started out as a cheap solution to my desire to post various things online hosting my domain. Over the last couple of years though, BCC has slowly accumulated strikes in my experiences with them. Then in the last year they've finally driven me away.

First, they made a change to my mail server configuration without prior notice, resulting in all of my email bouncing for a weekend before I found the error and fixed the configuration. Then, for a second time, they moved my account to a new server and lost 6 days worth of my email. When I contacted them to get the mail moved to the new server, they took the stance that it wasn't their responsibility, and sent me some info on how to access the old server and move the data myself.

Quite frankly, this isn't the level of service that I'm willing to put with. As someone who works in IT infrastructure, I would never tell a paying client that it was their responsibility to deal with the data loss from an unannounced server migration. So, I've restructured my hosting solutions.

First, I've migrated all of my email domains to Google Apps. Probably a long time coming, this lets me continue to use IMAP for Outlook, but also integrate chat and calendaring with my friends who already use Google.

I've also migrated this blog and my other web content to GoDaddy hosting. I'm looking forward to an improved hosting experience with a provider that is a large-scale and well-managed environment.

While the vast majority of the site content should now be migrated and looking more-or-less the same, you may encounter some broken links. I'll try to get things cleaned up and maybe migrate to a newer site design if I get time.

I upgraded to Office 2007 when I swapped the hard drive in my laptop for an upgraded one. Overall, I'm pretty satisfied with the Office 2007 suite. One thing that was driving me crazy though was that clicking the calendar or task tabs in Outlook 2007 would make Outlook hang for several seconds - up to 45 seconds or a minute sometimes! This was so frustrating, because Outlook 2003 had no problem switching tabs very quickly. So tonight I finally broke down and set out to research the issue. I stumbled upon a forum post that solved the problem. To summarize, the solution:

1. In Outlook, go to "Tools"
2. Select "Trust Center"
3. In Trust Center, click "Add-Ins"
4. At The Bottom Make Sure That "Com Add-Ins" is selected and Click "Go"
5. You must uncheck, as many of the add-ins as possible. There may be some Microsoft programs that it will not let you uncheck. That's OK. Uncheck as many items as possible.
6. After you are done, you must close Outlook 2007 completely and restart Outlook.