Rants and Raves

First, malware is a reality and no operating system is immune to it.

Malware is most common on operating systems that are prevalent (no reason to target 1% of the installed base now is there); so an obscure operating system is far less likely to be the target of malware.

Malware is most common on popular operating systems that generally do not require elevation of privileges to install (OS-X, *nix, Vista, and Server 2008 all require that a user elevate their privileges before installing software, even if they have rights to administer the machine).

The reality is that even a seasoned computer professional can be “tricked” into installing malware; and the only safe computer is a computer that’s disconnected from the rest the world and doesn’t have any way to get new software onto it (that would probably be a fairly useless computer).

Beyond exercising common sense, just not installing software you don’t need or are unsure of (remember, you can install and test software in a virtual machine using UNDO disks before you commit it to a real machine), and using a hardware “firewall” (residential gateway devices should be fine as long as you change the default password, disable WAN administration, and use WPA or WPA2 on your wireless network) between you and your high-speed internet connection; using anti-malware software is your best line of defense.

There are a lot of choices out there, but one of the best you’ll find is Avast! — there’s a free edition for non-commercial use, and of course several commercial version for workstations and servers.

My experience is that on all but the slowest computers Avast! performs well, and catches more malware than most any of the big-name commercial solutions.

For slower computers that you need mal-ware protection for, consider AVG (they also have a free version for non-commercial use); I don’t find it quite as good as Avast! at stopping as wide a range of threats, but it’s much lower on resource demands (and that helps to keep your legacy machine usable).

• Avast!
• AVG
• ClamWin

Tags: Computers, Email, Linux, Mac, Technology, Windows by roger
No Comments »

One of the things that the internet allows almost everyone is the ability to express their opinion in a venue that others can “hear”.

Just do an internet search on almost anything you can think of… you’ll find reviews, comments, rants, and sometimes raves!

While you rarely know anything about the individual who wrote the posting, from a well thought out post you can gather some important questions to get the answers to before making a decision, so as a tool for an informed consumer the internet can be invaluable not only in locating the “best” prices, but also in finding the “best” products and “best” vendors!

It only takes a little effort to learn a great deal about any good or service you’re considering — it’s totally up to you whether you make an informed decision or just wing it.

Tags: Blogging, Communications, Email, General, Shit List, Technology by roger
No Comments »

I purchased a MSI Wind U100 a couple weeks ago for an “on-the-go” computer.

At $299 plus $99 for a 2.5″ SATA2 500GB Seagate hard drive and $15 for an additional 1GB of DDR2 it’s a fairly economical solution to use to browse the web on the go, send/receive email, mapping, GPS, music and videos, contacts, date book, etc.

I looked at all the options, but I choose this one because I wanted 2GB of memory (most of them come with only 512MB built in so you can only have 1.5GB total and a couple only allow 1GB total).

The Atom N270 processor is by no means a top performer, but it does a fairly good job and mine is running Vista Home Premium with no issues at all (it ships with Windows XP Home).

The only thing I dislike about it is the fact that the keyboard is so small; but if you want a small notebook you’re going to have to live with a small keyboard!

No one computer is right for everyone, so you’ll have to decide what’s right for your particular needs, what your intended use is, and your budget.  There are actually models of netbooks you can purchase with an AT&T wireless modem installed for $99 (of course you have a two year contract your saddled with).

Bigger than a PDA, but far more flexible!

Tags: Communications, Computers, Email, GPS, Hardware, Technology, Windows by roger
No Comments »

DEAs = Disposable EMail Addresses; they’re useful for you to provide to a vendor so that you can track the use of the email address and delete it if you find it’s abused or chose to no long do business with whom you gave it to.

Just like Virtual Credit Card numbers give you control over payment to merchants, Disposable EMail Addresses give you control over your inbox.

It’s a great way to fight SPAM and identify SPAMmers.

If you don’t happen to own your own domain were you can create “forwarding” addresses, there are a number of web sites that provide you with the ability to create and manage DEAs — just do an internet search.  If you can’t find one, let me know and I’ll give you some pointers.

Tags: Communications, Email, Technology by roger
No Comments »

Well, at the moment that appears to be the case.

I got an email on Thanksgiving with the subject:

The Wall Street Journal. $1.99/wk. Get the REAL Bailout news…

From what appear to be a professional SPAMmer (chargecarde.com) — and I say professional SPAMmer since the return address in the email was set to my own email address, not theirs.  My SPAM filters caught the email, but I go through the SPAM on occasion just to see what unethical businesses would resort to such tactics during hard economic times.  After all, big business never really cares about the consumer or the law — they only care about what makes them money and what they can get away with.

The laws of the State of California make sending unsolicited commercial email (aka SPAM) illegal — and of course theft of service (you pay for your internet service) is illegal in every state.

As I said almost twenty years ago when the SPAM epidemic was on the rise; we must fight back, we cannot support SPAMmers or those who support SPAMmers.

Take a minute out of your day, and from a “throw away email address” write The Wall Street Journal and let them know how you feel about SPAMming and SPAMmers — here’s some email addresses for you (normally I wouldn’t include mailto links, but I have no issue with SPAMmers getting their email addresses harvested by SPAMbots).

• Ashley Huston, US Corporate Comunications <ashley.huston@dowjones.com>
• Daniel Bernard, General Manager, The Wall Street Journal Online <d.bernard@wsj.com>
• Lynne K. Brennen, Vice President, Circulation Marketing <l.brennen@wsj.com>
• Kristie Sells, Executive Director, Customer Operations <k.sells@wsj.com>
• Brian Quinn, Vice President, Advertising Sales and Marketing <brian.quinn@wsj.com>
• Alan Murray, Executive Editor <a.murray@wsj.com>
• Almar Latour, Managing Editor <a.latour@wsj.com>
• Dave Pettit, Deputy Managing Editor <dave.pettit@wsj.com>
• Kevin Delaney, Deputy Managing Editor <kevin.delaney@dowjones.com>
• Darren McDermott, Senior Editor <darren.mcdermott@wsj.com>

And make sure you avoid doing business with:

wsj.com
The Wall Street Journal
4300 Route 1 North
South Brunswick, NJ 08852

or

ChargeCarde.com
SPUR Media Group
PO Box 99
Fortson, GA  31808

I will share any and all responses I get from The Wall Street Journal, SPUR Media Group, or any agent representing either; and will continue to consider legal action to recover damages under California Business and Professions Code Section 17538.45 and potentially Chapter 19 of the Revised Code of WA, RCW 19.190 (since I also have a legal presence there).

NOTE:  It’s been over a week since I contacted The Wall Street Journal about the email I received on their behalf; I’ve yet to get a reply, so it would appear that The Wall Street Journal intended that the email be sent and understand that they violated the law.  So in fact the Wall Street Journal is a SPAMmer.

Tags: ALERTS, Email by roger
No Comments »

If you’re interested in running a fairly full featured mail server on Windows, take a look at hMailServer — it’s completely free and through version 4 Open Source.

I have a patch to V4.4.2-B279 and V4.4.2-B283 that allows you to set the directory separator for IMAP folders (by default it will use “.” — and for many people that’s not a good choice).

To get it working:

• Download the source.
• Download the patch.
• Un-archive the patch
• Apply the patch (easy to do with SVN)
• Setup a build environment (Microsoft VS2005, Microsoft VB6, Inno Setup v5, CollabNet SVN [optional]).
• Run the build tool (you may need to make some changes to it’s configuration).
• Install the resulting package.
• Edit the INI file and change the FolderSeparator to “/” or “\” (I would not advise using other characters)
• Restart the service.

It only took me a couple hours to modify and test the code; other than installing the environment to build it (and I recommend you do that on a virtual machine since these are older tools) it should take you substantially less time.

Some notes:

• The changes to the build configuration are not necessary; you will need to make the appropriate changes for your build environment so I would say don’t apply them.
• The changes to the HIS_DBWrappers is because you do not need to (and in many cases it will fail) register the built DLL on your build machine; it will be packaged in the install file and registered on installation (you would only need it registered if you wanted to debug, and I recommend building, installing, and then attaching to the running process so you need not worry about configuration issues if you want to debug).
• This is Open Source software, and it’s not MY software — I don’t make any claims about it or warrant it in any way.  It’s your responsibility to test it.  While I’m certainly interested in anything you find, I’m in no way responsible.

I have a couple more modifications I’m considering (both of which will require much more work):

• Changing the way folders and sub-folders are stored so that the folders appear in the file system in directories that match the folder names (and removing the limits on depth and number).
• Potentially adding a ’search’ feature that’s integrated with WDS to quickly find messages.  Since IMAP will only search within a folder, I’m thinking about adding a special folder called “Search” and any folder created in it will actually be the search term and the results displayed will be dynamic based on WDS output. 

In case you’re wondering, I don’t really care about hMailServer as an end-point mail server; I care about to manage my IMAP message store.  I have nearly 40GB of mail, nearly 50,000 folders, and WAY too many messages store on a server with 16 spindles in a RAID5 configuration.  So my “interest” doesn’t align closely with most users.

This is only the patch file; you must download the source from here.

These are patches produced from the specific versions listed, but they can (most likely) be applied to any v4.4.2 build fairly recent).

• FolderSeparatorPatch (V4.4.2-B279)
• FolderSeparatorPatch (V4.4.2-B283)

Tags: Communications, Email, Software, Technology by roger
No Comments »

Each and every time you encounter someone trying to defraud you make sure you report it.

Phishing scams, money scams, premium SMS message, suspicious phone calls, un-authorized phone charges, un-authorized credit card charges, etc — go ahead and visit the IC3 (Internet Crime Complaint Center; a partnership between the Federal Bureau of Investigation [FBI], the National White Collar Crime Center [NW3C], and the Bureau of Justice Assistance [BJA]) and file a report.

Take action and let the law enforcement community decide what’s a threat and what’s not - but DO NOT remain silent or these problems will continue.

http://www.ic3.gov/

NOTE:  If you have an un-authorized charge on any of your bills you will also want to contact your billing company and dispute the charge with them; the IC3 will not do this for you.

Tags: ALERTS, Cellular, Communications, Email, Finance, General, Legal, Shipping, Shopping, Technology by roger
No Comments »

For some time now I’ve wanted an efficient way to be able to send myself rich email without having to waste a lot of bandwidth; so I wrote what I call a “null” SMTP server.

It’s a dotNET application (written in C#) that sits in the System Tray and “talks” SMTP.

You point your mail client’s outbound SMTP to localhost (127.0.0.1), it say “OK” to just about everything, and throws away the message (well — internally I have a logging method, but right now I don’t expose that)… doesn’t sound really useful does it?

How do I use it?

Easy; I setup an IMAP account that uses this as the send path, and the IMAP server as the receive path — Windows Mail (or Live Mail) will send the message (which throws it away basically) and then upload a copy to my “sent” folder.  I cut down on my bandwidth (and time) and still get a copy of the email I wanted.  In case you’re wondering, I use email to “record” lots of information (contents of web pages; to do list items; etc — since my IMAP server stores the messages in a format that Windows Desktop Search can index it makes it a snap for me to manage large amounts of information — and it by it’s very nature is shared… yes I could use OneNote, but previous to 2007 it’s clunky and it doesn’t share the information without a SharePoint server — and I already have an IMAP server, and already archive some of my email).

Here’s a link to the installer for it; I haven’t heavily tested either the installer or the applet — but I’m using it.

Null SMTP Server Installer

Remember to set your outbound SMTP connection to localhost (127.0.0.1); you don’t want authentication or SSL / TLS (I don’t support them — and won’t).

Tags: Communications, Computers, Email, Software, Technology, Windows by roger
No Comments »

Ever go to a web site to enter your email address and find that it wouldn’t fit in the field they provided?

It’s amazing in a world of standards that companies (and individuals) continually ignore them and decide for themselves what’s acceptable.

HELLO!

User names (or local part of the address) can be 64 characters long, and domain names can be 255 characters long.

Here is an example of a reasonable well written validation for email addresses — if you want to see poorly done ones in action it doesn’t take too much effort to find ones that limit the entire email address to less than 30 characters!

<?php function isValidAddress( $email, $check = false )
{
##############################
# PHP Email Address Validator
# (C) Derrick Pallas
#
# Authors: Derrick Pallas
# Website: http://derrick.pallas.us/email-validator/
# License: Academic Free License 2.1
# Version: 2006-12-01a
if (!ereg(”
. ‘^’
. ‘[-!#$%&\'*+/0-9=?A-Z^_a-z{|}~]‘
. ‘(\\.?[-!#$%&\'*+/0-9=?A-Z^_a-z{|}~])*’
. ‘@’
. ‘[a-zA-Z](-?[a-zA-Z0-9])*’
. ‘(\\.[a-zA-Z](-?[a-zA-Z0-9])*)+’
. ‘$’
, $email
) ) return false;
list( $local, $domain ) = split( “@”, $email, 2 );
if ( strlen($local) > 64 || strlen($domain) > 255 ) return false;
if ( $check && !gethostbynamel( $domain ) ) return false;
return true;
# END
######
}

RFC822 superseded by RFC2822.

User names (for email) may contain:

• A to Z letters, upper and lower case.
• 0 through 9 digits
• . (fullstop, period) but not as the first or last character
• ! # $ % & ‘ * + - / = ? ^ _ ` { | } ~ - all are permitted.

The maximum length of the user is 64 characters; the domain is 255 characters; so with the @ a valid address could be up to 320 characters.

Further, did you know that user names are case sensitive (but domain names are not).  Of course many email systems treat user names as case insensitive.

For information on domain name limitation you should see IANA.

Now you know more than most developers who write code that accepts or uses email addresses!

Tags: Communications, Email, Technology by roger
No Comments »

If you have your own domain and you really don’t need web hosting you might want to consider hosted email servers from Microsoft or Google.

Both of them provide free hosted email services; limited to 500 accounts (which can actually be increased — but for free hosted email that’s probably fine).

I generally recommend that you consider just getting a hosting package that gives you a free domains, web space, and email — often on the order of $1.99 per month.

Microsoft Live Hosted Email (Free):  http://domains.live.com/

Goolge GMail Hosted Email (Free):  http://www.google.com/a/

Tags: Communications, Email, Technology by roger
No Comments »