Card security

 Computer Security, Cryptography, Society  No Responses »
Jan 252011
 

The other day, I saw a report on the CBC about increasingly sophisticated methods thieves use to steal credit and bank card numbers. They showed, for instance, how a thief can easily grab a store card reader when the clerk is not looking, replacing it with a modified reader that steals card numbers and PIN codes.

That such thefts can happen in the first place, however, I attribute to the criminal negligence of the financial institutions involved. There is no question about it, when it’s important to a corporation, they certainly find ways to implement cryptographically secure methods to deny access by unauthorized equipment. Such technology has been in use by cable companies for many years already, making it very difficult to use unauthorized equipment to view cable TV. So how hard can it be to incorporate strong cryptographic authentication into bank card reader terminals, and why do banks not do it?

The other topic of the report was the use of insecure (they didn’t call it insecure but that’s what it is) RFID technology on some newer credit cards, the information from which can be stolen in a split second by a thief that just stands or sits next to you in a crowded mall. The use of such technology on supposedly “secure” new electronic credit cards is both incomprehensible and inexcusable. But, I am sure the technical consultant who recommended this technology to the banks in some bloated report full of flowery prose and multisyllable jargon received a nice paycheck.

 Posted by at 1:39 pm

Uptime

 Cats, Computers, Personal  No Responses »
Jan 252011
 

I just ran this on my main server:

$ uptime
 08:13:32 up 365 days, 19:56,  4 users,  load average: 0.07, 0.05, 0.06

Yes, this means I last rebooted this server one year and 20 hours ago. (What was I doing, rebooting at 4 in the morning?)

Mind you, it won’t run uninterrupted much longer. An updated server is waiting to take its place, so that I can then take this guy down, thoroughly clean it (removing one year’s worth of accumulated dust and cat hair) and upgrade it as well.

 Posted by at 1:17 pm

Season appropriate greeting

 Computers, Culture, Personal  No Responses »
Dec 242010
 

My Linux systems are all configured with an ages old program, fortune, giving me a “fortune cookie”, a random greeting or quotation from a database with thousands of entries, every time I log on.

This morning, I logged on to one of my Linux machines and I saw this quote from the immortal Sam Clemens, aka. Mark Twain:

“The difference between a Miracle and a Fact is exactly the difference between a mermaid and a seal.”

If I didn’t know any better, I’d be tempted to think that the computer has a twisted sense of atheist humor and chose this greeting after looking at the calendar. Not that Mr. Clemens was wrong!

Anyhow, although I am an atheist, I hope I am not twisted, so I just wish a Merry Christmas to all my family and friends, and indeed, all good people.

 Posted by at 2:37 pm

Downgrade

 Computers  No Responses »
Nov 242010
 

Adobe Corporation recently introduced the latest version of their PDF reader application, Adobe Reader X.

So I promptly downgraded my Adobe Reader 9 installation to Adobe Reader 8.

I use PDF documents very often. Apparently, the good folks at Adobe do not. Why else would they remove one of the most important productivity features, namely the ability to view several PDF files in the same application window?

Yes, I get it: for new users, it makes sense to move away from the “applications open documents” paradigm towards the “documents appear in windows” paradigm. In an ideal world, the application would be invisible; each document would exist in its own window; and we wouldn’t even care that some documents are Word files, others are PDFs, etc.

But we don’t live in an ideal world, and there are reasons to suspect that this ideal world may never come to pass. Perhaps it will. But it’s not here at present, and the fact that every PDF opens in a new window is a huge annoyance.

An annoyance that was first introduced in version 9, and is apparently being kept alive in version X. However, my patience ran out. It’s back to version 8 for me.

Oh, and I also have a license of Acrobat Pro, to produce and edit PDF files. But, it’s a license for version 6. Why? Because version 6 was the last version without DRM/Activation.

If folks from Adobe read this, well, please let me know when you have a version of Acrobat that is DRM-free and can do MDI. Then, I’ll buy. Until then, I’ll just stick to my obsolete versions.

 Posted by at 9:55 pm

X10

 Computers, Personal  No Responses »
Nov 142010
 

This, really, is just a test, to see if WordPress works on my freshly updated Xperia X10 phone, letting me post to my blog.

OK, it works. Android 2.1 is nice, well, much nicer than 1.6. At least now I can Skype or use Acrobat to view PDFs.

One thing I need to figure out is how to stop this blessed thing from replacing every word it doesn’t recognize with a silly guess (WordPress=Sorceress?)

 Posted by at 9:22 pm

Mobile in the 21st century

 Computers, Personal  No Responses »
Sep 132010
 

So here I am, posting to my blog from my new smartphone. Neat. I suppose it was time for me to join others and acquire my very own 21st century toy… I have to confess though, the touch screen is nice but it’s much easier to type on a real keyboard…

 Posted by at 9:28 pm

Life in the cloud

 Computers, Internet  No Responses »
Aug 302010
 

No, I didn’t smoke anything unhealthy. The “cloud”, in this case, does not refer to a state of mind nor, for that matter, to structures formed by condensed water vapor in the atmosphere. I am talking about the computing “cloud”, the idea that you are using the Internet to access computing resources, the physical location of which is irrelevant.

This past weekend, I decided to set up a virtual server in the “cloud”. I am amazed how cheaply it can be done nowadays. And one day, it may help me migrate away from a home office based server to one that I no longer have to maintain myself. That’s the long-term plan anyway. For now, I am taking the first tentative steps as I am exploring my brand new server and test its robustness and reliability.

 Posted by at 11:21 pm

Missing, presumed dead: MDI mode in Acrobat

 Computers  No Responses »
Jul 012010
 

In recent years, one of the most welcome feature in Web browsers was tabbed browsing. Implementing in effect what Microsoft calls MDI (Multiple Document Interface), it helped reduce screen clutter while viewing multiple Web pages.

Meanwhile, Microsoft made a (valid) observation that MDI is application-centric, and for new users, not intuitive; the idea is that each document should live in its own window, regardless of which application is used to render or edit it.

Fortunately, even Microsoft were wise enough to recognize that for many (especially professional) users, who keep multiple documents open, SDI (Single Document Interface) is not always the best choice. On the contrary, MDI allows one to work significantly more efficiently when keeping a large number of documents open. Therefore, Office 2010 continues to support MDI mode (thankfully), although not near as elegantly as a Web browser, with visible tabs.

Enter Adobe. They also chose to follow in Microsoft’s footsteps. Unfortunately, in their infinite wisdom they also chose to take a step further: they not only made SDI mode the preferred mode, they removed MDI mode altogether. They offered the lamest excuses: 1. that’s not how it’s done on the Mac, 2. MDI mode was already considered deprecated in version 8, 3. Microsoft told us to do it, 4. it’s more work, and 5. it’s more costly to test.

Thankfully, Acrobat’s product manager came to his senses after receiving overwhelmingly negative feedback. He closed the discussion by referring to the proverbial dead horse.

Except that news of the horse’s death might have been slightly exaggerated. The discussion in question took place in October 2008. I cannot help but notice that my calendar says July 2010, yet Acrobat 9 is still the latest version, still sorely missing an MDI mode.

 Posted by at 9:00 pm

If you don’t know the answer, shut the … up!

 Computers, Internet  No Responses »
Jun 072010
 

To all the smartalecs on support forums out there: what the hell is wrong with you? If I ask someone with a map about the route from town A to B, I expect them to tell me directions, not question my sanity for wanting to drive to town B in the first place. Similarly, if someone posts a question in the form of, say, “I have device A giving error message B under operating system C, how do I solve this problem?”, the one thing they are absolutely, positively NOT interested in is lectures such as “Why would you be using device A?” or “What kind of a moron still uses operating system C?” and the like. If you don’t know the answer, can’t you just shut up and not pollute Google searches with your asinine remarks?

For instance, today I was trying to use a floppy disk. (Yes, people still need floppy disks sometimes. Not because they live in the stone age, but because they may be using a floppy to update a motherboard BIOS, for instance.) I ran into a problem. I searched Google, and found a support forum where a similar problem was discussed. There were a few helpful answers. But then, look at this little exchange:

>>> The other thing is - why do you need it?
<<< I need the floppy to run the Western Digital program to test
<<< the drive [...]
>>> If you're getting lots of bad sectors, then the drive has
>>> problems and you should be getting it replaced under warranty
>>> warranty, not attempting to 'fix' it. [...]
<<< yes, but the thing with western digital is before you can send
<<< the drive back you need an error code [...]
>>> But what error code could possibly be worse than a bad sector?
>>> Tell them the "error code" is  xxxxxxxxxxxx bad sectors!

How bloody helpful. This really told the guy how to fix the floppy disk problem that he was seeking help for.

 Posted by at 4:28 pm

From the department of pointless UI options

 Computers  1 Response »
Jun 012010
 

The other day, I updated the Java VM on this machine, and as part of the process, I uninstalled the previous version. During the uninstallation process, I was presented with the following dialog:

I’m not sure what purpose the checkbox in this dialog serves. By checking it, do I suppress the confirmation dialog for all future uninstallations? That doesn’t sound smart. But what is the alternative? A checkbox that serves no purpose other than helping me avoid having to click the mouse one extra time just in case I happen to reinstall, and then uninstall, the 6.19 version of the Java VM?

 Posted by at 5:27 pm

Matrotabulicide?

 Computers  1 Response »
May 292010
 

If killing a motherboard was a criminal act, I guess it’d have a fancy Latin name, too, like matrotabulicide or something.

Fortunately, it is not criminal to murder a computer motherboard just yet, at least not if it is one that you own. Today, sadly, I managed to accomplish just this, prematurely ending the life of a computer I only recently put together for my wife. No, it was not first-degree murder, more like man-, or rather, motherboardslaughter: I did not set out to do damage, on the contrary, I was hoping to get rid of an annoying little problem (no keyboard after the system came back from hibernation) by upgrading its BIOS.

The consequences of the attempt are, sadly, known to many: after the BIOS upgrade program happily reported success and attempted a reboot (I did everything by the book, and there were no signs of any trouble), the system became completely non-responsive, suggesting a failure of the BIOS boot sequence.

Now usually, there are ways to recover from a failed BIOS upgrade. Many BIOSes recognize a corrupt image and drop into an emergency boot flash mode that allows recovery from, for instance, a floppy disk. I’ve done this before, more than once. However, in this case the process did not work: even when I manually “forced” a boot into the boot flash mode by shorting some of the BIOS pins, it just stubbornly refused to attempt to read anything from a floppy, the hard drive, or a CD-ROM. I even tried booting using a POST diagnostic card, but I became none the wiser.

So that’s it. It is time to move on. It wasn’t a new motherboard, but it still had plenty of useful life left in it, so I am sad to see it go. But investing further effort into it is just pointless. I could order an identical motherboard off eBay for about $80 total, including shipping from China, but why would I want to spend that kind of money on 7-year old technology, when I can buy a decent current motherboard, dual-core CPU, and 2GB memory for less than three times that amount?

The said thing is that it means not only junking this motherboard, but also the accompanying Socket 754 single-core CPU and 1 GB DDR memory, as I have no other Socket 754 or DDR motherboards. I hate contributing to the world’s landfills. I wonder just how much otherwise still flawless electronics ends up in those landfills because of BIOS failures?

 Posted by at 11:47 pm

That dreaded PDF non-vulnerability

 Computer Security, Internet  No Responses »
May 162010
 

Recently, news have been circulating about a new form of phishing attack that doesn’t rely on some unpatched vulnerability; rather, it uses a legitimate feature of Adobe Acrobat to hijack users’ computers.

Sophos Labs offer a detailed description of how it works. (Basically, it’s the ability of Acrobat to open non-PDF attachments that is abused, tricking a user into running an executable program.) They also offer advice on how to disable this feature. I think it’s a darn good idea to follow their suggestion: most of us never deal with PDF documents containing non-PDF attachments anyhow.

 Posted by at 2:21 am

Not a virus

 Computers  No Responses »
May 022010
 

It was not a virus after all. I have no idea what made my old workstation unstable, but after a monster 30-hour scan of its hard drives, all I found was 4 potential threats, none of which was an actual infection. One was a malicious Java applet that never had a chance to do harm because it relied on an old version of the JVM, and I tend to keep my software up-to-date. Another was a 20-year old joke program, pretending to hijack an unsuspecting victim’s computer, which for some reason Microsoft Security Essentials marked as a threat. The third was the user registration program in an old Iomega installation kit, whereas the fourth was the remote control software VNC, which can be harmful if someone puts it on your computer without your knowledge, but that wasn’t the case here.

So then, what was it? My guess is ailing hardware, perhaps the video card. But… it no longer really matters anymore. I’ve done the deed, swapped computers, and successfully set up my new quad-core system to work with essentially all of my peripheral hardware (no mean feat, considering that peripheral hardware, in this case, includes instruments like spectrum analyzers connected via GPIB.)

Now, I can actually get back to work…

 Posted by at 12:23 am

Computer woes and a FORTRAN joke

 Computers  2 Responses »
Apr 292010
 

I’ve been having computer trouble. My main (but soon-to-be backup) computer has been acting up lately. Since I fixed the broken heatsink, it crashed several times. Is it aging hardware? Is it a virus? An instability due to a recent update? Or perhaps, possibly, the result of the fact that most recently, I plugged the network into the gigabit Ethernet interface, as opposed to the 100Base-T one? (This motherboard has two network connectors.) I know for a fact that the gigabit Ethernet interface used to cause problems, but I thought that was fixed by driver updates ages ago. Perhaps not.

Anyhow, since I swapped the network cable, the system has been stable for days. Today, its video driver crashed, but that’s not new: the complicated driver set of my ATI All-In-Wonder card (combination high-end graphics and TV tuner card; well, whatever passed for high-end in 2005, that is) was never 100% stable, but it is stable enough for reasonably reliable use. Today’s crash, too, was recoverable: I was able to Remote Desktop into the machine from another computer. So… I still don’t know what has been causing the real crashes in recent weeks.

Anyhow, after restarting the system, I logged back onto my Linux server from it, and I was presented with the usual UNIX login fortune cookies. Including one I never saw before, and one that only those can truly appreciate who used to program in FORTRAN and are familiar with implicitly declared variables and the default implicit declaration rules:

“God is real, unless declared integer.”

 Posted by at 12:33 pm

One lousy plastic bit

 Computers  1 Response »
Apr 032010
 

One lousy plastic bit. That’s all that was needed to take out my main workstation while I was in Hungary.

Fortunately, it did not interfere with my ability to access my data, as I was set up with a backup workstation that I could access using Remote Desktop while traveling. But still, it was most annoying when my wife called and asked if it was me that was messing with that computer, as it was at first making some strange noises, and then went dark.

The plastic bit in question was one of the bits to which the CPU heat sink is latched. It broke. The heat sink didn’t quite fall off, but as it was no longer pushed securely against the CPU, the CPU overheated and shut down. (A good thing, too. Some older generation CPUs failed to shut down under such circumstances and instead, burned a nice black hole in the middle of the motherboard.)

Grumble, I am old enough to remember when TVs had tubes and the repairman was a regular visitor. Back then, solid state electronics held a promise: it was supposed to last forever. But that’s because nobody at the time foresaw all the innovative ways modern computers have come up with to die at the most inopportune moments. What worries me is that the same thing, a computer disabled because of one lousy plastic bit, can happen anytime anywhere… even if said computer, say, is the one running the fly-by-wire system of a modern jetliner or controls the X-ray dose you receive in a medical device.

Of course those systems are redundant. But so was mine… I did have that backup workstation, after all. Nonetheless… I wish these things were a tad more reliable.

 Posted by at 11:41 pm

Why I don’t buy computer games anymore

 Computers, Intellectual Property, Internet  No Responses »
Mar 142010
 

Like any good geek, I like computer games. I’m not obsessed by them (the image of Comic Book Guy from The Simpsons serves as a powerful deterrent) but I do enjoy the occasional play. And I certainly have the disposable income to buy a new title when it comes out.

Except that I haven’t bought a new game in years. Ubisoft’s official explanation about their “always on” digital rights management system is a good example why. A company that needs to know every time I am playing, a game that kicks me out of my Internet connection drops momentarily… why would I want to pay good money for that? Come to think of it, why would I even want something like that for free on my computer?

The answer is, I don’t.

I have no statistics to prove it, but I think  DRM does far more harm than good. It may (or may not) deter piracy. On the other hand, I bet that the number of customers alienated and put off by DRM far exceeds the number of those who suddenly see the light and, as a result of DRM, start paying for stuff they previously stole. So the net result may very well be a decrease in sales.

Perhaps one of these days, software, especially game software companies will come to their senses again and realize this. Until then, I’ll just enjoy the occasional shootout with some heavily pixelated aliens in Duke Nukem.

 Posted by at 3:44 pm
 Older Entries  Newer Entries