simonb.com: a 35mm comedic short about a man

Flip4Mac have released Windows Media components for QuickTime. This as MS announces the end of support for Windows Media Player on the Mac (an oxymoron if there ever was one). Given the plugin extensible architecture of QuickTime this is how it should have been done from the beginning.

One more thing...Steve Jobs gives a good keynote and now thanks to The Joy of Technology you can see how its done.

Generate your very own meaningless mission statement via Dilbert. Put this together with Web Two Point Oh and you’ve got a business plan. Start looking in the Yellow Pages for VCs now.

Guy Kawasaki on the Top Ten VCisms

A font walks in to a bar: The barman says, “Sorry, we don’t serve your type here.” <cymbal crash>

Web Two Point Oh Fantastic little app to generate a company name and product description for “Web 2.0” ventures. Take it to your favorite idiot VC.

Some guy - a foreigner who should know better - is ripping off my blog entries! Jeez. I’m not going to link to him here. His entry on domain scams is almost a carbon copy of mine. Click on the image to see the proof. Here’s the original

Retrievr A cool flash app that searches Flickr for matches to a user’s sketch. Find by sketch.

There are some useful Airport tools available from Apple that you may not know about. I’ve no idea why these are not included as standard with Airport products. Anyway, they are called the Client Monitor and the Management Utility. The Client Monitor shows a graph of signal to noise and data rate for your wireless signal. This tool could be useful if you are trying out antenna positions. The Management Utility gives an overview of all Airports within range and shows the settings and activity log as a list. This is useful if you are administrating many Airports. Available from the Airport Support page - listed as “Airport Management Tools”

Snakes and Rubies Chicago, 3 Dec. 2005: The creators of Django and Rails each gave talks and discussed web frameworks. Download the video and audio here

Security Now Notes on WMF Exploit There is a “feature” in the Windows WMF format that allows the execution of arbitary code. It has been there since the beginning (at least 10 years) but only now is coming to light. It is extremely likely that exploitation of this hole will grow. It is also likely that this hole has been used in the past but has not been publicised. A patch is available now from MS Windows Update. Patch your system, update your virus and spyware scanners.

Google’s 2005 Zeitgeist Guess the most popular news search in 2005. It’s not what you think.

In the past two months we’ve had two phone calls from Chinese ISP and domain registrars telling us that some one wants to register a domain name that corresponds to or sounds like our company name in Chinese. They tell us that if we don’t agree we can stop this by paying them RMB 13,000. Yeah right! This is one big con. And it is not just some small operator - we’re getting calls from the major network backbone operators. They explain all this to my secretary (who knows nothing about DNS of course) and make it sounds like we must do something about it. Incredible. Thirteen thousand rumbas!

I don’t think there is anyone wanting to register a domain. I think they’re just going through the phone book making this up as they go along. Anyhoo, domains don’t have the value that they used to thanks to Google, Del.icio.us etc.

Just before Christmas we stayed in a very nice hotel with very little clue about what is going on with their network. To cut down on the support calls to their “IT Butler” they, via their network service provider, had re-directed all SMTP port 25 traffic to the service provider’s open relay SMTP server.

I discovered this because Thunderbird was giving me pop-up errors about failure to authenticate. I run my own secure mail server so I spent about an hour logged in via ssh testing the various email functionality. All seemed to be fine. Strange, still getting authentication errors. So then I tried telneting to port 25 on my server via the hotel network. Aha! That’s not my server.

After I picked myself up off the floor. A feeling of dread came over me. Dread because I knew I was going to have to explain what was happening to someone who has no clue. Namely the dreaded IT Support. So I call the “IT Help Desk”:

Them: IT help desk. How can we help?
Me: Your network is re-directing SMTP traffic.
Them: What?
Me: Email is not working.
Them: Your email software must be setup wrong. What computer are you using?
Me: A Mac.
Them: Oh, a Mac…
Me: My setting are right. It’s your network that is wrong.
Them: We’re sending someone to your room to check your settings.
Me: Please send someone who knows about networks.
Them: Of course sir.

I get a phone call five minutes later. “Sir, this is IT support you have the do not disturb sign on your door. I didn’t want to knock and disturb you.” It’s a really great hotel. Anyway the “expert” arrives. You know you’re getting old when the IT support people start looking like they’re on school vacation. He’s got a PC under his arm.

Him: What seems to be the problem?
Me: Your network is re-directing SMTP traffic.
Him: Eh?
Me: Look here if I telnet…
Him: You need to set up a SMTP server.
Me: I have an SMTP server set. It’s not connecting. It’s re-directing.
Him: What software are you using?
Me: Thunderbird.
Him: Oh, Thunderbird on a Mac…

Half an hour later and one tutorial on networks later he finally gets the idea of re-direction. Of course, he can’t do anything because they buy this service from a local ISP. But he can call the ISP support people. Eventually I convince him to let me talk to the ISP directly.

Me: You’re re-directing SMTP traffic.
ISP: Yes we are.
Me: Why?
ISP: Too many people called IT Support with problems sending email.
Me: Please turn it off.
ISP: OK.

Grrr. OK so now I can send email. This is all happening in the early hours of the morning. When I wake up they’ve turned re-direction back on. I call they turn it off. We go out for the day. When we get back they’ve turned it back on… This goes on every day of our stay.

I wrote a letter to the hotel management explaining what’s happening with their network. The management, of course, had no idea what was going on. But they’ve discussed with the IT department and they assure them that this is the best solution to their guests email problems. The IT department is obviously work shy.

There are so many things wrong with this practice…

There was no warning: to get on to the network you have to agree to pay and to something like a EULA. There was no: “Oh, by the way, we’re going to re-direct all your email somewhere...”

It defeats the purpose of having support: this moves the support calls away from those that need support to those that do not. Frustrating both groups.

It is a security risk: you think your email it heading somewhere but in fact the ISP has it on their servers. Which you have no idea about in security (or any) terms. This alone surely has legal/liability implications for the hotel since guests are blind to what is happening.

The ISPs server was an open relay. Great for spammers.

It turns out that most of the calls to IT support in the hotel are from people unable to send email. That is, they brought their laptop from home or from the office and it doesn’t work. So that means that they can’t access the SMTP server that is configured in their email client. Why would that be? Either it is a business server not accessible from outside the corporate network - in which case this is correct behaviour and you need to use the corporate VPN. Or their home ISP does some IP address verification or something that refuses connection from their remote hotel IP. Of course, if the ISP used proper authentication (it’s not hard folks) they could stop the IP verification.

The answer to this problem (and many others) is to isolate yourself from the hosting network with a VPN.

Another tip: take an Airport Express with you when you travel. It has built-in NAT giving you peace of mind. And it is wireless so you can work lying on the bed rather than sitting at the poorly designed uncomfortable desk/chair combination that inhabits every hotel room.

A week later I get an email from the hotel MD telling me that the above practice has been stopped.

Be wowed by the horror of Microsoft programmers designing web pages in 1994 - the Deathstar - a friendly face to customers. useit