The Technology blog and podcast
This is for the technology blog and podcast Commentary, articles, and podcasts
OK folks, podcast 254 is talking about my thoughts and others in regards to the AI Squared debacle. I’m careful on how I present this, and remember that we have a comprehensive post on this blog about it. Here are the show notes, which includes that blog post again. It also links to a page which has been updated with software versions as it becomes available.
Hi folks, welcome to the podcast. On this podcast, I give my thoughts, and I also have a segment on this and other info in regards to Urgent issue with AI squared access technology which links to a page on AI squareds site which is providing updates. Thanks for listening, and stay tuned to this cast for a whole lot more. Running time is 46 minutes.
To get your copy, please go to our RSS feed.
Thanks for listening, and make it a great day.
How are you? I think this article entitled What can people expect from cybercriminals in 2017? It varies is a great article to read from Trend Micro. It is very eye opening, and who knows, maybe some of these things are true and will continue to be true.
- Do you think Ransomware will be so big that we can’t fight it?
- Phishing attacks, same old tricks, human element being a problem?
- Attachments and links still being prevelant?
- Mobile being more of a threat since we can bring them in to the workplace?
I’d read this article, and I’d make my own opinion on what you think. Please read the article before you write, lets discuss your thoughts.
Look at this article
In this article microsoft after nagging, loading spyware on our systems and making us update to 10 is now trying to weedle itself out of supporting another xp or vista so now says windows 7 is not safe anymore even with the security patches.
My responce, if windows 10 is so safe, then why are you updating it, what about you shut down your fucking windows update servers and never update it again.
What about if you get rid of the defender and the firewall app, delete all the extras and see how secure windows 10 really is.
And as for it being out of date for all that old tech then you must live in the future where people can afford the shiny new gaming boxes of the fucking future.
Guess what microsoft its not like that at all.
A lot of us have old hardware, and while the shiny new boxes may be 10 only a lot of us have the older boxes.
In fact lets take it a bit further, if your system is going as fast as it needs to be why even bother updating os at all or system unless it dies.
The 4th generation i7 units or i5 quads are fine and duelcores still exist.
Ssds exist and so do hard drives.
1.2gb internal video cards are standard now.
Not everyone will use that new holographic dodad, or that expensive processer.
I hardly use ie or edge, I have msse and malware bytes, I use firefox a lot of us here use chrome.
If your system is so secure then why don’t you put your money where your mouth is and try to see how long it would last.
What about if you tested it.
Why don’t you just put the standard non flasy windows7 interface back over the mangled one in its place.
We that use 7 use it because it works and will continue to work, we don’t want ms accounts, business apps, or universal anything, some of us don’t even game, with xp I can understand but you fucked up 8 and now you want to cover yourself.
You gave us 3 years till we have to start hacking windows and probably loading a lot of ransomware and other junk to fix what you basically have broken in the interface.
I still havn’t gotten used to the ribbon in 10.
The start menu sort of works to a point I won’t be loading classic shell, the updates work, the extras and history are nice, but you broke language switching and according to insider stuff you have broken other things to.
In win7 nothing is broken.
Microsoft you can just go and fuck yourself and take your crappy windows 10 vista thing with you and give us xp back!
To the rest of you, while I don’t usually downgrade myself I am still a 7 user, the only reason I will ever upgrade is if I need to or my system breaks.
Sadly for microsoft the only reason I’d go is if 32 bit software goes or if I get a shiny new pc and or a licenced windows 7 when one is not available or something that spacifficly needs 10 or something.
I can tell you now that we have up to 4th and 5th gen cpus before we have to really think of using the new 7th generation and normal users won’t be doing that.
We won’t need 3+gb video cards, we will still use old tech like hdds, we will still use modems.
Sadly, microsoft is full of security holes, I see so many remote elevation issues that I don’t even report them.
ie and edge are getting security updates because they are holy as fuck.
Your only saving grace is you at least try to add fixes to 10 as you go.
Ie I can plug my external drives into my win10 unit now and run programs from them without making an extra step.
Win10 is just 1 os and every so often you upgrade that os but its not enough.
I know friends that can’t afford updates they still use xp, which sadly is still a good os I have to say how shitty xp has always been because you don’t support it and don’
‘t think about the small guys.
You and others like you are why people pirate stuff just so they can have what they want when they want.
I suggest you go and test your os and see how secure it is.
Either that or shove your head back in the sand from where it came from!\
For me myself with no prospect of any actual future, and no prospect of the world moving with me, I have found a nice ariea of sand to burry my head in.
And I’d appreciate not being told to get out and play in a world I have no belonging in at all
For those that think I am bonkas look at my security postings.
Look at all of them and look at all the remote control elevation of privilage, and information leaks that I just leave out.
Every month its the web, windows fonts and graphics and kernal.
Every month its office, dotnet and windows.
Every month its the same fucking updates from xp to 10 and onward.
windows 10 is not more secure, bar an interface change its still the same os, the same fucking os!\
Every month you release the same god damn good for nothing fucking updates.
Most of these are to stop users clicking links to viruses and stuff.
you aren’t improving the os you are wasting download bandwidth.
Every so often you fuck up the os more and more, so just go into your hole and stay there.
On a side note, I really think that some of these people have no lives.
Ms is panicking because win10 is not up to scratch they have even admitted and they don’t want another xp or vista.
Who’s fault is that?
Not the fucking users is all I need to say.
In fact ms ows us the users for basically fucking us over with the win10 free upgrade we neither wanted or needed.
I am happy for those that have it and have used it including some in here and find it good.
But if you are a standard computer user with 1 device or 1 or 2 devices but one of them is not windows, you will not appreciate this at all.
I for example will never get a windows mobile device.
Hello fellow passengers. Welcome to college accademics, and today, you need to at least read this PSA entitled E MPLOYMENT SCAM TARGETING COLLEGE STUDENTS REMAINS PREVALENT IC3 January 18, 2017
because while it was covered in 2014, I feel that as the new year turns and tracks along, this will be more prevelant as you are traversing the job market. I am, but yet I don’t use my college account as I did take a class. I’m suspicious of quite a bit of things, and I know that a job is not to ask for money from you. They don’t provide money to you to supply yourself equipment, they supply you with the equipment. Please take this read while you’re traversing this flight today, and do stay safe.
Comments Off on EMPLOYMENT SCAM TARGETING COLLEGE STUDENTS REMAINS PREVALENT
Thanks to Shaun, he tipped me off to this. The following is text sent from a word document sent to me after I enquired to AI’s window-eyes division. If you use any of these products, its important that you read this, and upgrade your product to the latest version.
Beginning of text from AI squared
January 16, 2017: Urgent Notification
Forthcoming Startup Failures in ZoomText 10.1 and other Ai Squared Software Products
The digital certificate used to certify newer ZoomText and Window-Eyes software products has been compromised. As a result, our certificate will be revoked on or around January 26th, which will result in startup failures for the following Ai Squared products.
Affected Ai Squared Software Products
When attempting to start the following Ai Squared software products, the product will fail to launch and display a Windows error message: “A referral was returned from the server”
- * ZoomText Magnifier v10.1 Build numbers 10.10.8 through 10.11.6
- * ZoomText Magnifier/Reader v10.1 Build numbers 10.10.8 through 10.11.6
- * ZoomText Fusion v10.1 Build numbers 10.11.1 through 10.11.5
- * ZoomText Keyboard v4 Build numbers 4.0.0 and 4.1.0
- * Window-Eyes v9.5 Build numbers 9.5.1 and 9.5.3
When attempting to start the following Ai Squared software products, the product may launch even though the certificate has been revoked. Anti-virus utilities may detect the invalid certificate and block the software from running.
- * ZoomText ImageReader v1.2 Build numbers 1.2.16106
- * ZoomText Voices (language packs) v1.0 Build numbers 18.104.22.16893
- * Vocalizer Expressive v1.3 (for Windows Eyes) Build numbers 22.214.171.12429
Note: Inspection of the certificate will show that the certificate is invalid. Inspection and validation of certificates is a process performed by some organizations.
Solution (software updates)
For each of the affected products, software updates incorporating a new digital signature will be released and available for download prior to January 26th. We will send updated information as it becomes available. You can check https://www.aisquared.com/certificatefix”>https://www.aisquared.com/certificatefix for updated information.
Software Product Update version
- ZoomText Magnifier v10.1 10.11.7
- ZoomText Magnifier/Reader v10.1 10.11.7
- ZoomText Fusion v10.1 10.11.7
- ZoomText Keyboard v4.1 4.1.1
- Window-Eyes v9.5 9.5.4
- ZoomText ImageReader 1.2 1.3.0
- ZoomText Voices v1.0 1.0.2
- Vocalizer Expressive v1.3 (for Windows Eyes) 1.3
Warning When Disabling Security Options
Various websites provide steps for disabling Windows security options with the expectation that unsigned software executables will start and run. Disabling these security options will not fix these problems for the ZoomText and Windows Eyes products and may compromise security and protection from malware. Ai Squared strongly recommends against disabling these security options.
We apologize for the inconvenience this issue has caused you, but assure you we are doing everything possible to rectify this matter as soon as possible. To minimize downtime, we encourage you to update your software as soon as possible.
If you have questions or require assistance resolving this problem, contact the Ai Squared support team at (727) 803-8600 option 2 or mailto:email@example.com.
As some of you may have already noticed, we just released English Window-Eyes 9.5.4 this morning (January 18th). Other languages will soon follow. It is very important if you are using Window-Eyes 9.5.1 or 9.5.2 or 9.5.3 that you upgrade to 9.5.4 before the digital certificate described above is revoked.
There are 3 changes from version 9.5.3 to 9.5.4:
- Support has been added for the HumanWare BrailleNote Touch braille display.
- An issue where multiple hooking errors would occur in the latest testing builds (insider build) of Windows 10 has been fixed.
- An updated digital certificate has been used to sign all executables. (as per the description above)
Again, it is critical you upgrade your copy of Window-Eyes 9.5.1 or 9.5.2 or 9.5.3 to 9.5.4 immediately. Once the certificate is revoke these copies of Window-Eyes will no longer launch leaving you without speech and/or braille.
VFO(tm) | Accessibility Software Manager, Enterprise Compliance
11800 31st Court North, St. Petersburg, FL 33716 mailto:firstname.lastname@example.org http://www.vfogroup.com/
I am going to get in touch to understand what happened here. Just be aware of whats up, and update so you continue to have access to your information and can continue to work.
Comments Off on Urgent issue with AI squared access technology
This must be the day of updating.
Java released its first build of 2017.
Amd which had only just released a build for end of 2016 as well as something on january 10 have now just released the first major for 2017.
Realtech has released 2.81 hd codec minor package.
Oh and their website is back up, it went down.
On at least one system it caused the sound drivers to unsync and become unusable.
They were down for about a week or so, so they must have had something major go like a main board or something.
I did the yearly service of computers and now look at me all out of date again lets hope things improve.
To the rest, I apologise about the blog I will update you at some point in the next 2 months.
Comments Off on more updates out
I actually find being called sock puppet a bit offensive.
There are many reasons I can think of making an identity which is not your own.
1. you are some undercover agent going against terrorism or spam tracking or something.
2. you are in a chat, no one has needed to reveal their names.
3. you are in a blog like this one or in fact on a forum.
The net is dangerous.
While on a lot of places people know me because well they just do, if I chose, I could make a fake gmail address, a fake id, etc I just don’t.
One thing would be that I’d have to check 2 addresses or forward addresses to addresses and I can’t be bothered.
I seriously don’t think its new this definition.
We have been making ids all the time and a lot are doing it for the heck of it.
While I don’t think it would come to anything, imagine if it came down to it that you would have to use your real name everywhere you go thats not really safe.
On that note, a small update was released to skype and ccleaner today.
Also of note, defragler does not recognise all ssds as ssds, it tried to defrag my ssd drive as a hard drive though who knows, it may have detected 2 hard drives and not a hdd and ssd.
I have also noticed that the percent actually fragmented is greater on defragler than a standard defrag and it almost never says the true percentage, windows defrag says a much lower percentage on the drives when run.
I wish there was a standardised value set for actual acurate figures.
On a system I am maintaining, defragler says overblown values on all drives.
thats standard with defragler.
On standard defrag the command line, I get another value meaning it needs some attention.
On regular where it detects both hdd and ssd, the hdd is 0 and the ssd is 0 phase for optimisation which means that the optimisation and defrag for the hdd is working and the optimisation phase on the ssd which ofcause is not the thing to defrag has been working fine.
While defragler is accessible I am really wandering if it has our best intrests at heart.
I killed it on the system I was working on but still have it round on others, I have run it and its more stable, but the values are inacurate, you would have to run it at least 10 times to really make it 0 itself where is windows defrag you only need to do once.
In theory, windows is supposed to do this on an automatic footing.
Thats usually fine, but only if it runs in schedualed timeslots.
If you in theory left your system on all the day it would eventually do it.
I personally don’t advocate this though.
1. security, no need to be logged in, especially since we have dynamic ips.
2. stress on hardware no need to stress when you are not using it for long periods.
3. noise, I don’t know about you but noise can still be heard.
And last but not least notifications can be distracting.
Comments Off on comments on last post
Just saw this article or maybe a dictionary entry for Noun: Sockpuppet and it is an interesting read.
According to the article, it says in part: “An Internet sockpuppet, according to Google, is “a false online identity, typically created by a person or group in order to promote their own opinions or views.”” Sockpuppet is linked to Wikipedia in this article and I’ll link it too.
This may become a big deal later on, but lets make this an educational post for now.
Comments Off on Noun: Sockpuppet
Jared I couldn’t agree more on the ransomware issue.
I use msse which sucks.
I did try to go the big guys root first.
1. avira didn’t have the featureset I would like, I also heard some sob stories on how a user in one of my forums got it that all their drivers and screen readers were viruses meaning a reformat.
I tried software that said it would secure my system.
It didn’t add that it wouldn’t allow anything it deemed needed to be run on any computer.
That was a problem when i started for programming class write scripts.
I then found that whilst I could uninstall it, it took windows out along the way.
I then loaded more software for exactly the same thing, surprise surprise this time it took out ole on all the 3 networked systems.
What a mess, the software didn’t even work.
A reformat fixed it the companies in question had gone from the net, no trace of them.
Shortly after that the magazine that had all this stuff on net guid nz stopped cd distribution with their mags saying that the net had the answers.
More than likely people were suing them for the dammage I guess I would be quite furious myself.
Sadly, secure doesn’t actually mean anything.
For us blind folks it means inaccessability and the possibility our own screen and or other software may be taken out by the security software in question.
Even with the systems I maintain I use malwarebytes to scan the system but then once its done I immediately kill it.
I used to trust spybot sd.
But that was ages ago.
I was thinking at one stage of getting sophos home for all my systems or spending the 50 bucks us buying vipre for lifetime membership.
Here’s the thing, as a user of security software not only do I need to make sure its accessible vs secure, I also need to make sure it will run with no hastle or babysitting.
I need it to work, I need it to work 1000000% of the time, I need it to never crash or fuck itself or my computer, I need it to have support emails or phone calls.
I need it to never change its interface.
I most importantly need it to be cheap, not cost a yearly subscription and never go down in the ratings.
Oh and I need it to not need me to use jaws or special scripts never have need of graphics, not have inaccessible manuals, need the companies to understand the blind and not brush us off because they think we are helpless fuckers etc, etc, etc.
If that is then settled then security is my main concern if it works.
Its impossible ratings will be constant.
I started with mcafee, pirated ofcause and it worked for a bit then norton.
This worked to some degree but needed me to babysit it it even got me to buy a subscription.
It did from time to time make my system unstable especially on first install.
Ie if you uninstall one part because it crashed you need to reformat because if you install it again it won’t run.
It also used to much resources.
I turned as much of it off as I could and kept it round as on demand.
In 2003 mr norton changed to symantech and suddenly they started changing things making me being dictated what needed to run and or not.
The systems were under spec but I couldn’t justify the cash for norton.
Later on users complained about it slowing down their systems and later on I had to remove norton to speed up a client’s system that was running slow.
I still have friends that use norton and love it and never complain.
Avg 6, and 7, and to some extent 8 really are nice.
Finally no babysitting, no big issue, good interfaces, no hastle no fuss.
However if it got something that looked like a trogen it would do this.
Avg has found a trogen on your computer the file jaws.exe or readme.mp3 or talk.txt is win 32_no name unnamed 53sdfjtewrfujoeiwu5338 virus and has been removed.
Never mind that unnamed random id and complex number has no search results.
And does not exist.
Then I was working with batch source code, and linux stuff.
file name on linux filename.txt.
filename on pc for conversion filename.lnx or .unx.ltx to filename.txt.dos rename to filename.txt.
Filename.lnx.txt is trogen ansi malware win32_noname 5y7ds7y6rfhuisdhfyuiewr63434343unknown.
At the end I had no option but to uninstall that to.
In v9 the thing got inaccessable and even when they fix that I found a folder on my system root and the root of every drive crunching away, the drive was going full out at system idol the fans were going nuts.
Affraid about the hardware and drives being wrecked I killed it.
I have heard since then high cpu usage and added toolbars.
Msse/ windows defender does everything it says on the package except that its average and will randomly say something is a virus even if its worked with it for ages and ages.
Nod32, costs and while its good I don’t know if I can subscribe yet again.
vipre has a 3 unit sub for 50 bucks, sophos is cloud based but so is now windows defender.
I am no longer confident that my security software will work for me.
I’d be happy dealing with the ransomware itself than the software.
As for backups I have had at least 5 drives fail in 5 years 3 last year, one of them a new backup drive.
I almost lost everything its not full proof.
Whenever I have chucked this on forums and lists and blogs of companies there has been absolute silence.
On the access front look at steam and valve, they refuse to do something.
you almost feel like hacking them and burning them down seriously thats what I feel like.
Security seems to equal inaccessibility, data loss and corrupted files, no thanks!
Avast was good but had capchas now its failing to.
If we want to be truely secure either the companies have to come to the table or they will have to be made to.
Sadly with the state of the us right now that will never happen, especially since reports say we could loose disability rights, acts health insurence and the lot.
I am not sure about europe.
None of the big corperations care so I just get on with my life.
Security for the disabled is a fucking ass joke, it really is.
I am not secure, but to be secure means I loose all rights and privilages I currently have, its to unequal.
Heliohost seems bad I had the same issue with 000webhost.
I have given up, I have a wordpress site blog and thats it.
Cloud backups may work but costs for those the isps, accessing things, etc.
This world is not disabled friendly.
Comments Off on comments on today’s articles
This article entitled 3 Simple Steps To Disrupt Ransomware could not come at a better time.
- Backup, backup, backup
- Patch ASAP
- Key security controls
:#1 Backup, Backup, Backup p
Ransomware is often compared to physical crime. It’s easier to understand the underlying concept that way. But there is a fundamental difference that you have to remember: digital data can be copied easily for little to no expense.
That can change the dynamics of the crime. In the physical real world, if criminals steal an object to hold for ransom, you no longer have the that object. If you pay up the might return it or they might simply take the money and run.”
This is good in the fact that we can preach this all day long, but we just need to do it today. There’s more for this, but I think this quote can be left for you guys to digest.
“#2 Patch ASAP
Software is inherently complex. Mistakes will be made and updates will be available. These updates usually contain important security updates that patch the very vulnerabilities that criminals take advantage of.”
This is becoming easier, but still a chore. Turning on auto update can be a blessing or a curse, depending on how you view it. From an accessibility standpoint, we can say that fixed software is not always better. I can agree with that in some cases where developers have definitely broke things and they had to go back and fix it. For the most part, upgrading should not break the chore functionality of what is known as the main program. What I hate are those developers who change the menu interface of what we’ve learned, thinking it is better. We have to learn it all over again. That can be a curse for someone who is disabled. There’s more to this one as well.
“#3 Key Security Controls
Even with a strong backup strategy and patching immediately, there is still a strong possibility that your systems remain partially exposed. This is where 3rd party security controls come into play.”
There is more to this but this may be the hardest part of our job as disabled people. We may not be able to use these third party applications which are designed to help us because they don’t work with any type of access technology. I’d love to use a leading AntiVirus program, however, the leaders are not accessible. AntiVirus is only part of what we should use, and again, the newer programs aren’t always the ones we should use.
Part of our problem is that we are small compared to the mass market. We somehow need to get our voices heard to where accessibility can be included so we can be part of the solution.
- Stop incoming attacks using an intrusion prevention system
- Try to stop infections from taking root by using anti-malware software
- Block outbound connections to attackers infrastructure using outbound filtering
Is any of this stuff accessible to those with disabilities? I doubt it.
Also, as stated before, everyone is telling us not to pay the money as that is the motivation to their antics. In certain cases, it may be the only option, and that, i understand. Here is what Mark has to say.
“I agree with that position but also understand the difficult nature of the position you might be in after an attack of this nature.
That’s why it’s critical that you make a small investment now to ensure that you have backups in place, patch regularly, and have basic security controls to help stop any attack being they lock up your data.”
Mark recommends if anyone is interested in reading more, read the no more ransomware project. I’ve not looked at it yet, but I plan to take a look.
Comments Off on 3 Simple Steps To Disrupt Ransomware
Tech 253 is out with my experience on dealing with the Mac and learning its interesting interface. Find it on our RSS feed where it is the only one up for this year. If you’d like older podcasts, please get in touch, and I’ll get you a copy.
Comments Off on Tech 253 is now out
Before I go on with this post, let me make it clear that they are trying the best they can, with what resources they have. I am writing this post more to just inform the user, not to bash the company. The opinions are my own, and i don’t work for this company. I do wish them the best of luck in their current situation, and I will continue to monitor the forums to see what happens with the two servers.
I decided to try Heliohost for an off site project that I needed to host off site from the rest of the network. I had heard of the company, and thought it would be nice to just have a free option for a very small site with one mailing list, I now decided that one E-mail address although I’ll more than likely use the default one and not create another one, and possibly a blog, but hadn’t really decided that as of yet.
When I first signed up for Heliohost, things went well, although slow. First, it signed up for the wrong server, and that was my fault. Then I signed up for the correct server, and things were going well.
I was using the list as intended, and things were going well. I didn’t mind getting support through the forum or messenger on facebook, as iut just worked and it wasn’t a big deal until I went to post to my list and found that it sent me a message saying that the domain couldn’t be found.
I thought this was strange, as I parked the domain as i was instructed and it had been working. I am not too happy of their 30 day notice where the account would be suspended after 30 days of no activity, but in discussion, i told them that most people would not log in unless they needed to, and to leave it up unless a deletion request was needed. To compensate, I suggest 60 to 90 days would be adequit.
That was one issue i had, but i had set a reminder to compensate for the fact i needed to follow the rule. Hopefully they will change it.
On their forum, i saw that the server I was hosted on had an issue, and so I decided to coorespond with the company to determine what the next steps were. They had said thjat I aught to sign up with another server. At the time, I thought, OK, maybe this is a one time thing, so I’ll sign up, release my info, and sign up.
This went well for about a few days. Once I reset up everyone, the list, the site, and was sure things were fine, I go to the site as someone was having issues going to menvi’s site, and was going to have them fill out a form that was on this site. I could not go there.
Going to the forum indicated two things.
- First, the one server had such a hard drive issue, that they weren’t sure if backups they provided were adequit for customers.I saw that before this second server crashed.
- Second, the server I had just signed up with had the same issue as the other.
- Third, they are asking for money from the community since they now have to replace two servers, and they indicate that we should sign up yet for another server.
If we don’t donate, the business could go under, and they continue to boast about being the best free hosting around.
You guys just lost me. I signed up, you can’t restore my account, I have to sign up, because the restoration doesn’t allow me to restore my mailing list which I need.
I’m sorry, but this isn’t going to fly for me. I understand an occasional issue where we may need to move. I didn’t mind signing up for the second server. Once it crashed, I realized that this is not the provider that this site should be using. This site needs to be up as much as possible, and the last two months, it has been down but about a week if that.
If you are a provider of web hosting, is it not your responsibility to have systems in place to notify you before the hard drive or components completely fail so you can back up data, and move accounts to a new server?
The fact we need to sign up for the new server means they aren’t able to move our existing accounts we have taken time to build, and in my case, maintain, and that my mailing list means nothing to them.
The control panel was full of adds, making it difficult and slow to get anything done. I was not impressed with that, but with free, you have to compensate somehow, so that didn’t bother me too much. They y also changed the time of signing up from midnight pacific time to midnight UTC. If you weren’t there right then signing up, kiss your chance goodbye. Not much time at all, and I am not willing to donate knowing that my data isn’t cared for, even on this 5k site. It is just as important as my big sites like MENVI, jaredrimer.net, and others.
I am not going to tell you who to use or not use. I have had good conversations with the people running the operation, but when i indicated that i was not impressed with moving again, and the fact it kept recommending the one server which is not taking signups right now, and the only way i could sign up was to check other options, they said nothing.
If this is what you want for a web host, feel free to use them. They are good for up to 500mb per account, and forum support.
I’ve moved my site elsewhere, where I’m set up and my list is now up and operating. I plan to make some modifications to the site, but after that, I can stay out of the control panel until I need it again.
Have you had any success with this company better than mine? If so, please let me know.
Comments Off on Heliohost, is it worth it?
Tech podcast 253 is now on our RSS feed. It covers a mac class i took. Hope you enjoy.
Comments Off on Tech podcast 253
Jared thanks for the interesting posts.
Yes sadly people will pay because its often the quickest way to results.
Interestingly enough apple seem to be being taken to task for monopolising the app market.
I don’t exactly take it that way.
Sure if you are a hacker, like your options open etc you would choose android.
But what will you actually do with your android phone when you get it.
When I got my symbian phone I installed a lot of apps on it, and I don’t actually use many in fact I find myself deleting just about all the apps I didn’t use all 33 of them from the 40 apps I have.
So apple, clunky, sure, probably a monopoly, maybe, closed market, but on the other hand all its attempting to do things its way has made extra technologies.
1. the i drive/ multipyphone drive.
Its possible now to connect to any phone with a drive of music, etc and get that music from and to your computer with a portable flash drive, it costs a little but so what I am planning to get one, a friend knows where I can get one.
2. the lightning multidevice phone plug by belkin, belkin usually make routers and other coms products what will this do to their markets.
All the issues apple and others make will make others realise there is a market for doing things that don’t involve drilling a headphone jack into iphones, ie make some cash and giving us the users in the long run more options for a little headake.
Ms grove and onedrive being used for streaming on any device your music for free is one thing I like that has come from this.
Its true a usb device port or a smart card reader for full size in the phone should be nice but heck things are getting smaller and smaller so what the heck.
I was writing an article yesterday before I had to go out to some live music festival which I didn’t finnish but on thursday I reviewed an article from the tidbits magazine about privacy.
I looked at it and its technologies.
Firstly the good points.
1. making sure your privacy settings are configured on all websites, google facebook etc your computer is a good idea.
2. the https everywhere, privacy badger, and cert bot technologies on electronic freedom foundation are cool
Https everywhere makes sure you are running via ssl all the time.
That is good for security as well as privacy.
Privacy badger will allow companies that do not share your info to have it or at least thats what it does in theory.
Https everywhere will also connect to the eff database to check if you are using certifficates that are not funky.
cert bot allows a standard website previder to convert to https and stay that way.
An add blocker like u block origin is really good to.
That was about all the good points I found in the article.
First, no one mentions that google have addons to block their own analitics modules.
Next no one mentions better privacy which is good for flash if you ever need it these days but still.
Also no one mentions noscript, true you need to be a bet more geeky but noscript lite or studio is good for the world.
It doesn’t work on get.adobe.com and multi refreshing pages but there are ways to get round it.
for flash get.adobe.com/flashplayer/otherversions makes it possible to download installers independant of the standard interface.
ftp.adobe.com/pub/adobe will allow you to go to almost every directory I usually use the reader/win folder and get the latest adobe acrobat reader dc, it can be a bit slow to get it that way but its still good for full installers.
Next are vpns.
It suggested open vpn, but to be honest if you want a good vpn you want to buy it, and we are not made of cash.
The vpn previder may log your data anyway, they never mention this.
Accessability ofcause is never mentioned.
Next is duck duck go and the eff.
For those of you who know me, I don’t rant lightly and I don’t overload unless I really see a problem.
Its worth noting a few things.
1. on at least a search for duck duck go is bad I found at least 2 reviews stating that while it may not track, search results didn’t always come as acurate as google.
And that results never displayed in the right font.
There was a suggestion that it may not have gotten updated and that it was appearing in people’s computers.
Ofcause it was suggested that google was doing the same thing.
For my results I decided to put in commen search terms.
eff encourages piracy was one.
terrorism is bad was another and donald trump was my last one.
In all cases google put a broader range of results while duckduckgo put out results against the government and spying on people.
in fact with google they even mentioned how piracy could have helped inovation.
I thought this quite interesting, duckduck go is not something I will use.
and I will get to that in a moment.
I hit the eff website.
there were a lot of articles on protection but one on copywrite.
And that puts a really bad trend.
Firstly its obvious to me or how I read it that both eff and duckduckgo are against government snooping, but probably pro piracy, against corperations but probably pro criminals and ransomware but maybe its just me maybe I’m wrong I am not sure.
Next, its the utter paranoia of the new privacy world.
Do these fucking wankers realise! information like everything else is not free!! we tried it with free internet a few years ago and it failed quickly.
Do they want to pay thousands of dollars instead to access the net.
Google gives us search, mail, news, maps, photos, a web brouser, an os, apps, music, books, and a load of other services which I use everyday and most do.
It helps the poor, it gives free translation but has payed services.
It doesn’t want cash, it wants our information and privacy.
It stays up most of the time and is secure email security is really good as well as their spam filters.
All they want is to give our private information to advertisers.
How much would it cost in cash for us to pay for all that I wander?
The package is quite good for all your personal info for us to sell to advertisers we will give you all this free service.
Some how I don’t have a problem with it.
Yes I am sure advertisers could sell you stuff all over the show but we are buying so what’s the issue here.
Next, I see no problem with controled snooping and data collection.
Its good for stats, emergency services, and protection.
In a news report on one tech show I listen to, it was revealed that while they could, governments in most cases may get all your info but are not likely to search it for everything you have done, its just nuts.
Yes we have to be carefull what we post but the net is becoming more like the real world, and we need to adapt to this and quickly!
Next unless you are in a comunist country, russia, china, maybe a corrupt place like new ginny, indonesia and a few other places round the world I’d say you probably have an issue.
Maybe in bits of the us who knows.
Another thing to note, this will get worst before it gets better.
The industries of the world are trying to change over to the digital model.
They have to even if they don’t, and some are finding it hard to do that.
Some like the book, and film industry have left it to late and some of the older music producers are still fighting the change.
I have seen though a lot of video rental shops closing as digital comes on stream.
I have seen mail cut in half for delivery days because of email.
Yet those that want privacy try to fight for what was, not what now fucking is!
There are several ways to protect our privacy.
1. be carefull what we actually fucking post for god sake.
In a world where everyone reads everything, we need to realise what we post stays up.
Governments and more importantly businesses will look for our stuff and judge us on that stuff.
We have all done and will continue to do stupid things.
Try to treat the net as you would do with the real world I realise text means you are allready building profiles in your head that could be totally not true you just do it to try to class things as what they are.
But in most cases they are completely different.
If you really need someone or something to be done by someone, your best bet is to have an audio or video chat direct or have them come visit you or you them to get the right profile, businesses I am in do this.
Next, all information you post even your personal email is public.
Remember that people may notice you sooner than you think.
In other words the commen sences we use outside the net apply to the net, we just need to get that into our little heads is all.
Next, while I will imbrace all those extra protections being to private will attract the wrong attention.
If I have a cover on my webcams, ultra protection, a vpn, tore, a whole lot of extra things and someone in the government finds this they will wander what I am hiding.
In this post 911 world its vary dangerous to hide or act hidden.
Better let it all out than stay hidden behind a wall.
Case in point I was out last night and we saw a bunch of black people wearing shirts with slogans about blacks on it.
I assume they were just a bunch of guys walking round but I immediately thought, gang of blacks, probably gangsters, drunk woman bashing vilent bastards, trouble.
In the post apocoliptic world that is where we live we don’t think of people the same.
So if I was hiding everything and I was of an agency that was looking for that sort of thing, I’d think terrorist, probable trouble maker, better investigate or worse get rid of whatever it is in case.
We need to strike a ballence betwene protection and actually being normal.
While I did take a lot of the article I read on board, in fact extra free security beafups are a good thing.
Going full hog is not.
For example, unless your are a software pirate, a business, needing to connect to a remote machine, etc there is no need for a vpn.
In fact the only reason a home user needs vpns for is to crack stuff or to buypass geoblocking.
Privacy doesn’t exist.
Its not the corperations either, we choose to post ourselves all over the place.
The net is the world, its not a sepperate world and we need to realise this and move on.
I don’t mean not be secure or be to public, just be carefull what you do and where you go.
From time to time you may get bitten but still.
If you care for it and need it a password manager is good to.
But please remember the more online databases you have including password storage backups, etc the more can be hacked and lifted and you have no control just like you can’t control the weather yet or the net.
At any rate the only way to be private is to never be born in the first place.
Even if you don’t use the net your data may be stored on the net.
You need to be yourself, and not something you are not.
That will cause governments and others to wander why you changed to something else.
I have posted a lot of little rants on things and to be honest no one has gotten pissed at me that bad.
At least not in the western world yet.
I do think that all these security and privacy articles are good to look at but they are only guidelines.
Another thing that comes from all this, is what free speech is.
Saying what you want when you want is nice.
It can hurt people so you have to be carefull what you say it goes without saying.
People may not be to happy if you say the wrong thing and thats it simply.
We sadly don’t seem to get this.
Even if your government is reasonable there will still be protesters about things.
In the old world we didn’t have the net, people did their own things in their own villages no connection, nothing, do we want that?
I’ll leave you to ponder all that I put here.
Just remember your opinion on security and privacy is not everyone’s opinion either.
I am a home user that does work on several family units.
I don’t have a business, or cloud backup or anything like that.
I am concerned that we are trying to be to private.
Read my last article about the endless loop of doom.
If anything this article shows and some of the sites that I mentioned show that we are allready looping right now.
Its subtle but its there.
Remember, stay safe, not dumb!
Comments Off on comments on the postings thus far and a rant of my own
Hello folks, the three $$$ are dollar signs in this article entitled Everyone Is $$$ To Cybercriminals Using Ransomware and I found it facinating. As I predicted, Security Now briefly discussed the school in question paying $28,000 and my prediction was Leo saying that they should have backed up. Sometimes, even if you have a backup, the data is more important at that time, and it may be days before they came back online even if they did. I still think that if you can restore from backups, do that. This article says that because people are paying, the people behind this know this, and they will continue to do it. If we do not give them money, than they have nothing to stand on and they’ll go elsewhere. Your thoughts?
Comments Off on Everyone Is $$$ To Cybercriminals Using Ransomware
I read this article via F-Secure entitled Mikko Hypponen: ‘Data is the New Oil’ and this is making complete sense since we’ve been dealing with big time breaches lately. Mikko has had tons of talks, some of which I’ve republished on this podcast because they are so good. He’s been in this industry of viruses, trojans, and malware for over 20 years, and this article is one I think you should read if nothing else. This really hits home on whats happening now, and well in to the future unless something changes. Thoughts?
Comments Off on Mikko Hypponen: ‘Data is the New Oil’
Several days ago, I read an article entitled Adobe and Apple to Outpace Microsoft in 2017 Vulnerability Discoveries. So What Now?
The question is sitting right here, and that is pretty much now what? I do feel that Windows will still be a large target, and of course people are moving away from Windows and using other operating systems and other technologies. As people do this, the people creating all the malware and viruses will migrate to these platforms and we’ll be still fighting this.
TThe thing we must do is try to keep up with what people are releasing for bug fixes, and of course, remember to do our best to only install things we’re looking for.
Brian Krebs posted something very interested I read as part of his blog roll, and I think we should talk about that. It is his Krebs’s 3 Rules… and it is a great read.
- Krebs’s Number One Rule for Staying Safe Online: “If you didn’t go looking for it, don’t install it!”
- Krebs’s Rule #2 for Staying Safe Online: “If you installed it, update it.” Y
- Krebs’s Rule #3 for Staying Safe Online: “If you no longer need it, remove it.”
All of these are good rules and Brian goes in to detail on each of these and he has links to various things we can use. I can’t vouch for anything here, but if you are blind or visually impaired and have used the tools listed here, please comment on whether they are accessible. If we all play a part, we all can help keep the net a safer place.
Thanks for reading, and stay safe.
Comments Off on Adobe and Apple to Outpace Microsoft in 2017 Vulnerability Discoveries. So What Now?
I just read today an interesting article entitled: Extortionists Wipe Thousands of Databases, Victims Who Pay Up Get Stiffed and this caught my attention because of the fact that these databases may have been used for something. I’m not too familiar with Mongo DB, but It think it may be similar to what SQL databases do for software like WordPress which is used for blogs like mine. I did get E-mailed that the blog was auto updated, and I do like that feature when its available. I wish it would just upgrade like that all the time, but major releases we must do. I do my best to keep my softare on my site up to date, and I think it is a good idea we do this. Even the plug ins we use must be updated to fix holes.
This goes back to what I have said in my last post about Windows and Shaun’s opinions that indicate that it is the same old shit and it is. Sadly, the reason why the podcast had not been updated much in 2015 was because this is all we saw. Sadly, realizing that this is a never ending battle, we must push on and talk about our experiences where applicable when a breach occurs.
This is why I started blogging when I’ve gotten notified abvout a breach like the Yahoo! breach and of course the first potential situation of Ransomware where I attended a shchool with these two posts. I even gave my thoughts on tech and politics to top it off.
I think that sharing information and talking about our experiences are good and in no way am I bashing this post dealing with the ongoing patch tuesday.
I feel like sharing articles and opinions like the main title of the post will highlight and put out good things, and may help people find things they may be interested in. If you’ve used Mongo DB, I’d love to learn more about it, as I am not too familiar with it, so seeing this was facinating. Thoughts?
Comments Off on Extortionists Wipe Thousands of Databases, Victims Who Pay Up Get Stiffed
While Shaun covered his thoughts on the patch Tuesday problems, I do want to go ahead and give you some postings of articles from Trend Micro and Krebs On Security. Instead of bashing what we must do now to protect ourselves, be happy that companies are patching and trying their best to make their software as secure as possible.
We need to remember that writing software is hard. We can tell users to ditch Adobe, move to Lynux, use the Mac, don’t bother with antivirus, and other aspects of things that are opinion, and I don’t mind that, but we must remember that people come to get information and opinion, and just saying that its no good isn’t solving the issues we must face.
It did not impress me to have to post about the school district paying $28,000 to get their files back, but this is where we are. While I plan to let Shaun post and give his opinion, we need to understand that this is our world today. Nothing is safe anymore, and I will do my best to give you revelant articles of interest like the two linked. Keep the opinions coming, and lets see how we can do this together.
Comments Off on This month’s patch Tuesday postings
Yes its patch grind day.
Its not patch tuesday because that would honor all the patches.
And I am not in a honoring mood.
So we start with the respectable to the entirely fucked over.
1. codecguide klite meta 12.78 is out.
2. new versions of adobe flash and adobe reader are out.
In addition I had a lot of issues getting the latest updates as the update pages for get.adobe.com likes to refresh all day long and you can’t seem to allow it through script because it does this.
Even with noscript off, its impossible.
I was able to get flash fine but today it took me several tries to get the latest adobe reader from their ftp server.
3. ms nondates.
Yes non dates.
The only actual update is an important dos attack on lsass.exe and you need to recieve special data its unclear how you would actually recieve this however.
The other 2 I won’t mention at all.
In one case, elivation of privilage and a few other things.
In both cases you need to open infected files.
Ie click something, ie social enginiering.
In other words, if you are smart and don’t click these are not even needed.
You will get them in your roleup anyway.
In win10 the most critical issue is that if you incert input devices of a same time they wouldn’t work and now they do.
Supprise, supprise, there are issues.
If you use 2 moniters for a 3d program the system will just go screwy.
There is another little issue but still.
Teamtalk is at 5.2 stable.
There are a few more extras like that.
I was happy things didn’t take as long to get but as usual I am not impressed with the shit microsoft is putting out why don’t they try to be creative.
You will have noticed I left the edge and ie updates out of the article.
This is because there are always edge and ie updates as well as flash updates in win10.
My responce is big fucking wow!
In the latest insider it looks like there are some regressions in performance and also the fact edge again doesn’t work.
Which is why I say I am happy I use 7 and not fucked up 10.
In fact 10 seems more screwed as it goes on.
Eventually I will have to use it but till then well.
Comments Off on patch grind day
- February 2017
- January 2017
- December 2016
- November 2016
- October 2016
- September 2016
- August 2016
- July 2016
- June 2016
- May 2016
- April 2016
- March 2016
- January 2016
- December 2015
- November 2015
- October 2015
- September 2015
- August 2015
- July 2015
- June 2015
- April 2015
- March 2015
- February 2015
- January 2015
- December 2014
- November 2014
- October 2014
- September 2014
- August 2014
- July 2014
- June 2014
- May 2014
- April 2014
- March 2014
- February 2014
- January 2014
- December 2013
- November 2013
- October 2013
- September 2013
- August 2013
- July 2013
- June 2013
- May 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- October 2012
- September 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- December 2011
- November 2011
- October 2011
- September 2011
- August 2011
- July 2011
- June 2011
- May 2011
- April 2011
- Categories of this blog
- Subscribe to Blog via Email
- The tech blog’s pages