It’s Pesonal Firewall Day! Head on over to www.personalfirewallday.org and find out why you need a firewall. They neglect to mention Kerio Personal Firewall which is free for home users and has been my favorite for a while. They also mention anti-virus software. It’s related to PC security, but it’s still a totally different area. You can find links to updates for the most common AV programs as well as a few free options and online scanners at http://pctech.invisibill.net/virusinfo.html. The online scanners aren’t the most handy, but they can be useful if you suspect some problem with the AV program you have installed on your PC.

If you are a computer expert, share your knowledge with those around you! A safe Internet is everyone’s right and responsibility.

By keeping your system secure, you’re not only avoiding problems yourself, but you’re also preventing the spread of problems to other people. If everyone had a properly configured firewall and updated AV software, most of the huge internet worm infestations wouldn’t have even happened. Keeping up with system patches would lower that count even more.

I’m finally switching over to 1and1’s DNS servers. This means that some of my _____.invisibill.net forwards won’t work, at least until I remake them, if I do. Everything on my site should work fine, but I did have some bookmarkish forwards set up, and I know I’ve posted some of them before. Most of them I haven’t used in forever anyway, but just be warned that if you’re using one of those, it will stop working soon. However, this means that my site will no longer be in the stupid forwarding frames. It won’t look any different, but it’s just one less thing to get in the way. For example, the example I posted on December 12 with the URL spoofing exploit should work right from here now. I’ve got the DNS changes made, now they just have to filter through the internet. For me, some are already working and some are still on the old server. invisibill.net works, but www.invisibill.net doesn’t yet. Just letting all my diehard fans (both of you) know what’s up in case things are acting funny.

More on the SCO Linux thing…

Novell has released a bunch of correspondence with SCO about this whole Linux infringement accusation. They also list their copyrights on this page. This Slashdot posting is a good summary of the letters. http://www.sco.com/novell/ has the Purchase Agreement and other stuff. GROKLAW is working on converting all the PDFs to text.

It’s up to the courts to figure things out, but SCO seems to be making lots of claims that they own things and there are infringements against SCO’s stuff in Linux (starting with 2.4, so you people running older stuff are safe too). If you read certain extracted parts of the agreement, it sounds like Novell basically handed off anything and everything UNIX to SCO. But they also mention that it’s everything but the specified exceptions. If you look at the exceptions, Novell still retains ownership of most of the stuff. SCO’s actions back this up, like recently requesting that Novell transfer copyrights for UNIX stuff to them (and being denied). Basically, it’s questionable if this code which may or may not be in Linux (you have to sign an NDA to see SCO’s “trade secret” code which has been put into Linux, and I don’t know of any unbiased source who has done so and verified SCO’s claim) is even SCO’s property to begin with. Novell also says that the agreement expressly forbids SCO from terminating licenses without Novell’s permission. SCO has talked about terminating IBM’s license for doing stuff with the AIX source code. Novell says that IBM’s AIX code is IBM’s and has nothing to do with SCO, but that they’re not giving SCO permission to cancel the license anyway. The whole situation with SCO’s IP being in Linux is confusing, but Novell is simply taking out SCO’s legs, saying it’s not their IP so this whole issue is a moot point.

Depending on how the whole Purchase Agreement is interpreted, some of SCO’s actions could be a breach of contract with Novell. For example, SCO claims some of their sales are new ones and not revisions of old ones. If they are determined to be revisions, Novell gets 95% of “their” sale and SCO gets a 5% “commission”. If they knowingly did this, that’s fraud and SEC stuff. According to a /. poster, the employee responsible for doing the SEC filings mysteriously left right before their last earnings report was due. Hmmmmm… Man, it’d suck to be SCO and find out that you didn’t actually have all that money that you just spent on lawyers to get back your property, which turned out to not be yours.

I’m not a Linux zealot or anything, but I don’t like to see innocent people/companies get screwed. I don’t mind seeing money-grubbing, dishonest people/companies go belly-up though.

Another interesting thing that has come about from the /. posts… They’re trying to “Hack Google” by creating lots of links to make the results show what they want. To see examples, type in “miserable failure”, “French military victories”, or “Weapons of Mass Destruction” and hit the “I’m Feeling Lucky” button. The idea is to make SCO’s website come up when you use the phrase “litigious bastards”. To do so, they need to get as many pages as possible out there with the words “litigious bastards” linked to “www.sco.com”. In order to make things more fun for SCO, they also thought it would be good to use “www.sco.com/?sco=litigious%20bastards” instead of just “www.sco.com”. This will put lots of lines with “sco=litigious bastards” into their webserver logs. Like this: litigious bastards Hehe.

A post on a tech board brought to my attention a program which does something I dislike a great deal. Someone was looking to convert their old audio tapes into MP3s. He said that Magix Audio Cleaning Lab 2004 works great, but you have to pay extra to encode MP3s.

-> Fast audio CD burning and autoplay-capable MP3* CDs (burn-proof support, disc-at-once)

-> Export as WAV, OGG Vorbis, Internet Streaming Format (WMA) or MP3* files

* 20 demo runs

I am very much in favor of supporting programs that do what I want for a reasonable cost. I equally support the idea of boycotting programs that charge for the same thing a free program does, or for doing something I don’t want. If this program does the audio cleanup part well, buy that part of it. Then completely ignore their request for more of your money, and use a different MP3 encoder on the exported WAVs. If enough people refuse to buy their MP3 encoder addon, they’ll get the hint that people don’t see it as being worth the extra cost. They’ll either lower the price (include it for free?) or stop pushing it at you. It’s up to you if it’s worth the extra cost to not have to do another step in a separate program.

Getting analog audio is a bit more complicated than just ripping a CD to MP3s, but Exact Audio Copy works great for converting your CDs to MP3s and is free. As I said, use MACL2004 to convert the tapes to digital music files if it does a good job, then use a cheaper and/or better program do the MP3 conversion. Eventually we will teach these companies that their success depends on us, the consumers.

Here’s something cool in a geeky sort of way. A friend’s project just got /.ed. For those of you who don’t know what that means, an article about it was posted on slashdot.org. As a result, a huge number of people flocked to his site, overloading the server.

Internet Archive Opens Wayback Code Under LGPL

However, he had some corrections to make.

And of course they got it all wrong. Heritrix != WayBackMachine.

Heritrix gathers web pages (harvests)
The WayBackMachine gives access to harvested material.

Also Heritrix is a new web crawler meant to replace the one that IA has been using (which is owned by Alexa Internet).

Both the /. post and the linked article say that it’s actually the crawler code that’s being released. The Wayback Machine is actually a separate part, and its code is not being released at this time.

Heh, since I started looking at the article, the title has changed. “Internet Archive Opens Crawler Code Under LGPL” is what it’s called now, which is accurate.

http://www.microsoft.com/downloads/details.aspx?FamilyID=e70a0d8b-fe98-493f-ad76-bf673a38b4cf&displaylang=en

Microsoft has finally released a tool to remove the Blaster worm. You know, the one that was running rampant months ago… A situation has been identified where the Blaster worm could have infected some systems before the application of MS03-026 [KB823980]. This tool will help remove the Blaster worm from these systems. For systems with MS03-026 [KB823980] or MS03-039 [KB824146] already installed, no further action is needed once this tool is installed. Install this tool to help remove this worm from your PC.

Someone got infected before MS released the patch to fix it? No way! Well, at least something can be done about it now. Better late than never I guess…

Also, check out Above The System Technologies, LLC. It’s something started by some friends of mine that I’m sort of involved with. It’s just taking off, but we’re a pretty well-rounded group of computer geeks. Check us out if you need hosting or some computer services.

Good news. McAfee VirusScan 7’s On-Access Scanner will catch the URL Spoofing vulnerability that I posted about before. If you get that warning when you try to view this page, it’s because of that post. As long as you don’t follow the example links, or don’t believe that the invisibill.net blog is actually at microsoft.com, you have nothing to worry about. My post contains exactly what VS7 says – a spoofed URL. The only thing it can do is trick you into going somewhere (invisibill.net) thinking it’s something else (microsoft.com).

I’ve also been informed that the Plane game I posted will run in Linux via WINE. For all of you who have been on the edges of your seats and biting your nails wondering about that…

In other news…