Web/Tech: August 2003 Archives

Worms and even anti-worm worms are proliferating today, as the Blaster worm and another worm trying to kill it are rapidly spreading and clogging networks all over the world. Smart admins patch their systems and firewall their networks in order to stave off infection, yet in the corporate world it's common to see networks compromised anyway... from the inside.

What can happen, and I've seen this happen IRL, is that a hardworking employee will take their laptop home, where they have Internet access of course, and as soon as they jack in they are exposed to the open network. Most home users do not employ firewalls or virus scanning, nor do they run system patches on time, thus the hardworking fellow winds up with the latest worm installed on their machine without a clue that they weren't protected. The next day they dutifully show up for work, and the worm awakens to begin aggressively scanning the internal corporate network for new hosts. Soon the whole network slows to a crawl, costing companies thousands if not millions in lost productivity.

This offline "jumping" of network firewalls is more and more common as laptops come down in price and grow in popularity, though its roots go way back to the early days of networking. I wasn't around in the true early days; I came upon the phenomenon known as Sneakernet only in the late 1980s when BBSs had 1200 or 2400 baud modem lines. Sneakernet is the alternative to wired electronic transmission whereby data is loaded onto a disk or tape and literally carried to its destination. We used to trade .zip and .arj files by Sneakernet as it was in many cases quicker than by modem, particularly since BBS users were often a tight-knit group that would party together in person as well as online.

Basically that's what these working Joes and Janes are doing- they don't use online mass storage for their work, or maybe they need to keep their home PC separate from their work PC, so they wind up carrying around data and applications by foot. Instead of a floppy disk they use their hard drives, and their unsecured home networks are prime breeding grounds for all kinds of nasty infestation.

I'm certainly not a security expert, but I know enough to run my patches and keep the firewall closed except for particular ports. Regular virus scanning and spyware detection also goes a long way. But what we need is to make security at home easy for normal people. I'm talking, easier than programming a VCR (which many people cannot figure out) - systems should ship secure by default. Many do, but we still need a social movement of sorts to help educate people about how to keep their systems up to snuff.

I submit that something as simple as knowing to get your oil changed every 3000 miles, with a reminder stuck to your windshield so you do not forget, would be a great start. Computers could ship with notices to get their systems audited by a local guy every so often, who would place a sticker on the monitor with a reminder about the next time an audit is due. The audit would consist of making sure all current patches have been run (the home user can do this, but the auditor would check up on it), run a virus scanner/make sure the installed service is still working and up-to-date, and run some spyware checks. Other system maintenance can be added in as necessary, this is just a list to get things started.

Automatic software updates are obviously not enough as we can see with the Blaster worm - behavioral change will get the best results. People have no problem going to a mechanic regularly to prevent problems, so a reasonably-priced IT audit service should have similar success.

This week, while working on a project during my off hours, I was confronted with the oh-so-common situation of being sent a Word document in order to make some changes and comments. Grrr... I only use Windows at work where I am forced to do so; at home I am a firm believer in using OSX for my main operating system. I'm not going to get into all of the reasons I went the Apple route, but for now it will suffice to mention that I haven't used anything UNIX since college (spent my time learning the ins and outs of NT administration for my job), so I am excited to have a BSD subsystem with which to play in addition to the pretty and insanely functional Aqua interface (it's a GUI and it's a conversation piece!).

Getting back to my predicament, I haven't purchased MS Office v.X, which cost around $500 last time I checked, so I was stuck. This document needed to be edited sooner than I could go purchase Office, or AppleWorks with the Word filters, or whatever. A glance through VersionTracker was under way, but before I browsed all the entries I remembered OpenOffice.org so there I went. (Maybe OpenOffice is listed on VT, but I have yet to go back and find out one way
or the other)

I salivated at the chance to pop the hood of my shiny BSD-based Mac, install some X11, and then tinker with the system until I could get OpenOffice to work. Unfortunately, I was to be denied the satisfaction. The X11 installer took only one or two clicks, and was done in a matter of minutes, while the OO installer was pretty much the same. Hats off to OpenOffice.org for outdoing many other open source projects' installation processes, and hats off to Apple for the ease of installation of their X11 on Jaguar.

Running OpenOffice was equally simple. The OO group bundles a small script that will launch X11 for you if you don't already have it running, and then it will launch OO- all in a double-click. And once it was running, I could edit the Word document with ease. I'm not much of a word processing user, so I can't say I ran it through its paces, but what little I did use was intuitive and quick. Couple this ease of installation and use, with Apple's rumored forthcoming office apps, and a future version of OO that has a native Aqua look and feel, and we have the beginnings of an office suite revolution. Long live competition!

Could it be? A Linux-based OS actually makes an appearance on Fox News? Amazing stuff.
Consumer Reports does the occasional VNR in conjunction with Fox News, doing their usual comparison
and rating of various products and services. My local Fox affiliate airs these during the 10 o'clock
news, which I usually have on in the background while I'm hard at work clearing out my spam folder.
Last night, I was torn away from my computer screen, to look at the Lindows desktop being discussed
on Consumer Reports' review of low-cost PCs.

Of course, what do you expect from the mainstream media? Exactly what we got:

1. Lindows isn't Windows, so you're not running Windows if you buy it.


2. Lindows doesn't ship with tons of bundled apps like a Windows PC does


3. Adding a printer is difficult


4. The digital camera they tested didn't work immediately

Of the four main complaints, I would say the first two are primarily marketing hurdles that the Linux
movement must eventually overcome (and I believe it can happen). Once I suppress my urge to dismiss the
second two complaints as the reviewer not trying hard enough :-) I have to admit they are also valid.
I have yet to try Lindows, but apparently the printer adding is, as you would expect, Linux-ish. There
is nothing that just says "Add a Printer", though I suspect there will be something like that soon. Gotta
love competition and feedback huh?

The bit about the digital camera- they didn't elaborate on it enough for me to even guess if they could
get it to work or not with a little more effort, but again, the reviewer is probably an average PC
user, trying to comprehend what in his mind is a pale imitation of the Real Windows. His mindset
was no doubt geared to finding the ways Lindows is similar or dissimilar to "normal" operating systems
like Windows.

Now the marketer in me steps in, reminding myself that any coverage is good coverage. Linux isn't fighting a competitive
battle over quality. At this stage, it's purely about mindshare and awareness. While Linux is widely known
among advanced computer users and savvy businesspeople, believe me, the number of average people (what corporate types call "consumers") that have heard about it is probably less than half of what you think it is, maybe less.

Most people I talk to don't even consider the possibility that computers can operate in ways different than Windows provides... what's an operating system? "Oh, you mean Windows." Sigh...

I currently find myself in the position where I need to convey the benefits of standards compliance to my team at work. This is an interesting situation, as I'm accustomed to being the lone wolf in terms of how things are implemented, but my role is being redefined as one that's more team-oriented (we'll talk about the ins and outs of this later) so in order to begin moving towards a leadership position, I need tools to help explain some esoteric concepts to people who are primarily visually-oriented.

After some searching, I found I didn't have to reinvent the wheel. The lazycat.org site adopts a postcard theme in explaining some of the benefits of standards-compliance. Check out the "Links" postcard.

The site is perfect for web standards advocacy because it employs the techniques it describes (the techniques I intend to use) and results in a site that is more than acceptable visually- it's beautiful! Click around to the other postcards- they are a quick read and do a great job explaining the benefits.