Worried about the wrong things? It’s always the wrong thing.

Guy Wright’s piece titled Internet Security: We were worried about the wrong things is a bit old but it’s an important point. Security is a moving target. It’s always a moving target.

I disagree, however, with the assertion that SSL (and its successor, TLS) were a waste of time.

Read more

Phil Kerpen, net neutrality, and socialism: A post-mortem

I learned the hard way a few weeks ago how net neutrality can be equated with socialism, an argument that puzzles people who work on computer networks for a living and see networking as a big flow of electrons. I think it’s very important that we understand how this happens.

Here’s the tactic: Find a socialist who supports net neutrality. Anoint him the leader of the movement. Bingo, anyone who supports net neutrality follows him, and therefore is a communist.

Political lobbyist and Fox News contributor Phil Kerpen told me Robert W. McChesney was the leader of the net neutrality movement, and he sent me a quote in the form of a meme longer than the Third Epistle of St. John. Yet in a Google search for the key words from that quote, “net neutrality bring down media power structure,” I can’t find him. So then I tried Bing, where I found him quoted on a web site called sodahead.com, but I couldn’t find the primary source.

For the leader of a movement the size of net neutrality, he sure keeps a low profile. Google and Netflix are two multi-billion-dollar companies that support net neutrality. I’m sure it’s news to them that they’re taking orders from Robert W. McChesney. Read more

Net neutrality is not Marxism

There is a fear campaign going on, suggesting that net neutrality is Marxism, or a plot for the government to take over the Internet.

That’s name calling. There’s actually something very different going on.

Read more

Let’s talk about net neutrality

The battles are raging over net neutrality again. Conservatives generally are against it; liberals are generally for it. I think the battle is more over misunderstanding than anything else, so I want to try to clear up that misunderstanding.

Net neutrality is in no way, shape, or form related to the political slant of the data in transit. It is not the Internet equivalent of The Fairness Doctrine, the old law that forced television and radio programmers to alternate left- and right-wing content, or equal time, which forces programmers to give equal time allotments to political candidates from both major parties. It’s completely unrelated to both of those things.

What net neutrality is really about is double-billing. Read more

Workable two-factor authentication

I’m several months late to this party, but I just saw Marcel’s post on Google’s two-factor authentication with a smartphone.

He’s right. It works until someone steals your phone. Once someone steals your phone, you’re in a world of hurt. It’s just a compromise, until we find a way to do two-factor authentication the right way.

The right way is with a smartcard, issued by some sort of central authority. Read more

Putting blog updates on Facebook

Some unknown percentage of my Facebook friends are interested in my blog posts. And some other unknown percentage of them would be if they knew what I was posting. There are several ways to get WordPress to put blog post links on Facebook, but some work better than others. I’d like to thank Rob O’Hara for doing 90% of the R&D for me on that, by telling the world about FT Facepress II.

There was just one problem for me: My web server can’t send e-mail.

Read more

What you really need to know about net neutrality

I ran across a former classmate’s name in Google News recently, and when I flipped through his back catalog, I found the very best definition of net neutrality that I’ve seen.
Read more

Best public DNS – finding the best for you

Best public DNS – finding the best for you

If your Internet connection is slow, it almost always helps if you optimize your DNS. But there’s more to the best public DNS than just speed. I’ll tell you how to find the fastest DNS, but using a DNS that offers improved security gives your computer protection beyond what your antivirus and firewall provide.

Sometimes it’s enough, and it’s definitely cheaper than buying a new router. Even if you do get a new router, using fast DNS helps. Here’s how to find the best public DNS to use, to improve your speed and your security.

Read more

My standard security lecture

Myth: Nobody wants to get into my computer because I don’t have anything important saved on it.

Fact: I don’t care who you are or what you do with your computer, security is important. Do you want the Russian Mafia using your computer? The North Korean military? Al Qaeda?

If you’re OK with that kind of vermin using your computer, then do whatever you want. I hope you don’t have problems sleeping at night. If you don’t want that kind of vermin using your computer, I suggest you read on.Odds are, the next 9/11 isn’t going to involve airplanes or even bombs. It’s more likely to be a computer attack of some sort.

Modern computer viruses generally join infected computers together into large networks, which then “phone home” for orders. They can sit dormant for a long time, or they can start carrying out orders immediately. Those orders could be sending out spam e-mail messages. Or those orders could be to conduct an attack on some other computer, perhaps a bank, or perhaps a government or military operation.

Imagine Al Qaeda building a network of a few million computers, then using that network to overwhelm an important computer. When Amazon or eBay have a bad day and you can’t get to them, it’s possible they’re being attacked and struggling to cope with it.

The same approach that crashes Amazon.com could theoretically be used to crash the stock market or the Space Shuttle. Fortunately, that kind of trick is nearly impossible. But not completely.

Building the network is the easy part. Locating a target to point it at is the hard part.

The network already exists. There was a virus expected to trigger on April 1 of this year. It didn’t, for whatever reason. But everything isn’t OK. The network still exists, it’s still growing, and nobody’s figured out yet who built it, what they intend to do with it, and how to get in and disable it. Believe me, there are experts around the world trying to figure it out.

Whoever or whatever is behind it, you don’t want your computer unwittingly participating in it.

Here’s to avoid inadvertently aiding and abetting criminals and terrorists with sloppy computer security practices.

1. Use antivirus software and keep it up to date. Many Internet providers will give you antivirus software for free these days. Call your provider and ask. If not, download Microsoft Security Essentials.

2. Configure Automatic Updates. This allows Microsoft to fix security vulnerabilities in your computer as they’re discovered. Macintosh users, don’t get smug. You need to configure Apple update too–Apple releases a dozen or so fixes every month to fix security issues on Macs too.

3. Don’t open unexpected e-mail attachments. It’s been 12 years since this has been safe to do, but people do it anyway. STOP. NOW. I don’t care how funny the joke is, or how cute or hot or whatever the picture is.

4. Don’t open unexpected e-mail, for that matter. Booby-trapping an e-mail message with a virus isn’t especially difficult to do. Frankly, if any e-mail message looks suspicious (a subject line like HOT HORNY SINGLES WANT TO TALK TO YOU NOW! is usually a giveaway), I just delete it.

5. And if you ignore steps 3 and 4, for Pete’s sake, don’t buy anything. Nearly 10% of people actually buy something based on spam e-mail messages. That just encourages all of this other activity.

6. Use web-based e-mail. Most web-based providers use good spam and virus filtering, giving you an extra layer of protection.

7. Use an alternative web browser and e-mail program. Internet Explorer is literally a superhighway for viruses and other malicious software to hook directly into the operating system. Use Firefox, Chrome, or Opera.

Have I scared the living daylights out of you? Good. If your computer is beyond help, get a reputable IT professional to clean it up. Then start doing these things. If your computer is OK right now, start doing these things.

And then stop aiding and abetting criminals and terrorists.

What net neutrality means and why it\’s a good thing

This week, John C. Dvorak makes a good argument in favor of net neutrality.

I’m going to take it from a different angle. I am a conservative. While I rarely vote a straight Republican ticket, I am registered as a Republican. Republicans generally are against net neutrality.

They are wrong. I will assume it’s from a lack of understanding rather than bad intentions, but in this case, wrong is wrong. I’ll explain why. Read more