Google is in more privacy trouble now that it's disclosed that the company actually collected password as it snooped on our WiFi setups to feed its overly intrusive Street View service. Concerned about the collection of computer addresses and data, the French government looked into Street View. A peek at the info reveals that Google grabbed passwords. Google claims it meant no harm and wouldn't abuse the data.
More
Posted by Doug Barney on June 21, 20107 comments
Welcome to long-time reader Dave who wrote to Doug for the first time last week and commented on various topics (join in by writing Doug at [email protected]):
I have been reading your work for 5-6 years now, and always look forward to each installment. I am a first-time commenter as a result of the revelation that whenever you ask for opinions, you just might really want to hear them!
First, the silly: In your Friday's Redmond Report, you wrote that you, "wondered aloud how long it would take to exploit [the HPC flaw details released by Google]." How can we confirm this? We can't hear you when you type!
Now, the main "take" that your column asked for: I am not a hard-core gear head. I've been working in IT since 1996, have a handful of certifications and have just completed the bachelor's degree I first started after high school in 1985 (so, I do read with great interest the postings about salary vs. education). The comments on the Web site seem to cover most any angle I could bring up, but there are a couple that seem to have a particular ring to them.
Chris from Lake Mary, Fla. wrote that, "it [isn't] irresponsible to tell hackers how they attach [sic] our software. This is just the way it is." He explains that Microsoft releases details as part of releasing patches. He goes on to cite the SQL Slammer worm as an example of the impact of unapplied patches. I think this is close to Google's actions: They combined announcing a flaw with announcing a work around. However, it isn't Google's product. They certainly have the "right" to suggest how people react to a flaw -- irrespective of by whom it was made public -- but I feel it may be over some imaginary line to (potentially) scare people into using their quick fix. Google essentially said, "There's this really serious problem with Windows -- you gotta do [this] to keep your computers safe." I may be in the dark on this, but how much testing did Google do on their work around before telling people it would work? Is it at all possible that their method would open a computer to some other attack vector, or unduly limit functionality?
I agree with Dan from Iowa that it's, "not [Google's] job to dictate how fast Microsoft responds with a fix." I further agree with the point that their actions blur the color of the hats -- white or black. It's certainly a leap -- and I'm am absolutely NOT suggesting that it is the case -- to couple Dan's comment about who are the "Bad Guys" with the comment by Esteban Gronzy from Tucson, Ariz. that Google just happens to be a competitor --direct competitor in many markets. Again, I'm not spouting off about a "vast, electronic-age conspiracy" (or, hope I'm not), but just how coincidental is it that Google releases details of a flaw in a Microsoft product just as Bing vs. Google vs. Google Apps vs. Office vs. Azure vs. Chrome vs. Android vs. Win Mobile 7...are all really starting to heat up? Again, I utterly disavow any inference that "A" follows "B", but the timing seems to be a marketing departments' dream come true (from Google's point of view).
Lastly, Keith from Bel Air, Md. asks, "But what does Google owe Microsoft?" I believe the answer is, "Absolutely nothing beyond legal business interaction." But perhaps a more fitting question would be, "But what does Google owe the multiple tens of millions of Windows users affected by this flaw?" Here, I believe the case could readily be made that "silence is golden."
Thanks for your time, especially if you made it this far! Thanks, too, for churning out the top-quality materials I've come to expect from all things Doug-related. Please let me know if you would (really) like future comments -- especially if you would really like them to be shorter!! Keep doing what you do.
-Dave
More
Posted on June 21, 20100 comments
Google is the inventor of the Droid (Android) phone, and I hear it's pretty good. But Google just can't keep away from controversy. It spies more than James Bond. I'm not sure if this is Google's fault, but apparently the HTC Incredible phone, based on Droid, saves what you do on the Web. We're talking screen grabs of things like your banking login screen -- with user name and password of course.
More
Posted by Doug Barney on June 21, 20105 comments
Web editor Chris Paoli has once again found some great stuff on the Web as part of his weekly Friday IT Fun Report. The one I find the funniest is what it's like to be an Apple owner. You can see Steve Job sucking the do re mi from your bank account. As a dad who's bought umpteen Mac and iPods (don't tell my kids there's a thing called the iPad), I've felt that pain.
Posted by Doug Barney on June 21, 20100 comments
If your boss keeps saying no to your raise, show him/her this! Despite the continuing economic malaise, IT pay went up this year, according to Janco Associates. The winners were IT pros in large companies whose pay went up around $600.
Those in medium-size companies actually went backwards, losing around a grand.
More
Posted by Doug Barney on June 18, 20101 comments
I was at Tech-Ed last week in boiling New Orleans, trying to eat as much seafood as possible before it goes away. At the show, there were two topics that really stood out: Privilege Management was huge, as were SharePoint third-party tools.
I didn't get a chance to meet all the SharePoint vendors, but did hit up a few. Some are startups focusing exclusively on collaboration, while others are existing vendors moving into this new space. Companies in this market include Idera, Quest, Metalogix, AvePoint, Tzunami, Vyapin and Axceler.
More
Posted by Doug Barney on June 18, 20100 comments
On Monday I told you how Google publicly disclosed an XP Help flaw that had yet to be patched. As of then, there were no reported attacks, but I wondered aloud how long it would take to exploit this now well-known and understood hole.
It didn't take long -- Microsoft now says hackers are now going after the flaw which allows for remote code execution.
More
Posted by Doug Barney on June 18, 201014 comments
Here are a couple of responses to the relationship between VMware, XP and Windows 7:
Your blurb needs some clarification. It's not so much that VMware Player "is faster and just plain better than XP Mode." VMware Player is running XP Mode -- it's Microsoft's Virtual PC that VMware wants you to dispense with! The VMware Player runs under Windows 7 (and runs VERY WELL, I might add) but it is still running XP Mode.
Microsoft wants you to download and install XP Mode and Virtual-PC and run XP Mode natively. (I suspect that this precludes you from running any OS except XP Mode under Virtual-PC under Windows 7.)
If you instead download (for free) and install VMware Player under Windows 7, you can then run any OS you want under Windows 7. (I don't know about Mac OS X, but it poses and interesting possibility.)
If you want to run XP Mode under the VMware Player, just go to Microsoft and download the XP Mode components for Windows 7 and install them. VMware Player will then import the XP Mode virtual machine directly into VMware Player.
I have not tried to work with Virtual-PC but the VMware Player is exceedingly easy to use. It can install any X86 or X64 compatible OS from media or form an ISO image directly into VMware player, just as it if were "bare metal."
I've wanted to experiment with Linux ever since I piddled with Slackware back in the 1990s. I can do that now with any flavor of any Linux or Unix OS without compromising my Windows 7 capabilities or environment -- without resorting to third-party bootstrap loaders -- and without re-partitioning my hard drive.
-Marc
I always enjoy reading your pieces in Redmond Report -- they are "straight" and thought provoking which is no bad thing in today's marketing age! Regarding Win7 and Virtualization, this has been an issue for me on a personal and a professional basis.
On the personal basis, I use an old mail/news product called Turnpike that will no longer run on Win7 X64. A long story, but basically MS has broken how 32-bit shell extensions work in X64 (or should I say do not work on X64). So until I get a new client, I am doomed to run the old client in some sort of virtualization mode. I tried XP mode and was very disappointed. It just felt clunky and flaky. It was slow, and from time to time it was necessary to reboot the VM since it stopped working. It was a very sub-optimal bit of code that I could not wait to get rid of. I then loaded Sun's Virtual Box software and it's been very good. Not perfect...but more than fit for purpose. I have used it constantly for the last six months and am unlikely to ever want to use the MS offering ever again.
I spend most of my time as a trainer and in the classroom. Hyper-V is harder to manage than I'd like. For everyday use (almost all of my work involves running and using multiple VMs), the lack of power management is a deal breaker. For a few classes, I have found a way around the issue (I dual boot back to Server 2008 R2 using boot from VHD) and run Hyper-V but as soon as the class is over I reboot to Windows 7. And for some classes I use VMware Workstation. Now that was the product MS should have bought. It's stable, fast and about as perfect as can be -- the only downside is that it is not free!
To my mind, what MS should have done was to create a stripped down version of Hyper-V that is power management aware (and can handle compressed VHD drives) for use in Win7. Hyper-V is a great product and I run it on three machines in my home network. Very stable (well, the version in Server 2008 R2!) and performs well. Great for the data centre, but no use on client systems. Instead we get the old Virtual Server code which, to my mind, was never a real contender. MS really did buy the worst of the two products when it bought Connectix -- and Virtual PC/Virtual Server. Unfortunately, in their focus on the data centre and the cloud, MS has left the desktop virtualization offerings largely as they were. I find it sad that MS dropped Training as a key scenario for Hyper-V, even though MS's official training courses require us to use it.
Anyway -- to your question: I have tried just about every virtualization product out there. For use on Win7, I prefer Virtual Box -- it's fast, reliable and free. If VMware were to give away Workstation, I'd probably use that. But XP mode/Virtual PC 7 are products that can remain on the DVD.
-Thomas
More
Posted by Doug Barney on June 18, 20100 comments
One of IT's biggest cloud fears (besides losing control and losing jobs) is security. Microsoft hopes to alleviate some of those concerns with a new set of security guidelines for Azure. The latest Security Development Lifecycle, which is really a set of security best practices, now includes advice on locking down Azure.
More
Posted by Doug Barney on June 16, 20101 comments
I'm having lunch at an Italian restaurant with Acronis executives tomorrow, and I'm sure they're going to want to talk about their new disk monitoring tool. They needn't bother as I know all about the free software. Acronis Drive Monitor watches hard drives and alerts IT to upcoming failures. This way if you haven't back up, you can get to it! Get it here.
Posted by Doug Barney on June 16, 20102 comments
Here's part two of your responses to the individual suing Google after being injured from blindly following the company's map directions:
In the immortal words of Forrest Gump, stupid is as stupid does. Lauren Rosenberg was STUPID. She doesn't deserve one red cent of money for being stupid either. Anyone who goes walking down a road with a high amount of traffic is just plain stupid for doing so. She has eyes and ears -- and should have had enough common sense to NOT walk down a busy street that doesn't have a sidewalk for walkers to safely commute. Would anyone have debated the idea of her suing if Google Maps had told her to walk off the end of a pier to cross a body of water? NO! They would say only a moron would do such a thing. Well, only a moron would walk up a busy street without a sidewalk beside it.
This is just another case of a frivolous lawsuit where someone is trying to get out of taking personal responsibility for their own stupidity. And Google should not have to pay the price for Rosenberg's actions.
-Charlie
Personally, I feel you have to be careful when using these tools. She should have just turned around and went back from where she started if the roadway was dangerous. This is similar to the woman who says she burned herself with McDonald's Coffee and got paid. NO...Lauren should take responsibility for her own actions.
-Pasquale
Lauren is an idiot -- let's only hope she does not reproduce.
-Anonymous
Someone has to keep the Darwin awards alive. The quickest and shortest route might be to dive off a cliff...at least you'd be cushioned by the pile of lemmings at the base of the cliff.
-Dan
Let common sense rule the day!
As children we depend on our elders for guidance. As Adults, one MUST take responsibility for their own actions!
Judges should be allowed to Bi^@h slap those who bring up these frivolous lawsuits.
-Thomas
More
Posted by Doug Barney on June 16, 20100 comments
IT has been able to get Office 2010 for some weeks. Now it is consumers' turn to pick up the new suite by either moseying on down to your local computer store or simply download the thing.
I interacted with over a dozen Redmond Report readers who were beta testers and, by and large, you all loved it. The only real sticking point is those that still hate the Ribbon. But then again, Ribbon haters aren't likely to be testing Office 2010.
More
Posted by Doug Barney on June 16, 20100 comments