Author: willc

Posted on

Practical Security : Using Email on Public Wifi

In my revised capacity at my current job, I’ve been handling a lot of
security issues: hardening of systems, software, and processes. I’ve
also been studying for the Security+ certification, so needless to say,
security has been at the top of my mind the last 5 months, and I wish it
would be at least a little closer to the tops of the general public’s
mind.

I’m going to start a new series of blog posts here called Practical
Security in which I will pass on some of the more relevant best
practices relating to the typical internet user, in hopes of helping to
raise awareness amongst anyone who happens to read this blog. (Yes, all
4 of you).

Using Email on Public Wifi (and the high level of risks
therein)

Question:
How often do you stop at a coffee shop to check your email with your
laptop, or leech that open ‘linksys’ network while sitting at a traffic
light with your PDA to shoot off a quick note to your boss? OK, maybe
I’m the only one who does that at traffic lights, but you get my point.

If you have a portable device that can access the Internet, my guess is
that your answer is “quite often”.

Question:
How many of you have configured your email to use some sort of
encryption? (Cue the crickets chirping).

As this excellent StopDesign
 article explains:

What you may not realize is how easy these low security settings
allow someone else on the same network to spy on the data passing around
on that network. Just because you’re the only person who can see your
laptop screen, doesn’t necessarily mean you’re the only one who can see
the email message you just got from a friend. Just as easily as someone
could sit near you in a quiet cafe or library and overhear your entire
verbal conversation with another person, so could they “listen in” on
all the usernames, passwords, and messages passing to and from your
computer. (And everyone else’s computer for that matter.)

Kinda scary, huh? If you think about it, once they have your email
account password, it’s not too hard to go to your bank and generate a
“lost password” request, which will get sent to your email address,
which they now have control of. Or they might simply decide to send a
breakup letter to your boyfriend on your behalf if they are not feeling
so malicious. Or maybe they thought it would be funny to email your
boss and tell him how good he looks when he gets out of the shower.

By default, email is not secure!

Yes, this includes you, Mac user. Yes, this includes you,
Gmail/Yahoo/Hotmail/AOL user.

Make sure your email is on a secure connection!

The Lowdown
If you use a webmail service such as Hotmail, Yahoo Mail, Gmail, or the
like, make sure your web browser (Internet Explorer, Safari, Firefox,
etc) is in “secure” mode by looking for the lock icon. Alternately (or
additionally), look at the address bar of your web browser to make sure
the address showing starts with https and not just http.

If you use Outlook, Outlook Express, Thunderbird, Mac Mail, or any other
‘program’ on your computer to manage your email, there are ways to set
up these applications to run only on secure connections using SSL, TLS,
SSH, and other methods. You may need to consult your local IT guru or
read the rest of the StopDesign
 article, or this well-written article entitled “5 Steps to Make Your Email Secure“.

Whatever you do, stop checking your email at Starbucks unless you know
it is secure!

Posted on

Handy Links for Your Pleasure

Dear IE6
In this heartfelt breakup
letter, author Jin outlines all the reasons that web developers
should drop support of the antiquated browser known as Internet Explorer
6. It is funny. And correct.

DVD Catalyst
As an iPod Touch owner, I found the DVD Catalyst tool to be
invaluable for backing up my DVD’s to watch on my iPod.

The Whappers
I updated The Whappers web
site, and there are some nice pics of us from the recent Grey Eagle show
that someone from the Asheville Citizen Times took.

Linux Geek?
NixCraft is the site for
you, with tons of great tutorials, answers, scripts, admin tips, and
more. Any Unix-based OS is relevant there, from X Server to Ubuntu to
RedHat to Solaris, as well as anything that runs on them. Definitely a
keep for the bookmarks.

Posted on

Al Gore Did Not Create The Internet

I can’t count how many times I’ve heard people laugh about how Al Gore said he created the Internet.  Not that I’m sticking up for him or anything, but he never really claimed to have invented the Internet, so it irks me when people perpetuate that myth.

As this cool Neatorama article entitled 10 Things You Should Know About the Internet explains, Gore actually had a hand in helping to legislate initiatives that allowed the Internet to proliferate, though he never claimed to have invented it.  The article is well worth the read, as it explains a bunch of neato things that you should know about the “information superhighway” (a term that Gore actually <em>did</em> invent).

Posted on

Geeking Out

Oh, the things you find stashed away in your friends’ Facebook profiles.  Thanks, Cassie, for reminding everyone of my dorkitude!

It looks like I just threw a big straight razor.

Posted on

Seeking Linux Admin

The company I work for is seeking a Linux Admin to work with us here in
Asheville, NC. This is a great opportunity to work on some really cool
stuff and gain good experience with the federal government.

Here’s the rundown of skills sought:
Must Haves:
2+ Years Linux Administration Experience (prefer Red Hat Enterprise)
Some experience with compiling code from source.

Must be a US citizen able to obtain a secret security clearance

Installation, configuration and management of the following:
Apache
Tomcat
MySQL

Nice to Have:

VERITAS Netbackup
Qualstar/Quantum Tape backups
EMC SAN / Navisphere
Fiber HBA installation/configuration
Fiber Switching (zoning etc)
Cisco Switches
PIX Firewall

If you are interested, let me know!

Posted on

OMFG it’s WordPress for iPhone/Touch

Out of all the awesome, free applications (and the crappy ones too) I’ve been trying out in the new Apps Store with my iPod Touch, the best by far is the Worspress app. I’m using it now to write this post.

It supports tags, categories, editing previous posts, post status, images, AND multiple blogs. I was floored when I read all that, and am more floored now that I’m using it.

Wow is all I can say!

Posted on

Office 2007 Mime-Types for Apache

Ran into a problem today where users were trying to download Office 2007
documents from a web site, but were prompted to save them as a Zip file.
Turns out the new extensions for Office 2007 documents (docx, xlsx,
pptx, etc) need to be added with a new mime-type for Apache to serve
them up correctly.

It’s a pretty simple fix.

In /etc/mime.types add this:

application/vnd.openxmlformats docx pptx xlsx

Save and restart Apache, then the documents should be handled correctly.

Posted on

Handy Geek Links for Your Wednesday

Why Linux is Better does
a great job of explaining the reasons for people who are not geeks. If
you find yourself trying to convince your grandmother to run Ubuntu by
using terminology such as “linux kernel”, “package manager”, or “sudo”,
give up and send her here.

And speaking of Linux, here’s a list of Linux Commands I Hardly Knew, some of which you may or may not
know. I found a few time savers I had never known. More good commands
can be discovered in the comments of the article.

If you are tired of creating HTML tables (for tabular data only, of
course) by hand, here’s a quick and dandy way to do it online with a
tool called Kotatsu.

If you’ve been following me on Twitter, you will know I am quite the jQuery advocate as of late. jQuery is
a JavaScript library that rivals (and beats the pants off of) libraries
such as mootools and scriptaculous, and can add all sorts
of dynamic, eye-popping and usability enhancing functionality to your
pages. Just one of the powerful, gracefully degrading things that
jQuery can enhance is the CSS dropdown menu. Check out this article describing how to enhance
the Suckerfish CSS dropdown menu with jQuery.

If you are interested in learning more about what jQuery has to offer,
check out 5
0 Amazing jQuery Examples.

Posted on

Cool Tool

I’ve tried various backup utilities for my Windows desktop over the last couple of years, including File Hamster and Microsoft’s own Synctoy, but I’ve finally found the one.  You know — the one that does everything you want it to easily, nothing more, nothing less, and is free.

That tool goes by the name of Karen’s Replicator.  It will run in the background and synchronize changed files at given intervals.  This makes it easy for me to do lots of work on client web sites, then rest assured that anything I’ve done is backed up to my spare external hard drive every day.

I learned long ago the value of making backups on a separate disk.  Unfortunately, I learned it the hard way, which is why I implore anyone reading this to make backups!  Hard drives do fail!

On a side note, let this be the first time I’ve italicized text so much in one post in all my 8 years of blogging.

clicky