Yet Another Windows Nightmare, aka YAWN…

Attacks against unpatched Microsoft bug multiply

Any seasoned Windows user will not be surprised that there’s another known Internet Explorer security bug that Microsoft has taken much to long to address. Yes, they have released a little workaround script to temporarily disable the dangerous ActiveX control in question. But as a computer repair technician of many years I can assure you that the article’s assessment of that workaround is quite correct. Most people aren’t keeping up on this sort of thing – especially since it happens so annoyingly often – and are unlikely to use that script, since it requires taking time out of real life to go download and install it.  This, after another similar incident last week.

These frequent opportunities to have one’s computer invaded and/or data stolen or deleted should serve as a wake up call to how truly dangerous it is to run Windows.  With all the spyware out there nowadays, it’s pure lunacy to do online banking or taxes or any other sensitive transactions on a Windows machine any more.  I have had customers tell me horror stories about getting victimized by identity theft after making such transactions, and finding out later that their Windows machine got infected with spyware shortly before it happened.  Danger, Will Robinson!

As a computer tech I can also tell you that by and large the most common repair these days is removal of viruses, spyware, adware, trojan horses, and keyloggers.  I speak as someone who has been cleaning up Microsoft’s messes for a long time when I say it continually amazes me how much time, money, and energy are spent just keeping Windows systems free of malware.  This in addition to the hefty 100 or 200MB service packs one has to keep downloading and installing, and having to deal with sudden crashes so frequent and ubiquitous they earned their own moniker in the computer world – “BSoD” for Blue Screen of Death.  (Here for your viewing pleasure is a video where Bill Gates himself gets hit with one of these at Comdex, a large computer conference… poetic justice, many would say.)

So I’ve used the acronym YAWN here for the reason that these occurrences are the same boring song sung over and over again.  If you’re not fed up by now, you haven’t been paying attention.

When you get sick and tired of being sick and tired, you’ll seek an alternative.

Some people respond to this problem by switching to a Mac.  But I think that’s jumping from the frying pan into the fire.  Part of the problem behind Microsoft’s shoddy software is the fact that they alone control that software, and users’ freedom of choice is the last thing they care about.  That’s why they are far more concerned about using antitrust tactics  to force out competitors (1 2 3 4 5 – oh heck just google “Microsoft antitrust”) than they are about making a superior product.  Now, while Apple’s software is clearly much better than Microsoft’s, they’re worse for user freedom of choice.  This is because, like Microsoft, they have exclusive control over the software – but they also have exclusive control over much of the hardware.  If Microsoft chooses not to remedy a software issue, Windows users are out of luck.  Mac users are subject to that problem too, but worse because the same exact concept also applies to hardware.  If Apple decides it has no plans to remedy a hardware problem (and I have heard various complaints about this), Mac users are out of luck on this front too.  I don’t recommend taking the Apple route, for these reasons.

GNU/Linux is easier than ever to use, and built with security and user freedom in mind.   It has an active worldwide community that provides support and continuous development of free software – “free” as in “freedom” and often “free” as in save your money.


Yet another Windows security hole

Welp, another Windows worm is on the loose and spreading like wildfire through unpatched systems.  It can infect USB thumbdrives and mutate itself.

All-time top security tip #1:  patch, patch, patch!

If you are a home user, set your Windows updates to automatically download and install.

If you are an IT professional, have a patching system in place to ensure all machines get patched in a timely manner.  This worm just goes to show that the task of ensuring systems are patched cannot grind to a halt even during the holidays.  At least one person has to keep their eye on the ball at all times.  It sucks, especially if you’re at a smaller organization and you’re the only IT person, but that’s the nature of the beast.

Stay safe out there.


What if toasters had operating systems?

Ran across this somewhere and couldn’t resist sharing it here:


What if toasters had Operating Systems?

a) Windows toaster

The Windows toaster looks nice, but sometimes it just won’t make toast.  It either comes out burnt or raw, or it stops half way through. also, you have to unplug the toaster, plug it back in again, and wait 5 minutes each time you want to try and make some toast. For every loaf of bread you buy, you are forced to buy a license for a new toaster to go with it, and you will get sued if you let someone else have some of your toast.

b) MAC toaster

The MAC toaster has no settings or controls and it looks very stylish, but will only accept proprietary size bread which can only be bought from Apple main dealers at 10 times the price of regular bread. If it breaks you will have to ship it to a licensed repair shop for service. The toast is fine except that the size of the bread is so odd, you can’t actually eat the toast it produces, although it does look good.

c) Linux toaster

The Linux toaster looks awful, it has wires crimped together hanging out of it, and pieces grafted from other toasters. The first time you make toast with it it burns it, the next time it’s raw, but after you read the man pages and invoke the command line: toast -verbose -breadsize 50132 -eject -o z3321 > /dev/toast | more, it makes perfect toast forever and never breaks.

Mini-Microsoft blog

Submitted the following to Mini-Microsoft blog:

The fact that MS management feels it has to resort to unfair business practices to help keep its monopoly in place, rather than let the product’s quality speak for itself such that people rush out to buy it on its own merit, is just confirmation that even top MS management KNOWS it’s crap. And doesn’t care.

I’ve worked as a computer tech for a number of years. As such, I’ve of course had to work with MS software every day because that’s what most customers have. While MS’ business practices have long disgusted me, it’s the years of longstanding Windows problems that have finally overflowed my frustration threshold. The once fine art of computer repair (anyone remember checking IRQ usage and changing jumper settings to resolve conflicts? ) has devolved into a neverending parade of spyware / adware / trojan horse / keylogger / virus removals, and little else. A recent study showed that 60% of all Windows systems are infected with some type of spyware. I’ve consistently found that each spyware tool removes only about 25-35% of the malware on a given system, so you have to use 3-4 of them and still can’t be guaranteed it’s 100% clean. I’ve talked to so many customers who were victims of identity theft as a result of malware, that I’ve become thoroughly convinced that doing your online banking or shopping on a Windows machine is utter lunacy. And after cleaning malware and fixing crashes 8 hours/day plus service calls, the very LAST thing I want to do is come home and jack with MORE antispyware updates and crashing on my home network.

I’ve gone from grudging acceptance that sloppy Windows development has kept me in steady employment, to utter exasperation and outright hatred of its existence. I finally swore off Windows in favor of GNU/Linux, and began looking for GNU/Linux or even Mac work because I’m just tired of all the nonsense now. I’m sure there are plenty of others just like me. After all, if we have to learn a new interface on every new Windows release anyway, why not take that opportunity to just learn a better OS instead?

I’m convinced that many MS developers are incredibly bright, energetic, innovative people full of promise. Despite this, Windows is a train wreck in slo-mo. I’ve personally watched its security holes instantly bring huge and powerful companies to their knees. One can only imagine the IT and lost labor costs incurred. But it’ll be a cold day in hell before the “good ol’ boys” at the top will go around firing each other, even after a blogful of well-founded complaints.

Why waste your time and potential on 10-16 hour days, desperately trying to save the Titanic with bailing buckets until you’ve become weather-worn and disillusioned? MS top management has clearly demonstrated where their minds are at. Your talents could be put to much better use making a difference elsewhere.


Upgrade from Windows XP

Micro$haft is preparing to release Windows Vista this year, saying that enhanced security is the top reason why users should fork over the money for the upgrade. And yet, simultaneously, they are also beginning to sell security products to businesses and $50/year antivirus subscriptions to end users. Doesn’t it strike anyone as being particularly ballsy to write crappy software all full of security holes, sell it at exorbitant prices, and then turn around and charge subscription fees to help fix it?? M$, are you for real?

It’s no secret that Vista hasn’t even hit the market yet, and already M$ has released a security patch for it.

To be fair, M$ is right about one thing. Security is, in fact, most definitely the reason why you should upgrade. …But what I take issue with is how they define “upgrade”. If you define “paying good money to move from an exceedingly broken and vulnerable OS to a somewhat less broken and vulnerable OS” as “upgrading,” then have at it, I guess.  I don’t call that “upgrading” — I call it an insult to our collective intelligence.

Microsoft says we should all upgrade for security reasons. (I’m sure the fact that this would line their already-filled-to-bursting coffers with even more profits has nothing to do with this recommendation.) But you know, profits notwithstanding, they are absolutely right. All previous versions of Windows including XP are riddled with security holes, and by all means we all should upgrade. But if you believe for one second that Vista will be the answer to these problems, you are seriously deluding yourself. Naturally M$ will tell you that each succeeding version is THE solution to all previous problems, simply because it’s profitable for them to do so!

A smart consumer will take the wheat and leave the chaff. Yes, each version of Windows will get better as M$ learns from each new catastrophe it has helped create, and we all pay the price (literally) in IT expenditures and downtime while they learn. But when you finally get sick and tired of the merry-go-round, you’ll consider a serious upgrade – to GNU/Linux or Mac.

But first, some excellent free advice from me as a long-time computer tech:

You should always keep at least one backup copy of all your important data in a separate location — in case, heaven forbid, your computer gets stolen, your hard drive crashes, your house catches on fire, or a plumbing problem turns your computer room into a swimming pool while you’re away at work. Whenever you do any software install, whether on Windows, GNU/Linux, MacOS, or any other operating system, you should make an extra backup, just in case you mess something up or a failing sector on your hard drive decides this would be a great time to quit allowing your system to access an important system file.

Yes, yes, you say. I have all my stuff backed up. What do I do now?

GNU/Linux options if you don’t feel comfortable installing it yourself:

  • Find a [GNU/]Linux Users Group (LUG or GLUG) close to you for help. Many of them periodically have “InstallFests,” events where anyone who wants Linux can just bring their computer in for free installation. For example, there will be a very large one this year at the Desktop Linux Summit 2006 in San Diego, California. Or for something less formal, just ask a LUG or GLUG member for assistance. GNU/Linux people are generally more than happy to help and quite eager to share their knowledge.
  • Find a GNU/Linux-savvy computer technician and pay him/her to install it for you.
  • Purchase a computer with GNU/Linux preinstalled. More and more often, major computer manufacturers are selling computers with GNU/Linux installed and ready to go.

A few of the most beginner-friendly GNU/Linux flavors to choose from if you’d like to try doing it yourself:

Mac options:

  • Purchase an Apple computer with MacOS X preinstalled. As of this writing MacOS 10.4 is the newest version.  Mind you, MacOS is proprietary software and as such, is subject to many of the same pitfalls as Windows – it’s just that Apple is better about addressing them than Microsoft is.


Victory is mine!!!

I’m writing this from GNU/Linux with no wires!! I finally got madwifi to play nicely with wpa_supplicant. Now it auto-starts beautifully when I boot up. WOOOOOHOOOOOOOOOOO!! W00t!! There’s nothing lovelier than a secure OS running on secure wifi.

This marks the end of a major roadblock I was experiencing getting everything ported over to GNU/Linux. A couple of years ago I resolved to familiarize myself enough so that I could dump Windows by the time Vista is released. It looks like I am now much closer to that goal, and I am just elated at the beautiful, powerful, malware-free operating system I’m using instead. I’m constantly amazed to learn more of the awesome things it can do.

And incidentally, speaking of Vista, did you hear? Microsoft has ALREADY released a security patch for Vista. No, I kid you not. It was posted on Slashdot under the title “Pre-release security vulnerabilities are inspiring” department. And you wonder why I will not be upgrading!

Anyway, it’s worth mentioning that due to very persistent (and intensely frustrating!) random BSOD (Blue Screen Of Death) problems caused by the Atheros drivers for Windows, I seriously considered returning these otherwise wonderful Fujitsu S7020D notebooks. If we disable the wireless, everything works fine, but as soon as we enable it we get random blue screens complaining about an ar5211.sys file followed by a sudden reboot. Sometimes they don’t happen for days, and sometimes they happen twice in 5 minutes. If you install the driver but don’t install any Windows security updates (very hazardous, as you may know), it doesn’t happen either. So apparently one of the Windows updates has broken their driver, and nobody for the life of them can figure out why. It has taken months of troubleshooting by upper levels of Fujitsu’s support team to find what they “think” will fix it. I have tried many solutions of my own and many of their suggestions now, and up until about 2 weeks ago their efforts were as futile as mine. Finally they have what so far may be a workable solution but I’m not entirely convinced… because while I didn’t actually witness another blue screen, the system did reboot while downloading overnight through the wireless (ironically, the download was a SUSE [GNU/]Linux 10 iso), and Windows displayed the usual “serious error, would you like to report this to Microsoft” message that it gets when this happens. I want very badly to keep these laptops because they’re otherwise just awesome. Exceedingly well-designed, nice and lightweight, and kickin’ hardware. How poetic that the best solution of all for this problem was to switch operating systems. But for the benefit of others who may be in the same boat, here are BOTH my GNU/Linux and Windows tips.

Continue reading