|
|
|||||||||||||
January 2007 Choosing Windows Vista, Phone-to-Calendar synchronisation, Blu-ray v. HD DVD, How full is your inbox?, How safe is that web site?
August 2006 Dell 9G PowerEdge server overview, Shop online? You'd have to be certified!, ADSL to the power of 8, Control your server 100ft away, Computing and telephony converge, Where are my Outlook pictures?
April 2006 Faster broadband, memory upgrades, What does your PC say about you?, Player security updates, Clock screensaver
**** NewsBytes ****
Weather gadget
The Met Office has released an add-on for the Firefox browser that gives you an 'instant weather' sidebar for your area. Showing the the latest observation and forecast Met Office data, the side bar can be toggled on and off from your Mozilla Firefox browser with a tools button allowing you to customise the display for area, warnings and types of weather elements (rain radar, satellite cloud cover, etc). Sadly, you can't choose your own weather.
Phishing - will you get hooked?
PayPal has launched a campaign to help consumers arm themselves against phishing attacks. With increasingly sophisticated emails on the loose that inveigle unwary readers to give away confidential info, Paypal's Can You Spot Phishing? challenge lets you test your instincts and sharpen your wits to avoid scams.
Green Ethernet power saver
D-Link's new Green Ethernet push promotes the company's power-saving series of DGS switches, claiming up to 80% power savings on its DGS-2208 model. By detecting link status, Ethernet cable length and putting unused ports into a 'sleep mode', the aim is to reduce power consumption, heat dissipation and extend product life.
First wireless WAN?
Vanco isn't a company employing fleet vehicles but one could forgiven for confusion as it teams up with supermarket retailer Somerfield in what is claimed to will be the first corporate Wide Area Network (WAN) based on WiMAX or 'wide-area wifi'. The solution is based on Freedom4 WiMAX services from Vialtus.
Vista SP1 finally arrives
The much discussed Service Pack 1 to Microsoft's current Windows operating system is finally shipping, after a 5-month delay from its first mooted November delivery date. Large resellers such as Amazon UK will hold stocks ready for a 4th April release, though the massive 434.5MB SP1 was made available on Microsoft's Download Center website from mid-March. A smaller single-PC version will be rolled out via Windows automatic updates in the following month. Users should note that a small number of problematic device drivers and software (eg Symantec) may block the Vista SP1 update - check knowledgebase article KB948343 first.
EeePC rivals
Ever since the launch of the rave EeePC by Asus last year, rivals have been queueing up to to produce cheap Linux-based mini-laptops, largely aimed at the educational sector but gaining favour with ordinary portable PC users. Intel's Classmate PC has been joined by British PC supplier Elonex entering the fray with its £99 Elonex ‘ONE laptop.
Dell welcome
Dell has welcomed Co-Operative Systems as a partner to its Premier.dell.co.uk web site, which allows us easier tracking and control of Dell products on order, helping to save your organisation time and money through all phases of IT product ownership.
Squashed Blackberry!
Case-cracker extraordinaire John Lee found that on opening up the BlackBerry Curve 8310, the device is held together by just 6 screws and declares it "Scary and fascinating".
**** end of NewsBytes ****
| ^ Back to contents ^ | ||
|
1. Want to send secure email? Join the club
Sooner or later people who use email a lot want to send their messages securely. But they haven't a clue how to make it happen. | ||
| More help at hand. All the back issues just a click away |
The first step on the road to encryption for email junkies comes with the realisation that email messages are not inherently private – a false impression gained by the fact that missives travel desktop-to-desktop – but are actually fairly public. For anyone who needs to send healthcare, legal, financial or human resources data by email, the revelation may come as a shock. The second step is the urge to put an end to the first, pronto. That means, preventing the risk of messages being 'tapped into' by unknown parties during their travels through the routers and Internet service providers across the planet.
For the user, the security problem arrives almost as soon as they compose their first message
Secure email will perhaps become the 'elephant in the room' of 2008, when the masses who use ordinary email suddenly decide they want to send secure emails easily to each other. But if it were that easy, surely it would have happened by now? The baseline requirement for secure communication is that the two corresponding parties have to agree a secure method, and that if a third party is involved (an ISP, a secure email service), then both parties have to agree to a trusted third party (TTP) supplying that service, as with credit cards. Two tin cans and a piece of stringCommunications can be very simple and secure but not when large numbers of people want to take part, so it's worth considering two analogies first.
One of the simplest examples of 'secure' communication is a UK fax. Transmissions are made directly phone-to-phone. The sender only has to trust one phone provider (usually BT) because by law the only interception allowed is a UK government wire tap. However this method does presume that the fax recipient at the far end is the sole viewer, not a whole office full of nosey co-workers! But to move to a solution where whole company branches or organisations can communicate securely, not only across the building but across nations, and not just with each other but with international colleagues, purchasers and suppliers, requires a leap in technology. 
Join our clubOrganisation-wide secure email systems have already been created, and are relatively simple for any single techie to implement, armed with a webmail front-end like Horde or SquirrelMail and a secure web-based https server: set up a few users and hey presto, they're all sending encrypted emails to each other. 
Larger and more tightly secured systems exist in the form of IBM's Lotus Notes/Domino or through the creation of a Virtual Private Network (VPN) with site certificates. For the user, the problem arrives (almost as soon as they compose their first message) when they want to 'talk' to someone outside that email domain. Similar systems can be hooked up securely site-to-site and, at a pinch, even differing systems, however the technical and political hurdles in inter-site security usually mean that email users will turned to unsecured workarounds (such as using their personal email accounts to deliver sensitive information to associates) long before switch-on day arrives. The reaction of the largest institutions (consider health care for instance) is one of not accepting sensitive information (eg patient data, criminal records) via email unless it hails from within their domain. In other words, "get an account with us first, then we'll talk to you", however this overbearing approach is hardly practical because the diversity of domains and email systems means that all potential users are never going 'join a single email club'. A matter of constitutionThe most spied upon people in Europe BBC reporters give a snapshot of the extent of surveillance across Europe. To illustrate the issues surrounding email communications, one only has to consider what happens when your email travels through routers and mail servers in another country. Suddenly, the rules governing email privacy are at the mercy of varying governments and it's a matter of examining their respective constitutions to see how they behave. While the UK has created a kind of yin-and-yang with its Regulation of Investigatory Powers" (RIP) Act and Data Protection Act, the Greeks are revered for their constitution's standard bearer of human rights whereby "Secrecy of letters and all other forms of free correspondence or communication shall be absolutely inviolable". On similar standpoints, some human rights organisations will not countenance employing providers located in the US, whose Fourth Amendment aims to protect citizens from 'unreasonable searches and seizures' by government, but not necessarily by private entities. Open standardsAre you using SSL? Simple protection for email at home A simple first step for ordinary everyday email users is to set up an SSL (Secure Socket Layer) with your email provider's server. Providers often run SSL services free of charge and the SSL certificates are normally issued by a trusted third party agency such as Thawte.com or VeriSign. The main problem with all these systems is persuading people, both users and techies, to adopt a common technique. Above all what is needed (and exists) is a set of open standards for transmitting email securely between varying email systems - in other words where the encryption algorithms are independent and not defined as part of the proprietary mail serving components. A series of open encryption standards such as PGP (Pretty Good Privacy), OpenPGP, S/MIME (secure Multi-purpose Internet mail Extension), TLS (transport layer security) and GnuPG simultaneously circumvent the join-our-secure-email-club scenario and avoid the possibility of automatically decrypting messages at the periphery of the in-house secure email system, so that most other mail (plain text) systems can understand them. By using Public Key Infrastructure (PKI), only the public key of a key-pair is published or swapped with email recipients, while the recipient can decrypt messages just by entering their own private key. A crude physical analogy for this might be to imagine that you can produce and distribute as many old-fashioned black cash tins (the public key) as it takes for your correspondents to communicate with you. Once they insert the contents, lock the tin and send it back, only your private key can open the box. Solutions
The turn of the century spawned plenty of proprietary secure email systems, such as the web-based Hushmail, offering PGP-encrypted mail stored on its web servers, and CryptoHeaven, that employs only locally-installed software for encryption and whose HIPAA-compliance (Health Insurance Portability and Accountability Act) means it has been taken up by the US healthcare and legal industries. The latter does not rely on a third party keyholder, but does employ proprietary software. The former's adherence to PGP standards is also laudable, were it not for security concerns over reported backdoor privacy violations to law enforcement agencies from late 2007, denting a hitherto enviable reputation. 
A common solution is take the massively popular Mozilla Thunderbird email client and bolt in Enigmail's OpenPGP extension. The result is an email client capable of encrypting messages that can be read by other PGP-enabled recipients with whom you swap your public key, irrespective of which software they use. Automated message-signing and single-click options take the hassle out of swapping and managing keys, while also avoiding the management of hundreds of personal passwords. Contacts
-IB- |
Good read? |
| I | B | |
| ^ Back to contents ^ | ||
|
2. Crypto Anywhere secure email
Crypto Anywhere is a small email security utility promising strong encryption, portability, PGP-style public key encryption and personal password-based encryption Integration with popular email clients such as Microsoft Outlook and Outlook Express. | ||
| More help at hand. All the back issues just a click away |
Installation
The installation wizard started confusingly by referring to SecExMail (another Bytefusion product) and also detected a non-existent installation of itself, but thereafter settled down and ran fairly smoothly with expected procedures – choosing the number of bits (1024 upwards), employing scattered mouse clicks as a random element to generate the cryptographic seed for a private key and so on. Built-in mailerCrypto Anywhere is a complete mailer and it's portable too, so that just by copying it to a memory stick, or pen/thumb drive, you can carry a secure mailer around with you to anywhere there's a handy PC to slot into. On sending your first mail, the local firewall (assuming one is installed) will ask permission for a couple of small applications (dig.exe and cryptoanywhere.exe) to send traffic outwards through your firewall. Their recommended (and more secure) method of sending encrypted mail is Direct Drop which bypasses the ISP mail server and is useful for sending mail from Internet cafes. However Direct Drop may not work in your situation, so it’s a matter of switching to transmission your ISP – assuming they will authenticate your mail via this method. In the event of a refusal, you may see an ISP message such as "Error 220: UCE mail not accepted" in which case the plug-in is the next best bet. Outlook plug-in
Where the software becomes useful for many users is as a plug-in to Outlook; a new button "Encrypt before Send" appears inside the message composition. Incomprehensibly, this is actually a switch, even though its depiction and proximity to "Send" suggests its a button. In other words, you can toggle it on and off, then click the Send button; a tick box would have been more logical. There is then a choice of Password protection or Public key encryption . 
The second method will conform to other widely-used standards such OpenPGP, while the first wraps up your message with a proprietary passphrase that you must communicate to your correspondent - obviously by some measure other than ordinary email, such as phone or text message. Personal password protection
The recipient sees a message entitled Crypto Anywhere Mail containing a zip attachment, which bundles your message in a self-extracting .exe file, such as secret073-0959.exe. Drilling down into this zip file and running the secretxxx-xxxx.exe program eventually prompts you for the passphrase you exchanged earlier and - bingo! - the message reveals itself. For the occasionally confidential message, the proprietary password protection and its simple exchange is ideal for single person-to-person communication in that the primary benefits are:
This simple architecture is soon outgrown however, on realising your inbox will fill up with masses of look-alike messages with a subject line of Crypto Anywhere Mail – subject indexing is basically destroyed. Worse, an address list of say a dozen secure email recipients will mean having to store a dozen different passphrases, and that location must itself be equally secure. Public key encryptionThe second secure transmission allows for configuring private and public keys as used in standard Public Key Infrastructure (PKI) implementations such as OpenPGP and PGP 8.0. Having created a private key (known only to you, the sender) your public key string is swapped with those of other correspondents. Thereafter all encrypted emails simply prompt for your passphrase, which then applies the private key and allows you to read the contents. This standardised method is far more efficient for secure emailing between lots of people who, once they have swapped public keys and warmed to the comforting cocoon of secure mail, will probably use nothing else. It also means that correspondents can use their own, differing email software, so that a Thunderbird user can write safely to an Outlook recipient and vice-versa. DrawbacksApart from a few confusing quirks mentioned, all support has dropped away, even for the paid up version, though there is a forum at http://www.bytefusion.com/support/forums/index.php Alternatives: Thunderbird with secure OpenPGP plug-in on a U3 USB stick Contacts-IB-
|
Good read? |
| I | B | |
| ^ Back to contents ^ | ||
|
3. Power nap: coming out of hibernation
Put your computer to sleep for its own good. But not permanently! | ||
| More help at hand. All the back issues just a click away |
The Hibernate function in Windows saves power and therefore electricity costs, minimises component wear, and diminishes heat emissions with a resultant reduction in its carbon footprint. All automatically. 
As as if global benefits weren't enough, some of the more local advantages to the user are:
Hibernation effectively wraps up an 'image' of the system state – complete with all open files, documents, email state, window positions, external hard drives and peripherals - and stores it on the hard disc, ready to unpack when re-activated. The PC then shuts down (drives, fans, everything) and no longer depends on mains power. Clearly this deep kind of stupor is especially beneficial for laptops and thus usually enabled by default, so if you've experienced your new laptop frequently 'going into a sulk', examine the power settings before you reach for the warranty. Laptop hibernation is often enabled specifically for battery mode only, to avoid inconvenient shut-downs while charging. If it isn't switched on, you can set it like this: Control Panel | Power options | Hibernate tab What's the difference between Standby and Hibernate?
Outwardly, the difference looks like this:
To get a better idea, we have to understand its workings.
To restore it all, just press the power button as usual and, in a few seconds, all files and documents open on the desktop exactly as you left them; even LAN, Internet connections and often logins to web sites pop back into place. The resumption from Hibernate mode puts up a brief progress bar labelled "Resuming Windows ..." to indicate it's not starting Windows from scratch. Power structure: shuteye, shutdownA logically-phased power-down scheme over time would follow this sequence: 
Changing Standby to a larger number of minutes often forces the Hibernate value up a notch, after all, having the computer attempt to power down everything except PC memory doesn't make much sense when the Hibernate function has already removed its ability to 'think' by switching the whole thing off! Segmented sleep: recommended settingsAn aggressive battery-saving regime might look like:
Windows Vista puts Sleep and Hibernate modes on the menu The Hand That Rocks The Cradle ...For really economic power-savings, one can trigger the standby or hibernation modes manually:
Test it for yourself. Not exactly "ruling the world", but it imparts a feeling of control and does work. Resumption of dutyWhere it's just the monitor that has been powered down, the PC springs into activity just by nudging the mouse or tapping the keyboard. A return from Standby might say 5-10 seconds, while a return from Hibernate will likely take 30 seconds or more, but obviously depends on how 'busy' your PC desktop was before. There is also the factor of how long the hard drive takes to spin up again if that was powered down too. However both are a good deal quicker than a start-up from scratch, so much so in fact that some users employ Hibernate permanently instead of a conventional shut-down, though some security concerns have been voiced over this (see Losing Sleep below). 
EcoButtonFor those who can't be bothered with all the setup and fiddling with menus, there is a nice, friendly green ecobutton™ they can buy to do the power-saving for them. When you go off for coffee, lunch, a meeting, whatever ..., just bang this physical 55mm diameter, illuminated button and your computer sleeps peacefully, saving all your ongoing work. A PC switched on 8 hours a day engaging 'ecomode' for 3 hours could save around £50 in electricity costs per year, but the online savings calculator will predict exactly what cash and CO2 savings can be achieved, and the included software records the actual savings made. See if you qualify for a free ecobutton trial. Losing sleepBecause everything including the network card is powered down in Hibernate, re-establishing connections with switches and routers may be variable. However a quick right-click on the network LAN icon and the Repair function renews the machine's IP address and usually solves it. Restoring web site and webmail logins will depend entirely on whether such sites have predetermined idle time-outs, a common security feature. 
Remember that Standby mode retains power to the memory and will therefore lose data in the event of a mains power failure, while Hibernate mode (if invoked) will save everything to disc and recover it all again later. Some security experts have cast suspicion on the storage of sensitive data such as passwords and encryption keys in the hiberfil.sys file even when the system is conventionally shut down; one way to remove the file is simply to disable hibernation for a period. -IB-
|
Good read? |
| I | B | |
| ^ Back to contents ^ | ||
|
4. Stormy weather equals PC-killer
March gales left tens of thousands of UK homes without power. But tricky storms can leave you minus a whole lot more when the power comes back on. | ||
| More help at hand. All the back issues just a click away |
Whilst most modern offices have good electrical earthing and UPS devices to protect services against surges caused by lightning, many home users do not, even where tele-working staff are critically dependent on data links. It is good practice to protect home equipment with at least a surge protection block, for essential items like the router, PC or laptop, and printer. This SurgeStrip™ from Belkin comes in a hard-plastic casing to provide basic protection from power surges, spikes, and lightning strikes. for entry-level computer and peripherals. At around £8-10 including a lifetime warranty, there are versions with 4 sockets or 6 sockets and 1-metre or 3-metre mains leads. Contact us for supplies-IB- Acknowledgements: Philip Anthony |
Good read? |
| I | B | |
| ^ Back to contents ^ | ||
|
5. Paperless billing comes of age
| ||
| More help at hand. All the back issues just a click away |
In the same month that sees high street heavyweight Marks & Spencer ending acceptance of payment by cheque, BT, British Gas and many utility companies are now actively encouraging you to receive your bills as email attachments. The 'green' paperless aspect, whilst heavily promoted, is a bit of a thin case as many recipients will print the bill out anyway. The truth is that this system its a lot more efficient for the sender but at least they are sharing the benefits of this by giving discounts for those who accept paperless billing. So for many people who also bank online it makes a lot of sense to go with the flow and take up these new systems. For those with a long memory (in IT terms that's anything over a week. Ed.) and historical perspective it has taken just 8 years from 'dotcom guy' - Mitch Maddox who endeavoured to live for a year on solely what he could buy over the net - to using the net in some form to become the norm for over half the expenditure of the modern consumer. -IB- Acknowledgements: Philip Anthony |
Good read? |
| I | B | |
| ^ Back to contents ^ | ||
|
6. Q&A: How to copy plain text from web sites
Question 
Hi Mark, I often grab text from pages on our web site to insert in my documents, but I don't have the original web pages to extract the text from. When I do a simple copy/paste, it also puts in a whole load of gobbledy-gook commands into Word, which are very time-consuming to remove. Is there a quicker way I can end up with just the text? | ||
| More help at hand. All the back issues just a click away |
This is a common problem, in that many people find it is quicker to copy a web page than to contact the web editor/controller and ask for the original text. And yet a blanket copy (using Select All) brings over heaps of unfriendly HTML tags, since the basic text content is inevitably bound up with the code that presents the look of the page. The good news is that a couple of quick techniques will achieve the pared-down text you seek. If you can manage the simple bit of Word programming required for the second technique, that is definitely the quickest way of getting plain text out of anything you copy (don't run away just yet, it's a trivial Word macro). A. Copy/paste using Windows Notepad(no programming required) 
If you go for the 'Notepad method', it will probably worth creating a single-click icon for it on your Quick Launch toolbar on the taskbar especially since it doubles as an excellent message pad. B. Copy/paste using Word (or OpenOffice)(short macro programming required) Record the macro like this inside Word:
The optional section creates a shortcut key combo (in this case Ctrl+Shift+P so that no menu clicking at all is needed to work the macro. The Word macro recording seems to have a bug for pasting unformatted text, hence the need to go back and edit in the penultimate step. Note that more or less the same macro can be programmed in OpenOffice which doesn't seem to contain a bug. 
Using Word macro - menu version
Using Word macro - shortcut key version
-IB-
|
Good read? |
| I | B | |
| ^ Back to contents ^ | ||
|
7. Quote of the month
| ||
| More help at hand. All the back issues just a click away |
Stumbling across various IT Q&As littered around the worldwide web, we are indebted to Josef Assad, Independent Information Technology and Services Professional for his answer to the question ... What's the best way to protect a large list of passwords, yet still keep it easily available to multiple analysts? ... which was ... "Role-based access control. If you're sharing out passwords, your architecture is the problem. Don't go looking for a crutch to prop up a faulty architecture." -IB-
|
Good read? |
| I | B | |
| ^ Back to contents ^ | ||||
|
Clicks of the Trade - the key to enhanced laptop functions
--- Quick tips for happier clicks! --- | ||||
| More help at hand. All the back issues just a click away |
-IB-
|
Good read? | ||
| I | B | |||
^ Back to contents ^
Opinions expressed within InfoBulletin do not necessarily represent the views of Co-Operative Systems.
E&OE
|
^ Back to contents ^
|
|
Read recent and past issues of InfoBulletins on the Web at http://www.coopsys.net/ibindex.htm or search our archives and subject index.
We hope you found InfoBulletin useful! If you would like to comment on any of the articles or request particular subjects to be covered, mail us here.
|
||