Tag: software

Malware and Web 2.0

For most of us, the Sober worm of 2003 is history. Painful history maybe, but history nonetheless. We’ve updated our virus scanners, checked and re-checked our firewalls, installed all the patches, etc. But just as in the biological world, mutations eventually make their presence known:

A variant of Sober known as Win32/Sober.Z@mm is pummeling servers at Hotmail and MSN with “unusually high mail load,” causing delays in e-mail delivery to Hotmail and MSN customers, said Brooke Richardson, MSN’s lead product manager. Richardson also indicated that Internet service providers besides Comcast may be having problems directing e-mail to Hotmail and MSN servers.

So in a way, Sober has returned, and it’s affecting MSN and Hotmail (though I personally haven’t noticed any problems). I think the return of the Sober worm has greater importance this time around though. When Sober wreaked havoc on servers in 2003, Web 2.0 (which I use in this post regardless of how accurate the term is) was but a glimmer in the future. Hosted services were still considered unready to take off. Now though, Web 2.0 is all the rage and hosted services are popping up everywhere.

So what happens in a few years when the vast majority of our data is stored online? Creating some sort of malicious software to target those data silos will become increasingly irresistable for those who write viruses, worms and the like. And that introduces a pretty big problem for users, and for those running the hosted services.

In a few years, all of my pictures will be on Flickr or something similar (in fact most of them already are). Many of my thoughts are online already on this blog (and millions of people use a central service like LiveJournal, MSN Spaces, Blogger, etc). Podcasts, video, documents and even more types of information will undoubtedly go online as the services become feasible and popular (and who knows what Windows Live and Office Live will mean). Combined with the data of millions of other people, this storage of my data is firstly a very juicy target, and secondly increasingly difficult to protect. All of that data needs to be proactively protected from attacks, it needs to be backed up in case of a successful attempt, and it really should be available all the time. And when the demand for sharing this information and data with other services on the rise (think APIs in the Web 2.0 world) security becomes somewhat more difficult.

Combined with the “mini bubble” we’re starting to see, in which corners will inevitably be cut in order to get products and services to market, I think malware will become increasingly more important. No longer will viruses and worms simply target websites, they will target our data. And don’t be fooled – a virus targeting the data on your local machine and distributed malware targeting the data of millions of users are two very different scenarios. If you lose the data on your local machine, you’re faced with a setback and the need to rebuild and move on. If the data of millions of users is made inaccessible, destroyed, or otherwise attacked, the people who own the data are affected, but so are countless businesses that rely on that data. It’s potentially much worse.

Granted, distributed technologies that are becoming more and more commonplace will help to alleviate some of the problems posed by malware of the future, but they can’t completely prevent outages or other negative effects. True also is the fact that platforms in general have matured and are more secure than in the past. However, the potential for major problems still exists.

Today, malware might make a website unavailable. Tomorrow, malware might make you (or at least the most important data which describes you) unavailable. Let’s hope those in the driver’s seat of the Web 2.0 era are considering security too, or we could be in for a very rough ride.

Firefox 1.5 Released

The Mozilla Foundation has released the first major revision to Firefox, version 1.5. I downloaded and installed it tonight on both machines without any problem. In fact, I quite like how simple upgrading the extensions was – much improved over previous installs. Here’s what’s new:

New in the 1.5 version are more sophisticated security and performance features. In addition to a more effective pop-up blocker, the updated browser is designed to ease security updates. The program checks daily for patches, downloads them automatically and then prompts users to install them, said Chris Beard, vice president of products at Mozilla.

Other improvements include “forward” and “backward” browsing buttons designed to load Web pages more quickly. A new drag-and-drop feature for browser “tabs” lets users keep related pages together.

If you’re a Firefox user, definitely download the upgrade!

UPDATE: It seems that all of the engines I had in my search box were removed after upgrading, and now when I try to add them again, they appear as blank entries in the list! Not sure what the deal is with that!

Read: CNET News.com

Don't Wait for Vista

Post ImageMy friend Kevin recently posted about how impressed he has been with the Windows XP experience (he switched over from Apple). No matter your religious affiliation, it’s hard to ignore that XP is a very stable, solid operating system, and the upcoming Windows Vista will only build on that. In fact, Vista looks so promising that the Gartner Group has changed their original advice:

Gartner Group has clarified its advice for when users should consider moving to Microsoft Vista, saying that organizations still running Windows 2000 should consider upgrading as soon as Vista ships.

Previously, Gartner had advised that “companies shouldn’t rush to upgrade to Microsoft Windows Vista” and that “most firms could safely hold back until 2008.”

I was impressed with how stable the Beta 1 release was, at least as far as the fundamentals are concerned. I am really looking forward to Beta 2. And seriously, 2008? Five years has been long enough without a new version of Windows, thank you very much.

Read: CNET News.com

Ready to Rock the Launch!

Post ImageToday was Edmonton’s turn to host the Launch Event 2005, Microsoft’s big push around the release of Visual Studio 2005, SQL Server 2005 and BizTalk Server 2006. The completely booked event took place all day today at SilverCity in West Edmonton Mall with TechNet leading the morning sessions and MSDN taking over in the afternoon. All in all I’d say that things went very well!

There are so many new technologies and features in the three products that cramming them all into a one day event is impossible. I think the speakers (both from MSDN and TechNet but particularly from MSDN) did an excellent job of sharing just enough. It wasn’t fluff, but it wasn’t over-your-head crazy either. Over the next few months there will be many more events around these technologies so that developers and IT professionals can dive in a little deeper. Fortunately, everyone received complimentary software today too, so there’s no excuse not to get your feet wet if you attended!

Edmonton is only stop #3 on the ten city tour, so I wish the MSDN and TechNet teams luck as they continue their trek across Canada. I know the snow last night probably wasn’t the warmest welcome we could have given them, but that’s what you get for hosting an event in Edmonton in November!

I took a one picture today, which you can see in my Flickr stream – lots of developers! There are more pictures and info up on Sasha’s blog too. For members of the Edmonton .NET Wizards, or for anyone who’s interested in joining, please share your feedback on the wiki!

Read: MSDN Canada

Another Reason Why Apple Sucks

Post ImageThere are many reasons to love Apple, and yet many more to hate them too. An article I came across today falls into the latter category (and actually, I noticed this at the Portable Media Expo over the weekend):

iPodder Lemon was a free application distributed under the General Public License, or GPL, that allows users to manage their podcasts–audio and video programs downloaded from the Internet to an MP3 player.

The application’s developers say Apple’s legal team asked the open-source group to drop the name of the software because it suggested a connection to the company’s flagship iPod device. The developers have changed the name of the product to Juice.

What is happening here? Apple is not protecting their intellectual property. I don’t believe the average user would confuse the iPod with iPodder Lemon. I also think that iPodder Lemon probably contributed to some sales of the iPod, in fact helping Apple. What’s happening here is that Apple is using their big-company muscle to try and own the idea of “podcasting” in the minds of consumers. Anything related to the iPod, they seem to want to control.

There is a fine line between protecting your trademarks and brands, and bullying applications, devices and services that are part of your ecosystem. I think Apple crossed the line this time! In any case, Juice will continue to be a great application I’m sure, despite the name change setback.

Read: CNET News.com

Get Visual Studio Express FREE

Post ImageThe official launch date for Visual Studio 2005 and SQL Server 2005 was yesterday – I’ve been waiting a long time! Congrats to the teams for getting everything shipped. And there’s good news for novice, hobbyist and student programmers too – you can get the Express tools for free:

We originally announced pricing of Visual Studio Express at US$49. We are now offering Visual Studio Express for free, as a limited-in-time promotional offer, until November 6, 2006. Note that we are also offering SQL Server 2005 Express Edition as a free download, and that this offer is not limited to the same promotional pricing period as Visual Studio Express.

If you’ve ever wanted to start playing around with .NET or ASP.NET or anything else that Visual Studio can help you do, this is a great opportunity. Download sizes range from 35-70 MB (excluding SQL Server 2005 Express) and you can choose your edition here. Happy coding!

Read: Visual Studio Express

Microsoft Live – all about services

Post ImageTo truly understand what the new Windows Live and Office Live services are all about, you need not look any further than Microsoft itself. Thanks to the magic that is Robert Scoble, we get a very honest description:

Yesterday will be remembered not because of what we announced. But because of the direction we’re now headed in.

Microsoft is no longer an applications company. It is a services company.

Don’t get caught up in the badly-pulled-off demos yesterday. There is something a lot deeper happening inside Microsoft than that.

That’s important to understand. People do not remember the famous Bill Gates Internet Memo as the day Microsoft decided to integrate Internet Explorer into Windows (though that was certainly a result). Instead, that infamous memo is remembered as the day Gates and Co “got” the Internet. I expect yesterday’s announcement will be remembered in much the same way.

That said, they still launched a product yesterday, and at first glance, it sucked. How could they release a web-based service that doesn’t work in anything other than IE? Scoble has an answer for that too:

So, when you see Microsoft not supporting Firefox out of the gate, you are seeing that we don’t get the role of influentials in gathering audiences.

Just imagine if Microsoft both understood “the role of influentials” and had Robert Scoble on the payroll!

Microsoft Live

Post ImageMicrosoft made a fairly big announcement today in San Francisco. Some will say this is Microsoft playing catchup or follow the leader, others will say this is Microsoft innovating, and still others will say this is simply Microsoft making make a smart business move. I think I fall into the latter camp. Here are the details:

Kicking off what he called the “live era” of software, Microsoft Chairman Bill Gates said on Tuesday that the company plans to launch new Internet-based complements to its core products.

Gates said Microsoft is working on two products, “Windows Live” and “Office Live,” that create opportunities for the company to sell online subscriptions and advertising. Both are targeted at smaller businesses and consumers.

Services like Windows Live and Office Live have been expected for a very long time, so I can’t say the announcement is earth shattering. It will have very far reaching effects though. Joe Wilcox has a couple of good posts where he explains what “Live” is, and what “Live” is not. Here’s my favorite “not”:

While Google might be a catalyst in Microsoft’s services strategy, the reasons for launching Live are much broader than the search rival. Microsoft is looking to accomplish a couple things: For MSN, the new services are a way to drive additional revenue–whether from advertising or paid services–off clearly identified market segments, small businesses for Office Live and active online consumers for Windows Live. For Windows and Office, Microsoft hopes to generate greater customer value and make new-version Office and Windows upgrades more appealing. MSN has done a tremendous job cranking out new products and services, well ahead of the long Office and Windows development cycles. The point: If Google didn’t exist, Microsoft probably still would have embarked on a services strategy.

I expect that “copying Google” or “defensive move against Google” will be the most commonly assumed reasons for the new Live services, but I agree with Joe. There’s a lot more to Live than Google, and let’s face it, Windows and Office services over the Internet were pretty much inevitable.

A few people have asked me what “Live” means. While I see Microsoft’s reasoning for tying into Office and Windows brands, I’m skeptical of Live’s appeal. Live certainly doesn’t grab me, and, yes, there is uncertainty about what it means. Is it supposed to mean the living Web? Maybe community or safety? I’ll let Microsoft answer that question.

Did “Windows” grab anyone when it was released? How about “Office”? (Though I suppose both of them described intuitively their respective functions.) I’ll admit that Microsoft has some absolutely terrible product names, but I think the simplicity of Windows Live and Office Live will work well for the company.

Not much word on the developer side of things yet, if there is such a side. As a platforms company, you would expect Microsoft to offer access to the new “Live” platform. Certainly Gadgets and some of the other Vista-era technologies will be important, but details are yet to emerge.

I’ll probably have more to say on “Microsoft Live” later – it’s a lot to digest, even if it was expected.

Flock Developer Preview

Post ImageAn application called Flock has been hyped and hyped again recently. Naturally, I had to see for myself if it lived up to the hype, so I went and downloaded the Flock Developer Preview this afternoon. What is Flock?

Flock is based on the open source Mozilla code base. All of our modifications to Mozilla code are released under the MPL, GPL and LGPL licenses. 100% of the Flock-created code to date is released under the GPL license. Going forward, we may incorporate some proprietary code from partners, or even created in-house, but our plan is for the vast majority if not all of our code to be open source for the foreseeable future.

I guess the idea is that Flock is a so-called “Web 2.0 browser” based on Firefox. So far it connects up to del.icio.us and Flickr. As others have noted, it’s still very early in the application’s development so I’ll try not to knock it too hard.

Let me get a few things out of the way first. Their website sucks. They don’t have any images (not even a logo!). The download is huge compared to Firefox. The browser itself runs incredibly slow compared to Firefox (who knows what they did – it’s supposedly based on the very quick Firefox). I don’t see how they are going to make money – their “roadmap” is kinda funny. Much of what Flock promises can be accomplished via extensions, and there’s reason to believe such features will be rolled into Firefox and featured in the next IE version anyway.

Never say never, but I don’t see myself using Flock in place of Firefox or IE anytime soon. I’m not sure that del.icio.us, blogging and Flickr integration would be enough to tempt me either!

Ah that feels better. The only thing worse than a hyped application is a hyped application that sorely disappoints. Keep in mind this is only the developer preview, but I’m not holding my breath. Mark Evans wrote about Flock today too.

Read: Flock

Nick Bradbury is dead on!

Post ImageYou know how you try to say something, only to find that someone else has expressed your thoughts in simple, to-the-point language? It’s so great when you come across it, as I did with Nick Bradbury’s post on Web 2.01. Back in early September I wrote about what I called Web 2.5, essentially the current “bubble” taking advantage of rich clients. Here’s what Nick had to say:

It’s a mistake to rule out the desktop.

I rely on a number of excellent web apps and I expect to see the web continue to become the dominant application platform, but I believe reports of the death of desktop apps are greatly exaggerated. The future of the web isn’t entirely web-based.

Over the next few years we’ll see a number of new desktop apps which take advantage of the web as a platform, providing many of the benefits of a web app with the speed, usability and (in some cases) privacy of a desktop app. The next version of FeedDemon, for example, ties into an online API, and it enables customers to choose which data lives “out there” on the web and which stays private to their computer. We’re going to see much more of this.

Right on Nick! I completely agree – we’re going to see some killer rich client apps come out in the next couple years, especially once Windows Vista hits. Of course, the rich clients that take advantage of the web as a platform will not be limited to Windows, but I think that’s where we’ll see the apps that make the biggest impact.

Read: Nick Bradbury