Joe Poniatowski

Two of the worst causes of problems in personal computers these days is the prevalence of spyware and adware. Spyware and adware are types of malicious software (AKA malware) that infect PCs. Unlike other malware like viruses and trojans, spyware and adware don’t exist to cause damage directly, but to collect information about a user’s surfing habits, purchasing preferences, etc. and send it to marketing agencies (spyware), or to serve advertisements to the user, often making them appear as if they are normal pop-ups encountered while surfing the web (adware). Both these types of malware consume CPU cycles, memory, and network bandwidth, causing degradation in system performance and stability. Severe infections can make surfing the internet impossible or even render the entire system unusable. On top of that, spyware serves as an invasion of privacy, because the data collected can be used not only to target you with unwanted advertising, but quite possibly with identity theft as well.

The source of these infections can be email attachments, or files downloaded from the internet disguised as (or embedded within) useful software. Some adware and spyware can also be picked up simply by surfing to certain websites.

Removal of this type of malware is usually accomplished with the aid of utilities written for this purpose. There are free and commercially products available, each with their own set of strengths. Spybot Search & Destroy (safer-networking.org) and Adaware (lavasoft.de) are two long-standing products which offer free versions for personal, home use. Running scans with both these products, one after the other, will allow you to effectively remove most malware. Some objects however embed themselves so deeply within the operating system that free tools cannot completely remove them. There are a number of other tools available for dealing with these nefarious objects, each customized for the particular type of infection they’re designed to combat. For example, CWShredder (us.trendmicro.com) was designed to remove a rather insidious form of web browser hijacker, which redirects your searches, changes your home page, and creates bookmarks to other sites. Another tool for combatting hijackers and other malware is hijackthis, also from TrendMicro. Both of these tools are for experienced, technical users. You have to know specifically what you’re looking for. This is especially true of hijackthis, which will happily let you remove components that are actually quite critical to your system.

For these infections that are harder to find and kill, or if you’re running in a corporate environment and want continuous updates and real-time protection, you should consider a commercial offering. Adaware Pro sells for $39.00. The cost of the corporate edition of Sypot S & D is not given on their website.

An ounce of Prevention
A strictly commercial product (with a free trial) is >SpyEraser 2 from Uniblue ($29.95, uniblue.com). In addition to the ability to remove most spyware and adware, it offers real-time, continuous protection against becoming infected in the first place, and automatic daily updates. A free scan of your system is available from their website, as is an award-winning process library that can help you identify potentially dangerous processes that are running invisibly on your system.

Whether you decide to collect a set of free utilities or take the plunge and purchase a product depends on your level of expertise, the amount of free time you have to investigate and learn to use the various tools, and if you want or need the technical support that comes with a commercial product. In any case, it should be clear that you have to do something to combat spyware and adware on a regular basis if you want to keep your system running efficiently.

As reported a few months ago, I wrote a series of articles for an anonymous Helium Marketplace publisher related to PC Optimization. Well, they bought one - an article written ‘on spec’ about the benefits of a paid-for registry optimizer. Since I had an inkling that the publisher is Uniblue software, I made sure to mention their product. I did not mention it in the article, but my choice for free registry optimizers is CCleaner. Aside from that omission, the article has valid information concerning features to look for in a registry cleaner. An excerpt follows. For a limited time, the article can be read in it’s entirety. Once Uniblue publishes it, it will be removed from Helium, since they bought exclusive rights to the content.

---

Periodically cleansing and optimizing the registry of any Windows(c) based PC is a necessary part of system maintenance. The registry acts as a data store, telling the system where to find vital components, what resources to load at boot time, and setting the correct parameters for critical operations. As software and hardware components are installed, updated, and removed, the registry tends to become bogged down with obsolete references, which can slow down and destabilize the system. A good registry cleaning utility can restore the performance and stability of the system by removing these obsolete references and repairing broken links and pointers. There are several free registry cleaners available, and most of the more popular ones will do a good basic job of cleaning the registry. Users who require the absolute utmost in uptime and efficiency would do well to consider one of the commercial offerings for a couple of important reasons. First, few of the free cleaners provide the full set of features offered in the best paid-for titles. The ability to defragment the registry is one such feature that few of the paid utilities offer, let alone the free ones. On top of that, some of the most popular free ones have have a reputation for mistakenly deleting required entries from the registry. Finally, at least one of the commercial utilities (RegistryBooster 2 from Uniblue) is a Microsoft(c) Gold Certified partner. The registry was invented by Microsoft, and their partners have access to technical information and support unavailable to other entities. This should be a consideration when choosing your optimization tools. Read The Rest of the Article

This article was originally published by Triond on their web site ComputerSight. I thought it was time to reprint it here, so it appears below in its entirety.

---

Configuration Management (’CM’ hereafter) means a lot of different things to different people. Weighty tomes have been written describing the goals, policies, procedures, benefits, pitfalls, and a variety of definitions of CM. One recent CM plan I worked on is a 20-something page document attempting to detail this information and how it relates to the client’s projects.Most of the information available can be boiled down into 4 key concepts, or what can be called the 4 cornerstones of great CM. These concepts represent ideals. The challenge is in the implementation, so that the policies, procedures, and utilities developed support these ideals, or at least the intent behind them.

1. Version Control : Everything is maintained in a Version Control tool like Serena’s. Some agreed set of items (Configuration Items, or CI’s for short) stored within the tool represent baselines. In other words, they are the set of revisions currently in production. They are not necessarily the most recent revisions.Builds intended for deployment to any post-development environment (QA, Test, Prod, whatever) are always pulled from Version Control, and never copied directly from a development environment.
2. Separation of Duties and Least Privilege : Actually, these are two principles lumped together because Least Privilege is not possible without Separation of Duties, and Separation of Duties is pointless without Least Privilege. The former simply means that no single person has independent responsibility over more than one area of a system.For example, developers change code, perform unit test, etc., but do not deploy or promote such code to any non-development environment. CM people promote code, but do not develop applications, nor do they approve code changes made by developers (although they may participate in code reviews).
   DBAs have database privileges, but don’t develop application code nor act as system admins. And so on. The Least Privilege principle simply states that no person or running process has more access or system privilege than they need to perform their normal duties or functions at any point in time.Access or privilege for either people or processes can temporarily be increased during the performance of some activity as necessary, then immediately restricted again. Policies implementing these controls make allowances in both these principles for emergency situations.
3. Auditing : CM personnel periodically conduct audits of applications, systems, and procedures. Any updated application software or configurable item should be traceable to an approved change request, as well as through the entire set of existing quality control, tech review, and change control procedures.This includes not only application executables but database configurations as well. All items are compared with their baseline counterparts in the Version Control repository (ie; the revisions marked as ‘Production’). Discrepancies are reported as non-compliance issues and investigated, and will generally lead to procedural changes designed to eliminate future non-compliance.
4. Automate, Automate, Automate : This one is an over-riding theme for how we accomplish all this with limited resources. Checking items out of and into Version Control should be quick and painless, and integrated into development IDEs (Interactive Development Environments) if possible. Code promotions are scripted. Database changes are scripted. Auditing utilities are scripted.These scripts themselves are subject to review and kept in version control. Tying it all together gives us reliable, secure systems built with verifiable, repeatable and efficient processes.

My family and I recently took a break from Michigan’s cold and rainy early spring and vacationed in Arizona. We flew into Phoenix, rented a car, and set out for a number of destinations, all of which were great for R and R.

First we visited some good friends in Lake Havesu City. Matt and Tee showed us around Lake Havesu, and Matt particulary proved to be a fountainhead of knowledge about the town and it’s history. For example, Robert McCulloch of McCulloch Oil (think also, “Chainsaws”) basically founded the town, and he paid to move the London Bridge from London To Lake Havesu. Yes, the London Bridge. Matt and Tee were great hosts, and took us tooling around on the Colorado River and Lake Havesu in their boat. Most of us got our first glimps of California there.

After a few days we headed on down to Sierra Vista to visit my Dad and his two dogs, Bonnie and Lucky. We also met his friend (GF?) Marita. Sometimes we just lounged around and enjoyed the weather or swam in the pool, but we also went hiking in the neighboring mountains. Even though she is not a native to the territory, Marita proved to be delightfully knowledgable about the local flora, pointing out to us alligator cypress, manzanitas, prickly pear, and other species that grow there.

While we were staying with my Dad, we took a day trip to legendary Tombstone, where the gunfight at the OK Corral took place in 1881. The movies always portray the Earps and Doc Holliday as the good guys, standing up for law and order and trying to protect the town’s citizens from the outlaw gang known as the Cow-boys. The truth is, the Cow-boys (with the possible exception of Ike Clanton, an abrasive loud-mouth) were actually well liked by most of the towns’ people. They brought money into the town, whose principle business was saloon keeping, and they rarely carried out their lawbreaking in town.
On the other hand, the Earps were seen by many as opportunists, setting up gambling a establishment and using their connections with the law to play favorites. Nevertheless, the story is rich with drama, action, intrigue, and conflict that persists to this day. I was inspired to write an article, Surprising Facts About the Gunfight at the OK Corral. Check it out and let me know what you think.
Oh, and feel free to check out all the pix from the Arizona trip.

Someone posted a challenge to the writers on Associated Content to come up with humor articles to be posted on the April 1st, April Fool’s Day. Being somewhat of a fool myself, I accepted the challenge, along with a dozen or so of my fellow AC writers. The results are compiled in a Squidoo lens - I’ve included the link below. My entry is printed here for your convenience. If you like it, consider voting for it on Squidoo by following the link.

---

Foolin’ With Your Kids
Not only is it our “birth”-right to play jokes on our children, it is also our sacred duty, and one that my wife and I take very seriously. After all, how else will they learn patience? How will they learn humility? How will they learn to fool and embarrass our grandchildren when the time comes?
Embarrassment
There are numerous ways to embarrass your kids. Some kids are embarrassed by the mere presence of their parents when they’re hanging out with their friends. This should be exploited whenever possible. Accentuate whatever traits you possess that your kids find embarrassing. If possible, combine these traits for maximum impact. For example, if your singing embarrasses them and they can’t stand old country music, pull up to the school to pick them up with your windows open, belting out “Lovesick Blues” at the top of your lungs. Volunteer to chaperon the high school dance, and show up wearing the same pastel-colored velvetine tuxedo you wore to your 1979 prom. While there, offer to teach your daughter, her date, and all her friends how to do the “Electric Slide.”
Embarrassing your teenage kids is almost too easy, and can be done pretty much anywhere at any time. Whip out the baby pix showing your son in the buff. Say things like “Aw, my little man is growing up. Looks like he’s finally gotten over the ‘girls have cooties’ phase.” These are especially good when your son is spending time with a new girlfriend.
Tall Tales
Getting your kids to fall for some things is a little more challenging. When my son Stan, who’s now 13, was about 5 years old, he was asking me about the various knobs and buttons on the dash of my car. I went through the radio, windshield washers, fog lights, etc. Then, adopting the soberest countenance I could muster, I pointed to the emergency flashers. “You should never, ever, push this button.”
“Why not?” he gravely asked.
“That is the ejector seat.”
“What’s a ‘jector seat?”
So I explained what an ejector seat was, and how after it was introduced to the public in the James Bond movies, people started asking for them in their own cars. Responding to this demand, the car manufacturers began making them options that anyone could get when they bought a new car.
He was nervous, but fascinated. “So what would happen if I pushed the button?”
“A secret panel in the roof would open up, and a super powerful spring would shoot you right out. The car would keep going, so you’d land in the road and probably get run over by that truck behind us.”
“Wow. Does Katie know about this?” he asked. Katie is his older sister, and I wasn’t sure whether he was worried that she might push the button on him, or excited about the possibility of pushing the button on her.
About a year later, I was again driving with my son in the car, and I had forgotten all about the ejector seat conversation. Not him! We needed milk, so I stopped at the corner store. I told him I would be right out, and to keep the doors locked and not let anyone in the car. He says, “Don’t worry, Dad! If anyone tries to get in, I’ll just slide over into your seat and push the ejector seat button! Boy, won’t they be surprised!”
“Um… yes. But keep the doors locked just in case.”
A few months later we were once again in the car together, and I needed to use the rear defroster. I accidentally hit the emergency flashers button first. They flashed a couple of times before I turned them off and turned on the defroster. My son jerked is head to look at me, eyes wide as tea saucers. I knew what he was thinking. I said, “Boy, it’s a good thing that ejector seat has a 5 second timer! I remembered to shut it off before it flashed 5 times, thank God. You were almost a goner!”
“Da-ad! Why did you do that? You almost splatted me on the road!”
“Sorry pal, I just hit the wrong button. It won’t happen again.”
My wife said that some day when he becomes the laughing stock of his driver’s education class, he’s going to come home and kick my butt. Maybe so, but I won’t be alone. Not long after this last exchange he was basically tattling to his Grandma about me almost splatting him on the road. We had to surreptitiously explain what was going on. Now she’s completely in on it with us. My daughter on the other hand tried to tell him that we were all making it up. When she wouldn’t sit in the passenger seat so he could “prove” that we weren’t (mainly because she couldn’t be bothered to move), he became more convinced than ever that she was lying to him. Continue Reading »

The RIAA’s Investigators Operating Illegally?

The Recording Industry of America Association (RIAA) is the agency trying to enforce copyrights by suing suspected file sharers. They employ MediaSentry for the forensic examination of the computers owned by suspected violators, which opens up for scrutiny not only shared music, but any personal information stored on the PCs. Recently, MediaSentry has come under fire for conducting such examinations for evidence to be used in court cases without having Private Investigator (PI) licenses. Massachusetts has ordered them to cease operations there until they obtain the proper licenses. Several other states have issued various statements and warnings, including Michigan. This gives defendants the possibility of getting evidence disallowed in their trials, and opens the doors for recriminations from past defendants who settled out of court based on evidence that may not have been legally obtained. So far, MediaSentry has taken the stance that their role in the investigations does not require a PI license. This story bears watching closely. If anyone challenges the evidence gathered by MediaSentry, and it follows that they have to obtain PI licenses going forward, how many counter-suits from past cases will suddenly be filed by defendants who settled out of court on the strength of evidence that would not have been admitted in court?

Courts Can’t Force You To Reveal Your Passwords and Encryption Keys

Another case making headlines lately involves a Grand Jury’s attempt to order a defendant to reveal his encryption password so that prosecutors could assess the files on his hard drive. It turns out that passwords and encryption keys are protected under the 5th amendment, which basically prohibits the forcing of defendants to testify against themselves. A federal Magistrate ruled the Grand Jury’s subpoena unconstitutional. The government has appealed. If the suspect - a Canadian with U.S. residency by the name of Sebastien Boucher - is actually guilty of child pornography, I hope the government finds enough evidence to convict him without violating his 5th amendment rights.References:

• www.law.com reported on passwords and the 5th amendment.
• recordingindustryvspeople.blogspot.com brought the MediaSentry story to light.
• bloggernews.net - discusses the implications of the RIAA’s investigators operating illegally in certain states.

---

Some time back I wrote an article about Charity Music, a great non-profit organization that provides musical instruments (and sometimes instruction) to students, soldiers, and senior citizens who desire to play but can’t afford to buy or rent them. The article was originally published on Associated Content, but as reported at the time, I planned to also post it on Helium. The great thing about the article appearing on Helium is the fact that I could donate all advertising revenue (my share at least) to the charity itself! So if you missed the article the first time around, read all about Charity Music on Helium, and remember - just by reading it you’ll be helping out a fantastic cause.

Pub Crawl!

I thought this would be a good opportunity to let you know about a recent development at Charity Music. They are organizing what they hope will be the biggest Pub Crawl in history, and they hope to get listed in the Guinness World Book of Records in the process. The goal is to have up to 100 clubs and bars from every state participating. If you own a bar and would like to get in on this, it might be a good way to get some great publicity, and in any case you would be helping out the cause. More information is available at the Pub Crawl Registration site.

A Helium Marketplace publisher recently asked for an article entitled ‘Quick Tips for Inner Peace’, with a 700 word maximum. I condense religion, psychology, and meditation and attempt to answer the call. Let me know how you think I did.

---

Inner peace is a state of mind in which one is free from conflict in mind and spirit. This is not to say that there is no conflict in one’s life, simply that there is harmony between one’s mental, emotional, and spiritual aspects. Without such harmony, the flow of creativity slows or stops, physical and emotional ailments do not heal as quickly and may worsen, and progress toward ones goals in life is impeded. To remove these blockages one must restore harmony and return to a state of inner peace. Understanding is the first key to unlocking the door.

Let Go of the Past
Often attaining inner peace is not so much acquiring something as it is letting things go. The past is immutable, so holding on to regrets is counter-productive. Understand that mistakes are part of our humanity, and that sometimes it is the lessons learned the hard way that enable us to mature and progress. Realizing that just as much of our wisdom comes from error as from trial, one begins to accept that our mistakes play an indispensable role in our development.

Guilt is a large source of internal conflict, and must be expunged. The quickest way to reduce guilt is to apologize to those whom you’ve wronged. It is not essential that they actually forgive you, but it is essential that your apology is sincere. You have to actually mean it when you express your remorse. In this way, guilt fades to regret, which can then be dealt with accordingly. Examine the bad decisions and lapses in judgment, figure out where you went wrong and how you could have handled the situations differently, then move on.

Read the Rest of the Article >>

The Field Car was a beater. It was a 1971 Maverick, which I bought in 1980 while in college. It wasn’t really a beater then, but it didn’t take me long to turn it into one. With dedication and determination, any car can be turned into a beater in a matter of months.

The transformation on the Maverick began when my room mate Tim came home with me for the weekend, and I had to repair the fences around the horse pasture. My parents left for the day, and we didn’t want to carry fence wire, tools, and extra posts around a 200 acre pasture, so we put it all in my car and headed out. All was well for the most part, until we got bored and decided to see how well the Maverick would take the hills. The educational opportunities in this type of exercise cannot be overstated. Not only did we get most of the fences fixed that weekend, but we learned how to replace shock absorbers, too! We could have learned to do some body and paint work as well, but we decided that the little scratches and dings just added character to the car. Tim dubbed it the “Field Car,” a name that has stuck with the Maverick ever since.

Beatership wasn’t bestowed upon the Field Car all at once. Sometimes days or even weeks would go by without it acquiring a single new distinguishing feature. Then just when it seemed like progress had stalled, an opportunity for further customization would present itself, although I seldom recognized it as such until after the fact. The distinctive markings on the roof of the car for example came about when Tim and I were on our way to meet some friends and didn’t want to wait for a train. When we saw the lights start flashing at a crossing up ahead, we were sure we could safely beat the on-coming train. Indeed, we beat the train with a hundred yards to spare. It was the descending barrier that proved to be the real challenge. We actually did beat it… mostly.

Read the Rest of the Story >>>

A fellow writer on Associated Content by the name of Jennifer Eblin recently published a story entitled Staley Road: A Local Haunting. It has the makings of a great ghost story: a bleeding barn, satanic cults, lights and electrical systems malfunctioning - you know, things that make local legends like this one fun.

Jennifer is careful to point out that the legends surrounding the supposedly haunted area have little basis in history. The farmer and miller who legend says killed his family, did not. She also cautions readers that the property owner is not happy about the tresspassers who park on his property and make nuisances of themselves, particularly in the middle of the night. He has gone so far as to file a lawsuit against a publisher for including his barn in a collection of wierd places in Ohio.

Well, he’s at it again, only this time the subject of the lawsuit is Jennifer herself. Even though she clearly informs readers that the legends are false, and that the property owner has little patience with ghost hunters, the law firm representing him has written her twice, notifying Jennifer that she is being named in a new suit, and demanding that she “take down” the website where her article is published.

The demands are absurd. For one thing, Associated Content owns the site, not Jennifer, who has no authority to remove the article, much less take down the site. For another, I find it very difficult to believe that her article has led to any measurable increase in property damage. Incidentally, the man lost the previous suit.

Judge for yourself. Read the article, and leave your thoughts either there (AC allows anonymous comments), or here if you prefer.