Posts

Posted on

Don’t Use Internet Explorer

Internet ExplorerI used to tell people that the newest Internet Explorer 8 was safe enough. But recent events have changed my mind. The Chinese attacks on Google over Christmas were perpetrated using a vulnerability that exists in all versions of Internet Explorer. Microsoft still hasn’t fixed this.

Because of security concerns, both the German and French governments have officially recommended that people not use Internet Explorer. One could attribute this to the EU’s dislike of Microsoft, but Mircrosoft has a more fundamental problem.

Closed Source

Many people say that Internet Explorer isn’t as safe because it has the largest market share (over 60%). Hackers want to attack the largest market they can. But I think that the real problem is that Internet Explorer is written with closed source code.

Unlike the Gecko engine powering Firefox or the Webkit engine powering Chrome and Safari, Internet Explorer has its own broswer engine that is closed source. This means that people can not look at how it is written. While you might initially think that this makes Internet Explorer more protected, it’s actually the opposite. Open source code can be reviewed and improved by the entire development community. Once a problem is seen, any developer can suggest a solution. The response time of Firefox for fixing exploits is typically days compared to Internet Explorer taking weeks or months.

Other Browsers

The fastest browsers use Webkit as their engine. These include Google’s Chrome and Apple’s Safari browsers.

Mozilla Firefox is slower but remains the current leader among alternative browsers, largely due to its popular add-ons. Google is working on growing out its extensions to compete with Firefox add-ons.

Give one or more of these browsers a try.

Posted on

Make your Internet faster by changing DNS

namebenchWhen you go to any website, the browser first has to lookup where that site is located.  This is done by connecting to a domain name server (DNS).  There are many DNS options, not just the default of the ISP. Often other options are much faster.  Most websites actually load content from various domains at once so each DNS request adds up in how fast your internet experience feels.

A great open-source DNS benchmark utility is namebench.  It will test your current DNS against other global DNS or nearby providers.  Versions for Windows, Mac, and Linux are available for download.

A recent customer had OpenDNS setup but it turned out the nearby AT&T DNS was 142% faster.  Most people probably won’t get quite that huge of a gain.  Depending on your location and ISP, its hard to predict what your best DNS option is which is why the namebench utility is so valuable.

Once you’ve figured out your best DNS options, it is best to setup the DNS in your router through its administration page.  You could change the DNS in your computer’s network settings, but then none of the other computers on the network would see that gain in internet performance.

Posted on

Google China to Stop Censorship

Google ChinaUntil now, Google has operated in China by not listing government-blacklisted sites in its search results (See google.cn search results for “Tiananmen”). This was controversial, but Google maintained that it was better to work within these restrictions than to have no presence in China.

After recent cyber attacks on Google, Google is changing its stance. This will be interesting.

Read the full Google Blog post:

A new approach to China

by David Drummond, Google’s SVP, Corporate Development and Chief Legal Officer
12 January 2010

Like many other well-known organizations, we face cyber attacks of varying degrees on a regular basis. In mid-December, we detected a highly sophisticated and targeted attack on our corporate infrastructure originating from China that resulted in the theft of intellectual property from Google. However, it soon became clear that what at first appeared to be solely a security incident–albeit a significant one–was something quite different.

First, this attack was not just on Google. As part of our investigation we have discovered that at least twenty other large companies from a wide range of businesses–including the Internet, finance, technology, media and chemical sectors–have been similarly targeted. We are currently in the process of notifying those companies, and we are also working with the relevant U.S. authorities.

Second, we have evidence to suggest that a primary goal of the attackers was accessing the Gmail accounts of Chinese human rights activists. Based on our investigation to date we believe their attack did not achieve that objective. Only two Gmail accounts appear to have been accessed, and that activity was limited to account information (such as the date the account was created) and subject line, rather than the content of emails themselves.

Third, as part of this investigation but independent of the attack on Google, we have discovered that the accounts of dozens of U.S.-, China- and Europe-based Gmail users who are advocates of human rights in China appear to have been routinely accessed by third parties. These accounts have not been accessed through any security breach at Google, but most likely via phishing scams or malware placed on the users’ computers.

We have already used information gained from this attack to make infrastructure and architectural improvements that enhance security for Google and for our users. In terms of individual users, we would advise people to deploy reputable anti-virus and anti-spyware programs on their computers, to install patches for their operating systems and to update their web browsers. Always be cautious when clicking on links appearing in instant messages and emails, or when asked to share personal information like passwords online. You can read more here about our cyber-security recommendations. People wanting to learn more about these kinds of attacks can read this U.S. government report (PDF), Nart Villeneuve’s blog and this presentation on the GhostNet spying incident.

We have taken the unusual step of sharing information about these attacks with a broad audience not just because of the security and human rights implications of what we have unearthed, but also because this information goes to the heart of a much bigger global debate about freedom of speech. In the last two decades, China’s economic reform programs and its citizens’ entrepreneurial flair have lifted hundreds of millions of Chinese people out of poverty. Indeed, this great nation is at the heart of much economic progress and development in the world today.

We launched Google.cn in January 2006 in the belief that the benefits of increased access to information for people in China and a more open Internet outweighed our discomfort in agreeing to censor some results. At the time we made clear that “we will carefully monitor conditions in China, including new laws and other restrictions on our services. If we determine that we are unable to achieve the objectives outlined we will not hesitate to reconsider our approach to China.”

These attacks and the surveillance they have uncovered–combined with the attempts over the past year to further limit free speech on the web–have led us to conclude that we should review the feasibility of our business operations in China. We have decided we are no longer willing to continue censoring our results on Google.cn, and so over the next few weeks we will be discussing with the Chinese government the basis on which we could operate an unfiltered search engine within the law, if at all. We recognize that this may well mean having to shut down Google.cn, and potentially our offices in China.

The decision to review our business operations in China has been incredibly hard, and we know that it will have potentially far-reaching consequences. We want to make clear that this move was driven by our executives in the United States, without the knowledge or involvement of our employees in China who have worked incredibly hard to make Google.cn the success it is today. We are committed to working responsibly to resolve the very difficult issues raised.

Posted on

3D Video and Nausia

The Consumer Electronics Shows (CES) just wrapped up in Las Vegas and one of the main themes was 3D video coming to home televisions. Along with this, the big movie Avatar is being shown in many locations in 3D.

3D audience

While 3D adoption will grow, there are some problems such as having to wear silly glasses and the “depth of field”.

Depth of Field Problem

About 20% of the people I know who saw Avatar in 3D said that they felt nauseous or got a headache. This is primary due to a “depth of field” problem.

When you look at a close up object in the real world, you focus on it and things in the background are out of focus. You then look at something far away and then can focus on that clearly.

In 2D movies, the camera focuses on what is important and other items are out of focus, especially when there is a wide depth of field.

In 3D movies, our eyes expect to be able to look at an out-of-focus area and have it come into focus, just like in real life. But if it was shot out of focus, this is impossible. Further, the shallower the depth of field (meaning the more that the foreground and background are both in focus) the more cartoonish a video can look. This is a reason that cartoons, because they have no depth of field, work great with 3D.

An article at Shadow Locked explains How to avoid getting a 3D headache while watching Avatar. You have to look at what is in focus. See picture:

Avatar Background Blur

3D Does Work in Many Cases

For cartoons and sports, we do not expect to see a depth of field. And typically James Cameron shot Avatar with little depth of field. But, to the extent that depth of field is an important tool for movies, it will limit adoption of 3D movies for many people.

Posted on

Harmony Remote Favorite Channel Icon Image

Harmony One Favorite Channel IconsIf you’ve got a recent harmony remote such as the Harmony One and have hard to remember 3 or 4 digit TV channels, setting up favorites can be very useful.  Then you just have to select the channel on the remote and the right numbers are sent.  To make things even prettier, you can define icons for each channel.

A great place to download icons is iconharmony.com.  The interface is a little strange but you can search for each channel icon image you want and select it.  Once you have selected each image you want, you can download them all in one zip file.  You use the logitech harmony remote software to define your favorite channels and browse files to assign the icons.