My window to the world

Going to Microsoft TechEd New Zealand 2014–who else is joining me?

By Mauricio Freitas, in , posted: 18-Aug-2014 11:45

I got the confirmation I will be attending the TechEd as a Microsoft guest (same as in previous years) with other media presence.

In the meantime, I have just finished working on something with Intergen for their stand - you folks probably remember in previous years there were racing cars and the stand was quite popular.

This year, working with Microsoft Xbox and Activision there will be Guitar Hero competition - prizes include daily JB Hi-Fi voucher and a Xbox One with Kinect at the end of the competition. More information here: Intergen Guitar Hero Geek competition at TechEd.

Testing the Kingston DataTraveler Locker+ G3

By Mauricio Freitas, in , posted: 11-Apr-2014 18:50

Just received this Kingston DataTraveler Locker+ G3 to play with. It's a USB3 device, the primary partition shows up as a CD, you run the software (which doesn't need install) and it will create an encrypted partition (or give you access to it):

I ran some speed tests with NirSoft USB Flash Drive Speed Test and here is the result:

For comparison, here is a C300 SSD in a USB3 external case:

Now, this is a Sony memory key, purportedly USB3 as well. Can you see the difference?

And below are a couple of USB2 devices (HP-branded and generic one). See how the write speed on the Sony USB3 is no better than USB2?

Telecom enforces SSL email, uses wrong name in certificate

By Mauricio Freitas, in , posted: 17-Mar-2014 19:12

There’s no end in sight for Telecom email users. While the company’s move to require the use of SSL for email access (Really, all those email passwords were transmitted in the clear over those WiFi access points around the world up until now?) is a Good Move™, the fact they got the SSL certificate with the wrong server name is troubling.

Apparently this certificate was issued to instead of People are accepting this certificate just so they can get to their emails. This is bad because I’ve seen comments such as “just accept it I need to get to my emails”.

Not everyone is seeing this error, which points to multiple servers having a good certificate and at least one of them having a bad certificate.

What happens next time these users see a certificate error? They will repeat the “just accept it” routine, thinking it’s just another small problem? Do these people actually know the implication of accepting SSL certs left, right and centre? Probably not. And here is the problem.

Windows XP end of support: 8 April 2014

By Mauricio Freitas, in , posted: 9-Mar-2014 20:40

This 8th April 2014 marks the end of support for Windows XP. Hit the link to find out what it means for you.

Windows XP was released mid-2001. It was a different world then. Things changed a lot in terms of security, safety and privacy online over these 13 years and the OS needs updating to front the new, more evolved risks as well as the avalanche of data we now receive.

I was surprised someone on Twitter posted “This Windows XP update exists solely to tell you that it is Windows XP and Microsoft wants you to pay more money to upgrade.”

Interesting way of putting it. Apple launched OS X 10.0 around the same time of Windows XP and they have been launching new versions of OS X over the years, and every few versions software need to be updated or it won’t run properly. But I never read anyone saying “they’re doing it to get people to pay more”.

A big difference here is that software that run on Windows XP will most likely continue to run on Windows 7 and Windows 8, with few exceptions including drivers (if you have devices that old they are probably reaching the end of their lives anyway).

For users of Microsoft’s platform this is good and bad. It’s good because reduces the cost of going to newer OS versions. It’s bad because (some argue) newer OS versions need to keep supporting these older software and APIs, keeping the OS rather large and the maintenance costs (in both time and number of developers) adding over time.

It’s also bad because adding security safeguards to old OS versions is not always possible, due to limits in the original implementation.

For consumers who still haven’t received the message about security, safety and privacy Windows XP still seems a pretty good OS. Most of the current software still run on this old OS, it doesn’t need big hardware and it’s pretty easy to use. The end result? From January 2014 – March 2014 around 29% of Internet-connected computers were still running Windows XP (down from 39% the year before). This shift is not moving fast enough.

The next Windows Update for Windows XP will add a message that will be presented to users to let them know this OS is no longer supported.

Still, many people using pirated copies of Windows don’t get updates anyway (security or otherwise) and most likely don’t care. And I guess most will just click the box “Don’t show this message again” and be done with it.

Microsoft has extended support for its anti-malware software until July 2015. For  enterprise customers, this applies to System Center Endpoint Protection, Forefront Client Security, Forefront Endpoint Protection and Windows Intune running on Windows XP. For consumers, this applies to Microsoft Security Essentials.

Also note this end of support doesn’t apply only to Windows XP but Windows Server 2003 as well.

Someone commented that the malware developers need only reverse engineer the first few security updates released for Windows 7/8 but not for Windows XP to create new tools to attack and control those unprotected machines. Let’s see what happens in June 2014.

Take a bit of time to cleanup your Twitter authorisations

By Mauricio Freitas, in , posted: 8-Mar-2014 10:22

Yahoo! has acquired Vizify… And it proceed to do what it’s done with 30 startups it previously bought: close the service down. According to people following the tech industry this means the company has closed 31 out of 38 startups it acquired since Marissa Mayer took the helm. But this doesn’t happen on Yahoo! only. All other large tech companies acquire technology to incorporate into their own products and differentiate themselves in the market. If this works out well for consumers or not is another story.

But that’s not what I am thinking about here. I am thinking about your online security. Every now and then I take ten minutes to go through the Twitter authorised apps list and remove some of them:

I also do this on Facebook and LinkedIn. My reasoning? Who knows what is going to happen with those tokens granting account access that are stored in these databases? How do I know the new owners can be trusted?

Sure, you’d say “It’s Yahoo!, they won’t go around spamming your followers from your account”.

My original “contract” was not with the new owners and I have no idea of their plans. The best thing, the safe thing, to do when a service is acquired is to revoke those tokens. Go through your Twitter Apps list (Twitter | Settings | Apps) and look through it. See the number of apps you gave permission to access your information, impersonate yourself to post in your stream, read your friends/followers lists, etc?

Some of those you only used once. Some of those you don’t even remember what they are.

Go on, clean up the mess and you will be safer.

Telecom NZ 2014 New Year decision we want to see: ditch Yahoo! as mail provider in 2014

By Mauricio Freitas, in , posted: 13-Jan-2014 07:57

Telecom's decision to stick with Yahoo! as a mail provider after a review in 2013 was wrong and email accounts hacks happened three times since that decision.

It's time they start a serious project to protect their customers. At this rate we may soon see more than just spam being sent out but successful phishing attempts leading to loses from both sides.

It will be a long project. No one likes moving a million email mailboxes, but it must be done. Now.

Verizon Wireless… In Wellington?

By Mauricio Freitas, in , posted: 2-Jan-2014 11:01

Only found about this one today, but it’s a funny one so posting anyway… It must be a very compelling economical reason for Verizon Wireless to commission the filming of a TV ad here in Wellington, New Zealand for their mobile network in the USA:

Small annoyances with community-based, Twitter-based support

By Mauricio Freitas, in , posted: 1-Jan-2014 21:23

Free support for products with a huge user based can’t scale well. Large companies (including Microsoft and Google) realise this and most of the times reply with “post in our forums”, where a large group of users try to help other users and eventually someone from the company will try answering some questions.

Years ago I was a paying Google Apps customer and despite having a PIN to access support via email the reply was “please post in our forums”. I cancelled the service and moved to Office 365 (back then Microsoft BPOS) and never looked back. Microsoft’s paid support is excellent. Office 365 is very good and the Microsoft Premier engineers are very good. Microsoft folks on IIS.Net are excellent (and I had one of the IIS people  in Seattle actually help fixing a problem related to Dynamic IP Restrictions by remote accessing one of our servers).

But talk consumer products and things go down… Posts in support forums such as Google and Microsoft’s own forums are mostly answered by other users with the occasional official word coming in. Some of the answers are pretty good but most threads seem to go unanswered or replies are just more people reporting similar problems.

Then there’s Twitter. Large companies are monitoring Twitter for keywords but the fact 140 medium is limiting to describe problems, some people monitoring don’t seem to understand a question and what you see a lot is either links to completely unrelated answers or… “post in our forums’.

For example in the discussion below I replied to @MicrosoftAsia’s tweet about Skydrive by pointing out “Yes, I’m using it” and “I just can’t upload fast enough” as in if I could go faster I’d have even more stuff in there. Basically I said it’s working great, if i could I’d put more stuff in there.

What follows is someone from support contacting me asking if I have a problem. I say “thanks, but no it’s not a problem”. Even though there’s no problem they take the opportunity to remind me to post anything in the forums… I then take the opportunity to remind then that yes I do post in the forums, but never get answers (including a link to a topic about a windows 8 Mail app problem going on for months now without any solution). Their reply points to a “solution” that is not related to the same problem, not even the same product.

I think they must have a security policy of not opening links people send to them. Fair enough. But it also makes for frustrating “conversations”. I know it’s a small thing but trying to understand the question before replying with something completely unrelated is the least I would expect.

Storing files in the cloud, border searches and Windows Skydrive

By Mauricio Freitas, in , posted: 1-Jan-2014 13:42

Just something that popped here and got me thinking… From TechDirt “Court Says Border Searches Of Your Computer Are Okay Because You Shouldn't Keep Important Info On Your Computer”:

“He goes on to suggest that since traveling internationally involves going into other countries, these same people would probably have even less privacy over their data, since other countries may be even more willing to search their computers. He even cites the situation of David Miranda having his electronics searched in the UK.

Surely, Pascal Abidor cannot be so naive to expect that when he crosses the Syrian or Lebanese border that the contents of his computer will be immune from searches and seizures at the whim of those who work for Bassar al-Assad or Hassan Nasrallah. Indeed, the New York Times recently reported on the saga of David Michael Miranda who was detained for nine hours by British authorities "while on a stop in London's Heathrow airport during a trip from Germany to Brazil."

While the judge's point is correct that other countries are unlikely to protect the privacy of travelers (sic) as well, and that means that any information on a laptop may be inherently unsafe, it seems like a bit of a weak copout to argue that since other countries have no respect for your electronic privacy, that the US shouldn't either.

He goes even further, arguing that because there's a "special need" at the border to stop bad people, that it's perfectly fine to ignore things like probable cause or reasonable suspicion -- again quoting Michael Chertoff to suggest that border laptop searches have stopped "bad people" from entering the US.”

Sure, one could think that storing data online (“cloud services” such as Microsoft Skydrive, Google Drive, Dropbox, Box and many others) then local search of an electronic device would have a much lesser impact in privacy.

But what about when the cloud service is tightly integrated into the OS, such as Microsoft Windows 8.1 and Skydrive? If you use an online account to login into Windows 8.1 then it automatically link into Skydrive and make access to it transparent (files are still stored locally only if you set those to be available offline though). Disconnecting the account is not easily done in this OS. The option would be to have a separate password or PIN to access the Skydrive app or to start downloads if the file is only available online.

Border offices wanting access to the laptop would ask for the password to the device, which could be freely given while still maintaining the files safely away. The argument here would be that border officials are inspecting the physical device crossing the border, which would be unrelated to the cloud service itself.

What do you think?

Alan Turing receives royal pardon

By Mauricio Freitas, in , posted: 24-Dec-2013 15:58

From The Guardian: Enigma codebreaker Alan Turing receives royal pardon:

Alan Turing, the second world war codebreaker who took his own life after undergoing chemical castration following a conviction for homosexual activity, has been granted a posthumous royal pardon 59 years after his death.

The brilliant mathematician, who played a major role in breaking the Enigma code – which arguably shortened the war by at least two years – has been granted a pardon under the Royal Prerogative of Mercy by the Queen, following a request from the justice secretary, Chris Grayling.

Turing was considered to be the father of modern computer science and was most famous for his work in helping to create the "bombe" that cracked messages enciphered with the German Enigma machines. He was convicted of gross indecency in 1952 after admitting a sexual relationship with a man.

About time I say. I believe he was one of the most important men in WWII and obviously the man who created the modern computer science.

freitasm's profile

Mauricio Freitas
New Zealand

I live in New Zealand and my interests include mobile devices, good books, movies and food of course! 

I'm the Geekzone admin. On Geekzone we publish news, reviews and articles on technology topics. The site also has some busy forums. Also worth visiting is TravelTalk NZ, a community for travelers!

Subscribe now to my blog RSS feed or the Geekzone RSS feed.

If you want to contact me, please use this page or email me Note this email is not for technical support. I don't give technical support. You can use our Geekzone Forums for community discussions on technical issues.

Here's is my full disclosure post.

A couple of blog posts you should read:

Find more about Business Transformation | Enterprise Content Management | Customer Relationship Management

Social networks presence

View Mauricio Freitas's profile on LinkedIn

My Blog by tags...

State of Browsers...
Viral Marketing...
Web Performance Optimization...
Windows Phone...

Other recent posts in my blog

Google crawling Geekzone HTTPS...
Geekzone gone full HTTPS...
Microsoft Ignite New Zealand, ...
If the headlines indicate the ...
Geekzone data analytics with P...
State of browsers Geekzone Mar...
2Cheap Cars discussion...
Now with more fibre...
Unlimited is not unlimited: Vo...
How bad is Vodafone cable at t...

New posts on Geekzone