You are the weakest link…

Posted on 3 June 2011 by Chris

Apple Mac users read in dismay this week that their beloved and seemingly impregnable machines are just as susceptible to trojan attacks as Windows systems. The MacDefender trojan presents itself as a genuine warning message that lulls unsuspecting Mac owners into believing that their machine is compromised and that by installing Mac Defender normal service will be resumed.

This comes at a time when the volume of phone calls I receive from people claiming to represent a company that’s detected an infection on my PC is on the rise. Two in one night this week — a new record!

Both these attacks attack the same weakness — the person that’s placed themself between the keyboard and chair. The phone calls are not well targeted. They know that the majority of the people they call will have a PC and that it’s highly likely to be  PC. The MacDefender does specifically target Macs and shows that with popularity comes tall poppy syndrome. There are now sufficient mac users out there for scammers to bother writing an application that targets them specifically.

This brings me to an admission. I was taken in by a fake site recently. I work for the government and my department has an intranet called OnePortal. Unthinkingly I googled the name rather than using my bookmarks — a natural instinct for a Chrome user but if you do that the top link takes you to OnePortal.net.

This website is a pretty basic copy of the genuine article but with the site being largely static, it’s pretty easy to rip off the code and some images. I should have spotted that the news was months out of date (but isn’t that often the way with intranets?) and that it didn’t greet me by name. I REALLY should have been suspicious when it wanted me to download an active-x control but so many intranets do feature media from various sources that I went ahead and clicked the ‘I’m a dumbass’ button at which point I was hit with ads for various products, not all of which were legal.

Being in the position I am in, I have local admin rights on my machine and so I was very, very lucky that this website did nothing more than fill my screen with ads. A full scan revealed no adware and there were no rogue processes running and no ill effects since. All the same, it reminded me that a) nobody should have local admin rights and b) even people who should know better make mistakes from time to time.

This last story also highlights that anyone can be a target. Whilst the spoof phone calls rely on the popularity of Windows and the MacDefender exists because of the growing popularity of Apple OSX, the cloning of OnePortal is evidence that some people are prepared to fish in relatively meager waters.

The good news from this? The fact that attacks on users are so popular suggests that the computers themselves are pretty damn secure. Microsoft and Apple are quick to patch security holes as and when they are discovered and the majority of major viruses these days infect a system via a trojan… i.e. they require somebody to be fooled into letting them in.

So where now? We can’t patch humanity and so people will continue to be fooled into installing rogue software. Maybe not. Look at Apple to see a reliable method of massively increasing your system security. If you want to install software (apps) on an iPhone the only way to do this is through the Apple App Store. Apple carefully vet all applications before making them available. The iPhone, iPad and iPod are, as far as I can tell, trojan-proof.

Of course, if you head down this route you lose some of the control and freedoms you have enjoyed up to this point. Whilst Apple do use their powers for good (i.e. ensuring that apps don’t contain trojans or viruses) they can also use them for evil, such as in the case of the Podcaster app which was refused entry for being too similar to its own iTunes. By disallowing you access to software that is potentially better, Apple are stifling innovation and being anti-competitive. Apple don’t have to bother giving you a better music player when they can block any serious competition.

The Podcaster example is from way back in 2008 so things may well have changed since then, but the principle stands.

And this leads me to my final question: Would you rather a world where somebody else had a say in what you can and can’t do with your computer? Would you be happy to relinquish freedom in return for security? It is, I suppose a question that can be leveled at many other aspects of life but it’s likely that in the not too distant future you will have to choose.

Posted in Uncategorized | Leave a comment

Cheese Sauce

Posted on 19 March 2011 by Chris

1 pint of milk
40g flour
40g butter
50g cheese
Parmesan to taste
Sprinkle of cayenne pepper
Sprinkle of black pepper

Put all in a pan together over a high heat and whisk continuously until silky.

I think this was a Delia recipe that’s become a firm favourite.

Posted in Recipes | Leave a comment

Razor E200 Battery Upgrade

Posted on 18 March 2011 by Chris

In February, my brother-in-law-once-removed, Colin, was kind enough to donate his Razor E200 scooter to a new home… mine!

Now, I’ve been coveting an electric bike/scooter for some time and so I am very thankful to Colin for his kind donation. The scooter came with two caveats. One, that it was to be loved and used. Check! Neighbours and family, from 3 year old Harry to mother-in-law Betty have loved zipping up and down our quiet road on this incredible device. I’ve been using it to get to work too;  but more on that later. The second caveat was that there was some minor work needed doing. The battery needed replacing and I was to discover that the rear tyre valve had dropped back into the wheel and so I was unable to re-inflate without removing the wheel.

Batteries first. Colin had said that the OEM Razor batteries weren’t up to much so I set about finding clones. The official Australian dealer only sold the originals and didn’t bother to respond to my enquiry about shipping cost so I didn’t bother with them. eBay turned up two dealers in the USA who sold non-OEM but the shipping costs of two lead-acid batteries added 50%. Lastly, I tried a local business, Forbes Batteries. Now I don’t mind admitting that I was sceptical. Local businesses here in regional Queensland are mostly awful to deal with offering high prices and poor customer service. But Forbes Batteries buck the trend. I made contact via their website and they came back less that 48 hours later saying they’d done some research and believed they had something that would suit. Amazingly they opened on Saturdays and so I went down with the scooter and the two kids. The person I’d been dealing with didn’t work on Saturdays but he’d left instructions and the batteries were duly fetched.

Remco Battery for Razor E200 Scooter

Remco Battery for Razor E200 Scooter

 

 

Now, the OEM batteries have a wire that sticks out of them, joining the two batteries with a proprietary connector on the end. Forbes had a suitable replacement but it had spade connectors on it. Happy that the battery would fit, they cut the wires off the old batteries, fitted spade connectors to the end of the proprietary wire and checked it all fitted in… which it did!

 

Scooter Battery showing Spade Connector

Scooter Battery showing Spade Connector

 

 

New Batteries Installed in Razor E200 Scooter

New Batteries Installed in Razor E200 Scooter

So, hats off to Forbes Batteries’ professionalism, knowledge and service.

Back home, fitting the batteries was quite straightforward, if a little tight. Removing the rear wheel was a little more complex that I’d thought it would be. I should have taken photos of how the brake assembly is supposed to look as it took a bit of thinking to get it back together. Thankfully Colin had included a spare rear wheel in his box of goodies so I have deferred fixing the original wheel for another day.

Razor E200 Electric Scooter

Razor E200 Electric Scooter

 

 

All back together, the Razor charges in about 4 hours and runs for about 30-40 mins on the flat or about 10 mins on my uphill run home from work. Once I get a handlebar mount for my Ideos I’ll use My Tracks to log the journeys that it’s capable of on a single charge.

Posted in Transport | 1 Comment

Quiche

Posted on 17 March 2010 by Chris

4-6 eggs
Roughly 1 cup of milk
2 big tablespoons of any flour
1-2 cups of grated cheese
generous pinch salt
Meat and Vegetables, chopped.

Mix together 1/2 a cup of milk with the eggs, flour and salt. Continue to add milk until a sloppy batter is formed.
Mix in the meat and vegetables.
Cook at 180C for about 30 mins or until cooked.

Posted in Recipes | Leave a comment

Widemouth Bay Panorama

Posted on 25 January 2010 by Chris

This panorama is created from a series of photos taken on 29th November 2009. As is usual, I didn’t have a tripod nor did I have much time to set up the photo. Consequently the camera was set to fully automatic and I had to make do with the available light. The photo was stitched, blended and tweaked in Photoshop.

Widemouth Bay, Cornwall, UK

Widemouth Bay Panorama

We were walking the sheepdogs on the beach. My kids had just come from an Australian summer and were not all that impressed with the cold, driving onshore wind. The dogs loved the surf that it generated though!

Since posting, I’ve realised I missed a big blend on the left of the image. I’ll fix that in due course and update this post.

Posted in Photography | Leave a comment

Paris Panorama

Posted on 22 January 2010 by Chris

This photo was taken in January 2010 from the roof of Printemps in Paris. The photo was stitched together using Photoshop Elements 8. I’ve not edited the lighting or colour — simply stitched the pictures as-is.

Panorama across Paris from Printemps

Panorama across Paris

I didn’t get much of a chance to set the photo up. We were in Paris for a few days and I’d not known about this rooftop terrace until we got there. Consequently I had to make do with the available light and the camera was handheld and in auto mode.

Posted in Photography | Leave a comment