Requiring strong passwords decreases security

January 15th, 2010

Everyone has gone through the process of creating a password for an online account where they require that you supply a password with multiple cases, numbers, and symbols where you end up with a P@ssW0rd you can’t remember.  Recently, I’ve had two of web applications I use (both for work) ask me to change my password. Neither would let me use a password similar to the previous password, and one actually doesn’t allow it to be similar to your last four passwords. Adherence to such a Draconian standard of security not only is a supreme inconvenience to the user, but a bigger security risk than if someone used “password” as their password. I say this because my immediate reaction to creating an obscure reference to myself that I might remember was that I should write this down somewhere. I am reminded of the humorous story from the tech world about a user who had, in permanent marker, written her password down on her monitor.

By no means am I suggesting that we ignore password strength at all. It is a common shortcoming for users to use the name of a loved one, a pet, their favorite sports team, etc. as their password. This is an all-too-common mistake that people make, and it is generally made for the sake of convenience. Off the top of my head, I can think of about ten people I do work for that have a child’s name as their password. They do, however, rarely write it down on a Post-It and keep it on their desk. You may think that I am exaggerating, but I’ve been able to,  multiple occasions, get logged into someone’s account because I found their password on their desk or monitor. My point is that there is a lower bound to my statement that strong password provide less security. At some point you have to hold the end-user culpable if their account is compromised because of a weak password, but if you have forced their hand and required them to come up with some obscure combination of number, letters, and symbols, are you not just as much to blame?

So what should be done? The best solution is to teach people how to create a solid password in the first place. My common password is a non-dictionary word that someone wouldn’t be able to guess in the first place. It’s simple, easy to remember, and unlikely to be broken (unless the system itself is faulty). My experience backs up my claim that if you ask someone to create a password they can remember and offer suggestions, they will follow them.

Oh, did I mention that I can’t remember the password I had to make yesterday for one of the applications? Guess I should have written it down. And then lost it. And then let someone login to my account. Good thing I had to change it to something safe!

Posted in Uncategorized | No Comments »

Microsoft Re-nerfs the Netflix app?

November 1st, 2009

I haven’t found any evidence of this on the tubes yet, but my experience is that Microsoft has decided to go back on some of the updates they pushed out with the August 11 Live update. I no longer have access to my Recently Watched list, or any of the genre browsers as well as the suggestion browsers.  The Party option is still available, though I’ve yet to use it at all so I wouldn’t be able to attest to its wholeness — nor is it likely I will try.

This is a bit irritating because the original launch of it, while mildly convenient, made you still wholly reliant on having access to a computer (or an iPhone in my case) if you wanted to add any new content to watch.  After that wonderful update, I could browse through new releases and find something to watch without digging out my laptop or jabbing at my phone (drop-down menus are tricky business on a phone with purely a touch screen input method).

I certainly hope that this is just some sort of technical issue and nothing permanent.  The most I have done to check that is restarted my Xbox once and cycled through the only two options on the screen over and over to be certain the other ones weren’t hidden and waiting for the persistent to find.

Edit: It’s obviously not just me.

Double Edit: It’s back to how it was. Apparently it was glitch.

Posted in Uncategorized | No Comments »

H1N1 Vaccine Shortages

October 28th, 2009

It has come to my attention, via every news source available, that we are running into a shortage of the H1N1 vaccines.  I do not understand why this should come as a shock to anyone. First off, we always run short of vaccines for your run-of-the-mill flu, so why should this be any different?  They predicted that production would not keep pace with demand prior to the first shots going out.  This is why we have a priority list for the high-risk demographic (very young, eldery, pregnant) and those who are generally healthy or have a strong enough immune system to fight it are being told they will have to wait.  As of this point there have been more deaths in the US from the regular flu than swine flu! Do you hear a public outcry about this? No. Does the media make a big deal of it? No.

Speaking of the media, I would like to present them with the thanks-for-scaring-the-sh*t-out-of-everyone award. Agree with me or not, but I blame them not only for the fact that people are making a huge deal out of this, but for the economic downturn, global warming, and Lauren Conrad being an influential figure.

So what should you do to keep from dying a horrible, horrible death preceded by a curly-q tail and the desire to go wollerin’ in your own filth? Simple. Wash your hands, cover your mouth or nose when sneezing or coughing (you should be doing this already you insensitive clod!), and avoid being around people who might have it (or if you do and they don’t). Crisis averted!

Straight from my mind to your face.

Posted in Rants | No Comments »

Windows 7 Install – Major Fail (on my part)

October 23rd, 2009

So I received my Windows 7 disks via UPS yesterday at around 5:30. Was fairly excited about it because I’ve heard good reviews about it, and also because I’ve heard it uses less resources. I already knew that I would be doing a clean install because I was going to be upgrading to 64-bit, as such I had stopped on my way from work and picked up a USB drive so I could backup my data just in case. Well the initial installation process went fine and the computer rebooted a couple of times on its own. I saw the first “Starting Windows” screen and began wondering what my reaction would be to having a clean OS (last reinstall was when Vista first came out). I didn’t get to find out. The screen was black, and while it looked like it was doing something it definitely was not doing anything. Three-finger-salute did nothing, nor would pressing the power button, which generally would make the computer shut down. I admitted defeat and decided to reboot into Repair mode. One thing I found odd was that there is no way to simply restore everything back to what it should be from the disk. I could Repair startup, use a System Recovery, or a disk image (which I may make once I get done installing everything). Rebooted and just ran the installer again. Same thing. Decided that I would just let it sit overnight and think about what it had done, and hoped that it would magically work (maybe it was processing!). Nada. Still at the same black screen, taunting me. I had to work so I wasn’t able to do anything more until after. Well 2 more reinstall attempts later I finally take a look to make sure I don’t have anything plugged in that I don’t need. Lo and behold my secondary monitor — which had recently gone out — was still plugged in and from what I can guess was set as the primary display. Unplugged it and wouldn’t you know I booted into Windows 7. Right now I am in the middle of reinstalling everything, and perhaps I will give my feelings on the OS once I’ve had some time to play with it.

Posted in Uncategorized | No Comments »

Did you know…

June 8th, 2009

Did you know that you should have your car turned on when trying to bleed your brake line? Neither did my roommate, and now he has no brakes, and can’t figure out how to get the pressure back (we’ve tried everything we can think of). Haha.

Posted in Random Information | No Comments »

Why we need to fund NASA

April 24th, 2009

I have always found space and the cosmos to be extremely fascinating, both mysterious and beautiful.  For me, all it take is one look at any of the images from the Hubble Space Telescope to reaffirm why I feel this way.  In the house I lived at last year, some of my roommates and friends would spend hours sitting outside and watching the skies. We weren’t looking at anything in particular, mostly we were talking about how small we really are.  With it being the 19th anniversary of the launch of the Telescope, I feel that this is a fairly relevant post, though it isn’t the main point.

In a dollar-and-cents comparison of what we are doing to explore the far reaches of space  — and possible discover what made it happen — versus our other expenditures, the 2009 fiscal year has been budgeted for the entire government the amount of  $3.1 trillion, with $17.2 billion allocated to NASA (.055% of the total budget). The government has been steadily cutting NASA’s funding since 1993, and it has dropped from 5.5% in 1966, which is the decade we first sent men to the moon — conspiracy theorists notwithstanding. In comparison, we are expected to spent $515.4 billion for the Department of Defense, about 16.6% of the budget. By no means am I suggesting that the money going to the DoD is misspent — I firmly believe that we must keep our nation well protected to deter our enemies from attacking us — but if we could take a little from here we could probably accomplish the same objective of the Department, which I will explain later.

I’m sure you’re asking yourself, “what practical use does looking at the stars have?” Well, potentially the very ability of the human race to survive as a species.  If a meteor doesn’t impact the Earth, some plague doesn’t infect the entire population, or we haven’t managed to destroy ourselves by our own hands, in about 5 billion years our sun is going to start turning into a red giant and that will pretty much be the beginning of the end for us and our nice, habitable planet. What that means is in that time we need to find another planet capable of sustaining human life, and more importantly, find a way to get there. The fastest object we have put into space has been the Helios 1 and 2 which were sent to study the sun in the mid 70s and reached a speed of 150,000 mph. With the speed of light being about 186,000 mps (miles per second), that means we made it to around .0002%.  Also take note that the closest star is Proxima Centauri at 4.2 light years, so we would have to travel for 18749 years. Here’s the stinger, the closest star with other planets that we have detected so far is Epsilon Eridani approximately 10.5 light years from Earth, and we don’t even think it’s habitable.

Even if we put the snail’s pace we move at aside, we also have multiple other hurdles to overcome before we can survive what will undoubtedly be a multi-generation trip through space. First, and by far the most important, is finding an effective way to recreate gravity. Why is this more important than food or water? If by the time we begin interstellar travel we haven’t came up with some sort of molecular sequencer to make food from energy, we are going to have grow or raise our own food. Seedlings depend on gravity to know which way is up, and by consequence which way the light will be coming.  It is absolutely essential that we can grow food aboard a spacecraft because it is simply impractical to carry that much in storage.  Animals need gravity because, well, I just can’t think of any way a cow is going to make it floating around its lot. Even humans need gravity to survive long-term travel in space. As we spend time in microgravity, our muscles begin to atrophy as a result of lack of use, which is why you always see astronauts exercising daily. If over many generations we lose more and more of our muscle, we won’t be able to stand on a planet with any appreciable amount of gravity.  Some research even suggests that gestation is affected by gravitational relaxation. Mice (possibly rats) were sent to reproduce and carry their offspring to term. When they arrived back at Earth scientists discovered that compared to their Terran kin they had very underdeveloped motor skills that may have came from the brain not being able to experience gravity and program the mice appropriately. Should humans fall to the same fate, there would simply not be a way for us to find new land to call home.

Beyond the logistical problems of space travel, there are more shorter term benefits that can come from expanded space exploration. In 1969 when man finally landed on the moon, it wasn’t only the Americans celebrating the triumph, the entire world united in revelry.  Knowing that we are just a small, insignificant speck in the vastness of space is the one thing that is universally shared. When you begin to see the bigger picture, you start to forget the petty differences and meaningless squabbles. The more we see how alike we all are, the easier it is for mankind to live with a renewed sense of togetherness. Back to the point of how more money for NASA means a better protected America, the fewer people who want to harm us, the less we need to defend ourselves.

While I could continue on for quite a while, my last point is that it is in our nature to need to understand how the universe works. Since we could first think there has been this innate desire to know why things happen the way they do, what makes the Earth tick. Perhaps it is because we feel that the more we know about the world, the closer we are to understanding our existence.  We have by no means explored all of the reaches of our own planet, let alone all of the cosmos, but there will come a time that the only way to get the answers are to look up into the heavens and, with time, travel to them. Unless we are contacted by an alien civilization who finds us worthy enough to share their secrets of space travel, the only way we are going to accomplish this feat is to continue have resources available to the scientists and engineers who can make it happen. Oh, and for anyone who is wondering what will be the successor to the Hubble, the James Webb Space Telescope is slated for launch in 2013 and will let us see further into space than we have ever seen before.

Posted in Space, Technology | 1 Comment »

Random Information

March 16th, 2009

I’m hoping that this category (Random Information) will be of use to someone. My intentions with it are to publish fixes to problems I run into, useful tidbits that might help someone stuck on who knows what, or trivia that I find interesting.

My first post will undoubtedly be looked over by the majority of people as I had some trouble finding it on Google, so it is apparently not a Hot Topic of discussion. Regardless, today I was working on a PHP script for a company I am doing some development for, and ran across a problem when using mailto:. I was crafting an email that would populate the subject and body fields with some information that would be of use to someone in the sales department, but realized that you cannot use an & in the link itself because mailto: treats that as a separate parameter. For instance, if I want to put the URL

http://jason.narnarnar.com/index.php?a=1&b=2

in the body of an email, mailto: would consider everything up to and before the & as part of the body and then try to find the field b to populate it with the value 2. My link would look like

<a href=”mailto:example@example.com?body=http://jason.narnarnar.com/index.php?a=1&b=2″>Email me!</a>

Which would create an email to example@example.com with the body http://jason.narnarnar.com/index.php?a=1 which is not the desired result. The trick — well not so much trick but proper way — around it is to URL encode the & with %26. If you are using PHP you can accomplish this with urlencode() but if you are just doing it manually, consult this page for a nice table of them.

Hope this helps someone!

Posted in Random Information, Web Development | No Comments »

My Theory on Traffic

March 16th, 2009

I live in Columbus, and while not as big of a concern as it is in other, larger cities, we still have a fair amount of traffic problems during the expected rush hours. Fortunately for me due to my location and job, I get to miss it the majority of the time. However, I will occassionaly be forced into its iron grip of immobility. I’m sure that if you talk to a civil engineer, they would say it is an inevitability of large cities with limited space for highway expansion. I, on the other hand, refuse to believe that it is the fault of not having 8 lanes. Here is my theory of yet another way stupid people ruin life for the rest of us.

Most of the freeways here have a speed limit of 65 mph for non-commercial vehicles; a respectable speed limit which allows for quick transit. Even though people are given the freedom to drive this speed, there are always the group that find 50 to be a much better velocity. All it takes is 2 of said drivers to be traveling by each other to send the rest of the freeway into turmoil. Ok, so you are probably thinking “how is that stupidity when someone is wanting to drive at a speed they are comfortable?” It is because intelligent individuals who are going the same speed would naturally fall into line with one another, thereby slowing only 1 lane of traffic and not the entire west side of the city. Beyond that, if you are not comfortable enough to drive at some speed comparable to the rest of your fellow commuters, then you should find some alternate route…preferably one that doesn’t have shiny signs as you’ll most likely get distracted and create a pileup.

The slow driving idiot isn’t the only one who bothers me. There is also the I-don’t-think-about-my-exit-until-the-last-minute driver. I fully understand that not everyone caught up in the traffic mess has been on this particular road, but given that the standard rush hour traffic consists almost entirely of people who take this same path each day, that percentage is small. If your exit is coming up in 1/4 of a mile, the far left lane of 4 lanes is not where you should be. This lack of planning, and subsequent lane changing, causes a headache for everyone behind you. If Car A whips in front of Cars  B and C because A is a moron, B and C have to slow down, in my case sometimes slam on the brake, which in turn makes everyone behind them slow down. Ever get stuck in stand-still traffic and after breaking free see no sign of an accident like you’d expect? I put my money on this, or something similar, being the cause.  The fast driving idiot exists as well, but his goal is mostly to cause accidents by ramming stopped traffic.

If you don’t believe me, next time you are on a highway drive until you get stuck behind two cars who drive side-by-side at the same speed when everyone else wants to pass. See that cluster of traffic growing behind them? That’s a small scale traffic jam.

All is not lost however! I do have a few possible solutions to this problem. The first is a sort of messing device that allows for the transmission of preset messages such as, “your turn signal is on,” “thanks for cutting me off bastard,” “get the f*ck out of my way you slow driving POS,” and a couple more. The second is forcing people doing anything less than, say, 5 mph below the speed limit into the far right lane, people going between 5 under and 5 over in the middle, and people doing more in the far left (divide this up however depending on the number of lanes). This would safely keep the people who are unable to maintain a reasonable speed out of the way of those who don’t have a mental governor on the throttle. My third solution is to install ramming devices on the cars of those who are deemed “good, sane drivers.” This one might not fly, but the other two are reasonable suggestions.

What can you do to help this situation? Simple. Don’t be an idiot. Drive the speed limit. Think ahead. Maybe I will make some PSAs about this, because it really is this simple.

Posted in Rants, Traffic | No Comments »

Thank you for contacting [us], how can I help you?

February 24th, 2009

I would like to preface this with the fact that I fully understand what some people go through when providing technical support. There are some incredibly technologically confused people who either like to pretend that they know what they’re doing or fully admit that they have no idea what is going on. Either class, the end result is the the same: a step-by-step coddling on how to create a new bookmark in their web browser. This is not me. I have been working in the tech field for going on 11 years now (summer internships when I was in high school) and with the experience comes the ability to troubleshoot my own problems when they come up.

Whenever I talk to tech support for whatever company I’m forced to contact, I try to subtly mention the fact that I do, in fact, know what I’m doing and have probably tried 95% of the solutions you’re offering me with the other 5% being completely unrelated to the actual problem. Sometimes they pick this up quickly and those conversations generally last 10 minutes with most of the time being required to gather shipping and contact information. Other times, the representative does not get it even after I say flat out “I do this as my job, I know what I’m doing.” Today’s session with the manufacturer of my laptop fell into the latter category.

The back story is simple and sweet: I was using my laptop at work when it turned off and would not turn back on. It was hot enough on one side of the case that I was concerned with parts melting, and there was a definite smell of “something is now broken” coming from it. I muddle through the rest of the day sans laptop, which was particularly inconvenient today, and when I got home I contacted the MFoML via an online chat session. Surprisingly the laptop did power on initially but after I noticed the right monitor hinge begin to glow red (an exaggeration, but only slightly) I quickly turned it back off. After this I was connected to a representative and the chat began. Rather than try to explain what I had to go through, I will show you a few, verbatim excerpts:

5:43:03 Agent: I would suggest that we use a software called Dell Connect which will enable me to access your computer remotely and check the settings. Is that okay with you?
5:43:20 Customer: On the laptop? [note: we were talking about my desktop just prior]
5:43:28 Agent: Yes.
5:43:44 Customer: Honestly I’d rather not keep it on too long because I don’t want to risk data loss
5:43:54 Customer: I’ve not changed anything in the time since it worked and when it didn’t
5:45:08 Agent: Do not worry I will take care of the issue for you.
5:46:38 Agent: Shall we take Dell Connect now ?

So I clearly state my desire not to have it on, but as seems par with MFoML when I contact them via online chat, the representative fails to read what I write. As proof that I’m not just misreading her intent with that comment, I submit this:

6:05:10 Customer: Here’s how it happened. I was using the laptop at a desk on battery power only, it went *poof* and turned off, was extremely hot, and wouldn’t turn back on.
6:05:19 Customer: No changes to anything, no installs, it just turned off
6:05:58 Agent: How do you use it ? Like you to place it on the lap or a flat surface .
6:06:11 Customer: It was on a desk

And one last bit just to make my point that this was not a Pleasant Conversation:

6:27:37 Agent: Also could you please provide the names of the other discs that came originally with the computer so that if in case anything is missing, I`ll send them as well ?
6:27:43 Customer: Should I send everything?
6:28:18 Customer: Uhm, I think there was an XP disc, eventualy a Vista disc, maybe some driver discs, but it’s been almost a year since I’ve gotten it so there may be more.
6:29:24 Agent: Could you please check it now while I wait ?
6:29:41 Customer: Check what CD’s came with it? [note: this wasn't because I was confused at the question, I was just surprised at the request]
6:29:49 Agent: You have to send the AC adapter and the battery as well along with the computer.
6:29:54 Agent: Yes.
6:30:13 Customer: Lol, I have no clue where I put them. I’ve moved since I purchased the laptop and so they’re probably buried in boxes.
6:30:51 Customer: Out of curiosity, why does it matter what CD’s came with it if they’re just going to be looking at the laptop?
6:32:44 Agent: Okay. I will send them for you and you will receive the CDs within the next 3 to 5 business days and the box for the notebook in 1 to 2 business days.
6:33:04 Agent: Just give me 5 minutes while I create the dispatch for both.
6:39:50 Agent: 123456789 is the dispatch number for the box and you might loose all the data in the process as Hard drive might be replaced. Hence I would suggest you to back up data with the help of a local technician.
6:40:52 Customer: Ok, I’ll do what I can

What tops all of this off is the email I received after the chat ended that said I am getting “invoiced” for the CD’s and if the “defective parts” aren’t returned I will be charged for them. I didn’t want, or need, the CD’s and had absolutely no choice about having them sent to me. The laptop is overheating, so obviously I need all of the CD’s that were shipped with the laptop in order for it to be properly examined. The only possible rationalization I can make for this is that whoever fixes my laptop may not have any of the original discs that would have came with it and in the completely unnecessary event that the OS needs to be reinstalled, said person would be SOL. Coincidentally, I fully expect the harddrive to be wiped clean and a fresh install of Vista to be on it when I get the machine back, regardless of the fact that this is clearly a hardware fault. The complicated twist (there’s always a twist) is that my laptop doesn’t stay on long enough for me to retrieve data off of it. My only hope is that the harddrive will fit into the laptop HD cradle I have with me, but I’m not too optimistic.

At this point you’re probably asking yourself, “so what was the point of all of that?” This conversation with the MFoML underscores the inability of companies to find a way to adequately communicate with the people who have purchased their products.  I paid almost $1,800 for my laptop and I would expect that with the couple hundred I spent adding their extended service plan and accidental protection would equate to me also being directed to someone who knows how to spell the word “lose” and can come to the conclusion that “oh geez, his computation machine must be broken” in under an hour and fifteen minutes (yes, it took that long and we did no tests on it beyond “does it power on”).  People don’t just buy a product from a company and expect nothing in return. If I give you my money, I am making an agreement between the two of us that you didn’t sell me a POS and that if something goes wrong, you’re going to do what you can to keep me happy.

Posted in Rants, Technology | 1 Comment »

And so it begins…again…beginagains?

February 23rd, 2009

Well I’ve decided to start up another blog since the demise (aka, lack of interest on my part) of my webcam page.  That site hasn’t been around for about 3 years so chances are nobody remembers it anyway, but that was the original destination for my mind spew. My intentions for this will most likely alter as I begin getting back into the “scene” and decide what direction I would like to take this. Currently, I can see myself devoting this space to things that interest or irritate me, and hopefully not make this a LiveJournal — I don’t think I’m full of enough angst to properly fulfill an obligation like that.  Truthfully, my life is pretty inane so trying to keep this updated simply with what happened to me on that day would make for short, intermittent (read, boring) posts.  Chances are I will, from time to time, throw in bits of my life if they seem pertinent to the post, just don’t expect this to be all Jason all the time.

It’s an odd thing to write to an audience you know consists only of yourself, as the only time anybody will read this will be in archive format, but it does offer the unique time to come up with a “style” or a “theme.” I’m not referring to the look of the page itself, but moreso what I focus my attention on and how I present that to whomever may end up reading it.  I have a few ideas right now but I believe it’s required to start your blog with a “ooh, new blog!” post — or maybe I’m just being lazy, your pick. Regardless, I have an inkling that I’ll get my first few readers by a random Google.

Currently on the to-do list:

  • Re-theme the page. The default WordPress theme isn’t offensive or anything, I just need something more personal
  • Well, I thought I’d have enough to warrant a list.

And once that list is cleaned off this will be Home.

Posted in General | No Comments »