Splash of Style...Macs, Photography, Design, and other Passions

New Setting in Gmail: Always Use https

August 14, 2008 by debbie T | Internet

Listening to the Security Now podcast today, I found out that Google has added a new setting to Gmail for always connecting securely using https.

Once logged into your Gmail web account, click the “Settings” link. On the “General” tab, at the bottom of the page, click the radio button next to “Always Use https”

I use a Flickr extension called Gmail Manager, and it always logs me in using https, but this will still be handy especially when logging in at work, or when I eventually get my iTouch or iPhone.

Automountd Trying to Connect to Backups.backupdb

August 9, 2008 by debbie T | ComputersInternetMac CornerMac Software

I just bought a new 1TB external hard drive yesterday, and my Chronosync backups were still working last night to sync all my files from various hard drives to backups on the new drive.

This morning I noticed a Little Snitch (gotta love this app!) requesting to allow “Automountd” to connect to “Backups.backupdb”

I recognized Backups.backupdb as the location of Leopard’s Time Machine backup, but I was unsure why automountd wanted to connect to the Internet; besides Time Machine is not configured to auto backup. I always click the Time Machine icon in my menu bar for manual backups AND the drive I do use for backups was definitely attached to my Mac overnight.

So I googled “automountd” and found this article. http://installingcats.com/2008/06/01/automountd-backups-backupd/

He received the very same message from Little Snitch. In the article he explains in plain English what is going on. Even though the first time I read it, I was a bit muddled, but when I read it again, I think I understand the answer to the problem, but I still don’t know why automountd was trying to connect in the first place, especially since Time Machine is not set to auto backup.

In the article, another article was referenced. That might contain the answers to automountd, but seriously, I don’t have the time right now to read it. So, I will list the article for future reading reference: http://rajeev.name/blog/2007/11/22/autofs-goodness-in-apples-leopard-105-part-i/

I ended up denying access (until quit) in Little Snitch, and there appears to be no impact on Time Machine’s backup ability. I manually started the backup and it did take a very long time to start the tiny backup (a few mb) but when it was finished, the files looked okay.

I will keep an eye on it.

DNS Poisoning & How To Protect Yourself

August 7, 2008 by debbie T | ComputersInternetMac CornerWeb DesignWeb DevelopmentWirelessWordPress
UPDATE: I will be updating this article very shortly. I have new info on how to change the DNS settings for dialup as well as wired users. I will be adding a few screen shots and step by step instructions.

Now I am not one to panic about malware on the web. I have always prided myself on smart & safe browsing. But when I first heard about the new DNS Poisoning problem on the Nosillacast podcast a couple of weeks ago, it scared me. This could be a problem affecting everyone, no matter what safety precautions they take while surfing the Internet.

The subject is so complicated, and I won’t pretend to understand it fully, but I think I understand it enough to explain the situation to my family and friends, which is what I am trying to do with this blog article.

Okay, bottom line is there is a type of flaw that can be exploited by the bad guys, which enables them hijack vulnerable unpatched systems at your Internet Service Provider (Comcast for example) and change the path of traffic to their own web pages. So, if you are trying to go to amazon.com, your browser address bar will display “http://www.amazon.com” but you might be redirected to the hijacker’s site who has created a web site that looks very similar to Amazon. From there, it could be possible to install malware to your computer or to trick you into giving your personal info like credit cards or passwords.

This vulnerability can also affect your email, which is even scarier. A bad guy could intercept your email message(s) and insert a malware attachment or web site link. And you wouldn’t even know it was happening.

Are you vulnerable?

The Security Now podcast lists several links to sites that will “test” your site for the vulnerability: http://www.grc.com/sn/notes-155.htm

I ran the test @ DoxPara and the following message appeared: “Your ISP’s name server, xxxxx, has other protections above and beyond port randomization against the recently discovered DNS flaws. There is no reason to be concerned about the results seen below.”

I have heard that similar messages are appearing for other Comcast users. Since the information I am finding online concerning Comcast is vague and unclear, I am not 100% sure I trust Comcast to deal with this. So, I am taking matters into my own hands until I am sure.

I have read that other ISPs like Time Warner and AT&T have NOT patched, so there are still a lot of people out there that are in trouble!

Good News - Use Open DNS

The good news is, you can bypass your ISP’s DNS computers, and use another. Open DNS is a very secure and highly recommended DNS server that offers use of its servers for FREE! All you need to do is change a couple of settings in your router.

Not using a router? If your computer is attached directly to a high speed modem (ie DSL, Cable, satellite) then you are highly vulnerable to this flaw, as well as many other attacks.

Using a router keeps you safe behind a “hardware” firewall, and that firewall can thwart most attacks…so do yourself a favor and head to Staples, Walmart, Target, or Amazon and buy a Linksys, Netgear, or DLink router. It is an absolutely necessary tool in today’s times!

Change Your Router’s Settings

It is very easy to change your router settings to use Open DNS servers instead of your ISP’s.

Note: Don’t worry, you aren’t changing to a new Internet Service Provider, you will still be using the same ISP, it’s just the DNS computer information that you are changing.

There are detailed instructions on the Open DNS site, but I will walk through the instructions for changing a Linksys router.

First you need to access your router’s settings. Linksys router users can use this link: http://192.168.1.1/.

A password window will appear. The user name is “admin” and unless you previously changed the access password, the default password will be “admin”.

Important note: in the router settings, your password should be changed for extra security. To learn more about configuring your router for better security, please read my prior article.

Once you have logged into your router, you should be on the “Setup” page/tab.

Toward the bottom of the page, there is a setting called “Network Address Server Settings (DHCP)”. Locate “Static DNS 1″ and “Static DNS 2″ and type in Open DNS’s server numbers, which are:

208.67.222.222 and 208.67.220.220

NOTE: If you have current DNS settings, then write them down just in case you need to revert back.

change dns servers on linksys router

Once the new DNS numbers have been entered, click the “Save Settings” button. And that is it!

Again, if you are not using a router, I cannot stress enough that you need to go out and buy one. They are usually about $50 and sometimes less. I recommend the Linksys WRT54G series routers, but DLink and Netgear also make good routers. Buy whichever is on sale that week; most will have detailed instructions explaining how to set security.

Okay, next, a word or two about Open DNS. Besides free use of their DNS servers, they also offer all sorts of parental controls and other security. I haven’t really delved into their offerings, but from what I gather, it’s all free. How can all this be free? Well to offset their costs, they have advertising revenues. Keep in mind, that whenever you type in a wrong address into your browser, Open DNS will take you to a custom search page, usually with your corrected web site URL on top.

For instance, if you type “ebay” instead of “ebay.com”, your browser will take you to a search page for “ebay”. Some have complained that this isn’t fair, wah wah wah…but who cares. They have to make money somehow. I don’t mind that they make a little on searches.

To learn more about Open DNS and all their offerings, check out the Typical Mac User podcast for a special 3 part series on all the details.

Personal Computer Patches

Besides your ISP computers, personal home computers, as well as business computers also need to be patched.

As far as I can tell, Microsoft issued a security patch a week or two ago, so make sure you are 100% up to date with all your Vista or XP critical patches.

As for Mac users, there was a patch issued, but it looks like it doesn’t fix everything, so when I am out from behind my router, I think I am still vulnerable if I connect to an open wifi spot. I am still a bit foggy on that issue, so more research is needed.

More Questions

Since I am still learning about this vulnerability, I still have additional questions that I haven’t found answers to.

For example, are cell phones that connect to the Internet still vulnerable? What about if you use a VPN (virtual private network)? What about web based email like gmail?

There is also a problem with routers being vulnerable too, but the issue isn’t as dire, because they would only be attacking your small network. Initially, I think routers will be okay, and the bigger networks like ISPs will be attacked first. I would like to find out more about the router issues, and whether firmware patches will be issued.

Hopefully I can find the answers online soon.

Helpful sites if you want to learn more about the DNS Flaw:

Getting Social

July 19, 2008 by debbie T | Digital PhotographyFlickrInternetMac CornerWeb Development

I have had accounts at all the cool social networking sites, like Twitter, Facebook, Tumblr, MySpace and Zooomr to name a few.

I have never really had the time or desire to participate with any of these networks, except for Flickr. But with all the talk (and rumors) of the downfall of Flickr, I decided to mess around with Zooomr.

When I signed up with Zooomr almost a year ago, I didn’t mesh with it, but this time, I guess it stuck, because I am totally addicted.

The addiction to Zooomr, lead to another look at Twitter, and I have set up auto updates to Twitter from Zooomr.

I have never thought of myself as a chatter, but this is actually kind of fun. I like the quick moving feel of Zooomr and the community aspect is very fun.

If you are a Zooomr member, would you like to “follow” me?

More on my thoughts on Zooomr at a later date.

Moving Thunderbird Profile to New Computer

February 27, 2008 by debbie T | Firefox BrowserMac SoftwareThunderbird Email

For some reason, the last time I moved my Thunderbird profile, it didn’t work very well.

Firefox is very easy to move; I just drag the whole Firefox folder from my back up to the Library folder in Finder (Mac OS X). Thunderbird used to work that way as well.

I found this article explaining the proper way to move a profile: Moving your profile folder

Make sure to also check out the article on how to start the profile manager too: Accessing the Profile Manager

Ipernity

February 3, 2008 by debbie T | Art and GraphicsDigital PhotographyFlickrInternet

Due to the impending doom of a Microsoft takeover of Yahoo and Flickr, I have been checking out other online photo sharing “communities”

I just found Ipernity, and hey, this could be an interesting alternative to Flickr. I will be checking it out for a few days. We’ll see how it compares in the long run, but so far it is VERY Flickrish!

http://www.ipernity.com/

Visit my Ipernity page: http://www.ipernity.com/home/debbiet/

I have a feeling that community sites like this will become much more popular in the very near future. Flickr members are in a panic and will be diligently searching for alternatives. I really hope Microsoft doesn’t take over Yahoo!!!

UPDATE: After playing in Ipernity for a couple of hours, I can honestly say I am enjoying myself, and this could have some potential as a Flickr replacement, at least for me.

What I like: It looks and acts A LOT like Flicker. Groups have pools, the photo pages look the same, favorites are the same, there’s even Explored photos. But there are a few bits that are even better than Flickr. For one, there is an option to add video, blog posts. I also find the interface a bit more detailed. It is easy to track who is visiting your photo stream.

As for the upload process, it isn’t as easy as uploading from iPhoto, but there is an upload downloader (based on jUploadr): http://www.ipernity.com/tour/iperupload

Fun Greasemonkey scripts to make life at Ipernity similar to Flickr: http://www.ipernity.com/apps/gm Some favs:

Easy Photo Post Import Flickr photos (either in full, or one at a time) Add Referrer into Comments IpernityFox - photo sidebar viewer similar to flickrfox.

I have found some interesting groups, uploaded a few photos, and time will tell if I will convert fully over to Ipernity. One big thing that is missing in Ipernity, is all my Flickr friends. Who knows, maybe eventually we all will be moving over to Ipernity or another online photo community!

Microsoft Trying to Take Over Yahoo (Flickr)

February 3, 2008 by debbie T | FlickrInternet

Microsoft is trying to take over Yahoo.

Microsoft & Flickr?? Oh no!

Whether it’s a hostile takeover or not, this is something I am not happy about. As it is, Yahoo seems to neglect proper upkeep of Flickr. If Microsoft takes over Yahoo, I don’t want to think what they will do to Flickr.

I don’t care about Yahoo Mail or Search engine, but the community at Flickr is unmatched by no other photo sharing site.

I can easily upload my photos using the iPhoto Flickr plugin. I have made so many wonderful friends at Flickr. If Microsoft makes negative changes, I will be very sad. I know it sounds a bit pathetic that I could be so addicted and affected by a website, but it really is a fun community. And unfortunately, there really is no other place to go.

I really hope the purchase doesn’t go through, but truthfully, I can’t see it NOT going through….so hold on Flickr users, it is going to be a bumpy ride!

Online Resources to Check Out:

Finding Your Way Around Paypal

December 16, 2007 by debbie T | Internet

Using Paypal is a great way to receive money online. I have been trying to push my Dad into using it for his Craig’s List sales, and he finally gave it a shot. He loves it, but he is now wondering how to get the money from Paypal into his banking account.

So, this tutorial is for him, and for any others that want to learn a little bit about their Paypal business account.

Log Into Paypal

When you log into Paypal, there will probably be some sort of advertisement on the screen. A lot of times it will be for a credit card. To skip over the ad and go to your account, click the “Go to My Account” link found at the bottom-right of the ad image.

Welcome to Paypal

Read the Rest of the Article

SOS - Invites & Comments for Flickr

October 11, 2007 by debbie T | Digital PhotographyFirefox BrowserFlickr

The SOS - Invites & Comments for Flickr is a special Greasemonkey script for Firefox browser users. When installed, the script creates two drop down menus to post various Flickr group "invite" and "vote" html codes into photo comments.

It is based on the original SIC script, which I found it to be very helpful. Unfortunately, the script didn’t include some of my favorite group codes, and some of the existing code was out of date.

So, I decided to edit the script to fit my needs better, adding more group codes and updating the existing ones. After testing it for a few weeks, I am ready to share it with other Flickr users.

Learn more about my SOS - Invites & Comments for Flickr script.

Extending Flickr Experience With Firefox

September 29, 2007 by debbie T | Digital PhotographyFirefox BrowserFlickr

I have been using Flickr for years, but just recently I have become much more active in the community. I have found a few tools that have made my experience at Flickr much more efficient.

Read the Rest of the Article