Diary of a Network Geek

There’s been a couple of security “issues” lately.
As many of my regular readers know, security is near and dear to my heart. In the past couple of weeks, there have been several computer security notes that have come up in the news. First, there was the Big Browser Bug. Basically, if you haven’t read about this yet, it’s based on a “feature” called IDN (International Domain Name) which allows people to use special characters in non-English languages to resolve domain names. Well, phishers can use this to disguise their domain name even more to lure unsuspecting suckers into giving up their information. Bad news. Worse news is that this is mainly a problem for non-Internet Explorer browsers, like Firefox and Mozilla. So, what to do? Well, in Mozilla, type “about:config” into the URL bar and set “network.enableIDN” to false. Simple. Of course, it disables an interesting feature, but better safe than sorry.
Second, there is the “evil twin” wireless router problem. In a nutshell, a cracker finds an office or apartment near an unsecured wi-fi router. (Which isn’t that hard. I’ve been squawking about how insecure wireless is for years. I think it even contributed to my job change at that-damn-boat-place.) Then, the naughty person sets up a router that mimics the unsecured one and forwards all the traffic on to the “real” router. Of course, before it does that, the “evil twin” router logs all the info. In a way, it’s just a more aggressive and sneaky way of phishing. The end result is the same. All your personal data ends up in the hands of a crook. That’s one of the reasons I ran Cat 5 in my house instead of going wireless.

Now, for a more positive story, the Register is running a bit about how computer forensics have cleared teachers and students of illicit porn collecting accusations. Apparently, a folder of pornographic images was found on a school computer and was seemingly updated during regular class time. The school brought in an independant consultant who was able to show that it was, in fact, a piece of spyware that was doing the downloading and updating. So, sometimes, we geeks can come in handy, eh?

You know, in today’s world of crackers, hackers, phishers, virus-writers and disgruntled employees, we just can’t be too concerned about security. It’s a very, very big deal. Every single person in IT is responsible, to a greater or lesser degree, for some aspect of computer security in their business. Even the Receptionist has to be thinking about security these days. After all, if I can get physical access to a machine, I’ve just beaten a majority of the normal security measures most companies put into place. It’s something every one of us need to think about every day, both at home and at work.

Okay, so I *still* haven’t been all that great about keeping this up to date, but I have an excuse. My wife and I got the house. In fact, we just finished moving in this last week. Now, we’re surrounded by boxes. But, somehow, I don’t mind. After all, we have *all* our stuff, no more storage facility, and we *still* have more room than we did in that stinking little apartment!
Now, let’s see, I still haven’t passed that damn kidney stone, so tomorrow, Saturday, I’ll be going in bright and early to drink a radioactive milkshake and have intestinal pictures taken. Of course, the real fun will be the castor oil that I have to drink the night before. My lovely wife, who’s very knowledgeable about health and medical stuff, says that it’s to clean me out. I guess so that nothing interferes with the pictures. Fun.
Oh, and I bought all my supplies for running my cat 5 network cable this week, too. With any luck at all, I’ll be able to start wiring up the house this weekend. I’ve looked all over the Internet for people who have chronicled their home cabling experience, but I came up pretty empty. There are a few folks that have talked about it, but not too many really. So, of course, that means that I’ll be doing my best to log all the stuff I do. I’m even going to try and give a little technical advice, but I’m afraid that it will mostly be out of date by the time it hits the web. In part because I’m using at least *some* “found” materials. Namely, I saved myself a couple of bucks (roughly $150) by salvaging a category 5 punchdown panel. It only has 24 connections, but how many does a home network need?!? Anyway, I’ll do my best to make a usable reference of everything I learn along the way. Stay tuned!