jp.jpg (13389 bytes)

THE VIEW FROM CHAOS MANOR

View 158 June 18 - 24, 2001

read book now

HOME

VIEW

MAIL

Columns

BOOK Reviews

  For Current Mail click here.

FOR BOOKS OF THE MONTH 1994-Present Click HERE

Last Week's View                    Next Week's View

emailblimp.gif (23130 bytes)

Highlights this week:

  •  
  • Zip Madness: HELP!!!
  •  
  •  

 

This is a day book. It's not all that well edited. I try to keep this up daily, but sometimes I can't. I'll keep trying. See also the monthly COMPUTING AT CHAOS MANOR column, 4,000 - 7,000 words, depending.  (Older columns here.) For more on what this place is about, please go to the VIEW PAGE.

If you are not paying for this place, click here...

Day-by-day...
Monday -- Tuesday -- Wednesday -- Thursday -- Friday -- Saturday -- Sunday

For Previous Weeks of the View, SEE VIEW HOME PAGE

Search: type in string and press return.

 

For an index of previous pages of view, see VIEWDEX.
See also the New Order page, which tries to make order of chaos. These will be useful.
For the rest, see What is this place? for some details on where you have got to.

Boiler Plate:

If you want to PAY FOR THIS there are problems, but I keep the latest HERE. I'm trying. MY THANKS to all of you who sent money.  Some of you went to a lot of trouble to send money from overseas. Thank you! There are also some new payment methods. I am preparing a special (electronic) mailing to all those who paid: there will be a couple of these. I am also toying with the notion of a subscriber section of the page. LET ME KNOW your thoughts.
.

If you subscribed:

atom.gif (1053 bytes) CLICK HERE for a Special Request.

If you didn't and haven't, why not?

If this seems a lot about paying think of it as the Subscription Drive Nag. You'll see more.

For the BYTE story, click here.

 

For Current Mail click here.

The atomz Search returns:

Search: type in string and press return.

 The freefind search remains:

 

   Search this site or the web        powered by FreeFind
 
  Site search Web search

 

 

 

line6.gif (917 bytes)

This week:

Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Sunday

TOP

Monday  June 18, 2001

We had some problems with the new Ricochet Firewall today. Not security vulnerabilities but too restrictive on what ftp can do. Is being fixed.

Meanwhile

Try this site!

http://www.mlin.net/ 

Going up to work on BURNING TOWER now

 

Done. Got new scenes in Burning Tower and some work on Mamalukes.

 

TOP

 

This week:

Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Sunday

TOP

Tuesday, June 19, 2001

A WARNING FROM ROLAND: Another Security Hole:

http://www.microsoft.com/technet/security/bulletin/MS01-033.asp 

 

So now I have to get ready for PC Expo. I confess that going to New York City this time of year is not my preference, but then any trip of more than a day is no longer my preference. The airlines are in a competition to see just how much misery they can inflict on passengers and they're all winning. I like my hotel, and the walk from the hotel to the Javits Center is pleasant, and I actually like most computer conventions, so I guess that feeling of dread is mostly due to the airlines. That and being displaced from my house...

Ricochet works, and now the IP Tables are fixed so that I can publish with FrontPage. I was recently reminded that most web professionals don't use FrontPage, preferring Dreamweaver or UltraDev. I am sure this is true, but I will also say that like a lot of Microsoft products, FP is Good Enough, and came out at a time when the others took a lot more work. I am used to FP's quirks, and of course what I do isn't all that complicated. I can put in a picture or two without problems, and it does keep track of pages and their relationships. 

Having consolidated the computer market and having largely achieved Gates's once thought impossible dream of a computer on every desk, and in every home, and in every classroom, Microsoft needs to do two things: convert the computer market into a reliable revenue stream, and jump feet first into the connectivity revolution: there are billions of telephones, and wireless -- like my new Ricochet system -- is the coming thing. Bluetooth took longer to become really useful products than we thought it would, but it will get there, and the days when your telephone will natter with your car about your bank balance aren't so far away as you might think. 

Converting the computer market into a reliable revenue stream is not going to be easy: people aren't going to put up with new products every few years, because like FrontPage much of what we have is now Good Enough, and we don't need to change to keep up with the hardware. Moore's Law will continue for a while -- see my AAAS reports on molecular computers over at www.byte.com -- but the software isn't really keeping up with the hardware, and the old Microsoft model of bringing out a new version incorporating anything anyone else had put in their products may run out of steam. 

Look at what I have in Windows 2000 and Office 2000 now: I can do my fiction and non-fiction, do my taxes, analyze my investments, build and keep small data bases, keep my appointments calendar, do my email, do this page, capture my pictures from my digital camera and edit them and insert them here, keep my phone book, and keep an email mailing list of all the paying subscribers. All that in two products that together were under $500 in major office supply stores; add two computers and network them and we are up to maybe $3000; add a laptop and we are still under $5000 for more capability than most of us dreamed of back in 1978 when I borrowed $12,000 to have Tony Pietsch and Dan MacLean build me a Z-80 based S-100 bus system running CP/M.  

Good enough: most of what we have is good enough, and now Microsoft needs to figure out a way to keep us paying for what is already good enough. Engulf and devour isn't likely to do it, because what's left to embrace and extend? Another iteration of the old model, perhaps, although I have yet to see anything in Windows XP other than games support that I don't have in Windows 2000, and I have found little about Office XP ne Office 2002 that compels me to abandon Office 2000; and once everyone is running both forms of XP where do they go from there?

Meanwhile Linux is still UNIX, and it's still hard to use but very powerful and very stable, and provides network security. 

And that's enough philosophy before breakfast.

BUT OF COURSE I HAVE A CACHING DISASTER to distract me from my work. If I go to http://www.jerrypournelle.com/index.html I get the page I uploaded this morning. If I just go to www.jerrypournelle.com I get an older page and NOTHING I CAN DO short of putting in that /index.html will get me what I just uploaded. Refresh, shift refresh, NOTHING.  Since www.jerrypournelle.com is my home page this means I never see my latest work unless I think to put in the /index.html.  I make no doubt this will be fixed but it's another reason why Aunt Minnie will never be a Linux user....

 

And this from a friend and fellow writer:

The woes of broadband access: last week, my computer was crashed by a
hacker, who disabled the firewall from inside using a trojan horse
virus.  There was no permanent damage, only because I'm fanatical
about backing things up.

Tonight, he tried to get back in, but (a) didn't, and (b) revealed
his IP address: 198.142.112.143.  This decodes to a dialup service in
Australia called Optusnet.com.au.  I have contacted their customer
support, asking for the intruder's identity, but I'm assuming they
won't give it to me.

Any thoughts on what I should do next?


Be careful out there...

See also

http://www.zdnet.com/eweek/stories/general/0,11011,2775881,00.html 

But note that it says:

 

"This is a vastly powerful tool for mass destruction," said security expert Steve Gibson, of Gibson Research Corp., in Laguna Hills, Calif., whose Web site was hit by several DDoS attacks last month. "No home software has any need for [raw sockets]."

However, officials of the Redmond, Wash., software company and some security specialists say that the feature has been in Unix and its open-source descendants for years and that it has always been possible to spoof IP addresses on Windows 9x with plug-ins.

The latter statement is true. This is a complex and important subject, and one needs to be careful to find out what's happening. I don't claim to be an expert. Fortunately I have friends who are.

And from Dan Spisak who set up my Ricochet:

Jerry,

Was just perusing through your site a few minutes ago and I saw the note about your friend who got hacked and what they should be doing about it. In situations like this they should contact their own ISP to report the hack and then give the ISP the information they have about where the hacker came from, etc. The faster he moves on this the better as most ISP logs of dialup accounts don't last for too long inmy experience (and that is if they even turned on logging!). Then his ISP needs to contact the ISP that the spammer used. One time at one of my old ISPs I had to call an ISP in Sweden due to a hacker that was effecting one of my customers, just to give you an idea. If it was a dialup account odds are that the user who actually owns the account wasn't even the one doing the hacking as I have seen dialup accounts get stolen frequently. Basically in a nutshell the ISP the hacker used is going to be more responsive to another ISP calling them up and informing them they have a hacker in their network then an end user calling them up will. Also, getting any information about the hacker themself depends a lot on the laws in the country of that ISP but more importantly on how willing the hacked ISP is to cooperate. This is probably his best course of action I think.

Daniel E. Spisak Network Engineer/UNIX System Administrator for Hire http://www.nonmundane.org/~dspisak 

 

For those contemplating sending me mail saying I have not read Gibson, please save us a lot of time. I have.

The sky is not falling. There are problems and there are solutions. A political agenda isn't part of the solutions.

The biggest difficulty is that we have many people who do not install security patches and attach their systems to high speed connections without any security whatever, either oblivious to the problems or simply uncaring that their system can be used in illegal ways by unscrupulous people. Law enforcement doesn't know how to deal with this yet, but that evolves. Until then, make sure you are not part of the problem by securing your own system.

 

 

 

TOP

 

This week:

Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Sunday

TOP

Wednesday, June 20, 2001

I keep making slow but sure progress with BURNING TOWER and MAMELUKES. Ricochet. Ricochet crashes about once a day, but it's easily restored. We had considerable problems using client side caching, and that is now turned off; with fast bandwidth client side caching (as opposed to server side caching) seems to cause more problems than it is worth. Once I get my ducks in a row -- read Once I know what I am talking about -- I'll have something substantial to say in the column.

One problem went away when we did in caching: it used to take forever to close ftp connections to my site. Now that is nearly instant as it was back with modems...

 

Happened this morning to read Ben Stein's column in latest American Spectator, and discovered that I sure don't want to be on his TV program. (Win Ben Stein's money, in which you play quiz trivia games with him as your opponent.) One of the questions was "What island off the coast of France was annexed by France in 1796?"  The answer to that is Corsica. This is out of his column, and while it may be technically correct, it is substantially wrong, and I don't know anyone who would have got it right.

As a first cut: Napoleon I went to the French Royal Military School. I don't recall precisely his year of graduation, but it was before 1789, a date we all should remember since the French Revolution is a turning point in Western history. Napoleon was born in Corsica and was a French subject (else he could not have gone to the Royal Academy) well before 1789, so how can France not have "annexed" Corsica previous to that date?  Clearly there was something wrong with the question, and since Stein gives it in his column and uses the wrong answers given to deride American knowledge of geography, it's clear that Stein doesn't think much about history. Me, I don't know the date when France annexed Corsica, but I blooking well know that Corsicans were considered French subjects well before 1796.

So out comes the DVD Encyclopedia Britannica, which tells me that Genoa and Pisa fought over Corsica until 1284, then Genoa and Aragon, then rebellion, then Genoese rule until 1729. Genoese rule was so corrupt that the Corsicans developed their own private system of justice known as vendetta, and there are many stories about that. In 1729 there was a successful rebellion, and a Corsican Republic. The Genoese held some of the coast, and there was fighting, and in 1768 Genoa sold its interest in the island to the Kingdom of France, which responded with a massive invasion. Corsica became a province of France in 1769. Not 1796.

So we have a simple transposition of numbers: but whether that is a typo in American Spectator not caught by Stein when he proofread his column, or was the date used in the question on his show, isn't clear to me. Incidentally, Napoleon was born in November 1769 just in time to be a French subject and thus eligible for the military school. Also, Britain occupied the island from 1794 to 1796, and there was rebellion against the revolutionary National Assembly (Napoleon even returned to Corsica during that period, and became a field grade officer first in the militia there) after which the French took it back, giving rise to the even less satisfactory explanation that the question is technically correct: that France didn't "annex" the island until 1796 when the British were thrown out and the independence movement suppressed. In other words, it depends on what you mean by "annexed", and the similarity of 1796 and 1769 is a coincidence. Either way, the question is definitely misleading, and I doubt that Ben Stein knew all this when he answered the question correctly in defending his money against some random surfers drawn from Muscle Beach.

Which makes me wonder about that quiz show, but since I watched it once and found it less interesting than whatever book I was reading at the time I suppose I have given this more space than it deserves. My real point here was that this is the way to remember history and dates: know a few key dates, like 753 BC, and Christmas Day 800, and 1066, and 1492, and 1648 and 1776 / 1789 and you can often reason your way to, if not the exact year, then generally the decade in which something happened.

For example, suppose you didn't know that 1588 was the year of the Spanish Armada (although that's a good date to remember). You do know that Henry VIII's first wife and mother of Queen Mary (Bloody Mary) was Catherine of Aragon, and that she was the daughter of Isabella the Great. Isabella was Queen in 1492, and lived long enough to pardon Columbus sometime in the early 1500's. Elizabeth was Henry's daughter by his second wife, Ann Boleyn, and he was married to Catherine for quite a long time. Henry wrote a treatise against Martin Luther and received the title Defender of the Faith from the Pope, so he didn't divorce Catherine of Aragon until after 1520 and probably considerably later. (Henry lived long enough to discourse with the brother of his 4th wife Ann of Cleaves about Martin Luther, who had advised the Margrave to commit bigamy. It didn't work well. "If one was Hell, two are Hell, Death, and Damnation."  But we don't need to know any of this to know that Henry lived long enough after Elizabeth was born to have Elizabeth's mother beheaded, have a wife die in childbirth, divorce Ann of Cleaves, behead Catherine Howard, and die leaving a widow...) After Henry died there was the brief reign of his son Edward, then Bloody Mary who married her cousin Philip II of Spain (thus giving the Spanish claim to the English throne), then finally Elizabeth when her half sister died. All that took some time, so we can be pretty sure the Armada wasn't sent until well into the second half of the century. We may n0t hit on 1588 but we can be pretty confident that it was after 1560 and before 1590.

Incidentally, we can also figure out when St. Thomas More was beheaded, and for that matter when the Wars of the Roses ended by similar reasoning. Henry VII ended the Wars of the Roses by defeating Richard III at Bosworth (My kingdom for a horse!). Henry VIII was old enough to write a treatise denouncing Luther. So while we can't remember for certain when Richard III was killed and the Wars of the Roses finally wound down, it had to be late in the 1400's, say 1480, and in fact it turns out to be 1485.

And good heavens enough on this. But it's the way to learn history, and apparently Ben Stein was never taught that. Ah well.


Well I got a lot of work done today and I tried to send a copy of my document to Larry Niven. It's a 273KB Word 2000 Document in .doc format. He gets it as a zip file. So do I when I send a copy to myself.

 

I know of no reason why any program is automatically zipping files I send 0ut. Since this didn't happen before the Ricochet installation I presume it has something to do with that. Of course Niven doesn't understand zip files and I think doesn't have anything installed, certainly not on his downstairs machine, that will handle zip files.

This has nothing to do with Linux, and now we can't reproduce the problem. Apparently every now and then a doc file is zipped and sent as a zip file and we can find NOTHING that would cause that. Scanned with Norton Anti-Virus including latest updates. That didn't show any problems.

Gee.

 

 

 

TOP

 

 

 

This week:

Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Sunday

read book now

TOP

Thursday, June 21, 2001

This is cutting into my fiction time, and I have to spend a blooking week in New York which will do more. Maybe I can work in my hotel room. I sometimes can. I'll take a good mouse. Maybe I'll take an external keyboard. Heck, maybe I'll just build a system and buy a monitor! Not that the Compaq Armada is that hard to work with. But I do get set in my ways.

The latest problems are two: sometimes Outlook 2000 unexpectedly ZIPS a file when it sends it, turning Book One.doc into Book One.doc0.zip and sending it along that way; I know because when I send myself a cc I get one; otherwise it sends it as a zip file but I never even SEE a copy of that ZIP unless I have included myself on the send list. There is a setting in Outlook 2000 Corporate and Workgroups installation that automatically does that. There is NO SUCH SETTING in Outlook 2000 the way I have installed it (which is the other way that isn't Corporate whatever you call that), so there is no way to turn this on and off; but it is as if Outlook is sometimes thinking it's the other kind of installation. It hasn't happened often but it did happen when I sent an advanced copy of some of my column to Waggener Edstrom (my policy on advanced copy to people I am writing about: errors of fact I will correct, errors of judgment I will listen to arguments, and I reserve the right to determine which is which). Wagged couldn't open the file, but didn't say why; it was only last night in searching for *.doc0.zip that I found that Outlook 2000 had compressed the files twice before, at random intervals, and with file sizes ranging from columns [9000 words] to Burning Tower [25,000 and growing]. 

Last night I sent Niven a copy of the latest version of Burning Tower. I was damned proud of the 2000 or so words I had done. So of course it went as a ZIP file (does Microsoft have a critical need detector) and Niven's downstairs machine doesn't know how to handle ZIP files. An hour later sending it the same way sent it unzipped but by then I had lost all sense of composure.

 I think this is a defect in Outlook that Microsoft needs to be aware of. It may or may not be in Outlook XP; I'll try that but not until after PC Expo. I was WRONG  SEE BELOW.

My other problem was and is Ricochet and DNS resolution and those two may or may not be related. The result was an inability to resolve a lot of addresses. That's being fixed and is a sort of normal wear and tear setup problem brought on in part by using Linux and Microsoft together: once you figure out which caused what problem things aren't hard to resolve.

Finally: perhaps this comes as news, but I have only so much time. People who send me flames and later regret it and send reasonable mail have used up much of theirs. Sometimes that ends up with normal relationships, but frankly the next flame or even high temperature tirade will be the last I read past the first paragraph. My standard answer after that is something like "thank you for sharing that with me." My apologies but at my age I just don't have as much time as I used to, and I prefer to spend as little of it in unpleasant correspondence as possible. This is probably unreasonable, but it's the way things are.


One more rant:

Microsoft policy is to place tools and options in places that no one familiar with their products would look, but which are obvious once you actually find them. Same with indexing entries in HELP.

This is because Microsoft hired some documentation people from IBM. IBM for years ran a secret school that taught people how to explain features such that it was clear they had explained them, but the explanation was utterly useless to anyone who hadn't already understood it. That school seems to have continued although where it is I do not know. If I could find it I would lead villagers with pitchforks and torches to deal with it as monster labs ought to be dealt with.

My wife has a phrase: Clear Only If Previously Known, or sometimes COIAK or Clear Only If Already Known.

It explains Microsoft documentation and Help files perfectly.


Roland, bless him, has sent a pointer to a very long file that essentially says that JASC QuickView Plus may be the Zip culprit. If there is a way to configure it not to use the "feature" of automatic compression of files being sent out I can't find it. Attempts to disassociate it from Outlook produced ominous messages saying it can't do that. A look at a previously unread README that came with a revision tells me that a 'feature' is automatic compression of files sent on the Internet. So it looks like this is it. Only I can't find any way to configure this thing, and the README doesn't tell me and I am out of time, so:

Control Panel

Add/Remove programs

Kill that sucker!!!

 Removing QuickViewPlus entirely took resetting the computer, and when it comes up there is still something looking for it that I can't find. I need to do some more looking to expunge the last of this monster.

But perhaps that will end its career of doing things I did not ask it to do -- and worse, doing them inconsistently, and not telling me it had done them.  I think I can live nicely without JASC QuickView Plus although in the past I have recommended the program; but apparently a new "feature" decided to start compressing files without my asking it to, and as I said, doing it inconsistently. If it had begun doing that every time I might have noticed earlier. Instead it used its critical need detector to trash things only when they were important. Fooey. If anyone has a simply way to communicate with JASC (having uninstalled their program I've lost that feature) you might want to send them a copy of this. And my apologies to Microsoft for suspecting this was something they'd done.

Regarding ZIP: yes it is useful, and yes so long as you know the recipient has something like WINZIP this is the right way to send big picture and document files. But I do not want a program doing that without my knowing it, and there ought to be an easy way to look at those features and determine when and how you want them. JASC QuickView doesn't DO that. It just -- sometimes! -- jumps in and zips files, and other times (no change in settings) does NOT ZIP the same dadgummed file: as I said I was later in the evening able to send the same file to Niven in the same way, cc to me, and it did not get zipped. Inconsistency with a "feature" is even worse that the feature turning itself on. And inability to FIND THE WAY TO CONFIGURE the thing is inexcusable. And I sure could not find it.

We will see if killing QuickView DEAD has fixed my unexpected ZIP problem.

If not, then it was EARTHLINK. Bob Thompson says that sometimes files I send him are zipped sometimes not: inconsistency again. But he assumed I had done it so didn't comment on it. AOL used to ZIP files automatically, but I never heard that Earthlink did. I'll ask Earthlink people.

AND here is their answer:

No, we don't do that. Files coming through are just packets as far as

we're concerned, and packets are packets.

 

As to Ricochet and DNS problems it's complicated and has to do with ipchains vs. iptables for security; it's being fixed. Roland Dobbins to the rescue once again. Incidentally, Roland's secret seems to be that he reads EVERYTHING, and if he starts on a problem he digs around to see if someone else has had the problem and how they fixed it before he starts trying to do this and do that and change this and change that. It's a good habit to be in. It's not my temperament, because when I was in the aerospace research business our problems were likely to be classified and also likely to be beyond what anyone else had tried -- that was the business I was in, preliminary design and such. So I got in the habit of trying to solve things myself: but I ALWAYS knew how to get back to the last "good" state of a system so I could take excursions off that rather than plunge into the breach so far I couldn't get back.

Roland, as I said, spends time looking to see if someone else has already solved the problem thereby saving a heck of a lot of time later. It's part of the Internet Age, of course. I said in 1978 that by the year 2000 anyone in Western Civilization would be able to get the answer to any answerable question: and yea, verily I say to you, we have entered that era....


And this just in from Gibson:

 

Since the publication of the report of our May attacks, we have received an overwhelming number of requests from representatives of those ISPs -- and their end-users -- asking for the exact machine IPs involved in those attacks. We have denied those requests feeling that too much time has elapsed and that significant "IP drift" due to DHCP lease expiration, etc. would have occurred.

But today things are different.

http://grc.com/dos/attacklog.htm 

We are now equipped to post attacking IP's almost in real-time and to perform on-the-fly reverse DNS (machine name) resolution. I have therefore decided that the best policy is to loudly and publicly broadcast the IP's of any attacking machines so that their administrators can promptly deal with their compromised security.

I will wait to comment on that pending getting opinions from people I have confidence in. But it may change things... I trust Steve has sought advice from attorneys. There could be some tricky legal issues.

 

TOP

 

 

 

This week:

Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Sunday

TOP

Friday, June 22, 2001

Paying bills and getting ready to go to New York for PC EXPO

Great dinner with Niven last night. He has a part of the book to begin working on while I finish Book One. Book Two is set up for him, so he can start work while I polish. The clocks are all wound, and now...

This from Roland on 

NEW MICROSOFT SECURITY FIXES:

http://www.theregister.co.uk/content/4/19920.html 

Roland Dobbins <mordant@gothik.org> 

Be sure to take care of these. Security holes are no joke. Yes, Microsoft should have thought of this in advance. So should LINUX and UNIX have expected some of those problems. The question is what do we do NOW.

Apparently they're moving things around on the CMP servers, and links are broken, and for a while it was a mess. Looks to be fixed now.

And there will be PC EXPO reports on the www.byte.com site next week.

We return now to not shouting mode...

 

TOP

 

 

This week:

Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Sunday

TOP

Saturday, June 23, 2001

It is actually 1 AM Sunday New York Time. I got up at 7AM Los Angeles Time and I am just now installed in my hotel room with phones working. But I am here.  It was a long and dull flight, and I'm weary but I can't say there was any problem other than long delays and considerable discomfort.

I think I will go find a pizza place. Tomorrow I will see if I can catch up on mail.

 

 

TOP

 

 

This week:

Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
Sunday

read book now

TOP

Sunday, June 24, 2000

Well I am here and I am up. I get 24K connections. This is a wonderful hotel except for that. I should have set up to use Ricochet while I was here but I didn't manage. Next time I will.

It's afternoon, I have a view of the Hudson, and after I do a bit of strolling around I'll try to get some mail up. I may have some pictures too, of the New York souks along 34th street.

If anyone knows how to make contact with bizman@oceanfree.net or anyone at that net, there is a jerk who sends animated with sound spam that takes a while to download and has the nerve to say I opted in for this garbage. I don't the bandwidth to report him to spamcop.  Eric says the only way spam will stop is if something serious and physical happens to some spammers. I don't agree with that in the sense that I would be part of breaking legs, but I am a novelist and I can fantasize, and bizman is near the top of my list. Ye gods.

 

 

 

 

  TOP

      Current View                                                         Current Mail

 

birdline.gif (1428 bytes)