|
Please visit the LangaList Home Page Please note: Older issues may contain information that is now out of date. How To
Subscribe and Unsubscribe is at the
end of this note. Mailing List Trouble? See
http://www.langa.com/help.htm Please recommend the LangaList to a friend! (And maybe win $10,000 !) An easier-to
read formatted HTML version of this newsletter is available on line at
The LangaList 2001-06-25 Please visit our sponsors and help keep the LangaList S.E. free!
--- ( Your Clicks On Ad Links Help Keep The LangaList Free! ) ---
--------------( the above is an advertisement )-------------- 1) The Web-Bug BoondoggleMany readers have been asking about "Web Bugs"--- tiny, invisible graphics (usually 1x1 transparent GIFs)--- ever since the "Bugnosis" anti-bug software became available. For example, reader Larry Kamin wrote: Dear Fred: Recently downloaded and installed a little tracking aide that spots 1x1 Bugs to aide in tracking you. It is from "The Privacy Foundation" and can be found at http://www.Bugnosis.org…. Perhaps you could make others aware of this valuable little tool. Available free.I believe that the Privacy Foundation means well, and their intent with Bugnosis is honorable. But I also believe their Bugnosis site generates more heat than light about Web Bugs, and may do more harm than good by obscuring larger issues, and elevating a truly minor issue vastly out of proportion. Long-time readers know I take security very, very seriously. But in most cases, I think fear of Web Bugs--- like the fear of most Cookies--- is a form of mass hysteria, and way out of proportion to any real risk. From Bugnosis' own site, here's their definition of Web Bugs and the "threat" they pose: A Web Bug is a graphic on a Web page or in an e-mail message designed to monitor who is reading the page or message. Web Bugs are often invisible because they are typically only 1-by-1 pixels in size. In many cases, Web Bugs are placed on Web pages by third parties interested in collecting data about visitors to those pages. What information is sent to a server by a Web Bug? Wow! That sounds bad, right? And in fact, you'll see lots of talk around web sites--- usually on the pages of sites that want to sell you products and services (although Bugnosis is free)--- about how Web Bugs can be used to "track" users around the web, or (as Bugnosis says) to "monitor who is reading a page or a message." To which I say: Baloney. Web Bugging is not a simple topic, but given the amount of bad information out there, it's important to know what's really going on. To help you understand Web Bugs, to find the facts amidst the huge amounts of misinformation that's been spread about Bugs, and to help you assess what the real, no-BS threat level is, I've focused my current InformationWeek.Com article on Web Bugs. In it, we'll cover exactly what Web Bugs are and exactly what they can--- and cannot!--- do; we'll discuss "the Cookie connection;" examine the limited ways in which Bugs *can* be misused; see how to prevent Bugs from sharing *any* sensitive data about you (no third-party software is needed); assess the risks by looking at some worst-case scenarios; and then discuss what I believe is the real answer to *all* online privacy issues. To me, Web Bugs--- like Cookies--- are just a minor sideshow in the security arena, and hardly worth any concern at all. But many feel otherwise. Please come check out my reasoning and then join the ongoing, week-long discussion: Do I have my head in the sand about Web Bugs and Cookies, or do you agree that they're not much of an issue at all? If you use Bug filters and "Cookie crushers," have you encountered problems with them? What can and should be done about issues like Web Bugs? When the column is posted (2001-06-25) it should be available via this direct link: http://www.informationweek.com/843/langa.htm . If you arrive early, the link won't work: just try again a little later. <g> Or, you can use the general "front door" to InformationWeek.Com's "Listening Post:" http://www.informationweek.com/LP/ See you in the discussion area! Click to
email this item to a friend --- ( Your Clicks On Ad Links Help Keep The LangaList Free! ) ---
--------------( the above is an advertisement )-------------- 2) I Hate Sites Like This OneI like to think I have a good sense of humor; most of my friends and family seem to think so, anyway. But some "humor" sites go way beyond the bounds and end up doing actual harm in their attempts to be funny. We discussed one such site in a recent item ( http://www.langa.com/newsletters/2001/2001-06-14.htm#1 ): The site rigged a totally fake security test which all users would fail, and then used the faked "security breach" to try to sell a firewall to gullible visitors. Har har. But a site that reader Sheila K ran across is even worse:
Sheila did the right things, but for the wrong reason because the site is a total scam--- a hoax that neither scans your system, gathers data, nor harms your files. In fact, if you let the fake "reformatting your hard drive" go to completion, you finally get a page that says "No, your hard drive has not been formatted. No, You don't have the Wassaboo virus. Actually, we didn't even check -- you could have a hard drive full of viruses." All the activity before that--- the virus scan, the information-gathering, the reformat--- was completely faked: Nothing actually was going on. It was just designed to scare site visitors. Har har. I enjoy a good joke--- and even clever practical jokes. But this one caused Sheila to waste real time and effort. It's not funny: It's cruel and stupid, and the folks at "freevirusscan.org" should be ashamed. Click to
email this item to a friend 3) PhoenixNet BIOS's Performance HitIn 'Oh No! *Hardware-Based* Phone Home Apps!" ( http://www.langa.com/newsletters/2001/2001-06-07.htm#3 ) I told you about "PhoenixNet," which embeds a phone-home app in the foundation hardware of some new PCs, where it's very hard to get at or to control with certainty. Writing from Athens, Greece, reader Michael Kefalakis tells us of an amazing discovery he made with a PhoenixNet BIOS:
Thanks, Michael! While this doesn't definitively prove that the phone-home part of the BIOS is the problem--- there could be some other issue at play there--- it is suggestive. And in any case, it's another anecdotal datapoint in the growing list of reasons to avoid PhoenixNet. Click to
email this item to a friend --- ( Your Clicks On Ad Links Help Keep The LangaList Free! ) ---
--------------( the above is an advertisement )-------------- 4) Word, NetMeeting Security Holes (and Patches)Microsoft just released patches for two newly-discovered security holes: "Malformed Word Document Could Enable Macro to Run Automatically" affects users or Word, and could allow an embedded macro to run without warning; the macro could do almost anything:
More info and patch:
More info and patch: Click to
email this item to a friend 5) Freeware Reader RaveReader Tony Briggs found a freeware utility that sounds incredibly versatile:
Thanks, Tony! Click to
email this item to a friend 6) Last Week To Enter June's FREE Book DrawingAt the end of this week, I'll choose another monthly winner of a no-strings $30 Gift Certificate for any item at Amazon.Com--- books, software, hardware, kitchenware, toys... To have a shot at winning, just use the following link to recommend the LangaList to a friend. Your friend just may find a new source of useful information; I just may gain a new subscriber; and you just may win a $30 shopping spree! (Full details also available via this link): http://www.langa.com/recommend.htm The more times you make a recommendation, the greater your chances are of winning! Or, if you'd like to try to win
$10,000(!), try this link (full details also available here): Either way, thank you, and good luck! Click to
email this item to a friend 7) Netscape 6.1 PreviewThere's a "preview" (that is, a beta, or test) version of Netscape 6.1 available. It adds: My Sidebar, a tab system
that link directly to stock quotes, chat messengers, etc. As with previous versions, it's heavily-branded adware (that's AOL's gentle touch at work), but otherwise can be downloaded and used for free. You can try it via
http://home.netscape.com/browsers/6/index61pr.html?cp=dowpod61pr
Click to
email this item to a friend 8) They Just Keep Coming And Coming and Coming...Well over a thousand of your fellow
readers have "Loaded the code." Please click over to
http://www.langa.com/code.htm , and
maybe you can join them! (If you've already "Loaded The Code" and are wondering
if your site will appear here or on the Langa.Com web site, please see
http://www.langa.com/link.txt ) Manually Browse All
Posted-to-Date Sites Starting At Castle Software (New
Zealand) Charles K. Kincaid FIREMAN DAVE'S PLACE (Florida) PC Used THERESA'S PALACE Harmony Hill ShareHolder Power (Burma) The Sellars Family James' Medical Links WebCobblers Click to
email this item to a friend --- ( Your Clicks On Ad Links Help Keep The LangaList Free! ) ---
--------------( the above is an advertisement )-------------- 9) More Uses For "Search Bar"Patrick Deal's free Search Bar ( http://www.langa.com/newsletters/2001/2001-06-21.htm#3 ) is winning more converts:
If you haven't tried it yet, Search Bar is definitely worth a look: http://go.to/searchbar or http://members.telocity.com/dealpa/index2.html Click to
email this item to a friend 10) Just For GrinsReader Kevin Lamoreaux sends in this (apparently) for-real example of political correctness carried to a ridiculous extreme:
What's next? Why not ban chess, in support of those who ever have been oppressed by a monarchical government? Ban solitaire, in sensitivity to those who suffer from social isolation... Ban the black-and-white high-contrast screen color scheme because it's a reminder of racial divisions... Ban the very word "Windows" because it's insensitive to people who can't afford to live in fenestrated dwellings... Sheesh. Click to
email this item to a friend --- ( Your Clicks On Ad Links Help Keep The LangaList Free! ) ---
--------------( the above is an advertisement )-------------- 11)
Awesome Free File-Conversion Site;
|
|
|
Please visit the LangaList Home Page |