Skip to content

Author: Justin

Justin Mason, the author of this weblog.

Open source not welcome – USPTO

Published August 21, 2003

USPTO seeks to block WIPO open source meeting.

(WIPO) is not the place for discussions about 'open source' software (...) a senior U.S. official argued on Monday. Reviewing the original mission of the World Intellectual Property Organization (WIPO), said Lois Boland, the U.S. Patent and Trademark Office (PTO) acting director of international relations, it is 'clearly limited to the protection of intellectual property. To have a meeting whose primary objective is to waive or remove those protections seems to go against the mission.'

Boland was referring to a July request by a group of scientists, academics, open-source advocates and others for a meeting at WIPO on 'open and collaborative projects,' including open-source software. The WIPO secretariat initially replied favorably to the idea.

Well, that's a shame. Let's hope WIPO reconsider, because it really would be an interesting idea to have everyone involved talking about this stuff.

Holidays

Published August 20, 2003

Did you know that George W has spent more days of his presidency on vacation than any president in recent history, and is currently in the middle of a month-long extravaganza worthy of a French public sector worker?

Don't mind me, I'm just jealous and missing Eurohols. (factoid via the SFGate morning fix)

I am speechless yet again.

Malware: The SOBIG.F deluge continues. No, not the virus itself; the various AV scanners around the world, telling me that some machine on the internet forged a message with my address. Accordingly, here's a set of SpamAssassin rules to catch them; write a procmail rule to detect that in the resulting X-Spam-Status header and divert.

The Irish 419 scam

Published August 19, 2003

FROM: UNIVERSAL STAKES LOTTERY, IRELAND. (forwarded by Rick Kleffel on the forteana list)

SCOvEveryone: so SCO showed some 'evidence' of code-copying from SCO to Linux -- problem is, it's code from UNIX v7, written around 1978/79; the code was released in BSD UNIX, rereleased by SCO/Caldera themselves under a BSD license later, and versions appear in textbooks under public domain. In other words, the SCO 'pattern analysis' team who found this 'copied code' didn't realise that this source had been released long ago -- even by their own company, no less. ho hum, good luck prosecuting based on that. next!

Blogs: Malte, one of the SpamAssassin dev team, now has a weblog too -- and with a better translation of the 'W32.Blaster caused the blackout' theory too. ;)

From: "James" (spam-protected)
Date: Mon Aug 18, 2003 4:15:40 AM US/Pacific
To: (spam-protected)
Subject: Congratulation! ( Please acknowledge this mail asap)

FROM: UNIVERSAL STAKES LOTTERY
IRELAND. REF NUMBER: 014/060/532 BATCH NUMBER: 762901-PCD03

Sir/Madam,

We are pleased to inform you of the result of the Lottery Winners International programs held on the 3rd of July, 2003. Your e-mail address attached to ticket number 27522465896-6453 with serial number 3772-554 drew lucky numbers 7-14-18-23-31-45 which consequently won in the 2nd category, you have therefore been approved for a lump sum pay out of 2,000,000 (EUROS ) (TWO MILLION EUROS)

CONGRATULATIONS!!!

For security purpose and clarity, we advise that you keep your winning information confidential until your claims have been processed and your money remitted to you. This is part of our security protocol to avoid double claiming and unwarranted abuse of this program by some participants. All participants were selected through a computer ballot system drawn from over 20,000 companies and 30,000,000 individual email addresses and names from all over the world. This promotional program takes place every year. This lottery was promoted and sponsored by eminent personalities like the Sultan of Brunei. We look forward to your active participation in our next year USD50 million slot. You are requested to contact our clearance office to assist you with the claim and transfer of your winnings fund into your instructed account by acknowledging the receipt of this mail with the email address below.

Email address: (spam-protected)

Note that, all winnings must be claimed not later than one month. After this date all unclaimed funds will be null and void.

Please note in order to avoid unnecessary delays and complications, remember to quote your reference number and batch numbers in all correspondence. Furthermore, should there be any change of address do inform our agent as soon as possible. Congratulations once more and thank you for being part of our promotional program. NOTE: YOU ARE AUTOMATICALLY DISQUALIFIED IF YOU ARE BELOW 18 YEARS OF
AGE.

Sincerely yours,

James Clark.

(Lottery Coordinator)

Top Firebird tip

Published August 19, 2003

Mozilla Firebird has this feature that obviously seemed like a good idea, but unfortunately isn't really -- automatic image resizing.

Well, while surfing about looking at the next-gen Bluecurve screenshots, I came across a screenshot with a link to linuxart.com, which had a top tip:

  • type 'about:config'
  • scroll down to browser.automatic_image_resize, double click, change to 'false'

Hey presto!

Monday morning quickies – gifts patented

Published August 18, 2003

FFII have discovered that Amazon.com have received a patent from the EPO 'which covers all computerised methods of automatically delivering a gift to a third party'. It seems to cover Amazon's 'One-Click' ordering system, as well.

Wierd: Tiny town to reek of sex. Don't get excited -- it's only moth pheromones. (via Peter Darben on the forteana list.)

Medical slang, including:

  • ATS: Acute Thespian Syndrome
  • Departure lounge -- Geriatric ward
  • DBI: Dirtbag index (calculated by the number of tattoos on the body multiplied by number of recent missing teeth, to estimate days without a bath)
  • NFN: Normal for Norfolk
  • Pumpkin positive: When you shine a penlight into the patient's mouth and his brain is so small his whole head lights up
  • PFO: Pissed, fell over
  • Scepticaemia: What doctors develop with experience

And -- finally! -- an explanation for that ER term:

  • Stat: Immediately, shortened from the Latin statim

Linux: GrokLaw on SCO and Sun's Linux indemnification FUD. Well worth a read -- especially the bit where Mr. GrokLaw finds an old SCO contract that does include indemnification terms. Indemnification, that is, with some pretty serious get-out clauses and stings in the tail.

Weather: Mont Blanc closed due to record heatwave. 'This year, for the first time since its conquest in 1786, the heatwave has made western Europe's highest peak too dangerous to climb. Mont Blanc is closed. The conditions have been so extreme, say glaciologists and climate experts, and the retreat of the Alps' eternal snows and glaciers so pronounced, that the range -- and its multi-billion-pound tourist industry -- may never fully recover.'

Food: Cooking for the Mafia. 'Conrad Gallagher was the highest flier in the gaudy firmament of New Ireland. A Michelin star at the age of 26, and a swank restaurant, called Peacock Alley'. Not too long afterwards, things had not gone so well -- he was in the Brooklyn Detention Centre. Pretty terrifying article -- a US jail is not one of the nicest places in the world...

Spam: The Howard Dean election campaign ran into a wrinkle last week -- and pretty soon was apparently 'joe-jobbed'. This one is going to get interesting, if the Dean campaign follow up, as joe-jobbing an election campaign is in violation of federal election law, and is apparently taken quite seriously.

Reminder: keep an eye on Spamvertized.Org for the latest news in political spam!

NY weblog blackout coverage

Published August 15, 2003

The NY weblogs have really come through with incredible street-level views of the blackout. Highlights:

Fantastic reading. It actually sounds like fun to me -- shades of 'no school due to bad weather' days when I was a kid ;)

‘Who Wants to be a Millionaire’ walkthrough

Published August 15, 2003

Wow -- this guy won $250,000 on WWTBAM, and blogged it up, in excruciating detail. (His 'Phone a friend' friend also details his experiences, too). It sounds terrifying...

Hacking: Real-life UNIX disaster recovery.

Commuting: Guardian: A Life Inside meets commuter hell. The author of 'A Life Inside' is a convicted felon, undergoing a gradual release from prison; recently he's been permitted to commute to a day job outside the big house.

'I've had a good run, I suppose. More than a year of almost incident-free commuting.' -- until this episode, where one of those space invaders -- the type who is perfectly happy to push you out of the way to make themselves comfortable -- arrives...

I leaned farther away. Soon my back was hurting. Hang on a minute, I thought. I've paid the same as him for this seat. I was entitled to sit up straight. So I did. Back came the elbow. I wasn't budging. And so battle commenced.

A glance at his computer revealed little activity. He was obviously too preoccupied with trying to make me budge. I was determined to resist this blatant act of aggression. I couldn't help thinking it would never happen in prison - not without ensuing combat. I thought about my pal Toby Turner. This laptop lout was lucky he wasn't sitting next to him in his heyday. I could just imagine Toby's reaction to the elbow treatment.

Paying no heed to the mass of silent bystanders, my shaven-headed friend would have been on his feet in a flash. 'Do you know how many fuckin' anger management courses I've done?'

'Er, no,' his startled tormentor would stutter.

'Six fuckers!' Toby would yell, 'and I still ain't passed!'

Flash Mobs hit Ballyhoo

Published August 14, 2003

The latest interweb craze, 'Flash Mobs', have hit Ballyhoo, according to The Ballyhoo Examiner:

'There was about 15 of them, and they went around the shop muttering 'carriages' or 'cabbages', I'm not quite sure which' .... Brendan says he himself would be 'game on' to take part in the next one, as long as it isn't in his own employers' this time, or a bank.

Art: Size does matter, Jamaicans decide (Guardian):

Two naked 7ft-high bronze figures - a male and a female - looking skywards on a dome-shaped fountain embossed with Bob Marley's lyrics 'None but ourselves can free our minds'. But according to the statue's critics the artist is too light-skinned, the male figure is too generously endowed, and both are, well, too naked. .... Another writer ridiculed Renaissance sculptors for being not generous enough. 'Just because Europe's classical statues had small penises, ... does not mean Jamaica must follow suit.'

SCOvEveryone: Groklaw forwards an interesting theory: Does SCO Unixware 7.1.3 contain substantial portions of SuSE Linux Enterprise Server 8 -- including the GPL'd device drivers? The author writes:

It is my belief and opinion that SCO has indeed borrowed engineering concepts and methods from their association with UnitedLinux. Many of these new features and the remarkable similarity with SLES 8 did not occur until after they started to participate in UnitedLinux and since these features were available to SuSE customers before SCO's involvement I am inclined to believe that SCO's engineering team has been influenced or tainted by the Linux development process. I cannot say if UnixWare 7.1.3 or SLES 8 share common code; as I said I am not a source licensee. I feel these issues need to be investigated further.

Referrer Spam Again

Published August 14, 2003

More referrer spam stuff. As Mark states in the comments here, it seems that the referrer-spamming is using real browsers run by real people -- no bots, no proxies.

The spammers create HTML pages which contain an IMG tag, using one of our pages in the SRC attribute. This causes the user's browser to attempt to download the page -- giving the correct referrer URL -- but it's not particularly visible to the user -- since it's a HTML page, not an image. All they're likely to see is a 'broken image' icon, and more likely the image is hidden anyway using a hidden div or width=0 height=0 attributes.

Anyway, I took a look at the HTML for those sites. Interestingly, all of them use a distinctive HTML style, with a redirecting frame and some Javascript to load the following pop-up ad:

http: //pb. xxxconnex. com/pb.phtml? d=aporndomain.net &sc=EXPN &ip=9999999999 &c=preview

Where 'aporndomain.net' is a porn domain, not necessarily always the same one as you're viewing, and '9999999999' is a 10-digit number. This then loads a frameset containing another random popunder ad from a load of domains. It also throws a few hidden ones into the corner, loads them as pop-unders, loads a javascript timer to open new ones occasionally, etc. etc. etc. As you close 'em, new ones open, and so on. Glad I don't run IE ;)

I would bet these guys, xxxconnex.com -- or one of their customers -- are the ones behind the referrer-spamming as a result. Their WHOIS info states they are: 

Admin, Domain  info@webfinity.net
1E Braemar Ave
Unit 19
Kingston 10, WI N/A
JM
876-357-8404

Interestingly, that phone number and address also shows up in ROKSO as well, listed under domain registrations controlled by the 'Dynamic Pipe / Webfinity / Python Video' spam gang, ie. one of the biggest sources of porn spam out there. They're diversifying it seems!

Based on some suggestions on Kasia's weblog, I think I now have a good comeback -- still working on this though.

The Cluetrain List

Published August 13, 2003

Chuq van Rospach has a great idea -- instead of a do not spam list, an I am your customer, not your asset, and quit treating me like one list:

Where do-not-spam lists are useful (and ought to be mandatory) are third party sales and rentals. Any time someone buys or rents a list, that list has to be filtered against the do-not-spam list. If you're on it, you fall out of the transfer. that would include any time that information moves from one company to another, the do-not-spam restrictions apply. (ditto, IMHO, for phone and other personal information. I'll go further, actually. I think there ought to be a generic 'do not sell me as an asset' list, preventing transfer of personal information of any kind without permission. Or more correctly, a I am your customer, not your asset, and quit treating me like one list.

Great idea. Really, the resale of contact information for marketing purposes sounds fantastic to marketers -- but as The Story of Nadine demonstrates, it only takes two years for the contact information to be sold (via a chain of increasingly dodgy operators) from DeliverE, a subsidiary of Excite to horse bestiality porn spam.

Involuntary Park at Porton Down

Published August 13, 2003

Amazing! Porton Down is the UK's center for research into chemical and biological weapons, and has been since 1916. Not the nicest place you could think of -- by a long shot.

Well, it turns out that the massive no-go buffer zone around Porton Down, existing for 87 years, has preserved 'the largest remaining continuous tract of chalk downland in Britain'. 'The farming revolution of the 20th century, the development, the tourism, have all passed it by.' 'The disrupters are the large-scale inputs of chemicals, the pesticides, herbicides and artificial fertilisers that are the essence of intensive farming. At Porton Down, these have never arrived.'

As a result, it's now an amazing wildlife heritage site. Quite hard to get to see it -- but good to know it's there! Thanks to Bruce Sterling for forwarding this along the Viridian list.

Reminds me of something I heard about Chernobyl -- since the area around it is heavily irradiated, and therefore a no-go area for humans, it's become a de-facto wildlife refuge (even if half of the animal inhabitants are sterile as a result.)

‘International blacklists’ absurdity

Published August 12, 2003

OK, this is very stupid. 

----- Transcript of session follows -----
... while talking to mail.(elided).com.:
>>> RCPT To:
<<< 591  The mail server you are SENDING FROM is listed on an
international blacklist. Send your questions to
blacklist-admin@(elided).net
554 5.0.0 Service unavailable

The mailserver in question is dogma.slashnull.org, 212.17.35.15. It's never been on a blacklist. However, it does live outside the US -- in Ireland, to be exact.

So it appears (from the wording) that someone is actually filtering their mail feed and blocking all mail from Ireland. Hello!? It's worth noting, in passing, that I strongly doubt that blocking all mail from Ireland (a) reduces your spam load one iota or (b) accomplishes anything apart from pissing off Irish people. Ah well, not my problem...

SCO: In other news, Ben sends on this Pinky and The Brain rendition of the SCO-vs-the-world saga from Nicholas Petreley -- worth a titter. Given that SCO are now sending invoices to Linux users, including charging 32 bucks for embedded developers -- who almost definitely are not using Read-Copy-Update and that kind of absurdly-high-end code -- it's pretty accurate.

Malware: The latest Windows worm, coming to a system near you; make sure ports 135-139, 445 and 593 are blocked, if you really have to run Windows for some reason. The worm's author includes this notable text string: billy gates why do you make this possible ? Stop making money and fix your software!!

Iraq: Amazing postmortem of the Iraq war. Summary: absolutely inept on the Iraqi side. 'The only order I got was to dismantle my airplanes -- the most idiotic order I ever received.'

Monday Morning Quickies

Published August 11, 2003

The Dublin Flash Mob. All went off very well, from the sounds of it. However, this picture contains some wierdness -- who the hell is that guy, second from the left, who's stolen my haircut circa 2 years ago?! Those are my sideburns, give 'em back!

(ObSoCalJoke: they tried to organise a flash mob in southern CA, but couldn't find anywhere with a big enough parking lot for all those single-occupant SUVs. Ba-dum-tish!)

Telecoms: The Communications Workers of America union have released some figures on Verizon's profit margins etc. Interesting to note some figures -- like they charge 4 dollars for call waiting, a service which costs them 0.82 of a cent to provide -- that works out at a 48,680% profit margin, which must be nice. In addition, Verizon use 'splitters', which result in a copper pair being unusable for DSL -- just like Eircom do in rural Ireland. Interesting to note that, even after deregulation, LLU and general introduction of competition, the same problems still arise.

Science: BBC: Scientific research put under spotlight. Terrible article from the Beeb, who should know better.

Basically the article pins some of the blame for recent absurd claims of scientific breakthroughs, like the Raelian's claims they cloned a human, on the peer review process.

What they're missing is that, in most cases of these absurd claims, the research had not been peer reviewed -- instead a press release was put out in advance. Peer review remains the most effective way to demolish bad science. However, the news media shows no sign of being willing to sit around and wait for other scientists to analyse the latest claims, before publishing them.

Spam: Salon: Meet The Spam Nazi. More on the bizarre story of the Jewish leader of a Nazi party, who now peddles 'make penis fast' pills.

Politics: Ian 'Freenet' Clarke says he's leaving the US.

Linux: I've given up on blogging the SCO-v-everyone thing, it's getting too absurd. GrokLaw is covering it much better than I could anyway. Plus: You say po-TAY-to, I say po-TAH-to.

Movies: I concur with Waider -- Pirates of the Caribbean is great. Best summer blockbuster in years; Hollywood can still pull off a good big movie now and again (by using young directors it seems). Buckle those swashes! Aarrr!

Long-chain Monomers

Published August 10, 2003

PR-otaku -- I've just got to buy Pattern Recognition, it looks amazing.

Just finished Nickled and Dimed: On (Not) Getting By in America, by Barbara Ehrenreich; a great read, although pretty grim. (thanks mum!)

New Favourite Band

Published August 9, 2003

Music: I've just stumbled across Ladytron on EMusic a couple of weeks ago, and they've totally taken over my playlist.

They're kind of over-cool electro stuff in the style of Air, but with much more in the way of 80s-style synth noises. Massively over-cool: it seems the name is from a tune from Roxy Music's first album, this interview has them namechecking 'The Andromeda Strain' and 'Logan's Run', and virtually every tune is heavily Kraftwerky.

Still, I'm hooked... one note though: IMO, the first album, 604, is much better than the difficult second. AudioGalaxy seems to have a copy of ' Play Girl' from 604 -- give it a listen.

Recommended tracks: I'm With The Pilots and Discotraxx -- Paco! is worth a listen too, it includes the theme tune to Are You Being Served, believe it or not. ;)

X-ray specs

Published August 7, 2003

NYT: What's in Iraq rumor mill?

BAGHDAD As a U.S. soldier peered out of a passing tank, a young engineering student and a retired accountant contemplated one of the more common questions on the streets of Baghdad: Did the soldier's wraparound sunglasses give him X-ray vision?

'With those glasses, he can definitely see through women's clothes,' said the engineering student, Samer Hamid. 'It makes me angry. We are afraid to take our families out on the street.'

Date: Thu, 07 Aug 2003 16:07:41 +0100
From: "Martin Adamson" (spam-protected)
To: (spam-protected)
Subject: What's in Iraq rumor mill? X-ray vision and air-conditioned

vests


> >From the New York Times

What's in Iraq rumor mill? X-ray vision and air-conditioned vests

John Tierney/NYT The New York Times

Thursday, August 7, 2003

BAGHDAD As a U.S. soldier peered out of a passing tank, a young engineering student and a retired accountant contemplated one of the more common questions on the streets of Baghdad: Did the soldier's wraparound sunglasses give him X-ray vision?

"With those glasses, he can definitely see through women's clothes," said the engineering student, Samer Hamid. "It makes me angry. We are afraid to take our families out on the street."

The retired accountant, Hekmet Tinber Hassan, smiled and said it was a baseless rumor, just like the widespread story that Saddam Hussein had been secretly working for America and was now at a CIA safe house. "I do not believe Saddam is in America," Hassan said. "I heard he went to Tel Aviv."

Just as truth is the first casualty of war, urban legends seem to be the first creation of a military occupation, especially when the cultural gap is as wide as it is here. After life under Saddam, people here are accustomed to conspiracy theories and ready to believe the worst about anyone in power.

Of course, Americans have been circulating their own kinds of legends, starting with the fantasies a few months ago that the occupying troops would be peacefully welcomed by a country of grateful flower-waving citizens. There have been more guns than flowers.

In the urban legends flourishing here, the soldiers triumphed thanks to Saddam's treachery and to U.S. technology. The legend about the X-ray sunglasses may have evolved from reports about the soldiers' night-vision goggles, or maybe just from the imposing Terminator image of the soldiers.

Compared with the residents, who cope with the fierce heat by staying in the shade and dressing in light clothes and sandals, the soldiers have the look of robotic aliens as they patrol in the midday sun wearing combat boots, helmets and armored vests.

Some Iraqis say the troops take special pills that keep them cool, but the most common theory is that they have portable air-conditioners - usually said to be inside the vests, but sometimes placed in the helmet or even the underwear.

"There is fluid circulating throughout the underwear," said Hamid, the engineering student. "I am not sure of the exact mechanism, but we all know the Americans have very sophisticated technology."

Aadel Delli, the owner of a food market in central Baghdad, said he did not believe the air-conditioned-uniform stories, which he attributed to popular doubts about Americans' capacity for discomfort. "Most Iraqis thought the American soldiers would be gone by now because they could never stand the summer in Iraq," he said.

Soldiers have tried dispelling the myths about their gear by letting Iraqis touch their vests and try on their glasses, but some legends will not die.

"I let a kid put on my sunglasses, and he was still convinced they had X-ray vision," said Sergeant Stephen Roach, a soldier from Lufkin, Texas "He kept saying to me, 'Turn it on, turn it on."'

When they are not peering through women's clothes, the male soldiers are said to be groping underneath the clothes during searches at checkpoints, supposedly provoking some of the attacks on soldiers. (Never mind the absence of evidence for this theory.)

Other versions of the ugly-American stories have the soldiers drinking beer inside their tanks near mosques. They have been accused in the Arab press of using pages from the Koran for toilet paper and of giving children candy packets containing pornography.

The rumors became so numerous that Al Sabah, a new daily paper run by Iraqis with financial backing from the Coalition Provisional Authority, the U.S.-run administrative organization, printed a supplement debunking them. "It will take awhile for people to reject the conspiracy theories," said its editor, Ismael Zayer. "Under Saddam, people had to depend on rumor because they could not trust the media."

Frustration seems to feed many of the rumors. Why would the builders of smart bombs and X-ray sunglasses take longer to restore power than Saddam did after the 1991 Gulf War? The Americans must be withholding electricity as revenge for the attacks on soldiers.

For all the frustration, there remains some admiration for the occupiers, as seen on teenagers like Zahra Thaer, 13, who was wearing a new pair of wraparound sunglasses. "These are the latest style," she said. Did she believe the soldiers' glasses gave them X-ray vision?

"I am not so sure about their sunglasses," she said. "But I know about the helmet. Inside each helmet is a map showing the soldier the location of every house in Iraq. My friends at school told me about it."

The New York Times

DE Technology’s patent hits Oz

Published August 7, 2003

Nathan Cochrane writes in The Age: 'Opponents of a Canadian company's patent to tax online transactions believe they can stop it before it is granted by the Australian patents office.' This is the DE Technologies patent I blogged about before, which they hope to license under some hefty terms; 'annual licence fees of $US10,000 ($A15,324) each, plus 1.5 per cent a transaction and $0.11 cents each time a document, such as an invoice, is generated.'

At FightThePatent.co.nz, they note that the NZ government plans to amend its patent law to make it much harder to file such patents in future. They also link to another Age article which says the patent has already been granted in Oz as of 'February of this year, according to IP Australia'.

An Aussie tech executive called Matthew Tutaki is planning to try and have it quashed. The situation can be followed on FightThePatent.co.nz. Unfortunately, in turn it seems DE Technologies are planning to fight back.

Who buys stuff from spammers?

Published August 6, 2003

Good Wired article on the subject:

A security flaw at a website operated by the purveyors of penis-enlargement pills has provided the world with a depressing answer to the question: Who in their right mind would buy something from a spammer? An order log left exposed at one of Amazing Internet Products' websites revealed that, over a four-week period, some 6,000 people responded to e-mail ads and placed orders for the company's Pinacle herbal supplement. Most customers ordered two bottles of the pills at a price of $50 per bottle.

And check this out for bizarre:

An investigation ... last month revealed that Bournival's mentor and business partner is Davis Wolfgang Hawke, a chess expert and former neo-Nazi leader who turned to the spam business in 1999 after it became public that his father was Jewish.

Stone circles

Published August 6, 2003

A good day for North Atlantic Skyline; Glebe stone circle, a massive wind farm in Mayo supplying 7% of Ireland's total energy needs, and some photos from the old Marconi station in Clifden. Recommended.

filtering Mailman’s admin queue with SpamAssassin

Published August 6, 2003

Several MailMan mailing lists I run have been really painful to admin, due to spam overload combined with Mailman's pretty crappy 'pending messages' admin interface, which goes like this: scroll down to each message, select 'discard' radio button, scroll to next, select 'discard' radio button, repeat until wrists hurt.

Thankfully, waider has saved my lists from oblivion. this script, given the list URL and the admin password, will log in to the admin interface, get the list of pending messages in the queue, scan each one using Mail::SpamAssassin (of course ;), and ditch the spam.

It just cleaned out 182 spams from one list, leaving all of 7 valid requests in the queue. Beautiful!

Dublin: Stefan Geens posts an IrishBroadband success story. See, it really works!

SCO suggestion

Published August 6, 2003

Derek has an interesting suggestion for IBM:

Grab a controlling interest, tell the senior management to sod off, tell the employees to clear out their cubicles, and clear up any hint of IP confusion by selling to IBM for $1 all intellectual property, and then dissolve the corporation entirely with their 50.1% voting share.

IBM has to be careful not to actually buy the company, but strictly be a majority shareholder, making decisions that are in the majority of the shareholders' interests, even if the other 49.9% of the shareholders vehemently oppose them. :-)

Golden parachutes for senior execs? Good luck getting them from that non-existent corporation, and since IBM never actually 'bought' the corporation, it's not liable for any contracts/debts/etc. SCO may have incurred. It gets all the benefit of running SCO and none of the downside.

Gotta say, I like it. ;)

Drop bears and Subgenii

Published August 6, 2003

The fearsome Drop Bear is detailed in this forwarded snippet from the forteana list.:

Drop bears are often mistaken for koalas, and to all but a trained naturalist, the differences are minor. They have even been reported to imitate the sleepy demeanor of their genetic cousins, probably as a sort of behavioural camouflage, and roughly one third of all drop bear related fatalities occur when a well-meaning tourist tries to pose with one for a souvenir photograph.

More here. Thankfully I managed to avoid these creatures while camping through Victoria last year -- only just about though.

In other news: a great SFWeekly feature on Hal Robins, aka. Dr. Howland Owll of the CotSG.

Date: Wed, 06 Aug 2003 07:42:52 +1000
From: Peter Darben (spam-protected)
To: Forteana List (spam-protected)
Subject: The secret is finally out

While ploughing through the rapidly growing pile of Dungeon/Polyhedron magzines on my desk I found this little gem

----- (for the d20 Modern Gaming System from Dungeon/Polyhedron June, 2003)

Drop Bear

Although the Australian government officially denies the drop bear's existence, these bloodthirsty relatives of the peaceful koala are the bane of Australia's parks and forests. Named for their preferred of attack - hurtling down from the shelter of trees onto the heads of unsuspecting prey

  • drop bears are responsible for dozens of deaths each year, and the number

climbs with each passing year.

Drop bears are often mistaken for koalas, and to all but a trained naturalist, the differences are minor. They have even been reported to imitate the sleepy demeanor of their genetic cousins, probably as a sort of behavioural camouflage, and roughly one third of all drop bear related fatalities occur when a well-meaning tourist tries to pose with one for a souvenir photograph.

The internal government conspiracy to disavow the existence of drop bears relates to Australia's recent tourism marketing. They certainly can't sell visitors on the idea of coming to Australia if the visitors knew they were going to be savaged by vicious wild animals masquerading at cuddly koalas. Though the Australians themselves are aware that certain chemical repellents such as Aeroguard are effective in discouraging drop bear attacks, forestry service rangers are forbidden by law from explaining exactly why they so heartily recommend it. But as the drop bears' natural food source, rabbits, are gradually reduced in population, it is only a matter of time before the drop bears turn to more plentiful prey : man.

[nerdish gaming stats omitted]

-----

peter

SCO, etc., etc. (fwd)

Published August 5, 2003

Someday, Ben will set us up the blog, and there will be much rejoicing. In the meantime, I can only quote this one in full, as he hits it on the head:

OK, I know you find this the most boring thing ever and would prefer to find new ways of air-conditioning your chipsets, but, come on! The human drama is nigh Shakespearean.

This guy is pretty good:

http://radio.weblogs.com/0120124/

But, really, RHAT's filing stands alone. It's a thing of beauty, as 27-page legal filings go. They give them both barrels; failing business, FUD, insider stock dumping ...

http://lwn.net/images/ns/rh-complaint.pdf

ben

Trustic is down

Published August 4, 2003

Trustic: 'We regret to inform you that we are no longer taking registrations and will soon be closing the service. We have determined that the system as it currently is designed will not achieve the level of accuracy that we require, and an inaccurate system is worse than no system.'

'The DNS blocklist will remain for a couple of weeks, but it has been configured to never return a match. Please reconfigure your mail servers to not query the blocklist.'

That's a shame...

P2P and open proxies

Published August 4, 2003

Joe St. Sauver's excellent presentation on open proxies has been updated. Interesting snippet: Morpheus 3.2 -- the filesharing app -- is shipping with proxy support. P2P Networks Try to Throw RIAA Off Their Trail (AtNewYork.com):

Morpheus will offer its users the option of connecting to its network via a public proxy server (define). A proxy server acts as an intermediary between two Internet users so that one user does not know the identity of the other. Morpheus won't be hosting the proxy servers but will instead direct users to a 'worldwide network' of public proxies.

iMesh apparently may also include this support, too, in an upcoming version.

press! and a whole load of quickies

Published August 4, 2003

Wired: Finding Bad Spam Delights Geeks:

When freelance Web developer Joe Stump first installed the e-mail filtering program SpamAssassin, he and a friend started a competition. Each day, the two would look through their junk e-mail and try to find the missive that SpamAssassin had assigned the highest score.

'It was always a little contest between the two of us,' says Stump. 'We were always trying to tweak and modify the settings to get it just right. I finally won the contest when I got a spam with a score of 43.'

The points system has really been popular -- as Joe Stump says -- 'geeks love numbers'. Screengrabs of the SpamAssassin website on Sky News, ABC, and now this! (thanks to Tim Schutte for the pointer.)

Linux: Wonder what the Ximian guys are blogging about? Ha ha, very funny.

Mark Pilgrim: How to install Windows in 5 hours or less.

Tim O'Reilly on parallels between OSS and the mainframe days. 'We so often trace our antecedents back simply to the Unix heritage, or the Lisp hacker heritage. But when I've talked to IBM old-timers, they make clear just how many of the social dynamics and collaborative software development paradigms of the early mainframe era resemble the open source tradition.' Interesting...

Humour: Chris recently set us up the blog -- and kicks it off with this SCO 419 parody: 'I AM MR. DARL MCBRIDE CURRENTLY SERVING AS THE PRESIDENT AND CHIEF EXECUTIVE OFFICER OF THE SCO GROUP, FORMERLY KNOWN AS CALDERA SYSTEMS INTERNATIONAL, IN LINDON, UTAH, UNITED STATES OF AMERICA. I KNOW THIS LETTER MIGHT SURPRISE YOUR BECAUSE WE HAVE HAD NO PREVIOUS COMMUNICATIONS OR BUSINESS DEALINGS BEFORE NOW.' On the roll!

C64 demos

Published August 1, 2003

ah, Donncha reminisces about the Commodore 64 demo scene.

I was involved too, around 1987, coding demos as 'Mantis' for XS -- a pretty little known group. I wrote 2 really great demos, Rhaphanadosis, and another name I can't quite remember ;), but they don't seemed to have survived, which is a shame...

Excellent hoaxing lads

Published August 1, 2003

So it seems that P45.net were behind some classic hoaxes in the Irish media recently, including the Monaghan-Iraq story:

The New York Monaghan Association has issued a strong statement of support for the US military campaign against Iraq. This is despite being unable to carry their usual banner in the New York St Patricks Day Parade because of similarities between an outline map of Monaghan and Iraq.

Busaras comes clean, and Daev kindly remembers to provide 1 page that links to 'em all ;)

Techie tip: cooling Athlon XP CPUs

Published July 30, 2003

so Athlon XP CPUs run pretty hot at full speed all the time, and my PC makes lots of noise as a result. I have a temperature-sensitive CPU fan, so reducing the CPU temp will reduce noise, too.

A while back, I came across this doc, the Athlon Powersaving HOWTO, which contains a great tip -- namely a way to put the processor in 'STPGNT Mode' (Stop Grant Mode), which disconnects it from the FSB and turns off parts of the CPU when not in use.

It works perfectly, in most respects, although the Ensoniq 5880 onboard sound chip goes crazy when it's active, as it can't deal with the changed timings from the CPU. But when I'm playing music, I can't hear the fans anyway ;)

The details -- to keep it brief, just take a look at the commands for my chipset as described here. I'm using ACPI in the kernel anyway, since I'm using software suspend-to-disk as well.

Lessons from history

Published July 30, 2003

I've been reading Crooked Timber recently; a good literate weblog. Today's interesting post, from Kieran Healy: Frustration is not a Strategy. Well worth a read for some context on today's Middle East, and the fundamental problem with those 'kill 'em all' proposals that keep cropping up from the hawks.

Blogs: Nathan Cochrane, Aussie journalist for The Age and writer of a very interesting weblog -- has won quite a lot of money on a TV gameshow! I think the term is 'goodonyamate', if I recall correctly ;)

(Pity he couldn't have fixed the BlogShares listing first though.)

Clueless spam quotes and free transport

Published July 30, 2003

NYT: Diverging Estimates of the Costs of Spam. The article points out how the analyst company estimates of the cost of spam widely diverge. That's reasonable -- in fact, that's analysts for you. Some great data in there, too.

But then we get to this glorious quote:

Peter S. Fader, a marketing professor at the Wharton School who has studied e-mail, says the research firms' estimates vastly overstate the actual cost of spam. ... He also argues that the computers and networks that are being installed to deal with spam will be a powerful resource for processing legitimate e-mail, once spam filters and economic Darwinism tame the spam epidemic.

'Spam, although it is a bad thing per se, is fostering the growth of the e-mail infrastructure,' he said.

Yeah -- in the same way that arson 'fosters the growth' of the firefighting infrastructure. Wow.

Ireland: I've just heard about the 'no fares' day of protest by CIE's unions. It seems the unions, rather than closing up shop for the day as would be traditional, decided to take a much more consumer-friendly approach; instead of shutting down the normal public transport services, they ran them for free. Genius.

RTE reported that 'tens of thousands of people' travelled for free, and Iarnrod Eireann said that 'there has been a notable rise in passenger numbers on some inter-city trains to Dublin as people take advantage of free travel.' Now that's an effective way to strike...

Referrer spam not via proxies

Published July 27, 2003

So a little more investigation shows that the massive numbers of IPs spamming my referrer logs (like 1000 different IPs every day), are not open proxies as I at first thought; I tested 130, and none had any of the well-known proxy ports open.

My current guess is that they're malware, such as those 'ad banner spyware' programs, and the makers of that software must be doing deals with spam companies to set up the spyware to periodically load URLs in order to referrer-spam for the spam bureau's customers.

In this case, all the spammed URLs are owned and registered by one porn operation, which is either operating from Switzerland (according to the tech contact info) or Los Angeles (according to the DNS info in whois). (More likely the latter.)

All the IPs doing the spam page loads, are running on Windows XP and Windows 2000 systems as far as I can see, with ports 1025 and 5000 open, so alternatively, maybe they're trojaned... but there doesn't seem to be any good evidence indicating that. (those ports are reasonably innocuous.)

Anyone got any ideas? Here's some sample access_log lines for 100 IPs, gzipped, if anyone wants to check them out.

open proxy referrer spam again

Published July 25, 2003

Googlebot using open proxies? Somehow, I doubt it. An interesting snippet from the access logs again. (Some details rewritten to avoid boosting PageRank.) 

220.73.165.14 - - [25/Jul/2003:04:42:14 +0100] "GET /someurl/foo HTTP/1.0" 2147483647 0 "http://www dot gay-sex-men dot net/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"
220.73.165.14 - - [25/Jul/2003:09:04:17 +0100] "GET /someurl/foo HTTP/1.0" 2147483647 0 "http://www dot gay-sex-men dot net/" "Mozilla/4.0 (compatible; MSIE 5.0; Windows 98; DigExt)"
220.73.165.14 - - [25/Jul/2003:09:15:28 +0100] "GET /someurl/foo HTTP/1.0" 2147483647 0 "http://www dot baitbus dot ws/" "Mozilla/4.0 (compatible; MSIE 5.0; Windows 98; DigExt)"
220.73.165.14 - - [25/Jul/2003:09:18:11 +0100] "GET /robots.txt HTTP/1.0" 200 130 "-" "GoogleBot"
220.73.165.14 - - [25/Jul/2003:09:27:57 +0100] "GET /someurl/foo HTTP/1.0" 2147483647 0 "http://www dot blowjobs-cumshots dot net/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows 98)"
220.73.165.14 - - [25/Jul/2003:13:18:04 +0100] "GET /someurl/foo HTTP/1.0" 2147483647 0 "http://www dot hot-legs dot info/" "Mozilla/4.0 (compatible; MSIE 6.0; Windows 98; Win 9x 4.90)"

Some Fortean snippets

Published July 25, 2003

Some excellent 'oddly enough' stories:

  • Giant dog-eating catfish dies: a story mourning the death of Kuno, a 5-foot-long catfish living in the lake at Volksgarten Park in Moenchengladbach, Germany. It's presumed he died due to a local heatwave and the resulting low water level. 'Kuno became a local celebrity in 2001 when he sprang from the waters of the lake to swallow a Dachshund puppy whole.' I had a run-in with giant catfish before; mind you, a bit nearer to their natural habitat, and with less pet ingestion involved.

    Catfish are in the news it seems; this NYT editorial is relevant, if a bit depressing. 'The next time a ... delegation sets off to preach the dogma of free trade abroad, poor nations would be within their rights to thumb their noses.'

  • Yahoo! India: Holding severed head in place, he defied death: van driver has road accident, then: 'His head almost severed, blood oozing and eyes popping out, Balram was in a dazed state when the accident took place... He, however, kept his head attached to his body with some cloth. When no one came to help him, he drove his own vehicle for 30 km to reach a nursing home in Agra.' Now that's grit!

  • More sex than splendour on academy's Aztec holiday: 'When Andrew Humphrey entered a competition run by the venerable Royal Academy to win a week experiencing Aztec culture first-hand, he might have expected a genteel tour of the ruins around Mexico City, perhaps taking in the famous floating gardens of Xochimilco. Instead, he found himself tasting contemporary Mexican culture at a notorious adults-only resort with nudity, a 'sexy pool' and 'adult' shows.'

(All picked up via the forteana mailing list BTW.)

Soldiers in Iraq, and Vipul

Published July 25, 2003

The Killer Elite (Rolling Stone):

The twenty-two-year-old driver, Cpl. Joshua Ray Person, and the vehicle team leader, twenty-eight-year-old Sgt. Brad Colbert -- both Afghan War veterans -- have already reached a profound conclusion about this campaign: that the battlefield that is Iraq is filled with 'fucking retards.'

Later on:

Captain America, the platoon commander who is almost universally disrespected by the enlisted men, seems to deal with the stress by rising to a state of jabbering incoherence. Up by the bridge there are four enemy dead scattered under the eucalyptus trees, along with piles of munitions -- RPGs, AKs and hand grenades. Captain America runs back and forth, picking up their weapons, hurling them into the nearby canal and screaming at the top of his lungs. No one knows what he's screaming about or why, but as another officer who came upon this scene later concluded, 'Whatever he was doing, he was not being in command.'

Fantastic series of articles, well worth a read. (Found on stuff.) Similar to this, here's an unauthorized weblog from a soldier on duty in Iraq -- the inside story.

Spam: Good article by Vipul on spam filtering, at MIT Tech Review:

Here's a list of three rules (created after the most important features of e-mail) that anti-spam software should strive to follow:

  • 1) Ability to send and receive e-mail from a stranger. (Whitelisting, payment systems, and challenge/response break this rule.)

  • 2) Ability to send and receive pseudo-anonymous e-mail. (Domain-based authentication breaks this rule.)

  • 3) E-mail should be free. (Payment systems break this rule.)

He said it. Killing off several useful legit uses of email, just to fix spam, is no good. Looks like he's started writing his blog-like thing too, again, so I'll be adding that to my 'roll (assuming it stays updated! ;) No RSS yet though...

Great paper on Diebold e-voting systems

Published July 24, 2003

Great report auditing the security features of the Diebold e-voting systems. Summary: what security?

  • despite using relatively 'smart' smartcards, they don't actually get those cards to perform an authentication task; they're just used as 'dumb' memory cards, and there's no central online database of valid card IDs. Plus, the same write password is used for all smartcards.

    So they really might as well have used formatted floppy disks ;) Duplicating cards (a card is a voting opportunity, 'vote early, vote often') would be pretty easy, from the sounds of it.

  • amazingly, the software does not record the 'voter serial number' that appears on the card, when a voter casts a vote. So again, duplicating the cards is trivial. Bizarre.

  • all that is required to extract the PIN from an administrator card is a smartcard reader; the PIN is immediately sent in the clear as soon as the card is inserted and the terminal-card protocol initiates.

  • for storage on the internal writable media, between voting and the final upload operation, the logs and votes are encrypted using single DES in CBC mode, with a single shared initialization vector. IMO this is not a big deal as far as I can see, as that's only stored on the hardware; and if someone can read/write to that, they can subvert the WinCE OS anyway.

Then the kicker:

  • the votes are then decrypted before being sent in the clear over a dialup internet connection.

The mind boggles.

Nathan Barley v. Chris Morris

Published July 24, 2003

The Guardian reports that fake-news genius Chris Morris is collaborating on a new show with Charlie Brooker:

This has led to persistent rumours on internet talkboards and gossip sites that the show will be based around TVGoHome's character Nathan Barley.

Barley, the star of a fictional TVGoHome docusoap, is a loathsome public school educated, Hoxton-dwelling new media type, obsessed with gadgets and extreme sports.

But given Morris's fondness for windups and spoofs, this could just as easily be a red herring.

Apparently, Morris and Brooker have collaborated before on smaller segments. Whatever it is, I'm all for it. Fact times Importance equals News!

Gross: The Indian 'fly boy' has doctors baffled. 'Doctors carried out a cystoscopy to clear the boy's urinary tract, but the treatment has failed because two more flies emerged out of his penis on Monday.' (aaargh)

Referrer Spam Gets Smarter

Published July 23, 2003

So, it seems the referrer-log spamming is getting worse. The earlier attempts all used a limited set of IPs; probably the real source machines.

However, the latest crop are now relaying through open proxies. Out of a sample size of 10 random IPs, every one was a proxy listed in the OPM blacklist.

The URLs being spamvertised are all pr0n; lots of .ws and .biz hits with pretty colourful names. Take a look here, under any of the top 5 hits. They're outnumbering the legit hits by about 20 to 1.

BTW, it's now pretty clear the practice of referrer-spamming is intended to gain Googlejuice; plenty of other sites have noticed it too. It's worth noting that in my case, it won't work -- my log pages are all off-limits to the Googlebot for quite a while, but the referrer spammers haven't figured this out yet...

Some notes:

  • the spamvertized URLs include perlcoders.com, openproxies.com,
    • cgifactory.net, so steer clear of those sites.
  • the User-Agents are randomised, similar to spamware's randomised X-Mailer headers. Some samples include:

    • Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; MSN 6.1; MSNbMSFT; MSNmen-ca; MSNc00; v5m)

    • Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SC/5.10/1.14/Telenor; .NET CLR 1.1.4322)

    • Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)

    • Mozilla/4.0 (compatible; MSIE 6.0; Windows 98; Wanadoo 5.6)

      My guess is they just took a large list of legit user agents, and used that.

  • I've now left them a few little surprises ;)

Spam Gallery, and Fusors

Published July 23, 2003

The Field Guide To Spam, by Dr. John Graham-Cumming of POPFile; seems to be a continuation of his 'Spammer's Compendium' talk at the Spam Conference. Lots of examples of filter-evasion tricks used in spam, with a brief description, example, and categorization.

Worth noting some SpamAssassin dogma here: these may seem to be a good way to evade filters. However, since they are tricks that spam uses, and non-spam mail does not, they then make excellent spam signatures -- and the spammers effectively just give us yet another way to identify their spam. ;)

Hacking: Fusor.net is a community of mad scientists amateur fusion researchers, building nuclear fusion devices in their garages and basements. They're not quite self-sustaining yet, but they're definitely working on it.

In the meantime, some pretty pictures of poissors, buggle jets, and fusion stars here. Thanks to Mr. FoRK for posting a link to this... amazing.

Missing the point

Published July 22, 2003

Gary Robinson points to an announcement of a new music service, BuyMusic.com -- the announcement notes 'users of the service will not necessarily have the freedom afforded customers of ... iTunes ... to transfer the music purchased to multiple computers and portable devices, or to burn it to compact discs.'

How do companies like this get funding? Surely it's obvious that people are not going to sign up for services where they are stuck with crippled DRMware, and don't actually get to own what they buy. 'Here's a car. Oh BTW -- you're only permitted to drive this within 5 miles of your home, it'll conk out if you go any further.'

I suppose it's hardly surprising, but BuyMusic.com informs me that my browser and OS are not welcome, in a surreal throwback to 1999. Ho hum, I'll stick with EMusic, thanks...

In other news, I've just signed up for a mailing list called geowanking. Official: best name ever!

Clay Shirky’s latest

Published July 22, 2003

A Group Is Its Own Worst Enemy. Clay Shirky does a fantastic job of wrapping up pretty much every important social software site on the 'net in the last 15 years, all into one neat, tidy paper, then making a few comments that make sense. recommended...

GTLD Nameserver has corrupt data – again

Published July 21, 2003

There were some reports on the SpamAssassin-talk mailing list today, that all queries to the now-defunct orbs.dorkslayers.com DNSBL zone are now returning a true result.

Thomas Mechtersheimer pointed out the culprit: it turns out that b.gtld-servers.net, one of the top-level DNS global TLD servers ( run by Verisign, as far as I can see), is returning 65.246.50.11 for every query for a name that does not exist under the .com and .net zones. That includes second-level names, and anything under a nonexistent second-level name.

Take a look. a.gtld-servers.net is returning the correct NXDOMAIN results, b.gtld-servers.net is blissfully sending all this traffic to some poor UUnet dialup ;) 

dig 242.110.40.68.orbs.dorkslayers.com. @a.gtld-servers.net.
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27661
dig 242.110.40.68.orbs.dorkslayers.com. @b.gtld-servers.net.
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 52998
242.110.40.68.orbs.dorkslayers.com. 15 IN A     65.246.50.11
dig 4905893958xc98gdf9g8945.com @a.gtld-servers.net.
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9454
dig 4905893958xc98gdf9g8945.com @b.gtld-servers.net.
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 42344
4905893958xc98gdf9g8945.com. 15 IN      A       65.246.50.11

Update: It's been fixed, as of about 1200 PDT.

Linux and MS: WinCE now customizable

Published July 19, 2003

Whoa: 'This spring, Microsoft dropped the price of Windows CE and completely opened its embedded operating system to developers, allowing them for the first time to not only view and modify CE, but also sell products that incorporated the customized code.'

Really? So WinCE developers can modify and then rebuild and sell WinCE with code changes? That's a big deal. It's kind of unavoidable, though. That close to the metal is virtually impossible without source IMO.

Most-mailed story ever?

Published July 18, 2003

this story has been mailed 120 times since it was posted on Yahoo! UK at 11:30 AM GMT yesterday. Which is it? Yep, it's 'masturbating may protect against prostate cancer', premiered at New Scientist. Most mailed/blogged story ever, I'd guess!

For some reason I didn't post this to the blog on Wednesday when it came out, instead posting it to another list. But talking about it with some mates last night, they noted this snippet:

The team speculates that infections caused by intercourse may increase the risk of prostate cancer. 'Had we been able to remove ejaculations associated with sexual intercourse, there should have been an even stronger protective effect of other ejaculations,' they suggest.

Interesting!

Arlene McCarthy letter analyzed on patents list

Published July 18, 2003

In case you're trying to reconcile Arlene McCarthy's public words, about how the proposed EU legislation helps block software and bizmeth patents, and the FFII's public words saying the opposite, here's a helpful email thread cross-posted between the Patents list at AFUL.org and the free-sklyarov-uk list.

Also, Hartmut Pilch notes a prior letter which as yet remains unanswered; 'All she has until now ever done is to send out standard answers to unspecific letters from concerned (and possibly naive-sounding) software developpers. Whenever someone tries to ask her more specific questions, there is no response at all. However documenting the fact that there is no response may also help. So please remember the public letter and point demand a response at every opportunity.'

The Financial Times has an article (paying subscribers only, but that link excerpts a part) which makes clear the difficulties. 'oftware protection regulations across EU member states should be harmonized while also allowing software developers to carry on without the threat of patent searches and litigation hanging over their heads. He argues that the EU directive's wording is opaque: The proposal lists computer implemented inventions as patentable, but this definition fails to establish whether it refers to software algorithms or inventions whose usability is dependent on software. Cane also notes that it is harder to see parallels in software invention and physical invention, and argues that there are few truly novel software inventions because most software is based upon prior work carried out by other people.' (thanks to Gary Robinson for the link)

I Hate Windows

Published July 18, 2003

So I had to edit a Word doc. Left it for a few minutes, the network connection died, so I tried to save it somewhere else.

Foolishly, I did this by hitting File->Exit, knowing (ha!) that I could save it on the way out. All well and good -- until something in Word decided it required the old copy of the doc to save the new one -- even though that was in memory, since I could scroll around it etc. (it wasn't a very long doc).

So it refused to let me save until I restored the network connection. I couldn't be bothered doing that, so I hit Cancel on that 'please restore the net connection' dialog, assuming it'd let me just cut and paste the text, which is all I wanted. Guess what it did? That's right, it just exited, taking the unsaved doc with it. Argh.

I've learned my lesson. Next time, I'll stick with trusty (and sane) Vim. At least it knows how to do an Edit File UI, even if it's not quite as pretty (or featureful).

Over-zealous spam filters, pt. xxix

Published July 17, 2003

Neil Gaiman writes about how, for several months, mail to his publishers, DC Comics, was intermittently disappearing into a black hole. Eventually, the culprit was found: AOL-TW's spam/virus filters. Any mail containing the word 'Sandman' -- ie. the name of the comic he writes for DC Comics -- was being filtered silently, without notifying either the sender or recipient. Wow. His editor's computer guy reported:

I've been informed that the reason why there was a delay in the delivery of this message was because one of several keywords were found within the message. In particular, the word 'SANDMAN' was found several times. This has been a telltale sign of one or more computer viruses, so the message was set aside to be investigated by a WB security person.

(Via Crypto-Gram)

‘Outside the Master Plan’

Published July 16, 2003

A good OCWeekly article about Irvine Meadows West -- UC Irvine's trailer park. The trailer park brings a little grit to UCI, and -- bonus! -- is apparently a good, fun place to live. Super-cheap too, at 130 dollars a month.

Unfortunately it's going to be closed and replaced with a parking lot:

To the students, many completing their doctoral theses, the trailer park is their private refuge from the master-planned sterility beyond. They see the housing department's decision to raze the park not as a bow to parking pressures, but a calculated strategy to destroy something 'outside the master plan'--a phrase that's become the residents' motto.

NZ e-commerce sites getting business-method patent shakedown

Published July 15, 2003

<

p>The New Zealand Herald reports that 'internet retailers nationwide are banding together to fight a Canadian company's demands for them to pay up or be shut down.' A Montreal-based company called DE Technologies has 'written to several e-commerce operators demanding licensing fees for use of international e-commerce processes.'

<

p> The affected ISPs and e-commerce companies are banding together to fight the patent. The NZ Ministry of Economic Development is quoted as saying 'This is a commercial matter. If people wish to dispute the validity of the patent there are mechanisms in the Patents Act (1953) for them to seek to have the patent revoked'. However, one company has received legal advice indicating that an attempt to have the patent overturned could cost up to NZ$150,000, and some background on the FightThePatent site indicates that there may also be only 12 days (or so) from today to do so.

<

p> DE Technologies' news page gives an interesting angle on their activities in NZ. It seems Ed Pool, the CEO of DET, believed in 2001 that it was 'an insult to call it a business process. To this day, no one has been able to duplicate this design.' However, it seems that by 2003, at least 40 NZ-based e-commerce outfits have now figured out the details, because that's how many legal letters his lawyers have reportedly sent. One such letter demanded a $US10,000 signing fee, a 'royalty rate' of 1.5% on every transaction, and 11 US cents for each document generated.

Worth noting that the patent has also been granted in Singapore and the US -- where it apparently caused a public outcry and was raised on the Senate floor as an example of a 'bad patent', before it was granted anyway.

Giant NYC Cube Becomes Giant NYC Rubik’s Cube

Published July 15, 2003

Astor Cube: 'One of the most prominent landmarks in the East Village in Manhattan is a statue of a giant steel cube. The cube was built at Astor Place in 1968, and has stood there ever since. (jm: apparently it's called 'The Alamo' by Tony Rosenthal.) .... in true All Too Flat style, we decided the plain black cube would look nicer as the world's largest Rubik's Cube!' (link via MemeFirst)

Evan Alice Hughes

Published July 14, 2003

Congrats to Craig and Erica! Sounds like there was quite a lot of work involved for Erica -- ouch -- but the end result looks very cute.

Good choice of name, too -- my friends Tom and Colette will be tickled by this one, given that they've named their son 'Evan', and their daughter 'Alice' ;)

Quick Links

Published July 14, 2003

Tube Rules -- lessons in London Underground etiquette. My favourite: don't wear massive backpacks.

Dave Malone on broken time-sync software. It seems Tardis, the popular Windows time-syncing software, used HTTP to get a trustworthy timestamp. OK, that's pretty bad -- using TCP/IP against a webserver to try and get a usable time -- it'll be several seconds off in most cases, and is pretty suboptimal in general.

But at least they set up their own server, instead of glomming off someone else's bandwidth and CPU, right? Nope -- they used a server at maths.tcd.ie, along with only 2 others worldwide. And they used GET. And they didn't send a User-Agent header. And the server wasn't even a public time server since 1996 anyway.

All seems well now -- Dave instituted a policy of returning '1999' as the date, and hopefully everyone has noticed by now. ;)

Finns Scratch Heads Over N.Korea Porn Claim

Published July 12, 2003

Yahoo!: Finns Scratch Heads Over N.Korea Porn Claim:

HELSINKI (Reuters) - Finnish officials were at a loss to explain an allegation made on Thursday by a U.S. official that North Korea has been caught trying to sell pornography in the small Nordic country. 'It sounds strange. It sounds wild,' an official at the Foreign Ministry told Reuters.

U.S. Ambassador to Australia Tom Schieffer made the comments earlier on Thursday to the National Press Club in Canberra, saying North Korea was using a 'mafia-like' business model to make up a revenue shortfall when the Soviet Union collapsed in the early 1990s.

Found on MemeFirst, which looks like a pretty nifty site. Now to see if I can rig up RSS for it. One of the MemeFirst culprits seems to be Stefan Geens, who also has a blog; he reviews 'How The Irish Saved Civilization' in fine style, comparing the annotations of the medieval Hibernian monks to blogging. hmm...

He's stuck in Dublin, right now, trying to figure out a way to get hold of some bandwidth. I wish him luck.

Techie Details on The Reverse-Proxy Spam Trojan

Published July 11, 2003

Scary stuff -- the techie details of the trojan discussed in the NYT article today -- Reverse-Proxy Spam Trojan - Migmaf (LURHQ):

LURHQ was able to obtain a copy of the trojan - detected from suspicious activity originating from a VPN user on a firewall on a network we monitor. What we found was the trojan was not a webserver at all, but instead: a reverse proxy server. Instead of hosting the content on the victim's computer, the spammer instead maintained a 'master' webserver. We have dubbed this trojan 'Migmaf'.

Snopes: Urban Legends Urban Legend

Published July 11, 2003

Brilliant. From this week's b3ta newsletter via the forteana list comes this work of one-liner UL genius:

Snopes conspiracy: ' Snopes was set up in early 1995 by the CIA as a way to debunk popular conspiracy theories, Companies and individuals can now pay to have their urban legend denied on the site, a prime beneficiary being Richard Gere.'

Spam: Hackers Hijack PC's for Sex Sites (NYT). Good article about a (suspected) Russian spam ring using hijacked PCs and reverse proxies to host spamvertized websites.

Ceramics: Anyone who's been following the IRTF's Anti-Spam Research Group mailing list recently, will have come across Mark McCarron's 'proposal' regarding an anti-spam system that has something to do with everyone paying 5,000 UKP, ditching end-to-end SMTP, stopping any non-human-initiated e-mail, and energy from the Pyramids of Giza (I think).

Surprisingly enough, The Reg wrote some unkind words, and now Mark exercises his right to reply. Unmissable, mainly for the details of his reign of terror during school and his 'jack of all trades' abilities.

Great fun, in a kind of 'watching a car-crash' way.

PI vs IP, and FIT

Published July 10, 2003

Nathan Cochrane meets the Aussie Privacy Commissioner:

We're talking about a serious privacy vs piracy debate. On the piracy debate we're talking about management of Intellectual Property (IP). I am a person with Personal Information (PI) and if that is taken away, it is an invasion of my privacy. I would like to hear these people (IP owners) making such a lot of noise about piracy of IP talk about the protections of PI -- then they would have some credibilty. There's a pretty ugly asymmetry in the debate. Both sides need to grow up a bit and be a bit more respective of both sides of the argument.

(Nathan:) For my part, I chipped in that I think it hypocritical that IP owners will kick in my door if they suspect I am stealing their IP, but to steal my PI is just a 'business case'.

I like the 'PI' concept. Perfect timing, given this report on the new ATTBI/Comcast 'Transition Wizard'. Check out this insanity:

Any Comcast user that actually installed the Transition Wizard has given Comcast permission to do the following;

  • 1) arbitrarily open and read your email without your knowledge and/or consent

  • 2) perform a credit check on you and then share that info with whomever they choose

  • 3) Perform firmware upgrades to your cable modem at their discretion, regardless of who owns it.

    You also agreed not to participate in any future class action suits that may be brought against Comcast for whatever reason. You agreed to this and more when you clicked on the 'I Agree' button during the initial installation phase.

Mind you, the actual text isn't posted, so take it with a grain of salt.

Code: Danny's notes on the FIT testing OSCon talk -- that's running a test suite as a Wiki. Interesting, but I have to think about how practical it is in general. Demo here, more complex demo here.

Good tech-politics blog

Published July 10, 2003

Nathan Cochrane has a weblog. He's a clueful journo who writes about technology for The Age, the Melbourne newspaper -- thumbs up for that; I read plenty of The Age during my sojourn in Melbourne, it's the best newspaper in Oz. (Plus it recommends using Sitescooper and Plucker in their Handheld Howto page, so that's always going to get a +1 from me ;)

But anyway, a very clueful weblog; lots of good journalism straight from the source. Recommended.

LinMagAU.org: Integrating SpamAssassin with MailMan. I really must get around to getting our server upgraded to MailMan 2.1 so we can apply this; I have one list that's getting about 5-10 spams a day, and even with 'subscriber posting only' set, MM 2.0's admin interface is very clunky for dealing with that.

Does anyone know if there's a usable tool to automate Mailman admin BTW? Or give it a good UI?

Corn Syrup, Paid-For RSS, and P45.net

Published July 9, 2003

When you move from one country to another, you often notice some details of the taste and texture of the local foodstuffs. For example, pretty much everything in Thailand tasted slightly fishy to my western tastebuds, due to their widespread use of nam pla, a fermented-fish sauce seasoning.

In the US, there's a very definite gooey texture and strong sugary flavour which crops up in lots of foodstuffs -- right down to salad dressings and soft drinks. Eventually I figured it out -- it's corn syrup, which isn't really used at all in Europe. According to this review of Fat Land, here's why it's everywhere:

According to Critser, a leading journalist on health and obesity, America about 30 years ago went crazy sowing corn. Determined to satisfy an American public that 'wanted what it wanted when it wanted it,' agriculture secretary Earl Butz determined to lower American food prices by ending restrictions on trade and growing. The superabundance of cheap corn that resulted inspired Japanese scientists to invent a cheap sweetener called 'high fructose corn syrup.' This sweetener made food look and taste so great that it soon found its way into everything from bread to soda pop. Researchers ignored the way the stuff seemed to trigger fat storage.

The book's thesis seems to be that corn syrup and palm oil are largely to blame for the obesity epidemic. A quick google shows up this LA Times story which covers the book in more detail:

'High-fructose corn syrup is a really low quality, really cheap sugar,' the 38-year-old (Robyn) Landis says dismissively. The syrup starts out as cornstarch, which is then made sweeter by converting some of its glucose to fructose; the more fructose in the end product, the sweeter it is. 'It is not something our bodies should be dealing with. It's completely unnatural.' She also objects to the fact that high-fructose corn syrup turns up in unlikely places, such as ketchup, baby food and baked beans. 'Even chocolate tastes more like sugar than chocolate when it is sweetened with high-fructose corn syrup,' says Landis ...

... Dr. George A. Bray, an obesity researcher and professor of medicine at Louisiana State University Medical Center, also singles out high-fructose corn syrup because the meteoric rise in its consumption closely parallels the jump in obesity rates. 'Nothing else in the food supply does this. It's a very, very striking relationship.'

... Ironically, fructose, which is also known as fruit sugar, was once considered a healthier, 'more natural' alternative to sucrose, that is, old-fashioned table sugar, because of its presence in fruit. In addition, diabetics thought it was healthier for them because it does not raise insulin or blood sugar levels as high as glucose does. However, animal studies and preliminary human studies have found that a high-fructose diet leads to some of the same health problems that are rampant among overweight Americans, including insulin resistance and elevated triglyceride levels, a marker for heart disease.

(I still plan to get my teeth into a corn dog pretty soon though ;) Gotta get that low-grade meat product fix!)

RSS: Ben Hammersley points at this really wierd posting from Adam Curry. Points and laughs, in fact.

As far as I can see, AC wants development of (N)echo to stop, because he dropped 10,000 dollars getting a year's paid placement in the Radio Userland aggregator, or something like that. Well, that was a smart investment. I'm sure all the people thinking about (N)echo are dropping tools right now, accordingly. ;)

Ireland: P45.net now has MT blogs. Cool.

RID-Spam, The Grauniad, E-Voting

Published July 8, 2003

The RID-Spam Act chugs through Congress. This one's very much toothless; according to CAUCE, it's not actually anti-spam really -- CAUCE says:

(it is) 'a gross misnomer to call them 'anti-spam.' 'Anti-consumer,' sure. 'Pro-spam,' even. But not 'anti-spam.''

Amazingly, DMcC notes that it may even de-fang the stronger state laws if it gets passed. Wow.

And check out this quote from the CNet story:

Rep. Bob Goodlatte, R-Va., defended the bill's opt-out approach. Goodlatte said that of the physical junk mail he gets, 'maybe 10 percent of it is something that I have some interest in. For that reason alone I think an opt-out approach is the best solution here.'

Good for him. The way he's talking there, he's looking forward to receiving 700,000 mails per year that 'he has some interest in'. Earth calling Goodlatte -- direct email is not the same as physical junk mail. There's a fundamental economic difference -- with email, the recipient pays. That means you cannot compare the volumes so simplistically. Just say no to One Bite Of The Apple!

US Politics: Rod notes this story: The Guardian coming to the US. Excellent! I think that's a fantastic idea, and they'll clean up.

Consider this -- the only large-circulation print media that (a) people over here read, and (b) had the nerve to really treat the war in Iraq critically, as far as I know, are those two flaming-red anarchosyndicalist rags, the Economist and the Financial Times. (Not only are they not even written in the US, they're quite conservative by Euro standards.) The US media needs more liberal voices.

Actually, I'm exagerrating heavily here. As Craig has pointed out before, the Christian Science Monitor is a pretty good paper, with some critical journalism -- and one with a great story behind it's provenance to boot.

But the Guardian has a pretty much wide open field all the same -- here's hoping they can get the distribution side sorted out.

E-Voting: Some good comments on this Slashdot story regarding e-voting systems.

  • The Brazilian legislature mandated a retrofit 'of 3% (some 12,000 machines) to produce a paper ballot that the voter could peruse and deposit in a box for recount (the first large-scale use of the 'Mercuri Method').'

  • Georgia noted that the e-voting systems 'were all very flashy and glitzy, but all had severe problems with security and/or usability. We eventually decided to run a pilot program in last year's off-year election and try out 5 of the most promising machines in a real-world election. The final winner will be used across the state in 2004. No more hanging chad, but I think we are going to have a whole new set of problems to deal with.'

the melting-pot that is blogs.linux.ie

Published July 8, 2003

Just taking a look around blogs.linux.ie to see who's set us up the blog recently; here's the results:

  • unfortunately quite a few folks seem to have got bored and left off around mid-April. Ah well.

  • Quite a few lively blogs to add to the blogroll.

  • There's also a burgeoning population of teenage Malaysian blogs, bizarrely enough! planet_aiie, whoelse and corexified. Big slipknot fans it seems.

  • Malaysia's not alone in this -- here's a Jamaican guy. Must be the flag on the favourites icon; green and gold on a black background -- that's more linux.jm than linux.ie. ;) Unfortunately for my patois, he stopped updating in April. Sufferation! Oh well, I'll just have to stick with the Sizzla for my lessons.

  • a Phillipino blog, too!

Just figuring this one -- it seems linux.ie is free and easy to set up a blog at, doesn't have ads, and does decent RSS with full <content:encoded> blocks. All in all, that makes it a pretty good blog platform when you think about it. Fair enough!

Consumer groups, open source etc. call on WIPO to discuss open projects

Published July 7, 2003

WIPO DG asked to convene meeting on open and collaborative projects to create public goods:

In recent years there has been an explosion of open and collaborative projects to create public goods. These projects are extremely important, and they raise profound questions regarding appropriate intellectual property policies. They also provide evidence that one can achieve a high level of innovation in some areas of the modern economy without intellectual property protection, and indeed excessive, unbalanced, or poorly designed intellectual property protections may be counter-productive. We ask that the World Intellectual Property Organization convene a meeting in calendar year 2004 to examine these new open collaborative development models, and to discuss their relevance for public policy.

I hope this gets somewhere; it'll be interesting to see what the World Intellectual Property Organization has to say officially about open source, the Human Genome Project, the world wide web, and other unencumbered projects of this type.

Weekend Roundup

Published July 7, 2003

Had a very nice long weekend -- big BBQ and watching the fireworks on Friday, some bodyboarding and bodysurfing on Sunday. Very relaxing. Now back to work. :(

Ben Hammersley notes 'the All Time Perfect Daily Mail Story': Asylum Seekers Eat Queen's Swans:

A major investigation has been launched by Scotland Yard into claims that the Queen's swans are being stolen in their hundreds by gangs of asylum-seekers who are cooking and eating them.

The probe comes after a group of men were caught red-handed by police in an east London park. The asylum seekers were barbecuing a duck and officers found two dead swans, ready to be roasted, concealed in bags.

A police spokesman said today: We are appealing for information over the disappearance of swans. There have been incidents of swans being killed, and it appears to be the work of eastern European gangs.

It's a classic of the genre -- combining (a) the queen, (b) cute animals (c) fear of immigrants. That covers all the bases except one. Oh, here it is, bingo! -- it's not entirely true:

Yesterday Scotland Yard stated: 'There is no police report.' While there is concern fuelled by a drop in the swan population, the police spokeswoman added: 'There appears to be a perception that this may be attributable to Eastern Europeans. We stress we have no evidence of this.'

A police spokeswoman ... added that, despite some efforts, they could not back up published claims that asylum-seekers had been caught in east London barbecuing a duck with dead swans concealed near by 'ready to be roasted'. Andy Fisher, head of the wildlife investigation unit, appeared equally baffled. 'I don't know where they have got that from - not the Metropolitan Police.'

It's clearly silly season time again.

Quick Iraq roundup: some photos from Baghdad from Gee, another Iraqi blogger (Gee not in the irish slang sense BTW!); MI6 chief was the BBC's source for 'sexing-up' allegations (Observer).

Also, Guantanamo Bay's military tribunals are hitting the non-US news media again, now that the death penalty has been raised as a possibility. These Observer and Guardian stories note, regarding the two British citizens who've been imprisoned for 18 months (one for 12 months in Bagram airbase): 'If this treatment happened for an hour in a British police station, no evidence gathered would be admissible'.

Next, A left-wing US soldier blogs from Baghdad.

the iraqi's who are working for the u.s....doing what ever task we throw at them...are not to upset with us...some of them have family members in the states and they hope that someday they will be able to join them...they don't hate america at all...and they are conscious enough of what is really going on to make their own decisions...they think that we really are trying to help...they are afraid of the 'militants' because when ever the 'militants' show up and attack us in their neighborhoods we end up destroying everything...many of the guys say that they chase the 'militants' out with any weapons they have...they are just trying to get by...they fear that the 'militants' are using horrible tactics to enlist more support...they are using our retaliation against us...for every home...or car...or newsstand...or coffee shop we destroy trying to protect ourselves another 'freedom fighter' is born...

He talks about Chomsky, links to Michael Moore -- so of course, the neo-con warbloggers reckon he doesn't exist. ;)

Totally down with the new pronunciation of RSS BTW. Waiting for the dust to settle. ho hum.

Finally, Fergus Cassidy, Sunday Tribune tech journo, has a website. Good reading...

Over-honest Slogans

Published July 3, 2003

my mate Luke passes on this gem:

I was driving along behind a plumber's van today. The van was emblazoned with signs saying that the plumber was a sewers and drains expert. Along the rear bumper of the van was the company's slogan:

'Your shit is our bread and butter'

I am not making this up.

Senderbase and Alexa

Published July 3, 2003

SenderBase is a cool site which lists email traffic volumes for specific senders and organisations.

This will make for some very cool spam tests. As you can see, several of the top ten sending domains are ISPs that, shall we say, may have a few 'issues' with customers' open proxies. They're scattered in amongst the Yahoo!s and Hotmails ;) Then there's a couple of well-known domains that, let's say, have a habit of appearing on the SBL.

Well, not quite as practical, but useful nonetheless, is Alexa's 'traffic detail' feature for the web.

Very nifty; a log-scale graph of traffic as measured by pageviews from Alexa's toolbar, and you can pick 2 sites and compare their hitrates. For example, according to this, SpamAssassin is bigger than Jesus ;)

Thanks to 'Mr. FoRK' on the FoRK list for this URL...

Patents: the SSLeay workaround

Published July 3, 2003

during this ongoing European software patents thing, I was reminded of a comment I heard a while back from a pro-patent guy.

He was around in the bad old days of SSLeay's patent woes. SSLeay, like many cryptographic products in the 80's and 90's before the RSA and other patents expired, was in a legal grey area due to patent issues. To quote the 'Is This Legal?' section of their FAQ:

That is one of the hard questions on which there is as yet no clear answer. You need to read quite a bit of information to draw your own conclusions - and then go and talk to a lawyer. Again this document is my opinion and as such should be treated in that light - reality could be quite different to how I happen to see things :-).

In short:

  • outside the USA there should be no problems
  • inside the USA RSA hold patents over the RSA algorithms, however if you use RSAREF (which SSLeay can link to) then non-commercial use is probably okay. For commercial purposes you need to talk to RSA to license one of their toolkits (BSAFE) or come to some other licensing arrangement with them.
  • IDEA may be a problem inside Europe and RC4 inside the USA; both can be removed with a simple compile-time option or you can licence the IDEA algorithm.

Eventually, RSA relicensed their algorithms to be freely usable. Thankfully IDEA could be avoided by using alternative algorithms in the SSL transaction, so it wasn't a biggie; most SSL users just switched it off. Finally, the RSA patent finally expired -- so nowadays SSL is commonplace, and using SSL to protect security is a lot easier than it used to be.

Anyway, I'm diverging here... the relevance is this mail from Hartmut Pilch discussing the current euro-swpat proposal. He reckons even the SSLeay defense -- saying 'do not download this software in these countries unless you get these licenses' -- would not work with the current proposal:

To make this clearer: according to the CEC proposal, you still risk being sued even if you only publish a program and warn people 'please do not execute unless you have obtained a license from XXX'.

SARS — back in the fall?

Published July 2, 2003

SARS special report: Too soon to celebrate (New Scientist).

There are also suspicions that the first outbreak in the southern Chinese province of Guangdong stopped so abruptly because of the onset of summer. The SARS virus does not survive well in a hot environment, and if most transmission is due to people touching contaminated surfaces, higher temperatures would have reduced transmission.

If the season, rather than human intervention, was the main reason for the end of the outbreak, SARS could return with a vengeance in the autumn. That is what happened with the 1918 influenza pandemic, which killed tens of millions. Fortunately, SARS is far less infectious (so far).

Debra Bowen: ‘MS killed useful CA spam law’

Published July 2, 2003

'Let There Be Spam!':

COMMITTEE TAKES CUE FROM MICROSOFT, KILLS NATION'S TOUGHEST ANTI-SPAM PROPOSAL

SACRAMENTO - Urged on by Microsoft, the Assembly Business & Professions Committee today unceremoniously killed SB 12 (Bowen), a measure to create the country's toughest anti-spam law by requiring advertisers to get permission from computer users before sending them unsolicited ads ...

'Does anyone other than the eight members of this committee who either voted 'no' or took a walk on the bill really believe Microsoft has any interest in getting rid of spam?,' wondered California State Senator Debra Bowen (D-Redondo Beach), the author of SB 12, following the bill's defeat. 'Trusting Microsoft to protect computer users from spam is like putting telemarketers in charge of the do-not-call list. Microsoft uses a megaphone to tell everyone how much it hates spam at the same time it's working overtime to kill truly tough anti-spam laws. Why? Microsoft doesn't want to ban spam, it wants to decide what's 'legitimate' or 'acceptable' unsolicited commercial advertising so it can turn around and license those e-mail messages and charge those advertisers a fee to wheel their spam into your e-mail inbox without your permission.'

wow ;) She's not pulling any punches there...

A ‘pay-to-email’ patent

Published July 1, 2003

The concept of a 'pay-to-mail' scheme -- charge people to send you mail -- is patented, it seems. Good, I never liked it anyway ;)

A method and apparatus for determining whether a party sending an email communication is on a list of parties authorized by the intended receiving party. If the sending party is not on the list of authorized parties, an electronic billing agreement is emailed to the sending party indicating a fee that will be charged to the sending party in return for the message being provided to the intended receiving party. Preferably, the present invention is implemented with Internet communications and utilizes a security protocol to enable the electronic transaction to be transacted in a secure manner.

Date: Tue, 01 Jul 2003 15:00:09 -0400
From: "Bob Wyman" (spam-protected)
To: (spam-protected)
cc: "'Yakov Shafranovich"' (spam-protected)
Subject: RE: US Spam patents: Partial list

A new, spam-related, US Patent was issued today. It is a continuation in part of US Patent 6,192,114 which is on the first list of patents I posted to this group.

See: http://patft.uspto.gov/netacgi/nph-Parser?patentnumber=6587550

US Patent 6,587,550 METHOD AND APPARATUS FOR ENABLING A FEE TO BE CHARGED TO A PARTY INITIATING AN ELECTRONIC MAIL COMMUNICATION WHEN THE PARTY IS NOT ON AN AUTHORIZATION LIST ASSOCIATED WITH THE PARTY TO WHOM THE COMMUNICATION IS DIRECTED

Abstract A method and apparatus for determining whether a party sending an email communication is on a list of parties authorized by the intended receiving party. If the sending party is not on the list of authorized parties, an electronic billing agreement is emailed to the sending party indicating a fee that will be charged to the sending party in return for the message being provided to the intended receiving party. Preferably, the present invention is implemented with Internet communications and utilizes a security protocol to enable the electronic transaction to be transacted in a secure manner.

------------------------------------------------------------------------

Inventors: Council; Michael O. (186 Hurt Dr., Cordele, GA 31015);
Santos; Daniel J. (3525 Roswell Rd., #721, Atlanta, GA 30305) Appl. No.: 783340 Filed: February 14, 2001

Asrg mailing list (spam-protected) https://www1.ietf.org/mailman/listinfo/asrg

When Good Games Go Bad

Published June 30, 2003

Wired: Hackers Put 'Bane' in Shadowbane:

'Then we realized that somehow an insane god had taken control of our world and was out to kill us all.'

The population of an entire Shadowbane town was forcibly moved to the bottom of the sea, where they drowned. City guards turned feral and attacked town residents. Mobs of never-before-seen superpowerful creatures, seemingly spontaneously spawned from the ether, began to prowl the streets unchecked, killing characters in the most painful way possible.

Audioscrobbler

Published June 30, 2003

Audioscrobbler is cool. Check it out -- this is its log of my xmms listening habits, neatly cross-linked and referenced. (The cheesy 'Liberty X' listens were Catherine, I swear.)

Anyway, AS is a bit like Napster's 'explore other person's music collection' feature, which was cool for picking up recommendations -- but this one is based on actual plays, and without the link to a service that the RIAA would want to see shut down ASAP. ;)

It can come out with some pretty bizarre results -- for example, 'people who listen to Thievery Corporation also listen to Radiohead', according to this. Mind you, that's probably correct...

Prediction: I'll wind up being top of the list for listening to Acen's tunes by the end of 2 weeks. That's the plan at least ;)

Spam filters and FTC’s ‘Do Not Call’ list

Published June 30, 2003

Wired News: Yahoo! Spam Filter Thwarts FTC:

Consumers who used Yahoo Mail e-mail accounts to register for the Federal Trade Commission's new do-not-call service were met with an ironic twist Friday -- Yahoo's spam filter intercepted confirmation messages sent from FTC servers.

'Our tests showed that Yahoo's spam filter was automatically sending the confirmation messages from the do-not-call list into users' bulk-mail folders,' said NetFrameworks co-founder and CTO Eric Greenberg. 'The irony of it is that the spam filter is blocking the very thing that's supposed to help you stop getting spam over the phone.'

FWIW, I signed up, without any hitches.

As noted elsewhere, their mail-sending systems were massively overloaded -- an insane quantity of people were also signing up at the same time, from what I've heard.

But a day later, the confirmation message eventually came through, and got run through my 'dogfood' SpamAssassin 2.60 installation. That gave it -5.2 points. Not bad, considering they didn't have reverse DNS records for the machines sending the mails out ;) (update: they do now, btw.)

In case you're wondering, the tests it hit were: BAYES_00,CLICK_BELOW,DATE_IN_PAST_12_24,NO_REAL_NAME. Pretty respectable, really. Aside: that message getting a BAYES_00 match is impressive, given that (a) that Bayes db was initialized entirely from auto-learned mails, no hand-training; and (b) I'd never received a mail from the Do Not Call registry operators before.

Tamales: this is cool -- San Francisco's boozy culture paid homage last night to 'The Tamale Lady':

Tonight, Zeitgeist will swell again for Ramos' 50th birthday party. There, San Francisco filmmaker Cecil B. Feeder will premiere his mini-documentary 'Our Lady of Tamale,' featuring 30-second songs submitted by dozens of San Francisco musicians.

Isn't that nice. Ben says it went well. Somehow or other we missed her tamales last time we were up, but I'll be sure to get one next time...

Closed Hardware, PDAs etc.

Published June 27, 2003

BoingBoing with a cautionary tale. When you buy a HipTop Sidekick from T-Mobile, you're not really buying it in the way you'd imagine -- instead, you get to hold it while they operate the software, as far as I can see. As of this week, T-Mobile are going to remotely erase the games that were included with the device, because they are 'no longer supporting' them. And tough luck to Sidekick owners.

As BB sez:

Who owns your Sidekick? T-Mobile does, apparently, even if you spent full retail on it (I dropped 250 dollars on mine). You need T-Mobile's permission to install software on their device. T-Mobile will, from time to time, decide to erase software from your device. And when you stop subscribing to their service, T-Mobile will delete all your data forever, without giving you any mechanism for moving it off the device (and without giving you the ability to design a tool that would let you do this).

I don't really get it -- I mean, this is the reason Palm platforms won in the handheld arena for so long; the user's control over what they can install, the developer's freedom to write new apps for the users to install, and the (comparatively) open aspects of their SDK and protocols so that it can be sync'd to by lots of desktop apps.

Competing with all the other PDAs, based on hardware or UI alone, isn't enough -- unless you're Apple with the iPod. Surely the Sidekick OS developers get this? (Maybe what happened is the OS developers get it -- but T-Mobile don't.)

Talking of the iPod -- Gary Robinson notes that Pixo, the vendor of the OS software used on Apple's iPods has just been bought -- by Sun. It seems Pixo nowadays sells server-side Java thingies, which seems wierd for a developer of OSes for handheld platforms -- until you read this article from January 2002, which reports that Apple and Pixo were at loggerheads anyway, due to contractual difficulties, and that Pixo had given up on embedded-OS work, due to a shortage of clients.

Anyway, I wonder if Apple got a licensing deal that gave them the source and allows them to update the Pixo OS themselves, if Sun decide to drop that product. (Given that Pixo themselves turned around and set the company in a totally oblique direction, I'd reckon it's likely.)

Spam: Rod says the National Do Not Call Registry has launched. Sign up here -- but wait a while first, it's massively overloaded right now...

Cocaine-laced Euros

Published June 26, 2003

German euros 'full of cocaine' (BBC):

Almost all euro banknotes circulating in Germany contain traces of cocaine, German researchers say. ... 'Nine out of 10 banknotes show clearly measurable amounts of cocaine,' Professor Fritz Soergel of the Institute for Biomedical and Pharmaceutical Research in Nuremberg was quoted as saying by Reuters news agency.

... The concentrations of cocaine on Spanish euro notes were almost a hundred times that of what was recorded in Germany; ... Professor Soergel said that his team was 'almost knocked flat' by results of yet another recent study in Barcelona.

Search Engine Optimisation

Published June 26, 2003

Tom Coates on search engine optimisation. Summary: they don't work; smart search engines realise you're trying to game them, and will ignore or penalise your site as a result. The correct answer is to provide interesting/good/linkworthy textual information, and keep superfluous eye candy at a sensible level. I agree with his essay, FWIW.

Personally, I reckon Google deserve a lot of credit for turning the web around, from a flashy, Flash-laden animated DHTML blinky-blink medium, back into one where text is king. Once it got recognized that Google used titles, h1 tags, and other semantic markup as key metadata, and that the gimmicky stuff is unindexable, the never-ending slide into flashy blinky-blink land was halted. Phew!

Aside: Labour MP Tom Watson has a weblog?! Wow. He'd get my vote straight away, no matter what his policies were -- that's transparency ;)

Interesting -- so does Liberal Democrats MP Richard Allen. This is really amazing. He even links to SpamAssassin as part of a discussion on the All-Party Internet Group's spam summit to be held on July 1st!

It's worth noting that his comment here notes that the APIG concept seems to be leaning towards prosecution of spamvertised products; advertise via spam (sent by you or by a 'spam outsourcing' company), and you're liable. A very sensible approach, as long as they can avoid the danger of malicious spammers spamvertising a product without that company's permission -- a la what happens regularly to SpamCop and SpamHaus.

Twenty Questions AI

Published June 25, 2003

Play 20 questions against an AI. Very cool; it got 'artichoke heart' and 'volcano' for me, the first within 30, the second within 20. It also whinged about a few questions I'd 'answered inconsistently' on the first one (well, they were stupid questions ;)

Log in as an anonymous user to try it out.

SoBig.E all over the place

Published June 25, 2003

Argh. Lots of 'your_details.zip' files flying around; it must be new Win32 virus day! Time to update the filters...

QuickThread

Published June 25, 2003

Marc Canter blogs about QuickThread, one of the new services at Steve Yost's QuickTopic.

It's a great concept. Want to take a thread offline, or share it as a dedicated forum of its own, without losing the concept flow? Just select all the context messages, forward as attachments by mail to the QT site, and it'll create a new thread with that context intact. Totally simple. (see the Pictures).

Science: In this interview with Matt Ridley at edge.org, Matt notes:

... There's another phenomenon going on too, which is equally important and which again people in these kinds of debates over human nature have missed. ... behavior affects genes. It doesn't change the code of the gene, and it doesn't change the encoded genome ... what I'm talking about is changing the expression of genes through things you do in your life.

(for example:) ... When you're under stress, the physiological result is that cortisol increases in your body and has a lot of effects. Cortisol is a transcription factor; it actually alters the expression of certain genes. It does so largely in the immune system, which results in the suppression of immune activity.

Wow. I never realised hormones could have that effect. Good article, as usual...

‘My Wife, Jody’

Published June 25, 2003

Incredible. The text 'My wife, Jody' has appeared, reliably, in spam for the last 5 years -- I just got one today. (I haven't actually seen one in my inbox for a while, though, since the chain letters that copy it generally get pretty high scores -- this one hit a respectable 48.2 SpamAssassin points, no less.)

Here's the text it appears in:

MORE TESTIMONIALS

'My name is Mitchell. My wife, Jody and I live in Chicago. I am an accountant with a major U.S.Corporation and I make pretty good money. When I received this program I grumbled to Jody about receiving 'junk mail'. I made fun of the whole thing, spouting my knowledge of the population and percentages involved. I 'knew' it wouldn't work. Jody totally ignored my supposed intelligence and few days later she jumped in with both feet. I made merciless fun of her, and was ready to lay the old 'I told you so' on her when the thing didn't work. Well, the laugh was on me! Within 3 weeks she had received 50 responses. Within the next 45 days she had received total $147,200.00 ........ all cash! I was shocked. I have joined Jody in her 'hobby'.'

Mitchell Wolf M.D., Chicago, Illinois

It's amazing that the chain letter is never changed, given that for the last few years they are all sent using spamware applications, so the senders must have some techie know-how.

I wonder if there's a real Mitchell Wolf M.D. in Chicago, and what he'd think of 5 years of faked testimonials using his name?

Some snippets

Published June 25, 2003

Maciej covers some ground I've been wondering about, comparing his experiences with the French state system and that here. Definitely worth reading, and I'm looking forward to tomorrow's.

Oops! NZ channel 'TV3 has apologised after a graphic labelling US President George W. Bush a 'professional fascist' flashed up during its primetime news.'

Henry Farrell writes about homesickness, quoting Dante. It's such a great quote, I'm going to just reproduce it here:

These are of course silly things to get worked up about; but it's a universal experience for expatriates to miss the little things as much (if not more than) the greater ones. Dante, who was exiled from Florence, speaks of how

You shall leave everything you love most dearly:
this is the arrow that the bow of exile
shoots first. You are to know the bitter taste
of others' bread, how salt it is, and know
how hard a path it is for one who goes
descending and ascending others' stairs.

He's talking about two things here. First, as an exiled Florentine, he doesn't like salty bread. Florentines don't use salt when baking (the result, as far as I remember, of an extended period when the Pisans cut off their salt supplies), so that their bread tastes like blotting paper to non-natives (I lived in Florence three years: my advice to outsiders is to order pane Pugliese in the local bake shops when possible). Second, spiral staircases in Florence tend to curve around the opposite way from staircases elsewhere. Dante's main point is unassailable; as an exile, you feel longing for the small and unexceptional parts of daily life in your home country, and a quite extraordinary degree of comfort whenever you find them again. Which is why my fridge is now stocked up with Kerrygold.

NetFlix patents the DVD library

Published June 24, 2003

So NetFlix have patented their business method; that is, subscribing to video/DVD rentals -- where instead of being charged per disc, you are charged a monthly fee and can keep the rentals indefinitely without late fees. Patent here. Now, NetFlix is a very cool service, I've really been enjoying it. But this patent is a bit nasty.

Think about it: what's difficult about the NetFlix setup? Is it thinking up the concept for how the business works, as described in the patent?

Or is it executing the details, setting up efficient shipping infrastructure, tracking, billing, stock management etc., efficiently enough to make a profit?

Bad news for these companies, who are now infringing:

  • GameFly, which is the NetFlix model applied to games.
  • GreenCine, a more indie- and anime-oriented DVD site.

As one commenter on the /. story noted, 'imagine if McDonalds had patented the drive-thru'.

Hakim Bey

Published June 24, 2003

Interesting -- some thinking about the net, blogs, etc. on Biroco.com meanders into a mail from Hakim Bey:

(...) I'm utterly not responsible for the plethora of Netishness that coagulates around my work. Personally I never 'uploaded' a word. Others do it, mostly without my permission and w/out even bothering to inform me. Some of it isn't even mine - forgeries & often dis-info are rife. The Net is a pathology.

I not only don't own a computer - I've 'taken agin' 'em' & have become a cyber-curmudgeon. Basically I'm only interested in things that don't have websites. I refuse - or rather am incapable of - compensation for the demise of the physical world (you know what I mean) by losing myself in 'the terminal state of screenal involution' to quote a line that came in-somnia last nite.

Joel goes on to say:

Most who have read Hakim Bey seem to imagine that he regards the web as a TAZ (Temporary Autonomous Zone), but in fact he doesn't, since the physical component is missing, virtuality is not physical, at most all the web can be is an organisational mouthpiece for a TAZ but not a TAZ in itself. I agree with him, but myself, despite chucking my TV in the bin over a decade ago and Zen wanderings away from this medium, I got ensnared in the web nonetheless and do sometimes wonder whether it is indeed 'compensation for the demise of the physical world'. We'll see, at present I regard it as a curious assemblage project and a potential widening out of creativity.

‘The Goblin’

Published June 23, 2003

Observer: Russia's cult video pirate rescripts Lord of the Rings as gangster film. This sounds hilarious -- although I bet New World (iirc?) aren't so happy about it...

They call him the Goblin. He is the new toast of Russia's massive pirate video industry, his films sought all over Moscow. The trick of his silver screen success is that the Goblin redubs Hollywood movies, using his own 'better' Russian alternative to the script.

A former senior police investigator from St Petersburg, Dmitri Puchkov began by making fresh translations to replace the appalling subtitles on pirated films. But now his cult following has found pan-Russian appeal, with a ground-breaking rewrite of the first two parts of The Lord of the Rings.

In a move that has taken the Russian pirate disk world by storm and infuriated traditionalists and copyright lawyers, Puchkov has completely changed the script, turning the 'good' characters, like Frodo, into bumbling Russian cops, and the 'bad' Orcs into Russian gangsters.

The new, irreverent version of The Lord of the Rings is set in Russia. Frodo Baggins is renamed Frodo Sumkin (a derivative from the Russian word sumka, or bag). The Ranger, Aragorn, is called Agronom (Russian for farm worker). Legolas is renamed Logovaz, after a Russian car company famed for its Ladas. Boromir becomes Baralgin, after a Russian type of paracetemol.

Gandalf spends much of the film trying to impress others with his in-depth knowledge of Karl Marx, and Frodo is cursed with the filthy tongue of a Russian criminal.

2000 IT bosses say NO to EU software patents

Published June 23, 2003

FFII have issued a press release: '2000 IT bosses say NO to EU software patents, call for rejection of McCarthy software patent directive proposal':

A 'Petition for a Free Europe without Software Patents' has gained more than 150000 signatures. Among the supporters are more than 2000 company owners and chief executives and 25000 developpers and engineers from all sectors of the European information and telecommunication industries, as well as more than 2000 scientists and 180 lawyers. Companies like Siemens, IBM, Alcatel and Nokia lead the list of those whose researchers and developpers want to protect programming freedom and copyright property against what they see as a 'patent landgrab'.

Reminder: there's only 7 days left before the plenary on June 30th, so if you're European, write to your MEP backing FFII's position. Full text here.