Feanor

Yesterday I met for the first time a bad thing that I am told is becoming common. You go on a website, the website had been "infected" by a malicious code, you click on a link and you get redirected on a strange domain like "aykjfgves.com" from where your browser in tricked in downloading some executable files. At the end your computer is infected by a "bot" that can do pretty much everything, like phoning home your private information, download and install more bad software or use your computer and Internet connection to spread further attacks.
This is completely automatic. Those "bot-nets" are made via "bots" that "google" for random websites that are built upon software known to have some "hole" and then they try to inject their own code on those websites. Hammering the Internet in this way they are able to find a lot of sites whose software had not been patched with security updates or that were not developed with the correct security policies. At that point all the users that arrive on the infected website are redirected and tricked in downloading some "trojan horse" and become active part of the bot-net.
There isn't much you can do. You can't trust any website. In my case I had the antivirus that detected the bad payload in the redirected connection and blocked it. Plus, the bad domain to which I was redirected was also blocked by the Google blacklist included in Firefox 3. My understanding is both defenses work on already known threats but a brand new one has got good chances to pass.
Using Internet Explorer looks a little suicidal, due to the integration in the OS and the difficulty in managing the local security policies, for example the ActiveX.

Useful links:
Blog post on the issue with more links:
http://adblockplus.org/blog/blocking-malicious-sites-with-adblock-plus
Free antivirus (for personal use only):
http://www.avast.com/eng/avast_4_home.html

On a side note: interestingly while using Opera 9.51 the above site redirects me on a casino site but the antivirus isn't triggered. I've tried several times and I am always redirected to the same casino page. Maybe the bot-net code detects what browser you are using and acts differently. I can't say if Opera is more secure in general terms but in this particular case it seems it is not redirected to downloading the executable files.

----------------------------

Riassunto: quando visitate un sito web qualsiasi, anche uno del quale siete abituali frequentatori, può capitare di essere rediretti verso un dominio strano dal quale il vostro browser scarica un "trojan" cioè un programma che in seguito provvede a scaricare altri amichetti poco raccomandabili che possono fare qualsiasi cosa gli pare col vostro computer e la vostra connessione.
Ripeto, questo può succedere con qualsiasi sito di cui vi siete sempre fidati.
Infatti esistono questi "bot" che automaticamente cercano dei siti Web che usano un certo particolare software e provano a sfruttare delle falle di questo software per aggiungere il proprio codice al sito. Quando il suddetto software non è stato aggiornato o non viene utilizzato con le corrette procedure di sicurezza il "bot" riesce a fare le proprie modifiche e quindi da quel momento il sito ridirige tutti gli utenti verso un altro dominio dal quale scaricheranno un trojan.
Nel mio caso l'antivirus si è accorto e ha bloccato la connessione al dominio "pirata", in più il dominio era bloccato da Firefox 3 tramite la blacklist di Google.
Ma il rischio esiste ed è costante, quindi fatevi i vostri conti. Sono particolarmente vulnerabili gli utenti di Windows che usano Internet Explorer a causa della integrazione con il sistema e della difficoltà di gestire le policy di sicurezza, sopratutto riguardo gli ActiveX.

You know Opera 9.5 has been relased. It has got a tool named "Dragonfly" in "tools - advanced - developer tools". What is it? For the other geeks out there it is an obvious redo of Firebug. For my other readers, it is a tool for "inspecting" the structure of the webpage you have loaded in Opera. What does it mean? Lets say you want to change the color of your blog title. You open Dragonfly, click on the title and it displays what line of code in the page corresponds to the "object" title, plus the CSS properties of that object. It shows you the hierarchy relations of the object and other objects in the page (it is the DOM structure) and does the same for its CSS properties. Once you have got these information you can edit your "user.css" file and change (almost) anything in your blog.

Dragonfly can be used to debug webpages at a more complex level but people who know what it means don't need explainations

Anyway, everybody ask me if you need help.

I will have surgery tomorrow morning (Monday morning). Wish me luck.
I am not a believer but prayers cannot harm.

Per il lettore italiano, questo post può essere istruttivo:
http://blogs.ugidotnet.org/piyo/archive/2008/05/27/cercasi-tuttologo.aspx
E anche questo:
http://blogs.ugidotnet.org/piyo/archive/2008/05/23/come-farsi-assumere-da-amazon.aspx

----------------------

Today I was reading a job offer. Besides the fact they declared 35 years as maximum age (I don't really understand why it makes sense and why this is even allowed), the request was for a "Web 2.0 facilitator", meaning somebody who goes to companies management (aka the customers) to tell/teach them about how to implement "Web 2.0 technologies" and why that is cool. I would have applied for the job if I wasn't too old and if I knew what "Web 2.0 technologies" are, no mention the fact that I don't know why a company should move to "Web 2.0" when they haven't got "Web 1.0" yet. I guess the idea is quite simple. Marketing people work on slogans to create the "hype" about some "exotic/new/cool/must to have" gadget. Company management, that usually don't have a clue about technology, read those glamour magazines about successful business, which are full of fake articles and think you can't live the future without the above new gadget. Some companies are then trickled to invest ridiculous money in developing the Second Life company "stand" (or whatever else, just a realistic example), when the "hype" for Second Life is already fading away. After some time there will be other people wondering why the company invested so much money for so little or non-existent gain and then the Web itself will be proven useless and ultimately a fraud.
It seems simple but in real life you can't tell anybody, because they don't want to listen. Why? Because in the IT business, despite the implosion of the "new economy bubble", there are still way too many people who make big money on selling crap and act like the prophets of a "new age". On BOTH sides, even the customers WANT to be involved in that kind of nonsense, that somehow gives importance to the management roles (regardless the wasted money).

Somehow this can be also transferred on the consumer level. How many "gadgets" have been introduced during years, like the "tablet PC" or the announced "touch screen" in Windows 7? But if you look at things closer, we are doing the same things as 10 years ago, after having spent lots of money in buying new hardware and new software that included almost no actual innovation.

On the fun side, I don't know your countries but here in Italy there is an interesting trend about job offers. Besides the fact that they are for "consulting / temporary" contracts, so the company pays you way less than regular employment, you are also requested to be experienced/skilled in many and completely different areas, like system admin on Unix server and creative graphics, with Java programming in between. In this way you hire just one person, without having any obligation from a regular contract (like extra time, vacations, taxes), paying less (because you can fire any moment) and making him/her work in the place of 3 or 4 other people. The resulting production/service sucks? Who cares, it sucks everywhere.

Sorry, Italian only.

Un post istruttivo che dovreste leggere:
http://eldalie.blogspot.com/2008/05/professione-medico.html
O forse no perché è deprimente.
Fate voi.