racoma.com.phJ. Angelo Racoma on technology, economics, writing, problogging, and getting things done

If you’re using a WiFi-enabled computer, then better check on your settings. Microsoft has confirmed that the ad-hoc networking feature of Windows 2000, XP and 2003 is vulnerable to attacks when left unguarded.

The threat exists once you set up an ad-hoc or peer-to-peer connection (i.e. without a WiFi infrastructure or access point). Your system starts to re-broadcast the SSID (the wireless network ID), which can then be picked up by other WiFi users or systems. Cool idea, right? You can wirelessly network even without an Access Point. Well, not exactly.

Problem is, your wireless-enabled computer or laptop continues to broadcast the SSID even when the ad-hoc network has been disconnected. Your system is now practically an open-access WiFi hotspot (if the ad-hoc network was not set up to be encrypted in the first place). Hackers and malware can now take advantage of this flaw and connect to your PC as if it were in a local area network–and third parties can gain access to your files, printers, and settings.

How to protect yourself? Easy. Simply set your system to access “Access point (infrastructure) networks only” by opening your wireless network’s Property sheet and clicking on Advanced options.

Of course, it pays to have your Windows Firewall enabled, and your system up-to-date with the latest service pack and patches.

Microsoft says users who have their Windows Firewalls activated and who regularly update are at less risk. MS will be releasing patches for this particular vulnerability in the next Patch Tuesday.

All right. I’m running out of neighbors to offer my free WiFi access to. If you’re ever within my area (near the Mini-Stop convenience store along Maginhawa street, UP Village, Quezon City, Philippines), see if my signal can reach you. Drop me a line so I can send you back my wireless encryption pass key.

If you’re dining at any one of the small restos and eateries in my vicinity (Ababu, Pixie’s, Nanette’s, etc.), then you might want to surf for free, too.

In my attempt to check out different WiFi hotspots in the metro–after all, what good is an unlimited AirborneAccess account (care of Bayantel DSL) if you can’t surf to your heart’s content?–I realized that there are places that advertise “WiFi zone” but have, in reality, crappy coverage.

AirborneAccess’ hotspot list for Mandaluyong includes Figaro Coffee, but when I tried to log in from there, I could not sustain a signal. I was getting “very low” to nil.

All that after already paying for my cup of Cafe Americano (I needed to plug in and boot up and detect the network, so I thought why not order while booting up)!

So I moved elsewhere, this time not trusting any “WiFi zone” banner or the (empty) assurances of a store/restaurant manager. I proceeded to Nacho-Fast at the lower ground floor, fronting Mercury Drug. I remembered that Dome (beside Nacho-Fast) was listed as an AA hotspot, and I thought I could link up without having to pay anything more expensive than PhP 50 for food or drinks.

Got lucky that the Mexican food joint was offering 50% off on the second purchase of rice bowls, wraps, pizzas or tacos, and treated myself to a snack worth PhP 45 and freeloading on their AC socket for a couple of hours.

At any rate, the entire Shangri-La mall is actually listed as an AA hotspot, so if your gadget’s batteries are good (mine are dead!) it might pay to sniff around for a good signal before settling down somewhere to surf.

Next on my WiFi discussion list: iPig: a personal VPN handy for surfing on those unsecure public hotspots (bad name, but good service).

MySpace is free, but a thriving business nonetheless, acquired by News Corp last July. Trent Lapinski muses on the MySpace business model:

… there is no money in giving millions of people costly web hosting space for free, but there is in owning demographic info ranging from just someone’s e-mail address to personal information for targeting advertising at them.

I guess privacy advocates and downright paranoid individuals have a reason to shun away from MySpace.

… the MySpace privacy policy and company filings including all users’ information lists, databases, text, files and documents are explicitly documented as an asset of MySpace. The agreement also states MySpace can sell the site and all user information to a third party that might not necessarily follow the same privacy policy as MySpace. To put it simply, MySpace owns everything a user provides them with.

(via DIGG)

Yahoo! has recently acquired popular social-bookmarking site del.icio.us.

Via Wired:

In its latest acquisition of a social networking service, internet powerhouse Yahoo on Friday chomped down on del.icio.us, a startup that enables people to more easily compile and share their favorite content on the web.

…

Del.icio.us will continue to run its own website, which allows users to create a personal account so they can create a page devoted to their favorite online articles, music and reviews. The material can be shared with others simply by sending along the web link. The content also can be identified with labels, or “tags,” to make it simpler to find.

However, Yahoo! says “the purchase price wasn’t large enough to have a significant impact on its finances.” To me, no matter how “small” or “insignificant” Yahoo! considers the purchase, I’d bet the guys over at del.icio.us have lined up their pockets with quite hefty amounts by this time.

Check out Atty. Punzi’s post at Pinoy.tech.blog.