How To Subscribe and Unsubscribe is at the end of this note. Mailing List Trouble? See http://langa.com/help.htm
Questions about the advertisers? See the end of this note. Please also see legal notices at the end of this note. LangaList: ISSN 1533-1156

Please recommend the LangaList to a friend! (And maybe win a prize!)

An easier-to read formatted HTML version of this newsletter is available
<a href=" http://langa.com/newsletters/2004/2004-12-09.htm ">here</a>

The LangaList
Standard Edition

2004-12-09

A Free Email Newsletter from Fred Langa
That Helps You Get More From Your Hardware, 
Software, and Time Online

Please visit our sponsors and help keep the LangaList S.E. free!

--- ( Your Clicks On Ad Links Help Keep The LangaList S.E. Free! ) ---

Reward Your Favorite Geek
With An Inexpensive Gift That Lasts A Full Year!

For just $12, you can give a gift subscription to the LangaList Plus!
It's ad-free, spam-proof, and contains even more
content--- tips, tricks, advice, downloads---
than the Standard Edition you're now reading.

They'll love you for it!

http://langa.com/plus.htm

(Good for geek-wannabes, too! <g>)

--------------( the above is an advertisement )--------------

1) Real-Life Multi-Layer Defense Example

Hi Fred-- As an intermediate computer user, I think LangaList Plus! is great!

My college-age daughter users her computer like her car--she almost never thinks about maintenance and repairs, and barely remembers to put gas in the car. Over Thanksgiving, she brought her Dell Inspiron 8500 laptop to Dad for some home repairs.

I installed Norton Anti-Virus, and ran a full scan--discovering about 40 infected files which I deleted. Next I installed Spybot 1.3, updated it, and ran a full screen, getting about a zillion spyware, malware files, all of which I deleted. Then I used Spybot and went through the start up items, unchecking those which I did not recognize or recognized as spyware, etc. Then I installed XP SP2 from the CD-rom.

Things are *much* better but she still gets a ton of pop-ups--many, many more than I do (also using XP SP2).

If I have eliminated viruses and spyware, where do these things come from??? I know she is pretty "promiscuous" website-wise, downloading "freeware" and games as the mood strikes her.

Is there any alternative to doing a complete reinstall of XP + SP2, reinstalling apps, etc., etc.?

I tried increasing the SP2 built-in Pop-Up blocker level to "highest," but found it really interfered with legitimate websites.

Do you or any of the readers have any experience with software pop-up blockers after installing SP2? Any recommendations?

Thanks, Fred. Regards, --Barry Kohler

You're certainly on the right track, Barry. As the column here ( http://www.informationweek.com/story/showArticle.jhtml?articleID=54800003 ) explains, no one tool can possibly protect against all forms of attack: A multilayer defense (like the one you're building for her) is the only way to go. You're already using many of the tools I recommend; the article above lists others that may also help.

The lingering popup problem should be able to be controlled one of two ways, assuming you truly have disinfected the PC. As a fast first step, I'd suggest you run the free "Shoot the Messenger" tool from Gibson Research ( http://www.grc.com/stm/shootthemessenger.htm ); this helps ensure that Windows Messenger service is disabled; and that Messenger-based popups can't get through. (Note: Don't be confused by the name. Windows Messenger is a system level network function different from the "MSN Messenger" chat toy.)

While you're at the GRC site, grab free copies of "UnPlug n' Pray" ( http://www.grc.com/unpnp/unpnp.htm ) and the "DCOMbobulator" ( http://www.grc.com/dcom/ ), both of which allow you easily to control other common potential security holes in Windows. Unlike manual Registry tweaks or laborious clicking through menus, these tools let you disable potentially-dangerous services when you don't need them (which is most of the time for most people) but easily re-enable them if or when you do need them.

You usually can control conventional popups via your browser's built-in popup blocker; although as Barry found, too-aggressive use of popup and script blockers will break many legitimate sites and interfere with normal browsing. In the current IE, for example, the built-in popup control is under Tools/Internet Options/Privacy. Zone Alarm Pro calls their tool an "Ad Blocker;" it's in ZAPro's control panel, under "Privacy." The free Google Tool Bar also has an effective popup blocker built in ( http://toolbar.google.com/ ); and there are many other popup blockers available too, so if one tool doesn't work for you, it's not hard to find an alternative (eg http://www.google.com/search?q=block+popup ). You may have to experiment with the settings until you find the right balance between protection and functionality. And (in general) try to use only one popup or script blocker at a time, so they won't step on each other's toes.

Again, a multi-layered defense is the key; using several different tools to help backstop and buttress each other, so that whatever one tool may miss, another one will catch.

Get the full story here: http://www.informationweek.com/story/showArticle.jhtml?articleID=54800003

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

2) Deeper Yet: Add/Remove Weirdness

I'm still getting good emails about the problems that can arise with the "Add/Remove Software" applet in Control Panel; including the appearance of huge holes or spaces in the menu listings. (See http://langa.com/newsletters/2004/2004-12-02.htm#2 and http://langa.com/newsletters/2004/2004-12-06.htm#4 and http://langa.com/newsletters/2004/2004-12-06.htm#5 ). The Add/Remove applet is a key part of Windows, so it's worth some discussion; but on the other hand, I don't want to beat it to death. So, for now, let's let this--- a discussion of deliberately hidden menu items, as opposed to erroneously hidden ones--- be the closing word on the topic for now:

It is fairly common for an installer to not show the removal option in the Add/Remove applet in XP. 

The solution for an individual app may be to go in to the registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\

and look for the application name, such as
IBM Rapid Restore Ultra

and a value listed as "SystemComponent"=dword:00000000

If the value is 1, it is hidden, but if it is 0, it is shown in the applet.

Most Windows installers are found in the hidden Windows/Installer folder.  To figure out which MSI is for which application, permitting uninstall or repair of installation, pass cursor over file and look at tool tip, or select file and look in status bar.

And:

Uninstall "Hidden" Windows Components
Apparently, Microsoft didn't want you to be able to remove some apps.   You can editing the SYSOC.INF file, which is located in the C:\WINDOWS [or your Windows XP directory]\INF folder. Open it with Notepad or another editor.

Under the [Components] heading, you'll see a whole bunch of parameters for various Windows applets. Some of them contain the word "hide." Those particular programs, which include Windows Messenger (msmsgs), Terminal Server, Pinball, and others, are installed on your XP system, but their entries are hidden from and Add/Remove dialog.

To remove Windows Messenger, edit hide out of the line that reads

msmsgs=msgrocm.dll,OcEntry,msmsgs.inf,hide,7

so that it looks like this:

msmsgs=msgrocm.dll,OcEntry,msmsgs.inf,7

Save the file, close it, and open the Add/Remove Program applet. Click on Windows Components button and you'll see Windows Messenger listed. Uncheck it and click Next to purge that silly program from your system.

Feel free to edit hide everywhere it appears in the SYSOC.INF file to reveal other removable Windows XP components.

---Jan M. Levine

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

3) Intelligent File Comparisons

Hi Fred, Thought your readers might be interested in a program that "intelligently" compares two documents and displays the differences. Our mainframe had a utility like this, so I searched for a similar one for PC's and found CSDIFF.  See http://www.componentsoftware.com/Products/CSDiff/  --Julie Breutzmann

Thanks, Julie!

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

4) StartUp Control (All Versions Of Windows)

Fred, I'm a long time subscriber to the Plus newsletter and enjoy reading each issue.
 
A while back a reader sent in a link to a program that would safely stop any unnecessary programs from loading at startup. I'm having a problem with a Microsoft Flight Simulator add-on that may be caused by a conflict with a startup program and would like to disable any unneeded startup programs to see if one of these may be the cause. I can access my config file but am reluctant to shut down programs without knowing what I may be affecting... any help would be much appreciated. 
Thanks, Dick Jenson

The simplest way to control what runs at startup is via MSconfig  (type it from the Run line). MSconfig  is built into all current versions of Windows except Win2K, but is available for Win2K at a number of free download locations, including these:
http://www.google.com/search?q=msconfig+2000+2k  There's a boatload of other startup-configuration and management tools, too, but why not start with the one that's probably already on your PC? <g> There's a good tutorial on MSconfig here: http://netsquirrel.com/msconfig/

MSconfig is pretty safe to use; if some change doesn't work out, you usually can undo it with a few clicks. But, as always, it's safest to make a backup before you do any serious twiddling in your system.

Once you're in your list, identifying the separate items can seem daunting, but there are many, resources to help you identify any mysterious-seeming items you encounter. For example, see this: http://www.3feetunder.com/krick/startup/  Or, just use the name of a mystery item as the search term on Google or Google/Groups, and you'll probably find more info on that item than you'll ever need. 8-)

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

5) Handy Tip For Holiday Trips (Or Anytime!)

Hello, I have just begun reading your email newsletter and have found the articles and tips very helpful.  I read your in-depth article on pen drives ( http://www.informationweek.com/story/showArticle.jhtml?articleID=22100588). You noted the usefulness of media card reader drives as a way to get double use from digital camera cards. I would like to add a tip for those who do not need a pen drive very often:

Many digital cameras can be used as the reader. If I have my camera attached to my computer, I can transfer data files to the SD card and then connect the camera to another computer and transfer the file over just as I would with pictures. I have even added a folder to the card for data files. My camera puts pictures in the main folder and ignores the other folder. I would not recommend this for everyday use as you need to carry the usb cord, but for occasional use, it works quite well. I don't know if this works with all cards or cameras. I would test it first to ensure that a data file does not interfere with the camera storing pictures (take a picture, then connect to PC, copy data file to digital card, take new picture, connect to PC and see if both pictures and data file can all be opened). I would also suggest that if your ISP offers free webpage/ftp space and you are not using it for a webpage, you can upload your camera's driver files so that you can access and download them if you need to offload your memory card from an older computer that does not automatically recognize your usb camera. I had this problem while using some internet cafes in Europe that did not have the most up-to-date operating systems. I wanted to remove all of my pictures and email them. The computer I used had a usb port but required the driver software. I was able to download it from my webspace and then use the camera. You may need to ask the cafe attendant to allow the download. Regards and Thank You, Judy Man

Thanks, Judy! Indeed, the file system in most camera memories is a totally vanilla version of FAT, like early DOS floppies. In theory, it can be used to store anything. (The memory card doesn't care; it's all just ones and zeros anyway.) But Judy's advice on testing first is good, so as not to risk valuable files or images.

As for using web space, I've done that myself; and/or emailed myself large files for safekeeping while on long trips. As the saying goes, "Where there's a will...."

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

6) Always Room for One More!

Do you know even one other person who might find this newsletter interesting or useful? Please click on over to http://langa.com/recommend.htm  to see just how easy it is to recommend that they take a look. You might even win a free ONE YEAR SUBSCRIPTION to the Plus edition for your trouble! 8-)

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

7) "Media Access Control" Spoofing

The article on "Getting At Your PC's Media Access Control ID Number" ( http://langa.com/newsletters/2004/2004-11-22.htm#2 ) brought this informative note:

You wrote: "MAC identification isn't a foolproof security method". You can say that again! Spoofing a MAC address is simple using readily available utility programs, and MAC spoofing is even a standard feature on many DSL/Cable routers.

http://www.klcconsulting.net/Change_MAC_w98.htm (Windows)
http://www.bsdatwork.com/2004/06/19/mac_spoofing_on_freebsd/ (FreeBSD)
http://kbserver.netgear.com/kb_web_files/n101227.asp (Routers)

-- Kevin Davidson

Thanks, Kevin. Using a MAC as the sole authentication for a network would be risky (and many wireless LANs are set up this way), but use of MAC addresses is still a generally good thing when it's done as one of several overlapping security techniques. See "Wireless Poachers, Wireless Guests" at http://www.informationweek.com/story/IWK20021031S0004 .

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

8) They Just Keep Coming And Coming...

Well over 3,500 of your fellow readers have "loaded the code." Have you? Check out http://langa.com/code.htm for the details.

Here's another eclectic sample of reader sites--- some professional, some very personal:

View A Randomly-Chosen Reader Site
http://langa.com/randomlink.htm

Manually Browse All Posted-to-Date Sites Starting At
http://langa.com/readersites.htm

Max Blumberg's Positioning Game
http://www.maxblumberg.com/

Computer generated jigsaw puzzles
http://www.jbradley2002.com/

computer management
http://www.pctorium.com/

pdq web design
http://www.pdqwebdesign.ca/lib/

rozdesignz
http://www.rozdesignz.com/

readers' shop
http://www.cafepress.com/readersshop/

Pat's Boating in Canada
http://boating.ncf.ca/

toplist informer
http://members.cox.net/toplist/

sellit2000
http://www.sellit2000.com/

danoblog
http://dano97058.blogspot.com/

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

9) Mysterious Recycle Bin Activity

Hi Fred! Having recently upgraded to the Plus! edition, my only complaint is not having enough spare time to read all that wonderful extra content! <g>

I wonder if you, or a reader, knows a registry fix for this problem: whenever I boot or reboot, my Recycle Bin empties itself. I suspect ZoneAlarm may be the culprit, since its System Tray icon flashes up very briefly on the Desktop a split second before the bin empties during the reboot phase (not the shutdown phase). I can't find anything either in the Registry or in ZoneAlarm's control panels, and several Google searches have failed to locate reports of anyone else having the same problem. I'm running XP Pro, and this problem has got me baffled and bothered. --Cliff Hutton

Zone Alarm Po's Privacy/Cache Cleaner is the only thing I can see that comes close, but that shouldn't affect the Recycle Bin. But: Right click the Recycle Bin, select Properties, and see what the settings are: If you have the Bin set to a low space allocation, and if ZA then dumps a lot of stuff into the Bin at boot time, I suppose the Bin could empty itself them to keep itself under the space limit you set.

There are other utilities that trigger a flushing of the Recycle Bin, too, including Windows' own Disk Cleanup tool. If you've set that (or a similar tool) to run at startup, that might be triggering the emptying. (To control Disk Cleanup's operation, see http://langa.com/newsletters/2002/2002-04-04.htm#6 )

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

10) Just For Grins

Last issue, we ran a piece about a visual hoax involving a doctored photo of a submarine control panel that was being passed off as a 1950's vision of the home PC of the future. ( http://langa.com/newsletters/2004/2004-12-06.htm#10 ) We also ran a link to the anti-hoax site, Snopes.Com, which thoroughly refuted the hoax.

Here's one step better: A LangaList read who worked at just that kind of control panel:

Fred, Just had to comment on the Just for Grins section of the December 06, 2004 edition of your newsletter.
 
The "huge bank of switches and levers and a large-diameter metal steering wheel of some kind" is actually the set of control panels from the maneuvering room of a nuclear submarine that was built in the 1960's. The specific panel in the photo is from USS James K Polk, SSBN 645, and is on display in the Smithsonian Institute Museum in Washington, DC. The Polk was a missile submarine virtually identical to one in which I operated the nuclear reactor in the early 1970's. My boat was USS Kamehameha, SSBN-642.
 
If you look carefully at the photo you will see that there are three separate panels: On the left is the steam plant control panel. The wheels operated large throttle valves which admitted steam to the propulsion turbines in the engine room. Opening the valves attached to the large wheel made the ship go forward. The small wheel is for reverse. The watchstander at this panel was called the throttleman. In the center is the reactor plant control panel from which systems directly related to the nuclear reactor (pumps, valves, control rods, pressurization system, nuclear instrumentation, etc.) were operated. This is where I spent most of my time. Finally, the panel on the right is the electric plant control panel from which the turbine generators, motor-generators, ship's battery, and diesel generator were controlled.
 
I find it amusing that someone would describe these panels as part of a computer because there is utterly nothing digital about them. Everything was 100% analog.
 
A long time Plus subscriber, Phil Steen

Thanks, Phil!

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

11) Plus! Edition Highlights:

• New Local Search Tool From Google
     (...and why Fred won't be using it)
• Updates Via Dialup = Frustration
     (possible workarounds to endless downloads)
• Tips From A Touch Screen Pro
     (known-good, professional ways to fix scratches, gouges, etc)

The Plus! edition is only pennies per issue, and comes with a money back guarantee from Fred. How can you lose? Check out the details: http://langa.com/plus.htm .

Click to email this item to a friend
http://langa.com/sendit2.htm

return to top of page

(Give a gift subscription to the LangaList Plus edition!
Click <a href= " http://langa.com/plus_gift.htm ">here</a>)

See you next issue, 2004-12-16!

Best,

Fred
( Editor@Langa.Com )

Please recommend the LangaList to a friend! (And maybe win a prize!)

An easier-to read formatted HTML version is available in the "Current Issue" section of http://langa.com.  (The HTML version of each issue normally is available by 9AM EST [UT-5] of the issue date.) All past LangaList issues are also available at the Langa.Com site.

return to top of page

Administrivia:

UNSUBSCRIBE (instant removal!): http://langa.com/leave_langalist.htm

SUBSCRIBE (it's free!): http://langa.com/join_langalist.htm

CHANGE ADDRESS? LIST TROUBLE? HAVE QUESTIONS? OTHER PROBLEM? NEED HELP? See http://langa.com/help.htm

This newsletter is SPAM PROOF and requires two levels of subscriber confirmation before delivery begins: See http://langa.com/info.htm

About the advertisers: http://langa.com/privacy.htm#ads

Disclaimer: http://langa.com/legal.htm  In brief: All information herein is offered as-is and without warranty of any kind. Neither Langa Consulting LLC, nor its employees nor contributors are responsible for any loss, injury, or damage, direct or consequential, resulting from your choosing to use any information presented here.

This newsletter is a service of Langa Consulting LLC and is Copyright © 2004 Fred Langa / Langa Consulting LLC. All worldwide rights reserved. LangaList: ISSN 1533-1156

return to top of page