Aja Lapus

Category: WWW

  • Spammers Willing to Negotiate?

    I’ve just received an irrelevant comment on one of my old blog entries, which was both suspicious and intriguing at the same time. It says [verbatim]:

    hello , my name is Richard and I know you get a lot of spammy comments ,
    I can help you with this problem . I know a lot of spammers and I will ask them not to post on your site. It will reduce the volume of spam by 30-50% .In return Id like to ask you to put a link to my site on the index page of your site. The link will be small and your visitors will hardly notice it , its just done for higher rankings in search engines. Contact me icq 454528835 or write me tedirectory(at)yahoo.com , i will give you my site url and you will give me yours if you are interested. thank you

    I marked it as spam and deleted it anyway. Sending email to these kinds of people would probably get me more spam, IMO. If ever they get a hold of my email address with the message they told me to send them, I would have just invited them to spam me more.

    I just wonder if this offer is for real. I usually abide by the unwritten rule that says, If it is too good to be true, it must be spam.[1] But, I also think they have an eye for my Google PageRank. Even if I’d like less spam, I really don’t want to trust they’d fulfill their side of the agreement.[2] That makes it too good to be true, as well. So, I decided …

    … I still won’t give them anything. Would you?

    Footnote:

    1. ^ Ok, so I guess it is now written. Heh.
    2. ^ Besides, I have my trusty Akismet and Bad Behavior.

  • Prevent Autorun-driven Virus Infections

    USB flash drives and portable hard disk drives are commonplace today as PCs and digital media are conquering the market. But, while ease of use and portability of the UFD and HDD [as well as their digital content] increases, the spread of malware[1] on them also increases. There are several ways to prevent this from happening,[2] with or without the help of an AV product.

    Case 1: Clean PC+AV, Infected UFD/HDD; Automatic

    This is the easiest, though not necessarily the best solution[3] to detect and clean autorun-driven malware.

    1. Update the anti-virus product on your computer before plugging in the portable drive.
    2. Do not open your drive contents after plugging.
    3. Scan your portable drive for malware immediately.
    4. Clean all infections found by your anti-virus.

    Case 2: Clean PC, Infected UFD/HDD; Manual

    In some cases, an anti-virus product or an update is not available, or the anti-virus product is just not strong or smart enough.[4] We could do a manual search and destroy for the malware.

    1. Plug on the drive to your computer.
    2. Use the Folders Explorer Bar[5] to open the drive contents on Windows Explorer, instead of double-clicking the drive icon on the main window; or
    3. Right-click on the drive icon on the main window, and select Explore or Open, and not Autoplay or Autorun
    4. Look for the file named autorun.inf.
    5. Open the file using Notepad or the text editor of your choice.
    6. Take note of the line that says, open=<path\filename.ext>, where <path\filename.ext> is the location of the malware itself.
    7. Locate the malware and delete it along with the autorun.inf file.

    Case 3: Infected PC

    You would know if your PC is already infected when it copies the malware and the autorun files to your portable drives automatically. If your AV software couldn’t handle cleaning your system from it, or if you have none, consider browsing the Web for manual detection and cleaning procedures as different variants and, therefore, locations of them would be hard to summarize in this post. Try Trend Micro‘s Virus Encyclopedia.

    Case 4: Clean PC and UFD/HDD; Prevention

    Here’s the nifty part, this is based on a hack from a friend who works on an anti-virus company.

    1. Create a folder on the root of your portable drive.
    2. Rename it as autorun.inf.
    3. Right-click on the folder, and click Properties. Alternatively, select the folder, then go to the File menu, and select Properties. KB shortcut: [Alt]+F, R
    4. Under the General tab, on the Attributes section, check Read-only and Hidden. KB shortcuts: [Alt]+R, and [Alt]+H, respectively

    The above instructions would prevent other infected computers from copying an autorun directive to your portable drive. It doesn’t necessarily mean an instance of the malware itself would be prevented from being copied as well. It just protects you from your own muscle memory of instantly double-clicking the drive icon to open the contents, but instead, running the malware to be installed on your clean PC.

    Footnotes:

    1. ^ malicious software; collective term for viruses, worms, trojan horses, spyware, et al.
    2. ^ Cases assume you’re on the virus-prone Microsoft Windows platform.
    3. ^ Your AV would probably delete only the instances of the malware and not the autorun.inf file for it is intended as a convenience feature for legitimate software manufacturers. You could safely delete the autorun file manually.
    4. ^ This pertains to my experience with a fully-updated AVG Anti-Virus Free Edition on my classmate’s notebook, which was not able to detect a simple autorun-driven malware.
    5. ^ If not visible by default, go to View on the menu bar, locate Explorer Bar, and then check Folders. KB shortcut: [Alt]+V, E, O

  • UST Web Site Redesign

    I was trying to check the University calendar on the UST Web site for the preliminary examinations schedule when I noticed the redesign and restructure planned for it has already been implemented. Excitedly, I saw some of the things I’ve dreamt of doing for it[1] accomplished on the reboot.[2]

    These include:

    • Porting the site from ASP to PHP; and,
    • Complying with the XHTML 1.0 and the CSS 2 recommendations.

    A very clean design added to its beauty and usability. And, scripting features that makes the layout fluid or fixed, as well as changing the font size according to the users’ preferences, made it more accessible. Two very good steps to have been taken, IMO.

    I remember checking it a day after the said reboot, the news roller was a bit misaligned in Mozilla Firefox, Opera and Safari,[3] but was rendered as desired in Internet Explorer 7. Now, four days later, after browsing it again to continue writing this post, I see they’ve already fixed the alignment problem for the major browsers with the exception of Safari/Win—now I have nothing to rant about the site being made with only IE anymore. Heh.

    The new design also features compliance badges from W3C, which results to only a single markup error that is, IMO, fairly forgivable for an elaborate design and a complex site structure. That error may even be caused by the CMS[4] itself for one of its modules automatically placing a <link /> to a style sheet wherever it was inserted.

    I haven’t seen much improvement in a single reboot for the site as far as I could remember.[5] The move to open source software, Web standards compliance, and accessibility with usability is, IMO, the best direction any Web site could have taken. Kudos to the Webmasters of the new UST Web site!

    Footnotes:

    1. ^ when I volunteered to be a TomasinoWeb member
    2. ^ another term for redesign; from CSS Reboot
    3. ^ all on the Windows platform
    4. ^ namely, Joomla!
    5. ^ with three designs, as of now

  • Hindering Standards Advancement

    IMO, there are two ways to hinder the advancement of Web standards:

    1. To continue legacy practices, holding back on new, better ones; and
    2. To keep inconsistencies between Web developers and designers, and user agent, tool and software developers.

    Legacy Practices

    I still haven’t studied much about the endianness of character encodings, but it sure is one thing I’ve seen that exhibits a legacy practice recommended by W3C. I’ve been placing a Unicode Byte-Order Mark before the output of my WordPress themes since my text editor featured its control on UTF-8 encoded files. After subjecting it to the W3C Markup Validation Service, I encountered a warning that says:

    The Unicode Byte-Order Mark (BOM) in UTF-8 encoded files is known to cause problems for some text editors and older browsers. You may want to consider avoiding its use until it is better supported.

    I’ve actually tried placing the BOM because Google Webmaster Tools report my site to have been encoded in ASCII even though I have set the HTTP Headers to respond, and <meta/> elements to indicate otherwise. After doing so, Google Webmaster Tools reported about 50% of my site is on UTF-8 that I concluded it reads pages’ encodings using the BOM.

    The first time I’ve read that warning, an insight immediately struck me regarding legacy systems and practices. So, I just want to ask: Why are they enforcing legacy practices to be continued by Web designers and developers instead of enforcing new and current standards to be implemented by user agent, tool and software developers?

    Incomplete Implementation

    I’ve written much of the above article about a week ago, but it just came short of publication. I thought my so-called insight is very limited with regards to the current issues between Web and software development that I decided to postpone publication. It still would be on draft status if not for Molly Holzschlag saying just recently, HTML5 and XHTML 1.1+ MUST Stop for Now. I was puzzled why one of the most famous standardistas I look up to said that. The title would seem to mean she has just begun to dislike the improvements to Web standards. But after reading the whole article, I totally agreed. BTW, she meant:

    1. COMPLETE HTML 4.1 [sic], XHTML 1.0 and CSS 2.1 in specs and browsers where applicable
    2. CALL for consistent implementation of these most basic specifications in all current browsers and devices to this point
    3. WAIT for future HTML, XHTML and CSS implementations until these implementations are complete
    4. FOCUS on JavaScript and DOM fixes and implementations as we come up to par with markup and style

    The only way new Web standards would be supported is to implement completely the current and existing ones. This would also make legacy practices be needed no more. Molly didn’t say that the progression of Web standards should be stopped forever, but the terms for now should be emphasized as long as incomplete implementations exist—and she’s talking about no specific user agent as even Mozilla, Opera and Safari have no perfect support, just better ones. So … I question no more.

  • Safari 3 Beta for Windows

    Last time when I was reviewing new releases of Windows Web browsers, I was hoping I could get my hands on a Mac—or at least the money to buy one—so I could review Safari as well. But, I don’t think I would be drooling for it any sooner. I was browsing my Live Bookmarks when I saw a post from WaSP announcing the release of Safari 3 Public Beta for Mac and Windows. Yes, you heard it right … Safari’s new public beta is made for Windows as well!

    I don’t think I’d be switching from Mozilla Firefox, though, especially now that Firefox 3 is nearing its release. Besides, common shortcuts I use with Firefox don’t work with Safari such as tab switching [Ctrl+Tab], open new tab [Double-click on Tab Bar], and maybe many more[1] that it has to have some getting used to. But, as a Web developer, it sure is very convenient to have four major browsers—Mozilla Firefox, Opera, Apple Safari, and Windows Internet Explorer—on a single box for cross-browser testing.

    Contrary to what Yuga said, I think Safari is fast. It loaded my home page’s Extended Live Archives and some other DOM scripts lag-free. But, the startup isn’t as fast as Opera’s still.

    So if you will, you could download Safari 3 Public Beta from Apple.

    1. ^ I’ve only been using it for just about 30 minutes.