Site problems
Some of you may have noticed that the site was down for a significant part of the weekend. My host had some issues with MySQL that didn’t get resolved until this morning. However things seem to be back in working order.
Next-gen console games
Because it often comes up in discussion, I’ve started creating a list of next-gen console games that will define each of the three consoles (Xbox 360, Playstation 3, Nintendo Revolution).
Please help me fill out the list. It’s not meant to be a complete list of games – but rather a list of exclusives, franchises, or games that will appear on one system significantly before the others (as previous GTA games did on the PS2, or Splinter Cell on the Xbox).
So far I already own an Xbox 360 and I’m extremely happy with it. However, depending on the launch line-up and price – I might also be buying a Playstation 3 and Revolution when they come out. Given the low cost expected from the Revolution, it’s almost a no-brainer. I love games like Smash Bros, Mario Kart, and most of the Zelda franchise. For me, the Playstation 3 has the least appealing game selection so far. Not that it’s bad – there are cetainly some titles that I think could turn out great (Heavenly Sword being one of them). But with an expected price of $500 or more, I’m not sure it’ll be enough to convince me to spend that much on another Playstation when my PS2 was easily the most neglected system I owned in the last generation.
So tell me what you think… Do you plan to purchase any next-gen consoles? Already have one? Or are you going to wait it out?
Here’s an awesome story from Rick Segal about an experience at an Orlando airport that left him with a free first-class upgrade. If you’re living the “digital lifestyle,” you’ll appreciate this.
Users of the Enterprise version of Windows Desktop Search can now download an updated version:
The KB article has been updated as well.
The new build can be installed over the previous Enterprise release. As before, this will not upgrade the MSN Toolbar + WDS consumer release. This is for users of the Enterprise version only.
The changes from build 2057 to build 2083 are:
-Fixed isolated cases where certain Outlook e-mail messages would not be indexed. The affected messages are quite random and the problem may impact some users significantly and others not at all.
-Fixed an issue where the WDS “Search Pane” in Windows XP/2003 would not scope to the current folder when the “Search” button is pressed inside an Explorer window.
-Fixed an issue related to web search queries not being encoded correctly for some East Asian language users.
Installing this update will cause the index to be rebuilt. If you haven’t been affected by these issues then upgrading is unnecessary.
WMF patch due out on the 10th
Here’s an update from the official Microsoft Security Advisory:
Microsoft has completed development of the security update for the vulnerability. The security update is now being localized and tested to ensure quality and application compatibility. Microsoft’s goal is to release the update on Tuesday, January 10, 2006, as part of its monthly release of security bulletins. This release is predicated on successful completion of quality testing.
I just read Jesper’s post about the recent WMF vulnerability found in Windows. If you haven’t heard about it, you can see the official Microsoft security advisory here.
Earlier today Scoble asked, “Where are the Microsoft bloggers?”and reports that Channel 9 users are asking why more bloggers at Microsoft aren’t talking about the issue.
So here I am doing my part. The original F-Secure bulletin mentioned that Google’s Desktop Search product could trigger this exploit when it indexes a file. That’s probably because Google Desktop, like countless other Windows applications, is using the standard Shell APIs to retrieve information about image files – which means loading the affected DLL and triggering the exploit. As a Windows Desktop Search user, you might be wondering if the same is true with WDS. To find out, we asked a member of my team to investigate whether indexing a malicious WMF file could cause infection. He used a virtual machine with WDS installed in a typical configuration and tested various use scenarios with an example WMF file containing malicious code. He reported the following results:
1. Putting the sample WMF file on the file system in an indexed location, the exploit was triggered.
2. Receiving the sample WMF file as an e-mail attachment in Outlook with indexing of attachments enabled, the exploit was not triggered.
You might be wondering how that could be, since the file was indexed in both cases. Well, if you ever watch TaskManager while WDS is indexing, you’ll notice one or more instances of a process called “WindowsSearchFilter.exe” – which loads the appropriate IFilter and retrieves metadata and contents from the file to be indexed. If you index Outlook attachments, you’ll also notice a process called “WindowsSearchSafeFilter.exe” which is a special filter daemon just for e-mail attachments. Before today, you might have wondered why we’d have this special case. However, given the results I mentioned above, I hope it begins to make sense.
In my personal opinion, this means that WDS has relatively little impact on the WMF vulnerability. Why would I say that, if indexing a WMF on the filesystem can cause infection? Well, for one, there’s significant action on the part of the user in downloading and saving that file. Second, simply browsing to the directory that contains the malicious file appears to cause infection as well (because of Explorer loading properties and thumbnails). In fact, if you have an infected WMF file on your hard drive, the damage has probably been done.
However, if you receive an e-mail with a malicious attachment – there is no user interaction at all. In fact, if it made it to your inbox, that attachment would probably be indexed long before you read the e-mail. Fortunately, it appears that our proactive decision to be extra careful when handling e-mail attachments has paid off.
If you want to prevent indexing of WMF files altogether, you can do so by right-clicking on the WDS tray icon, clicking “Desktop Search Options”, clicking the “Advanced” item on the left, and adding “.wmf” to the list of file extensions in the “Do not index these file types” box. However, as Jesper points out, a file can take advantage of this exploit without having a WMF extension. In fact, it could have a JPG or PNG extension but contain malicious WMF data and still trigger this exploit.
Still, since most people don’t care about WMF files, adding it to that list might be a worthy precaution. If you deploy WDS in a corporate environment, you can add WMF to the list of file types not to index via Group Policy.
However that is just my personal suggestion. For Microsoft’s suggested workarounds, including unregistering the affected DLL, check out the Microsoft advisory.
As usual, no warranties or other guarantees will be offered as to the quality of the opinions or anything else offered here.
Dave Barry’s year in review
Dave Barry’s 2005 year-in-review is now online.
It’s a great read, especially if you’re a Dave Barry fan as I am. The Xbox 360 even gets mentioned in the November paragraph:
. . NOVEMBER . . . Americans find themselves heatedly debating a difficult question: Is it truly in the nation’s best interests for its citizens to be fighting, and suffering heavy casualties, to achieve the elusive — some say, impossible — goal of buying a laptop computer marked down to $300 at Wal-Mart the day after Thanksgiving? For many Americans, the answer is a resounding “yes,” as they observe the official start of the Christmas shopping season at 5 a.m. on Nov. 25 with the traditional Trampling of the Elderly Slow-Moving Shoppers, while the mall p.a. system interrupts “O Come, All Ye Faithful” with urgent requests for paramedics. The season’s hottest gift is the Microsoft Xbox 360 gaming system, which is in big demand because (a) it’s really cool, and (b) Microsoft apparently made, like, three of them.
Also heating up in November is the debate over Iraq, with even Vice President Dick Cheney joining in, fueling rumors that he is still alive. President Bush makes a series of strong speeches, stating that while he “will not impugn the patriotism” of those who oppose his administration’s policies, they are “traitor scum.” This outrages congressional Democrats, who respond with a two-pronged strategy of ¹ demanding that the troops be brought home, and ² voting overwhelmingly against a resolution to bring the troops home.
What do you think of my blog layout?
I’m interested to hear what my readers think of the new layout and theme since moving to this site. Do you have any problems? Suggestions?
Post a comment and let me know.
Predict this.
Chris pokes fun at those of us who pretend to have a crystal ball.
Verizon phone with GSM?
Apparently Samsung is getting ready to release an updated version of the i730 Pocket PC Phone called the i830. What’s most interesting (aside from the rather high price tag) is that it will be a Verizon phone, but with both CDMA and GSM radios.
How is that useful? Well, if you want the best coverage in the US and high-speed data (which means Sprint or Verizon), but you also travel overseas where GSM prevails – you can now have the best of both worlds.
Sadly this phone runs the old Windows Mobile 2003SE operating system and not Windows Mobile 5. And they also had to rip-out the mostly useless WiFi radio from the i730 instead of fixing its problems (like not being able to receive calls while using the WiFi connection). So the phone itself isn’t going to win much praise from me. But the idea of supporting both CDMA and GSM standards is something I whole-heartedly support.
Now I have to wonder how long until this becomes standard on business phones/smartphones. I know a lot of people that love my Sprint PPC-6700 and cheap EVDO connection, but have reservations about buying a phone that won’t work in Europe. Maybe this is the solution?