Blackmoor Vituperative

I have believed for a long while now that passwords need to go away. Further support for that position is provided by a PC Pro article called How a cheap graphics card could crack your password in under a second:

Now, I cannot imagine anyone managing to mandate a nine-character, mixed-case, random-character password on an organisation. But if you did, and you weren’t hanging from a tree by the end of the first working day, the CPU would take 43 years versus 48 days for the GPU.

He then went on to add in mixed symbols to create “F6&B is” (there is a space in there). CPU will take 75 days, GPU will take 7 hours.

What does this tell us? well, the stark reality is that even long and complex passwords are now toast. If you think you were being wise by forcing users to have randomisation in their passwords, then think again. It is utterly futile.

[…]

A GPU of the type used by this chap is not unusual or high end. It is standard-issue stuff. Indeed, I have just sat through the AMD presentation here at Computex in Taiwan, and they made a big deal about putting GPU power into netbooks offering 500Gflops, without denting its 12-hour battery life. And that’s shipping within months.

All I can say is this: you have been warned. It is time to think long and hard about password security, and how you do your authentication. This has crept up on us in the background, and we really haven’t been paying attention.

Some of us have been paying attention.

In response to pressure from the U.S. Department of Justice and Germany’s Federal Cartel Office (Das Bundeskartellamt), Microsoft and its CPTN Holding Partners — Apple, EMC, and Oracle — have revised their agreements so that the Novell patents will be under both GPLv2 and Open Innovation Network protection.

So what does it all mean? Andrew “Andy” Updegrove, founding partner of Gesmer Updegrove, a top technology law firm, said, “This is a rather breath-taking announcement from a number of perspectives. Among others, the granularity of the restrictions imposed demonstrates a level of understanding of open source software in general, and Linux in particular, that has not been demonstrated by regulators in the past. It also demonstrates a very different attitude on the part of both the U.S. and German regulators, on the one hand, and Microsoft, on the other, from what we saw the last time that Microsoft was under the microscope. In the past, Microsoft was more disposed to fight than negotiate, and the U.S. and the European Commission were far apart in their attitudes. This announcement conclusively places open-source software on the U.S. regulatory map.”

(from Microsoft gets Novell’s Patents rights but must share them with Open-Source Software, ZDNet)

I think this is a really interesting development. Interesting in the sense that it’s not antagonistic to consumers and developers, and that it’s not what I predicted, or even guessed might happen.

In a statement issued on Friday, Oracle announced that it intends to discontinue commercial development of the OpenOffice.org (OOo) office suite. The move comes several months after key members of the OOo community and a number of major corporate contributors forked OOo to create a vendor-neutral alternative.

OOo is one of many open source software projects that Oracle obtained in its acquisition of Sun. OOo has long been plagued by governance issues and friction between its corporate stakeholders. Sun’s copyright assignment policies and bureaucratic code review process significantly hindered community participation in the project. Oracle declined to address these issues after its acquisition of Sun and exacerbated the friction by failing to engage with the OOo community in a transparent and open way.

A group of prominent OOo contributors eventually decided to fork the project, creating an alternative called LibreOffice. They founded a nonprofit organization called The Document Foundation (TDF) in order to create a truly vendor-neutral governance body for the software. LibreOffice is based on the OOo source code, but it also incorporates a large number of other improvements driven by its own developer community. […]

The community defections eventually made OOo financially untenable for Oracle, which is why the company has finally thrown in the towel. Oracle says that it is ready to hand over control of the project to the community, but doing so at this point would be little more than a symbolic gesture; the community has already moved on of its own accord. […]

The LibreOffice escape from Oracle is a powerful demonstration of how open source forking can be used to protect community autonomy and lock out exploitative stakeholders.

(from Oracle gives up on OpenOffice after community forks the project, ArsTechnica)

You might be tempted to applaud. You shouldn’t. We would all be better off if Oracle had participated in the OpenOffice project in a transparent and open way. Users would be better off, because Oracle brings a lot to the table, and Oracle would be better off, because they would have a foundation for their commercial Cloud Office project (which appears to have been terminated along with their participation in OpenOffice). So, we all lose here, in the short term.

However, in the long term, the project continues, under better conditions that Oracle permitted, and we all benefit from that. It’s just a shame that Oracle was so short-sighted.

Hexographer and Dungeonographer received major updates a week or two ago. If you’ve used either tool since then, you’ve probably noticed the changes.

Both tools received layout changes which reduced the number of menu items by placing buttons for many of those features in panels dedicated to those features. For example, the ability to add custom map items is now a button on the map items tab/toolbox.

There were a great many other changes, as well. You can read more about it at the Inkwell Ideas web site.

If you want a great deal on a 10″ tablet that beats the socks off of, well, anything else under $800 or more, head over to Woot. Today they have the Viewsonic G for $280, which is a great deal. It’s currently $370 on Amazon.

I have one of these and I love it. Buy it, go to xda-developers.com and install the TnTLite or Vegan ROM, and you are good to go. Working Google Market, Flash, wifi internet, the whole shebang.

Yes, you need to be a little bit of a techie to flash the ROM, but it’s not rocket science. If you can copy a file to a mini SD card, you can do it.

I have heard some people complain about “viewing angle”. I don’t know what they are talking about. The screen is gorgeous. I have no trouble seeing it. Personally, I think that’s “user error”. (Hint: the screen is the side with the shiny glass.)

And no, it does not dual boot anything: it runs Android. Awesome, awesome Android.

This is a great deal. I am tempted to buy a second one.

There are a lot of people asking about this, and a great many sites which tell you how to set it up. They all entail copying DLL files and registering them, etc. Sadly, these methods do not work on 64-bit Windows Vista/Windows 7 or Windows 8. Here is what works:

• FastPictureViewer Codec Pack

It costs money ($10, as of this moment, but it’s usually $15).

The last few panels have been really interesting. One was “Costuming on a budget”, which was fun and interesting. The other was not really a panel, but rather a Q&A with the guest of honor, Brinke Stevens. She was really interesting. She had a perspective on the changes in the film industry wrought by technology in the past several decades, and some insightful observations about how the business of selling movies has shifted in response to changes in technology. That was an unexpectedly interesting discussion, and I rather wish I had recorded it. Then she went on to talk about her current work, books she is writing, her interest in the environment (she has a masters in marine biology, was on track to study dolphin communication as she was working on her doctorate before she got into films). The whole science-environment part of her talk was fascinating.

I am really glad that we got to meet her: she is genuinely interesting. I bought one of her DVDs in the dealer room, Dead Clowns. She autographed it for me. 🙂

Avast has come out with a new version of their antivirus and security software. I use Avast antivirus, and I recommend it to everyone. CNet has a review.

I am not a terribly interesting person. At best I am “a character”, but I haven’t actually done much worth talking about. However, I have the good fortune to know some genuinely interesting people. For example, Tee Morris.

I know Tee through RavenCon, a science fiction convention in Virginia which he and I had a part in founding in 2006 (my part in that being a bit smaller than his). He is also the author of a number of books, the most well-known of which is probably MOREVI. He also happens to be one of the authors of Podcasting for Dummies. In this case, I am the eponymous dummy.

Here’s the deal: I wanted to record our Friday night superhero game, because I think it’s going really well. I tried using a PC microphone I have had rattling around in a drawer since 1995. The results were not satisfactory. I went to H. H. Gregg and Best Buy and looked for an omnidirectional microphone, but they didn’t have them. I searched online for “omnidirectional microphone”, and all I really found was a Blue Snowball. Was this microphone good? Bad? Indifferent? Hell if I knew. So I called Tee and asked for advice, and now I am passing that advice on to you.

First off, he said the best choice for microphones for what I was doing is the Rode Podcaster. The Rode Podcaster is $230, though, which is way more than I wanted to spend.

A decent second choice, according to Tee, is the Samson CO1U. It’s $100, which, while more than I would like to spend, is not out of the question. So that was a strong contender.

However, Tee asked if I ever planned on recording on the go — recording a panel at a convention (MystiCon, for example, where I am appearing as a guest). It really hadn’t occurred to me, but you know, that might actually be pretty cool. His suggestion, in that case, was the Zoom H2 portable stereo recorder. Tee himself has the Zoom H4, which he loves, but he said that the H2 was much easier to use, that it has great sound fidelity, and that it also doubles as a USB microphone.

I read up on all three of Tee’s suggestions, reading reviews online on various web sites. I dithered a bit, but eventually went with the Zoom H2. It should arrive in a couple of days, and I plan to take it with me to MystiCon.

Thanks, Tee! I hope I haven’t grievously misrepresented you.

I am putting this here in case someone else has the same problem. The network adapter in my laptop kept disconnecting (not all the time — once a day, generally). I could not figure out why. These links helped me solve the problem.

• Network stops working @ Windows 7
• Windows 7 x64 Network Adapter Stops working on high load
• Enable/Disable TCP Task Offloading to NIC in Windows | Windows Reference
• IT – Hint: How to disable Windows Scalable Networking Pack Components

I hope this helps someone.