If you're new here, you may want to subscribe to our RSS newsfeed so you don't miss out on all the information, news, tips and tricks.
Thanks for visiting!

There appears to be limited / no stock of Vista Anytime Upgrades available in the UK. Even Microsoft has the same fulfillment problem and has responded to a customer inquiry with this email:

“We have to inform you that at present we do not have stock available for the ordered Upgrade Vista Home Premium to Ultimate. At present we are still awaiting the stock from our distributor and cannot provide an exact date when this will be received.

As soon as stock becomes available your credit card will be charged accordingly and your order reference xxxxxxx will be shipped by standard post. The delivery can in some cases take up to 28 calendar days.

Should you require the product urgently then you do have the option to cancel this order and check a retail shop of your choice in order to receive your Upgrade.

Please be further informed that the procedure for our Windows Anytime Upgrade has been changed in the way that the product key will no longer be accessible online. Now this will be sent directly with the installation CD.

This change has been made due to customer feedback.”

A very quick check online reveals zero stock availability at other suppliers. Having said that, we only checked a few, so there may be stock kicking around somewhere.

Looks like Microsoft has been caught out with their sales forecasting for this upgrade option or the changes they have made to the fulfillment process has created a temporary shortage. Someone at Microsoft needs to talk to someone at Microsoft about getting some licenses to the good folks at Microsoft!

Technorati Tags: Microsoft, Vista, Windows, Windows Anytime Upgrade

… and we’re going to enlighten you to what is going on in this blog post.

We’ve come across two instances over the last few week in Fife where BT Broadband personnel have failed to secure end customer equipment using their own recently updated and freely available advice and instructions.

What exactly is this newly discovered vulnerability that requires the advice to have been recently updated? Well, it isn’t the older discovery that WEP encryption can be cracked within a minute, a fact that has long since seen WEP being considered as NO security. It is the more recent discovery that sees the Home Hub being cracked with practically no effort due to its particularly bad WEP implementation.

As a slight side note, the Wikipedia entry for WEP makes an interesting statement:

Wired Equivalent Privacy (WEP) is a deprecated algorithm to secure IEEE 802.11 wireless networks.

For those who’re unaware of what "deprecated" means, we’ll draw upon another Wikipedia entry:

In computer software standards and documentation, the term deprecation is applied to software features that are superseded and should be avoided.

Since the Home Hub uses WEP security by default, and appears to be left in this state by BT Broadband employees, then there is going to be a large number of Home Hubs vulnerable to all manner of criminal activity. Following the logic through on this one,  BT Broadband leaves their product in a state that has been superceded and should be avoided.

At least someone at BT has noticed this security issue and has tried to deal with it:

Automatic wireless security

To help you get set up quickly and help prevent unauthorised users access your wireless network, your BT Home Hub automatically provides some wireless security via a WEP (Wired Equivalent Privacy) key. However, using new technology, it may be possible for hackers to break this key and connect to your Hub, possibly accessing your computer or using your broadband service.

You can increase this basic level of security, at no extra cost, by changing your Hub’s security from WEP to WPA (Wi-Fi Protected Access). We recommend that you consider doing this, even if you don’t connect to your Hub wirelessly.

It is a shame that their installers and support people don’t seem to know about this issue and a travesty that they haven’t been trained to leave customer’s broadband in a more secure state.

Let’s now look at the two scenarios that led to us question the training and skills of personnel in the BT Broadband installation and support operation. 

Scenario 1:
A long standing BT customer signs up for BT Broadband after using their dial-up service for many years. They asked for an "engineer" install, at an additional charge, believing this would be the best way to achieve a problem free broadband connection. The day of the activation comes around and a BT installer turns up to setup their broadband. The installer starts on the installation,  the customer leaves him alone to complete the work and job done, he leaves the customer’s home.

Later, they try to use the shiny new broadband for the first time, but all that was observed was the computer trying to connect to the dial-up service and errors being generated when attempts were made to download emails. At this point they gave up and called us in.

We arrive on scene and notice the following issues within a few minutes:

1. WEP encryption in use, against the best practice advice from BT themselves.

2. Computer has been left to use the Dial-Up service by default.

3. The email program had been left configured to use the Dial-up connection. 

4. The customer security software was out of date.

5. New email addresses assigned to this broadband account wasn’t setup.

It looks very much like the engineer has opened up the box, plugged in the ADSL filters, powered up the Home Hub, before finally connecting the customer laptop using the default WEP encryption key. It would appear that no attempt was made to connect to a webpage or to try to access email.

The fourth issue can be forgiven if the customer hasn’t signed up for one of the BT options that comes with BT security software as part of the deal. We didn’t ask so cannot comment further on this one. However, any good computer engineer would have noticed the lack of up to date security software and informed the customer that someone needs to take a look at it.

Needless to say, the issues were fixed and the customer was left fully satisfied with their new broadband connection.

Scenario 2:

Careless cleaner allows the ADSL lead to be sucked up into the vacuum cleaner, thereby breaking at least one of the signal cores in the cable. At this point, all that was required was a simple replacement of the damaged ADSL lead and the customer would have been fully operational again.

Instead, they phoned BT Broadband for advice and struggle for forty minutes to understand the broken English and broad accent of the Asian call centre support representative. After 40 minutes on the telephone, the customer has been told to turn off the Home Hub, reset it to defaults and finally to replace the damaged cable.

A trip to the local electrical retailer sees a new cable in place, but the broadband is still broken. Why is it still broken? Simple, we had previously secured their wireless network with a decent WPA-PSK pass phrase and now the computers were trying to connect to the router with the pass phrase they knew, but the router was using WEP and a completely different pass phrase! To use an appropriate analogy: a case of the computers talking English when the router is talking Hindi!

Another support call out for Roundtrip Solutions from the disgruntled Fife based BT customer. Within minutes we had logged into the Home Hub, went through some router initiated security configuration changes, before making the all important, and BT recommended, wireless security encryption changes to use WPA-PSK with the same pass phrase as used before. Everything sprung into life instantly without any further intervention.

The customer was delighted with our prompt service and completely pissed off dissatisfied with British Telecom, their support personnel and the fault resolution advice provided by BT, which did appear to be a bit back to front! They were even more frustrated when we told them all they had to do was to replace the damaged ADSL lead to get everything working again and all the resetting of routers had been completely unnecessary.

Again, we couldn’t believe the customer support person had left the customer’s router using the super insecure Home Hub version of WEP.

The Crux of IT

The BT Broadband advice available on their website clearly recommends setting up their Home Hub wireless router using WPA. Actually, that should be WPA-PSK if BT wish to be technically correct, but we’ll not be too pedantic in this blog post as more important issues are being dealt with.

In general, all users of a wireless network should ensure it uses WPA-PSK or WPA2-PSK with a strong pass phrase as a minimum level of security. Do not, we repeat, DO NOT use WEP - replace everything that only supports WEP.

If you are a Home Hub user then double check your configuration is secure.

If BT Broadband is doing an engineering installation then ensure BT’s own security advice is followed. Same applies for anyone that phones their call centre for support and has their Home Hub reset as part of the fault finding process.

We certainly wouldn’t recommend or condone the "repair" procedure used by this BT Home Hub user.

Technorati Tags: ADSL, broadband, BT, BT Broadband, Home Hub, router, WEP, wireless, wireless security, WPA, WPA-PSK, WPA2-PSK

For a while now, Apple Software Update will tell you the related update for a Quicktime only install is iTunes + Quicktime! No it isn’t, it is Quicktime that is installed and it is Quicktime that should be kept up to date. Not everyone wants to use iTunes!

However, we suppose it could be argued that a dependency exists that makes for a better computer set-up, so we’ll concede that one. But, now for the real gripe of this post and it is a peach and a half!

When did all Apple customers/users install Safari?

For those who don’t know, Safari is Apple’s Internet browser, in competition with Internet Explorer and Mozilla Firefox. Why is this update being offered to everyone running Apple Software Update? Proof below of how this works even on a system that hasn’t even looked at the Safari webpage, never mind going to the length of downloading and installing the browser. 

The slightly good news is you can ignore the update by going into:

Tools -> Ignore Selected Update

We’re betting it won’t ignore the fact that we don’t want Safari and we’ll be offered it again and again and again as they release new versions!

However, the irritation isn’t over yet! Now Apple Software Update is popping up with a message inferring it can’t take a telling. No means NO! What part of that don’t you understand Apple?

This behaviour is totally unacceptable and reminds us of the kind of misleading approach used by the nasty people that peddle malware. Our message to Apple is to STOP this immediately and redesign your update application to be honest and only offer updates where updates apply and make it explicitly clear when the software install being offered is an optional (read as unnecessary) extra that doesn’t really affect the Apple software running on your computer at the moment.

The majority of computer users will simply install this Safari update when it is offered, even although they may never use it or even understand what it does. Perhaps we’re now starting to see the real face and business practices of Apple! The marketing droids at Apple want to be able to say they have a higher marketshare through the number of installs of iTunes, Quicktime and Safari, even if it is done in a deception and misleading way. Naught, very naughty indeed!

Apple is now betraying its customers and users. Mac fanboys feel free to convince us otherwise and comment on how this kind of behaviour wouldn’t make them flame if it was being done by Microsoft.

Update: John Lilly, CEO of the Mozilla Foundation, has posted a similar complaint about this issue on his blog. He makes some interesting points that expand upon our blog post… we heartedly recommend it to you.

Technorati Tags: Apple, Apple Software Update, iTunes, Quicktime, Safari

Matt Mullenweg shows us the route ahead for Wordpress.

Interesting times lie ahead!

Technorati Tags: blogging, Matt Mullenweg, Wordpress

Netstumbler has always been a very useful tool for identifying wireless network problems, but alas the word on the street is forget running it on Windows Vista as it isn’t compatible. Yes, another application that won’t work with Windows Vista, but what do you expect? It was developed well before Windows Vista was even a glint in Wee Billy Gates’ eye!

One option is the following command prompt:

netsh wlan show networks mode=bssid

Which will output something like this:

Interface Name : Wireless Network Connection
There are 3 networks currently visible.

SSID 1 : wireless1
    Network type            : Infrastructure
    Authentication          : WPA2-Personal
    Encryption              : CCMP
    BSSID 1                 : 00:11:09:bf:af:a2
         Signal             : 99%
         Radio Type         : 802.11g
         Channel            : 6
         Basic Rates (Mbps) : 1 2 5.5 6 11 12 24
         Other Rates (Mbps) : 9 18 36 48 54

SSID 2 : wireless2
    Network type            : Infrastructure
    Authentication          : Open
    Encryption              : WEP
    BSSID 1                 : 00:14:6c:b1:ac:e8
         Signal             : 31%
         Radio Type         : 802.11g
         Channel            : 1
         Basic Rates (Mbps) : 1 2 5.5 11
         Other Rates (Mbps) : 6 9 12 18 22 24 36 48 54

SSID 3 : wireless3
    Network type            : Infrastructure
    Authentication          : WPA-Personal
    Encryption              : TKIP
    BSSID 1                 : 00:14:7c:b1:e5:da
         Signal             : 18%
         Radio Type         : 802.11g
         Channel            : 1
         Basic Rates (Mbps) : 1 2 5.5 11
         Other Rates (Mbps) : 6 9 12 18 22 24 36 48 54

However, there is a far more elegant solution thanks to the guys over at MetaGeek and it is called, "Inssider". It uses the Windows Native Wi-Fi API, which is a far more elegant solutions than some of the other NetStumbler replacement applications that are appearing.

Best of all, it works with most wireless cards straight out of the box, has a useful and pretty time lapse data graph that makes finding issues with Wi-Fi networks a good deal easier and is open source. However, it is a shame that they don’t have GPS integration to provide useful Wardriving data, which was one of the killer features of NetStumbler.

Figure 1: Inssider capturing wireless network traffic

It does require the installation of the .net 2.0 Framework, which isn’t a problem as most computers probably already have it installed or it is freely available to download from the Microsoft Download Center or through Windows Update for those that don’t already have it. Don’t forget to install .net 2.0 SP1 as well - you can find it here.

One of our key reasons for not moving to Windows Vista earlier was the failure of MetaGeek’s Wi-Spy device, or more particularly their software, to run on Microsoft’s shiny new baby. Thankfully, this has been resolved and the latest versions of Chanalyzer, both the v2 and v3 branches, now work quite happily with Windows Vista.

Figure 2: Chanalyzer screen capture

Note: Chanalyzer v3 doesn’t work with the original Wi-Spy device; you need to be using the newer Wi-Spy 2.4x.

MetaGeek has a new product coming along within the next few months that will add 5GHz (802.11a) spectrum scanning and analysis capabilities. Well worth hanging off on any purchase until that device is available. This is a killer Wi-Fi troubleshooting tool in the making!

As a general last thought, we’re slowly running out of reasons to gripe about Windows Vista! In fact, we’d go as far to say that XP is going to be a dim and distant memory for us very soon!

Technorati Tags: .net framework, 802.11a, Chanalyzer, Inssider, MetaGeek, Microsoft, Microsoft Download Center, Vista, Wardriving, Wi-Fi, Wi-Spy, Windows, Windows Update, wireless, XP

The Movie Playback Problem

Some versions of Windows Vista don’t come with an MPEG-2 decoder / addin for watching  movies, other MPEG-2 video sources and recorded TV. Vista Home Basic, Vista Business and Vista Enterprise customers are going to be a little upset when they try to play a DVD movie, watch certain TV channels or have a must see video clip and all they get is a message from Windows Media Player saying it can’t play the clip. Only Vista Home Premium and Vista Ultimate have support out the box!

However, there are a number of options available ranging from FREE to mega bucks. Let’s look at some of the common options.

MPEG-2 Playback Options

VLC Media Player
Free - yes, that’s correct, it costs £0. With versions available for many different platforms and operating systems. Simply install on the problem system and you’ll be able to use VLC Media Player to watch your movies and video clips. Unfortunately, it doesn’t have a DirectShow MPEG-2 Filter, so you can only watch MPEG-2 content using the player. 
 

"Microsoft Approved" DVD Decoders Plugins
A couple of plugins from Roxio and Cyberlink come with the blessing of Microsoft. Around about £10, these are an inexpensive option from a couple of the biggest companies in the 3rd party multimedia application marketplace.
 

NVIDIA PureVideo Decoder
Three different varieties ensure there is an option that suits both your wallet and your need.
 

3rd Party DVD Playback Software
Think PowerDVD and WinDVD, which most users of previous versions of Windows will be familiar with. 
 

Microsoft DVD Playback Pack
Recently announced, this option only looks to be available to Volume License customers. A word of warning straight from the mouth of Microsoft:

DVD Playback Pack for Windows Vista is designed to be used by IT professionals and should only be distributed as part of an operating system image.

Doesn’t sound like many people outside of corporate-land will be using this option!
 

Upgrade Windows
Order a Windows Vista Anytime Upgrade pack from Microsoft to allow you to  upgrade to one of the supported versions. Only worth pursuing if you require some of the other features and functions that are only available in a "higher" (more expensive) version  of Windows Vista.

Warning
You will need to run an upgrade set-up, which could result in the corruption or complete trashing of your current Windows Vista installation. Ensure you know what this involves and what options you need to select before performing this upgrade. And don’t forget to backup anything you can’t afford to lose before kicking off the upgrade.

Conclusions

For most people, we recommend going with VLC Media Player and consider donating some time or money to help support the project. Remember you need to watch the movie (clip) in the VLC Media Player application.

If you would like features that are only available in a higher version of Windows Vista then consider the Windows Vista Anytime Upgrade option.

Technorati Tags: Cyberlink, DVD, DVD decoder, DVD Playback Pack, Microsoft, MPEG-2, NVIDIA, PowerDVD, Roxio, Vista, VLC Media Player, Windows, Windows Vista Anytime Upgrade, WinDVD