i’m really glad…

the computer industry has been a-twitter for the past few days, concerning a zero-day “bug” in micro$lop word, which gives an attacker full execution control of the victim’s machine — a Very Bad Thing®.

this reminds me of a couple of things that i experienced, more-or-less first-hand, while i was working at micro$lop, and is the PRIMARY REASON why i’m really glad i don’t run machines with their software on them.

there’s this, which outlines what the “bug” is, and how it allows an attacker to take control of a victim’s machine (i put the word “bug” in quotation marks because bugs are usually things that appear in the code by mistake, but it is my impression that micro$lop put this in deliberately, without realising the potential damage it could do)… which brings up the fact that they have known, particularly, about security problems with OLE (which went through a stage where they were referring to it as “ActiveX”), at least since my friend, and computer-god fred debuted The Exploder Control in 1995, which did a clean shut-down of any machine unfortunate enough to be running Windows95 — PLEASE NOTE: the Exploder Control is not harmful, and will not run correctly unless you’re running Windows95 and Internet Explorer version 3, which, by this time, presumably, you’re not. fred’s premise was, and still is, that if you have a method of excersising THAT MUCH control over a machine, it better well be FULLY AND COMPLETELY SECURE, otherwise people WILL take advantage of it.

i worked at micro$lop when the first Word Concept Virus was discovered. it was unique (at the time) because it allowed an attacker to infect a victim’s machine over email, without actually having to have physical contact with the target machine. it worked by utilising micro$lop word’s “normal.dot” template, and required the victim to have macros enabled by default. the new, most recent word problem doesn’t require macros to be enabled, and doesn’t work if the application is running in “Protected View”. so, the solution micro$lop has come up with is to recommend that you run word in “Protected View” in order to avoid this particular vulnerability.

it is significant, to me, that the primary reason we have things like active antivirus software on our computers today is because of actions taken by the micro$lop corporation when i worked there. when i was working there, they were the largest manufacturer of computer software in the world.

and it reminds me of the solution micro$lop came up with to avoid another “bug” in another one of their “excellent” programs, internet explorer: version 3 exhibited a flaw in the way that it displays URIs in the address bar, and by opening a specially crafted URI an attacker could open a page that appears to be from a different domain from the current location. the solution? “Do not click any hyperlinks that you do not trust. Type them into the address bar yourself“… despite the fact that one of the features of all web browsers is that you can get from one source of information to the next, easily, without having to type in long, unintelligible strings of code.

Rule of thumb — Every time Microsoft uses the word “smart,” be on the lookout for something dumb.
     — John Walker

A little detective work revealed that, as is usually the case when you encounter something shoddy in the vicinity of a computer, Microsoft incompetence and gratuitous incompatibility were to blame.
     — John Walker

grr…

i was going over some updates with the new web site designer. because of a couple of component updates, some of my templates were deprecated and needed to be updated. i figured i could probably update them, since all that was needed was for me to determine which templates needed to be updated, download the updates, FTP to the site and replace the old ones with the new ones. in the process of finding out which of the templates needed to be updated, i came across a random, and somewhat unexpected error with my SSL certificate. the web designer said the host provider needed to fix it. the host provider said that the web designer needed to fix it.

😡 ‽‽‽‽

it was getting really late last night, when the host provider said that the web designer needed to fix it, and he wasn’t going to be available until tomorrow. i told the geek at the host provider that it sounded to me like it was a problem that the host provider was supposed to fix, and the geek proceded to break it even more. i was blocked out of my own site, temporarily, and when i was able to log in again, instead of being able to log out, i was redirected to a page that told me i was temporarily blocked from access… regardless of which browser, or which platform i used, i was able to login successfully, but was unable to log out.

😡 ‽ 😡 ‽ 😡 ‽ 😡 ‽

today, i contacted the web site designer. i agreed to give him $150, and he agreed to fix my site, and update it with the right templates.

grr… 😕

sigh, i guess i’d better update this thing again…

not much has been happening, except for the world slowly blowing up because of the inanity of #drumpf.

i’ve finished one week of moisture festival performances, with the phil, and snake suspenderz actually has a rehearsal (our first one in more than a year), on wednesday, three days prior to us going on stage on saturday, for two more moisture festival shows. the moisture festival is over on sunday. i keep wondering why i do this, and i am still wondering why i do this, unlike my previous predicition.

there are a few more snake suspenderz gigs coming up, for a change…

apart from that, it’s pretty much rehearsal season.

i found a new dispensary, fairly close to my house — commencement bay cannabis — which appears to have high quality material for insanely low prices… like, for the price of an ounce in a number of other places i have been to, i can get TWO ounces at CBC. current fave is Cinex.

blast from the past…

Perceptual Motor Rhythm Skills - Teachers' Edition
Perceptual Motor Rhythm Skills – Teachers’ Edition

where do i start?

quite a number of years ago… maybe 35 or 40… i used to entertain myself by calling radio preachers and saying bizarre stuff. after a while, i started recording these conversations arguments, particularly with one specific radio preacher, Bob Larson, and playing them for my friends. i also sent a copy to a friendly person named Matt Jasper, who ran a little company called Tray Full Of Lab Mice Publications, who combined it with other sound sources and released his own tape, which was called “Tina Chopp vs. Bob Larson”… in spite of the fact that “Tina Chopp vs. Bob Larson” was only a small part of that tape, which included other people interacting with bob in a similarly strange way.

at some point, someone at Bananafish Magazine got hold of matt’s tape, and combined it with a bunch of other, nominally musical, sources, and, in 1992, released a 7" EP vinyl album, called “Perceptual Motor Rhythm Skills – Teachers’ Edition” which was released, as a pressing of 1,500, with issue #7.

and i FINALLY had to BUY my copy, a couple of weeks ago, from the River Street Beats Shop, because i didn’t even know the album existed until a couple of weeks ago… 😎

the enlightened rantings of a brain damaged freak