greg hughes - dot net

Despite the fact that it’s right there in front of my face every time I walk out the door, I’ve started to forget that St Helens is still quite active and spewing steam. A fresh series of four earthquakes (magnitude 2.5 to 3) in the past couple of days and more steam vents prove it. In fact, the mountain is adding new material to the dome growing in the crater at a pretty amazing rate – the equivalent of one dump truck load of new material every second.

This picture was taken this morning from my front porch:

If you’re too young or just plain don’t remember, St. Helens used to be kind of pointy and tall (click the image below for historical photos from before and during the 1980 eruption event:

Scientists say that at this rate, in just 11 years the mountain could be back to the about the same size it was before it completely blew its top back in 1980. There’s no guarantee of that, and lots of variables are involved, of course. However, it’s pretty amazing to note that in just the last couple of months, the new lava dome in the crater has grown one third the size of the dome that took six years to form after the 1980 eruption. Here’s a picture of the growth of the new dome as of November 12, 2004, with a football field graphical overlay for scale purposes:

The mountain remains under what they call a Level Two volcano advisory, meaning the Johnston Ridge visitor center – the one closest to the crater - is still closed, but the Coldwater Creek visitor center is open. For those who cannot visit, the Volcano Cam offers a great view into the crater 24/7.

I have had a lot of inquiries from people who know me (and some who don’t) about how close I live to the mountain. I guess people think we’re all gonna die. We’re not. My house is something like 50 or so miles away as the crow flies, so no worries there.

The latest info can always be found at the Pacific Northwest Seismograph Network web site and the USGS Cascade Range web site. KATU News in Portland did a good update, and you can read it on their web site and watch the streaming video of their news report.

By the way – St. Helens is not the only volcano in the area, it’s just the one that’s acting up right now. All the other volcanoes in the Cascade Range are all at normal levels of background seismicity. They include:

• Mount Baker, in Washington
• Glacier Peak, in Washington
• Mount Rainier, in Washington
• Mount Adams, in Washington
• Mount Hood, in Oregon
• Mount Jefferson, in Oregon
• Three Sisters, in Oregon
• Newberry, in Oregon
• Crater Lake, in Oregon
• Medicine Lake, in northern California
• Mount Shasta, in northern California
• Lassen Peak in northern California

For someone like me, who uses SharePoint Portal Server and is starting to appreciate the usefulness of the MSN Desktop Search, this was an awesome find:

Mark Bower: Searching SPS using MSN Desktop Search

Mark explains how to add a shortcut to the MSN Desktop Search “deskband.” In less than a minute, you’ll have quick search shortcuts set up that allow you to enter a shortcut keyword and your search term (for example, type “sps documentation” into desktop search and a window will be opened with the search results on the portal server).

UPDATE: A site all about shortcuts for the deskbar (http://www.deskbarshortcuts.com/) has popped up – very cool! (via Scobleizer)

Scott Hanselman has been working on some very cool updates to a private build of the current version of dasBlog (the blog software this site runs on), and last night he and I stayed up late plugging his new build into my weblog site and his. We did some tuning and troubleshooting (he tuned, and I took direction and troubleshooted/shot/sha– eh, whatever…), and got to where things are looking pretty darn nice.

The net effect of the changes is significantly improved performance and some new functionality for site owners.

It’s faster. Big time. Between the dasBlog changes and cleaning a few things up in my blog template, the site is loading well over ten times faster than it was 24 hours ago. Wow. Scott’s blog is also running on the new bits, and its much faster, too.

Before anyone asks, it’s a private build, and it’s not mine to give away. Scott said that “if its righteous,” Omar will take a look at it for possible inclusion into dasBlog v1.7.

I won’t pretend to understand the guts of it (that’s Excellent Programmer Scott’s job), but here are a few of the new things he’s implemented (in my words, not his, so forgive me if it’s in not-too-programmerish terms):

• Speed Improvements: Site content that used to be cached on the file system in blogdata.xml, categoryCache.xml, and entryCache.xml are now stored and manipulated in memory, which means no more of the thrash-and-wait disk IO associated with those files, and therefore a faster application requiring less overhead. Category pages are incredibly fast now. My RSS loads faster in the reader. Speed, speed speed…
• New Config Setting: Blocks unwanted referrers by keyword, and logs the action taken along with the matching keyword. Does not count as a referral or visit in stats.
• New Config Setting: Send an HTTP 404 response (page not found) to blocked referrerals.
• New Config Setting: Enable Captcha for comments. Captcha is the tool that creates an image with numbers and letters that you have to type into a form field when submitting comments on the site. It’s purpose is to prevent comment spamming, and it is now integrated directly into dasBlog.
• New Configuration File: Block access to the weblog application by IP address by adding them to blockedips.cfg.
• HTTP Compression Changes: Makes larger pages transfer and load faster.
• New activity logging features: Logging of dasBlog application activity is enhanced with things like source IP addresses for referrals (in case you want to block it or look it up), keywords used on referral filtering, refused referrals, and I am sure a bunch of others.

It’s all so super fast, slick and nifty, but then again that’s exactly what I’d expect from Scott. He’s wicked smart and more than just a little driven.

It’s such a bonus to have friends around that you can learn so much from and who can make such cool things work. Thanks as always to Scott, and woo-hoo for dasBlog!

Santa’s having a rough year. Go go JibJab. Niiice.

Be sure to click on the link to send toys to kids in Iraq. It’s time to give a little.

Update: By way of Sean Alexander, It’s a Wonderful Life, in 30 seconds, performed by bunnies. Uh, yeah. Enjoy.

Near and dear to my heart (professionally speaking), the latest increasing numbers related to the number of fraudulent phishing sites (sites that look like a bank or other business, but which are actually set up by bad people who are wanting to steal your personal and private information) are worth taking notice of:

“The number of phishing sites, or fake Web sites set up to fool victims into handing over personal information, reached 1,518 last month, the Anti-Phishing Working Group said in a report released on Wednesday. The total was up almost a third over October and three times the level in September.”

That’s an increase of 29% over the previous month. It’s also – in my opinion – an understatement of the real number, since it deals only with reported phishing sites. But it pays to be conservative with numbers, I suppose.

“A total of 51 brands were hijacked by cybercriminals during the month, the group found. Financial services was again the most targeted industry, averaging 75 percent of all hijacked brands. ISPs faced a fair share of scams, accounting for 16 percent, according to the report.”

The Anti-Phishing Working Group publishes the monthly stats. You can find them here.

Also close to me professionally is the fact that recently the company I work for banded together with and a few other organizations to form the Anti-Fraud Alliance - a team of companies with existing, powerful software and services that can be used together or individually to combat fraud online, including phishing.

Note: My employer, Corillian Corporation, is a member of the Anti-Fraud Alliance. I mention them here simply because I wanted to and because I believe its relevant. No compensation involved, and opinions expressed here are my own, not those of my employer.

Apparently some are of the opinion this is not a security vulnerability, according to Microsoft’s comments to ZDNet reporters, but in the real world – it’s a hole. A Mack-Truck-sized security hole. The news story reads a bit like one team saying “Hey, we’re not in charge of that, so it’s not a problem” and the other one saying “We do things the way we do them, and that’s what we do.” Oof.

Anyhow… If you run Windows XP with SP2 you need to make sure you have this update.

http://support.microsoft.com/default.aspx?scid=kb;en-us;886185

SYMPTOMS
After you set up Microsoft Windows Firewall in Microsoft Windows XP Service Pack 2 (SP2), you may discover that your computer can be accessed by anyone on the Internet when you use a dial-up connection to connect to the Internet.

CAUSE
This problem occurs because of the way that Windows Firewall interprets local subnets when the “My network (subnet) only” option is used. Windows Firewall is included with Windows XP SP2.

Because of the way that some dialing software configures routing tables, Windows Firewall in Windows XP SP2 can sometimes interpret the whole Internet to be a local subnet. This can let anyone on the Internet access the Windows Firewall exceptions. When the "My network (subnet) only" option is enabled, it is automatically selected for file and print sharing. Therefore, your shared drives can be unexpectedly revealed on the Internet when you use a dial-up connection.

RESOLUTION
To resolve this problem, you must download and install the Critical Update for Windows XP (KB886185).

Use Windows Update or click the above link. If you’re not already set up for automatic updates, make that change now.

Are you a Microsoft OneNote user? I am – big time. If you’re getting started with OneNote and are interested in learning some of the basics about how to use OneNote to be productive and organized, you might want to check out this webcast, scheduled for December 21st:

Microsoft Office System Webcast: OneNote Tips and Tricks (Level 100)
Tuesday, December 21, 2004
9:00–10:00 A.M. Pacific Time, United States and Canada (UTC-8)
Join this webcast and learn how to flag notes, manage pages and sections, and use stationery and outlines in e-mail and other Office applications.

If you’re someone who needs or wants to learn more about InfoPath (an addition to the Office suite in the 2003 version) and building some really cool XML forms, you’re in luck.

“Create dynamic interactive forms in an advanced XML forms editor that feature strong validation with built-in business rules and use them to collect, re-purpose, and present data throughout the organization. Use existing data schemas, Web services, and XML data to create solutions without complex data mapping. Use point-and-click integration with back-end systems and take advantage of "silent" deployments and version upgrades via simple centralized management.”

A series of recent webcasts, Understanding InfoPath, is available now for on-demand viewing. Titles include:

Best Practices for Designing InfoPath Forms
Level 200 - Tuesday, October 5, 2004 - 9:00 AM to 10:30 AM
Presented by Scott Roberts, Software Design Engineer, Microsoft Corporation

User Roles in InfoPath 2003
Level 200 - Tuesday, October 12, 2004 - 9:00 AM to 10:30 AM
Presented by Josh Bertsch, Software Test Engineer, Microsoft Corporation

Building Advanced Dynamic Solutions in InfoPath 2003
Level 200 - Tuesday, October 19, 2004 - 9:00 AM to 10:30 AM
Jun Jin, Software Design Engineer, Microsoft Corporation

Business Logic in InfoPath 2003
Level 300 - Tuesday, October 26, 2004 - 11:00 AM to 12:30 PM
Presented by Yuet (Emily) Ching and Prachi Bora, Software Test Engineers, Microsoft Corporation

Using Managed Code and Visual Studio to Build Solutions
Level 300 - Tuesday, November 2, 2004 - 1:00 PM to 2:00 PM
Presented by Willson Raj David, Software Design Engineer, Microsoft Corporation

InfoPath in End-to-End Enterprise Solutions: Integrating InfoPath with Siebel and SAP
Level 300 - Monday, November 2, 2004 - 11:00 AM to 12:30 PM
Presented by Hagen Green, Software Test Engineer, Microsoft Corporation

Digital Signatures in InfoPath 2003
Level 300 - Monday, November 15, 2004 - 11:00 AM to 12:30 PM
Presented by Mihaela Cristina Cris, Software Test Engineer, Microsoft Corporation

Creating Custom Controls for InfoPath SP1
Level 400 - Monday, November 29, 2004 - 11:00 AM to 12:30 PM
Presented by Andrew Ma, Software Test Engineer, Microsoft Corporation

Programming Workflow into InfoPath Solutions: Using InfoPath with BizTalk Server 2004 and Human Workflow Services
Level 400 - Monday, December 6, 2004 - 11:00 AM to 12:30 PM
Presented by Rick Severson, Software Test Engineer, Microsoft Corporation

Database Connectivity in InfoPath Through ADO.NET DataSet Support
Level 400 - Monday, December 14, 2004 - 11:00 AM to 12:30 PM
Presented by Mikhail Vassiliev, Software Design Engineer, Microsoft Corporation

Lots of Microsoft downloads recently it seems… Catching up…

If you have a Tablet PC and use Office 2003, Microsoft has released an update that you need to download and install. The update improves recognition of “inked” handwriting in Office 2003 applications, including:

• Microsoft Office 2003
• Microsoft Office Excel 2003
• Microsoft Office InfoPath 2003
• Microsoft Office OneNote 2003
• Microsoft Office Outlook 2003
• Microsoft Office PowerPoint 2003
• Microsoft Office Word 2003

Get the update patch here.

Over on it’s GotDotNet workspace, you can download the Collutions cBlog package, a custom site definition for SharePoint released under a Shared Source license. The cBlog package creates a blogging environment on the Windows SharePoint Services (WSS) platform. WSS ships as a free web server add-on/enhancement to Windows Server 2003.

This is interesting stuff. Jim Duncan’s sample blog is viewable online, and is a real, working blog that appears to be dedicated to the development and discussion of the cBlog custom site definition itself, at least so far.

Looks like Jim has already created an  RSS  2.0 Feed  for the WSS cBlog, too. Subscribed!

Going to have to look into this one further…

Microsoft has published “Bill Gates Answers Most Frequently Asked Questions.”

It’s an interesting read. Here are the questions, but you’ll have to get the doc to see the answers.

• What kind of role did fate or luck play in your success?
• In the history of Microsoft, what was your happiest moment?

• How do you spend your time?

• What do you think is more important to your success, raw intelligence or hard work?

• Please explain the secret of your success.

• When do you think the first computer will become as intelligent as a human?

• Do you regret not finishing college?

• Who coined the name Microsoft?

The Virtual Server Migration Toolkit (VSMT) lets IT Pros migrate servers from physical hardware to virtual machines. You can get it here.

Okay, well it’s not quite like the P2V (physical-to-virtual) software produced by VMWare, but for those looking to make a transition to Microsoft Virtual Server, this is a valuable resource. It works differently than VMWare’s counterpart – VSMT requires you run Automate Deployment Services as part of your migration setup. It’s worth noting the difference in price, as well (P2V costs $$$, and the Microsoft VSMT is a free download once you register online).

I’ve worked with both Microsoft’s Virtual Server 2005/Virtual PC 2004 and VMWare’s Workstation and ESX/GSX Server products. All are good products that do a fine job. In the end, the tools you choose should be the result of careful examination and testing against your needs and in your environment. But you should be using these tools, even if only for the purpose of getting to know them and keeping on the leading edge of the technology.

From the VSMT description:

“One of the key steps in a successful Virtual Server 2005 deployment strategy is simplifying the process of converting physical servers to virtual machines.

“You can use VSMT to create images of physical computers and deploy them in virtual machines running on Virtual Server 2005. With VSMT, you can migrate source computers running the following operating systems to virtual machines in Virtual Server 2005:

• Windows NT 4.0 Server with Service Pack (SP) 6a, Standard and Enterprise Editions
• Windows 2000 Server SP 4 or later
• Windows 2000 Advanced Server SP 4 or later
• Windows Server 2003, Standard Edition and Enterprise Edition”

For those in the field, virtual servers (of one sort or another) are proving themselves to be cost-effective, flexible, reliable and generally valuable alternatives to setting up and maintaining separate hardware for each server. It’s the way of the future – worth checking out and becoming familiar with.

• VSMT Datasheet
• VSMT White Paper
• VSMT FAQ

The bandwagon is rolling rolling rolling along: MSN kicked a new toolbar suite out the door that integrates desktop search – cool stuff. Check it out.

I like the display-results-as-you-type thing, similar to X1. Google needs this.

“MSN Toolbar Suite features three different toolbars to help you search the Web and your computer from Microsoft Internet Explorer or Windows Explorer, the Windows taskbar, and Microsoft Outlook.”

Update: Scott has a look under the hood and compares the MSN desktop search to the Google desktop search, as well.

Google rocks my virtual world every day. If it doesn’t do the same for you, it should. I’ve written about this before in the context of knowing how to leverage Google’s advanced search capabilities, but many don’t know that there is much more to Google than searching.

There are so many cool things you can do at Google. Things that will capture your attention and hold it hostage for hours and days at a time. Some of those things are fun, some are serious. All are pretty darn cool. Things like this:

Google Search for Klingons (sorry I could not resist):

Dave has links to a few other “languages,” too.

And then there’s all the cool Google Labs stuff, the latest of which is Google Suggests.

What else can you do at Google? Well – here’s their own list:

Google Services: Use one of our many services to find what you're looking for.

Alerts	Answers	Catalogs	Directory
Froogle	GroupsNew!	Images	Google Labs (tons of cool new stuff here!)
Google Local	Google Scholar	News Search	Special Searches (see more below)
University Search	Web Search	Wireless

Google Tools: We offer various tools to help you get more done.

Blogger	Browser Buttons	Google Desktop Search	Google in your Language
Keyhole	Picasa Photo Organizer	Google Toolbar	Translate Tool
Web APIs

Additionally, you can Add Google to your Browser by making Google your default search engine.

Google Special Searches: Often better than you’ll find at the web sites that are home to the technologies themselves…

	U.S. Government		Linux		BSD
	Apple Macintosh		Microsoft