Looks like Vista SP1 for the 64-bit version of the OS is now available publicly on Windows Update. No sign of the 32-bit version yet, but I'm glad to get it for this particular computer.

Knowledge Base article KB936330 is available, as is the release-notes publication at TechNet.

Last night I got Chinese food from the local place and took it home.

After the meal I broke open my fortune cookie. I handed the paper to a friend of mine to read since I didn't have my glasses on and for all I knew I was trying to read it upside down (turns out I was).

I thought my friend was messing with me when he read it out loud.

Anyone have any suggestions at this point? Tin foil hats or garlic or something?

I'm saving this one.

Recently my Outlook 2007 connection to my Google Apps mail account became increasingly slow and sluggish, to the point of extreme frustration. Slow syncs and a general sense of bloat were ruining my experience and making it close to unusable. During email syncs my system would practically hang as Outlook churned away.

Not acceptable. I either needed a solution or I needed to replace my email, contacts and calendaring solution. It was that bad. Now, I really have no desire to leave Outlook. It works great for me. What I needed was a fix, which was preferable to a wholesale replacement. I know Thunderbird works well, but at least for now it's just not an Outlook equal replacement.

So, I searched today for a solution and - what do you know - quickly found an article on Digital Inspiration that helped me clean up my server configuration and improve performance substantially. With the huge onslaught of spam over the past couple months, my GMail spam folder had grown to be HUGE, so removing that from the sync was probably a big deal. Also, I set up the inbox to grab headers only (different than the article suggests). In addition, I disabled a couple unused but active Outlook add-in's as described in this article.

The results? A speedy Outlook and no more hung apps. The sync with the Google IMAP servers is much faster. I actually can't believe I put up with the bad performance as long as I did. All resolved now.

Favor Day is coming on March 12th, and it's being organized on Facebook. Nothing quite like doing something simple and kind for someone else to make the world a better place. You should be a part - spread the word!

Here's how you celebrate Favorday -- on Favorday, March 12th, 2008, you do planned favors for people, just like you would plan on giving a gift to somebody for the holidays. Any kind of favor can suffice, whether its "I'm going to rub my girlfriend's feet" or "I'm going to clean my neighbor's garage" Favorday is for celebrating each other.

You can help by inviting your friends to celebrate Favorday with you!

By the way, I am on Facebook at http://www.facebook.com/profile.php?id=584484571

It's official: The format war is over.

I'm not one bit ashamed to say I've been a HD-DVD guy ever since I made the shift to watching movies in the amazing world of hi-def last June. I've enjoyed the red label discs, I appreciate the combo-format packages, and it was HD-DVD that pushed me into doing a lot of research into 1080p projectors and then purchasing one that I have been very happy with.

I also bought a HD-DVD player for my dad and his significant other's new home the day after thanksgiving, and another one for my mom and step dad over the Christmas holiday. If nothing else, they play regular DVDs on their hi-def (1080p) sets beautifully. Too bad the HD-DVD format looks like it's officially out. Glad I got good prices and minimized the "damage." I suppose I'll probably be buying replacement hardware soon eh?

At any rate, with Netflix, Wal Mart, an ever-expanding list of film studios, Best Buy and others making announcements about either going exclusive Blu-ray or favoring the format... Well anyhow I have a question. :)

Which Blu-ray players should I be seriously looking at? Is there a no-brainer, best-bang-for-the-buck option out there? I'm not really interested in PS3 games, so swaying me in that direction might be tough. I'm looking for full 1080p coverage via HDMI. I can (and do) hope that a Blu-ray player for the Xbox 360 is in the works, but until that happens I have to see what else is out there, and it's not something I've paid full attention to.

Suggestions?

IBM Internet Security Systems' X-Force has released its annual report outlining the malicious software threat and trending landscape. In a nutshell, things are getting more complicated (landscape-wise) and the impact is becoming more technically complex. Read the report and you can directly glean as well as infer certain facts.

As malware becomes harder and harder to catch in real-time using currently-available technology (a trend that has become quite clear over the past year or more) and as the intent of the malicious software becomes more and more geared toward complete remote system control and access, the potential situation looks - I'll just say it - pretty darned bleak.

It's important to stay up-to-date if you're an IT or Security professional (or hard-core geek). Here are your links:

• The ars technica article: Annual IBM security report paints worrisome picture for 2008 (includes some good side-bar thoughts)
• The full IBM report download (PDF, about 3MB): IBM Internet Security Systems X-Force 2007 Trends Statistics

Quiz in the morning. :)

I have a set of Kenmore HE3 appliances for washing clothing, the matching washer and the dryer of course. I like them a lot and have had them for five years. They've served me well. However, ever since installing a drawer pedestal under both, the washer had taken to frequently hopping and jumping around on the floor while in the spin cycle. It's not a good thing, and I needed a fix.

Luckily after some creative Google work I found this web site: Fixitnow.com, Samurai Appliance Repair Man. It's a blog with lots and lots of entries describing how to resolve common issues with various appliances, including mine. It gave me the information I needed to fix the problem. So I'm bookmarking it here on my blog for the benefit of others and - undoubtedly - for my own future reference.

Thanks, Samurai Repair Guy!

It's not like we didn't already know the malware (short for "malicious software") infection rate is increasing, but Google's security folks posted a technical paper and blog entry on Monday that illustrates the prevalence of "drive-by" malware distribution and just how big the problem has become.

Excerpt:

“During that time we have investigated billions of URLs and found more than three million unique URLs on over 180,000 web sites automatically installing malware” … “In the past few months, more than 1% of all search results contained at least one result that we believe to point to malicious content and the trend seems to be increasing.”

Add to that the fact that a significant and growing amount of newer malware recompiles itself into new forms each time it redistributes, making it virtually undetectable by current means, and the situation potentially becomes even scarier.

The technical paper is a very interesting read and explains some of the distribution techniques and designs. It also points out one piece of browser technology that has resurfaced to plague the security world many, many times: the iFrame.

The problem is most deeply rooted in China, where 67% of all malware distribution servers are located, and 64.4% of all landing sites (sites that point to a distribution site) are located. The next closest offending country is the United States, which accounts for about 15% of the distribution and landing sites. So, one can easily see where a significant portion of the problem lies. With the increases in business and trade taking place in China now, one has to worry about the future if computer systems are in such bad shape. Clearly, something needs to change.

If you're a security person, an IT server admin, work with web applications, develop web apps, or are for any reason interested in scary figures (such as the fact that "38.1% of the Apache servers and 39.9% of servers with PHP scripting support reported a version with security vulnerabilities."), read the report. It's worth the time you'll spend.

It looks like the Live Search team has announced they've released their MSN Bot v1.1 (and changed the user agent string to "msnbot/1.1"). They've noted two significant (and welcome) features.

• HTTP compression
• Conditional GETs

What does this mean for server owners and operators? Just a more-efficient way of crawling your sites for indexing, assuming your servers support the features. Most servers support HTTP compression, and links to instructions for configuring it are provided in the Live Search team's blog entry.

If you're interested in knowing whether your site/server supports these two features, the Live Search team has also put up a page where you can run a quick test.

Of course, depending on how they detect search indexing bots, some apps may need to add the new user agent string to their configurations.

Firefox, that other awesome web browser, is now available in a v3 B3 release for those who are willing and wanting to test the latest and greatest before it's all fully baked.

Here is the link to get to the download page and other pertinent information. Expect performance improvements, security improvements, usability enhancement and more. But, keep in mind it's a Beta release, which means it will likely be flaky and do things you might not like. In the words of the Firefox team:

Please note: We do not recommend that anyone other than developers and testers download the Firefox 3 Beta 3 milestone release. It is intended for testing purposes only.

Firefox 3 Beta 3 is now available for download. This is the eleventh developer milestone focused on testing the core functionality provided by many new features and changes to the platform scheduled for Firefox 3. Ongoing planning for Firefox 3 can be followed at the Firefox 3 Planning Center, as well as in mozilla.dev.planning and on irc.mozilla.org in #granparadiso.

Richard and I had a good conversation with Scott Kveton, OpenID personality extraordinaire, on the RunAs Radio podcast this week. Scott is chairman of the OpenID Foundation.

OpenID is a cool and upcoming technology and has seen significant attention in the past few weeks especially as Yahoo! became an OpenID provider, immediately followed by an announcement that Microsoft, Google, Yahoo!, IBM and Verisign had joined the board of the OpenID Foundation.

It's time to get on-board and know what OpenID is, how it might play with other technologies in the identity and access management space, and how you can learn more. That's what this show is all about.

Scott Kveton Shares His OpenID (MP3 link)
from the RunAs Radio podcast

Richard and Greg talk to Scott Kveton about OpenID. OpenID is a single sign-on solution that could very well make the classic username and password obsolete. This is a fast half hour - you'll find yourself wanting to listen again!

I somehow missed the release, but a little while back Microsoft released Windows Live OneCare v2.0, and in that release added support for 64-Bit Windows Vista. A few months ago (before OneCare v2) I had just bought a new laptop that came with the 64-bit Vista Ultimate edition pre-installed, and when I went to install the then-released version of OneCare, I was pretty disappointed that it would not work.

When I was in Costco the other day, I noticed a OneCare package on the shelf and picked it up to glance at the system requirements. Lo and behold, the packaging had changed and now indicated that 64-bit Vista was supported! When did they slip that in? I didn't see mention of it on the OneCare blog or anywhere else.

But hey, all I knew was it looked like I would be able to use it now, so I was looking forward to giving it a try.

Today I uninstalled my frustratingly cruddy other (to remain nameless) antivirus software and installed the OneCare suite. For about $40 a year I can protect three PCs and centrally manage two of them from the computer I designate as the "hub" machine. Nice.

OneCare v2 includes:

• Antivirus & Antispyware protection
• Online ID protection
• Bi-Directional Firewall
• Multi-PC management
• Printer sharing
• Data backup and restore capabilities
• Maintenance and cleanup tasks (defrag, clean up useless stuff, etc.)

It's an easy and quick install, and a good way to make sure you're protected. You can watch a product demo and download the free 90-day trial here.

On my Windows Vista Ultimate 64-bit laptop, one of today's many Microsoft patches keeps prompting to be installed over and over, even after it indicates it is successfully installed. The patch in question is related to Microsoft Knowledge Base article KB937287, and is a prerequisite to Vista SP1, which is set to be made available next month.

Update 937287 is a prerequisite package that contains updates to the Windows Vista installation software. The installation software is the component that handles the installation and the removal of software updates, language packs, optional Windows features, and service packs. Update 937287 is necessary to successfully install and to remove Windows Vista SP1 on all versions of Windows Vista. This update will be available on the Windows Update Web site soon after the release of update 935509 and before the release of Windows Vista SP1. 

I ran the installation for all of today's patches which applied to my computer (twelve of them in total) and this one kept hanging around. Each time I restarted the computer, Windows Update again prompted me to start the installation. Confusing and frustrating after the fourth or fifth time, to be sure (reminds me of a joke about the definition of "insanity" heh).

I was able to resolve this problem by downloading the individual 64-bit patch from the Microsoft Downloads site and installing it manually. Note that the linked download location is for 64-bit Vista OS users only. Once I did that, the prompts stopped and it shows up in the installation list as successfully installed on the machine. In fact, the list now shows all of the installation attempts as successful, with a separate line for each try. Only the first try now shows "failed." Strange.

It's interesting that the KB article points out that this update will be required in order to install Vista SP1 via Windows Update when it is released, but not if you chose to download and install the service pack manually (as it will contain the fix). Extra interesting is that for this update I was unable to install it via Windows Update, but was successful with the manual install.

At any rate, there have been a flurry of posts on a variety of forums and other sites today where people were having this problem. Some people were recommending grabbing a leaked version of SP1 Refresh 2 via non-MS sites (read: not a good idea) and installing that, but for those who wish to wait and make sure they get what MS releases when they release it, this option is probably better for you.

If it works, drop a comment. Actually, be sure to comment if it doesn't work for you, too. :)

Over at Wired, they've posted a set of eight early-design logos that graphic Designer Ruth Kedar came up with back when the now-established company was first finding its identity. It's a cool look at the design process and it's interesting to see how certain aspects of the design came full-circle. Click the image below to see the designs and an explanation of each over at Wired.

Updating from IE6 to IE7 is a considerably good thing to do, but IT pros need to plan for these things in some cases for compatibility and other reasons, so awareness is important.

If you're an IT shop using Windows Software Update Services (WSUS), be aware that today marks the date that Microsoft planned to start automatically delivering Internet Explorer 7 to desktop machines as an automatic update on WSUS systems. Computers on WSUS-managed computers that have IE6 installed will be updated, either automatically or upon administrative approval, depending on your configuration.

So, if you don't want your IE software updated today, it's important to check that your WSUS system is set up to require administrative approval before updates are pushed to the machines on your network (this is the default setting, but I've seen it changed in many cases for "convenience").

From the Microsoft Knowledge Base article (KB946202):

If you have configured WSUS to "auto-approve" Update Rollup packages (this is not the default configuration), Windows Internet Explorer 7 will be automatically approved for installation after February 12, 2008 and consequently, you may want to take the actions below to manage how and when this update is installed. You will need to take action if:

• You use WSUS to manage updates in your organization.
• You have Windows XP Service Pack 2 (SP2)-based computers or Windows Server 2003 Service Pack 1 (SP1)-based computers that have Internet Explorer 6 installed.
• You do not want to upgrade Internet Explorer 6 machines to Windows Internet Explorer 7 at this time.
• You have configured WSUS to auto-approve Update Rollups for installation.

Important notes

• This does not apply to Windows Vista because Windows Internet Explorer 7 is a component of Windows Vista.
• The Internet Explorer Blocker Toolkit blocks only installation that occurs by using Windows Update and Automatic Update. The toolkit does not block distribution that occurs by using WSUS. This article concerns distribution that occurs by using WSUS. Internet Explorer 7 is already available in 23 languages by using Windows Update and Automatic Update. On February 12, 2008, Internet Explorer 7 will also be made available in Japanese by using Windows Update and Automatic Update

The KB article also includes instructions describing how to configure the WSUS server, if needed.

(reminded via Mary Jo Foley - All About Microsoft)