Latest Hi Tech News

Attack code that exploits flaws in the net’s addressing system are starting to circulate online, say security experts.

The code could be a boon to phishing gangs who redirect web users to fake bank sites and steal login details.

In light of the news net firms are being urged to apply a fix for the loop-hole before attacks by hi-tech criminals become widespread.

Net security groups say there is anecdotal evidence that small scale attacks are already happening.

Address list

“We are in a lot of trouble,” said security guru Dan Kaminsky who found the flaw in the net’s Domain Name System (DNS) in March 2008.

“This attack is very good,” he said. “This attack is being weaponised out in the field. Everyone needs to patch, please.”

The DNS acts as the net’s address system and helps computers translate the website names people use, such as bbc.co.uk, into the numerical equivalents preferred by machines.

If exploited the flaw would allow malicious hackers to direct people to fake sites even if that user typed in the correct address for the place they wanted to visit.

Now security researchers have come up with two separate methods for attacking the flaw.

The code used in the attacks has been added to a popular testing tool called Metasploit used by both good and bad hackers alike to find weaknesses in computer systems.

The attack code was developed following the accidental leaking of the bug Mr Kaminsky discovered. Initially he had planned to release more information in October.

After being discovered in March, information about it was shared with large net organisations such as Cisco, Google, Yahoo and Microsoft to give them chance to produce patches and fixes.

Now net supply firms are being urged to get on with the job of updating their systems so customers are not left at risk.

MPower is the only full-featured, truly open-source CRM software specifically designed for nonprofit organizations. More than 200 charitable organizations as well as consulting firms and professionals working in the philanthropic community now have downloaded MPower since it became available as an open source offering without licensing fees.

---

Customer-relationship management is a very different animal than it used to be. Pick up an issue of any magazine, including [Customer Inter@ction Solutions], from about six to eight years ago and flip through for information about CRM, and you’ll wonder if you’re reading about the same technology.

What’s different nowadays? Too many things to list right here and right now. But two of the hottest growth areas in this new wave of CRM are solutions for niche markets and specialty functions, and open-source CRM.

Dallas-based MPower provides both: it’s the only full-feature, truly open-source CRM software specifically designed for nonprofit organizations. More than 200 charitable organizations as well as consulting firms and professionals working in the philanthropic community now have downloaded MPower since it became available as an open source offering without licensing fees on March 11.

I recently spoke with Randy McCabe, founder and CEO of MPower, about the company and its future.

RT: Why did you decide to go open source?

RMCC: Moving to an open source model has been our plan for some time now. Over the last year, although we have made significant enhancements to our product and service offerings, we also have recognized the inherent shortcomings of the proprietary software business model. Under the old proprietary software model, clients are “held hostage.”

They lack control and options for having the features and functionality they need when they need it. The product road map moves only as fast as the proprietary company’s development team priorities. This model also forces clients to pay for new modules and releases whether they like them or not — or they have to replace their entire system.

All of us at MPower strongly believe that moving to an open source model is the right thing to do generally and absolutely the right thing to do for the nonprofit community, which needs software that’s as full-featured and powerful as products for the commercial sector. We also want to give clients full control over their technology and ultimately, their destinies.

RT: Was this an easy decision?

RMCC: This was an obvious decision because of the shortcomings of the proprietary software model coupled with appreciation for the technology needs of the nonprofit community, as outlined in my response to the previous question. The challenge, of course, was changing from our existing business model, based heavily on licensing our software, to the new model of giving away the product and providing fee-based support and services.

Over time, with our software widely distributed, we’ll support and provide services to a much larger client base, so we expect the business to scale significantly. Making these changes clearly is the right thing to do for the nonprofit community and also good for growing our business — it’s the perfect definition of a win-win value proposition.

RT: How has the developer community responded to this news?

RMCC: Response to MPower’s open-source offering has been extremely positive! Our clients are thrilled to now have complete control over their CRM technology, which translates to the ability to be more effective.

Karen Jacobs with Precept International characterized our move to an open-source CRM solution as “nothing short of revolutionary for the nonprofit community” and “the next big thing for charitable organizations.” She told us, “It is as important a development for nonprofits as the Internet, which has become a critical tool for cultivating constituent relationships and driving fund-raising.”

Barry Durman, with East-West International, has said, “MPower is already a powerful and mature CRM software for nonprofits — I can only imagine how open source will positively affect the product velocity and innovation.”

And Brenton Evans from Marriage Today said, “Offering such a powerful CRM solution to all nonprofits without any big upfront software investment means that every nonprofit now has access to the most powerful constituent relationship and fund-raising tool on the market.”

RT: How does nonprofit CRM differ from other types of CRM?

RMCC: One of the biggest differences is that nonprofit CRM is multi-constituent and multichannel. A nonprofits constituent likely has several types of relationships with the organization and interacts with it through a variety of ways — for example, a single constituent can be a donor, advocate and event attendee who participates through postal mail, e-mail, a Web site, a fund-raising run or a bike ride, etc.

MPower enables a nonprofit to easily manage the relationship and communications with donors, volunteers, customers, subscribers, event attendees, viewers and listeners through direct mail, e-mail and Web sites, events, magazines and newsletters, telephone, radio and TV. A big part of the differentiation is in the management of gifts, product orders and any other types of transactions including soft gifts and gifts in-kind.

RT: How open is your solution and how does it compare to other solutions on the market?

RMCC: MPower is completely open — clients have full access to our source code. It doesn’t get any more open than that.

There’s no comparison between our offering and everything else currently available. It’s “apples-to-oranges,” so to speak. Although a number of nonprofit CRM software vendors are recognizing the value of collaboration and making their products more open (which we applaud as a first step), none of the major players is providing a truly open-source solution. Only MPower is doing that.

Some companies are helping nonprofits add other software to their proprietary solutions by doing things such as opening a few application programming interfaces, but typically the vendor has to handle implementations. No company other than MPower provides access to its source code to enable clients to develop the functionality they want when they want it. This is a key characteristic of open-source software.

Also, MPower, like true open-source companies, is providing a full gamut of support and services pertaining to the software and governance for the user community — including things like managing the source code, aggregating new code and providing quality assurance and product documentation, plus managing the client forums and knowledgebase.

RT: Does interfacing with open-source telephony solutions make sense for your company to ensure?

RMCC: Absolutely. Many of our clients and many nonprofits (especially larger ones) have call centers, or they outsource both inbound fund-raising responses and outbound fund-raising calls to call centers. Our solution has a call center screen to capture inbound data or provide customer service to callers.

RT: What about unified communications — is this an area of the market your software needs to work with?

RMCC: Unified communications is what our software helps nonprofits achieve for their constituents. From a software integration standpoint, MPower should be part of a unified communications platform for nonprofits because we are open-source and built to be the centerpiece of a unified communications strategy.

RT: Will you consider bringing your software into other markets that are for-profit, for example?

RMCC: Because our software is a full-featured, mature CRM solution that is completely open — with full access to the source code, it likely would have tremendous appeal to the commercial sector. However, the nonprofit sector is a huge and vastly underserved market when it comes to CRM. We are focused singularly now on providing the best, fully open CRM solution for this very important community.

RT: Where will your company be in five years?

RMCC: We will be the most trusted and effective constituent relationship management solution for the nonprofit community.

RT: Thank you for your time.

New Web site domain names likely won’t start appearing until at least next year, and ICANN won’t be deciding on specific ones quite yet. The organization still must work out many of the details involved, including fees for obtaining new names, expected to exceed $100,000 apiece to help ICANN cover up to $20 million in costs.

---

The Internet’s key oversight agency relaxed rules Thursday to permit the introduction of hundreds, perhaps thousands, of new Internet domain names to join “.com,” making the first sweeping changes in the network’s 25-year-old addressing system.

The Internet Corporation for Assigned Names and Numbers unanimously approved the new guidelines on the final day of week-long meetings in Paris. ICANN also voted unanimously to open public comment on a separate proposal to permit addresses entirely in non-English languages for the first time.

New names likely won’t start appearing until at least next year, and ICANN won’t be deciding on specific ones quite yet. The organization still must work out many of the details, including fees for obtaining new names, expected to exceed $100,000 apiece to help ICANN cover up to $20 million in costs.

Domain names help computers find Web sites and route e-mail. Adding new suffixes can make it easier for Web sites to promote easy-to-remember names — given that mainly of the best ones have been claimed already under “.com.”

The new guidelines would make it easier for companies and groups to propose new suffixes in English. ICANN had accepted bids in 2000 and 2004, but reviews took much time, and one — “.post” for postal services — remains pending more than four years later.

The streamlined guidelines call for applicants to go through an initial review phase, during which anyone may raise an objection on such grounds as racism, trademark conflicts and similarity to an existing suffix. If no objection is raised, approval would come quickly.

Some ICANN board members expressed concerns that the guidelines could turn the organization into a censorship regime, deciding what could be objectionable to someone, somewhere in the world.

“If this is broadly implemented, this recommendation would allow for any government to effectively veto a string that makes it uncomfortable,” said Susan Crawford, a Yale law professor on the board. She voted in favor of the rule changes, but called for more clarity later.

The other proposal before ICANN would permit addresses entirely in non-English characters for the first time. Specific countries would be put on a “fast track” to receive the equivalent of their two-letter country code, such as Bulgaria’s “.bg,” in a native language.

The ICANN board said it would seek public comment on the guidelines before its next major meeting in November.

Demand for such names has been increasing around the world as Internet usage expands to people who cannot speak English or easily type English characters. Addresses partly in foreign languages are sometimes possible today, but the suffix has been limited to 37 characters: a-z, 0-9 and the hyphen.

Entering the second day after Firefox 3.0 was released, mixed feedback was heard. Personally, I am satisfied with Firefox 3.0, except the Smart Location Bar, or so called Awesome Bar. I don’t like the autocomplete nature of this Smart Location Bar, as it lists out the possible bookmarked site or previously visited sites while I’m typing in the address. I know the purpose is to save my time and hassle to type the whole address but it’s annoying me more than helping because I need to choose from some irrelevant results listed. I guess some Firefox users who used Firefox 2.0 before the upgrade will feel the same too.

If you are thinking of disabling this Smart Location Bar from automatically listing, do some tweaking to Firefox 3 then.

Follow the steps below will completely disable it :-

• In the address field of Firefox 3.0, type about:config, then press Enter.
• In the filter field, type browser.urlbar.
• Click on the line with browser.urlbar.matchBehavior, change the value to 0 (zero).
• Click on the line with browser.urlbar.maxRichResults, change the value to 0 (zero) also.
• Now exit FireFox and open it again.

If you want it to behave like Firefox 2.0 then do the following :-

• In the address field of Firefox 3.0, type about:config, then press Enter.
• In the filter field, type browser.urlbar.
• Double click on the line with browser.urlbar.matchOnlytyped, the value will automatically change to true.
• Now exit FireFox and open it again.

Any feedback is welcome.
Enjoy using Firefox 3.0!

Welcome to WordPress. This is your first post. Edit or delete it, then start blogging!