Jason’s Random Thoughts

In a world where the media tries to scare us at every opportunity, I’m really quite surprised there isn’t more discussion about the new plague that is slowly infecting millions of Windows computers around the world.

It started earlier this year, quietly at first. The worm would find it’s way to a person’s inbox with a subject line of “230 dead as storm battles Europe”. Anyone opening the email and included attachment would then instantly add their computer to an ever-growing botnet, without any knowledge of the fact. I’ve recieved this email twice in the last few months, but never once have I opened the message as it was from someone I’d never heard of.

The threat this worm represents to our security and wellbeing may not be quite as dramatic as those seen on CNN or Al Jazeera, but it has the potential to cause much more damage than the existing weapons employed by global terrorists. But this isn’t the scariest part of all. Not by a long-shot. This little nuisance has been online since January and, despite all the incredibly talented people working on the problem, nobody knows how to counter the worm.

Say hello to “Storm”.

Storm has been spreading steadily since the beginning of the year, gradually constructing its huge botnet. It affects only computers running Microsoft Windows, but that means that 90% of the world’s PCs and servers are vulnerable. Nobody knows just how big the botnet has become, but reputable security professionals cite estimates between one and fifty-million computers worldwide. As of this writing, the botnet has only been used intermittently, which is a little odd. This means that someone, somewhere is quietly building the world’s most effective doomsday machine that can be rented out to the highest bidder, or used for purposes we might only get to see in a good Michael Crichton book.

Computer worms are almost as old as computers themselves, which may explain why the mainstream media hasn’t really said much about this growing threat. Previous worms like Sasser and Slammer were written by vandals and designed to spread very quickly. Slammer, for example, had infected about 75,000 computers in ten minutes and therefore attracted lots of attention. The strength of the onslaught made it much easier for the anti-virus firms to detect and destroy the problem.

Storm, though, is a different story altogether. It spreads quietly, without drawing any attention to itself. There are no symptoms for people to identify while using their computers, and an infected PC can remain dormant for a very long time.

Bruce Schneier, a malware expert, thinks that Storm represents the future of malware due to the technical virtuosity of its design. That is to say, the way this worm operates is lightyears ahead of anything we’ve seen in viruses and worms before.

Like a beehive, the Storm worm operates with a clear seperation of duties. Only a small fraction of infected hosts spread the worm, while a much smaller fraction control and command the millions of computers in the network. The rest are dormant and awaiting orders. By working in this fashion Storm can resist most attacks because, even if some of the control and command servers are discovered and taken offline, the botnet is still mostly intact and other dormant machines can be given the role of replacing the offline servers.

What’s more, Storm doesn’t have any noticable effects on the infected computers. Like a parasite, it needs the infected computer to appear healthy for its own survival. This makes it even harder to detect, because system administrators and other power users will not notice any abnormal behaviour most of the time. When they do, they’ll just restart their machine and think it was a “Windows problem.”

Storm started by propigating through infected PDFs, then emails, YouTube invites and those insufferable e-greeting cards. It’s now being seen with some blog comments, where the commenter’s homepage is actually an infected website. I haven’t seen one of these myself, but I hope the infected sites are .info so that nobody is tempted to click. The last thing the blogosphere needs right now is a reason for people to *not* click backlinks. Heck, we just recently won the “No-Follow” battle with some of the blogging platforms … something like this could be detrimental to the whole purpose of leaving a website
For the moment, nobody knows who’s behind this bit of code. To date, the controllers of this botnet have used it for relatively trivial purposes such as simple DOS (Denial of Service) attacks against certain sites, but who knows when this will morph into something far more devastating. Experts believe the owners are simply biding their time, waiting for a critical mass point where they will have the resources to effectively take a country off the internet if they so chose. It wouldn’t take much, either. If 50 million naive Windows users have unknowingly added their computers to the botnet after 10 months, another 50 million wouldn’t be as far away.

Perhaps we should enjoy the internet while we can. Who knows what damage a perfect storm in cyberspace will bring.

Bookmark To:

I’ve been thinking about it ever since Wednesday, and I’m not sure whether to tip m hat or wag my finger at Stephen Colbert.  The host of the popular Colbert Report on Comedy Central, Stephen Colbert has recently announced that he will be running for the President of the United States of America in their upcoming 2008 elections.  While it’s not unusual to see popular people run for office, I found it a little odd that Mr. Colbert was only going to run in his home state of South Carolina.  Nobody could expect to win a Presidential vote or nomination by limiting themselves to just one state.  A wag of my finger!

But that’s when it hit me.

Stephen Colbert is one heck of a political analyst and, as such, has likely been disappointed with the ’same-old same-old’ we see in Washington.  Politicians have had a pretty hard time selling themselves to the public in recent years, so voter turnout has been steadily declining.  This problem can be seen in several countries all over the world, so what can politicians do to gain the public’s trust and vote?  With the lackluster faith in our polititians, most of us either refuse our right to vote or cast ballots for someone just to prevent the person we hate from getting into office.  "I don’t like Bob, but I’ll be damned if I let Henry get elected."

What a great system.

So rather that simply cover the race in his show’s "Indecision 2008" segment, he will join the race to the top in his home state of South Carolina.  Colbert rarely appears out of character on camera, so it will be interesting to see how well his campaign goes.  If he remains the bible-thumping, administration-supporting, rule-enforcing, self-centered self-promoter while running, then I think he’ll have one of the most interesting campaign platforms ever seen in American politics.  As it stands, Colbert will likely have most of the under-40 vote and it shouldn’t take too much to garner even more support.

Because he’s running in one state alone, he’s already made it clear that he does not want the job of being the next President of the United States, which I can certainly respect.  It’s not an easy job by any stretch of the imagination, and you have people hating you just because you happen to be the current leader of one of the world’s most powerful nations.  Instead, he’ll make a great example to all the other politicians that have lost touch with the people they swore to serve.  If you want to serve the people, you’d better be able to earn our trust or make us laugh.  It’s even better if you can do both.

Thank you, Stephen Colbert.  You will undoubtedly bring the 2008 campaigns something that has been clearly lacking for the last few years:  clarity.  There isn’t another politician out there that can speak to the public half as well, and you will force them to step up their game.  Mumbling is no longer an option.

I tip my hat, sir.

Bookmark To:

It’s hard to believe that a year has already gone by, and harder still to believe that the site is still being read.  Last October when I decided to venture into the realm of the blogosphere once again, the intentions had been quite simple:  create a private site with a picture gallery, and maybe talk about upcoming trips to Japan or elsewhere in Canada.  That said, it didn’t take long for this to change and become what we see today.

To commemorate this first anniversary, I’d like to share a few things I’ve learned, some stats and briefly mention 5 of my most popular posts.

Things I’ve learned:

• in the case of WordPress, unless it’s broke, don’t upgrade it.  Upgrades seem to be the biggest headache for bloggers and it’s the type of hassle I try to avoid.  If I really need to upgrade, then I’ll take my site offline for a bit and migrate an alternate installation over.  There will be no such thing as an "upgrade" on this site as it often leaves many things broken or incomplete.
• if you help a plug-in author with some code or a slight fix in their comments, be prepared to receive lots of support questions from other users.  To this day I still get support questions for plugins that I offered a quick fix to last February, despite the fact the author is still actively maintaining the code.
• if you have nothing good to say about an Apple product, be prepared for an increase in traffic.  I said one little thing about that useless Mac TiVo wanna-be thing, and it became my most popular post for over a month.
• writing negative comments on popular blogs are sure-fire ways to temporarily increase traffic while also losing regular readers.
• test your site’s load time at least once a day.  You never know when some plugin or widget will break and you might not even know it’s a problem until you see the dramatic drop in visits.  I’ve made this mistake once before and found that a plugin was preventing the site from loading until a 60-second timeout completed.  The admin screens still worked just fine, and I was wondering why my daily visitors had dropped to a trickle.  Suffice to say, that plugin was quickly removed.

This site’s Stats (October 18, 2006 - October 17, 2007):

• Visitors: 1,482,104
• Uniques: 81,920
• Uniques Last Month: 9,915
• Average Uniques per Day (this week): 187
• Bot-to-Real Human Ratio:  5:1 (5 Bots to 1 Human reader)
• Posts: 403
• Comments: 529
• Akismet has Caught:  2,084 Comments

Top Commentors (Not Including Me, of course):

• Nick Ramsay as LongCountdown, 63 comments
• Brian at LiftPort, 31 comments
• Ms Danielle with her site by the same name, 27 comments
• Reiko (my wife), 15 comments
• Nick Phillips over at Anything Goes, 9 comments

Thanks to everyone that’s posted a comment, though, as I likely would have abandoned this project months ago had it not been for all the feedback.

Finally, I’d like to mention five of my most popular (non-plugin related) posts:

• China Airlines 737 Catches Fire in Okinawa - This was popular mainly because I was writing the post as it was happening on the TV.  As people started Googling it, my site had been one of the first indexed and so had a prime spot in the Google SERPs.
• Another Blah Apple Product - This was the first blog post that was Stumbled, and it brought quite a bit of traffic in the first week.  It was shortly after this post that I really started to enjoy the blogging experience.
• Google’s Telecommunications Gambit - Not exactly my best argument about Google, but it was worthy of a few Diggs and even made a brief appearance on page 25,621 (or some other number so far away from 1 that it doesn’t matter).
• BBC’s Superstorm Series - The popularity of this post surprises me.  It doesn’t really have great content, and the series isn’t something I would watch more than once, either.  But to this day, I often recieve at least one hit a day from someone looking for information about this series.  Perhaps I’ll convert the three episodes to some form of Flash and host them on a page somewhere….
• The World Without Us - This was a great book, and I tried to say just as much in the book review.  This was not a sponsored post, but instead something I did in order to raise awareness of Alan Weisman’s great work.

So there you have it.  This site is now ancient (compared to millions of other blogs out there) and I don’t think I’ll stop writing anytime soon.  While I can no longer put the same effort and time into my posts as before, writing entries while commuting to and from work is still one of my many daily pleasures (the others involve coffee and bread…).  I’d like to thank all of my regular readers, and all of my occasional readers, too.  I know I’ve said this before, but if it wasn’t for you, then this site wouldn’t even exist right now.

What’s coming up this year, you ask?  Well, Reiko and I still need to write that helpful page letting people know what’s involved with marrying a Japanese national in Japan, and what it takes to get all the paperwork done in order for a Canadian to live and work here after marriage.  A few people have asked that I post an article listing several useful SQL queries so that we can extract some useful or otherwise interesting information about our blog directly from the database.  There are some more short stories and other creative works that I’d like to put into the Creative Writing page.  And, of course, there will be all kinds of rants and complaints about a wide variety of subjects

Here’s to another year of posting!

Bookmark To:

Okay, this is getting a little crazy.  I knew that working in Japan would be quite a bit different from working in Canada, but I never expected it to be quite like this.

I’m relatively new at my place of work.  I’m doing a job that is quite different from what I’m accustomed to doing, and I think the challenge is a great way to break through the thinking habits of database designers and software engineers (both of which require very different thinking approaches).  I currently live an hour away from my work, and commute by train on a daily basis.  All in all, I can live with the hour-long train ride each way so long as the hours are not too early in the day (getting to Nagoya everyday at noon is perfect for me and my wife’s schedule).

That said, it seems that the schedule for three of the last six work days have been quite erratic.  I either start incredibly early, which makes things very hard on my family here, or I start early and work late.  Only thrice have I had a shift where I can go in at noon and prepare some decent work, and work until 9:15.  Tomorrow, though, is another story.

Tomorrow I need to travel to a different school to teach.  Normally this isn’t a problem as there are four schools in Nagoya.  I am based at the main school, but have also been trained and taught at the Sakae office (a 5 minute trip on the subway).  However, tomorrow’s trek will take me all the way to Toyota City … two and a half hours away if I catch all the right trains at the right time.  It’s also city I’ve never been to, with references I’m not even remotely familiar with.  Sure, I have some instructions on how to get there, but I’m a master at getting *very* lost.  To add some insult to injury, I even get my perfect shift … 1:00 pm to 9:10.  This would be great if I were at the main Nagoya school but, if I were to work until 9:10 in Toyota City, I would be forced to spend the night at a hotel.  There is no way I could get back home by train and, even if I could, it would be past midnight before I arrived.

Not cool.

I’m starting to see why so many foreigners tend to end their contracts prematurely.  At first I had thought it was because we Westerners have a very nonchelant way of looking at a work contract, but after talking to several experienced teachers and seeing this little happenstance occur all within my first week of employment … I’m at a loss for words.

I understand that I’m pretty much an immigrant to this nation, which means that I can get tasked with all the stuff that other people don’t want to do.  I also understand that being a new recruit means that I get tasked with all the stuff that other people don’t want to do.  But at what point is it alright to turn around and say "Look, I appreciate the work, and I thank you for the opportunities you offer, but I just can’t do it like this!" ?

If I were single and 10 years younger, then coming home at 1 am only to wake up again five hours later to start the next day wouldn’t bother me too much.  The "newness" of making money would be enough to motivate me just enough to keep my mouth shut and head down.  But when we’re married, schedules like this seriously cut into our family time, and there is no amount of money (no amount that I can earn, that is) that can justify it.

Have you ever had to work in this kind of situation?  How long could you do it before either putting your foot down and saying "Please … no more" or walking away?  I’ll be talking to my managers about this tomorrow, and I really hope that we can arrange something that is acceptable to the school, as well as my family and I.  I’d hate to be forced from my very first job because of something like this

Bookmark To:

I’m sure we’ve all met someone like this:  they’re recently married, they’re still excited about it, and everything they say seems to be about their wife.  At first it might be cute for some people, but it quickly gets annoying if left unchecked.  So how do we politely let somebody know that we’re not talking about their wife, nor do we have any interest in hearing about them every time we’re in the same room?  What do we say if we’re guilty of this as well?

Reiko and I have been married for just over two months, and it seems that almost everything reminds me of her.  Like most young couples, I could go on and on and on about her at work, but I try not to.  I do this not only for respect to my co-workers (most of which are also married), but because there are just some things that we can’t talk about over and over.

So how can we shush someone without offending them at the same time?

Ah the nuances of personal interactions.  Things seemed so much easier when I spent my days talking to computers

Bookmark To: