Archive | 2006

Bank of America outsources… Americans

By Ted Roche on June 15, 2006 in Technology

Slashdot had a feeding frenzy over the weekend on reports that Bank of America IT personnel were required to train their outsourced replacements under the threat of losing their severance pay. It’s a sad situation, with overtones of racism and xenophobia, but strikes me as business as usual. When AIG closed the New Hampshire Insurance offices in Manchester in the early nineties, they hired an “outsourcing firm” (though they weren’t called that, back then) to take over essential functions as the office wound down, and all employees were expected to cooperate with the people replacing them (and interview for jobs with the firm), some of whom would have jobs for years. There were dozens of heart-breaking stories of people who had just moved to the area, bought houses, expecting families, folks who had just gotten bad health news, people weeks from vesting or retirement, all out on the street. That’s business. Soulless heartless beasts who need to have basic employee “rights” like family leave, reasonable notice of layoffs, COBRA and so forth. It’s no wonder that company loyalty is dead.

In the dot com era, many of the downsizings and closings required over-reaching non-disclosure agreements: essentially, you weren’t allowed to go to the media to talk about how the bozo VCs and their idiotic managers wasted millions of dollars with no attention to business fundamentals, dumping the employees on the streets after the bubble burst. These strong-arm tactics are nothing new. It’s business. The company has leverage; it uses it.

BoA seems to be taking this to a new level, though. A BusinessWeek Online article in January 2006:

Indeed, when Barbara J. Desoer became the bank’s chief technology, service, and fulfillment executive in 2001, the biggest complaint she heard from the myriad departments her technology team supported was that the IT staff “takes too long, costs too much, and [was] not on schedule enough.” … But by shifting some programming work offshore, BofA was able to convert itself into a 24-hour company. Programmers in California could hand off work overnight to colleagues in India, who handed it back off the next morning.

Sounds like piecework, not programming work.

There’s also the concern about moving account information worldwide: names, addresses, SSNs, account numbers are now shipped worldwide, left in the hands of people in other countries whose laws may not even be as strong as the US’s when it comes to the protection of identifying information. Not that the US is a paragon of virtue when it comes to protecting identity; quite the contrary, sadly.

For me, a bank is a convenient place to keep some money so I can send paper checks to accounts receivable and pay a purchase with a credit card. I rarely need international reach. And I’d like my bank to employ people locally, not at the far end of the globe. A huge corporation like BoA doesn’t offer me anything I can’t get at the local credit union. And money saved here is more likely to stay here.

Bank of America has been running a set of ads in the Boston area for the past two years, feel-good ads of how they are re-investing in their communities. I would much rather they re-invested in their communities by being a loyal employer than by contributing to a homeless shelter for ex-employees.

Deep fixes in Microsoft's monthly security bulletin

By Ted Roche on June 15, 2006 in Microsoft, Security

Microsoft shipped its monthly security updates, and these are not superficial patches, but deep fixes, likely with ramifications for everyone using these products. Anticipate serious perturbations to your systems if you are depending on the behavior of these applications as part of your customer solutions. Microsoft ships patched code it classifies as “Critical” for:

MS06-021 – Cumulative Security Update for Internet Explorer (916281): this is supposed to include patches addressing the ActiveX behaviors in the Eolas suit. This is a good time to abandon ActiveX controls and IE if you are still supporting them.

MS06-022 – Vulnerability in ART Image Rendering Could Allow Remote Code Execution (918439)

MS06-023 – Vulnerability in Microsoft JScript Could Allow Remote Code Execution (917344): JScript? Are they still making that?

MS06-024 – Vulnerability in Windows Media Player Could Allow Remote Code Execution (917734)

MS06-025 – Vulnerability in Routing and Remote Access Could Allow Remote Code Execution (911280)

MS06-026 – Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (918547)

MS06-027 – Vulnerability in Microsoft Word Could Allow Remote Code Execution (917336)

MS06-028 – Vulnerability in Microsoft PowerPoint Could Allow Remote Code Execution (916768)

“Important,” perhaps less critical patches include:

MS06-029 – Vulnerability in Microsoft Exchange Server Running Outlook Web Access Could Allow Script Injection (912442)

MS06-030 – Vulnerability in Server Message Block Could Allow Elevation of Privilege (914389)

MS06-032 – Vulnerability in TCP/IP Could Allow Remote Code Execution (917953)

One “Moderate” patch rounds out the bunch:

MS06-031 – Vulnerability in RPC Mutual Authentication Could Allow Spoofing (917736

In addition, MS06-011 Permissive Windows Services DACLs Could Allow Elevation of Privilege (914798) has been re-released as version 2.0 with new patching information.

It's the 24th week of the year, and Microsoft is up to 31 patches.

UVCIA Panel 21 June: FOSS: Are there options for your business?

By Ted Roche on June 14, 2006 in LAMP, Linux, OpenSource, Security, Technology

I'll be speaking on a panel next week at the Upper Valley Computer Industry Association. The panel is entitled “FOSS: Are there options for your business? How can the use of FOSS software supercharge your enterprise” and will be moderated by Bill McGonigle. Here's the blurb:

“Please join a panel of local Free/Open Source Software (FOSS) experts for a discussion of what's new in the field. Each panelist will briefly describe how he uses FOSS software to supercharge his enterprise. After that, the panel will discuss a series of issues that are frequently asked about Free/Open Source Software, and will help the audience understand these questions:

What is Free/Open Source Software?
Why would I want to use Free/Open Source Software?
How can I improve my profits by using Free/Open Source Software?
What's changed in the past few years?

“The panel will then switch to a Q&A session, answering questions and engaging discussion with the audience members.”

The other panelists include:

David Clifton, Systems Administrator, Fluent Inc, Lebanon, NH
Scott Helper, Web Developer
Jonathan Linowes, Principal, ParkerHill Technology, Lyman, NH
Ted Roche, Technical Lead, Ted Roche & Associates, LLC, Contoocook, NH
Todd Underwood, Chief Operations and Security Officer, Renesys, Hanover, NH

The meeting will be on Wednesday, June 21, 2006, 7:30am – 10:00am, at The Fireside Inn. Admission costs $45, which includes breakfast. Details at http://www.uvcia.org — hope to see you there!

TechEd Top Ten Hot Buttons

By Ted Roche on June 12, 2006 in Microsoft, Technology

Over at Microsoft Watch from Mary Jo Foley lists The Top Ten TechEd Hot Buttons. “Microsoft's annual gathering for IT pros and developers kicks off on June 11. Here is our list of the most significant of the unveilings and announcements [^] everything from a first test build of the new mobile SQL Server, to a new beta of WinFS — that we're expecting at this week's show.”

Scoble escapes the belly of the beast

By Ted Roche on June 11, 2006 in Microsoft

Over at Scripting News, Dave Winer confirms Scoble moves. “Chris Pirillo says it's “100 percent true” that Scoble is leaving Microsoft and joining Podtech.” … Dave goes on to say,”I didn't like how Microsoft was changing our relationship, and I told him so, really clearly. You can only be at such a large company for so long before it changes you… A person like Scoble can have enormous influence just by adopting some very simple ideas. It's the ideas that have power. But Microsoft hasn't let the changes waft over them. They still think in old terms. I'm glad to see my old friend didn't go down with the ship.”

Agreed.

New Dabo screencast

By Ted Roche on June 9, 2006 in Python

Ed Leafe posts: “I've just posted a new screencast. This one is different than the others, in that its intent is not to show you what you can do with Dabo. Instead, it shows a little bit of what goes into Dabo classes, and perhaps might help people get familiar with how our stuff works. For those who are new to Python, too, it may also show some elements of Python with which they may not be familiar. At worst, it's me rambling on for 13 minutes or so. ;-)”

http://leafe.com/screencasts/addproperty.html

“A member of the dabo-users list asked how to force the case of characters in a textbox, and while it was certainly possible by coding, I thought that such things should be built-in to the text controls. The screencast is sort of looking over my shoulder as I add that feature to the Dabo base class textbox.”

XAMPP

By Ted Roche on June 9, 2006 in LAMP, Linux, MySQL, OpenSource, Technology

I've been involved for a couple of years in developing Linux-Apache-MySQL-PHP/Perl/Python apps for various clients. During most of that time, I've used in-house Linux servers for prototype, development and testing, and Linux servers deployed at the client site or a hosting provider for production work. Recently, I wanted to spin off a second copy of an application on a local Windows laptop to test some radical changes while the rest of the development team continued to work away on the dev server. Ideally, I wanted to install the entire LAMP set on my local workstation without a lot of work, configuration, downloads, HowTos, and so forth. XAMPP offers free, prepackaged installation modules for Linux, Windows, OS X and Solaris, bundled with a dozen handy utilities like PEAR and phpMyAdmin. Installation was a click, click, click, done! process. Reading a few READMEs got a few non-standard settings like enabling InnoDB data storage. Slick!

If you need a quickly set up XAMPP stack, you'll want to check this out.

MonadLUG meeting last night

By Ted Roche on June 9, 2006 in LAMP, Linux, OpenSource

Tim Lind put on a great presentation of TrixBox 1.0 (the renamed and renumbered successor to Asterisk@Home 2.8) to ten attendees at tonights MonadLUG meeting. Tim brought nearly the entire system from his Computerborough offices: a salvaged PIII-700, a Digium card card with two daughterboards: FXS and FXO, a couple of cordless phones, an IP phone, and his laptop, and showed us the entire setup. Tim uses the machine to take incoming POTS calls and route it through a digital attendant to one of several phones, ring groups or voice mail boxes. Day and nighttime setups have different rules. In addition, he can route to his cell phone, process faxes, send voicemail messages via email, and a mind-boggling combination of the above and more. With graphs. Wow! Very impressive presentation. Asterisk could be a great solution for nearly any size business, and an inexpensive way to bring a PBX to the small business world.

Next month, July 13th Charlie Farinella will show us how he works with the ‘screen‘ command – a utility for supporting multiple remote terminal sessions on a single connection. Sessions started within a screen session can be backgrounded, suspended, and recovered after a disconnection.

On August 10, Mark and Tim from Computerborough will return again and show us around SugarCRM.

Thanks to Tim for a great presentation, Guy for MC’ing the meeting, and Ken for the facilities!

Ow. Too late.

By Ted Roche on June 9, 2006 in Security, Technology

House Rejects Net Neutrality Rules. The US House of Representatives definitively rejected the concept of Net neutrality on Thursday, dealing a bitter blow to Internet companies like Amazon.com, eBay and Google that had engaged in a last-minute lobbying campaign to support it. By a 269-152 vote that fell largely along party lines, the House Republican leadership mustered enough votes to reject a Democrat-backed amendment that would have enshrined stiff Net neutrality regulations into federal law and prevented broadband providers from treating some Internet sites differently from others. [OSNews]

In the /help directory

By Ted Roche on June 9, 2006 in Home Page

Doc Searls points to the Google open letter on Net Neutrality. Innovation on the internet by small and medium businesses needs a level playing field, not tilted by Big Media and Bigger Telecom to their business model alone. ISPs should get their fair fee for providing bandwidth, but they need to be neutral players in what we do with our wires. If I want to saturate the wire with an encrypted tunnel on port 12345 from here to my client in Walla Walla, provided I am within my TOS and AUP, providers need to stay out of the way. We need net neutrality to ensure that. Get involved!

Older posts Newer posts

Navigation