So I've managed to sit down and use Apple's attempted copy of a Tablet PC for half an hour or so. Dubbed the iPad, the model number on the back reads TC1100, with a manufacturing date in 2003. Hmmm weird. Moving along.
So what have we got in this machine? It comes with a 1Ghz processor (ouch Catherine's HTC HD2 mobile phone has a 1Ghz processor) and sports a 4:3 (no widescreen in this day and age, not good for media watching) that has a resolution of 1024x768. Kind of lacking considering I'm used to Tablet PCs with 1440x1050, really the minimum in my opinion as that way browsing the web isn't annoying in portrait mode as you've got over 1024 pixels in width.
The machine in question runs Windows XP Tablet Edition, possibly a bit of a strange choice for Apple, again in this day and age one would really hope for Windows Vista or Windows 7. It does however sport a proper Wacom digitiser now, unlike HP *coughs* last model which required one of those weird battery powered pens.
All in all, in this day and age (again), this machine seems a bit lacking. Back in 2004 or 2005 it was pretty much cutting edge for a slate Tablet PC. Releasing something like this in 2010, with those sorts of specifications, with the an unknown amount of RAM, and no doubt less than HP's TC1100 shown above, essentially nothing more than a giant iPhone (without the telephone), a strange sort of Tablet PC that you can't use for note-taking, or handwriting on, or drawing in Photoshop (not that it can even run Photoshop of course) with an old 4:3 screen when its being marketed as something to watch TV or films on, with it being locked into a single store, not capable of running anything other than software approved by the manufacturer with a bezel that fat is frankly more of an iDud.
I prefer the look of HP's latest slate Tablet PC:
Not only does it actually look good. It's a proper computer, that runs a normal operating system, in this case Windows 7 so you can do everything you can on a normal computer. You can take your existing PC applications and put them on this little beauty.
So a new Zune update has just come down, it adds welcome support for Windows 7 libraries.
Awesome. Now it behaves like it should, like Windows Media Player and Windows Media Center. You should have a single library for music that can span multiple locations and computers. No longer will the Zune want to put its music in Music\Zune, but rather it'll use the default folder that the Music Library specifies, and best of all no matter what application I use, Media Player or Zune I'll see the exact same content. Now if only more primative software like iTunes could work this out instead of maintaining its own library isolated from everything else.
Even more impressive especially for podcasters like myself is it creates a new Podcasting library.
Yes I subscribe to my own podcast, (well I have to make sure it works). Hopefully with this level of exposure it will bring millions more into podcasting.
Internet Explorer 8 is more secure, and why the Firefox fanboys and the media need a security lesson
So Internet Explorer has been the media's main victim this past week. With stories about how it is completely unsecure.
Of course having a vulnerability isn't a good thing, but why is this getting so much attention, especially considering it's not even being used to target individuals? Well I suppose the media have to knock Microsoft, it's about the only thing they can do when it comes to Microsoft so this will have to do.
Tech Radar recently interviewed Microsoft's head security guy in the UK Cliff Evans. And did a pretty bad job of it. So Evans was explaining how switching away from Internet Explorer 8 isn't a good idea - something I agree with.
"If you were to ask me 'what's the most secure browser?' I would say Internet Explorer 8 – we're talking about a single vulnerability," he added.
Ouch a single vulnerability that's bad right? Some guy called richmurrils seems to think so and comments:
That's the funniest thing I've read in ages.
Of course what he really demonstrates is how little richmurrils actually knows about technology or security, I expect he was one of the people telling people to turn UAC off /facepalm, and how Tech Radar can't report things in context. So I'll put things in context even if they can't be bothered to, Firefox 3.5 has had at least 35 documented security vulnerabilities. Linux based operating systems can have hundreds of vulnerabilities discovered each year, Windows historically has had the fewest usually at just a dozen or two every year discovered. A single vulnerability isn't anything unusual.
Of course nobody bothers reporting that this vulnerability can only be exploited on Internet Explorer 6, a 10 year old version and on Windows XP a 10 year old operating system. Do Mozilla even bother to support such old products? Of course not.
Alright sure the vulnerability still exists in later versions, but it cannot be exploited on newer systems because of the additional security measures Windows Vista and later provide. Namely Protected Mode made possible by UAC.
When using Firefox a hacker only has to exploit code in the browser to run code on the machine. Exploiting Internet Explorer not only requires them to find a vulnerability and exploit it but it also requires them to somehow break out of the Protected Mode sandbox. Charlie Miller a security researcher talks a bit about this back during the Pwn 2 Own contest:
Why Safari? Why didn't you go after IE or [Firefox]?
It's really simple. Safari on the Mac is easier to exploit. The things that Windows do to make it harder (for an exploit to work), Macs don't do. Hacking into Macs is so much easier. You don't have to jump through hoops and deal with all the anti-exploit mitigations you'd find in Windows (Vista and later -Paul).
It's more about the operating system than the (target) program. Firefox on Mac is pretty easy too. The underlying OS doesn't have anti-exploit stuff built into it.
With my Safari exploit, I put the code into a process and I know exactly where it's going to be. There's no randomization. I know when I jump there, the code is there and I can execute it there. On Windows, the code might show up but I don't know where it is. Even if I get to the code, it's not executable. Those are two hurdles that Macs don't have.
It's clear that all three browsers (Safari, IE and Firefox) have bugs. Code execution holes everywhere. But that's only half the equation. The other half is exploiting it. There's almost no hurdle to jump through on Mac OS X.
Of course 3rd parties could use Protected Mode on Windows Vista and later like IE7 and 8 do. But Mozilla, Opera and others simply don't bother. They let the process run with the same rights as the user which is fundamentally less secure then running the browser in its own little sandbox where it can't get out.
In reality vulnerabilities like these are rarely what normal people come up against on the internet. The main problem is phishing and malware. Both of which are socially engineered to get the computer user to either hand over their data willingly or willingly install an application that's malicious. So how does Internet Explorer compare? IE8 blocks 83% of phishing websites completely, compared to Firefox which blocks 80%. While Internet Explorer 8 blocked 81% of malware before it reached the machine. Firefox blocked less than 30%, and other browsers scored even worse (source).
So not only is it more difficult to exploit vulnerabilities on Internet Explorer 8 on Windows Vista and up. The malware and phishing filters are also better on IE8, something that will protect most computer users.
One last comment is on how well Google and the media have spun this around from a story about how Google got broken into and people's personal data was stolen into a story about how a 10 year old browser on a 10 year old system has a single vulnerability, without even asking why Google are running such dated systems or without bothering to report that newer versions of IE aren't as susceptible. Nice spin department working there.
Update: Mark informed me that Chrome also runs in a sandbox.
The BBC have a headline that reads "German government warns against using MS Explorer". Well that's no problem, as I've never even heard of an MS Explorer. Of course what they're really going on about is Internet Explorer, and how version 6 was used to compromise Google's systems.
find an alternative browser to Internet Explorer to protect security.
Who knows what "protect security" actually means. Perhaps they mean protect their systems, or improve their security. Seriously who wrote this article?
What they should really be having a go at is what sort of incompetent system administrators would be using a 10 year old browser on a 10 year old operating system. Ed Bott says such administrators should be guilty of malpractice. And I agree with him, what sort of people are running the IT departments of companies like Adobe and Google to allow such dated technology on the network.
Even three year old systems like Windows Vista and Internet Explorer 7 in the default configuration are immune to this sort of attack.
And it is just amazing that this has somehow been spun into an anti-Internet Explorer story when the real story is how can we trust Google with our data in the cloud when they're running such antiquated systems?
Until yesterday I had never bothered really checking out the Zune, the actual device wasn't available in the UK. The marketplace obviously wouldn't work in the UK, not that I'd probably buy anything from there I do prefer my CD-quality sound. But one thing about the Zune had always interested me, the social aspect of it, and the recent rumours of a Zune client being available for Windows Mobile has made it far more interesting, and removed a lot of the potential lock-in aspects, like only syncing protected tracks to Zune devices.
Since moving to Aldershot and having to spend more time travelling I find I actually listen to music and podcasts a fair bit more. You need something to do on these long boring treks back and forth from town right? Right so I've been listening to music but over the last couple of months my music collection, which has barely changed in 5 years is started to feel old.
So yesterday I decided to try and get the Zune software working, at least partially to try and get Zune Social working. I don't have many friends in the US (the Zune shares your Xbox Live friend list), just a few but two of them use the Zune and I can see what they're listening too and so on. After spending a while in the registry I managed to get the marketplace to display, I managed to login with my UK Windows Live ID and I thought I was all set. Wrong. Zune Social didn't seem to be working. So I am assuming they're either filtering any non-US/Canada IP addresses or they're picking up the locale your computer is set to and filtering that server side. I could of course set my computer to the United States (which I really, really wouldn't want to do), but then it won't sign in with my Live ID, I could of course create a new Live ID based in the US - but to be honest that's too much hassle.
The Zune software itself is fantastic, far far better than I imagined. It has loads of gorgeous fluid animations and it looks awesome. I can see why many people have argued it should come with Windows and replace Windows Media Player - but there are counter arguments lets be honest, Windows Media Player has a much lower memory footprint, much faster loading times and syncs with virtually any mobile device that isn't locked down, i.e. iPod and Zune.
What would I like to see?
Stop blocking international users from using Zune Social. OK you won't be making money off us but it will be building mindshare. People will visit my blog and the websites of thousands of other people and see Zune Social badges.
Ideally of course I'd like to see it supported in the UK. Not tied to the Zune hardware, but opened up at least to Windows Mobile. And I'd like to see the Zune Pass priced at £7.99 a month at the most, or better yet £4.99 which would be an insanely successful price point.
Since Catherine got the HTC HD2 I've been hoping that HTC would release a keyboard equipped phone in the Touch Pro series that sported the 1Ghz processor, and the capacitive screen would be a nice too, and of course Touch Flo/Sense that supported landscape mode.
The good news is HTC's product roadmap for the first half of next year has leaked. The bad news is, there's no sign of any such phone. There are three phones under their productivity category all of which are powered by Windows Mobile 6.5.
The Photon, which seems to be keyboard-less, but still under productivity?
This seems to be a mini version of the HD2, it sports a 600Mhz processor, 3.2 inch HVGA capacitive screen with 256MB RAM.
There's also the Trophy, which has a similar form factor to most BlackBerrys, it has a 3 inch VGA screen also capacitive, with another 600Mhz processor and 256MB of RAM.
Then there's the Tera which seems to have the same form factor as the Touch Pro 2, only it sports a disappointing 3 inch WQVGA screen and the same 600Mhz processor and 256MB of RAM.
Looks like I'll be waiting until at least the second half of 2010. At least it shows how future-proof the HD2 is, only one other phone will be using the 1Ghz Snapdragon processor in the next six months and that will be the Bravo, whose main feature seems to be 720p video recording, but even that doesn't come close to the massive 4.3 inch screen on the HD2.