Probing mobile (cell) networks

Mobile networks have many disparate types of devices.  You can probably guess what some of them are, or even go to the provider’s store or kiosk and get a list.  But there are going to be more devices out there.  So why not scan the IP addresses on your subnet?

Well, the access points for mobile networks generally don’t allow promiscuous access.  So you may have to go to ARIN and other lists in order to start getting some ranges to check.  You can also check access logs of a Website to find visitors with mobile devices.  (Of course, there is always the NATting that the providers do, not to mention DHCP, and the fact that most mobile devices don’t run servers or services.)

Colin Mulliner, of the Berlin Institute of Technology, did manage to find a fair amount of interesting stuff.  Windows Mobile tended to be a useful source of open ports and services (usually open FTP services on mobile devices).  He also found and was able to identify a number of specialized devices that were identifiable from responses to probes.  Some of the most interesting were mobile access points: connecting to the mobile networks and then providing local wifi for computers.  Others were HTTP servers for surveillance cameras.  (Others were GPS tracking devices which, oddly, had no security against “guest” login  :-)  (Some were smart meters.  With smart meters rolling out here in BC, lets hope they are more secure …)

Possibly of concern was the large number of jailbroken iOS devices.  Many of them still had the default “alpine” password.  (If you hack your own device, you’d better be prepared to secure it.)  This could form the basis of a fair sized worm and/or botnet.  Then again, iOS users aren’t alone here.  An awful lot of people seem to think nothing of creating mobile devices and hooking them up to mobile networks with very little in the way of security.


Smartphone vulnerabilities

Scott Kelly, platform architect at Netflix, gets to look at a lot of devices.  In depth.  He’s got some interesting things to say about smartphones.  (At CanSecWest.)

First of all, with a computer, you are the “tenant.”  You own the machine, and you can modify it any way you want.

On a smartphone, you are not the only tenant, and, in fact, you are the second tenant.  The provider is the first.  And where you may want to modify and customize it, the provider may not want you to.  They’d like to lock you in.  At the very least, they want to maintain some control because you are constantly on their network.

Now, you can root or jailbreak your phone.  Basically, that means hacking your phone.  Whether you do that or not, it does mean that your device is hackable.

(Incidentally, the system architectures for smartphones can be hugely complex.)

Sometimes you can simply replace the firmware.  Providers try to avoid doing that, sometimes looking at a secure boot system.  This is usually the same as the “trusted computing” (digital signatures that verify back to a key that is embedded in the hardware) or “trusted execution” (operation restriction) systems.  (Both types were used way back in AV days of old.)  Sometimes the providers ask manufacturers to lock the bootloader.  Attackers can get around this, sometimes letting a check succeed and then doing a swap, or attacking write protection, or messing with the verification process as it is occurring.  However, you can usually find easier implementation errors.  Sometimes providers/vendors use symmetric enryption: once a key is known, every device of that model is accessible.  You can also look at the attack surface, and with the complex architectures in smartphones the surface is enormous.

Vendors and providers are working towards trusted modules and trustzones in mobile devices.  Sometimes this is virtual, sometimes it actually involves hardware.  (Personally, I saw attempts at this in the history of malware.  Hardware tended to have inherent advantages, but every system I saw had some vulnerability somewhere.)

Patching has been a problem with mobile devices.  Again, the providers are going to be seen as responsible for ongoing operation.  Any problems are going to be seen as their fault.  Therefore, they really have to be sure that any patch they create is absolutely bulletproof.  It can’t create any problems.  So there is always going to be a long window for any exploit that is found.  And there are going to be vulnerabilities to exploit in a system this complex.  Providers and vendors are going to keep trying to lock systems.

(Again, personally, I suspect that hacks will keep on occurring, and that the locking systems will turn out to be less secure than the designers think.)

Scott is definitely a good speaker, and his slides and flow are decent.  However, most of the material he has presented is fairly generic.  CanSecWest audiences have come to expect revelations of real attacks.


Paper safe

I first saw this, appropriately enough, on Improbable Research.  It’s appropriate, because, when you see it, first it makes you laugh.  Then it makes you think.

This guy has created a paper safe.  Yeah, you got that right.  A safe, made out of paper.  No, not special paper: plain, ordinary paper, the kind you have in your recycling bin.  He’s even posted a video on YouTube showing how it works.

Right, so everyone’s going to have a good laugh, yes?  Paper isn’t going to provide any protection, right?  It’s a useless oddity, of interest only to those with an interest in origami, and more free time on their hands than any security professional is likely to get.

Except, then you start thinking about it (if you are any kind of security pro.)  First off, it’s a nice illustration of at least one form of combination lock.  And then you realize that the lock is going to be useless unless it’s obscured.  So that brings up the topic of maybe security-by-obscurity does have a function sometimes.

Then you start thinking that maybe it isn’t great as a preventive control, but it sure works as a detective control.  Yeah, it’s easy to smash and get out whatever was in there.  But it’ll sure be obvious if you do.

So that brings up different types of controls, and the reasons you might want different controls in different situations, and whether some perfectly adequate controls may be a) overkill, or b) useless under certain conditions.

It’s not just a cute toy.  It’s pretty educational, too.  No, I’m not going to keep my money in it.  But it makes you think …


New computers – Kindle – Ebooks and education

Recently I was discussing the use of technology in education, when an odd (to me) question came up.  It was about the use of ebooks.  That wasn’t really high on my radar on the tech-in-ed landscape.  When I started (good grief, more than 30 years ago) the use of computers for textbooks was a vague, blue-sky idea that a guy named Vannevar Bush had once talked about.  (Actually, he was talking about a desk, rather than a book.)

Recently, of course, there has been a lot of discussion about ebooks.  School boards have been looking into cost savings.  Major tech corporations and publishing conglomerates are getting on the bandwagon.  So, her interest was natural.

Specifically, she wanted to know:

> Perhaps you talk to me a bit about why (from a non-environmental
> standpoint) it’s important for students to use digital e-books?
> Is there a learning curve when it comes to learning from an ebook
> rather than a textbook? Is there a shorter attention span?
> What about eye strain?
> How would this effect the structure of learning?

This I could do, having been given a Kindle for Christmas this year.  I have just finished doing my first review for the series, using an ebook on the device.  Definite tradeoffs: it was easier to grab quotes, much harder to make notes, easier to search, and a right royal pain to try and flip back and forth to check notes, index, etc.  Also a complete pain to check references in other works.

In terms of education, and using study materials in school, it was easier to grab quotes — which would make copying and plagiarism easy and very tempting.  That’s a bad thing.  It is much harder to make notes, and makes study, or writing your own paper, more difficult.  Again, given that the purpose of many assignments is to get students to practice creating their own writing, this is a bad thing.

On the other hand, it’s easier to search, and that’s good for studying.

But it’s a right royal pain to try and flip back and forth to check notes (most books don’t have footnotes any longer, they are no endnotes–at the back of the book), the index, appendices, and other material in the book.  It is also a complete pain to check references in other works — definitely bad for studying and learning.

In terms of it being “important” for students to use ebooks: as a former public school teacher I don’t think it is.  The only reasons would be cost, and getting up to date materials.  Frankly, the quality of almost all school texts is absolutely appalling, so having the latest version of tripe isn’t all that important.  So, that just leaves cost.

There is a learning curve to using an e-reader, but a fairly small one.  No, I take that back.  Actual reading isn’t that hard, but you do have to learn something about filing, arranging, and accessing material on the device, particularly in a school/learning situation.

The small screen size is a bit annoying, although you generally can increase the font size.  (The book I just finished reviewing was in PDF, and the options for font size for that are very much less.)  Generally I didn’t find much eye strain, although I’m used to reading small print, but in low light it was pretty awful.

In terms of learning structure, there could be some advantages.  As a teacher, I could create notes and send them to the devices of all the students: it would help that they could not say they didn’t have the assignment  :-)


New computers – Kindle – Books (part 1)

You can, of course, just buy books from Amazon.  It’s pretty easy: you choose the book, arrange payment, click on a link to send it to your Kindle, and, next time your Kindle is connected to a wireless network you choose “Sync & Check for Items” from the menu on the home page, and they get loaded onto your machine.

But, let’s suppose you are, like me, cheap.

Well, Amazon is still a source.  You can search on “public domain,” for example.  (Type in “public ” and Amazon will helpfully suggest something like “public domain books for kindle free.”)  That will get a list of books, most of which will be available free of charge.  (Most of them probably started life in Project Gutenberg.  We’ll get there later.)  You can even do it while your Kindle is connected via wireless, in the “Shop in Kindle Store” option on the home page menu.  Some of the books that come up will be books about the public domain, and those you’ll probably have to pay for.  Also, some of the books, even in the public domain, bear a charge, although it’s probably fairly modest.  You will have to wade through them until you come up with something you want to read.  (You will also have to wade through a whole bunch of titles in German.)

Now, these public domain books tend to be old.  There are definitely classics to be found: Austen, Dickens, Wilde, Twain, and many, many others.  If you want more recent titles, there are other searches you can do.

Try searching on “0.00“  That is the price you will see if the book truly is free of charge.  You’ll still see some of the public domain books, but you will also see some more modern titles.  (For some reason, lots of romances.)  Amazon seems to mess with searches for “0.00″ especially if you add limits, like “0.00 science fiction”  You will only get a very few titles.  (The day I tried it, one was a science fiction magazine.  The description even said that this subscription was always free for Kindle users.  When I tried to subscribe, it asked for a credit card for “recurring charges.”)

But, there are many, many other sources.

As previously noted, there is Project Gutenberg.  This is the Grandfather of all free online book sources, started by Michael Hart.  There are over 20,000 titles in the catalogue, with more being added all the time.  They used to just be text, but they now come in half a dozen formats.  For Kindle, you’ll want .MOBI.  (I’ve also mentioned the formats Kindle will handle.)  Most of these titles appear elsewhere, including ManyBooks, which provides the texts in even more formats.

There is also a Website called Kindle Review.  They have suggestions about where to get free books (although they mostly seem to sell Kindles).  They have suggestions about books free at Amazon, particularly ones that are only available for a short time.  You have to search for some entries, and the site is not easy to navigate, but I found this Amazon listing of limited time offers to be quite useful.  They aren’t all free, but a fair number are.  (Remember, on Amazon, that in the upper right of the page you can sort, and one of the options is by price, lowest to highest.)


New computers – Kindle – More Encounters

A few random observations along the way:

The Kindle has rebooted spontaneously a couple of times since I got it, and sometimes it refuses to connect to wireless unless it gets rebooted.  Since the device is so simple, I would have thought that this shouldn’t be a major process, but it seems to take about two minutes to do a reboot.

One of the times that it wouldn’t connect, and I rebooted it, it scared the liver out of me.  It seemed to be at the end of it’s boot process, came up with the home page–except that it said I had zero items on the device.  At that point I had loaded about 50 books onto it, and sorted them into half a dozen collections, none of which were in evidence.  Shortly after that it did decide that my stuff was there, but you shouldn’t scare old people like me in that way.  It could have major medical consequences.  For my pants, if nothing else.  (When I finally tried out the USB connection to the computer, the first thing I did was back up the whole thing.)

Logging on to hotspots with redirection is still inconsistent.  Sometimes it has no problem at all; other times I go from “Shop in Kindle Store” to “Sync & Check for Items” to the browser, and a couple of times around before I get a chance to a) pick a network to which to connect, and b) a chance to reload whatever page the browser was on before, which finally prompts the redirect and login.

Amazon doesn’t like “selling” you the same book more than once, even if it is free.  (It will offer to reload the book for you, though, in case you’ve lost itor accidentally deleted it.)  If you send books via email, though, it will quite happily load the book twice, and give you two entries for it.


New computers – Kindle – BC Libraries

Even before I was given a Kindle, I was vaguely interested.  I use my local library a lot, and review and annotate stuff on their new system.  Recently the library has been pushing the fact that ebooks are available for borrowing.  In fact, they had a meeting about e-readers (which, worse luck, I was unable to attend), and even have some e-readers as loaners.

So, when I got the Kindle, the library site was one of my first stops.

It was not an unqualified success.

First of all, my local library has no ebooks for loan.  The actual ebooks seem to be loaned by the BC Libraries system.  I say “seem to,” because the actual ebooks, and the system for controlling them, seems to be run by an American outfit called OverDrive.  This becomes important once you start looking for titles and ebooks.  There is Kindle compatible material, but none of it is available in Canada.  (Which seems very odd when the site is supposed to be about the “BC” libraries.)

There are a very large number of ePUB format titles.  There are even some that appear to be free for the taking.  I tried one, converted it to .MOBI, and it seemed to work OK.

For the actual loan books, I placed a hold.  The hold came in.  I read the directions on the “Check Out Assistance” link.  I installed Adobe Digital Editions (ver. (even though I am, as a security specialist, really uncomfortable with Adobe products) in order to be able to return the item.  I “downloaded” the item to Adobe Digital Editions.  It now appears in my “library” on Adobe Digital Editions.  However, the way to “return” the item required help from a library tech, and it definitely is not intuitively obvious.  Oh, and it definitely won’t convert to Kindle format.

I guess I have to go to other sources.


New computers – Kindle – operation

Having been given a Kindle, what does one do with it?

Unless you have a Kindle Keyboard (a different model, with a keyboard about the size of that for a slide phone or Blackberry across the bottom of the screen), as noted, the virtual keyboard is a pain, so you aren’t going to do much writing.  That leaves reading.

First of all, then, you have to get some books to read.  You can copy them onto the Kindle, from your computer, with the USB cable.  I’ve done that now, and it works quite well.  Plug it into the computer, wait for the computer to read the device driver, and it shows up simply as a USB drive.  You can put files into the “My Documents” folder, and they show up on the device.  (You can also copy any or all of the “books” on the Kindle onto your computer, as backup.  Oddly, most ebooks seem to have four files associated with them, once you start reading them.)  I’m a bit loath to do the cable connection randomly just now, since, also as noted, plugging into a USB port on a computer starts charging, and, even though it’s a lithium polymer battery, I’d just as soon give it a few full cycles before I start messing with battery memory.

You can use the wireless connection in two different ways.  You can “shop” at the Amazon store.  Or, you can find your own files and ebooks, and email them to your Kindle.  When you set up, the device is assigned an email address.  You can find this under the “Settings” entry of the menu from the home page.  Find an ebook that you want, and send the file, as an attachment, to that address.  The next time the Kindle is attached to the net, you can sync, and that file will be downloaded to your device.  (If it doesn’t show up on the home page, it may be under the “Archived Items” section.  For some reason, some files seem to go there, possibly if the download isn’t complete.)

When I did some testing of the email-to-Kindle function, it generally worked well.  However, in my early tests, about half of the text files, and about a third of the .PDFs, didn’t come through.  I tested sending multiple files (four, all text) as attachments in a single message.  Two of them came through, and the other two never did.

So, you can just get any ebooks, right?  Well, not quite.  The Kindle seems to be fairly limited in this regard.  You can get ebooks from Amazon, of course.  These are indicated by an .AZW extension.  In terms of the ebook standards, you can also get and read .MOBI files.  (.MOBI and .AZW are apparently the same format, except that .AZW are locked by Amazon.  You can get some utilities to unlock and convert them, but I haven’t done a lot of testing with that yet.)  The Kindle can handle text files, but, of course, they don’t have any formatting.  Kindle says it can handle HTML, and that is partially true.  You can send an HTML file, and it will come through.  But it doesn’t render: you simply see the text of the file, HTML code and all.

Kindle says it can handle .PDF, although it also says this is experimental or beta.  It doesn’t support links within a .PDF, but it does support extracting text from a PDF (as long as it really is text, and not an image), which I found handy, and just a little surprising.  It does not, of course, handle locked or password protected files.

And it does not handle .ePUB format, which is a real nuisance.


New computers – Kindle – net

If you want to use a Kindle, you have to get books onto it.  It does come with a USB cable, and you can load books from your computer.  I haven’t tried that yet, because the USB cable also charges the battery, and, in the interests of battery life, I’ve wanted to let the battery pretty much completely discharge before I charged it up again.  I’ll let you know how that works later.  (This also gets into the issue of ebook formats, and I’ll get into that later, too.)

Right off the top, probably the quickest and easiest way to get books onto your Kindle is if you can connect to the Internet via Wi-Fi.  As previously noted, if you have a private network and know the password, it can be a pain to enter, but you are in.  If you are in a Wi-Fi hotspot, things can get a bit trickier.

You can try and “Shop in Kindle Store.”  You can “Sync & Check for Items.”  (Both of those are on the “home” page menu.)  Maybe it will work.  Maybe it won’t.  Neither of them like hotspots that do redirection.  Many times they will simply tell you that the function requires a network connection.  (Sometimes the Kindle will tell you that the function requires a network connection, but you will also see indications that books are actually being downloaded.  It’s hard to tell for sure whether you are connected and can actually do anything.)
The Kindle 4 (my version) has a Web browser, which you can get to via the home page menu, under the “Experimental” entry.  It definitely is experimental.  It will not open links, if those links are set to open in new frames, tabs, or windows.  (It tells you that it can’t open the link because it doesn’t support multiple windows, rather than just opening it anyway.)  If the hotspot does redirection, the browser might go to the redirected page if you ask it to connect to a site, or reload a page.  On the other hand, sometimes you will try to fire up the browser in order to connect at a hotspot, and the Kindle will tell you that it can’t open the browser because you don’t have a net connection.  Helpful, that.

(The Kindle seems to ship with the wireless enabled and on.  I tend to turn it off, when I’m not actually downloading or “shopping,” in order to a) save battery, and b) keep from radiating all over the place.  I don’t know how many people will know that they can turn it off from the home page menu.


New computers – Kindle – First Encounters

What I have is a Kindle 4.  I assume the “4″ stands for some level of the software.  Having done my initial exploration, I vaguely remembered having seen that it was a model D01100.  (Eventually I found that reference again: it was buried in the appendix to the “Kindle User’s Guide.”  I assume it’s less important than the Kindle 4 part.)

When you start out, the Kindle wants you to go through a registration process.  Being in a place with a Wi-Fi network, I did.  (This version of Kindle doesn’t have a keyboard.  It does have a virtual keyboard, which is usable, but difficult.  Entering a 26 character hex password was a bit of a pain.)  I have had an account with Amazon, so, when it asked if I wanted to use one or create one, I guessed at my old username and password.  It did seem to work; at least it let me start working on the Kindle, but somehow it didn’t pick up my “Registered User:” name.  At some point something must have figured out who I was, because the “Send-to-Kindle” email address (I’ll get back to that) did have my name in it.

On the first screen you see after the registration process (I later learned it was the “home” screen) there was an entry for a “Kindle User’s Guide,” and I believe it was the entry highlighted.  Being a “read the manual” type person, I read it.  It starts out by saying that it’s short and informative and can be read in 10 minutes.  Hah!

It starts out with charging the battery.  This would seem to make sense, except that a) like most battery-powered devices these days it comes charged, and b) if it wasn’t charged, you couldn’t read the manual, now could you?  It then shows you the physical layout and buttons.  Including the power button.  The power button is not intuitively obvious on first glance: one of the people who gave it to me had to show me where it was.

The Kindle has a “5-way controller.”  This should be familiar to most people who have a cell phone that still has buttons: a centre “select/enter” key, surrounded by left, right, up, and down arrow keys.  The user guide mentions that you can get around menus and text with it.  It doesn’t mention that the left and right keys have context sensitive functions that are not immediately obvious.  The Guide did mention that, when a book is highlighted, using the left key brings up an offer to delete the item.  However, it mentions a lot of other stuff, and I missed that.  (Fortunately, I did not encounter this until I had learned that the “Back” key acts as a combination of “last page visited” and “Esc.”

There is a menu button.  It is context sensitive, and will bring up, or dismiss, menus appropriate to the screen you are in.  There are lots of different menus.  It is not obvious which menu will bring up a function you may want.  This is also a good place to mention that one thing that I believe I can state, without fear of contradiction, is a major error in the design of the Kindle user interface.  There is no rollover.  Menus are limited in length, as are entries in the “home” page or your “collections” of ebooks.  Actual pages in an ebook can be much longer.  Menus tend to have the “active” item fairly near the middle.  (After a while you begin the realize that the most important and useful functions are going to be near the middle, not the top, of a menu.)  Pages always start from top left.  In either case, there is no rollover: no return off the top of a page or menu to the bottom, or off the bottom to the top.  There is no wraparound going off the right side of the page to come back in on the left, or vice versa.  (There is one exception to this” the virtual keyboard.  It doesn’t wrap top to bottom, but it does wrap side to side.)

One other problem related to the menus: the time, battery power, and Wi-Fi indicator only show when you have a menu open.  You can’t even tell the time on the home page unless you bring up a menu.  (Interestingly, when I got mine, the time was set for a time zone either four or sixteen hours later than the one I’m in.)

The User’s Guide takes a lot longer than 10 minutes to read.  It does contain a lot of information, but a great deal of it will not make much sense until you have explored the device a bit.  So you are going to have to read it at least twice.  And probably keep it around for reference.


New computers – Kindle

The Girls, who have been having a grand time in recent years finding interesting high tech goodies that I never even knew existed, got me a Kindle for Christmas.  So, of course, I’m going to review the Kindle.

I had been putting off the idea of getting one for myself.  I do a lot of reading, but that’s primarily because I do a lot of reviewing, and for that you need the ability to make notes, and transfer said notes back to the computer for writing up.  So far, I haven’t seen an awful lot that convinces me the e-readers are there yet.

But, I do have to say that, right off the top, the idea of having 60 books (so far) in something that is lighter than a paperback definitely has its attractions.  So far I’ve been able to load the Bible, some tech articles, my own security dictionary, a dozen Sherlock Holmes stories, Don Quixote (both of which I have read), The Divine Comedy, War and Piece (both of which I intend to read–sometime), a fair amount of poetry, and an egalley for Bruce Schneier’s latest (sent along by his publicist).

Unfortunately, all this fun exploring has me somewhat behind in news and email, so I’ll have to start putting together my observations of the Kindle, itself, a bit later.


Application complexity

Complexity is the enemy of security.

I always emphasize that point in the app sec domain when we have those two adjacent slides showing the old system/application environment, and the new.  I also point out that the “new” is now rather old.  When trying to update that slide I came up with eleven different levels without half trying.  Then, of course, you have to add bi-directional arrows between all adjacent components, and between all components on a given level, and between most components on adjacent levels.  Gets convoluted real fast.

Went to a real-time/component trade show recently, and was talking to some people who did embedded systems.  One of their promotional handouts shows a model that has six layers.  (And, of course, you have to add bi-directional arrows between all adjacent components, etc.)  And that’s just for “simple” embedded devices.

We seem to have lost the KISS battle a long time ago.  I guess now we have to try for KIASAPS (Keep It As Simple As Possible, Stupid).


New computers – Windows 7 – compatibility (4) – oddities

A few interesting … “undocumented features” of Windows 7 observed in the last couple of days.

One is that Windows 7 seems to have a great deal of difficulty remembering the window settings (placement, size, full screen, etc.) for non-Microsoft software.  Not terribly important, perhaps, but greatly annoying, and new to Windows 7.  (XP had some faults in that regard, but nothing like Win7.)

I plugged in one of my cameras this morning.  Normally this would just be plug and play.  However, I couldn’t find any entry for it in Windows Explorer, even though the computer had said that the new device was found, and the driver successfully installed.  Unplugged and plugged again, and it still wouldn’t play.  Finally went looking for devices and printers, and, under removeable storage it simply did not appear.

However, I noticed that one of the other devices had an oddly familiar name.  When I clicked on that, I noticed that one of my mapped network drives was no longer that network drive, but the camera.  Very odd.

(I must say that, once I found out [via Google, not Microsoft Help] how to access it, I very much appreciated the fact that you no longer have to go through contortions to get yourself a command prompt function via Windows Explorer.  A “Shift-context menu” seems a bit arcane, though …)


New computers – Windows 7 – compatibility (3) – Epson (and hardware in general?)

Having gotten some of the software and XP Mode problems out of the way, I now need to install some of the old (and some new) hardware to the new desktop.

The HP LaserJet P1005 installed just fine as soon as it was plugged in.

I suspected that the Epson Stylus CX6400 wasn’t going to be quite so simple, since I recalled having to run the install software before I connected it the last time.  And, yes, sure enough, the installation software (once I found the old CD and instructions) didn’t run under Windows 7.

So, off to Epson.  I checked under Drivers and Support, specified my “All-in-One” (it’s get a printer, a scanner, and some memory card readers), and asked for Windows 64-bit drivers.

Now out of Epson EasyPrint v3.10, ICM Color Profile Module Update v1.20, TWAIN Driver and EPSON Scan Utility v3.04A, TWAIN Driver and EPSON Scan Utility v2.68A, and Printer Driver v5.5aAs which would you pick?  Yeah, I didn’t know either, and the descriptions weren’t an awful lot of help.  But I knew (from the dim and distant past) that TWAIN (we used to say that it stood for “Technology Without An Interesting Name) had something to do with scanners, and the v2.68A was listed for 64-bit only, so I chose that.

It ran.  After a while I got the scanner part of the Windows Fax and Scan program.  It didn’t have many options.  Epson Scan had been installed, but it insisted that it couldn’t run, and Epson Scan Settings insisted the scanner wasn’t installed.  I used the troubleshooter (seemingly provided by Epson) but it was no help.  I rebooted the computer: that was no help.  I tried help and searching on the Epson site: you guessed it, no help.

I did some Google searching.  Found a mention of device drivers, and having to uninstall the Microsoft brand, and install the proper Epson driver.

Well, thought I, I installed this with installation and setup stuff from Epson: surely Microsoft wouldn’t have messed it up in that short time.  But I had a look at Device Manager anyway.

And, lo and behold, the driver that was installed was signed by Microsoft.  Uninstalled that, searched the disk for related drivers, found two.  One was for CX6300/CX6400, and one just for the CX6400, so I installed the latter, on the theory that the more specific was more likely to be from Epson.

And now Epson Scan is happy to run.

(I also installed the original XP software from the CD within XP Mode.  That didn’t work …)


New computers – Windows 7 – XP Mode fixes

I think I may finally be getting the hang of this XP Mode thing.  (I may also be fooling myself …)

As previously noted, XP Mode doesn’t access the “real” drive, but a virtual drive which is contained in one large file.  (Actually, seemingly a minimum of three, but only one appears to contain the drive “contents.”)  XP Mode does provide you with links to the real drives on the computer, but, while accessible from most Windows programs, since they are not mapped to drive letters, you cannot do anything with DOS programs, even though such programs run under XP Mode.

I figured I would have to create the directories, with files I wanted to work on, within the “virtual” drive, and, each time I made any modifications, remember to copy the new versions back to the “real” disk so they could be used under Win7.  Not only is this a nuisance, but it wastes disk space.  XP Mode takes up enough space as it is: starting at about 1.5 gig, by the time you get it up to speed with Windows updates, it has ballooned to 6 or 7 gig.  Any programs or file space you want come on top of that.  (And, since I no longer trust XP Mode to stay stable, I have been making backup copies as I have been doing the updating and adjusting of the virtual machine, wasting even more disk space.)  An annoyance, to say the least.

I can’t remember where I found it, but somehow I noted a reference to the actual description, within XP Mode, of the links to the real drives.  It looks just like a network reference to a shared resource.  So I tried mapping that format and creating a DOS “lettered” drive mapping (from within XP Mode).  So far it seems to work fine.

For those who’d like to try, the “network” name of the real computer seems to be TSCLIENT.  So, in order to create a link to the C: drive on the real computer, map to \\TSCLIENT\C .  (It does not seem to matter what your real machine’s name is, that name does not seem to be used in the reference.)


Conflicting AVs

Well behaved anitvirus programs can safely work together in peace and harmony.

Unfortunately, relatively few AVs are well behaved.

On my new desktop, I’ve got Avast (came with the machine, has a free version, and is a pretty good product) and MSE (it’s free, and it’s pretty safe for most users, although, as a professional, some parts of it irk me).  I’ve set both to ignore the virus zoo, although they aren’t too good at taking that restriction to heart.

MSE quarantined a few samples before I got things tuned.  Of course, it doesn’t have any function to get stuff out of “quarantine.”  (As I say, as a professional this is irksome, but, considering the average user, I’d say this is a darn good thing.)

Today Avast gave me a warning of some dangerous files.  They were the ones MSE quarantined.

(In case anyone is interested, the quarantine seems to be in \ProgramData\Microsoft\Microsoft Antimalware\LocalCopy.)