Reinke Faces Life

Publish | Buy | Services
	Dear Ferdinand Reinke, Lulu’s goal is a simple one: help you sell more books. This note is to tell you about an exciting new effort from Lulu to help achieve this goal by ensuring your work is able to reach readers across all devices, starting with the 130 million+ customers who own an iPhone®, iPad®, or iPod touch® and shop at the iBookstore℠. Over the coming weeks, at no charge to you, we’ll be making the title you have for sale on Lulu.com also available as an eBook edition on the iBookstore. If for any reason you don’t want your book available in the iBookstore, you can opt-out easily. Just send an email to ipad_opt_out@lulu.com with the subjectline Opt-Out of eBook conversion. If you wish to opt-out, please make sure to do so within 5 business days of receiving this message. Otherwise, you don’t have to do anything to have your book included in this program and we think it’s a great idea to join the ranks of Lulu authors who have already sold 60,000 eBooks through the iBookstore. We cannot guarantee the new eBook formatted version of your book will appear on the iBookstore, but we’re taking measures to ensure a high success rate. Here’s how the process will work: We’ll begin the process on your behalf by converting “Church 10?19?62” into an ePub formatted eBook – absolutely free. Next, we’ll submit your newly formatted eBook to Apple and request a listing in the iBookstore. In some cases we may need to make tweaks to your book’s catalog data* in order to meet Apple’s requirements. We will notify you once your eBook has been accepted by Apple and is available for sale in the iBookstore. At first, your book will be listed in the iBookstore with default pricing. We’ll place a new eBook project in your My Projects list on Lulu. You’ll then have full control over the project, and can opt-out of iBookstore distribution, change the default price, etc. at any time. Additionally, this ePub file will be available for you to distribute to our expanding list of eBook retail partners. To learn more about this exciting iBookstore program, visit our knowledge base. Thank you for your continued support of Lulu and our ongoing efforts to help you sell more books. Best, Lulu Enterprises, Inc. *Note: “Tweaks to book catalog data (metadata)” will be minor edits such as correcting capitalization problems. We will, of course, contact you before making any significant changes.

# # # # #

http://trace5.com/fb/fb/0F365CE6ECE11D44AA96CC4B1441D016ECD54962070B0526C755486C0D97C488/show.aspx

The answer: “Not much”.

That’s what’s wrong with a “put everything in the cloud” architecture.

# # # # #

Greetings from XXXXX – Alive and Well in Singapore
Posted by: “XXXXX”

Sat Apr 9, 2011 12:01 am (PDT)

HI Guys, Saturday, April 9th, 2011.

Greetings from Singapore.

I understand that on March 22nd an “Emergency Help!!!” SCAM e-mail was sent in my name to the Manhattan Prep 1964 Yahoo Group.

My apologies if it created any alarm.

However, I am sure that any Prepster who received this e-mail would have realized that the exaggerated emotional tone and piss poor grammar gave it away as a scam…

Here is the background on the scam…

On the evening of March 22nd, someone hacked into my Yahoo/Prodigy Account, hijacked my address book, which contained about 1,400 addresses and then proceeded to send out an “Emergency Help” E-mail asking for money. The hacker even changed my password and set up a forwarding address edward1.coll@yahoo.com to which all my incoming e-mails went so he could try and continue to perpetrate this scam.

Within a few minutes of the scam e-mail being sent, I started receiving phone calls and e-mails from all over the world from people on my contact list enquiring if I was O.K. and whether they should send money to me via a Western Union Office in London .

I told them that this was a big SCAM and to just ignore the e-mail and not even reply as the hacker had arranged to have all the replies forwarded to him. What an operator !!!

It was really frustrating as this hacker also changed my password so I could not initially access my account to see what was going on

I was finally able to get in touch with Yahoo’s Customer Service Department and spent about two hours on the phone with them to get my password reset so I could access the account and cancel out all the forwarding addresses that the hacker had set up.

The worst thing was that he erased my Yahoo Address book and the 1,400 names it contained. Fortunately, I had backed up the address book so I was able to re-import the contacts to my yahoo account.

I hope this matter is settled now. and that no one was duped into sending this hacker any money.

My e-mail address, {Privacy Invoked} should be secure now.

Best regards,

# – # – #

I’m glad you’re OK. It’s not that we have any fellow alum to spare.
On a technical note, were you able to determine, how the hack was accomplished? I’m interested from an InfoSec pov. The default assumption was that someone kept “knocking on the door” with passwords until it opened. It’s not hard to imagine a bot (software robot) doing that. But, it’s also possible that it was malware on your computer or malware on a site you visited with an old browser.
Interesting?
May I suggest that you, or anyone, have your own domain? The common wisdom, or is that common whizdumb, is to own your own name as a domain name. I own “reinke.cc”. (I like saying “sea sea me at reinke.cc”! me@reinke.cc will actually work!)
I can send you some links to stuff that I’ve posted on my blog “Reinke Faces Life” about how to “do” email to avoid such unpleasantries. It’s neither hard not expensive.
Unfortunately, having a yahoo, gmail, or hotmail account makes you are target for the black hats. Eventually they find everyone who has one of those “free accounts”.
At the very least, one can hide by using a very long random string password. I use twenty characters. Of course, I use tools like roboform, last pass, and even the infamous yellow stickie to remember them.
But I doubt anyone has as many unique ids and passwords as I do. I’m a little nuts about it.
I’m now off to change my Yahoo password to something longer. I’m sure someone is listening.
:-)

# – # – # – # – #

http://www.schneier.com/blog/archives/2011/04/epsilon_hack.html

Schneier on Security
A blog covering security and security technology.

April 5, 2011
Epsilon Hack

*** begin quote ***

I have no idea why the Epsilon hack is getting so much press.

Yes, millions of names and e-mail addresses might have been stolen. Yes, other customer information might have been stolen, too. Yes, this personal information could be used to create more personalized and better targeted phishing attacks.

*** end quote ***

You should shift to your own domain. Sorry, but yahoo, gmail, and hotmail make you a sitting duck for this hack.Your own domain just moves you out of the target zone.

Alpha spammers just keep trying every id from AA@yahoo.com to ZZZZZZZZZ@hotmail.com and then they turn around and repeat.

So you get “MYDOMAIN.COM”. (You can even push all the email to GMAIL for free.)

Then you create a spreadsheet or use a tool like LASTPASS, ROBOFORM, or such.

Now you assign email addresses to your correspondents. And, add a magic random string to the name, like, k7sa yk2k3 ggfn a2zq

Best Buy ==> BestBuy_k7sa @ MYDOMAIN.COM
Target ===>  Target_yk2k3  @ MYDOMAIN.COM
Verizon ===> Verizon_ggfn  @ MYDOMAIN.COM
Walgreens ==> Walgreens_a2zq @ MYDOMAIN.COM

You can then write email filters that will quarantine emails that arrive without the proper address.

If Best Buy messages come without the “k7sa”, you know that it’s not the address that you gave them.

If non-Best Buy messages come in with the “k7sa”, you know that it’s a compromised email address.

Go change your address at Best Buy and write a filter to trash any “k7sa” email.

It’s just like having unique passwords for all accounts.

# # # # #

A good reason to use unique email addresses for each of your “special” correspondents. Just like passwords, unique. A little bit of trouble to administrate, but it certainly isolates the trouble. And, it’s trivial to do when you have your own domain. You can even subcontract the email to GMAIL if you want by repointing a few records. It also automagicaly detects financial spam, when a message purporting to be from “your bank” arrives on the “wrong email” account. Wish I could teach this technique to more people. We could have email “security” even if the ISPs don’t want to do IPv6 or email providers, like Yahoo, won’t authenticate when email arrives from outside labeled as if originated from Yahoo itself. (I even tried to sell them a consulting engagement but they said “it wasn’t their problem”. With an attitude like that, no wonder we have problems.)

# – # – #

Dear Valued Customer, On March 30th, we were informed by Epsilon, a company we use to send emails to our customers, that files containing the email addresses of some Walgreens customers were accessed without authorization. We have been assured by Epsilon that the only information that was obtained was your email address. No other personally identifiable information was at risk because such data is not contained in Epsilon’s email system. For your security, we encourage you to be aware of common email scams that ask for personal or sensitive information. Walgreens will not send you emails asking for your credit card number, social security number or other personally identifiable information. If ever asked for this information, you can be confident it is not from Walgreens. We regret this has taken place and any inconvenience this may have caused you. If you have any questions regarding this issue, please contact us at 1-855-814-0010. We take your privacy very seriously, and we will continue to work diligently to protect your personal information. Sincerely, Walgreens Customer Service Team PLEASE DO NOT REPLY TO THIS MESSAGE. This is a system-generated Walgreens email. Replies will not be read or forwarded for handling. This message was sent to Contact Us | Unsubscribe | Update Email Address | Privacy Policy Copyright 2010 Walgreen Co., 200 Wilmot Road, Deerfield, IL 60015-4620. All rights reserved.

# – # – #

For our Chinese-speaking customers: As a valued Scottrade customer or someone who previously provided us with your email address, we want to make you aware of a situation that affects your email security. We have been notified by Epsilon, a company we use to send emails, that an unauthorized person outside of their company accessed records that contained your name and email address. This incident occurred at Epsilon. We want to assure you that Scottrade’s systems were not affected and your account information remains secure. The security of your information is important to us and we apologize for any inconvenience this may have caused. You may receive an increase in spam email as a result of this incident. We encourage you to be cautious when opening emails, links or attachments from unknown sources. Scottrade will never ask you for personal or account information in an email. Please visit Scottrade’s Security Center http://www.scottrade.com/security/ for more information on online security. Sincerely, Scottrade Customer Support Email is not a secure communications channel. Please do not reply to this message with sensitive information, such as account number, social security number or password. Privacy Statement  Scottrade Security Center Brokerage Products and Services offered by Scottrade, Inc. – Member FINRA/SIPC. To ensure Scottrade emails do not get blocked from your inbox, please add scottrade@email.scottrade.com to your address book. This email was sent by: Scottrade, Inc. P.O. Box 31759 Saint Louis, MO 63131-0759

# – # – #

<!– NOTE USE OF TD PADDING TO CONTROL LINE WRAP IN THE FOLLOWING TEXT… No
–>

To ensure our emails reach your inbox, please add email@info.verizon.com to your address book.

Dear Verizon Customer, We have been informed by Epsilon, a provider of Verizon’s email marketing services, that your email address was exposed due to unauthorized access to its systems. Verizon uses Epsilon to send marketing communications on our behalf. Epsilon has assured us that the information exposed was limited to email addresses, and that no other information about you or your account was exposed. As always, you should be cautious when opening email links or attachments from unknown or suspicious parties, or emails purporting to be from Verizon and asking for financial or account password information. It is our policy to never ask for this information in emails. If you receive such emails, do not reply to them. You can report suspect or unwanted emails to Verizon at abuse@verizon.net and can obtain more information on how to protect against spam and phishing attacks on Verizon’s Privacy Policy page by clicking on “Tips for Guarding Your Information” located at the top right hand corner of the page. Our privacy policy can be found at Verizon.com/privacy. We regret any inconvenience this may cause you. Please be assured that we take the privacy of your information very seriously. Sincerely, Verizon

Having trouble with the links in this email? You can also copy and paste the following address into your browser to view your account: Ensure Verizon emails reach your inbox by adding reply-isnot-monitored@verizon.com to your “safe” email list. Your email or Internet provider can provide instructions on how it works. This email has been sent from an auto-notification system that cannot accept incoming email.

©2011 Verizon. All Rights Reserved. Privacy Policy Verizon Online – PO Box 33056 / St Petersburg, FL 33733

# # # # #

I knew it, I knew it. “Cloud Services” are subject to network and hosting issues.

AMAZON CLOUDPLAYER just had a “brain fart”. For at least three minutes.

For me listening to music sadly, who cares. For folks betting their ranch on a cloud strategy, they better care.

It’s back now. Let the finger pointing begin.

# – # – # – # – # 2011-Mar-30 @ 10:59

Seems like Amazon has scooped Google and Apple. It appears to work.

Just as you should buy your ebooks for Kindle, seems like you music should be from Amazon. (The buying process is clunky! imho)

# – # – # – # – # 2011-Mar-29 @ 19:31

Ahh, yes, a plaxo competitor, but not as obnoxious, is going down.

First they stopped performing the service in January. Then, they told folks at the end of March.

It was a useful service (i.e., update your email once and it told every one who had your card). It was originally tied to the business card scanner. No word if they are going to stop selling those. (Who uses business cards today?) I doubt it.

Sigh, an idea who’s time has past.

BTW, their product still had the same fatal flaw it’s always had: YOUR data was locked in their database with no way to extract it.

I blogged that they needed to be open. Interact with Google contacts. Instead of keeping their own database, use people’s GMAIL contacts as their database. Require some innovative business and technical thinking, sure.

Go to Google and offer to make GMAIL’s contacts “social”.

I think their problem was in their thinking — memes and paradigms again — they thought they were selling business card scanners. What they should have been thinking was “we enable communication”.

They could have been LinkedIn, ACT / Salesforce, or something else.

Their thinking did them in.

RIP CARDSCAN. “Ya coulda been a contender”

# – # – #

This message contains graphics. If you do not see the graphics, click here to view.

DYMO.com    |  Support    |   Forward to a Friend

DYMO, a member of the Newell Rubbermaid family of brands. Please do not respond to this email address, this mailbox is not attended. Please click here to email us directly.

# # # # #

EMAIL TO A VENDOR EMAIL CAMPAIGN SOFTWARE

I’m interested in offering my 100 chapter book by email.

I want to set up a sequence of 100 emails that will form up what I would call a “campaign”. When I get a victim, I want to put in that email address and forget it. I want the software to every day fire out the appropriate day’s email.

At any given point in time, I could (hopefully) have lots of them at different points in the process.

Every time I have spent time investigating a software product or web offering, I eventually found out it couldn’t. Sometimes I was told it could, installed the software and tried a test. Fail.

Hence the email message before I waste everyone’s time.

If yours doesn’t, do you know something that does?

Thanks,
fjohn

AND THEIR PROMPT RESPONSE

Hello fjohn,

Mailings can not send out a schedule of separate emails, but it can send out one specific message at a specific scheduled time, and then repeat that using a specified time interval:

I am not aware of other products that do exactly what you want.

Ciao
Joe

# – # – #

How expensive is an Indian Programming Project?

Do it myself? Argh, that sounds like work.

# # # # #

It’s not just you! http://kodakgallery.com looks down from here.

# – # – #

Argh!

# – # – # – # – # 2011-Mar-20 @ 23:09

Argh!

# # # # # posted 2011-03-01 14:56

FOUND THIS IN THEIR EMAIL BOX THIS MORNING

in response to my simple message: “My wife, Evlynn, is dying in Saint Peters Hospital. It’s now inevitable. Please stop ALL RXs.

# – # – #

# – # – #

Argh! Doesn’t anyone really think about what they are doing? Do they really think we are fooled by this “caring” email? And, what about all the “barbara streisand” in and around it?

Finally, can they make the font any smaller?

Argh!

# # # # #

http://googlevoiceblog.blogspot.com/2010/08/make-and-receive-calls-in-gmail.html

*** begin quote ***

We’re rolling out this feature to U.S. based Gmail users over the next few days, so you’ll be ready to get started once “Call Phones” shows up in your chat list (you will need to install the voice and video plug-in if you haven’t already). If you’re using Google Apps for your school or business, then you won’t see it quite yet. We’re working on making this available more broadly – so stay tuned!

*** end quote ***

[JR: Lotta times I see them announce stuff and it is not there. Hmmm?]

# # # # #

Google’s two factor authentication has arrived at one of my accounts.

It’s an excellent idea and turns one’s cell phone into the equivalent of a SecureId token. Maybe better?

Basically, before you turn it on, you have to consider THREE things.

(1) Understand that the initialization process takes a few minutes of your undivided attention. (If you screw it up, then I’m not sure how you fix it.) So “multi taskers” be forewarned.

(2) Understand what you need to do for all things that access your Google Account but don’t support two factor authentication (i.e., you email program). You’ll generate a special password for each of these applications. (It doesn’t say to, but makes it easy to generate on unique on for each such use.)

(3) Understand you have to have a plan if you loose your cell phone (i.e., losing one of your two factors will lock you out). Google allows you to specify another number and to print out a bunch of backup one time use passwords. Don’t fail to do this.

All in all, seems like a good working implementation.

I’d suggest that you do it on a test id. (Like I didn’t. I was excited to see it finally. That’s could be a bad blunder.)

I assume that you can revert if you want to. But I don’t know that for a fact.

Do as I say; not as I do?

# # # # #

Interesting!?!

Could have been disastrous. So there is nothing in the MACOSX operating system that ensures everything that should be in your environment is. And, by extension, nothing that shouldn’t be there isn’t either.

Argh!

What else can’t we see?

# # # # # posted 2011-02-19 06:43

Advanced sign-in security for your Google account
Posted: 10 Feb 2011 08:30 AM PST

*** begin quote ***

Most of us are used to entrusting our information to a password, but we know that some of you are looking for something stronger. As we announced to our Google Apps customers a few months ago, we’ve developed an advanced opt-in security feature called 2-step verification that makes your Google Account significantly more secure by helping to verify that you’re the real owner of your account. Now it’s time to offer the same advanced protection to all of our users.

2-step verification requires two independent factors for authentication, much like you might see on your banking website: your password, plus a code obtained using your phone. Over the next few days, you’ll see a new link on your Account Settings page that looks like this: …

*** end quote ***

Now maybe this will embarrass the financial institutions into real security. As opposed to “password theater”.

# # # # #

*** begin quote ***

Opt out

You have successfully opted out of Clearance Jobs Communications. It may take up to 10 days to fully process your opt-out request.

*** end quote ***

TEN DAYS!

Ya gotta be kidding?

CONSTANTCONTACT does it INSTANTLY!

# # # # #

Verify ownership

Verification status

Not Verified – Last attempt Less than a minute ago – Hide history

Attempted Method Outcome

2/6/11 10:06:00 PM UTC Meta tag Verification failed. Your meta tag is not in the <head> section of your home page.

2/6/11 10:04:01 PM UTC HTML file Verification failed. Your verification file was not found.

# # # # #

Ok, Google, how should it be done. Sigh!

# # # # # posted 2011-02-06 17:10

Last good sync was 1/9/11. It’s been on lots of different networks. Hooked, litterally, for days to the inet.

Yet, their “sync” can’t sync. CARBONITE, DROPBOX, POGOPLUG — all seem to work just fine.

Maybe they need some “help”?

Sadly, NOTRECOMMENDED!

# # # # #

http://www.google.com/support/cloudprint/?hl=en

*** begin quote ***

Troubleshooting Google Cloud Print

Why is my document not printing?

Why can’t I print to my cloud printer from Chrome?

For now Google Cloud Print is only available in mobile devices such as smart phones and Chrome notebooks.

*** end quote ***

Argh!

So after much ado about a FUTURE service!

I find out about it’ll work “real soon now”.

Great idea.

Just not useful … yet

# # # # #

I use a Google Site as an overflow area for my alumni ezine.

But it’s frustrating.

Take for instance, tables.

A basic concept.

SITES requires you to use HTML to get it working.

Not User friendly.

APPLE’s MOBILEME and IWEB isn’t much better.

Argh!

And, I hate the thought of investing a lot of time, effort, and attention on something that may go away of change.

Argh!

# # # # #