How come nobody invited me to the party?

Posted: 1:59 pm
February 10, 2008
IT Culture
Comments Off on How come nobody invited me to the party?

It’s Sunday, so here is your lesson…

The man kind… Is a social one, my brothers and sisters….

Love thy neighbor, love thy fellow man. Do onto others as you would wish them do onto you….

We are all equal, created by God, and we need to pray together.. we need to geek together..

As a humanity.. as a society… as a community..

That ought to be enough for the front row in hell..

Why the tears, nobody invited you to the party? You didn’t hear about the latest event? You missed a networking opportunity? How did that happen?

People only hold the door open for so long. When they don’t see anyone coming towards it, the door gets closed.

Such is the case of the IT communities in Orlando. And boy do we have some awesome tech groups here. For example, we have four LUGs. We have a .NET group. We have an SBS/ITPRO group. We have IAMCP. We have a PHP group. We have a Cup o’ Code for Web 2.0 enthusiasts. We have PodCamp Orlando.

The opportunities to network, to discuss things with your peers, to get something off your shoulders with the only likely group of people that would understand… the way to open your mind to something new… is out there. You have been cordially invited.

But here is the bitch about friends and socialization… If you’re perceived to show up only when it has some direct payoff to you, you tend not to be invited to the special things. People like hanging out and working with people that they like. These are human beings, not clerks at a store anxious to make your day. If you don’t care about them, they won’t care (or think) about you when they could use you.

Social benefits come to those who show interest in their community and their fellow man. Relationships are primary, business relationships are secondary.

SBSers and Exchange 2003 tar pitting

Posted: 4:43 pm
February 9, 2008
Exchange, ExchangeDefender
Comments Off on SBSers and Exchange 2003 tar pitting

Few years ago tar-pitting was a big deal among SBSers who tried to protect their systems from spammers, worms and directory harvesting. Microsoft’s Alex Nikolayev, the big daddy of Microsoft’s SMTP stack developed the tar pitting technology for Microsoft’s SMTP server on top of which Microsoft Exchange 2003 works.

What is tar pitting you ask? It is a process of throttling bad recipient responses in the SMTP channel that are meant to slow down the spammer or directory harvesting attack meant to figure out the valid (or prune invalid) email addresses on your mail server. It works in conjunction with recipient filtering, so if you’re being a good little Internet participant and issuing NDRs as per RFC requirement, tar pitting can help. What exactly does it do? Here is a visual example:

220 daisy.theofficeserver.com Microsoft ESMTP MAIL Service, Version: 6.0.3790.3959 ready at  Sat, 9 Feb 2008 15:31:38 -0500
ehlo vlad.net
250-daisy.theofficeserver.com Hello [65.99.255.240]
250-TURN
250-SIZE
250-ETRN
250-PIPELINING
250-DSN
250 OK
mail from: vlad@vlad.net
250 2.1.0 vlad@vlad.net….Sender OK
rcpt to: administrator@daisy.theofficeserver.com
250 2.1.5 administrator@daisy.theofficeserver.com
rcpt to: moo@daisy.theofficeserver.com
550 5.1.1 User unknown
rcpt to: cow@daisy.theofficeserver.com
550 5.1.1 User unknown
rcpt to: bee@daisy.theofficeserver.com
550 5.1.1 User unknown
rcpt to: sheep@daisy.theofficeserver.com
550 5.1.1 User unknown

What tar pitting enables you to do is specify the timeout interval in seconds between each rcpt to: command and the 550/511 rejection. Assuming that a regular spambot will issue thousands if not hundreds of thousands of commands in an attempt to filter out the valid recipients on the domain, tar pitting delays can significantly delay their connections.

Why SBSers shouldn’t use this!

First, if you wish to use this technology, here is a Microsoft KB842851 addressing this. If this is something you believe is worthwhile, you should outsource it to a service adequate of handling the volume of these connections, check out ExchangeDefender.

There are two reasons why you shouldn’t implement this technology on a small network:

First, if you are running SBS 2003 or 2003 R2 you have likely upgraded your server to ISA 2004. ISA 2004 establishes the max number of connections per server, per rule to 1000. Likewise, if you are using cheapie firewall solutions that also throttle down the connection limits as to not exhaust an internal server, you are likely going to run out of connections on your server. Remember that tar pitting does not close the connection, it keeps it open. So if you set a timeout of 30 seconds for example, you could run into hundreds of open connections during an attack which would result in service unavailable and connection drops for the valid SMTP connections that may be trying to reach you.

Second, tar pitting has proven itself effective enough that nobody uses DHA anymore. The malicious use of DHA has gone away to a large degree, the spambots are now either being launched with a raw write straight to the socket (ignoring any delays in the connection) or tend to disconnect if more than 5 seconds (depending on the spambot config) has passed between a rcpt to and 250/550 response.

So in effect, this would be worthless to you in stopping spammers and DHA but would backfire on you the first time a larger worm/virus outbreak starts slamming your server.

All in all, not a worthwhile practice for this day and age. Remember, spammers adapt much faster than the rest of the net does, what worked in 2005 won’t work in 2008.

More Yahoo Drama, who cares? The answer to why people hate Microsoft so much.

Posted: 11:20 am
February 9, 2008
Google, IT Business, IT Culture, Microsoft
3 Comments

This question came up during the geek lunch here in Orlando, far far away from the neverland of the Silicon Valley. Who cares about Yahoo and Google and Microsoft, I am tired of that drama said one of our local leaders.

So really, what is at stake on this Yahoo-Google-Microsoft love triangle? On one hand, it is the future of the Internet as we know it. On the other, it is the future of how we will be developing systems and distributing information. Let me offer you some background here.

The Ugly Truth

First, I need you to accept one fundamental truth that may not be very easy to swallow. Microsoft is an evil corporation. Not because they are closed, but because Microsoft still has not changed a lot since the times that they were spanked by DOJ and continue to be spanked by EU. Microsoft continues to try to dominate the open environment and continues to fail. For example, you can’t land at a single Microsoft.com page without them trying to force Silverlight down your throat. Around the Vista launch, everything they distributed was XPS so you wouldn’t dream use a competitive product. Microsoft has over years shown its desire to be the owner of all protocols, jack of all trades, so it can collect licensing revenue from anyone that dream play on their turf. That is why the DOJ and EU scrutiny has been great for the Internet and allowed so many of the things you rely on to be available for free. Just imagine the Microsoft world, in which you would have to pay a royalty to send a message to MSN IM or only use Microsoft IE to browse any page developed by Visual Studio?

The Quagmire

Now while the Microsoft corporation is evil, Microsoft employees are not. Absolutely everyone I’ve met there has been just phenomenal, down to earth, looking to help and looking to solve big problems with software. Everyone except Dave Overton, who kills kittens in his spare time and is trying to destroy SBSC (footnote needed).

So how does such a great group of people, with such noble cause, such an incredible amount of resources, so many young people looking to solve problems turn into such a monopolistic asshole of a corporation?

The answer lies in the psychology of the Microsoft machine, somewhat similar to The Milgram Experiment, in which the subject will completely defer judgement to the leader regardless of the overwhelming evidence to the contrary.

I love you Steve, but this is squarely your fault.

You see, a Microsoft job is full of promises. First promise is that you will be working for the biggest software publisher on the planet which will give you prestige over everyone else in the industry. The second promise is the Microsoft share options that you’re given (or it used to be back in the 90’s before the .com bust) so you win the more Microsoft wins. Finally, it is the promise that it is a large company where sky is the limit and there is no ceiling so long as you don’t ask questions and play by the company rules.

And then Steve Ballmer, like he just finished a porn scene, jumps out in front of the lemmings at MGX (or MDX?) or any other internal event and proclaims – we will compete, we will compete with everyone, anywhere, and we will win!

So they do! And the few guys up top that decide how Microsoft competes have far different goals than the 99.9% of the base below them, but the 99.9% of the base below them has a goal of being in the top level management. The management goals are driven by the major shareholder goals, so the inner goal of being the biggest and best gets skewed by the shareholder goal of being the most profitable. So, how do you get to be the biggest and best and also the most profitable?

You screw the customer.

So much like the rest of the world looks at Americans as angry, ignorant people bent on world domination, people look at Microsoft as the big dominant bunch of proprietary mud slingers. While the majority does not approve of what is going on, they have to feed their families.

Why is it so hard to sell this in California?

There is much discussion about being open in Silicon Valley. But for all the talk, they are not all that much more open, they just play a lot more open, talk, share and you see relationships form and people go from one company to another all the time.

Silicon Valley is open to investment, open to change, open to new solutions and they all want to integrate with one another if it means more money. Meanwhile, they all follow their own dogma. Be it that they are “not to be evil” or “worlds start page” or “what is how” or “dog food cheap”

Microsoft’s influence over Silicon Valley would be detrimental to that spirit of innovation and integration and would lead to the same old constricted environment of ignoring the world for the promotion.

So while the best possible thing for Yahoo would be to take the Microsoft check and some corporate sales knowhow in the world of designing business applications, it could be the worst possible thing for the rest of us if Microsoft were allowed to become dominant again with the heavy hand on the open Internet.

Vladcast Episode 11 – Determination

Posted: 9:42 am
February 8, 2008
Vladcast
9 Comments

Vladcast on determination. For all those of you that asked where I get the energy to do what I do and how I get this done. You might want to turn your speakers down a little though, this is the raw, uncensored Vlad. All you gotta remember is that if you gotta be a monkey…  (if this makes any bit of difference in your life please let me know)

Play VladCast: [audio:http://www.vladville.com/media/Vladcast11.mp3]

Add feed to iTunes  / File Attachment: Vladcast11.mp3 (4175 KB)

Business Without Fear

Posted: 11:55 pm
February 7, 2008
IT Business
Comments Off on Business Without Fear

Being a business owner can be an intense, scary, anxious lifestyle. It gets worse when you find out who your competitors are and when you look at what analysts predict your market to look like* (note to self: blog about how analysts base their predictions on past trends and surveys filled out by complete morons who are the only ones with enough spare time to fill out surveys for cheap gift cards because they don’t have enough business to keep them from hitting the delete key the second they see something that is not the part of their mission)

When you look at the big, crazy world it is hard to keep things in perspective and see things for what they really are. You get scared, uncertain, unsure.. I understand, believe me. I compete with Google, Microsoft, IBM, Sun.. companies that have more people in their janitorial staff than I do in my entire company. By definition, I ought to be hiding in the shower, crying and scrubbing really hard. Yet, I don’t. Why?

Here are the two polar opposites in business:

You can be the best.

or

You can be the cheapest.

Those are your narrow definitions of successful paths to follow. Lamborghini vs. Yugo. So you can set out to “Outferrari the Ferrari” and become a Lamborghini, but let’s face it, you’re probably not that good. So you try to be the Yugo, and in that attempt, you will be the same as every other business that closed its doors. No matter how cheap you think you can be, there is always China and India, where a worker costs a $1 a day and a Ph.D. goes for a $1 an hour. Even homeless bring in more $.

So if you can’t be the best or the cheapest, you look for compromise. You strive to be the best among what the customers actually need. How do you know? You ask them.

Now, the general guruhood will likely disagree with that statement, which is why they are gurus and experts in your industry, not its actual participators and innovators. The best among what the customer actually needs varies from client to client, from region to region, from niche to niche. The important part is listening and giving your customers a chance to talk. That scales, so long as your respect for your customer can grow along with your company and the feedback of the people that got you to the point where you are at now still matters, despite the revenue % their opinion may represent.

To them, you will always be the best. And that sure as hell beats spending more on advertising. If these concepts are foreign, hit this link again. And again, and again, and again until it changes every single pile of junk you call your marketing collateral.

When you’ve got nothing good to say…

Posted: 1:45 pm
February 7, 2008
IT Business
Comments Off on When you’ve got nothing good to say…

Point to someone that does…

The Killer Objection by Karl Palachuk

I’ve said this a million times, there is only one proven sales strategy out there short of outright intimidation and its called “sold you a dream” – if you can’t convince people to sell themselves on the opportunities and benefits your product offers, they will cancel the service.

(this also explains why people tend to be happier with the items they purchased vs. items they got for free)

Microsoft blows the Zimbra Pig House

Posted: 12:31 am
February 6, 2008
Exchange, IT Business
Comments Off on Microsoft blows the Zimbra Pig House

In another desperate Microsoft-bashing event, eWeek (surprise!) is predicting the end of Microsoft in a desperation move to buy Zimbra. Yeah. Forget the advertising. Forget IM share. Forget the webmail dominance in the consumer space..

It’s all about Zimbra..

Yeah. Sure. Cause that’s whats replacing corporate email, a webmail client. But of course, an AJAX frontend is a good replacement for Identity Management, integration into the unified communications for seamless  IM/voice/voicemail, content sharing controls that support encryption, IRM, RPC over HTTP, push sync built in..

Oh, yeah. It’s got none of that!

Let’s face some reality, shall we? We’re talking about webmail people, the black hole of portal’s budgets. This, Google’s other solution which years into the service still bears the Beta tag which in the Web 2.0 world means – we’re losing money big, we can’t make money at it, please click on the ads.  Every commercial reincarnation of which has failed – for bCentral, for Hotmail, for Yahoo, for Excite…

And he huffed puffed and blew the story down…

The Joy of Mailbombs

Posted: 8:59 am
February 5, 2008
ExchangeDefender
1 Comment

One of the coolest things you can do once you’ve built a really, really large network is to look at the network patterns that emerge, hour to hour, day to day.

For example, every Monday at about 11 AM EST we deal with what has affectionately been themed “the royal mail server flush” – between 10 am and about noon, every Monday without fail, our network capacity drops by at least 30% – and for the longest time we thought it was just because most people got really busy on Monday mornings. But then we looked at the SPAM trends and something ridiculous like 99.3% of the messages relayed during this hour were SPAM messages. Now, when you correlate the IP reputations of the sending IP addresses with the volume of messages relayed over the past 24 hours from the same address and it becomes very clear what is going on. Corporate networks have so many internal systems that have been compromised that are sending dozens of messages (quite little) that over the weekend clog up these tiny servers. So, when the Internet connection or SMTP service or the fish appliance or whatever is in the way of this avalanche of SPAM gets repaired on the Monday morning…. the royal SPAM flush happens.

The other cool thing is, you are no longer succeptible to the ISP bull “Nothing out off the ordinary is going on” when you approach them with “Hi. We have 2 TB of email waiting to be delivered to your network and you’re unreachable from 22 of the largest networks. When do you expect things to be normal?” Fun, fun, fun.

Network ops… gotta love it.

The Eve of Shockey Monkey

Posted: 5:21 pm
February 3, 2008
Shockey Monkey
4 Comments

SmlogoIt’s hard to believe that it has been nearly two years since I first shared the vision of Shockey Monkey, even harder to belive the amount of people and effort that went into building this beast. Tomorrow I get to talk about what I’ve been working on for over seven months, largely by my damn self, to pay back the people that make my business so damn successful. Talk about a payback, the affordable SMB practice management software built by the SMB people, void of the political mess that makes the other commercial solutions suck and force SMB into the compromise.

While I certainly wish I put more resources into this from the getgo, I don’t think the product would have been this good if it didn’t take every single feature from the actual people that run these practices. The learning process that I went through in bringing this to the market fundamentally changed the way I run my business in the SMB space, and in turn became an ultimate symbiosis between the world of SMB consulting and the world of management system development.

The people that will be paying for this software will not only be supporting their own community (SBS group kickbacks), they will be financing my new development company. Talk about pressure: my success is directly tied to the savings and success that Shockey Monkey has within my clients practice!

This has been a journey fillled with learning, learning and more learning. I cannot thank all the people that have taken their time to be a part of this process enough. If you’ve been waiting…… well, folks, trust me, it’s been worth it. You’ll find out just how much throughout February!

Working with EU: Does location matter?

Posted: 1:22 am
February 3, 2008
Shockey Monkey
2 Comments

With the launch of SM 2.1 (yeah, yeah, looking forward, you’ll get the details on Monday folks!) and its commercial nature I have to cross the unglobalization bridge that the US has been burning and pissing on for quite some time – nobody trusts having their data in the good ol’ USA. Even care free Canadian’s are hating the Patriot Act. So it’s sever shipping time.

As far as I have been told, UK businesses have to disclose if any confidential data is going to be stored on the servers outside of EU. I may be wrong (if I am, please correct me) but I have heard the same from users in France, Germany, Italy, etc. One question I do have is, does it matter where in the EU the servers are located? I am currently considering Netherlands and Germany.

For Australia, I am still working on it. There may be a significant premium to having a localized server (20–40% depending on the number of users – the 2 IT shops in Malta are pretty much screwed) and some places are just not going to be possible at all due to the IP allocation restrictions.