HOWTO: Troubleshooting Mail Delivery

Posted: 4:44 pm
November 16, 2007
Exchange, ExchangeDefender
Comments Off on HOWTO: Troubleshooting Mail Delivery

One of the most frustrating things I do for living is troubleshooting mail delivery. Not because it’s incredibly frustrating and almost never my fault, but because I tend to get pwned by the most ridiculous “gotchas” of the SMTP.

Of the items that I probably deserve a Darwin Honorable Mention award for is troubleshooting delivery for an expired domain name, for a mail server that had the SMTP service stopped, that had the IP address changed, that had the letter 0 or O in the domain name and they just blurred together.

So today I set myself up for another “documentation writing” day and I have to say that I enjoy it. Writing about the products I’ve designed makes me realize how braindead some of our process is, nothing sounds quite so stupid than when you read it back to yourself. It also gives me ideas on how to improve the service, add in some gizmos that could help cut out a lot of time from troubleshooting.

Today, I proudly bring you the OWN Guide for Troubleshooting ExchangeDefender Delivery. Even if you are not an ExchangeDefender customer (come on!) the guide is general and verbose enough to give you an idea how to troubleshoot mail flow, diagnose issues with SMTP servers, create sample email messages from the command prompt.. I really hope you like it.

At the very worst you’ll learn how to install the telnet client for Microsoft Vista / 2008 Server from the command prompt.

SMB IT Shops Need A New Messiah

Posted: 10:10 am
November 16, 2007
IT Business, SMB
3 Comments

.. and I ain’t him.

Not a day goes by that I don’t talk or chat with someone that doesn’t say “I miss you doing ___”, fill in the blank for “saying it how it is”, “the SBS show”, “calling out Microsoft”, “how-to guides”, “video blogs” and so on. To be completely honest, I miss doing those things as well but every time I even think about doing those things again for even a second I remember the hell that people put me through when I was doing them. When is the new show coming out? Can I use your videos for my presentation? Do you think you can help me with this guide? Can you write about this? Can you believe Microsoft did that? … so on and so forth … but I think what finally broke the camels back is that people were under this impression that I was being compensated for it all, community = profit, kickbacks and whatnot, so the public had the right to demand and expect these commercial benefits even though it wasn’t willing to do anything for me. You hear the “Oh, we do business with your competitors, but why aren’t you doing all your freebies anymore, my employees really got a lot out of it” a few hundred times and the passion kind of burns up. Not to mention that in a very big way, Microsoft has worked very hard over the years to address the problems I’ve had with them – SBSC is pretty much the crown jewel of the partner program, Action Pack distribution is being controlled, piracy is less and less of an option, patching has gotten a hell of a lot better in just the past year and SPFs are being eliminated through certification requirements for software, logos, freebie programs and events. So from the purely self-interested point of view, I am quite content – I am not getting the abuse or unnecessary stress and my largest partner got its s… together making me more profitable.

So I’m good. Thanks!

There is a problem though, there is a need for a new messiah of SMB, someone that is going to yell about the SMB problems without regard for relationships, feelings and consequences to make this a better place for everyone. Oh, and s/he must not make any money or work for any organization or in any way commercially benefit (sellout). The angry masses need a voice damnit, are you interested? Here is a brief description of job requirements:

1. Must be fearless
You need to relentlessly offer the opinion of your constituency with complete disregard for what your words and actions do to the others. No thinking about the job you might not get because of being critical, not thinking about the role you may not get to talk to until they are promoted out of it, no consideration at all how you will dilute the potentially important issues because you’re bringing up every little insignificant one.

2. Must be independant
You must do this of your own free will and on your dime. No associations, no company sponsorships, no company behind you. This is an honor, not an opportunity.

3. Must not ever make any money. Ever. Sellout!
You must never take money, from anyone, because that would make this a job and if its your job to voice my opinions I feel no need to have any respect for you or support anything you do because after all, it’s your job.

4. Must be influential
You must be influential, as in, you must be seen everywhere, with everyone, quoted for everything and offering your opinion when nobody asked for it.

5. Must handle stress
When people kick you in the balls, you must smile at them. God forbid you say something negative about them, you will be criticized, derided and beaten up in public.

For a more detailed job description of the SMB messiah please email sbradcpa@pac.. 🙂

Now, I’m sure you’re thinking of some choice four letter words about all of the above so I’m guessing that role is going to be vacant for a very long time. Sure, you could pay your way into an association and live under the impression that its executives aren’t just selling you to the highest bidder. You could also push the local user group leader to the edge and frustrate him/her to the point that they blow up on someone at Microsoft / LPI / Dell, etc..

Maybe, just maybe.. Nah. You wouldn’t be interested. It’s far too risky. Nah. Ok, Ok, you beat it out of me. Maybe, just maybe… you could grow a pair of balls and voice your concern out loud? No no, not to me – I meant out loud. Like.. I dunno. A web page of some sort. That you could easilly update? That you could tie back to your identity or company or whatever person/organization is actually being affected enough to bring this opinion into the open? What’s that thing called… You know, when you have something on your mind, something you’re dying to say, something you wish could affect the people… That feeling like you could make a difference? Involvement? Nah.. Courage? Nah..

V  O  I  C  E

So say it out loud, or shut the fuck up. Your call.

Guest Post: Community CEO, Do you GET it?

Posted: 11:17 pm
November 15, 2007
IT Business, SMB, Web 2.0
1 Comment

It’s Friday, and I figured it was as good of a time for a guest post as any. This time, however, we have someone that obviously doesn’t get it. But that’s not all, while this guy seems to be in touch with whats going on, he also appears completely ignorant of the fundamental change that has happened to the world of business. That fundamental change, in case you have not recognized it yet, is that the customer is in charge, not the corporation.

I’ll offer you his loosely paraphrased thesis, though I encourage you to read it in its entirety:
“CEO’s that ask their customers and partners for advice in public are weak “community CEO’s” whose openness leads the customer to lose faith in the product and leave the company staff without confidence in their leader.”

He goes on to further insinuate not only that the feedback should not be solicited at all, but should also only come from peers/equals and compensated third parties. Doing it any other way makes for a Community CEO who projects a weak image of the company to its customers, weak leadership to its staff and overall lack of leadership ability. He cements his opinion by citing that he has never seen a Fortune 100 CEO ask for public advice on how to run their company.

I must admit, he makes a very valid point. For aspiring entrepreneur class of 1907, that is.

Welcome to 2007. In this day and age, the companies that make it big are the companies that are in tune with their customer, their partner and their community. The good ol’ boy club of business leadership, behind the closed doors with lit cigars contemplating the collective stupidity of the consuming public, with no regard for rules, fairness or ethics… well… those days are gone, long gone, and the days of business decisions behind closed doors without public input are numbered. Those that dilude themselves with the illusion that they are not almost entirely driven by the customer are on the way out. Those that embrace their clients and open their practices are winning.

I have many (many, many, many, many) coleagues that feel the exact opposite way. To them, only the nice things are voiced out loud, the dirty laundry is kept hidden, far, far away where it is ignored because I guess they think nobody will figure it out eventually. The public image is only a positive, beautiful, glowning one meant to hug you with one hand while reaching into your pocket with the other. Yet, they are surprised when it backfires.

So, let me offer you my thesis: People don’t give a damn about you, your opinions or leadership skills. They do business with you because you have a product that fits their needs and the more that product fits their needs, the more involved they are in the process, the more they understand the outcome and leverage it to their benefit. Even if its full of holes and shortcomings, people will find a sense of belonging in it, spread it for you, offer others help with using it…They become product fans but they do so because of the product and the process, not YOU. It is not about you. It’s all about the customer:

Customer is king.
Customer has a choice.
Customer can choose the status quo that has always taken them for granted, abused and irrelevant, that has constantly been in trouble and caught red handed over and over….. or
Customer can choose a company that is open and willing to listen to its feedback.

Not only do the Community CEOs work, they are the only ones people want to work with/for.

You have no idea how often I am asked to reserve myself in these blog posts, to not talk about certain things, to sweep some things under the rug, to not say anything bad about Microsoft as to damage our relationship, to not say anything too good about them either because I sound like a fanboy, to not talk about the upcoming features because people will take them away, to refrain from snide remarks and just be the happy go lucky Vlad who can only be honest behind the closed doors, sweeping the ugliness under the rug so everyone can live in a happy, but dishonest/unrealistic/nonexistant, harmony. And I ignore them. Proudly. Loudly.

Yet my company grows exponentially beause my focus is not on what people think… because only people that get compensated based on what people think of them are the beggars who want people to feel sorry for them. I choose to focus on delivering what people want, and I’m damn proud to ask the people what they want because its ultimately the clients that pay the bills, not my fan club.

Now… Do you finally get Vladville?

WordPress Trackback SPAM Annoyances

Posted: 12:48 pm
November 15, 2007
WordPress
7 Comments

One of the worst things in blogging (aside from the constant, unrelenting abuse and hate mail you subject yourself to) is dealing with SPAM. Here you are just talking openly about whatever and someone tries to make money off of it. Low…

I’ve gone out of my way to kill the spammers. First, I only allow comments by registered users and registered users only receive a password to the email address they provide at registration. This nearly eliminates comment spam, I may have had one junk message in the past year.

Second, I absolutely neutered the trackback SPAM. These are the fake comments you see on Vladville that say “Mike said this: ” followed by my post contents. What I have essentially done to neutralize these monkeys is removing the hyperlink to their URLs, so even though they SPAM me, it gets them nowhere and just sends more links to my blog.

I kind of make a living killing spammers so this goes a little beyond the lone annoyance, its outright emasculating. So I’m sitting here in the atomic tangerine lab trying to come up with some replicable pattern that I can use. Most trackback SPAM plugins rely on curl to check if the offending web page has the direct link to my blog post. For pretty much everyone, that seems to be the case. So here is about the only thing I have come up with so far:

All trackback SPAM has the full post URL in it. The page also quotes, partially, my blog post and attributes it to someone else. I am intercepting the URL, downloading it with curl, stripping out all the HTML and running preg_match between the two posts.

Because all HTML and punctuation is ignored, it should be pretty easy to find a pattern match over at least 100 characters.

For the most part, nobody quotes paragraphs and paragraphs of text in a blog post, they merely link to the article and offer their point of view on it. Let’s see how it goes, right now I am just logging the matches and not discarding them automatically.

Off topic… I tried this too:

Most trackback spam happens within minutes of the post going live. It is almost safe to say that nobody would have read, thought about and produced a post referencing me within let’s say 30 minutes of my blog post. Something that automated either has no life at all or is a spambot.

If you have a better idea, I’m all ears…

P.S. I killed the monkey-glide as a courtesy to Katie. As you may have noticed, there is some more AJAX happening on Vladville, this time just a stupid CSS trick that brings in additional navigation without cluttering the page — just click on the monkey tale thats right above my head on the top right corner of my page where it says “Whats on Vlad’s Mind?” – (In my best Stewie voice) Maybe I’m thinking maybe the wife needs to take up more blogging and less bitching about how inconvenient her husbands blog is? Write a compelling narrative about the javascript timeouts and smooth scrolling with jquery? Something that will make us all root for the protagonist? Maybe put in some life experiences in the plot? Nah, nah.

Picking apart SMTP article

Posted: 11:15 am
November 15, 2007
Uncategorized
1 Comment

Don’t you just love it when you post something that’s meant to help people but it just backfires with even more questions? Such is this morning, woke up to a dozen emails about last nights post.. by the way, thanks to emailing them directly to me instead of following the proper support route (support.ownwebnow.com) or posting a blog comment where someone other than the CEO of the company could help you. Real considerate.

But, as a public service, here are a few background pieces that I hope help the spectators:

Why not just always use ISP’s SMTP server?

Because it gets hard to manage and its even worse in multihomed offices. Nowadays very few roles in business are tied to the desk, people are mobile and they rely on more mobility. They are two different things, allow me to explain. People tend to be more mobile, meaning they will do the work from home, from office, from the production plant, from the client site in Hong Kong, from an Verizon Wireless link and so on. They also rely on mobility, in terms of devices and gadgets that receive email. Yesterday we had a support ticket from someone that wanted to receive email alerts in their car because they spend most of their day driving from site to site dropping off equipment and they needed the settings to bypass port 25.

As people become more mobile, and rely more on mobility products, single desk, single ISP and single IP address rules go out the window.

Why not just use RPC-over-HTTP?

While RPC over HTTP is a technically valid solution to the SMTP problem, it is a feature of Microsoft Exchange and Microsoft Office, something that most companies cannot afford and even if they can, they do not have the means to justify the expense. Yeah, I know, I know – the productivity, the scheduling, the TCO bull can pour through the chimney on this argument, we are talking about companies that spend less than $120 a year in TOTAL on their email infrastructure and communications and that includes filtering and A/V. Could they benefit from Outlook? 50/50 – some of these roles are simply correspondence roles where minimum wage workers just crunch through the sales and fulfillment.

Remember, premium solutions are there for premium problems. The ability to just send and receive email reliably and securely is not worth a few hundred dollars a year for a vast majority of companies out there.

Why bother with SSL/TLS?

Every time you receive email from a POP3 server you are passing your username and password in clear text. Yep. You read that right. Most people stick with just plain login/pass because its easy and requires very little effort.

Same goes for webmail. We provide secure sockets on all our services but most people don’t use them. When we tried to redirect to SSL sites automatically we faced a huge backlash from partners and customers who did not want to see our hostname in the address bar. I suppose having people read your email is more appealing than seeing mail1.ownwebnow.com instead of mail.ihaveaverysmallpenisandliveforvanity.cc

ISP filtering traffic, I am outraged, where is the news coverage?

ISP’s own the network, you just buy the right to use it. A right that they can at any time restrict. In a very big way, I support the ISPs right to filter their network traffic. Most of the SPAM nightmares come from zombies on cable/DSL connections that do nothing but spew SPAM. If they were policed effectively by the ISP there would be no need for port 25 restrictions, however, I’d rather see the providers kill SMTP access and force people to migrate to secure SSL access on alternate ports.

How can I find out if my ISP is filtering my SMTP traffic?

Just telnet to mail1.ownwebnow.com on port 25. If you get the connection with our banner, you’re open. If you see anything else, or if  you get an error or a timeout or a refused connection, your ISP is filtering SMTP.

Is SMTP AUTH mechanism important?

Not really. You can either authenticate explicitly using SMTP Auth or you can just use the POP3-before-SMTP mechanism that is native to the way the mail agents operate. Basically, when you hit Send & Receive, your client first connects to us and authenticates with the POP3 server to download email. Once authenticated, the IP address is programmed into the relay for a preset amount of time, meaning you can relay mail without explicitly authenticating to the server. Pretty easy.

Now, lets say you had a copier on the network that was also sending scans to your desktop or remote office. In this scenario SMTP authentication is required and must be set explicitly because there is no POP3-before-SMTP mechanism in place for the copier, it just sends mail and expects it to go through.

What about IMAP and IMAP-SSL?

They are both supported and as a matter of fact, our new webmail (https://mail1.ownwebnow.com/webmail2) relies on the IMAP protocol to manage folders and such. However, in the field only a tiny percentage of users relies on IMAP and I did not feel that was a big enough of a cause to document completely. Same goes for IMAP as for POP3, always use securely, always use SSL, blah blah.

What is the deal with 2525 and 25252?

They are just random ports we chose to bind our SMTP server to in case your ISP is not prohibiting SMTP traffic specifically, but just using the port filter on port 25. In this case, just changing the port number from 25 to 2525 without making any other changes will do it. While you should definitely implement everything I mentioned in the guide, if “it worked yesterday, it’s broken today, and we didn’t make any changes” (if I had a penny every time I heard that lie) then just a change from 25 to 2525 or 25252 will likely do it.

Why are you using TLS for SMTP in Outlook and SSL in Windows Live?

Let me take my MCSE hat off. When I tried it with SSL in Outlook, the connection failed. It was late at night and I really didn’t want to find out why it didn’t work. 🙂

Fixing OWN: Advanced Mail Server Settings Options for Shared Hosting Clients

Posted: 1:46 am
November 15, 2007
OwnWebNow
Comments Off on Fixing OWN: Advanced Mail Server Settings Options for Shared Hosting Clients

One of the new processes we adopted in the recent Own Web Now fixup that I documented here in a fairly public way is something that Microsoft has been doing for years: Monthly “we suck” festivals. Every month Marie McFadden pulls together an awesome newsletter highlighting the most frequently asked questions that the newsgroup engineers answer. Lucky for them, they have documentation. We suck there too.

But, we’re trying to improve so here is what we did: Every week we plow through the helpdesk and identify the questions that we get asked over and over again. Those questions end up in the OWN Documentation portal with the hope that people will eventually read it before asking us for support. (we’re dreamers, I know) However, the more important aspect to our success going forward will be consultative selling, anotherwords, explaining to you what you bought and hopefully selling you on using the given application in a more meaningful, secure, productive, effective manner.

Here is an example – lately we have been getting a lot of flak in the support portal over the ISPs blocking port 25 access. Obviously, since I answer the phone it’s my problem, not the ISP’s problem. After all, it works with Google! (f’n Google, everything always works with Google). Now, common sense dictates that if port 25 is blocked, you just hop on to the alternate port. Or you use SSL. Both of which we support, both of which are common sense – assuming someone actually bothered to inform you! (rewind to “we suck” comment)

Now here is the real kicker – that applies to everyone reading this email: “Ok, great, next.”; Folks tend to ignore stuff like this, rightfully so, it is not an immediate problem. But when it does become a big enough problem you will have 10,000 other things on your plate and lets face it, you’re likely not an expert at Windows Mail configuration. Even if you are, do you want to spend 30 minutes playing around with it and making sure it works, or would you rather scroll down a 5 page whitepaper and do it the way we suggest, test and know it works (or more importantly, the way we say you do it and if it breaks we’ll help you fix it). See the sales bit in all this yet? 🙂

Anyhow, here is the blog post. Our first micro-whitepaper is titled “Advanced Mail Server Settings Options for Shared Hosting Clients” and in the nutshell it explains how to securely configure your mail client to transmit and receive mail via SSL/TLS to and from Own Web Now mail servers as well as how to say goodbye to the ISP filtering port 25 access to remote networks.

Check it out: Advanced Mail Server Settings Options for Shared Hosting Clients

So yes, we still suck, but we’re really trying to improve and I hope little things like this keep on going toward making this a decent partnership because not only does it give you some time savings, it gives the next person you hire a complete footprint on how to work with us. No guessing.

Oh, and by the way…

It’s a mighty cold day in hell. Big thanks to Susan Bradley for taking the screenshots of Microsoft Entourage on her Macintosh. Susan taking Mac screenshots, Vlad writing documentation for Mac users… yep, we’re doomed.

The OverManaged Services?

Posted: 7:45 am
November 14, 2007
IT Business
Comments Off on The OverManaged Services?

This is an impressive next step:

AT&T plans to introduce a nationwide program today that gives owners of small- and medium-size businesses some of the same tools big security companies offer for monitoring employees, customers and operations from remote locations.

Under AT&T’s Remote Monitor program, a business owner could install adjustable cameras, door sensors and other gadgets at up to five different company locations across the country.

Using a Java-enabled mobile device or a personal computer connected to the Internet, the owner would be able to view any of the images in real time, control room lighting and track equipment temperatures remotely. All the images are recorded on digital video, which can be viewed for up to 30 days.

This feature was the most impressive:

Aside from helping to verify insurance claims, the system can detect break-ins, alert an owner if a boiler breaks down and monitor employees who “are just sitting around on the clock not doing what they’re supposed to be doing,” Mr. Roby said. In one instance, he said, a worker seen operating a meat slicer without wearing protective gloves was reprimanded.

I can just see it now, daily “Lazy Employee Summary Report: Found 3 employees with operational efficiency below 60%”

While I can see how this could be used for security, I think its use in business against employees throws us back to the age of Henry Ford “optimizing” his workforce.. I sure wouldn’t work for a place that had this in place any more than letting people stand over my shoulder and watch me work.

Rhesus Insurgency – Return Of The Monkey

Posted: 10:44 pm
November 13, 2007
Vladville
4 Comments

Wild monkey, apparently with an iPod loaded with LL Cool J’s “don’t call it a comeback, I’ve been here for years”, went on a rampage in a low-income neighborhood in India. Does that make it the fourth-world? I digress:



“Police sub-inspector Gaje Singh told The Associated Press that the attacks started late Saturday in the Shastri Park area of New Delhi, adding that it was not immediately possible to give an exact tally of the injured. Local news reports said as many as 25 people were injured.”


The genius added: “But the monkey hasn’t been spotted yet”, adding to the already endless fountain of brilliance in “Part of the problem is that devout Hindus believe monkeys are manifestations of the god Hanuman and feed them bananas and peanuts, encouraging them to frequent public places” as well as “City authorities have experimented with using langurs — a larger and fiercer kind of monkey — to scare or catch the macaques, but the problem persists.”


I am not joking folks, those are the direct quotes from the article. We live on the same planet as these people? This, moreso than the ending of the Mayan calendar on 2012, might signify the end of times (which every generation/civilization has believed since the beginning of time) with the largest Darwin Award given out to the entire subcontinent.


Wow. Holy indianinabucket.com. Surely if these people can be taught how to read Microsoft KB articles out loud and fix event log issues someone might give them a better plan than “Go after the little monkey by unleashing the bigger, angrier monkey on them” or “Have you seen this monkey – wanted, dead or alive. Toothy and dangerous. Steak dinner reward.”


I know most of America is starting to reject the theory of evolution for the fact of “God did it, y’all” but even the most inbred hicks must be sitting next to their sisters-to-be-wifes thinking: “Darwin may be on to something.”


Survival of the fittest in action, bow down to the power of monkey.

Upgraded Blackjack to Windows Mobile 6

Posted: 4:47 pm
November 13, 2007
Mobility, Vladville
2 Comments

I have been feeling a little under the weather so I decided to take a plunge and upgrade to Windows Mobile 6 on my Blackjack. This is an underground, unofficial build (cooked rom) so please don’t email and ask, I will just delete the message.

All in all, Windows Mobile 6 upgrade for BlackJack is pretty cool, its the only Windows Mobile 6 Standard phone I have and the experience is quite less impressive than Windows Mobile 6 Professional happens to be. It is however much, much faster than WM5 and the setup was a breeze. Internet Explorer still crashes on some sites but overall its a worthwhile update.

It’s a great phone, very speedy and pretty good for firing off a quick email or checking a football score. Beyond that, or rather, in spite of it all I am quite unexcited about the platform in general. It seems to me that not only has Microsoft lost every bit of edge and innovation with the platform, not only have they killed every outlet for developers and enthusiasts to hack their devices but relatively little has been happening on this side of mobility since maybe April. Some of us, or perhaps most of us, enjoy playing with these gadgets and thats how we learn the key features to solve business problems… with that spark gone though, I think there will be an iPhone in the house as soon as ActiveSync is fully supported.

Zune2 better than iPod?

Posted: 5:47 am
November 13, 2007
Gadgets, IT Culture, Microsoft
Comments Off on Zune2 better than iPod?

Looks like it, at least according to Gizmodo’s tally of people that got the chance to play with it ahead of release.

Zc3

I must admit, I want one and I’m sure the video on this device is awesome (having seen Vladfire on first gen) but $249 for me is a showstopper. Two years ago, sure. A year ago, maybe. But today I look at what $250 buys and a portable media device at $249 just seems like a mountain of cash.

I guess time will tell if this is the great player to dethrone Apple, but for the moment I’m sticking with my iPod Shuffle clippy.