88 ‘High Risk’ vulnerabilities discovered in Android 2.2 ‘Froyo’

November 4th, 2010

Worrying for Android users:

Security researchers at Coverity examined some 61 million lines of code from 291 open source projects and compared the results to those for the Android kernel. The researchers picked up on 359 bugs in the Android 2.2 source code, some 25% of which were ranked as ‘high risk’ vulnerabilities that could endanger user privacy.

Happy Purchase – Griffin iTrip for iPhone

August 26th, 2010

I already own a Griffin iTrip FM transmitter for my old iPod, but when I connected this up to my iPhone it suffered from annoying, and sometime deafening, howls of interference unless the handset was in airplane mode.

So I had two choices - live with the howling or buy a new FM transmitter.

I bought a new FM transmitter, and since I'd previously been so impressed by the iTrip, I bought an updated iTrip from Amazon.

Griffin iTrip FM Transmitter

There are several things that I like about this FM transmitter:

  • First, no howls. Maybe the sound quality isn't as good as a Bluetooth connection, and it does involve having to set up the iPhone and the radio, but it works and overall sound quality is more than acceptable.
  • I can control the transmitter either from the physical buttons or using the app that you are prompted to install.
  • I can fit the iTrip onto the iPhone without having to remove the case it's in (in my case a Switcheasy Rebel).
  • SmartScan technology makes finding a quiet patch in the FM spectrum easy.

Very happy with my new iTrip!

Windows 7/Server 2008 R2 randomly freezing? There’s a fix for that!

August 24th, 2010

Interesting fix released a few days ago:

A computer that is running Windows Server 2008 R2 or Windows 7 stops responding randomly. Applications or services that are running on the computer stop working correctly. Additionally, you cannot log on to the computer by using the remote desktop connection utility.

This issue occurs because of a deadlock condition between the Lsass.exe process, the Redirected Drive Buffering Subsystem (Rdbss.sys) driver, and the Winsock kernel.

Not much to go on. but if you#'re having problems, it might be worth a try.

(via Five Nines)

Microsoft pushes “out of band” update for .LNK vulnerability

August 3rd, 2010

From the Microsoft Security Research Center blog:

We are releasing the bulletin as we’ve completed the required testing and the update has achieved the appropriate quality bar for broad distribution to customers. Additionally, we’re able to confirm that, in the past few days, we’ve seen an increase in attempts to exploit the vulnerability. We firmly believe that releasing the update out of band is the best thing to do to help protect our customers.

Good news! Well done Microsoft!

Check Windows Update now if you've not already installed this update. Go on, do it now!

Should I install Windows 7 Service Pack 1 (SP1) beta?

July 30th, 2010

A lot of you are asking me if you should download and install the new Windows 7 Service Pack 1 (SP1) beta that Microsoft has made available.

My take on it is this - unless you need it for comparability testing, don't bother.

Basically, SP1 for Windows 7 is a roll-up of all the updates and patches already released. If you've been keeping up with your Windows Updates, then you've already got everything you need.

It's worth pointing out that SP1 doesn't add anything new to the OS at all, so you've not missing anything out. In fact, you're saving yourself a 50 - 450MB download!

My advice, wait until the first quarter of 2011 for the final release and install it then.