I spend lots of time in front of my computer and that time expands from beginning of my work day to the majority of my free and personal time between family responsibilities and tasks. I love breakfast but I rarely ever sit down, eat breakfast and read the paper. That’s so old school right? I do somewhat of the equivalent though with my browser at every startup.

I have a collection of web pages that open in tabs automatically when I start my browser each session. This gives me a variety of launch tasks to take advantage of as I start my work day and other periods after coming back to the computer.

• Gmail - gives me the opportunity to check my "business" email account for items of interest
• Yahoo! Mail - is the email account I use for mainly email from friends and family
• BrightKite - give me the opportunity to "check-in" wherever I’m working that day
• Startlike Outdoors - serves as a launch and portal page with a great picture of nature to start my day

Maybe you want to open your banking page, or your company’s intranet site, or your email, or anything else you can think of to open. Whatever you want to see first to get your day started.

You can do this with your own browser and select your own start pages in Mozilla Firefox. In Internet Explorer, go to Tools > Internet Options and the "General" tab. You just place each page you want to startup on a separate line.

Let your computer be your new morning paper. Nothing will replace that first cup of coffee though right?

Image: Composite of browser tabs and opened tabs shown together

After downloading and installing Internet Explorer 8 onto the computers of various members of my family, I’ve now downloaded and installed it on my own machine. There’s not a whole lot that you’ll notice that’s different initially. I believe I have noticed that pages do seem to be loading a bit faster in IE8 than previously in IE7.

I’ve had to use the compatibility feature on a couple of sites, ones that I’ve developed for clients, so there’s so more work for me to take care of and make sure those are up to par.

I’m still using Firefox as my browser of choice. I still say that the main reason I stay with Firefox is because of all of the plugins and extensions that are available on this platform. Hopefully IE8 will get more activity from developers and Microsoft will keep improving this browser. Competition is good for everyone. Let’s hope both of these browsers keep pushing each other.

We all know that we must log off all our accounts before leaving a cybercafé. But is it necessary on our home PCs?

Turns out, you are better off logging out all accounts even at home.

I recently read somewhere that the Internet Explorer 8 is getting ready to protect users from clickjacking attacks. A little digging, and I found a lot of literature on this subtle attack called CSRF that is being dubbed “the sleeping giant” of web vulnerabilities.

Cross-site Request Forgery
Suppose Alice closed her bank page without logging out and that the session is still alive. Now she opens an apparently harmless webpage but with a tiny obscure image referring to a “post” page of bank. That is, the page that is executed after the confirmation, the page where the actual transaction takes place.

While Alice is going through that apparently harmless webpage, a transaction is being executed on her behalf.

This kind of attack where a part of one site cross-refers a different site is cross-site request forgery.

Now, the above explanation is a very simplified version. In reality, bank sessions are more secure, but the CSRF done is equivalently more subtle and cunning. It is a good thing that most banks expire sessions automatically after a few minutes of idleness.

Clickjacking
ClickJacking is a term which encompasses multiple techniques that can be used to trick the user into unwittingly clicking an obscured or hidden web element, usually resulting in an unwanted transaction.

Read more about Clickjacking, about what IE8 is doing to defend users against Clickjacking, and about the CSRF.

One way to be on guard is to use different browsers or browser profiles for normal browsing activity and activity where logins are necessary.

I’ve realized that my last Tech Channel Roundup was nearly a month ago and I’m guilty of it. So, bear with me as I overload you with a number of interesting links that I found in some of the sister blogs.

Milo discovered a product especially useful for enterprises of all sizes called Nightwatchman, a good news that Microsoft didn’t lay off anybody in the Vista team. I knew that they didn’t touch the Silverlight team, but frankly I’m surprised about this because Vista hasn’t been very profitable to Microsoft. Or has it? One bad news is the Windows 7 minimum requirements. It may not be a good experience to try it on my netbook which just meets the minimum requirements and my laptop which is old enough to even miss the minimum. But if anyone is interested, you can get the Windows 7 look into Windows XP. He also found a couple of amusing videos, one called “how to say i love you.” and another a confirmation of love, a marriage at Taco Bell. Recession, aye?

Jason found a few websites that can assist you in unique ways: one for helping educate your kids, one a calendar to help others, and another to scan your computer online. He covered a lot of Windows Powertoys, a mobile media browser and found another reason to continue loving Zune. He also has a couple of how-tos for selecting non-linear text in a word document and sharing Outlook calendar availability. One bad news, I mean another one, is that Microsoft is shutting down MSN Groups.

Claire thought out loud about the gap between Linux and mainstream users, learnt something new about less (which all you Cygwin users may find useful), discovered a wonderful browser called Kidzui which attempts to make the Internet a more kid-friendly place.

Juan wonders whether the Mac is not invincible anymore and whether Apple really needs to make a netbook. He is glad to find a symbol cheat widget and an app that can save his day with a bunch of drawings. The latter isn’t my cup of tea. He along with Jayvee found out about Apple’s stand on piracy.

Microsoft released its first release candidate for the Internet Explorer 8 this Monday. You may have received a notification had you installed IE8 Beta 2 on your PC. Others can download it from the official IE8 Beta page if interested. While this version is not the final release, a release candidate is considered to be a feature-complete version with a potential to be the final release unless any critical bugs are identified.

On Windows XP, the installation needs two reboots – one after uninstalling IE8 Beta 2 and another after installing IE8 RC1. On Windows Vista, a single reboot after the installation will suffice. On Windows 7, this is not expected to work at all. (Windows 7 already comes preinstalled with an IE8 beta version.) Read the complete installation instructions here.

I installed the software on both my desktop and laptop, both currently running on Windows XP, and my biggest complaint is that after the first reboot (uninstalling IE8 Beta 2), when the installation of IE8 RC1 step ends, the second reboot takes place without a prompt. It is bad that a reboot is required in the first place. Any other work you may be doing in the meantime (because installation takes a few minutes) could be lost. Keep that in mind if you are trying to install it.

Another age-old issue is that IE automatically sets itself as the default browser though it is not much of a problem. That said, I welcome Microsoft’s new generosity to allow custom non-Microsoft search engines and accelerators to be set in the user preferences.

IE8 RC1 appears to be running faster than IE8 Beta 2, which itself has considerably improved over IE7. The software has been made more secure and Microsoft seems to be taking pains to be more compliant to the global web standards. The latest version is definitely a big step in the right direction for the future of the Internet Explorer.

Image Source: Internet Explorer.

We have all heard about that deadly Internet Explorer security threat by now. Aaron of TechWebOnline feels that it is better to avoid using the Internet Explorer, especially for sensitive transactions, and stick to Chrome/Firefox/Opera/Safari even though Microsoft released a patch to fix the threat. It can hardly be called a hack, but I agree it works. :)

Meanwhile, Michael Howard, a principal security program manager at Microsoft, made a clean post about what they have learnt from the latest bug and why they couldn’t detect it in the first place. It is a very interesting read, especially if you can put aside your demands for infallibility of security engineers and appreciate the honesty.

Whenever a security threat becomes known, Microsoft gets a lot of attention that it would prefer not to. This is leading to the exodus of the Internet Explorer users to other browser options. Gregg Keizer of ComputerWorld covers a story that says that IE’s European share fell under 60% for the first time. A more interesting part of the story is that Firefox’s user share has stalled too, after the release of Google Chrome.

Brad Linder on Download Squad discovered a tool to backup the Internet Explorer Settings. Also in the post are links to tools that can backup Firefox profiles and Opera data.

After finding Symantec Ghost distasteful in imaging Windows Vista, Brian of Reich Consulting finally tried the Windows Deployment Service and wrote about his first impressions on it.

Image Source: Internet Explorer Logo from the Microsoft Website.

We are still more than ten days from the new year, but a majority of the world has already started retrospecting the last twelve months and forecasting the next twelve.

Jayvee inspects the culture of FAIL on the Internet and finds that video advertising is going to decline. Actually, the rate of growth of online advertising has reached a saturation point even though online advertising itself is continuing to rise.

In these tough times, when the economy has been slowing down, Clair suggests that choosing Linux and open source software has become more necessary. For those who are already in that path, there is a free Ubuntu training course. Ubuntu is Linux for human beings, isn’t it?

A survey found that only 1% of people are using Google Docs, and many of those use Microsoft Office already. However, Colleen feels that the Microsoft’s stranglehold on office suites may be slipping away with Microsoft promising and postponing their next release and the availability of too many options for the users.

Juan says that 2008 is the year of iPhone, which is not very debatable in the user sense though this is also the year for RIAs, Twitter (@bsravanin) and cloud computing. But then, he is an Apple guy. :-) He also shares the offer that MacUpdate is having as a holiday promo. A good offer, far better than dreaming about the Apple 24″ LED display which is about $900!

Speaking of promos, Jason has a post about the Sears Wish Promotion, similar to the HP Magic Giveaway which has recently ended. There is already several Top 10 lists too, like the top 10 viral videos of 2008. I personally don’t like the fact that these lists do not consider the rest of the year that is still to be lived through. The more important news is, in case you haven’t already heard, that a serious security flaw has been exposed in the Internet Explorer and it is advised to not use it for financial and other sensitive transations of any kind.

While you wait for the security update, be sure to take note of the 8 security bulletins that Microsoft is ending the year with. Various OS users may want to check out the 2008 Service Pack 2 beta releases.

Microsoft released a huge security update, its biggest in five years, containing 28 packages of which 23 are marked “critical”. You better run the Windows Updates immediately; I am right now.

There is a Firefox trojan that is trolling around stealing passwords. Read the Larry Seltzer’s post for the story and a suggestion.

Friend Brian got numerous cases with a variant of Win32/FakeSecScan virus in the last couple of weeks and so compiled a helpful one-page PDF called “Beware of Fake Antivirus Programs” (PDF link warning). I have one more thing to add. When you see that popup message, open the taskmanager and kill the browser. Some of the uglier ones of this kind don’t have a better solution.

Computer World has a very alarming story. McColo Corp., a webhosting firm, was taken down a month ago resulting in a 42% drop of spam volume. Slowly, actually quickly, the spam levels are catching up again.

McAfee released its Virtual Criminology report recently. It accuses the governments of turning a blind eye to cybercrime, according to PCWorld. I agree that there is a damn lot to be done, but McAfee’s bombastic style takes away a little credibility, not of the report itself but of the accusation. If say the US government were turning a blind eye, there wouldn’t even be talking about a Center for Cybersecurity Operations, would they?

Blizzard has introduced two-factor authentication in World of Warcraft. On top of the usual password, there will be a six-digit authentication code generated by the %6.50 worth keyfob on-demand for each login.

There have been posts circulating the blogosphere about a couple of add-ons recently: Pirates of the Amazon and IMDB Pirated Version. I believe they are a bad thing to have come during particularly bad times.

Pirates of Amazon is a Firefox add-on. Whenever a user visits a media page in Amazon (movies, TV shows, games, music), the add-on gives alternate torrent links from where the same product can be illegally downloaded for free.

IMDB Pirate Version is another general script that crossreferences titles on IMDB allowing users to search directly from the imdb page for subtitles, torrents and http (rapidshare,megaupload, and other hosts) movie releases, and view the movie trailer directly. I don’t mind the subtitles and movie trailer really; they are useful functionalities.

A few years ago music industry lost billions to piracy and has recently limped back to apparent normalcy. There are many who don’t give a damn one way or the other about piracy and those who justify it do so by claiming that the stars get paid way too much for their work. As a writer who reads more publishing news than any other kind of news, I have been reading about thousands of people losing their jobs in the publishing industry. Behind the highly-paid stars are legions of faceless people whose livelihood is at stake in any industry. No part of the economy is immune to the current slowdown and this is a worse time for irresponsible cheating of one another than any other. Please show restraint.

Ways to run web services through desktop apps are constantly explored especially for oft-used ones. Desktop apps are preferred to web services because they tend to use less resources. Today, Gmail can be run as a desktop application through two means: Google Gadgets and Mozilla Prism.

Gmail With Google Gadgets: To run the official Gmail Google Gadget, you will need Google Desktop 5 or above installed on your computer. The gadget is tiny (79KB) and offers all the basic features of Gmail including reading, sending, searching and starring messages; keyboard shortcuts; and contact auto-complete. But it doesn’t yet have the sound notification for new messages received. The gadget has been released only yesterday and is bound to have bugs though I hope they are fewer than in iGoogle.

Gmail With Mozilla Prism: Mozilla has been working on a project called Prism (add-on) which can be used to convert any website into a stand-alone desktop application outside the browser. Prism is available as a Firefox add-on, and is easy to use. You can read my opinion on Prism in greater detail here and let me know if you need any help with creating your own desktop app of your favorite website. I’ve tried this five months ago, so there is a good chance that the technology has gotten better.