RegisterFly Woes

Do yourself a favor. Do not use RegisterFly for domains.

When you submit a ticket, they don’t care. When you submit multiple tickets, they’ll reply by saying “Please do not submit multiple tickets with the same issue”. But at least I got their attention.

tickets1.jpg

I am pissed off at them since I can’t even renew my domains. Their so-called automated domain renewal emails kept flooding my mailbox, but when I try to renew everything seems to fall apart. Submitting a ticket didn’t seem to help, so I did what this commenter in Vincent Rich’s blog suggested – use Firefox’s ReloadEvery extension to submit hundreds of tickets. I got their attention. One of my .com domain got transferred but for this particular domain romantika.name their buggy system seems to be ignoring my renewal requests and gave me a blank order ID.

Now I have decided to transfer my domains elsewhere. The new registrar is powerful, their automated system is really automated, helping me register a new domain and the transfer requests within 5 minutes. However, I got stuck again with the authorization code. Previously in RegisterFly’s system you can clearly see an authorization code (a.k.a. EPP code) for every one of the domains, but recently it has disappeared. Vincent also had the same problem. Currently I see that he already succeeded in transferring his domain to NameCheap. Well done, Vincent. I wonder how long it took him for the transfer to complete.

What I have done so far about the transfer process initiated today is send another ticket, and an email to their support for the authorization codes. That’s where the transaction is stuck now. And I also see another ticket I created about my problem renewing romantika.name domain. That’s not the first. The first also went unanswered.

norespond.jpg

I warn you once more, don’t do business with them. You’ll lose precious time, and money to buy aspirin because of the headache they cause.

What registrar do you use?

RHCT or RHCE?

RHSince the company I am working for is willing to pay for the training fees + exam fees, I am actually thinking of getting RHCE. However due to the current events that are going on in the office, I will not be able to attend the 5 day training until the early of next year. Time is a big problem indeed.

There will be an RH302 exam available on 24 December 2006 at Training Choice, KL.

The catch is that I have to pass the exam and the company will reimburse. If not, I’ll lose RM1,800.00 (~USD500.00) for nothing. Gulp!

Creative Zen Neeon

Yesterday I received a free Creative Zen Neeon 512MB in a goodie bag distributed to all my department staff at work. Although I have never really wanted an MP3 player* this is a pleasant surprise indeed.

Formal Picture of Creative Zen Neeon

512MB is not that big if you ask me, but the player actually comes in different models of 512MB, 1GB and 2GB. I charged it overnight via USB port, and this morning I did a test run with a few types of music. Having never used any hand-held MP3 player before, I’ve got to say that the sound quality is good. However I was a little disappointed to hear some noise from the right earpiece when playing the introduction MP3 preloaded with the device.

Continue reading Creative Zen Neeon

Internet Marketing Goes Wild

Technology is a huge keyword in the world we live in today. More and more types of businesses are going online for promoting their products and services.

For example nowadays, businesses that we thought would never go online has already made attempts to have websites and online promotions, or as we usually say it “Internet presence”. For example, www.bungatelur.com specializes in Malaysian wedding items – something traditional that we have never imagined would be possible online. I’ve contacted the business owner and found that there are actually a lot of businesses coming through from the web!

With all these interests in having Internet presence, new opportunities are also blooming for web design and development companies that provides services for website building. Even myself is having some contractual projects for building websites for all kinds of businesses.

Moreover, some companies or site has introduced specialized services for certain types of businesses to have Internet presence. One good example would be this site called Surgeon Advisor which is targeted for plastic surgeons to market their services in the Internet. Simply termed, I call it Internet marketing for doctors.

Does your business have Internet presence yet?

The Correct Way To SPAM

Some of us might say that there’s no right way to send spams. I partially agree especially the spams contains useless information but I do sometimes receive spams that contains interesting things and products.

Spambots is a no no. But living in Malaysia I receive quite a number of people sending emails promoting their valid services and products. I don’t like it but if you can’t stop it you have to live with it.

Some rules that is acceptable under my own considerations are:

Rule 1: anti virus

Use anti virus in your computer where you send the emails from.

Rule 2: recipients

NEVER put recipients email addresses inside the To: field. Instead, use the Bcc: field. This way, the recipient will still receive your email and know who is it from. Why? This is because 100% of the times, your recipient are not related to each other. You have no rights to reveal other people’s email addresses to the public. This also increases the chances of email viruses to propagate and send emails to thousands of people. You can control your PC but not the recipient’s.

Let’s say you send an email to user A, B, and C by putting them in the To: field, and user B is a nest of virus. The viruses in user B’s PC will be able to see user A and C email addresses and propagate themselves. This will not happen if you send using Bcc: field, where user B’s PC will only be able to see your email address and sends viruses to you. Hey, that’s the risk you have to take. You can always send an email with the From: address is not yours or make up any address but I am not going to teach that here.

Rule 3: sender

Always use your real name as sender. Use something like “special promotion” or “tawaran hebat” will definitely make sure your email end up in Junk boxes.

Rule 4: subject

Don’t use weird character like the underscore (_), quotes, or even to the extreme: normal brackets. Spams usually will try to avoid spam filters by masking words. For example a spam promoting weight loss products use the word “we_ight“. This no longer works as spam filters have been made to detect these kinds of things.

So people, if you send emails using the general rules above I am more than willing to have a peek before deleting the emails.

Be safe.

Malaysia Prepaid War

The war has begun again. Yellow operator came out with www.thetruthaboutprepaid.com and the blue (purple?) operator came out with www.thetruthaboutprepaid.com.my. I wonder what the red operator will register.

For sure, the yellow operator must have some regrets for not registering the .com.my version of the domain.

While the yellow operator is being discreet about the domain it registered (or isn’t technical enough that a freelancer and an external company to handle such promotion):

Administrative Contact:
McCann Erickson (M) Sdn. Bhd
Sha Li Lim
Level 8, Menara IMC, 8, Jalan Sultan Ismail,
Kuala Lumpur, 50250
MY
Phone: +60.60327186118
Email: [email protected]

The blue operator doesn’t seem to care:

j [Technical Contact MYNIC Handle : CPC014868]
Celcom IT Security Management
Celcom (M) Berhad
16th Floor Menara Celcom
No 82, Jalan Raja Muda Abdul Aziz
50300 Kuala Lumpur
Wilayah Persekutuan
Malaysia
[email protected]
(Tel) 03-26883876
(Fax) 03-26810396

As long as there’s no gunshot or people dying because of this I’ll just sit out of the war zone and enjoy the fun. I’m using postpaid (with neither operator) anyway.

Belkin Surge Protector Insurance

When I first bought the Belkin Surge Protector Gold Series I didn’t really believe that they are going to replace faulty equipments. On the box, they say the insurance amount is RM50,000 insurance (maximum amount of the devices connected to the protector).

Today, we called the toll-free number and immediately received an RMA letter for our surge protector. For real!

We need to pick the new protector in KL, and send the damaged one via UPS to them. As for the insurance, it’s normal that we would need to send a form together with the damaged protector to Singapore. At least there’s hope to get replacement for our broken devices!

I’ve got to say that I am impressed with Belkin – and it’s not easy to impress me! I’ll post updates from time to time on the progress of the claims.

Bad Day – Experience with Lightning

On Friday while at work I received a call from home – my whole house was out of electricity after a big thunder. Great, and I have to work until midnight. After that power was restored by switching the ELCB back on. The bad news was that both of my TV got fried. At first we thought that the 2 got fried because they are connected to the Astro terminal, but the Astro terminal is fine. Also, my DVD player was also effected.

Returning from work at about 1.00 am, I also found out that the ADSL modem (Aztech DSL 600E) is busted as well. The network port is not working anymore. When I connect network cable from any devices it will fail to detect it. The DSL LED is still on but there’s no way to check.

Aztech DSL 600E

Luckily my WRT54G (v2.2) is still fine.

WRT54G

It figures, since it was connected to the phone line BUT the Belkin SurgeMaster Surge Protector GOLD SERIES should have protected it!! After investigations I also found that the all of the phone protector ports and LAN ports are also broken on the Belkin SurgeMaster Surge Protector GOLD SERIES.

Belkin

On the box of the surge protector there’s a toll free number for Malaysia, and this product carries lifetime warranty plus insurance to all of the interconnected devices. I tried to call them on Saturday but no one was available. I guess I’ll have to try during weekdays.

So today (Saturday, as I was late in posting this entry) I went to Low Yat plaza to buy a new DSL modem. To nicely pair up my Linksys wifi router I decided to go for AM-300.

AM-300

It retails at RM119.00, which is a few Ringgits more than the Aztech DSL 600E.

I also got me a few AVR units to plug the TVs once they get back from repair, if they have not went FUBAR.

About the AM-300 modem, I’ve got to tell you that it’s really easy to set up. Initially I just plugged it in to replace the old modem and got online instantly.

Out of curiosity, I tried out the wizard from the installation CD and everything is a whiz!!! When I selected my country and my ISP, the proper selections of the technical settings are selected. This is really fool-proof, not like the Netgear wifi router that I helped my friend with few months ago (and failed).

AM-300 Wizard

The modem itself is a full-featured router. With DHCP, with an additional switch you can actually leave the dialing and routing to it and share your Internet connection. As for me, of course I am using the WRT to dial my connection. Although the modem keeps wanting to reboot after every Save done on the settings pages, I am quite satisfied with it especially the wizard part. Not surprising from Linksys (I am a fan so I might be a bit biased).

If you want to have a shared wifi, get a different model with wifi and perhaps additional ethernet ports. Some people asked me on what the difference are between brands. I told them there’s not so much difference considering their functions, but the things like going on an extra mile to determine user ISP settings is definitely a plus with Linksys. Well done.

Hey while messing up with the modem I find that my ADSL link has also been upgraded:

2m-streamyx.jpg

And the bandwidth test verified it (while connected to only one machine directly). I forgot to take the screen shot.

Firefox 2.0 Spell Checker in Action

I knew Firefox 2.0 contains built-in spell checker, but was not really looking for it.

To my surprise while typing in my previous post, it starts underlining misspelled words. The funny thing is that even Firefox is considered as wrongly spelled? It suggested “Firebox” or “fire fox”. 🙂

This is, however not a big deal. This functionality is very good indeed, especially when posting entries. By the way in the screen shot below my active dictionary is en-GB.

Spell check

Traffic Shaping According to Time Of Day?

Looking at my traffic graph generated from the router, I can see that my traffic increases at night and gradually slows down right after 0800. Traffic remains slow until going up again at about 2300. Interesting.

Streamyx 1 day

Streamyx 1 week

Is TMNET implementing traffic shaping based on hours of the day? Anyway the traffic at night hovers around 10kB/s download and 7kB/s upload, not that much 🙁

I guess it’s better than nothing but I really hope they can increase it a bit more… come on..

Yahoo! Time Capsule

Time capsule? Isn’t that idea kinda old? Not really, if combined with today’s multimedia techniques and technologies. Quite a while ago, Yahoo! has introduced Yahoo! time capsule, created by Jonathan Harris, an internet artist.

For 30 days, from October 10 until November 8, Yahoo! users worldwide can contribute photos, writings, videos, audio, even drawings, to this electronic anthropology project.

There are several themes in which you can contribute to, namely FUN, SORROW, FAITH, BEAUTY, PAST, NOW, HOPE, YOU, LOVE, ANGER.

Why you don’t have a try? At the moment this is posted, time left is 21 days, 1 hour, and 40 minutes.

A Real Computer Expert, At Last

At last in yesterday’s edition of the articles about Internet Banking, the same newspaper as mentioned in the previous post interviewed Datuk Abdul Hamidy Abdul Hafiz, the chairman of the Association of Banks in Malaysia (ABM). In the interview, Datuk Hamidy explained about the problem like an expert. I am not sure about his background, but he sure know about it better than the “computer expert”.

Quote:

ABDUL HAMIDY: Phishing bukanlah satu trend. Ia merupakan satu penipuan dan tidak boleh dihentikan kerana ada sahaja orang yang hendak mencuba.

Tetapi kalau kita melihat cara phishing ini dia bukan hendak menembusi (penetrate) sistem bank, tetapi ingin menembusi sistem milik pelanggan. Ini bermakna, penipuan tersebut berlaku terhadap pelanggan yang masih kurang berpengetahuan mengenai keselamatan di Internet.

Maksud Datuk pelanggan yang tidak cekap menggunakan Internet.

ABDUL HAMIDY: Ya. Mereka yang masih tidak cekap menggunakan Internet.

Oleh kerana itu semua bank yang mempunyai kemudahan perbankan Internet sentiasa memberitahu peraturan dan langkah-langkah keselamatan.

Pelanggan kadangkala mengabaikan peraturan yang diberikan oleh pihak bank kerana menganggap peraturan itu terlalu panjang.

Kita berharap pelanggan akan membaca dan memahami peraturan yang telah disediakan. Kalau mereka (pelanggan) tidak faham mengenai peraturan atau langkah yang disediakan, mereka boleh menghubungi Pusat Pengurusan Pelanggan.

Original news: http://www.utusan.com.my/utusan/…

This time I am short of time to translate anything. If you are interested just let me know.

As a summary, he said that the problem is not with banking website, but with the users’ Internet skills. Criminals are not attacking banking websites, but users. Right on target, Datuk.

Internet Banking Risks – Computer Expert Fooled, Refuse to Use Service

This article from a local Malaysian newspaper website caught my eyes. The funny thing is that the person interviewed by the journalist claimed his/her self as a computer expert. And he/she was fooled by an Internet banking scam. Expert? I don’t think so.

Anyway, my point being, articles like this will surely deter usage of Internet banking in Malaysia. Internet banking is safe indeed, and with a few precautions in mind it’s a great experience. Of course, somebody from the bank can steal your money. But can they also do that without Internet banking? Think about it.

Here are some things (there may be more) that you always need to remember when using Internet banking:

  • NEVER NEVER NEVER click on links in email. For a few years now my banks have never sent me an email with links to click on!
  • Look for the padlock in your browser (please see image below). This means that the connection is secure.
  • Ensure that the address bar is pointing to the correct website. Banks have specific websites from where they operate. For example Maybank have www.maybank2u.com.my and BCB (CIMB) have www.cimbclicks.com.my. Don’t use the site even if a letter missing!!!
  • Make sure that before the site name, it shows https:// and not http:// or any other thing. This only applies to the login page. Some banks like Maybank have their main page with information served with http://
  • If a warning pops up in your face saying that this site may be forged, just believe it first, ask questions later.
  • Use a reliable browse like Firefox. In this post you can see it detects a phishing site correctly. If you’re not currently viewing this page using Firefox, consider using the link on top of the page to download it.
  • Banks will never ask for your username or password in emails or call you to ask for those information. Keep your login information to yourself.

maybank2u_verify.png

maybank2u_verify_ie.png

If you are unsure, email or call the bank helpline. Previously I suggested for you to contact me so that I can help in confirming, but changed my mind. Trust only the bank.

In my point of view, articles from a computer expert like the guy/gal below should be explaining and helping instead of complaining. He/she said he/she advices people to be careful, but how?

Get your points straight, media!

Direct translation follows:

Internet Banking Risks – Computer Expert Fooled, Refuse to Use Service

By YULPISMAN ASLI

Do you feel safe and convinced making financial transactions via Internet banking?

Do you know that Internet banking sites can be cloned by anyone – from a school kid to a cyber criminal – in only one or two hours?

Ironically, Utusan Malaysia was told by a computer expert that he/she him/her self doesn’t want to use the service anymore.

Why? Because he/she has been fooled via the online banking service.

“I made a transaction online but never received the money. Now I prefer going to the bank to make transactions,” said the computer expert (who refused to reveal his/her identity) from a government agency, here today.

For that particular case experienced by the computer expert, the acitivity was finally detected by National ICT Security & Emergency Response Centre (NISER).

The phenomenon that is happening is real.

Yesterday police arrested four university students and nine others because they created a forged web site of local banks to steal customer information before withdrawing their money.

According to the expert, with only a computer, Internet and browser software, a person can create a forged bank website that can potentially cause millions of customers’ ringgits disappear.

“Furthermore to create such website, they don’t need a long time, only about one to two hours,” he/she said.

He/she said, what the creators of the forged website needed to do is create a website that looks like the original website.

This can be done by copying the whole website, while the software is available in the market.

He/she said, the activity however can’t use the same original URL (domain address) of the website as it is protected, but they can create an alternative network that can confuse the bank customers.

“In the Internet world you can do anything (create forged bank websites). It’s not hard to copy, it takes only a while,” he/she said.

He/she said, usually, those who don’t have the knowledge and doesn’t know about IT world will be exposed to the forged websites.

In relation to that, he/she advices the public to be a lot more careful when doing online banking transactions to prevent from becoming a victim.

Yesterday, Assistant Director of Cyber Crime and Multimedia, Assistant Commissioner Ismail Yatim said, police have arrested four university students who were lead by a government officer’s son/daughter as they are involved in creating forged bank websites to steal customer information before withdrawing their money.

The four students were among the 13 people arrested for their involvement in the cyber crime. They were arrested in multiple raids in Kelantan, Selangor, and KL.

Their MO so far that has caused loss amounting to RM36,000 is sending emails to bank customers and requesting them to update the details in their bank account.

They then asked the customers to click on a link in the email, to update the details.

After clicking on the link, they are requested to input their username and password without realizing that the website is forged.

The information filled by the customers will be saved automatically in the data created by the syndicate, accordingly making it easy for them to access the victim’s bank account and transfer all the money.

Original news:

Risiko perbankan Internet — Pakar komputer pernah ditipu, enggan guna lagi perkhidmatan

Oleh YULPISMAN ASLI

KUALA LUMPUR 11 Okt. – Selamatkah atau yakinkah anda menggunakan perkhidmatan transaksi wang dan urusan seumpamanya menerusi perbankan Internet?

Tahukah anda bahawa laman web perbankan boleh diciplak oleh sesiapa sahaja – daripada murid sekolah sehinggalah kepada penjenayah siber – dalam tempoh satu hingga dua jam sahaja?

Ironisnya, Utusan Malaysia diberitahu oleh seorang pakar komputer tempatan bahawa beliau sendiri tidak mahu lagi menggunakan perkhidmatan itu.

Mengapa? Kerana dia pernah ditipu menerusi perkhidmatan perbankan secara online itu.

Saya membuat urusan secara talian tetapi bank tidak menerima wang itu. Sekarang saya lebih suka pergi ke bank untuk membuat urusan, kata pakar komputer (yang enggan mendedahkan identitinya) dari sebuah agensi kerajaan itu, di sini hari ini.

Bagi kes yang dialami oleh pakar komputer itu, kegiatan tersebut akhirnya dikesan oleh Pusat Keselamatan dan Tindak Balas Kecemasan Teknologi Komunikasi dan Maklumat Negara (NISER).

Fenomena yang berlaku ini adalah nyata.

Semalam polis menangkap empat pelajar universiti dan sembilan yang lain kerana mencipta laman web palsu bank-bank tempatan untuk mencuri maklumat pelanggan sebelum mengeluarkan wang mereka.

Menurut pakar itu lagi, dengan hanya memiliki sebuah komputer, Internet dan perisisan pelayar, seseorang itu boleh mencipta laman web palsu bank sehingga boleh melesapkan berjuta-juta ringgit wang pelanggan.

Malah untuk mencipta laman web palsu itu, mereka tidak perlukan masa yang lama, hanya kira-kira satu hingga dua jam sahaja, katanya.

Beliau berkata, apa yang perlu dilakukan oleh pencipta laman web palsu itu ialah mencipta laman web seakan-akan laman web asal.

Ini boleh dilakukan dengan meniru keseluruhan laman web terbabit, sementara perisian pula boleh didapati di pasaran.

Katanya, kegiatan itu bagaimanapun tidak boleh meniru URL (alamat domain) asal laman web berkenaan kerana ia dilindungi, tetapi mereka boleh mewujudkan rangkaian alternatif sehingga boleh mengelirukan para pelanggan bank terbabit.

Dalam dunia Internet memang semua boleh buat (mewujudkan laman-laman web palsu bank). Nak tiru bukan susah, sekejap sahaja , katanya.

Beliau berkata, selalunya, mereka yang tidak mempunyai pengetahuan dan tidak tahu tentang selok-belok dunia IT akan terdedah kepada laman web palsu tersebut.

Sehubungan itu, beliau menasihatkan orang ramai supaya lebih berhati-hati ketika membuat urusan bank secara online bagi mengelak menjadi mangsa.

Semalam, Penolong Pengarah Jenayah Siber dan Multimedia, Asisten Komisioner Ismail Yatim berkata, polis telah memberkas empat pelajar universiti yang didalangi anak seorang pegawai tinggi kerajaan setelah terlibat dalam kegiatan mencipta laman web palsu bank-bank tempatan untuk mencuri maklumat pelanggan sebelum mengeluarkan wang mereka.

Empat pelajar itu adalah antara 13 orang yang ditangkap kerana terbabit dalam kegiatan jenayah siber terbabit. Mereka ditahan dalam beberapa serbuan sekitar Kelantan, Selangor dan ibu negara.

Modus operandi mereka yang setakat ini telah menyebabkan kerugian sebanyak RM36,000 ialah menghantar e-mel kepada pelanggan bank dan meminta mangsa mengemas kini maklumat akaun bank mereka.

Mereka kemudian meminta mangsa klik pada satu pautan yang tertera di e-mel tersebut kononnya bagi tujuan mengemaskinikan akaun simpanan mereka.

Setelah klik pada pautan itu, mereka disuruh memasukkan nama pengguna dan kata laluan tanpa menyedari laman web tersebut sebenarnya palsu.

Maklumat yang diisi itu akan disimpan secara automatik dalam data yang dicipta sindiket itu, seterusnya memudahkan mereka mengakses akaun bank mangsa dan memindahkan semua wang milik mangsa.

Contents above directly copied from http://www.utusan.com.my/utusan/…