I'm still publishing

My 2c on bad policy and uninformed commentary http://www.cleartext.com/blog.html

This last week we officially launched our live services and desktop messaging app. We’ve been in pre-release and talking to clients for a while now and even managed to sign up some early users. Read more here.

I just checked my Facebook Privacy Settings ‘What your friends can share about you through applications and websites’ and the ‘My Birthday’ was still enabled – That’s a real privacy and identity theft risk as fas as I’m concerned and should be OFF by default.

Did you know that you could be recommending products and services to people on Facebook? Check out the ‘Facebook Ads’ section in you ‘My Account’ settings and turn off this feature if you’d rather not be unwittingly promoting advertisers products.

So Facebook is STILL failing on the privacy and safety issues for me, you may want to do an in depth review of ALL the settings in your Facebook account.

This article on The Australian’s web site talks about issues around tweeting. Cleartext’s platform can address some of these issues.

The article demonstrates why Cleartext ESM exists at all. What a great side story to run as the Logies was being aired, if only the news producers had known it was happening, sounds to me like The Age hadn’t a clue until Tuesday!

quote.. ‘Deveny was one of many comedians and journalists who gleefully “tweeted” during the TV Week Logies’, were the news agencies tracking the event on Twitter?

1. If she was tweeting using Cleartext ESM Desktop The Age would have an archived record of the tweets (if it was company policy or a contract requirement).
2. If a news organisation had ESM they could be tracking that conversation as it happened.
3. It reminds us that journalists have already gone online and Twitter IS being used by them (so some form of policy and technology to enable and control the activity is needed)

Another quote from the article;

‘”Definitely it would serve media organisations well to have a clear policy in place for social media and their uses, considering in the media sector there’s a blur between the line of journalists blogging or tweeting in a personal capacity and the fact they’re associated with the media organisation,” says Blake Dawson media lawyer Jeremy Storer.’

Yes they should, and the technology to help.

And another;

‘”Then from the journalist’s side of things, they need to be aware whatever they’re publishing is going to be read, not only by their employers but by the wider community.”‘

And archived for later eDiscovery if they are using Cleartext ESM.

And another;

‘This month a British Labour candidate, Stuart MacLennan, was sacked after his “offensive” tweets appeared in a newspaper.’

If they were on Cleartext ESM the bad language would have been filtered out.

So in summary, not only does Cleartext provide a platform for gathering, searching and filtering ‘tweets’ we also provide technology to mitigate some of the risks of open social media.

To see how long it takes FeedBurner to find this… I think the prior post got picked up quickly just because I’d just signed up

I just hooked up by blog (http) to Googles FeedBurner service (http -> pubsubhubbub) and in turn to a PubSubHubbub -> XMPP Gateway hosted on Google App Engine.

Why? To prove that you can get almost any web based content into an XMPP based platform like Cleartext ESM. I’ll post a screen shot of this post in ESM Desktop as soon as it shows up

– UPDATE! That was quick – FeedBurner has grabbed the post and pushed it to the XMPP gateway, which in turn pushed it to my ESM stream….

For those still wondering this is what a prompted Tweet looks like, note that it’s staying at the top of the tweet stream, despite the fact that it was posted 10 hours ago;

Here are a couple of screen grabs of Cleartext ESM desktop client. Showing the rich design features of this RIA (Rich Internet Application) for chat and microblogging.

Detail of the 'bookmarks' for various services

The Twitter Platform’s Inflection Point

http://www.avc.com/a_vc/2010/04/the-twitter-platform.html

and a follow up…

Evan Williams’s Message to Twitter Developers

http://bits.blogs.nytimes.com/2010/04/09/evan-williamss-message-to-twitter-developers/

My view is that the killer app is microblogging – that’s what many people have missed, just as email was (is) the killer app that kicked off when federated email _arrived_ on the net in the 90′s.

I was going to post a comment on the NY Times article but I have to register first, which I won’t do. NYT need to open that up, they’ll get more comments on there articles and more traffic if they let people post without registering.

New OR (Michael Osterman @mosterman) policy study: 19% of decision mkrs are very concerned about sensitive/confidential info being sent out of their orgs through Twitter.

Cleartext ESM - Twitter Data Leakage Study

This is good news for Cleartext as our ESM (Enterprise Social Messaging) platform provides a solution to this concern in that we archive and can word filter micro-blogging.

Finally XMPP at Facebook – only client-server at the moment though, but that’s a good start…

http://blog.facebook.com/blog.php?post=297991732130

Here’s a screen shot of me connected using Psi for Mac(also available for Windows). As you can see I’m not a huge Facebook user

I thought people would like to have a peek at a screen shot of the current development version of the Cleartext ESM (Enterprise Social Messaging) desktop client.

Cleartext Enterprise Social Messaging

It’ll be a free download for Windows, Mac and Linux and included in our XMPP SaaS IM & Micro-blogging offering which will be available Q2 this year.

Think of Cleartext ESM as an XMPP IM platform that supports public IM and micro-blogging over XMPP(via gateways), includes URL shortening, character count and various Twitter specific functionality.

Contact us if you’d like to be on the beta program, we’re particularly interested in hearing from organisations looking to roll out IM or micro-blogging for their staff and require word filtering and archiving etc for compliance reasons.

I’ve had enough of being ripped off for mobile data roaming so I’ve sent this to Orange UK and Vodafone Au. You’d think that as a Vodafone client my data costs would be the same both here and in the UK, or anywhere else for that matter.

Running an international SaaS (Software as a Service) business I know that ‘international’ data doesn’t cost 10 times ‘local’ data, imagine Cleartext charging clients in the USA ten times what we charge people in Australia… it’s time the mobile data rip off was stopped, much like the EU’s hammered telcos for voice roaming recently.  So here it is;

—
Attn: Customer Service management, Product Management.

bcc: Vodafone Au, Orange UK and my blog.

re: international mobile data roaming is still painful, it shouldn’t be.

I’d like to lodge a complaint about the amount of our latest Vodafone (mobile number 0*** ***1) bill attached, and the quality of technical and customer service (rude, unhelpful staff) at Orange (mobile number 0*** ***5) High Wycombe store.

Before travelling to the UK from Australia I enquired about mobile broadband via my iPhone and was informed that I could purchase a mobile data roaming plan for about $300 that gave me a couple of hundred megs of data. Obviously running a small business and staying online whilst in the UK this is just not economical so I decided to get a mobile broadband dongle in the UK. For example about $80 gets 2-3Gb of data,

On arriving in the UK we chose a dongle from Orange because the Vodafone staff in a retail outlet told us that coverage was not good in our locations, Orange said they had good coverage. The reality was that Orange had almost no 3G coverage so we returned the product and purchased a Vodafone dongle, this worked very well and we were happy with the results.

However during the period that the Orange dongle was less than useful I had to connect and used my Vodafone iPhone with mobile data roaming. I did this for about a week, (recall we were snowed in) switching data on and off as needed. The end result is not nice with a bill for ten times my usual monthly bill for 3G data.

Orange: Your service did not worked as explained by your retail staff, our plan was cancelled, but we were still billed via our credit card, this has now been corrected. BUT your staff would not refund the cost dongle, even returned in good packaging. What use is a dongle with no service, what would your industry body or trading standards think of failing to address a faulty product/service combination?

Vodafone: Having been a customer for many years I’d like some negotiation on this invoice and a credible explanation of the excessive charges incurred, especially in the contexts of the European Unions recent ruling on mobile roaming. Running an international Software as a Service business I fail to understand these excessive data costs, even allowing for differences in international market pricing for data I’d still only expect a maximum of double the fees.

Overall not much has changed over the last 10 years with regard to mobile roaming, either voice or data. I’d have thought that by know I could simply plug my iPhone into my laptop and get a data connection anywhere Vodafone has coverage, globally, without feeling like I’ve been ripped off. Charge a premium yes, but 10 times, that’s just outrageous.

Looking forward to some constructive dialogue on this issue.

best regards,

David Banes
Director & CEO, Cleartext
Director & Secretary, Internet Industry Association
—

• New computing strategy: iPhone + 2 x iMac (home & office), #iPad replaces MacBook for sofa & travel email & surfing.
• #iPad case, first time I’ve seen a portable computer with a custom made case for years. Last was my Olivetti DOS laptop in 1989 I think
• RT @DDrazic: Will iPad have arm strap so I can out do those dudes at the gym that strap iTouch and iPhone to their arms when training?
• RT @jamiepride: On reflection the iPad is targeted at netbooks – will be interested to see how competition to plays out in this space. #ipad
• #iPad conclusion for someone with an iPhone & new MacBook Pro. Luxury coffee table item, but worth popping into your Apple store to play
• So the magic in the #iPad is the software, ignore the ‘overgrown iPhone’ look and lac of connectors etc

Well it’s looking like it…

—-

cleartext01 ~: telnet chat.facebook.com 5222

Trying 69.63.181.104…

Connected to chat.facebook.com.

Escape character is ‘^]’.

quit

<?xml version=”1.0″?><stream:stream id=”none” from=”chat.facebook.com” xmlns=”jabber:client” xmlns:stream=”http://etherx.jabber.org/streams” version=”1.0″><stream:error><xml-not-well-formed xmlns=”urn:ietf:params:xml:ns:xmpp-streams”/></stream:error></stream:stream>Connection closed by foreign host.

cleartext01 ~:

—-

Listen to Conroy on filtering, is he deliberately missing the point?

It’s not about performance and what you’re blocking it’s about the fact that a western democracy is putting a Chinese type firewall in place.

Let’s not even get into effectiveness, URL addresses change far faster than a government department can keep a list current and much ‘bad’ material is in fact NOT sent by web but by encrypted email and p2p.

I was flicking through an older Slideshare presentation called ‘Microblogging via XMPP‘ (Extensible Messaging and Presence Protocol) and it occurred to me that whilst there’s no doubt Twitter has redefined public internet messaging it’s not speeded up one to one or one to many communication, in fact it’s slowed it down.

Take the points from slide 6:

London – Calcutta, message + reply (Peter Saint-Andre)

• 1800: 2 years (ship)
• 1914: 1 month (steamship)
• 1950: 1 week (airmail)
• 1980: 2 days (overnight mail)
• 1994: 10 min (email)
• 1999: 1 sec (IM)

It suddenly struck me that because Tweets are sent and received via HTTP polling the delivery time is more than a 1999 IM.

So a quick test between 2 Twitter accounts using Tweetie and Seesmic to DM saw 2 mins 55 secs for the send and 2 mins 29 secs for the reply. That’s 5 mins 24 secs for a simple “Hi” and “Hello” back. Interestingly I got the email notification of a DM before either Twitter app picked up the DM.

So our new bullet point would be;

• 2009: 5 min  (micro-blogging)

It’s entirely legit to say that services like Twitter are a whole new category and aren’t supposed to be real time, but how many users of such services expect them to be? I know a few people that think Twitter is close to IM, when in fact trying to have a one to one conversation over twitter isn’t really possible in the same that it is over instant messaging.

So it’s with this in mind that many people, including Twitter during mid 2008, looked at XMPP to help deliver a more real time experience for micro-bloggers. In fact the ‘Microblogging Over XMPP’ specification was updated mid 2008 and describes a way to deploy close to real time micro-blogging.

Some alternatives to Twitter use XMPP (Twitter dropped ‘official’ support mid 2008) gateways, services like Jaiku, identi.ca (status.net) and FriendFeed. XMPP has also been picked up by Google for GTalk and Google Wave, WordPress and Yahoo! for various projects.

Many people, myself included, use an XMPP chat program to ‘tweet’ via these gateways so that we can microblog and IM from the same application. (In fact Cleartext will soon be releasing such an app).

So Twitter will probably do just fine with long gaps between messages and HTTP polling but my intuition tells me that in an age when everyone wants more and faster ,that an XMPP based real time federated micro-blogging service may just catch on and even replace IM.

I’d like to see that bullet point read;

• 2010: 0.5 sec (real time micro-blogging)

David Banes.

Footnote: There’s also an open microblogging standard called, Open Microblogging, but this is HTTP

I believe that IF there was a God then this God would see us all as equals under one church. I’ve formed the opinion that the core values mainstream religions teach strive to create compassionate, honest and caring attitudes towards all living things and that these core values are in fact independent of religion.

I was just reading this Ferris piece on Exchange mailbox sizes and thought it would be useful to document Cleartext’s strategy for our hosted email clients storage. The Ferris article starts;

‘Exchange 2010′s database strategy is very interesting. The new Database Availability Groups and the benefits they offer for data protection and quick recovery are striking.

Overall, Microsoft is optimistic that mailboxes will be able to grow to 10GB or more. However, it’s unclear how large mailboxes will perform in practice. Several concerns spring to mind:’  read more…

We (Cleartext) offer both mailbox hosting (via an Axigen ISP platform) and SaaS email archiving.

Our strategy is to keep hosted mailboxes as low as 200-500Mb and bundle these mailboxes with the SaaS archiving service for permanent email storage. This has several advantages;

1) Users mailboxes are easier to manage and migrate if needed and are less prone to data loss caused by IT systems issues or more often ‘user error’.

2) The SaaS archive has full text and attachment indexing meaning it’s quicker and easy to find email when needed.

3) The client can implement their retention policy on the SaaS platform to ensure compliance with eDiscovery regulations. Avoiding issues where staff delete email from their inbox.

This is a change to the usual large mailbox offerings from organisation slike Google but we believe is more appropriate for business deployments.

We often notice that despite our advice clients insist on leaving a ‘backup’ MX record in their DNS, this means that they a) don’t understand how spammers operate b) don’t understand that we have primary, secondary and tertiary routes for their email.

So I thought it timely to explain how MX routing works and why it’s not a good idea to leave an  ‘extra’ MX record in place that DOESN’T point to us. Lets assume your companies domain name is ‘your-company.com’ and you have such a backup record in place, lets say it’s value is 100 and it’s named postoffice.your-isp.net.

Mail servers route inbound email for a domain to the MX record with the lowest value, so looking at your MX records;

your-company.com.    3600 IN    MX 10 mx811.clearemail.net.
your-company.com.    3600 IN    MX 30 mx813.clearemail.net.
your-company.com.    3600 IN    MX 100 postoffice.your-isp.net.
your-company.com.    3600 IN    MX 20 mx812.clearemail.net.

Any mail server sending mail to anyone at ‘your-company.com’ will try to deliver to us at  the MX 10 value above (mx811.clearemail.net), and if that fails then 20, then 30. If all fail then the sending mail server will try to send to MX 100. postoffice.your-isp.net.

Often clients initially setup a backup mail route like the MX 100 you have above because there’s a worry that the main routes will all be unavailable, which is very, very remote given these (MX 10, 20, 30) all point to different parts of our infrastructure.

The reason we advise against this practice is that spammers have realised that some organisations do this so they send their spam to the highest route first, that would be to MX 100. This routes the email to your-isp.net and that system will then deliver email to your mail server. This bypasses Cleartext (or any other managed email security platform) thereby causing several things to happen;

1) Our multi-layered spam and virus filtering will not be applied.
2) Inbound email will not be archived and therefore unavailable for e-discovery
3) Any custom email rules, perhaps for HR reasons will not be applied
4) This inbound email will not be recorded anywhere in our logs because it’s bypassed us.

Looking at the above, 1) isn’t too much of an issue because your ISP may be applying rudimentary filtering therefore catching some of the spam, but they may let through phishing emails, trojans etc, 2) could be an issue because this email won’t be archived which means you may not be complying with e-discovery legislation and 3,4) could also be an issue if you need to trace email that someone says they sent to you, or HR needs to for some reason.

Now it’s arguable that 2-4 above won’t be too much of an issue because legitimate mail servers will send to 10, 20 or 30 first, but even so there’s still a chance genuine mail will route this way and do you want that if you end up in court with the other party doing email discovery on your organisation?

So, to summarise, if you use a managed email security service and have such a ‘backup’ MX record in place you currently have a ‘backdoor’ into your email system which could let spam or malware in and that routes email without your corporate policy being applied.

So make sure you don’t get caught out by having email routed around the very platform that’s supposed to be providing your email security and compliance requirements.

‘No speed limit, no crash barriers and no street lights’, that would have been fun at night in a fast car Some great picture here.

We had a glorious weekend and I actually managed to avoid doing any work, well all but 30 minutes.

I also managed to order replacement wing mirrors for my Rover, someone managed to clip the drivers side mirror while it was parked so it’s a good reason to buy two new ones.

Your credit balance has expired

Unfortunately, your Skype Credit balance has expired due to 180 days inactivity on your account. We sent you three reminder emails, but as we explained, this now means the balance you had in your account has been cleared.

Below is the Skype Credit expiry policy, detailing why your balance expired.

What are the rules for Skype Credit expiry?

1. Skype Credit expires 180 days after your last credit purchase or action that used credit, for example, calling a phone or sending an SMS message.
2. Each purchase, call or SMS message resets the expiry time to 180 days.
3. You will receive reminder emails 30 days, 7 days and 72 hours before your credit expires.

Talk soon,
The people at Skype

- Obviously not as my credit has been ‘stolen’.

Because they can.

Many times in the last 20 years I’ve seen independent  software vendors and IT solution providers flounder following an announcement by Microsoft about a new product. It seems that if they (Microsoft) see  a lucrative new area they announce early, often before they have anything to show let alone sell.

They’re at it again, announcing in April this year that Exchange 2010 will have archiving, but where’s the detail? What will it do, how much will it cost, will it support non Microsoft email servers?

There’s a problem with this, and it’s verging on unfair competition, they are effectively advertising something they don’t have. Is that even legal I wonder?

This can have a big impact on the sector in question. End users postpone a buying decision citing “waiting for Microsoft” which causes vendors of competing solutions sales pipelines to dry up or stall.

These same vendors have to re-evaluate their product roadmap, adjust their sales and marketing strategies all based on something that’s not real yet.

OK, so this is just ‘normal’ competition, Microsoft aren’t the only ones who announce ‘vapourware’ But given they have a near monopoly in many areas and have been proven by the courts to behave badly we should all be concerned.

I for one refuse to be held to ransom by a vendors promise to deliver ‘something’ when there are many good, some would say better solutions out there that work with these vendors systems. Innovation is alive and well on the ‘internets’, you don’t need to wait, there’s a solution out there already.

Why wait? In my experience you’re bound to end up paying more for a less compelling solution, delivered by a monolithic ‘old skool’ business that really only cares about share holder dividends.

- Disclaimer: Cleartext doesn’t sell or supply any Microsoft products or services, but we do sell compatible solutions that are far better, including a very nice email archiving service that works with all types of mail servers.