When you set up an internet connection for a customer you do everything you can to protect them, you set up a restrictive firewall, you have a proxy that enforces policy for web surfing as far as possible. You also use all possible means to block spam and viruses in e-mail before they reach the lusers that still believe Bill Gates will give them free Nokia cellphones.

After you did all the technical stuff, you tell everyone (you know it falls on deaf ears, but you have to try) that they must not visit those porn sites, that they must copy links in e-mail and paste them into their browser rather than simply clicking on them etc. So what happens when one of the lusers that actually listened goes to a legitimate website and still have his windows computer exploited? Or if they are lucky the lusers get a warning from their anti-virus software and the site gets blocked.

The sad part is that even very competent IT professionals have extreme difficulty to prevent all exploits on the internet even when they do all the right things. You can read a fascinating account in the Gauteng Linux Users Group mail list archives of such a case where someone’s web site got exploited by quite a nasty man in the middle attack.

In short, a windows server (every one says, we are not surprised) was compromised in a data centre and intercepted traffic from other servers on the same local network. By doing this it managed to redirect innocent visitors of well managed websites to malicious websites that attempted to compromise the visitors’ machines. You can read the gory details at http://www.linux.org.za/Lists-Archives/glug-tech-0905/msg00009.html and more detail at http://www.linux.org.za/Lists-Archives/glug-tech-0905/msg00026.html. Links to the whole thread is at http://www.linux.org.za/Lists-Archives/glug-tech-0905/threads.html

The real scary part is that you cannot do much about something like this because even if you do have a secure local net and the web server you visit has a secure local net, this type of attack can be done anywhere in the path between you and the web server you are visiting.

Be careful out there.

It is of course quite easy to stay relatively anonymous on the internet and services like Pirate Bay are already offering ways to work around these new laws.

There are however people that figured out how to make use of the new technologies to distribute media and still make decent money. Jamendo is one of these companies. All music on Jamendo is free to download and licensed through one of several Creative Commons licenses or the Free Art License, making it legal to copy and share, as well as to modify and make commercial use of for some, depending on the license. Jamendo allows streaming of all of its thousands of albums in either Ogg Vorbis or MP3 format, and downloads through the BitTorrent and eDonkey networks. Jamendo also helps musicians to commercialise their music via their Jamendo Pro services.

On 23 March Jamendo published an ironic statement against the “Three strikes” laws. It is called “Three strikes vs. three thanks”. In a nutshell – they will reward people for downloading music, instead of punishing them showing “…that there are plenty of talented artists who know how to profit from the opportunities offered by the internet and embrace innovative monetization models…” Hopefully many more artists will join them.

BTW if you are in Johannesburg and want to hear a really great band that publish all their music under a creative commons license, NUL are playing at the Bohemian tonight 4/4/2009.