VOIP

The Security Myth

by

Security. I am a fan of it. Security is like a nice warm um well security blanket! No really. It is good, and most people take it for granted. The problem is allot of time security is this myth that people believe in that may not really exist. Take Wifi for example. I just used macstumbler while I am sitting at my desk at home. Do you know what I found? 8 wireless networks. One of them was mine. Of the other 7, I saw 4 open networks. Of those 2 had the default network names, and one was just named my network. That means that 50% of the networks around me where not just open for anyone to go into. That is crazy. I bet the people using those open networks don’t know they have a huge security hole on their network, or they don’t care. The network device manufacturer’s have a big problem. Make the setup of the devices too hard and people won’t buy them. Make them too easy (as they are most of the time now) and you have tons of unsecured networks. Having the majority of the people using this gear not know the mechanics of how the gear works does not help the situation. It is like having everyday people work on their cars instead of taking them to mechanic’s.

I don’t think most computer people will argue with the assessment I have made above. Or they can if they want. Wifi security has been discussed to death. Even with proper WEP or WPA encryption the system is still not safe. I know that. I have WPA setup on my wifi point. I know I can also add MAC address filtering, etc. I know better, but I still think I have secured the system enough. Have I really? I think for the most part yes. I think of WPA as the club. you can still steal the car (aka break into my network) but why would you waste time with my network or car when you can steal the guy down the streets car who left the door unlocked or just doesn’t have a club? I have a myth of security.

Another example of gaping security wholes is another growing wireless standard, Bluetooth. I have been a fan of it since I first read about it almost a year before the first mobile phone with bluetooth came out. And when it did, I bought one. A Ericsson (they were just Ericsson back then) r520. So for the record I am a fan of Bluetooth. I am a fan of wifi for that matter. I remember when I was at my first tech job back in 96 I got to play with a demo of a 1mbit (i think) wireless card and point from Raytheon. The problem is bluetooth has the same security myth. It also has the problem of the media blowing the issues into this huge security crisis. The simple fact is that most phones and other bluetooth devices were configured to be as easy to configure as the manufacturer could make them. That means allot of devices are setup to be discoverable by default. That means that if the bluetooth radio on a phone is on, someone else looking for bluetooth devices can see your phone if you are in range. To prove that, last week on Amtrak home from my trip I was able to view up to 4 other bluetooth devices from my seat. To protect yourself all you usually have to do is make a change in the default configuration of your device to not be “discoverable”. Do most people do this? Nope. But if you turn discovery off by default you have people complain that setting up partnerships are too hard. See the problem?

You have people then go around thinking all is ok, until they have a problem or someone tells them their phone is at risk of being broken into. First of all that may or may not be true given that you have to set passkeys, etc. For argument sake lets say it is an accurate assessment. These people then freak out and get mad at hardware vendors for delivering unsecured devices. How do you win?

Most of the time people live in the dream world that their stuff is safe. The crazy thing is that maybe 99% (or the vast majority) of the time people’s fantasy worlds are not broken. That perpetuates the myth that all is safe. Even if someone has been using their unsecured wireless internet connect for free for months.

The more I think about it, the more security myths I think about. And I am only thinking in terms of personal computer security. Don’t get me started on other society security concerns.

A perfect example is a few years ago my mom called me after she saw an Oprah on TV. She was calling to warn me that email I send wasn’t secure and that anyone can intercept and read it. She was shocked, but Oprah set her straight. I was like, yeah mom of course email is not secure. Old news. She was surprised that I knew that. It is scary that the general population assumes something like email is secure, and it isn’t. On the flip side can email be intercepted? Of course if it is not encrypted. Is most mail not encrypted? Yes. Will my mom have to worry about her neighbor reading her email or some stranger intercepting it? Probably not. It is very possible to do, but come on who really is going to try and sniff out her mail? its a real threat, but I don’t think most people won’t ever have to worry about it. Doesn’t mean I don’t think we should all get certificates and secure our mail. I would love to do that, but it is impractical in today’s world. So you see even I let the myth of my stuff is secure live on some level. We all do it, and if you don’t think you do, you are kidding yourself.

Roller Coaster Day

by

When I didn’t think the day could get any crazier it did. I was very busy all day putting out fires at work (figuratively not really). Just as I recovered from a week delay on our AD project, I get major complications from our IPCC deployment. Dan and I had a opinionated discussion with our integrators. We also are very close to purchasing our first SAN. We are pretty sure we got the price to a number we are happy with.

Finalized plans to make changes to our voice circuits to allow for more resiliency if we have a failure. Stupid issues arose regarding mislabeling of circuits. The little details that we are not following up on are killing me, but when asked to get tons done in a certain amount of time, you have to give somewhere. I just don’t like doing it.

I have other issues going on with VPN tunnels to partners of ours. It has been very stressful. I thrive on stress, but sometimes it is allot. Hopefully tomorrow will be calmer.

Mac or Thinkpad?

by

Mac or Thinkpad T-43? What do I take with me for a week away? For personal trips I would take the Mac hands down. Now I am going away for work next week. On one hand I get the Thinkpad from work, and I like it. On the other hand I have been working off the Powerbook as my primary machine since I got it. I use it as my main email, web, chat, and document editing platform. That is allot of my day, but not all of it. I still use my Thinkpad or desktop PC for terminal sessions (not a huge fan of the mac RDP client, and the MMC plug in for remote desktop still rocks), and VMWare. That is allot of my day also.

So what to do? The Thinkpad has IP Communicator on it, so I can VPN into work and then use my phone extension. My powerbook has Skype, and the Xten VOIP client for Broadvoice if I choose to setup my account for it. I can use bluetooth headsets with both machines, but the mac works better hands down. The Thinkpad has a bigger screen, and since it is work property I am less concerned about beating it up (but I know I still care so that is not such a big issue). Of course the bigger screen is also harder to see since its resolution is so small. Bad for me and my glasses:(

Thinkpad had good battery life and I have 2 batteries. Shall I go on? I am thinking if the Powerbook works fine with the new Cisco VPN client I will just take it. I have grown accustom to using it. Even though somewhere in the back of my head part of me says take the Thinkpad.

Why do I care what I take? Why should you? For me it is what will I use as my lifeline to the office while I am away for a week. Hopefully wont need it, but if I do it is a big deal. Why should others care? I don’t know. I felt like writing about what I was thinking. Also it kind of boils down to the age old question, Mac or Windows? For me the answer is both if you can, but if you have to choose I think I will edge over to the Mac side!!!

More Softphones That Are Cool!

by

I got the chance to play with Cisco’s new IP Communicator software. Well it is not that new anymore, but it was new to me. I had used their older IP Softphone software. This is just a new version of their phone-less phone. IP Communicator lets you use your computer as the telephone. The concept is fantastic, and IP Communicator actually works as advertised.

The software emulates the look of a Cisco 7970 IP Phone. You can do 4 way conference calls (we cannot do that on the 7940’s we have). Answering and placing calls is as easy as having a hard phone. Searching the Corporate directory is faster now that you have a real keyboard to search. The call quality was great.

I need to try the software out from a cable modem this weekend. I have it on my Thinkpad to give it a whirl.

Softphone did allot of what I just discussed, but it was a pain to setup and configure. Communicator was simple to do. The only draw backs will be fixed when we move to CCM 3.3.4 or later. The main issue being extension mobility not working.

Travel Essentials

by

As I said the other day, I don’t travel anywhere near as much as I used to. Just because I don’t go out of the office that much doesn’t mean that when I do I want to be any less connected. I did a quick overnight trip Monday-Tuesday. I (bored on the train) now write about what I relied on during the trek.

While in transit nothing says keeping in contact with the world like a Blackberry. When you can’t or don’t want to bring out a laptop it is essential. I hate it for everything else, including the stupid direct connect. I find that if I want to hold a conversation I might as well call the person than have a 20 minute conversation on DC. For email nothing beats the Blackberry, yet.

My powerbook was the laptop of choice this trip. My thinkpad is acting funky, and I don’t want to wipe it since I am getting a new one next week. So the powerbook stepped in and performed flawlessly (so far). I used it to watch some tv shows I recorded last week. Checked mail, did work, blogged, etc. All over Wifi!

Without the iPod I would not be sane. It makes train trips, and quiet hotel rooms that much more tolerable. It also is a great portable hard drive to store said TV shows that I watched on my powerbook. I say YES to plug and play!

My Treo is great (always carry it), but this trip it was used as it normally is. Still great, and a must for travel. What I used instead was Extension Mobility on Cisco Call Manager. It is the ability to log into any CCM phone and your extension moves with you. That coupled with the Cisco WIFI cordless phone make working in a different office just like I was in NYC, even when I was running around between 2 floors.

My new Omega X-33 watch was also a must this trip. I use my watch as an alarm wherever I go. I took my timex (broken band and all) along just in case the Omega didn’t do its job. It worked fine. I almost fell out of bed with the loudness of the alarm this morning. First impressions is this watch and I hopefully will have a long friendship!

Lastly I loved my Broadvoice VOIP phone, & Skype. I didn’t use broadvoice this trip, but I used its voice mail. I got all my VM emailed to me so I stayed in touch with everyone. I would never have checked my NYC VM without it. Skype is great since I can use it on my powerbook with my Sony Ericsson HBH-65 bluetooth headset from anywhere I have an internet connection. For this trip it was free calls from the hotel. I didn’t even need my cell phone for it. If I had broadvoice soft-phone I wouldn’t even need skype.

I have talked (praised) most of these items before, but when you use them all together you have a very smooth travel experience. I will most likely be using most if not all of this gear on my next extended trip. Now if only Amtrak could accommodate a nice ON TIME trip and travel would be painless.

The train is approaching Penn now. About an hour and 15 minutes late. So I will wrap this up so I can put the powerbook away. More mobile reviews when I use the stuff and have time to write about them! This post was written on Tuesday afternoon 5-17-05…

Technorati Tags: , , , , , , , , , ,

IPCC SOW

by

We met our integrator about the statement of work for our IPCC deployment. They calmed our nerves about most issues but we came up with another one. Dan and I will talk about this tomorrow.

If that is done, we can sign the papers and in 90 (work filled, super stressful, and probably extremely interesting and fun) days we will have an IPCC call center.

More news as it develops…

IPCC Deployment

by

I have been quiet on the work front recently. Not because I don’t have things to talk about but because I have been busy. We went over the statement of work for our IPCC deployment yesterday. We need to go over a few details to make sure we know what we are doing! More news as that LONG project progress’s.

Cisco 7920 IP Wifi Phone

by

I have had the opportunity to play with the Cisco 7920 Wifi IP phone recently. I have said before I am a fan of Cisco Call Manager (CCM). I use it, I like it. I thought the 7940 wired IP phones were great. This Wifi phone operates just like a 7940 but it is a cordless. I have taken it between 2 locations with the same WEP configuration and it worked seamlessly. I took it between 2 floors with seamless wifi setup and it worked without a problem. The battery life leaves a bit to be desired, and a cradle would be nice for what these things cost, but the phone is still great.

I am tempted to get a wifi IP phone for my personal Broadvoice account. They offer help on configuring them, and they even sell one through Hello Direct. I am just not sure if the quality is as good as the Cisco one? Too bad the 7920 is only a skinny based phone and wont work on SIP.

Cisco Network Conference

by

I got my reservations for the Cisco Network conference in Las Vegas this year. I made my reservations and called everyone I know that is going. I will hopefully meet up with Joe out there. He is taking Karen, so hopefully we can get together for dinner one night. I hope to also meet up with one of the Cisco engineers I know. I still have to set my schedule for the conference but with tons (200+) things to do I will have a hard time picking just a few stuff to do. I am really excited to go. I get out of the office that much and this really sounds like an interesting conference. That it is in Vegas has no bearing on my happiness on going!

I also spoke to Sean about the trip. I am hoping to hook up with him on the sunday I fly in. It has been a while since we got together. I hope he and Kelly have some free time with the baby and all. More news as it develops.

VOIP Rocks

by

I haven’t said anything nice about Broadvoice recently. It still rocks. It’s $10 a month unlimited in state calls plan is the only reason why I have a home phone. It is only $1.50 in tax, vs $9 in tax for the $8 dial tone service Verizon offers. And that gives me just dial tone. My $10 gets me tons of crap. The only issue with the service is the customer service. it takes forever to get someone on the phone. They are growing so I will cut them some slack for now. Thankfully I only needed to call when I had to make changes to my account. No problems so far. Lets hope it stays that way. Why Vonage can’t or wont offer some of the services Broadvoice does I don’t know. Hey vonage you would have gotten my biz if you had more than 1 phone you can simultaneous ring on, and if I could use any VOIP phone, and not just your adapter. My Cisco 7940 rocks! Can you get the weather report off your home phone? Do you want to?

Other cool VOIP products I am playing with now is Skype. Just being able to make phone calls from a pocket PC got me interested. I have the free service setup, but I have not had a chance to use it. Gus and others rave about it. I am traveling on thursday and will give it a try then. Added bonus, Skype works on the Mac or Linux!