The Consumerist has the story:

WaMu’s crack fraud department is at it again, according to reader Kristin. Someone broke into her iTunes account and bought a couple hundred dollars worth of iTunes gift cards with her debit card information. She disputed the charge and WaMu told her not to worry — they’d take care of it. Two months later, while on a trip to Chicago, WaMu reversed the credits, causing Kristin to become severely overdrawn. No amount of protesting will convince WaMu that she wasn’t lying about the iTunes break-in. Why? Because she never responded to some mail they sent to her old address.

Yuck. Read the customer’s full account, and more information about the credit card fraud laws, in the full article.

When the original iPhone came out I thought it was pretty cool, but at the end of the day it did not do for me what my Windows Mobile Smartphone did.  Namely gave me 3G access speed and Exchange integration.  Those two things alone were enough to keep me a Windows smarthphone user.

As I wrote earlier July 4th my phone got wet in my backpack and though I have blown dried it often since than, it has just never come back. I can make a call now and than and use, but you never know when it is going to whig out and I have to reboot (actually it was like that before it got wet, but it is much worse now).  So having had this phone over a year, it really was time for a new phone. 

I was not totally sold on the iPhone and it was not my only choice. I wanted no part of the lines and crowds, so I waited until Saturday to go to the ATT store and see what my options were.  Frankly, I didn't have many options.  The upgrade for my current phone is the HTC Tilt.  Nice phone and I would consider it, but not at the $450 dollars that they wanted to charge me.  After that, there was the Blackjack, not interesting.  A few others and than Blackberries. I need the Exchange integration.  So when it came down to it, you could not beat the $199 price for the iPhone. The 2 year contract didn't scare me, as I am at ATT wireless user for about 10 years already.  The only bad part is that they did not have any in stock and I had to order mine. It should come within 5 to 7 days, but all set up for me to just plug in to iTunes and away I go!

So a few more days of this water logged brick and than on to joining the "mod squad".

Apple splits its 802.1X support into two pieces. There's basic support built into the iPhone 2.0 software, found in the Settings application's Wi-Fi section. Click Other. Click the None label next to Security, and the WPA Enterprise and WPA2Enterprise options appear. Select either, and the main login screen lets you enter the network's name (SSID), a user name, and a password. This basic method is limited to WPA Enterprise and WPA2 Enterprise, the two most common (and most secure) forms of 802.1X.

Most enterprises will want much more control over this process, and Apple provides the iPhone Configuration Utility, currently available in its most complete form only as a Mac OS X application, and in more limited forms as Web 2.0 applications for Windows and Mac OS X.

The utility serves two purposes: creating configuration profiles, including for multiple Wi-Fi networks and VPN connections; and allowing iPhones in an enterprise to run internally developed iPhone software. The Wi-Fi profiles allow you to create WEP or WPA/WPA2 802.1X configurations, and include support for choosing allowed EAP messaging types, configuring authentication elements associated with a given EAP type, and adding server certificates and names for better authentication control.

Once created, these profiles can be distributed throughout a company via email or as a direct download to the iPhone via an intranet Web server. Apple chose not to encrypt them, which means that certain information that's not secured--such as the shared secret for certain VPN connections--could be disclosed to someone who had access to the profile or could download it off the local network.

iPhone, iPod touch now Wi-Fi remote control (see screen capture at right): The iPhone 2.0 software was soft released today, with a download available from Apple that's not yet being pushed via iTunes software when users' systems check for updates. The free Remote software, downloadable from the new App Store on the iPhone or Applications area in the iTunes Store, controls copies of iTunes on the local network once you've used a simple pairing technique. The same is true for the Apple TV with a free 2.1 software update for the digital box that's available now. (Also, you can snap screen shots in iPhone 2.0: Hold down the Home button and then press the top button. The capture is stored in your photo roll.)

Japanese bullet train gets Wi-Fi by next March: This was first announced in 2006; it's still on track, pun intended. The line runs from Tokyo to Osaka.

Network 1 expands its service St. Louis area: The company will offer service in 8 additional cities for a total of 15 in the St. Louis, Mo., area. The network provider is building out a neighborhood at a time using ostensibly commodity equipment. They charge $20 to $50 per month for service, and are focused on residential, rather than outdoor cloud access.

Image via Wikipedia

When I find a new product or service that I think is good I am only too happy to let the world know it on my blog. For the past almost 2 years in the notes of every episode of our podcast, I mention and thank ClickCaster for hosting our podcast.

I originally was turned on to ClickCaster by Scott Converse out in Boulder, Co who was the founder of ClickCaster.  When Scott realized that a free model was not going to pay the bills, he instituted a pay model for podcast hosting. I was only too happy to pay for the great service and stats I was receiving. Well a few months ago Scott and team sold ClickCaster to focus on their new project, Medioh!.

The new owners, nexplore promised no changes and same great service.  Since then the stats stopped working, it became harder and harder to post new content and the site was down more than it was up.  Finally after getting no satisfaction from ClickCaster I had no choice but to look for another host.  Mitchell and I have chosen Pod-o-matic to host the podcast going forward.

Of course we don't have all of the episodes moved over yet because ClickCaster isn't even up enough for us to grab all the episodes.  But most of them are up at pod-o-matic and we have already repointed the feedburner/iTunes feed.  So from here on you can hear us at pod-o-matic. 

If you are looking to host your podcast, you don't have to use pod-o-matic, but don't use ClickCaster!

Image via Wikipedia

When I find a new product or service that I think is good I am only too happy to let the world know it on my blog. For the past almost 2 years in the notes of every episode of our podcast, I mention and thank ClickCaster for hosting our podcast.

I originally was turned on to ClickCaster by Scott Converse out in Boulder, Co who was the founder of ClickCaster.  When Scott realized that a free model was not going to pay the bills, he instituted a pay model for podcast hosting. I was only too happy to pay for the great service and stats I was receiving. Well a few months ago Scott and team sold ClickCaster to focus on their new project, Medioh!.

The new owners, nexplore promised no changes and same great service.  Since then the stats stopped working, it became harder and harder to post new content and the site was down more than it was up.  Finally after getting no satisfaction from ClickCaster I had no choice but to look for another host.  Mitchell and I have chosen Pod-o-matic to host the podcast going forward.

Of course we don't have all of the episodes moved over yet because ClickCaster isn't even up enough for us to grab all the episodes.  But most of them are up at pod-o-matic and we have already repointed the feedburner/iTunes feed.  So from here on you can hear us at pod-o-matic. 

If you are looking to host your podcast, you don't have to use pod-o-matic, but don't use ClickCaster!

When I talked to Bruzzo, he was clearly focused on how to improve the culture of the stores, with technology being one tool. He talked about connectivity being "a core part of the Starbucks experience" (that's Experience with a [tm]), and that he wanted Starbucks customers to be able to "tell stories" about coffee, music, and other things. That implies a kind of online medium for discussion and interaction that doesn't yet exist, but that is more likely to happen with Bruzzo's expanded role.

Bruzzo had already tipped me to the fact that Starbucks has caching media servers in its stores; that's how the Starbucks iTunes Wi-Fi Music Store combination technology works with iTunes, the iPhone, and the iPod touch in the several markets in which that's offered. (Those plans never advanced much after the initial launch, by the way: Seattle, Chicago, and the San Francisco Bay Area got service, but Chicago and Los Angeles are still listed as "coming soon," and other metropolitan areas are now "by the end of 2008," which would tie in neatly with Starbucks' other plans.)

With caching servers, content is pushed to the edge. Retrieving a 2 GB movie from iTunes thus becomes a matter of a few minutes to a laptop (or even faster if 802.11n networks are being deployed by AT&T), rather than 30 to 120 minutes over a typical home broadband connection. Stop in to Starbucks and fill up--with media. Neat, huh?

Back in February, Bruzzo described how the company has a unique relationship with its customers, who are already bringing their digital lifestyle into the stores, allowing hyper-local conversations to take place. "Starbucks is uniquely positioned to provide that kind of very local opportunity. It's what we do. The beginning of that is what we do today when we curate music, and books." The new AT&T relationship, he said, "gives us a landscape to continue to experiemnt with those kinds of things even at a local level."

As for the kinds of devices used, "We shouldn't be limited in our thoughts about connected devices to just communications devices; they should be PSPs [PlayStation Portables] and cameras." I expect that we will see a lot of change, much of workshopped in Seattle-area stores, in the digital side of Starbucks this year.

I will also repeat my expectation that the launch of a 3G iPhone will involve a Starbucks tie-in, and that the date for the first Starbucks AT&T markets to go live with AT&T in charge will coincide with the release of the 3G iPhone. The timing is too close to be coincidental. (Rumors today are that the 3G iPhone will be announced at the June 9 developers conference that Apple runs. I'll be at that event's keynote.)

Bruzzo has been with the company for not much over a year, coming off a few years as head of communications (talking, not technology) at Amazon. In January 2008, he was boosted to chief technology and chief information officer, as well as being appointed a vice president. That's a pretty fast rise; he must have, you know, a few good ideas. He's behind My Starbucks Idea, the site the company is using to let its customers give it free, valuable advice. One of the fascinating, Cluetrained elements of that site is the transparency: ideas that are submitted can be viewed by other visitors to the site, and voted upon. Suggestion boxes are usually locked tight, whether in the real world or on the Net. Some posts have thousands of votes and hundreds of comments.

Today's announcement also included a note that Starbucks is selling its Hear Music division to its partner in the venture, Concord Music Group. Hear signed Paul McCartney among other musicians; Starbucks will keep working with Concord, so this might not be quite as big a change in direction as a change in its internal focus. This is yet another move of many by company head Howard Schultz, who took charge of the firm again, and started getting rid of top executives, reorganizing divisions, and making announcements about massive changes in the stores, notably replacing its barista-hiding super-automated coffeemakers with shorter, more controllable systems, and tearing out the stinking breakfast sandwich ovens.

I blogged on this topic a few weeks ago but given the huge interest in this topic I’ve decided to blog on it again. One of the major concerns in virtualized environments is the lack of visibility of the communication between virtual machines. With this lack of visibility a number of challenges start to appear such as security, monitoring and capacity planning.  It’s hard to secure what you can’t see or don’t know about and it’s hard to determine when you need to add more resources when you don’t have a clear picture into what applications are consuming them.

This problem is widely known and as a result there are a few companies that are starting to pop up that are building Virtual Network Visibility tools. But should you buy yet another tool to gain visibility into your Virtual Network communication when you may already have a tool for your physical network? Should you have to have separate tools for your physical network and virtual network?

One common method of gaining visibility into network communication is through a technology called Netflow. Netflow was originally developed by Cisco Systems but has since become a defacto standard for Network Monitoring and Network Behavioral Analysis. Companies such as Lancope, Mazu Networks, Plixer International and Arbor Networks all have products that enable network visibility, monitoring and analysis. These tools typicaly take Netflow feeds from a switch of some sort.  Knowing that some of these tools may have already been deployed in physical environments, IT staff will now need to consider  whether or not to buy new visibility tools to give them visibility into their virtual environment communication or try and leverage existing solutions already deployed in their physical environments.

Up until recently there has been no elegant way to export Netflow records from virtual environments such as VMWare and as a result companies have had consider purchasing new visibility tools that would often antiquate their existing physical solutions. This is due to their migration from physical environments to virtual environments.

Montego Networks now has Netflow capability in its HyperSwitch product which runs inside VMWare and enables security, visibility and control for the virtual environment by leveraging existing tools. Through its API’s and standards based methods Montego can enable customers to leverage existing infrastructure purchases to gain visibility and control within the virtual environment.

So, enough of the commercial and lets get on to the technical meat of this new Netflow enablement within the virtual environment.

Let’s say that you have a virtual machine that is infected with a BOT and it is communicating to a Command and Control Site of a BOT-Army. How would you know this? Well, you could have a NetFlow tap at a network switch close to your internet connection. But what if you have some sort of communication between VM’s on a non standard port that you are not aware of? Maybe a machine got infected and is sending data from the database virtual machine to a web server virtual machine and then feeding that info from the web server virtual machine to the internet. Your Netflow tap on the internet facing switch would see traffic coming from the web server virtual machine to the internet but wouldn’t see that data was being taken from the database, put on the web server and then fed out to the internet. Kinda tricky to hunt this problem down isn’t it?

So, whats needed is Netflow all the way into the virtual environment so that it can be fed to the same tools in your physical environment for easy correlation.

Take a look at the attached screen shot which shows Lancope and Montego Networks in action.

<---Click to Enlarge

With this level of visibility now you can see who is talking to who, when are they communicating and how much traffic is being consumed by which applications and which virtual machines.  This can now all be done by leveraging existing Netflow analytics tools.

This screen shot is showing flow data of Virtual Machines talking either to the Internet or to other virtual machines within the same environment.  You will notice from the flow data that one of the Virtual Machines has iTunes running on it.  An IT Administrator may have not sanctioned this or even know about it.  But with Flow records you can now see!  Like a new pair of glasses for your virtual environment.  With this visibility you can now go in to the Montego HyperSwitch and enable a firewall policy to block that iTunes traffic as an example.
 

Lancope is just one example here and its important to note that, because Netflow is a defacto standard for this type of visibility, other tools such as those from Mazu Networks, Plixer International and others can be used as well.  They all have their unique advantages and disadvantages but the point here is that dependent upon your prior network purchases in this area you will now be able to leverage existing tools vs. having to purchase new ones in many cases.

Check out Montego Networks at Networld Interop 2008 in the Lancope booth to see the solution in action!

John Peterson
CTO Montego Networks