How does Fortinet filter web sites ?

I don't know about you, but I have gotten a lot of really bad results from Fortinet's web filtering service; the most recent is in the picture below. The link mentioned goes to a web site that offers the Google Books Downloader app for Macintosh. Even looking at the upper level domain (from a machine outside the reach of Fortinet), there is nothing there that is even remotely racy, much less pornographic.

I wonder who they hire to look at these web sites and rate them? Maybe this site happened to fall into the hands of a Google-hater or Mac-hater for review? I don't know, but my own experience tells me that I were ever in the position to buy such a service, Fortinet would be at the bottom of the list.

One could argue that maybe the web site was hacked and showed porno for a short time and that's why it was rated the way it was. I would counter back that Fortinet has a responsibility not to slander employees of the organizations that use their service. They are a security firm and could, for porno and other "bad" tags, send the web site to a level 2 person before applying the tag. The analysis would go something like this:

1. Did the web site ever have a different rating? If so, it probably deserves a rating like "Hacked" which means that it temporarily goes somewhere "bad" but the person who went there did not intend to go somewhere "bad".

2. If they never saw the web site before, then can they infer anything by looking at the forensics (whois, archive.org, does anyone link to them, etc).

3. Then, if they do say it was "Hacked", come back regularly to see if the rating should change.

This lets the organization block "hacked" web sites, while not impugning the reputation of those who innocently go to those web sites.

Seems like something a responsible organization would do. I hope that Fortinet would consider such a course of action for themselves since I believe that they want to do the right thing (proactively try to apply responsible ratings) vs doing the make-a-quick-buck thing (report whatever they want and let the users tell them when they make a mistake, or hide behind "the organization is not supposed to take the ratings literally and should do their own investigation" - like that ever happens).

Update: after reporting the problem to Fortinet, they corrected it in less than an hour. That normally does not happen this quickly when I report errors to them, so maybe it was the fact that I publicly tweeted it to their Twitter address @Fortinet that got them to act quickly (hint for others out there who have rating problems). In either case, I appreciate their quick action, but wish that they acted, in my opinion, in a more responsible manner to start with.

Moved passwords to 1Password

Finally. I've wanted to do that forever. I moved 333 passwords from work and 530 passwords from home (both Firefox/PC) to 1Password/Mac. How to:

install secure delete on PC (heidi.ie) and Mac - you will be exporting your passwords to the disk (hard drive, USB, whatever), so you want to be able to securely erase the part of the disk that those files were on. i use Eraser (free) on Windows ( here ) and, of course, Secure Empty Trash is part of Leopard on the Mac.

export passwords out of Firefox - there is a free add-on for Firefox ( here ) that allows you to export your passwords to a file. after you install it, go to tools / options / import/export / export. i chose to export as a csv file instead of xml, but either one works.

merge the password files - i brought my work password file home and used the Import feature to merge the two password files ( tools / options / import/export / import ).

check your errors - you will get a number of errors. most of them are duplicates and some are other types of problems. make note of all of them, especially the "duplicates" since they may not be duplicates. huh? well, the web site and username will be the same, but the password may be different -- maybe you changed the password and only accessed it AFTER the change at one location. you will have to check the csv or xml file to see what the two passwords are, and if different, fix things. the easiest way to do that is to log in again, using what firefox thinks is the right password and if it does not work, then use the one from the imported file.

Move profile to Mac
Fix 1Password (false start) - Firefox setting
Import into 1Password
Backup
Copy keychain to USB
Copy into PC area
Bring up 1Password
put iPhone, iPad, Mac on same wireless
Bring up iPhone 1Password
turn on wireless sync
follow instructions for Mac
repeat for iPad

want:
all - option to leave userid out of title (and only in details) in GUI (i know why its needed in the dialog)
iPad - option to sort by domain
PC - auto fill without Ctrl-\

next steps:
go back to Firefox and clean out profile (dups due to formName, fields)
reimport

tests:
powweb

pictures:

Police Offer Home Security Tips

Click here (via @RobertSiciliano).

What your email address says about your computer skills

picture is here.

Wireless settings

Made the jump recently to add wireless to my home network (vs all-wired) due to the arrival of my iPad. Conventional wisdom (SSID) got in the way though.

All you need to set is a LONG & STRONG WPA2 (AES) password. I was telling the router not to broadcast the SSID, but that does little to stop hackers and makes the network almost unusable -- devices (iPad/iPhone) can't see the network, even if they remember the SSID/password. Once I set the SSID to broadcast, the devices automagically saw the network and joined. Just make sure you choose a unique SSID.

One potential problem I have to investigate. What is someone chooses the same name (SSID) and no password -- which one will the device choose?

Security's Top 4 Social Engineers Of All Time

Click here for the article.

On this, Quit Facebook Day, I haven't quit Facebook since there are reasons to have a presence there. However, to protect my privacy, I've removed every shred of profile information, including using a fake birthday (was already doing that). Basically, i treat it like Twitter - I'll read stuff, I'll contribute not-too-personal stuff, you can figure out who I am by my associations, but I won't provide any specific personal information (it's enough that Google is trying to get all of that stuff :-/ ).

Another interesting article here (bit.ly link) or here (direct link to Washington Post).

What am I up to?

Things on my to-do list:
- transfer passwords being kept by Firefox to 1Password (Mac) and KeePass (PC)
- consolidate data from a dozen 100-200GB (WD & LaCie) external drives into TB drives- set up WD NAS drive
- set up TimeMachine backups for MacBook (to LaCie d2 quadra)
- upgrade MacBook to SnowLeopard
- find a decent multi-account Twitter client for iPad (use Twitterific on iPhone and Seesmic Desktop on PC, nothing on Mac)
- find a decent newsreader for iPhone & iPad (use Google Reader on PC, nothing on Mac)
- finish transferring most of my work from PC to MacBook
- wait for Henge Docks docking station to become available for my 13" MacBook
- try to load OpenBSD on my old PowerPC chip iMac (currently running OS X Tiger)
- wait for the new iPhone coming in June