"New IANA" plan pleases most of the people, most of the time
After a summer of meetings around the world , the "stakeholders" are near agreement on how to form the new corporation that will oversee Internet numbers and domain names. The proposal that has risen to the top was put forward by Jon Postel, head of the current Internet Assigned Numbers Agency. The proposed organization is being called, for the time, the "New IANA." Here are its FAQ , articles of incorporation , and the third iteration of its bylaws . Some of the salients:
The New IANA must be up and running by September 30, when the US government's contracts with IANA and the InterNIC expire. This stage of the process aims only to form a New IANA that derives legitimacy and authority from the support of all parts of the Internet community worldwide. Most of the hard questions left unresolved by the US government's white paper  are still unresolved, and will be early on the agenda for the new organization.
Thanks to Adam Rifkin <adam at cs dot caltech dot edu> for this pointer.
The smoking gun that shot DR-DOS
The Red Herring broke this story  last week containing some of the most damaging information on Microsoft's practices that I have seen made public. The memos in question were in the hands of the FTC when they were probing Microsoft in the early 1990s, but have only recently come out from under seal in the Caldera lawsuit . The story was written by reporter Wendy Goldman Rohm from research for her book "The Microsoft File: The Secret Case Against Bill Gates" . The Wall Street Journal picked up the story  (subscription required) and tied more of the threads together, but without crediting Rohm. (The WSJ had received a review copy of "The Microsoft File.")
The memos are email conversations among Microsoft executives in 1991 and 1992 that discuss deliberately crippling a beta copy of Windows 3.1 so it would produce an obscure error message if run atop DR-DOS, a competing operating system now owned by Caldera. The code to check for the existence of DR-DOS was encrypted and obfuscated -- it was the only encrypted code in the beta -- but was cracked by programmer Andrew Schulman and published in Dr. Dobbs Journal in 1993 [9a]. Schulman discovered that the code searched for tiny differences between MS-DOS and DR-DOS, and when it found the latter it displayed an obscure but worrying error message: "Non-fatal error detected: Error #4D53. (Please contact Windows 3.1 Beta Support.)" The non-MS-detecting code was dropped into 5 places in the beta Win 3.1 code and, according to Schulman, had no possible legitimate purpose in ensuring the proper functioning of Windows. The code was still present in three places in the shipping Win 3.1 product, but had a single byte flipped to disable it.
The WSJ article  ties together the code and Microsoft's statements at the time with the executives' email memos, and with the drop-off-a-cliff revenues for DR-DOS following the rigged Windows 3.1 beta. Here's a quote from email sent by Microsoft Senior VP Brad Silverberg in 1992:
I hope to review "The Microsoft File"  in an upcoming TBTF.
Thanks to Dan Kohn <dan at teledesic dot com>, a regular TBTF Irregular, for pointing out this story.
Thought software patents were trouble? Next it's business models
Over the last 12 years US patent examiners, lacking the expertise and the resources to research prior art, have issued thousands of arguably bad patents for software inventions. Owing to the length of the application process, the mid-1990s saw the first lapping waves of what may become a floodtide of costly litigation over software patents. TBTF has been following this trend since 1995 , . In the last week the mainstream technology press has produced its own flood of articles on the topic of patents and their likely impact on e-commerce. What got the hive stirred up was a July appeals court ruling favorable to patents on business processes , , which lawyers are regarding as a landmark. News.com paints the following scenario  to bring home the impact of patents on Net business models:
UC Berkeley law professor Pamela Samuelson says, "If patents worked for manufacturers, surely they will work for the information economy" -- encouraging innovation instead of stifling it. I have serious doubts.
Whatever you do, don't push that big red button
On August 14 a Norwegian programmer discovered how to write a Java applet that, when run, can bring down a Windows NT system. This is not supposed to be possible, of course. Tonny Espeset <esp2 at online dot no> accomplishes the trick by calling some Java methods with out-of-bounds arguments (the exploit page does not give details), and on about half of the NT systems tested the applet immediately crashes the system right down to a white-button reboot. On some other NT systems, running the applet corrupts system fonts and cursors; the symptoms are cured by a reboot. I tried the applet  on two NT 4.0 systems and crashed one, corrupted fonts on the other.
Greg Roelofs <roelofs at pmc dot philips dot com>, TBTF Irregular, tipped this story -- thanks.
Churn and controversy yield to unity
Perhaps stimulated by the somewhat divisive events of the past two weeks , , the Linux community is rallying around the Linux Standard Base effort. The recently announced Linux Compatibility Standards Project  has been folded into LSB, which has relaunched with a new commitment, a new Web site , and new partners. Here's the press release . Thanks to Robert S. Thau <rst at ai dot mit dot edu> for sending me a copy instantly upon release on 8/25, allowing TBTF to break the news to an indifferent world.
This WaSP packs a sting
The Web Standards Project  is two weeks old and has already garnered significant ink, and pixels, in the world's press (summary here ). The project is the effort of a group of high-profile Web designers to shame Microsoft and Netscape into implementing completely the standards upon which the Web is based before venturing off into proprietary extensions . The developers of the Opera browser , which is just about the only currently viable competition to the Netscape-Microsoft hegemony, have supported WaSP from the first. The project's Web site is the epitome of cool: simple design, unified feel, plenty of variety, and speedy loading. Thanks to Julianne Chatelain for the pointer.
Rewriting the interface to steal your account
System is provably secure against an adaptive chosen ciphertext attack
Two researchers have devised a way to secure cryptosystems against "active" attacks . Victor Shoup of IBM Research and Ronald Cramer of the Swiss Federal Institute of Technology revealed their new security scheme  on 8/24 at Crypto '98 in Santa Barbara. Their new system would thwart attacks of the sort devised last spring by Bell Labs researcher Daniel Bleichenbacher (see TBTF for 1998-07-20 ). The leader of an IBM team of hackers for hire said, "This is not the sort of stuff you hold tight and patent. This is the sort of stuff you publish ... and hope everyone adopts it quickly."
How not to update a Web site
Patrick S. Malone was driving to work with the radio on and heard the DJ bragging about the radio station's Web site, extolling the virtues of their ISP. The DJ made a particular point of the advantage of using a local ISP:
TBTF home and archive at http://www.tbtf.com/ . To subscribe send the message "subscribe" to firstname.lastname@example.org. TBTF is Copyright 1994-1998 by Keith Dawson, <dawson dot tbtf at gmail dot com>. Com- mercial use prohibited. For non-commercial purposes please forward, post, and link as you see fit. _______________________________________________ Keith Dawson dawson dot tbtf at gmail dot com Layer of ash separates morning and evening milk.
include ("../inc/foot-ar") ?>