How to Add Context Menu Items in Windows 2000

August 27th, 2003

A while back I was looking for a good basic free HTML editor for Windows, to install for a Berkmaniac. I wanted it to do syntax coloring and browser previewing, and to provide some facilities for automating coding. I came across HTML-Kit, which is really quite nice. It’s free as in beer, but seems clean and highly functional. It’s pleasant to look at, and can insert boilerplate table code and such. There are add-ons which you can buy once you’re hooked on the product, but the free version is definitely fine for the basics.

So the user I installed this for wants to be able to right-click on HTML files and have the context menu say “Edit with HTML-Kit”. Here’s how you do that in Windows 2000.

* Open Windows Explorer or “My Computer”.
* Go to Tools -> Folder Options -> File Types.
* Select HTML, or whatever other file type you have in mind.
* Click “Advanced”. You will now see a window called “Edit File Type”.
* There will be some Actions listed. You want to add a new one, so click “New…”.
* Now you can choose a name for the action, such as “Edit with HTML-Kit” or whatever else you want the context menu to say. And you choose which program you want to use. Browse through to the executable you want (presumably somewhere in your “Program Files” directory).

HTML-Kit is actually a bad choice of an example program, since it already knows how to add context menu stuff itself, in its preferences section. But this should work for other programs in the same way.

One problem about this here is that the normal user security settings for win2k don’t allow users to modify this sort of thing, which is a shame. A regular user can’t even modify her default application to view a file!! So the next step is probably to figure out how to loosen up the registry so that people here can set their own settings.

Posted in Support | 1 Comment »

Dumaru

August 25th, 2003

Here‘s professional information about the Dumaru virus, including a removal tool. Below are some questions:

Why does ‘Microsoft’ have my email address? Has ‘Microsoft’ ever sent out a patch by email? Would they do this by spamming? If they did spam to get people to patch, why would they send the patch as an attachment to an email, which EVERYONE knows is easy to forge? Maybe they would have some sophisticated technology which would allow them to point users to a website such as http://windowsupdate.microsoft.com? I’ve been hearing a lot of buzz lately about something called a ‘URL’; maybe that could be used for this purpose.

Why are they using exclamation points after the subject and every sentence? Why would they start the message “Dear Friend”? Isn’t that what spammers do? Wouldn’t Microsoft want a more corporate voice?

Why do they have the incompetent punctuation habit of putting a space between a word and the mark which follows it? Why would they write 500,000 with a dot instead of a comma? They’re an American company, right?

Why is the “patch” named “patch.exe”? Wouldn’t you expect that perhaps Microsoft has issued more than one patch for their many products over the years? Maybe they would want to give them names which might distinguish them from one another? And why haven’t they bothered saying which vulnerability the patch is for?

Why did this message enter Harvard’s mail system from someone’s infected home machine in Virginia? Isn’t Microsoft out west? And don’t they own their own computers?

Received: from localhost (h24-82-236-138.va.shawcable.net [24.82.236.138])
	by netopc.harvard.edu (8.11.6/8.11.6) with SMTP id h7NKBPU13613
	for ; Sat, 23 Aug 2003 16:11:25 -0400

Date: Sat, 23 Aug 2003 16:11:25 -0400
From: 'Microsoft' 
Subject: Use this patch immediately !

Dear friend , use this Internet Explorer patch now!
There are dangerous virus in the Internet now!
More than 500.000 already infected!

Content-Disposition: attachment; filename=patch.exe

Posted in Systems | 1 Comment »

Vim Cursor Movement

August 20th, 2003

I love the obscurity and gradualness of vim – I’m still finding really basic new tricks after three years of using it pretty exclusively. I suppose it’s the same with any text editor; this must be why people get religious about them.

I’m constantly searching off to somewhere in a program to check the order variables go in or something. But then, how do I easily get my cursor back exactly where it was before? I now know it’s by hitting “ (backtick backtick). Another useful thing I learned today was *. It’s the opposite of #, which I already knew. And then there’s slash, crtl-r, ctrl-w. Useful stuff. Here’s a forum full of vim geeks showing off their mystical incantations. It’s neat how excited people get:

“that is definitely a life changing tip.”
“Damn, this saves me about 1000 keystrokes a day.”
“This is really great. I feel I’ve entered into a new world of VIm “

Posted in Random | Comments Closed

ABCD-TIE group

August 20th, 2003

I just got word that the first meeting of the Harvard ABCD Technology in Education working group takes place September 8, 12:15-1:45 in Maxwell Dworkin G-125. It’s good to see the formation of such a group. H2O should definitely have a presence in this group and in the “Links” section on the ABCD-TIE group page.

Posted in H2O | Comments Closed

sobig.f on a rampage

August 19th, 2003

A few people (e.g. red) at the Berkman Center have started getting lots and lots of messages infected with the W32.Sobig.F virus.

This is irritating for a couple of reasons.

1) It’s a drag to get lots of superfluous and possibly dangerous mail.

2) People will think you are infected with it, even when you aren’t. Sobig.F includes its own SMTP engine, which means that it talks directly with mail servers. This allows it to forge the address it alleges to be “from”. It also knows how to search through various files on an infected machine’s hard drive, and harvest email addresses. It uses these addresses both as a list of people to try to infect, and as a list of people from whom to pretend to have originated. So if your email address happens to be in a file which a Sobig virus looks at, people will get infected messages which claim to be from you. Some helpful souls will think that means you have a virus, and contact you. Some ill-guided institutions have doodads installed on their mail servers which automatically bounce virus-infected mail back to the “sender”, which is obviously dumb and confusing when the alleged sender is not the same as the infected person. It would be better to make these programs only bounce messages which contain viruses which actually use the real originating email address. In my opinion this behavior hovers somewhere along the border of unethical.

3) Sobig.F searches through cached webpages in addition to address books. If your address, like bloggercon@cyber.law.harvard.edu or cyber@law.harvard.edu, is in a lot of reasonably popular webpages, it will be cached on many machines and you will get a Lot of mail from a Lot of different people, and probably have your address forged on a Lot of infected emails.

4) The Sobig.F messages are, well, so big! The attachment is like 100k. If you have a quota on your mailbox and are getting lots of these, they might flood you.

So how do we deal with this? There is, unfortunately, no way to get the deluge of mail to stop, since it’s close to impossible to figure out whom an infected message is actually originating from. But here are a few things you can do:

1) Make sure you have have up-to-date virus software, so at least you can avoid the indignity of getting infected. If you’re at Berkman and your machine is on the network you’re fine. Otherwise you should make sure your virus definitions are very recent. I don’t know about other vendors, but Symantec just released their sobig.f definition today.

2) Everyone knows not to open attachments with extensions like .exe and .bat. However, Sobig.F uses .pif and .scr as its filename extensions. Don’t open attachments with these names either. And for Pete’s sake, don’t open attachments from people you don’t know. This is not burdensome paranoia – it’s common sense.

3) Cultivate forbearance and cunning. If you’re only getting a few of these messages, you can grin and bear it. If they’re really bugging you, it might be worthwhile to invest some time in setting up filters in your email program to delete these messages automatically, or move them to some other folder. There are only a half-dozen or so subject-headings that Sobig.F uses, and there are some other characteristics all infected emails will share, such as the presence of an attachment and certain text in the body.

If you want to know more, find a removal tool, etc., you can consult this excellent information page from Symantec or this from Sophos. Lots more details there.

Posted in Systems | 7 Comments »

H2O at Columbia Law

August 18th, 2003

Columbia Law School is using H2O

Posted in H2O | Comments Closed

Adding a webgui site

August 18th, 2003

I’ve written the first version of a command line script to automate the creation of a webgui script. It’s at eon:/opt/sbin/add-webgui-site.sh. It handles setting up the directory structure, the configuration file, and the initial database structure. It also prints out the changes to make to the apache config files (I don’t want to do these automatically, since they require a web server reboot, which takes down most of our dynamic sites for a few seconds). This also just sets up a vanilla webgui installation, with the goofy webgui default style and getting started pages. I’ll update it soon to setup a couple of initial admin users, delete the getting started pages (perhaps replace them with a more helpful tutorial?), and tweak a couple of the other settings. It saves 15 minutes of fiddling as is, though.

Posted in Systems | Comments Closed

ASP Sleep

August 8th, 2003

I’ve spent several hours now trying to make what should be a trivial change in an asp script. Some of the wasted time is just my lack of knowledge — having to look up functions and syntax to do basic stuff. But the process is made much, much worse by my inability to get any kind of debugging info back from the server. If there’s any kind of syntax or run time error, I just get a 500 error back. I spent an hour trying to get the MS script debugger to debug the script as it is supposed to do, but even after following the convoluted instructions, it just won’t fire up to debug the asp script. So I’m reduced to inserting response.write/response.end statements at incrementing lines until I find where the problem is. Bleh.

Now I need to make the script sleep for a second, and it turns out there’s no way to do this out of the box with ASP. How the hell do you forget to (or worse decide not to) put a sleep function into a programming language? The helpful advice from the aspfaq.com suggests either downloading an add on component from a third party or connecting to an MS SQL server and asking the server to sleep for you (?!?!?!?!).

Posted in Code | 2 Comments »

Class::DBI

August 7th, 2003

While writing an email encouraging someone to consider using a database abstraction layer in his perl-based web application, I came across the Class::DBI module, which seems to provide a nice, simple but functional db abstraction layer for perl. I’ve looked for such a thing in the past and failed to find it, though Class::DBI seems to have been around for a while. I’m a big fan of such systems and always strongly encourage folks writing complexe database backed applications to consider using them — they’ve always saved a huge amount of time for the projects on which I’ve used them.

Posted in Code | Comments Closed

Word HTML

August 4th, 2003

An unfortunate Berkmanite edited a hand written html file in Word today. Predictably, Word horribly mangled the thing, destroying the server side includes (understandable) and mangling the formatting (unacceptable). The worst of the damage was Word’s conversion of an ordered list from: 

    

  1. list item
    2.

to: 


5.      list item

Thus was spent 30 minutes of my day fixing the html to its original sane form. Argh.

Posted in Code | 5 Comments »

« Older Entries
Newer Entries »