When you need the Internet and can’t find an open WIFI…

We just started working with a new device that will change how we work. When the iPhone came out, and with browsers, email, and Daylite Touch, we were able to be pretty wired with the office and keep current. Now with AccountEdge Mobile, we can do time tracking as we go, eliminating some redundant paperwork. The iPad is a wonderful boost to what the iPhone could do with its larger screen, ability to ‘type’ at near full keyboard speed, but it lacks some of the essential software we use to support remote access, manage client networks remotely, and so on. While the iP devices can connect by VPN, some essential tools like Apple Remote Desktop aren’t available. There are VNC clients (ok, the geekdome is getting thick, but some of you will follow, the others I beg your patience) but these just don’t cut it. We find the laptop to be indispensable in supporting our clients. The temptation to jailbreak the iPhone to enjoy the tethering that is available has been very strong. Rumors of AT&T detecting this and demanding you tether through them on their plan have helped discourage taking this step. The ATT tethering plan would require losing the current unlimited data plan to go on their tethering plan, having data limits and high costs for any overages, none of which is appealing. What we are doing now is as follows.

We recently lost our founder and president Terri Zeh Jacobson, and her iPhone laid unused and contracted for another year. AT&T let us drop that phone contract in place of a device they call MIFI, which is essentially a cellular device that is data only, and acts as a WIFI hub to 5 devices, and provides Internet connectivity via 3G (4G coming some day they say). The MIFI cost was about $260 after taxes, and uses Terri’s cell number, so don’t call, there’s no phone on it any longer. I’m writing this using the MIFI. I’m in a basement office far from any window where my iPhone barely works. The MIFI is near the window about 25′ away, and my laptop has 4 bars on the WIFI signal.

This is empowering. If I need to, I can use this MIFI to connect to a remote network over VPN and do the support work from anywhere a 3G signal is available. I don’t need to find a coffee shop or other open WIFI, I’m now able to have Internet access nearly anywhere I’m likely to be, and I can share it with others. This unit is about the size of the pager that was such hot tech in the 80′s, and reportedly the battery will run it for 4 hours on a charge. Plenty long enough to handle all but the toughest support calls. I’m looking forward to trying it from a picnic table by the lake, and “officing” from there. My new laptop battery is supposed to run for 8 hours on a charge, and 4 hours of Internet should be all I’d need most times.

What this can mean for you goes way beyond sitting by the lake. Imagine you are doing a trade show, and the convention center will give you Internet at $200 a day. You can see how this device can save you money quickly if you are doing shows. Taking credit cards? IP phone? Renting a cabin for a week or two? Hotel wants to charge extra for Internet? I’m sure you’ll think of ways this can work for you. Now, I haven’t see the bill yet, but the 5GByte a month is “a wash” with the unlimited iPhone Terri enjoyed, so it isn’t free. but it is freeing.

I’ve had another opportunity to enjoy using this MIFI. A client called with an emergency server issue while I was driving out of the metro area. I pulled over, thumbed the MIFI on, took out my laptop, connected by VPN and was able to correct their situation, in minutes!

Remote Access, PCIDSS, and Open Ports

I spoke with a potential client today that called Resources looking for help with remote access to his salon management software. After 9 days of trials and tribulations unplanned expenses and endless frustration, we finally connected. He was about ready to explode he was so angry. We talked and after some education and explanation he came to realize that the software company wasn’t trying to rip him off or scam him by referring him to me, but rather was referring him to someone who could explain what was the best course for him to follow.

A couple days ago his merchant service connection told him that his network would be tested for security periodically, and that he’d be informed of what he might need to do to maintain a secure network that will meet Payment Card Industry Data Security Standard (PCIDSS).

When I explained to him that opening ports to access his server from home wouldn’t meet these requirements, he realized that I was telling him what he had just heard from his merchant service rep. His software company was trying to help him with a remote access solution that isn’t safe and secure enough to meet the PCIDSS requirements, but it was cheap to implement. It was a solution for years gone-by, but come 2010, will no longer be allowed if you process credit cards over the Internet. Open ports are not secure enough.

I explained that what I recommend for secure remote access is a VPN router that supports his Apple Macintosh OS X built-in VPN client for best compatibility and ease of use. I further would help him install this router by guiding him over the phone, and help him work with his ISP to be sure that their equipment is prepared to support the VPN connection.

Once the VPN is installed, remote access to his salon’s network and server would be both secure and simple to use. The Mac has a convenient icon in the menu bar that will initiate the connection, show you it is in operation, and later let you disconnect the tunnel.

His salon management software can be run from a remote location using the salon’s live database. In fact, setting up a call center for multiple salons can be done in this way. VPN connections are versatile and secure.

VPN isn’t only for salons. Many business owners can find more effective use of their time when they can access their business data from a quieter location than the office. With fewer interruptions you can be more productive, and your projects safer from prying eyes.

Remote offsite automated backups can also make use of a VPN tunnel. A popular method of this is setting up a VPN tunnel to the owner’s home and having the office server back up to drives in the owner’s home. For more information on how VPNs can help you and your business, give us a call at 763-476-4227.

- Steve Jacobson
Resources Inc

Open Ports, What’s up with that?

One means of getting remote access to computers behind your firewall (that’s what keeps the hackers out) is to open ports and direct the traffic on that port to computers inside your protected Local Area Network.

This is rather like a vault that has some bricks missing in its wall so you can reach in and grab some money when you want to. The problem is, ANYONE can reach in and do the same!

Any remote access solution that opens ports is exposing your network to hackers, inviting them in to see what they can find and do. Every hour there are dozens to hundreds of attempts to gain access to your network and its treasures. Whether it is a Chinese soldier or a malware “bot”, your firewall is busy keeping the bad things out. If they happen to check that opened port, they’re in!

If you wish to gain access to your network from across the Internet, there are more secure means than the inviting Open Ports method. Virtual Private Network methods are no longer something only large corporations can use, but now anybody can afford this enterprise class convenient access while maintaining the integrity of their firewall and protection of their network and business.

Check back soon for more on VPNs and how they can make your world better.

When things slow down…

… don’t forget to remember to do all those things you put off while too busy.

You probably have lots of less important things you haven’t done lately that you can probably live without, but please don’t forget the more important things you know you need to do. Among them is taking care of what takes care of you. Computer maintenance should not be ignored.

It is normal to let things go too long, especially when all seems well. Slow periods in business give you the opportunity to inspect the tools your business relies upon for its day to day functions.

Just the other day a client had me come in to look at their computers. They were slowing down, and lately not booting up fully each time, requiring many attempts. Good thing we caught the problems before they got worse.

Turns out their trusty office computers were slowly dying, and not backed up. We verified the hard drive in one that was no longer running still worked and moved their data to another computer and a DVD for safer keeping. Another computer has leaking componants, and is acting badly. This one too is approaching the end of its usability.

This is not a good time to have to replace office computers, but retailers are offering good prices, and isn’t it better to plan the migration to a new computer before crisis hits and you have to recover from disaster at all cost? Also at this time of year, don’t forget to ask your CPA if the capital expense is better to take this year or next. December can be a great time to make infrastructure purchases.

This may be an extreme case, but if they hadn’t taken the precaution to have things checked out, they might have had more severe consequences. The lull in their business gave them time to plan the most beneficial steps to recovery and plan for prevention of future losses.

Don’t forget to take care of yourself and those around you.

Apple Recommends AntiVirus for Macs

We’ve learned today that Apple is now recommending that Mac users should be using anti-virus software. It isn’t that the Mac OS X is insecure. Macs are still virus-free, but the attackers are using other avenues to get at your data now.

Did you know that web pages can launch little applications that can attack your Mac? One example is a Trojan Horse that affects your DNS settings (that is the service that looks up the numeric address for domains like apple.com) to route your requests through their servers and show you things you aren’t looking for.

From the CNet article linked below, The malware we see today is Trojans, password-stealing Trojans, Marcus said. They are little apps that are dropped onto the machine to do something. They don’t infect files and copy themselves. They are looking for specific information and they send that information somewhere else.

You can read more at Apple, BBC, CNet.

We run Norton Antivirus 11 in our office Macs, as it does a good job of catching PC viruses so we hopefully don’t pass anything along to you. Symantec and others have quantity discounts available if you have multiple computers to protect. We can help

Who would have expected that the web pages we visit would become the next threat to our computers? One additional help is to use a router that can limit the web sites your staff can visit. Some routers even have subscription services to provide or deny access based upon content category etc. I’m sure Trojan threats will become a major focus of these subscription services.

-Stay tuned for further developments.
Steve Jacobson