Word Documents on a Network

So, have you ever noticed how weird Word behaves on a network? You open a document on your server/network, and Word creates a temp file. That's okay, Word does that. You close the document, but you see owner (~$...) files and working (~...wrl, ~...tmp, etc.) files scattered and left behind. Now, when you open documents, Word tells you that they're open by someone else - sometimes you! And even yet, sometimes, you save a document but the changes don't appear in the new .doc when you copy them off the server! No problem, you'll just delete them - except, I don't have permission to delete these files? What's going on?!

Take a deep breath (not too deep, because you'll pass out). It's a simple permissions issue. If you have permission to change the permissions on a folder on your network then you can solve this problem. If not, then you just need to talk to someone who does.

Word doesn't need Full Control to work properly on a network, although most users think that's the optimal solution. The only permissions Word needs to make these temp files go away and work right are:

• Read
• Write
• List Folder Contents (not required, but obviously handy)
  
• Modify!

It's that last one (Modify) that some admins don't get. If you can read and write, why do you need to modify? Well, Word apparently does. So, here's how you make this very simple (and safe) change:

1. Right-click the folder in question
2. Click Properties
3. Click the Security tab
4. Click on Users
5. Puts checks under Allow for
   Modify
   Read
   Write
   List Folder Contents
6. If you trust everyone on your network, enable
   Read & Execute
   

I'd recommend against granting Full Control unless you really trust people with the folder. The reason being is that they would then have access to grant and deny permissions on your folder. Better safe than sorry.

Now, you can safely delete Word's temp file in your network share, and you can open and use Word documents normally. Ahhhh.

Almost Linux

I've been itching to switch to Linux for a while now. Unfortunately, I'm really rusty and really lack the confidence that I need to take the plunge. And, I didn't want to go through the hassle of dual booting (although, the solution I'm using now is essentially that). Instead, I've installed Ubuntu 8.04 using the Wubi Installer for Windows.

All I had to do was download the ISO for Ubuntu (actually, the installer offered to do it for me, but with a using DownloadThemAll! through Firefox, I downloaded the whole ISO in about 30 minutes; just put it in the same directory as the Wubi Installer and it'll use that as a local source).

Wubi setup a folder (basically a pretend partition) to install Ubuntu into and copied a bunch of files out there. Then, after a reboot, I let just the install process do its thing and it installed as if it were really installing Ubuntu, except it was installing into the directory I had specified. Then, another reboot and I was done.

The first thing you notice is that you get a boot screen (as if you had a dual boot setup) giving you the option of booting to Windows (the default) or Ubuntu. Once you chose Ubuntu, it loads up and you're in.

So, in the end I was able to test drive the Hardy Heron (Ubuntu 8.04) without disturbing Windows or going through a complicated (and potentially dangerous) repartitioning scenarios.

[UPDATE! 5/14/2009]:
I've dual booted Jaunty (9.04) and have enjoyed playing around with it. I try to boot into it and use it as often as I can. My kids love it and often ask if they can "play with Ubuntu." My youngest was so happy to see my printer's test page come out, he ran over to the fridge, threw down the "art" that was there and put the test page up instead. Guess I'm doing something right...

First Impressions of the Hardy Heron

1. MP3s

I wanted to play an .mp3 (knowing that the codecs weren't installed). So, I found my .mp3 files in My Documents (which Ubuntu was happy to auto mount for me) and double-clicked on. It loaded the media player (don't remember which one comes by default). Next, I got a message telling me that it needed a proprietary codec to play .mp3s and asked if I wanted to install it. I told it to do so and within a minute or two, I was happily playing my tunes.


2. nVidia drivers

Next, I realized that my video drivers were the standard Linux drivers, not the cool nVidia drivers that support 3D acceleration. But I found this out by going into the Appearance control applet to change the eye candy. When I clicked on the middle option (whatever that was - there are three of them), Ubuntu happily told me that I needed nVidia's proprietary driver that supports 3D acceleration and asked if I wanted to get it. I again told it to do so, and after a few minutes and a reboot, I was good to go.

3. Internet Access

I opened up Firefox (8.0.4 includes Firefox 3 Beta 5) and was up and running with no problem. Ubuntu successfully found and setup my (wired) internet connection. I don't have wireless, so I can't comment on that - but you're welcome to if you've been down that road!

4. Wine and VMware

My next thought was to see if I could get my Windows-only programs to run in Linux. This is where Ubuntu let me down. Well, I guess Wine let me down, and VMware frustrated me. Wine was unable to run the apps I needed - not even Internet Explorer (I got it to come up, but with no menus). Also, other apps (some PopCap games, etc.) refused to open.

I wasn't up for the necessary digging and tweaking to get Wine to work, so I opted to look at VMware. I ran into an issue with the vmmon package, but with a little light digging I found a solution to getting that package and getting VMware working. Unfortunately, once I got VMware up and running and ready for an appliance, I ran out of time to actually make it work. But, in my experience with virtualization on Linux, it works just fine. If I get this working, it would (of course) solve my need to get Wine working, and let me run my Windows-only apps on (or rather, in) Linux.

So, if you're feeling adventurous (or even just curious), give Wubi a look and give Ubuntu a try. You might out that it's not as scary as you think it is!

Firefox Update Error

So, on one of my computers, I've had problems updating Firefox. When going to Help > Check for Updates, I'd get the error: "".

Well, after some research, I found that the app.update.url setting in the Firefox configuration was wrong, or at least pointing to something invalid. My original update url was:
https://aus2.mozilla.org/update/2/%PRODUCT%/%VERSION%/%BUILD_ID%/%BUILD_TARGET%/%LOCALE%/%CHANNEL%/%OS_VERSION%/update.xml

If you're having that problem too, then try this:

1. Open a new tab
2. In the address bar, type about:config and hit enter
   
3. In the Filter, type app.update.url
4. Double-click this property
5. In the dialog that pops up, enter the following path (which is almost identical):
   
   
   https://aus2.mozilla.org/update/1/%PRODUCT%/%VERSION%/%BUILD_ID%/%BUILD_TARGET%/%LOCALE%/%CHANNEL%/update.xml
   
   Note: when you copy and paste this, make sure you get all of it. Easiest way is to right-click the URL and click 'Copy Link Location'.
   
   
   
6. Click Ok
7. Try Help > Check for Updates

Voila! Now you should be able to receive automatic updates for Firefox.

Enjoy!

Multiple Users in Windows

So, if you're like me, you have a common computer at home. Probably have multiple users too. While two adults can theoretically share a computer effectively, I've never seen it happen without sacrifice, patience and frustration. Now at home, I have three users on our computer: myself, my spouse, and my four year-old. Sharing one profile would be a nightmare!

Well, Windows has in it all the tools you need to solve this problem, if you just know how to find them. Operating systems are designed to have multiple users (well, real operating systems; Microsoft thought only business users needed them until Windows 2000). To keep up-times high at home, you also need to employ profiles.

Here's how:

1. Consider your users
   
   Is it just you? You and a spouse/significant other? Do you have guests? Teenagers? Small children? What level of experience do you/they have?
   
   I see four levels of computer ability:
   
   
   • Expert
     
     They know stuff, aren't intimidated by OS changes, and are often familiar with several OSs (Windows, *nix, Mac); understands computers at a fundamental level and can troubleshoot problems at a system-wide level; they can be trusted with system level access and have no bad intentions.
     
     
   • Wannabe
     
     They think they know stuff, and may actually know some stuff; they are typically good with one operating system (usually Windows); they don't understand the lower-level stuff, but can make a good run at system-wide troubleshooting; typically not trusted with system level access, but usually harmless when they make mistakes.
     
     
   • Emailer
     
     They can surf the web, install basic programs, do all of the fun fancy things that computers can do; the computer is more of a toy than a tool, though some legitimate use may be seen (work, school, home organization software, etc.); troubleshooting often involves restarting the program or rebooting, maybe even a reinstall of a troublesome program; usually not given system level access, but they're usually glad not to have it.
     
     
   • Explorer
     
     These come in two varieties: malignant and benign. Malignant explorers are like script kiddies who have nothing better to do than to make your life more difficult. Benign explorers are like children (but not necessarily are) who enjoy using a computer, but simply don't know what they're doing, and may see no harm in making uneducated changes to the system (e.g. not understanding the consequences of their actions).
     
   
   Whatever the level, just make sure that you keep their needs in mind. We also find people who exhibit traits and behaviors of all of these levels (like myself). Now, don't get offended if you're an "emailer"; it does not poorly reflect on you as a person. Good grief, they're just generalizations! With time, almost anyone can become an expert. You just need a little "guidance".
   
   
2. Make everyone a profile
   
   First rule: never use the administrator account. It's there for a reason (for administration, not use), and if you mess it up, you'll be in a world of hurt (unless you know how to reinstall Windows).
   
   To make everyone a profile (in XP), go to:
   
   
   1. Start > All Programs > Control Panel
      (or Start > Settings > Control Panel if you have the old menus)
   2. Open the Users Accounts control panel (you'll see a list of current profiles)
      
   3. Click "Add User" to create a new profile
      
      Unfortunately, in XP you can either be an Administrator, or a User without doing some tweaking. User accounts are too limiting, and administrators are too open for Explorers (and some Emailers). But, we have to start somewhere, so just create an administrator profile.
      
      
   4. Give the user a name
   5. Choose a fun picture for use on the Welcome Screen (if you don't use the Welcome screen, then no loss with the picture)
   6. Giving a password is recommended, but optional. It all depends on your level of security and audience!
      
   7. Close the User Accounts control panel
   8. Logout of the computer (Start > Logout > Log Off)
   9. Log into the new account and customize the desktop, etc. as needed.
   10. Reinstall any programs you find missing. They're actually still installed, but reinstalling them will help make the shortcuts and registrations right for the current user.
       
   
   
3. Take it down a notch
   
   If you're working with a benign Explorer or Emailer, you'll probably want to turn down the user access level to protect the system. You'll make them a Power User instead of an Administrator. This is typically a good balanced profile between Administrators and Users. Just log into one of your administrator accounts (either Administrator or a normal administrative account) and do the following:
   
   • Right-click My Computer and chose Manage
   • In the Computer Management Console, expand Local Users and Groups on the left
   • Click on Users to see a list of profiles on the computer. Note that there are some weird ones already on there. Just ignore them for now - they're a discussion for another day.
   • Find the user profile you just created and open it up
   • Click the Member Of tab
   • Click the Add... button
   • Click the Advanced button
   • In the Select Groups dialog box, click the Find Now button (you'll see a list of options appear at the bottom)
   • Find and click on the Power Users entry and click OK, and OK again on the Select Groups dialog box
     
   • Back in the Properties dialog box, click on the Administrators entry in the Member Of list and click the Remove button
   • Click OK to close the dialog
   • Log out, and log back in as that user
   
   Your new user will now be more isolated and unable to make important system-level changes. Here's some info on what a Power User is in Windows.
   
   If you have a malicious Explorer, then a user account is just what they need. And, all other accounts need a password, especially your administrator accounts. If it's really that bad, consider a computer ban. It's okay to ban someone from using your computer if they can't be trusted with it.
   
   
4. Tune it with addons
   
   Now, there's a neat thing about having your own profiles: applications can be user-specific. For example, I have Firefox all "dumbed down" for my four year-old. However, I don't have those restrictions, because she has her own account. Also, I have a completely different theme than my spouse or child (or even administrator).
   
   Now, the obvious downside is the you might have to install some programs multiple times. Well, that's a price I'm willing to pay to have the added convenience and security using profiles offers. Just make sure that each profile is setup, security-wise: at least an antivirus and firewall.
   
   Suggestions if you have kids
   
   For kids, consider installing Glubble for Firefox, or at the very least a restrictive internet filter like ProCon (I use this one myself!) That can help keep your kids safe when you can't watch over their shoulder.
   
   Again, don't be afraid to tell your kids (no matter how old they are) 'no'! It's okay to set standards on your computer and disallow certain activities. Of course, if your kids are grounded from the computer, you can always add a password to their profile so they can't get in when you're not looking. Just use the User Accounts control panel when you're logged in with an administrative-level account and change their profile. Great way to use computer time as a reward for good behavior.
   
   We also use the multiple profile thing to our advantage with my four year-old. We have fun programs setup just for her: TuxPaint, Publix Preschool Pals, Some BigFish games, and even a link to her favorite website, http://www.poissonrouge.com. However, since my spouse and I are often logged in, she has to ask our permission to log us off to log into her profile. Give her an extra obstacle, and it makes her computer time more special and better moderated. No excessive use, because we just kick her off when we need it!
   
   
5. If it's broke, fix it!
   
   Now, if a particular user starts having problems, it's easy enough just to delete the user's profile and make a new one. Usually, if one user's profile is completely dead, the others are still intact. Sometimes a good spring cleaning will keep things working well.
   

So, that's about it. Multiple profiles can be a pain. User switching, multiple installs, etc. But, in the end, it can bring sanity back to computer use. At least you won't have anyone breaking your stuff when you're not there!

Lock your life

Lifelock: proactive security for your identity

I've recently discovered a service called Lifelock. The CEO's so confident that their service works that he publishes his social security number on the home page. Must be something to it!

Lifelock promises a proactive identity theft solution. They help to unsubscribe you from all of the credit card offers, etc. because they are a potential source of ID theft. They have an agreement with the major credit bureaus and monitor your credit history for unauthorized access. So, not if, but when someone tries to use your identity they'll get shut out, identified and you'll be safe.

Now if that doesn't sound like enough, they will also insure your identity up to $1,000,000.00 (US). That pays for attorney's fees, losses, etc.

All of that protection for just $10.00 for each enrolled adult. You can even protect your kids (under 16) for just an additional $25.00 a year.

It's worth checking out!

Go to Lifelock's homepage to see what they can do for you to keep your identity safe!

Update (6/4/2008):
Okay, I know that Todd Davis (Lifelock's spokesman) had his identity stolen - sort of - several times. But, he also had his SSN on billboards and plastered on the internet. So, you might conclude that it works pretty well, but it's not perfect. The nice thing is that the insurance will help pay to get your situation resolved.

However! What Lifelock offers is also something that you can do for free (thanks to this handy slashdot.org comment):

Step 1: Call Experian (1-888-397-3742) and have them put a fraud alert on your file. They'll pass it on to the other 2 credit bureaus (Equifax: 1-800-525-6285 & TransUnion: 1-800-680-7289).
Step 2: Repeat step 1 every 90 days.

Of course, it's good to go get your free annual credit report from the real non-commercial credit watch website. Don't confuse this with freecreditreport.com. That site is run by Experian and is just a way to sell you the same protection that Lifelock offers (except, only for Experian).

Finally, don't forget to look into how to stop postal spam. There's no need to get all the garbage in the mail with all of the "special" credit card offers with a bunch of your personal information already filled in.