You know that thing you trust to accept untrusted data...

Subject: Editorial, General Tech | May 22, 2013 - 01:53 AM | Scott Michaud
Tagged: antivirus, antimalware

They might be a good means of guarding you from momentary lapses of judgment, but security is not equivalent to antivirus packages. You always need to consider how much your system is exposed to untrusted and even unsolicited data. Any software which accepts untrusted data has some surface with potential vulnerability to attack.

This, inherently, includes software which accepts data to scan it for malware.

Last week was host to Patch Tuesday, and one of its many updates fixed a vulnerability in Microsoft's Malware Protection Engine (MPE). The affected code is only present in applications which run the 64-bit version of the engine. For home users, these applications are: Microsoft Security Essentials (x86-64), Microsoft Malicious Software Removal Tool (x86-64), and all varieties of Windows Defender (x86-64). For enterprise users, MPE is also a part of Forefront and Endpoint applications and suites.

Despite the irony, I will not beat up on Microsoft. As far as I know, these vulnerabilities are semi-frequently patched in basically any antimalware application. At the very least, Microsoft declares and remedies problems with reasonable and appropriate policies; they could have just as easily buried this fix and pushed it out silently or worse, wait until it becomes actively exploited in the wild and even beyond.

But, and I realize I am repeating myself at this point, the biggest takeaway from this news: you cannot let the mere presence of antivirus suites permit you to be complacent. No scanner will detect everything, and some might even be the way in.

HP Slate 7 Android Jelly Bean Tablet for $169

Subject: General Tech | May 21, 2013 - 10:12 PM | PCPer Staff
Tagged: deals

If you are on the look out for a low cost Android tablet in the 7-in form factor, we have a great deal for you this afternoon.  HP's latest Slate 7 offering, powered by a dual-core ARM Cortex A9 SoC running at 1.6 GHz, brings the price down even lower with our deal; you can pick it up for just $169 with FREE shipping.

HP Slate 7 Android Tablet for $169!

Xbox One announced, the games: not so much.

Subject: Editorial, General Tech, Graphics Cards, Processors, Systems | May 21, 2013 - 05:26 PM | Scott Michaud
Tagged: xbox one, xbox

Almost exactly three months have passed since Sony announced the Playstation 4 and just three weeks remain until E3. Ahead of the event, Microsoft unveiled their new Xbox console: The Xbox One. Being so close to E3, they are saving the majority of games until that time. For now, it is the box itself as well as its non-gaming functionality.

First and foremost, the raw specifications:

• AMD APU (5 billion transistors, 8 core, on-die eSRAM)
• 8GB RAM
• 500GB Storage, Bluray reader
• USB 3.0, 802.11n, HDMI out, HDMI in

The hardware is a definite win for AMD. The Xbox One is based upon an APU which is quite comparable to what the PS4 will offer. Unlike previous generations, there will not be too much differentiation based on available performance; I would not expect to see much of a fork in terms of splitscreen and other performance-sensitive features.

A new version of the Kinect sensor will also be present with all units which developers can depend upon. Technically speaking, the camera is higher resolution and more wide-angle; up to six skeletons can be tracked with joints able to rotate rather than just hinge. Microsoft is finally also permitting developers to use the Kinect along with a standard controller to, as they imagine, allow a user to raise their controller to block with a shield. That is the hope, but near the launch of the original Kinect, Microsoft filed a patent to allow sign language recognition: has not happened yet. Who knows whether the device will be successfully integrated into gaming applications.

Of course Microsoft is known most for system software, and the Xbox runs three lightweight operating environments. In Windows 8, you have the Modern interface which runs WinRT applications and you have the desktop app which is x86 compatible.

The Xbox One borrows more than a little from this model.

The home screen, which I am tempted to call the Start Screen, for the console has a very familiar tiled interface. They are not identical to Windows but they are definitely consistent. This interface allows for access to Internet Explorer and an assortment of apps. These apps can be pinned to the side of the screen, identical to Windows 8 modern app. I am expecting there to be "a lot of crossover" (to say the least) between this and the Windows Store; I would not be surprised if it is basically the same API. This works both when viewing entertainment content as well as within a game.

These three operating systems run at the same time. The main operating system is basically a Hyper-V environment which runs the two other operating systems simultaneously in sort-of virtual machines. These operating systems can be layered with low latency, since all you are doing is compositing them in a different order.

Lastly, they made reference to Xbox Live, go figure. Microsoft is seriously increasing their server capacity and expects developers to utilize Azure infrastructure to offload "latency-insensitive" computation for games. While Microsoft promises that you can play games offline, this obviously does not apply to features (or whole games) which rely upon the back-end infrastructure.

And yes, I know you will all beat up on me if I do not mention the SimCity debacle. Maxis claimed that much of the game requires an online connection due to the complicated server requirements; after a crack allowed offline functionality, it was clear that the game mostly operates fine on a local client. How much will the Xbox Live cloud service offload? Who knows, but that is at least their official word.

Now to tie up some loose ends. The Xbox One will not be backwards compatible with Xbox 360 games although that is no surprise. Also, Microsoft says they are allowing users to resell and lend games. That said, games will be installed and not require the disc, from what I have heard. Apart from the concerns about how much you can run on a single 500GB drive, once the game is installed rumor has it that if you load it elsewhere (the rumor is even more unclear about whether "elsewhere" counts accounts or machines) you will need to pay a fee to Microsoft. In other words? Basically not a used game.

Well, that has it. You can be sure we will add more as information comes forth. Comment away!

Outbound Phone Call Support Coming to Hangouts (Within Gmail Interface) Soon

Subject: General Tech | May 20, 2013 - 03:42 PM | Tim Verry
Tagged: google voice, google talk, google hangouts, google

One of the neat features of the chat application built into the Gmail web interface is the ability to receive and place phone calls to and from your Google Voice number. And unlike the Google Voice interface, calls placed using the Gmail Talk chat widget are completely free.

Unfortunately, the new Hangouts replacement (currently not mandatory) brought over from Google + does not support the calling features of Google Talk. As such, users wanting to call phones and not just video chat with other Google + users will need to stick with the old Google Talk chat or use Google Voice and pay for outbound calls.

The good news is that the phone call features will be rolled into the new Hangouts feature eventually. According to Google employee Nikhyl Singhal, “outbound/inbound calls will soon be available.” He also indicated that future versions of Hangouts will further integrate the feature set of Google Voice (which likely refers to SMS). Unless you particularly want video chatting, I would recommend sticking with Google Talk until the new version of Hangouts is more fleshed out.

Deal for May 20th - Dell UltraSharp U2413 1920 x 1200 24" IPS @ $499

Subject: General Tech | May 20, 2013 - 02:48 PM | PCPer Staff
Tagged:

Dell's UltraSharp U2413 1920 x 1200 24" IPS claims a 6ms response time which makes it suitable for gaming, as well as offering superior colour support.  As it is a new model it supports HDMI, DisplayPort 1.2, DVI-D and mini DisplayPort inputs as well as acting as a 4-port USB 3.0 hub.

Dell UltraSharp U2413 1920 x 1200 24" IPS Monitor (2013 model)
Dell Works is offering newest 24-inch UltraSharp U2413 Monitor (2013 model) for $499.99 with FREE shipping. Use $100 instant savings to get final price. Backed by 3-Year Advanced Exchange Service and Premium Panel Guarantee.

IE10 is the safest web browser in one way; checkmate!

Subject: Editorial, General Tech | May 16, 2013 - 03:45 PM | Scott Michaud
Tagged: web browser, Malware, IE10

If you consider your browser security based solely on whether it will allow you to manually download a malicious executable: IE10 is the best browser ever!

Rod Trent over at Windows IT Pro seems to believe this when NSS labs released their report, "Socially Engineered Malware Blocking". In this report, Internet Explorer blocked the user from downloading nearly all known malware (clarification: all known malware within the test). Google Chrome came in second place with a little less than 17% fail rate and the other browsers were quite far behind with approximately a 90% failure rate.

Based on that one metric alone, Rod Trent used a cutesy chess image to proclaim IE the... king... of the hill. Not only that, he suggests Safari, Opera, and Firefox consider "shuttering their doors." After about a decade of Internet Explorer suffering from countless different and unique vectors of exploitation, now is the time to proclaim a victor for attacks which require explicit user action?

Buckle in, readers, it's a rant.

Firstly, this reminds me a little bit of Microsoft Security Essentials. Personally, I use it, because it provides enough protection for me. Unlike its competitors, MSE has next to no false positives because almost ignores zero-day exploits. The AV package drew criticism from lab tests which test zero-day exploits. Microsoft Security Essentials was ranked second-worst by this metric.

Well, time to shutter your doors Micr... oh wait Rod Trent lauded it as award-winning. Huh...

But while we are on the topic of false positives, how do you weigh those in your grading of a browser? According to the report, and common sense, achieving pure success in this metric is dead simple if you permit your browser to simply block every download, good or bad.

If a 100% false positive acceptance rate is acceptable, it is trivial to protect users from all malicious download. With just a few lines of code, Firefox, Safari, and Opera could displace Internet Explorer and Chrome as the leaders of protection against socially engineered malware. However, describing every download as "malicious" would break the internet. Finding a balance between accuracy and safety is the challenge for browsers at the front of protection technology.

-NSS Labs, "Socially Engineered Malware Blocking"

A browser that is capable of blocking malware without blocking legitimate content would certainly be applause-worthy. I guess time will tell whether Internet Explorer 10 is able to walk the balance, or whether it will just be a nuisance like the first implementations of UAC.

OK, Google did actually release exactly one native Windows application at Google I/O: It's called Android Studio, an application that helps developers create apps that run on Android, Google’s answer to Windows. But don’t worry, Microsoft fans: Internet Explorer (IE) flags the Android Studio download as potential malware.

-Paul Thurrott, Windows IT Pro

Ah crap... that was quick.

Now to be fair, Internet Explorer 10 and later have been doing things right. I am glad to see Microsoft support standards and push for an open web after so many years. This feature helps protect users from their own complacency.

Still, be careful when you call checkmate: some places may forfeit your credibility.

Podcast #251 - iBuyPower Revolt, Seagate SSHD, NVIDIA Shield Pricing, and more!

Subject: General Tech | May 16, 2013 - 03:11 PM | Ken Addison
Tagged: podcast, video, ibuypower, revolt, Seagate, sshd, nvidia, project shield, shield, haswell, corsair, seasonic, amd, ASUS P5A

PC Perspective Podcast #251 - 05/16/2013

Join us this week as we discuss the iBuyPower Revolt, Seagate SSHD, NVIDIA Shield Pricing, and more!

You can subscribe to us through iTunes and you can still access it directly through the RSS page HERE.

The URL for the podcast is: http://pcper.com/podcast - Share with your friends!

• iTunes - Subscribe to the podcast directly through the iTunes Store
• RSS - Subscribe through your regular RSS reader
• MP3 - Direct download link to the MP3 file

Hosts: Ryan Shrout, Josh Walrath, Allyn Malventano, and Morry Teitelman

Program length: 1:12:25

1. Week in Review:
   1. 0:02:10 iBuyPower Revolt R770 Mini-ITX Gaming PC
   2. 0:10:30 Seagate Thin SSHD 500GB Review
2. 0:20:15 This week we thank you for IGG support!
3. News items of interest:
   1. 0:25:25 NVIDIA Earnings Reports - anything interesting?
   2. 0:28:00 NVIDIA announces Shield Pricing and Availability
   3. 0:35:00 Power supplies and Haswell
      1. Corsair
      2. Seasonic
   4. 0:38:20 AMD touts semi-custom APU business
   5. 0:42:30 Microsoft Blue is Windows 8.1 - subscription based?
   6. 0:47:00 Curved Lian-Li case - Love it or hate it?
   7. 0:48:30 NEC posts Haswell notebook information
   8. 0:51:00 AMD Levels Up bundle program again
   9. 0:56:00 Hardware Flashback: ASUS P5A
4. 1:01:00 Hardware/Software Picks of the Week:
   1. Ryan: Are you still there...?
   2. Josh: Cheap, seem durable, and accurate
   3. Allyn: Seagate 1TB Laptop SSHD
   4. Morry: Wolfenstein: The New Order (video link)
5. 1-888-38-PCPER or podcast@pcper.com
6. http://pcper.com/podcast
7. http://twitter.com/ryanshrout and http://twitter.com/pcper
8. Closing/outro

HP SlateBook x2: Tegra 4 on Android 4.2.2 in August

Subject: General Tech, Graphics Cards, Processors, Mobile | May 15, 2013 - 09:02 PM | Scott Michaud
Tagged: tegra 4, hp, tablets

Sentences containing the words "Hewlett-Packard" and "tablet" can end in a question mark, an exclamation mark, or a period on occasion. The gigantic multinational technology company tried to own a whole mobile operating system with their purchase of Palm and abandoned those plans just as abruptly with such a successful $99 liquidation of $500 tablets, go figure, that they to some extent did it twice. The operating system was open sourced and at some point LG swooped in and bought it, minus patents, for use in Smart TVs.

So how about that Android?

The floodgates are open on Tegra 4 with HP announcing their SlateBook x2 hybrid tablet just a single day after NVIDIA's SHIELD move out of the projects. The SlateBook x2 uses the Tegra 4 processor to power Android 4.2.2 Jellybean along with the full Google experience including the Google Play store. Along with Google Play, the SlateBook and its Tegra 4 processor are also allowed in TegraZone and NVIDIA's mobile gaming ecosystem.

As for the device itself, it is a 10.1" Android tablet which can dock into a keyboard for extended battery life, I/O ports, and well, a hardware keyboard. You are able to attach this tablet to a TV via HDMI along with the typical USB 2.0, combo audio jack, and a full-sized SD card slot; which half any given port is available through is anyone's guess, however. Wirelessly, you have WiFi a/b/g/n and some unspecified version of Bluetooth.

The raw specifications list follows:

• NVIDIA Tegra 4 SoC
  • ARM Cortex A15 quad core @ 1.8 GHz
  • 72 "Core" GeForce GPU @ ~672MHz, 96 GFLOPS
• 2GB DDR3L RAM ("Starts at", maybe more upon customization?)
• 64GB eMMC SSD
• 1920x1200 10.1" touch-enabled IPS display
• HDMI output
• 1080p rear camera, 720p front camera with integrated microphone
• 802.11a/b/g/n + Bluetooth (4.0??)
• Combo audio jack, USB 2.0, SD Card reader
• Android 4.2.2 w/ Full Google and TegraZone experiences.

If this excites you, then you only have to wait until some point in August; you will also, of course, need to wait until you save up about $479.99 plus tax and shipping.