Author Archive for Richard McEachin

Google — Search, Plus Your World

Published on February 3, 2012 in Private Investigator, Search Engines and Search Strategies. 0 Comments Tags: , , , .

If you are  a Google+ user, then you now have a new search tool (the encrypted site is https://www.google.com/insidesearch/plus.html). When you are signed into your Google+ account your search engine results will be sorted for relevance in different fashion. Your search results will be sorted by what your Google+ friends say about the search term. This process assumes what your friends say is more important than other content.

This personalised search relevance is a boon for advertisers that want your attention. Google isn’t the first to do this. In 2010 Bing began ranking sites in search results based upon how many of your Facebook friends “like” the site.

The search engines and advertisers have decided that people want to search for other people and their opinions over other content. How convenient for the search engines and advertisers!

If you want a full explanation of the impact this will have for the Investigator, then read Phil Bradley’s article titled Why Google Search Plus is a disaster for search. Google is no longer my first choice, I start with Bing, then DuckDuckGo, and last but not least, I search Blekko.

FireFox V.10

Published on February 2, 2012 in Methods, Power User Tips, Search Leakage, The Investigator's Computer and Web Worker. 0 Comments Tags: , .

The biggest change in V.10 that most Firefox users will see is the smaller number of add-ons marked as incompatible. About 80 percent of all add-ons should now be compatible. Previously, most add-ons would break when Firefox released a major update.

V.10 seems to work much better than any V.9 iteration. No more crashing and the add-ons and extensions work properly. I guess I will be able to stay with Firefox for a while yet.

Extended Support Release

Mozilla also released the enterprise version of Firefox, called ESR (Extended Support Release), which will release updates on a slower cycle (once per year) so that businesses don’t have to worry about their internal tools and security protocols failing. This should help make Firefox more popular in the corporate world.

 

Getting Push-up Ready

Published on February 1, 2012 in Fitness and Lifestyle Management. 0 Comments Tags: , .

The Push-up is the most basic compound exercise and it has been practiced for centuries. It engages muscle groups in the arms, chest, abdomen, hips and legs. Unfourtuately, most people can do very few with proper form. No program that offers to make you do 100 push-ups in a few weeks will work for most people. The reason for this failure is the compound nature of the exercise. It just works too much of the body for most people.

The one hundred push-ups site and the 7 Weeks to 100 Push-ups book will only work for people who are already somewhat fit and strong. My solution to this problem is to strengthen some of the muscles that are worked in the push-up. For example, I began this series with the chain-breakers and butterflies, then proceeded to abs and squats. Now the next area to strengthen is the triceps. All of these are worked in doing the basic push-up.

The Dip

If you now do 200 crunches and 200 squats 3 times per week, it is time to start getting the triceps in shape by doing dips. You don’t need a fancy machine — all you need is a chair. Get a chair and go to the one fifty dips site. Copy the set of progressions, do the test, and start the programme. Simple.

 

Remote File Handling

Published on January 30, 2012 in Dirty Tricks, Due Diligence, Methods, Privacy and Security. 0 Comments Tags: , .

High Risk Files

When doing IIR, I often come across files that I don’t want to handle for security reasons. These can be Word documents, PDF documents, PostScript, or even Gzipped PostScript files. These file may include a load of malicious code. I sometimes don’t want any record of viewing the file on my computer. To accomplish this I must load these files remotely and safely so they don’t touch your system (the web cache should be disabled to accomplish a true remote viewing of the file as should the swap and home partitions, if the whole system isn’t encrypted).

Unless you verify each file through checksum verification (like MD5 or GPG) there’s a chance they could’ve been trojaned or the file may contain phoning home instructions or some other type of malicious feature within the file. If I don’t want to be recorded as a recipient of the file via something like ReadNotify then the file must be verified clear of such code or it must be viewed remotely.

The Remote File Viewer

I use the site at http://view.samurajdata.se/. I have only used it with PDF and Word documents. PDF and Word files are transformed into single paged graphics which you may navigate through. Most of the time it works, occasionally a PDF does not load. It doesn’t require Flash and works without cookies or javascript enabled.

I don’t know anything about the site’s privacy policy and how that might that might affect anonymity.

 

 

The Clean Machine

Published on January 27, 2012 in Methods, Power User Tips, Private Investigator, Security and The Investigator's Computer. 0 Comments Tags: , .

When doing IIR, the computers must be free of malicious code (S. 31 Canada Evidence Act). We often set aside a computer for this purpose after doing some Spring-Cleaning. But how we prepare the machine for the installation of the clean version of the OS and application software is important.

We use Darik’s Boot and Nuke (“DBAN“) which is a self-contained boot disk that securely wipes the hard disks of most computers. DBAN will automatically and completely delete the contents of any hard disk that it can detect, which also makes it an appropriate utility for bulk or emergency data destruction. DBAN is a means of ensuring due diligence in computer prepartation for IIR. It is also a good way to periodically clean a Microsoft Windows installation of viruses and spyware.

 

Real Time Bot Search Engine

Published on January 25, 2012 in Search Engines and Search Strategies. 0 Comments Tags: , , .

RTBot (Real Time Bot) is a Real-time information service, where you can enter a topic title and get results from multiple sources (e.g. Wikipedia, Youtube, Twitter, Facebook, Flickr, Books, Newspapers, Magazines) all at once. This may sound like a normal search engine, but it isn’t.

RTBot provides content only for specific topics such as concepts, subjects, personalities, events, places, companies, products, etc., but not for broader, unspecific searches.

If you use this properly, you often get a lot of video in the results that would require separate searches to find. This can be quite useful when searching by a company or person name.

 

Securing Firefox – Configuration Settings

Published on January 23, 2012 in How to Become a Professional Private Investigator, Methods, Power User Tips, Privacy, Private Investigator, Search Leakage, Security, The Investigator's Computer, Training & Education and Web Worker. 0 Comments Tags: , .

This is about stopping the dreaded disease, Data Diarrhea. The websites you visit can leave behind a trail of data on your computer and in their server logs. All of this Data Diarrhea can identify the Investigator and this can complicate the problem he is trying to solve. Lax privacy & configuration settings may also leave the Investigator’s computer vulnerable to attack by hackers.

This article describes more advanced methods of customizing Mozilla applications, by editing the configuration files.

about:config entries

about:config is a feature of Mozilla applications which lists application settings (known as preferences) that are read from the profile files prefs.js and user.js, and from application defaults. Many of these preferences are not present in the Options or Preferences dialog. Using about:config is one of several methods of modifying preferences and adding other “hidden” ones.

Editing the user.js and prefs.js files are an alternative method of modifying preferences and recommended for very advanced users only. Unless you need a prefs.js and/or user.js file modified for a specific purpose, you should use about:config instead.

This article refers to the Firefox V. 9 edition of the browser. These entries may have adverse effects on Thunderbird and Mozilla Suite/SeaMonkey and older versions of Firefox. These settings will affect all profiles of the browser.

In Firefox, type about:config in the Location Bar (address bar) and press Enter to display the list of preferences. You may get a warning page next, just click OK and move on.

about:config > browser.display.use_document_fonts > change value to 0

0: Never use document’s fonts
1: Allow documents to specify fonts to use
2: Always use document’s fonts (deprecated)

Don’t let the site access to the fonts on your computer. That grants too much access that can be abused.

about:config > browser.sessionhistory.max_entries > change value to 2

The maximum number of pages in the browser’s session history, i.e. the maximum number of URLs you can traverse purely through the Back/Forward buttons. Default value is 50.  Set it to 2 so that the site you visit can’t see where you have been during your Investigative Internet Research (IIR) assignment.

about:config > dom.storage.enabled > double click to false

dom.storage.enabled is a mechanism allowing web pages to store information with a web browser (similar to cookies) called “client-side session and persistent storage.” Although use of session storage is subject to a user’s cookie preferences, this preference allows it to be disabled entirely.

about:config > geo.enabled > double click to false

True is location aware browsing enabled. Default is true. You want to disable this. See http://www.mozilla.com/en-US/firefox/geolocation/ for details of geolocation in Firefox.

 

Securing Firefox – General Privacy Settings

Published on January 20, 2012 in How to Become a Professional Private Investigator, Methods, Private Investigator, Search Leakage, Security, The Investigator's Computer, Training & Education and Web Worker. 2 Comments Tags: , .

General Firefox Privacy Settings

The basic privacy settings in general settings, are found in the options bar in Firefox 9.0 (Firefox > Options > Options) or for iOS, Preferences.

  1. Content: Enable block popup windows and disable Javascript when it isn’t needed.
  2. Privacy: Enable the DNT (Do-Not-Track). For History, use custom settings. “Always use private browsing mode” should be enabled. “Remember my browsing history”, “Remember download history” and “Remember search and form history” should be turned off. “Accept cookies from sites”, but un-check “Accept third party cookies” as they aren’t needed often. Location bar: select “Suggest nothing”.
  3. Security: Enable “Warn me when sites try to install add-ons”, “Block reported attack sites” and “Block reported web forgeries”. Under Passwords, disable “Remember passwords for sites” and use a master password.
  4. Advanced – General – System Defaults: Disable “Submit crash reports and performance data”.
  5. Advanced – Network – Offline Storage: Check “Override automatic cache management and limit cache to 0MB space”. Further—you can un-check “Tell me when a website asks to store data for offline storage use”.
  6. Advanced – Encryption: Ensure both “Use SSL 3.0 and Use TLS 1.0″ are enabled. Then click validation > check “When an OCSP server connection fails, treat the certificate as invalid”.

 

 

Getting to the Core of the Matter

Published on January 18, 2012 in Fitness and Lifestyle Management. 0 Comments Tags: , .

Sit-ups

Every devout orthodox digital troglodyte (AKA Expert Searcher) must stay fit, and that doesn’t require a gym. In this installment, I will deal with the main core exercise you need to do to stay strong and fit — the sit-up, or more properly the crunch. I have written about abdominal exercies before, but this article is for the less fit individual. See No Gym Required – Abs Exercises II,  No Gym Required – Abs Exercises III, and No Gym Required – Abs Exercises IV for more advanced exercises.

The crunch is the first ab exercise to undertake is the the crunch as it does not strain the lower back when done properly. Proper form is to do it with the lumbar spine in a neutral position. That is, the lower spine is not squashed flat against the floor when doing the crunch.

A properly scaled set of progressions may be found at twohundredsitups. This programme is properly scaled for the average person.

 

The Cost of Investigative Internet Research

Published on January 16, 2012 in Courts, How to Become a Professional Private Investigator, Methods, Power User Tips, Private Investigator, Report Writing, The Investigator's Computer and Training & Education. 1 Comment Tags: , .

Why does it cost so much just to look on the Internet?”

I get this question a lot, and too often from “professionals” who should know better. I will list a few of the reasons here.

To begin with, I never know how the research results will be used in the future. That means that the results must be properly documented so that it would be reproducible if someone else with similar skill did the searches at the same time as I did.

If at some future date what I find becomes important evidence, then how it was found, where it was found, when it was found, and what it actually looked like becomes very important. My report and the supporting material may be the only proof of the existence of the material being entered into evidence.

The computers must be free of malicious code (S. 31 Canada Evidence Act). We often set aside a computer for this purpose after doing some Spring-Cleaning.

The logic of the research process must be clear and easy to explain to anyone. This logic must be explained in the report. Search statements must be recorded. The project directory and file naming and structures must be logical and properly documented. The evidence must have a clear and documented chain of custody.

Providing this evidence requires skill, training, experience, software, computers, office space, support staff, and time.  Finally, did you know it takes at least twice as long to do the report as it does to do the research?

 

Security & Privacy Add-ons for Firefox

Published on January 13, 2012 in Methods, Power User Tips, Privacy, Private Investigator, Search Leakage, Search Strategies and Security. 2 Comments Tags: , .

Firefox is the online researcher’s best friend. No other browser gives so much control to the user as Firefox. It is more customizable than either Google Chrome or Internet Explorer.

Like any browser, you must be aware of what data you are releasing when you visit a Web site. The following add-ons help eliminate two serious security threats that occur when doing Investigative Internet Research (IIR).

BetterPrivacy—This add-on is pretty basic, but a must have. BetterPrivacy deletes flash cookies (LSOs/SuperCookies).

KeyScrambler—Check out Alex Long’s post from Null Byte for information about what KeyScrambler is and how it works.

I have already written about:

  • NoScript— NoScript allows JavaScript, Java and other executable content to run only from trusted domains of your choice, e.g. your home-banking web site, and guards the “trust boundaries” against cross-site scripting attacks (XSS). Such a preemptive approach prevents exploitation of security vulnerabilities (known and even unknown!). This is a must-have for IIR.
  • HTTPS Everywhere—This is a must-have add-on provided by the Electronic Frontier Foundation. HTTPS Everywhere enables a secure connection on pages that have SSLCertificates.  For example, when you use Google search most people use the unencrypted version. This add-on will force Google to deploy its SSL certificate. The DuckDuckGo (DDG) search engine also uses a version of this.

 

 

Ontario Name Changes Easier in 2012

Published on January 11, 2012 in Canada and Legislation. 0 Comments Tags: , .

It is now easier for the divorced, widowed, and those who have annulled to revert to their former surnames. The process is simpler and only costs $25.  Previously, the application was required within only 90 days or it was a more expensive and lengthy process. The new law eliminates the 90 day time limit.

This will impact skip tracers as this change becomes more widely known. While it is now harder for debtors to use an Ontario name change to elude creditors, it still happens.

 

E-mail Reminders

Published on January 9, 2012 in Web Worker. 0 Comments Tags: , .

You get an email or send one, then you forget all about it and find you have missed an opportunity or a deadline.  A common enough problem.

Try using FollowUpThen to solve this problem.  To remind the recipient, put a time interval in the CC field. For example, 2days@followupthen.com. To remind yourself, put the time interval in the BCC field.  The time interval can be minutes, hours, days, weeks, or years.

 

Compound Exercises

Published on January 6, 2012 in Fitness and Lifestyle Management. 0 Comments Tags: , , .

Let me help you with your new year’s resolution. In a previous article I dealt with the exercises that help prevent the damage computers inflict upon the upper back.  In this installment, I will deal with the main compound exercises you need to do to stay strong and fit.

Compound exercises are multi-joint movements that work several muscles or muscle groups at one time.  This type of exercise is the foundation of physical fitness — don’t try to become a body builder using isolation exercises if what you really need is functional strength and general fitness.

Isolation exercises work only one muscle or muscle group and only one joint at a time. Examples of isolation exercises include the biceps curl or the quadriceps extension.   To get the most out of isolation exercises you must have a preexisting  strength to protect the joint and to prevent injury to the related connective tissue.

Don’t fall into the trap that I see so often. A small man trying to become a big man. This guy gives-up on the compound exercises because they make him feel like he was hit by a freight train. He wants to be a big man like the body builders. He quickly discovers that the machines in the gym do all the body builder’s exercises and they are easier. He then starts to suffer injuries in and around the shoulders, knees, low back, and hips.

Compound exercises are tough work. To avoid the worst of the ‘I was hit by a freight train’ feeling you need realistic expectations and a proper set of progressions designed to get you to a realistic level of fitness and strength.

An exercise progression is one in which the workload is increased in predetermined steps. Ideally, the increments are sufficient to stimulate improvements but not great enough to cause damage.

Progressions are based upon the principle which states that fitness improves only when workloads are greater than those normally encountered. The workload can be quantified in terms of training intensity (rate of doing work which is usually the time allowed or number of repetitions) or training volume (the total amount of work done or most often the weight or resistance level). The principle applies to all aspects of fitness including strength, speed, and endurance of muscle contractions. It also applies to improvements in flexibility and the strength of bones, joints, and ligaments. This is normally called the overload principle.

Please notice the word ‘overload’. The progressions will leave somewhat sore. However, once you are able to do the the number of repetions that is your goal, then the soreness will go away. The number of repetions that is your goal becomes the ‘normal’ workload.

Squats, abdominal crunches, and push-ups are the most basic compound exercises. They are also the exercises that create the foundation of strength and endurance.

I’ll deal with the basic squat first.

The Squat

A great example of a compound exercise is the squat exercise. This engages many muscles in the lower body and core, including the quadriceps, the hamstrings, the calves, the glutes, the lower back and the core.

Leg strength is often ignored by men.  After all, who comments of how good a man’s legs look.  This is a mistake because the legs and hip muscles account for over half the body’s weight.  Building leg strength can lead to a decrease of overall body fat as the increased lean muscle mass will speed-up the metabolism.

The key to doing a sufficient number of squats is in the progressions.  To be considered fit, you should be able to do 200 body-weight squats in one non-stop set.

The progressions found at Two Hundred Squats are well designed to accommodate a wide range of initial  fitness levels.  This site has several related sites, but I have reservations about the progressions offered for some of the other exercises.

I’ll try to do one article per week for the next few weeks. These articles will cover the basic body-weight compound exercises and suggestions regarding suitable progressions designed to achieve an adequate level of fitness.

 

 

New Year Resolutions

Published on January 4, 2012 in Fitness and Lifestyle Management and Private Investigator. 0 Comments Tags: , , , , .

I know you secretly rebel against exercise in all its forms, but it is something we all must do.  Being an Investigator is the world’s most dangerous sit-down job, and computers have made it much more dangerous.  No matter what type of investigations we do, we spend too much time sitting.

I know you have made a resolution to start exercising. You don’t need to go to a gym to become stronger and more fit.

Stand-up Desks

In 2008 I wrote a series of articles on building a stand-up desk and I know first-hand the benefits and draw-backs of this.  Alex Hutchinson wrote about this in the Globe and Mail recently. His article illustrates that a stand-up desk is not a panacea for a sedentary computer-based job.

I have a typing desk for the lap-top computer and a writing desk in my office to prevent overuse type of pain that develops from staying in one position , so I guess I’m on the right path.

Butterflies & Chain Breakers

As a very devoted orthodox digital troglodyte (AKA Expert Searcher) I slave over a hot computer all day. This can quickly turn one into a weak, fat, and unfit troglodyte. This is a bad thing — a very bad thing — if a marauding felonious geek wants to invade and take-over my state-of-the-art cave.

These exercises help prevent me from becoming the weakest digital troglodyte on the block and they deal with the specific problems associated with using a computer all day.

This video is from the guys who wrote a book called Felon Fitness.

Be careful with these if you are really out of shape or you will be very sore and have headaches. It’s best to do only 3 or 4 repetitions of each, three times a day for a week to understand how your upper back and shoulders will react to the unaccustomed exercise.