Websites that have been up and running for a while tend to get tinkered with by well-intentioned marketing and technical staffs. Although businesses should encourage innovation, many common website practices can, if implemented in the wrong way, invite legal problems. Here’s a rundown on five common website mistakes. 1. “Guiding” user comments on social networking pages Websites generally have immunity under Section 230 of the Communications Decency Act for liability for defamatory statements posted by users on social networking pages of a site. However, recent cases have begun to chip away at that immunity in cases where the website has gotten too involved in “shaping” the user-generated content. Too much shaping and a website risks becoming the publisher itself, thereby losing the Section 230 immunity. 2. Testimonials in blogs Many bloggers are unaware that the Federal Trade Commission (FTC) has guidelines regarding endorsements and testimonials in blogs. In general, the guidelines require that bloggers disclose any material connections between themselves and the products that they are reviewing or discussing. Similarly, if a blog offers a testimonial, it should state whether its results are “representative” of what consumers will experience from using the product. This area is particularly perilous because the FTC has brought very few enforcement actions and, therefore, it is unclear where the agency may seek to draw lines. 3. Not updating the privacy policy When was the last time your website’s privacy policy was updated? How many changes has the site implemented since then? A website’s privacy policy should never be set in stone; it should evolve as practices change. Did the site review its privacy policy when it introduced that exciting new data-sharing tool? Did it make changes when implementing a new “just-in-time” notice? Not all changes on the site require revising the privacy policy. But if evolving website practices turn out to conflict with what the privacy policy states, the site could face charges that it is misleading or deceptive. 4. Offering a mobile application without thinking through the data flows Everyone wants to offer a mobile application these days, often linking to a website. However, questions are beginning to arise about the information that apps collect and the devices on which they appear, who handles it and what happens to that data. Knotty legal problems can emerge where these issues have not been vetted. 5. Copyright infringements Copyright infringement is as old as the Internet. Federal law governing online copyright violations – the Digital Millennium Copyright Act – has been in place for a decade and the rules are fairly well understood. Nonetheless, pirated material still often appears on websites, posted by users. Websites must maintain their procedures in order to earn the protections of the DMCA “safe harbour”. A website that loses its DMCA safe harbour protection due to inattentiveness may face substantial losses.
Virtual private networks, or VPNs, extend the reach of LANs without requiring owned or leased private lines. Companies can use VPNs to provide remote and mobile users with network access, connect geographically separated branches into a unified network and enable the remote use of applications that rely on internal servers. VPNs can use one or both of two mechanisms. One is to use private circuits leased from a trusted communications provider: alone, this is called a trusted VPN. The other is to send encrypted traffic over the public Internet: alone, this is called a secure VPN. Using a secure VPN over a trusted VPN is called a hybrid VPN. Combining two kinds of secure VPN into one gateway, for instance IPsec and Secure Sockets Layer (SSL), is also called a hybrid VPN. Trusted VPNs Over the years, implementations of trusted VPNs have moved from raw private circuits leased from telecommunications vendors to private IP network circuits leased from Internet providers. The major technologies used for implementing trusted VPNs over IP networks are ATM circuits, frame-relay circuits and Multiprotocol Label Switching (MPLS). ATM and frame relay operate at the data link layer, which is Layer 2 of the OSI model. (Layer 1 is the physical layer; Layer 3 is the network layer.) MPLS emulates some properties of a circuit-switched network over a packet-switched network, and operates at a layer often referred to as “2.5″ that is intermediate between the data link and the network. MPLS is beginning to replace ATM and frame relay to implement trusted VPNs for large corporations and service providers. Secure VPNs Secure VPNs can use IPsec with encryption, IPsec inside of Layer 2 Tunnelling Protocol (L2TP), SSL 3.0 or Transport Layer Security (TLS) with encryption, Layer Two Forwarding (L2F) or Point-to-Point Tunnelling Protocol (PPTP). Let’s go over each of these briefly. IPsec, or IP security, is a standard for encrypting and/or authenticating IP packets at the network layer. IPsec has a set of cryptographic protocols for two purposes: securing network packets and exchanging encryption keys. Some security experts, for instance, Bruce Schneier of Counterpane Internet Security, have considered IPsec the preferred protocol for VPNs since the late 1990s. IPsec is supported in Windows XP, 2000, 2003 and Vista; in Linux 2.6 and later; in Mac OS X, NetBSD, FreeBSD and OpenBSD; in Solaris, AIX and HP-UX; and in VxWorks. Many vendors supply IPsec VPN servers and clients. Microsoft has included PPTP clients in all versions of Windows since Windows 95 OSR2; PPTP clients are in Linux, Mac OS X, Palm PDA devices and Window Mobile 2003 devices. The company has also included PPTP servers in all its server products since Windows NT 4.0. PPTP has been very popular, especially on Windows systems, because it is widely available, free and easy to set up. However, as implemented by Microsoft, it has not always been the most secure of the secure VPNs. Schneier, with “Mudge” of L0pht Heavy Industries, found and published security flaws in Microsoft PPTP in 1998; Microsoft quickly fixed these issues with MS-CHAPv2 and MPPE, and Schneier and Mudge published an analysis confirming the improvements in 1999, but they pointed out that the security of Microsoft PPTP still depended on the security of each user’s password. Microsoft has addressed this issue by enforcing password strength policies in its operating systems, but Schneier and Mudge still recommend IPsec rather than PPTP for secure VPNs as inherently safer. An older protocol developed by Cisco, L2TP combines ideas from L2F and PPTP to create a data link layer protocol. This provides a tunnel, but no security or authentication. L2TP can carry PPP sessions within its tunnel. Cisco implements L2TP in its routers. There are several open-source implementations of L2TP for Linux. L2TP/IPsec combines L2TP’s tunnel with IPsec’s secure channel, which allows for easier secure Internet Key Exchange than pure IPsec. Microsoft has provided a free L2TP/IPsec VPN client for Windows 98, ME and NT since 2002, and ships an L2TP/IPsec VPN client with Windows XP, 2000, 2003 and Vista. Windows Server 2003 and Windows 2000 Server include L2TP/IPsec servers. SSL and TLS are protocols for securing data flows at Layer 4 of the OSI model. SSL 3.0 and TLS 1.0, its successor, are commonly used with HTTP to enable secure Web browsing, called HTTPS. However, SSL/TLS can also be used to create a VPN tunnel. For example, OpenVPN is an open-source VPN package for Linux, xBSD, Mac OS X, Pocket PCs and Windows 2000, XP, 2003 and Vista, which uses SSL to provide encryption of both the data and control channels. Several vendors supply SSL VPN servers and clients. Benefits and security risks of VPNs A VPN can erase geographical barriers for a company, enable employees to work efficiently from home and allow a business to connect securely with its vendors and partners. A VPN is usually much cheaper to own and operate than private lines. On the other hand, the use of a VPN can expose a company to potential security risks. While most VPNs in use are now fairly secure in and of themselves, a VPN can make it more difficult to secure the perimeter of a network properly. It is incumbent upon network administrators to apply the same security standards to computers connecting to the network via VPN as computers directly connected to the LAN. Combining the use of two VPNs simultaneously can potentially expose one company’s network to another’s. In addition, using remote control software such as PC Anywhere, GoToMyPC or VNC in combination with a VPN can expose the company’s network to the malware present on a remote computer that is not itself connection to the VPN. Reliability, scalability and performance of VPNs Because secure VPNs rely on encryption and some of the cryptographic functions used are computationally expensive, a heavily used VPN can load down its server. Administrators typically manage the server load by limiting the number of simultaneous connections to what the server can handle. When the number of people attempting to connect to the VPN suddenly peaks, for example, during a storm that disrupts transportation, employees may find themselves unable to connect because all VPN ports are busy. That gives administrators motivation to make key applications work without requiring the VPN, for instance, by setting up proxy servers or Internet Message Access Protocol servers to enable employees to access e-mail from home or from the road. Deciding between IPsec and SSL/TLS for a given scenario can be complicated. One consideration is that SSL/TLS can work through a NAT-based firewall; IPsec cannot, but both protocols work through firewalls that do not translate addresses. IPsec encrypts all IP traffic that flows between two computers. SSL/TLS is specific to an application. SSL/TLS uses expensive asymmetric encryption functions to establish a connection, and more efficient symmetric encryption functions to secure a running session. In a real-world remote application, administrators may decide to mix and match protocols for the optimum balance of performance and security. For example, clients might connect to a Web-based front end through a firewall using a browser secured by SSL/TLS; the Web server might connect to an application server using IPsec; and the application server might connect to a database server across another firewall using SSL. The scalability of VPNs can sometimes be improved by the use of dedicated server hardware. To cover that, however, we’d have to wade through the competing claims of VPN vendors: perhaps a subject for another day. VPN resources The Virtual Private Network Consortium maintains a list of its members, a table of IPsec VPN features supported by each vendor, and a table of SSL VPN features supported by each vendor. VPNC also supplies SimpleCA, a free, open-source certificate authority package for VPN administrators.
The past several years have been an amazing journey for Magento, as we’ve grown from a new open source platform into an eCommerce leader. Along the way, we’ve built not only a platform, but a company and a worldwide community. Together, we’ve identified opportunities, taken risks, innovated, struggled, succeeded, and changed the face of eCommerce. Today marks a milestone on this journey as we announce the most exciting news in our company’s history. Magento has reached an agreement to be acquired by eBay Inc. We believe this move will open incredible opportunities for the entire Magento ecosystem. The Big Picture Why is this acquisition so exciting for all of us? eBay is evolving to become a strategic commerce partner focused on delivering new ways for merchants of all sizes to drive innovation. As a centerpiece of this strategy, they are building a global, open commerce platform that leverages the worldwide developer community. And Magento will be at the core of this new, open commerce platform, called “X.Commerce.” Magento & eBay As many of you know, Magento has had a relationship with eBay for some time. In March 2010, eBay became our first outside investor. Over the past year, eBay has gotten to know our platform, our culture, and our community. They have experienced the passion of the Magento ecosystem, and they are eager to harness the power of this ecosystem to create the next generation of eCommerce innovation. Moving forward: the details How will this acquisition impact our organization, customers and partners? It’s too soon to know all the details, but there are a few things we know. Following the closing, Magento will continue to operate out of Los Angeles, with Yoav Kutner and me as its leaders. We’ll continue building our team and enhancing our product line, including the Magento Community, Enterprise, and Mobile Editions, as well as Magento Go and the Magento Go Platform. And we’ll continue strengthening our training, education, packaged consulting services and support efforts around the world. Through it all, we’ll be collaborating with our colleagues at eBay on developing the X.Commerce platform and defining the next generation of eCommerce innovation. Yoav and I recorded a short video about the acquisition – I hope you’ll take a few minutes to watch it. We have also prepared an FAQ with answers to many of your questions about this announcement. Creating the future together To all the members the Magento family: we thank you for all the passion, expertise and hard work that you’ve invested in Magento. Thanks to you, Magento finds itself exactly where we’ve always aimed to be: at the core of eCommerce. We are thrilled about becoming part of a larger organization that recognizes – as we always have – that the future of eCommerce is global, innovative and open. We look forward to creating that future with all of you.
What is a VPN? VPN is a virtual private network or tunnel over the Internet. Each VPN connection is totally anonymous on the internet and it helps to keep your activities anonymous and safe. VPN internet access is an attractive option for people worried about their security and privacy. Benefits of using VPN: * Anonymous Surfing * Protect your Privacy so that ISP not able to spy on you * Secure Encrypted connection * Bypass and use Skype freely! * Stay annonymous at work or at school ! * Unrestricted access to the Internet from countries that block you from accessing some sites. * Bypass all blocked web sites, such as adult, poker, sensitive sites! * Watch your favourite TV program, youtube as freely as you want! I still don’t understand.. Maybe a picture will explain more clearly. Without a VPN: With a VPN As you can see, with a vpn, your data go through a secure tunnel in encrypted format. ‘Middleman’ like your ISP or hacker will not be able to steal your data. Your data are protected and your privacy is secure.
SUMMARY This article lists the error codes that you may receive when you use Windows 2000, Windows XP, or Windows Server 2003 as a client computer to make a dial-up connection or a VPN connection. Note: Error codes with numbers higher than 900 will only be seen if you are trying to connect to a Routing and Remote Access Server that is running Windows 2000 or later. MORE INFORMATION The following list contains the error codes for dial-up connections or VPN connections: 600 An operation is pending. 601 The port handle is invalid. 602 The port is already open. 603 Caller’s buffer is too small. 604 Wrong information specified. 605 Cannot set port information. 606 The port is not connected. 607 The event is invalid. 608 The device does not exist. 609 The device type does not exist. 610 The buffer is invalid. 611 The route is not available. 612 The route is not allocated. 613 Invalid compression specified. 614 Out of buffers. 615 The port was not found. 616 An asynchronous request is pending. 617 The port or device is already disconnecting. 618 The port is not open. 619 The port is disconnected. 620 There are no endpoints. 621 Cannot open the phone book file. 622 Cannot load the phone book file. 623 Cannot find the phone book entry. 624 Cannot write the phone book file. 625 Invalid information found in the phone book. 626 Cannot load a string. 627 Cannot find key. 628 The port was disconnected. 629 The port was disconnected by the remote machine. 630 The port was disconnected due to hardware failure. 631 The port was disconnected by the user. 632 The structure size is incorrect. 633 The port is already in use or is not configured for Remote Access dialout. 634 Cannot register your computer on the remote network. 635 Unknown error. 636 The wrong device is attached to the port. 637 The string could not be converted. 638 The request has timed out. 639 No asynchronous net available. 640 A NetBIOS error has occurred. 641 The server cannot allocate NetBIOS resources needed to support the client. 642 One of your NetBIOS names is already registered on the remote network. 643 A network adapter at the server failed. 644 You will not receive network message popups. 645 Internal authentication error. 646 The account is not permitted to log on at this time of day. 647 The account is disabled. 648 The password has expired. 649 The account does not have Remote Access permission. 650 The Remote Access server is not responding. 651 Your modem (or other connecting device) has reported an error. 652 Unrecognized response from the device. 653 A macro required by the device was not found in the device .INF file section. 654 A command or response in the device .INF file section refers to an undefined macro 655 The macro was not found in the device .INF file section. 656 The macro in the device .INF file section contains an undefined macro 657 The device .INF file could not be opened. 658 The device name in the device .INF or media .INI file is too long. 659 The media .INI file refers to an unknown device name. 660 The device .INF file contains no responses for the command. 661 The device .INF file is missing a command. 662 Attempted to set a macro not listed in device .INF file section. 663 The media .INI file refers to an unknown device type. 664 Cannot allocate memory. 665 The port is not configured for Remote Access. 666 Your modem (or other connecting device) is not functioning. 667 Cannot read the media .INI file. 668 The connection dropped. 669 The usage parameter in the media .INI file is invalid. 670 Cannot read the section name from the media .INI file. 671 Cannot read the device type from the media .INI file. 672 Cannot read the device name from the media .INI file. 673 Cannot read the usage from the media .INI file. 674 Cannot read the maximum connection BPS rate from the media .INI file. 675 Cannot read the maximum carrier BPS rate from the media .INI file. 676 The line is busy. 677 A person answered instead of a modem. 678 There is no answer. 679 Cannot detect carrier. 680 There is no dial tone. 681 General error reported by device. 682 ERROR WRITING SECTIONNAME 683 ERROR WRITING DEVICETYPE 684 ERROR WRITING DEVICENAME 685 ERROR WRITING MAXCONNECTBPS 686 ERROR WRITING MAXCARRIERBPS 687 ERROR WRITING USAGE 688 ERROR WRITING DEFAULTOFF 689 ERROR READING DEFAULTOFF 690 ERROR EMPTY INI FILE 691 Access denied because username and/or password is invalid on the domain. 692 Hardware failure in port or attached device. 693 ERROR NOT BINARY MACRO 694 ERROR DCB NOT FOUND 695 ERROR STATE MACHINES NOT STARTED 696 ERROR STATE MACHINES ALREADY STARTED 697 ERROR PARTIAL RESPONSE LOOPING 698 A response keyname in the device .INF file is not in the expected format. 699 The device response caused buffer overflow. 700 The expanded command in the device .INF file is too long. 701 The device moved to a BPS rate not supported by the COM driver. 702 Device response received when none expected. 703 ERROR INTERACTIVE MODE 704 ERROR BAD CALLBACK NUMBER 705 ERROR INVALID AUTH STATE 706 ERROR WRITING INITBPS 707 X.25 diagnostic indication. 708 The account has expired. 709 Error changing password on domain. 710 Serial overrun errors were detected while communicating with your modem. 711 RasMan initialization failure. Check the event log. 712 Biplex port is initializing. Wait a few seconds and redial. 713 No active ISDN lines are available. 714 Not enough ISDN channels are available to make the call. 715 Too many errors occurred because of poor phone line quality. 716 The Remote Access IP configuration is unusable. 717 No IP addresses are available in the static pool of Remote Access IP addresses. 718 PPP timeout. 719 PPP terminated by remote machine. 720 No PPP control protocols configured. 721 Remote PPP peer is not responding. 722 The PPP packet is invalid. 723 The phone number, including prefix and suffix, is too long. 724 The IPX protocol cannot dial-out on the port because the computer is an IPX router. 725 The IPX protocol cannot dial-in on the port because the IPX router is not installed. 726 The IPX protocol cannot be used for dial-out on more than one port at a time. 727 Cannot access TCPCFG.DLL. 728 Cannot find an IP adapter bound to Remote Access. 729 SLIP cannot be used unless the IP protocol is installed. 730 Computer registration is not complete. 731 The protocol is not configured. 732 The PPP negotiation is not converging. 733 The PPP control protocol for this network protocol is not available on the server. 734 The PPP link control protocol terminated.. 735 The requested address was rejected by the server.. 736 The remote computer terminated the control protocol. 737 Loopback detected.. 738 The server did not assign an address. 739 The remote server cannot use the Windows NT encrypted password. 740 The TAPI devices configured for Remote Access failed to initialize or were not installed correctly. 741 The local computer does not support encryption. 742 The remote server does not support encryption. 743 The remote server requires encryption. 744 Cannot use the IPX net number assigned by the remote server. Check the event log. 745 ERROR_INVALID_SMM 746 ERROR_SMM_UNINITIALIZED 747 ERROR_NO_MAC_FOR_PORT 748 ERROR_SMM_TIMEOUT 749 ERROR_BAD_PHONE_NUMBER 750 ERROR_WRONG_MODULE 751 The callback number contains an invalid character. Only the following 18 characters are allowed: 0 to 9, T, P, W, (, ), -, @, and space 752 A syntax error was encountered while processing a script. 753 The connection could not be disconnected because it was created by the multi-protocol router. 754 The system could not find the multi-link bundle. 755 The system cannot perform automated dial because this connection has a custom dialer specified. 756 This connection is already being dialed. 757 Remote Access Services could not be started automatically. Additional information is provided in the event log. 758 Internet Connection Sharing is already enabled on the connection. 759 An error occurred while the existing Internet Connection Sharing settings were being changed. 760 An error occurred while routing capabilities were being enabled. 761 An error occurred while Internet Connection Sharing was being enabled for the connection. 762 An error occurred while the local network was being configured for sharing. 763 Internet Connection Sharing cannot be enabled. There is more than one LAN connection other than the connection to be shared. 764 No smart card reader is installed. 765 Internet Connection Sharing cannot be enabled. A LAN connection is already configured with the IP address that is required for automatic IP addressing. 766 A certificate could not be found. Connections that use the L2TP protocol over IPSec require the installation of a machine certificate, also known as a computer certificate. 767 Internet Connection Sharing cannot be enabled. The LAN connection selected as the private network has more than one IP [...]
