<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Websites &#8211; David&#039;s Church Information Technology</title>
	<atom:link href="/category/websites/feed/" rel="self" type="application/rss+xml" />
	<link>/</link>
	<description>David Szpunar: Owner, Servant 42 and Servant Voice</description>
	<lastBuildDate>Tue, 15 Feb 2011 13:31:16 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.5.2</generator>
	<item>
		<title>Palm Centro and GoDaddy SSL Certificates: Fixed!</title>
		<link>/2009/09/16/palm-centro-and-godaddy-ssl-certificates-fixed/</link>
					<comments>/2009/09/16/palm-centro-and-godaddy-ssl-certificates-fixed/#comments</comments>
		
		<dc:creator><![CDATA[David Szpunar]]></dc:creator>
		<pubDate>Wed, 16 Sep 2009 16:25:50 +0000</pubDate>
				<category><![CDATA[Companies]]></category>
		<category><![CDATA[Mobile]]></category>
		<category><![CDATA[Remote Access]]></category>
		<category><![CDATA[Servers]]></category>
		<category><![CDATA[Web]]></category>
		<category><![CDATA[Websites]]></category>
		<category><![CDATA[Daryl Hunter]]></category>
		<category><![CDATA[encryption]]></category>
		<category><![CDATA[Exchange]]></category>
		<category><![CDATA[Exchange 2003]]></category>
		<category><![CDATA[Exchange 2007]]></category>
		<category><![CDATA[GoDaddy]]></category>
		<category><![CDATA[RapidSSL]]></category>
		<category><![CDATA[RapidSSL Online]]></category>
		<category><![CDATA[SSL]]></category>
		<guid isPermaLink="false">http://infotech.davidszpunar.com/?p=408</guid>

					<description><![CDATA[We have many Palm phones running Palm OS, in particular we have a lot of Palm Centros although we have some other models as well (but they all run Palm OS, not Windows Mobile). We&#8217;ve had GoDaddy SSL certificates for a while for our Exchange 2003 server. Until now, I&#8217;ve never had an issue with [&#8230;]]]></description>
										<content:encoded><![CDATA[<p>We have many Palm phones running Palm OS, in particular we have a lot of Palm Centros although we have some other models as well (but they all run Palm OS, not Windows Mobile). We&#8217;ve had GoDaddy <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Encryption method used to secure network traffic, often HTTP but many other protocols as well','caption', 'Secure Sockets Layer' );"><acronym class="uttInitialism">SSL</acronym></span> certificates for a while for our Exchange 2003 server. Until now, I&#8217;ve never had an issue with GoDaddy certificates where the phone would reject them, but yesterday I renewed the two-year <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Encryption method used to secure network traffic, often HTTP but many other protocols as well','caption', 'Secure Sockets Layer' );"><acronym class="uttInitialism">SSL</acronym></span> certificate we had (since it expires October 3rd and I don&#8217;t want to let it run out&#8211;again :-)</p>
<p>So I make it through the renewal process, which required generating a new CSR (Certificate Signing Request) for a brand new certificate from the server since the original one had a bit length of 1024 and GoDaddy only accepts 2048 to 4096 bit lenghts (this is a new requirement). After completing the process and getting the certificate installed, I got a nice helpdesk call from a user this morning who has a Centro: &#8220;<span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Encryption method used to secure network traffic, often HTTP but many other protocols as well','caption', 'Secure Sockets Layer' );"><acronym class="uttInitialism">SSL</acronym></span> certificate not accepted due to possible expiration.  Check device date &amp; time and re-sync.&#8221;</p>
<p>Joy oh joy, exactly what I&#8217;d been looking for, another problem and wasted time!</p>
<p>OK, enough sarcasm (but really, can you ever have enough?). Time for Google and <a title="Daryl Hunter's blog" href="http://www.darylhunter.me/">Daryl Hunter</a> from the Church IT Roundtable! Although GoDaddy auto-renewed my <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Encryption method used to secure network traffic, often HTTP but many other protocols as well','caption', 'Secure Sockets Layer' );"><acronym class="uttInitialism">SSL</acronym></span> certificate, I was actually contemplating buying one of their UCC certificates to be ready for when we went to Exchange 2007. Fortunately I read Daryl Hunter&#8217;s <a title="Daryl Hunter: Exchange 2007 - SSL without a UCC Certificate" href="http://www.darylhunter.me/churchit/2009/09/exchange-2007-ssl-without-a-ucc-certificate.html">post about Exchange 2007 without UCC certs</a>, and stuck with the regular certificate for now, because per <a title="Palm Support: Certificate Modification Tool for enterprise and advanced end-users" href="http://kb.palm.com/wps/portal/kb/common/article/43375_en.html">Palm KB article 43375</a>, certificates with Subject Alternate Names (SANs), such as UCC certs, are not supported at all on Palm devices (&#8220;<span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Encryption method used to secure network traffic, often HTTP but many other protocols as well','caption', 'Secure Sockets Layer' );"><acronym class="uttInitialism">SSL</acronym></span> v3 certificates which rely on the Subject Alternate Name field to do load balancing across virtual site names do not work with Palm OS devices.&#8221;). So a UCC cert isn&#8217;t even an option for me, but it&#8217;s cheaper to do Daryl&#8217;s method anyway! For now I don&#8217;t have to worry about it, since I just have Exchange 2003 for now, and that&#8217;s not the present issue (but we will likely be on Exchange 2007 or Exchange 2010 by the time the certificate expires). Additionally, the same article (which has a tool for installing new trusted root certificates on <em>some</em> Palm OS devices&#8211;but I didn&#8217;t want to mess with touching every single Palm OS device here! And, the tool works on Windows 2000 or XP only, not Vista (and I&#8217;m sure not Windows 7 either)) specifically states that, &#8220;GoDaddy Class 2 certificates do not work with Palm OS devices.&#8221; Time to drop GoDaddy!</p>
<p>Daryl&#8217;s favorite <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Encryption method used to secure network traffic, often HTTP but many other protocols as well','caption', 'Secure Sockets Layer' );"><acronym class="uttInitialism">SSL</acronym></span> certificate vendor (and now, mine too!) is <a title="RapidSSL Online" href="http://www.rapidsslonline.com/">RapidSSL Online</a>. They sell certificates from RapidSSL.com for $17.95 per year (or cheaper, for multiple years), and they&#8217;re single root certificates (which menas you don&#8217;t have to install intermediate certificates on your server). While RapidSSL Online is cheap, <a title="RapidSSL.com" href="http://www.rapidssl.com/">RapidSSL.com</a> directly has a 30 day trial certificate you can sign up for to test for a month, and this is the way I went. When that certificate expires I&#8217;ll be purchasing a multi-year certificate from RapidSSL Online, but I wanted to make sure it would work, and it does! I don&#8217;t know for sure, but it appears that RapidSSL.com is the company holding the root certificate, while RapidSSL Online is either a reseller or a sub-company of the parent selling the certificates at a discount (the RapidSSL.com certificates aren&#8217;t expenive but still cost a lot more than from RapidSSL Online!). Either way, RapidSSL Online claims that their RapidSSL certificates are issued by RapidSSL.com so they should be the same (I haven&#8217;t made a purchase yet), and Daryl Hunter has used RapidSSL Online successfully for years across multiple installations.</p>
<p>I generated a new CSR for a new certificate, again (just like I had to do for GoDaddy). I installed the free certificate on my Exchange server&#8217;s IIS (I also then exported it and imported the .pfx file onto my <span class="ubernym uttAbbreviation" onmouseover="domTT_activate(this, event, 'content', 'Microsoft Internet Security and Acceleration Server (&lt;a href=&quot;http://www.microsoft.com/isaserver/default.mspx&quot;&gt;link&lt;/a&gt;)','caption', 'Internet Security and Acceleration' );"><acronym class="uttAbbreviation">ISA</acronym></span> 2004 firewall since it does the authentication up front for external clients, but that&#8217;s a pretty unique case and in most cases you want this done on the Exchange server). They were right, it&#8217;s just a single root on the certificate, signed by Equifax! I had my Palm Centro users (two had complained by this point) try syncing again. It worked! My iPhone also works fine still, and I haven&#8217;t had any negative reports from the four Palm Pre users here either. None of my users have Windows Mobile, and my one Blackberry user connects though Blackberry Professional Server rather than with ActiveSync.</p>
<p>So, adios GoDaddy <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Encryption method used to secure network traffic, often HTTP but many other protocols as well','caption', 'Secure Sockets Layer' );"><acronym class="uttInitialism">SSL</acronym></span>; fortunately they will refund all but $15 of my certificate (for processing since it was issued), and I&#8217;ll still come out ahead with RapidSSL Online (GoDaddy was $60 for two years, while RapidSSL Online is only $70 for five years!).</p>
<p>One thing I&#8217;ll have to be careful of when I go to Exchange 2007 is that once I use Windows Server 2008 to generate the CSR, it appears I will need to go to extra pains to make sure the CSR is in Printstring format instead of UTF-8, as Palm OS doesn&#8217;t support UTF-8 certificates either (Server 2003 uses Printstring by default). Daryl located this useful post while helping me troubleshoot: <a title="The Teklog: Ranting about Palm Centro Versamail ActiveSync and SBS 2008" href="http://teklogic.net/tekblog/ranting-about-palm-centro-versamail-activesync-and-sbs-2008">Ranting about Palm Centro Versamail ActiveSync and SBS 2008</a>. Useful info, I&#8217;m sure I&#8217;ll be going back when it&#8217;s time to renew next time and Server 2008 is in place. By then, I hope we are Palm OS-free; although I loved my Treo 600 and Treo 650 both, the web is littered with forum and blog posts from people who have <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Encryption method used to secure network traffic, often HTTP but many other protocols as well','caption', 'Secure Sockets Layer' );"><acronym class="uttInitialism">SSL</acronym></span> issues with Palm OS devices (the Palm Pre and Pixi are much more flexible and up-to-date with the Palm WebOS). I was happy GoDaddy &#8220;just worked&#8221; in the past, frustrated that they &#8220;just didn&#8217;t work&#8221; this time, and happy to save money and move to a company that&#8217;s quicker/faster/easier!</p>]]></content:encoded>
					
					<wfw:commentRss>/2009/09/16/palm-centro-and-godaddy-ssl-certificates-fixed/feed/</wfw:commentRss>
			<slash:comments>3</slash:comments>
		
		
			</item>
		<item>
		<title>WordPress 2.7 released!</title>
		<link>/2008/12/11/wordpress-27-released/</link>
					<comments>/2008/12/11/wordpress-27-released/#comments</comments>
		
		<dc:creator><![CDATA[David Szpunar]]></dc:creator>
		<pubDate>Thu, 11 Dec 2008 07:00:32 +0000</pubDate>
				<category><![CDATA[Blogging]]></category>
		<category><![CDATA[News]]></category>
		<category><![CDATA[Web]]></category>
		<category><![CDATA[Websites]]></category>
		<category><![CDATA[WordPress]]></category>
		<guid isPermaLink="false">http://infotech.davidszpunar.com/?p=351</guid>

					<description><![CDATA[I&#8217;m coming out of my blog-slumber long enough to mention that WordPress 2.7 is out today! I&#8217;ve been running it on this blog since early betas and it totally rocks. The admin redesign (yes, again) is even better than last time, by far, and there is no reason not to upgrade right this minute! (Well, [&#8230;]]]></description>
										<content:encoded><![CDATA[<p>I&#8217;m coming out of my blog-slumber long enough to mention that <a title="WordPress 2.7 â€œColtraneâ€?" href="http://wordpress.org/development/2008/12/coltrane/">WordPress 2.7 is out today</a>! I&#8217;ve been running it on this blog since early betas and it totally rocks. The admin redesign (yes, again) is even better than last time, by far, and there is no reason not to upgrade right this minute! (Well, there are a few technical ones if you have plugins or themes with compatibility issues, but between 2.5 and 2.7 it&#8217;s not terribly likely in most cases.) Once you&#8217;re at 2.7, there&#8217;s an auto-upgrade function built in to the core of WordPress now, so not only can you update plugins (and now install them from the admin panel!), you can upgrade WordPress to the next version in a couple of clicks when it&#8217;s released! Not this time, of course, next time.</p>
<p>I have a few things I&#8217;d like to publish here that won&#8217;t fit on Twitter and will be easier to reference here than on IRC where I still may have discussed some of it already (in the <a title="#citrt IRC channel via web-based Mibbit client" href="http://tinyurl.com/citrtirc">#citrt channel</a>). Now to find the time! Hopefully soon. Poor neglected blog&#8230; :-) Maybe with such a cool new backend I&#8217;ll post more often. Not that I posted at all while running the betas and release candidates&#8230;</p>]]></content:encoded>
					
					<wfw:commentRss>/2008/12/11/wordpress-27-released/feed/</wfw:commentRss>
			<slash:comments>7</slash:comments>
		
		
			</item>
		<item>
		<title>JesusGeek Podcast Interviews Me about WordPress for Church Website</title>
		<link>/2008/05/05/jesus-geek-podcast-interviews-me-wordpress-church-website-cms/</link>
					<comments>/2008/05/05/jesus-geek-podcast-interviews-me-wordpress-church-website-cms/#comments</comments>
		
		<dc:creator><![CDATA[David Szpunar]]></dc:creator>
		<pubDate>Tue, 06 May 2008 03:16:49 +0000</pubDate>
				<category><![CDATA[Blogging]]></category>
		<category><![CDATA[People]]></category>
		<category><![CDATA[Personal]]></category>
		<category><![CDATA[Websites]]></category>
		<category><![CDATA[WordPress]]></category>
		<category><![CDATA[interview]]></category>
		<category><![CDATA[JesusGeek]]></category>
		<category><![CDATA[John Wilkerson]]></category>
		<category><![CDATA[me]]></category>
		<category><![CDATA[podcast]]></category>
		<guid isPermaLink="false">http://infotech.davidszpunar.com/?p=247</guid>

					<description><![CDATA[Given that I&#8217;ve never been interviewed before, I&#8217;m probably taking the risk of sounding incredibly dumb in public (well, I took that risk already but now I&#8217;m doing more damage by telling you about it!) by mentioning that I was interviewed for the JesusGeek Podcast. John Wilkerson, aka Jesus Geek, was interested in how we [&#8230;]]]></description>
										<content:encoded><![CDATA[<p>Given that I&#8217;ve never been interviewed before, I&#8217;m probably taking the risk of sounding incredibly dumb in public (well, I took that risk already but now I&#8217;m doing more damage by telling you about it!) by mentioning that I was <a title="JesusGeek's Interview of me about Lakeview's WordPress installation" href="http://mylifeministries.org/blogs/jesusgeek/2008/05/05/interview-david-szpunar/">interviewed for the JesusGeek Podcast</a>. <a title="John Wilkerson's Jesus Geek Blog and Podcast" href="http://mylifeministries.org/blogs/jesusgeek">John Wilkerson</a>, aka <a title="About the Jesus Geek" href="http://mylifeministries.org/blogs/jesusgeek/about/">Jesus Geek</a>, was interested in how we have used WordPress as Lakeview Church&#8217;s web content mangement system so he asked me to fill him and his listeners in on the details. I&#8217;ll be listening to the podcast episode tomorrow (I&#8217;ve been catching up on some of his past episodes recently and have picked up some good tips!), so you can listen right along with me on your own commute :-)</p>
<p>If you don&#8217;t use a podcatcher such as <a title="Subscribe to JesusGeek in iTunes if it's installed" href="itpc://feeds.feedburner.com/JesusGeek">iTunes to subscribe</a> to podcasts, you can <a title="Subscribe to JesusGeek in Google Reader" href="http://fusion.google.com/add?feedurl=http://feeds.feedburner.com/JesusGeek">subscribe in Google Reader</a> and stream episodes from your web browser, in addition to just downloading the MP3 file from the JesusGeek post directly.</p>
<p>The interview was complicated by a few connection losses while recording, so if the audio sounds awesome John gets the credit for making it work anyway, and if it has any issues, blame me! I also lost my notes about which WordPress plugins I was going to talk about in my XP-to-Vista conversion on my laptop and didn&#8217;t realize it until we were recording, so that was a bit more off-the-cuff than I had intended. Live and learn!</p>]]></content:encoded>
					
					<wfw:commentRss>/2008/05/05/jesus-geek-podcast-interviews-me-wordpress-church-website-cms/feed/</wfw:commentRss>
			<slash:comments>7</slash:comments>
		
		
			</item>
		<item>
		<title>If you don&#8217;t want to hear from people, just say so</title>
		<link>/2008/04/27/if-not-want-to-hear-from-people-just-say-so/</link>
					<comments>/2008/04/27/if-not-want-to-hear-from-people-just-say-so/#comments</comments>
		
		<dc:creator><![CDATA[David Szpunar]]></dc:creator>
		<pubDate>Sun, 27 Apr 2008 07:36:58 +0000</pubDate>
				<category><![CDATA[Humor]]></category>
		<category><![CDATA[Rants]]></category>
		<category><![CDATA[Websites]]></category>
		<category><![CDATA[WordPress]]></category>
		<category><![CDATA[Austin Matzko]]></category>
		<category><![CDATA[filosofo]]></category>
		<category><![CDATA[Jeff Eaton]]></category>
		<category><![CDATA[Jeffro]]></category>
		<category><![CDATA[Jeffro2pt0]]></category>
		<category><![CDATA[Mark Jaquith]]></category>
		<category><![CDATA[mediawiki]]></category>
		<category><![CDATA[People]]></category>
		<category><![CDATA[rant]]></category>
		<category><![CDATA[Scholarpedia]]></category>
		<category><![CDATA[synesthesia]]></category>
		<category><![CDATA[Twitter]]></category>
		<category><![CDATA[typo]]></category>
		<guid isPermaLink="false">http://infotech.davidszpunar.com/?p=237</guid>

					<description><![CDATA[OK so this is a little nitpicky, but it&#8217;s got me slightly annoyed with Scholarpedia because they don&#8217;t appear to publish any contact information. Here&#8217;s how I got there in the first place (why do I tell you? To confuse you, of course!): Through a chain I won&#8217;t make you follow (and probably couldn&#8217;t recall), [&#8230;]]]></description>
										<content:encoded><![CDATA[<p>OK so this is a little nitpicky, but it&#8217;s got me slightly annoyed with Scholarpedia because they don&#8217;t appear to publish any contact information. Here&#8217;s how I got there in the first place (why do I tell you? To confuse you, of course!): Through a chain I won&#8217;t make you follow (and probably couldn&#8217;t recall), I ended up at <a title="Mark Jaquith's web site" href="http://markjaquith.com/">Mark Jaquith&#8217;s</a> <a title="Mark Jaquith's Twitter" href="http://twitter.com/MarkJaquith">Twitter page</a> (he&#8217;s a core developer for <a href="http://www.wordpress.org/">WordPress</a> if you were unaware). I ended up clicking on the link in <a title="Twitter update from Mark Jaquith" href="http://twitter.com/markjaquith/statuses/797346121">his then-newest update</a> to his own blog&#8217;s <a title="Mark Jaquith's Contact Information" href="http://txfx.net/contact/">contact info</a> (he was linking there for a guy named <a title="Jeffro on Twitter" href="http://www.twitter.com/jeffro">Jeffro (Jeff Eaton)</a> (I made a <a title="The real Jeffro2pt0 pointing out my mistake" href="http://infotech.davidszpunar.com/2008/04/27/if-not-want-to-hear-from-people-just-say-so/#comment-4226">mistake</a> in my original post and thought this was <a title="Jeffro2pt0 blog" href="http://www.jeffro2pt0.com/">Jeffro2pt0</a>, but I was incorrect; apologies!). &#8220;Hey, why not <a title="Tempus Fugit blog by Mark Jaquith" href="http://txfx.net/">check out Mark&#8217;s blog</a> while I&#8217;m 95% of the way there?&#8221; methinks. Latest post is titled <a href="http://txfx.net/2008/04/26/how-i-visualize-the-months-of-the-year/">How I visualize the months of the year</a> and I click through to see the comment by <a title="Il Filosofo, the blog of Austin Matzko" href="http://www.ilfilosofo.com/">Austin Matzko (aka filosofo)</a> (Most of these are guys who develop WordPress or Plugins for WordPress).</p>
<p>Austin, in his comment, links to an article in Scholoarpedia on <a title="Scholarpedia: Synesthesia: Reality of number forms and their relevance to normal cognition" href="http://www.scholarpedia.org/article/Synesthesia#Reality_of_number_forms_and_their_relevance_to_normal_cognition">Synesthesia</a> which I begin to read and find rather interesting. However, as I get down to the &#8220;<a title="Scholarpedia: Synesthesia: Top-down and contextual effects" href="http://www.scholarpedia.org/article/Synesthesia#Top-down_and_contextual_effects">Top down and contextual effects</a>&#8221; portion of the article, I notice that there&#8217;s a sentence with a typo in it, specifically &#8220;The second experiment (<a href="http://www.scholarpedia.org/article/Synesthesia#Fig7">6</a>) used an ambiguous grapheme (&#8216;A&#8217; or &#8216;H&#8217;) embedded either in between &#8216;T&#8217; and &#8216;E&#8217; (as in &#8216;THE&#8217;) or between &#8216;C&#8217; and &#8216;A&#8217; (&#8216;CAT&#8217;).&#8221; If you notice, at the end there, the ambiguous grapheme as an &#8216;A&#8217; really is between &#8216;C&#8217; and &#8216;T&#8217;, not between &#8216;C&#8217; and &#8216;A&#8217; as the sentence states (this makes more sense looking at <a title="Scholarpedia: Image from Shyesthesia article, Figure 7" href="http://www.scholarpedia.org/wiki/images/thumb/c/ce/Synesthesia_fig7.jpg/200px-Synesthesia_fig7.jpg">the image provided in the article</a> to illustrate).</p>
<p>Now, I was feeling generous and figured, hey, why not mention this to someone at the site so they can fix it? Actually, my first thought, being linked into the middle of the article, was &#8220;I already have a <a title="Wikipedia homepage" href="http://www.wikipedia.org/">Wikipedia</a> account, I&#8217;ll just fix this for them real quick.&#8221; Of course, they use the same <a title="MediaWiki homepage" href="http://www.mediawiki.org/wiki/MediaWiki">MediaWiki</a> software and default theme (hence the confusion, especially when linked to an anchor within an article), but Scholarpedia is not actually Wikipedia, as I quickly infer (and I haven&#8217;t had a scientific paper with a model named after me published with over 250 hits in Google&#8211;yet, if ever&#8211;so I can&#8217;t create an account). No problem, I&#8217;m sure there&#8217;s a contact form around. Nope. I can&#8217;t find one, anywhere on the site. Well, I just noticed the only email address I&#8217;ve run across on the site, suggestions @ scholarpedia.org, hidden away on the <a title="Scholarpedia: Suggest Authors" href="http://www.scholarpedia.org/article/Scholarpedia:Suggest_authors">detailed requirements for authors</a> page. No useful information on the About page, or the Help page. Oh wait, on the <a title="Scholarpedia: Instructions for authors" href="http://www.scholarpedia.org/article/Scholarpedia:Instructions_for_authors">Instructions for authors</a> page, it does have a random other email address, for a specific person. But they seem pretty much of the opinion that if you aren&#8217;t a famous scientist, you have no need to contact them about anything. Ironically, their <a title="Scholarpedia: Copyright page" href="http://www.scholarpedia.org/article/Special:Copyright">Copyright page</a> even <em>says</em> to &#8220;Contact Scholarpedia for copyright details.&#8221; Without mentioning a way to do so.</p>
<p>Oh well, maybe I&#8217;ll grab those two random email addresses I found and send them a quick note. If I get around to it; they can certainly find it here if they bother to look. I guess sometimes it takes is someone who graduated high school after being homeschooled to find the errors the super-genius scientists miss&#8230; ;-)</p>
<p>Thus ends this rant. Thanks, I feel better now. School 100% complete for the semester as of a very short time ago, so I&#8217;m quite happy to work the hot-air typing muscles for a few before getting to bed later than I should, again (but the exam got completed and submitted!).</p>]]></content:encoded>
					
					<wfw:commentRss>/2008/04/27/if-not-want-to-hear-from-people-just-say-so/feed/</wfw:commentRss>
			<slash:comments>5</slash:comments>
		
		
			</item>
		<item>
		<title>New Lakeview Church Website Launched</title>
		<link>/2008/02/10/new-lakeview-church-website-launched/</link>
					<comments>/2008/02/10/new-lakeview-church-website-launched/#comments</comments>
		
		<dc:creator><![CDATA[David Szpunar]]></dc:creator>
		<pubDate>Sun, 10 Feb 2008 18:05:51 +0000</pubDate>
				<category><![CDATA[News]]></category>
		<category><![CDATA[Websites]]></category>
		<category><![CDATA[WordPress]]></category>
		<category><![CDATA[Chris Basham]]></category>
		<category><![CDATA[Lakeview Church]]></category>
		<category><![CDATA[website]]></category>
		<guid isPermaLink="false">http://infotech.davidszpunar.com/2008/02/10/new-lakeview-church-website-launched/</guid>

					<description><![CDATA[Yesterday. 11:30 am. After around 20 hours of work for me since Friday, and more if you count the volunteer who helped out and all the content my wife helped add over this past week, and plenty more hours from several people for the past eight months, the new, updated Lakeview Church website launched! The [&#8230;]]]></description>
										<content:encoded><![CDATA[<p>Yesterday. 11:30 am. After around 20 hours of work for me since Friday, and more if you count the volunteer who helped out and all the content my wife helped add over this past week, and plenty more hours from several people for the past eight months, the new, <a title="Lakeview Church homepage" href="http://www.lakeviewchurch.org/"><strong>updated Lakeview Church website</strong></a> launched! The site is backed by <a title="WordPress.org homepage" href="http://www.wordpress.org/">WordPress</a> and customized with a theme courtesy of the volunteer I mentioned, <a title="Chris Basham" href="http://chris.bash.am/">Chris Basham</a>. The site is not 100% perfect (what website isn&#8217;t a work in progress?) but it is leaps and bounds ahead of our prior site, and I already spent a few hours tweaking things after it went live, a process that will continue.</p>
<p>Before you critique:</p>
<ul>
<li>Yes, the header image of our building (a holdover from the old site) will be replaced. Some areas already have new headers, we&#8217;re just waiting for the rest to be finished up. </li>
<li>Most (if not all) of the pages, including the homepage, are valid <a href="http://www.w3.org/MarkUp/" class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'eXtensible HyperText Markup Language - HTML reformulated as XML' );"><acronym class="uttInitialism">XHTML</acronym></a>. We checked. </li>
<li>The sermon podcast feed is coming, we&#8217;re working on some technical details of the iTunes listing first, and I already took care of some of the technical issues of <a title="FeedBurner homepage" href="http://www.feedburner.com/">FeedBurner</a> redirection (<a title="FeedBurner&#39;s FeedSmith plugin for feed redirection on WordPress" href="http://www.feedburner.com/fb/a/help/wordpress_quickstart">FeedSmith plugin</a> required a few tweaks to forward a separate podcast feed). </li>
<li>Print stylesheets are on the to-do list but aren&#8217;t implemented yet. </li>
<li>Extended upcoming event information has yet to be entered. </li>
<li>Some people listed on the site need to be hyperlinked to contact info. I&#8217;m researching the best way to do this without exposing them to spam scrapers, whether a contact form or perhaps a solution based on this <a title="A List Apart Articles: Graceful E-Mail Obfuscation" href="http://www.alistapart.com/articles/gracefulemailobfuscation">email obfuscation article</a>. There&#8217;s also this <a title="Urban Giraffe: Anti-Email Spam (email bot obsfucator)" href="http://urbangiraffe.com/plugins/anti-email-spam/">WordPress Plugin</a>, which I like but have a few issues with. A combination of the two sounds best; whether I&#8217;ll leave this up to someone else or try and tackle it myself I&#8217;m not sure of. </li>
<li>I&#8217;d like to add some <a title="Microformats.org" href="http://microformats.org/">Microformat</a> markup in several places, using the <a title="hCard Microformat" href="http://microformats.org/wiki/hcard">hCard</a> spec. </li>
</ul>
<p>I&#8217;m sure I&#8217;m forgetting some things, but I think we have a pretty good foundation. In addition to the above finishing touches, we can now refocus our attention towards doing something about the <a title="Lakeview Worship homepage" href="http://www.lakeviewworship.com/">Lakeview Worship</a> site, desperately in need of equal attention but still the home of our <a title="Lakeview Worship Albums (Make You Known)" href="http://www.lakeviewworship.com/albums/">excellent new worship CD</a>, not that I&#8217;m biased or anything :-)</p>]]></content:encoded>
					
					<wfw:commentRss>/2008/02/10/new-lakeview-church-website-launched/feed/</wfw:commentRss>
			<slash:comments>1</slash:comments>
		
		
			</item>
		<item>
		<title>&#060;/2007&#062;</title>
		<link>/2007/12/31/close-2007/</link>
					<comments>/2007/12/31/close-2007/#respond</comments>
		
		<dc:creator><![CDATA[David Szpunar]]></dc:creator>
		<pubDate>Mon, 31 Dec 2007 21:04:26 +0000</pubDate>
				<category><![CDATA[Blogging]]></category>
		<category><![CDATA[General]]></category>
		<category><![CDATA[Personal]]></category>
		<category><![CDATA[Websites]]></category>
		<category><![CDATA[WordPress]]></category>
		<category><![CDATA[holiday]]></category>
		<category><![CDATA[New Years]]></category>
		<category><![CDATA[writing]]></category>
		<guid isPermaLink="false">http://infotech.davidszpunar.com/2007/12/31/176/</guid>

					<description><![CDATA[End of the Year And thus 2007 comes to a close, with a not-so-subtle nod to HTML/XML closing tags. Which is fitting; I&#8217;ve spent a good chunk of time with the church websites this past quarter. The results aren&#8217;t public yet, but things are moving along. (There&#8217;s a poll to take at the end of [&#8230;]]]></description>
										<content:encoded><![CDATA[<h2>End of the Year</h2>
<p>And thus 2007 comes to a close, with a not-so-subtle nod to <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Link to the spec: (&lt;a href=&quot;http://www.w3.org/MarkUp/&quot;&gt;link&lt;/a&gt;)','caption', 'HyperText Markup Language' );"><acronym class="uttInitialism">HTML</acronym></span>/XML closing tags. Which is fitting; I&#8217;ve spent a good chunk of time with the church websites this past quarter. The results aren&#8217;t public yet, but things are moving along. (There&#8217;s a poll to take at the end of this post, for good readers who make it to the end or bad ones who skip ahead ;-)</p>
<p>The past week and a half have been very relaxing. My in-laws came around Christmas, and are back through tomorrow. It&#8217;s been good to see them, and my <a title="My son's blog, as written by Mommy and Daddy" href="http://www.nathanieldavid.com/">son</a> is enjoying getting to know them a little since they live 2.5 hours away, and his long-term memory isn&#8217;t all that great yet! He turned one last week, and immensely enjoyed his banana bread &#8220;cake,&#8221; some of the most sugar he&#8217;s been allowed to eat.</p>
<p>I&#8217;ve had less time to spend online than I&#8217;d planned, and the time I did spend was primarily reading, learning, and helping a friend get his website up and running (he used to be Lakeview&#8217;s Media Pastor, now he&#8217;s a professor and runs video production company <a title="Media 21: Homepage" href="http://www.media21video.com/">Media 21</a> on the side). I also spent some time reading through <a title="WordPress.org" href="http://www.wordpress.org/">WordPress</a> core source code and <a title="WordPress.org Bug Trac" href="http://trac.wordpress.org/">Trac.</a> I was able to submit two or three small patches that may or may not make it in some form into <a title="WordPress 2.4 Scheduled Features" href="http://codex.wordpress.org/Version_2.4">WordPress 2.4</a>, coming out in January! I also updated most of my WordPress installs, including this blog, to <a title="WordPress: Version 2.3.2" href="http://codex.wordpress.org/Version_2.3.2">version 2.3.2</a> within seven hours of it being released this past Saturday.</p>
<h2>WordPress Babblings</h2>
<p>Why the focus on WordPress? Well, I calculated recently, and I&#8217;m actually involved with (running myself or set up for work or family or friends) <em>twelve</em> WordPress installations right now! This blog runs forty <a title="WordPress Plugins" href="http://wordpress.org/extend/plugins/">WordPress Plugins</a>, and some of those I use on the other installs as well! I&#8217;ve been having a lot of fun working with WordPress from the technical side, but this past semester, as I&#8217;ve mentioned, I had a Technical Writing class that pretty much took all of my writing creativity, resulting in my lowest monthly post count ever in December!  I thought when the semester ended I&#8217;d be right back in the saddle here (and I managed a post or two), but it turns out I needed a break!</p>
<p>If you&#8217;re interested, here&#8217;s an approximation of what those twelve WordPress installations I mentioned are:</p>
<ul>
<li>This blog (1)</li>
<li>My <a title="My son's blog, as written by Mommy and Daddy" href="http://www.nathanieldavid.com/">son&#8217;s blog</a> (1)</li>
<li>My <a title="The life of an OCP librarian: all about the crazy things I do" href="http://www.librarygal.com/">wife&#8217;s blog</a> (1) <em>(now about obsessions and compulsions! Some of which I share, or at least strongly approve&#8230;)</em></li>
<li><a title="Follow The Lion" href="http://followthelion.com/">Pastor Nathan&#8217;s blog</a> (1)</li>
<li>Blogs of a missionary from Lakeview and a Director at the Indiana Assemblies of God District Office (2) <em>(still somewhat in development)</em></li>
<li>Two WordPress-as-Content Management System installs for Lakeview, not public yet (2)</li>
<li><a title="Media 21: Homepage" href="http://www.media21video.com/">Media 21</a> website for Rob Price (1)</li>
<li>An inactive install at one of my domains for testing (1)</li>
<li>An old blog I ran for a while a few years ago (1) <em>(Don&#8217;t you wish I&#8217;d give you a link? It&#8217;s not hard to find!)</em></li>
<li>An unofficial blog for my homeowners association (not turned over to residents from the builder yet, can&#8217;t get enough people out to the meeting to vote! Hence blog!) (1)</li>
</ul>
<p>That makes twelve! I may also get around to setting up an internal WordPress installation for our intranet, which is how I got started with WordPress for the church in the first place but of course, the intranet got stuck on the back burner!</p>
<p>I&#8217;ve promised in the past that I would post about the work I&#8217;ve been doing on the church websites and converting them to WordPress. As you can see, I&#8217;ve been doing a lot more with WordPress than just the church, and I&#8217;ve discovered a lot of tips, tricks, plugins, and all kinds of WordPress stuff, and a lot of general website stuff as well! I know some Church IT readers are interested in this kind of thing, as they are involved with or are responsible for their own church websites. Others probably don&#8217;t care in the least! I don&#8217;t want to overwhelm readers with WordPress and websites, but I&#8217;m curious how many of you are interested.</p>
<p>Why have I not written much about WordPress until now? Like I said, I haven&#8217;t been sure how many of you would be interested. Also, I kept finding new information so fast I didn&#8217;t have time to post the old. And I wanted to provide some context first; I want to start at the very beginning. (&#8220;&#8230;a very good place to start. When you read, you begin with A B C.&#8221; Oh wait, this isn&#8217;t the Sound of Music! :-) Anyway, I want to start at the beginning and describe the reasons for choosing WordPress, what the catalyst was for the project, what steps we&#8217;ve been taking, what&#8217;s changed as the project has continued (another reason not to post, things keep changing!), and then get to the meat like plugins and links and implementation. I haven&#8217;t had the time to fill in the high level stuff yet, so I&#8217;ve skipped jumping in in the middle! Another good reason to hold off is politics. Not the presidential election, as interesting as that may be to some, but a church website at a larger church has reach among many areas and departments, and while the sailing has been more smooth than I could have hoped for on a project of this size (really! I have awesome coworkers!), there are always bumps and friction when working with others and I don&#8217;t want to publicly vent or air dirty laundry.</p>
<h2>End of the year&#8230;and more WordPress Babblings</h2>
<p>This is the part where I say Happy New Year! And also where I ask you to vote for how much I should talk about WordPress and websites here in 2008:</p>
<p><em><strong>(Poll coming here as soon as I get the darn plugin working correctly! Sorry!)</strong></em><br />
There should be a post tomorrow as well; as they say, when one tag closes, another opens! :-D</p>]]></content:encoded>
					
					<wfw:commentRss>/2007/12/31/close-2007/feed/</wfw:commentRss>
			<slash:comments>0</slash:comments>
		
		
			</item>
		<item>
		<title>Church IT Roundtable Pre-Dinner, Wednesday Recap, and More!</title>
		<link>/2007/10/04/church-it-roundtable-pre-dinner-wednesday-recap-and-more/</link>
					<comments>/2007/10/04/church-it-roundtable-pre-dinner-wednesday-recap-and-more/#comments</comments>
		
		<dc:creator><![CDATA[David Szpunar]]></dc:creator>
		<pubDate>Thu, 04 Oct 2007 04:27:49 +0000</pubDate>
				<category><![CDATA[Church IT Roundtable]]></category>
		<category><![CDATA[E-Mail]]></category>
		<category><![CDATA[On The Road]]></category>
		<category><![CDATA[Websites]]></category>
		<category><![CDATA[Adam Hamilton]]></category>
		<category><![CDATA[Brian Slezak]]></category>
		<category><![CDATA[church]]></category>
		<category><![CDATA[Conference]]></category>
		<category><![CDATA[dinner]]></category>
		<category><![CDATA[food]]></category>
		<category><![CDATA[it]]></category>
		<category><![CDATA[Jason Powell]]></category>
		<category><![CDATA[Matt Bradshaw]]></category>
		<category><![CDATA[meal]]></category>
		<category><![CDATA[pastor]]></category>
		<category><![CDATA[People]]></category>
		<category><![CDATA[roundtable]]></category>
		<category><![CDATA[travel]]></category>
		<category><![CDATA[worship]]></category>
		<guid isPermaLink="false">http://infotech.davidszpunar.com/2007/10/04/church-it-roundtable-pre-dinner-wednesday-recap-and-more/</guid>

					<description><![CDATA[I&#8217;ve taken around 300 photos while at the Church IT Roundtable at COR, but I haven&#8217;t had time to sort them out and post a lot of the good ones. I did, however, upload fifteen of them (so far) to a new CITRT set on Flickr that I took of the tables eating dinner courtesy [&#8230;]]]></description>
										<content:encoded><![CDATA[<p>I&#8217;ve taken around 300 photos while at the <a title="Church IT Roundtable homepage" href="http://www.citrt.org/">Church IT Roundtable</a> at COR, but I haven&#8217;t had time to sort them out and post a lot of the good ones. I did, however, upload fifteen of them (so far) to a new CITRT set on <a title="Flickr homepage" href="http://www.flickr.com/">Flickr</a> that I took of the tables eating dinner courtesy to Dean Lisenby at <a title="ACS Technologies homepage" href="http://www.acstechnologies.com/">ACS</a>. You can <a title="Church IT Roundtable Fall 2007 Flickr Photos" href="http://www.flickr.com/photos/existdifferently/sets/72157602254996161/">view the photos here</a>. It&#8217;s a good group of people! I got most (not all) of the attendees that were at the restaurant but even more showed up today.</p>
<p><a title="Matt, Philip and Brian at dinner before the Roundtable" href="http://www.flickr.com/photos/existdifferently/1478543583/"><img fetchpriority="high" decoding="async" title="The guys from COR that I ate dinner with Tuesday night October 2nd\" src="http://farm2.static.flickr.com/1092/1478543583_9f6603fda8.jpg?v=0" border="0" alt="The guys from COR that I ate dinner with Tuesday night October 2nd\" width="400" height="300" align="left" /></a></p>
<p>In this photo, the three guys around the table on the left (left-to-right) are Matt Bradshaw, a desktop support technician, and Brian Slezak, all from <a title="United Methodist Church of the Resurrection homepage" href="http://www.cor.org/">Church of the Resurrection</a>. These guys either develop for their website or have recently, and I got to chat with them at a techie level about website development (not design!). We talked about different backend CMS options (CMS in this case is Content Management Systems, not to be confused with CMS meaning Church Management System, which apparently has been around as that acronym for twenty years and isn&#8217;t officially changing to ChMS any time soon per some Roundtable discussion Wednesday afternoon!), and we also shared some stories about some vulnerabilities we&#8217;ve had exploited on our websites for various nefarious purposes in the past and how we discovered and dealt with them.</p>
<p>In our afternoon Roundtable session, we discussed spiritual issues surrounding Church IT departments, which I didn&#8217;t end up with many notes on. We moved on to Church Management Systems, which had some useful information but my few notes are not in an easily digestible format. In our room, three churches currently use <a title="Shelby homepage" href="http://www.shelbyinc.com/">Shelby</a>, two use <a title="ACS Technologies homepage" href="http://www.acstechnologies.com/">ACS Technologies</a>, and we had one user each of <a title="Fellowship Technologies homepage" href="http://www.fellowshiptech.com/">Fellowship Technologies</a> and Microsoft CRM (which has been heavily customized). This provided some fodder for both theoretical and practical discussion about each system, but I think we were all about ready to wrap up after a long day of discussion and thus this was probably a little less informative than it could have been, but there were a few new gems of knowledge I gleaned. This is one area where I think the vendors in the room should probably have been allowed to participate rather than just observe, because we had vendor reps from Shelby, ACS, and Microsoft CRM (or an integrator of this one) in the room and the systems are sufficiently complex that they may have been able to provide additional information. Oh well, they are great folks to talk to outside of the Roundtable format and I think everyone is making great connections and relationships with the vendors and the attendees.</p>
<p><a title="Flickr: Rev. Adam Hamilton speaks to the Church IT Roundtable attendees" href="http://www.flickr.com/photos/existdifferently/1481294918/in/set-72157602254996161/"><img decoding="async" title="Rev. Adam Hamilton speaks to Church IT Roundtable attendees" src="http://farm2.static.flickr.com/1221/1481294918_070d6b948e.jpg?v=0" border="0" alt="Rev. Adam Hamilton speaks to Church IT Roundtable attendees" width="424" height="318" align="right" /></a>We moved to the main meeting room after the afternoon Roundtable and got to <a title="Flickr: Rev. Adam Hamilton speaks to the Church IT Roundtable attendees" href="http://www.flickr.com/photos/existdifferently/1481294918/in/set-72157602254996161/">hear for 30 minutes</a> from <a title="United Methodist Church of the Resurrection: Rev. Adam Hamilton" href="http://www.cor.org/Sr_Pastor_s_Page.84.0.html">Rev. Adam Hamilton</a>, COR&#8217;s Founding and Senior Pastor. It was very informative hearing from his point of view, and several people had some very well thought-out questions to ask him afterwards. Around his talk, we watched a leadership video and an awesome, hilarious movie about Facilities Managers (&#8220;FMers&#8221;) created by I believe the COR facilities manager. It was sooo stinking funny! About 90 laughs per minute! There was another similar video earlier today as well, just as funny. The best part is that everything in the videos about FMers applies just about equally to ITers, which I&#8217;m sure made it extra funny for all. We had a half-hour break after this and then it was time for a great dinner at 6:00 from a local BBQ joint catered to a room down the hall, sponsored but I don&#8217;t know which vendor paid this time.</p>
<p>7:00 brought a worship service and sermon from <a title="The Appian Way homepage" href="http://appianway.blogspot.com/">Clif&#8217;s</a> wife and the band from her church plant, which were excellent. At 8:00 they opened a room (until 11:00 pm at the latest) for hangout and open discussion, where I stuck around for 15-20 minutes and then caught a ride back to my hotel again from Dean Lisenby and Josh Wyse from ACS (thanks Dean!), where I am writing most of this post.</p>
<p><a title="Jason Powell and the Fake Roundtable Badge" href="http://www.flickr.com/photos/existdifferently/1481290226/in/set-72157602254996161/"><img decoding="async" title="Jason Powell with " src="http://farm2.static.flickr.com/1062/1481290226_017271f337.jpg?v=0" border="0" alt="Jason Powell with " width="277" height="208" align="left" /></a>Going back to this morning, I can&#8217;t forget to mention that <a title="Jason Powell's blog" href="http://www.jasonpowell.net/">Jason Powell</a> lost his Roundtable name badge and had to <a title="Jason Powell and the Fake Roundtable Badge" href="http://www.flickr.com/photos/existdifferently/1481290226/in/set-72157602254996161/">make a &#8220;fake&#8221; one for himself</a>. He was razzed first thing this morning, and he was kind (apparently I said &#8220;king&#8221; rather than &#8220;kind&#8221; when writing this post late last night, so let me clarify: JP is cool, but not king :-) enough to post for a photo just so I could blog about it!</p>
<p>In other news, back on the home front I ran into an issue back at Lakeview today: I let the <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Encryption method used to secure network traffic, often HTTP but many other protocols as well','caption', 'Secure Sockets Layer' );"><acronym class="uttInitialism">SSL</acronym></span> certificate expire for our <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Microsoft Exchange\'s version of webmail','caption', 'Outlook Web Access' );"><acronym class="uttInitialism">OWA</acronym></span> webmail (which also is used for <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Remote Procedure Call' );"><acronym class="uttInitialism">RPC</acronym></span> over <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'HTTP protocol using SSL encryption','caption', 'HyperText Transfer Protocol Secure' );"><acronym class="uttInitialism">HTTPS</acronym></span> in Outlook, and by our Treos with ActiveSync). So I spent part of the afternoon Roundtable remotely accessing the Lakeview network and working to resolvethat situation. Technically, the certificate didn&#8217;t expire, the renewed certificate was just never updated on the servers. This was for a variety of reasons, the main ones being that it fell off my priorities list with everything else going on, and also I didn&#8217;t have the username/password information handy for that account and didn&#8217;t find the time to track it all down with all the steps that will likely require. I have a temporary solution halfway in place now (everything but some Treos are working again) that I have to tweak tonight before I go to bed (also known as <em>right now</em>), and it should give me the time to deal with the original problem in the next few weeks. I won&#8217;t get into the details for both security reasons and because I&#8217;ve spent enough time recapping today already!</p>]]></content:encoded>
					
					<wfw:commentRss>/2007/10/04/church-it-roundtable-pre-dinner-wednesday-recap-and-more/feed/</wfw:commentRss>
			<slash:comments>3</slash:comments>
		
		
			</item>
		<item>
		<title>PassPack Your Passwords: Get Them Anywhere, Securely and Freely</title>
		<link>/2007/08/13/passpack-your-passwords-get-them-anywhere-securely-and-freely/</link>
					<comments>/2007/08/13/passpack-your-passwords-get-them-anywhere-securely-and-freely/#comments</comments>
		
		<dc:creator><![CDATA[David Szpunar]]></dc:creator>
		<pubDate>Mon, 13 Aug 2007 05:08:56 +0000</pubDate>
				<category><![CDATA[Cool Services]]></category>
		<category><![CDATA[Cool Tools]]></category>
		<category><![CDATA[Security]]></category>
		<category><![CDATA[Web]]></category>
		<category><![CDATA[Websites]]></category>
		<category><![CDATA[PassPack]]></category>
		<category><![CDATA[passwords]]></category>
		<category><![CDATA[review]]></category>
		<guid isPermaLink="false">http://infotech.davidszpunar.com/2007/08/13/passpack-your-passwords-get-them-anywhere-securely-and-freely/</guid>

					<description><![CDATA[I discovered a service called PassPack. The basic premise is this: Create an account, store all your passwords in it, log back in as-needed to retrieve them. "But wait!" you might say, "that's stupid, why trust a random website to secure your passwords, just run one of the countless free Windows apps to store your info, and a lot of them will even automatically log you in via your web browser to websites." Normally, I'd agree with you. But PassPack is doing things a bit differently...]]></description>
										<content:encoded><![CDATA[<p>On Saturday (OK, it was after midnight, so <em>technically</em> it was Sunday &#8212; but I tend to count time before I sleep as one day, time after I wake up in the morning as the next day &#8212; since I stay up past midnight often enough this just makes it easier) I <a href="http://www.sciencetext.com/packing-up-passwords.html" title="Significant Figures: Pack Up Your Passwords with Passpack">discovered</a> a service called <a href="http://www.passpack.com/" title="PassPack homepage">PassPack</a>. The basic premise is this: Create an account, store all your passwords in it, log back in as-needed to retrieve them. <em>&#8220;<strong>But wait!</strong>&#8220;</em> you might say, <em>&#8220;<strong>that&#8217;s stupid,</strong> why trust a random website to secure your passwords, just run one of the countless free Windows apps to store your info, and a lot of them will even automatically log you in via your web browser to websites.&#8221;</em> Normally, I&#8217;d agree with you. But PassPack is doing things a bit differently.</p>
<p>PassPack gives you a free account (did I mention it was free?). <strong>You create</strong> a user ID, a passphrase, and a Packing Key, all distinct. PassPack creates an encrypted container using your Packing Key, which is encrypted on your web browser using JavaScript and standards-based encryption. Only this encrypted &#8220;bundle,&#8221; without your Packing Key, is then stored on the PassPack servers. <strong>Want a password?</strong> Log in, enter your Packing Key if it&#8217;s timed out (5 minutes by default, up to 15 minutes), find the relevant account alphabetically, by tag, or search (all very Web 2.0 and AJAXy-smooth), and click it to&#8230;reveal your login name and a scrambled-looking (unreadable) password field. Click in this field and use the Ctrl+C keyboard shortcut to copy the password, and paste in to the site in question (<span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Uniform Resource Locator' );"><acronym class="uttInitialism">URL</acronym></span> also saved as an option to make it easy). This means the password never appears on the screen, it&#8217;s just stored directly in your clipboard, and you don&#8217;t have to retype it.</p>
<p>So you can copy and paste the password, so what? Well, they also have an auto-login <strong>bookmarklet</strong> you can save in your browser. Save the <span class="ubernym uttInitialism" onmouseover="domTT_activate(this, event, 'content', 'Uniform Resource Locator' );"><acronym class="uttInitialism">URL</acronym></span> of the login page along with the password at PassPack, and then just click the Open and Login link within PassPack to open the website in a new window. Then, click the &#8220;PasssPack It!&#8221; bookmarklet you previously set up. If the site has been &#8220;trained&#8221; before (even by another user), it fills in the username and password fields and clicks Login to get you into the site! If it&#8217;s not been trained for this site, you are walked through a very simple process of clicking the bookmarklet, clicking the username field, then the password field, then the Login button to train the system. So far out of about twenty sites, only two have had issues and not been trained successfully (a Plesk 7.5 dedicated server control panel and the <a href="http://www.zoho.com/" title="ZoHo homepage">ZoHo</a> group of sites, including the <a href="http://citpodcast.wiki.zoho.com/" title="Church IT Podcast ZoHo Wiki">Church IT Podcast Wiki</a>, were the malfunctioning sites, which have been reported to PassPack); these can still have their login information memorized like any other account, on- or off-line, they just won&#8217;t auto-login with the bookmarklet.</p>
<p>The folks at PassPack have implemented a few other nice features besides the slick and speedy interface and somewhat novel readable-only-by-you encryption scheme:</p>
<ul>
<li>They have a nice anti-phishing setup in place to prevent your PassPack credentials from being phished easily.</li>
<li>If you keep the site open, it functions offline and can be saved to their server the next time you connect (it also auto-saves if you don&#8217;t disable this option).</li>
<li>One-time keys are available for you to print out and carry with you. If using a public internet terminal, log in to PassPack with one of these one-time-use keys, and copy-and-paste the scrambled password you need. Then you never have to type a usable password into the insecure computer (for PassPack or the target site).</li>
<li>Export and Import of your data, in unencrypted format, if you wish to switch between other password-saving applications that also give you access to your data in text format.</li>
<li>Backup and Restore of your encrypted data, so you have a copy on your computer in addition to on their server (you choose whether the backup will use your regular Packing Key or a unique one).</li>
<li>They will generate a unique password for you to use when registering a new account somewhere, which they will of course remember for you.</li>
</ul>
<p>You may be wondering where this Packing Key thingy comes from. (I can hear you now, <em>&#8220;David, this thing is awesome, sign me up, but what the heck is a Packing Key anyway?!&#8221;</em>) PassPack has some of the <a href="http://passpack.wordpress.com/tag/help/" title="PassPack Help">best help I&#8217;ve ever read</a>, which is even available contextually when you click Help within the site. They handily have an <a href="http://passpack.wordpress.com/2006/12/14/password-security-packing-keys/" title="PassPack Blog: Password Security &amp; Packing Keys">answer about Packing Keys</a> and why they&#8217;re so handy. They do a much better job of explaining that and just about everything else about the service than I could, given that they wrote it and I&#8217;ve just used it for a day. But I&#8217;ve found it to be exciting, apparently secure, well-designed, and actually fun.</p>
<p>It should go without saying that besides the great interface, being able to access your passwords from any web browser very easily, along with the off-site storage, is probably the single biggest benefit to using PassPack over a Windows utility. Even the auto-login bookmarklet it cross-platform, cross-browser code and is a simple JavaScript bookmark &#8212; no need to install a Firefox Extension, IE Add-In, or any other code running on your machine outside of JavaScript.</p>
<p>I do see one potential downside: their <a href="https://www.passpack.com/info/legal/" title="PassPack Terms of Service">Terms of Service</a> contain several limitations (yes I read it! Well, the parts they highlighted at least&#8230;):</p>
<ol>
<li> You are not allowed to store information about financial accounts (banks, etc.), although this may be legal CYA considering I don&#8217;t know how they could possibly enforce this given they don&#8217;t have access to your data.</li>
<li>If you don&#8217;t login at least once every six months, your account is &#8220;inactive&#8221; and they delete everything.</li>
<li>You only get 32k of storage per account (they estimate 75-100 entries worth of entries), with no upgrades available yet. Accounts active before August 1st (missed it by less than two weeks, darn!) got 128k of storage (150-200 estimated entries).</li>
</ol>
<p>I&#8217;m sure <a href="http://www.passpack.com/" title="PassPack homepage">PassPack</a> intends on offering upgraded service with more storage at some point, but those three conditions may limit my use of their service, and possibly yours. I know I have 23 entries already saved, and I&#8217;ve barely scratched the surface with the quantity of online accounts I maintain. It&#8217;s at least worth a shot in my opinion. If you like the concept and want an alternative, <a href="http://www.clipperz.com/" title="Clipperz homepage">Clipperz</a> is worth a look, it&#8217;s also free and PassPack even has <a href="http://passpack.wordpress.com/2007/04/10/passpack-and-clipperz-the-difference/" title="PassPack Blog: PassPack and Clipperz: The Difference?">a comparison of their two services</a>. It doesn&#8217;t do the anti-phishing stuff like PassPack but it does have many other similar features, which I have not tested extensively. They also do not prohibit the storage of financial details and actually provide a template to hold credit card and bank account information. They also keep the data from leaving your browser unless it&#8217;s encrypted so they have no access when it&#8217;s on their servers.</p>]]></content:encoded>
					
					<wfw:commentRss>/2007/08/13/passpack-your-passwords-get-them-anywhere-securely-and-freely/feed/</wfw:commentRss>
			<slash:comments>4</slash:comments>
		
		
			</item>
	</channel>
</rss>
