Quick and easy way to cut your printer ink charges

By Sandra Clitter  |  2010/10/31 19:59 Posted in Tech Tips  |  Comments (0)

I don’t know about the rest of you, but I get really irked at the cost of ink for my inkjet printer. The printer cost me about $1.99 (well, not really, but after several years the cost of the printer is insignificant compared to the cost of the ink that I’ve fed it). The ink costs go on and on. I try to be aware of the environment and recycle all my printer cartridges (gotta love the Staples $3.00 rebate on all HP cartridges), but still, the cost burns.

I DID invest in a printer which has a different ink cartridge for blue, pink, yellow and black (not the names that the ink manufacturer uses, I think that ‘cyan’ replaces ‘blue’ and ‘magenta’ replaces ‘pink’, but you get the idea), which makes printing more efficient. The ‘all-in-one’ cartridges force you to throw them out (or recycle them) before all the ink is gone – you have to replace it when the first color runs out.

But I digress…that’s not what I wanted to talk about today! I came across this article http://tinyurl.com/ybms6tq (and others referencing the same change) which say that switching from Arial to Century Gothic as your default print (in Word and e-mail) will save roughly 30% (yes, THIRTY percent) on printing costs because the font is so much more ‘efficient’. Now, I have no idea what makes a font efficient or inefficient (aside from assuming that bold takes more ink than normal font), but I found this astounding. I believe them, but I’m still shocked.

So, I’ve gone into my default settings in both Word (<Format><Font>, change font, click ‘Default’, say ‘Yes’) and Outlook (<Tools><Options><Mail Format>, click ‘Font’, select new font, click ‘OK’, ‘Apply’ and ‘OK’), and adjusted my font to Century Gothic (these commands are for Office 2003). Hopefully, I’m helping the planet AND saving myself some money :-)!

Is your website safe from hackers? Probably not (but this isn’t meant to be a scary story)…

By Sandra Clitter  |  2010/10/30 22:29 Posted in Web Tips  |  Comments (0)

For the second time in less than a year, I found myself spending time this week dealing with a website that was ‘hijacked’ by someone with less than honorable intentions – it had been ‘hacked’.  What does that mean?  Do you need to worry about it?  How do you fix it if it happens?  While I’m not an expert on web-security, I now have a bit of experience (albeit hard-earned through the remediation of the impacted sites) and I figured that I’d share some of what I’ve learned.

If you have any form on the web that allows users to enter information, then press a ‘submit’ button, your site is probably vulnerable.  Why?  Well apparently, people with evil minds can paste code into the entry fields (e.g. Name, Address, e-mail or other fields), then activate the code by pressing the ‘submit’ button.  Rather than sending you, the owner of the website, an e-mail saying that So-and-So wants more information on your business (or whatever the ‘submit’ button was supposed to do), the submit button launches script that was injected, and “other” things happen.  Those “other” things can be almost anything from a nuisance to a serious breach.  Last year, on my own website, when the hacker hit the ‘submit’ button, they replaced my ‘normal’ home page with one which said “Beware of Palestein”.  Seriously.  They replace my home page with an ‘alternate’ page.  There were images of flames, etc., but the key point was that my site had been hijacked by the Palestinians (or someone claiming to be working on their behalf).

While putting up my original home page again was a snap, the more severe problem created by the ‘evil’ script was that search engines who probe for ‘evil’ sites found the ‘malware’ on my site and shut it down.  SHUT IT DOWN!!  Once I had remediated the problem, I had to resubmit the site (via a process offered on Google) as a ‘good’ site, explain to them what had happened and the steps I had taken to prevent the problem from occurring in the future, and wait for it to be ‘cleared’.  As soon as they cleared it, the ‘good’ site came back online.

The entire process (from when I found the sites had been compromised to when it was back up live) took several days in one case, and over a week in the other).  Bottom line:  You don’t want your site to be vulnerable to such attacks because you can’t afford for your website to go down.  Your website is the ‘front door’ to your business.

So, how do you prevent this from happening to your site?  There are a few simple steps to follow which should help.  That said, remember that hackers are forever working to ‘beat the code’, so they’ll keep trying…you just want to make it more difficult than it’s worth, or to be able to catch the breach before it becomes a problem.  Here are my experience-based recommendations:

1.      Make sure that the passwords used to publish your website to the internet (commonly called ‘FTP passwords’) are STRONG passwords.  We all know what those are – letters AND numbers, upper AND lower case, AND special characters.

2.      If you have a form with a ‘submit’ button, ensure that the person who developed the site employs data validation during the ‘submit form’ process.  What the heck do you mean by that?  Simply put, if someone enters their phone number, make sure that the phone number contains only numbers.  Similarly, a zip code should contain only numbers.  A name field should NOT contain special characters (other than perhaps a comma, apostrophe or period).  Typically, special characters are required to run ‘evil scripts’ (aka ‘malware’).  Even more wide-open fields (like ‘Comments’ fields) should prevent characters such as <,>,|,~, etc.  Most ‘comments’ can be submitted without the use of such characters, but malicious code almost requires that they be included to be effective.

3.      If you have a database that resides under your website, use similar logic as described above – strong passwords, and data validation every time that information is being written to the database.

4.      Visit your own website often (at least once a week) and click around.  Seriously…if you don’t check it out, you might not know if there has been a breach.  A breach will be OBVIOUS (the site works or it doesn’t).  If you have a web-browser OTHER than Internet Explorer (e.g. Firefox or Safari) use the NON-IE browser to check on your website.  Why?  Because internet Explorer continues to display compromised websites far longer than Firefox or Safari do.

Someone who doesn’t know you and hits a ‘roadblock’ while trying to view your site won’t know how to contact you to tell you there is a problem.  I don’t know how long my site was down – it took a friend going online trying to find my e-mail address – to call me and say ‘Did you know…’.  I’m embarrassed to say that my site could have been compromised a month earlier – I probably wouldn’t have known.

5.      Make sure that your website has been formally submitted to Google via ‘Site Verification’.  If you have done this, then Google will communicate with you in the event that they find a web ‘emergency’ on your site.  Trust me, Google may well know before you do if your site was hacked!  In the event of a breach, Google will send you an e-mail telling you if it finds that your site has become infected with malware – letting you know ASAP that you have an issue.

Google sends an e-mail to ALL of the following addresses – make sure that you have ‘real’ people receiving at least a few of these (you don’t need them all, 1-3 will do):  abuse@mydomain.com, admin@mydomain.com, administrator@mydomain.com, contact@mydomain.com, info@mydomain.com, postmaster@mydomain.com, support@mydomain.com, or webmaster@mydomain.com.  If possible, have different people receive the different addresses.  That way, if someone is out of the office, or doesn’t have access to e-mail for a while, the notice won’t be ‘lost’.  Additionally, make sure that ‘noreply@google.com’ is set as a trusted sender (you don’t want that e-mail to get caught in your spam filter).

6.      I’m going to state the obvious, but sometimes the obvious needs to be stated – make sure that you have a pristine copy of your website on your LOCAL computer/server.  Keep it safe and secure.  Refresh it after you make changes to the web, but do NOT use it as your main ‘publication’ folder.  Yes, this means having two copies of your site – one that is a working copy that you edit/publish from.  The other is a ‘pristine’ copy.  After you’ve published changes, when everything is working well, refresh the ‘pristine’ copy from the working copy.  Having this ‘pristine’ copy will save you from accidentally overwriting ‘clean’ pages with ones infected with malware.  If it happens (and there are a myriad of ways that it could happen which I won’t try to go into here), you have only to recover the affected pages from the ‘pristine’ copy.

If you implement all these things, does it mean that your site is ‘bulletproof’?  Nope.  Not a chance.  The hackers are working hard to breach the web wherever they can.  They find new ways every day.  Don’t get wound too tightly on the issue, but use common sense, to try to thwart the ‘bad guys’.  Remember, they’re likely to head to the easier sites to hack – they’re probably not going to invest extra effort trying to get around the roadblocks you’ve put up.  They’re going to go to a site that didn’t take the precautions that you took.  What’s the old adage – the thief is going to steal the car with the keys in it before they try to hot-wire a car.  Don’t leave the ‘keys’ in your website!

Finally, one of the first questions that I asked was ‘Why on earth would they care about SLC Consulting’?  It’s precisely BECAUSE it isn’t a ‘mainstream’ site that they chose it.  From my innocuous site (and the other one that I had to remediate this week fits that same description), the hackers could ‘jump off’ and go far and wide doing ‘bad’.  Then, those ‘bad things’ could, potentially, be traced back to the original site that was hacked.  It really is far easier to ‘take the keys’ and ‘lock the doors’ on the site beforehand.  While It is not a guarantee, it is hopefully, a deterrent.

What does your website look like on a Smartphone?

By Sandra Clitter  |  2010/10/30 22:24 Posted in Web Tips  |  Comments (0)

I’ve been working with a lot of people lately on websites – new websites, data-driven websites, new business websites, SEO recommendations, etc. As I’ve found myself in these discussions, I’ve found that there is one part of website discussions that does NOT come up as often as it should. That part is this question:

HOW DOES YOUR WEBSITE LOOK ON A SMARTPHONE?

This question is one that you MUST ask yourself these days. More and more people are getting Smartphones (iPhone, Droid, Blackberry, etc). In fact, its getting hard to get a plain ‘ole phone (I’ve heard more than one person complain bitterly that they just don’t want a camera or anything else on their cell phone, but can’t find a simple one). Why does that matter to you? Many websites appear just fine on a Smartphone, but certain technologies look odd, or don’t appear at all on a Smartphone (e.g. Flash).

When getting a website overhaul or new design, make sure that you view an early draft of the design on a Smartphone! If you don’t have a Smartphone, find someone who does, and ask them to pull up your site.  If it doesn’t look good, ask your web designer to tweak it to appear better, or have a alternate, ‘mobile’ site, designed with content only (alot of the pretty graphics are stripped out).  I’ve found – to my pleasant surprise – that the first alternative (tweaking the live site to appear a bit better on a Smartphone) is often totally acceptable.

More and more people get the majority of their information from their “phones” (are they really just ‘phones’ anymore?). You don’t want a potential client to bypass calling your company just because your website went haywire on their Smartphone and your competitor’s site looked good.

How to shorten a longgggg URL to a short one (for ease of sharing)?

By Sandra Clitter  |  2010/10/30 22:19 Posted in Tech Tips  |  Comments (0)

Recently, I’ve been asked how I’ve shortened some of the URL’s that appear in this discussion, so that they don’t go on for lines. In other words, how do I make them short and succinct, so that they are easy to share. In a word – easily (and free)!!! This is particularily important for some of the social media sites, and of course, Twitter.

There are two services – www.tinyurl.com and www.bit.ly (and I’m sure that there are others). Just enter the url on their site, and voila! A short, succinct URL.

I grabbed a random news piece (something from the UK Telegraph newspaper on the Iraq elections). This is the ‘raw’ URL which is quite unwieldy:

http://www.telegraph.co.uk/news/worldnews/middleeast/iraq/7393350/Iraq-Election-World-leaders-praise-bravery-of-Iraqi-voters-after-election.html

Entered into www.bit.ly, it becomes: http://bit.ly/b4yaS3

Entered into www.tinyurl.com it becomes: http://tinyurl.com/ygs5uns
TinyURL also allows you to custom alias your links (so that they become more ‘English’ and less ‘Computereze’). So, I also created this at TinyURL: http://tinyurl.com/telegraph-iraq

You can click on any of the four links (the original long one, and the three shorter ones), and get to the same article.

Happy URL sharing!!! No longer will your friends have to cut and paste a URL which is longer than a line to get a ‘real’ URL they can click.

Improve your presentation skills by learning from a master…

By Sandra Clitter  |  2010/10/30 22:15 Posted in General  |  Comments (0)

We’ve all been in the position of having to present information to a group of people – large or small. For some of us, that is a terrifying moment. Others thrive on it. I have a personal goal to become more comfortable speaking to larger groups, and have fun while doing it. I don’t rank public speaking above death on the ‘most scary’ chart, but I am definitely not in the ‘piece of cake’ end of the spectrum, either.

I have learned that speaking from your heart, using grammar and speech patterns that you would normally use, about things you truly understand, makes a huge difference to the success of the presentation. If I don’t know about something I spend time studying ‘the something’ before I worry about the talk. The talk will work better – hands down – if I’m comfortable with the topic.

This week I was lucky enough to see four great speakers at NAWBO’s Leadership Conference. While I was engaged by the talks, I also watched the way the presenters built their discussions. I watched their styles. Each woman had a very different approach. Some were more effective than others. Most were confident. Some spoke to me, personally, better than others. Why? Because I could relate to them.

There is no ‘right way’ or ‘wrong way’ to speak before a group, or give a presentation. There definitely are some don’ts, but we’ve heard them (or experienced them) before. Believing in focusing on the positive, I want to try to figure out some general ‘rules of thumb’ for the successful presenters…and find things that I can incorporate into my own style. Lo and behold, I ran across the following article/video about the Master Corporate Presenter, Steve Jobs. While one may be an Apple aficionado, or not, few can fault his ability to give a presentation. Check out the link below to get some good ideas on which to build your successful presentations.

http://tinyurl.com/yccteeu

Welcome to the SLC Consulting blog!!

By Sandra Clitter  |  2010/10/29 01:15 Posted in General  |  Comments (2)

Welcome to the SLC Consulting blog!!!  Here we hope to share helpful tips and tricks that we’ve picked up along the way.  I heard a wonderful description the other day of the way different (ahem!) ages among us deal with technology.

During the 20th century (yes, way back there), many people crossed the oceans to move to the United States.  For many of these immigrants, English was not their native language.  They spoke the language with an immigrant ‘flair’.  Fast forward to the 21st century.  Many of us are not native to the Technology language.  Kids today are native to it.  They are brought up with a joystick or a cell phone (or both) in their hands.

Now is the time to take a deep breath and relax.  Like many of you, I am not a technology native…far from it.  Technology is not intuitive to me.  That said, I have realized that fighting it tooth and nail isn’t going to get me anywhere, and that there is alot that technology can do for me.  So, I work to use it where it makes sense, ignore it where I feel that there is no benefit and I have no interest (beyond an occasional game of Solitaire on my computer, I do NOT play computer games – never have, don’t want to, don’t need to!).  There ARE times where I have no particular interest in the technology, but there IS a benefit, so I just suck it up, and make peace with it.

I guess that’s the bottom line:  Make peace with your technology…it CAN do so much for you.  It CAN make your life alot easier [when its not making it alot harder :-)].  It can open up the world to you.

I hope that we’ll be able to help you along the way…come and make peace with your technology…take a deep breath…you’re probably a technology immigrant – just like me.  I’ve just been lucky enough to get a pretty good hold on the language along the way.