StartPad can help you purchase Pre-paid debit cards in exchange for BitCoin.  

Fees: 10% of total value (minimum $10 fee per order).

Your prepaid card can be used like any other VISA card for US-only purchases.  There are no transaction charges or interest on this card.  After 12-months of inactivity, VISA will charge $2.50 against the card balance each month.  You will be able to register your card online to verify the balance and history of transactions.  A lost card is replaceable for a $15 fee.

How we compute the loaded value of your new debit card.

1. When we receive your BitCoin payment, we convert it to $ using the current market price on the MtGox.com web site.
2. We deduct our fee (10% or $10, whichever is higher) and round to the nearest whole dollar amount.
3. If the total amount is over $500, we will divide the total between multiple gift cards.
4. We will mail your cards via 1st class mail (insured for up to $400).

Order your Debit Card Now

Gawker, a large blogging network, recently had a security breakin and over 1/2 million users passwords were compromised.  If you're like me, you re-use the same password on multitple different sites.  That would give hackers access to multiple web sites by getting one password (Facebook, Twitter, your bank, Amazon, etc.).

While I used a "more secure" password for some sites, I did not have a systematic way of dealing with managing a unique password on multiple systems.

So, last night, I finally bit the bullet and installed a (free) password manager - Last Pass.  Last Pass will do two things for you.  First, it created a cloud-based secure storage location for all of your passwords.  They are available from any web browser.  Second, you can install a browser plugin that will auto-fill your username and password into any site you use regularly.

So, now, I have the freedom to create a unique password on every web site I use, AND I can choose something that is much harder to guess - like a string of 12 randomly chosen letters and digits.  Since my password is not in any dictionary, the only way to steal it from a web site (that stores passwords as cryptographically secure hashes), is to to brute force guess all possble 12 character strings.  That's over 60 bits of random information - or over a quintillion (10^18th) combinations.

It feels a little odd not even knowing my passwords anymore (I just have to remember a single secure password to log in to the Last Pass site).  But I feel much better knowing that my data is not vulnerable to the kind of security breach that happened at Gawker this week.

The only downside is that I now have a single point of failure in LastPass.  If they loose their database, I could loose my passwords I haven't backed up locally.  And if THEY have a security breach, I could loose all my account information to hackers.  But I would rather put my faith in one company, dedicated to protecting security, than to distribute that obligation among lots of individual sites around the web.  Since my Last Pass password is also a random string, it's very difficult to decode on a trial and error basis.  I believe Last Pass also goes out of their way to use an encryption algorithm that is intentially slow.  Making a brute force attack that much more difficult.

If all sites supported a distributed authentication system, like Open ID, or oAuth, it would be even more convenient to use just a single authentication provide you trust, to gain access to every service you use.

I've spent the last two weeks taking a segue to learn how to develop applications for Android phones.  I just gave a presentation last night to the Seattle Google Technology User's Group.  If you're interested in getting started with Android, I pass on some general tips for the beginning developer.

My friends know that I have an interest in antique computing devices, and in particular, the German Enigma machine.  I thought it would be cool to make a very realistic simulation of the Enigma that I could run on my phone.  After two weeks of work, I finally published my Pocket Enigma Machine into the Android market - and sold 6 copies in the first 12 hours!

We got an envelope that said "Official Document, 2010 Census".  But on the inside, it's a "survey", where you eventually see by question 5 that this is NOT an official US census, but rather a fund-raising letter from the Republican National Committee.  WTF?

This IS a US Census year, so it's easy to see why people would be confused.  It's just a slimy attempt to deceive recipients into opening a piece of junk mail they would otherwise discard.  Is this legal?  It's certainly unethical.  Do people respect organizations that walk the fine line between legality and criminality by playing these dirty tricks?

Maybe I've just become overly sensitive to unethical behavior, but I keep running into examples of bad-behaving companies and organizations.  I find it hard to understand why people behave this way; it certainly does not enhance their reputation and respectability.

I've twice reported companies to the WA State Atty General for unethical business practices in the last year (Microsoft, for retaining my credit card against my will, and SquareSpace for retaining my subscription payment after the point I determined that their service was defective for me).  This RNC letter may compel me to send a 3rd complaint.

Earning money is hard - but do businesses really have to resort to tricking their customers to make it?  I would love to see stronger laws in place that would penalize companies for acting badly; especially when there is such a big divide between the power of the company vs. the power of the individual.

Here's are my biggest pet peeves of bad behavior:

1. Making services more difficult to cancel than they are to purchase.  E.g., not allowing consumers to cancel a service using the same mode as they purchased the service (I can sign up for Vonage VOIP phone quickly online, yet I have to wait on hold on the phone to cancel the service).
2. Not refunding the (unused) portion of a subscription payment if the customer finds the product or service defective to their needs.
3. Retaining customer (billing) information against the wishes of the customer.
4. Sending deceptive communications in order to trick consumers into reading email or mail (actually there ARE laws against this - but companies walk the fine line of being strictly legal, but still unethical).
5. Repeatedly charging consumers for services they don't want or are no longer using.