Archive for the 'Uncategorized' Category

Why the snoopers charter is ultimately unworkable.

Monday, July 13th, 2015

I’m going to suggest that there’s one very obvious idea that this whole ‘snoopers charter’ has overlooked. “How will this affect secure business communications”. Applications such as WhatsApp use an protocol known as ‘jabber’ (actually, that app is based on a platform called MongooseIM, which is a commercial product based on the open-source ejabberd). Other similar products would be HipChat and Slack. Telegram also, but that’s written by some Ukrainians who designed it to be uncrackable.

These aren’t just used for personal communications, but intra and inter-business communications for teams and enterprises. If it were pointed out to business leaders that for ‘the safety of the country’ that they could no longer use these systems securely, then there would be a lot more of an outcry – from those people the government is claiming to help and support to ‘get Britain back on its feet’.

Because of course, which business would want to use a communications system that had back-doors in it (or be prevented from using one that doesn’t), allowing their important communications to be monitored, either by the government, hackers or other peoples with nefarious purposes?.. If businesses cannot have secure communications to keep their industry secrets, or even the governments secrets itself with more reliance on its IT infrastructure, then how do they expect to keep all those ‘dodgy deals’ out of the public eye?.. After all, any ‘official back door’ is only an invitation or challenge for that to be hacked. ..but also if they were to claim that business were exempt, then all you would have to do would be to register yourself as a limited company and claim exemption for yourself… Theresa May, like the rest of this conservative government, is an idiot.

Why XBMC rocks! (via postie)

Wednesday, December 29th, 2010

Bookmark this category
Xbmc is, at least as I’m concerned, the only media centre choice for
the discerning geek. Recently I upgraded my ‘cube’ machine and patched
appletv to the latest 10.0 version ‘Dharma’. The biggest difference,
that I had heard rumours of for a while, is that the OSX/appletv
verfsion how support hardware-accellerated x264 decoding! So now, all
those HD TV episodes and DVD/Blu-Ray rips I have (ok,up to 720p – I’m
not expecting miracles!) actually play on what is essentially a 1GHz
P3! There is still an issue where 5.1 ac3 audio doesn’t appear/downmix
but that could still be due to my surround decoder (still have tests to
run for that). Additionally, I recently purchsed a Hauppauge WinTV
Nova-TD-500 DVB card to turn my ‘cube’ machine into a freeview
recorder, along the lines of my existing Humax 9200 boxes. The bottle
that xbmc brings to this party is that of the ‘Video add-on’ known as
MythBox that is included in the default add-on repository. This extends
the familiar xbmc interface to be a front-end for that other stalwart
linux-based media centre, MythTV.

After the relatively painless configuration of MythTV (add card as
source, scan for channels, save channel names), the most techy change
was to allow access to the mythtv mysql database from the LAN ip and
local network for other distributed front-ends.

Then configure the locally installed MythBox to talk to the same
database and use the same recordings directory – neccessary for the two
componenets to talk to each other. it should be noted here that this
particular machine started as an xbmc-live 9.04 machine and has now
been upgraded to 10.10 Maverick and uses the xbmc ppa. i did try adding
the mythbuntu respositories to get the ‘latest’ mythtv packages due to
the ‘other’ frontend running on the appletv in my bedroom (it’s small
and quiet!) due to the protocol version mismatch introduced by the
mythtv project (jumping from 56 to 23056!) Which stopped the streaming
of live tv, but that caused a bit of a nightmare with mythtv expecting
a libmyth verfsion it didn’t have, so I reverted to the 10.10 versions
and all was good.

The other major issue was that the supplied Hauppauge remote was either
not getting its buton press notifications through to xbmc (so some,
like the rather important ‘OK’ button didn’t work) or xbmc was receving
the same input twice, resulting in equally unusable bouble-button
presses. After spending some hours (well, an afternoon) on this,
thinking that it was due to an interaction between the kernel ir
drivers being in twice + lirc input and working out how to disable the
ir remote as an xinput keyboard device all without a workable result.
What turned out to be the somewhat simpler solution was ‘sudo
dpkg-reconfigure lirc’, selecting thne wintv nova remote as a device.
After that, the xbmc debug log only reportged a single button-press per
button, meaning the other minor change was in
~xbmc/.xbmc/userdata/Lircmap.xml to tell that about ‘left’ being
‘ArrowLeft’ frrom the remote. After these happy events, all appeared to
be working so I took the machine back to its primary location in thne
living room for a demonstration. All the (configured) remote buttons
work, it’s possible to record programmes from the DTV tuner/s and
playback those recordings. Even watching live tv works! I was a little
puzzled for a few seconds as to why some random thing was coming on
when I tried to record an upcoming programme, then realised what I was
seeing was the interlude before the expected programme! Next step is to
get the extra remote buttons to do something useful, like have the
‘guide’ button bring up the mythbox tv guide… i haven’t yet had
another chance to see if the ‘watching live tv’ from another room
actually works, yet the fact I can schedule programmmes to record and
later play them back is probably good enough for the moment. I may even
end up ebay’ing at least one of my humax boxes! ;)

Legacy in 3D @ the Imax (via postie)

Sunday, December 19th, 2010

Bookmark this category
I’d read a couple of reviews of the film, notably from Wired and Total Film, who saw this long-awaited sequel for the sequel to the original ground-breaking film as what it was – more and better, orat least as as good from what I remember having my father take me to see the original as a small boy of 10… I’ve read that some reviews criticised the acting or choice of actors, yet that I would answer “you’re missing the point” and “maybe the film isn’t for middle-aged types without imagination” (especially the guy from the London Evening Standard!).

For me, this was a film about possibilities and forgiveness. The possibilities about digital life from digital DNA becoming self-aware and how we can assume the worst about someone when we don’t have all the information about their situation, then come to understand why they did what they did when we do. The digital recreation of the younger Jeff Bridges is really impressive, looking and moving as an almost perfect simulacra, which obviously is, but certainly could be extended to reproduce famous actgors of bygone eras…

The graphics, from the Disney towers of light in the opening titles to the light-fighters (not just cycles or cars!) had me, at times, almost in tears of wonderment, although some of that was down to the 3D (amazing for the cityscapes) and some due to the space-sized (it’s big. Really, really big) screen of the Imax. We (father, g/f & I) were in row G, so that meant our entire field-of-view was the screen…

I should really have booked the tickets as soon as I got the email of when they were to be on sale, as the announcement of this film was indeed why I ‘just had to’ sign myself up for BFI membership to be able to get members advance tickets. So I would have preferred to have been a little further back, yet being where we were meant it was a ‘complete’ visual experience. What it does mean though, is that from noticing all the little details in the corners of the screen or backgrounds I will need to see it again, in at least full HD. Part of me was expecting all of the graphics to be full-depth 3D, given the generated environment, so there was a small disappointment there, but only a small one. I’ve decided I want one of the costumes, or at least a replica, so I’ll be saving the pennies for if Propworks get their act together for that!Oh, and probably also making sure I can be in shape for it! ;)

As for the story and the acting, for me it was certainly a father/son story about understanding responsibilities, although the g/f suggested religious overtones – the god-like powers of discovering/creating/overseeing what is essentially a new universe – which is certainly an equally valid viewpoint. For the acting, Jeff Bridges was great, as the Zen-hippy beardy father. To be honest, although I wouldn’t personally say there was any bad acting, as part of the point is that most of the film takes place in a ‘simulated world’! If you accept that, then you will more easily understand the film for what it is meant to be. geek bits: Inevitably the sequel is compared to the original an I would say it is not just a worthy successor, but expands and goes beyond the ground-breaking-ness of the original.

The subtle geek-details that not everyone will get (like having Sam type actual unix commands when logging into his fathers dusty terminal) made me smile with knowing that there were details for people like me. I know there are more, but that’s why I know I need to see the film again – the Imax can be a little overwhelming that way. Overall, it’s escapism that reminds me of being smaller/younger – the wonder of seeing the original on the equally massive screen of the original Leicester Square odeon (thanks Dad! x ).

If you don’t expect too much from the film, it will certainly deliver. If you have no expectations, then prepare to be blown away and left as speechless as I was (although some of that was indeed down to the Imax/3D combination). Awesome. +10.

Easyauto-mount vhd in Windows 7 (via postie)

Thursday, November 11th, 2010

Bookmark this category
With my nice new shiny shiny laptop, because I wanted to multiboot it I’d partitoned the drive with the OSX disk utility. However, while Windows7 will indeed recognise a (secondary) GPT partitoned disk, it appears to require a hybrid MBR/GPT for installing, which means in Windows-land you’re pretty-much limited to the 4 primary partitions for OS installs – although I have read of a special version ofgptsync that allows you to select any 4 GPT partitions for your MBR. Previously on my Toshiba tablet I’d kept separate MBR extended partitons for my DJ/VJ data & extra storage. On the new Vaio the easiest partitoning scheme has turned out to be have a really big Windows partiton, with OSX before it and Linux after (partition #1 is the hidden EFI that disk utility creates). The first thing I tried was the old DOS command of subst, to mount a directory as a drive, to keep the disk tidy and also ease the transfer of the video/audio apps which expect the VJ files on D:, music on E: & storage on F:. However this could result in a big live recording filling up the system drive so I decided to use vhd’s to keep my VJ, DJ & other data contiguous and separate. Then I discovered that creating the virtual disks doesn’t keep the mounting of them persistent over reboots. A quick google found a couple of methods for auto-mounting them, but these required the use of powershell scripts and an old-school batch file to call that. But there should be a way that doesn’t require writing anytghing! (Is what I thought to myself) and there is. The ‘gizmo’ utilities allow the mounting of a wide range of virtual disks, including our friend the Microsoft VHD file. What is more, there’s a checkbox on the mounting dialog that says ‘remount at boot’. Job done! ;) It does indeed do what it says, although it does take a few more seconds aftger booting for the Virtual drives to show up.

Why I was right all along… (via postie)

Monday, June 21st, 2010

Bookmark this category
Over the last couple of weeks I’ve had a couple of job-search results that have looked rather familiar. These being with a particular spec from a particular agency who were the only agency to deal with this particular company, which is the same as one I interviewed for a few weeks ago, yet didn’t get due to a disagreement in methodology between myself and their Polish ‘Technical Lead’. Now, over the last weekend, I was having a chat with a couple of the tech guys I know who just happen to work at the hosting centre (‘The Bunker’) at which this company that I’ve ended up not working for have their servers hosted. Now with these guys being proper techies who know what they’re doing, they agreed with my points of why the Eastern european ‘Technical Lead’ was in fact mistaken, with one of them mentioning that the TL is somewhat difficult to deal with and the other suggesting that while our friend from the former eastern bloc may have adequate unix skillz, their methods (like one changing firewall policies without notification because he didn’t like them) may leave something to be desired. So, what were these disagreements? and why were they mistaken? * “CentOS is the only operating system of choice because it has a 6-year support life”. You see, I’d been asked which linux distro I preferred and I said I preferred (personally) Debian, for the way it is engineered. For me, the RedHat-based distros, although they no longer suffer from ‘dependency hell’ with the addition of yum and their own repositories, still feel somewhat clunky to me. Also that RedHat encourage the use of their own command-line tools for systems management, whereas the Debian-based distros encourage you to edit config files yourself, thereby giving you the experience of how components are configured and where you should check for errors if some service or component is misbehaving (as opposed to turning something on or off with a curses-based interface). Also, given that the service life on most new hardware is 3 years, does having an operating system that may be supported for twice that really make that much difference? Ubuntu has 4 years LTS which for me is fine enough. Now, although personally I may prefer Debian/Ubuntu, professionally I would have to say I prefer Solaris, mainly for ZFS and Zones/Containers. I like that it’s solid, proven and well supported. Which brings me on to point 2.

* “Every system should always have the latest updates”. Well yes, in theory that may sound like a perfectly fine statement, yet in reality, for servers you may not want do that. So during the second hour-long technical test for this job-that-I-didn’t-get I wanted to look up an ssh config parameter, so I logged into a machine that I have which happens to still be running Debian Sarge. Now, some of you may recoil in horror at this, with it being 2 iterations behind current and being relegated to the Debian archive. Yet some of you will understand how sometimes there are situations that preclude the updating of what may be a legacy system due to any number of factors including needing particular versions of libraries, usage of the system which makes it difficult to find a time to upgrade it (say if 4 different teams are required to agree on a time but never can), or needing to plan a migration strategy as upgrading remotely is too much of a risk). In fact the Sun IPX’s that I rescued from my last employer (wanted them for a project), were still running Solaris 2.4 at time of their redundancy, which was only around Spring 2009. So the age of a system is not necessarily related to its effectiveness or validity of usage. So from my conversation of last weekend (as long as I remembered this right!) the guys at ‘The Bunker’ have a policy where you only update a system if it has been shown to resolve a known vulnerability and gets signed off (which I’m taking to mean had already been tested elsewhere!). Which for me, being someone who prefers a system to be as stable as possible, makes perfect sense – “If it’s a live system and ain’t broke, then don’t risk f*cking it up!”, unless you can justify the update. Which leaves me with one other point:

* “Every machine should have its own firewall” Now in isolation, this may seem a perfectly acceptable statement. Which it can be, as long as you have only (eg) 6 machines. Once you get to 60 or 600, then this idea collapses, as do you really want to have to do that much management of a system?.. For me, the correct statement would be “Any network or sufficient size should have its firewalls (as in a failover pair) at the edge of the network where they should be”, accompanied by “Treat any small network as if it were larger, that way you’ve already prepared for it to be scalable”. So what this shows me, is that our ‘friendly’ Technical Lead has obviously never managed a larger system. Otherwise he would think differently.

What I find most depressing is that these people who might be very good at what they do (within a very restrictive set of parameters) get to be in positions of influence because they are able to shout loudly that you should listen to them because they’re the best ever whatever and they believe themselves to be right as they’ve never been wrong. Yet those above are happy to leave them to it because of that self-belief and ability to justify their decisions, however ‘wrong’ they may be in the bigger picture. For someone like me who has, well, more years of experience than I would sometimes like to be reminded of, I know I have the knowledge and wisdom to know not just when to use a particular operating system of service for a particular application, but when NOT to. Which is experience that our friends from the east (be that Europe or especially India) generally don’t have… So while I’m sitting there in some recent interviews being told some complete nonsense, it is somewhat difficult to not speak up and tell this other person, “Hold on, if you stop and look at whatever-this-is from a slightly wider perspective (that you’d only get from more experience), you’d understand how you are in fact talking complete bollocks”, when this other person is the one making the decision…

HTC’s (my) Hero (via postie)

Monday, March 22nd, 2010

Bookmark this category
So this morning arrived my ‘free’ upgrade’ from Orange of a HTC Hero. Of the phones they had, that weren’t an iPhone, this seemed the best bet as it’s running Android. What made the decision for me was that it’s possible to root it and use it as wf-fi/bluetooth to 3G access point. Which it now does. The firmware flashing process wasn’t that difficult, as I’d prepared for it over the weekend. There were 2 methods suggested and the one that worked was installing an earlier Orange firmware, a package from the SD card, then installing then custom loader then the custom ‘rom’ (which appears to be a custom android install + uncrippled bluetooth stack.

What is best of all is that even though it has a wierd shaped usb connector, it does actually take a standard mini-usb cable and will charge from that, so *not* requiring a custom cable or charger, which is great! ;) The interface is actually really nice (the HTC flow(?) on top of standard android) and sync’ed easily with my google contacts. My previous device is a Palm Centro, although I was waiting for the n900 as that can run the Garnet PalmOS emulator, then again the Hero was free and gtives me a 3G capable sim for nowt. Getting the contacts from the Centro to the Hero (can you hear me say ‘o’!? ;o) ) was actually remarkably easy. Open the contact list on the Palm device, send group (which means send all) to another bluetooth device (which was my HacBook Mini9) as a vcf file, then import those into google mail (‘My Contacts’, not ‘all’) and lo and behold, they all sync’ed!

What is taking some getting used to is the on-screen typing, as the Centro and my n810 both have physical keyboards. Turning on the haptic response has helped somewhat, but I can still see some really bad drunken texting appearing at some point in the future! ;) However, in its favour it does have auto-rotate input screens, so typing in landscape mode is possible and a bit easier. So far I’ve downloaded Opera and a video player from the ‘Android Market’ (free apps) and of course with the custom firmware I can install them to the card too. All in all, it’s actually a rather nice device and I look forward to finding out what it can do. Oh, it also has a ‘standard’ headphone jack so doesn’t require silly adaptors unlike that other popular smartphone from the fruit company. So, so far all pluses!

More to come soon!

The User Profile Service failed the logon. User profile cannot be loaded. (via postie)

Monday, January 4th, 2010

Bookmark this category
After 6-odd months of running Win7 on my main laptop without incident, I tried starting it up a few days ago and had the above error. Having fixed it quite easily, i thought it was worth breaking the blogging silence with it…

How it started was that neither of the windows installs (XP Tablet or 7) would start up, in fact BSOD with some stop error, so I booted into Ubuntu and ran ntfsfix on the appropriate partitions. That got the XP install running, yet the Win7 install then gave me the above error. Now this is my ‘going out’ machine, so it doesn’t have that much installed in the performance install and there’s only me that uses it. It’s also set to auto-login on the 7 install. There’s quite a bit of info about fixing this error on Vista & &, yet this is what got mine working.

Restart into safe mode. Disabled UAC (might not be needed). ran regedit. Clicked through to: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NT CurrentVersionProfileList Found my profile (the only non-system one with a long SID) Amended values: State to 0 (from 100h) RefCount to 0 (from 1h) (both zeroes) Rebooted and back into normal usage. Reset UAC to what it was. Ran backup with system image just in case!

So what might be a good plan would be to find out what those values actually mean…

The final non-solution

Friday, May 1st, 2009

So…
Just had a chat with the union rep about the bullying stuff that went
on at work.
It would appear that me actually leaving the premises, for whatever
reason, wasn’t such a good idea.
According to somewhere in the staff handbook, there are procedures in
place, such as contacting higher management or going to see occupational
health, that are in place to deal with such occurences of bullying,
victimisation and generally being very upset.
So me feeling like that walking out was the only option, would be
countered by the organisation saying that there are procedures in place
to deal with all this but that I didn’t use them.
It does seem in-a-way reasonable, yet practically, this is a lot like
“Beware of the Jaguar” (Cabinet, Basement, Hitchhikers) – or not knowing
the procedures when they’re available to you in the staff handbook is no
excuse for “leaving the building without permission”, whatever the
reason…
To be honest, there are still nights when I have trouble sleeping
because of this and it does still occasionally affect my work, so I
should find out what other options for help there may be.
In general though, the situation is better and there’s only been one
time when “Mr Angry” has reared his head and tried to be intimidating
and make me guess what he actually wants or is in fact talking about.
The up side of that is he’s going to be replaced with the impending
outsourcing – come 1st June…

I however, am exploring other options. Assuming I can find someone who has a clue.

More updates soon…

Sunday, April 26th, 2009

Obviously there hasn’t been much activity on here of late.
Even though I have had a lot to write about – my Palm Centro is full of things that I have listed out to make entries for…

Make it stop!

Friday, September 19th, 2008

I’ve had ABBA Gold on rotation in my head for almost two weeks now…
Either there’s something going on that I need to know from the music or I may be going a bit loopy.
What I have discovered is that if you actually *listen* to the tunes, they are actually quite depressing. Songs about ending/ended relationships or young women that shouldn’t be out dancing.
So maybe it’s that there is still hope for my ‘pop’ tunes about lost love and things that  didn’t quite work out.
Which is in itself quite heartening. :o )