How to setup your Wii to act as a media server : SMB setup details
(tags: smb files wii video mplayer networking)MPlayer CE - WiiBrew : 'a homebrew media player for the Nintendo Wii. It was initially created as a fork of Team Twiizers' port of MPlayer, combining elements of MPlayerWii, GeeXboX and other great homebrew contributions.' recommended by conoro
(tags: via:conoro mplayer video wii homebrew movies)Evernote export script : this promises to make Evernote a good deal more usable for me, if it works
(tags: evernote export data silos documents storage)Dropbox Startup Lessons Learned [PDF] : good set of slides from Dropbox. traditional marketing and AdWords failed utterly; word-of-mouth (and a great product) was how they've succeeded
(tags: business dropbox lessons marketing pr presentation startup viral)spamtune.pl : 'a Perl script that generates an OpenOffice.org spreadsheet which loads up SpamAssassin configuration and known spam and ham messages. Once loaded, you can tweak individual SpamAssassin scores in the spreadsheet itself and see their effect on spam/ham classification in real-time. The script also shows you the number of false positives and negatives for a set of scores in real-time.' by Raj Mathur
(tags: spamtune spamassassin rules scores optimization tweaking openoffice)GameStation now legally owns the souls of thousands of online shoppers, thanks to unnoticed T&C tweak : "By placing an order via this Web site on the first day of the fourth month of the year 2010 Anno Domini, you agree to grant Us a non- transferable option to claim, for now and for ever more, your immortal soul. Should We wish to exercise this option, you agree to surrender your immortal soul, and any claim you may have on it, within 5 (five) working days of receiving written notification from gamestation.co.uk or one of its duly authorised minions."
(tags: funny eula terms-and-conditions legal clickwrap via:risks gamestation shopping)
Category: Uncategorized
Nick Clegg - Conservapedia : Conservapedia gold. "His father was half-English, half-Russian. His mother was dutch. He speaks English, Dutch, French, German and Spanish. His wife is Roman Catholic. Aged sixteen, Clegg was arrested in Germany and charged with arson. He and his friends destroyed a priceless collection of rare cacti while he was drunk."
(tags: nick-clegg funny conservapedia wingnuts right-wing teabaggers lib-dems uk politics)
Rhizome | Soviet Sci-Fi Animation in the 1980's : Soviet animators' cartoons based on classic sci-fi
(tags: movie scifi video russia via:boingboing)NoSQL at Twitter (NoSQL EU 2010) [PDF] : specifically, Hadoop and Pig for log/metrics analytics, Cassandra going forward; great preso, lots of detail and code examples. also, impressive number-crunching going on at Twitter
(tags: twitter analytics cassandra databases hadoop pdf logs metrics number-crunching nosql pig presentation slides scribe)
RFID "zapper" constructed from disposable camera : also, an RFID "jammer" to block reads of RFID chips within range. related: the Israeli govt is considering voting cards with RFID chips, apparently
(tags: rfid via:risks security hardware rf radio jamming israel)computing a rank by combining user rankings with a Dirichlet distribution : interesting
(tags: ranking algorithms recommendations datamining dirichlet scoring rank)Kohsuke "Hudson" Kawaguchi leaving Sun : and starting a new company around Hudson
(tags: hudson ci sun oracle acquisitions startups build)GetitKeepit.com : free e-bill aggregation/archival service from an Irish company, for Irish users (right now at least). looks very useful
(tags: bills aggregator ireland webapps via:jdrumgoole archiving)
Major labels go bragh? Irish judge allows 3 strikes : 'The justice refers to legal alternatives to illicit downloading, such as "an I-player system," when he's writing about the BBC's well-known iPlayer catch-up service [which is not available here]. He refers numerous times in the order to "DetectNet," a company which can find P2P infringers, when he really means DtecNet. A strong grasp of the technical details won't be found in this ruling'
(tags: ars-technica ireland dtecnet legal law three-strikes eircom filesharing)Lonely Planet offers free iPhone guides to stranded travelers : free (excellent) city guide apps for Amsterdam, Barcelona, Berlin, Budapest, Copenhagen, Istanbul, London, Moscow, Munich, Paris, Rome, Stockholm, and Vienna until April 22nd; normally $10-$15!
(tags: lonely-planet free iphone apps travel europe cities)
Mr. Justice Peter Charleton, in the course of his judgement on EMI Records & Ors -v- Eircom Ltd is quoted as having said the following:
' There is fundamental right to copyright in Irish Law. This has existed as part of Irish legal tradition since the time of Saint Colmcille. He is often quoted for his aphorism: le gach bó a buinín agus le gach leabhar a chóip (to each cow its calf and to every book its copy).'
As many have already noted, Colmcille didn't say that at all; his opponent did. If anything, Colmcille invented copyleft.
Manus O’Donnell's account:
Do inneis Finden a sceila art us don righ, ass ed adubhairt ris: “Do scrib C.C. mo leabhur gan fhis damh fen,”ar se, “aderim corub lim fen mac mo leabhur.”
“Aderim-se,” ar C.C., “nach mesde lebhur Findein ar scrib me ass, nach coir na neiche diadha do bi sa lebhur ud do muchadh no a bacudh dim fein no do duine eli a scribhadh no a leghadh no a siludh fan a cinedachaib; fos aderim ma do bi tarba dam-sa ina scribhadh, corb ail lium a chur a tarba do no poiplechaibh, gan dighbail Fhindein no a lebhair do techt ass, cor cedaigthe dam a scribudh.”
Is ansin ruc Diarmaid an breth oirrdearc .i. “le gach boin a boinin” .i. laugh “le gach lebhur a leabrán.”
Or, translated to English by A. O’ Kelleher and G. Schoepperle:
Finnen first told [High King Diarmaid] his story and he said “Colmcille hath copied my book without my knowing,” saith he “and I contend that the son of the book belongs to me.”
“I contend,” saith Colmcille, “that the book of Finnen is none the worse for my copying it, and it is not right that the divine words in that book should perish, or that I or any other should be hindered from writing them or reading them or spreading them among the tribes. And further I declare that it was right for me to copy it, seeing there was profit to me from doing in this wise, and seeing it was my desire to give the profit thereof to all peoples, with no harm therefore to Finnen or his book.”
Then it was that Diarmaid gave the famous judgement: “To every cow her young cow, that is, her calf, and to every book its transcript. And therefore to Finnen belongeth the book thou hast written, O Colmcille.”
Soon thereafter, of course, 3000 died in the Battle of the Book at Cooldrumman, bringing a rather literal meaning to the modern term "copyfight". 'Colmcille and the Battle of the Book: Technology, Law and Access to Knowledge in 6th Century Ireland' is recommended for more background.
A Clatter of the Law: 'Graduated Response' now de facto law in Ireland : excellent post on the 'three strikes' judgement
(tags: law ireland eircom mp3 filesharing copyright)
Digital Rights Ireland blog post on the secret internet-filtering plans : 'it becomes clear that for some time now the Department of Justice has been proposing the introduction of internet blocking in Ireland – and has been doing this under the radar, without any public consultation or legislative approval. Indeed, it is clear from the list that the Department is not planning on introducing legislation but instead intends to introduce this new form of censorship without any legal basis, based on the now discredited Norwegian and Danish models.' This is very bad news indeed
(tags: ireland censorship filtering internet great-firewall dri politics freedom)Irish Dept of Justice secretly plotting a China-style "Great Firewall" : according to DRI's TJ McIntyre via Karlin Lillington. “Blocking involves censorship taken on no legal basis. There is no judge, no jury and no right to be heard if you are blocked,” says McIntyre. “The chances are it also will be used in unaccountable ways by unaccountable organisations.”
(tags: blocking censorship government internet ireland dri filtering great-firewall)ClamAV and The Case of The Missing Mail - Return Path Blog : version 0.94.x got end-of-lifed a year after the release of .95, to fix a bug that would increase bandwidth consumption on their mirrors. To mandate upgrades, the devs sent a kill-switch trigger to .94 installations in the field. chaos ensues, unsurprisingly
(tags: clamav filtering mail ouch upgrades end-of-life support open-source sourcefire return-path)
BlueRunner: Email in the Cloud with Cassandra [PDF] : interesting prez from some IBM researchers on using Cassandra as a mail store, via Jeremy
(tags: via:jzawodny mail cassandra database data ibm nosql performance presentation pdf)N7 Armour Stripe Hoody : too nerdy? it seems possible
(tags: n7 armour mass-effect geek clothing games)
Authentic Carnitas and Three Pounds of Lard : fatty pork deep fried in lard. oh yeah. thanks Ben!
(tags: via:ben pork carnitas mexican recipes food yum lard)Boojum Fresh Mexican Food : new lunch spot serving Mexican food in Dublin. hopefully good, haven't tried it yet, menu looks promising though
(tags: mexican food dublin ireland lunch meals)Mirror Man of Los Angeles : whoa, amazing street performer outfit
(tags: street-art performance mirrors via:lcbo photos)Every Time Zone : "Never warp your brain with time zone math again." Quite a useful javascript TZ conversion tool, although it could be more intuitive still
(tags: conversion javascript reference timezones time international)Compu b - 10% off all Apple products this Saturday : new Apple reseller on Dublin's Grafton Street, sounds like a good deal
(tags: apple ireland shopping via:adrianweckler)
Internet Security is a failure : ASF's Paul Querna: 'Security on the Internet sucks, and it is only getting worse. The problem is systemic, with security researchers and developers not producing viable ways for the average user to live on the Internet in a secure fashion without excessive paranoia.'
(tags: asf authentication infrastructure tls internet security)
Radisson Blu Galway – I’d avoid for events « Damien Mulley : Damien shares his atrocious experiences with a Galway hotel, and (naturally) commenters from the hotel's IP address range pile on what looks like astroturf in the comments
(tags: comments astroturf radisson galway hotels funny events customer-service cluetrain)
Gizzard, a framework for creating distributed datastores : from Twitter. looks interesting
(tags: twitter gizzard database nosql storage sharding scalability scala replication)
"Crosaire" dead : the legendary compiler of the 'Irish Times' cryptic crosswords died on Saturday in Harare, Zimbabwe, aged 92
(tags: irish-times history crosswords puzzles cryptic crosaire)
City of Portland develops iPhone app to report city infrastructure problems : ie. take a pic of a pothole and it'll be reported up to the appropriate office quickly and without hassle. wow. are you watching, Dublin?
(tags: portland cool iphone apps potholes infrastructure city)BenQ W600 projector : 600 euros all-in for an entry-level DLP home cinema projector capable of 720p HD. tempted, but stil a bit pricey
(tags: shopping tv video projectors home cinema dlp hdtv)
Grooveshark Mobile for iPhone : nifty, an official app for this music-streaming site -- although for jailbroken iPhones only
(tags: jailbreaking iphone music grooveshark streaming mp3 apps)
Where Tcl and Tk Went Wrong : from David Welton. what, the lack of support for GNOME UI standards was *deliberate*? bad choice if so
(tags: gnome david-welton languages via:fanf scripting gui tk tcl)Gmail APIs and Tools: IMAP and SMTP using OAuth : 'The Gmail IMAP and SMTP servers have been extended to support authorization via the industry-standard OAuth protocol.' pretty cool, support third parties sending outbound as you, or filtering your inbound gmail
(tags: gmail mail oauth smtp imap api)creators of AMQP ditching it for ZeroMQ : 'While iMatix was the original designer of AMQP and has invested hugely in that protocol, we believe it is fundamentally flawed, and unfixable. It is too complex and the barriers to participation are massive. We do not believe that it's in the best interest of our customers and users to invest further in AMQP. Specifically, iMatix will be stepping out of the AMQP workgroup and will not be supporting AMQP/1.0 when that emerges, if it ever emerges.' wow, massive downvote there
(tags: queueing amqp zeromq imatix mq protocols openamq via:janl)
BBC News - How spam filters dictated Canadian magazine's fate : the Canadian mag "The Beaver" is changing its name due to broken filters' false positives. Bennett Haselton reckons that there's no incentive to fix FPs, which as Henry Stern notes isn't the case
(tags: anti-spam false-positives beaver canadia canada bbc)TLS-encrypted spam : the Rustock botnet is now attempting TLS encryption of spam delivery sessions
(tags: tls rustock botnets anti-spam mailchannels ssl encryption)
Pictures from the Irish Blog Awards 2010 : I like the "blogging is dead" funereal theme ;)
(tags: blogging ireland iba blog-awards coffin)
pwnat - NAT to NAT client-server communication : 'a proxy server that works behind a NAT, even when the client is behind a NAT, without any 3rd party'. nifty, by Samy "MySpace worm" Kamkar
(tags: samy-kamkar apps firewall ip nat networking pwnat stun traversal tcp sysadmin tunneling udp)
Bulgaria: Bulgarian City Struggles as Councilors Play Farmville on Facebook - Novinite.com - Sofia News Agency : 'The troubled councilor, Dimitar Kerin, has defended himself by saying he was not the only one in the City Hall watering virtual egg plants. He said he had reached only Level 40, whereas Daniela Zhelyazkova, a councilor from the rightist Democrats for Strong Bulgaria party, was already at Level 46.'
(tags: farmville funny slackers bulgaria plovdiv games facebook)Pivotal Tracker : hmm, nice-looking Scrum tool
(tags: scrum collaboration dev management project-management tools agile)
Guinness' latest product, Guinness Black Lager, gets a panning in the Irish Times today.
I'm not a fan of Guinness. It's a good beer, but monotonous when it's the only thing available. This, from the old Dublin Brewing Company website, makes some interesting allegations as to why that may be the case:
In 1996 the Dublin Brewing Company was set up in Smithfield, in the old James Crean soap factory. As the only other brewery in Dublin to Guiness, Dublin Brewing Company represented a small but real challenge to the Guinness monopoly. Initially [Guinness'] reaction was "it won't work because, Irish people were brand loyal" and wouldn't change to anything new." However by November 1997 Guinness could see an increasing threat from a number of new microbreweries which were opening up around Ireland; it built its own microbrewery called St. James's Gate Beers. In the words of their Weekly News No: 44 "the four unique and distinctive draught beers are designed to meet perceived demand amongst ale and lager drinkers over the age of 28 for a wider choice of tastier draught beers."
The project team had spent 18 months conducting exhaustive R & D into the Irish drinking palette before the launch. This research included taking samples of Beckett's and D'Arcy's from public houses in Temple Bar and returning it to their citadel of brewing science for further analysis. Just exactly how do those "Fun Lovin Brewers" in Smithfield make beer? The code word for this return to basic brewing was affectionately known among company staff as "Operation Wolf".
The Dublin Brewing Company, amongst other small breweries was going to be lambs for slaughter. Of course, when you have a virtual monopoly on tap space in most bars, it's no problem launching no less than four beers in twenty pubs in Dublin overnight. Luckily drinkers in this country know what they want, and if they want a real beer they support the increasing number of microbreweries in Ireland, not a monopoly brewer masquerading as a small producer. The attempt at what was called "full taste" beers turned out to be a disaster. By October 1998 the operation was quietly closed down. However, now that St. James Gate is no more (£3-5m expenditure), we have its latest treat, Breo, being launched with the usual bravado Guinness display on these occasions - 10/15 kegs of beer free for every publican that takes it in. The pub gets the higher number of kegs if they take something else out. As the only other brewery in town, the Dublin Brewing Company is back on the firing line. The Dublin Brewing Company would like to dedicate D'Arcy's Dublin Stout to the memory of those old Dublin breweries.
Sadly, whether due to Guinness' tactics or not, the DBC appears to be no more. There are a few microbreweries around Ireland, but generally, the pub taps in this country are dominated by low-quality lagers, and Guinness. At least Paulaner is becoming widely available on tap, imported by Heineken...
Heathrow security man "ogles" female colleague's breasts using full-body scanner : 'John Laker, 25, allegedly copped an eyeful of Jo Margetson, 29, when the latter "entered the X-ray machine by mistake". She was "horrified" as Laker "pressed a button to take a revealing photo" and remarked [on the size of her breasts].' as Conrad says, "who didn't see this coming?" Wonder how many other "revealing photos" are on that hard drive
(tags: privacy scanners heathrow the-register uk via:cjodea)
OSSBarcamp : this year's open-source BarCamp, in Dublin, April 17th. no way I'll be able to get a talk together (again) but hopefully I can attend ;)
(tags: ossbarcamp open-source dublin ireland barcamp)How to get Google Voice working in Ireland : hacky, but I'm very tempted -- GV looks nifty and there's no indication they're bothering to roll it out on this side of the pond
(tags: google google-voice phone ireland hacks skype)
alleged Jolley Gang super-ligger chokes to death on a canapé while gatecrashing : wow, incredible irony
(tags: death humour observer ligging jolley-gang gatecrashers irony)
SpamAssassin 3.3.1 went out last Friday. The main change here is the inclusion
of Spamhaus' new URIBL list, the DBL, as the URIBL_DBL_SPAM rule.
Download page for source tarballs etc. Here's RPM packages from Warren.
Ruby Best Practices - Full Book Now Available For Free! : one for the to-get queue
(tags: best-practices ruby book free download toread library pdf reference coding)Top Ten One-Liners from CommandLineFu Explained : worth it for #10: 'Capture video of a linux desktop': '$ ffmpeg -f x11grab -s wxga -r 25 -i :0.0 -sameq /tmp/out.mpg'
(tags: video capture x11 ffmpeg cli bash linux)Sexy Executives : 'The finest corporate photography - from their extranets, to you' (via Adrian Weckler)
(tags: via:adrianweckler funny business blogs ceo photography executives zzzz)
Just heading this one off before it gets too much further...
A couple of weeks ago, a researcher found a bug in the spamass-milter project, an open-source milter to integrate SpamAssassin filtering into an MTA. Here's the exploit details.
This H-Online story covered it:
Security vulnerability in SpamAssassin filter module
The SpamAssassin Milter plug-in which plugs in to Milter and calls SpamAssassin, contains a security vulnerability which can be exploited by attackers using a crafted email to inject and execute code on a mail server. The SpamAssassin Milter plug-in is frequently used to run SpamAssassin on Postfix servers.
(I think this is the source article on Heise.de.)
That was more-or-less accurate -- but the problem is the "chinese whispers" effect, where a news story on another site builds on misreadings of another news article. eSecurityPlanet:
Security Flaw Found in SpamAssassin Plug-in
The SpamAssassin Milter plug-in has been found to contain a security vulnerability. [...]
sigh.
To clarify: spamass-milter is not a part of SpamAssassin. it's a third-party product which allows sendmail/postfix users to integrate spamassassin into their message flows as a milter.
a sad story of connections made via second-hand small ads : '“It’s free to advertise,” Ned explained. “And we have a lot of things we don’t need.” So each week, they advertised for sale in Loot something from their apartment. This was their social life. Some weeks – the good weeks – they had three or four people who came to see what they were selling.'
(tags: loot stories london small-ads for-sale second-hand irish-times irishwomans-diary rosita-boland)
RE2: a principled approach to regular expression matching : Russ Cox' C++ lib to provide safer, guaranteed-linear-time, non-exponential regexps, at the cost of dropping support for backreferences and generalized zero-width assertions. actually looks quite useful, unlike most "I've fixed regexps" claims ;)
(tags: regular-expressions regexps efficiency linear-time exponential-time backreferences google re2)
VOGON PLIERS : quick! where's my towel?!
(tags: via:spoon funny google-maps google pliers vogons)
NexPod, Freedom of Espresso : Nespresso-compatible capsules -- fill up with your own freshly-ground coffee and use in any Nespresso machine
(tags: nespresso coffee capsules espresso)Wall anchors & plasterboard/dry lining walls : Boards thread with good advice regarding wall fixings for drylined walls
(tags: diy boards walls howto)
openstache, closestache : new nomenclature for "{" and "}". This I can get behind
(tags: moustache silly openstache closestache squiggly brackets punctuation intercal bang-splat)
DIY Burglar Alarm : Damian Beresford's experience installing his own home alarm. pretty cheap, sounds quite easy too
(tags: alarm home-alarms house security diy install)Post-mortem for February 24th, 2010 outage - Google App Engine : extremely detailed; power outage in the primary DC resulted in a degraded fleet, and on-calls didn't have up-to-date on-call docs to respond correctly
(tags: google gae appengine outages post-mortems multi-dc reliability distcomp fleets on-call)Wrex in Effect, or, Deep Space and the Negro/Injun/Krogan Problem : fantastic article about Mass Effect's political allegory. I'm slightly disappointed that Mass Effect 2 didn't live up to ME1's quality, IMO
(tags: mass-effect games gaming politics)
Ubisoft DRM Authentication Servers Go Down : Assassin's Creed 2 players unable to play the game for no less than 10 hours due to failure of their DRM servers. nice work Ubisoft
(tags: drm fail defective-by-design gaming ubisoft assassins-creed)
Remote Pair Programming : using ssh, screen and emacs
(tags: ssh screen editors emacs pair-programming xp remote collaboration)
Gallery experiment proves theory that science can be fun - The Irish Times - Fri, Mar 05, 2010 : Dublin's Science Gallery is proving to be a massive success. good news. just wish I could visit more often!
(tags: science science-gallery art museums tcd dublin ireland)
More Best of the Email - The Daily WTF : the "45-hour workweek vs 80-hour vacation" one is a bureaucratic classic
(tags: email via:eoin funny daily-wtf bureaucracy hr health-and-safety omgwtfbbq)
Update News! (in first two posts) - Steam Users' Forums : mind-boggling work decoding Portal-2-related ARG content by Portal fans. as one jwz commenter put it: 'Seriously, if aliens ever contact us, the internet will have it worked out and replied to in about three hours fast.' Also, people are confused by the concept of modems and BBSes; I feel old
(tags: glados portal arg incredible effort)
Unit Testing Achievements : XBox style achievements for Python's 'nose' unit testing framework, eg. 'Major Letdown: all tests in a suite of at least 100 pass except the last.' genius!
(tags: via:simonw funny testing unit-tests python xbox gaming achievements nose)FastMail and sessions : a clever HTTP session-management trick (via Tony Finch)
(tags: via:fanf web http sessions cookies fastmail)McSweeney's Internet Tendency: Selections From H.P. Lovecraft's Brief Tenure as a Whitman's Sampler Copywriter : Lovecraftian ads for chocolate. 'There is a dimension ruled by a blind caramel God-King who sits on a vast, cyclopean milk-chocolate throne while his mindless, gooey followers dance to the piping of crazed flutes. It is said that there are gateways in our world that lead to this caramel hell-planet. The delectable Caramel Chew may be one such portal.'
(tags: caramel lovecraft mcsweeneys geek parody funny food cthulhu chocolate)Approaching 100% spam block: Spamhaus releases the Domain Block List : DBL announcement. working on the SpamAssassin support for 3.3.1...
(tags: spamassassin anti-spam dbl spamhaus dnsbls)
Phishing in Irish : someone has gone to the trouble of translating the 'Hang Seng Bank' phish to Gaeilge. I would surmise that some phisher has a table of CCTLD-to-language mappings and is pasting their text into Google Translate before spamming their .ie address list. If only they knew how few people can read it!
(tags: irish gaeilge funny languages translation)
Buzz by analise torrez from Mobile : EPIC BURRITO THREAD demonstrating the true power of Google Buzz
(tags: burritos mmmm yum food lisey google-buzz epic)2010 Irish Blog Awards Nominations : bloody hell, where did these all come from?! wow
(tags: blogs ireland blogging awards)
Search results for url:taint.org on Delicious : wow, you can search a time period for everyone who bookmarked pages on a specific site (via Britta)
(tags: delicious search nifty tools egosurfing via:britta)Mindblowing Python GIL : 'presentation about how the Python GIL actually works and why it's even worse than most people even imagine.' A good chunk btw could be rephrased as 'pthreads is worse than most people even imagine'. pretty awful data, though
(tags: python gil locking synchronization ouch performance tuning coding interpreters threads pthreads)
ElasticSearch : nifty; Apache-licensed distributed, RESTful, JSON-over-HTTP, schemaless search server with multi-tenancy
(tags: search distributed rest json apache elasticsearch http)Chip and PIN is broken : Ross Anderson's lab demo an attack on TV whereby any Chip-and-PIN debit card can be used in conjunction with a MITM device, with a PIN of "0000", verified online, and producing a receipt saying "PIN Verified". thoroughly hosed
(tags: security banking money chipandpin crypto ross-anderson)
How do we kick our synchronous addiction? : great post on the hazards of programming in an async framework, and how damn hard it is. good comments thread too (via jzawodny)
(tags: via:jzawodny coding python javascript scalability ruby concurrency erlang async node.js twisted)
PeteSearch: How to split up the US : wow. fascinating results from social-network cluster analysis of Facebook, splitting up the entire USA into 7 clusters
(tags: clusters facebook data statistics maps culture analytics datamining demographics socialnetworking graph dataviz)
Inside View from Ireland: Analysing Electronic Forensics Evidence : fascinating note from Bernie Goldbach: 'MORE THAN 20 YEARS ago, I worked with message traffic and the work told me the importance of verifying source material.'
(tags: bernie spam anti-spam authentication spoofing security phishing)
Op-Ed Contributor - Microsoft’s Creative Destruction - NYTimes.com : MS internal politics routinely torpedoed cool new projects. surprise, surprise. 'Engineers in the Windows group falsely claimed [ClearType] made the display go haywire when certain colors were used. The head of Office products said it was fuzzy and gave him headaches. The VP for pocket devices was blunter: he’d support ClearType and use it, but only if I transferred the program and the programmers to his control.'
(tags: cleartype microsoft software bureaucracy politics culture management corporate nytimes)
Dublin City Development Plan 2011-2017: Public Consultation - boards.ie : Dublin City Council is offering the ability to public consultation via a Boards forum. cool
(tags: boards dublin council consultation politics civic)
Trojan torrent sites - why you should never reuse passwords : 'for a number of years, a person has been creating torrent sites that require a login and password as well as creating forums set up for torrent site usage and then selling these purportedly well-crafted sites and forums to other people innocently looking to start a download site of their very own. However, these sites came with a little extra — security exploits and backdoors throughout the system. This person then waited for the forums and sites to get popular and then used those exploits to get access to the username, email address, and password of every person who had signed up.'
(tags: passwords security torrents warning twitter accounts)What Second Life can teach your datacenter about scaling Web apps : good scaling advice from Linden Labs' Ian Wilkes (who doesn't seem to have a blog, sadly)
(tags: linden ian-wilkes scaling datacenters scalability deployment ops services)
Lift View First : explaining Lift's code-free "display only" templating system. I like it. Very similar concept to WebMake's "scraped templates": http://webmake.taint.org/doc/scraping.html , nearly 10 years old now!
(tags: java scala lift templates templating scraping)Daily Links Posts from pinboard.in : hmm. may be one for the TODO list
(tags: pinboard tags blog wordpress rss links)Ross Anderson and Steven J Murdoch rip into Verified By VISA : 'this is yet another case where security economics trumps security engineering, but in a predatory way that leaves cardholders less secure.'
(tags: verified-by-visa security phishing web banks banking money authentication finance visa 3dsecure papers)
Spamalyser : a custom pastebin for spam messages. cool
(tags: spamalyser spam anti-spam paste pastebin web)
DNS Pre-fetch Exposure on Thunderbird and Webmail : Ugh, very bad idea indeed. A backchannel for spammers/phishers/attackers from the mail reader is something we definitely do not want to provide. This is why we chose to cut URLs at the registrar boundary for URIBL lookups in SpamAssassin
(tags: privacy email dns mozilla thunderbird prefetching urls abuse security spam)Pricewatch - The route of the problem : great article about Dublin Bus' shortcomings, featuring an interview with Antoin! Very interesting to hear about the upcoming GPS-based accurate bus timetabling service to be visible via their website, that'll be fantastic
(tags: gps busses dublin-bus dublin mass-transit commute travel)
explanation of the PS3 exploit : good walk-through by Nate Lawson
(tags: ps3 root hypervisor exploits mod-chips consoles reversing)The SAY2K10 bug [LWN.net] : LWN follows up on the FH_DATE_PAST_20XX fiasco. 'It would appear that what SpamAssassin needs is some dedicated maintenance talent which is not dependent on evening hours put in by developers committed to other projects.' I wish
(tags: spamassassin say2k10 bugs maintainance lwn commentary)
Whisky Map of Distilleries in Scotland (Malt Madness Distillery Data) : wow. my new shopping list. also: now do one for Ireland ;)
(tags: whisky yum reference maps geodata distilleries single-malts)The Apache Software Foundation Announces Apache SpamAssassin Version 3.3.0 : w00t!
(tags: asf apache spamassassin releases 3.3.0 anti-spam)The New Data Center Rack From … IKEA? : the LACKRack -- IKEA's "LACK" side tables have exactly 19 inches of space, perfect for rackmounted hardware with a little hacking
(tags: lack ikea funny furniture hardware datacenter rackmount)
Waiting for the Apple Tablet, with Joel Johnson : possibly the best article written yet about the iTablet
(tags: itablet apple civilization vans bulldogs off-the-grid products consumerism joel-johnson)
Dublin & Wicklow Walks » Lugnaquilla : this is the plan for tomorrow -- looks good!
(tags: lugnaquilla walks wicklow dublin ireland hiking)
AOL sacks pretty much the entire US postmaster team : 'This is a totally devastating blow to everyone'
(tags: aol anti-spam layoffs postmaster email smtp)One Mutation per 15 Cigarettes Smoked : aka, lung cancer develops after 50 pack-years of smoking. sobering thought
(tags: cancer lung-cancer smoking tobacco risk mutation)The Top Google Search Result for each Unicode character : exactly what it says on the tin
(tags: google search unicode hublog)
How would you serve 100,000 simultaneous comet requests with node.js? : C10K microbenchmarking fun in Javascript (via:simonw)
(tags: web http javascript scaling comet c10k node.js long-poll)French Anti-Piracy Organisation Hadopi Uses Pirated Font In Own Logo : 'Of course you have to appreciate the irony – the agency in charge of enforcing France’s new anti-piracy legislation using a pirated proprietary font in its very own logo.' hoho! hoist by their own petard
(tags: hadopi piracy copyright design fail france fonts typography logos ip)YouTube - Mass Effect 2 Launch Trailer : whoa. really looking forward to this, Mass Effect was one of the best games I've ever played
(tags: mass-effect games via:colmbrophy xbox scifi video youtube trailers)
Auto-appendectomy in the Antarctic: case report -- Rogozov and Bermel 339: b4965 -- BMJ : holy shit. This is absolutely amazing, a first-person account of auto-appendectomy (via infovore)
(tags: history science russian medicine antarctica medical amazing appendectomy surgery)Google Translate fail : Google reckons that the English translation of "Amhran na bhFiann" -- the Irish national anthem -- is "Save The Queen". ie. part of the *English* national anthem. the perils of machine learning (via Adam Maguire)
(tags: via:AdamMaguire funny fail google translation machine-learning)
Google Agrees to Censor Encyclopedia Dramatica Entry in Australia : nice work, Aussies! this is very stupid indeed (via Waxy)
(tags: censorship google satire australia stupid encyclopedia-dramatica trolling)
Mobile Internet access data retention (not!) : so, it seems the wireless ISPs don't have sufficient IPv4 space for their customers, and are filtering access to the internet via NAT; unfortunate side effect is that this breaks data retention as defined in the UK. wonder if the same applies here?
(tags: uk data-retention privacy nat isps wireless mobile phones networking internet filtering)I was a Doctor at an online pharmacy : Reddit thread from answers from a "doctor" at a dodgy online prescription-drugs store, supposedly not a spamvertized one though
(tags: medicine pharma spam reddit iama scummy illegal law)
Semi-Realtime Satellite Desktop Backgrounds : Russ Garrett with another set of near-realtime desktop weather imagery (cf. http://taint.org/xplanet/ )
(tags: weather desktop image satellite realtime backgrounds)Upload and store your files in the cloud with Google Docs : no sync or automated backup yet, so more like sendspace than dropbox, limited usefulness
(tags: google backup online-backup sync storage)the MagicJack : a GSM femtocell for the home -- USB-driven, the size of a pack of cards, $40. this won't last long
(tags: femtocells gsm phone home voip telephone)Zamberlan Snow Chains : chains -- for your shoes. basically crampon overshoes, to deal with ice and snow, EUR45
(tags: chains ice snow shoes boots footwear weather crampons)
Irish Weather Network : live weather-station data from across Ireland, overlaid on a Google Map, using amateur and professional stations. fascinating
(tags: weather data mapping ireland live)Malicious App In Android Market : phisher creates a banking app for Android phones which relays the authorization details to another site, possible because of insufficient app vetting (via Mulley)
(tags: apps iphone android smartphones phones mobile phishing security banking fraud)
fixing a frozen condensate trap on a condensing boiler : another day, another broken boiler
(tags: boilers home maintainance diy fix cold frozen)
Two Gentlemen of Lebowski : nicely done; Lebowski a la Shakespeare (via Waxy)
(tags: via:waxy shakespeare writing humor lebowski movies parody funny)
Una "UnaRocks" Mullally on the state of Irish blogs : 'I think that ‘first wave’ of Irish blogging was over a long time ago, probably around the time Blogorrah hit the dirt, but in spite of time and an increase of participants and bigger audience there seems to be no real drive to improve content. People will always read something good – online or offline – and until that something good (hopefully in plural) starts to emerge and while good bloggers log off indefinitely, Irish blogging, for what it’s worth, is in a state of disarray.'
(tags: irish irishblogs ireland writing blogosphere blogging unarocks)
Happy new year! Or maybe not. Doh.
Over a year ago, Lee Maguire noticed that a contributed SpamAssassin rule, FH_DATE_PAST_20XX, was naively written -- simply to match any date in the year 2010 or later -- and would start to false-positive on all mail in 14 months. We made the trivial fix to avoid this (for at least 10 years, by which point the rule would have obsoleted itself through normal means), and I committed it to SVN.
Problem solved, right? Nope. I'd committed to trunk, but in a moment of inattention had forgotten to backport the fix to the stable release branch, 3.2.x, as well. Nobody else noticed the mistake, and several months later, boom:
Bugger.
Annoyingly, the GA had assigned this rule 3.5 points in the 3.2.0 rescoring run. This meant that the effective default threshold had been lowered from 5.0 points to 1.5, which produced a 2% false positive rate during the first 13 hours of the new year.
After that point, the fix was pushed to the sa-update channel, and anyone who runs sa-update regularly (as they should!) was brought back to normal filtering behaviour.
The rule is superfluous anyway, since it overlaps with a better-written "eval" rule, DATE_IN_FUTURE_96_XX. Accordingly, most likely scenario is that it'll be removed.
Personally, I see a few lessons from this:
Obviously, I need to pay more attention. This is easier said than done though, since SpamAssassin has nothing to do with my day job anymore; it's a spare-time thing nowadays, and that's a rare resource, unfortunately. :( But still, a chastening result, and I'm very sorry for my part in this screwup.
We need more active committers on Apache SpamAssassin. If we'd had more eyes, the fact that I'd forgotten to backport the fix might have been spotted. we're definitely in a better situation now in this regard than we were 6 months ago, so that's good.
IMO, this is a good demonstration of how too many simple rules are risky; without careful vetting and moderation, it's easy for a bad one to slip past. Perhaps we need to move more towards a DNSBL/network-rule driven approach, although this has its downsides too. Still thinking about this.
It'd be good to fix the GA so that it wouldn't assign such high points to simple rules like this, without some indication that a human has vetted them and believes them trustworthy.
Daryl posted a good comment on /.:
Clearly we dropped the ball on this one. As far as I know it's our first big rule screw up in the project's 10 years. If you're going to screw up you might as well do it well.
+1 to that!
And to everyone who had to clean up the fallout and spend a holiday recovering lost mails from spam folders... sorry :(
Atheist Ireland Publishes 25 Blasphemous Quotes : in protest against the Fianna Fail religious right's ludicrous new blasphemy law
(tags: blasphemy ireland law legal censorship democracy atheism religion quotes)
Body By Victoria - Secure Computing: Sec-C : Dr. Neal Krawetz brings the science on detecting Photoshop retouching
(tags: pixels images forensics jpeg photoshop fake analysis detection)jwz - How to use Facebook with a feed reader : "Justin Mason likes this"
(tags: jwz facebook feeds rss atom howto syndication)
Parselets.com : 'free, open, developer-generated APIs for a wide variety of websites. Parselets.com is a place to create and share them. [..] Check out [..] ways to use parselets from our web service, Ruby, Python, C/C++, or the *nix command-line.'
(tags: parselets scraping html web regexps sitescooper json)
RegExr: Online Regular Expression Testing Tool : a very nice interactive editor in Flash, supporting lots of the usual perlish stuff. via Joe
(tags: via:jdrumgoole regexps regular-expressions spamassassin rule-dev flash regex flex utilities)
For the past 2 years or so, I've been using GMail to handle my main mail feed for jmason.org. I'm an absolute convert to its "river of threads"/search-based workflow.
Since starting at Amazon, I've had to start dealing with a heavy volume of work mail. Previously jobs have either had low mail volumes, or used Google Apps hosting for their mail, but Amazon's volumes are high and -- obviously -- they're not using Google. ;) For a while, I tried using Thunderbird, but it just didn't really cut it; I could never keep track of mails I wanted archived, or remember which folder they were in, etc. -- the same old problems that GMail solved.
Enter Sup. It's a console-based *nix email client, with a Mutt-like curses interface, which offers something closely approximating the GMail experience:
Sup is a console-based email client for people with a lot of email. It supports tagging, very fast full-text search, automatic contact-list management, custom code insertion via a hook system, and more. If you're the type of person who treats email as an extension of your long-term memory, Sup is for you.
Inbox Zero is a daily occurrence for my work email now; I can simply archive pretty much everything, and reliably know the excellent full-text search support will allow me to find it again in an instant when I need it. The new-user guide is well worth a read to get an idea of its featureset and UI.
Setting it up
The process of getting it set up is quite hairy; here are some instructions for Ubuntu, which thoroughly failed to work for me on 9.04. I had a similarly tricky time using some Ruby packages on the Red Hat work desktop, but eventually avoided it by just building vanilla Ruby from source, then using that to install "gem" and from that, "sudo gem install sup". Much easier...
Next step is to get the mail. From some reading, it appears the most reliable way to deal with a MS Exchange 2007 server is to use offlineimap to sync it to a local set of maildirs, then add those as Sup "sources" using sup-add, one by one. This is very well supported in Sup, and works well. Offlineimap is very easy to install on Ubuntu, and can easily be built from source if that's not an option. My config is pretty much a vanilla copy of the minimal config.
There's a good Sup hook to run "offlineimap" every poll interval, and rescan synced sources that contain new mail. It works well.
Sup has an interesting approach to mail storage -- it doesn't. Instead, it stores pointers to the messages' locations in their source storage. This is a great idea, since bugs in Sup therefore cannot lose your mail -- just your metadata about your mail. However, it means that if the source changes in a way which moves or removes messages, you need to tell Sup to rescan (using "sup-sync"), but that's no big deal in practice; in the more usual case, if new mail arrives, it's automatically rescanned.
I have just under 7000 mail messages in my Sup index, and rescans are speedy and searches super-fast. It's very nicely done.
Outbound mail is delivered using /usr/sbin/sendmail by default, which should be working on any decent *nix desktop anyway ;)
Recommended Hooks
The Hooks wiki page has a few good hooks that you should install:
- ~/.sup/hooks/before-poll.rb: the above-mentioned offlineimap poll hook
- ~/.sup/hooks/mime-decode.rb: 'uses w3m to translate all HTML attachments that don't have a text/html alternative.' Well worth installing.
- ~/.sup/hooks/before-add-message.rb: essential to filter out cron noise and the like so it doesn't hit the inbox; unfortunately Sup doesn't (yet) support GMail's "filter messages like this" UI.
Bad Points
Long URIs: unfortunately, very long URIs are broken by Sup's renderer, and it doesn't offer a native way to "activate" URIs and have them displayed in the browser; instead one has to cut and paste them. This is pretty lame. I've hacked up a perl script that will reconstruct the full URLs from the broken rendering, when the text is piped to it, but that's a horrible hack.
Index Corruption: I've had the misfortune (once, in the month since I started) of corrupting my search index, causing Ruby exception stack traces when I attempted to run "sup-sync" to scan new mail. The only fix appeared to be to restore my index from a "sup-dump" backup. Thankfully all seems fine now, but it was a definite reminder of the product's beta status.
Calendaring: still as painful as it's ever been with UNIX command line email.
HTML: A good-quality, email-oriented, native HTML renderer would be awesome.
MIME: Sup again takes the traditional approach from UNIX command line clients of delegating to the mailcap file and its rules; unfortunately my RHEL5 desktop is too crappy to have a good mailcap setup. So I've had to write this from scratch to deal with the usual .docs and .xls's etc., flying about.
Inconsistent Key Mapping: Given that it shares so much UI with GMail in other respects, it's a little annoying that Sup doesn't have the same key mapping. Not a big deal, as it took only a couple of hours to get the hang of Sup's, though.
Overall
If you're happy enough to spend a day or two getting the damn thing installed, and aren't afraid of a little dalliance with the bleeding edge, I strongly recommend it. It's definitely the best *NIX mail reader at the moment.
Deployment is just a part of dev/ops cooperation, not the whole thing : metrics, monitoring, instrumentation, fault tolerance, load mitigation called out as other factors by Allspaw
(tags: ops deployment operations engineering metrics devops monitoring fault-tolerance load)Build Web Apps for iPhone using Dashcode : hmm, not too tricky
(tags: iphone html css js dev coding dashcode)
Fill and span DVD archives with Discspan : filed under "about time I did another DVD backup"
(tags: backup dvd spanning via:donncha linux storage offline recovery)
mnot’s Weblog: HTTP + Politics = ? : how the Great Firewall of Oz breaks so much more than the web browser
(tags: http web politics australia internet proxies filtering)Play framework : 'a Java framework made by Web developers. Discover a clean alternative to bloated enterprise Java stacks. Play focuses on developer productivity and targets RESTful architectures.'
(tags: java rails webdev mvc webapps play playframework)Turing-incomplete Lua? : discussion thread on the cons of using Turing-complete general-purpose programming languages in places where it's not necessary, such as configuration files
(tags: configuration turing-complete safety coding software lua)
Why it's time to lighten up about "weird" Japan : 'Being majime (too serious) is not cool in Japan; likewise it is important for voyeurs of Japanese culture to recognize that most everything pop-culture-y that is exported to the West comes at us with a wink. If you're all up in arms about it, then maybe the joke is on you.'
(tags: japan majime seriousness fun weird news journalism)
GameFAQs: Assassin's Creed II (X360) Puzzle/Codex FAQ : linked by Nelson; will return to this once i've gotten into the game
(tags: assassins-creed games via:nelson toread xbox)
How to build a Google Chrome extension in 15 minutes : wow. that _is_ easy; wonder if it'd be nearly as easy to write an extension as it is nowadays to write userscripts in Firefox
(tags: user-scripts google chrome firefox extensions coding html css)Useful Google Chrome Extensions : from Nelson. looks like it's becoming a viable browser, maybe I'll give it a go
(tags: chrome google extensions web nelson-minar)The Beer with the Green Label : Sierra Nevada tries to reclaim its cred - CHOW : 'Ask a craft brewer which other brewers he most admires, and he’s likely to mention Sierra Nevada. The Chico, California, brewery is considered to be sacred ground, and its beers expertly crafted. “When you die as a brewer, you go to Chico,” says Matthew Brynildson, brewmaster of Firestone Walker in Southern California.' paging Ben
(tags: sierra-nevada beer ipa yum via:torrez)
Code: Flickr Developer Blog » Flipping Out : Flickr don't use branches. mental
(tags: branching integration branch version-control coding flickr sysadmin wtf deployment)
best Comic Sans story ever : MeFi commenter ftw
(tags: comic-sans mefi funny morbid comments fonts via:fp)
How Google/Firefox Geolocation API works : I didn't realise Firefox's geolocation used wifi triangulation, too
(tags: wifi google linux firefox mapping geolocation triangulation)Highcharts: JavaScript Charts that don't suck : good HN thread on better charting tools in JS
(tags: javascript charts graphs js dataviz hacker-news)
Charlie's Diary: The myth of the starship : Charlie Stross' thoughts on the true viability of interstellar travel. This was about the most thought-provoking bit of 'Accelerando' for me alright
(tags: beans ships travel interstellar space ai downloading)
Church 'lied without lying' - The Irish Times - Thu, Nov 26, 2009 : you have got to be kidding. Father Ted meets the Inquisition
(tags: church catholicism ireland pathetic child-abuse appalling)
Meeting Notes 2009 11 24 - Noisebridge : notes curated by Danny O'Brien: 'I have volunteered to take the meetynge notes in the style of a 17th century essayist.'
(tags: meetings hilarity 17th-century ye-olde-wiki minutes via:3ze)All Android Phones : so many! Saw a Hero last night, it looked pretty swish -- although not quite as pretty as the iPhone ;)
(tags: phones android htc hero os g1 mobile tech shopping)explicitly running author tests from a CPAN module : we do something similar in SA
(tags: perl tests testing)
nginx_http_push_module - Comet For The People : looks great
(tags: nginx ajax webdev server comet scalability)
"Source Code Optimisation", Felix von Leitner, Linux Kongress 2009 [PDF] : Good presentation on C compiler optimization, via Cal Henderson. 'People often write less readable code because they think it will produce faster code. Unfortunately, in most cases, the code will not be faster.' I particularly like 'Fancy-Schmancy Algorithms': 'If you have 10-100 elements, use a list, not a red-black tree; Fancy data structures help on paper, but rarely in reality. (More space overhead in the data structure, less L2 cache left for actual data.)'
(tags: via:iamcal compilers c c++ optimization coding assembly speed for:colmmacc)Me and Belle de Jour – ‘Could it be Brooke?’ : LinkMachineGo knew the true identity of Belle du Jour way back when -- and set a Google trap to ensnare snooping journos. nice work
(tags: belle-du-jour google blogging blogs via:waxy privacy googlewhack identity daily-mail journalism)
JSON Format : 'your online JSON Formatter'. useful. via JKeyes
(tags: via:jkeyes json formatting tools useful format debugging)Summary of all the MIT Introduction to Algorithms lectures : good reviews and notes from Peteris Krumins
(tags: algorithms mit programming coding lectures)
MacRumors iPhone Blog: Undercover 1.5 Adds Push Notification Tool to iPhone Theft Recovery App : very clever. 'You can make the messages as enticing as you want - say, by having them pretend to be a notification from your bank account. If the crook chooses to view the push notification, Undercover will launch, [..] loading any Website of your choosing, such as the aforementioned bank's. While the thief is distracted, Undercover will be happy to save the device's GPS coordinates and IP address to Orbicule's Website.'
(tags: iphone theft crime push-notifications undercover)Boingo Wireless - AVOID : argh. wish I'd seen this page before I signed up for a month's access while travelling -- they've now charged my credit card again, over a week after I requested the account's cancellation :(
(tags: boingo avoid customer-service customer-hostile scams wifi travel)
HTC Hero is on Meteor : according to Fergal, at half of the price of O2's iPhone "deal"
(tags: htc hero o2 iphone android phones mobile ireland meteor)SSL trick certificate published : ioerror published the '\00' wild-card SSL cert for any domain (for affected SSL client libs at least)
(tags: ssl tls security nul ioerror bugs exploits)
Irish iPhone users -- you may find this useful. I've written a web scraper which takes a couple of the more useful pages on Met Eireann's website -- the regional forecast and the rainfall radar page -- and reformats them in an iPhone-optimised style. Enjoy:
- iPhone-Optimised Weather Forecast for Ulster
- iPhone-Optimised Weather Forecast for Munster
- iPhone-Optimised Weather Forecast for Leinster
- iPhone-Optimised Weather Forecast for Connacht
- iPhone-Optimised Weather Forecast for Dublin
(updated: supports all the provincial forecasts now)
Google employees now discouraged from using Python for new projects : 'You have to balance Python's strengths with its weaknesses: your engineers may be more productive using Python, but if they have to work around more platform-level performance/scaling limitations as volume increases, do you come out ahead? etc.'
(tags: google performance scalability python unladen-swallow languages via:preddit)
Damn Cool Algorithms: Spatial indexing : quadtrees, Hilbert curves, and geohashing, as seen in Google's new Closure library. useful for multidimensional addressing in general
(tags: algorithms mapping gis indexing quadtree datastructures spatial geometry)