Category: Uncategorized

now to install Ubuntu ;)

Update: here's the first bug, spotted in Apple's "thank you for registering your Mac" mail:

Hi. 

Welcome to Apple.
We're just as excited as you are.

........................................................................... 

Thanks for registering your new Mac. We have the following on record in your name:
[[IREG_PRODUCT_HTML]]

Templates are hard!

• http://www.rim.jobs
  ooer missus (via Kenneth)
  (tags: via:kenneth ooer titter tlds jobs rim funny innuendo)

• Bigscreen.ie
  new cinema listings site for Ireland. nice web2.0-ish layout, but missing lots of stuff you'd expect nowadays: search-by-reviews, feeds, Upcoming.org-style social features, etc. (in fact, they'd almost be better off just using Upcoming.org IMO ;)
  (tags: cinema movies dublin ireland fusio web social)
• Warren Ellis: The Patchwork Years
  paraphrased: "enough linkblogging! new content please!"
  (tags: warren-ellis blogs linkblogs curation content web)
• massive multi-vendor patch to DNS resolvers
  the bug appears to affect client-side resolvers, which can be cache-poisoned by malicious DNS servers using predictable TXIDs in DNS responses. current fix is to randomize ports when making queries? I think. more: http://www.kb.cert.org/vuls/id/800113
  (tags: bind dns dan-kaminsky resolvers security holes exploits cache-poisoning)
• using "iostat" on Linux
  good guide to diagnosing I/O bottlenecks on modern Linuxes using -d and -x
  (tags: iostat sar system debugging performance io linux bottlenecks disks)
• Gmail now blocks unsigned eBay/Paypal mail
  no mention of what it does with mail from and so on, however (via Nelson)
  (tags: ebay paypal phishing dkim domainkeys via:nelson security mail smtp anti-spam)

• Protocol Buffers: Google's Data Interchange Format
  'a flexible, efficient, automated mechanism for serializing structured data – think XML, but smaller, faster, and simpler', defined with an IDL-style language. see also Thrift and http://teddziuba.com/2008/07/build-google-protocol-buffers.html
  (tags: protobuf google thrift idl interfaces interchange xml data python java c++ serialization structured-data)
• Oyster RFID card crypto cracked, card cloned
  by the Dutch team behind the crack of the Dutch travel card, based on the same MIFARE system as London's Oyster cards. paper coming in October
  (tags: mifare smartcards rfid crypto cards oyster travel dutch)

• Ireland's first court case on the legality of screen scraping
  Ryanair vs Bravofly, Bravofly scraping Ryanair's site allegedly in contravention of their T&Cs
  (tags: ryanair t-and-cs bravofly scraping web http law ireland)
• Sunday Business Post: Brain Drain
  I'm quoted!, arguing that the death of invention in the modern age is greatly exaggerated: 'the next Wikipedia could easily come from one teenager's laptop in their back bedroom in Kildare [...] the barriers to [invention] are lower than ever.'
  (tags: invention ego sbpost james-dyson)
• Charlie Brooker on pervasive surveillance
  'The way things are going, I half-expect to hear a quiet electric "peep" noise each time I flush the toilet; another bowel movement logged by Bumland Security.'
  (tags: charlie-brooker funny surveillance society politics columns cctv)
• REST Anti-Patterns
  as usual, a description of what you _shouldn't_ be doing, provides a great illustration of what you _should_ be doing ;) (via Vinoski)
  (tags: via:vinoski rest antipatterns design http web networking)
• Ringing in Sick
  'Four resourceful humans test the tolerance levels of four human resource managers by constantly failing to show up for work after being offered a job. The aim… To see who can hold onto their job the longest without ever working a day.' truly hilarious
  (tags: irish tv video funny work human-resources slacking via:jazzbiscuit dogmedia)

• Bug #209342 - IBM T40 breaks under Ubuntu Hardy
  fix is to use the kernel from Intrepid Ibex, for now
  (tags: kernel bugs ubuntu linux hardy t40 thinkpad)
• known Thinkpad T40 bug with USB 2.0
  aha. this explains a long-running issue I've had on my Thinkpad at home
  (tags: t40 southbridge hardware thinkpad ibm usb bugs)

• WIX
  'a new text markup format. Its syntax is a blend of Donald Knuth's TEX and various wiki markup.' has a formal grammar, rather than an ad-hoc parser (guilty). quite nice, although would have been better if it didn't reinvent so many wheels (via adulau)
  (tags: via:adulau wix markup text html ettext markdown)
• Giles Bowkett: "Don't Be Evil" Was Always Doomed
  [the Viacom/Youtube privacy disaster demonstrates] 'what's wrong with trusting corporations with your data: if the corporation says "I'm not going to be evil," and the government says "oh yes you are," it's pretty much _the end of the conversation_.'
  (tags: giles-bowkett true quotes dont-be-evil privacy google youtube viacom)

• Identi.ca
  alt microblogging platform with a few key wins over Twitter & Jaiku: stability (so far!), open, decentralized, and Affero-licensed OSS. I'm "jm" on it, but not writing there -- yet. but looking forward to an API so I can add it to twit.ie
  (tags: identica twitter microblogging blogging tweets twit.ie open-source web decentralization xmpp)
• politics in the Twitter camp around the Public Timeline XMPP feed
  some third-party app developers get access to it, some don't. one dev says: 'It’s frustrating to just get locked out after spending so much time making stuff for Twitter users'
  (tags: twitter politics ugh xmpp tweets microblogging biz)
• Apache Hadoop Wins Terabyte Sort Benchmark
  910-node cluster sorting 1TB of data in 209 seconds, using Hadoop and HDFS. I wish we had a Hadoop cluster to do SpamAssassin mass-checks on ;)
  (tags: hadoop hdfs map-reduce number-crunching clusters)
• Beanstalkd
  'a fast, distributed, in-memory workqueue service', written in C with libevent, lots of client libs for different languages. Nice lifecycle model. The queues are not persistent yet, though, unfortunately
  (tags: beanstalk queueing queues ipc libevent)

• ratproxy - Google Code
  'a semi-automated, largely passive web application security audit tool. .. detection and annotation of potential problems based on the observation of existing, user-initiated traffic in complex web 2.0 environments', by lcamtuf
  (tags: proxies web security xss csrf lcamtuf google)
• Spammers using Bebo.com as spam hosting
  Bebo need to do some anti-abuse work
  (tags: via:websense spam bebo social-networking)

• Amazon EC2 nodes being used to distribute malware?
  Amazon really need to sort out some effective anti-abuse policies for EC2 soon, before things go pear-shaped
  (tags: amazon ec2 abuse spam viruses malware hosting)
• chownat - NAT to NAT communication
  awesome; NAT-tunneling without any prior config, even if both ends are behind NAT. written by the author of the MySpace worm, Samy Kamkar
  (tags: samy-kamkar chownat tunnelling nat firewalls security tcp tunnels connections networking)
• Commtouch implement BATV
  interesting, I would have thought they'd be in a good position to just do something like what the SpamAssassin vbounce ruleset does
  (tags: rules batv bounces ndr vbounce commtouch anti-spam)
• Brian Krebs article on EC2's spam problems
  oh dear. they _really_ need to get proactive on this before the shit really hits the fan, this is not going well
  (tags: ec2 amazon aws abuse spam malware hosting brian-krebs)

'You'll know what my riddle means
When you've eaten mangosteens.'
-- The Crab That Played with the Sea, by Rudyard Kipling

When I travelled through Thailand, I got rightly hooked on the delicious mangosteen, traditionally dubbed the "Queen of Fruit" by the Thais. I've been keeping an eye out ever since, through our travels to the US and back, without any luck. (In particular, they've been blocked by US customs for a long time, although reportedly this is changing nowadays.)

Finally, last year, they appeared in our local Tesco supermarket here in Ireland -- or at least, an empty box appeared, sans fruit! That was it, though, until a couple of weeks ago, when my friend Bob was lucky enough to come across a few, and grabbed 4 for me. (Thanks Bob!)

It appears they're in season around the start of June, which is when they make it to Tesco's. Naturally, they're much more expensive here -- Tesco were selling them for about EUR 1.20 each, whereas a bag of 30 were about 50 cents when we used to buy them at the street-side in Ko Chang. But that's to be expected, really.

Since they're tricky enough to get hold of, I thought I should document exactly what to do with them once you get 'em ;)

They start off looking like this, roughly tomato-sized fruit with a thick, papery rind:

Get your thumbnail into the rind, not too deep though!, and tear it off like so:

Look at the rind's great colour! Watch out for it, though, as it stains clothing easily. Discard the rind, and pluck out the fleshy, juicy white segments:

(Pay no attention to their resemblance to testicles. ;)

Finally you'll wind up with 6 or so seedless segments, and 1 or 2 seed-bearing segments, larger than the others, containing a large inedible seed along with a fair bit of flesh:

Eat 'em and enjoy the flavour -- it's a bit like a tart, vanilla-y peach, but juicier, creamier and much smoother in texture. Mmmm, truly delicious. I'm looking forward to picking up some more soon!

I considered planting the seeds, but unfortunately, you can forget about growing a tree in your back yard; the mangosteen tree requires a tropical climate:

'The mangosteen is ultra-tropical. It cannot tolerate temperatures below 40º F (4.44º C), nor above 100º F (37.78º C). Nursery seedlings are killed at 45º F (7.22º C).'

Ah well. Seems I'll be at Tesco's mercy for more.

• How to test if your TCP connections are being reset by ISP filter RST packets
  a good guide to using Wireshark to diagnose this, as used by Audible Magic and Sandvine
  (tags: sandvine audible-magic filtering isps network-neutrality wireshark ethereal comcast)
• /. post on beating Comcast's P2P filters using RST-blocking
  in other words, Comcast's Sandvine appliances use the same technique as Audible Magic. Wonder if this works; I was under the impression that one would have to block RSTs on both ends of the connection, and many commenters agree
  (tags: comcast filtering isps sandvine audible-magic network-neutrality)
• Detecting SSH tunnels
  using a Bayes classifier trained on intra-packet intervals and packet length. nifty! (via /.)
  (tags: via:slashdot bayes classifiers ssh tunnels vpn networking security crypto papers)

• Sunday Business Post | Irish Business News
  good interview with Irish Times MD, Maeve Donovan, on their removal of the paywall: 'it had become clear that there were not sufficient numbers of Irish Times readers prepared to pay for online content.' seems the example of the Grauniad was influential
  (tags: irish-times ireland newspapers paywall journalism via:cianginty)

• PostgreSQL query to display active locks
  make the obtuse pg_locks table more useful. 'show any queries that are waiting on a lock, and the query that currently holds the lock on which those queries are waiting.' haven't tried it out yet
  (tags: postgres deadlocks sql databases locks debugging)
• Spanish consumers to pay anti-piracy tax on music devices
  The SGAE agency will collect on sales of mobile phones (EUR 1.10), blank CDs (17c each), laser printers (EUR 10), scanners (EUR 9), CD recorders (3.40). I guess Spanish consumers have a license to download freely now, since they're already paying for it
  (tags: spain sgae ladrones via:ontherecord music mp3 downloading piracy tax europe)
• how to discard annoying crap from AVG LinkScanner
  using a couple of mod_rewrite rules and a redirect to www.avg.com
  (tags: avg grisoft robots web mod_rewrite abuse apache)

• Shirt.Woot now ships to Ireland
  there goes my pocket money. I <3 the woot crew
  (tags: woot shirts tees t-shirts apparel ireland shopping consume)
• Irish national newspapers not in decline
  'It's a common enough misconception, but Irish national newspapers have not and are not currently showing the large-scale declines in readership as seen in the UK and US. The market is reasonably stable.' interesting
  (tags: ireland newspapers news journalism future irish-times)
• Darklight Film Festival panel discussion on privacy in the digital age
  A film festival is putting this on? wtf, does not compute. good line up though. at Filmbase, Curved St, Temple Bar, 10am Friday 27th June
  (tags: darklight film privacy future web online social-networking)
• Resource Management: A Critical Look at RAII
  intro to the EAM (Execute Around Method) closure-based resource-management pattern. I was wondering what this trick was called
  (tags: perl closures programming coding eam raii resource-management)

• Facebook's "Thrift" accepted into the Apache Incubator
  I missed this at the time. great news
  (tags: thrift apache asf facebook incubator networking coding rpc ipc)
• PutPlace creeps softly into the light
  yay, PutPlace on Windows is now in public beta
  (tags: putplace work beta software windows)
• Reservoir Sampling
  handy algorithm to take N randomly-selected samples from a passing stream of data; must use this on the SpamAssassin spamtraps
  (tags: spamtraps sampling algorithms coding programming streams data)
• chris horn's blog: IONA
  'one of my mentors told me that the chief responsibility of a CEO to his staff is to improve the CV of every staff member [..] I sincerely hope that each and every career immensely benefited as a result.' Certainly worked for me - thanks Chris!
  (tags: chris-horn iona ireland software dot-coms history 1990s)

• Deposition challenges Trend Micro patent on virus scans
  A company called "TenFour Sweden" apparently sold a product called "TFS Gateway" that supported virus scans, prior to Trend's patent filing. Note that they're still looking for people who _used_ TFS Gateway in 1995
  (tags: tfs gateway tenfour patents uspto trend-micro viruses scanning)

• Why Ballmer got egged
  it was a Hungarian sysadmin protesting a $227M investment in MS licences throughout the Hungarian state system as a massive waste of money: "I think there are much more useful free software solutions available, for no charge."
  (tags: hungary steve-ballmer egging eggs waste tax sysadmins taxpayers-taxpayers-taxpayers via:ilug)
• comparing Puppet with cfengine
  very good list of differences, and compelling downsides to cfengine. sounds like I need to give Puppet another chance after all
  (tags: via:edd puppet cfengine deployment servers sysadmin)
• my Facebook social network, graphed with Nexus
  Amazingly clear breakdown of my social groups -- great infoviz. Must try something like this for SpamAssassin spamtrap data (via Leonard)
  (tags: via:lhl facebook nexus graphviz infoviz data visualisation graphs social-networking networks spamassassin)
• Threadless: 'I Can't Draw' Print by Roberto Galvez
  lovely. would prefer the tee, but it's sold out for now
  (tags: art prints threadless house roberto-galvez)
• Trying to use git-filter-branch to compress history by removing large, obsolete binary files
  this is becoming critical for use of git as a file-synchronization mechanism for my MP3 collection, for obvious reasons. looks like it should be possible with git 1.5.6
  (tags: git sync synchronization files mp3 music)

• ubuntu-ie gets an office space!
  Ubuntu Ireland LoCo team now has a drop-in centre on Saturdays between 11am-4pm at the Camara offices in the Digital Hub, on Thomas St in Dublin 8
  (tags: ubuntu digital-hub loco ireland ubuntu-ie camara linux community)

• We're all ops people now
  'Our programs have left the desktop and found their new home on the web. System administration issues loom large.' I agree with the thesis, but Puppet as a key component to fix this? it's just cfengine in Ruby, snore
  (tags: puppet edd-dumbill sysadmin scaling web hosting deployment)

• "And the blood-red something, and... and..."
  great sketch: James Joyce and Samuel Beckett at the pitch 'n' putt (NSFW)
  (tags: bloomsday james-joyce samuel-beckett funny comedy via:aileen)
• Django Software Foundation created
  to hold Django's trademarks and IP. that's a major step forward, congrats guys. although I'm sure there'd have been room at the ASF too ;)
  (tags: django open-source python foundations)
• remote Denial-Of-Coffee attack possible with Jura F90 coffee maker
  the 'Jura Internet Connection Kit' has a few security holes, it seems. 'Fun things you can do with a Jura coffee maker: Change the preset coffee settings; [..] Change the amount of water per cup (say 300ml for a short black) and make a puddle'
  (tags: via:slashdot coffee funny security exploits)
• Google App Engine Downtime Notify
  an announcement-only Google Group for notifications about GAE downtime and outages. useful, considering they had a major datastore outage yesterday
  (tags: google appengine reliability sla downtime outages hosting python)
• cheated my ass off didnt get caught. - boards.ie
  Boards user boasts of cheating in the Leaving Cert exams, is identified, and an epic thread unfolds. IRISH INTERNETS - SERIOUS BUSINESS
  (tags: via:jazzbiscuit funny cheating ireland leaving-cert exams boards.ie joe-duffy)

• new UK survey on music and downloading
  70% of UK kids aged 18-24 download music illegally; 87% of all respondents have copied music CDs; 74% said they'd be interested in a working, DRM-free legal download service
  (tags: uk piracy music downloading filesharing drm)

• Drama llama invades Irish blog scene, shit hits fan
  'right now it feels like an ugly popularity contest. I can only assume that the A-listers of the Irish blogging world are lovely, lovely people because to be frank, some of them are shit-awful writers.' be sure to read the name-calling in the comments
  (tags: ireland blogging blog-awards drama shitstorm blogs)
• Post-mortem of writing an O'Reilly book
  ouch, he cites plenty of bad management at ORA. On the plus side, the end result, "High Performance MySQL", 2nd Ed, sounds like it came out well -- eventually! all in all though, it sounds like I dodged a bullet on that one, hard work
  (tags: ora oreilly books authors writing minimum-wage work mysql)
• Child porn charge due to virus-infected laptop
  sounds like this guy's work laptop was trojaned by a virus/malware, then used to host child porn, for which he was then prosecuted. what a nightmare scenario -- thankfully the forensics analyst figured it out
  (tags: trojans malware viruses law forensics)
• did last week's Amazon spammers launch a DDoS attack, then short the stock?
  The Register says "maybe". mind you, that means absolutely feck all ;)
  (tags: amazon amzn stock spam shorting short-n-distort ddos extortion sophos)

• nasty scenes at referendum count involving extreme-right-wing group Coir
  'As [a govt minister] attempted to speak, he was surrounded by Coir [ie. extreme-right-wing anti-abortion group Youth Defense] activists who screamed at him and sang "there's no Lisbon". When [Joan] Burton attempted to intervene, she was spat at.' lovely
  (tags: coir scumbags ireland dublin youth-defense thugs abortion politics religion)

• long discussion of Django's failure to make releases
  release management failure on this scale is pretty worrying in an open-source project; here's hoping the upcoming 1.0 actually happens
  (tags: django releases python open-source project-management management oss)