Justin's Linklog Posts

• Dylan Collins asks: has Ireland peaked as an Internet hub? : based on Twitter’s surprise move passing over Dublin for London, and how to fix it: “launch the Internet Visa, an aggressive program that allows all Irish Internet companies to recruit from anywhere in the world. Reduce the red tape (combine all permit and visa documentation), guarantee a turnaround time measured in days (a small number) and avoid all the mistakes the UK has made with its Startup Visa initiative. Bring the talent from everywhere outside the EU to Ireland. Ireland doesn’t scale organically. So it needs to in-source. We need to be honest about our shortcomings and tackle them with something which will make HR Directors smile. Imagine a country with all the existing advantages of Ireland plus the ability to hire anyone in the world you wanted. Who in their right mind wouldn’t establish their European base there?” He’s dead right, this is a massive problem for the Irish tech industry right now
  (tags: ireland bureaucracy red-tape twitter tech business visas work government dylan-collins)

• Bug 647959 – Add Honest Achmed’s root certificate to Mozilla : ‘Honest Achmed is at least more honest than Comodo.’ lol
  (tags: comodo security security-theatre ssl tls certificates funny trust firefox)

• demerphq on “perl’s regexps are slow” : His classic response to the Russ Cox DFA-over-NFA regular expressions paper. ‘A general purpose regex engine like that required for perl has to be able to do a lot, and has to balance considerations ranging from memory footprint of a compiled object, construction time, flexibility, rich feature-sets, the ability to accomodate huge character sets, and of course most importantly matching performance. And it turns out that while DFA engines have a very good worst case match time, they dont actually have too many other redeeming features. Construction can be extremely slow, the memory footprint vast, all kinds of trickery is involved to do unicode or capturing properly and they aren’t suitable for patterns with backreferences.’ — Also interesting to note that he mentions an approach I’ve used in several SpamAssassin speedup add-ons, too ;)
  (tags: performance perl regular-expressions perlmonks demerphq regexps dfa nfa state-machines)

• brandnewretro | scans from the past : a mate of mine, scanning Irish cultural artifacts from Ireland in the ’70s and ’80s. fanzines!
  (tags: fanzines irish ireland history 1980s 1970s dundalk culture scans)

• Pound : ‘a reverse proxy, load balancer and HTTPS front-end for Web server(s). Pound was developed to enable distributing the load among several Web-servers and to allow for a convenient SSL wrapper for those Web servers that do not offer it natively. Pound is distributed under the GPL’
  (tags: https ssl http proxy web pound reverse-proxy)

• What is Facebook’s architecture? – Quora : nicely detailed summary
  (tags: quora architecture facebook http web websites)

• How Little Sleep Can You Get Away With? : ‘after just a few days, the four- and six-hour group reported that, yes, they were slightly sleepy. But they insisted they had adjusted to their new state. Even 14 days into the study, they said sleepiness was not affecting them. In fact, their performance had tanked. In other words, the sleep-deprived among us are lousy judges of our own sleep needs. We are not nearly as sharp as we think we are.’
  (tags: sleep rest brain science neuroscience)

• Permanent TSB’s tracker-mortgage paydown option isn’t such a good deal after all : ‘it might be in your interest if you have a tracker mortgage and are unable to get a better rate of interest on the €5,000 that you are being tempted to repay PTSB. You can get up to 4.2% from PTSB deposit accounts, 9.7% from 10-year Irish sovereign bonds, 9% from residential property. Yet PTSB is prepared to give you less than a measly 2% over a five year period on your €5,000 repayment.’
  (tags: ptsb permanent-tsb finance money mortgages tracker-mortgage investment)

• This Bacteria is Violating Copyright | tor.com | Science fiction and fantasy | Blog posts : the Joyce estate playing their usual role. ‘are we now nearing a point where copyright law can result in the retraction of a life form?’ (via John Looney)
  (tags: copyright dna bacteria james-joyce joyce-estate frivolous lawsuits copyfight craig-venter)

• Virgin and NTL filtering fail : ‘Virgin and NTL [in the UK] blocked [del.icio.us] for years’ due to a false positive — joshua
  (tags: del.icio.us false-positives filtering uk isps virgin ntl fail via:hackernews)

• Nelson Minar on map tiles : quite a lot of detail into the prevailing state of the art in how online zoomable maps store their tiles
  (tags: mapping maps google-maps nelson reference tiling storage)

• pyflakes.vim – on-the-fly Python code checking in Vim : Vim gets a good IDE feature. ‘highlights common Python errors like misspelling a variable name on the fly. It also warns about unused imports, redefined functions, etc.’
  (tags: ide vim python programming via:preddit coding)

• Rumor: Google “Disgusted” With Record Labels : ‘Once again, Warner is the fly in the ointment, the same company that praises Spotify one day, renews their licenses for the rest of the world and then the next day doesn’t want to license them in the US.’
  (tags: google music cloud licensing music-industry record-labels warner-music streaming)

• Dublin – Europe’s Next Startup Petri Dish? – NYTimes.com : ‘Ireland’s tech scene continues to expand in spite of the woeful state of the rest of the economy with a plethora of accelerator programs, seed funds and events like Founders and the IBM smartcamp global finals happening there in the last year or two. ‘
  (tags: ireland tech software startups)

• Travel Hacks: What are the best travel hacks? – Quora : lots of good “Up In The Air”-style tips
  (tags: quora travel howto tips flying hacks)

• Digital Rights Ireland » Garda plans to introduce web blocking in Ireland : ‘Last year we revealed that the Department of Justice was working on secret plans to introduce internet filtering in Ireland. Now, despite a complete lack of any legislation, public consultation or democratic discussion, these plans have moved to the implementation stage.’ wtf, this is just appalling lack of oversight
  (tags: gardai blocking filtering ireland politics legislation oversight isps ispai alto censorship eff)

• Daragh O’Brien on the Gardai’s plans to force ISPs to implement IP filtering : ‘Internet blocking is ineffective. The current proposal lacks sufficient checks and balances, and may even require ISPs and telcos to break other laws to comply. It will inevitably result in innocents being tarred as offenders. Data Protection principles (such as “Adequate, Relevant, and Not Excessive” are being blatantly ignored to implement an ineffective solution. Far better is to shut down the shop by removing the images at source and invest time, energy, and resources into a more transparent effort to manage this issue.’ well said
  (tags: internet filtering censorship blocking gardai isps ireland data-protection privacy)

• RIM: The inmates have taken over the asylum : some notes from Blackberry’s slow circle round the toilet, as it’s hammered by iPhones and Androids. also: I can’t believe QNX is still alive
  (tags: rim mobile blackberry qnx embedded phones)

• Improving Linux performance by preserving Buffer Cache State : handy — a patch to rsync(1) which will not disturb the buffer cache, so that large file transfers and backups will not interfere with what’s been cached previously
  (tags: performance linux caching buffer-cache rsync io cache patches backups)

• ImperialViolet – Revocation doesn’t work : OCSP doesn’t work — the browser vendors have failed to implement it safely
  (tags: security ssl https tls ocsp revocation crl via:fanf)

• L. MULLIGAN. GROCER.: Beer of the Week: Metalman Pale Ale : *excellent* Irish pale ale, brewed by ex-co-worker Grainne and her partner Tim, now on sale in my favourite pub. yay!
  (tags: mulligans beer ipa pale-ale metalman coworkers)

• TomatoUSB : ‘an alternative Linux-based firmware for powering Broadcom-based ethernet routers. It is a modification of the famous Tomato firmware, with additional built-in support for USB port, wireless-N mode support, support for several newer router models, and various enhancements. Tomato USB supports many Broadcom-based routers from Asus, Linksys, Buffalo, Netgear and other manufacturers.’ Looks good — I’ve been a Tomato fan for many years — and jzawodny-approved
  (tags: router tomato firmware linux routers wireless wifi)

• Detecting Certificate Authority compromises and web browser collusion | The Tor Blog : ‘If I had to make a bet, I’d wager that an attacker was able to issue high value [SSL] certificates, probably by compromising [the USERTRUST SSL certificate authority] in some manner, this was discovered sometime before the revocation date, each certificate was revoked, the vendors notified, the patches were written, and binary builds kicked off – end users are probably still updating and thus many people are vulnerable to the failure that is the CRL and OCSP method for revocation.’ It seems addons.mozilla.org was one of the bogus certs acquired. Major ouch. Thanks to EFF/Tor et al for investigating this — SSL cert revocation is a shambles
  (tags: security ssl tls certificates ca revocation crypto exploits eff tor comodo usertrust)

I’m uncomfortable voting for David Norris for President. Here’s why.

In November last year, he was a key voice in a Senate debate on the topic of "Protection of Intellectual Property Rights", where he quoted heavily from the flawed judgement by Mr. Justice Peter Charleton in the Warner, Universal, Sony BMG and EMI vs UPC case. (There are allegations that he called the debate after speaking to Paul McGuinness (U2’s manager) and Niall Stokes (of Hot Press).)

In the debate, Norris quotes Mr Justice Charleton, saying:

‘In failing to provide legislative provision for blocking, diverting and interrupting internet copyright theft, Ireland is not yet fully in compliance with its obligations under European law.’ Norris then says: ‘Irish law could be brought into alignment with the intention of the European directive through a simple statutory instrument.’ [1]

Now, let me clarify my position — I’m in favour of some means of resolving the level of piracy of music and movies which is widespread nowadays, and I believe there’s a mutually agreeable way to do this. But what Norris and Mr Justice Charleton propose is not it. Here are the problems as I see them.

It Lets The Internet Filtering Genie Out Of The Bottle

The big one.

The problem is that any infrastructure for ‘blocking, diverting and interrupting internet copyright theft’ is effectively infrastructure for ‘blocking, diverting and interrupting’ any communication on the net. We have to be very careful about how this is permitted, as it’ll very quickly suffer "feature creep" and become a general-purpose censorship system — the Great Firewall Of Ireland. As Damien Mulley put it:

‘first they’ll start with the Pirate Bay. Then comes Mininova, IsoHunt, then comes YouTube (they have dodgy stuff, right?), how long before we have Boards.ie because someone quoted a newspaper article or a section of a book? And don’t think they’ll stop there too, any site that links to The Pirate Bay and the others on the hate list will probably be added to the list too…’

In Australia, the anti-child-porn filtering system was quickly used to block gambling websites, gay and straight porn sites, political parties, Wikipedia entries, Christian sites, Wikileaks, and a dentist; in Thailand, a similar system was used to block criticism of the royal family.

Will It Help? I Don’t Think So

Norris:

‘As long as Irish law is deficient, Mr. Justice Charleton has found that all creative Irish industries are losing money.’

This is quite a hilariously overblown and sweeping statement. ALL creative Irish industries? What qualifies as a ‘creative’ industry? I suspect some in this country have been involved in industrial acts of creation that made money. ;)

While they’re not Irish, the well-known indie label Beggar’s Banquet has gone on the record as stating the opposite where the current music situation is concerned —

"There’s fewer gatekeepers now. We don’t have to knock on a TV station’s door or a radio station’s door and it’s made us far more competitive. […] There’s a wide highway in front of us we can go speeding down, and it wasn’t there even two years ago. It means the majors are looking at a world where only 35 Gold Albums a year are certified compared to ten times that recently. But going above Gold in the US is not a problem for us."

So it appears a ‘creative’ industry (albeit in the UK) is finding things not quite so bad.

Norris again:

‘the facts were established in the judgment of Mr. Justice Charleton in which he stated: “Between 2005 and 2009 the recording companies experienced a reduction of 40% in the Irish market for the legal sale of recorded music.” That is a devastating blow. […] He went on to state: “Some 675,000 people are likely to be engaged in some form of illegal downloading from time to time.”’

Without quite lining up one statement with the other, this reinforces the impression that the only reason the recording companies have seen these drops in revenues is due to internet-borne piracy. However, quoting the brilliant Mumblin’ Deaf Ro on the topic of lies, damn lies, and music biz statistics:

‘The drop in the value of Irish retail music sales was 11.7% between 2008 and 2009, which is significantly less than the 18% overall drop in retail sales for the economy that year. Digital album sales have increased by 30% since 2007 both in terms of volume and market value.’

So in other words, between 2008 and 2009, Irish retail music sales outperformed the retail sales economy as a whole!

In addition, Ro provides the following BPI figures for UK market volumes over the 2005-2009 period:

    Year  Albums  Singles
    2005  159.0m   47.9m
    2006  154.7m   66.9m
    2007  138.1m   86.6m
    2008  133.6m  115.1m
    2009  128.9m  152.7m

It’s clear that singles sales went through the roof, more than tripling. Album sales did drop however, but nowhere near by 40% — and this coincided with the general drop in the prevailing global economy around that time. He also notes that digital sales in the UK went through the roof globally on a number of metrics in 2009.

While this does not provide figures for the Irish market, I’m at a loss as to how it could be radically different — Irish and UK consumers have pretty similar musical tastes and consumption habits, I would guess.

Here’s a theory: perhaps the issue could be that "Irish" music sales are associated with bricks-and-mortar music shops selling the physical product, whereas digital music sales are associated with online services based outside Ireland, and an Irish buyer buying an album at 7digital.co.uk, or on iTunes, isn’t counted as an "Irish retail sale"? Could the problem be that we don’t have any significant Irish shops selling music online, I wonder?

Bricks-and-mortar music shops, such as ex-Senator Donie Cassidy’s "Celtic Note" (who coincidentally was quite vociferous in that Seanad debate), are indeed hurting in this new model of music consumption — and that’s a problem. But given that good, working digital music sales systems are in operation, it doesn’t necessarily appear to be due to massive volumes of internet-borne piracy, going by these figures.

Essentially, internet piracy is a convenient bogeyman, especially for the technophobic old guard, but may have little bearing on the current woes of the Irish record industry and bricks-and-mortar music shops.

(Update: a couple of days after this was posted, a pair of economists at the LSE have said basically the same thing.)

Audible Magic Won’t Work For Long Anyway

Audible Magic, which Norris suggests is IRMA’s favoured filtering system, received the following verdict from the EFF back in 2004:

‘Should Audible Magic’s technology be widely adopted, it is likely that P2P file-sharing applications would be revised to implement encryption. Accordingly, network administrators will want to ask Audible Magic tough questions before investing in the company’s technology, lest the investment be rendered worthless by the next P2P "upgrade."’

Naturally, encryption is widespread nowadays, so this may already be the case.

Internet Censorship Harms Our Global Image

As Adrian Weckler points out:

‘do we really want to send out the message that, digitally, we’re the new France? Come to think of it, do we want to tell Google, Facebook, Apple and Twitter that, digitally, we’re the new Britain?’

Right now, more than ever, we need to put out an image that we’re ready to do business on our end of the internet. Mandatory censorship systems don’t exactly support this.

In Summary

So in summary, I would hope to see a more balanced approach to the issue from Norris. Most of the problematic statements in his speech were directly sourced from Mr. Justice Charleton’s flawed judgement, but some critical thinking would be vital, I would have thought. The fact that this was lacking, particularly given the allegations of heavy music-biz lobbying beforehand, leaves me feeling less inclined to vote for him than I would have been before, particularly since I haven’t heard any clarification on these issues.

([1]: Funnily enough, an SI similar to this was nearly sneaked through a couple of weeks ago, according to reports.)

• HBGary planned to “BLOW THE BALLS OFF OF NMAP” : ‘I would like to call it “B.E.S.T. Scanner” so people kind of get stuck calling it “the best scanner”. We can figure out what BEST means later.’ omgwtf. Is this guy 12 years old?
  (tags: funny security humor anonymous scanner nmap hbgary open-source fail idiots)

• Ireland’s new coalition on media, IT & IP law | Lex Ferenda : ‘some first thoughts on how the just-published coalition agreement (Fine Gael and Labour) in Ireland proposes to deal with issues of interest to cyberlaw and media law.’
  (tags: lex-ferenda law ireland ip content internet fair-use copyright tv)

• Nuclear energy: Inside the black box : What’s going on inside the Fukushima nuclear reactor, and how it is hoped meltdown can be averted
  (tags: nuclear-power meltdown disasters japan fukushima power electricity nuclear)

• Backdoor legislation is no way to tackle thorny issue of copyright – The Irish Times – Fri, Mar 11, 2011 : good article by Karlin Lillington on the attempted sneaking-through of an SI to ‘deal with’ filesharing. agreed on all counts
  (tags: filesharing piracy ireland law karlin-lillington legislation fianna-fail)

• The Remarkable Notability Of Old Man Murray | Rock, Paper, Shotgun : wow, the *entire games industry* (basically) comes out to praise Old Man Murray — the influential satire site. I’d forgotten about their Time-To-Crate game rating system (which I still apply)
  (tags: gaming humor old-man-murray games crates)

• Old Man Murray Deleted From Wikipedia | Rock, Paper, Shotgun : more idiotic deletionism from Wikipedia. when will someone fork WP with a saner community?
  (tags: wikipedia deletionpedia deletion gaming history old-man-murray web community asshats)

• The Telegraph – Calcutta (Kolkata) | Frontpage | A lesson for colony cousin : So much win in one article. (a) the Bengali equivalent of “craic” is, roughly, “phatiphati”; (b) “In Irish pubs, amid the tiddly-doo music, this is a craic”; (c) wtf Gadaffi references; (d) shared post-colonialist glee
  (tags: craic funny colonialism bengali phatiphati tiddly-doo libya india cricket)

• O2’s page on their new “block 18+ content on mobile internet” policy : O2 UK have just instituted a mandatory block for all “18+” content, which is only removed once the customer pays a UKP1 fee via credit card (which is immediately refunded). Twitter is *full* of angry UK O2 users right now
  (tags: o2 uk content credit-cards filtering censorship adult)

• TechWire: Don’t do it, Enda and Eamon : Adrian Weckler with a plea for the incoming govt regarding the attempt to rush through ‘3 Strikes’ by the outgoing one: ‘Such a law will have absolutely no effect on the practice of illegal filesharing. None. Zero. It hasn’t worked in France. It hasn’t worked in Britain. And it certainly won’t work in Ireland. On the other hand, it may well send a signal to huge, jobs-creating digital IT companies that Ireland is a place that tries to legislate away personal digital freedoms.’
  (tags: 3-strikes ireland adrian-weckler politics filesharing piracy filtering internet freedom)

• Notch on piracy: “if a pirated game is a lost sale, should bad reviews be illegal?” | PC Gamer : wish more “piracy = theft” people would think about this viewpoint. mind you, fwiw, I buy my games, and have paid for Minecraft ;)
  (tags: piracy gaming games minecraft notch)

• UK Government Agency wants your spam, but filters the submission address : doh (via Graham Cluley)
  (tags: via:gcluley spam uk filtering anti-spam doh funny)

• BikeDroid : Warren’s Android app to track DublinBike availability: ‘Use BikeDroid to locate the nearest free bike or stand to you. Get real-time status of all bike stands displayed on a map of your city.’
  (tags: bikes dublinbikes apps android mobile)

• How to block retweets : in Twitter, obvs. This is incredibly handy, and very poorly-documented
  (tags: twitter retweets annoying ui)

• BallotBox.ie Posts Emigrant-Vote Results : FG 63 seats, Labour 51, SF 23, Greens 10, Ind 11, FF 2. interesting to see SF’s strong showing among emigrants — something for electoral reformers to think about ;)
  (tags: ireland politics voting e-voting emigration)

• Dublin Bikes 2 Go! : ‘an [unofficial] mobile web application that the public can use to find ‘Dublin Bikes’ stations and information about bike availability’
  (tags: bikes dublin dublinbikes cycling mobile apps iphone android)

• Frank Zappa proposed EMusic in 1983 : incredlble — way ahead of his time on this one
  (tags: music internet filesharing business p2p emusic mp3)

It’s pretty common for apps to require "configuration" — external files which can contain settings to customise their behaviour. Ideally, apps shouldn’t require configuration, and this is always a good aim. But in some situations, it’s unavoidable.

In the abstract, it may seem attractive to use a fully-fledged programming language as the language to express configuration in. However, I think this is not a good idea. Here are some reasons why configuration files should not be expressed in a programming language (and yes, I include "Ruby without parentheses" in that bucket):

Provability

If a configuration language is Turing-incomplete, configuration files written in it can be validated "offline", ie. without executing the program it configures. All programming languages are, by definition, Turing-complete, meaning that the program must be executed in full before its configuration can be considered valid.

Offline validation is a useful feature for operational usability, as we’ve found with "spamassassin –lint".

Security

Some configuration settings may be insecure in certain circumstances; for example, in SpamAssassin, we allow certain classes of settings like whitelist/blacklists to be set in a users ~/.spamassassin/user_prefs file, while disallowing rule definitions (which can cause poor performance if poorly written).

If your configuration file is simply an evaluated chunk of code, it becomes more difficult to protect against an attacker introspecting the interpreter and overriding the security limitations. It’s not impossible, since you can, for instance, use a sandboxed interpreter, but this is typically not particularly easy to implement.

Usability

Here’s a rather hairy configuration file I’ve concocted.

    #! /usr/bin/somelanguage
    !$ app.status load html
    !c = []
    ;c['sources'] = < >
    ;c['sources'].append(
        NewConfigurationThingy("foo_bar",
            baz="flargle"))
    ;c['builders'] = < >
    ;c['bots'] = < >
    !$ app.steps load source, shell
    ;bf_mc_generic = factory.SomethingFactory( <
        woo(source.SVN, svnurl="http://example.com/foo/bar"),
        woo(shell.Configure, command="/bar/baz start"),
        woo(shell.Test, command="/bar/baz test"),
        woo(shell.Configure, command="/bar/baz stop")
        > );
    ;b1 = < "name": "mc-fast", "slavename": "mc-fast",
                 "builddir": "mc-fast", "factory": ;bf_mc_generic >
    ;c['builders'].append(;b1)
    ;SomethingOrOther = ;c

This isn’t actually entirely concocted from thin air — it’s actually bits of our BuildBot configuration file, from before we switched to using Hudson. I’ve replaced the familiar Python syntax with deliberately-unfamiliar made-up syntax, to emulate the user experience I had attempting to configure BuildBot with no pre-existing Python knowledge. ;)

Compare with this re-stating of the same configuration data in a simplified, "configuration-oriented" imaginary DSL:

add_source NewConfigurationThingy foo_bar baz=flargle

buildfactory bf_mc_generic source.SVN http://example.com/foo/bar
buildfactory bf_mc_generic shell.Configure /bar/baz start
buildfactory bf_mc_generic shell.Test /bar/baz test
buildfactory bf_mc_generic shell.Configure /bar/baz stop

add_builder name=mc-fast slavename=mc-fast
     builddir=mc-fast factory=bf_mc_generic

Essentially, I’ve extracted the useful configuration data from the hairy example, discarded the symbology used to indicate types, function calls, data structure construction, and let the configuration domain knowledge imply what’s necessary. Not only is this easier to comprehend for the casual reader, it also reduces the risk of syntax errors, by simply minimising the number of syntactical components.

See Also

The Wikipedia page on DSLs is quite good on the topic, with a succinct list of pros and cons.

This StackOverflow thread has some good comments — I particularly like this point:

When you need your application to be very "configurable" in ways that you cannot imagine today, then what you really need is a plugins system. You need to develop your application in a way that someone else can code a new plugin and hook it into your application in the future.

+1.

This seems to be a controversial topic — as you can see, that page has people on both sides of the issue. Maybe it fundamentally comes down to a matter of taste. Anyway — my $.02.

Update: discussions elsewhere: HackerNews

Another Update, 2012-04-06: Robey Pointer wrote a post called Why Config?, in which he describes a Scala-based configuration language in use at Twitter, which uses Scala’s runtime code evaluation, and a Scala trait, to express configuration succinctly in a Scala source file and load it at runtime. The downside? It’s a Scala source file, executed at runtime, containing configuration. :(

However, this comment in the comments section is worth a read:

At Netli (now part of Akamai) we had a configuration framework very similar in spirit and appearance to Configgy. It was in early 2000-s, we open sourced it since. (http://ncnf.sourceforge.net/). It would provide on-the-fly reload for the C-based programs (the ncnf if a C library). It also had some perks like attribute inheritance and a concept of block references. Most importantly though, it contained a separate schema language and a validator to allow configuration be checked before pushing in production. At Netli we used it to configure 1200 services on over 400 hardware boxes, the configuration becoming about 20+mb in length (assembled from several pieces by the CPP, then M4 templating library).

Naturally, it wasn’t Netli’s first attempt at doing configuration. One of the first attempts failed since it was Turing-complete. That approach was to specify the configuration as a Perl data specification. In a very short time the lure of unused expressiveness of such Turing-complete environment prevailed and people started to write for-loops around data pieces and doing other tricks to remove redundancy from the configuration. It turned out to be a disaster in the end, with configuration becoming unmaintainable and flaky.

One principle I got out out of that exercise is that configuration shall not be Turing-complete. We’ve got burned specifically by that property far too many times. Yet I do agree with you that a validation facility is a must-have, which is something not usually part of the simple text-based frameworks. C-based NCNF had it almost from the very beginning though, and it proved to be a very useful harness.

+1. There’s lots more info on that system at this post at lionet.livejournal.com.

Another Update, 2017-05-09: casio_juarez on Twitter:

Dev: I’ll use a declarative language for config this time.
6 months later: Let’s add variables.
12 mos: And conditionals.
18 mos: Fuck.

— 0x0DEADA55 (@casio_juarez) May 8, 2017

Also related: The Configuration Complexity Clock.

(Image credit: Turn The Dial by VERY URGENT Photography)

• Tom Morris – Request for comment: a ‘Good API’ checklist and committee : Sane suggestions for good HTTP APIs
  (tags: apis http rest open-data)

• Votomatic : Brilliant! “find out which political parties are compatible with you.” The app asks a few questions, you furnish survey-style responses, and it figures out which party is closest in published policy. It works quite well, determining that my optimum is Labour (correct)
  (tags: policies politics ireland voting elections surveys)

• How a Remote Town in Romania Has Become Cybercrime Central | Magazine : the story of Ramnicu Valcea — Romania’s Silicon Valley of phishing
  (tags: ramnica-valcea crime romania wired security spam phishing)

• U.S. Government Shuts Down 84,000 Websites, ‘By Mistake’ | TorrentFreak : DHS/ICE domain seizures suffer a serious false positive problem, resulting in the seizure and shutting down of 84,000 subdomains of a free DNS provider, replacing them with a banner accusing the site of trafficking in child porn. whoops!
  (tags: dhs ice censorship internet domains dns seizure false-positives child-porn)

• Israeli general claims Stuxnet attacks as one of his successes : ‘Haaretz reports [on a] video that was played at a party organized for General Gabi Ashkenazi’s last day on the job. The video contained references to the successes he achieved during his stint as chief of staff, [including] the Stuxnet worm attack on Iran’s uranium enrichment facility at Natanz and and the nuclear reactor at Bushehr.’
  (tags: israel iran stuxnet cyberwar via:slashdot malware)

• Gerrit, Git and Jenkins : This is the future of code review. Commit directly from your git checkout to the Gerrit code-review system; change is immediately web-visible and enters the review workflow; at the same time, Jenkins checks out the proposed change and runs the test suite; once it’s approved, it automatically gets checked in. Brilliant!
  (tags: git coding code-review workflows jenkins gerrit c-i testing automation)

• FareBot: Read data from public transit cards with your NFC-equipped Android phone – codebutler : ‘When demonstrating FareBot, many people are surprised to learn that much of the data on their ORCA card is not encrypted or protected. This fact is published by ORCA, but is not commonly known and may be of concern to some people who would rather not broadcast where they’ve been to anyone who can brush against the outside of their wallet. Transit agencies across the board should do a better job explaining to riders how the cards work and what the privacy implications are.’ (via Boing Boing)
  (tags: via:boingboing privacy android rfid security transit mobile encryption mifare desfire farebot)

• Storymap : great UI for a little Dublin oral-history site — just a GMaps mashup with links to YouTube, but it works very well
  (tags: dublin ireland storymap stories oral-history people google-maps mashups youtube video)

• Spotify Second Largest Source Of Revenue In Europe For Labels : wow. the WinAmp guys were right — ‘on a European level, Spotify is the second single largest source of revenue for record labels. This means that 2010 saw dramatic increase in its usage as well as payouts to record labels and artists themselves.’ this via an IFPI report
  (tags: ifpi music spotify streaming revenue record-labels europe sweden isps mp3)

• Zero stroke – Wikipedia, the free encyclopedia : ‘With the price of bread running into billions a loaf the German people […] had to get used to counting in thousands of billions. This, according to some German physicians, brought on a new nervous disease known as “zero stroke,” or “cipher stroke” […] The persons afflicted with the malady are perfectly normal, except “for a desire to write endless rows of ciphers and engage in computations more involved than the most difficult problems in logarithms.”‘ (via Joe Drumgoole)
  (tags: germany zero hyperinflation inflation via:jdrumgoole money brain mental-illness)

• Fine Gael’s Facebook spam campaign : jesus. Not only do they coin the cramp-inducing neologism “twolicy”, they then have the temerity to suggest that people should “donate” their Facebook status so that FG can spam their social group. awful
  (tags: facebook fine-gael twitter social-media twolicy spam)

• No Sleep ‘Til Brooklands: A True Story Of Daily Mail Lies (guest post) : how the Daily Mail (UK) works, via b3ta. mind-boggling misuse of one woman’s comments to concoct a story, according to this
  (tags: daily-mail journalism libel media newspapers law uk via:b3ta)

• Using Git to manage a web site : simple, basic demo of a git post-receive hook to auto-check-out every rev committed to a git repository
  (tags: git deployment howto via:hackernews)

• Gamasutra – News – Opinion: Minecraft And The Question Of Luck : ‘Notch’s luck was that he came across the idea of doing a first-person fortress building game. His alignment was that the game that he wanted to make was culturally connected to [he PC gamer] tribe. While the game may appear ugly, and its purchase process etc seem naive to many a gaming professional, all of those decisions that Notch made along the road to releasing his game were from the point of view of a particular perspective of what games are, what matters and what were the things that he could trust the tribe to figure out for themselves.’
  (tags: tribes viral minecraft gaming analysis games culture gamasutra via:nelson future software marketing)

• Spamwiki : good wiki tracking spam operations, their current campaigns, who’s doing it etc.
  (tags: wiki spam anti-spam)

• Spammers Are Now Using Verified By Visa : Visa’s atrociously-designed “security” program is now being used by criminals to process their credit-card payments, allegedly
  (tags: verified-by-visa spam visa security)

• Michael “Liar’s Poker” Lewis on Ireland’s economic collapse : PDF of the 15-page Vanity Fair article — from interviews I’ve read in advance, this seems pretty good
  (tags: michael-lewis vanity-fair articles pdf toread economy ireland disaster collapse)

• Dublin bikes revisited : Fantastic comparative number crunching on the JC Decaux Dublin Bikes scheme, compared to their other European cities (Brussels, Lyons, Paris, Seville), times of day, busiest stations, rainfall, etc.
  (tags: bikes dublin-bikes cycling dublin ireland jc-decaux number-crunching analysis statistics)

• Wired: how a Toronto statistician cracked the state lottery : ‘The tic-tac-toe lottery was seriously flawed. It took a few hours of studying his tickets and some statistical sleuthing, but he discovered a defect in the game: The visible numbers turned out to reveal essential information about the digits hidden under the latex coating. Nothing needed to be scratched off—the ticket could be cracked if you knew the secret code.’
  (tags: toronto hacks money statistics probability wired tic-tac-toe singleton)

• Google: Bing Is Cheating, Copying Our Search Results : laaaame, Microsoft
  (tags: lame microsoft google search honeypots stings)

• Java Hangs When Converting 2.2250738585072012e-308 : ie. the same value as the PHP bug. ‘Konstantin [Pressier] reported this problem to Oracle three weeks ago, but is still waiting for a reply.’ good job, Oracle!
  (tags: oracle fail security java bugs floating-point)

• Keeping Track of Electioneering | Election Leaflets 2011 : ‘See or post leaflets shoved through your door by parties and candidates across the land. RSS feeds and email alerts available by constituency. Add new leaflets through a web form or by email.’
  (tags: election leaflets pamphlets ge11 ireland politics fianna-fail)

• Data Protection Commissioner warns the parties not to spam in advance of the coming election : Any teeth though?
  (tags: dpc data-protection ireland spam law)

• The worst week for the worst Taoiseach in the State’s history : incredible insider account of Cowen’s final ineptitudes as FF leader. Beyond GUBU
  (tags: gubu funny inept ireland brian-cowen fianna-fail dail crazy politics)

• where Fine Gael got their new poster source images : “Google Image ‘People’ = Ethnic Diversity”. bwahahahaha
  (tags: funny fg fine-gael inept design lame google stock-photos people enda-kenny boards)

• gist: 782263 – How to redirect a running process’ output to a file and logout : a nifty gdb hack; essentially dup()s a couple of files in /tmp in place of fd 1 and 2, then uses the bashism “detach” to nohup the running process
  (tags: gdb hacks linux process shell unix via:hn nifty dup detach bash)

• apenwarr/sshuttle – GitHub : ‘Any TCP session you initiate to one of the proxied IP addresses [specified on the command line] will be captured by sshuttle and sent over an ssh session to the remote copy of sshuttle, which will then regenerate the connection on that end, and funnel the data back and forth through ssh. Fun, right? A poor man’s instant VPN, and you don’t even have to have admin access on the server.’
  (tags: vpn ssh security linux opensource tcp networking tunnelling port-forwarding)

• Why djb redo won’t be the Git of build systems : A counter-argument: “so, redo, from a conceptual point of view, has a really good and simple approach (very djb-y), and I’m sure it’s an excellent tool for new projects, but for existing projects that already use make in a non-recursive fashion, it would a maintenance PITA. And that’s why I conclude that redo in its current conceptual state will never be the Git of build systems. make is still more flexible, and even though it has its flaws, it’s still good enough for most people, and also a de-facto standard.”
  (tags: redo build djb building make compilation)

• The things make got right (and how to make it better) : jgc provides a good demonstration of how a general-purpose programming language tends to make a crappy DSL — specifically Rakefiles
  (tags: dsl build make coding jgc languages configuration makefiles rake ruby)

• good Hacker News thread on djb’s “redo” : YA make-replacement build system. the thread is better than the linked article, btw
  (tags: hacker-news via:fanf make build djb redo compilation building coding open-source)

• CareerZoo : jobs fair this weekend in Dublin, in The Mansion House — if you’re interested in talking to someone about working for Amazon, come along! (plug plug)
  (tags: amazon work dublin hiring careers jobs)