Flare flare are you tonight

Ok, so the title is a reference to a staple of the old Hee Haw show.

After speculating that the flares I saw Saturday night might have been launched by the Raleigh Fire Department to gauge the wind currents before the Wide Open Bluegrass fireworks that night, I reached out to department officials this morning to learn if the FD did this sort of thing.

I got a call back this afternoon from the official who approved the city’s fireworks permit and we had a good chat. He told me they don’t normally launch anything to gauge the wind but rely on observed conditions and the weather forecast. He said that the location I guessed the flares were coming from would’ve been too far away from the fireworks site to be useful, anyway.

The bottom line is that the mystery flares are not the work of the fire department, after all. Now I’m really going to have to work to track this thing further.

Photographing a Color Run Will Destroy Your Camera Gear–Don’t Do It

Yikes! This color run powder is nasty stuff on camera lenses. Imagine what it must do to your lungs!

If there hasn’t been a Color Run 5k or 10k race near you, there probably will be soon. And with all that color, you certainly want to take some pictures, right? Not with your camera you don’t.

I’m never one to worry much about lens dust, but the color bombs they throw out at Color Runs are different. In the last month my lens rental business has had over 20 lenses and several cameras nearly ruined by these things. For what it’s worth, all of the renters tell us they really weren’t near any of the major ‘color bombs.’

via Photographing a Color Run Will Destroy Your Camera Gear–Don’t Do It.

PopSci decides Internet comments are “bad for science.” That’s lazy and wrong.

Slate’s Will Oremus has a nice counterpoint to Popular Science’s recent decision to disallow comments on its web stories.

Now, I get as annoyed as the next right-thinking person when Internet commenters misconstrue scientific research—let alone when they regale me with tales of their aunt’s third cousin who makes $73 an hour working from home. But I couldn’t help but notice an almost religious zeal in LaBarre’s framing of her magazine’s mission. Spreading the word of science? Undermining bedrock scientific doctrine? Substitute “Christianity” for “science” and “Christian” for “scientific” in those two phrases and perhaps you’ll see what makes me uncomfortable here. These aren’t the words of a scientist. They’re the words of an evangelist.

via Future Tense.

Latest Casualty Of NSA Spying Revelations: Web Advertising Based On Tracking Users

I’m so trendy.

As we’ve noted before, Edward Snowden’s revelations about the globe-spanning spying being conducted by the NSA are have all sorts of interesting knock-on consequences. Here’s another: people are starting to worry about being tracked by online advertisers, and taking action to avoid it,

via Latest Casualty Of NSA Spying Revelations: Web Advertising Based On Tracking Users | Techdirt.

N&O still miffed about closed sessions

I sure do wish the News and Observer would let the Raleigh City Council do its due diligence in hiring a city manager. Saturday’s front-page teaser about a closed session last week made me mad:

McFarlane holds closed City Council session

Raleigh Mayor Nancy McFarlane presides over a non-public session that raises questions about compliance with the state’s open meetings law.

Um, no it doesn’t. It pertained to the city manager hiring process and the mayor was correct in calling for a closed session.

I’ll say it again: making job candidates public puts them in a precarious position with their current employers. Raleigh has had dozens of candidates respond to the city manager listing. Each of them might be fired from their current job if word got out that they were looking.

I’ll say another thing again: if the media expects city officials to respect the parts of Open Meetings that benefit them, they must also respect the parts of Open Meetings which allows city officials to conduct their personnel procedures in private.

Hiring a city manager is the most important decision a city council can make. The city manager is only one of two direct reports to the council. Why can’t the News and Observer leave the city council alone and let them pursue the best person for the job?

Linux Weekly News discusses 2003 Linux kernel attempted hack

Here’s a technical explanation from a Linux Weekly News contributor on the 2003 Linux Kernel hack.

An attempt to backdoor the kernel
[Posted November 6, 2003 by corbet]

The mainline 2.4 and 2.6.0-test kernels are both currently maintained in BitKeeper repositories. As a service for those who, for whatever reason, are unable or unwilling to use BitKeeper, however, the folks at BitMover have set up a separate CVS repository. That repository contains the current code and the full revision history. It is not, however, the place where new changes are committed. So, when somebody managed to push some changes directly into CVS, Larry McVoy noticed quickly.

Over the years, people have had numerous things to say about BitKeeper and the people behind it. Nobody, however, has accused them of being insufficiently careful. Every change in the CVS repository includes backlink information tying it to the equivalent BitKeeper changesets. The changes in question lacked that information, and thus stood out immediately.
Continue reading →

Revisiting a 2003 attack on the Linux kernel

Back in 2003, someone tried and failed to plant a security exploit into the Linux kernel code in a sophisticated and well-though-out operation. In light of yesterday’s revelations of NSA teams actively working to weaken software security, this incident from a decade ago raises some questions.

It also highlights why having the source code to your software is the only way to be sure it’s secure.

An unknown intruder attempted to insert a Trojan horse program into the code of the next version of the Linux kernel, stored at a publicly accessible database.

Security features of the source-code repository, known as BitKeeper, detected the illicit change within 24 hours, and the public database was shut down, a key developer said Thursday.

An intruder apparently compromised one server earlier, and the attacker used his access to make a small change to one of the source code files, McVoy said. The change created a flaw that could have elevated a person’s privileges on any Linux machine that runs a kernel compiled with the modified source code. However, only developers who used that database were affected–and only during a 24-hour period, he added.

via Attempted attack on Linux kernel foiled – CNET News.

Ex-spooks debate Snowden’s actions

I’m a member of a Facebook group called United States Navy Cryptologic Technicians. Last week a member authored a post which questioned why NSA leaker Edward Snowden wasn’t being hunted down with all available resources. It spawned a very lively debate amongst ex-spooks about Snowden’s motives and those of the NSA, a debate which continues as I post this. There are many former spooks like myself who find the NSA’s new reach to be quite alarming, while others seem to be comfortable with Americans’ almost complete lack of online privacy. Several point out that Snowden took an oath to protect this information and broke his oath.

I took a similar oath when gained my security clearance. Like every other servicemember, however, the first oath I took was support and defend the Constitution of the United States “against all enemies, foreign and domestic.” To the extent that the latter conflicts with the former, the former (being the law of the land) always takes precedence. In addition, it was drilled into us as sailors that it was our duty to disobey an unlawful order. In hindsight this is far easier to say than do, as in practice disobeying a lawful order would most likely put you in a world of hurt. At least the government would come out looking good during your court-martial.
Continue reading →

Distracted driving day

As if to prove yesterday’s point about distracted driving, on my way home from work I had the unfortunate luck to be driving next to a young woman busy texting. Her car was weaving over both sides of her lane, on Wade Avenue, nontheless, where opposing traffic whizzes by only a foot or two away. I honked the time she nearly nudged me off the road and spent the rest of my drive glowering at her in my rear-view mirror, hoping she had enough sense to notice if I stopped.

I have never before called the cops on anyone texting while driving but I swear that drivers doing this might as well be driving drunk. The next dumbshit driver that weaves into my lane, hunched over his or her phone, is going to be promptly referred to authorities. I don’t feel like playing Russian Roulette on the roads anymore.

Warner Herzog created a short, powerful film that addresses this texting problem. I’m going to make sure our kids see it.

Tigo responds

It didn’t take long before I got a response from Tigo when I complained about needed a subscription to my data. I got emails from both the cofounder, Ron Hadar, and the VP of Professional Services, Scott McCalmont. Ron’s email came in around noon and Scott’s followed soon afterward.

I give points to both Ron and Scott for their quick, personal responses. Both of them acknowledged my viewpoint but emphasized their need to run a business. Scott’s response barely hid his contempt, however, which is not what I would expect from someone in a customer-facing role:

For example, we send an alert to customers when their Management Unit goes offline. You clearly don’t think this is useful or valuable, but many customers do.

On the other hand, I am an irritated, snarky customer and my type is not always fun to deal with, so touché.

Perusing the Tigo forums, I see other Tigo owners are also unhappy with the subscription aspect: Continue reading →

S	M	T	W	T	F	S
					1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30