Login now

Not your profile? Login and get free access to your reports and analysis.

Tags

Sign in

The following tags have been added by users of CircleCount.com.
You can login on CircleCount to add more tags here.

  • Geeks

Are you missing a tag in the list of available tags? You can suggest new tags here.

Login now

Do you want to see a more detailed chart? Check your settings and define your favorite chart type.

Or click here to get the detailed chart only once.

Shared Circles including Theodore Ts'o

Shared Circles are not available on Google+ anymore, but you can find them still here.

The Google+ Collections of Theodore Ts'o

117091380454742934025 has no public Google+ Collections yet.

Activity

Average numbers for the latest posts (max. 50 posts, posted within the last 4 weeks)

8
comments per post
11
reshares per post
40
+1's per post

842
characters per posting

Top posts in the last 50 posts

Most comments: 98

posted image

2014-11-12 23:37:53 (98 comments, 44 reshares, 175 +1s)Open 

I'm using systemd on my laptop (largely because I figure in the long run I have no choice).   And as the meme below states, I don't actually hate systemd.   What I strongly dislike is when other compoents start using systemd-specific API's such that you can no longer use alternate implementations of various systemd replacements of other low-level components (i.e., ntpd, the resolver, etc., etc.)

I know that +Tom Gundersen very much hates the comparison, but it's much like web sites who start using Microsoft ActiveX controls in their web sites, thus enabling Microsoft's, "Embrace, Extend, Extinguish" statrategy.   It's not that Internet Explorer was evil; it was that it was part and parcel of an Embrace and Extended strategy which was evil.   So if a distribution wants to use systemd, that's fine.   As I said, I'm using it on my laptop.... more »

Most reshares: 126

posted image

2014-08-09 23:28:16 (14 comments, 126 reshares, 187 +1s)Open 

If you don't have time to watch this keynote by Dan Geer, and you are at all interested in Cybersecurity, make time.   Alternatively, the text of his speech is here:  http://geer.tinho.net/geer.blackhat.6viii14.txt.   In some ways it's actually better to read the text, since a good part of the conclusion was cut due to time pressure.

Most plusones: 189

posted image

2014-08-31 00:55:45 (71 comments, 57 reshares, 189 +1s)Open 

Вчера Диме +Dmitriy Monakhov дали 15 суток за одиночный пикет против войны с Украиной. В прошлый раз дело закончилось больницей (см. статью).

Как я уже раньше писал, Дима мой коллега, выпускник Физтеха, спортсмен-лыжник и толковый программист -- разработчик ядра Linux. Вот статистика его коммитов в ядро:

[kir@kir-tpad linux]$ git log --pretty=short | grep '^Author: ' | grep -c Monakhov 
169

Latest 50 posts

posted image

2015-08-25 22:37:24 (24 comments, 32 reshares, 85 +1s)Open 

+AT&T: The same company that cooperated with the NSA is now playing man-in-the-middle and manipulating your http connections to inject advertisements.

+AT&T: The same company that cooperated with the NSA is now playing man-in-the-middle and manipulating your http connections to inject advertisements.___

posted image

2015-08-16 01:05:02 (0 comments, 2 reshares, 26 +1s)Open 

I just wanted to give a shout out to +SendGrid.  Even though I'm very clearly outside their primary target market as far as paying customers are concerned, they quickly provisioned me with a free tier account which I was able to use with gce-xfstests so that someone can get e-mail notifications from a GCE VM running the file system regression tests.

Setting it up was relatively painless: https://git.kernel.org/cgit/fs/ext2/xfstests-bld.git/commit/?id=052e1564a5c2b17f23a2eae27be7c27be737e7c7

If you're using gce-xfstests, you will need to get your own sendgrid account (just ask to have a free tier account provisioned), and then configure GCE_SG_USER and GCE_SG_PASS in ~/.config/kvm-xfstests.

Thanks, +SendGrid!

I just wanted to give a shout out to +SendGrid.  Even though I'm very clearly outside their primary target market as far as paying customers are concerned, they quickly provisioned me with a free tier account which I was able to use with gce-xfstests so that someone can get e-mail notifications from a GCE VM running the file system regression tests.

Setting it up was relatively painless: https://git.kernel.org/cgit/fs/ext2/xfstests-bld.git/commit/?id=052e1564a5c2b17f23a2eae27be7c27be737e7c7

If you're using gce-xfstests, you will need to get your own sendgrid account (just ask to have a free tier account provisioned), and then configure GCE_SG_USER and GCE_SG_PASS in ~/.config/kvm-xfstests.

Thanks, +SendGrid!___

posted image

2015-08-06 21:32:44 (1 comments, 0 reshares, 8 +1s)Open 

Dear lazy G+ --- has anyone managed to compile coreutils for aarch64-android (i..e, arm64 for Android's bionic libc)?    I'm aware of Sonelli's docker repo[1], but it only supports 32-bit arm, and it's not at all obvious how the patches in that repo work around the truly awe-inspiring abstraction violations committed by coreutils into the C library's stdio implementation (among other non-portable hacks perpetrated by the coreutils sources).

If you have, patches and instructions for how to set up the cross compilation environment (preferably using the Android NDK, but I'm not picky) would be gratefully appreciated.

[1] https://github.com/Sonelli/android-coreutils

EDIT: Wasn't as bad as I feared.   Using coreutils 8.24 fixed most of the problems, and the rest weren't that nasty to work around, mercifully.

Dear lazy G+ --- has anyone managed to compile coreutils for aarch64-android (i..e, arm64 for Android's bionic libc)?    I'm aware of Sonelli's docker repo[1], but it only supports 32-bit arm, and it's not at all obvious how the patches in that repo work around the truly awe-inspiring abstraction violations committed by coreutils into the C library's stdio implementation (among other non-portable hacks perpetrated by the coreutils sources).

If you have, patches and instructions for how to set up the cross compilation environment (preferably using the Android NDK, but I'm not picky) would be gratefully appreciated.

[1] https://github.com/Sonelli/android-coreutils

EDIT: Wasn't as bad as I feared.   Using coreutils 8.24 fixed most of the problems, and the rest weren't that nasty to work around, mercifully.___

2015-08-04 16:30:22 (14 comments, 6 reshares, 67 +1s)Open 

I have xfstests running under Google Compute Engine!   It uses kexec to launch the kernel to be tested, and using a n1-highcpu-4 machine with 100GB of SSD provisioned Persistent Disk, and given that I have 10 test configs with each test config taking 40 minutes to run the auto test group for a total of test runtime of around 7 hours, I estimate that it costs roughly $1.25 to do a complete regression test run for ext4.  (BTW, this used to take 24 hours to run on my laptop or desktop)

I have xfstests running under Google Compute Engine!   It uses kexec to launch the kernel to be tested, and using a n1-highcpu-4 machine with 100GB of SSD provisioned Persistent Disk, and given that I have 10 test configs with each test config taking 40 minutes to run the auto test group for a total of test runtime of around 7 hours, I estimate that it costs roughly $1.25 to do a complete regression test run for ext4.  (BTW, this used to take 24 hours to run on my laptop or desktop)___

posted image

2015-07-15 23:04:46 (12 comments, 7 reshares, 35 +1s)Open 

Very interesting... some vegatables (including organic veggies, so paying $$$ extra may not help; in fact, it might make it worse) may be using fertilizer which has a lot of heavy metals.    

Very interesting... some vegatables (including organic veggies, so paying $$$ extra may not help; in fact, it might make it worse) may be using fertilizer which has a lot of heavy metals.    ___

2015-07-02 22:42:39 (15 comments, 4 reshares, 36 +1s)Open 

To people making commits to the Linux kernel.  It would save me a bunch of work (and for others are trying to gather statistics for things like "who writes the Linux kernel") if you use an editor macro to add the "Signed-off-by" and "Acked-by" lines.   This avoids noise like this:

1 Eric Dumaze <edumazet@google.com>
441 Eric Dumazet <edumazet@google.com>
1 Eric Dumazet  <edumazet@google.com>
1 Eric DUmazet <edumazet@google.com>
1 Eric Dumazet <edumzet@google.com>
1 Eric Dumazet <eric.dumazet@gmail.com>

I also see variation in the git Author and Committer fields, although admittedly less since this tends to be automated; however there are times when it's obvious that some developers don't have a .gitconfig file on all of their systems.

kthxbye

To people making commits to the Linux kernel.  It would save me a bunch of work (and for others are trying to gather statistics for things like "who writes the Linux kernel") if you use an editor macro to add the "Signed-off-by" and "Acked-by" lines.   This avoids noise like this:

1 Eric Dumaze <edumazet@google.com>
441 Eric Dumazet <edumazet@google.com>
1 Eric Dumazet  <edumazet@google.com>
1 Eric DUmazet <edumazet@google.com>
1 Eric Dumazet <edumzet@google.com>
1 Eric Dumazet <eric.dumazet@gmail.com>

I also see variation in the git Author and Committer fields, although admittedly less since this tends to be automated; however there are times when it's obvious that some developers don't have a .gitconfig file on all of their systems.

kthxbye___

2015-06-12 03:43:01 (28 comments, 2 reshares, 37 +1s)Open 

Trying to port features to the Qualcom msm kernel makes me very grumpy.   It would be awfully nice if Qualcomm engineers would (a) not break building the kernel under x86, and (b) use randconfig to make sure the kernel builds with something other than a very specific .config file.    Sigh....

Trying to port features to the Qualcom msm kernel makes me very grumpy.   It would be awfully nice if Qualcomm engineers would (a) not break building the kernel under x86, and (b) use randconfig to make sure the kernel builds with something other than a very specific .config file.    Sigh....___

2015-04-24 01:48:23 (11 comments, 1 reshares, 40 +1s)Open 

So it looks like Chrome beta finally has High DPI support for Linux.   Excellent!

(I'm currently running 43.0.2357.18 but I see 43.0.2357.37 has been downloaded and I should get that as soon as I restart my browser.)

So it looks like Chrome beta finally has High DPI support for Linux.   Excellent!

(I'm currently running 43.0.2357.18 but I see 43.0.2357.37 has been downloaded and I should get that as soon as I restart my browser.)___

posted image

2015-03-26 00:11:16 (6 comments, 10 reshares, 61 +1s)Open 

If you are a voter in the US, please consider signing this.

If you aren't, don't be too smug. Pretty much all other countries have less controls on their spooks compared to the US; some countries might be less competent at implementing a panopticon, but GHCQ (for example) has admitted that they can put any British subject under surveillance if they feel like it, without needing to suspect that the person has committed a crime, and without asking a judge first. 

If you are a voter in the US, please consider signing this.

If you aren't, don't be too smug. Pretty much all other countries have less controls on their spooks compared to the US; some countries might be less competent at implementing a panopticon, but GHCQ (for example) has admitted that they can put any British subject under surveillance if they feel like it, without needing to suspect that the person has committed a crime, and without asking a judge first. ___

2015-03-17 22:08:34 (35 comments, 17 reshares, 76 +1s)Open 

Very, very, scary.   This once again proves that if you can run local code, you can probably break root one way or another.

+Jej B This is an example of a vulnerability for which if you use a hypervisor, you would be much safer than if you were merely using containers for your security isolation.

Very, very, scary.   This once again proves that if you can run local code, you can probably break root one way or another.

+Jej B This is an example of a vulnerability for which if you use a hypervisor, you would be much safer than if you were merely using containers for your security isolation.___

posted image

2015-03-16 16:45:36 (3 comments, 0 reshares, 4 +1s)Open 

I like this live version better than the version on the "Dot the Dragon's Eyes" album!

I like this live version better than the version on the "Dot the Dragon's Eyes" album!___

2015-03-07 17:03:46 (8 comments, 3 reshares, 41 +1s)Open 

With apologies to John von Neumann, anyone who makes function prototypes change depending on a #define, like those who considers arithmetical methods of producing random digits, is in a state of sin.

With apologies to John von Neumann, anyone who makes function prototypes change depending on a #define, like those who considers arithmetical methods of producing random digits, is in a state of sin.___

posted image

2015-03-07 14:42:04 (12 comments, 3 reshares, 21 +1s)Open 

No matter how rational this sounds, I'm sure the crazies on the right (in the US and in Israel) will say that The Haaretz is filled with self-hating Jews.....

No matter how rational this sounds, I'm sure the crazies on the right (in the US and in Israel) will say that The Haaretz is filled with self-hating Jews.....___

2015-03-05 13:13:24 (30 comments, 3 reshares, 88 +1s)Open 

Friends don't let friends use libtool. 

Friends don't let friends use libtool. ___

posted image

2015-03-04 03:25:59 (4 comments, 3 reshares, 13 +1s)Open 

It's really neat to come across a sermon that uses a Science Fiction novel as a hook --- especially when said science fiction story is a send up of the Star Trek convention of Red Shirts.

It's really neat to come across a sermon that uses a Science Fiction novel as a hook --- especially when said science fiction story is a send up of the Star Trek convention of Red Shirts.___

posted image

2015-02-28 00:39:21 (21 comments, 9 reshares, 69 +1s)Open 

This is so cool!  (Hmm, maybe a poor choice of words)  Due to the permafrost melting due to higher temperatures, pockets of methane that had been previously contained within snow and ice are bursting forth leaving a gigantic crater behind.  In some cases, the methane gas has even ignited.

And as I recall Methane is a rather potent greenhouse gas.   <sarcasm>But, as some will point out, this isn't a direct result of human activity, so we don't need to do anything about it.</sarcasm>

This is so cool!  (Hmm, maybe a poor choice of words)  Due to the permafrost melting due to higher temperatures, pockets of methane that had been previously contained within snow and ice are bursting forth leaving a gigantic crater behind.  In some cases, the methane gas has even ignited.

And as I recall Methane is a rather potent greenhouse gas.   <sarcasm>But, as some will point out, this isn't a direct result of human activity, so we don't need to do anything about it.</sarcasm>___

2015-02-09 20:10:33 (29 comments, 1 reshares, 30 +1s)Open 

I tried building util-linux 2.17.2 using a modern autotools; autopoint called m4 in a way that caused it loop infinitely.   I tried bypassing it, calling aclocal manually, and it blew up.   And this is why I refuse to use anything other than autoconf, with the macros that come with it, and why I check in a generated configure script into git. 

I tried building util-linux 2.17.2 using a modern autotools; autopoint called m4 in a way that caused it loop infinitely.   I tried bypassing it, calling aclocal manually, and it blew up.   And this is why I refuse to use anything other than autoconf, with the macros that come with it, and why I check in a generated configure script into git. ___

2015-02-08 23:47:19 (13 comments, 10 reshares, 62 +1s)Open 

Fortunately, Google interviews are nothing like this.

However, we might ask you demonstrate your facility with using a hammer (writing code on a whiteboard) and if you've been spoiled by using a nail gun (some fancy IDE), you might find yourself surprised.

We might also ask you to do the programming equivalent of being able to do a Dovetail joint using hand tools, even if in practice of the time you will be using joist hangers.

Which might seem like a waste of time, but after I've seen what happens to a system like say, Lotus Notes, when you say something like "cache line miss" to a Java programmer and they look at you with this "deer-in-headlights" look, I actually think it's a good idea.

"Well, our architects have all started using rocks, and they like it."___Fortunately, Google interviews are nothing like this.

However, we might ask you demonstrate your facility with using a hammer (writing code on a whiteboard) and if you've been spoiled by using a nail gun (some fancy IDE), you might find yourself surprised.

We might also ask you to do the programming equivalent of being able to do a Dovetail joint using hand tools, even if in practice of the time you will be using joist hangers.

Which might seem like a waste of time, but after I've seen what happens to a system like say, Lotus Notes, when you say something like "cache line miss" to a Java programmer and they look at you with this "deer-in-headlights" look, I actually think it's a good idea.

2014-12-24 02:58:23 (23 comments, 22 reshares, 69 +1s)Open 

+Marriott  is trying to get the FCC to say that it's OK for hotels (and them, specifically) to block Wifi signals from their customers hotspots, so they can rip them off with their $$$ pricey crappy wifi service.

If this bothers you, feel free to comment here: http://apps.fcc.gov/ecfs/proceeding/view?name=RM-11737

+Marriott  is trying to get the FCC to say that it's OK for hotels (and them, specifically) to block Wifi signals from their customers hotspots, so they can rip them off with their $$$ pricey crappy wifi service.

If this bothers you, feel free to comment here: http://apps.fcc.gov/ecfs/proceeding/view?name=RM-11737___

posted image

2014-12-16 21:13:45 (30 comments, 34 reshares, 124 +1s)Open 

"Yes, I know that Microsoft likes to have everything glued together like a kindergarten art project gone berserk, but this is ridiculous. Having been a Unix guy for decades, I’m accustomed to a philosophy of using simple programs and then building applications up from them. What Microsoft was requiring — get the patch, uninstall Office, install the hotfix, and then reinstall Office — makes my skin crawl. To me, it’s just unacceptable, even in beta."

Fortunately, in Linux we would never try to glue together lots of low-level system components into a kindergarten art project gone berserk, right?

"Yes, I know that Microsoft likes to have everything glued together like a kindergarten art project gone berserk, but this is ridiculous. Having been a Unix guy for decades, I’m accustomed to a philosophy of using simple programs and then building applications up from them. What Microsoft was requiring — get the patch, uninstall Office, install the hotfix, and then reinstall Office — makes my skin crawl. To me, it’s just unacceptable, even in beta."

Fortunately, in Linux we would never try to glue together lots of low-level system components into a kindergarten art project gone berserk, right?___

posted image

2014-12-11 14:15:54 (38 comments, 6 reshares, 62 +1s)Open 

From a defender of the CIA:

"In the end, this doesn’t come down to a question of human rights because the enemies we are dealing with don’t deserve the label of “human” to many of us. "

Sigh....

From a defender of the CIA:

"In the end, this doesn’t come down to a question of human rights because the enemies we are dealing with don’t deserve the label of “human” to many of us. "

Sigh....___

posted image

2014-11-13 19:20:24 (3 comments, 8 reshares, 40 +1s)Open 

In other news, the FBI is asking the US to trust them and give them more guaranteed access to spy on Americans.

In other news, the FBI is asking the US to trust them and give them more guaranteed access to spy on Americans.___

posted image

2014-11-12 23:37:53 (98 comments, 44 reshares, 175 +1s)Open 

I'm using systemd on my laptop (largely because I figure in the long run I have no choice).   And as the meme below states, I don't actually hate systemd.   What I strongly dislike is when other compoents start using systemd-specific API's such that you can no longer use alternate implementations of various systemd replacements of other low-level components (i.e., ntpd, the resolver, etc., etc.)

I know that +Tom Gundersen very much hates the comparison, but it's much like web sites who start using Microsoft ActiveX controls in their web sites, thus enabling Microsoft's, "Embrace, Extend, Extinguish" statrategy.   It's not that Internet Explorer was evil; it was that it was part and parcel of an Embrace and Extended strategy which was evil.   So if a distribution wants to use systemd, that's fine.   As I said, I'm using it on my laptop.... more »

I'm using systemd on my laptop (largely because I figure in the long run I have no choice).   And as the meme below states, I don't actually hate systemd.   What I strongly dislike is when other compoents start using systemd-specific API's such that you can no longer use alternate implementations of various systemd replacements of other low-level components (i.e., ntpd, the resolver, etc., etc.)

I know that +Tom Gundersen very much hates the comparison, but it's much like web sites who start using Microsoft ActiveX controls in their web sites, thus enabling Microsoft's, "Embrace, Extend, Extinguish" statrategy.   It's not that Internet Explorer was evil; it was that it was part and parcel of an Embrace and Extended strategy which was evil.   So if a distribution wants to use systemd, that's fine.   As I said, I'm using it on my laptop.

But in the name of all that's holy, please, if you are a developer wondering if you should use some systemd-exclusive API or facility, please make it optional at run-time.   If it turns out that there is a horrible security bug in a systemd component or if it only supports a certain desktop use case and is terrible at some other use case, it should be possible to replace it with an equivalent component.   That can only happen if you don't buy in to systemd's lock-in strategy.___

posted image

2014-11-12 16:09:57 (71 comments, 12 reshares, 67 +1s)Open 

Systemd tries to subsume another low level system component.   News at 11.

Systemd tries to subsume another low level system component.   News at 11.___

2014-11-03 21:23:23 (20 comments, 2 reshares, 18 +1s)Open 

Dear Lazy G+:  Is anyone aware of a commercial VPN used to provide anonymity / privacy (i.e., uses shared outbound IP addresses, and keeps no logs, etc.) ala privateinternetaccess.com but which does so for both IPv4 and IPv6?    Right now it appears most of the VPN services are IPv4 only, and in fact if you are using a VPN for security and/or privacy, you need to make sure IPv6 is disabled on your host so that you don't have some of your outbound TCP connections bypassing the VPN and going out via the unsecured public coffeehouse network (if it happens to IPv6 enabled).

Of course, at the moment as near as I can tell IPv6 is providing me with no benefit whatsoever, so I don't mind just disabling IPv6 on my laptop, but eventually there will be some hosts that are available on IPv6 only --- and of course I do feel some obligation to support IPv6 if I can.   Any suggestions?

Dear Lazy G+:  Is anyone aware of a commercial VPN used to provide anonymity / privacy (i.e., uses shared outbound IP addresses, and keeps no logs, etc.) ala privateinternetaccess.com but which does so for both IPv4 and IPv6?    Right now it appears most of the VPN services are IPv4 only, and in fact if you are using a VPN for security and/or privacy, you need to make sure IPv6 is disabled on your host so that you don't have some of your outbound TCP connections bypassing the VPN and going out via the unsecured public coffeehouse network (if it happens to IPv6 enabled).

Of course, at the moment as near as I can tell IPv6 is providing me with no benefit whatsoever, so I don't mind just disabling IPv6 on my laptop, but eventually there will be some hosts that are available on IPv6 only --- and of course I do feel some obligation to support IPv6 if I can.   Any suggestions?___

2014-10-21 20:44:49 (22 comments, 31 reshares, 65 +1s)Open 

This is very scary; although the paper talks about this as a Windows 8 / UEFI vulnerability, it looks like it's applicable to any OS running on a vulnerable UEFI bios.

Have you updated your BIOS lately?

This is very scary; although the paper talks about this as a Windows 8 / UEFI vulnerability, it looks like it's applicable to any OS running on a vulnerable UEFI bios.

Have you updated your BIOS lately?___

2014-10-18 01:25:45 (75 comments, 5 reshares, 36 +1s)Open 

After listening to +Karen Sandler's talk at LinuxCon EU about how GNOME has an unfair reputation, I thought I would take a closer look at GNOME 3.14.   Looking at some initial research, it looks like the extensions that provide (or might provide; it's hard to tell because they aren't documented all that well) a static set of workspaces which are laid out in a two-dimensional grid haven't yet been ported to GNOME 3.14, and one of them had an advertisement explicitly stating that it was very likely it would break with every new GNOME release.

Dear Lazy G+, does anyone know if you can make 2-D static workspaces work with GNOME 3.14?   And if so, what magic secret registry settings I might need to make something that works mostly like XFCE?   (i.e., I want control over whether closing the lid suspends the laptop or not, etc., configurable panes on the left and right hand sideswh... more »

After listening to +Karen Sandler's talk at LinuxCon EU about how GNOME has an unfair reputation, I thought I would take a closer look at GNOME 3.14.   Looking at some initial research, it looks like the extensions that provide (or might provide; it's hard to tell because they aren't documented all that well) a static set of workspaces which are laid out in a two-dimensional grid haven't yet been ported to GNOME 3.14, and one of them had an advertisement explicitly stating that it was very likely it would break with every new GNOME release.

Dear Lazy G+, does anyone know if you can make 2-D static workspaces work with GNOME 3.14?   And if so, what magic secret registry settings I might need to make something that works mostly like XFCE?   (i.e., I want control over whether closing the lid suspends the laptop or not, etc., configurable panes on the left and right hand sides where I can control which launchers go where on the panels, the ability to configure keyboard shortcuts for moving between workspaces, moving windows between workstations via up, down, left, right arrows, etc., keyboard shortcuts for locking the screen, manually suspending the laptop, etc.)

If the answer is that GNOME doesn't let me do any of these things, or in a way that isn't guaranteed to not to randomly break from GNOME version to GNOME version, that's fine.   But I'll keep repeating the meme that GNOME is power user hostile --- or at least, hostile to this power user.  :-)___

posted image

2014-10-09 01:37:14 (4 comments, 4 reshares, 39 +1s)Open 

And this is why +Comcastcares doesn't.

Oh boy.

And here's Comcast's quick apology now that the shit hit the fan: http://corporate.comcast.com/comcast-voices/a-public-apology-to-conal-orourke.

What a rotten company, too big to operate in a way that takes good care of customers.___And this is why +Comcastcares doesn't.

posted image

2014-10-06 02:36:01 (31 comments, 12 reshares, 96 +1s)Open 

And this is why we can't trust the legacy newspapers to get anything right.   To paraphrase the +Washington Post: "Backdoors are evil.  But we need a compromise.  What if Apple and Google were to put in a Backdoor?"  #NewspaperEditorsAreIdiots

And this is why we can't trust the legacy newspapers to get anything right.   To paraphrase the +Washington Post: "Backdoors are evil.  But we need a compromise.  What if Apple and Google were to put in a Backdoor?"  #NewspaperEditorsAreIdiots___

2014-09-24 14:11:08 (23 comments, 2 reshares, 69 +1s)Open 

The authors of "How Google Works" have given electronic versions of "How Google Works" to all Google employees.   Since I had already purchased a copy via pre-order, to make life interesting, I've decided to give my Google Play coupon code to someone via an electronic lottery.

EDIT: It's been called to my attention that using the +1 button violates one of Google's G+ policies.   Oops.   So I'm going to use an e-mail based system instead.  For more details, please see:

http://thunk.org/tytso/blog/2014/09/24/google-book-giveaway/

Apologies for the horrible page design.   My blog got restored from backups after my server hard disk crashed, and I've never gotten around to fixing up the Wordpress theme, since I've been using G+ mostly.

The authors of "How Google Works" have given electronic versions of "How Google Works" to all Google employees.   Since I had already purchased a copy via pre-order, to make life interesting, I've decided to give my Google Play coupon code to someone via an electronic lottery.

EDIT: It's been called to my attention that using the +1 button violates one of Google's G+ policies.   Oops.   So I'm going to use an e-mail based system instead.  For more details, please see:

http://thunk.org/tytso/blog/2014/09/24/google-book-giveaway/

Apologies for the horrible page design.   My blog got restored from backups after my server hard disk crashed, and I've never gotten around to fixing up the Wordpress theme, since I've been using G+ mostly.___

posted image

2014-09-23 21:06:36 (22 comments, 7 reshares, 44 +1s)Open 

It's important to have compassion for those who are living in poverty.

Dang.___It's important to have compassion for those who are living in poverty.

posted image

2014-09-10 12:23:43 (9 comments, 43 reshares, 151 +1s)Open 

This was so very funny, even if it had a few low blows....  

"The Apple Watch stands for 'A Pleasantly Plump Little Electronic Watch  Android's Terrible Come Here'."

"Now a lot of people think the Apple Watch requires an iPhone.... and they're right.   If you iPhone 4S or lower, it won't work.   If you have an Android phone, get the f*ck out.  If you have a Windows Phone.... <snicker> just kidding."

"It's the new Apple iWatch... Apple Watch.  You didn't really ask for it, so here you go."

This was so very funny, even if it had a few low blows....  

"The Apple Watch stands for 'A Pleasantly Plump Little Electronic Watch  Android's Terrible Come Here'."

"Now a lot of people think the Apple Watch requires an iPhone.... and they're right.   If you iPhone 4S or lower, it won't work.   If you have an Android phone, get the f*ck out.  If you have a Windows Phone.... <snicker> just kidding."

"It's the new Apple iWatch... Apple Watch.  You didn't really ask for it, so here you go."___

2014-09-08 04:15:25 (24 comments, 2 reshares, 63 +1s)Open 

People sometimes ask me what I do as the ext4 file system maintainer.   It's actually not that glamorous.  Mainly, I review patches; do a lot of code cleanup to keep the code maintainable, and I develop tools so that other ext4 developers can test their work --- which hopefully improves the quality of their code submissions, which saves me time and hopefully makes ext4 users happier.

People sometimes ask me what I do as the ext4 file system maintainer.   It's actually not that glamorous.  Mainly, I review patches; do a lot of code cleanup to keep the code maintainable, and I develop tools so that other ext4 developers can test their work --- which hopefully improves the quality of their code submissions, which saves me time and hopefully makes ext4 users happier.___

posted image

2014-09-02 01:08:42 (9 comments, 25 reshares, 85 +1s)Open 

This is worth watching.  It's a fair comparison of advantages and disadvantages of Linux and Solaris from the perspective of a performance engineer.

Brenden Gregg gives suggestions on how Linux and Solaris can improve, and Joyent is working improving their fork of OpenSolaris (which they call SmartOS).

The audio gets better after the first 2 or 3 minutes.

Video: What Linux Can Learn from Solaris Performance, and Vice-Versa___This is worth watching.  It's a fair comparison of advantages and disadvantages of Linux and Solaris from the perspective of a performance engineer.

Brenden Gregg gives suggestions on how Linux and Solaris can improve, and Joyent is working improving their fork of OpenSolaris (which they call SmartOS).

The audio gets better after the first 2 or 3 minutes.

posted image

2014-08-31 00:55:45 (71 comments, 57 reshares, 189 +1s)Open 

By way of +Frédéric Weisbecker:

"Linux Kernel developer +Dmitry Monakhov (ext4, filesystems...) has been arrested in Moscow and put in jail for 15 days while protesting against the war in Ukraine despite him using no violence nor even leaflet. He was only talking out loud to people in the street...

See these article in Russian (google translate gives the main point):

http://grani.ru/Society/Law/m.232445.html
http://ph.livejournal.com/54547.html
"

+Dmitriy Monakhov is someone I've worked with for quite a while.  I hope and pray that he stays safe.

Вчера Диме +Dmitriy Monakhov дали 15 суток за одиночный пикет против войны с Украиной. В прошлый раз дело закончилось больницей (см. статью).

Как я уже раньше писал, Дима мой коллега, выпускник Физтеха, спортсмен-лыжник и толковый программист -- разработчик ядра Linux. Вот статистика его коммитов в ядро:

[kir@kir-tpad linux]$ git log --pretty=short | grep '^Author: ' | grep -c Monakhov 
169___By way of +Frédéric Weisbecker:

"Linux Kernel developer +Dmitry Monakhov (ext4, filesystems...) has been arrested in Moscow and put in jail for 15 days while protesting against the war in Ukraine despite him using no violence nor even leaflet. He was only talking out loud to people in the street...

See these article in Russian (google translate gives the main point):

http://grani.ru/Society/Law/m.232445.html
http://ph.livejournal.com/54547.html
"

+Dmitriy Monakhov is someone I've worked with for quite a while.  I hope and pray that he stays safe.

posted image

2014-08-28 18:30:00 (12 comments, 10 reshares, 59 +1s)Open 

Although it's a little bit farther from my home, I think I'm going to make a point of shopping more at Market Basket.   I think it's worth making the statement that it's possible to have a company that pays its workers a living wage, while still having better prices than WalMart, by having loyal employees that deliver better customer service.  Such companies deserve to be supported by my business.  Hopefully more companies will be encouraged this strategy, instead of trying to engage in a "race to the bottom" mentality that is all to common that gets pushed by MBA's employed by Private Equity firms.

Although it's a little bit farther from my home, I think I'm going to make a point of shopping more at Market Basket.   I think it's worth making the statement that it's possible to have a company that pays its workers a living wage, while still having better prices than WalMart, by having loyal employees that deliver better customer service.  Such companies deserve to be supported by my business.  Hopefully more companies will be encouraged this strategy, instead of trying to engage in a "race to the bottom" mentality that is all to common that gets pushed by MBA's employed by Private Equity firms.___

posted image

2014-08-23 12:03:11 (1 comments, 7 reshares, 33 +1s)Open 

Via +Paul Fisher -- worth reading.

“Reconstruction was the second phase of the Civil War. It lasted until 1877, when the Confederates won.”___Via +Paul Fisher -- worth reading.

posted image

2014-08-22 23:27:18 (12 comments, 2 reshares, 20 +1s)Open 

Sigh, caff is broken with gpg2 -- which I need to use because my signing key is a 4096 bit RSA key stored on a smartcard, which isn't supported by gpg 1.4.18.

Fortunately, I found a workaround.   Run caff with the .caffrc configured to use gpg2; this will fetch the keys and sign them using gpg2 --- and then caff blows up with the error message:

 gpg: Fatal: can't open `/tmp/caff-87B06E946C0596000E8B90D5DBFB07BF052B3F1B-iFIir/trustdb.gpg': No such file or directory
Not all keys in '$CONFIG{'keyid'}' could be imported from caff's GnuPGHOME (with 'export-minimal').

If you then edit your .caffrc to use gpg instead of gpg2, since the keys are already signed, then caff will use gpg to encrypt so only their owners can decrypt the e-mail and then email the keys (thus requiring the owners to prove they control the e-mail named in thek... more »

Sigh, caff is broken with gpg2 -- which I need to use because my signing key is a 4096 bit RSA key stored on a smartcard, which isn't supported by gpg 1.4.18.

Fortunately, I found a workaround.   Run caff with the .caffrc configured to use gpg2; this will fetch the keys and sign them using gpg2 --- and then caff blows up with the error message:

 gpg: Fatal: can't open `/tmp/caff-87B06E946C0596000E8B90D5DBFB07BF052B3F1B-iFIir/trustdb.gpg': No such file or directory
Not all keys in '$CONFIG{'keyid'}' could be imported from caff's GnuPGHOME (with 'export-minimal').

If you then edit your .caffrc to use gpg instead of gpg2, since the keys are already signed, then caff will use gpg to encrypt so only their owners can decrypt the e-mail and then email the keys (thus requiring the owners to prove they control the e-mail named in the key).___

posted image

2014-08-12 14:03:30 (19 comments, 8 reshares, 25 +1s)Open 

A few years ago, there was a huge fuss inside Google when a decision was made, on environmental grounds (and I suspect to be frugal with our shareholders' money), to replace bottled water with machines that could dispense filtered hot, cold, room temperature, and sparkling water[1].  Apparently a large number of people really loved their bottled water, and felt deprived as a result.  (BTW, this was derided by many inside Google as a "zeroth world problem".  Not all, and probably not even most, people really feel that entitled.)

[1] http://blogs.reuters.com/mediafile/2009/07/11/sun-valley-cost-cutting-at-google/

But since most of this fuss happened in Mountain View, and Mountain View is inside California, bottled water is apparently not that bad in MTV!   :-P    In the rest of the country, however...

A few years ago, there was a huge fuss inside Google when a decision was made, on environmental grounds (and I suspect to be frugal with our shareholders' money), to replace bottled water with machines that could dispense filtered hot, cold, room temperature, and sparkling water[1].  Apparently a large number of people really loved their bottled water, and felt deprived as a result.  (BTW, this was derided by many inside Google as a "zeroth world problem".  Not all, and probably not even most, people really feel that entitled.)

[1] http://blogs.reuters.com/mediafile/2009/07/11/sun-valley-cost-cutting-at-google/

But since most of this fuss happened in Mountain View, and Mountain View is inside California, bottled water is apparently not that bad in MTV!   :-P    In the rest of the country, however...___

posted image

2014-08-09 23:28:16 (14 comments, 126 reshares, 187 +1s)Open 

If you don't have time to watch this keynote by Dan Geer, and you are at all interested in Cybersecurity, make time.   Alternatively, the text of his speech is here:  http://geer.tinho.net/geer.blackhat.6viii14.txt.   In some ways it's actually better to read the text, since a good part of the conclusion was cut due to time pressure.

If you don't have time to watch this keynote by Dan Geer, and you are at all interested in Cybersecurity, make time.   Alternatively, the text of his speech is here:  http://geer.tinho.net/geer.blackhat.6viii14.txt.   In some ways it's actually better to read the text, since a good part of the conclusion was cut due to time pressure.___

2014-08-04 13:23:42 (33 comments, 20 reshares, 77 +1s)Open 

A public service announcement regarding wanna-be kernel developer Nick Krause.

A public service announcement regarding wanna-be kernel developer Nick Krause.___

posted image

2014-07-25 00:10:42 (9 comments, 9 reshares, 23 +1s)Open 

In other news, the law of supply and demand still holds.  More details at 11.

In other news, the law of supply and demand still holds.  More details at 11.___

posted image

2014-07-24 14:01:09 (5 comments, 1 reshares, 28 +1s)Open 

Very sad.  I was just in Italy, where apparently it's required that restaurants are required to put a asterisk and an explanation for any frozen foods used in a dish.

Also, places that sell Gelato can specify using formally defined terms whether the Gelato was made on site, and another term which means that it was made artisanally (in small batches).

Very sad.  I was just in Italy, where apparently it's required that restaurants are required to put a asterisk and an explanation for any frozen foods used in a dish.

Also, places that sell Gelato can specify using formally defined terms whether the Gelato was made on site, and another term which means that it was made artisanally (in small batches).___

posted image

2014-07-23 15:36:47 (50 comments, 27 reshares, 111 +1s)Open 

Yikes.  I'm so glad I don't use an iPhone or an iPad.

Yikes.  I'm so glad I don't use an iPhone or an iPad.___

2014-07-20 20:41:59 (22 comments, 4 reshares, 14 +1s)Open 

The biggest difference which I think the original author and +Alex Scrivener hasn't mentioned is that the belief systems espoused by both armies and religious organizations is that people who die for a cause bigger than themselves (their nation in the case of armies, to defend their religious beliefs) are considered heroes or martyrs, and those people are awarded things like the Medal of Honor or are declared saints.   Of course, not all soldiers are Medal of Honor recipients, and not all religious people are necessarily willing to die for their faith.  But it is held up as the ideal that a good soldier and a good believer would be willing to do so.

There are many other organizations which are not willing to impose that obligation on their members.   For example, since the original author used Libertarianism as an example, throughout his piece, consider that Ann Rand has argued that beingsel... more »

+Yonatan Zunger asked me to share this as its own post, so here it is.

There is a part of this which has always fascinated me. People today wildly underestimate the Church. You hear people routinely say things like "The Church is a bunch of backwards old men and will collapse into irreverence within a few more years. Maybe a generation or two."

The Church has outlasted two Roman empires, a few European empires, the Caliphate, and every totalitarian dictator since Nero. She has a depth of systematized philosophy underpinning her worldview that has already dealt with every variation of every objection your internet forum will ever come up with, probably spelled out in excruciating detail between 500-1500 years ago. She maintains traditions and ceremonies from so long ago that whole language groups have risen since they were formalized, but she also has a history of incorporating regional and temporal preferences that makes Microsoft's Embrace And Extend policy look like a tropical island cargo cult.

However, there are a few things that I think the author of this piece misses that make the Church less than suitable as a model for his wished-for atheist organization.

The largest problem is that the Church moves VERY slowly. Her first reaction to any new threat is simply to wait for it to die, which almost always works. It worked with Napoleon, for instance. The Church works on a model of Deep Time that is alien to everyone but hard-scifi fans. She isn't planning for the next decade, or the next century. She is planning for eternity; literally till the heat-death of the universe AND BEYOND. If your goal is to change your country within your lifetime, this is a very frustrating process.

Armies can adapt very quickly, but it is difficult for them to do (the risk of training to fight the last war is very real) and only works in what I can only call "mechanical processes". An army can quickly adopt a new way to kill people, but ask an army to come up with a new way to decide if it should wage a war and you will get a lot of blank stares.___The biggest difference which I think the original author and +Alex Scrivener hasn't mentioned is that the belief systems espoused by both armies and religious organizations is that people who die for a cause bigger than themselves (their nation in the case of armies, to defend their religious beliefs) are considered heroes or martyrs, and those people are awarded things like the Medal of Honor or are declared saints.   Of course, not all soldiers are Medal of Honor recipients, and not all religious people are necessarily willing to die for their faith.  But it is held up as the ideal that a good soldier and a good believer would be willing to do so.

There are many other organizations which are not willing to impose that obligation on their members.   For example, since the original author used Libertarianism as an example, throughout his piece, consider that Ann Rand has argued that being selfish is a good thing, and that a rational man will hold his life as his highest value.

Fundamentally, both Armies and Religions espouse different types of collectivism, where ones self-interest sometimes must yield to the needs of others, or the demands of either one's Ultimate Concern, or at least, Concerns which are larger than the continued existence of one's own life.   And if even if you are not willing to give your life, at the very least most will be willing to give money, or to otherwise make some sort of sacrifice for the good of the larger organization.

A wonder how many Libertarians would consider such a choice to be rational or laudable?  And what would they think of organizations that might use various techniques which might be considered forms of psychological coercion to an outsider , to encourage such choices?

posted image

2014-07-10 03:55:43 (11 comments, 2 reshares, 25 +1s)Open 

where to tell the TSA to shove it for their 5% tax hike to pay for more security goons: http://www.regulations.gov/#!submitComment;D=TSA-2001-11120-0085

i provided a template of what to say below.

where to tell the TSA to shove it for their 5% tax hike to pay for more security goons: http://www.regulations.gov/#!submitComment;D=TSA-2001-11120-0085

i provided a template of what to say below.___

posted image

2014-07-08 13:00:08 (63 comments, 1 reshares, 26 +1s)Open 

Should Isreal treat the home and families of the suspects who burned the Palestinian boy alive as they did the Palestinian suspects who kidnapped and murdered three Jewish teenagers?

Discuss.

Should Isreal treat the home and families of the suspects who burned the Palestinian boy alive as they did the Palestinian suspects who kidnapped and murdered three Jewish teenagers?

Discuss.___

2014-07-02 22:50:42 (5 comments, 6 reshares, 56 +1s)Open 

+Michael Halcrow and I were trying to debug why we were seeing a surprising number of sparse reads while looking at his ext4 encryption patches, and I traced it down to ld doing some truly biazzre and horribly inefficient reads from the output file --- for example, was repeatedly doing lseek(fd, 0, SEEK_SET), and then reading a 4k chunk which was all zeros, over and OVER, and OVER, and OVER again.    Each 4k read of block #0, was interspersed with a write of a some small number of bytes to a random location in the object file --- sometimes as small as 4 bytes, after which point it would seek to the beginning of the file, and read in the first 4k of the file --- which, not surprisingly, was still all zero's.   It's as if ld was obsessively compulsively checking to see after each random write of a small amount of code, whether the first 4k of the output file was still all zero's or not.<... more »

+Michael Halcrow and I were trying to debug why we were seeing a surprising number of sparse reads while looking at his ext4 encryption patches, and I traced it down to ld doing some truly biazzre and horribly inefficient reads from the output file --- for example, was repeatedly doing lseek(fd, 0, SEEK_SET), and then reading a 4k chunk which was all zeros, over and OVER, and OVER, and OVER again.    Each 4k read of block #0, was interspersed with a write of a some small number of bytes to a random location in the object file --- sometimes as small as 4 bytes, after which point it would seek to the beginning of the file, and read in the first 4k of the file --- which, not surprisingly, was still all zero's.   It's as if ld was obsessively compulsively checking to see after each random write of a small amount of code, whether the first 4k of the output file was still all zero's or not.

If you want to replicate my results, create a simple hello world C file, and then run "strace -o /tmp/st -f gcc -o /tmp/hello /tmp/hello.c".  And then prepared to be amazed/horrified.

Funny thing, when I substituted +Ian Lance Taylor's gold linker instead of ld, all of these crazy read/write patterns went away..... 

Which leaves me with one question --- why are we still using the old libbfd based linker in 2014?___

posted image

2014-06-26 13:54:35 (0 comments, 1 reshares, 18 +1s)Open 

To those who kvetch that companies like Google sometimes will make donations to organizations such as ALEC.    Note that Chef Justice John "Corporations are People So They Have First Amendment Rights" Roberts just also opined recently that minimization procedures are not a way to bypass fourth amendment protections, "the Founders did not fight a revolution to gain the right to government agency protocols".

Although this opinion swatted down cell phone searches without a warrant, that statement could just as easily be applied against NSA's warrantless surveillance programs.

At the same time +Nancy Pelosi  and Senator +Dianne Feinstein  have been giving aid and comfort to NSA's "collect it all" approach.   Sure, there may be lots of distasteful things that ALEC and Paul Ryan have advocated for.   But the nature of politics is that yousometi... more »

To those who kvetch that companies like Google sometimes will make donations to organizations such as ALEC.    Note that Chef Justice John "Corporations are People So They Have First Amendment Rights" Roberts just also opined recently that minimization procedures are not a way to bypass fourth amendment protections, "the Founders did not fight a revolution to gain the right to government agency protocols".

Although this opinion swatted down cell phone searches without a warrant, that statement could just as easily be applied against NSA's warrantless surveillance programs.

At the same time +Nancy Pelosi  and Senator +Dianne Feinstein  have been giving aid and comfort to NSA's "collect it all" approach.   Sure, there may be lots of distasteful things that ALEC and Paul Ryan have advocated for.   But the nature of politics is that you sometimes have to work with people with whom you don't 100% agree.___

2014-06-16 15:31:20 (26 comments, 0 reshares, 11 +1s)Open 

Dear Lazy G+,

Since the walking desk was out of commission the past week, I was using my standing desk exclusively, and I found that I was starting to develop low back pain.  The low back pain started going away I started using my home-brew walking desk at home over the weekend, and I definitely noticed a difference where my back was feeling better while I was moving, and then when I switched back to standing desk mode only, it got worse.

What might be a likely explanation?  The one possibility that came to mind was that walking (or using my standing eleptical trainer) forced me to have a better posture, but it wasn't like I was using the walking desk exclusively when it was operational.   Any other explanations that comes to mind?

Dear Lazy G+,

Since the walking desk was out of commission the past week, I was using my standing desk exclusively, and I found that I was starting to develop low back pain.  The low back pain started going away I started using my home-brew walking desk at home over the weekend, and I definitely noticed a difference where my back was feeling better while I was moving, and then when I switched back to standing desk mode only, it got worse.

What might be a likely explanation?  The one possibility that came to mind was that walking (or using my standing eleptical trainer) forced me to have a better posture, but it wasn't like I was using the walking desk exclusively when it was operational.   Any other explanations that comes to mind?___

Buttons

A special service of CircleCount.com is the following button.

The button shows the number of followers you have directly in a small button. You can add this button to your website, like the +1-Button of Google or the Like-Button of Facebook.






You can add this button directly in your website. For more information about the CircleCount Buttons and the description how to add them to another page click here.

Theodore TsTwitterCircloscope