Tarus Balog : #OSMC 2018 – Day 1

November 16, 2018 05:03 PM

The 2018 Open Source Monitoring Conference officially got started on Tuesday. This was my fifth OSMC (based on the number of stars on my badge), although I am happy to have been at the very first OSMC conference with that name.

As usual our host and Master of Ceremonies Bernd Erk started off the festivities.

OSMC 2018 Welcome

This year there were three tracks of talks. Usually there are two, and I’m not sure how I feel about more tracks. Recently I have been attending Network Operator Group (NOG) meetings and they are usually one or two days long but only one track. I like that, as I get exposed to things I normally wouldn’t. One of my favorite open source conferences All Things Open has gotten so large that it is unpleasant to navigate the schedule.

In the case of the OSMC, having three tracks was okay, but I still liked the two track format better. One presentation was always in English, although one of the first things Bernd mentioned in his welcome was that Mike Julian was unable to make it for his talk on Wednesday and thus that time slot only had two German language talks.

If they seem interesting I’ll sit in on the German talks, especially if Ronny is there to translate. I am very interested in open source home automation (well, more on the monitoring side than, say, turning lights on and off) so I went to the OpenHAB talk by Marianne Spiller.

OSMC 2018 OpenHAB

I found out that there are mainly two camps in this space: OpenHAB and Home Assistant. The former is in Java which seems to invoke some Java hate, but since I was going to use OpenHAB for our MQTT Hackathon on Thursday I thought I would listen in.

OSMC 2018 Custom MIB

I also went to a talk on using a Python library for instrumenting your own SNMP MIB by Pieter Hollants. We have a drink vending machine that I monitor with OpenNMS. Currently I just output the values to a text file and scrape them via HTTP, but I’d like to propose a formal MIB structure and implement it via SNMP. Pieter’s work looks promising and now I just have to find time to play with it.

Just after lunch I got a call that my luggage had arrived at the hotel. Just in time because otherwise I was going to have to do my talk in the Icinga shirt Bernd gave me. Can’t have that (grin).

My talk was lightly attended, but the people who did come seemed to enjoy it. It was one of the better presentations I’ve created lately, and the first comment was that the talk was much better than the title suggested. I was trying to be funny when I used “OpenNMS Geschäftsbericht” (OpenNMS Annual Report) in my submission. It’s funny because I speak very little German, although it was accurate since I was there to present on all of the cool stuff that has happened with OpenNMS in the past year. It was recorded so I’ll post a link once the videos are available.

In contrast, Bernd’s talk on the current state of Icinga was standing room only.

OSMC 2018 State of Icinga

The OSMC has its roots in Nagios and its fork Icinga, and most people who come to the OSMC are there for Icinga information. It is easy to why this talk was so popular (even though it was basically “Icinga Geschäftsbericht” – sniff). The cool demo was an integration Bernd did using IBM’s Node-RED, Telegram and an Apple Watch, but unfortunately it didn’t work. I’m hoping we can work up an Apple Watch/OpenNMS integration by next year’s conference (should be possible to add hooks to the Watch from the iOS version of Compass).

The evening event was held at a place called Loftwerk. It was some distance from the conference so a number of buses were chartered to take us there. It was fun if a bit loud.

OSMC 2018 Loftwerk

OSMC celebrations are known to last into the night. The bar across the street from the conference hotel (which I believe has changed hands at least three times in the lifetime of the OSMC) becomes “Checkpoint Jenny” once the main party ends and can go on until nearly dawn, which is why I like to speak on the first day.

Mark Turner : Critic’s Notebook: ‘Frontline’ Doc ‘The Facebook Dilemma’ May Scare You Off Social Media | Hollywood Reporter

November 15, 2018 01:37 PM

The two-part ‘Frontline’ special presents a chilling portrait of a social media behemoth that cares more about profits than its users’ privacy.If you’re reading this article, you’ve presumably taken a break from logging on to Facebook to catch up with such important developments as your cousin’s recent trip to Disney World. But if you really want to end your addiction to the social media monolith, watch the two-part Frontline documentary The Facebook Dilemma, airing Monday and Tuesday night on PBS. If this deeply disturbing investigative report doesn’t scare you straight, nothing will.

Directed by James Jacoby, the film recounts how Facebook’s success at connecting the world has come at a very high cost. In the old days before the internet, people would get their information from reputable print and broadcast media that was actually curated and edited. Now the vast majority get the news from a website that takes almost no responsibility for what it spews into the world. Say what you will about The New York Times and CNN, but unless Dean Baquet and Jeff Zucker are Manchurian Candidates, Russia hasn’t managed to infiltrate, either.

Source: Critic’s Notebook: ‘Frontline’ Doc ‘The Facebook Dilemma’ May Scare You Off Social Media | Hollywood Reporter

Mark Turner : How Your Gut Bacteria May Be Controlling Your Brain

November 15, 2018 01:35 PM

The gut has made a sudden rise to prominence as an arbiter of overall health. It’s well established that gut bacteria, also known as the microbiome, can influence digestion, allergies and metabolism. But these microbes’ reach may extend much further – into the brain. Conditions including depression and anxiety are now being linked to the digestive system.

The brain may be one of the most complex objects known to humankind, but science has suggested the digestive system is of equal importance, especially when it comes to our emotional health. Your gut is teeming with trillions of bacteria, making up what’s known as the microbiome. Collectively weighing up to two kilograms (heavier than the average brain), the microbiome plays a vital role in your health, breaking down food, supporting immunity and, perhaps surprisingly, affecting mood. Nutritionist Rebecca Pilkington believes keeping the microbiome balanced is the key to optimal physical and mental health. “If your gut is out of whack,” she says, “this can lead to inflammation, believed to be one of the biggest causes of depression.”

Source: How Your Gut Bacteria May Be Controlling Your Brain

Mark Turner : This North Carolina gerrymandering lawsuit is poised to save democracy in the state by 2020.

November 15, 2018 01:33 PM

Slate covers the gerrymandering lawsuit.

North Carolina Republicans have spent the last eight years ruthlessly undermining democracy in their state. The key to their extraordinary success is a series of partisan gerrymanders that dilute the power of Democrats’ vote, allowing the GOP to maintain a firm grasp on the state legislature. But Republicans failed to subvert the one institution capable of reversing this damage to fair representation: the state judiciary. Now voting rights advocates are poised to score a legal victory in North Carolina that could wipe out the GOP’s legislative gerrymander—with the help of civil rights attorney Anita Earls, who was elected to the state Supreme Court last week. The case could give Democrats a real shot at retaking the legislature in 2020, or at least contesting it on an even playing field.

Source: This North Carolina gerrymandering lawsuit is poised to save democracy in the state by 2020.

Mark Turner : Michael McFaul | Containing Putin’s Russia

November 15, 2018 01:30 PM

Relations between Russia and the United States have deteriorated to their most dangerous point in decades. The current situation is not, as many have dubbed it, a new Cold War. But no one should draw much comfort from the ways in which today’s standoff differs from the earlier one. The quantitative nuclear arms race is over, but Russia and the United States have begun a new qualitative arms race in nuclear delivery vehicles, missile defenses, and digital weapons. The two countries are no longer engulfed in proxy wars, but over the last decade, Russia has demonstrated less and less restraint in its use of military power. The worldwide ideological struggle between capitalism and communism is history, but Russian President Vladimir Putin has anointed himself the leader of a renewed nationalist, conservative movement fighting a decadent West. To spread these ideas, the Russian government has made huge investments in television and radio stations, social media networks, and Internet “troll farms,” and it has spent lavishly in support of like-minded politicians abroad. The best description of the current hostilities is not cold war but hot peace.

Source: Michael McFaul | Containing Putin’s Russia

Mark Turner : Behind the Scenes at a Bundy Rally | Outside Online

November 14, 2018 02:34 PM

If there was a defining trait among the several dozen people who gathered recently to hear Ammon Bundy speak at the New Code of the West conference in Whitefish, Montana, it was their age—on average, well into eligibility for Social Security benefits. I don’t mention this to promote ageist ideas about who should be involved in political activism—the baby boomers comprise the largest voting bloc in America—but rather to suggest that the “Bundy movement,” such as it exists, appears conspicuously long in the tooth.

Source: Behind the Scenes at a Bundy Rally | Outside Online

Mark Turner : The lost art of whistling loudly with your fingers – if stranded it could save your life – Outdoor Revival

November 14, 2018 02:32 PM

When most people think about loud whistling, they often think about trying to get someone’s attention or perhaps even using it as a survival skill in the woods.

Although humans have used loud whistling for hundreds, and perhaps thousands of years, it is a dying art. Here’s how you can learn to do it, and the history behind your newest survival skill.

There are many different ways to achieve a loud whistle with your fingers. According to the Art of Manliness, regardless of which finger placement you choose, the next steps are all identical; it is simply a matter of finding what works for you.

First, you need to wet your lips and curl them back over your teeth as if you were imitating an old person who’d forgotten to put in their dentures that morning.Next, you put your fingers in your mouth using your desired placement and hold your bottom lip curled in while pushing your tongue back in your mouth.

This step is a little complicated and can take some practice to get right, but generally, you push on the bottom of the tip of your tongue so that it curls upwards while simultaneously being pushed back by your fingers. Then, keeping your lips curled, you close your mouth over your fingers creating an airtight seal — and blow.

Source: The lost art of whistling loudly with your fingers – if stranded it could save your life – Outdoor Revival

Mark Turner : Alan Frederick Swanstrom Obituary – Cary, NC

November 14, 2018 02:28 PM


I learned last night that my friend Al Swanstrom died last week. I originally knew Al through my working with his wife, Pam, back at HAHT Software over twenty years ago. Al was so sharp, friendly, and funny. It was always fun trading quips with him. When he campaigned for a state senate seat a few years ago I did not think twice about standing for hours outside a polling place in “unfriendly territory” to help support him. It was sad to learn he was ill.

My thoughts are with Pam and her family in this difficult time.

Having been born in Green Bay, Wisconsin, Al was an avid Packers fan. He was also very proud of his father’s Swedish heritage and recently connected with his Swedish relatives.

Al was an IBMer for over 30 years and traveled worldwide in various roles. During his career, Al was granted several patents. After retirement, Al dedicated his time to public service, including serving on the Town of Cary Planning Board, Wake County Planning Board (Chair), and North Carolina Turnpike Authority. Throughout, Al was a tireless volunteer for Triangle Wine Experience and Leukemia/Lymphoma Society.

Al was the architect of his life and many things of beauty. He was happiest sailing and diving with his family, woodworking, working on his cars, designing a new technical solution and spending time with the “Coffee Gang.”

He was an officer of the Triangle Bailliage de North Carolina of the Chaîne de Rotisseurs and a past Maître of the Triangle NC Chapter of the Commanderie de Bordeaux. Al shared his knowledge of wine and passion for culinary arts with friends in both organizations. He was a great host and welcomed friends into his home.

Source: Alan Frederick Swanstrom Obituary – Cary, NC

Mark Turner : Chuck Schumer and Nancy Pelosi Have No Idea What Kind of Fight They’re In | GQ

November 14, 2018 02:19 PM

Democrats need to do better at building our bench – I’m not anti-Pelosi but it’s long past time to be grooming new leadership.

One day. All I wanted was one little day to bask in the election results and delude myself into thinking that, by taking the House, Democrats would provide at least some bulwark against the wave of right-wing fascism that is currently holding this nation hostage. I wanted a day. Instead, we got Chuck Schumer.

Here is a great waste of a man: spineless, craven, utterly terrified of being disliked by the opposition. The past two years have been an ongoing national emergency, with a deranged liar sitting in the Oval Office and a Republican Party newly emboldened by that president’s racism and disregard for facts and law. They’re robbing taxpayers blind. They’re menacing the vulnerable. They’re overseeing sham investigations into corrupt judges and ramming them through. They’re trying to stop ballot counts in Florida as we speak. The White House press secretary literally sent out doctored footage of a reporter to accuse him of assault. There’s no hope of good faith with these assholes. They are EATING America alive, and the proof is on the ground. Mass shootings are happening daily. Kids are locked in jails. We need goddamn Superman to fix this, and instead we’re getting these two:

Source: Chuck Schumer and Nancy Pelosi Have No Idea What Kind of Fight They’re In | GQ

Mark Turner : 2018 midterms: New scientists elected to US House, Senate – Business Insider

November 14, 2018 02:13 PM

We definitely need more scientists and more veterans on Capitol Hill. I found 314 Action a few years ago and enthusiastically support its work.

The faces of Capitol Hill are changing.

When the 116th Congress heads to Washington in January, there will be a record number of women in the ranks — at least 123, according to the news website Axios, including the first Muslim women, the first Somali-American, and the first Native American women.

There will be more scientists too.

On Tuesday, at least eight new science-credentialed candidates were elected: one senator and seven members of the House. Full results are not yet available in Washington state, where a pediatrician is likely to be elected to the House.

The members of the 115th Congress include one physicist, one microbiologist, and one chemist, as well as eight engineers and one mathematician. The medical professions are slightly better represented, with three nurses and 15 doctors.

The new winners will bolster those science ranks. The Democratic candidates who won all ran successful campaigns with the support of a nonprofit political-action committee called 314 Action, which started in 2016 and is dedicated to recruiting, training, and funding scientists and healthcare workers who want to run for political office. (One Republican engineer-turned-businessman won a race in Oklahoma, without support from the PAC.)

“Scientists are essentially problem-solvers,” Shaughnessy Naughton, the president of 314 Action, told Business Insider before the election results came in.

Source: 2018 midterms: New scientists elected to US House, Senate – Business Insider

Mark Turner : Gerrymandering lawsuit on NC legislative districts for 2020 | News & Observer

November 14, 2018 02:09 PM

So this happened yesterday: I joined a lawsuit against the state to end gerrymandering. This makes me the second member of my family to sue the state of North Carolina.

RALEIGH – Common Cause and the North Carolina Democratic Party are suing for state House and Senate districts to be redrawn for the 2020 election, claiming the districts are partisan gerrymanders that violate the state constitution.

The lawsuit was filed Tuesday morning in Wake County Superior Court against state legislative leaders and the state elections board.

It will likely eventually be heard in the state Supreme Court. With the election of Anita Earls last week, Democrats will hold a 5-2 advantage on the state’s highest court.

“North Carolina’s state legislative maps are among the worst partisan gerrymanders in North Carolina’s history, and indeed, in American history,” said Stanton Jones, a lawyer with the Washington, D.C., law firm Arnold & Porter.

Source: Gerrymandering lawsuit on NC legislative districts for 2020 | News & Observer

Mark Turner : The Curse of the Honeycrisp Apple – Bloomberg

November 11, 2018 02:17 PM

I’m not sure what the “curse” here is, other than the Honeycrisp apple is in high demand and West Coast orchards are beating out East Coast ones in supplying it. As for the Turners, we love Honeycrisps and always look for them when we go to Costco.

Bite into a Honeycrisp apple and you understand why consumers are willing to pay so much for a piece of fruit: the crunch.

That’s no accident. In the pre-Honeycrisp era, apples had just two textures: “soft and mealy (that nobody liked), and then we had the good apples, the hard, crisp and dense,” said David Bedford, one of the original breeders of the Honeycrisp.

Unlike the vast majority of modern commercial produce, the Honeycrisp apple wasn’t bred to grow, store or ship well. It was bred for taste: crisp, with balanced sweetness and acidity. Though it succeeded beyond anyone’s wildest dreams, along the way it became a nightmare for some producers, forcing small Northeastern growers to compete with their massive, climatically advantaged counterparts on the West Coast.

Source: The Curse of the Honeycrisp Apple – Bloomberg

Mark Turner : Just a volunteer

November 08, 2018 02:42 AM

It was the end of a long day volunteering at the polls when I arrived at the polling place with a young voter whom I’d volunteered to drive there. As she went inside to vote, I headed over to say hello to the campaign volunteers milling about outside.

“Hi, I’m Mark Turner,” I said as I shook the hand of Denise, a Democratic Party volunteer handing out slate cards. She kindly returned the greeting and turned back to greet more arriving voters.

Across the sidewalk stood a Republican Party volunteer, stumping for a Republican candidate.

“Hi, I’m Mark Turner,” I said with a smile, extending my hand. “Thanks for being out here.” Looking somewhat startled, he smiled and shook my hand.

I had continued towards the next set of volunteers when I heard a voice call out.

“What do you do?” the Republican volunteer called out with some admiration.

“Beg your pardon?” I answered, not sure what he had meant.

“What do you do?

A beat went by and then it dawned on me what he was getting at.

“Oh, I’m just a party volunteer,” I replied, laughing as I walked away.

Just a volunteer. This time around, at least.

Tarus Balog : #OSMC 2018 – Day 0: Prometheus Training

November 07, 2018 07:04 AM

To most people, monitoring is not exciting, but it seems lately that the most exciting thing in monitoring is the Prometheus project. As a project endorsed by the Cloud Native Computing Foundation, Prometheus is getting a lot of attention, especially in the realm of cloud applications and things like monitoring Kubernetes.

At this year’s Open Source Monitoring Conference they offered a one day training course, so I decided to take it to see what all the fuss was about. I apologize in advance that a lot of this post will be comparing Prometheus to OpenNMS, but in case you haven’t guessed I’m biased (and a bit jealous of all the attention Prometheus is getting).

The class was taught by Julien Pivotto who is both a Prometheus user and a decent instructor. The environment consisted of 15 students with laptops set up on a private network to give us something to monitor.

Prometheus is written in Go (I’m never sure if I should call it “Go” or if I need to say “Golang”) which makes it compact and fast. We installed it on our systems by downloading a tarball and simply executing the application.

Like most applications written in the last decade, the user interface is accessed via a browser. The first thing you notice is that the UI is incredibly minimal. At OpenNMS we get a lot of criticism of our UI, but the Prometheus interface is one step above the Google home page. The main use of the web page is for querying collected metrics, and a lot of the configuration is done by editing YAML files from the command line.

Once Prometheus was installed and running, the first thing we looked at was monitoring Prometheus itself. There is no real magic here. Metrics are exposed via a web page that simply lists the variables available and their values. The application will collect all of the values it finds and store them in a time series database called simply the TSDB.

The idea of exposing metrics on a web page is not new. Over a decade ago we at OpenNMS were approached by a company that wanted us to help them create an SNMP agent for their application. We asked them why they needed SNMP and found they just wanted to expose various metrics about their app to monitor its performance. Since it ran on Linux system with an embedded web server, we suggested that they just write the values to a file, put that in the webroot, and we would use the HTTP Collector to retrieve and store them.

The main difference between that method and Prometheus is that the latter expects the data to be presented in a particular format, whereas the OpenNMS method was more free-form. Prometheus will also collect all values presented without extra configuration, whereas you’ll need to define the values of interest within OpenNMS.

In Prometheus there is no real auto-discovery of devices. You edit a file in which you create a “job”, in our case the job was called “Prometheus”, and then you add “targets” based on IP address and port. As we learned in the class, for each different source of metrics there is usually a custom port. Prometheus stats are on port 9100, node data is exposed on 9090 via the node_exporter, etc. When there is an issue, this can be reflected in the status of the job. For example, if we added all 15 Prometheus instances to the job “Prometheus” and one of them went down, then the job itself would show as degraded.

After we got Prometheus running, we installed Grafana to make it easier to display the metrics that Prometheus was capturing. This is a common practice these days and a good move since more and more people are becoming familiar it. OpenNMS was the first third-party datasource created for Grafana, and the Helm application brings bidirectional functionality for managing OpenNMS alarms and displaying collected data.

After that we explored various “components” for Prometheus. While a number of applications are exposing their data in a format that Prometheus can consume, there are also other components that can be installed, such as the node_exporter which displays server-related metrics and to provide data that isn’t otherwise natively available.

The rest of the class was spent extending the application and playing with various use cases. You can “federate” Prometheus to aggregate some of the collected data from multiple instance under one, and you can separate out your YAML files to make them easier to read and manage.

The final part of the class was working with the notification component called the “alertmanager” to trigger various actions based on the status of metrics within the system.

One thing I wish we could have covered was the “push” aspect of Prometheus. Modern monitoring is moving from a “pull” model (i.e. SNMP) to a “push” model where applications simply stream data into the monitoring system. OpenNMS supports this type of monitoring through the telemetryd feature, and it would be interesting to see if we could become a sink for the Prometheus push format.

Overall I enjoyed the class but I fail to see what all the fuss is about. It’s nice that developers are exposing their data via specially formatted web pages, but OpenNMS has had the ability to collect data from web pages for over a decade, and I’m eager to see if I can get the XML/JSON collector to work with the native format of Prometheus. Please don’t hate on me if you really like Prometheus – it is 100% open source and if it works for you then great – but for something to manage your entire network (including physical servers and especially networking equipment like routers and switches) you will probably need to use something else.

[Note: Julien reached out to me and asked that I mention the SNMP_Exporter which is how Prometheus gathers data from devices like routers and switches. It works well for them and they are actively using it.]

Mark Turner : How the EPA and the Pentagon downplayed a growing toxic threat

November 05, 2018 01:40 PM

Great investigation by ProPublica into the dangers of Teflon and Scotchgard.

The chemicals once seemed near magical, able to repel water, oil and stains.

By the 1970s, DuPont and 3M had used them to develop Teflon and Scotchgard, and they slipped into an array of everyday products, from gum wrappers to sofas to frying pans to carpets. Known as perfluoroalkyl substances, or PFAS, they were a boon to the military, too, which used them in foam that snuffed out explosive oil and fuel fires.

It’s long been known that, in certain concentrations, the compounds could be dangerous if they got into water or if people breathed dust or ate food that contained them. Tests showed they accumulated in the blood of chemical factory workers and residents living nearby, and studies linked some of the chemicals to cancers and birth defects.

Now two new analyses of drinking water data and the science used to analyze it make clear the Environmental Protection Agency and the Department of Defense have downplayed the public threat posed by these chemicals. Far more people have likely been exposed to dangerous levels of them than has previously been reported because contamination from them is more widespread than has ever been officially acknowledged.

Source: How the EPA and the Pentagon downplayed a growing toxic threat 

Mark Turner : Evacuated after ‘health attacks’ in Cuba and China, diplomats face new ordeals in U.S.

November 05, 2018 01:24 PM

Here’s a frightening, detailed account of what it’s like to become a victim of the mystery sonic/microwave attacks that have plagued our diplomatic corps.

WASHINGTON — Alone in her bed in a sprawling Chinese metropolis, Catherine Werner was jolted awake one night by a pulsing, humming sound. It seemed to be coming from a specific direction.

Perhaps the A.C. unit in her upscale Guangzhou apartment was malfunctioning, the American diplomat thought. But at the same moment, she also noticed intense pressure in her head.

The sounds and sensations returned, night after night, for months. When Werner’s health began declining in late 2017 — vomiting, headaches, loss of balance — she brushed it off at first, thinking China’s polluted air and water were getting to her.

It wasn’t until months later — after her mother, Laura Hughes, grew alarmed, flew in from the U.S. and then got sick, too — that Werner was medevaced from China back to the States. Doctors at the University of Pennsylvania found a vision disorder, a balance disorder and an “organic brain injury” — diagnoses similar to those of 26 U.S. diplomats and spies in Cuba who started hearing strange sounds and falling ill in late 2016.

Source: Evacuated after ‘health attacks’ in Cuba and China, diplomats face new ordeals in U.S.

Mark Turner : Private Equity Controls the Gatekeepers of American Democracy – Bloomberg

November 05, 2018 01:20 PM

Here’s yet another reason why we need open-source, fully auditable voting machines.

Millions of Americans will cast votes in Tuesday’s midterm elections, some on machines that experts say use outdated software or are vulnerable to hacking. If there are glitches or some races are too close to call — or evidence emerges of more meddling attempts by Russia — voters may wake up on Wednesday and wonder: Can we trust the outcome?

Meet, then, the gatekeepers of American democracy: Three obscure, private equity-backed companies control an estimated $300 million U.S. voting-machine industry. Though most of their revenue comes from taxpayers, and they play an indispensable role in determining the balance of power in America, the companies largely function in secret.

Source: Private Equity Controls the Gatekeepers of American Democracy – Bloomberg

Mark Turner : 26 Years of Growth: Shanghai Then and Now – The Atlantic

November 05, 2018 01:19 PM

Reuters photographer Carlos Barria recently spent time in Shanghai, China, the fastest-growing city in the world. A week ago, he took this amazing shot, recreating the same framing and perspective as a photograph taken in 1987, showing what a difference 26 years can make. The setting is Shanghai’s financial district of Pudong, dominated by the Oriental Pearl Tower at left, and the new 125-story Shanghai Tower, China’s tallest building and the world’s second tallest skyscraper, at 632 meters (2,073 ft) high, scheduled to finish by the end of 2014. Shanghai, the largest city by population in the world, has been growing at a rate of about 10 percent a year the past 20 years, and now is home to 23.5 million people — nearly double what it was back in 1987. This entry is focused on this single photo pairing, with several ways to compare the two.

Source: 26 Years of Growth: Shanghai Then and Now – The Atlantic

Tarus Balog : #OSMC 2018 – Day -1

November 05, 2018 07:23 AM

The annual Open Source Monitoring Conference (OSMC) held in Nürnberg, Germany each year brings together pretty much everyone who is anyone in the free and open source monitoring space. I really look forward to attending, and so do a number of other people at OpenNMS, but this year I won the privilege, so go me.

The conference is a lot of fun, which must be the reason for the hell trip to get here this year. Karma must be trying to bring things into balance.

As an American Airlines frequent flier whose home airport is RDU, most of my trips to Europe involve Heathrow airport (American has a direct flight from RDU to LHR that I’ve taken more times than I can count).

I hate that airport with the core of my being, and try to avoid it whenever possible. While I could have taken a flight from LHR directly to Nürnberg on British Airways, I decided to fly to Philadelphia and take a direct American flight to Munich. It is just about two hours by train from MUC to Nürnberg Hbf and I like trains, so combine that with getting to skip LHR and it is a win/win.

But it was not to be.

I got to the airport and watched as my flight to PHL got delayed further and further. Chris, at the Admiral’s Club desk, was able to re-route me, but that meant a flight through Heathrow (sigh). Also, the Heathrow flight left five hours later than my flight to Philadelphia, and I ended up waiting it out at the airport (Andrea had dropped me off and I didn’t want to ask her to drive all the way back to get me just for a couple of hours).

Because of the length of this trip I had to check a bag, and I had a lot of trepidation that my bag would not be re-routed properly. Chris even mentioned that American had actually put it on the Philadelphia flight but he had managed to get it removed and put on the England flight, and American’s website showed it loaded on the plane.

That also turns out to be the last record American has on my bag, at least on the website I can access.

American Tracking Website

The fight to London was uneventful. American planes tend to land at Terminal 3 and most other British Airways planes take off from Terminal 5, so you have to make your way down a series a long corridors and take a bus to the other terminal. Then you have to go through security, which is usually when my problems begin.

I wear contact lenses, and since my eyes tend to react negatively to the preservatives found in saline solution I use a special, preservative-free brand of saline. Unfortunately, it is only available in 118ml bottles. As most frequent fliers know, the limit for the size of liquid containers for carry on baggage is 100ml, although the security people rarely notice the difference. When they do I usually just explain that I need it for my eyes and I’m allowed to bring it with me. That is, everywhere except Heathrow airport. Due to the preservative-free nature of the saline I can’t move it to another container for fear of contamination.

Back in 2011 was the first time that my saline was ever confiscated at Heathrow. Since then I’ve carried a doctor’s note stating that it is “medically necessary” but once even then I had it confiscated a few years later at LHR because the screener didn’t like the fact that my note was almost a year old. That said, many times have I gone through that airport with no one noticing the slightly larger size of my saline bottle, but on this trip it was not to be.

When your carry on items get tagged for screening at Heathrow’s Terminal 5, you kind of wait in a little mob of people for the one person to methodically go through your stuff. Since I had several hours between flights it was no big deal for me, but it is still very annoying. Of course when the screener got to my items he was all excited that he had stopped the terrorist plot of the century by discovering my saline bottle was 18ml over the limit, and he truly seemed disappointed when I produced my doctor’s note, freshly updated as of August of this year.

Screeners at Heathrow are not imbued with much decision making ability, so he literally had to take my note and bottle to a supervisor to get it approved. I was then allowed to take it with me, but I couldn’t help thinking that the terrorists had won.

The rest of my stay at the world’s worst airport was without incident, and I squeezed into my window seat on the completely full A319 to head to Munich.

One we landed I breezed through immigration (Germans run their airports a bit more efficiently than the British) and waited for my bag. And waited. And waited.

When I realized it wouldn’t be arriving with me, I went to look for a BA representative. The sign said to find them at the “Lost and Found” kiosk, but the only two kiosks in the rather small baggage area were not staffed. I eventually left the baggage area and made my way to the main BA desk, where I managed to meet Norbert. After another 15 minutes or so, Norbert brought me a form to fill out and promised that I would receive an e-mail and a text message with a “file number” to track the status of my bag.

I then found the S-Bahn train which would take me to the Munich Hauptbahnhof where I would get my next train to Nürnberg.

I had made a reservation for the train to insure I had a seat, but of course that was on the 09:55 train which I would have taken had I been on the PHL flight. I changed that to a 15:00 train when I was rerouted, and apparently one change is all you get with Deutsche Bahn, but Ronny had suggested I buy a “flexpreis” ticket so I could take any train from Munich to Nürnberg that I wanted. I saw there were a number of “Inter-City Express (ICE)” trains available, so I figured I would just hop on the first one I found.

When I got to the station I saw that a train was leaving from Platform (Gleis) 20 at 15:28. It was now 15:30 so I ran and boarded just before it pulled out of the station.

It was the wrong train.

Well, not exactly. There are a number of types of trains you can take. The fastest are the ICE trains that run non-stop between major cities, but there are also “Inter-City (IC)” trains that make more stops. I had managed to get on a “Regional Bahn (RB)” train which makes many, many stops, turning my one hour trip into three.

(sigh)

The man who took my ticket was sympathetic, and told me to get off at Ingolstadt and switch to an ICE train. I was chatting on Mattermost with Ronny most of this time, and he was able to verify the proper train and platform I needed to take. That train was packed, but I ended up sitting with some lovely people who didn’t mind chatting with me in English (I so love visiting Germany for this reason).

So, about seven hours later than I had planned I arrived at my hotel, still sans luggage. After getting something to eat I started the long process of trying to locate my bag.

I started on Twitter. Both the people at American and British Airways asked me to DM them. The AA folks said I needed to talk with the BA folks and the BA folks still have yet to reply to me. Seriously BA, don’t reach out to me if you don’t plan to do anything. It sets up expectations you apparently can’t meet.

Speaking of not doing anything, my main issue was that I need a “file reference” in order to track my lost bag, but despite Norbert’s promise I never received a text or e-mail with that information. I ended up calling American, and the woman there was able to tell me that she showed the bag was in the hands of BA at LHR. That was at least a start, so she transferred me to BA customer support, who in turn transferred me to BA delayed baggage, who told me I needed to contact American.

(sigh)

As calmly as I could, I reiterated that I started there, and then the BA agent suggested I visit a particular website and complete a form (similar to the one I did for Norbert I assume) to get my “file reference”. After making sure I had the right URL I ended the call and started the process.

I hit the first snag when trying to enter in my tag number. As you can see from the screenshot above, my tag number starts with “600” and is ten digits long. The website expected a tag number that started with “BA” followed by six digits, so my AA tag was not going to work.

BA Tracking Website - wrong number

But at least this website had a different number to call, so I called it and explained my situation once again. This agent told me that I should have a different tag number, and after looking around my ticket I did find one in the format they were after, except starting with “AA” instead of “BA”. Of course, when I entered that in I got an error.

BA Tracking Website - error

After I explained that to the agent I remained on the phone for about 30 minutes until he was able to, finally, give me a file reference number. At this point I was very tired, so I wrote it down and figured I would call it a night and go to sleep.

But I couldn’t sleep, so I tried to enter that number into the BA delayed bag website. It said it was invalid.

(sigh)

Then I got a hint of inspiration and decided to enter in my first name as my last, and voila! I had a missing bag record.

BA Tracking Website - missing bag

That site said they had found my bag (the agent on the phone had told me it was being “traced”) and it also asked me to enter in some more information about it, such as the brand of the manufacturer.

BA Tracking Website - information required

Of course when I tried to do that, I got an error.

BA Tracking Website - system error

Way to go there, British Airways.

Anyway, at that point I could sleep. As I write this the next morning nothing has been updated since 18:31 last night, but I hold out hope that my bag will arrive today. I travel a lot so I have a change a clothes with me along with all the toiletries I need to not offend the other conference attendees (well, at least with my hygiene), but I can’t help but be soured on the whole experience.

This year I have spent nearly US$20,000 with American Airlines (they track that for me on their website). I paid them for this ticket and they really could have been more helpful instead of just washing their hands and pointing their fingers at BA. British Airways used to be one of the best airlines on the planet, but lately they seemed to have turned into Ryanair but without that airline’s level of service. The security breach that exposed the personal information of their customers, stories like this recent issue with a flight from Orlando, and my own experience this trip have really put me off flying them ever again.

Just a hint BA – from a customer service perspective – when it comes to finding a missing bag all we really want (well, besides the bag) is for someone to tell us they know where it is and when we can expect to get it. The fact that I had to spend several hours after a long trip to get something approximating that information is a failure on your part, and you will lose some if not all of my future business because of it.

I also made the decision to further curtail my travel in 2019, because frankly I’m getting too old for this crap.

So, I’m now off to shower and to get into my last set of clean clothes. Here’s hoping my bag arrives today so I can relax and enjoy the magic that is the OSMC.

Mark Turner : Red Hat stock pays off again

November 05, 2018 01:23 AM

Back in 1999, I was working at a local, famous IBM/Linux VAR called Indelible Blue as a Linux Specialist. One day I was investigating a customer issue with a CDROM drive and filed a bug in Red Hat’s Bugzilla bug tracking system. Months went by and I didn’t think much of it until later that summer when I received an email from Red Hat telling me I had been awarded a few hundred shares of pre-IPO stock!

I was amazed at Red Hat’s generosity of giving out pre-IPO stock to anyone in their bug tracking system. I sold the majority of the stock before the Dot Bomb era of 2000 but kept some shares around largely for sentimental purposes. With last month’s announcement of IBM buying Red Hat, I decided it was time to cash in the rest of my shares. Thanks to IBM’s purchase of Red Hat, my shares have brought me a welcome chunk of change.

It’s funny to think that my decision to file one bug over 19 years ago is still paying off today, and in a big way!

Mark Turner : Breach at ICollectMedia

November 05, 2018 01:06 AM

ICollectMedia has had its passwords stolen


About, oh … six years ago I tried out a CD cataloging service called ICollectMedia (ICM). Didn’t use it beyond the first time I signed up and forgot all about it until I recently began receiving ransom emails from online crooks who populated their emails with the unique password I used for ICM. Since this was a unique password for a service I no longer use, I wasn’t concerned about the breach affecting me, but it did show me that the folks who run ICM didn’t properly hash the passwords of their users. If they had used hashes then there is no way my complex, unique password would have been easily recovered and subsequently shared on the DarkWeb.

The breach-tracking site Hacked-Emails.com indicates that the ICM data hit the Darkweb on March 1st, 2018.

Mark Turner : Amazon HQ2: Advanced talks about second headquarters in Northern Virginia – The Washington Post

November 04, 2018 01:01 PM

Looks like Amazon won’t be coming to Raleigh. I know DC has been on the short list for the HQ2 site but as a techie who grew up outside of DC I would steer clear of any jobs that absolutely required me to commute there every day (outside of a ride in Marine One, that is).

Amazon.com has held advanced discussions about the possibility of opening its highly sought-after second headquarters in Crystal City, including how quickly it would move employees there, which buildings it would occupy and how an announcement about the move would be made to the public, according to people close to the process.

The discussions were more detailed than those the company has had regarding other locations in Northern Virginia and some other cities nationally, adding to speculation that the site in Arlington County is a front-runner to land the online retail giant’s second North American headquarters and its 50,000 jobs.

The company is so close to making its choice that Crystal City’s top real estate developer, JBG Smith, has pulled some of its buildings off the leasing market and officials in the area have discussed how to make an announcement to the public this month, following the midterm elections, according to public and private-sector officials who spoke on the condition of anonymity because Amazon has asked that the selection process remain confidential. The company may be having similar discussions with other finalists.

Source: Amazon HQ2: Advanced talks about second headquarters in Northern Virginia – The Washington Post

Mark Turner : I tried the U.S. Army’s tactic to fall asleep in two minutes

November 03, 2018 02:09 AM

The recommended amount of sleep an adult needs is between seven and nine hours each night. But for many, finding this time isn’t the problem–it’s falling asleep once your head hits the pillow. I’m one of those people who occasionally has this problem, and in the past have tried everything from meditation to medication. But for the last four weeks, I tried something different–and it’s something worth trying if you have sleep problems.

Recently, an old method used by the U.S. Army to help soldiers fall to sleep in less than ideal conditions (like battlefields) has resurfaced. The Independent says the technique was first described in a book from 1981 called Relax and Win: Championship Performance by Lloyd Bud Winter.

In the book, Winter describes the technique designed by the U.S. Army to make sure soldiers didn’t make mistakes due to grogginess. The technique apparently sends you off to sleep within two minutes.

Source: I tried the U.S. Army’s tactic to fall asleep in two minutes

Mark Turner : Twilight of the Racist Uncles | Ed Burmila

November 03, 2018 02:07 AM

There is a family friend, a man I’ve known for decades. A highly educated man with total financial security in his recent retirement. A man who always had a good story to tell or an interesting side of a conversation to hold up. Then, a few years ago, he got on Facebook. Reading his timeline became an exercise in watching a man’s descent into madness. Over the summer I was surprised to learn that he had purchased three very expensive AR-15 semiautomatic rifles. When I asked why, he said, “For the race war that’s coming” in a tone that suggested no further explanation would be necessary.

Source: Twilight of the Racist Uncles | Ed Burmila

Mark Turner : A San Andreas fault mystery: The ‘slow-moving disaster’ in an area where the Big One is feared – Los Angeles Times

November 02, 2018 12:29 PM

The San Andreas fault begins its dangerous dance through California at the Salton Sea, at a spot that seismologists long have feared could be the epicenter of a massive earthquake.

But in recent months, this desolate location where the North American and Pacific plates rub together has become the focus of intense interest for a type of movement that is less the Big One than the Slow One.

A muddy spring mysteriously has begun to move at a faster pace through dry earth — first 60 feet over a few months, and then 60 feet in a single day, according to Imperial County officials.

There’s no evidence suggesting this is an immediate precursor to a large earthquake, said U.S. Geological Survey geophysicist Ken Hudnut, who visited the moving spring in July. In fact, the area has been seismically quiet in recent months, with relatively few earthquakes.

Hudnut and other experts stress the movement is not seismic activity. But it’s occurring partly as a result of historic earthquake activity that caused cracks, allowing gases produced deep underground to reach the earth’s surface.

The biggest worry is that the slow-moving scientific mystery could become destructive in other ways.

Source: A San Andreas fault mystery: The ‘slow-moving disaster’ in an area where the Big One is feared – Los Angeles Times

David Cafaro : Blue Teams Next Tool: Social Engineering (Psychology and Sociology at Work) – References

October 29, 2018 03:29 AM

This weekend I had the privilege to present at bsidesdc.org on the subject of Social Engineering techniques for use in driving positive security outcomes.  At the end of the presentation there were several great questions and a slide of reference materials I’ve studied related to the concepts I was presenting in the class.  Though I’m still settling back down after the conference, I did want to post the final slide from my deck (and my comments on the references) for others to follow up on if interested.  A little later this week I’ll post up some of the questions I was asked at the end as best I can recal them, and my answers to those questions.  They were great questions which I think really helped add to the topic.

So here is the slide and my comments on the references (links to PDF version):

For the first two book references I called out particular chapters I thought were especially relevant to “Blue Team” security influencing.  But, both books are a great read in whole.

  • The Art of Deception
    • This is a great collection of stories style book regarding Social Engineering.  Provides an relatively easy read or less technical read that provides real world examples that then walks through the techniques and tricks used.
  • Social Engineering: The Art of Human Hacking
    • I would consider this the much more technical book, covers many of the same Psychology principles I discussed in great detail.  Additional covers some very advanced techniques like recognizing micro-expressions that could also be potentially helpful to a Blue Team trying to read their audience.
    • I would also go take a look at some of Chris Hadnagy’s Defcon talks on Social Engineering
    • There is a newer edition “Social Engineering: The Science of Human Hacking“, but I have not read that edition yet.
  • Quite: The Power of introverts in a World that Can’t Stop Talking
    • I read this primarily because of my interest in better understanding my own introverted ways originally.  I actually found that the discussion around the different ways introverts and extroverts process information, the ways they interact with individuals, and how they engage very helpful in understanding my own interactions with other introverts and extroverts.
  • Communication Theory – CMC in ODR
    • Bill Warters (Who I borrowed his great diagram of Communication Modeling from) has a great break down of commutation modeling process and examples.  This is a free online learning module of his.
  • Jek Hyde @HydeNS33K
    • Jek does a lot of great walk throughs of her on-site pen-testing (Social Engineering Engagements).  Well worth following here to see many of these techniques in practice.
  • Social Engineering for the Blue Team
    • Timothy De Block does a different talk on the same subject.  Great discussion on presentation and perceptions.

Tarus Balog : CarbonROM Install on Pixel XL (marlin)

October 26, 2018 02:58 PM

I am still playing around with alternate ROMs for Android devices, and I recently came across CarbonROM. I had some issues getting it installed (more due to me than the ROM itself) and so I thought I’d post my steps here.

I was looking for a ROM that focused on stability and security, and Carbon seems to fit the bill.

While I have a lot of experience playing with ROMs, I hadn’t really done it on handsets with “Seamless Update“. In this case there are two “slots”, Slot A and Slot B, and this can cause a challenge when installing a new operating system. This procedure worked for me (with help from Christian Oder via the CarbonROM community on Google+).

  1. Install latest 8.1 Factory Image

    This may not be required, but since I ran into issues I went ahead and installed the latest “oreo” factory image. I had already upgraded the phone to Android 9 (pie) and thought that might have caused the problems I was having, but I don’t think that was the case.

  2. Unlock the bootloader

    This is not meant to be a tutorial installing alternative ROMs, but basically you go to Settings -> System and then locate the build number. Click on that a number of times until you have enabled “developer mode” then go to the developer options and unlock the bootloader and enable the ability to access the device over USB. Then boot into the bootloader and run “fastboot flashing unlock” and follow the prompts on the screen.

  3. Boot to TWRP using image

    In order to install an alternative ROM it helps to have a better Recovery than stock. I really like TWRP and pretty much just followed the instructions. Using the Android Debugger (adb) you boot into the bootloader and run TWRP from an image file.

  4. Install TWRP zip

    Once you are running TWRP, install it into the boot partition from the .zip file. Use “adb push” to put the .zip file on the /sdcard/ partition.

  5. Reboot to Recovery (to make sure TWRP still works)
  6. Factory reset and erase /system

    Go to “Wipe” and do a factory reset, and then “Advanced Wipe” to nuke the system partition.

    You will also want to erase user data at this point. Once I got Carbon to boot it still asked me for a password which I assumed was the one I set up in the original factory install (you have to get into the factory image to unlock the bootloader). I went back and erased all of the user data and that did what I expected, so you might want to do this at this step.

  7. Install Carbon

    Use “adb push” to send the latest Carbon zip file to the /sdcard/. Install using TWRP.

    This is the point where my issues started. The next step is to reboot back into recovery. You have to do this so that the other Slot gets overwritten with the new operating system. However, with the Carbon install TWRP was overwritten and that hung the device when I tried to reboot into recovery, so

  8. Re-install TWRP

    Use “adb push” to load the TWRP .zip file again and install it while you are still in TWRP, then

  9. Reboot to recovery

    This should get Carbon all happy on your device as it will be copied over into the other Slot. If you try to boot into the system before doing this bad things will happen. (grin)

  10. Install GApps (optional)

    Now, if you want Google applications you need to install a GApps package. I like Open GApps and so I installed the “pico” package. One thing I am experimenting with here is seeing if I can use a minimal amount of Google software without giving Google my entire digital life. The pico package includes just enough to run the Google Play Store.

    This is optional, and if you just want to run, say, F-Droid apps, you can skip this step, but note I’ve been told that you can’t add GApps later, so if you want it, install it now.

  11. Reboot into the System

If everything went well, you should see the Carbon boot screen and eventually get dropped into the “Welcome to Android” Google sign up wizard. Follow the prompts (I turn off almost everything but location services) and then you should be running CarbonROM with a minimal amount of Google-ness.

The first thing I tried out was “Pokémon Go“. Due to people cheating by spoofing their GPS coordinates, Pokémon Go leverages features of Android to detect if people are running an altered operating system. I’ve found that on some ROMs the application will not work. It worked fine on Carbon and so I’m hoping I can add just a few more “Google” things, like Maps, and then use F-Droid for everything else.

Note that I didn’t “root” my operating system. When you boot into TWRP you can access the entire device with root privileges so I never feel the need to have root while I’m running the device. Seems to be a good security practice and it also allows me to still run Pokémon Go.

Many thanks to the CarbonROM team for working on this. I’m eager to see how soon security updates are released as well as what they do with Android 9, but it looks promising.

Mark Turner : The Growth of Sinclair’s Conservative Media Empire | The New Yorker

October 25, 2018 12:33 PM

Sinclair is not Fox News … it owns FCC broadcast licenses that require it to serve the public interest. Sinclair can’t spew lies and propaganda with reckless abandon the way Fox News does. Sinclair can be held accountable.

In some cases, [Sinclair] anchors have been compelled to read from scripts prepared by Sinclair. In April, 2018, dozens of newscasters across the country parroted Trump’s invectives about “fake news,” saying, “Some members of the media use their platforms to push their own personal bias and agenda to control exactly what people think. This is extremely dangerous to our democracy.” In response, Dan Rather, the former anchor of “CBS Evening News,” wrote, on Twitter, “News anchors looking into camera and reading a script handed down by a corporate overlord, words meant to obscure the truth not elucidate it, isn’t journalism. It’s propaganda. It’s Orwellian. A slippery slope to how despots wrest power, silence dissent, and oppress the masses.”

Source: The Growth of Sinclair’s Conservative Media Empire | The New Yorker

Mark Turner : It Was Vulture Capitalism that Killed Sears

October 25, 2018 12:29 PM

If you’ve been following the impending bankruptcy of America’s iconic retailer, as covered by print, broadcast, and digital media, you’ve probably encountered lots of nostalgia, and sad clucking about how dinosaurs like Sears can’t compete in the age of Amazon and specialty retail.

But most of the coverage has failed to stress the deeper story. Namely, Sears is a prime example of how hedge funds and private-equity companies take over retailers, encumber them with debt in order to pay themselves massive windfall profits, and then leave the retailer without adequate operating capital to compete. Part of the strategy is to sell off valuable real estate, the better to enrich the hedge fund, and stick the retail company with costly rental payments to occupy the space that it once owned.

Source: It Was Vulture Capitalism that Killed Sears

Mark Turner : Tom Petty’s Biographer on the Story He Didn’t Tell – Rolling Stone

October 25, 2018 12:27 PM

I still miss Tom Petty.

I was standing in my kitchen when I heard about Tom Petty’s death. The message came from a friend who had worked at WBCN in Boston. WBCN — that’s where, at age 12, I heard Tom Petty and the Heartbreakers’ first single, “Breakdown.” Tell me this isn’t true. That was the message from my friend. I’m not sure how the constellations of thought come together, but they form quickly. Just that fast, I knew Tom Petty had died. And then the street outside my window looked different.I’d thought about what this day might be like. Petty had been in the room with me (and so many of us) for more than 40 years. I could chart my life in relation to his releases. Early on, around the time of the first albums, I had the feeling that Petty was giving me better direction than the adults who came and went, mostly went, in my life. Even the losers. That alone helped.

Source: Tom Petty’s Biographer on the Story He Didn’t Tell – Rolling Stone

Mark Turner : Russian eBay page

October 18, 2018 12:09 PM

I’d been browsing eBay a few days back, checking out a few items I was considering buying. I left my eBay tab open though I was not logged in. Yesterday morning, I figured I would log into my eBay account and save the item I was viewing to my “wish list.” So, I clicked on the login link and was surprised to see the eBay signin page show up … in Russian!

I cannot for the life of me figure out how this happened. My browser language is not set to Russian, my eBay preferences are not set to Russian, and I did not somehow enter a Russian URL. There was no reported BGP hijack on eBay, nor would eBay necessarily reflect it if there was – the IP would not have changed from the eBay webserver’s point of view. Yet somehow it served me up a Russian page.

So, what could have happened here? Either something big happened to eBay, or something happened on my end. I did a quick nslookup to make sure I was hitting the proper site:

Non-authoritative answer:
signin.ebay.com canonical name = origin-signin.g.ebay.com.
Name: origin-signin.g.ebay.com
Address: 66.211.185.34
Name: origin-signin.g.ebay.com
Address: 66.211.181.81
Name: origin-signin.g.ebay.com
Address: 66.211.181.96
Name: origin-signin.g.ebay.com
Address: 66.211.185.47

Looks good. I checked the SSL certificate I was receiving and it checked out:

What I think happened is that my connection to eBay was rerouted temporarily through Russia, possibly through malware. Time to do some spring cleaning on my network, methinks.

Mark Turner : Turks tell U.S. officials they have audio and video recordings that support conclusion Khashoggi was killed – The Washington Post

October 16, 2018 01:36 PM


The Saudis are screwed.

The Turkish government has told U.S. officials that it has audio and video recordings that prove Washington Post columnist Jamal Khashoggi was killed inside the Saudi consulate in Istanbul this month, according to U.S. and Turkish officials.

The recordings show that a Saudi security team detained Khashoggi in the consulate after he walked in Oct. 2 to obtain an official document before his upcoming wedding, then killed him and dismembered his body, the officials said.

The audio recording in particular provides some of the most persuasive and gruesome evidence that the Saudi team is responsible for Khashoggi’s death, the officials said.

“The voice recording from inside the embassy lays out what happened to Jamal after he entered,” said one person with knowledge of the recording who, like others, spoke on the condition of anonymity to discuss highly sensitive intelligence.

“You can hear his voice and the voices of men speaking Arabic,” this person said. “You can hear how he was interrogated, tortured and then murdered.”

Source: Turks tell U.S. officials they have audio and video recordings that support conclusion Khashoggi was killed – The Washington Post

Mark Turner : Dietary Supplement Could Reduce Some Chronic Symptoms of Gulf War Illness » SPH | Boston University

October 16, 2018 01:34 PM

Nearly one-third of the US military personnel deployed in the 1991 Gulf War continue to suffer from Gulf War Illness (GWI), a set of symptoms including chronic pain, fatigue, and memory impairment. Although the exact biology of GWI remains unknown, previous research suggests it is related to neuroinflammation caused by chemical exposure during the war.

Oleoylethanolamide (OEA), which is commonly used as a weight-loss supplement, could reduce GWI symptoms, according to a new study co-authored by a School of Public Health researcher in collaboration with Roskamp Institute investigators.

Source: Dietary Supplement Could Reduce Some Chronic Symptoms of Gulf War Illness » SPH | Boston University

Mark Turner : The extraordinary life of Microsoft cofounder Paul Allen – Business Insider

October 16, 2018 01:32 PM

Paul Allen, co-founder of Microsoft, died yesterday at the age of 65. While I dissed him in the past for being a patent troll, Allen was very much an interesting guy and did some great things with his money. I particularly enjoy the Living Computers museum in Seattle, which Allen founded and played an active role in sustaining.

Everybody knows Microsoft cofounder Bill Gates, the second-richest man in the world.But Microsoft’s other cofounder, Paul Allen, only became famous outside of Seattle once he published his memoirs in 2011.

He too was rich, and his net worth was pegged at $20 billion. With his money, he invested in a lot of tech companies, real estate, and art. But he also led an over-the-top life filled with rock and roll parties, collections, yachts, and sports teams.

Allen died on Monday aged 65 after a battle with cancer. Here is a look back at his fabulous life.

Source: The extraordinary life of Microsoft cofounder Paul Allen – Business Insider

Mark Turner : He’s ‘One of Us’: The Undying Bond Between the Bible Belt and Trump – The New York Times

October 16, 2018 01:08 PM

Here’s Exhibit A where the “Depolorables” comment lost Clinton’s presidential campaign. It’s also a path by which Democrats might claw their way back to respectability in the South.

Despite never having met him, Mr. Bledsoe said he felt a personal link and a sense of shared values with Mr. Trump.

“I don’t really look at him as a politician,” he said. “Even now, I look at him as just one of us. He doesn’t act like he’s above you, as a person.”

Source: He’s ‘One of Us’: The Undying Bond Between the Bible Belt and Trump – The New York Times

Mark Turner : ‘Hyperalarming’ study shows massive insect loss – The Washington Post

October 16, 2018 01:03 PM

Insects around the world are in a crisis, according to a small but growing number of long-term studies showing dramatic declines in invertebrate populations. A new report suggests that the problem is more widespread than scientists realized. Huge numbers of bugs have been lost in a pristine national forest in Puerto Rico, the study found, and the forest’s insect-eating animals have gone missing, too.

In 2014, an international team of biologists estimated that, in the past 35 years, the abundance of invertebrates such as beetles and bees had decreased by 45 percent. In places where long-term insect data are available, mainly in Europe, insect numbers are plummeting. A study last year showed a 76 percent decrease in flying insects in the past few decades in German nature preserves.

Source: ‘Hyperalarming’ study shows massive insect loss – The Washington Post

Mark Turner : How China’s lunar relay satellite arrived in its final orbit | The Planetary Society

October 15, 2018 01:14 AM


This is a pretty fascinating explanation of China’s lunar relay mission, Queqiao, becoming the first relay satellite to serve the far side of the moon.

After a 24-day journey, Queqiao, the relay satellite for China’s Chang’e 4 lunar mission, successfully entered its Earth-Moon L2 halo orbit. A normal mission to lunar orbit usually takes four or five days, but Queqiao took much longer due to its special orbit. Here’s a guide to the spacecraft’s long and complicated journey.

Source: How China’s lunar relay satellite arrived in its final orbit | The Planetary Society

Mark Turner : After Soyuz Failure, Space Is Now Weirdly Inaccessible to Astronauts

October 14, 2018 04:42 PM

All crewed launches have been suspended by Russia’s space agency following yesterday’s Soyuz rocket failure. That’s a problem, because much of the world relies on Russian rockets to get both cargo and people into space. Consequently, we’re now facing the very real possibility of having an uncrewed International Space Station—something that hasn’t happened in nearly two decades.

Source: After Soyuz Failure, Space Is Now Weirdly Inaccessible to Astronauts

Mark Turner : Gotcha! US Air Force’s Secretive X-37B Space Plane Spotted by Satellite Tracker

October 11, 2018 03:10 PM


I am seriously considering making space object tracking a new hobby.

The U.S. Air Force’s X-37B space plane may be secretive, but it’s not invisible.

Netherlands-based satellite tracker Marco Langbroek snapped long-exposure photos of the robotic mini-shuttle zooming over the city of Leiden yesterday (Aug. 20), capturing the spacecraft’s rapid trek across the night sky as a thin streak of light.The Air Force discloses little about X-37B missions, keeping details about the plane’s orbit and most of its payloads close to the vest. But Langbroek said he’s confident that the light trail he photographed came from the space plane, which is also known as the Orbital Test Vehicle (OTV).

“The object in question is not in the public catalogue of satellite orbits maintained by JSpOC (the U.S. military tracking network), which shows for an object this bright that it must be a ‘classified’ object,” Langbroek told Space.com via email. “We nevertheless know where ‘classified’ objects like this are, because they are routinely tracked by a small network of amateur trackers, in which I takepart.”

Source: Gotcha! US Air Force’s Secretive X-37B Space Plane Spotted by Satellite Tracker

Mark Turner : Apple caught ripping off customer at Genius Bar

October 11, 2018 03:07 PM

CBC sent a hidden camera to an Apple Genius Bar for a typical Macbook problem of a broken screen. The Apple staffmember recommended $1200 of repairs or a new MacBook, but when the reporter took the same laptop to a NYC repair shop, he got it fixed for free. This is a good look at Apple’s attitude regarding non-Apple repairs and a consumer’s right-to-repair anything she or he owns.

Mark Turner : Russian Whistleblower Assassinated After Uncovering $200 Billion Dirty-Money Scandal

October 11, 2018 03:03 PM

LONDON—A crusading Russian official traveled to Estonia in the summer of 2006 to warn the authorities that an unprecedented money-laundering scheme had been established in the tiny Baltic financial sector. The scam he had uncovered would go on to become the biggest dirty-money operation in history: the $200 billion Danske Bank scandal.

Three months after Andrei Kozlov, the first deputy chairman of the Russian Central Bank, tried to raise the alarm, he was dead.

Source: Russian Whistleblower Assassinated After Uncovering $200 Billion Dirty-Money Scandal

Mark Turner : Saudis are said to have lain in wait for Jamal Khashoggi – The Washington Post

October 11, 2018 03:02 PM

ISTANBUL — As Jamal Khashoggi prepared to enter the Saudi consulate in Istanbul on Oct. 2, a squad of men from Saudi Arabia who investigators suspect played a role in his disappearance was ready and in place. They had arrived from Riyadh, the Saudi capital, early that morning and checked in at two inter­national hotels in Istanbul before driving to the consulate in the leafy Levent neighborhood, said two people with knowledge of the investigation. One of them, the Mövenpick Hotel Istanbul, is a few minutes from the consulate by car.By the end of the day, a 15-member Saudi team had conducted its business and left the country, departing on planes bound for Cairo and Dubai, according to flight records and the people familiar with the investigation.

Source: Saudis are said to have lain in wait for Jamal Khashoggi – The Washington Post

Mark Turner : Turkey concludes Saudi journalist Jamal Khashoggi killed by ‘murder’ team, sources say – The Washington Post

October 09, 2018 03:29 PM

Well, this is disturbing.

ISTANBUL — Turkey has concluded that Jamal Khashoggi, a prominent journalist from Saudi Arabia, was killed in the Saudi Consulate in Istanbul last week by a Saudi team sent “specifically for the murder,” two people with knowledge of the probe said Saturday.Turkish investigators believe a 15-member team “came from Saudi Arabia. It was a preplanned murder,” said one of the people. Both spoke on the condition of anonymity to discuss the ongoing investigation.

Source: Turkey concludes Saudi journalist Jamal Khashoggi killed by ‘murder’ team, sources say – The Washington Post

Tarus Balog : UKNOF41

October 08, 2018 02:51 PM

I love tech conferences, especially when I get to be a speaker. Nothing makes me happier than to be given a platform to run my mouth.

For the last year or so I’ve been attending various Network Operators Group (NOG) meetings, and I recently got the opportunity to speak at the UK version, which they refer to as a Network Operators Forum (UKNOF). It was a lot of fun, so I thought I’d share what I learned.

UKNOF41 was held in Edinburgh, Scotland. I’d never been to Scotland before and I was looking forward to the visit, but Hurricane Florence required me to return home early. I ended up spending more time in planes and airports than I did in that city, and totally missed out on both haggis and whisky (although I did drink an Irn-Bru). I arrived Monday afternoon and met up with Dr. Craig Gallen, the OpenNMS Project representative in the UK. We had a nice dinner and then got ready for the meeting on Tuesday.

Like most NOG/NOF events, the day consisted of one track and a series of presentations of interest to network operators. I really like this format. The presentations tend to be relatively short and focused, and this exposes you to concepts you might have missed if there were multiple tracks.

UKNOF is extremely well organized, particularly from a speaker’s point of view. There was a ton of information on what to expect and how to present your slides, and everything was run from a single laptop. While this did mean your slides were due early (instead of, say, being written on the plane or train to the conference) it did make the day flow smoothly. The sessions were recorded, and I’ll include links to the presentations and the videos in the descriptions below.

UKNOF41 - Keith Mitchell

The 41st UKNOF was held at the Edinburgh International Conference Centre, located in a newer section of the city and was a pretty comfortable facility in which to hold a conference. Keith Mitchell kicked off the the day with the usual overview of the schedule and events (slides), and then we got right into the talks.

UKNOF41 - Kurtis Lindqvist

The first talk was from Kurtis Lindqvist who works for a service provider called LINX (video|slides). LINX deployed a fairly new technology called EVPN (Ethernet VPN). EVPN is “a multi-tenant BGP-based control plane for layer-2 (bridging) and layer-3 (routing) VPNs. It’s the unifying L2+L3 equivalent of the traditional L3-only MPLS/VPN control plane.” I can’t say that I understood 100% of this talk, but the gist is that EVPN allows for better use of available network resources which allowed LINX to lower its prices, considerably.

UKNOF41 - Neil McRae

The next talk was from Neil McRae from BT (video|slides). While this was my first UKNOF I quickly identified Mr. McRae as someone who is probably very involved with the organization as people seemed to know him. I’m not sure if this was in a good way or a bad way (grin), probably a mixture of both, because being a representative from such a large incumbent as BT is bound to attract attention and commentary.

I found this talk pretty interesting. It was about securing future networks using quantum key distribution. Current encryption, such as TLS, is based on public-key cryptography. The security of public-key cryptography is predicated on the idea that it is difficult to factor large numbers. However, quantum computing promises several orders of magnitude more performance than traditional binary systems, and the fear is that at some point in the future the mathematically complex operations that make things like TLS work will become trivial. This presentation talked about some of the experiments that BT has been undertaking with quantum cryptography. While I don’t think this is going to be an issue in the next year or even the next decade, assuming I stay healthy I expect it to be an issue in my lifetime. It is good to know that people are working on solving it.

At this point in time I would like to offer one minor criticism. Both of the presenters thus far were obviously using a slide deck created for a purpose other than UKNOF. I don’t have a huge problem with that, but it did bother me a little. As a speaker I always consider the opportunity to speak to be a privilege. While I joke about writing the slides on the way to the conference, I do put a lot of time into my presentations, and even if I am using some material from other decks I make sure to customize it for that particular conference. Ultimately what is important is the content and not the deck itself and perhaps UKNOF is a little more casual than other such meetings, but it still struck me as, well, rude, to skim through a whole bunch of slides to fit the time slot and the audience.

UKNOF41 - Julian Palmer

After a break the next presentation was from Julian Palmer of Corero (video|slides). Corero is a DDOS protection and mitigation company, which I assume means they compete with companies such as Cloudflare. I am always fascinated by the actions of those trying to break into networks and those trying to defend them, so I really enjoyed this presentation. It was interesting to see how much larger the DDOS attacks have grown over time and even more surprising to see how network providers can deal with them.

UKNOF41 - Stuart Clark

This was followed by Stuart Clark from Cisco Devnet giving a talk on using “DevOps” technologies with respect to network configurations (video|slides). This is a theme I’ve seen at a number of NOG conferences: let’s leverage configuration management tools designed for servers and apply them to networking gear. It makes sense, and it is interesting to note that the underlying technologies between both have become so similar that using these tools actually works. I can remember a time when accessing network gear required proprietary software running on Solaris or HP-UX. Now with Linux (and Linux-like) operating systems underpinning almost everything, it has become easier to migrate, say, Ansible to work on routers as well as servers.

It was my turn after Mr. Clark spoke. My presentation covered some of the new stuff we have released in OpenNMS, specifically things like the Minion and Drift, as well as a few of the newer things on which we are actively working (video|slides). I’m not sure how well it was received, but number of people came up to me afterward and say they enjoyed it. During the question and answer session Mr. McRae did state something that bothered me. He said, basically, that the goal of network monitoring should be to get rid of people. I keep hearing that, especially from large companies, but I have to disagree. Technology is moving too fast to ever get rid of people. In just half a day I was introduced to technologies such as EVPN and quantum key distribution, not to mention dealing with the ever-morphing realm of DDOS attacks, and there is just no way monitoring software will ever evolve fast enough to cover everything new just to get rid of people.

Instead, we should be focusing on enabling those people in monitoring to be able to do a great job. Eliminate the drudgery and give them the tools they need to deal with the constant changes in the networking space. I think it is a reasonable goal to use tools to reduce the need to hire more and more people for monitoring, but getting rid of them altogether does not seems likely, nor should we focus on it.

I was the last presentation before lunch (so I finished on time, ‘natch).

UKNOF41 - Chris Russell

The second half of the conference began with a presentation by Chris Russell (video|slides). The title was “Deploying an Atlas Probe (the Hard Way)”, which is kind of funny. RIPE NCC is the Internet Registry for Europe, and they have a program for deploying hardware probes to measure network performance. What’s funny is that you just plug them in. Done. While this presentation did include discussion of deploying an Atlas probe, it was more about splitting out a network and converting it to IPv6. IPv6 is the future (it is supported by OpenNMS) but in my experience organizations are very slowly migrating from IPv4 (the word “glacier” comes to mind). Sometimes it takes a strong use case to justify the trouble and this presentation was an excellent case study for why to do it and the pitfalls.

UKNOF41 - Andrew Ingram

Speaking of splitting out networks, the next presentation dealt with a similar situation. Presented by Andrew Ingram from High Tide Consulting, his session dealt with a company that acquired another company, then almost immediately spun it back out (video|slides). He was brought in to deal with the challenges of dealing with a partially combined network that needed to be separated in a very short amount of time with minimal downtime.

I sat next to Mr. Ingram for most of the conference and learned this was his first time presenting. I thought he did a great job. He sent me a note after the conference that he has “managed to get OpenNMS up and running in Azure with an NSG (Network Security Gateway) running in front for security and a Minion running on site. It all seams to be working very nicely”

Cool.

UKNOF41 - Sara Dickinson

The following presentation would have to be my favorite of the day. Given by Sara Dickinson of Sinodun IT, it talked about ways to secure DNS traffic (video|slides).

The Internet wouldn’t work without DNS. It translates domain names into addresses, yet in most cases that traffic is sent in the clear. It’s metadata that can be an issue with respect to privacy. Do you think Google runs two of the most popular DNS servers out of the goodness of their heart? Nope, they can use that data to track what people are doing on the network. What’s worse is that every network provider on the path between you and your DNS server can see what you are doing. It is also an attack vector as well as a tool for censorship. DNS traffic can be “spoofed” to send users to the wrong server, and it can be blocked to prevent users from accessing specific sites.

To solve this, one answer is to encrypt that traffic, and Ms. Dickinson talked about a couple of options: DoT (DNS over TLS) and DoH (DNS over HTTPS).

The first one seems like such a no-brainer that I’m surprised it took me so long to deploy it. DoT encrypts the traffic between you and your DNS server. Now, you still have to trust your DNS provider, but this prevents passive surveillance of DNS traffic. I use a pfSense router at home and decided to set up DoT to the Quad9 servers. It was pretty simple. Of all of the major free DNS providers, Quad9 seems to have the strongest privacy policy.

The second protocol, DoH, is DNS straight from the browser. Instead of using a specific port, it can use an existing HTTPS connection. You can’t block it because if you do you’ll block all HTTPS traffic, and you can’t see the traffic separately from normal browsing. You still have to deal with privacy issues since that domain name has to be resolved somewhere and they will get header information, such as User-Agent, from the query, so there are tradeoffs.

While I learned a lot at UKNOF this has been the only thing I’ve actually implemented.

After a break we entered into the all too common “regulatory” section of the conference. Governments are adding more and more restrictions and requirements for network operators and these NOG meetings are often a good forum for talking about them.

UKNOF41 - Jonathan Langley

Jonathan Langley from the Information Commissioner’s Office (ICO) gave a talk on the Network and Information Systems Directive (NIS) (video|slides). NIS includes a number of requirements including things such as incident reporting. I thought it was interesting that NIS is an EU directive and the UK is leaving the EU, although it was stressed that NIS will apply post-Brexit. While there were a lot of regulations and procedures, it wasn’t as onerous as, say, TICSA in New Zealand.

UKNOF41 - Huw Saunders

This was followed by another regulatory presentation by Huw Saunders from The Office of Communications (Ofcom) (video|slides). This was fairly short and dealt primarily with Ofcom’s role in NIS.

UKNOF41 - Askar Sheibani

Askar Sheibani presented an introduction to the UK Fibre Connectivity Forum (video|slides). This is a trade organization that wants to deploy fiber connectivity to every commercial and residential building in the country. My understanding is that it will help facilitate such deployments among the various stakeholders.

UKNOF41 - David Johnston

The next to the last presentation struck a cord with me. Given by David Johnston, it talked about the progress the community of Balquhidder in rural Scotland is making in deploying its own Internet infrastructure (video|slides). I live in rural North Carolina, USA, and even though the golf course community one mile from my house has 300 Mbps service from Spectrum, I’m stuck with an unreliable DSL connection from CenturyLink, which, when it works, is a little over 10 Mbps. Laws in North Carolina currently make it illegal for a municipality to provide broadband service to its citizens, but should that law get overturned I’ve thought about trying to spearhead some sort of grassroots service here. It was interesting to learn how they are doing it in rural Scotland.

UKNOF41 - Charlie Boisseau

The final presentation was funny. Given by Charlie Boisseau, it was about “Layer 0” or “The Dirty Layer” (video|slides). It covered how cable and fiber are deployed in the UK. The access chambers for conduit have covers that state the names of the organizations that own them, and with mergers, acquisitions and bankruptcies those change (but the covers do not). While I was completely lost, the rest of the crowd had fun guessing the progression of one company to another. Anyone in the UK can deploy their own network infrastructure, but it isn’t exactly cheap, and the requirements were covered in the talk.

After the conference they served beer and snacks, and then I headed back to the hotel to get ready for my early morning flight home.

I had a lot of fun at UKNOF and look forward to returning some day. If you are a network provider in the UK it is worth it to attend. They hold two meetings a year, with one always being in London, so there is a good chance one will come near you at some point in time.

Mark Turner : China Snuck Chips Into CIA, U.S. Military, Commercial Servers Leaving Them Open To Hacks: Report – The Drive

October 08, 2018 01:02 PM

China seems willing to gamble its huge manufacturing industry in service to its spying. Why should foreign companies trust their manufacturing to China anymore? Regardless of the economic price China will pay for this, it can never be fully trusted again.

A new report is alleging the Chinese government directly interceded to insert small microchips into motherboards from a company called Supermicro, that are in use in servers everywhere from the adult film industry to U.S. military and U.S. Intelligence Community data centers, which make them vulnerable open them up to remote hacks. If the claims turn out to be true, it would be an intelligence operation of historic proportions that would have far-reaching and long-lasting ramifications.

On Oct. 4, 2018, Bloomberg Businessweek published its story, which is the culmination of years of investigative work and cites nearly 20 anonymous sources from both the U.S. government and private companies reportedly involved in the affair. The piece says that American authorities first became aware of the existence of the chips in 2015, that the classified probe is still ongoing, and that U.S. officials have identified an unspecified unit of the People’s Liberation Army (PLA) as being responsible for sneaking the malicious hardware into the servers.

Source: China Snuck Chips Into CIA, U.S. Military, Commercial Servers Leaving Them Open To Hacks: Report – The Drive

Mark Turner : Hong Kong denies visa to Financial Times journalist Victor Mallet — Quartz

October 08, 2018 12:59 PM

I was sorry to learn that Hong Kong’s freedom-of-speech protections are under attack by mainland China.

Mainland China frequently denies visas to foreign journalists and scholars—a preferred way to force out those whose reporting or research officials object to. But Hong Kong has long offered a welcoming visa regime that made it a safe hub for journalists in the region.

That may be changing. The Hong Kong Free Press on Friday (Oct. 5) reported that the Hong Kong Immigration Department denied a work visa renewal to highly-regarded Financial Times journalist Victor Mallet, the paper’s Asia news editor. The Financial Times said in a statement, “This is the first time we have encountered this situation in Hong Kong. We have not been given a reason for the rejection.”

Source: Hong Kong denies visa to Financial Times journalist Victor Mallet — Quartz

Mark Turner : Trump Weaponizes Victimhood – Trevor Noah

October 08, 2018 12:57 PM

Daily Show host Trevor Noah spoke last week about the Kavanaugh hearings and pointed out something I’d never grasped until now. Trump’s whole shtick is that he plays to his base’s sense of victimhood. Many on the right feel persecuted – like the majority is coming to get them – and Trump has become expert at feeding these fears.

Of course, those of us who aren’t under his spell clearly see that this victimhood perception is nonsense but for those caught in its grasp it can be a powerful illusion. I’d been enraged by the antics of Trump and his supporters but never saw what he was doing until Noah pointed it out.

Now I know what we’re dealing with. Now I know how the right will perceive the left’s actions, and more importantly how it will be portrayed by right-wing media. The left needs to adjust accordingly so that we do not inadvertently feed this narrative. We need to diffuse this perception. Some ways to do this is to reach out to these folks, find the common ground, and build trust. If we can prove that we’re not out to get them – that we have the same struggles they do – we might find ways to work together as a community instead of as opposing teams.

Now wouldn’t that be great?

Mark Turner : Mitch McConnell, the man who broke America – The Washington Post

October 08, 2018 12:47 PM

By rights, McConnell’s tombstone should say that he presided over the end of the Senate. And I’d add a second line: “He broke America.” No man has done more in recent years to undermine the functioning of U.S. government. His has been the epitome of unprincipled leadership, the triumph of tactics in service of short-term power.

Source: Mitch McConnell, the man who broke America – The Washington Post

Mark Turner : FACT CHECK: Could a Case Currently Before the Supreme Court Result in a Stronger Presidential Pardon?

October 08, 2018 02:13 AM

Kavanaugh may overturn a longstanding legal precedent in order to offer Trump pardon power. The case us Gamble v. United States and it may turn into the ultimate power grab by any president.

Kavanaugh mayWhy Would President Trump Be Interested in the Outcome of This Case?

The reason Gamble v. United States is generating buzz from people other than constitutional law scholars is that the separate sovereigns exception also prevents President Trump from pardoning people for state crimes. Under current Supreme Court precedent, a presidential pardon of an individual does not prevent that individual from being prosecuted for the same or similar crimes under state law. “Under the dual sovereignty doctrine,” Adam J. Adler wrote in the Yale Law Review, “as long as two offenses are defined by different jurisdictions, they cannot constitute the ‘same offense.’”The Congressional Research Service issued an August 2018 report on the potential ramifications of the case, and this report included a discussion of its possible effect on the presidential pardon power: The Gamble case may nevertheless have significant collateral legal effects … A win for Gamble could also indirectly strengthen the President’s pardon power, by precluding a state from prosecuting an already-pardoned defendant who has gone to trial on an overlapping offense.

Source: FACT CHECK: Could a Case Currently Before the Supreme Court Result in a Stronger Presidential Pardon?

Mark Turner : USS Elliot shipmate meetup

October 08, 2018 02:07 AM

L-R: Orlando Brown, Mark Turner, Robert Nordman

I got the urge last week to set up a meeting with my former USS Elliot shipmate, Orlando Brown. Orlando, or “OC” as we call him, lives near Creedmoor and so picked out a beer joint in that neck of the woods. It took me the better part of the hour to navigate my way there last night, with my T-Mobile cellphone losing its network signal in the thick woods.

When I walked in, 15 minutes late, there was OC along with another shipmate I hadn’t seen for over thirty years: Robert Nordman. I had been hoping that OC had thought to invite him, which was easy to do because he and OC live so close to each other.

We spent three hours catching up, telling sea stories, and being thankful that we’re still here to tell the tales. Rob was in very good spirits in spite of having been diagnosed with cancer earlier this year. He has always worked his ass off at whatever he does and OC and I kept him out later than he would’ve liked as he was running out of steam.

I was also struck by Rob’s mention that many of our shipmates are dealing with illnesses, many of which sound like Gulf War Illness. Some of these guys can’t even walk anymore and they’re no older than 50. I’ll have more to say on this in a future post but last night served as a kick in the pants to pursue my own Gulf War Illness issues, get what I have diagnosed, and potentially get my VA disability claim filed. Life is too short, y’all.

Anyway, I love these guys like brothers.