Warren Myers : the first carafe in my ninja dualbrew pro cfp301

January 06, 2022 06:19 PM

A couple months ago I posted a first review of my Ninja Dualbrew Pro CFP301 K-Cup-compatible brewer.

This morning I made my first carafe of coffee with it.

First the pros:

  • very easy to brew a pot of coffee
  • it’s easy to pop the K-Cup holder out and swap to crafe mode
  • even without using the “keep warm” feature, coffee stays warm-to-hot in the carafe for a long time
  • cleanup is a breeze

Now for the con:

If you follow the directions for how much coffee to use to brew (1-2 tablespoons per 6oz of water) … it comes little “thick” (I used a little over 9 T of Folger’s – should have gone for about 1/5-1/4 less).

The strength of the brew was fine, but it’s not as smooth as I think coffee is supposed to be.

Warren Myers : the coop (with lots of in-progress pictures)

November 19, 2021 08:49 PM

As promised a few days ago, here’s the Big Writeup™ on our new coop

First, the pictures

That’s a lotta pictures! And I didn’t post them all ?

Some of the key features of the this coop:

  • 6’x8′ exterior floor dimensions
  • the floor’s covered in peel-n-stick vinyl tiles for easy cleaning
  • 12′ roof, which overhangs on the high and low sides by ~2′, and on the other two sides by ~1′
  • 4′ wide, 12′ long roof over the first part of the run
    • both roofs drop ~2′ over the 8′ of the width of the coop – making snow accumulation very unlikely
  • coop’s elevated about 30″ off the ground (makes for easy emptying of bedding material into wheel barrow)
  • pair of 6′ roosting bars
  • pair of 3-berth nesting boxes, with easy access from the outside (way better than the old coop, which mandated opening the door to get to them)
  • 8’x24′ fully enclosed-run
  • plenty of ventilation (including removable window covers on the run side of the coop for use during the colder months)
  • plenty of light – there’s a 2’x6′ skylight on the high side of the coop
  • cleated entry ramp for the chickens to get from the ramp to the coop
  • as close to predator-proof as is reasonable to do
    • hardware cloth over the rear access gates, all windows, and the run door
    • poulty netting around the entirety of the run, with a second stretch of welded-wire over the bottom 30″
    • poultry netting & cedar pickets enclosing two sides of the shaded region under the coop
    • poultry netting or pickets blocking open access to the roof rafters
  • mostly weather-proof location for feeder and waters (partially under the coop on the run side)
  • full-height run access door (was able to repurpose and reinforce an old screen door I had)
  • run anchored against sliding with 12″ rebars driven into the ground around the base

What improvements do know I have left?

  • add water collection system to capture runoff
    • this will also allow for [semi]automatic watering vs schlepping a couple gallons of water a day to the waterer
  • shedette on the back side of the coop (facing away from the house) for food, tool, etc storage

How long did it take?

Calendar time, start to finish was about 3.5 months

Work time, start to finish was about 10-12 days

How much did it cost?

…more than I wish – but less than it could have 😉

Seriously, though – it wasn’t horrible: well under $2000 total 🙂

Could probably have saved some more on cost if I hadn’t bought the coop frame materials in July 2021 … but – c’est la vie: it had to be done, so we done did it 🙂

What would I do differently if I knew then what I know now?

First, I wouldn’t have preframed the wall panels – precut all the materials, sure: but preframing the walls turned out to make it more difficult to assemble than I had hoped

Second, I’d’ve accounted for materials better, so I didn’t have to make quite as many trips to my local Lowes ?

Third, I’d’ve made it 8’x8′ so I’d’ve had less cutting of plywood to do 🙂

Fourth, I’d’ve placed the floor cover (whether peel-n-stick tiles, or linoleum, or something else entirely) before mounting the floor to the posts and adding the walls – would’ve been way simpler!

Should you build a coop more-or-less like this one?

I don’t know – he’s on third, and I don’t give a darn!

Whoops – out popped an old comedy routine quote 😛

If you’ve got the space and the inclination to build it, something like this on your property could be an absolute blast of a project to undertake! I had more fun than not getting it built and ready for the chickens

If you decide to build a coop like this one, let me know! I’d love to see how yours turns out!

If you’d like copies of the rough drawings I made of each part, I’d be happy to share those, too

Warren Myers : ninja dualbrew pro cfp301 review

November 04, 2021 07:58 PM

After close to a decade, my old Keurig brewer finally bit the dust last week 🙁

Given we can’t go long without needing hot water or got beverages in the family…it became “urgent” to replace it

We had been looking for a while, knowing a replacement was going to be necessary “soon” – so we already knew we wanted a brewer that would do both k-cups and brew regular coffee into a carafe

Keurig has a few that will do this, as do some other brands – but most of the reviews for them are…less than hearty praise

The two Ninja models we were considering, though, the CFP201 and CFP301 were very well rated

And for an added bonus – they were not more expensive than comparable Keurig models

However, I still wasn’t relishing the idea of paying well over $200 for a coffee maker :/

Thankfully, we didn’t have to

Kohl’s had a sale on Ninja appliances last week, and we has stackable coupons (percent and actual dollars off) plus Kohl’s rewards available (if you used them in store)…so to our local store I went (about 20 minutes before closing)

Picked up the Ninja DualBrew Pro CFP301 for almost 40% off their normal list price, and grabbed some rooibos stick tea, too, to try out

Been using it less than a week, but so far it’s fantastic

It has more brew size selections than the Keurig models, and will brew for specialty uses (over ice, etc) “natively”

It heats up water and starts brewing faster than any standalone brewer I’ve used (ie not connected to the wall for water)

There’s also a bypass control to get just got water – without it going through the brewpod adapter

My wife enjoyed me frothing her London fog latte’s milk a couple days ago, too 🙂

What complaints do we have [so far]?

Not many…and maybe they won’t be a big deal to you, but these are the drawbacks we’ve seen this far:

  • it’s really big – it’s probably got a 10% larger footprint than our old (and large) Keurig
  • if you choose to move the reservoir to the back, it juts way too far from the wall – and will not sit on the pod drawer we have
  • switching between operation modes is quick…but gosh! There are a lot of options!

Haven’t had a chance to try carafe brewing yet, but I can still give this brewer a very solid ??

Mark Turner : Hello and Goodbye to Google Fiber

October 30, 2021 12:00 PM

As y’all may know, I’ve been a booster of Google Fiber for a while. I signed us up for it the first day it became available. This week, I switched us back to AT&T. Let me explain why.

The server that hosts this website, my neighborhood mailing list, and other Internet stuff lives in a datacenter in Atlanta. I don’t really notice this, though, because the AT&T Fiber’s routing is excellent! I get super-low latency of 16 ms for my round-trip pings. I can’t reach many cross-town servers much faster than that. When I switched us over to Google Fiber, that round-trip time jumped to 60-100 ms. I researched whether my hosting provider’s datacenters in other cities were any better but it turns out Google Fiber is not nearly as good as AT&T’s. The city with the fastest server Google Fiber could get me to was Dallas which – as you geography buffs will note – is significantly farther from Raleigh than Atlanta. Go figure.

Please note that I’m a network nerd and my tech needs are, um, … unique. Normal people would probably not notice this stuff.

Being temporarily “dual-homed” with Google and AT&T meant I could negotiate rates. When I called to cancel AT&T, they offered me my same package at 30% off for 1 year (i.e., cheaper than Google and I can renew the deal next year). We now get for $60 what before we got for $90. Praise competition!

Google Fiber is still connected to our house (their fiber is still “lit.”) We’re not locked into AT&T with any contract so if AT&T pisses me off we can switch back without any trouble. Google just wants their WiFi Access Points back, which I didn’t use anyway.

There is also part of me that feels that a little bait-and-switch took place with Google Fiber. When Google Fiber was announced, I was under the impression that Google would devote its massive resources to making it a success. Instead, the company changed focus almost immediately, drastically putting on the brakes to its deployments. It was clear Google was not willing to make the investments necessary to make Google Fiber a healthy concern for the next fifty years. Google’s obsessively focused on its short-term stock market performance. It does not make investments the way railroads do, or like providers that expect to be relevant in 50 years, like AT&T.

Google Fiber switched to micro-trenching for its network installations. It also outsourced its installs to companies like Prime Telecom. I had multiple crews try to put in fiber, only to have me interrupt their installations because they were either bringing the fiber to the wrong side of our house or they were digging without doing utility locating. In hindsight, I suppose they usually skip the locating because it’s time-consuming and their shallow trenches rarely affect other buried utilities. They’d rather take the chance of busting something else than wait for lines to be marked. I don’t think this is a very professional game plan, personally.

Google Fiber does offer something unique, and that’s 2 Gbps service, twice as fast as our current service. This would be appealing to me but it is asymmetrical and the upload speed is still limited to 1 Gbps. I’d also have to upgrade all of our home networking gear to the new 2.5 Gbps standard. Well, technically I could use Google’s Wifi6 Access Points to go 2 Gbps but I want to use all the copper I’ve put into our house, rather than rely on WiFi. So, until Google makes the 2 Gbps service symmetrical I’ll stick with single-gigabit speeds.

All that being said, gigabit internet rocks! Saying goodbye to Spectrum forever rocks! Competition rocks! If you can get gigabit fiber, either through Google or AT&T, I recommend you do it. You will be happy you did!

Warren Myers : the new coop

October 29, 2021 05:18 PM

It’s been a long time coming

But the new chicken coop is done

First, let’s rewind the clock to late 2016

We had just moved to our “farm” to be closer to family out of the “big city” (not a farm, and not a big city … but you get the idea)

My father-in-law had some spare hens, so we built a simple pallet coop on a basic frame (some 2by pressure treated runners and a sheet of 3/4 plywood on top for the floor – a couple recovered/reused metal roof panels for the lid), and started our chicken-raising journey

It was great interim coop – and could have been a great long-term coop … if we’d made it double the size

But we only planned to have 3-5 chickens at any given time, so it was good enough…until we decided we wanted more

While it could “handle” 7 or 8, it was tight

During the initial weeks of the pandemic in 2019, I made some improvements to the old coop while we planned a new one – added a window, redid the run door, redid the coop door…basic stuff – maybe a $100 in materials all told

But it wasn’t going to handle more than ~6 chickens for any extended period of time, and it needed to be moved and/or have the run greatly expanded to really manage the flock well

Enter planning for a new coop


And watching lumber prices go through the roof 😐

While we waited for prices to at least start to come down, we reviewed scores of shapes and ideas – finally settling on a mild variation of a couple that kept popping-up when we’d look

First up was that it be raised off the ground so the chickens would have a shaded and rain-free area to congregate outside their coop, and a shaded and rain-free area for their food and water to be

Second was to ensure it could handle as many as 25 chickens without too many issues

Third was ensuring the run was bigger than the old one, and tall enough to stand under (the old run is only about 5′ at its highest point – making it impossible to stand under if you’re not a young kid)

Fourth was ensuring the new coop could be easily cleaned-out

Fifth was making sure there is more than one way to get into the run if the need arises

Sixth was ensuring the new coop would be well ventilated, and give the chickens substantially more light inside than the old one has

Ultimately, this led to a 6’x8′ coop with nesting boxes in the walls (so they’re not taking-up floor space), an 8’x24′ run plus the under-coop area (an additional 8’x6′ region), a 6’x2′ wall-width skylight, and ample well-screened ventilation windows

My next post will share in-progress photos, an approximate materials list, and ideas on what I’d do differently if I knew then what I know now

Warren Myers : pan-fried hamburgers

October 28, 2021 03:14 PM

Made some hamburgers the other night, and they came out better than expected – always a plus ?

  • 1 lb 85% lean ground beef
  • 2 large eggs
  • 1/8c quick oats
  • Kinder’s buttery steakhouse rub
  • <1/8c Italian bread crumbs

Mix together like you’re going to make meatloaf

Divvy into 8 ~2oz balls – pack hand-tight

Preheat frying pan on medium-low heat (~3.5 on my stovetop)

Press meatballs slightly flat in pan

When they look done enough to flip, flip and press flat with your spatula

Remove from heat – adding cheese if desired – and serve when they’re done to your liking

Each hamburger will have ~12g protein, ~11g fat, and ~1g carbs

Jesse Morgan : Earbud Comparison

October 09, 2021 01:37 AM

ok, it’s been a while since I’ve posted. I’ve mainly been waiting on migrating off wordpress to Hugo, but that hasn’t happened and I need to collect my thoughts.

If you know me, you know I can be… Picky. I over-obsess about decisions (I have a spreadsheet with 17 apple varieties after finding out that Red Delicious were in fact the least delicious) to the point of absurdity. One of the things I’m most picky about are headphones.

I should point out that this is not a comprehensive list of all of the headphones I’ve owned- I’ve gone through over a dozen headphones over the years, but there are few that meet the “workhorse” requirement. I’m also sticking mainly to headphones I wear when I’m on the move.

Why I’m Picky

I’d started writing about why I preferred earhooks, but realized I needed to step back and explain my situation. My ear canals have a miniscule difference in diameter, so the standard in-ear single-flange eartips never fit consistently; either my left ear hurts or my right earphone keeps falling out. Even foam eartips feel like they’re slowly preparing to pop out.

In addition, I suffer from a broken hyper-awareness that makes it difficult to focus when there’s a lot of noises or crosstalk. If I can hear people speaking, I can’t listen to a podcast.

I also sweat very easily, so over the-the-ear headphones with any exertion cause me to sweat, resulting in slipping and stink. Fine for desk work, but terrible for walks in the sun or yardwork.

First Love- Earhooks

For the longest time, I used wired Phillips Earhooks. There are two main reasons-

  1. They didn’t violate my ears like the normal rubber-tipped earbuds that are common today, and
  2. They wouldn’t fall off if I tipped my head.

After these became hard to find, I switched to Skullcandy, which I still occasionally use with my laptop.

The Day the 3.5mm Died

When Apple decided to get rid of 3.5mm and force bluetooth, I ignored it- was an android user and didn’t think google would follow their footsteps. Until they did. Even then, it wasn’t a problem for me until I had a friend give me a deal on a used pixel 2. While I had used bluetooth headphones before, I knew that the conventional earbuds with an earhook weren’t an option.

I took a gamble on the Anker Soundcore Spirit X and found they were actually pretty decent. My only complaint was battery life. The earhooks helped reduce the discomfort of the eartips, but I could only wear them for so long.

For whatever reason, I ended up giving those to my son (who quickly destroyed them), while I switched to the Monoprice ANC headphones I had been using for work. The ANC was great for mowing, but they’d be soggy by the time I was done. Unfortunately the cheap band cracked, and tape could only hold it together for so long.

In Dec. 2020 I ordered a pair of Wyze Headphones as part of their beta program since I’ve had so much luck with their home automation stuff. These had even better ANC (Active nose cancelling) as well as bluetooth 5.1, meaning I could sync to both my phone and my car without having to do the disconnect/reconnect dance.

Unfortunately, one side developed a crack and I had to RMA them. The second pair developed a crack in the same place. In addition, using them while mowing has resulted in an absolutely atrocious stink that won’t come off. This time, I decided to do some research.

Here Comes the Spreadsheet

I went through amazon and google looking for any and all earbuds that I thought wouldn’t suck. My needs were relatively straightforward:

  • Reasonable price (under $100)
  • Bluetooth 5.1
  • 9+ hour charge
  • water resistant
  • a microphone
  • noise cancellation

I also looked at ratings, reviews, total charge (if it came with a charging case), etc. I ended up with 55 candidates:


Long story short, I settled on XLeader SoundAngel Sport3 Pro, which appeared to be the best in class for what I was looking for: BT 5.1, 12 hr charge, IPX7, USB-C, ANC CVC8.0, and 1000+ ratings with a 4.1 average.

Too bad they hurt.

Betrayed by My Ears Again!

It turns out that in addition to missized ear canals, my antitragus (see left), is in the way of the Soundangel Sport3 pro. If you look closely at the picture of the XLeader above, you’ll see a… lump?Burl? lovehandle? -sticking out to the left of the eartip. That little lump is hard plastic, and presses against my antitragus so hard that I couldn’t wear them for more than an hour.

After hours of gathering information, I couldn’t wear them.

Meanwhile, my wife decided to pick up a pair of inducer headphones that work great (though they wouldn’t help with noise cancellation). I’ve decided to go back to the drawing board and cast a wider net.


The post Earbud Comparison first appeared on Morgajel.net.

Warren Myers : a-frame coopettes for raising chicks

September 17, 2021 02:15 PM

We raise chickens.

For the last few years, we’ve only had layers – and they’ve all been full-grown by the time they arrived at our home.

This year, we decided to buy some chicks because our layers are starting to age-out of being able to lay, and we’re interested in trying our hand at raising a few birds for butchering ourselves.

Since you need to wait to add new birds to your flock until the birds are 6+ weeks old, we need a place for them to grow (they were ~8 days old when I bought them).

Here are some pictures of the first collapsible coopette for your viewing pleasure – after which I’ll describe how I put these things together ?

The first one (shown above) was the initial implementation of my idea…in which we decided hinging the access door on the top is less than ideal, and we discovered we need 3 hasps to hold the ends on rather than 2.

Materials used:

  • Pressure treated 1x6x8 fence pickets (bought 29 for both coopettes, ended-up with about 3.5 left over – the second coopette is sturdier (and a little prettier)
  • Half-inch opening, 36″ wide hardware cloth (need ~22′ per coopette; ~30′ if you choose to make bottoms (I opted to not make coopette bottoms this time around)
  • Quarter-inch opening, 24″ wide hardware cloth (happened to have a perfectly-sized piece left from another project I could use on the second coopette door)
  • Staples
  • 1 1/4″ ceramic-coated deck screws
  • 2.5″ hinges (5 per coopette … though I wish I’d gone with 3″ hinges instead)
  • 3″ hasps (7 per coopette)

When folded-up, the sides collapse to ~3″ thick. The ends are about 2″ thick, too.

Total space needed against the side of your garage/shed/etc to store the coopette when you aren’t actively using it is ~3′ x 8′ x 6″, or slightly more than a folding table ?

Construction was very simple – I made the sides a smidge over 36″ wide so that I could attach the hardware cloth without trimming for more than length ?

The ends have a pair of 36″ long boards cut into trapezoids with 30° ends, and a butted ~30″ trapezoid, again with 30° ends (see photo for detail). The butt joint is secured via stapled hardware cloth (wrapped around from the outside to the inside (see photo), and a small covering inside screwed into both upright pieces. I used various pieces of scrap for those butt joint covers

Wrapping the hardware cloth around the ends was the single most time-consuming (and painful!) aspects of construction. Start with a 36″x36″ piece, laid-out square to the bottom of the end. Clamp in place (these 3″ spring clamps from Harbor Freight were a true godsend), and staple as desired … I may have gone a little overboard on the stapling front ?. On the second coopette, I relied more on sandwiching a little extra fence picket material to capture the hardware cloth, and a little less on staples.

Lessons Learned

Prototype 1 was quick-and-dirty – too much stapling, shouldn’t have had the door hinge at the top, needed to be more stable (sandwich the hardware cloth better)

And two hasps holding the ends on is not sufficient – you need three (one more-or-less at each corner) to really keep the end locked well, and to enable easy movement

Prototype 2 was not as dirty … but moving from fence pickets to 5/4 would be preferable

Likewise, wish I had put enough support at the bottom to be able to put some casters on at least one end to facilitate moving around the yard (to prevent killing-out the grass underneath)

What would I do differently in the future?

  • Make them longer than 8 feet (if you use 5/4 deck boards, buy the 10, 12, or 16 foot variety)
  • Make the sides slightly higher than 36″ to reduce the need for cutting hardware cloth (a very time-consuming task!)
  • Add wheels to one end for easy movement
  • Plan for an suspended waterer (the gap at the top happened to be wide enough to sling on up using a little rope and a couple carabiners – but it easily could not have been)
  • Hard-roof one end instead of using a tarp … or use a slightly larger tarp that would cover multiple coopettes at once instead of small ones that cover one at a time

Mark Turner : Jupiter is gone

August 29, 2021 02:00 AM

Jupiter in better days

Jupiter in better days

Today was the day I was hoping would never come, as impossible as it is. Today was the day we said goodbye to Jupiter, our porch cat.

Jupiter wandered into our lives ten years ago, his initial wariness giving way to unabashed love. Once a feral cat darting from home to home, he knew he had found his home when we stopped to feed and love him. The only night he ever spent indoors was his last one, last night.

I am in shambles.

He was the most dog-like cat I’ve ever known. He was super-chill, rarely letting anything faze him. He would come up and hug anyone who happened to stop by to chat. He would sometimes tag along with us when we would take the dog for a walk, trailing behind us and darting from home to home as if he were stalking us. He also always came running when he would hear our front door open or our voices calling to him.

He was a superstar of a cat.

I worried about keeping him outside. He got into a lot of scrapes that way. I was always worried about him and tried to do what I could to keep him as safe a I could short of inviting him inside. One time early on we had a scare when he disappeared for a few days but fortunately he came trotting back. But still I worried. I began to console myself that nature would take its course, whatever way it saw fit. As Travis said when he opted not to come to Jupiter’s euthanasia (and this is perfectly fine – everyone grieves differently), at least we will be aware of his fate. Many cats simply never come home.

It was only weeks ago that I had leapt out of bed in the dead of night, furiously putting on clothes and grabbing the flashlight because in my sleep I had thought I had heard him yowling as if in a fight. I’d get as far as flipping on the porch lights and see him peacefully snoozing on the front porch before I’d turn around and shuffle back to bed. Any time I’d hear that yowl (or thought I did) would have me leaping up.

Often he would scrap with the new neighbor’s cat when that cat would wander over and try to take Jupiter’s food. On occasion, Jupiter’s wounds would be severe enough to earn him a trip to the emergency veterinarian. Needless to say, I’m not a fan of the neighbor’s cat.

One night several years ago I leapt up from my recliner to hear an otherworldly yowl coming from the front of the house. I swung open the door and shone the flashlight across the street to see Jupiter squaring off with a large canid of some kind. I laughed when Jupiter quickly turned tail and trotted over to see me as if he had not a care in the world. It turns out whatever he had been facing was yowling, not Jupiter! I’m not sure if it was a dog, a coyote, or what, but Jupiter was clearly in command of the situation!

He was an easygoing cat that he would even purr in the midst of getting his shots at the vet. The staff there fell in love with him and wanted to take him home. Though I’d manhandle him to put him in his carrier, or give him pills, he would never, ever bite nor scratch me. Somehow I always had his trust.

Being a porch cat, Jupiter was known throughout the neighborhood. Neighbors would wave at him as he surveyed the area from his perch near our door. Some would come up and offer him head scratches. The Herrmann kids and the Ewasyshins girls would often sit on the stoop and get some loving from him. It was sweet to look out and see him being loved on, and returning the love as well.

Unfortunately, a few months ago a friend in Oakdale lost her identically-looking cat, Fred. She stapled posters up all over the neighborhood, causing many to misidentify Jupiter as Fred. One well-meaning but overzealous neighbor on PLainview Avenue scooped Jupter up from our yard and called my friend, thinking she had found Fred. I diplomatically rescued him and did my best to let everyone save face but I was mad that someone would take my cat. I was also kinda mad that Fred’s owner’s posters had led to the catnapping.

Hallie had bonded just as strongly as I had with Jupiter. It was a team effort between us to convince this feral, jumpy, scrawny cat into becoming part of our family. With her away at college, she urged me to keep up with Jupiter and I did the best I could.

Travis had seen Jupiter slowing down. He said Jupiter wasn’t jumping up on the table to eat anymore. Indeed, I had not seen him hanging out the way he had before. Still, his behavior hadn’t crossed the threshold for me to be concerned about him. But he was obviously slowing down some as he had seemed to have lost weight. At his last vet visit in June, the vet reported that he had lost some weight but it wasn’t substantial enough to make any diet changes.

On Wednesday, though, I noticed he had a dark discharge from his eye and nose. He was sneezing and it appeared he had an injury to his left hind leg. I called and had a vet appointment for him within an hour. As soon as the vet examined him, she discovered some nasty bite marks on his abdomen. Some of the tissue had necrotized! She immediately took him into surgery, cut out the dead tissue, sutured the other wounds up as best she could, and gave him some fluids. Jupiter was sent home with a bag of antibiotics, pain pills, and the dreaded Cone of Shame. I took home a cat still dozy from the surgery and set him up on our back porch for recovery.

It has been a dreadfully hot summer, however, and Jupiter was slow to perk up. He was placed in the dogs’ crate with a catbox and a towel to lay on, his cone still firmly affixed around his neck. I soon saw him panting heavily and shallowly and it appeared he was unable to cool himself off. Kelly put up a towel to keep him out of the sun and I continued to try to get him to eat and drink.

Thursday night he finished off most of a can of cat food, so it appeared that we had turned a corner. I was hopeful he would recuperate. We didn’t want to keep him in the heat, though, and debated about where we might go in the house. We settled on moving the crate back to the dining room where it had been for the dogs and keeping him inside for as long as it took. Jupiter seemed to be more comfortable there but he still showed little interest in eating or drinking.

When he showed no interest in his food and drink again this morning, I texted Hallie that she should not pass up a chance to see Jupiter again. She was shocked when she saw him, unable to raise his head to look at her though he could still be heard quietly purring. Soon Hallie was quietly sobbing and I realized my optimism about his recovery was foolishly misplaced. She urged me to take him in to the emergency vet and I hemmed and hawed until I called them an hour later.

Off Jupiter and I went to Wake Veterinary Hospital in Knightdale, with me thinking all the while that we would be inconvenienced by a few hours and that would be that. Sadly, it was to be Jupiter’s last trip.

The hospital was unusually slammed for a Saturday. On the phone, I Was told there may be an hour wait so it was a good time to come by. By the time we arrived, though, the wait had ballooned to 2 to 3 hours. I sat with him in their freezing cold waiting room while the dogs waiting around barked at each other.

Hallie texted me while we waited, saying she was fine if we had to euthanize Jupiter as she had already said goodbye but if we chose to do that, she wanted to be there. This sobering message erased any thoughts I had of walking out of there with our cat.

About an hour into our wait, a staffer named Lori came and got our information. Minutes later, the vet was checking Jupiter out. It was not much longer before Lori was calling me back into the exam room.

The vet doctor’s face told me all I needed to know. She sadly informed me that Jupiter was most likely already suffering from sepsis and possibly organ failure. He was over 10% dehydrated and his body temperature was lower than normal. We could put him through a tough regimen of fluids, drugs, and surgery only to still lose him.

She suggested it might be a good time to consider euthanasia.

Putting down a pet is a heart-rending thing to do. That it’s almost always the right thing to do doesn’t make it any easier. This little cat had so much love for us, and we had grown so used to this love, that the thought of not having this little critter around anymore was to painful to consider. And yet, something I had seen in him the day before – perhaps an imagined knowing in his eyes – made me suspect that he might be ready to go.

“OK, it sounds like he is not going to get better, so let’s do it,” I responded. It was hard to get the words out but there was no doubt they had to be said.

I told her that Kelly would be walking in any minute with some of my things so I would like to wait for her to get here. I also texted Hallie and she dropped what she was doing and began driving over from Carrboro.

Lori brought Jupiter into our room, lying on his towel in the bottom half of his cat carrier. Kelly and I sat on the floor next to him, stroking his head while we said goodbye to him. Though he was so weak he couldn’t lift his head, he was still faintly purring. This cat never, ever held any grudges.

Hallie had arrived a little after 5 PM and the doctor returned to our room. With little fanfare and ceremony, we lifted Jupiter’s carrier onto the table. The doctor administered one shot as a sedative and Jupiter went still. Then the doctor administered a fatal dose of sedative which stopped his heart.

The doctor removed her stethoscope and quietly announced he was gone. I quietly burst into tears.

Kelly offered Hallie a moment alone with Jupiter and moved me out of the room. We sobbed in each others’ arms while Hallie paid her last respects. Then with tears in her eyes, Hallie went back to her homework in Carrboro and we stood quietly over the lifeless body of our porch cat.

I found Lori again and asked if we could collect some of Jupiter’s fur before he was cremated. She helped shave off a few ribbons of it and put it into a plastic bag. Then we turned him over to her and she soon brought back our empty cat carrier.

Kelly and I drove separately back home. I propped the empty carrier onto the seat next to me the way Jupiter always rode with me. Then when I got home I felt compelled to put away all the cat items. I couldn’t bear to look at them anymore.

Now there’s just emptiness where his stuff used to be. There is a hole in my heart, too, which isn’t likely to go away any time soon. This poor, scrawny critter had nothing when we met. He lived his life on the streets and had to become tough.

And yet, we tamed him. We loved him. We fed and took care of him. He had a place to sleep and yet he still had his freedom to explore. I may always wonder if I made the right call in keeping him an outdoor cat, especially after Rocket died and there wasn’t as much of a threat to his safety indoors. I thought I would be taking his freedom away from him, though taking away his freedom is might be what he wanted most.

The cat who always purred in the toughest situations was purring right up until the end. I hope we gave him a good life. Certainly, we rescued him from his feral ways, and along the way he captured our hearts.

It will be a while before I stop looking out for him on the porch, or expecting him to pop out of the bushes as I walk to the mailbox, or stop looking up as I drive by the house to see an orange ball of fur sitting contentedly on our front porch.

Fair winds, my little friend, Jupiter. Until we meet again someday.

Warren Myers : storage series

August 13, 2021 02:50 PM

Some of the content is mildly dated, but this series of posts a few years ago is still something I refer to quite often:

Tarus Balog : On Leaving OpenNMS

August 09, 2021 12:30 PM

It is with mixed emotions that I am letting everyone know that I’m no longer associated with The OpenNMS Group.

Two years ago I was in a bad car accident. I suffered some major injuries which required 33 nights in the hospital, five surgeries and several months in physical therapy. What was surprising is that while I had always viewed myself as somewhat indispensable to the OpenNMS Project, it got along fine without me.

Also during this time, The OpenNMS Group was acquired. For fifteen years we had survived on the business plan of “spend less money than you earn”. While it ensured the longevity of the company and the project, it didn’t allow much room for us to pursue ideas because we had no way to fund them. We simply did not have the resources.

Since the acquisition, both the company and the project have grown substantially, and this was during a global pandemic. With OpenNMS in such a good place I began to think, for the first time in twenty years, about other options.

I started working with OpenNMS in September of 2001. I refer to my professional career before then as “Act I”, with my time at OpenNMS as “Act II”. I’m now ready to see what “Act III” has in store.

While I’m excited about the possibilities, I will miss working with the OpenNMS team. They are an amazing group of people, and it will be hard to replace the role they played in my life. I’m also eternally grateful to the OpenNMS Community, especially the guys in the Order of the Green Polo who kept the project alive when we were starting out. You are and always will be my friends.

When I was responsible for hiring at OpenNMS, I ended every offer letter with “Let’s go do great things”. I consider OpenNMS to be a “great thing” and I am eager to watch it thrive with its new investment, and I will always be proud of the small role I played in its success.

If you are doing great things and think I could contribute to your team, check out my profile on LinkedIn or Xing.

Warren Myers : determining the ‘legitimacy’/’reliability’ of a domain

August 04, 2021 03:19 PM

I’ve recently been asked by several people to investigate websites (especially e-commerce ones) for reliability/legitimateness.

Thought someone else may find my process useful, and/or have some ideas on how to improve it ?

So here goes:

  1. Pop a terminal window (I’m on a Mac, so I open Terminal – feel free to use your terminal emulator of choice (on Windows, you’ll need to have the Subsystem for Linux or Cygwin installed))
    1. Type whois <domain.tld> | less
    2. Look at all of the following:
      • Creation (Creation Date: 2006-02-22T01:12:10Z)
      • Expiration (Registry Expiry Date: 2023-02-22T01:12:10Z)
      • Name server(s) (NS3.PAIRNIC.COM)
      • Registral URL (http://www.pairdomains.com)
      • Registrar (Pair Domains)
      • Contact info (should [generally] be anonymized in some manner)
    3. Possible flags:
      • If the domain’s under 2 years old, and/or the registration period is less than a year (we can talk about when short registrations may make sense in the comments)
      • If the name servers are “out of the country” (which, of course, will vary based on where you are)
      • If the contact info isn’t anonymized
  2. Load the website in question in a browser (use an ingonito and/or proxied tab, if you like) and review the following types of pages:
    • Contact Us
      • Where are they located?
      • Does the location stated match what you expect based on the whois response?
    • About Us
      • Does it read “naturally” in the language it purports to be written in?
        • Ie, does it sound like a native speaker wrote it, or does it sound stiltedly/mechanically translated?
    • Does it match what is in the whois record and the Contact Us page?
    • Do they provide social media links (Twitter, Facebook, LinkedIn, Instagram, etc)?
      • What do their social media presence(s) say about them?
    • Return/Refund Policy (for ecommerce sites only)
      • What is the return window?
      • How much will be charged to send it back and/or restorck it?
    • Shipping Policy (for ecommerce sites only)
      • How long from submitting an order to when it ships to when it arrives?
      • Where is it shipping from?
    • Privacy Policy (only applies if you may be sharing data with them (ecommerce, creating accounts, etc)
      • What do they claim they will (and will not) do with your private information?
  3. Is the site running over TLS/SSL?
    • You should see a little padlock icon in your browser’s address bar
    • Click that icon, and read what the browser reports about the SSL certificate used
    • Given that running over TLS is 100% free, there is absolutely NO reason for a site to NOT use SSL (double especially if they’re purporting to be an ecommerce site)

Reviewing these items usually takes me about 2-3 minutes.

It’s not foolproof (after all, better fools are invented every day), but it can give you a good overview and relative confidence level in the site in question.

Warren Myers : 3-month review

July 13, 2021 09:31 PM

I’ve been running an M1-powered MacBook Pro since late April.

Here’s my experience so far: it Just Works™

That’s it

That’s the tweet

Want more? Sure!

Battery life is bonkers-awesome! I can run for over a full working day with my VDI client, YouTube, web browser sessions, ssh, several chat apps (including video and audio chat) sans being plugged in.

This is the laptop we’ve all wanted.

I half wish (or is it “wish”) I’d gone with the 5G-enabled, M1-powered iPad Pro instead … but this laptop is phenomenal.

There has been nothing I’ve wanted to do in the last 3 months that I could not do with this machine.

Kudos, Apple.


Tarus Balog : Order of the Green Polo: Requiescat In Pace

June 16, 2021 04:02 PM

One of the first “group chat” technologies I was ever exposed to was Internet Relay Chat (IRC). This allowed a group of people to get together in areas called “channels” to discuss pretty much anything they felt like discussing. The service had to be hosted somewhere, and for most open source projects that was Freenode.

You might have seen that recently Freenode was taken over by new management, and the policies this new management implemented didn’t sit well with most Freenode users. In the grand open source tradition, most everyone left and went to other IRC servers, most notably Libera Chat.

In May of 2002 when I became the sole maintainer of OpenNMS, there was exactly one person who was dedicated full time to the project – me. What kept me going was the community I found on IRC, in both the #opennms channel and the local Linux users group channel, #trilug.

It was the people on IRC who supported me until I could grow the business to the point of bringing on more people. I still have strong friendships with many of them.

I was reminded of those early days as we migrated #opennms to Libera Chat. At the moment there are only 12 members logged in, and most of those are olde skoool OpenNMS people. I haven’t used IRC much since we switched to Mattermost (we host a server at chat.opennms.com) and with it a “bridge” to bring IRC conversations into the main Mattermost channel. Most people moved to use Mattermost as their primary client, but of course there were a few holdouts (Hi Alex!).

While I was reminiscing, I was also reminded of the Order of the Green Polo (OGP). When David, Matt and I started The OpenNMS Group in 2004, interest in OpenNMS was growing, and there was a core of those folks on IRC who were very active in contributing to the project. I was trying to think of someway to recognize them.

At that time, business casual, at least for men, consisted of a polo shirt and khaki slacks. Vendors often gifted polo shirts with their logos/logotypes on them to clients, and a number of open source projects sold them to raise money. We sold a white one and a black one, and I thought, hey, perhaps I can pick another color and use that to identify the special contributors to OpenNMS.

Green has always been associated with OpenNMS. In network monitoring, green symbolizes that everything is awesome. We even named one of our professional services products the “Greenlight Project“. Plus I really like green as a color.

Then the question became “what shade of green?” For some reason I thought of Tiger Woods who, by this time, late 2004, had won the prestigious Masters golf tournament three times (and would again the next spring). The winner of that tournament gets a “hunter green” jacket, and so I decided that hunter green would be the color.

Also, for some unknown reason, I saw an article about a British knighthood called “The Order of the Garter“. I combined the two and thus “The Order of the Green Polo” was born.

It was awesome.

People who had been active in contributing to OpenNMS became even more active when I recognized them with the OGP honor. They contributed code and helped us with supporting our community, as well as adding a lot to the direction of the project. We started having annual developer conferences called “Dev-Jam” and OGP members got to attend for free so we could spend some face to face time with each other. I considered these men in the OGP to be my brothers.

As OpenNMS grew, we looked to the OGP for recruitment. It was through the OGP that Alejandro came to the US from Venezuela and now leads our support and services team (if OpenNMS went away tomorrow, getting him and his spouse here would have made it all worth it). When you hired an OGP member, you were basically paying them to do something they wanted to do for free. Think of is as like eating an ice cream sundae and finding money at the bottom.

But that growth was actually something that lead to the decline of the OGP. When we hired everyone that wanted a job with us, the role of the OGP declined. Dev-Jam was open to anyone, but it was mandatory for OpenNMS employees. Not all employees were OGP even though they were full-time contributors, so there was often pressure to induct new employees into the Order. And, most importantly, as we aged many OGP members moved on to other things. Hey, it happens, and it doesn’t reflect poorly on their past contributions.

We had a special mailing list for the OGP, but instead of discussing OpenNMS governance it basically became a “happy birthday” list (speaking of which, Happy Birthday Antonio!). When OpenNMS was acquired by NantHealth, we had to merge our mail systems and in the process the OGP list was deactivated. I don’t think many people noticed.

Recently it was brought to my attention that associating OpenNMS with the Masters golf tournament through the OGP could have negative connotations. The Masters is hosted by the Augusta National Golf Club and there have been controversies around their membership policies and views on race. It was suggested that we rename the OGP to something else.

One quick solution would be to just change the shade of green to, perhaps, a “stoplight” green. But this got me to thinking that the same logic used to associate the color with racism could apply to the whole “Order of” as well, since that was based on a British knighthood which, much like Augusta, is mainly all male. Plus the British don’t have the best track record when it comes to colonialism, etc.

I think it is time for something totally new, so I’ve decided to retire the Order of the Green Polo. The members of the OGP are all male, and I’m extremely excited that as we’ve grown our company and project we have been able to greatly improve our diversity, and I would love to come up with something that can embrace everyone who has a love of OpenNMS and wants to contribute to it, be that through code, documentation, the community, &tc.

OpenNMS has changed greatly over the past two decades, and it has become harder to contribute to a project that has grown exponentially in complexity. As part of my role as the Chief Evangelist of OpenNMS, I want to change that and come up with easier ways for people to improve the OpenNMS platform, and I need to come up with a new program to recognize those who contribute (and if you want to skip that part and get right to the job thingie, we’re hiring, but don’t skip that part).

To those of you who were in the Order of the Green Polo, thank you so much for helping us make OpenNMS what it is today. I’m not sure if it would exist without you. And even without the OGP mailing list, I plan to remember your birthdays.

Mark Turner : One more thing I learned is the value of my blog

June 11, 2021 08:30 PM

One important takeaway from this week’s social media dust-up is the value of having my blog. I liked to pretend that Twitter was more open then Facebook and thus I favored posting there. Yet, when someone falsely accused me there, blocked me, and went on to spread this lie to all of her followers, Twitter left me few, if any, options for getting my response out. It was maddening to watch the rumors spread and have no way of countering them with the truth.

Here, I own my own bits. Here, I decide what gets said. Here, I may solicit discussion or … not. Here, my words live forever.

All that, and I have a goddamn edit button, too.

Mark Turner : On the Internet nobody knows you’re a spook

June 11, 2021 01:12 PM

OS Division, USS ELLIOT, fall 1991

OZ Division, USS ELLIOT DD-967, fall 1991.

Had a dust-up on social media the other day and, frankly, I am still mystified how it all took place.

I tend to follow online and amplify veterans who lean left because the perception of the military consisting of only right-wingers needs to change. A tweet from one of the more popular veterans I follow attracted several good comments. I liked one from a particular veteran (we’ll call her Karen), checked her profile, and followed her when I saw we had something in common: our Navy occupations were in cryptography.

A few days later, she followed me back. I decided to say hi to her in a direct message:

Well, because by brain is perpetually fried lately I goofed in how I specified my rank. I was a CTR2 rather than a CTR5, which – admittedly – doesn’t exist. A second class petty officer is an E-5. I got my numbers mixed up. It doesn’t help that I was juggling three other tasks for my day job and trying to get them done so I could grab lunch. It was an innocent typo. As you can see here, though, I owned up to my mistake and attributed it to my brain not working right anymore from Desert Storm.

I turned my attention away from Twitter and continued working, thinking that was the end of it. A few hours later, I opened Facebook to find that Karen had posted in a group of which we are both members, the Naval Security Group Activity (NSGA) group. Karen made fun of the guy on Twitter who couldn’t get his rate/rank straight, and you know, that was fair game. I responded in a comment that the person she was laughing at was me and that, yes, I had told her immediately that my brain doesn’t work right anymore. Two of my division shipmates weighed in to say I was indeed who I say I am and that her bullying needs to stop.

Now at this point, a functioning adult would have realized her mistake, admitted it, and perhaps offered an apology for not believing me. Karen chose to double-down instead, quizzing me about my health issues which I have shared some of here before but don’t feel like dragging out into the public all the time. Fine, I thought. I extended an olive branch to her in her Facebook post and was willing to move on.

A bit later, I happened to check Karen’s Twitter feed again. Karen had thoughtfully updated her Twitter friends with info from the NSGA thread, saying now she felt like an ass since I had included a photo of me with my division. Still, this apparently wasn’t enough proof get her to move on, much less apologize.

In the NSGA post, she had told me she didn’t name me in her original Twitter post. That is true enough – it wasn’t in her initial post – but it wasn’t long before she gleefully shared it with her followers, causing some of them to block me as well. Discovering this made me very angry. It’s one thing to anonymously laugh at my innocent mistake but to name me, even after being proven wrong?

Karen was proven wrong in a public forum and was chided for bullying me. Again, she could have been a functioning adult but instead dug in. Suddenly, her accusation changed from me claiming stolen valor to me faking my illness! On Twitter, she referenced the USS ELLIOT Wikipedia page and insinuated that because ELLIOT wasn’t present when missiles were flying, obviously I was making up my health issues.

First off, anyone who cites Wikipedia on anything is an idiot. Anyone can edit pages and rarely is anything there checked or edited. Secondly, I wrote about half of the USS ELLIOT Wikipedia page, including nearly all the details of the Westpac 90 and 91 deployments I was on. Thirdly, as the screenshot of our initial chat shows, I never told her I was in Desert Storm – the combat phase with fighting and all that. I simply said my health has not been tthis insanehe same since Desert Storm. My ship deployed to the Persian Gulf during the post-combat phase of Desert Storm, i.e. after the cease-fire. It was still a combat zone, full of stuff that could kill me, and I received combat pay for the three largely-boring months we did circles in the tiny Gulf.

Now, a layperson might think “well, how could he be injured then?” I admit that for the longest time, I doubted myself that I had Gulf War Illness. The fact is, though, my ship entered the Gulf at the height of the Gulf War’s environmental disaster. Thousands of well heads had been set on fire by retreating Iraqi troops, filling the skies with black oil smoke. This smoke followed the prevailing winds and blanketed the Gulf, turning noon into twilight. I have photos and video of us escorting a tanker north to a Kuwaiti terminal and the sky is filled with smoke. In hindsight, I wish I had stayed below decks as I was on the midwatch at the time and only woke up because our captain decided to play tour guide with the 1MC and woke everybody up. I have since wondered if I had stayed inside during that time, maybe my health would be better now.

The oil smoke particles weren’t the only particulates I was breathing in. Extra-fine sand gets carried by the desert wind and can cause silicosis. When topside I would occasionally I had a bandanna over my face but not all the time.

Then there was the nerve gas. I had known that chemical weapons alarms had gone off during the war. I read something afterward that speculated that some of this gas had been released at the wellheads along with the smoke. Now, I don’t know if that is true – and I have strong doubts about it – but I have read that even exposure to tiny amounts of nerve gas is enough to cause permanent damage. I can’t rule it out.

Next, there were the numerous vaccinations we were all required to get. Malaria shots were required, of course, but also an experimental Anthrax vaccine. Some were issued PB pills but I don’t believe I had to take those. At any rate, I was stupid and misplaced my shot card so I am not sure what got put into my body. My service records don’t show much, either.

Finally, there is depleted uranium. Depleted Uranium (DU) is an exceptionally-hard metal which is used as an anti-armor projectile. I was not a gunner’s mate but I was around depleted uranium a few times. As a ship’s photographer, I snapped photos of the DU rounds that were used in our Close-In Weapons System (CWIS), an R2D2-looking system designed to down incoming missiles. Not only that, I have photographed the CWIS in action as it chewed through hundreds of DU rounds during its tests. I absolutely have breathed in dust containing depleted uranium.

All of this to say, while no one may have been actively trying to kill us (save for a floating Iraqi mine), I have plenty of reason to suspect my current health issues are Gulf War-related.

But I shouldn’t have to go into all of that, right? Karen should have been able to take my word on it. I said right from the start that I have health issues. And, hell, my blog URL is part of my Twitter profile. She could’ve searched here for the numerous posts I’ve written about my health, my service, and the Gulf War.

At this point I was incensed.

Tried to say I hadn’t served? Proven wrong. Tried to say I wasn’t a CT? Proven wrong. Tried to say I was using my illness as an excuse? A pathetic attempt at saving face, and while I mentioned my health issues in her Facebook post I can’t just post my medical records online. Furthermore, it’s just batshit insane that, once her initial premise had been proven wrong, she turned to attacking my health.

I weighed in on one of Karen’s Twitter threads about USS ELLIOT. Was I condescending? Fuck yes, I was! I was pissed. She had posted fighting words and continued to post them but left me no way to respond. In hindsight this wasn’t my best move because Karen had been the bully thoughout this episode but now I had given her the cover to claim victimhood.

My posting ticked off some of her followers who then unloaded on me. I traded posts with one of them, mentioning the many shipmates with which I served who met untimely deaths. He quoted to me the text I had written myself on the USS ELLIOT Wikipedia page and that backfired on him.

Rather than continue to talk past each other, I offered to have a video chat with him. I had planned to set up a Zoom call where I would answer any questions he had. He was not brave enough to take me up on the offer, though, so as far as I am concerned he and Karen’s friends aren’t really interested in the truth. I am done engaging them now.

So, what has this episode taught me?

1. Always stand up for your good name, no matter what the cost.
2. I am at my core always willing to poke the bear, even if poking the bear is not in my best interests.
3. There are a surprising number of adults who have never learned the value of admitting when they’re wrong. There are people who won’t change their minds even when presented with a mountain of evidence.
4. Not all sailors are shipmates, even ones who did the same things you did.
5. It’s okay to piss people off, especially if they have it coming. I don’t need everyone to be my friend. This is hard one for me to accept but it’s true. As someone said, “you are the villain in someone else’s story.” So be it.
6. Value the people who do have your back. I am grateful for the friends who stood with me.

I requested that the NSGA group post be removed and it was, thankfully. The Twitter stigma remains, however. Social media is great until it isn’t, I guess, and expecting to have a worthwhile conversation with total strangers on the Internet is an impossibly high bar.

Now, on to other things!

Update 16:02: Hi folks! If you want to learn more about my super-fun experiences with GWI, check these posts here and also here and here, especially. Keep in mind that these are only a very small sample of the episodes that I’ve had. You might uncover some I’ve missed here with a search of my blog’s Health category.

Tarus Balog : What’s Old Is New Again

May 12, 2021 03:46 PM

Today we launched a new look for OpenNMS, a rebranding effort that has been going on for the better part of a year. It represents a lot more than just a new logo and new colors. While OpenNMS has been around for over two decades now, it is also quite different from when it started. A tremendous amount of work has gone into the project over the past couple of years, and if you looked at using it even just a short while ago you will be surprised at what has changed.

New OpenNMS Logo

One of the best analogies I can come up with to talk about the “new” OpenNMS concerns cars. I like cars, especially Mercedes, and when I was in college I usually drove an older Mercedes sedan. I enjoyed bringing them back to their former glory (and old, somewhat beaten down cars were all I could afford), and so I might start by redoing the brake system, overhauling the engine, etc.

When I would run out of money, which was often, sometimes I’d have to sell a car. Prospective buyers would often complain that the paint wasn’t perfect or there was an issue with the interior. I’d point out that you could hop in this car right now and drive it across the country and never worry about breaking down, but they seemed focused on how it looked. Cosmetics are usually the last thing you focus on during a restoration, but it tends to be the first thing people see.

This is very much like OpenNMS. For over a decade we’ve been focused on the internals of the platform, and luckily we are now in a position to focus on how it looks.

Please don’t misunderstand: application usability is important, much more important than, say, the paint job on a car, but in order to provide the best user experience we had to start by working under the hood.

For example, from the beginning OpenNMS has contained multiple “daemons” that control various aspects of the platform. Originally this was very monolithic, and thus any small change to one of them would often require restarting the whole application.

OpenNMS is now based on a Karaf runtime which provides a modular way of managing the various features within the application. It comes with a shell that can allow even non-Java programmers access to both high and low level parts of the platform, and to make changes without restarting the whole thing. Features can be enabled and disabled on the fly, and it is easy to test the behavior of OpenNMS against a particular device without having to set up a special test environment to pore through pages of logs.

Another great aspect of OpenNMS is that much of the internal messaging can now take place through a broker such as Kafka. While this increases the stability and flexibility of the platform, users can also create custom consumers for the huge amounts of information OpenNMS is able to collect. For very large networks this creates the option to use that data outside of the platform itself, giving end users a high level of custom observablity.

The monolithic nature of OpenNMS has also been improved. The addition of “Minions” to provide monitoring at the edge of the network creates numerous monitoring solutions where there was none before. You can now reach into isolated or private networks, or monitor the performance of applications from various locations seamlessly. The “Sentinel” project allows the various processes within OpenNMS to be spread out over multiple devices with the aim to have virtually unlimited scale.

APM Example World Map

And I haven’t even started on the ability of OpenNMS to monitor tremendous amounts of telemetry data and to analyze it with tools such as “Nephron” or our foray into artificial intelligence with ALEC.

So much has changed with OpenNMS, much of it recently, that it was time for that new coat of paint. It was time for people to both notice the new look of OpenNMS at the surface, and the new OpenNMS under the covers.

One thing that hasn’t changed is that OpenNMS is still 100% open source. All of these amazing features are available to anyone under an OSI approved open source license. Plus we leverage and integrate with best-in-class open source tools such as Grafana for visualization and Cassandra (using Newts) for storing time series data.

Our new logo is a stylized gyroscope. For centuries the gyroscope has represented a way to maintain orientation in the most chaotic of situations. In much the same way, OpenNMS helps you maintain the orientation of your IT infrastructure which, let’s admit it, plays a huge role in the success of your enterprise.

Where the car analogy falls apart is that while the paint job is usually the end of a restoration, this new look for OpenNMS is just the beginning of a new chapter in the history of the project. Our goal is to create a platform where monitoring just happens. We’re not there yet, but check out the latest OpenNMS and we hope you’ll agree we are getting closer.

Warren Myers : sometimes i’m off

April 27, 2021 09:23 PM

It took Apple 5.5 (or 6, if you count last week as really hitting it) years to introduce what I called the MacBook Flex back in 2015.

With the 13″ MacBook Pro available in an M1-powered edition (which is so much better than the top-end MBP from 2019…it’s not even funny), and now a 5G-enabled iPad Pro running on the M1 … it’s here.

Mark Turner : Practicing my OSINT skills

April 18, 2021 02:23 AM

Yesterday, a story went viral of a North Carolina man and woman who fought off an attack by a rabid bobcat. This story made news all over the world (it was a slow news Friday, I suppose) but I became annoyed that none of the stories mentioned who the victims were. I thought this might make a good opportunity to use my Open Source Intelligence (OSINT) skills to try to identify them based on what was known so far. And what do you know, I managed to do it!

Since I hadn’t seen that the couple had granted any interviews anywhere, I figured they were not interested in publicity and I opted not to mention their names publicly. I now see that Wilmington station WECT has interviewed them so I can reveal my work. The folks involved are good people and I don’t want my post to be used to harass them so I will focus on my techniques rather than their identity.

So, at the start of this journey all I had was the video. You see them leaving their house in the morning and getting attacked by the bobcat as they attempt to get into their car. The man pulls the animal off of his wife and flings it into the yard before they escape. It’s quite wild.

We can learn a lot from studying this video.

1. We know it’s morning. On the audio, we hear the man greet the passing jogger with “Good morning.” He puts his coffee on his car.
2. Sunlight is visible on the homes in the background. Since it’s morning, we know we are facing west.
3. Key identifying items are visible. The home is near a curve. The sidewalk ends on the right side of their yard. There is a storm catch basin directly across from the driveway.

All these things help separate this home from others in the neighborhood.

Listening carefully to the clip we hear the wife frantically calling her husband’s name, Happy.

An additional bit of information came to me. Someone mentioned it happened in North Carolina; Pender County to be exact. Another person mentioned a bulletin recently put out by the Pender County Sheriff’s Department. It was a notice warning that a rabid bobcat had attacked people and to make sure all of your pets are vaccinated. It said the attack occurred on April 9th, the dead bobcat was tested at N.C. State, and the bobcat was found to have had rabies. It also mentioned that this had happened in the Creekside Subdivision of Burgaw, NC.

So, bobcats are normally extremely shy. They are nocturnal and avoid people at all costs. Interactions with people are thus very rare. It looked like the Pender County Sheriff’s bulletin must have been referring to the attack in the video.

So we know a few things so far:
1. Distinctive features of Happy and his wife’s home.
2. That their home faces west.
3. That the home is likely in the Creekside Subdivision of Pender County.

Time to go to Google Maps and see what we can find.

I put “Creekside Burgaw, NC” in to the search bar and I’m presented with a promising result:

This is a nice, compact subdivision so it shouldn’t take long to narrow down the house. Unfortunately Google Street View has not yet snapped on-the-ground photographs so we’ll have to figure this out ourselves. The subdivision only has one turn on the west side, so immediately I’m looking in the lower right corner for our house.

There is only one house shown on the street map that meets our criteria. But the video shows houses to the left of our house, among others. Where are the houses? It appears Google is not up-to-date on the construction here.

Let’s check the satellite view, as sometimes these two can differ:

No luck. We see an image of the home under construction that’s shown on the street map but none of the surrounding houses. Time to look for a more up-to-date map of the area.

Let’s check the Pender County GIS site. Local governments tend to have GIS systems to maintain more accurate maps for their tax assessments, first responders, and the like. Pender County is no exception and has a very easy to use GIS system. Let’s see what the subdivision looks like in county records:

Bingo. We now have a map showing all the lots in the Creekside subdivision. There’s a home on the western side and in the correct spot in relation to the curve. It also abuts a pond and thus has the sidewalk ending at the property line.

Perfect. This is our house.

GIS tells us the owner, too. In case you were wondering, Happy is only a nickname. Happy’s formal name is Leon H. Wade III. It is common for family members who share names to become known primarily by nicknames. To be sure this is the person we want, A search on his nickname and last name (which is not a common name and thus has higher confidence if we find a match) turns up a LinkedIn page for a gentleman who works in Wilmington, NC, which is the largest city in Pender County.

We can now say with some confidence that we found the person we were looking for. These same techniques can be used to help locate other photographs (for instance, photos of an adversary) and identify the persons in those photographs. It’s also fun.

Warren Myers : think-read-speak

March 24, 2021 09:12 PM


think-read-speak deeply-broadly-carefully

Please feel free to use/share/copy/adapt this image

Tarus Balog : OpenNMS Resources

February 25, 2021 07:22 PM

Getting started with OpenNMS can be a little daunting, so I thought I’d group together some of the best places to start.

When OpenNMS began 20+ years ago, the main communication channel was a group of mailing lists. For real time interaction we added an “#opennms” IRC channel on Freenode as well. As new technology came along we eagerly adopted it: hosting forums, creating a FAQ with FAQ-o-matic, building a wiki, writing blogs, etc.

The problem became that we had too many resources. Many weren’t updated and thus might host obsolete information, and it was hard for new users to find what they wanted. So a couple of years ago we decided to focus on just two main places for community information.

We adopted Discourse to serve as our “asynchronous” communication platform. Hosted at opennms.discourse.group the goal is to migrate all of our information that used to reside on sites like FAQs and wikis to be in one place. In as much as our community has a group memory, this is it, and we try to keep the information on this site as up to date as possible. While there is still some information left in places like our wiki, the goal is to move it all to Discourse and thus it is a great place to start.

I also want to call your attention to “OpenNMS on the Horizon (OOH)”. This is a weekly update of everything OpenNMS, and it is a good way to keep up with all the work going on with the platform since a lot of the changes being made aren’t immediately obvious.

While we’ve been happy with Discourse, sometimes you just want to interact with someone in real time. For that we created chat.opennms.com. This is an instance of Mattermost that we host to provide a Slack-like experience for our community. It basically replaces the IRC channel, but there is also a bridge between IRC and MM so that posts are shared between the two. I am “sortova” on Mattermost.

When you create an account on our Mattermost instance you will be added to a channel called “Town Square”. Every Mattermost instance has to have a default channel, and this is ours. Note that we use Town Square as a social channel. People will post things that may be of interest to anyone with an interest in OpenNMS, usually something humorous. As I write this there are over 1300 people who have signed up on Town Square.

For OpenNMS questions you will want to join the channel “OpenNMS Discussion”. This is the main place to interact with our community, and as long as you ask smart questions you are likely to get help with any OpenNMS issues you are facing. The second most popular channel is “OpenNMS Development” for those interested in working with the code directly. The Minion and Compass applications also have their own channels.

Another channel is “Write the Docs”. Many years ago we decided to make documentation a key part of OpenNMS development. While I have never read any software documentation that couldn’t be improved, I am pretty proud of the work the documentation team has put into ours. Which brings me to yet another source of OpenNMS information: the official documentation.

Hosted at docs.opennms.org, our documentation is managed just like our application code. It is written in AsciiDoc and published using Antora. The documentation is versioned just like our Horizon releases, but usually whenever I need to look something up I go directly to the development branch. The admin guide tends to have the most useful information, but there are guides for other aspects of OpenNMS as well.

The one downside of our docs is that they tend to be more reference guides than “how-to” articles. I am hoping to correct that in the future but in the meantime I did create a series of “OpenNMS 101” videos on YouTube.

They mirror some of our in-person training classes, and while they are getting out of date I plan to update them real soon (we are in the process of getting ready for a new release with lots of changes so I don’t want to do them and have to re-do them soon after). Unfortunately YouTube doesn’t allow you to version videos so I’m going to have to figure out how to name them.

Speaking of changes, we document almost everything that changes in OpenNMS in our Jira instance at issues.opennms.org. Every code change that gets submitted should have a corresponding Jira issue, and it is also a place where our users can open bug reports and feature requests. As you might expect, if you need to open a bug report please be as detailed as possible. The first thing we will try to do is recreate it, so having information such as the version of OpenNMS you are running, what operating system you are using and other steps to cause the problem are welcome.

If you would like us to add a feature, you can add a Feature Request, and if you want us to improve an existing feature you can add an Enhancement Request. Note that I think you have to have an account to access some of the public issues on the system. We are working to remove that requirement as we wish to be as transparent as possible, but I don’t think we’ve been able to get it to work just yet. I just attempted to visit a random issue and it did load but it was missing a lot of information that shows up when I go to that link while authenticated, such as the left menu and the Git Integration. You will need an account to open or comment on issues. There is no charge to open an account, of course.

Speaking of git, there is one last resource I need to bring up: the code. We host our code on Github, and we’ve separated out many of our projects to make it easier to manage. The main OpenNMS application is under “opennms” (naturally) but other projects such as our machine learning feature, ALEC, have their own branch.

While it was not my intent to delve into all things git on this post, I did want to point out than in the top level directory of the “opennms” project we have two scripts, makerpm.sh and makedeb.sh that you can use to easily build your own OpenNMS packages. I have a video queued up to go over this in detail, but to build RPMs all you’ll need is a base CentOS/RHEL install, and the packages “git” (of course), “expect”, “rpm-build” and “rsync”. You’ll also need a Java 8 JDK. While we run on Java 11, at the moment we don’t build using it (if you check out the latest OOH you’ll see we are working on it). Then you can run makerpm.sh and watch the magic happen. Note the first build takes a long time because you have to download all of the maven dependencies, but subsequent builds should be faster.

To summarize:

For normal community interaction, start with Discourse and use Mattermost for real time interaction.

For reference, check out our documentation and our YouTube channel.

For code issues, look toward our Jira instance and our Github repository.

OpenNMS is a powerful monitoring platform with a steep learning curve, but we are here to help. Our community is pretty welcoming and hope to see you there soon.

Tarus Balog : Open Source Contributor Agreements

February 24, 2021 04:41 PM

I noticed a recent uptick in activity on Twitter about open source Contributor License Agreements (CLAs), mostly negative.

Twitter Post About CLAs

The above comment is from a friend of mine who has been involved in open source longer than I have, and whose opinions I respect. On this issue, however, I have to disagree.

This is definitely not the first time CLAs have been in the news. The first time I remember even hearing about them concerned MySQL. The MySQL CLA required a contributor to sign over ownership of any contribution to the project, which many thought was fine when they were independent, but started to raise some concerns when they were acquired by Sun and then Oracle. I think this latest resurgence is the result of Elastic deciding to change their license from an open source one to something more “open source adjacent”. This has caused a number of people take exception to this (note: link contains strong language).

As someone who doesn’t write much code, I think deciding to sign a CLA is up to the individual and may change from project to project. What I wanted to share is a story of why we at OpenNMS have a CLA and how we decided on one to adopt, in the hopes of explaining why a CLA can be a positive thing. I don’t think it will help with the frustrations some feel when a project changes the license out from under them, but I’m hoping it will shed some light on our reasons and thought processes.

OpenNMS was started in 1999 and I didn’t get involved until 2001 when I started work at Oculan, the commercial company behind the project. Oculan built a monitoring appliance based on OpenNMS, so while OpenNMS was offered under the GPLv2, the rest of their product had a proprietary license. They were able to do this because they owned 100% of the copyright to OpenNMS. In 2002 Oculan decided to no longer work on the project, and I was able to become the maintainer. Note that this didn’t mean that I “owned” the OpenNMS copyright. Oculan still owned the copyright but due to the terms of the license I (as well as anyone else) was free to make derivative works as long as those works adhered to the license. While the project owned the copyright to all the changes made since I took it over, there was no one copyright holder for the project as a whole.

This is fine, right? It’s open source and so everything is awesome.

Fast forward several years and we became aware of a company, funded by VCs out of Silicon Valley, that was using OpenNMS in violation of the license as a base on which to build a proprietary software application.

I can’t really express how powerless we felt about this. At the time there were, I think, five people working full time on OpenNMS. The other company had millions in VC money while we were adhering to our business model of “spend less than you earn”. We had almost no money for lawyers, and without the involvement of lawyers this wasn’t going to get resolved. One thing you learn is that while those of us in the open source world care a lot about licenses, the world at large does not. And since OpenNMS was backed by a for-profit company, there was no one to help us but ourselves (there are some limited options for license enforcement available to non-profit organizations).

We did decide to retain the services of a law firm, who immediately warned us how much “discovery” could cost. Discovery is the process of obtaining evidence in a possible lawsuit. This is one way a larger firm can fend off the legal challenges of a smaller firm – simply outspend them. It made use pretty anxious.

Once our law firm contacted the other company, the reply was that if they were using OpenNMS code, they were only using the Oculan code and thus we had no standing to bring a copyright lawsuit against them.

Now we knew this wasn’t true, because the main reason we knew this company was using OpenNMS was that a disgruntled previous employee told us about it. They alleged that this company had told their engineers to follow OpenNMS commits and integrate our changes into their product. But since much of the code was still part of the original Oculan code base, it made our job much more difficult.

One option we had was to get with Oculan and jointly pursue a remedy against this company. The problem was that Oculan went out of business in 2004, and it took us awhile to find out that the intellectual property had ended up Raritan. We were able to work with Raritan once we found this out, but by this time the other company also went out of business, pretty much ending the matter.

As part of our deal with Raritan, OpenNMS was able to purchase the copyright to the OpenNMS code once owned by Oculan, granting Raritan an unlimited license to continue to use the parts of the code they had in their products. It wasn’t cheap and involved both myself and my business partner using the equity in our homes to guarantee a loan to cover the purchase, but for the first time in years most of the OpenNMS copyright was held by one organization.

This process made us think long and hard about managing copyright moving forward. While we didn’t have thousands of contributors like some projects, the number of contributors we did have was non-trivial, and we had no CLA in place. The main question was: if we were going to adopt a CLA, what should it look like? I didn’t like the idea of asking for complete ownership of contributions, as OpenNMS is a platform and while someone might want to contribute, say, a monitor to OpenNMS, they shouldn’t be prevented from contributing a similar monitor to Icinga or Zabbix.

So we asked our our community, and a person named DJ Gregor suggested we adopt the Sun (now Oracle) Contributor Agreement. This agreement introduced the idea of “dual copyright”. Basically, the contributor keeps ownership of their work but grants copyright to the project as well. This was a pretty new idea at the time but seems to be common now. If you look at CLAs for, say, Microsoft and even Elastic, you’ll see similar language, although it is more likely worded as a “copyright grant” or something other than “dual copyright”.

This idea was favorable to our community, so we adopted it as the “OpenNMS Contributor Agreement” (OCA). Now the hard work began. While most of our active contributors were able to sign the OCA, what about the inactive ones? With a project as old as OpenNMS there are a number of people who had been involved in the project but due to either other interests or changing priorities they were no longer active. I remember going through all the contributions in our code base and systematically hunting down every contributor, no matter how small, and asking them to sign the OCA. They all did, which was nice, but it wasn’t an easy task. I can remember the e-mail of one contributor bounced and I finally hunted them down in Ireland via LinkedIn.

Now a lot of the focus of CLAs is around code ownership, but there is a second, often more important part. Most CLAs ask the contributor to affirm that they actually own the changes they are contributing. This may seem trivial, but I think it is important. Sure, a contributor can lie and if it turns out they contributed something they really didn’t own the project is still responsible for dealing with that code, but there are a number of studies that have shown that simply reminding someone about a moral obligation goes a long way to reinforce ethical behavior. When someone decides to sign a CLA with such a clause it will at least make them think about it and reaffirm that their work is their own. If a project doesn’t want to ask for a copyright assignment or grant, they should at least ask for something like this.

While the initial process was pretty manual, currently managing the OCAs is pretty automated. When someone makes a pull request on our Github project, it will check to see if they have signed the OCA and if not, send them to the agreement.

The fact that the copyright was under one organization came in handy when we changed the license. One of my favorite business models for open source software is paid hosting, and I often refer to WordPress as an example. WordPress is dead simple to install, but it does require that you have your own server, understand setting up a database, etc. If you don’t want to do that, you can pay WordPress a fee and they’ll host the product for you. It’s a way to stay pure open source yet generate revenue.

But what happens if you work on an open source project and a much bigger, much better funded company just takes your project and hosts it? I believe one of the issues facing Elastic was that Amazon was monetizing their work and they didn’t like it. Open source software is governed mainly by copyright law and if you don’t distribute a “copy” then copyright doesn’t apply. Many lawyers would claim that if I give you access to open source software via a website or an API then I’m not giving you a copy.

We dealt with this at OpenNMS, and as usual we asked our community for advice. Once again I think it was DJ who suggested we change our license to the Affero GPL (AGPLv3) which specifically extends the requirement to offer access to the code even if you only offer it as a hosted service. We were able to make this change easily because the copyright was held by one entity. Can you imagine if we had to track down every contributor over 15+ years? What if a contributor dies? Does a project have to deal with their estate or do they have to remove the contribution? It’s not easy. If there is no copyright assignment, a CLA should at least include detailed contact information in case the contributor needs to be reached in the future.

Finally, remember that open source is open source. Don’t like the AGPLv3? Well you are free to fork the last OpenNMS GPLv2 release and improve it from there. Don’t like what Elastic did with their license? Feel free to fork it.

You might have detected a theme here. We relied heavily on our community in making these decisions. The OpenNMS Group, as stewards of the OpenNMS Project, takes seriously the responsibilities to preserve the open source nature of OpenNMS, and I like to think that has earned us some trust. Having a CLA in place addresses some real business needs, and while I can understand people feeling betrayed at the actions of some companies, ultimately the choice is yours as to whether or not the benefits of being involved in a particular project outweigh the requirement to sign a contributor agreement.

Tarus Balog : The Server Room Show Podcast

February 23, 2021 04:05 PM

A couple of weeks ago I had the pleasure to chat with Viktor Madarasz on “The Server Room Show” podcast.

The Server Room Podcast Graphic

Viktor is an IT professional with a strong interest in open source, and we had a fun and meandering conversation covering a number of topics. As usual, I talked to much so he ended up splitting our conversation across two episodes.

You can visit his website for links to the podcast from a large variety of podcast sources, or you can listen on Youtube to part one and part two.

It was fun, and I hope to be able to chat again sometime in the future.

Note: Viktor is originally from Hungary, as was my grandfather. I tried to make getting some Túró Rudi part of my appearing on the show, but unfortunately we haven’t figured out how to get it outside of Hungary, and we all know that I’d talk about open source for free pretty much any time and any place.

Tarus Balog : Thoughts on Security and Open Source Software

February 22, 2021 02:15 PM

Due to the recent supply-chain attack on Solarwinds products, I wanted to put down a few thoughts on the role of open source software and security. It is kind of a rambling post and I’ll probably lose all three of my readers by the end, but I found it interesting to think about how we got here in the first place.

I got my first computer, a TRS-80, as a Christmas present in 1978 from my parents.

Tarus and his TRS-80

As far as I know, these are the only known pictures of it, lifted from my high school yearbook.

Now, I know what you are thinking: Dude, looking that good how did you find the time off your social calendar to play with computers? Listen, if you love something, you make the time.


Unlike today, I pretty much knew about all of the software that ran on that system. This was before “open source” (and before a lot of things) but since the most common programming language was BASIC, the main way to get software was to type in the program listing from a magazine or book. Thus it was “source available” at least, and that’s how I learned to type as well as being introduced to the “syntax error”. That cassette deck in the picture was the original way to store and retrieve programs, but if you were willing to spend about the same amount as the computer cost you could buy an external floppy drive. The very first program I bought on a floppy was from this little company called Microsoft, and it was their version of the Colossal Cave Adventure. Being Microsoft it came on a specially formatted floppy that tried to prevent access to the code or the ability to copy it.

And that was pretty much the way of the future, with huge fortunes being built on proprietary software. But still, for the most part you were aware of what was running on your particular system. You could trust the software that ran on your system as much as your could trust the company providing it.

Then along comes the Internet, the World Wide Web and browsers. At first, browsers didn’t do much dynamically. They would reach out and return static content, but then people started to want more from their browsing experience and along came Java applets, Flash and JavaScript. Now when you visit a website it can be hard to tell if you are getting tonight’s television listings or unknowingly mining Bitcoin. You are no longer in charge of the software that you run on your computer, and that can make it hard to make judgements about security.

I run a number of browsers on my computer but my default is Firefox. Firefox has a cool plugin called NoScript (and there are probably similar solutions for other browsers). NoScript is an extension that lets the user choose what JavaScript code is executed by the browser when visiting a page. A word of warning: the moment you install NoScript, you will break the Internet until you allow at least some JavaScript to run. It is rare to visit a site without JavaScript, and with NoScript I can audit what gets executed. I especially like this for visiting sensitive sites like banks or my health insurance provider.

Speaking of which, I just filed a grievance with Anthem. We recently switched health insurance companies and I noticed that when I go to the login page they are sending information to companies like Google, Microsoft (bing.com) and Facebook. Why?

Blocked JavaScript on the Anthem Website

I pretty much know the reason. Anthem didn’t build their own website, they probably hired a marketing company to do it, or at least part of it, and that’s just the way things are done, now. You send information to those sites in order to get analytics on who is visiting your site, and while I’m fine with it when I’m thinking about buying a car, I am not okay with it coming from my insurance company or my bank. There are certain laws governing such privacy, with more coming every day, and there are consequences for violating it. They are supposed to get back to me in 30 days to let me know what they are sending, and if it is personal information, even if it is just an IP Address, it could be a violation.

I bring this up in part to complain but mainly to illustrate how hard it is to be “secure” with modern software. You would think you could trust a well known insurance company to know better, but it looks like you can’t.

Which brings us back to Solarwinds.

Full disclosure: I am heavily involved in the open source network monitoring platform OpenNMS. While we don’t compete head to head with Solarwinds products (our platform is designed for people with at least a moderate amount of skill with using enterprise software while Solarwinds is more “pointy-clicky”) we have had a number of former Solarwinds users switch to our solution so we can be considered competitors in that fashion. I don’t believe we have ever lost a deal to Solarwinds, at least one in which our sales team was involved.

Now, I wouldn’t wish what happened to Solarwinds on my worst enemy, especially since the exploit impacted a large number of US Government sites and that does affect me personally. But I have to point out the irony of a company known for criticizing open source software, specifically on security, to let this happen to their product. Take this post from on of their forums. While I wasn’t able to find out if the author worked at Solarwinds or not, they compare open source to “eating from a dirty fork”.


But is open source really more secure? Yes, but in order to explain that I have to talk about types of security issues.

Security issues can be divided into “unintentional”, i.e. bugs, and “intentional”, someone actively trying to manipulate the software. While all software but the most simple suffers from bugs, what happened to the Solarwinds supply chain was definitely intentional.

When it comes to unintentional security issues, the main argument against open source is that since the code is available to anyone, a bad actor could exploit a security weakness and no one would know. They don’t have to tell anyone about it. There is some validity to the argument but in my experience security issues in open source code tend to be found by conscientious people who duly report them. Even with OpenNMS we have had our share of issues, and I’d like to talk about two of them.

The first comes from back in 2015, and it involved a Java serialization bug in the Apache commons library. The affected library was in use by a large number of applications, but it turns out OpenNMS was used as a reference to demonstrate the exploit. While there was nothing funny about a remote code execution vulnerability, I did find it amusing that they discovered it with OpenNMS running on Windows. Yes, you can get OpenNMS to run on Windows, but it is definitely not easy so I have to admire them for getting it to work.

I really didn’t admire them for releasing the issue without contacting us first. Sending an email to “security” at “opennms.org” gets seen by a lot of people and we take security extremely seriously. We immediately issued a work around (which was to make sure the firewall blocked the port that allowed the exploit) and implemented the upgraded library when it became available. One reason we didn’t see it previously is that most OpenNMS users tend to run it on Linux and it is just a good security practice to block all but needed ports via the firewall.

The second one is more recent. A researcher found a JEXL vulnerability in Newts, which is a time series database project we maintain. They reached out to us first, and not only did we realize that the issue was present in Newts, it was also present in OpenNMS. The development team rapidly released a fix and we did a full disclosure, giving due credit to the reporter.

In my experience that is the more common case within open source. Someone finds the issue, either through experimentation or by examining the code, they communicate it to the maintainers and it gets fixed. The issue is then communicated to the community at large. I believe that is the main reason open source is more secure than closed source.

With respect to proprietary software, it doesn’t appear that having the code hidden really helps. I was unable to find a comprehensive list of zero-day Windows exploits but there seem to be a lot of them. I don’t mean to imply that Windows is exceptionally buggy but it is a common and huge application and that complexity lends itself to bugs. Also, I’m not sure if the code is truly hidden. I’m certain that someone, somewhere, outside of Microsoft has a copy of at least some of the code. Since that code isn’t freely available, they probably have it for less than noble reasons, and one can not expect any security issues they find to be reported in order to be fixed.

There seems to be this misunderstanding that proprietary code must somehow be “better” than open source code. Trust me, in my day I’ve seen some seriously crappy code sold at high prices under the banner of proprietary enterprise software. I knew of one company that wrote up a bunch of fancy bash scripts (not that there is anything wrong with fancy bash scripts) and then distributed them encrypted. The product shipped with a compiled program that would spawn a shell, decrypt the script, execute it and then kill the shell.

Also, at OpenNMS we rely heavily on unit tests. When a feature is developed the person writing the code also creates code to “test” the feature to make sure it works. When we compile OpenNMS the tests are run to make sure the changes being made didn’t break anything that used to work. Currently we have over 8000 of these tests. I was talking to a person about this who worked for a proprietary software company and he said, “oh, we tried that, but it was too hard.”

Finally, I want to get back to that other type of security issue, the “intentional” one. To my understanding, someone was able to get access to the servers that built and distributed Solarwinds products, and they added in malware that let them compromise target networks when they upgraded their applications. Any way you look at it, it was just sloppy security, but I think the reason it went on for so long undetected is that the whole proprietary process for distributing the software was limited to so few people it was easy to miss. These kind of attacks happen in open source projects, too, they just get caught much faster.

That is the beauty of being able to see the code. You have the choice to build your own packages if you want, and you can examine code changes to your hearts content.

We host OpenNMS at Github. If you check out the code you could run something like:

git tag --list

to see a list of release tags. As I write this the latest released version of Horizon is 26.0.1. To see what changed from 26.0.0 I can run

git log --no-merges opennms-26.0.0-1 opennms-26.0.1-1

If you want, there is even a script to run a “release report” which will give you all of the Jira issues referenced between the two versions:

git-release-report opennms-26.0.0-1 opennms-26.0.1-1

While that doesn’t guarantee the lack of malicious code, it does put the control back into your hands and the hands of many others. If something did manage to slip in, I’m sure we’d catch it long before it got released to our users.

Security is not easy, and as with many hard things the burden is eased the more people who help out. In general open source software is just naturally better at this than proprietary software.

There are only a few people on this planet who have the knowledge to review every line of code on a modern computer and understand it, and that is with the most basic software installed. You have to trust someone and for my peace of mind nothing beats the open source community and the software they create.

Mark Turner : Not throwing away my shot

February 13, 2021 05:28 PM

Durham VA COVID Clinic sign

Durham VA COVID Clinic sign

I got the first of two COVID-19 vaccination shots on Saturday. For several years the Veterans Administration (VA) has been providing my healthcare. About two weeks ago I asked my doctor there if it was possible to get a shot. I stressed that I did not want to take one away from anyone else but if one were available I would love to get it. Thankfully, the VA has made it a priority that every veteran who wants a shot can get a shot. To my surprise, I got a call a day later! I was to be at the Durham VA on Saturday, 6 February at 9 AM to get my COVID-19 vaccination.

Our son Travis has been eager to get his vaccination, too, so in the offchance that he could pick up a shot, too, he accompanied me to the Durham VA. We hit the road shortly after 8 AM and drove through mostly-empty streets to Durham.

We arrived to a somewhat chaotic scene. One of the VA’s parking decks has been undergoing repairs for the past several months and parking has been tight even on a usual day. This day, there was a stream of veteran patients all arriving at the same time for their COVID shots. Though we got there at 8:35 for a 9 AM appointment, it took several minutes to find an open parking spot. Reaching the top level of the deck, we hopped out and headed to the walkway.

It was at the start of the walkway that I stopped to read the sign on the floor. No walk-in shots would be available. Regretfully, I turned to Travis and told him today would not be his day. With sadness, he turned back and waited for me in the car.

I joined a scrum of people waiting in line after line. First was the typical COVID risk screening at the entrance. A woman studied the masks worn by the visitors and switched out ones that didn’t meet her standards. I was amused when I was asked to trade the NIOSH-certified N95 mask that has protected me for months for an uncertified KN95 mask I was given. This was even more amusing when visitors with surgical masks that are not nearly as protective as my N95 were allowed to continue wearing them. Could it be that I know more about mask protection than healthcare workers?

The vaccination line at Durham VA

The vaccination line at Durham VA

After being asked travel and symptom questions and being scanned by an infrared temperature checker, I was given a green sticker to wear and joined a long line snaking through the first floor of the hospital. First I was handed a vaccination card and asked to fill out my name, birthdate, and last four of my SSN. I soon presented this to a woman with a laptop who was checking people in while they waited in line. This earned me an additional pink sticker to wear. Then I waited as the socially-distanced line slowly made its way down the hallways to the clinic area of the hospital.

I was happy to see so many people of color in line, too. Some Black people are wary of vaccinations and that is understandable, given the horrifying policies and experiments that were carried out on Black communities in the past. While I am not Black, I, too was once cautious of government vaccinations. I’ve often wondered whether the shots and pills I received in the military prior to Desert Storm might be responsible for the mysterious health issues I suffer from today. While I may never fully know about those military shots, I have no qualms about taking the COVID vaccine as I fully recognize that whatever side effects the vaccine brings on are trivial compared to the damage COVID-19 can ravage on my body. This is an easy call.

I was now at a crossroads of sorts. A woman with a paddle sign stood in the middle of the clinic hallway, watching a staffer at either the end of hall. Each had paddle signs that had a red “thumbs down” on one side and a green “thumbs up” sign on the other. When one of the end-hallway staffers would give the signal indicating an open seat, the gatekeeper staffer would direct the patient to that end. I was sent to the left, where I took a seat at the end a long hallway with clinic rooms on either side and veterans seated outside of each room. I spent the next ten minutes or so watching as newly-vaccinated vets walked out of each room while the vets still waiting made small talk.

The next thing I knew, the door next to me opened and a veteran exits. I was invited in.

Two women technicians wearing Duke Hospital pullovers greeted me and had me take a seat. I handed my vaccination card to one, who entered it into a computer and verified my information. While she did this, the other asked if I had allergies, gave me vaccine information, informed me of my second shot appointment, and offered to answer any questions.

“Do you know if there are more mass vaccination events like this one going on?” I asked while I waited.

She told me she wasn’t sure but knew that Duke Hospital and other big area hospitals in the area are doing big pushes right now.

Then the tech at the computer turned to me. She filled her syringe, let me pick the shoulder, and administered my shot of Pfizer vaccine. I feel, well … nothing, really. In two seconds it was over, so quickly I don’t think to snap a photo.

“This is more for show since there’s never any blood,” the tech explained as she tried in vain to get a bandaid to stick on hairy arm.

A supervisor or doctor entered the room and double-checks their work, making sure that the dosage information was properly entered on my vaccination card. Someone slapped yet another sticker on me, this one a paper label with “9:40” written on it. This is the time of my shot plus fifteen minutes. Then I was cheerfully directed down the hall to a waiting area where I would spend the next fifteen minutes in case there were immediate adverse reactions. I snapped my first post-vaccination photo here.

Post-vaccination photo

Newly vaccinated!

“Any one with 9:38 or 9:40, you are free to leave,” called out the staffer at the end of the hall. With that, I hopped up, wove my way through the throng of veterans still arriving, and rejoined Travis for the ride home. In an effort to cheer him up, I bought him lunch on the way home.

And that was it. Seems I was in and out like clockwork. I had no pain in my arm and in fact no reaction whatsoever to the vaccine. It was stressed to me that I still must mask and distance as I am still vulnerable until my body’s natural defenses ramp up, but the process has now begun. Data shows that even the first shot alone is capable of preventing serious COVID-19 disease; one shot alone is enough to keep me out of the hospital should I catch COVID. The full protection won’t kick in until two weeks after my second shot, which comes three weeks after the first (27 February for me). Thus, I should be at full protection by 13 March.

What does “full protection” mean? Dr. Fauci and other experts say that vaccinated people can be around other vaccinated people with no fear of infection. Among them, life can go on as if there were no COVID. A vaccinated person with an unvaccinated person are still suggested to mask up as at this date experts are still unsure how much protection the vaccine affords. I expect we’ll soon see further studies which fill in our understanding of this.

Now the wait begins for getting the rest of my family vaccinated. This may take a while but when our turn arrives we will not hesitate to step up. As for me, my vaccination has given me the security to volunteer with NC DHHS to assist with getting more people vaccinated. Before my opportunity for a shot opened up I couldn’t have considered stepping up and helping. Now that’s become possible.

Leaving Durham VA

I also have noticed a change in my mental health, too. I am hopeful and excited again. One of the few things that kept me going though this endless quarantine was the visualization of getting that shot in my arm. I pictured it in my mind on those days when I feeling down and felt like crying. I knew the day would come and if I held on to that I would make it. And so I have.

Now I want to bring that hope and relief to others. Hope is on the horizon! Biden announced this week that 200 million more vaccine doses have been secured, so by this summer anyone who wants a shot can get one. Heck, it might be sooner than that, even.

We can make it! The vaccine is here and within weeks or mere months everyone can be protected. Hang in there!

Warren Myers : remembering sqrt

February 08, 2021 07:16 PM

A couple weeks ago some folks in the splunk-usergroups.slack helped me using accum and calculating with a modulus to make a grid menu from a list.

My original search had been along the lines of:

| inputlookup mylookup
| stats count by type
| fields - count
| transpose
| fields - column

Which was great … until my list grew more than about 12 entries (and scrolling became a pain).

A couple folks here helped me flip it to this format:

| Inputlokup mylookup
| stats count by type
| eval num=1
| accum num
| eval num=num-1
| eval mod=floor(num/12)
| eval type.{mod}=type
| fields - mod num type count
| stats list(*) as *

Which works awesomely.

Unless the modulus value (currently 12) gets too small (if the total list grows to more than modval^2 .. each individual box is no longer in alphabetical order (and then alpha from box to box).

So I made this modification so that regardless of the size of the list, the grid will automanage itself:

| inputlookup mylookup
| stats count by type
| eventstats count as _tot
| eval modval=ceil(sqrt(_tot))
| eval num=1
| accum num
| eval num=num-1
| eval mod-floor(num/modval)
| eval type.{mod}=type
| fields - modval mod num type count
| stats list(*) as *

Dunno if that’ll help anyone else, but wanted to share-back that self-managing aspect I added in case anyone was interested :slightly_smiling_face:

Mark Turner : I was the fox

February 05, 2021 02:41 AM

A fox at Glacier National ParkAt a recent conference, an African American speaker told an inspiring story of an interaction with law enforcement, when he had expected the worst intentions from the officer but his worry proved unfounded. Our speaker had been walking to the local gym after an early-morning run. Soon he became aware that a police car was slowly following him. Immediately he assumed he was being profiled.

“Did you know you were being followed?” the officer asked. The speaker feigned ignorance.

“You were being followed by a rabid fox back there,” the officer replies. “I was just watching out for you.”

The happy moral of the speaker’s story is not to assume bad intentions, see?

When I learned of this speech something didn’t seem right. Then I remembered an incident several years ago.

A few years back, my family and I had been out walking around East Mordecai neighborhood one sunny weekend afternoon. A Raleigh police car drove by and, being the helpful sort I am, I asked them if they were looking for someone.

“Nah, just a rabid fox,” came the reply from the partner. I laughed and we all went on their way.

I am not only the helpful type, I am also the curious type. I pride myself on knowing what is going on in the neighborhood. I had to know more about the fox! Who had seen it? Where did it go? Why hadn’t I not seen any mention of it on the neighborhood listserver? Normally when a fox is seen acting weird in the neighborhood it gets the neighbors pretty excited.

The lack of chatter confused me. I might have even gone as far as checking the call records at 911 center to see what more I could find. But there were no reports anywhere. I determined that the cop had lied to me.

For the longest time, I wondered why a cop would make up a story about looking for a fox. Today I realized that I was the fox.

Mark Turner : Highlights of 2020: Wings of Carolina ground school

January 05, 2021 03:13 PM

In the spring of 2020, Travis and I took a virtual ground school from a local flying club, the Wings of Carolina (WoC). It was the second time I’d gone through ground school, the first one being in the mid 1990s. That time I never got around to taking the FAA exam and I’d hoped to complete it all this time around.

Travis has expressed his interest in becoming a pilot. He has excellent vision and would spend lots of time using my flight simulator. I’d promised him long ago if he completed ground school I would be happy to pay for it, but still he was on the fence. When dates opened up for the virtual ground school, I prodded him multiple times about signing up but he was noncommittal. Finally, I signed myself up with the goal of finally finishing what I started. This was all it took to convince Travis to sign up, too, and we were off!

Twice a week, we would gather in front of our playroom TV to “attend” class. For three hours per night we’d be on Zoom as our instructor, John, filled out formulas and sketches on a whiteboard in WoC’s classroom. About 30 other classmates joined in, too. There were some technical glitches, fewer opportunities to interrupt with a question, and more of a distant feel to it than I would’ve hoped.

There was also a lot to learn. Being that this was near the beginning of the pandemic, shouldering the needs of this course while still panicking about potentially getting sick and going through work changes was a lot to take on. I did the best I could but I found I was not as engaged as I should’ve been. I was happy to see Travis really get into it, though. Towards the end when we were tasked with planning a virtual flight, Travis did his weight-and-balance calculations like he’d been doing it all his life. He arrived at his answers long before the rest of the class (and instructor!) had worked out their solutions. It seemed to me that he had a knack for it. I was so proud!

When it came time for the final exam, though, Travis confessed that he felt he wasn’t ready. Like me, he didn’t feel like he had learned what he needed. I was disappointed but I certainly understood. And so, neither one of us wound up taking our FAA final exams. I believe that to this date there is still a tab open on my mail app for the class exam email.

In hihdsight, I think it would’ve been helpful to slow down when trying to teach a course virtually that is normally taught in person. Classmate interaction suffers in virtual classes, so offering one night each week where classmates could chat together in a virtual study hall would’ve helped. And finally, being much closer to actual aircraft (as we would’ve been had we taken the course in person) would’ve really helped us picture ourselves as pilots. With nearly no one traveling right now, it was hard to consider going through this training and then not using it anytime soon (though now I know that this would actually be the best of both worlds – the convenience of air travel without the hazards of a boarding process).

For Travis’s October birthday, I gave him the gift of an “introductory flight” at a local flight school. When I spoke with him to schedule the flight, to my surprise he turned it down. Well, postponing is more like it. He did not feel comfortable spending even an hour crammed into the tiny cockpit of a Cessna with a flight instructor.

And, he’s right. To do this for 20+ hours while training for a private pilot license would certainly not be safe from what we now know about SARSCoV2.

So, it’s not the right time to take this on. Perhaps this year or next.

Mark Turner : Highlights of 2020: The Election

January 05, 2021 02:50 PM

One absolutely wonderful thing that happened in 2020 was the U.S. Presidential Election. Elections bookended the pandemic for me. In March 2020, I volunteered to be an inside poll observer for the Wake County Democratic Party. This gave me insight into how elections are carried out. Being one of those rare people who have never missed an election, I was already well-familiar with how the process worked from the public point of view but learning more about the various checks put in place was quite educational.

COVID was a thing in the March primary but not taken as seriously. Spending so long in a school classroom turned polling place, packed with dozens of strangers seems like suicide to me now. The general election was far more strict, with volunteers carefully limiting the number of people indoors.

I was also disappointed to be restricted in my movement during the general election. Chief judges would corral the observers into one area rather than letting us do our jobs. After some cajoling I managed to get this largely fixed. I’m sure part of the issue was the threat of violence that was on everyone’s mind due to heightened tensions.

Without exception, though, the interactions I had with the Republican poll observers I spent time with were positive. We had good chats about the state of the community and the country. In the past I would’ve posed for pictures with them but the pandemic made that unworkable.

Joe Biden criss-crossed the country, drumming up votes. One weekend afternoon in the summer of 2020, at the depths of his support at the time, Biden spoke at St. Augustine University. We found about it too late to see the whole speech but Travis insisted in going over there, anyway. He walked over and entered the gym which was mostly empty as everyone had left. Biden was there and Travis simply walked up to him and got a selfie. That means that during the campaign, Travis had his photo with Elizabeth Warren, Bernie Sanders, and Joe Biden (Hallie also got snaps with Warren and Sanders).

I recall Hillary Clinton rallying at St. Aug in 2016 and I couldn’t be bothered to walk two blocks to see her. I should be more welcoming when politicians show up on my doorstep, I suppose!

Trump crimed all he could to keep Biden from winning the election but Trump still lost in a landslide. His campaign team filed 62 lawsuits challenging the results and has so far lost 61 of them. The Rudy Guiliani press conference from Philadelphia’s Four Seasons Total Landscaping will go down in history as a highlight of Trump stupidity.

When news organizations finally, finally called the election in Biden’s favor on Nov 7th I was working in the yard. Suddenly I was startled by fireworks in the neighborhood. Spontaneous celebrations broke out among neighbors – something I had never, ever seen before in my life. I put down my tools and wandered down the street to drink champagne and holler in the street with my neighbors as we cheered democracy’s victory.

Results have now been certified in all the states, the election has been called the most secure in America’s history, and it’s all but over. Biden takes office in 15 days, whether Trump likes it or not. Still, several U.S. Senators intend to object to the certification of the electoral votes. They are seditious bastards in my opinion.

I look forward to mind-numbing normalness from a Biden administration. I look forward to being enraged at Biden over totally minor quibbles. I am happy, though, that a criminal family will no longer be in the White House.

And I hope justice catches up with Donald Trump, his family, and his criminal friends.

Mark Turner : Highlights of 2020: Bermuda sod

January 04, 2021 03:53 AM

I got sick of having a disaster of a lawn. Over a decade ago I had vowed to hang up my hoses and not waste money on grass, but something had to be done. I decided that drought-resistant “Celebration” hybrid Bermuda sod was what we needed.

At the end of summer, I killed all the weeds and grass in our front and back yards. A few weeks later I had a giant tractor trailer deliver 11 pallets of sod. It was pouring down rain when the driver arrived. In his efforts to place mulch in our backyard his forklift quickly got mired in the mud at the end of our driveway. For two hours we struggled to get enough traction to free his forklift, only succeeding when my neighbor Chris arrived to help steer as we pulled.

The damage to the back yard had been done, though. A 6,000 pound forklift cut deep ruts in our muddy yard and those ruts had to be repaired before the sod could be put down.

It took back-breaking, Herculean effort by myself, Kelly, and Travis to repair the yard and get the sod put down while it was still alive. I personally pushed myself past the point of exhaustion many nights. I was a wreck. Surprised I didn’t have a heart attack, actually.

It was a stupid, stupid amount of work. But. We. Got. It. Done!

And it looked incredible! For once we had a strong turf grass that didn’t mind the sun or the shade! It’s been perfect.

With the first freeze, the sod has gone dormant and some weeds have appeared but overall it will look fantastic in the spring when it greens up. I won’t have to do much with it to maintain it, either. So far it’s been a great investment in our home.

Mark Turner : Highlights of 2020: Sleep apneas

January 04, 2021 03:41 AM

There are some things about my health that aren’t yet going in the right direction. When the pandemic began, I saw a tip to get a pulse oximeter to measure one’s lung health. It has been great in tracking my sleep apnea. Most nights I sleep with no apnea events but it continues to happen. When it does happen I pop wide awake, frustrated not trusting that I won’t stop breathing again.

I still haven’t found any good solutions. I am not sure there are any. I hope that this gets better this year because I am useless without a good night’s sleep.

Mark Turner : Highlights of 2020: Welcome, weigh bench

January 04, 2021 03:37 AM

With gyms closed across the country it’s been tough to get in a workout. Not that I want to work out in a gym. Kinda shy when it comes to my workouts.

I took weight training for a few years in high school, both at South Meck and again at Herndon. To my surprise, it was a really supportive environment. There were guys who could life twice the weight I could but everyone seemed to applaud when someone bested their own record, whatever that may have been. When I arrived at Herndon in 1986 I could bench press 200 pounds, quite significantly more than my weight at the time!

Other than a brief gym membership in the late 1990s, I hadn’t pumped any iron since then. So, when Hallie and Travis started asking if I could find a weight bench for the house, I figured it was time.

I scoured Craigslist and Facebook Marketplace for benches and weight sets. Anything posted would be gone within minutes. I searched for weeks to find something that would work, even being willing to rent a truck and drive two hours to pick up a set.

One afternoon, though, I had finished up work and was browsing Facebook Marketplace. A guy in Creedmoor had just posted an ad for a weight bench and weights. Literally within 15 minutes. It was everything I was looking for, so I jumped on it. Travis tagged along with me as we weaved through rush hour traffic to rent a truck and bring it home. While we were loading it into our truck, the seller’s cellphone was blowing up with potential offers. Too late!

So now we have a professional weight bench and weights. Travis works out regularly, adding muscle to his 6’4″ frame. And I love being able to step away from my desk and do a few reps just to clear my head. I’m nowhere near what I used to be able to do yet but I intend to do whatever I can to get back in shape. It’s a great investment in health. I’ve got no excuses now!

Mark Turner : Highlights of 2020: Exercise, exercise, exercise!

January 04, 2021 03:24 AM

Strava 2020 totals

Not all has been doom and gloom for 2020. It was a year that I likely put more miles on my bike than ever before. Quarantining indoors (a.k.a, sitting around feeling powerless) has a way of negatively affecting one’s mental health. One of the few safe things (as well as one of the BEST things) we could do was get outside for some fresh air! Kelly and I biked Raleigh’s greenways on a regular basis (sometimes joined by Travis), knocking out 20 mile rides on a regular basis. We even rode the Neuse River greenway from Anderson Point down to its end in Clayton and back. I had signed up for the paid version of Strava before the pandemic started and, coupled with the sweet Garmin watch Kelly got me for Christmas last year, I was able to track all my progress.

I was amazed to feel the progress I made in my cycling, watching new personal records set on segments I’d ridden for many years. Kelly and I took a more leisurely ride just yesterday and afterward I felt better than I have in months. Cycling has kept me sane, that’s for sure. Daily dog walks don’t hurt, either.

Strava tells me that for 2020 I walked or rode a total of 1,182 miles, being active for 318 days of the year for a total of 266 hours. Overall, I feel great and hope to build on this for even more exercise this year.

Mark Turner : Highlights of 2020: Raleigh’s Confederate monument comes down

January 04, 2021 03:11 AM

Raleigh’s Confederate monument comes down

The George Floyd protests were a Godsend for one particular reason: they paved the way for Raleigh’s Confederate monument to come down. A group of protestors managed to pull down some portions of the monument and Governor Cooper stepped in to do the rest, declaring the monument a safety hazard (which is absolutely was). Travis and I set up chairs across the street from the work crew as they wrestled the granite monument to the ground.

Several attempts were made before the right technique was found to disassemble the thing and cart it to some state warehouse somewhere. It was late that evening in June when the first section was successfully removed. We were tired but it was so worth it to watch this history being made.

I have long hated the monument, considering it a giant middle finger to the idea of integration and equality. Not only was it a monument to hate, it was also an architectural eyesore, out of scale for the State House Grounds where it stood. It took up half of the sidewalk that passed in front of it. One could not simply walk by and not acknowledge it.

But now it’s gone. The State quickly dug up the rest of it, planted grass in the spot, and extended the sidewalk to its original dimensions. I’m only disappointed that with my downtown office closed, I will not get the chance to smile daily as I walk past its former place of honor.

It was one of the best parts of 2020.

Good riddance, Confederate monument. Traitors deserve no place of honor.

Mark Turner : Highlights of 2020: George Floyd protests rock Raleigh

January 04, 2021 02:59 AM

Like many American cities, Raleigh was rocked this summer by street protests decrying the murder of George Floyd by a Minneapolis police officer. Peaceful protesters downtown were replaced by more agitated protestors after the sun set. Raleigh Police and Wake deputies showed up in riot gear, deputies immediately sent pepper gas flying, and a fray soon commenced. Instead of engaging the public, police and deputies used an iron-fist approach to clear the streets. As a result, those supposedly there to prevent a riot essentially guaranteed a riot. It was the first time in many decades that gas was used on a crowd in Raleigh.

The next morning downtown Raleigh looked like a war zone. Broken glass was everywhere. Spray painted graffiti covered buildings. A convenience store had been set on fire. At the same time, though, Raleighites from all walks of life came downtown to help clean up. Folks who were strangers only minutes ago were teaming up to put planters back in place and sweep up. It was great to see.

Travis and I went downtown to snap photos and view the damage. As I lingered to view the damage to a shattered storefront, a Black couple was passing me on the sidewalk. The man, looking pained at the destruction, locked eyes with me and gave a quiet, somber “good morning” and I returned it. I was so happy that he had thought to reach out and I was thrilled to return the favor. It was a simple gesture but made me smile the rest of the day, in spite of all the chaos. I love my Raleigh family.

Not all was peace and love, though. I passed one contractor, a white man, who was yelling at the nearest Black people he could find, blaming them for the destruction. I shook my head. That man doesn’t know those folks and ignorance fuels his fear.

Mayor Mary-Ann Baldwin was apparently asleep when the chaos took place. I have to wonder who was coordinating the efforts. On subsequent nights, Baldwin declared a curfew but by then the damage was done. Raleigh Police Chief Cassandra Deck-Brown was publicly critical of Wake Sheriff’s deploying gas, as she should be. Witnesses I spoke with confirmed that it was deputies who first filled the streets with smoke. That’s a genie that can’t be put back in the bottle.

To RPD’s credit, the department committed to reviewing its methods. Later protests had a much lighter touch, allowing legitimate First Amendment demonstrations without amping things up. I applauded this more enlightened approach. The less adversarial approach helped avoid needless violence and property damage. If the first night had been handled this way there would’ve been far less destruction.

One unfortunate victim of the police’s rough handling was to change Travis’s attitude about the police. Before the Floyd protests, he had assisted RPD in creating a video about the dangers of teens bringing guns on campus. He and his classmates were recognized by Chief Deck-Brown at a Raleigh City Council meeting. All that goodwill went up in smoke when the gas canisters starting flying downtown. That heavy-handed approach was pretty much the quickest way to destroy community trust. It was so, so stupid.

There were other protests, more curfews, and eventually things settled down. A recent N&O story reported that extra security provided outside the home of the Chief as a result of the protests cost taxpayers over $160,000. Chief Deck-Brown announced her retirement last week.

Mark Turner : Highlights of 2020: Working from home

January 04, 2021 02:20 AM

When Broadcom purchased CA (after CA purchased Rally), word came down that the Raleigh office would soon be closing. Broadcom CEO Hock Tan is a big fan of putting the butts of his employees into seats in his existing offices. Thus, he closed CA’s beautiful office in Boulder, Colorado for the drab suburb of Broomfield. Raleigh’s team got moved to a drab office park in Durham, and so I parted ways with Broadcom, not wanting to add a stupid, needless commute to my life.

I landed at my current job when it seemed to check all the boxes for me. Interesting work in an interesting location, downtown Raleigh. I could’ve worked somewhere remotely but having done that in the past I soon grew tired of missing the action going on in an office.

Fast forward to 2020. The COVID pandemic hits and it is suddenly not safe to spend 8 hours at a time crammed together with colleagues in a small office. This summer, my Tennessee-based employer shuttered its Raleigh office and set us up to work 100% remotely. To avoid shipping them (and because there really wasn’t any use to shipping them) I volunteered to store the company’s computer monitors until a new office could be opened.

I have since pressed a few of those monitors into service for our home workstations. Now Kelly and Travis could never go back to just their laptop monitors.

So once again I am back to working from home (WFH), only it’s different when WFH is the rule and not the exception. I don’t feel like I’m missing the action in an office since it’s a level playing field now. I have all the tools I need to manage my servers. Slack and Zoom keep me in touch every day. Occasionally my fellow engineers hang out on a video call just for fun. My gigabit-symmetrical fiber Internet connection is three times as fast as the old office’s.

I am a big believer in naps, now that I’m old. Working from home allows me to tack on a short nap to my lunch break, something I couldn’t do at an office.

Do I miss going into the office? You bet. I rode the bus into work most days. Other days I walked or rode my bike. My desk overlooked Davie Street facing south. I miss lunchtime walks around Fayetteville Street, meeting visitors to the city and giving them tips of things to see. I miss my “bus family” – the folks I saw every morning on the way in. I miss the team lunches and the team happy hours. Yet the office didn’t offer me any chances to collaborate that I don’t have here at home, since I’m essentially a one-man team.

The thing about working from home is to set clear expectations to yourself and others on when you work and when you don’t. It’s fine to step away to run errands or get fresh air but it’s also important to know when it’s “me” time. Just because you’re at home does NOT mean you’re available 24/7. Some work can be done “asynchronously,” sure, but coworkers can sometimes take advantage of you being at home and abuse this.

Kelly’s office also closed this summer, so she’s working full time here as well. As I mentioned earlier, this has set up some contention for our only office. We are lucky that we added new space to our home right before the pandemic hit, giving us more space to spread out. I can now work in the spare bedroom while Kelly does her calls in our office.

I can’t imagine how we would be managing this, though, if we had small children. It would be a herculean task to get anything done at my job while keeping young kids on track for schoolwork. My hat is off to those parents who are doing their best out there.

I hope I do get to return to an office someday. Being at home has its advantages but I need to let my extrovert side show some, too. With any luck this will be safe again this summer. Here’s hoping!

Mark Turner : Highlights of 2020: Karaoke!

January 03, 2021 05:38 PM

I’ve always loved to sing, I have moments of greatness even, and I’m known never to pass up an opportunity to crank up a karaoke machine. We spent New Years Eve 2019 at Panama City Beach, Florida, for a short few days. The bar across the street from our condominium had karaoke nights and I wasn’t going to miss another chance to perform. This is the same place I sang with my extended family a year earlier. It was raining that night and the wait was long but we got in for food and drinks and then made our way over to the karaoke area where many of us belted out tunes for mainly our own enjoyment and that of anyone else who cared to care.

Earlier in the fall of 2019, Kelly and I had made a trip to Nashville where we stopped into a karaoke bar near downtown. I performed a few songs and did okay but flubbed a few, too. It made me feel that if I was going to do this I needed to do it right. This thought began to grow in my mind.

Fast forward to January 2020 or so. I am searching Spotify for a particular song and notice that a karaoke version appeared in the search results. Suddenly I realize there is a huge library of karaoke music on Spotify: everything I need other than the lyrics. Well, lyric sites are plentiful on the Internet, so that wasn’t a problem. I had a PA speaker and microphone I could use. All of a sudden everything clicked!

I began with my usual songs such as John Mellencamp’s Hurt So Good and soon expanded to hundreds of selections. My full-volume practice annoyed the family so I moved my practice studio to the bedroom above the garage, the most sound-isolated place in the house. Whenever I have an hour alone in the house (which is rare in pandemic-land), I fire up the PA, flip open my lyric binder, and bust out a few songs.

I have found that songs that seemed fine to sing while I’m alone in the car just don’t fit my voice or vocal style. I had to learn to pass on songs I love simply because my voice couldn’t do them justice. It has been a hard lesson but an important one. I want to entertain people when I sing, not try to fit my voice into something that won’t work. I trimmed down dozens of songs from my repertoire to focus on the ones I can sing best.

I have spent over a hundred hours working on karaoke songs and perfecting my singing. Each time, I pretend I’m on a stage somewhere post-pandemic, working hard to sing my very best. I look forward to that day or night where I can finally take this show on the road.

Mark Turner : Highlights of 2020: Abbott and Tobin join the family

January 03, 2021 05:22 PM

Abbott and Tobin  play tug-of-war

Abbott and Tobin

It was hard losing our last dog, Rocket. He went downhill quickly and we beat ourselves up questioning whether we had let him suffer too long. Someone once described owning a dog as an “emotional time bomb” and I agree. You invest so much love and affection in your pet to the point where you may take it for granted. But the bomb is always ticking and when it goes off it can really hurt. It took a while to get over the pain and consider getting another critter.

In February 2020, we began to get the itch to get another dog. One neighbor friend works with rescues and brought over one pup she was trying to home. While we chatted in the backyard, this dog went tearing around the yard, following the scent of our porch cat. The dog never paid any attention to us! I could tell this wasn’t the dog for us so we politely declined.

Then Kelly mentioned a neighbor friend had two dogs she was looking to home. The neighbor runs a kennel a.k.a. “pet spa” and had acquired the dogs from another kennel where the foster group seemed to abandon them. We set up an opportunity for the neighbor to bring them over so we could decide. Once again we chatted while getting to know the dogs, only this time they were friendly and interested in us! We laughed as they went tearing around, chasing each other around our backyard.

“This is progress!” I thought. We agreed to keep them over the weekend. That was March first and they have never left.

We weren’t in the market for TWO dogs. It never even crossed our minds. One dog was enough to handle, after all. But these boys, rescues who were named Abbott and Toby, had had some trauma and had spent the past 9-12 months in the same kennel. On our first walks with them, if one got out of sight of the other the first would slam on brakes and look longingly for his companion. It was clear that if they came with us they would have to come as a team.

So we got the set! It’s been great. Their phobias are slowly melting away, Toby soon became Tobin and has now largely mastered house training. They motivate Kelly and me to take them for twice-daily neighborhood walks and provide entertainment as the wrestle each other on the floor. Tobin still occasionally growls unprovoked when we encounter a dog on our walks and he gets obsessed with barking at the dogs in the yard behind ours but we’re slowly working on better behavior.

Being hounds, they also instinctively howl when a fire truck rolls by. This is problem since we live less than a mile away from a fire station. This is cute in the daytime and supremely frustrating at night! Eventually I hit upon setting up a nighttime noisemaker which has greatly stopped the early-morning howling but it isn’t perfect. Occasionally, Abbott will start howling in his sleep and then Tobin joins in! No noisemaker can keep these pups from dreaming about sirens, unfortunately!

They can be a handful but the dogs bring joy to our family. They’ve helped make the quarantine so much more fun!

Mark Turner : Highlights of 2020: COVID-19 pandemic

January 03, 2021 04:46 PM

Ah yes, No account of 2020 would be complete without telling the story of the COVID-19 coronavirus pandemic of 2020.

I’ve mentioned before some of the routine we’d gotten into but as time has gone on that routine has changed a bit. I spent a lot of time in the early days of the pandemic and subsequent self-quarantine just “doomscrolling,” trying to learn as much as I could about COVID. I learned earlier than most I think that the riskiest COVID situation is an indoor gathering. I stopped wiping down our groceries and mail when science showed no evidence that anyone had ever gotten infected via touching things (i.e., fomites). I could focus more fully on my job rather than feeling obsessed with finding out the latest science on COVID.

Even so, there is no doubt that the experience has changed me. I am still healthy and virus-free but the stress of watching society nearly collapse has affected my decision-making abilities to some extent, I think. Or at least things that once seemed important, like household stuff lying around that needs to be put away, don’t seem to be as important as they used to be.

The stark reminder that we individuals may be within weeks of our deaths has forced to think more long-term about my life’s goals. If I only had weeks to live, how would I want to live it? How would I like to be remembered? It has led me to be more honest in my opinions too, I think, where I am now more likely to say what I think instead of sugarcoating something. This may be a natural progression for me as I’ve always admired the Dutch’s penchant for telling it like it is. I am far more comfortable with this now.

I wanted to document what life has been like in a pandemic so early on I began to spend a few minutes of every weekday morning with my laptop and webcam, just updating where I was (and we were) quarantine-wise. As these are some more personal musings I have kept these to myself, though perhaps some day I will be comfortable sharing them. For now they are a video time capsule into this crazy world of self-quarantining.

Since we did our first home renovation and built out an upstairs bedroom/office from our attic, this has been our sole home office. Kelly and I both have desks in it and it was workable as we would usually not overlap too much and get in each other’s way. The pandemic has changed all that, with the addition of video calls to what were phone calls. Now that Kelly’s primary work space is our upstairs office I was frequently an unwilling participant in her video calls. To keep the peace, I shifted my work space across the hall to our spare bedroom where fortunately I have the use of a desk and a borrowed monitor from work. Nothing puts a focus on your relationships like enforcing them 24/7/365. Though I miss working in front of our office’s big double windows, we are now in positions to work without aggravating each other. So that’s good.

Travis is doing remote school work and hanging in there. It’s not ideal but we’re both proud of how he’s sticking with it. When he’s not doing school work, he will hop in the car and drive around town for half an hour. Sometimes it’s good to change up the scenery.

Shopping is for the most part the same as before the pandemic, only 99.9% of customers and staff wear face masks. Some stores wipe down carts but this isn’t as big of a showy thing as it was when this all started. I’m not concerned of getting infected from anything I touch since – number one – no documented fomite infections exist, and – number two – I am wearing a mask which helps keep me from touching my nose and face. When this all began, we were fortunate to have a box of about a dozen unused N95 masks that I’d purchased long ago to use with house projects. I have worn out 3 or 4 of these so far and am the only family member who prefers them. Kelly, Travis, and Hallie prefer the comfort of cloth masks. When I am going out, I will grab my mask from the kitchen counter, slap it on as soon as I get out of the car, do my shopping, slather on some hand sanitizer when I return to the car, and only then take my mask off. Seems safe.

I read early on that medical studies have shown that Vitamin D helps protect against respiratory infections. In 2019, after routine labs at the VA, I was told I was deficient in Vitamin D. This is a fairly-common problem among Americans but particularly among people of color who don’t easily synthesize sunlight into this wonder vitamin. When one of the infectious disease experts I follow on Twitter mentioned the medical study showing VitD’s protective role, I made sure I took my vitamin supplement every day. Recent labs show I now have adequate levels and I am hopeful this will keep me healthy. Dr. Fauci also recommends taking a zync supplement, which is part of the multivitamin I take. Are these wonder solutions? Maybe, maybe not. But they’re cheap, easy, and harmless. So why not?

While there are certain things I do miss, I’ve found that my introvert self has managed the pandemic very well. I do enjoy the company of others, of course, and am happy to run meetings and make things happen but there is no doubt that I am happy to retreat into thought and be left alone for a while. I’ve made use of the library’s book pick up service and have torn through some e-books available on Scribd. And of course the Internet has provided plenty of entertainment as well. A friend shared a story this week of a man who took a job as the sole caretaker of a Pacific island atoll for a year and wound up staying eight years. This might drive many people nuts but I have a feeling I would be just fine having an island to myself.

I can’t help but get angry when I walk through the neighborhood and come across a neighbor hosting a big indoor party. I’ve seen this a few times, mainly neighbors I don’t know. It’s as if no one has been paying attention over the last 10 months.

We also have some kind of church group that is living in the house across the street. Generally they keep to themselves but there is absolutely NO social distancing going on there. People come and go all the time. No masks are ever worn. It’s a disaster waiting to happen. I just smile and wave from a distance because I want nothing to do with this. I call it the COVID Church. Fortunately they don’t hold services there but there were a few mornings where there were a dozen people there working out in the garage and then going running through the neighborhood packed closely together with no masks on. I’ve been happy to see they stopped doing this after I called them out on my Facebook page and another neighbor tipped them off to my rant. I chatted with them afterward and stressed that I just don’t want to see anyone hurt. While the running has largely stopped, the maskless crowding continues.

Last week, my neighbor who is a neonatal nurse got her first shot of the Pfizer vaccine. Thus the vaccine has arrived of sorts at my door step. We quizzed her right afterward about her experience, any side-effects, etc. Sadly, some of her colleagues are of the conspiracy-minded and are refusing the shot. I have concerns about some vaccines, too, but in the case of COVID-19 any ill effects of the vaccine pale in comparison to the damage SARS COv2 would do. I’m far down the list of vaccine recipients and I’m happy to wait my turn. Realistically it could be summer before I get my chance.

In short, the pandemic has colored everything we have done in 2020, beginning in March (or as one friend called it, Marchfinity). Be sure to view the rest of my 2020 entries in this light.

Mark Turner : Highlights of 2020

January 03, 2021 01:23 PM

Hi folks. I’m still alive – still thriving, really – and figure it’s time to do some blog updating to account for the infamous year known as 2020. Though I have not been doing much updating here, a lot has gone one behind the scenes and I will share some of this with you in the next several posts. Unlike some prior years, I will not limit myself to top ten events because there are too many important things to mention.

So, here goes, and best wishes to everyone reading this for a happy and safe 2021.

Warren Myers : 4 places to test your internet connectivty

December 05, 2020 03:34 PM

Warren Myers : a poor user’s guide to accelerating data models in splunk

November 18, 2020 04:39 PM

Data Models are one of the major underpinnings of Splunk’s power and flexibility.

They’re the only way to benefit from the powerful pivot command, for example.

They underlie Splunk Enterprise Security (probably the biggest “non-core” use of Splunk amongst all their customers).

Key to achieving peak performance from Splunk Data Models, though, is that they be “accelerated“.

Unfortunately (or, fortunately, if you’re administering the environment, and your users are mostly casually-experienced with Splunk), the ability to accelerate a Data Model is controlled by the extensive RBACs available in Splunk.

So what is a poor user to do if they want their Data Model to be faster (or even “complete”) when using it to power pivot tables, visualizations, etc?

This is something I’ve run into with customers who don’t want to give me higher-level permissions in their environment.

And it’s something you’re likely to run into – if you’re not a “privileged user”.

Let’s say you have a Data Model that’s looking at firewall logs (cisco ios syslog). Say you want to look at these logs going back over days or weeks, and display results in a pivot table.

If you’re in an environment like I was working in recently, where looking at even 100 hours (slightly over 4 days) worth of these events can take 6 or 8 or even 10 minutes to plow through before your pivot can start working (and, therefore, before the dashboard you’re trying to review is fully-loaded).


One more thing.

That search that’s powering your Data Model? Sometimes (for unknown reasons (that I don’t have the time to fully ferret-out)), it will fail to return “complete” results (vs running it in Search).

So what is a poor user to do?

Here’s what I’ve done a few times.

I schedule the search to run every X often (maybe every 4 or 12 hours) via a scheduled Report.

And I have the search do an outputlookup to a CSV file.

Then in my Data Model, instead of running the “raw search”, I’ll do the following:

| inputlookup <name-of-generated-csv>

That’s it.

That’s my secret.

When your permissions won’t let you do “what you want” … pretend you’re Life in Ian Malcom‘s mind – find a way!

Mark Turner : Overnight pulse oximeter tracks sleep apnea

October 07, 2020 02:15 AM

Sleep apnea graph

At the start of the pandemic, I read a suggestion from a nurse that having a pulse oximeter would be a good idea. I’ve also had issues sleeping for some years including mild (and some not-so-mild) sleep apnea so I figured it might be good to document these. I bought a model which can be worn comfortably overnight and track the full night’s sleep, the Wellue/ViaTom SleepU P03.

The data it’s shown me is alarming. I have been having apnea events almost every night, some of these lasting long enough to dramatically drop my oxygen saturation. I’d been wondering why I’d suddenly find myself wide awake at 3 AM. Now I know it’s because I’d stopped breathing and my body struggled itself awake.

Though I’ve collected months of graphs showing a problem, I’ve not been successful demonstrating this during the VA sleep studies I’ve had done. I don’t do this every night but it happens with enough frequency that it makes it hard for me to feel rested in the morning. I’m hopeful that a future study will open the door to some treatment. A good night’s sleep is a fantastic gift.

Along my sleep apnea journey, I found the excellent OSCAR app, an open-source data visualization tool that gathers data from CPAP machines and pulse oximeters like mine.

Getting old is not for wusses.

Mark Turner : Oh, and this is sadly still true

October 07, 2020 01:51 AM

Writing for me has become harder.

Mark Turner : COVID-19 life

October 07, 2020 01:50 AM

It’s October 6th, day whatever of our home quarantine thanks to the COVID-19 novel coronavirus and President Trump’s utterly abysmal failure to confront it early on. We’ve been essentially holed up since March going out only for essential shopping, medical appointments, takeout or curbside food, and little else. My company shuttered its downtown Raleigh office in favor of an everyone-work-from-home model. I haven’t hugged my mom or dad in over seven months.

We do get out for exercise every weekend possible. Kelly and I have put a few hundred miles on our bikes riding the greenways. But I still won’t go into an office building or an enclosed space for any longer than necessary.

We’ve learned so much about COVID-19 since those early days. Poorly-ventilated spaces are the worst, particularly if they’re crowded. Outdoor activity is safest. Experts roll their eyes at the photos of people at beaches used to illustrate pandemic news stories, as those scenarios are among the safest.

Yet, here in North Carolina Governor Cooper is about to open businesses even wider than before, this in spite of cases continuing to peak here. I know Gov. Cooper’s got to balance the science with the business needs but there’s no way I’m going to spend an hour in a restaurant full of people not wearing masks, regardless of whether they’re spaced apart or not. Not gonna happen.

Japan has done an excellent job of conveying the best way to fight this pandemic. I smack my head at the U.S. Government’s incompetency to do the same.

As for me, I’ve been trying to put my energy into my day job, trying to keep my nerves steady from being around my family 24/7 for months on end, and spending other time “doomscrolling” to find out what fresh hell has been unleashed upon us. Doomscrolling is a perfect word that was coined this year to describe the feeling of helplessness many feel. And it’s an emotional toll on you, the feeling of powerlessness. I end my work day and don’t have energy for much else. I may retreat to my bed to read a book but that’s about it. Just keeping it together takes some serious effort.

While I haven’t written much here during this time (blogging is among the things I’ve just not been motivated to do), I have been keeping a near-daily video diary of what life has been like in Shelter-In-Place Land. I hope it informs my mindset when I look back on it in the future. I am still not sharing it with the public, sorry!

I spent some time yesterday sorting through photos from this year. I was amazed that our beach vacation to North Topsail Island was in July. It seemed simultaneously like yesterday and so long ago. Time has lost its meaning when you stare at the same four walls day in and day out. I looked back with fondness at our trip to the beach over New Year’s, while we were all blissfully unaware of what we would soon face.

But we will get there again. It may still be months away, or a year away, but we will get to a point where society is safe again. I try to keep focused on that light at the end of the tunnel. My spot on the couch is not the most exciting, but staying in a holding pattern is the absolute best way to come out of this safely. I suppose I can hang on.

Mark Turner : Samsung Galaxy spying defeated?

October 07, 2020 01:20 AM

As I’ve written before, I kept noticing ads pop up on Facebook and Twitter which seemed suspiciously as if they were triggered by conversations held around my phone. I got so fed up with this this summer that I briefly listed my Samsung Galaxy phone on Craigslist. And yet, something pulled me back. A friend pointed out that certain apps – even system ones – could be removed from the phone without actually rooting it. I have always been impressed with the Galaxy’s hardware; it was Samsung’s bloatware that drew my suspicion. Samsung’s locked my phone down so tightly that rooting it is out of the question. Perhaps this other method might work?

After carefully examining apps in Android’s app permissions page, paying particular attention to system apps (which usually are firmly entrenched and can’t be removed), my eyes focused on one quite innoculous one that called itself SmartThings.

I already tweeted my discovery of two separate SmartThings apps, each with wildly different permissions, but a search of the phone’s packages never turned up any of the more entrenched, system version of SmartThings.

After more Googling, I found the name of the offender, a mysterious package called com.samsung.android.beaconmanager.

I had gotten a crash course in Bluetooth beacons a few years ago when a local hacker was building an app/contest for DEFCON which relied on beacons. Marketers use Bluetooth beacons to track shoppers around stores. Even though an Android user may turn off Bluetooth on their phone, this only disables the transmitter, not the receiver. The receiver happily continues to snarf up any beacons within the phone’s range, documenting where you have been so Google can sell this to marketers (“scrubbed” of identifying information wink wink nudge nudge). A quick scan of my local Target store using a freely-available beacon scanner app showed over 1,000 Bluetooth beacons in the store. Target has embedded these beacons in their light fixtures to make their shopping app know how to guide you to what you’re looking for. That is a smart and legit way to use beacons.

SmartThings permissions

L:SmartThings user app. R:SmartThings system app.

But what about a beacon app on your phone that you can’t uninstall? That’s always on, always tracking you? What if it also had permission to your Contacts, Location, Microphone, and Phone and these could not be revoked? I could think of no good reason for this outrageous access, access that clearly goes above and beyond anything a marketing beacon app should have. I decided I’d found my spy app.

Some searches showed a method I’d never tried before: disabling an app for a user. This is different from deleting it as it simply disappears the app for the user. The app is still installed but does not run. What’s more, it can be easily restored if needed. Perfect for my needs!

I followed the instructions on the XDA-Developer forums. It uses the Android debugging interface (adb) available by enabling Developer Options on your phone and connecting it to your computer using a USB cable. Then this command will make the offending app disappear:

./adb shell pm disable-user --user 0 package_to_disable

Super-easy. I searched the web for lists of Samsung Galaxy bloatware, looking for apps which could be cleanly disabled without affecting the features I wanted to keep. Goodbye, Bixby, and goodbye com.samsung.android.beaconmanager, a.k.a the system app SmartThings.

Since I’ve done this surgery on my phone, the incidents where a spoken conversation summons an ad have greatly diminished. I don’t recall the last time I’ve seen this happen, actually. Can’t say I’ve proven definitively that beaconmanager was spying on me but it sure seems like my privacy leak has been halted. I’d call that a win.

Warren Myers : libraries should be print-on-demand centers – especially for old/unusual works

September 26, 2020 05:13 PM

Want to reinvigorate old texts and library patronage? Turn libraries into print-on-demand book “publishers” for works in the public domain and/or which aren’t under copyright in the current country and/or some kind of library version of CCLI churches use for music!

This idea came to me after reading this blog post from the Internet Archive (famous for the Wayback Machine).

Libraries have always bought publisher’s products but have traditionally offered alternative access modes to these materials, and can again. As an example let’s take newspapers. Published with scoops and urgency, yesterday is “old news,” the paper it was printed on is then only useful the next day as “fish wrap”– the paper piles up and we felt guilty about the trash. That is the framing of the publisher: old is useless, new is valuable.

…the library is in danger in our digital world. In print, one could keep what one had read. In digital that is harder technically, and publishers are specifically making it harder.

So why not enable a [modest] money-making function for your local library? With resources from places like the Internet Archive, the Gutenberg Project, Kindle free books, blog posts, and on and on – there’s a veritable cornucopia of formerly-available (or only digitally-available) material that has value, but whose availability is sadly lacking: especially for those who don’t have reliable internet access, eReaders, etc. (Or folks like me who don’t especially like reading most books (especially fiction) on a device.)

I’d wager Creative Commons could gin-up some great licenses for this!

Who’s with me‽

Warren Myers : chelsea troy – designing a course

September 24, 2020 03:56 PM

Via the rands-leadership Slack (in the #i-wrote-something channel), I found an article written on ChealseaTroy.com that was [the last?] in her series on course design.

While I found part 9 interesting, I was bummed there were no internal links to the other parts of the series (at least to previous parts (even if there may be future parts not linked in a given post)).

To rectify that for my 6 readers, and as a resource for myself, here is a table of contents for her series:
  1. What will students learn?
  2. How will the sessions go?
  3. What will we do in a session?
  4. Teaching methods for remoteness
  5. Why use group work?
  6. Dividing students into groups
  7. Planning collaborative activities
  8. Use of surveys
  9. Iterating on the course
She also has some other related, though not part of the “series”, posts I found interesting:
  1. Learning to teach a course
  2. Planning and surviving a 3-hour lecture
  3. Resources for programming instructors
  4. Syllabus design

If you notice future entries to this series (before I do), please comment below so I can add them 🤓

Warren Myers : comparing unique anagrams?

August 30, 2020 05:42 PM

How useful would determining similarity of words by their unique anagrams be? For example: “ROBERT” uniquely anagrams to “BEORT”; “BOBBY” and “BOOBY” both uniquely anagram to “BOY”.

Is there already a comparison algorithm that uses something like this?

What potentially “interesting” discoveries might be made about vocabularical choices if you analyzed text corpora with this method?

Warren Myers : splunk: match a field’s value in another field

August 28, 2020 08:14 PM

Had a Splunk use-case present itself today on needing to determine if the value of a field was found in another – specifically, it’s about deciding if a lookup table’s category name for a network endpoint is “the same” as the dest_category assigned by a Forescout CounterACT appliance.

We have “customer validated” (and we all know how reliable that kind of data can be… (the customer is always wrong) names for network endpoints.

These should be “identical” to the dest_category field assigned by CounterACT … but, as we all know, “should” is a funny word.

What I tried (that does not work) was to get like() to work:

| eval similar=if(like(A,'%B%') OR like(B,'%A%'), "yes", "no")

I tried a slew of variations around the theme of trying to get the value of the field to be in the match portion of the like().

What I ended-up doing (that does work) is this:

| eval similar=if((match(A,B) OR match(B,A)), "yes", "no")

That uses the value of the second field listed to be the regular expression clause of the match() function.

Things you should do ahead of time:

  • match case between the fields (I did upper() .. lower() would work as well)
  • remove “unnecessary” characters – in my case, I yoinked all non-word characters with this replace() eval: | eval A=upper(replace(A,"\W",""))
  • know that there are limitations to this comparison method
    • “BOB” will ‘similar’ match to “BO”, but not “B OB” (hence removing non-word characters before the match())
    • “BOB” is not ‘similar’ to “ROB” – even though, in the vernacular, both might be an acceptible shortening of “ROBERT”
  • if you need more complex ‘similar’ matching, checkout the JellyFisher add-on on Splunkbase

Thanks, also, to @trex and @The_Tick on the Splunk Usergroups Slack #search-help channel for working me towards a solution (even though what they suggested was not the direction I ended up going).