Posts by Grumpy Rob

Malicious Compliance

A loong time ago I was working on a project that used Allen-Bradley PLCs that we had to integrate with other software. We asked for a test PLC that ran on a 240V, but when it arrived it looked like it was configured with a 48V DC power supply. After a few acrimonious calls with an arrogant PM who insisted that he knew better we said Okey Dokey, and hooked it up to 240V - after hiding behind a desk :) PSU duly went bang, but only a disappointingly small amount of smoke. Shipped it back, and got a "real" 240V powered one, but no apology from the PM.

Good news was that it gave us one of a number of excuses for "extension of time" - the customer was a Government organisation who, as usual, had faffed around for years writing a spec, asking for tenders, reviewing responses, blah blah blah. At that point the project was now time-critical, so they made us the whipping boy by making us promise to deliver in a ridiculously short time scale (sound familiar anyone?). Luckily they were just as hopeless at contract management as everything else, so we managed to get enough time to do a reasonable job.

Clickbaity title

What is it about The Register and Boeing? In Australia both Qantas and VIrgin have 737 700's and 800's which have flown millions of passenger-miles without any dramas. Concentrating on the aircraft make just gives the airline a "get out of jail free" card, if indeed there were issues with maintenance or pilot training. Does the Register think its readers are too dumb to comprehend that almost all commercial aircraft accidents are caused by a combination of factors? (Swiss cheese accident model)

Just remember - everyone's use case is different

As is usual there are multiple opinions here, seemingly based on "*I* don't think it's a good idea because..". But more power to the Asahi Linux people, I say. It gives me more choice, and if that's not attractive to you, well so be it.

I'm retired now, but a loooong time when I was working in a small office of mainly Mac users I was (and still am) a Linux zealot. So one day, as a joke, the boss handed me a brand new Macbook Air to replace my ageing Toshiba laptop (the business was very profitable, so could easily afford to do this. And all the Mac users thought it was hilarious!). I actually really liked the Apple hardware - the very early Airs were amazingly light and portable and had great graphics compared to my clunky toshiba. MacOS, not so much. So naturally I tried to install and run Linux, but ultimately failed to get anything working properly. And soon after the screen stopped working - maybe because the old X11 drivers had cooked the graphics chip??

Now I have a lot more time on my hands I thought it might be interesting to try Linux on Mac again, just for my own entertainment. But when I visited the Apple section of a computer shop I was really disappointed in the latest Apple laptops. For me their main selling point was lightness, but the latest "Airs" weigh a ton. WTH? And billions of pixels on an 11 inch screen are wasted on my old eyes. So I'll stick to my current Thinkpad, which is reasonably light, and has a good 1920x1080 screen. Runs Linu Mint and everything "just works". Fine for my more frequent travels.

To get back on topic, for me the best thing about Asahi is that in future it may save a few ageing Apple laptops going to landfill, and that is a "GOOD THING".

Chronos is right..

Short version - User Chronos said "..an operating system's job is to abstract hardware and then stay out of the way.." Absolutely right.

Now the long version - My wife was using Windows7 at work, and insisted on using it on her PC at home too. She did (still does) *a lot* of Internet shopping, with consequent flood of "your package is.." emails. I gave her a lot of coaching, but the inevitable happened and she clicked on an email link and, BANG, she had the cryptovirus going wild on her PC. She lost a lot of stuff that *I* hadn't backed up - my fault naturally. That finally convinced her, so I wiped her PC and loaded it with Linux Mint, put icons on the desktop for Thunderbird and Firefox and she never noticed any difference. If I told her that a new version of Windows was a "game changer TM" she'd be mystified, and if I told her she needed to buy a new laptop to run it on she'd be outraged. Bonus - I set up a script that ran at login and rsync'd her email to a local SBC file server (that I had setup to allow me to remotely save my email on my work computer). Still, everything else was still my fault :(

Meanwhile, I might be old but I'm still childish :) I run Linux mint and cinnamon, but for old time's sake I loaded the Motif window manager as well (Yes - I'm *that* old). If someone wants to use my PC I logout, change to Motif, and log back in. Voila - a completely blank black screen background, a mouse cursor, and NOTHING else. Now that's what I call a UI :)

You can't be serious!! (shouted John McEnroe style)

This whole thing makes my head spin. What planet are we on, where people can make statements that are complete bullshit and not get laughed off the stage? If the media were doing their job properly statements like this would be labelled complete bullshit, rather then just parroting what is said by the CEO/politician/etc..

"Python, Ruby, and JS have extremely poor performance for some kinds of tasks."

Anyone care to comment on which tasks, and relative frequency in real life? I'd think that by percentage the "really big" applications, with thousands of transactions per second, accessing millions of records would be a small part of Java app. development??

I'm retired now, but I'm really biased against using Java if at all possible. So much bloat, and with all the library dependencies complicating everything. "Just use Jenkins.." I was told, but that just made everything more complicated to set up, and more opaque when things went wrong. Not to mention bloody IBM Websphere loading its libraries first, introducing subtle, and sometimes not so subtle bugs. Gaaaah!

Of course there are so many different use cases out there it's impossible to generalise, but for the simple stuff I developed later on in my career I much preferred Python. But then I started off developing software for SCADA systems in assembler when core memory was VERY expensive. When we moved to RAM and C it was "luxury" (cf Monty Python).

Clickbait title

I must say that I think the article title is clickbait - but then that's becoming more and more common these days. Sigh.

And I think the biggest security problem facing IT departments, well in Australia at least, is a shortage of people with IT skills. Doesn't really matter if it's open or closed source software - some clown will screw up the configuration and leave security holes. A friend supporting some software at a large semi-government organisation was gob-smacked when their outsourced Linux support person didn't know what logrotate was, and asked him how to install and use it. With that level of (lack of) knowledge how can you expect any thought to be given to security - they don't know what they don't know.

Why does this remind me..

..of the old days when Micorsoft deliberately made the Netscape browser crash out on Windows 3.1?

Fun Police

More than 10 years ago I had to write a noddy web service to extract some data from a back-end system. It was called with an HTTP POST, and because 99% of the time at this client stuff didn't work because of firewall rules I implemented the GET as well - it returned the message "This is a web service - use the POST method you idiot!". So easy to check if the web service was running and the firewall rules hadn't been screwed up *again* - just point a browser at the service.

I was gob-smacked when years later, after a new IT outsourcing crowd had been installed, I was told that the message was offensive and I had to change it. In vain did I point out that it would never be seen by anyone but IT staff doing testing. Gone are the "good old days" when everyone knew about the original BOFH and Xtank, magic and more magic,.. and had a sense of humour.

I *did* smile when, a loooong time ago, I was working on some B2B software that printed barcodes. To modify the barcodes you had to log in as admin with password "xyzzy" (1 point for knowing where that comes from), and then got some extra menu items. Another smile when I selected "Help", and got the message "Yeah, like I had time do *that* too!".

A Real Flash

My first job (many many years ago) was in the Post Office telephone section. A young tech. was working on a fault in a relay rack. Turned off the 50V DC and went off to lunch, at which time one of his helpful colleagues wired a packet of flash cubes (remember them?) across the 50V supply. Tech came back from lunch, sat down on his bench, and turned on the 50V. Lit up the whole floor, and took years off his life. Can't do that stuff nowadays :(

What I don't get..

..is why you'd run Linux in a Windows subsystem??? If you want to run Linux (i.e. need the stability and security, don't need all the bloat and a bazillion services adding to your "user experience" barff), then just run it. If you need Windows to run a favourite program then run Windows in a VM, where it can't do too much damage.

A bit OT but..

Around ten years ago I was working next door to a solicitor. Running kismet to find the best (least worst) channel for our wifi, and I noticed the solicitor's wifi was not encrypted. Told them about it, but was met with a snotty "our IT expert says it's perfectly safe". Can't resist a challenge, so I captured their traffic for a couple of hours, then pasted together the text from some fairly innocuous barrister's advice. Dropped it next door, saying "I've read your email, do you want to read it now?". It *still* took them a week or so to get encryption turned on. And, of course, no thanks for pointing out the security issue. Sigh!

The bigger picture..

Really annoys me that the focus is all on Boeing. Yes - what they did was unforgiveable, BUT Southwest Airlines have 34 737 Max aircraft, first flight on 1st Oct 2017, until grounding in 13th March 2019. Zero crashes, and as far as I know zero incidents. So how come Southwest can fly the MAX OK, but some South East Asian and African airlines can't? And in the case of the Indonesian airline there were three successive flights with the faulty aircraft (FFS!). One flight was completed with the stick-shaker going off THE WHOLE FLIGHT. In Europe or the US the first pilot would have landed immediately AND defected the aircraft. And the aircraft wouldn't have been flown with passengers until it was test-flown first.

My point is there there has to be a combination of factors to cause an accident, and at the moment everyone is attacking Boeing, while the airlines seem to be escaping any blame. How are things ever going to improve if the airlines escape their (deserved) share of the blame?

The cynic in me thinks that there might be some astro-turfing going on, since the ambulance chasers know that Boeing has deep pockets, whereas attacking the airlines may be much more difficult due to country of jurisdiction - but I'm old and deeply cynical.

Reminds me of the Japanese tsunami and all concentration on the dangers of nuclear power - FUKUSHIMA DISASTER sells papers. But the real culprit, who seems to have got away relatively unscathed, was the plant operator. ALL the newer Japanese reactors (22 IIRC) automatically and safely shut down. But the Fukushima plant was the oldest, NOT fail-safe, and well past its design life. The operator kept it running anyway.

So I do wonder about what is posted online, and who is behind it.

..Adjusts tinfoil hat..

What's wrong with stuff that works????

I get really annoyed by the attitude that if it's not under active development it's not worth supporting.

Take the Thunderbird mail client, for example - it's got all the features you need in an email client. No I don't want to edit HTML, or interface with the coffee machine, or... I JUST WANT TO READ MY EMAIL!!

Same with X - *my* use case is that I have a number of Linux boxes, and it's sooooo convenient to open xterms on other boxes and work on my on machine with big dual-headed monitors. Contrast that with the work I have to do on Windows boxes, where I have to RDP in, open a whole damn desktop. Or find out that the number of remote logins has exceeded the license limit, then ring up to get other rude users who stay logged in when they're not actually working to log off. And stop fixing my security - I know not to use anything vulnerable when the network is open to the Internet. But on my own secure network X works just fine. So please stop making it so hard to disable the "nolisten tcp" in X.

And what about grub versus grub2 - grub had a config. file you could read, and I could remember the boot commands from memory. Now there's a huge unreadable grub.conf file - computers are good at pre-processing text. I'm not. And what do you get in return? Dinky progress bars and graphics - in a boot manager FFS!!!

</rant>

That feels better - now for a nice hot coffee :)

Fun with Laserjets

Another great thing about Laserjets was that, with the IP address and some simple scripting, you could write short messages to the display. My favourite message was "OUT OF CHEESE" - that certainly got a few funny looks from users when picking up their printout.

Unfortunately the place I was working at changed out all the old Laserjets with huge copier/printer/scanner units AND stifled creativity by password-protecting all the gear. The fun police are everywhere nowadays :(

Linus is right!

Linus is right, in that it's not up to the Linux kernel to solve security problems of the type that AWS is trying to mitigate. If the data you're processing is so sensitive what the hell are you doing running on something in the cloud? It's not just when you're processing the data that you're vulnerable - the input and output data has to be stored in the cloud too. But cloud providers have never been hacked - right?

I'm just amazed at the number of companies and government/semi-government organisations that are using cloud-based email and data processing/storage. Has no-one done a risk assessment of what could go wrong? But it seems the beancounters have taken over and cheaper beats secure every time - until an excavator or a fire takes out Internet connectivity and the business is left without any access to their corporate data for hours or even days. Yeah - much cheaper!

Horses for courses

One problem I've seen with software development is the old "when you've got a hammer everything looks lik a nail". Young programmers learn one language, and think that it's applicable to all problems they're given. So I've seen what should have been a simple web application run like an absolute dog because it used MEGABYTES of Javascript and MEGABYTES of HTMl to render a few simple and small tables. But the developer was using Java/Swing (I think) and some client side libraries that were HUGE. Who needs click-sortable columns on a table with typically three or four lines of data?? But the developer clearly didn't know any better.

Once you know a thing or two you can select Python for quick and dirty one-off jobs - it doesn't matter if it takes a few hours to extract/migrate data if you're only doing it once. While for a production task you may pick something more efficient and suited to the task - and (gasp!) actually do some thinking at the design stage.

One of my early jobs (more than 30 years ago) was writing the telemetry driver for a SCADA system that had three dual-CRT operator consoles. All written in assembler and fitted into 256k bytes of core memory.. including the OS. And the Interdata 32 bit mini had its performance measured in DIPS (dozens of instructions per second). As with a previous poster, when I sit waiting long seconds for a 4 page Word document to load on an i5 machine with 8Gb of RAM I just shake my head in amazement/disgust.

What could possibly go wrong?

Gee - I can't think of any reason why you wouldn't install equipment in the CORE of your national communication network from a country that:

- has recently been accused of hacking into businesses all over the world and stealing IP

- has the power to coerce a local company to spy for it while ensuring that that company can't tell anyone about it.

And if you think you can mitigate the risk by inspecting the source code then you're dreaming - for a start try looking at https://en.wikipedia.org/wiki/International_Obfuscated_C_Code_Contest to get an idea of how you can hide stuff if you want. And then the nightmare of checking that *every* piece of kit delivered has the same firware, doesn't have extra hidden ROM, firmware updates are "clean", etc, etc, etc...

BTW - I would be just as suspicious about equipment bought from the USA, except that with the "Five Eyes" agreement they already have access to all our phone conversations anyway!

The bottom line is that if you don't have equipment designed and manufactured in-country you can't really trust it 100%. So you're already stuffed!

Coarse colonial

May not be relevant, but my favourite quote (not original) when sytems go down is:

Q: Why is a computer system like an erect penis?

A: Because if you f**k with it it's going to go down.

Seen it any number of times!

Gosh, I like simple answers to complex questions!

There are a few contributors who seem to think network stability is really simple, but I can assure you it's not. Once you have a succession of big disturbances on the transmission network you are in uncharted territory. It's all very well saying that big rotating machines (i.e. coal-fired turbines) have lots of capacity to "instantaneously" provide extra power, but that's conveniently ignoring the problems involved in trying to keep widely separated generators in sync - there are transmission delays, reaction times of the turbine governors, etc, etc Even if the SA generation had been 100% coal-fired there's no guarantee that it would have stayed up. So it's just opportunistic to blame wind generation.

I certainly agree with the consensus that the introduction of lots of green power could have been better managed (hindsight *is* 20-20 vision), and griffo is right that this was a "learning event". But I get *really* annoyed by the pollies and pundits mindlessly (or is it duplicitously?) demanding cheap AND 100% reliable electricty - it's an engineering trade-off, you can't have both simultaneously.

And on the subject of the cost of electricity - it's a few years since I looked at the annual reports of the NSW electricity distributors, and they were then 100% Government owned. But from memory the annual reports showed that the distributors paid a total annual "dividend" to the Government of around a billion dollars, plus another half a billion odd in debt repayments. But "dividend" is just accountant bullshit for tax, since they are (well, were) publically owned assets. So a lot of the blame for high electricity prices lies at the door of our pollies, rather than "network gold plating" or green energy. Don't believe me? Well get off your bum and look at the publically available annual reports.