Kalimat al-Mutafalsif

My last post was about getting out on a dirt bike to do stuff I felt completely uncomfortable doing, for the sake of practice. It turns out this is more important than I thought.

Last night I went to a local shop that was having a seminar on tires and chains, and it was awesome. Now, I knew as I was leaving that I'd be hitting rain, but it didn't look like it'd get terribly nasty, and, hey, I have the gear for it! When I left I packed everything up (zip-lock bags for everything I care about, rain pants on over my jeans and pads, plastic bags inside my boots) in case I hit rain before getting to the shop. Only bit that I carried with without wearing was my rain jacket as it was HOT out (in all black leather). I learned all this on my trip back from Indiana, and how important staying dry is for maintaining your concentration. The last 5 miles or so of my trip to the shop was a mad dash through the rain, rather than putting my jacket on, as I was close enough that I didn't want to stop. However, I got there almost on time, and mostly dry.

The seminar was great, I learned a ton, but some people kept asking questions, and I saw the sky outside get darker, and darker. Finally we got to the end (checking out the bikes of the few people that road) and I got mine in second. After thanking everyone for putting it on (free of charge!) I geared up to roll out.

To set the stage, it was about 9:15, pitch black, and thunder storming, but I assumed that I was good to go. I had all my gear (except for rubber kitchen gloves under my leathers, as I felt I'd be done soon enough) on and had 240 miles of rainy riding at Interstate speeds with rain gear, and forced myself to experience riding without rain gear for about 10-15 miles in pouring rain just in case. I was fairly confident that if I just stayed off the major highways I'd be fine. That little instinct probably saved me a world of hurt.

As I pulled out onto the first road I flipped my face shield down to block out the rain, and was a bit annoyed at how dirty it was. I tried to wipe it off, but it didn't help. With rain on there, and probably all the bug guts and dirt from my Indiana trip, any ambient light washed out my vision completely. Cars coming towards me rendered my vision useless. I started to experiment with opening the face shield slightly over the next mile, but I simply couldn't see any signs well enough to read them, or judge distances in the best of circumstances, and couldn't even see my speedometer in the worst.

50 miles from home, that late at night, there's not too many options. I could have stopped, tried to clean my helmet (with what?), tried to figure out how to cut down on glare from cars (it has a built in sun visor), or kept riding and opened the shield. I kept riding and opened the shield.

From my experience coming home from Rolling Thunder I knew what rain felt like on bare skin, and hard rain through leathers, but I'd yet to be smacked in the face by it at speed. Its not fun without goggles, as every time you turn your head to check a cross street, look down to check your speedometer, or look up to read a sign rain blasts into your eyes, and of course you can't close them, you're moving at speed. In addition, simply looking forwards your face is getting smacked by rain... and water at 50mph stings.

After a few miles on the outskirts of the town this shop was in, it started to really suck. The street lights started disappearing, the street moved down to one lane, and my glasses were well and truly soaking wet. My vision was maybe at 100 feet, and for pot holes and debris in the road it was literally when I hit it, I'd know. I basically picked a mini-van, and stayed behind it, following their lights into the darkness. Then we got into tree-lined on both sides, and there was no ambient light, I actually preferred this, as with no cars coming I could actually see! However, with cars coming I was again unable to see anything but the car's headlights.

Around here, sucky turned worse. My engine started sputtering when I'd idle. So the first stop light I pulled up to, I saw my RPMs start dropping, the engine coughed, and she shut off. Not this again. This happened in the rain storm after Rolling Thunder, and the only solution was to keep RPMs up around 5-7k (idle is around 2k). As I'd rev, great spouts of steam would come flying out the front of my bike like a pissed off dragon coming awake (it'd be colored red from the car tail lights in front of me). Naturally this means that to stop I couldn't clutch in, drop to first gear, and brake. I had to clutch in, set my throttle quickly to about 50% and brake (using on the front brake in the water) while holding the throttle in the same hand. Cramp Buster saved my life... maybe literally. Oh, and fun fact, if your glasses' lenses are at the temperature of air moving at 30mph, and soaking wet, what happens when you stop at a light? That's right, completely fogged up. One hand on the clutch, one on the throttle/brake... there's no way to take them off and nothing to clean them with if you could.

So the rest of the 30 miles to home is a blur of adrenaline influenced memories of lighting cracking overhead, thunder rolling by (only at stop lights, couldn't hear it as I was moving), pot holes barely avoided and not avoided, shoulders ridden on, medians missed by inches, and me screaming the Dropkick Murphies' version of Amazing Grace into the night. I had two guys try to take me out, one caught himself, the other I had time to avoid.... I'm sure he saw me, simply didn't care. Ate water from a semi cab hitting a pot hole next to me, and nearly caught a deer (it crossed in front of the car behind me).

Most terrifying ride of my life.

But... I'd experienced riding in the rain, so that didn't scare me. I'd experienced what rain feels like on bare skin, so while it stung it didn't phase me past the first 5 minutes. I'd ridding at night and in thunder storms, so those weren't the bits that bugged me. What scared me was not knowing what was more than a second in front of me for more than 90% of that ride, and knowing that if something did come up I had no escape options. Thanks to the practice I forced on myself earlier in my riding career (and someone looking out for me), this situation turned out alright. I made it home within an hour and a half, I didn't hit a single object, and I think my bike isn't very messed up. When I arrived home, I got off the bike, looked up into the sky, and pulled a Shawshank Redemption, amazed and thankful that I was home, and in one piece.

So the next time you think "Gee, I could do X, but its a little not good for it right now" ask yourself if you might ever be caught in the same situation without experiencing it. Then go out and experience it so you can have some control over the circumstances, I'm so thankful I did.

I just threw the new theme on my website and was poking around making tweaks this afternoon. I wanted slightly different colors, wanted to make the picture look cooler, maybe edit the footer to change the whole "Made by" to me, and give credit for being based on the theme I based it on. However, upon opening the footer.php, I found a very weird comment:

 
/* V8 - WARNING: This file is protected by copyright law.
To reverse engineer or decode this file is strictly prohibited. */
 

Well that's weird, because in the style.css we read:

/*The CSS, XHTML and design is released under GPL*/

(Side note, if you don't know what we mean by GPL, check out their site.)

No, they don't say PHP in there, however I read that (because 'design' is included) as "This theme is GPL'd". Poking around their website, I see no mention that you're required to keep any part of the theme the same.

If we read past the warning about reverse engineering, we see why they included it, a nasty big base64 encoded blob, then an eval command. Pastebin paste is here.

This piqued my interest, as I can think of very few legitimate reasons to do such obfuscation, or why there should be so much (footer.php is 47kb!). My initial thought was that I'd opened a backdoor into my site, with lesser thoughts to them being able to push random stuff into my footer (the last way I was infected), and finally just trying to control the links on the bottom of the page so that even if I were to edit their theme (as is my right under the GPL) I couldn't take credit for it myself, they'd always have credit for it. None of those sat right with me, so I hit up the local IRC channel, and we started puzzling.

Read More »

This has been a fairly bad week for me. One thing seemed to pile on to another in typical avalanche fashion. One of the worst bits was Monday, when Blade died. I'm fairly certain a nasty static shock through the USB port is what did it.

Blade is the system that started as a pure gaming rig, back in January 2005, and quickly became my full-time Linux do-everything box. It was my first 'new' build, all the others had been with scavenged parts. It seems cheesy, but tonight I'm dismantling her and I feel pretty sad, actually. This computer went through 3 power supplies, but otherwise had no mechanical issues. I ended up adding 2 hard drives to have almost a Terabyte of storage on there, an extra 2GB of RAM, a 'new' (at the time) GeForce 6800XT, and logged untold thousands of hours of gaming on her. LAN parties too numerous to count, dozens (hundreds including stuff for school) of software projects, and just about all my Walraven programming was done from her keyboard. Her uptime (aside from a summer in storage while I was out of the country) was probably up around 95%, not 5 9's but everything I ever asked for. Honestly, it was to the point where when I finally graduated and got a place with an office separate from my bedroom I'd wake up and wonder why she was off (as I couldn't see the running-lights). Now she's sitting in pieces on my floor as I part out what's good, and what's bad.

Living for another build:

• All the small bits: Screws, Jumpers, CMOS battery, etc.
• Case... she's served me well.
• Hard Drives, no data corruption that I know of.
• CD-ROM, still good but ordered a new one anyhow to get SATA.
• Peripherals, I may have damaged my USB mouse, but I think the others still work.
• RAM, its still good, and decent stuff too!
• Video card will definitely find a new home, she's still great!
• Heat sink, SPU had a nice heatsink, might as well keep that.

Bound for the scrap heap:

• PSU. When I plug a power cord in I get big blue sparks off the back power switch.
• Motherboard, although she won't hit the trash yet. I'm thinking of making a display for it.
• CPU. I don't have a spare board to test and see if its still good. If I can nab one off a friend I'll test, but otherwise this is gone.

What I ordered:

• Motherboard: obviously need a new one of these.
• RAM, my old stuff is DDR, need to get at least DDR2 for a new motherboard.
• CPU, again an old form factor just can't be found on modern boards.
• CD-ROM, I need a SATA CD-ROM as the new mobo only has one IDE slot and I have two IDE drives (yes, still).
• PSU, nice new 630W with a good long warranty!

The above should get me back up and running nicely, though in the future I'll be picking up a PCI-E video card (my old ones are all AGP) so I can run monitors dual-head. Have a nice 9800GT (my old card's big brother, XFS) picked out for early May, I think. This is money I did not want to have to spend now, so the optional pieces are waiting. I think that once I get the system up and running I'm going to do a nice reformat to clean up all the drives (begs the question of where I'll keep the data) and start from scratch. I'll consider it a new build, and let the name 'Blade' go to rest.

With all that said, I'll go back to dealing with the remains. If anyone knows of fun ways to display a motherboard, let me know. I want to honor this build somehow.

Good night, friend.

Ok, the title lies. but I'm cleaning up my desktop, and came across a screenshot from a few days ago. It is a CAPTCHA that I, for the life of me, could only make sense of as: Six E Pi Pi. So, in this case it worked, right? The human figured out what the letters should be, except as clearly as those are Pi's, Pi is not a letter on my keyboard. I figured I should get a screenshot to show where CAPTCHAs are going:

Sadly, CAPTCHAs are a technology we need to combat spam, which accounts for at least 80% of email today, not to mention message boards, instant messages, or text-messages. However, we're merely engaged in a technology arms race with spammers, this is *not* a technology that is winning any fights, we just try to stay one step ahead. This is increasingly hard with CAPTCHA entry being a job in countries with lower incomes, spammers cheating by offering porn in return for solving a CAPTCHA, and (in a case that doesn't just apply humans) CAPTCHA breaking drives AI research. Basically, no 'new' CAPTCHA technology is going to keep spammers out for long. A bleak future indeed. On the other hand, we already have 80%, how much worse can it get? I think the real answer lies in spam filters, although for the most part those are also in a mere arms race, but at least then you can control your own computer, not just leave the image out there for another human to crack.

I nabbed a plugin to fix my borked LJ Crossposting script... mine was not behaving nicely. So this is mainly a test to see if/how it works.

Test.

Test 2...

Big Test

Now we're testing an edit, and adding in a link to the plugin's home.

This past week saw the release of Geert Wilders' "Fitna". I'd like to quickly say this post is not endorsing that film, the author of it, or any specific religion. I hope, instead, to point out what the film has actually accomplished, and look at the issues surrounding it. I'd also like to point out that I fully support all basic human rights, including those of Freedom of Speech and Religion. I won't be giving a link to the video as I don't support it. In addition, those viewing it might be disturbed by a few scenes (beheadings, hangings, close range gun shots) and I don't want my site affiliated with any of that. Read below the cut to see my analysis.

Read More »

I've finally figured out what it is that sets me on edge regarding Apple. For as long as I can remember there's been this little nagging inside of me that, hey, there's just something not right about this company. I'll preface this with the fact that I'm not an Apple person, though I have used Macs and will probably own one within the next year (need something small and portable for coding). I'm also not completely up to date on everything Apple's been doing, just the really big news items.

Anyway, I finally figured out that its all about control. We all want control of our lives, of our money, of ourselves, and that's natural. But Apple wants complete control over their products, even after you buy them, and that's wrong. What am I referring to? The "awesome" press conference today where Steve Jobs unveiled the iPhone SDK plan.

Quick recap of the plan: Developers pay $99 a year (or more for an enterprise license) to use the SDK. Once they have something, it must be distributed through the Apple App Store. To get into the App Store, each must be vetted by Apple to make sure it conforms to their policies.

Now you know my feelings on DRM. I hate it. If I buy something, I expect the rights to do with it as I please. Steve Jobs feels the same way, or so he says. I've long argued that he doesn't really mean that, but now I kind of think he does. See he specifically says DRM on music is wrong. He also points out that they don't own the music anyway, so they can't control it. What Steve Jobs wants is for everything Apple owns to be DRM'd and everything else to be free! Don't believe me?

- Apple computers (I'm talking 90's era when America and the world were getting in good with computers) were sealed with Torx screws. So what? Well at the time, and still, an average human being has no clue what that is (they've never had to crack an XBox to mod it) nor do they have Torx screw drivers to open it.

- FairPlay, the DRM created by Apple, is supposed to be a good system. Yet Steve Jobs, in the article I quoted earlier, claims that to release it worldwide would be to have someone reverse engineer it, and break it. Clearly a few things are going on here. First off they're banking on some form of security by obscurity which any good security professional would laugh at. Second they're betting that people can't break FairPlay if they don't have the source, which is wrong also. And third they're trying to protect their handy little algorithm from the rest of the world. Why was iTunes never released on Linux when it originated on the Mac (a Unix core)? My guess is because Apple is afraid someone would reverse engineer it and they had to protect their secrets.

- The iPhone. Gosh, where to start. Sell a locked phone, on only one network, that you get kickbacks from... Why not allow any service to use it? (I've heard from an Apple employee its because some services need specialized packages by the provider. That's all fine, but its not that other networks were given the chance to implement those packages, its that the phone was locked, period).

- This SDK. Now, its not uncommon to pay to use someone's SDK. I've got no problem with that, you spend money to make money as my brother just pointed out. My problem comes with the fact that they have to go through the app store. I'm sure this is done in the name of "security", 'cause iTunes has never been infected before. Oh wait, it has. Why can't an independant coder such as myself offer a download from his mobile phone equipped website? Why must I use their store? (Oh, and you can post free apps, at least they're not forcing you to charge).

- The store. The reason you have to go through the store is so Apple can vette your product, and make sure you're not bypassing their locks! What a wonderful little software depot they run here, so long as all the developers drink the Koolade. I can understand trying to make sure people don't get past a few boundaries, they point out VoIP over the cellular network to get past minutes plans. I'd like to point out my cheap little Razr can do that to bypass the minutes plans (a quick google search turned up this link, but I remember thinking about setting up my desktop to handle calls last summer from a website I was reading at the time, so I know there's more home-grown solutions).Oh yea, and the store takes a 30% cut.

How does any of the above not point to Apple controlling its products? Sure, companies do that, they control their products. But few companies give me such a shiver when I hear of each new ploy than Apple does. And the worst part is, all the coverage I've seen of this plan has been good, not a single piece has questioned Apples need to vette every developer's contribution, or for them to take 30% for doing nothing.

For once, and I shudder to say this, I have to like Facebook's model better. Put the API out there, let the public go crazy, and keep it free! You get just as much content, you get a much wider variety (unlike the few whack biscuits I saw who said this would "spur creativity" within the iPhone community), and you get community interaction. What's more to love? With this plan you'll get the people who planned on writing for the iPhone anyways, along with businesses who just want to replace their Blackberries. Of course, those are the people who wouldn't try to do something shocking and free with their phone, so maybe that's why Apple wants only them. Forget the hackers that might do something cool, lets go the safe and greedy route.

So here's to you Steve Jobs! If you truly believed what you said in your article on music, you'd think twice about this plan. Every year Apple turns more and more into what they always thought they were fighting, the mindless overlords bent on controlling their populace.

I've neglected this blog lately not due to lack of programming, but because I'm only coding on projects that I've already discussed on here. I had planned to do a mundane post about new features on the DungeonRunner character viewer, but then I stumbled across some stories that work well together.

Remember the 'equipment malfunction' during the Super Bowl a few years back? How it was a severe understatement, as well as a stupid excuse for a dumb plan? The MPAA (Motion Picture Association of America) has just made a digital version. They traditionally blame college students for all manner of atrocities, everything from wanting to watch legal DVDs on their Linux machine to downloading movies. A wee bit ago (2005) they announced shocking statistics that proved college students were responsible for 40% of all illegal movies downloaded. This led to a campaign of terror at many big-name schools, as well as lobbying to force Congress to add in stipulations for cracking down on file sharing in new higher education funding. It turns out, they were wrong. Taken from their statement:

While in the process of recently updating that study with current data, we discovered there
had been an isolated error in the LEK process two years ago that resulted in an inflated
number for piracy by college students. The 2005 study had incorrectly concluded that 44
percent of the motion picture industry’s domestic losses were attributable to piracy by
college students. The 2007 study will report that number to be approximately 15 percent...

That's right, they had a little math error, and inflated the number by 3 times its value. That's a nice sized oops. Of course they're very apologetic, but that doesn't really change the fact that after the 2005 study MPAA increased its lobbying in Congress to punish college students. This increase resulted in two bills now going before Congress, the College Opportunity and Affordability Act of 2007, which will require schools to crack down on filesharing or lose all federal financial aid, and the Prioritizing Resources and Organization for Intellectual Property, which will increase fines and create a new federal agency devoted to tracking down 'large-scale' infringers. Thankfully both of these bills haven't been passed yet, there's still time to call your representatives and tell them to vote it down! Do you want your kid's college losing financial aid because they haven't devoted enough resources to tracking down music downloaders instead of teaching your kid? Do we really need a new Agency (your tax dollars at work!) to protect the money of MPAA or RIAA?

There is an upside to all this, believe it or not. Amazon is releasing its MP3 service now. It sells MP3's (no issues with having to change format for iTunes, Windows Media Player, or any other player) that are DRM free! Plus it has songs from the four big labels, the first DRM free site to do so. And, though it may vary by song, the songs are cheaper than Apple's DRM'd music (I saw hot new singles at 89 cents each). This is a huge win win situation. Not only are the songs relevant (3.3 million and counting), and cheap, but DRM free and supported by a major company! I'll be supporting this site for sure, if more people use Amazon as opposed to your other favorite (lets say iTunes, remembering that all Amazon songs can be put into your iTunes library as well) hopefully the industry will get the idea that DRM is bad.

For those that use Linux, read my post yesterday, and decided to check out the website for Dungeon Runners, I apologize. I should have pointed out that their site is very, very unusable on Linux (ok, to be exact, I haven't gotten it to work with any version of Ubuntu, and Firefox). That changed today when I cooked up a small GreaseMonkey script which hides their Flash "movie" that plays in the background. Its not really a movie, its actually just a static image, but its loaded as a Flash movie. Anyways, its quite easy, go install GreaseMonkey, then the following script:

 
// ==UserScript==
// @name           Dungeon Runners Linux Compliant
// @namespace      http://thesnarky.com
// @description    This removes the flash "movie" which blocks the
//                      main site for Dungeon Runners
// @include        http://dungeonrunners.com/*
// @include        http://boards.dungeonrunners.com/*
// ==/UserScript==
 
var objects = document.getElementsByTagName("object");
for(i=0; i<objects.length; i++) {
	var flash = objects[i];
	if(flash.getAttribute("id") == "bg_chars") {
		flash.style.display='none';
	}
}
 

Can download it by clicking here: Script

This finds the one Flash object named bg_chars (which is the offender in this case) and tells him to go quietly sit in the corner. And such, all is right in the world, I don't need to boot into Windows to troll the forums (just to play the game).

Here's a great example of our nation's colleges selling out their students and bending over to RIAA's demands. I just had an email passed on to me that originated from Indiana University's Associate Vice President for Information & Infrastructure Assurance dealing with file sharing that is just plain sad. It shows a complete lack of caring for their students, as well as a lack of understanding about the laws involved. Oh, as well as the worst tag-lines for anti-file sharing I've ever heard!
Read More »