Alkahest my heroes have always died at the end

November 12, 2007

Guitar was the case

Filed under: Guitar,Personal — cec @ 11:08 pm

Maybe random Monopuff songs aren’t the best blog post titles, but what the heck.

K asked me what I wanted for my birthday (fwiw, I’m either very easy or very hard to shop for depending on whether or not you want to get me a gift certificate to a bookstore – thanks Mom!). From what I’m sure was out of the blue for her, I asked for a guitar – hey, I’ve always wanted to learn.

I went out with a friend on Saturday and found a decent guitar to learn on (relatively inexpensive, but with a good sound). I’ve been practicing for the past couple of days. A few observations:

  1. it is possible to make your fingers bleed. I haven’t gotten this far, but it’s in sight
  2. it shouldn’t be that damn hard to hold the strings to the frets, but there you go
  3. if i could just keep my fingers from touching other strings, I would be set

I’m working on tuning, scales, general fingering and a couple of chords. The chords only sound right about 1 in 10 times – I guess I’ll keep working on that 🙂

Update

Filed under: Personal — cec @ 10:55 pm

I started thinking through why I didn’t care for management at my last job and as is often the case, I wrote it down to help me think it through.  It’s probably not worth posting the reasoning, but I did decide that most of the things I disliked about my most recent management job were due to the environment and not management itself.  Don’t get me wrong, management’s not something I enjoy, mostly because it’s a lot of hard work – at least if you are conscientious about it.

That said, today, I did agree to give it a shot at the new place.  There are quite a few reasons for this.  Probably the biggest is that I inherited my father’s sense of responsibility – if you see a job that needs doing and you can do it, then get started.  Other reasons are that it really will make the office a better place; it’s a small company and so diversifying my role makes sense; they were extremely flattering when asking; and finally, I’m grateful to the company, my boss and the president of the company for encouraging me to come work for them.

That last one sounds a bit silly, but they really did encourage me to join them, they had a lot of patience with my initial hesitance and I am significantly happier now than I was before.  At least for now, there’s probably not much they could ask that I wouldn’t at least try.

November 7, 2007

Just when I thought that I was out they pull me back in.

Filed under: Personal — cec @ 8:42 pm

I’m not Michael Corleone and the places I’ve worked at could hardly be compared to the mob; but I did have an interesting, brief discussion this afternoon with the president of the company for which I’m working.  For the record, I don’t think that any discussion which begins, “you used to be management, right?” can be characterized as anything but interesting.

It seems that the company (like the family, only smaller, legal and less profitable) might have a need for some management and there is some interest in me filling the role.  Unfortunately, in taking this job, one of the big pluses for me was that it was not a management position.  On the other hand, there are some good things about management and the company is much smaller than the university.  I would still be expected to do technical work and the management is anticipated to be about 5-10% of my time (if I did it).

I don’t have many details yet, mostly because the president wanted to get my initial reaction before we got into details (fwiw, my initial reaction was close to, but not quite, eek!).  At the very least this means that I need to figure out what I didn’t like about management at the university so I know which questions to ask in this case.  It’ll probably be a good thing, but I hadn’t been planning to do a systematic exploration of my feelings in this area any time soon.

C’est la vie 

November 6, 2007

Two factor authentication

Filed under: Security,Technical — cec @ 9:05 pm

A couple of weeks ago, Hunter and I were talking about passwords. More to the point, the inadequacy of passwords and why we haven’t moved beyond them yet. This touches on several points that I made last year. Specifically, that a password that is secure enough starts to restrict its usability.

In a nutshell, authentication is proving that you are who you claim to be. The standard ways of authenticating yourself are through: something you know (e.g., a password), something you have (e.g., a token) or something you are (e.g., biometrics, facial recognition, etc.). So the claim here is that the human brain is not good enough at remembering things to make “something you know” secure. Unfortunately, it’s cheap and easy to implement. Two things which are always important.

Our other options are something you are or something you have. Something you are can be complicated and expensive. At the very least, it requires a something-you-are-reader anywhere you want to authenticate yourself. Want to use your computer at home to access the one at work? Make sure you have your trusted, secure something-you-are reader set up (finger print scanner, iris reader, etc.). Want to authenticate from an Internet cafe? Good luck. Besides that, there’s some argument that many of the approaches used to date are not secure; and there’s the creepiness factor.

So, something you have. This one can also get potentially expensive, but is potentially cheaper than the rest which is why you see it being used by banks to access online accounts. Here we have some sort of hardware “token.” Most traditionally, these tokens have a simple processor, a clock and an LED display. The display shows a pseudo-random number. At a regular interval, the number changes. To log into a service, you key in the random number and maybe an a password. Since the service you access knows the pseudo-random number generating algorithm for your device and the time, it can validate the number you entered. Allow a little bit of logic to deal with clock skew and you are set. Several companies will sell you something like this. Of course, you pay for the devices, pay for the authentication server and then, in some cases, pay for each service.

So, what about an open source solution?  This is in-part what Hunter and I were talking about. Imagine if you had an encrypted private certificate stored on a thumb drive. You could fairly easily write up a challenge-response protocol to validate the certificate. Since it’s certificate based, you could authenticate without a centralized authentication server – the ability of the certificate signed by your (private) certificate authority to participate in the response authenticates the certificate holder. You could create PAM modules for unix/linux and the equivalent for Windows and Mac. On the client side, stored on the same drive, you would have software to mediate the authentication.

I could see two ways for the client to do this. 1) a separate process that connects to the service’s server and essentially allows access for this IP. The service then needs to talk to the server-side piece to see if a user is allowed to access from the IP. That plus a password and you’re in pretty good shape. No connection to the authentication service means that you can’t log in. 2) Try to create a service along the lines of stunnel that mediates all communication between the client and the service. This is extremely ugly and I wouldn’t recommend it.

So, what are the advantages/disadvantages?

  1. Advantage: low hardware cost. Most every computer has a USB reader
  2. Advantage: relatively simple to implement
  3. Disadvantage: even the cheapest thumb drives are on the order of $5 each
  4. Advantage: many people already have one and they could be used for this purpose without wasting too much space
  5. Disadvantage: to a certain extent, this is not secure. Specifically, there’s no proof that the user actually has the key as opposed to a copy of the certificate and the algorithm required.

#5 seems like the biggest problem. As an open source product, all one needs is the certificate to spoof the token. Okay, we could incorporate the USB serial number, but that can also be copied. Ideally, all the processing would occur on the thumb drive, but that takes us out of the realm of commodity. So, the risk here is that using your token on a compromised computer compromises the token in the same way that using your password on a compromised computer compromises your password.

This is definitely not a hypothetical problem, but I don’t know how to resolve it. Is it still worth implementing something like this? If folks have thoughts or suggestions, I would love to hear them.

November 5, 2007

It’s bicycle^Wlight fixture repair man!

Filed under: Personal — cec @ 10:58 pm

Ok, maybe not as exciting as bicycle repair man, but we did spend some quality time this evening with light fixtures. For reasons that neither K nor I can fathom, the breakfast room had a fan attached to a nondescript light fixture. K found a new fixture in the pottery barn catalog and it fits pretty well with the house.

Since I didn’t have much else to do this evening, I installed it. Pictures below. The first two are the original fixture: when we first moved in (3 years ago) and the fixture on the floor after removal. The next two are the new fixture.

img_1223_m.jpg dsc_2024.jpg dsc_2021.jpg dsc_2022.jpg

Now we just need to get rid of the popcorn ceiling…

October 25, 2007

well that was nice

Filed under: Personal,University Life — cec @ 9:56 pm

I’m up at the university yesterday, tying up some loose ends from my job there when I ran into the executive vice president.  Essentially, this is the guy under the president who runs everything administrative for the campus.  I used to see him every month or so as a part of my job responsibilities and we always got along reasonably well.

So, I’m talking to him and he tells me that whenever he sees someone who has left the university, he always tells them that he hopes they made the right decision… because they aren’t coming back (implying that he will prevent them from returning).  He then goes on to say, but you are welcome back if you ever want to return and that this puts me in a very small group – three in twelve years.

For all I know he was blowing serious smoke up my ass.  But that’s not really his style.  Regardless, it was very kind and probably one of the nicest complements (in context) that I’ve received.

Drought update

Filed under: Personal,Plumbing — cec @ 9:30 am

(odd: i thought i had submitted this last night.  i guess i just saved it in draft)

It’s been raining today which is good. The forecasters are predicting rain tomorrow and Friday which is even better. However, I’m still worried. It’s been over a month since the last real rain and close to six months since we’ve had normal rainfall. Raleigh i s down to about 3 months worth of water supply in the reservoirs – Atlanta’s not any better. What happens when cities actually run out of water? Do they evacuate?

In some sense’s, K and I are better and worse off. We’ve got a well, so unfortunately, we don’t have a clue as to how much water remains. For that matter, I don’t even know how deep the well is. The down side is that we could run out of water any day. The only positive is that we could always pay to have the well dug deeper. Talking to some neighbors, we’ve heard the rate is about $9/foot.

We’ve done a number of things over the past year or so (predating the drought) to reduce water usage. A year ago, our water softener recorded an average usage of ~150 gallons per day. We replaced our old toilets with newer low flow (current standard 1.6 gal) toilets and that got us down to around 100 gallons per day. We’ve started being more careful when washing dishes in the sink and I’ve started turning off the shower while soaping up or washing my hair. That gets us to a little over 80 gallons per day. I think my next trick might be to turn down the water pressure in our house – that would probably get us another 5-10 or so. After that, I start to think about low use appliances. I love this 2 drawer low water use dishwasher – each drawer takes ~2.4 gallons. Our washing machine is at least 14 years old, that could probably be replaced. I suppose we could also install a hot water recirculator to avoid wasting water letting faucets or showers heat up.

Hopefully, we’ll be okay. We sit near Jordan lake which is one of the collection points in the almost 10,000 sq mile Cape Fear River Basin. Hey, you may call it runoff, I call it ground water.

Y’all enjoy the rain.

October 15, 2007

TaskFreak!

Filed under: Personal — cec @ 7:28 pm

About a year ago, I mentioned installing Tracks a “Getting Things Done” application written in RubyOnRails. That was great when I had my always online desktop at the office. I could run a RoR app without a problem. Unfortunately, since I’ve left the university, I don’t have a computer I leave on all the time and my ISP doesn’t offer Rails. I started feeling the need for some sort of online task tracker, so I looked around for things that run on my ISP. Last night I found and installed gtd-php.

Unfortunately, gtd-php doesn’t seem to be very actively developed (last release in 2006) and it’s overly complicated. Today I looked around and found TaskFreak! It seems to be actively under development and easy to use. I’ve installed it and it seems to be what I need.

If you’re looking for a GTD list keeping application written in php, check it out.

October 2, 2007

Left or right brain?

Filed under: Personal — cec @ 11:17 am

etselec, suggested I take the Brainworks Left/Right Brain Test. Results below:

Auditory : 23%
Visual : 76%
Left : 52%
Right : 47%

Full details:

you exhibit an even balance between left- and right- hemisphere dominance and a slight preference for visual over auditory processing. With a score this balanced, it is likely that you would have slightly different results each time you complete this self-assessment quiz.

You are a well-rounded person, distinctly individualistic and artistic, an active and multidimensional learner. At the same time, you are logical and disciplined, can operate well within an organization, and are sensitive towards others without losing objectivity. You are organized and goal-directed. Although a “thinking” individual, you “take in” entire situations readily and can act on intuition.

You sometimes tend to vacillate in your learning styles. Learning might take you longer than someone of equal intellect, but you will tend to be more thorough and retain the material longer than those other individuals. You will alternate between logic and impulse. This vacillation will not normally be intentional or deliberate, so you may experience anxiety in situations where you are not certain which aspect of yourself will be called on.

With a slight preference for visual processing, you tend to be encompassing in your perceptions, process along multidimensional paths and be active in your attacking of situations or learning.

Overall, you should feel content with your life and yourself. You are, perhaps, a little too critical of yourself — and of others — while maintaining an “openness” which tempers that tendency. Indecisiveness is a problem and your creativity may not be in keeping with your potential. Being a pragmatist, you downplay this aspect of yourself and focus on the more immediate, obvious and the more functional.

I was asked if I agreed with the results. It’s probably best to say that I don’t disagree. Overall, I think that it’s accurate, but there some things that it just can’t capture, like life history, overall intelligence, etc. But, yeah, I don’t disagree that I’m fairly evenly balanced between left and right brain and that I’m more of a visual than auditory thinker/learner.

September 17, 2007

are there no good ISPs?

Filed under: Personal,Technical — cec @ 7:19 pm

I’m starting to think that there aren’t any good Internet service providers.  hsarik had troubles with Rimu Hosting.  My own ISP seems to be far more focused on (their own version of) security than on usability.  At work we’ve been using Pair.  I’ve been pretty happy with them until this afternoon around 5pm when our project went dead while we had some 50 people using it.

When we first developed the project, Pair was using php4 (yeah, I know – it’s my own fault for using php 🙂 ).  Fortunately, they also provided phpwrap to allow cgi access.  Okay, that’s not great, but it at least let our project which required php5 go live.  Sometime recently, they made the default php5 without phpwrap.  If I had known, well great – but I didn’t see any mention of it. Today, right after I went home they broke phpwrap.  Easy enough to fix, but still irritating.

« Newer PostsOlder Posts »

Powered by WordPress