Skip to content

To my few remaining Republican friends…

Juan Cole asks this very interesting question about why you still think of yourself as a Republican:

Are you a masochist?

I love Mr. Cole’s writing.

2008 09 22 snolan Fun
Politics
Virginia Politics Comments (0) Permalink

Wow, the is_human() module works great

I have is_human() coupled with Akismet and together they knock out all the comment spam I was getting. The other interesting little factoid, is that nearly all the spam I was getting was coming from only three IP addresses… hurray for blacklisting. I’ll share the nefarious addresses so you can firewall them out if you like:

200.63.42.141
200.63.42.136
85.29.204.193

The first two don’t resolve in DNS. The third is a floating IP at ipv4.vnet.ee; I am not sure what that domain is for, but a lot of folks blacklist the entire domain for sending email spam.

Huge thank you to Nick Berlette the author of is_human() and the Akismet team. Have a great weekend!

Update: I have pulled is_human() off my blog as it blocks too much legitimate commentary and cannot stop linkback/trackback spam. Grrr.

2008 09 21 snolan Blogging
Computer Security
WordPress Comments (0) Permalink

Ahoy, it be time to toast me most beloved holiday

Woke up this morning with a skull-splitting pain in me noggin… unable to fully embrace the holiday fun.
Felt like I were bein’ keel-hauled by the time me vessel was finished getting some repairs; damned scalliwags took o’er three hours rather than the usual one; may the lubbers rot fer havin’ the incompetence of a fresh press-gang.

Well, managed to offend the good pirate Winter Badger with a poorly considered letter, for which I be truly sorry… and then discovered by messenger that repairs to me favorite swimming hole will be delayed indefinitely. Not a very smart day.

Things be looking up considerably once I had a nice long walk to grab some grub, lavish a lingering gaze on a wench or two, and make way back to ship… Me new spectacle lenses are in, and the apothecary is installin’ them now. Soon, I be sailing the calming seas fer home port and a gathering of fellow bilge rats to share some grog and prepare for a boarding party the first full weekend in October.

In case ye be wonderin’ what all dis chatter amongst us privateers is about, please feel free to examine me letter of marque…

2008 09 19 snolan Holidays
Pastafarianism
Personal Comments (0) Permalink

Multiple 802.1q VLANs on multiple Solaris 10 zones

Man, what a tricky, undocumented, annoying configuration… but it works.

We have a few Sun T2000 and T5200 boxes running Solaris 10 at work. We want to run multiple zones (Sun’s virtualization technology) on each physical box; and the virtual servers need to be spread out over several different VLANs to isolate traffic for firewall rules.

So, configuring the Extreme switch to tag multiple VLANs to the port our Sun T2000 is connected through was trivial:

On the Extreme switch (we already had dev-tier and data-tier VLANs configured on 103 and 110 subnets):

configure vlan "dev-tier" delete port 4:11
configure vlan "dev-tier" add ports 4:11 tagged
configure vlan "data-tier" add ports 4:11 tagged

The configuration changes on the Solaris global zone have been far trickier, mostly because Sun does not expect you to create virtual servers on virtual networks, so their documentation is considerably lacking in this area. Here is a brief outline of what I did to get it all working.

On the Sun global zone, as root, set the host up for multiple default routers, which sounds very wrong, but it has to be done because the local zones (virtual servers) on Solaris inherit the network stack from the global zone, they cannot individually modify the network stack:

vi /etc/defaultrouter
    # Global and Dev zones gateway:
    192.168.110.1
    # Data zones gateway:
    192.168.103.1

vi /etc/netmasks
    192.168.103.0   255.255.255.0
    192.168.110.0   255.255.255.0

vi /etc/hosts
    192.168.103.2    datazone1.domain.net   datazone1
    192.168.103.3    globalzoned
    192.168.110.2    globalzone.domain.net  globalzone
    192.168.110.3    devzone2.domain.net    devzone2

vi /etc/resolv.conf
    (make sure your domains are all listed in the search fields, and name server is correct)

mv /etc/hostname.e1000g /etc/old_hostname.e1000g
echo globalzone >  /etc/hostname.e1000g110000
echo globalzoned  >  /etc/hostname.e1000g103000

zoneadm -z datazone1 halt
zoneadm -z devzone2 halt
zonecfg -z devzone2
info net
select net address=192.168.110.3
set physical=e1000g110000
# this changes it from e1000g to the VLAN device name
end
commit
exit
zonecfg -z datazone1
info net
select net address=192.168.103.2
set physical=e1000g103000
# this changes it from e1000g to the other VLAN device name
end
commit
exit
reboot

ifconfig -a
# you should only see the VLAN devices e1000g110000 and e1000g103000 now
netstat -rnv
# you should see multiple default routes
zoneadm -z datazone1 boot
zoneadm -z devzone2 boot
ifconfig -a
# now you should see all the VLAN devices and additional interfaces on each of them
ifconfig e1000g103000 down

That very last command, downing the e1000g103000 VLAN interface is the one that still perplexes me, there must be a way to configure Solaris to plumb a VLAN interface, but not actually bring it up… I have not figured it out yet.

This gives us a virtual host called datazone1 that sits on the 103 VLAN and a virtual host called devzone2 that sits on the same 110 VLAN as the global zone server itself; all over one shared physical category 6 ethernet cable and using only one network switch port and one host based network interface card.

2008 09 18 snolan Computers Comments (1) Permalink

Lions and Tigers and Robotic Cars, oh my!

Uh, wow; a robotic car, in traffic… navigating by GPS and class 1 low powered infrared lasers…

CNet News Article of the Anthony Levandowski Prius

Driving, it’s what the hired help does.

2008 09 16 snolan Cars
News Comments (0) Permalink

Implemented is_human() Word press Plugin

Akismet alone was not stopping enough comment spam, so I have implemented is_human() which asks a random multiple choice question, answers are in a drop down and it should be easy for humans to comment, but difficult for machines.

Sadly, the marker for a required field did not get enabled initially (now fixed) and a few comments were lost, sorry. If you commented in the last 4 days and feel your comment was ignore/discarded unfairly, simply re-submit; I welcome discussion with opposing points of view, but SPAM is not welcome here.

Update: I have pulled is_human() off my blog as it blocks too much legitimate commentary and cannot stop linkback/trackback spam. Grrr.

2008 09 15 snolan Blogging
WordPress Comments (3) Permalink

October 6th Voter Registration Deadline in Virginia

Subject says it. If you think you might want to vote in this year’s general election, which looks like it will be the closest in Virginia history, get off your bottom and get yourself registered before October 6th.

No matter where you live, time is running out; get registered now.

2008 09 15 snolan News Comments (0) Permalink

Closed Captions can be fun!

So our good friend Bob helped us figure out how to turn on closed captioning on our TV, and we’ve been able to follow the dialogue on modern shows and movies much better. What the heck happened to training actors to project their voices and keeping the effects down so you can hear the dialogue?

Anyway, we got a huge bonus. Watch some re-runs of Joss Whedon shows Buffy, Angel, or Firefly with closed captioning on… there are extra little fun tidbits. Woo hoo!

2008 09 13 snolan Fun
Movies
Science Fiction Comments (0) Permalink

For the records, a few facts

1) The width of the Bering Strait at it’s narrowest point is around 53 miles. Of course the distance between the Diomede islands at 2.4 miles is much less, but they are very sparsely populated (146 people on the U.S. held Little Diomede according to the 2000 Census), and their populations have traditionally worked together against the cold and harsh environment even during the cold war.

2) The farthest an unaided human eye can see at sea level is about 16 miles. While the human eye can see much, much further in a vacuum or in clear and very dry air (moon, earth from space, mountain top to mountain top), at sea level; the curvature of the earth and moisture in the air work against clarity of vision and effective range is about 16 miles.

3) Russia, even with it’s nuclear arsenal, is far more at risk from American intervention than America is from Russian intervention. The scare tactics of the fear-mongers aside, both nations would sustain staggering losses in a war between them; and therefor a direct confrontation has no winner. Once you leave aside the silliness of direct full scale conflict, there are possibilities for limited actions in territories controlled by neither side (Georgia, Ukraine, Afghanistan, Korea, etc), but most of those, the United States enjoys a staggering advantage in freedom of action, ability to project power, economic backing, world opinion and support, and technology. We have more to fear from certain governors with a penchant for telling tall tales and senators that engage in hostile rhetoric than we do from the nation of Russia. Has Russia ever invaded U.S. soil? The United States has invaded Russia (1918-1920 to fight against the Bolsheviks); we often forget that little detail when trying to use Russia as a bug-bear to scare our children into cooperating with our authoritarian choices… but the truth is, they have far more reason to fear us than us them.

4) Sarah Palin and John McCain trying to claim that she has foreign policy credentials because she was within eye sight of Russia is absolutely ludicrous. Wasilla is perhaps a thousand miles from Little Diamede (unable to quickly determine, anyone know?), and the capitol of Alaska is even further from the Russian border. Of course the whole argument is non-sense, as simply seeing some geography does not qualify anyone for foreign policy credentials… but then neither does being a prisoner of war or a computer programmer.

2008 09 12 snolan Foreign Policy
Fun Comments (0) Permalink

Obama, a closer examination…

Let’s ignore for a few moments the media’s focus on imagined personality and pretend outrage and actually focus on some issues; like how the next president of the United States will impact every one of us. The next president, should he or she last four full years in office, is likely to nominate two United States Supreme Court Justices. That is not guaranteed, but it is statistically likely as several of the current justices are quite elderly. Of all the issues before us, real and imagined, the president if the only elected official who gets to nominate replacement justices; so for all of us, whom a president is likely to nominate is one of the most important issues we should consider while casting our votes for the office of president.

This particular election, the issue of the supreme court nomination is more important than some elections because there are two likely nominations instead of one. In fact, given the huge advantage any incumbent has in an election, the next president is likely to serve two terms and there could be four or five nominations! At the moment, the current court is unbalanced and leans pretty far over in support of large corporate interests over equal rights and equal pay for women (Ledbetter v. Goodyear Tire & Rubber Co.) and religious values over a civil rights (Gonzales v. Carhart). In fact, the Ledbetter v. Goodyear Tire & Rubber Co. ruling may be the most significant case the court has had in 20 years when all of it’s ramifications have been felt. The majority of the court ruled along the lines of a technicality in order to favor their already chosen sponsor. It shows us that the highest court in the land has indeed already been bought and that justice will not always be served. This court the most in need of some constitutional law experts in more than 75 years…

Barack Obama is just such an expert. He worked as a civil rights lawyer and taught constitutional law for over a decade in the Chicago area. No other widely discussed presidential or vice-presidential candidate has anywhere near the experience Obama does on this, except for Hillary Clinton (herself an expert on constitutional law). Barack Obama does not have judicial experience, but he’d make an excellent justice himself, and he certainly will pick excellent judges to nominate to the supreme court. In fact, given Obama’s tendency to make his decisions carefully, and only after consulting experts, it is reasonably certain that he’ll nominate very moderate justices as president (which will disappoint many of my leftist-activist friends a great deal), and not just moderates, but fellow experts in constitutional law who get us back our civil rights.

John McCain has already shown us exactly how much consideration he’ll give to important decisions like this one. His choice of Sarah Palin as running make is political, personal, radical, and distracting; but it is not with any thought about what is best for America or what makes the most sense. No one really knows who he’d nominate for the supreme court, because he has been quite ready to be very random and reactionary. Compared to him, Obama is downright boring, but in a good way. We already have some pretty good guesses at who the first supreme court justice nominees from Obama would be (these are just guesses): Judge Diane Wood (7th Cir.) or Professor Cass Sunstein. Like them or not, they are both technically qualified, relatively moderate, and very serious about constitutional law and civil rights.

Kojo Nnamdi had an interesting section on his August 26th show: Imagining an Obama Supreme Court with Cass Sunstein as a guest. He brought up the right-wing talking point of so-called activist judges and suggested we change that definition to be more objective, more empirical rather than couching the term in prejudicial terms that are misleading the public.

On this, the most important of many issues facing us as we chose whom to vote for in November, Obama is the clear winner by many, many miles. This is certainly not the only issue I favor Obama on, but it alone would carry enough weight to make me happy to vote for Obama in November. I have complete confidence that he will nominate the best justices, and that our constitution and civil rights will be defended by President Obama.

2008 09 12 snolan Politics Comments (2) Permalink