Older blog entries for dwmw2 (starting at number 104)

hub writes:

In fact we don't bounce [mails to nonexistent recipients], we reject them at SMTP time with a 450 error code.

That's bad too. That's a temporary failure. Which means the mail stays on the remote queue and they retry it again after a while. They do this over and over again until a week or so has expired, at which point they decide the 'temporary' failure is in fact a permanent one.

It also means that people who do callouts to verify the sender of mail they're receiving might have been accepting mail with your addresses faked, rather than rejecting it as they would have done if there'd been a permanent (5xx) rejection from you.

If rejecting mail to unknown users with a temporary failure code is, as you say, "the standard behaviour", then I suggest you go file that as a serious bug with whatever distribution you're using. You effectively brought the DoS upon yourself.

3 May 2004 (updated 3 May 2004 at 17:59 UTC) »

Advogato is playing silly buggers. I made a new post, it seemed to overwrite the previous entry. So I edited it, adding 'WTF happened to my previous entry'. Now I have two posts again, but the former -- the one which had disappeared -- contains the post-edit copy of the first.

Now I'm editing to contain this text. I wonder what will happen.

Must resist... brainwashing...

dammit.

Must try to remember Advogato password. Have been manually extending lifetime of cookie in cookies.txt for the last three years.

hadess: Nat West's online banking system works fine with Mozilla if you fake the user-agent ident string to be something it likes.

Since Mozilla doesn't allow you to do that per-site, you have to do it globally, and then you stop showing up in site statistics anywhere as Mozilla; you show up as whatever you're masquerading as to make Nat West happy.

Apparently the Mozilla people think this is a good thing, which is why they refuse to implement per-site user-agent masquerading.

Since masquerading also breaks the Java plugins, it's probably best just to use Konqueror for accessing the Nat West online banking stuff.

robilad: Don't confuse -ko and -kb. Remember that even if there are false positives occasionally they're trivial to filter out of a diff. CVS won't even complain about them if they change when you commit. Extra information, within reason, is good. Lost information cannot be reclaimed.

I shall decline your kind offer to call you a vegetable right now, but if you ever import my code and eat its CVS tags, then one of your customers comes to me for help with it and I can't tell what versions they've got, I reserve the right to change my mind :)

robilad writes:

RCS tags are evil

I disagree. Why should they give you 'bad diffs' when there's more than one person working on the project? If you're sharing a repository it just works as $DEITY intended, surely?

And if another project imports your sources, presumably they do it with -ko to avoid tag expansion. And if you disagree with that you might just as well assert that linefeeds are evil because some vegetable might work with your source on a DOS box and convert CR to CRLF.... hence you should write all your code on a single line, perhaps?

Finally, CVS tags _do_ give me information which the CVS command can't tell me on demand. When someone sends me some source code, or is trying to describe to me what some vendor has given them, if it has my $Id$ tags in I can refer immediately back to the real version that what they've got was _based_ on, and hence see the _changes_ which were made elsewhere. There's no other way to do it than to embed version information in the file which is going to survive through being merged into various other trees and source control repositories, and make it back to me, via whatever torturous route it takes, intact.

mrcsparker writes:
"Couldn't sleep and now I have ssh-method.c working. Going to clean up the code a bit (still will be a bit hackey when I turn it in) and also add a password dialog box so you won't have to put your password in the uri."

Alternatively, you could just ensure that you detach from your controlling tty to work around the SSH bug, and then SSH will happily invoke ssh-askpass for you if it needs a password/passphrase/skey/etc.

See how Evolution does it when invoking SSH.

7 Oct 2003 (updated 18 Nov 2008 at 15:13 UTC) »

These requirements apply to the modified work as a whole. If identifiable sections of that work are not derived from the Program, and can be reasonably considered independent and separate works in themselves, then this License, and its terms, do not apply to those sections when you distribute them as separate works. But when you distribute the same sections as part of a whole which is a work based on the Program, the distribution of the whole must be on the terms of this License, whose permissions for other licensees extend to the entire whole, and thus to each and every part regardless of who wrote it.

Thus, it is not the intent of this section to claim rights or contest your rights to work written entirely by you; rather, the intent is to exercise the right to control the distribution of derivative or collective works based on the Program.

UK Copyright law is amusing.

ยง301 of the Copyright, Designs and Patents Act 1988...

301. The provisions of Schedule 6 have effect for conferring on trustees for the benefit of the Hospital for Sick Children, Great Ormond Street, London, a right to a royalty in respect of the public performance, commercial publication, broadcasting or inclusion in a cable programme service of the play "Peter Pan" by Sir James Matthew Barrie, or of any adaptation of that work, notwithstanding that copyright in the work expired on 31st December 1987.

Looking at implementing an internal IPv6 network in parallel with the existing IPv4 network on RFC1918 addresses.

At first glance it looks nice and simple. IPv6 has its equivalent of RFC1918 addresses -- with even better semantics. It has 'site scope' addresses, and machines can be given _both_ 'site' and 'global' scope addresses, and basically do the right thing in all circumstances... using the internal addresses for internal communication, and the external addresses for everything else.

So each site on the intranet can have its own _global_ IPv6 link, with optimal routing out the local connection to the Real World, while tunnelling the site-scope addresses over the CIPE links with the RFC1918 IPv4 traffic. None of this NAT-from-internal-to-public-addresses crap which we have for IPv4.

Unfortunately it seems that the concept of site scope is to be abolished. Discussion of the various possible alternative implementation plans has failed to turn up any possibilities which are even _close_ to being as simple and effective.

I wonder if the martians are to blame. They know that TCPv4 isn't good enough for us to communicate with our Martian-invasion fleet, and they're determined to scupper our IPv6 deployment efforts by fucking it up for us... so they placed mind-control anal probes into the IPv6 WG and made them abolish the part which was going to actually let people deploy IPv6 sanely in large organisations.

Or maybe not. Perhaps there are just telcos involved?

Wheee. At last Evolution can handle getting at IMAP servers by running a command and using its stdin/stdout, out of the box. I no longer have to maintain my own build just to have it do what pine, mutt and others have been doing for years -- just 'ssh $mailserver exec imapd' and let ssh-agent handle authentication, and ssh itself handle the magic it has to do to log into boxen on remote internal networks by running 'ssh $bastionhost netcat $internalmailserver 22' instead of connecting directly.

No GUI for it since that would apparently confuse people. In particular, it would hurt those people who:

  1. Do not understand 'Run a program to access the server' in the context of the above menu.
  2. Will therefore do something stupid like wetting themselves, rather than just ignoring it and selecting 'standard connection' or 'use SSL'.
  3. Yet do configure their own accounts in Evolution rather than just drooling on the floor while someone else does it for them.
  4. And who also manage to navigate past other options like namespace stuff, without similar breakage.

I don't personally know anyone who meets all the above criteria. I know people who meet #1 and #2 but not #3 and #4 -- and I know people who meet #1, #3 and #4 but not #2. I suspect the set of people who meet all four is very small.

But to be honest I don't care too much either because all my copies of Evo are already configured appropriately and it's easy enough to do with gconf from the command line.

I do wonder just how far we should be taking the usability crusade though.

What's next? People turning up on my doorstep, observing that the lack of doorbell is likely to confuse people and hence removing my front door?

95 older entries...

New Advogato Features

New HTML Parser: The long-awaited libxml2 based HTML parser code is live. It needs further work but already handles most markup better than the original parser.

Keep up with the latest Advogato features by reading the Advogato status blog.

If you're a C programmer with some spare time, take a look at the mod_virgule project page and help us with one of the tasks on the ToDo list!