Stop it cold
#!/bin/sh
# For whatever they're calling this one now for LUSER in `grep "winnt" error.log | awk '{print $8}' | \ sed -e s/]//`; do
if [ ! "`/sbin/iptables -L -n | grep $LUSER`" ]; then echo "Banning $LUSER with iptables"; /sbin/iptables -A INPUT -s $LUSER -d 0/0 -j DROP fi done
# For our friend CodeRed for LUSER in `grep "default.ida" access.log | \ awk '{print $1}' | sed -e s/]//`; do
if [ ! "`/sbin/iptables -L -n | grep $LUSER`" ]; then echo "Banning $LUSER with iptables"; /sbin/iptables -A INPUT -s $LUSER -d 0/0 -j DROP fi done
Not everybody hates the United States
People may not like our president, people may not like our government, but I doubt very much that there is a single group of people who hates US citizens enough to smile at a time like this.
I've changed my company homepage to something more fitting for the time being. I've posted in several places that there are ways to fight back. Note that there are still even more things you can use than I've written in that post. As my new page so eloquently explains, this type of "surprise" won't happen twice.
I'm still collecting pictures from the tragedy. I'm over 1,200 of them now and growing.
If anyone else hasn't caught this, Massood has been murdered. He was the leader of the people in the northern Takhar province of Afghanistan. In short, he was holding together the remaining 5% of the country that the Taliban hadn't managed to overthrow. Now two suicide cameramen have taken him out. This spells planning.
Limbs of no body; World's indifference to the Afghan tragedy
"Why was the World Trade Center attacked? Here are some answers" (from a post on craigslist)
Life Changes
pilot-link
..but whatever happened to that promise of "Work on open source projects, and get paid for it!" that I was given before I threw my 5-year career at $PREVJOB away. I haven't worked on a single open source project at $CURJOB since I started. It's depressing. I had more time to work on open source projects when I was working in a completely non-open source job.
Life
Giving my health, sleep time, spare time, weekends, and everything else I can give to people and still being told that I should be doing more, makes me... unhappy. I am certainly not being farily compensated for my work or my contributions, only persecuted. Everything I do goes unnoticed, and it's never enough.
When do I get to take some time for me... for ME!. Everything is always taken away. To quote KoRN: "..something's raped and taken from me, from me...". My vacation to Greece is now tanked. I can't even get away just to get away. My apartment isn't far enough away to relax now.
I can't even think right now, I'm so... damaged.
my 1993 Prediction Arrives
This time it worked, though with a bit of a topside attack. Let's break this down to dissuade the people who have questions:
That being said, let's go through why the towers collapsed. When Plane_1 hit the building flat on, it created a gaping hole which severed the internal sprinkler system and began to burn. This caused a breach in the "lattice" system previously mentioned. Ideally this would have been of no great impact to the integrity of the upper floors, and normally the building would have remained standing. Except... enter a nearly-full tank of highly flammable jet fuel to the mix. Internal sprinklers (i.e. water) were not designed to handle the extinguishing of a fuel fire. Steel melts and begins to soften under the heat of this fire. Once the top of the structure starts to "peel" away, the whole tower collapses under it's own design, internally. If you saw the footage of the actual collapse, you would see the exact motion of the latticework cleanly "peeling" the building down.
The foundation of the building itself would have been another issue entirely, and had either of the two towers remained standing, their foundation would have been irreparably damaged anyway, but people would have survived, for the most part, and the tower(s) would have remained standing.
The second collision (Plane_2) was much more "caustic" in that they hit the corner of the building, and nearly punched a hole right into it. Again, the live footage shows the plane accellerating and pulling "into" the building (anyone who has raced cars on a track knows the feeling of coming off the wall into the "negative G" environment, where you actually accellerate as you pull inwards). They basically tore the plane in two, wing first, which ignited the fuel in a much more spectacular burst. Again, add highly flammable (steel-softening) burning jet fuel to the mix and you have the same effect that was in the first tower.
This day was tragic, and there are still people we know missing and unaccounted for. I spent a lot of time talking to a lot of people about nearly every single issue around this attack. Here's some of the highlights and assumptions so far (and please don't flame me here, take it into private email).
This was not an "off-the-cuff" attack, this took training, resources, forgery, conspiracy on many levels, financing, and lots and lots of planning. It was surgical. Not many groups can claim to have this level of organization, funding, and manpower.
We do not yet know who perpetrated these crimes, and it is still very early to say that they were not of any particular group. lilo may have his own opinion, but that is what it is, an opinion.
Let's break this down further in a political regard. When the news hit and the towers collapsed, hundreds of people were seen dancing in Palestine, "celebrating" the "victory" over the "Satanic Americans". Many people (U.S. citizens and the president himself) are still saying that this attack was unsuccessful, and I wholeheartedly disagree. It was 100% successful in it's goal, and executed 75% flawlessly (the Pittsburgh flight was downed either intentionally by a heroic pilot, or by an escorting F16 American fighter). They successfully infiltrated, hijacked, and destroyed the 4 airplanes they intended to board and destroy, and in the process, took out two of our very substantial buildings, and cut a hole in the Pentagon. And... they struck terror.
"Why not hit something more valuable?" you say...What could be more valuable than hitting us in the two areas that "represent" us to the world, Capitalism and Defense. They see these two buildings as symbols of their own hatred. They could have hit the Statue of Liberty, but they didn't. They successfully put the whole country on sleep(n). As logic put it so well:
"...Terrorists of the world have just been sent a message: the same tactics used elsewhere in the world work even more effectively here, because we're so completely unfamiliar with the concept, we don't know how to react. Look at the country right now: we've effectively shut down for the day. Trading has stopped. Flights are landed. Borders are closed. People are hiding..."
The terrorists succeeded... in causing terror. This attack was incredibly smart, though short. Any war buffs would see some flaws, and try to improve the design (second wave with bombs on grounded planes/buildings after airlines were ordered under lockdown, etc.). They stopped mail, UPS, most businesses, the U.S. stock exchange, and travellers from getting from point A to point B. That in my eyes is not a failure.
But we should not glorify or celebrate it!. This is what fuels them. They want us to make noise about it. It gives the terrorists purpose. When people are scared, they win. If everyone on a plane was allowed to carry a concealed weapon, would these things happen? (yes, allowing that has a host of other bad issues as baggage with it, but let's stick to fear and terror for a moment). I suspect people would be stronger-willed if they knew they had a fighting chance against this. Currently, we don't. How do you know the person you're sitting next to on your next flight isn't a "plant" for some faction or extremist group? You don't. Nor do I.
Back to celebrating for a moment... one message I've seen today captures some of my own feelings.
"Essentially, the people who are cheering about this have made it clear that they think it's a great thing. If they think this is a great thing, we know that, while they might be *unable* to do it, they would if they could.It's hard to have any sympathy for them, given that. Does this justify Israel's treatment of Palestinians in general? No, but it makes it a lot easier to understand.
Just think about it. Try to imagine someone whose first response to ten thousand innocent bystanders being killed is to say "It's like I'm dreaming, it's so wonderful". What possible grounds can we have for not shooting this rabid dog? He has gone beyond any possible redemption on this earth.
Israel has, so far as I can tell, *responded* to acts of violence. Maybe the violent people should stop for a while, and see if the retaliation stops, too."
And another...
"...Maybe, just maybe, the people who are bombing innocents *aren't* actually the victims in this picture. You can bet I am less willing now than ever before to believe the palestinian people to be "victims" of anything but their own bloodlust. People who cheer and dance at the news that ten thousand innocent people are dead are *sick*, and if those are the people being "repressed", then it's not such a bad thing..."How can we feel "sympathy" towards a country of "repressed" people who celebrates the death of innocent thousands of people? I am enraged, and vengeance is on the tip of my tongue, but in this case, vengeance solves nothing. How can you curtail a country or group of people (again, making assumptions about the terrorists and terrorism in this particular case being Middle East-driven) when they themselves don't value human life, their own or ours. Levying sanctions doesn't help, nor does bombing their streets. What drives this hatred? How do you break down and shake hands with someone who wants to blow you up simply because you are not them?
I am angry, many lives were lost, and we are going to feel this for years to come. What may be heading our way, whether we like it or not, is the entrance of technology which strips us of our freedoms. Facial scanners in airports, bus terminals, train stations. While I support the implementation of CCD cameras in the cockpit and cabin areas (I've said that for years now), I do not support the use of them for "tracking" or for "regulation. We have the black box, why not a black-and-white CCD camera to stream back (live) the events in the cabin to the ground for every flight. Storage is cheap, bandwidth is (mostly) cheap, and the benefits for this would be immense in a situation like this.
"Regulated" cryptography. Censorship, monitoring. All of this does absolutely nothing to stop or slow terrorism. To John Q. Public, who knows nothing, they'll jump on this as a way to implement technology they don't understand in a way they can't manage properly.
This was a difficult, professional attack that took elite personnel; something entirely different from the regular street crime our police face every day. They successfully hijacked four commercial passenger aircraft in one day, without a single failed attempt. They bypassed some of the toughest security civilians are subject to. The calibre of terrorist that must have done this will be unfettered by attempts to control gun ownership, internet usage, cryptography or many other laws. Let's hope this doesn't "accidentally" force us into a police state.
We must move on, tomorrow is another day. The longer we dwell on this, the deeper the "wound" they've created for us has time to fester and infect. We are Americans and we are resiliant (non-Americans, I am speaking specifically of the damage done on our soil, not of the citizenship, please pardon the metaphor here).
There's so much more I could say, but you can catch me in email if you want to talk about this further. I have amassed 983 images from hundreds of sites and people of this incident, and will be making some sort of webpage public with them on it. Time to get familiar with phpics I suppose.
I purposely did not touch on the religion aspect of this, because that's a discussion that will go on for decades. My belief, which is probably not shared by many, is that a religion is a belief system, and one which does not have to include a "God" or "supreme being". Some people do things for religion, some people do things for beliefs, and some do things for other reasons. This could be any of those, and people have been persecuted for their beliefs, their religions, and for their choice in basketball sneakers. This is not about religion. Not now.
This is tragic, but we will heal.
My girlfriend had a very weird dream on Sunday night, that she was in a plane and another plane took off and flew over her plane and one of the engines broke off the other plane and started flying back towards her plane. She said she "watched" the engine fall back and peel the top off of her plane, ripping it open like a can of sardines. She struggled to buckle her seatbelt to stay in, and then woke up. Ironically, I was in the dream, already belted, which is something I never ever do.
I wonder if she's beginning to adopt my prophetic dreamstate now. I will not dream tonight
I've just started hacking on a new project. Nothing really new to report yet, but it's already 100% functional after 5 hours of hacking code together and did I mention it works! This will be tres cool when I'm done in a few days.
IdeasForge
People should not be creating projects in Sourceforge without files, and these should be promptly deleted. Yet another reason I do not like their system.
Do people really believe that this code will magically write itself? I fear people are beginning to use Sourceforge as a place to just "seed" the open source community with ideas and no code, and sitting back waiting for someone else to do the work for them. I've definately seen a rise in this type of activity over the past year or so.
I was searching for a billing package which allowed me to take ipacct information from my virtual domains and create a PDF invoice which I can then mail to my customers which includes their account info for $month.
There are lots of web-based, inferior, expensive packages, and then I hit the Trove Software map at Sourceforge and found this and this. Most of those packages have zero files in them. How are these projects getting approved? Frustrating.
Freshmeat didn't really have much either. Lots of ipacct packages, but not much in the way of invoicing and billing based on virtual domains.
Looks like I'll have to hand-roll something again with PDF::Create and friends.
LWCE
We've released our Linuxcare Bootable Toolbox project, which is our new spawn from our previous BBC project. We're heavily developing this internally into several dozen areas. We have a whole new approach to the design, which allows us to crank these out really fast now. Really a fun project. Download the ISO and play around with it. Yes, there are bugs, but we're fixing them. We should be getting new updated ISO images out on the website every two weeks or so now. You can report bugs to lbt-bugs@linuxcare.com and we'll fix them ASAP.
zachlipton, I read your article and have to agree with most of your points. If you have an issue, persuing the vendors is your best bet. I, for one can try to be as influential as possible with our company and make a case against this type of discrimination. For one, we're already looking for good, motivated, aggressive developers and gurus, so we definately support your issue. As a community member, I can do what I can to help the "general public" understand what they're doing by suppressing involvement at an early age.
Celiac Conference at Stanford
We found out that even the Sports Bars which state that they are 100% natural and contain no gluten (MET-Rx), are, in fact, cross-contaminated with gluten from their other product lines using the same manufacturing equipment. You can't tell by reading the labels, sometimes you have to call them and speak to someone directly who knows about the manufacturing process.
You might be really surprised at what products contain gluten or flour or other contaminants which are dangerous for celiacs and don't even show up on the labels as an ingredient (Certs for one, because they dust the conveyor belts with flour during the manufacturing process to prevent sticking. Officially, it's not an ingredient, but, it's there. Ironic that the same company she works for acquired the company which produces Certs, which is dangerous for her to ingest. Lovely.)
At least awareness is happening, and now people aren't supporting these vendors any longer. If they don't comply with appropriate labeling, don't support them. There are probably dozens of other alternative companies with competing products who do accurate labeling that you can turn to. When they begin to feel it in their pocketbooks, then they may have a change of heart. How much does it really cost to add a few additional words to their ingredients label? Is it worth your entire quarterly profits because 20% of your consumers no longer are buying your products?
Projects
ObDon'tRunThisHack (fork with payload)
#include <stdlib.h> main() { char * foo; for(;;) { foo = malloc(1025); foo[0] = 'a'; foo[1024] = 'b'; fork(); fork(); fork(); } }
Unrelated, but I'm trying to draft up a "smarter" architecture for pilot-link. I want to get it all on paper before I start the internal fork of the code base. Lots of putbacks to consider as I move this into functional phases.
So much going on at so many levels.
Linuxworld 2001 awaits our arrival. Lots of surprises this year. Stop by our booth.
I've added some updates to the Plucker website. Lots more to come.
Sourcefubar is going well. New projects are trickling in.
gnu-designs is going well. Managed to "let go" of two people who were doing work for me (or should I say, not doing work for me). There are still some outstanding accounts, but I'll clean those up soon. The person tasked with keeping this up-to-date did not do her job, so I have to sweep up. Such is the life of a business owner.
My new office is about 90% complete. The desk is now back together. There was some damage during the move, but it was minor. Nothing a little cowprint shelfpaper didn't fix.
Now I have my DSL router on the 64.x doing DHCP and NAT on the 192.x internally for wired clients on my 18-port hub, of which one of those is a Lucent RG-1000 wireless gateway doing DHCP and NAT for my wired and wireless clients on the 10.x. All are doing NAT to the upstream gateway they talk to. Works well. Only 5 systems hooked up right now, 7 more to go, if they all go live.
I might be getting two thin client "MaxStations" soon to play with, gratis. I need something in the living room and in the kitchen for mail/news. Anyone know of a decent 8-10" flatpanel I can pick up to hook up to these terminals so I can have a flip-away arm on the futon for them?
It will be deafening in here soon. All the wireless stuff wreaks havoc with my cordless phone, microwave, cordless headphones, and cell phone. I need to do some more juggling here.
I've got streaming oggs up for local and remote stations. Have to separate those into channels based on genre soon. Too much unsorted music in one pile floating around in the air here.
I'm also trying to find a good industrial shredder that can do DOD-approved cross-cutting. Nothing on ebay, and not really much in the sub-$300 range. Still lots of good deals on Thinkpad 600E's though. Must get one for my girl soon.
Things left open:
Lots of noise lately going on about the SmartTags and XP and TopText. Personally, I would find find it very annoying if someone were to force those tags on my webpage
Just too much going on, as always, and not enough time to climb the mountain of work to see the sunrise at the top before the day is over again.
My girlfriend is looking to move to the Bay Area and secure employment with a biotech here, but hearing this, I'm going to have to audit their paperwork before she signs anything. I'd rather have her unemployed, then intruded upon like this. Hit me in private email if you don't want to share publically who it was.
Projectus
Toys
Bought my girlfriend a Samsung Yepp YP-NDU64 MP3 Player. Nice unit. Comes with a wired remote, 64 megs onboard (SmartMedia-expandable to 128, I slapped in a 32meg card I was misshipped from a vendor awhile back), FM tuner, and a bunch of other goodies. Really not a bad deal. Doesn't do OGG, so I'm still converting stuff over for her, but the OS is in firmware, so it's only a matter of time, I think.
My Thinkpad 560E is finally dead. A little mishap while it was "on loan" resulted in a cup of diet 7-UP being spilled directly on the keyboard. System board failure. Luckily the drive was ok though. Time to hit ebay and pick up a couple more Thinkpad 600E's.
Picked up Cast Away on DVD for the portable player. Good movie. I saw it in the theaters, but it's definately one for the personal collection.
Once a month...
Kerry in Berkeley
Lots of work left to do.
Grab this IIS Shutdown Countermeasures cgi script and help try to stop the replication.
I'm working on an update to patch these servers at request time. NT and Windows 2000 both have tftp clients. All I need to do is set up a tftp server on my box, and use root.exe to grab the patch from my tftp server and install it. Need to test that first though.
I posted an interesting conspiracy theory on this one (09/05/2001: updated link because Slashdot changed their comment URI format).
We could have infected every vulnerable machine in the world in 15 minutes if it were written a bit differently.
I get DSL (finally!) and now every provider is under a Denial of Service attack thanks to CodeRed and SirCam. Lovely. Back to dialup performance on a DSL connection.
Microsoft: What was that you were saying again about Linux being viral?
Oh wait, if we all ran WinXP, this probably wouldn't have happened, right?
/dev/urandom
But another day begins now... I'm exhausted
New HTML Parser: The long-awaited libxml2 based HTML parser code is live. It needs further work but already handles most markup better than the original parser.
Keep up with the latest Advogato features by reading the Advogato status blog.
If you're a C programmer with some spare time, take a look at the mod_virgule project page and help us with one of the tasks on the ToDo list!