Thursday, June 5, 2008
re: 10 Obscure, Thought Provoking Reads
Found a blog post today by a random. The author suggested 10 obscure books. The list wasn't all that obscure imo (not saying that i really think that some of them on the list deserve to be on any list, let alone a list of 'thought provokers'), but there was one book splattered on there that I haven't thought about for years and read maybe a decade ago?? The book: Memnoch the Devil by Anne Rice. It actually was a thought provoking book. I'm not a fan of books that spew folkloric revenants, nor a religious fiction fan, but this book did it for me. Read it.
"bullshit" in sign language
I have to admit that I only learned of Rives after TED started posting video feeds. 'Twas a very video intensive part of my life... Anywho, thought some might enjoy this:
Saturday, May 10, 2008
Friday, April 25, 2008
Your Arturo clip du jour
Lame story of the day: I was on the search for a song from a cd of mine that I lost oh-so-long ago. I knew a Brecker brother and Arturo Sandoval played together in it, and simply couldn't find it... that's the lame part. The cool part is that I found a Bobby-McFerrinesque clip of Arturo singing. Here ya go:
Sunday, April 20, 2008
CARB: It was almost a year ago now, but...
Last year I read a blog post from the (former?) CEO of Tesla Motors. Definitely worth the read if the relationship between state governments and the auto industry interests you.
If you're too lazy to read the page-worth, his short testimony pretty much says, "As long as CARB and the auto manufacturers here seem to keep pushing for a technology that is 10 years away (and has been '10 years away' for over 15 years), I'm simply here to say thank you and keep doing what you're doing because we're making a killing... oh, and it would be nice to have some competition if anyone is interested."
If you're too lazy to read the page-worth, his short testimony pretty much says, "As long as CARB and the auto manufacturers here seem to keep pushing for a technology that is 10 years away (and has been '10 years away' for over 15 years), I'm simply here to say thank you and keep doing what you're doing because we're making a killing... oh, and it would be nice to have some competition if anyone is interested."
Wednesday, April 16, 2008
The Reubenstein is the coolest Ruby developer I know
I'm not kissing your ass Ben, but it's pretty cool that your mod_rails setup post made this week's Rails Envy Podcast. Go team!
Tuesday, April 15, 2008
Flash exploit explained... really well written.
Even if you have only a slight working knowledge of how a compiled app talks to and works with your computer's memory, this is a totally awesome article that quickly summarizes a report by Mark Dowd at IBM Security Systems (the 25 page report shows how some malicious AS code might use ActionScript's VM to allow access to any of the billions of OS-independent computers that have Flash installed). Yes, a bit geeky, but at least he talks about cyberdine, skynet, the koopa family, and has some nice pitfall animations.
Music music music
I'm a music geek and I thought this was worth a share: Today TED posted Machover's TED talk:
Thursday, April 10, 2008
Island of Garbage
So there's been a lot of chatter about the island of garbage the size of Texas floating inches below the surface of the Pacific. A small group of people took it upon themselves to sail 2000 miles out and check it out for themselves. Trash Island.
Tuesday, April 8, 2008
Shostakovich's Symphony no. 5 - 4th mvt
One of my favorite orchestral pieces. I had never heard Shostakovich's 5th under Bernstein. I get a little bit of an un-easy feeling at around the three-minute mark. I think this is because I'd like a bit more tempo contrast -- but this is an awesome 'version.' Fantastic conducting decisions all around:
google appengine vs aws (or just ec2 and simpledb)
Check back soon for the SmashedApples.com Public EC2 AMI. Also, we hope to quickly incorporate google appengine into the framework to allow usage for either aws or appengine behind your smashedapples flex front-end.
Tuesday, April 1, 2008
What is Flex?
Today, someone asked me what Flex is. This person has a pretty decent understanding of web technologies though had never used or even heard of Flex. My response, via email, was this simple video (along with a brief explanation):
Click here to watch the video.
Click here to watch the video.
April Fools day is interrupting my blind-belief!
April Fools day has officially been an interruption. I have maybe 500 articles that I sift through daily in my Google Reader. Today has provided a great deal more interesting headlines that I've clicked through. Many more than usual at least.
It's April Fools day, so now I'm stuck trying to decipher whether or not members of the AWS team truly developed a Dog Computer Interface. Why can't I just go about my day blindly believing everything I read as I usually do? Damn you April Fools day!!
It's April Fools day, so now I'm stuck trying to decipher whether or not members of the AWS team truly developed a Dog Computer Interface. Why can't I just go about my day blindly believing everything I read as I usually do? Damn you April Fools day!!
Sunday, March 30, 2008
SmashedApples has a constantly running ec2 instance!
More news to be coming soon, but all traffic for all developers and all applications are going through this guy: http://dev.smashedapples.net:8400/v099/
Friday, March 28, 2008
Tomcat init startup script and su for restricted users...
Normally, when I create init scripts in linux, I simply look for one written by someone who has taken the time to create one. A couple quick google searches and I'm in like Flynn.
I found a few some time ago for Apache Tomcat for our SmashedApples.com concept. Most were either over-written to include tcp/ip jive that would have been overdoing it for EC2, or the scripts were poorly written. The one I chose was incomplete. I needed to re-write large chunks of it, and ran into a couple of problems along the way. What I ended up with wasn't exactly the greatest script in the world, but it works and gets the job done.
Also, in the past, if a startup script called for another user, I'd simply create the user and get to a point where I could log in as that user, make the password ridiculous, and restrict use of the system for/by that user. WELL, in EC2 you can create new users and allow them to login via ssh, but it's not suggested. That makes sense. So I discovered a little argument to the "su" command that I've either never heard of, or simply forgot about.... at 30 I'm starting to lose the ol' marbles.
I ran groupadd to add my 'tomcat' group.
useradd my 'tomcat' user.
chown/grpown to take ownership of my tomcat directory.
created and edited my init.d script.
To stay within the EC2 security paradigm, when I added the tomcat user, the "-s" argument looked like this:
-s "/sbin/nologin"
... something I'd never done before.
Started testing through everything and when running the 'su' command to execute tomcat I was getting an error that said, "This account is currently not available." Makes sense. /sbin/nologin instead of bash or the like.
I did searches for about15 minutes... 15 minutes too long IMO. So, without further ado, let me introduce you to a nice little su argument that I didn't see in my man pages (well... i should learn to use the man pages in my os instead of a google search). "-s" If you execute su as root, you can bypass /etc/passwd with this smooth little arg. "-p" preserves the environment variables, which are definitely needed... ahem... JAVA_HOME!
su -p -s /bin/sh tomcat -c "wget http://smashedwebapps.s3.amazonaws.com/smashedwebapps.zip -O /opt/blazeds/tomcat/webapps/smashedwebapps.zip"
(o.k., so showing the random wget command is semi-worthless, but you get the point. do the same thing for "catalina start" or "startup" or whatever you're trying to do. fyi: we run that wget command so that brian (le mieux FLEX developer du monde) could simply slap all our webapps code into a zip file and upload it into an s3 bucket.) The point is, now we have a totally secure and loving model of tomcat running on an EC2 instance at startup (or at least will when the ol' symbolic links are made in the correct runlevels... MAKE SURE TO INCLUDE RUNLEVEL 4, just in case!... I could be full of it but I think EC2 uses XEN for these virtual machines. I haven't tested through, and sure inittab say default is 3, but I'm crazy and did 4 as well.)
Anyway, life is good. Go team!
I found a few some time ago for Apache Tomcat for our SmashedApples.com concept. Most were either over-written to include tcp/ip jive that would have been overdoing it for EC2, or the scripts were poorly written. The one I chose was incomplete. I needed to re-write large chunks of it, and ran into a couple of problems along the way. What I ended up with wasn't exactly the greatest script in the world, but it works and gets the job done.
Also, in the past, if a startup script called for another user, I'd simply create the user and get to a point where I could log in as that user, make the password ridiculous, and restrict use of the system for/by that user. WELL, in EC2 you can create new users and allow them to login via ssh, but it's not suggested. That makes sense. So I discovered a little argument to the "su" command that I've either never heard of, or simply forgot about.... at 30 I'm starting to lose the ol' marbles.
I ran groupadd to add my 'tomcat' group.
useradd my 'tomcat' user.
chown/grpown to take ownership of my tomcat directory.
created and edited my init.d script.
To stay within the EC2 security paradigm, when I added the tomcat user, the "-s" argument looked like this:
-s "/sbin/nologin"
... something I'd never done before.
Started testing through everything and when running the 'su' command to execute tomcat I was getting an error that said, "This account is currently not available." Makes sense. /sbin/nologin instead of bash or the like.
I did searches for about15 minutes... 15 minutes too long IMO. So, without further ado, let me introduce you to a nice little su argument that I didn't see in my man pages (well... i should learn to use the man pages in my os instead of a google search). "-s" If you execute su as root, you can bypass /etc/passwd with this smooth little arg. "-p" preserves the environment variables, which are definitely needed... ahem... JAVA_HOME!
su -p -s /bin/sh tomcat -c "wget http://smashedwebapps.s3.amazonaws.com/smashedwebapps.zip -O /opt/blazeds/tomcat/webapps/smashedwebapps.zip"
(o.k., so showing the random wget command is semi-worthless, but you get the point. do the same thing for "catalina start" or "startup" or whatever you're trying to do. fyi: we run that wget command so that brian (le mieux FLEX developer du monde) could simply slap all our webapps code into a zip file and upload it into an s3 bucket.) The point is, now we have a totally secure and loving model of tomcat running on an EC2 instance at startup (or at least will when the ol' symbolic links are made in the correct runlevels... MAKE SURE TO INCLUDE RUNLEVEL 4, just in case!... I could be full of it but I think EC2 uses XEN for these virtual machines. I haven't tested through, and sure inittab say default is 3, but I'm crazy and did 4 as well.)
Anyway, life is good. Go team!
Wednesday, March 26, 2008
War Made Easy
I only really watched until the part detailing the 'good vs. evil' premise in war. Totally true today. Most people don't even know why we went into Vietnam or Iraq. All they hear is 'evildoers' and 'bad guys.' Come on man... we're all just people!
Tuesday, March 25, 2008
Rejected by Don Hertzfeldt
I first saw this video in the summer of 2001. If you've never seen it, you should... some things never get old. Yes -- twisted at times, but everybody needs a little twisted from time to time.
Rejected - Don Hertzfeld
Rejected - Don Hertzfeld
Sunday, March 23, 2008
Ubuntu (or any flavor o' linux) NEEDS a good, easy and free remote support application!
Ubuntu (or any flavor o' linux) NEEDS a good, easy and free remote support application.
I would turn into an Ubuntu evangelist if only they had a good remote support app. Windows has it built-in (though it stinks). CrossLoop.com has the perfect remote support application that anyone can get into with little to no knowledge of computers. It's simply awesome.
That is all.
I would turn into an Ubuntu evangelist if only they had a good remote support app. Windows has it built-in (though it stinks). CrossLoop.com has the perfect remote support application that anyone can get into with little to no knowledge of computers. It's simply awesome.
That is all.
Saturday, March 22, 2008
Lessig and Change-Congress.org
One of my favorite public figures, Larry Lessig, recently brought opened his latest project to the public. The name: change-congress.org. I ask all y'all to pass on this video... it really hits the flaws-o-congress nail on the head:
Saturday, March 15, 2008
U.S. daily oil consumption.
I took the time to make this random image. It illustrates our daily consumption of oil by laying out the barrels on the map of the U.S. The purple line represents a 3-barrel stack of oil barrels. I sort of thought that 20,000,000 barrels of oil would at least go around the world, but she only gets about 1/3 of the way... this is based upon the Standard Oil Company's 42-gallon Blue Barrels, which are 24" in diameter.
Thursday, March 13, 2008
m2z and net neutrality
It's old news that if you live in the U.S., your high-speed internet connection isn't all that great in comparison to any of the other 'states in Tom Paine's country'.
I'm relatively well-read re: the Net Neutrality debate. I had not, however, heard of m2z, a private company that has offered to provide free, country-wide wireless internet access. If you have Joost, this video is worth the watch:
What Works: Internet Access
The CEO of m2z believes that pressure from the major telecom companies caused the FCC to shoot down m2z's FCC filing.
I'm relatively well-read re: the Net Neutrality debate. I had not, however, heard of m2z, a private company that has offered to provide free, country-wide wireless internet access. If you have Joost, this video is worth the watch:
What Works: Internet Access
The CEO of m2z believes that pressure from the major telecom companies caused the FCC to shoot down m2z's FCC filing.
Wednesday, March 12, 2008
creating blazeds war files for tomcat server
if you have your java directory in your 'path' you can type this command from anywhere.
jar -cvf filename.war *
So... if you can, navigate to your web apps directory under tomcat. go into the directory where you're creating the app.
jar -cvf filename.war *
In English, "compress everything in this directory into a file named filename.war"
(c=create, v=verbose, f=file)
Now you can copy filename.war to any the webapps directory on a new Tomcat Server.
The above command worked for me, but the documentation calls for a folder name, so if something changes in the java sdk, the * might need to be just a directory, instead of calling for all files. So a "." (or, of course, the full directory locale) might be in order. You might need to play with it.
or... if you're in unix/linux "./"... or maybe "./*" ?? give it all a try baby.
hope that helps anyone who might be fighting w/ it and couldn't get ANT to work properly.
jar -cvf filename.war *
So... if you can, navigate to your web apps directory under tomcat. go into the directory where you're creating the app.
jar -cvf filename.war *
In English, "compress everything in this directory into a file named filename.war"
(c=create, v=verbose, f=file)
Now you can copy filename.war to any the webapps directory on a new Tomcat Server.
The above command worked for me, but the documentation calls for a folder name, so if something changes in the java sdk, the * might need to be just a directory, instead of calling for all files. So a "." (or, of course, the full directory locale) might be in order. You might need to play with it.
or... if you're in unix/linux "./"... or maybe "./*" ?? give it all a try baby.
hope that helps anyone who might be fighting w/ it and couldn't get ANT to work properly.
canadian and u.s. individual tax rates
I don't do a whole heck of a lot of blogging, but thought this was worth a post:
View full details here, at the economist.
View full details here, at the economist.
Thursday, March 6, 2008
MySQL on EC2 -- my fight lastnight.
-i ec2-keyfile-used-to-start-instance -L 3305:localhost:3306 root@ec2-XXX-XXX-XXX-XXX.compute-1.amazonaws.comSo lastnight I had to put together a quick proof-of-concept of an EC2 server for a client. They needed mysql, among other things, running on an EC2 server instance. I should preface this with the fact that I've rarely been on a server-side of a mysql install. Sure, I've installed mysql on development machines for mysqlf, and I've installed MySQL on a windows server or two, but more often than not, I do a 'developer install' and don't open up port 3306 on the firewall, etc.
That said, I got everything installed on the server instance. Life was going well, but I was unable to connect to the mysql server through my local query browser. I had run "ec2-authorize" to set the 'group' that my instance was a member of, opening up port 3306 through ec2 tools. I changed the mysql config file to listen to port 3306 and had everything looking o.k. as far as I could tell.
I realize that the setup I was trying to do was the more insecure of configs, though every shared host I've used has this configuration.... more importantly, however, this is a simple, semi-unsecured proof of concept. No round-robin dns. No mounting of an S3 bucket into my local filesystem. No master-slave set-up for mysql. I just needed something up and running quickly, and holy hell if EC2 doesn't totally rock. A full server install that normally takes you hours can take a single hour or less -- and you can feel pretty good and secure about it.
Anyway, I set up and flushed my mysql users. Restarted the service. I was able to connect and run mysql commands when logged into the ec2 instance, but I was unable to connect to mysql through my local machine through port 3306.
I started then poking around the ec2 forums and found that many were opening up a sort of tunnel-port-forward through putty with command arguments:
putty.exe -ssh -i keyPairFile -L 3306:localhost:3306 root@remoteHost
(This is evidently a practice that developers and hosts should always do, which makes sense -- I just can't say that anybody I've been a client/customer of has ever done it. Encrypting data is a good thing. We're playin' with the big boys.)
So... the above -ssh argument is obvious
the -L however, was I believe where I was having problems.
I'd run the command, open mysql query browser, pointing it to localhost or 127.0.0.1 on port 3306. I knew my firewall was fine, but it would time out every time. My ssh ports on the server were cool. I went through a ton of troubleshooting. I changed the arguments to putty to every option I could think of. There is also a -L argument for putty.exe that I found which does something with SOCKS instead of port forwarding (or maybe the -D is the socks proxy... either way... I feel like I tried everything).
After an hour of fighting with a problem that I found to be ridiculous, I started looking for other quicker fixes. My first option was the best (imo), which was setting those arguments through the GUI:
set your host name and make sure ssh is selected:
put in your putty key associated w/ the -k argument (keypair) you set when booting the instance:
click "Tunnels" an set the source port and destination ip:port:
(I think the above is correct... I remember toying with it and think the above args are cool... click "Add" and it slaps that info into the box above.)
Feel free to save this config under session>saved sessions. Connect, type your user "root," allow putty to connect via ssh and leave that ssh connection open. Now, when you open your local mysql tools, connect through 127.0.0.1:3600 and the ip and port should be forwarding correctly.
I'm not sure if my -D argument was monkeyed up. Or if I needed root@localhost:3600, or, well, hell, I did this so many different ways that I really don't remember where my problem could have been..... but whatever the above set-up does in terms of putty arguments was where it was at.
That said, I got everything installed on the server instance. Life was going well, but I was unable to connect to the mysql server through my local query browser. I had run "ec2-authorize" to set the 'group' that my instance was a member of, opening up port 3306 through ec2 tools. I changed the mysql config file to listen to port 3306 and had everything looking o.k. as far as I could tell.
I realize that the setup I was trying to do was the more insecure of configs, though every shared host I've used has this configuration.... more importantly, however, this is a simple, semi-unsecured proof of concept. No round-robin dns. No mounting of an S3 bucket into my local filesystem. No master-slave set-up for mysql. I just needed something up and running quickly, and holy hell if EC2 doesn't totally rock. A full server install that normally takes you hours can take a single hour or less -- and you can feel pretty good and secure about it.
Anyway, I set up and flushed my mysql users. Restarted the service. I was able to connect and run mysql commands when logged into the ec2 instance, but I was unable to connect to mysql through my local machine through port 3306.
I started then poking around the ec2 forums and found that many were opening up a sort of tunnel-port-forward through putty with command arguments:
putty.exe -ssh -i keyPairFile -L 3306:localhost:3306 root@remoteHost
(This is evidently a practice that developers and hosts should always do, which makes sense -- I just can't say that anybody I've been a client/customer of has ever done it. Encrypting data is a good thing. We're playin' with the big boys.)
So... the above -ssh argument is obvious
the -L however, was I believe where I was having problems.
I'd run the command, open mysql query browser, pointing it to localhost or 127.0.0.1 on port 3306. I knew my firewall was fine, but it would time out every time. My ssh ports on the server were cool. I went through a ton of troubleshooting. I changed the arguments to putty to every option I could think of. There is also a -L argument for putty.exe that I found which does something with SOCKS instead of port forwarding (or maybe the -D is the socks proxy... either way... I feel like I tried everything).
After an hour of fighting with a problem that I found to be ridiculous, I started looking for other quicker fixes. My first option was the best (imo), which was setting those arguments through the GUI:
set your host name and make sure ssh is selected:
put in your putty key associated w/ the -k argument (keypair) you set when booting the instance:
click "Tunnels" an set the source port and destination ip:port:
(I think the above is correct... I remember toying with it and think the above args are cool... click "Add" and it slaps that info into the box above.)
Feel free to save this config under session>saved sessions. Connect, type your user "root," allow putty to connect via ssh and leave that ssh connection open. Now, when you open your local mysql tools, connect through 127.0.0.1:3600 and the ip and port should be forwarding correctly.
I'm not sure if my -D argument was monkeyed up. Or if I needed root@localhost:3600, or, well, hell, I did this so many different ways that I really don't remember where my problem could have been..... but whatever the above set-up does in terms of putty arguments was where it was at.
Wednesday, March 5, 2008
Thursday, February 28, 2008
Forwarding: Forward godaddy (registrar) emails to Gmail.
It sounds like a simple enough task. And it is. That said, however, I could not locate an imaginary "Email Forwarding" link immediately.
If you can't find a page or link to set forwarding through your registrar, AND if that registrar just so happens to be godaddy, here are a couple images and descriptions to help you out:
After logging in, click "Free Products List" under "My Products."
On the next page, click "Email Account List."
On the next page, hidden in the lower-right is an email forwarding link.
This link takes you to the same page w/ some of the content dynamically changed on the right. From there on out, it's pretty self explanatory. And, there are probably other ways to get there, but if you were looking for "email forwarding" anywhere and had to resort to a site:godaddy.com search to finally locate the flippin' thing, you may have just taken the same short-cut I took.
IF you'd like, you can send outgoing emails as though they're coming from this domain also, but I find it to be a waste of time. If you're feeling frisky: Log on to Gmail. Click on Settings. Click on Accounts. Click on Add Another Email Address. Add your new, branded address: monkey@IAmAMonkeyMan.com
If you can't find a page or link to set forwarding through your registrar, AND if that registrar just so happens to be godaddy, here are a couple images and descriptions to help you out:
After logging in, click "Free Products List" under "My Products."
On the next page, click "Email Account List."
On the next page, hidden in the lower-right is an email forwarding link.
This link takes you to the same page w/ some of the content dynamically changed on the right. From there on out, it's pretty self explanatory. And, there are probably other ways to get there, but if you were looking for "email forwarding" anywhere and had to resort to a site:godaddy.com search to finally locate the flippin' thing, you may have just taken the same short-cut I took.
IF you'd like, you can send outgoing emails as though they're coming from this domain also, but I find it to be a waste of time. If you're feeling frisky: Log on to Gmail. Click on Settings. Click on Accounts. Click on Add Another Email Address. Add your new, branded address: monkey@IAmAMonkeyMan.com
Subscribe to:
Posts (Atom)
