2008-12-23

Status Report

Tags: , , , Posted at 19:58 4 Comments

I’ve fin­ished read­ing How to Lose Your Altruism How to Win Friends and Influence People, and the review is up. Also upgraded to Wordpress 2.7, although since I’m using my own cus­tom theme the changes will be all on the backend.

I attempted to install OpenSolaris 2008.11 on my Macbook, which failed pretty spec­tac­u­larly. The prob­lem is that I still want OS X to be acces­si­ble because all my stuff is there1, but the Solaris installer’s fdisk doesn’t han­dle the GUID par­ti­tion table that MacOS X/rEFIt requires. There used to be hackarounds in 2008.05 (which is what all the “installer howto”-style blog posts were writ­ten for), but those paths were closed in 2008.11. Specifically, in 2008.05 the installer used to have a remount­able root par­ti­tion and exe­cutes fdisk using path-aware meth­ods (i.e. “sys­tem()”). In the new installer, the root par­ti­tion can­not be remounted read-write, and the installer calls fdisk using an absolute path (i.e. using “exec()”), so you can’t use the hacky over­rides to make it not over­write OS X’s par­ti­tion table.

After a dozen times around the block using var­i­ous online-suggested meth­ods, I couldn’t jus­tify not being able to use my lap­top any longer and just re-installed OS X, then put Ubuntu 8.10 on, which I’m using pretty much exclu­sively now.

  1. Yes, I’m a prag­matic freedom-hating douchebag… or was, so long as OS X worked bet­ter than I could rea­son­ably expect out of a Linux sys­tem. It hasn’t really been up to my angry stan­dards for a while, so fuck it.

Comment on this...


2008-11-30

New Books

Tags: , , , , Posted at 17:02 No Comments

Latest on the “done” pile are Rule The Freakin’ Markets and IS-IS Network Design Solutions. Summaries/reviews of both are up.

Be the first to comment on this...


2008-11-17

They Thought There Were Free Toys

Tags: , , , , , Posted at 01:18 2 Comments

I’ve just ordered a Kindle and fin­ished a review of (warn­ing: spoil­ers, big-assed swastika on the front cover) They Thought They Were Free, a book about ordi­nary peo­ple in Germany who became Nazis that’s been on my list for a long while after it made the rounds on some of the lefty blogs I read.

As my CD drive appears to be on the fritz on my lap­top, it’s likely I’ll be look­ing into an Air some­time soon — since the drive is always the first to go, why not get a lap­top that doesn’t have one in the first place.

Comment on this...


2007-10-01

Xen and The Art of Free Speech

Tags: , , , , , , , , , , Posted at 21:01 8 Comments

Aside from the laugh­able idea of “mil­i­tantly” sup­port­ing any­thing with a blog post, Miguel sim­ply noted that these peo­ple exist, have writ­ten a book, and will be doing the speaking-tour-thing near him. Does he agree with the con­tents? (shakes eight-ball) Signs point to Yes.

Is he free to do so? Also yes.

Are you free to ignore him? Still yes.

Does His Chomskiness actu­ally take the chal­lenge and pro­vide a bet­ter rebut­tal to the under­ly­ing book than politely demand­ing Miguel STFU? Yep.

Oh, and here’s a patch that will let you do some­thing cool with XEN 3.0.3:

--- network-bridge      2007-02-08 09:21:12.000000000 -0600
+++ network-vlans       2007-09-14 09:55:20.000000000 -0500
@@ -26,6 +26,7 @@
 # bridge     The bridge to use (default xenbr${vifnum}).
 # netdev     The interface to add to the bridge (default eth${vifnum}).
 # antispoof  Whether to use iptables to prevent spoofing (default no).
+# vlans      VLANs to add on top of the bridge
 #
 # Internal Vars:
 # pdev="p${netdev}"
@@ -64,18 +65,27 @@
 bridge=${bridge:-xenbr${vifnum}}
 netdev=${netdev:-eth${vifnum}}
 antispoof=${antispoof:-no}
+vlans=$(echo $vlans | sed -e 's/,/ /g')

 pdev="p${netdev}"
 vdev="veth${vifnum}"
 vif0="vif0.${vifnum}"

 get_ip_info() {
-    addr_pfx=`ip addr show dev $1 | egrep '^ *inet' | sed -e 's/ *inet //' -e 's/ .*//'`
+    addr_pfx=`ip addr show dev $1 | sed -n 's/^ *inet \(.*\) [^ ]*$/\1/p'`
     gateway=`ip route show dev $1 | fgrep default | sed 's/default via //'`
 }
+
+is_bonding() {
+    [ -f "/sys/class/net/$1/bonding/slaves" ]
+}
+
+is_ifup() {
+    ip link show dev $1 | awk '{ exit $3 !~ /[< ,]UP[,>]/ }'
+}

 do_ifup() {
-    if ! ifup $1 ; then
+    if ! ifup $1 || ! is_ifup $1 ; then
         if [ ${addr_pfx} ] ; then
             # use the info from get_ip_info()
             ip addr flush $1
@@ -206,8 +216,8 @@
        mac=`ip link show ${netdev} | grep 'link\/ether' | sed -e 's/.*ether \(..:..:..:..:..:..\).*/\1/'`
        preiftransfer ${netdev}
        transfer_addrs ${netdev} ${vdev}
-       if ! ifdown ${netdev}; then
-           # If ifdown fails, remember the IP details.
+       if is_bonding ${netdev} || ! ifdown ${netdev}; then
+           # Remember the IP details if necessary.
            get_ip_info ${netdev}
            ip link set ${netdev} down
            ip addr flush ${netdev}
@@ -223,6 +233,18 @@
        add_to_bridge  ${bridge} ${vif0}
        add_to_bridge2 ${bridge} ${pdev}
        do_ifup ${netdev}
+
+       if [ -n "$vlans" ]; then
+               vconfig set_name_type VLAN_PLUS_VID_NO_PAD
+
+               for vlan in $vlans; do
+                       create_bridge xenbr${vlan}
+
+                       vconfig add ${bridge} ${vlan}
+                       setup_bridge_port vlan${vlan}
+                       add_to_bridge xenbr${vlan} vlan${vlan}
+               done
+       fi
     else
        # old style without ${vdev}
        transfer_addrs  ${netdev} ${bridge}
@@ -262,6 +284,20 @@
        ip link set ${netdev} name ${vdev}
        ip link set ${pdev} name ${netdev}
        do_ifup ${netdev}
+
+       if [ -n "$vlans" ]; then
+               for vlan in $vlans; do
+                       if [ -n `ip link show vlan${vlan} | grep '${bridge}\:'` ]; then
+                               ip link delif ${bridge} xenbr${vlan}
+                               ip link set ${bridge} down
+
+                               ip link set vlan${vlan} down
+                               vconfig rem ${bridge} ${vlan}
+                       fi
+               done
+
+               vconfig set_name_type DEV_PLUS_VID_NO_PAD
+       fi
     else
        transfer_routes ${bridge} ${netdev}
        ip link set ${bridge} down

It may be buggy, since I haven’t tested it in pro­duc­tion. What it does is this: allows you to run an 802.1Q trunk into your XEN server, then put your vir­tual machines on any VLAN you want with a cou­ple con­fig­u­ra­tion stanzas.

So, your xend-config.sxp will have:

(network-script 'network-vlans netdev=eth0 vlans=8,9,10,11,13,121,14,15')

Which trans­lates to “cre­ate bridges for VLAN 8, 9, 11, 13, 121, 14, and 15 with a xenbr pre­fix”. Then you set your DomU vif stanza to be “bridge=xenbr13” and bam! your DomU exists on the VLAN13. The pri­mary lim­i­ta­tion of this is that it keeps your Dom0 on the untagged/native VLAN, which isn’t best practice.

The stack of mod­ules a packet tra­verses to get to a DomU will look like this (with rel­e­vant modules):

[network] -->
dom0: peth0 (dev) -->
dom0: xenbr0 (bridge) -->
dom0: vlan13 (dot1q attached to xenbr0) -->
dom0: xenbr13 (bridge) -->
dom0: vifX.0 (netloop) -->
domU: xen0 (xennet)

Comment on this...


2006-08-20

Armed Madhouse

Tags: , , , , , Posted at 14:33 2 Comments

Yesterday, I read Greg Palast’s Armed Madhouse. On the one hand, it’s nice to know that I intu­itively under­stood the neo-conservative inva­sion plan and rea­son — the so-called “Plan B” — well enough to describe it as “glob­al­iza­tion by force” in a paper I wrote for a Political Economy course. It’s also nice to know the vaunted-but-ignored State Department plan was, essen­tially, the oil indus­try plan, and not all that much less fan­ci­ful (an “inva­sion dis­guised as a coup that would be over in three days” — sure).

The cli­mate chaos unleashed by find­ing large new reserves would make the mere col­lapse of indus­trial civ­i­liza­tion look like a sideshow bagatelle1

On the other hand, it’s some­what dis­ap­point­ing to have my belief in Peak Oil skew­ered so expertly. The issue is not so much that I believed in it, but rather that there is so much petro­leum in the world as to make both extreme cli­mate change and fur­ther impov­er­ish­ment of the U.S. poor and mid­dle classes essen­tially inevitable.

I don’t, how­ever, sub­scribe to his hand-waving dis­missal of the petrodol­lar the­o­ries for the inva­sion of Iraq, if for no other rea­son than he does the stan­dard “only on the Internet” shuck-n-jive in lieu of any actual counter argu­ment. Yes, Bush wants to devalue the dol­lar against the Euro. That does not include throw­ing the global econ­omy into chaos by let­ting over three bil­lion dol­lars sit idle each day — or worse, come back to the Federal Reserve as coun­tries dropped their dol­lar cur­rency reserves, no longer requir­ing them to trade oil? Because that is what a switch from the dol­lar to the Euro would entail.

Americans really don’t care about free­dom; they don’t really care about lib­erty; they don’t care about any of that.2

After that, the book reaches into the var­i­ous vot­ing scams which allowed Bush to steal the office, again. It cov­ers quite a bit of infor­ma­tion, from Ohio to New Mexico, from the more mun­danely racist lists of vot­ers to chal­lenge to the more “sexy, Hollywoodish” (the book’s term) machine hack­ing. On page 243, I read the fol­low­ing, from an African American who was ille­gally denied the right to vote in 2000 in Tampa, and would have been again in 2004 had Palast’s film­ing crew not shown up to do a story on him:

I went into the place to vote and I was with my son and there were about 40 to 50 other peo­ple around and I got up there to vote and they told me I was a con­victed felon. I told the young lady that I had never been arrested. I’ve never been arrested in my life. I I was in the mil­i­tary for four years and have been in the med­ical field ever since. You can’t even work for a hos­pi­tal being a con­victed felon… I was in the Persian Gulf War in ’91. It’s pretty screwed up how they did me, but what can I say?

I was upset, I was ashamed — with 40 peo­ple around — it made me feel real bad. And I’m just hop­ing I get a let­ter stat­ing, hey, you can vote again, Willie.

I really feel it was bad for African-Americans — but hey, what can we do some­times? What can we do?

At which point I col­lapsed out of my chair with a colos­sal fuck­ing headache behind my left eye­ball. After lying down for a few min­utes to get my bear­ings back (an inter­est­ing expe­ri­ence in itself, BTW), I con­tin­ued read­ing, even­tu­ally com­ing across another cou­ple gems from New Mexico: Governor Bill Richardson (the only Latino gov­er­nor in the U.S.) is the son of a Citibank exec­u­tive and a woman who hails from Mexico City, and the only greater pre­dic­tor of how worth­less your vote is than race is income.

The resis­tance is just wait­ing to be orga­nized3

When this is all finally sorted out, the mid­dle class in gen­eral, and white peo­ple in par­tic­u­lar will have a lot to answer for. It may be us, the younger-types in the work­force today ask­ing for the account­ing. It may be our kids. People will turn back to the last few gen­er­a­tions and ask them: why did you let them get away with all this? Why did you keep your head down, try­ing to not fight them.

We’re all so busy scrap­ing, just try­ing to hang onto our own toys, that they can get away with these kind of colos­sal crimes they’ve been get­ting away with. And while you’re busy try­ing not to get fired, they lynch the black guy next door. And that’s just the progressives/liberals/left.

The self-described “con­ser­v­a­tives” will have more. One thing I don’t want to see, after the fight has been won, is some kind of phony “heal­ing process” where all the bosses get to pre­tend they had noth­ing to do with it — to pre­tend they weren’t right there at the table, waited on by starv­ing peo­ple. Where none of the police can quite remem­ber who was in the K-9 units, and none of the mil­i­tary men can recall who was killing fam­i­lies and rap­ing women in some desert hut, 12,000 miles away.

Ever notice how they never can find the racist cops in those civil rights doc­u­men­taries — the cop who was sic­c­ing the dog on the kid, or the fire­man man­ning the fire hose? That’s what I mean.

  1. Robert Newman’s A History of Oil
  2. Aaron McGruder, on C-SPAN
  3. Ani DiFranco, Millennium Theater

Comment on this...


2005-12-10

On Deploying OpenLDAP

Tags: , Posted at 17:31 4 Comments

One of the things I noted about the dis­cus­sions sur­round­ing “Web 2.0″ was the idea that blogs were the next weapon in guerilla mar­ket­ing, fol­low­ing the fail­ure of var­i­ous astro­turf cam­paigns to gar­ner any actual sup­port due to ease with which they were exposed. The idea is that what­ever the fail­ings of free cul­ture, it is gen­er­ally an hon­est dis­cus­sion, so peo­ple trust it, so it obvi­ously must be cor­rupted with under­cover adver­tis­ing and the crass profit motive.

Following this trend, a kindly PR per­son at Apress sent me a copy of the book, Deploying OpenLDAP, by Tom Jackiewicz, with the ver­bal agree­ment that I post a pub­lic review of it.

Like a fool, I said sure, and so am obliged to post the fol­low­ing review…
Read the rest of this entry »

Comment on this...