Wednesday, December 31, 2008

VMware, oh how I love virtual machines (and Linux)

I'm really getting to love virtual machines, except at work when the machines are blade servers running I-don't-know-what as a base OS connected to HP Blade Switches running who-the-F-programmed-this-train-wreck Layer 2 multipath chassis. Ugh. But that's another story for another time (and you can purchase IOS capable HP blade server switches and slide them right into the HP chassis. The new blade servers are configured in this way and they work splendidly. And they run IOS so you know how to do things like set up span ports without having to navigate some bizarre telenet command tree).

I digress. Yesterday at my favorite client on the Outer Banks I set up a new proxy server using wonderful free-as-in-speech Linux and it works spendidly. The company owner wanted to change the front desk Point of Sale computers into something more like a kiosk but he wanted the computers to remain able to visit "critcal" websites such as the Dare County government page so the employees could remain able find critical information about, say, evacuations of the island if a hurricane were knocking at the door.

This could have been accomplished using Content Adivor built into Internet Explorer (yes, the front desk machines run Winders.. sigh) but this approach would have required them maintain a list of "allowed" websites on each machine and adjust them as needed. In addition it would have done nothing to stop someone from installing another web browser (go Firefox!!) not to mention that Content Advisor is so easily bypassed it is just sad. But we're not talking about geeks running the front desk, mind you. These are retireees who do little more than contstantly do e-mail when they are supposed to be working and watching endless YouTube videos of their grandchildren.

So why not just set up a proxy server? I could block ports 80 and 443 outbound and allow only the proxy where I could build multiple levels of whitelists that would restrict users to specific websites. But there was a problem. The only machine that DID NOT run Windows was the office manager's Intel iMac. To complicate matters further that mac already ran a copy of Squidman that I use as a reverse SSH proxy to do remote support. Squidman is great but I'm not a fan of how the config files are maintained so I didn't want to go making that an unnesessarily complicated mess using Squidman to do all the proxying.

The solution was easy - install a new virtual machine using the already-existing VMware Fusion (which is currently running a XP virtual machine for reasons that I won't get into because it bothers me greatly). A quick download of the Debian netinstall ISO and a few clicks of the mouse and I had a fully functional, bare-bones Linux install. From there it was a simple 'apt-get install squid' (and ssh for remote login) and a vi of the /etc/squid/squid.conf and whitelist files and, poof, a fully functional proxy server was running.

Now it is time to find out if I squid supports the oddball color printer and assuming they do I'll have a print server running momentarily.

Linux as a server is just so darn easy to work with. True I could set up the print server on either a windows box or perhaps the Mac.. but why? Anything on Linux is so easily remotely supportable I can't see a reason not to set things up that way.

Sunday, December 28, 2008

Lost in Translation

"Please treate this issue as high priority one and do the needful."

No problemo.

Wednesday, December 24, 2008

Life isn't all bad

Yeah, I have to work until at least 7 pm tonight but I'm here at my desk watching Koyaanisqatsi on the 2nd monitor via Hulu. It's not the worst way to pass the time.

Tuesday, December 23, 2008

Uzzah. A man who deserved better.

It's time to break out the NIV version and read up on my of my favorite cast of characters in the Old Testament: Uzzah. Or Uzzah the Unlucky, Uzzah the Torched by God, or any other names for a poor guy who instinctively tried to do what he brain told him was the right thing. It wasn't. God was unpleased.

The short story is Uzzah and his brother Ahio were told by God to move the Ark of the Covenant and they did, via ox cart. At some point along the trip the oxen stumbled and Uzzah, against divine instruction, reached out to steady the Ark so it would not fall of the cart. Bad move. God smoked him on the spot, instantly. This naturally freaked Ahio about a bit so the Ark never made it to David, its original destination (again, this is all from memory and quite dim) thus beginning a 3000+ year game of hide-and-seak that remains unsolved to this day. It could also be the Ark never existed in the first place and the story is a work of fiction. Whatever you believe is cool with me.

Monday, December 22, 2008

Roku players get HD content!

I'll have to check this out when I get home. It sure sounds promising!

In full swing

The first of three family-related events is in the history books for this holiday season. One down, two to go. Wish me luck!

Also I've started my week of primary on-call (global) that runs through the 28th. Ugh. Ick. Nasty. Let's hope and pray for a quiet week.

Saturday, December 20, 2008

New Apples.

Looks like we're going to be blessed with new Mac minis and iMacs at this years Macworld. I'm excited! I've been needing to replace my G4 Mac mini file/print/media server for quite some time and I think not having the ability to upgrade the unit past 10.5.x is going to provide the jolt required to open my tight-fisted wallet that is IF we recieve a bonus this year and IF we have enough bonus money "left over" (the earmarks are long and varied this bonus year).

The new Mac minis are rumored to share the same graphics processor as the Macbook Pros which would be provide a huge boost to performance. Plus being an Intel mini I could easily run other operting systems in parallel using Parallels or VM Ware Fusion.

I really have to think about upgrading my white MacBook first, though. I'd like to replace my MacBook (which I would send to my parents) with a 15" MacBook Pro but I don't think I'd have the "extra" $2500.00 in the bonus pile. Shoot. What a drag.

The company where I work is moving towards a cool concept called "Open Networks" where the users LANs are going to be opened up wild-west style, perhaps (and I really don't think they'll do this for obvious reasons) with IPs directly routable to the Internet. The data centers themselves would be where the data security layer would reside, not the "edge" between the Inernet and B2B networks.

Why? Fairly simple. Most people have high-speed Internet these days as do all compaines we do business with. Instead of requiring a B2B or individual VPN connection to the network simply jump on at the core of the network via the shortest path at the carrier hotels around the globe. From there access the applications you need via VPN that latches itself to the global data center. It sound totally psychotic, I know, but there is a bit of beauty in the chaos that reveals itself when you constantly try to troubleshoot and fix connectivity problems between the company and the B2B partners. This kind of network would greatly simply connectivity.

All that said I'm not sure when such a dramtatic shift would take place. But when it does employees could also drink from the well of hysteria and provide our own hardware to use at work if we so choose. But there's one exception to the rule - the hardware would have to be capable of running the company build supported operating system. Hello VM Ware Fusion. I could crank up my VM Ware Winders build and I would be good to go.

Plus I could have, and do today, have multiple Ethernet connections at my desk. I have a standard LAN connection that everyone else has and I also have an outside line via a DSL router. We use that line for testing external VPNs, simulating B2B connections, that kind of thing. My primary Ethernet connection would use the DSL connection and I'd bound the VM Ware Winders session to the 2nd Ethernet connection to the company LAN.

But wait, you say, how the hell are you going to have to LAN ports on a Macbook Pro? Ah, good question. It has been proven the Macbook Air Ethernet adpapter works quite well with other Intel Macs. So I'd do it that way. I could, but won't, attach an Airport Express to the DLS line. I'm already dipping my toes well into the "DO NOT DO" pool having a machine directly attached to the outside world and the company LAN at the same time but attaching an access point, even when I know what I'm doing and why, would rase the hackles of security and they would have no qualms walking me out the door for that regardless of how secure the connection may be. It's just something you don't do around these parts. Or, rather, it's something you do only once. Damn pesky AirMagnet sensors.

So that's the plan, stan. And it's a great plan, I think. No more unnecessary dual laptops. Gone. Poof. A nice, bright 24" Apple LED display built just for the Macbook line sitting atop my desk. Me easily and seemlessly moving in and out of the company data networks, no more shutting down every application just to test an Internet-facing application or connection. No more lugging around dual laptops on school days. What's not to love?

Will my dream turn into reality? Quite frankly all signs point to "no". Being the first out of the gate with a company-build desktop as a virtual machine on my own laptop isn't going to be easy. But great projects that benefit me never are. That's what makes them fun.

It's time to kick some Wii Tennis butt. Later.

Thursday, December 18, 2008

Rumors

If rumors coming out of the UK are true then the Batman franchise is dead. The rumor is Eddie Murphy will play The Riddler and Shia Lebeouf is to play ROBIN. Robin. They are dumbing down the franchise with f$#!@#$ ROBIN.

Wednesday, December 17, 2008

Today

Today I didn't work out this morning as planned so I decided to remedy that situtation by having a breakfast of a Coke and a chocolate chip cookie. Looks like I'll be putting in an extra 20 minutes on the bike at lunch.

Tuesday, December 16, 2008

2008. Meh. Adios. And don't write.

2008 should have been, by all accounts, a really good year. I was informed last week my employment status is retained into 2009. In today's market a job in IT is really little more than a renewable 12 month contract at the company's discretion and I'm ok with that, given the alternative.

So if I've got a job and I'm doing something I've really wanted to do for a long time (go back to school) why am I in the dumps? Quite frankly I can't wait for 2008 to be over, done with and behind me. I've gone through a year or two I'd rather not have before but usually that year contained a rather major setback of some kind.

This year is different. And I want it G-O-N-E. Maybe it is my being primary on-call next week (22 Dec - 28 Dec).

Monday, December 15, 2008

Back to school! Again!

In what seems like an effort to attend school in each decade in which I live I will (once again) be heading back to college. This time the school is very likely to be University of North Carolina at Greensboro. I had already attended college in my early 30's and now, with any luck, I'll be back in school for the end of my 30's and beginning of my 40's.

Wish me luck.

Sunday, December 14, 2008

Despite the issues I'm in Camp Apple

Apple computers do have issues. For instance I have been using both an IBM Thinkpad T-42 (for work, company assigned) and a Apple Macbook (purchase for personal use at home) for roughly the same amount of time. The Thinkpad has worked FLAWLESSLY and still has 90% of the battery life it did when it was delivered new over three years ago. My Macbook does not. I believe the battery life (useful "use" time between charge) to be 50-55% of the original use time and I had to send the laptop back to Apple once after the internal hard drive died - and I lost all my data in the process!

Well, not exactly. After my wife's old Macbook died (she has since upgraded to a Macbook Pro) we purchaed an Apple Time Capsule (1 gb) and I was able to restore my laptop from stored backup after it was delived back to me with a new hard drive and fresh OS install.

What kind of failures has my Thinkpad expirenced in the same time frame? None. Zero. Zip. Engineering wise the Thinkpad seems surperior and I really like the LED ligth built into the laptop lid that illuminates the keyboard at night (alt-F11, I think, check it out of you have T42). Why am I still in Camp Apple?

I love OS X. I really do. I've been using UNIX ever since Sun OS 4.1.3, perhaps before that, I just don't remember the name of the OS itself, and I've loved and lived it from Day 1. OS X gives me the look and feel of a great, no, fantastic, excellent, nearly perfect OS built on top of some seriously powerful base software. In fact, quite a few times actually, I'll see someone who may fit the "stereotype" of a Mac user, a "GUI Man/Woman", who never taps into the power underneath the OS and I think to myself "you have no idea what you've got under your fingertips.. no idea at all.." and it's kind of a beautiful thought. No, they don't know. No, they don't have to know and they probably don't care.

And when Apple (finally) sees a glaring omission they'll do something about it.. after a while. Enter Time Machine. Time Machine rocks. If you aren't using Time Machine please tell me, how often are you backing up your home computers and are those backups automated? If I still did Government work I could leave to Korea again or somewhere new for months on end and NOT worry about what happens if someone drops their laptop in the hot tub. That's liberating!

So while the internal hardware may not stack up to the competitors I'll take Apple each and every day as the "Household CTO".

As for work I was recently informed that I would be "upgraded" to Dell something-or-another. After talking with Desktop Support I asked if I could keep my IBM rather than "upgrade". They said I could, but I would have to be upgraded if my hardware ever failed as there are no more T-42 "blanks" in inventory. From then on I've been giving the T-42 the white glove treatment. I want to keep that baby up and running for at least five more years.

Saturday, December 13, 2008

Today

Shopping for Christmas. I already left and picked up the mower and brought it home (broken blade belt). I must go and fight the crowds. Luckily I don't have to go very far. Or maybe I do. I'm not exactly sure yet.

Monday, December 8, 2008

My oddball left hand

I am left-handed. According to popular statistical belief only 7-10% of people are left-handed and being left-handed is more prevalent in males than females (and even more prevalent in people with neurological disorders. Nice.)

What surprises me the most is why there are *ANY* left-handed people left in the world today. Think about it. As best that can be determined left-handedness is not more or less prevalent now than any time in the past. If only 10% of humans show a particular trait usually that trait will disappear over time, if you believe in natural selection. So I wonder why we're still here. What function do we lefties serve that requires our continuance in the world?

My particular case is stranger yet. My right eye (shooting, archery) is dominant so I shoot or use a bow-and-arrow with my right hand. I'm left-handed (writing, throwing, batting) but one could argue that I stuck so completely at hitting a baseball perhaps I am really a switch-hitter with no advantage shown in either stance. I'm joking in case you couldn't tell, but I do suck at baseball. All I can say to that is batting left-handed "feels" natural while batting right handed does not.

When it comes to footwork (soccer, punting a football) I'm right footed. Guess I'm just a freak of sorts.

What got me thinking about this was the fact that I use a mouse right-handed only. I can only wonder if I trained myself this way having had to deal with mice that were designed to work with right-handed people (the early mice, not the ones we have today). Grabbing a mouse and using one with my left hand just feels.. wrong. In fact I can't do much of anything correctly with a mouse in my left hand yet I can use a mouse to draw free-hand with my right. The mouse is also a first-generation invention. My father learned to use the mouse at exactly the same time I did thus providing neither an advantage of habit formed over time. Ironically we both use a mouse right-handed.

Replace a mouse with a digital pen and I'm back to left-handed again.

Still, I wonder. Why am I left-handed? My father is a lefty. Did I inherit that from him or did I learn to be left-handed by imitating how I saw him operate? If almost 90% of the people of the world are right-handed why isn't everybody?

Saturday, December 6, 2008

If anything..

If anything the very real possibility of being laid off before Christmas, combined with the worse economy I've ever witnessed, is keeping us from overspending on the holidays.

Friday, December 5, 2008

The office computer I really want

I have two laptops - one for work and one for personal use. I'd greatly prefer to have just one - an Apple Macbook Pro 15". My office standard OS is Windows XP. I could load XP in a VMware slice on the Macbook and run my office "computer " in a self-contained jail of sorts and do my personal computing via the Mac.

Of course there are tons of red flags here. I would expect the security people would freak out at such a thing and just say no, or worse say "ok, but you have to load XP via Boot Camp" so I could never run the two operating systems simultaneously.

Another roadblock is the corporate lan forbids outside computers, etc, from plugging in. People, consultants and such, do this kind of thing all the time and we're in the process of setting up a guest wireless system so that rule is laregly ignored. Be that as it may I am one of the very few people who have a dedicated direct Internet connection at their desk totally outside of corporate LAN. A few of us that work in the perimeter space have access to a group DSL line for texting external applicatoins and connectivity so, in theory, I could plug my Macbook Pro (that I don't yet own) into the DSL line and launch XP on a second monitor then connect to the office LAN via the VPN.

Yeah, that isn't going to happen. Plus, dare I say, should it ever be necessary for security to confenscate the office computer it would be rather difficult to do so as the office software would reside on my personal computer, and one does not want to give up their Macbook Pro so the desktop folks can "scrub" the office data off for a few days after they walk you out the door.

So, to wrap this up, it's just not going to happen I don't think. Sad. It would be such a sweet setup.

Wednesday, December 3, 2008

My First Book Jacket

What do you think?

For years I've been stalked.

I have a stalker. My stalker is the reason I no longer set foot in the ocean despite spending my weekends close enough to see the Atlantic Ocean from my favorite chair. I'll walk on the beach, even walk into the surf, but I will not swim. Why? My stalker is a huge ship and he's just waiting for me to feel safe enough to venture out into the water. Once I'm in he'll get me.

But now I've finally found the self-help book I've searched for my entire life.



Thanks to John Trimmer I can know avoid Huge Ships!! Today is the start of a new life for me.

Tuesday, December 2, 2008

Goodbye, Plaxico!

I don't want to say "it had to happen" but it appears "Plaxico made it happen".. to himself! Plaxico Burress, another NFL millionaire wanna-be hip-hop thug managed to cost himself millions of dollars and end his season early not by shooting himself in the foot but rather the leg. For real.

For those not following the developing case Plaxico illegally carried a firearm into New York City (concealed and unregistered though me cliams he legally owns the gun in Florida) then managed to shoot himself in the leg. When something like this happens the Night Club is supposed to immedialty report the shooting. They didn't. They let Plexico leave the facility and return home. Much later, after Plaxico decided to go home for the night, he went to the hospital for treament (good idea after being shot) and the hospital declidend to report the shooting to the police. Let's just say more than a few heads are going to roll over this one.

Now Plaxico is facing 3.5 to 15 years after being indicted and laughing his way through the initial court proceedings. Hum... this somehow reminds me of that other guy.. what's his name? Oh Michael Vick. Perhaps Plaxico should ask Vick how funny his current predicment is. I'd bet it's not that funny at all.

I hope the good state of New York starts to treat this man-child no differently than any other person who would have been arrested for the same crime. For the record New York City has a habit of taking concealed weapons charges very seriously. So far Plaxico has been provided the Royal Treament by NYC Justice not having to spend time in the general "tank" with the rest of the day's indicted (he was provided a private cell) and his case was rushed up the docket so he would be allowed to spend as little time as possible in the court system. In additon Plaxico's mother was allowed to sit behind her son displacing family members of other defendants who got in early and nabbed the choice seats so she (Plaxico's mother) could be close to her son.

It's time for the NFL to end this culture of "Above The Law Gangsta Playa" that has existed in the league for so long. The NFL need not provide Plaxico any legal assistance, he is a millionaire afterall, and needs to deal with his case in the harshest of terms. In addtion contracts need to be rewritten with an "NFL Idiot Clause" that would release teams from monetary obligations to a player who knowingly engages in obvious felonious activities - once the player has been found guilty. That said bonuses and pay should be retroactively stripped from the date of infraction following conviction.

Those are my thoughts.