Today I had a fascinating issue with SCP (Secure Copy). I was a bit flabbergasted when several attempts to copy a 800 MiB file failed … after a while. You could see that the transfer rate was going up. Since I was connected via SSH to the machine which executed the SCP command, and apparently the transfer rate of SCP was eating up the bandwidth for the actual SSH connection. At least the SSH connection was dropped every single time until I used -l to limit the transfer rate of SCP. Fascinating indeed.
I hope this will help someone to figure out similar issues.
… this blog or any of the subdomains of assarbad.net, assarbad.info or assarbad.org. If this is the case, something went wrong with the migration to a different server. Otherwise you should perhaps not even have noticed. Except if you have one machine that caches DNS names and another which doesn’t. In this case this entry will only appear in the blog on the new IP, because this is the continued one. The other IP will at some point cease to get any requests for those domain names and I am going to take down the files and so on after 24 hours.
// Oliver
Update: Duh, I just noticed that I “defused” delphi-jedi.net by mistake. Have fixed it, but it’ll have to propagate through the DNS system again.
I’ve got one pretty interesting problem which is highly annoying in my opinion. As a fan of Opera, I have of course upgraded immediately to Opera 9.50 when it was released. Experience so far was always good. Not so this time.
First off, I disliked the fact that they have this dark glassy skin as a default now. Well, it may be stylish and nice and all - I don’t like it anyway. Here a comparison (click to enlarge).
The Firefox 3 Download Day was apparently less a flop than it seemed at first glance (i.e. within the first two hours). They got more than 8 million downloads in 24h, but for some reason the start and end times were apparently really shifted by approximately 105 minutes. Perhaps due to the outages in the beginning.
I finally got the new version and one of the stranger things is the check of the certificate of some pages. For example some pages with a perfectly fine SSL certificate get the “medium” value (i.e. blue) instead of green. No idea why or how this is meant to be. I liked the yellow address bar for this purpose better.
While the Icelandic police had my understanding with shooting the first polar bear in twenty years, after it had approached a settlement, this is definitely just stupid now. There is no excuse for the killing of the two polar bears that were sighted on Monday this week. Tranquilizers should have been available this time, instead real bullets were used again.
And guess what, not the hostility of the (second) bear (this week) was the reason for it being killed - it was the stupid curiosity of journalists. Once the bear started approaching the journalists, it was shot. Nice job!
My proposal for the next time: let the bear kill one or two journalists in order to give the journalists the necessary impressions to develop some respect for such an animal and then you’ve bought yourself some time to get the tranquilizers and the cage to transport the polar bear back to Greenland or to some zoo alive.
The download day for the world record attempt in the number of downloads by the Firefox community seems to be(come) a flop. It’s now 45min after the whole thing started and apparently the servers can’t handle the number of requests.
Or is something going on in parallel? Such as a DDoS of their webservers?
Update: Their site is back, although slow.
Update #2: So they’re prepared? Fun fact, I get offered the version 2 in the language which is set as primary in my primary browser (which isn’t Firefox). Wondering whether the world record attempt will even be valid in such a case …
Update #3: Okay, screw their world-record attempt. I have some sympathies for them, although it is not my favorite browser, but it’s simply getting ridiculous. I am getting offered version 2 as version 3 (screenshot below) and their download page for other languages and operating systems lists only version 2.0.0.14 (other screenshot) for any language. It’s definitely the worst-prepared world-record attempt. Maybe it will make it into the Guiness Book after all, although under a different category than anticipated?!
If you’re juggling files beyond the desktop and still use Windows Explorer, check out SpeedCommander. The new version has gotten even better and unlike another popular “commander-like” file manager it has full Unicode support and even has a native x64 version.
Today two more polar bears were sighted in the North of Iceland. Let’s hope this time there is a veterinarian with tranquilizers, not like last time. My father told me even the German yellow press reported about the polar bear being shot recently.
BTW: No polar bears have been sighted here on Iceland in years before this summer. So it’s a somewhat similar situation as in Bavaria, where a bear was shot after visiting briefly. He was the first in more than 150 years.
// Oliver
A clip about the killing of the first polar bear. The subtitles are not an exact translation of the parts spoken in Icelandic, in case someone wonders.
Following a court ruling, the EFF and several news sources world-wide have reported about the practice to search through the data on electronic devices at the US border. Bruce Schneier has picked up the topic in his latest cryptogram (a newletter). So far everyone seems to have ignored or neglected another possibility: targeted spyware.
In fact I am not just talking about the usual spyware, but software that was written with the sole purpose of going undetected as long as possible and possibly being able to transmit as much data as possible. Spyware in a literal sense. Continue reading ‘Searching electronic devices at the border’
Now that the Irish have rejected the Treaty of Lisbon in a plebiscite, European politicians suggest to leave the Irish behind and ratify the treaty regardless with only the consenting member states. This is a notable development because it shows all too well how the European Union (EU) works. The parliament as the body that represents the people has been overruled more than once by other non-representative bodies of the EU … and alone the fact that only around 4.2 million people out of more than 420 million are allowed to decide about their fate shows how “democratic” the EU and the states of which it is comprised really are.
The European Commission issued an EU-wide radiation alert late on Wednesday after Slovenia began shutting down a nuclear power plant following a problem with the cooling system. (Source: interactive investor, deutsche Leser gehen hierher)
Don’t panic just yet. The amount of information is scarce and from the first comments it sounds like it’s all under control.
Update: BBC also reports now. So there it looks more like it’s a preliminary warning that something worse might follow.
Update #2: It seems everything is under control and it was just to warn in the case something happens. But an EU-wide alert is obviously unusual, given how big the EU is and that “only” cooling water was supposed to have leaked. More info (deutsch).
The patches pertaining to the Debian key rollover are only available in the security repository. I just found out the hard way, that one of my machines denied access to another one, although I had “freshly generated” private keys. Ooops … until I figured that the repository for security fixes should have been in there. Now it is and the keys have been replaced.
Checked the logs and no one got in. Luckily this server is still in the preparational stage and I am always stopping sshd when disconnecting … that should be a pretty high hurdle for any attackers
As I am currently setting up a new server, I thought it would be a good idea to keep most of the configuration files (e.g. /etc) under version control. RCS comes in handy to achieve just that, but laziness requires some kind of script to make its use convenient
So I sat down and wrote this little Bash script for my Debian system (Ubuntu and Knoppix should work as well then). Please note that you may have to change the shebang line, you also may have to adjust the command to call the file editor. I am using the nice “alternatives”-mechanism of Debian by calling editor instead of any specific editor. For example I’ve found myself disliking vi, while others swear an oath that vi is the best editor around. In any case, this problem should not exist if you have set your favorite editor.
If you have no clue what I am talking about, use:
man update-alternatives
Alright, now that you have set your favorite editor for sure, go and make sure to install the rcs and diff packages by issuing (as super-user):
apt-get update && apt-get install rcs diff
… either you’ll have it installed or you will install them with these commands. There shouldn’t be any unsatisfied dependencies on any “normal” system apart from those packages themselves (and even diff would be on most systems already). Continue reading ‘Version-controlled edit via Bash script (Debian)’
Today I experienced the first earthquake I can remember (15:46 local time). It was of strength 6.1 to 6.7 according to first estimates. We should shortly see some entry on the website of Veðurstofa, the meteorology institute of Iceland which also handles seismic information. For now it seems to be literally overloaded by the number of requests (i.e. a legal “DDoS” ). … or maybe the admin, who also formerly worked for FRISK is compiling something at the moment and using up the much needed CPU power?! It was an obsession he had to always check the source code and then compile it himself instead of relying on precompiled binaries (which is not a bad idea).
Update: German and US sources agree that the strength was 6.1 and the source was about 50 km from Reykjavík. Here’s a seismogram (source): 20080529 1546 64.0 -21.0 6.1 ICELAND
Wie schon vor einigen Tagen gemeldet, gibt es bei Debian, Ubuntu, Knoppix und eben allen Debian-basierten Distros einen Fehler in der OpenSSL-Bibliothek, die das Erraten von Schlüsseln erleichtern soll. Aus diesem Grund sollte man mindestens ein
apt-get update && apt-get dist-upgrade
machen und danach mit ssh-vulnkey -a als Superuser überprüfen, ob kompromittierte Schlüssel auf dem System existieren.
). … or maybe the admin, who also formerly worked for FRISK is compiling something at the moment and using up the much needed CPU power?! It was an obsession he had to always check the source code and then compile it himself instead of relying on precompiled binaries (which is 
