I've decided to move any "journal entry" type outpourings to my occasional blog at blog.gornall.net

[This is actually just here for reference - it's a post from my history that I've referred to a couple of times, and it's a pain to find...It's been slightly updated for formatting, clarity and grammar. Here's the original Post]

Some history:

Waaay back in the mists of time (1988) I was a 1st-year undergrad in Physics. Together with a couple of friends, I wrote a virus, just to see if we could, and let it loose on just one of the networked machines in the year-1 lab.

I guess I should say that the virus was completely harmless, it just prepended 'Copyright (c) 1988 The Virus' to the start of directory listings. It was written for Acorn Archimedes/BBC micro's (the lab hadn't got onto PC's by this time, and the Acorn range had loads of ports, which physics labs like :-)

[edit: the above is misleading - it only worked on BBC's. The lab had 50 or so BBC's and 2 Archimedes, and I was trying to convey that as well, and mixed up the words]

It spread like wildfire. People would come in, log into the network, and become infected because the last person to use their current computer was infected. It would then infect their account, so wherever they logged on in future would also infect the computer they were using then. A couple of hours later, and most of the lab was infected.

You have to remember that viruses in those days weren't really networked. They came on floppy disks for Atari ST's and Amiga's. I witnessed people logging onto the same computer "to see if they were infected too". Of course, the act of logging in would infect them...

Of course "authority" was not amused. Actually they were seriously unamused, not that they caught us. They shut down the year-1,2,3 network and disinfected all the accounts on the network server by hand. Ouch.

There were basically 3 ways the virus could be activated:

• Typing any '*' command (eg: "*.", which gave you a directory listing. Sneaky, I thought, since the virus announced itself when you did a '*.' When you thought you'd beaten it, you'd do a '*.' to see if it was still there :-)
• The events (keypress, network, disk etc.) all activated the virus if inactive, and also re-enabled the interrupts, if they had been disabled
• The interrupts (NMI,VBI,..) all activated the virus if inactive, and also re-enabled the events, if they had been deactivated.

On activation, the virus would replicate itself to the current mass-storage media. This was to cause problems because we hadn't really counted on just how effective this would be. Within a few days of the virus being cleansed (and everyone settling back to normal), it suddenly made a re-appearance again, racing through the network once more within an hour or two. Someone had put the virus onto their floppy disk (by typing *. on the floppy rather than the network) and had then brought the disk back into college and re-infected the network.

If we thought authority was unamused last time, this time they held a meeting for the entire department, and calmly said the culprit when found would be expelled. Excrement and fans came to mind. Of course, they thought we'd just re-released it, but in fact it was just too successful for comfort...

Since we had "shot our bolt", owning up didn't seem like a good idea. The only solution we came up with was to write another (silent, this time :-) virus which would disable any copy of the old one, whilst hiding itself from the users. We built in a time-to-die of a couple of months, let it go, and prayed...

We had actually built in a kill-switch to the original virus, which would disable and remove it - we didn't want to be infected ourselves (at the start). Of course, it became a matter of self-preservation to be infected later on in the saga - 3 accounts unaccountably (pun intended :-) uninfected... It wasn't too hard to destroy the original by having the new virus "press" the key combination that deleted the old one.

So, everyone was happy. Infected with the counter-virus, but happy. "Authority" thought they'd laid down the law, and been taken seriously (oh if they knew...) and we'd not been expelled. Everyone else lost their infections within a few months ...

Anyway. I've never written anything remotely like a virus since [grin]

Simon.

I am absolutely stunned that Slashdot's editors would give credibility to a completely false story, pushed by a paid industry PR professional. As Rugrat said,

The "article" is not an article, but a press release written by an employee of a public affairs company.

"Tom Harris is mechanical engineer and Ottawa Director of High Park Group, a public affairs and public policy company."

For a website that spends so much time and energy combating FUD from Microsoft, and the MPAA and RIAA, it is baffling that FUD that was paid for and is pushed by the oil industry would make the front page here.

Come on, Slashdot. You can do better.

For the last year or so, I've been happily using Debian, with a mixture of sources so I was stable, but current, just like nearly everyone who uses Debian.

Then I tried to upgrade or something insane like that, using aptitude, and the whole thing went tits up on me. No amount of cussing, kicking things, or actual tinkering with the software could save my machine.

I thought about asking for some advice in the Debian forums, or on one of the lists, until I ran out of fingers in my entire family tree to count the times someone said some variant of, "Shut up, noob! Your stoopid and not leet leik I am! Go back to Winblows! Ha! HA! HA!!!1"

Yeah. Guess I'm not venturing into those waters, so I figured I'd just have to grab my network install CD and start over (luckily, I set up /home on its own partition a long time ago, so if I fuck something up really bad, I don't lose all my porn very important data.

The day I planned to reinstall Debian, I read that Dapper Drake had been released, and everyone loved it so much, they totally wanted to marry it. A friend of mine, who is wise in the ways of science and the air speed velocity of unladen swallows has also been singing the praises of Ubuntu for a long, long time, so I grabbed a Live CD to see what all the fuss was about.

Holy shit. What an awesome bit of work it is! It's the first Linux distro to find every single bit of hardware on my old Sony Vaio desktop machine, including all the USB ports. It looked great, too, and was the most "Mac-like" Linux I've ever used.

I realize that a lot of you are mocking me right now, but listen for a second: I'm not interested in hacking on my kernel to make sure something is detected during boot, or modifying all sorts of settings in a text editor just so I can make the damn thing find my camera . . . and don't get me started about CUPS. I love technology, and I love and fully believe in "free" as in speech, and I'm grateful for free as in beer. But also really into "works," as in just does. And on my machine here, Dapper Drake just works, and it's awesome. This is the Linux distro that I can take to my parents, and to my friends who are drowning in a sea of FUD, and convince them that they don't really have to be part of the Borg if they don't want to.

And ultimately, I believe that has to be our goal if we're going to convince people to give Linux a real, serious try as an alternative to Windows. We need to be able to tell them, with confidence, "Put this CD in your machine, and give it a try. I think you'll like it, because it just works."

So, this just occurred to me. It probably ought to have occurred earlier, but hey, I'm getting on a bit these days, and since I'm blogless [oh the shame!], here is as good a place as any to post it ...

France and Apple are about to have an argument... France wants home-grown companies to have some chance of competing with Apple, and under the guise of "won't someone think of the children^W consumers", they're trying to level the playing field. (I think it's already established that I'm a cynic...)

Apple, on the other hand, see no reason to give their competition the keys to the door. As I've posted before, Apple sells a media-experience - from alpha to omega, Apple try to make it easy for people to buy itunes tunes for their ipod. This model may in fact survive this new law, any French machinations to the contrary, but from Apple's perspective, why take the risk ?

So, the French government has spoken, and apparently Apple ought to have "seen it coming"... How could a mere company have any hope of outwitting them ? Well, there's this thing called the "internet"....

Consider if Apple did a deal with the credit-card companies - they make an Apple- (or perhaps, given the 'other' Apple, iTunes-) branded credit card with the following perks:

• Now, if you're in France, you *always* get free delivery of physical Apple goods - even though it's being shipped from (wherever). Just like when you buy over $X normally.
• The previously "French" site can be re-hosted in the US (say), and users from France with Apple cards get to buy the same tunes as they currently do in France (to work around any international rights issues). You could play games with auto-recognising users at www.itunes.com to make it easier...
• They could even offer itunes-points. Let's face it, you're more likely to spend sufficiently to be able to claim a free $0.99 tune, than a 2-week holiday in Hawaii, and unlike other $0.99 "gifts", a free tune has value...

This way, Apple get to keep most of the business (all those people with ipods whose addresses Apple know) and poke the French government in the eye (all the profits that were being taxed in France are now being taxed in the US (or wherever).

From Apple's perspective, it's a better option than "pulling out of France" and sends the message that Apple aren't just going to roll-over when anyone comes knocking. The movement of the tax revenue might sway other nations not to do the same thing, as well. Sure - it's pure 'noise' in the grand scheme of things, but every trend starts with a single event, and no government likes to *lose* tax revenue...

Now Steve (perhaps that's "Mr. Jobs" to the likes of me :-) might not like it - from what I can see he's generally opposed to brand-dilution (well, duh!), but if Apple need options in the face of a hostile foreign government, perhaps it's worth considering. Just a thought :-)

Simon.

So, I was reading that Sony had installed DRM onto Macs as well as onto Windows machines, and I was curious to see how they got around the system protections to prevent software like this from doing exactly this...

They didn't.

Contrast the experience of a windows user: Consumer puts a cd into their computer with the intention of playing the cd. The cd takes advantage of a feature in Windows and installs software in the background without consumer's knowledge. Consumer is owned.

To the experience of the Mac user: Consumer puts a cd into their computer with the intention of playing the CD. Up comes a dialogue box asking for Admin privileges. Consumer gets to deny the 'owning'...

Now it's possible that 'consumer' would just click ok, type in their username/password, and allow Sony to do their dirty deeds, but since they've almost certainly put a CD into their computer before and it didn't do that, I doubt it. I'm pretty convinced my mother wouldn't type in a password - she'd probably call me to ask why it was doing that...

In any event, I prefer the Mac method - you at least get a chance to deny the installation of the rogue software, and even if you screw up and it installs, the contents are a simple "ls -lrt /System/Library/Extensions" away, to see what's been installed...

Simon

(Cross-posted to WWdN)

The final table of the 2005 World Series of Poker started at 4pm yesterday afternoon, and wasn't finished until just after 7am today. I'm not sure, but I think that's a record. I'd call Pauly to be sure, but something tells me he's crashed out until at least Sunday.

Two qualifiers from PokerStars made the final table, and one guy, who qualified using free play points, made it to the final two tables, finished in 13th place, and won $400,000. Not bad for a freeroll!

Speaking of Pauly and PokerStars, we're doing a charity tournament on Sunday in memory of Pauly's friend Charlie Tuttle:

Charlie is from Clarksville, Tennessee and he's a twenty-six year old music enthusiast who loves hanging out and playing poker with his friends. Charlie was dealt a bad hand in life when he was diagnosed with terminal cancer, which he has been battling this past year. A couple of weekends ago, he was hospitalized because two tumors in his chest pressed up against his lungs, causing him breathing problems. I don't have to tell you how serious his condition was.

Felicia Lee, who is fighting her own battle with cancer, knows several top professional poker players, so she got several of her friends to call Charlie: John Juanda, Marcel Luske, Max Pescatori, and Barry Greenstein to name a few. In fact, when Barry Greenstein won his bracelet in the $1,500 Pot-Limit Omaha event, he dedicated it to Charlie.

As Pauly wrote:

Situations like this one make you reassess what's really important in life. Las Vegas is a city built on greed. Poker is a game that often attracts some of the lowest forms of life. However, in the past two weeks, there has been a small group of professional poker players who have earned my respect and admiration. Amidst all the darkness and debauchery, I have caught a few glimpses of the bright side of humanity. The hearts of some of the biggest sharks in Las Vegas are filled with compassion.

Thank you, Charlie, for inspiring us all. We'll never forget you.

Charlie passed away on June 22 and his friends have organized a charity poker tournament this Sunday at PokerStars. It's going to be a lot of fun, and I hope to see lots of WWdN readers there.

Details:

SUNDAY, JULY 17th
18:00 EDT (15:00 CDT)
PokerStars
Buy-in is $20 — all of it goes to charity.
"WPBT Charlie Tournament" under Tourneys -> Private tab in the lobby

So, I don't write many journal entries any more, but the cowardly attack (let's face it, any terrorist attack is that of cowards) on London this morning merits mention, I think.

The terrorist announcement mentioned the Brits being in fear from North to South, East to West. Whereas that may have described some countries' reactions, it didn't come close to ours. Let's just look at some of the reaction...

There was an interview of a woman who was on one of the bombed trains, 2 carriages down. She was calm and concise in how she described the events. She was confident that they would be caught. She said others around had a similar disposition.

The Mayor of London released what I thought was a pretty good statement. Let me just pick out the part he addressed to the cowards:

Finally, I wish to speak directly to those who came to London today to take life.

I know that you personally do not fear giving up your own life in order to take others - that is why you are so dangerous. But I know you fear that you may fail in your long-term objective to destroy our free society and I can show you why you will fail.

In the days that follow look at our airports, look at our sea ports and look at our railway stations and, even after your cowardly attack, you will see that people from the rest of Britain, people from around the world will arrive in London to become Londoners and to fulfil their dreams and achieve their potential.

They choose to come to London, as so many have come before because they come to be free, they come to live the life they choose, they come to be able to be themselves. They flee you because you tell them how they should live. They don't want that and nothing you do, however many of us you kill, will stop that flight to our city where freedom is strong and where people can live in harmony with one another. Whatever you do, however many you kill, you will fail.

And finally, a piece I found on a football forum:

No-one in Britain has over-reacted, it's not in our nature to do so. There'll be many dark, scared days ahead for everyone who lives or works in London or any of the major cities in the UK, and there will be overwhelming feelings of sympathy for those who have lost friends, family or loved ones in these cowardly attacks today.

But it won't change anything. There will be no sudden feelings of "these people have a genuine issue", no hands of friendship offered, no olive branches extended. There will be no immediate "Let's invade " or severing of diplomatic links with any countries. There will simply be a very through, in depth, but quiet investigation.

And when we find out who did this they will pay.

Rest in peace those thirty people who died today. Their lives have meant nothing to their killers, but their deaths have brought tragedy to those who loved them.

From those who were attacked, to those in power, to the common man, the theme is the same: complete disdain for the cowards; controlled anger that will focus the effort to find them; and an unshakeable determination that above all, the cowards must not win.

What does that mean ? It means that life will go on, and that (apart from the personal tragedy of the victims families) nothing will change. There's no magic bullet for terrorism, but ignoring the effects of the cowards actions whilst seeking them out and (I suspect) simply eliminating them, quietly, would appear to be the best option.

I'm actually in two minds about that last sentence. There is a lot of good PR to be had from publically arresting, trying, convicting, and treating a terrorist like any other murderer. The IRA members jailed in the H blocks long tried to argue they were political prisoners rather than murderous cowards...

On the other hand it could create a martyr. The other option is simply to quietly kill the coward and claim (perhaps even accurately) that there was no other way, if it ever got out to the public. I can't imagine many things more terrifying to a terrorist than to have colleagues just turning up dead. "Am I next ?" is a real problem for a coward...

Simon

I'm sure this is just begging for vandalism (unless those douchebags have grown up and finally kissed a girl) . . . but there is an error on my Wikipedia page that needs to be corrected. I'd do it myself, but that's against Wikipedia editing policy.

I am not in Brother Bear. Willie Wheaton, Wil Wheaton, Jr., and Reginald Maudling (Mrs.) are all not me. I've tried to get this taken off imdb, but someone (well-intentioned, I'm sure) keeps putting it back, and Wikipedia editors (also well-intentioned) are putting Brother Bear back up . . . so we're in an infinite improbability loop, and my towel is getting dirty.

Would someone please correct that, and cite this journal entry so it doesn't get corrected back?

Some of you may have noticed (hah!) that I no longer have a link to http://hostip.info in my signature. This is because I've just sold the domain :-) BTW the purchaser tells me he'll be operating it pretty much the same as it was before...

Moving to the US (even to a well-paid job, and being used to a high-costs city like London) has proven to be relatively expensive. Houses in Silicon Valley start at about $600k and mortgages are bare-minimum 10% down - most are 20%, and then there's the car to buy (I wanted a convertible, so that's another $30k). It all adds up.

So, out of the blue, I get a request to purchase hostip.info - it looks like a typical spam email, but it mentioned escrow, so I reply from a never-before-used mail alias, and we start to talk. We strike a deal, everything happening via www.escrow.com, and all is sweetness and light. The purchaser puts the money in, I transfer the domain, and escrow.com are in the process of paying me the money.

All this is in stark contrast to selling on ebay, where (if you read my previous journal entry) sellers are completely vulnerable to being screwed over by A.Nybody.

There's not much more to this, except that maybe, just maybe, it means I can get a house with a pool, rather than without - a dream of mine for a long time :-)

Simon

So, it's all done and dusted, I'm now officially a resident alien in California. I have to say that it has had its' ups and downs, and that's *with* a large company bending over backwards to help...

Question: Why doesn't my credit rating from the UK follow me to the US, when I'd happily sign anything appropriate... Trying to buy anything on credit (and I need a car and want a house) is pretty much impossible atm. I managed to get the car at exorbitant interest rates, and it's vaguely possible I *may* get a mortgage if hoops A-Z are jumped through. Did I mention the hoops were on fire ?

Question: Why is it totally impossible to get around CA without a car, yet I need to take & pass a driving test in CA within 10 days of arrival to legally drive here. Did I mention that you need a social-security number for a driving licence ? And that it takes between 12 and 60 days for an alien to get a SSN ? Er, shurely shome mishtake, ociffer ?

Question: Where are you all hiding the brown sauce (HP, Daddies, etc, not steak sauce), and real bacon (the stuff with meat in it). Ok, this one's tongue-in-cheek (looking for the sauce!) - different countries, different foods... But dammit I like brown sauce!

Question: How on earth do bars do business in CA ? You need a car to get anywhere, and you can't drink pretty much anything when you get there !

Question: Was it really necessary to keep all us visa applicants waiting outside in the pouring rain for 2 hours before sitting in the embassy for 5 hours (waiting for a 5-minute interview), dripping on the carpet ? Sure I know all this is in the name of security, but this was London for crying out loud - we're used to being bomb-targets, we just prefer to be dry at the time...

So despite my moaning, I'm happy to be here - I've landed a great job at a fantastic company that's going places, and I'm on a steady salary, which is nice when you've been a partner in a s/w consultancy. To quote a friend of mine - sometimes it's nice to come in out of the rain for a while. If you've never managed a company you probably won't understand, but if you've got your degree, think of that weight that lifted from your shoulders after your last exam, and you'll come close...

So, alls well in the land of the free, apart from the brown sauce, that is :-)

Simon

So, I'm annoyed.

I'm moving to the USA, which amongst other things means selling various things I can't/don't want to take with me, and Ebay would seem to be an ideal way to get rid of reasonably expensive items (motorbike etc.)

First ever time as a seller (thought I've bought lots before), and it's been a disaster. There exist trolls who simply bid on things without any intention of paying, and Ebay (the organisation) tolerate this - there's little protection for sellers.

Ebay charge you a fraction of the "sold" price, even if the person doesn't pay up. So, the only person out of pocket is the seller - it's in Ebay's interest to continue the status quo, and there is no obvious attempt to track down the scumbags who have made false bids. The only action taken is to invalidate the bidding account, and what good is that ? The saying "shutting the stable door after the horse has bolted" comes to mind!

So, you can either re-offer the item to another bid (and if you do this, all trace of the previous unfulfilled auction seems to disappear! Hmmm.) or relist the item. You can't do the former then the latter. Neither consequence is spelt out (or if it is, it's sufficiently misleading that someone who's just been the subject of a scammer can easily miss it).

So, you decide to offer to the next lowest, and that doesn't work (the guy only gets 24 hours to respond, and emails you later saying he'd missed the chance, grrr).

Then, with impatience and anger rising, you re-list (at your own expense again) the item on Ebay, and EXACTLY THE SAME THING HAPPENS.

This time, I was alert, and did a 'By Buyer' search - the offending character (ladd_eugene) had bids outstanding totalling over £20,000. I cancelled her bid, and the system told me she had bid £2000 on my auction (when the bike eventually sold for £561...)

So, if I was ebay, and I wanted to deflect criticism of not caring (due to it ultimately benefiting ebay) about sellers, I would do some of:

• Require that bids are not more than 1.5 times the current bid or bid + {$£}500, whichever is smaller.
• Offer a deposit of {£$}100 which users could voluntarily subscribe to, which removes the above limit. They have to pay the deposit in advance, and it counts towards the item. They lose it if they screw around of course
• Only allow bids on (user's feedback) + 1 auctions at a time
• Limit total bid exposure by username.
• Send the seller an email whenever a categorised item has a bid outside 2 std deviations from the normal for that category. Should be possible to use browser keyword searches to define the categories.
• Allow sellers to see the maximum bid price from buyers.
• As a consequence, prevent bids from the same IP as the sellers as well.

The current situation just stinks, if you're a seller. Some lowlife can ruin your sale with impunity, and there's no comeback. This is a pain under normal circumstances, but it's a *royal* pain when you're about to leave the country, and time is of the essence. Failed auctions I could have done without...

Still annoyed, but at least I sold the item this time, even if it cost me about £35 more than it ought to have, and hey, in a week's time I'll be in California [grin]

Simon

(Interestingly enough, there isn't a 'sport' topic in this geek forum. Ho hum :-)

England have just won against Croatia to set themselves up for a quarter-final showdown against the host nation Portugal. Now Croatia number some 4 million people, which is about 1/8 the number of people living in greater London... Just as well we beat them really....

Except that football doesn't work that way - it's described as 'the beautiful game' not just for the enormous levels of skill and athleticism it demands at these levels, but for the egalitarian nature of the game. It's all about skill, team play, perseverance and strength, in that order. You see midget striker (5') players arranged against giant (7') defender players, and the size isn't that important, it's the skill that matters. When size is brought to bear, it's usually adjudged foul play and a penalty/free kick is awarded, but strength on the ball plays a part too, and of course size helps on set-plays such as corners and free kicks...

Out of those 4 million people, I would say that Croatia have about 5 good players, and yet we beat them 4-2. This is the distribution effect, imagine a bell-curve of football excellence - when you increase the number of potential players, the vast majority are within a few standard deviations from 'average'. Getting more than 10 truly-world-class players is pretty well unheard of (perhaps Brazil). Getting 1-5 is fairly common. Odd, but true. England have some 60 million population, yet we fielded maybe 7 excellent players, with maybe 5 world-class ones. The difference in the sides is that our 'less-than-world-class' players were better than theirs... Perhaps it's not so cut-and-dried as intuition might expect.

It's the same in the English Premiership. In any given game, the chances of the favourite team winning are never more than 70:30. You see truly world-beating teams (eg: Arsenal, Chelsea, Manchester United, Liverpool) who have genuine hopes of being crowned the best team in Europe in the Champions League being beaten by teams who are relegated to the next-lower division at the end of the season. What makes winning the league such an event is that the time-averaged 70% chance will beat the time-averaged 65% over 38 games. Probably. It's the 'probably', (ie: the chance of *losing*) that makes the game such a joy to behold. And I think that's odd.

Simon