Python in a hosted environment

I have a server that I can't exactly install whatever I want on. I need to be able to talk to a MySQL database from a Python script. I didn't have any of the database interfaces installed, and couldn't install them system-wide. What is a geek to do?

Fortunately, Python's package installer is pretty smart. SO, I created ~/python, and then used ` python setup.py install --root ~/python` to install each module I wanted to install. Next, in my actual code, I used the following to ensure python could find the modules...


import sys
sys.path.append( '/home/hostedby/python/usr/lib64/python2.3/site-packages/' )
sys.path.append( '/home/hostedby/python/usr/lib/python2.3/site-packages/' )


One note: ADOdb requires MySQLdb, but the errors you get from it are completely non-sensical and do not give you even the slightest indication about the inter-dependancy. You could have figured this out by reading the README ,but who does that?

My New Bumper Sticker

I found my new bumper sticker tonight... I'm bitter.

Mostly, I'm bitter that Initiated Measure 11 was defeated. I had really hoped that South Dakota would be the state to re-kindle the Supreme Court decision about abortion. I guess that plaque I have that says, "if you want to make God laugh, tell him your plans," is as accurate now as ever.

My "new" laptop

I'm posting from my "new" laptop. This is what I suspect will ultimately supercede my ASUS Eee PC, which seemed like a good idea at the time. That said, this little box isn't over-sized (yet), but I'm working on it. Here's what its go, at this moment:

$ dmesg | grep -i vga
vga1 at pci1 dev 0 function 0 "ATI Radeon Mobility M6 LY" rev 0x00
wsdisplay0 at vga1 mux 1: console (80x25, vt100 emulation)
$ dmesg | grep -i cpu
cpu0: Intel(R) Pentium(R) 4 CPU 2.40GHz ("GenuineIntel" 686-class) 2.40 GHz
cpu0: FPU,V86,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CFLUSH,DS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,SBF,CNXT-ID
cpu0 at mainbus0
npx0 at isa0 port 0xf0/16: reported by CPUID; using exception 16
$ dmesg | grep -i mem
real mem = 267411456 (255MB)
avail mem = 250511360 (238MB)
spdmem0 at iic0 addr 0x51: 256MB DDR SDRAM non-parity PC2100CL2.5

My immediate needs for this thing are: 1) a new battery (its a laptop, afterall), 2) a wireless card (a PCMCIA card that works with OpenBSD), and 3) more RAM. If by some miracle I got all three of those things taken-care of, I suspect this would be a fairly respectable little laptop! I think I could get it all taken-care of for under $200, so I'm going to see what kind of price I can get for my Eee PC...if I can get $200+ for it, I'm in like Flynn!

cable modem woes

TCP has a 16-bit port address, which allows for 65535 ports for source and destination ports. That fact appears to be lost on the vendor of my cable modem as they seem to think that 40960 is all that anyone would EVER need, however that fact is not lost on me. I have discovered this limitation "the hard way." I've crashed my cable modem three times this week while trying to conduct a pen-test for a client.

In all fairness, it seems like assuming a home user would not exceed 40960 simultaneous or embryotic connection is reasonable. That said, it still seems assinine not to support either the full-capabilities of the protocol's specifications OR that if it isn't going to handle all 65,535 ports that it at least not just die violently.

Ironically, this is not the first device I have discovered this limitation (which is why I know what is wrong here.) I've discovered this limitation in a variety of firewalls: Novell BorderManager, SonicWall, and various Linksys devices. This is, however, the first layer 2-3 device I've discovered the problem on.

fslint

Frequently, I find myself manually cleaning-up garbage files produced by various applications... be they the random swap files produced by `vi`, backup files ('*~'), or other similar riff-raff... with OS X, it had gotten so bad that I wrote a script to clean-up after Finder -- flushFinderCrap. Incidentally, I'm not the only one to loath the manual nature of this task, and some enterprising chap has written `fslint`. Bravo.

`fslint` basically automates the process of finding garbage files, or files that are otherwise undesireable, and reparing the issue(s). I highly recommend it.

AIG Executives Blow $440,000 After Getting Bailout

This is simply criminal. Words to describe my disgust and anger elude me.

In other news, I finally figured out the link between the so-called "corporate papers" market, the mortgage crisis, and the bail-out. I certainly won't bother attempting to articulate it here, but it was a proud day for me...now if only it weren't so bloody depressing.

Forums

I've been a member of various on-line communities for a LONG time. Slashdot, Antionline, BSDForums, Digg, Reddit, various USENET groups and IRC channels, and I've ultimately found all of them lacking for one reason or another. SO, this is a request to see if anyone out there has found the perfect community... I'll go through why I don't like each of the above mentioned in the hopes that it helsp you identify what I'm looking for:

• Slashdot - tired and old. Content was lagging.
• Digg - whinos with a lefty bent.
• Reddit - too busy complaining about Digg
• Antionline - maturity was a foreign concept
• 4chan - see antionline
• craigslist - meh
• redhotpawn - too many egos
• IRC/Usenet - too many groups to actually participate in them all.

...so, what I'm looking for is a community that has a lot of different topics (like 4chan and craigslist) but without all the bs that comes with them. For instance, I don't want to discuss politics all day long. I'd like some tech, some weather, some culture, some current events, with a relatively conservative tone. Is that too much to ask for?

P.S. I've been quiet for a while and an explanation is forth-coming. Just not right now.

Wachovia Posts $8.9 Billion Loss - NYTimes.com

Wachovia Posts $8.9 Billion Loss - NYTimes.com: "Its shares rose $1.19, or 9 percent, to $14.37 in afternoon trading."

Really? You can lose $8,900,000,000 -- IN A SINGLE QUARTER -- and have your shares go UP *9%*?!?

Stunning.

Maybe I don't get the economics behind the markets, but this strikes me as completely contrary. If General Motors comes out (as it has) and says that its posting a multi-billion quarterly loss, it gets PUMMELED on Wallstreet. Would someone with a better grasp on the economics at work here care to explain how this works?

12 Babies die during vaccine trials in Argentina

12 Babies die during vaccine trials in Argentina

This is utterly tragic. I realize that progress has a price, but when that price is a human life, do you really think its worth paying? Its the same price we pay in war, and that is not something people embark on callously (except George Bush.)

Encrypt the Entire Internet?

I saw an article on Reddit about members of The Pirate Bay wanting to encrypt all traffic on the Internet, end-to-end. This is an interesting idea on a number of levels that I'd like to explore: the practical, the legal, and the information security.

From a practical perspective, such an endeavor would require hurculean effort, to say the least. At a minimum, you're talking about adding a layer to every IP stack on every server and workstation on the planet (or at least those that "need" to participate in the encrypted Interweb.) This poses a number of challenges, to say the least. Not the least significant of which is how many other applications shim into the IP stack already, e.g. antivirus, intrusion detection, spyware, performance monitoring tools, etc. Interacting with all of these pre-existing shims will likely be hideously problematic. Supposing these obstacles can be navigated successfully, there remains the performance overhead that such a shim would invariably introduce and in turn the end-user satisfaction issue. This, of course, says nothing about the additional hurdles that Vista represents, but that's another matter altogether.

From a legal perspective, there are two-sides: those who want to protect their privacy and those who have a legal RIGHT to infringe on a persons privacy. Now, let me be clear: I'm in the camp of Believers who think that the right to infringe on a persons privacy is both necessary but HORRIBLY abused on a ROUTINE basis... so, my ramblings on this matter may need to be taken with a block of salt. That said, as for those who wish to protect their privacy I have two thoughts: if what you're doing is secretive there are already mechanisms in place to protect you, but if your secretive because what you're doing is illegal (e.g. kiddie pr0n) then you don't deserve privacy. Long-story short, encrypting the transport of data across the interweb will set law enforcement back a DECADE (and its already lagging horribly behind criminals.) I foresee any technology that prohibits law enforcement like this would as being legislated into oblivion, around the globe.

The perspectives from the information security world are slightly different, but they overlap somewhat with those of the perspective from the legal world. The basic issue is parallel to that of the LE world -- we can't do packet captures anymore. That makes our job harder. More than that though, it adds an element to the mix: non-repudiation. That is, if we DO get a capture (i.e. through a backdoor on the host from which we're trying to sniff traffic from), we can prove, with a high degree of certainty, that the traffic did come from the targeted host and that it could not ahve come from any other host -- because the cryptographic private keys would be unique (this is, mathematically, a misnomer, but it plays out in practical terms because of probability. I.e. if you take an infinite set -- all numbers -- and try to represent them in a finite set -- a cryptographic key -- you will have collisions, or instances of duplicate keys.) There is also the matter of "trust", i.e. can you trust a network shim conceived- and implemented-by people who's primary livelihood is on the "other side"? "Nay nay," as the great Jimmy Pardo would say.

Baseball

Monday night I had the dubious honor of being the home-plate umpire at a little league baseball game... I had a front-row seat to six of the worst innings of baseball EVER played. I'll cut right to the chase: the final score was 22 to... wait for it... wait for it... 2! That's right, there was a TWENTY point spread.

These were 9 and 10 year old kids. The difference between skill-sets was absurd, especially in pitching. The "visiting" team's pitchers had mechanics while the "home" team was just playing catch, badly. Mechanics? I didn't even know what mechanics were when I was ten. For example, the "home" team's last pitcher -- I had to open the strike-zone to the point of where if the batter didn't have to dodge the pitch and it wasn't in the dirt or over the batter's head, it was a strike. It took this last "home" pitcher close to fifty pitches for him to get out of the inning and he didn't get any strike-outs. It was painful.

Kids Rock!

Amanda (my wife) and I have four kids: we were blessed (so saith the Psalmist in Psalm 126) with three sons first and recently a daughter. Four out of five people that I introduce my family to seem to think in incredibly shallow terms because invariably they say say something to the effect of, "Oh, you finally got your girl!" Like its some sort of "congratulations", or like we had son number three hoping he'd be a girl and that we were disappointed that James is anything but who he is? No.

I realize that some people may find this difficult to believe, but there are those of us out there who view children -- regardless of sex, color or developmental disposition -- to be a precious gift from God. Those of us who do view children in such a light are not so shallow as to be hung-up on having one girl and one boy. We're grateful for any blessing God bestows on us.

SO, the next time you meet someone with lots of kids, don't think you'll be cute and say something ignorant like, "you know what causes that, don't you?" Such comments are not polite, original or funny -- making such comments only proves you to be an idiot and a stooge for the Culture of Death.

Flock Media Plugins

I'm running Flock 2.0 (beta) and had heretofore been frustrated by my inability to get various multimedia plug-ins to work, until I discovered a slick little script that via the Flock forums. The script crawls your box and finds different media player plug-ins and makes the necessary links in your flock directory structure(s). This is pretty cool. Now, all my media bits work and some that didn't even work under Firefox!?! Wow. This is, of course, a Linux-only fix... if you're running Flock on Windows (God help you!) you're on your own.

Man found in WI basement covered in BBQ sauce

According to this story, "A couple telephoned police in the middle of the night after finding a man in their basement covered head to toe in barbecue sauce."

There are two sides to this story, and we're only getting one... as is the case with most shoddy reporting. SO, in the absence of the "perpetrator's" side of this affair, I'm going to write-up a short-story on how this guy came to be naked, covered in BBQ sauce and in someone else's basement. Suffice to say, this story will likely involve much wild conjecture and patent lying, but it ought to be good for a laugh... if it turns out, I'll share.

Flock

I've been playing with Flock, a "social browser". I knew of flock but hadn't used it in a VERY long time and since I've been getting more into the social networking thing I figured I'd give it another whirl. Turns out that aside from being grotesquely slow, its pretty dang cool!!! We'll see how well it holds-up over time, but for now I'm liking it a fair bit. If you've got a chance, check it out.

File Recovery: How to Recover Deleted Files with Free Software

File Recovery: How to Recover Deleted Files with Free Software

Since I do some data recovery on the side, this was a pretty-good run-down of the free stuff out there that you can use to recover data. Some day, I'll write a longer post about data recovery methods, but for now this will suffice.

Obama + Hillary == No Vote; McCain + Romney == No Vote

Like many of the Nation's "younger" voters, I find Obama's views on the economy and foreign policy quite appealing... if he weren't pro-abortion, I'd vote for him without hesitation. This presidential election has the potential to build a dynasty out of whoever is elected -- this president will probably get to appoint a chief justice, and will get to appoint new Federal Reserve officers... these are not trivial events. Moreover, we are at a dangerous time in our nation's history: the dollar is declining, oil is skyrocketing, we've done nothing about our dependence on foreign oil, China and India are rising in the East, Europe's influence on the world is ebbing severely (because they have not sufficiently reproduced) and the problems facing the world-over are broader than ever before. How our next president handles this tumultuous politiscape is going to shape -- good or bad -- our future for generations to come.

That said, could I vote for Obama? I don't know. Could I vote for McCain? I don't know. I think a lot of my decisions depend on who either of them select as a running mate. The next couple of weeks will be interesting, because I expect to see both candidates announce their running mate and that will solidify who I'll vote for, regardless of what else transpires on the campaign trail.

Minnesota Catholic Home Education Conference

Last weekend, Amanda and I attended the Minnesota Catholic Home Education Conference. Amanda had attended last year, but this was my first year. Generally, I found the conference useful. One thing, in particular, that struck me was the absolutely overwhelming volume of curriculum available! Its truly staggering. We'll be homeschooling our kids for the third year starting this Fall; our oldest will be in second grade, with our only other "school-age" child being in first grade.

Homeschooling has been an interesting experience for "us". Certainly by "us" I mean mostly my wife, who is primary care-giver, educator, nurse, and friend to all of our children, however as the kids get older I am trying to get somewhat involved. Its not easy, especially since I have no patience on a good day. :-\

If you're thinking about homeschooling, and live in the upper-plains, consider attending the conference next year.

Hillary

On my way home from work tonight I passed Hillary's motorcade. In a rash of impulsiveness, I gave them "the bird", the whole time I could see them. At first I hoped she had seen me. Then it occurred to me that with her four troopers, many Secret Service agents, and over-head F-16's, that that probably wasn't the best move.

After my initial freak-out, I decided I'd do it again if I had the opportunity. Besides, how many people can say -- honestly -- that they've flipped off a presidential candidate and/or former first-lady of the United States? Probably more than you'd think (given its Hillary), but I take some small satisfaction in being one of the very small percentage of humanity that Did The Right Thing.

Hillary == The Whore of Babylon (Revelation 17:4-18) And if you're not into eschatology, I think that label still applies. I know a lot of people -- in all seriousness -- that would build a bunker and prepare for The End if ever she were elected.

iwl3945 performance is hideous

After upgrading to Ubuntu 8.04LTS, I noticed a DRAMATIC difference in the performance of the wireless on my HP nx9420... by "dramatic" I mean the difference of being able to download at between 4 and 8MB to downloading at never greater than 512K. That's pretty extreme. That said, I have previously noted that the iwl3945 drivers that shipped with 8.04 were broken and that I had to use the Linux Wireless Project's compatibility drivers. I suspect this is the root of my problems.

I've found a bug that indicates that the iwl3945 problems are not unique to me or my nx9420, and though most people have been able to remedy the problem simply by installing the LWP's compat drivers, I do not think this is a very solid solution on account of the fact that it leaves you with a functional yet extremely crippled wireless rig.

I'll continue working on this, but if anyone else has experienced this problem and has something they'd like to share as far as solutions are concerned, I'd LOVE to hear from you.

NetworkManager: busted old crap; WICD: hot freshness

I suspect that anyone who uses GNOME's NetworkManager application and tray applet to manage multiple network connections shares my frustration. I did some hunting after I wasted gobs of time yesterday fighting with NetworkManager... I found WICD. WICD is a sweet little suite of python scripts that can manage wireless and wired network interfaces, and so far it hasn't been the epic pain in the ass that NetworkManager has consistently been. w00t!!! I'm running it in XFCE on my EEE in addition to GNOME on my work laptop.

Return of an old domain

A long time ago (like the late 1990's) I had registered the domain, "sodaphish.com". This was a vanity domain I had registered to host my computer security-related site back in the day... when I gave up the Black Arts, I abandoned the SodaPhish moniker and with it the domain. A couple of years later, I re-registered the domain, for nostalgic purposes, and had been running a site there for several years until 2007. In 2007, I forgot to renew the domain and someone registered it out from under me. I was pretty livid at first, but had since gotten over it. Really.

Back in February, the domain was up for renewal. I contacted the registered owner and offered them $150USD -- a very generous offer, in my mind. They declined. I explained to them, in simple, clear terms, that the audience for people looking to buy this domain was VERY small -- me. They never replied. Yesterday, the domain was released by the Registrar of the pirate that pilferred it from me, and I snatched it up via GoDaddy's Backorder process. Hooray!!!

And thus, an old domain returns... SodaPhish.COM

Cisco VPN on Ubuntu 8.04

One thing I hadn't tried following my upgrade to Ubuntu 8.04 was VPN. I use the Cisco VPN client with has native Linux support. Unfortunately, the install of the VPN client in Ubuntu 8.04 is horribly broken, and not just to the point of re-installing... 'cause it won't, without a patch. I had started hacking through the code on my own, but decided to do a quick check to see if anyone out there had already conquered this particular Linux Monster. In fact, someone had.

The patch went in without a hitch and the install took-off without incident.

I have the VPN connection up and all is well...

replacing GNOME Power Manager in XFCE4 on a laptop

I am running XFCE4 on my Eee PC, and since it was recommended to not use the GNOME Power Manager, I decided I'd implement the hack that allows you to use the XFCE battery manager and still have the power button bring-up the shutdown dialog... that hack is documented on the eeeXubuntu page... but there's a step missing: you have to tell X that your user is authorized to run programs like that on your display (this might seem like a bit bizzare to a Linux novice, but to those of us who grew-up running X11R6 from back in the day, it isn't too odd.) To do this, you have to add an entry to your /etc/X11/xserver/SecurityPolicy file:

property SCREEN_RESOURCES cjsteele ar aw

Once you've made the change, you just have to restart your X server -- I know you can do this without rebooting, but logging-out and logging-in didn't accomplish it, so I took the lazy path and rebooted. Now, it should Just Work.

Linux 101: Enable DVD Playback in Ubuntu in Two Commands

Linux 101: Enable DVD Playback in Ubuntu in Two Commands

...in the interest of Freedom, every red blooded, American Linux user is obliged to do this.