2007

There were 259 posts published in 2007 (this is page 12 of 13).

Nor'easter Causes Endless Boston Traffic

It was 70 degrees on Wednesday, only four days ago. What happens on Friday? We get a Nor'easter, which blankets the Boston area with a blizzard.

I was supposed to drive back to Lowell at 6:00pm last night from Cambridge, a trip which usually takes me about 45 minutes with light traffic. When I'm on my way, I open Google Maps on my Blackberry to check live traffic conditions. Any red areas along my route mean stopped traffic. Usually there are a few red spots on all the different highways I take to get to Lowell (RT2->I95->RT3).

At 4:00pm, with all the snow coming down, I decided to take a look at the map ahead of time -- here is what I saw:

I had never seen so many red areas at once! I decided to postpone driving to Lowell and instead opted to wait until traffic cleared a little. I kept watching the traffic map, to see when the traffic would change. By 7:00pm, three hours later, here is what it looked like:

Holy crap! I feel for the people who had to drive in all that traffic (but not if you were driving to a bar!).

Were you stuck in the traffic? Let me hear about it -- I was sitting inside on my computer the whole time. 🙂

Replaced the View Source Editor for my Browsers

Up until now, on my PC, Internet Explorer and Firefox have had different "View Source" editors -- that is the editor used when you right click on a web page and click View Source. To keep things consistent, I decided to find a quick, syntax highlighting, notepad replacement which I could use to quickly view source code on both browsers.

After some quick research, I decided to go with Notepad2. I may eventually switch to gvim, as I'm an avid vi fan, however for now I'll see how things work out with Notepad2. I've already replaced my Windows Notepad with Metapad, which I think is a perfect replacement, however I wanted something with syntax highlighting for the View Source editor.

To change the editor which is used for View Source in Internet Explorer, do the following:

Start -> Run -> regedit.exe

Click OK, then open the following key:


HKEY_LOCAL_MACHINE
|- Software
|-- Microsoft
|---- Internet Explorer
|----- View Source Editor
|------- Editor Name (Default) = C:Program FilesNotepad2Notepad2.exe

You can change Editor Name to the path of whatever editor you want to use.

Close the registry and now Internet Explorer's View Source editor will use the editor you specified above!

To change the View Source editor in Firefox:

Type about:config in the URL box, press enter.

You should see a whole list of different options you can change. In the filter box, start typing view_source.editor.external until you see it in the list. Double click it to change the value to true.

You should also see view_source.editor.path. Double click it and enter the path to the editor of your choice.

Click OK, restart Firefox, and you're all set!

A Late DST Update for Windows 2000 Server

I forgot to update the Windows 2000 server running at a business in Lowell, which resulted in the wrong timestamps for employees when they punched into the time clock system. It's no big deal, as the number of hours worked is correct -- it just shows the wrong time. After everyone punched out for the day, I proceeded to remotely update the server with the new DST settings.

Apparently, since Microsoft stopped supporting Windows 2000 Server a few months ago, they refuse to release the patch to update the DST, and instead want you to pay something in the order of $4,000 to purchase the patch. Ha. Sure.

A quick Google search turned up a very simple solution, using a free tool that Microsoft released back in the days of Windows 95! It's a cool tool that allows you to edit the timezone information:

I didn't even need to reboot the server after making the changes! I simply double-clicked the clock to open the Time & Date Settings, changed the timezone to something other than Eastern, clicked Apply, then selected Eastern again and clicked Apply once more. Bingo, the time was updated! Once I restarted the web service, the time clock software also showed the correct time.

Download TZEDIT from Microsoft.

Comcast/Level3 hit by minor DOS attack?

When I came home from the gym last night, I tried accessing Google, however it timed out. After suspecting my PC, and then my router, and finally my cable modem, I discovered the problem was much further away. A quick traceroute showed where the problem was:

raam@pluto:~$ traceroute google.com
traceroute: Warning: google.com has multiple addresses; using 64.233.167.99
traceroute to google.com (64.233.167.99), 30 hops max, 38 byte packets
1 192.168.2.200 (192.168.2.200) 1.816 ms 1.711 ms 1.718 ms
2 73.161.232.1 (73.161.232.1) 7.747 ms 7.374 ms 12.562 ms
3 ge-1-38-ur01.cambridge.ma.boston.comcast.net (68.87.151.137) 7.865 ms 8.434 ms 7.420 ms
4 te-8-1-ur02.cambridge.ma.boston.comcast.net (68.87.144.70) 8.473 ms 7.992 ms 7.890 ms
5 te-9-2-ur01.malden.ma.boston.comcast.net (68.87.144.73) 8.014 ms 18.855 ms 9.047 ms
6 te-8-1-ur02.malden.ma.boston.comcast.net (68.87.144.177) 8.101 ms 9.937 ms 8.489 ms
7 te-8-4-ar01.woburn.ma.boston.comcast.net (68.87.144.173) 8.477 ms 10.514 ms 8.416 ms
8 PO-10-ar01.foxboro.ma.boston.comcast.net (68.87.146.50) 9.407 ms 9.656 ms 10.243 ms
9 po-11-ar01.berlin.ct.hartford.comcast.net (68.87.146.33) 16.007 ms 12.353 ms 12.006 ms
10 po-10-ar01.chartford.ct.hartford.comcast.net (68.87.146.29) 13.468 ms 13.450 ms 13.957 ms
11 * * *
12 te-3-1.car1.NewYork1.Level3.net (4.71.172.109) 302.002 ms 301.466 ms 302.540 ms
13 ae-31-55.ebr1.NewYork1.Level3.net (4.68.97.158) 354.448 ms * ae-32-52.ebr2.NewYork1.Level3.net (4.68.97.62) 371.114 ms
14 ae-2.ebr1.Chicago1.Level3.net (4.69.132.65) 334.429 ms ae-1-100.ebr2.NewYork1.Level3.net (4.69.132.26) 376.366 ms ae-2.ebr1.Chicago1.Level3.n et (4.69.132.65) 325.988 ms
15 * * ae-11-55.car1.Chicago1.Level3.net (4.68.101.130) 326.044 ms
16 ae-11-51.car1.Chicago1.Level3.net (4.68.101.2) 323.914 ms GOOGLE-INC.car1.Chicago1.Level3.net (4.79.208.18) 322.442 ms 325.340 ms
17 66.249.94.133 (66.249.94.133) 325.499 ms 72.14.232.53 (72.14.232.53) 324.420 ms *
18 72.14.232.70 (72.14.232.70) 326.975 ms * 331.300 ms
19 64.233.175.26 (64.233.175.26) 321.481 ms py-in-f99.google.com (64.233.167.99) 320.482 ms *

As you can see from the bold line, the NewYork1.Level3.net server took a full 302.002 ms to go round trip. I tried to traceroute Google from other sites (online traceroute utilities) and they got through without any problem -- but that was because their route through the Internet didn't take them through those specific Level3 servers.

After 20 minutes or so, the problem seemed to clear up and a new traceroute showed a much more healthy response from te-3-2.car1.NewYork1.Level3.net: 11 te-3-2.car1.NewYork1.Level3.net (4.71.172.113) 14.475 ms 14.944 ms 15.518 ms

Alone with the Wind

As I drove home from the gym last night at 2:15am, after the longest, most grueling workout I've had in several months, I felt a calming sense of peace. Normally when driving, I feel an urgency, a tension, a need to rush. Instead, I felt calm and relaxed. I finally understood why those who start their early mornings with an intense cardio workout claim to have incredibly productive days.

I parked my truck in the only available parking spot -- a few blocks from the apartment. I didn't mind, as it was 55 degrees outside. While I walked home, it was incredibly quiet. So many cars, yet not a single person on the street. There were no lights on in any of the house windows. Only the orange glow of the street lights lit the sidewalk. It was surreal -- no sound except the lightly blowing wind. It felt like something from a Stephen King movie, The Langoliers, which I've probably seen one too many times.

Suddenly, a large raccoon peeked his head out from behind a trash can and stared straight at me. I didn't miss a step and continued walking towards him, staring right back. Finally, as I got closer, he gave up and scurried across the road.

Perhaps I will attempt to change my schedule, so I sleep at 11pm and wake around 4am to go to the gym. Waking up early has never been something I enjoyed doing, never mind waking up and completing a grueling workout. However, I'm sure developing that habit will be very beneficial in the long run.

Pouring the foundation

This warm weather is a relief from the bitterly cold temperatures we've had the past few weeks. Walking between my apartment and the office was, for the first time since I've moved here, enjoyable. Last week I started going to the gym on a regular basis -- everyday, Monday through Friday. After watching 300, and reading the article in Men's Health about Gerard Butler's physical transformation for his role as Leonidas, King of Sparta, I'm even more determined to perfect my body.

A cluttered home creates an unorganized lifestyle. An unorganized, cluttered lifestyle creates an unhealthy mind and body. Therefore, a cluttered and unhealthy body will result in all of the above. As you may recall, one of my 2007 New Years resolutions was to "Develop and maintain a regular healthy diet and exercise program".

I have started mixing the concrete for that foundation; now it's time to start pouring.

Replaced Akismet plugin with Challenge 1.1

I'm sick of scanning through the list of comments caught by Akismet to see if there are any false-positives -- I have had a few false-positives, namely from DJT.

So I've deactivated Akismet and installed Challenge 1.1. It works by asking the commenter a question. If the correct answer is provided, the comment is posted. I can customize Challenge to ask any question, however I'm currently using a simple, random math problem. Hopefully this plugin will save me from scanning through hundreds of spam comment posts.

One thing I would like to fix, though I don't think it will be an easy fix, is to save the contents of the users comment in case he enters the wrong answer. Right now, if you enter the wrong answer and click Post, it gives you a message saying you entered the wrong answer. However, when you press the Back button in your browser, you have to retype your comment. So get the answer right the first time!

Go ahead and leave a comment to try out the new system.

EDIT: After deactivating Akismet, I started getting a lot of TrackBack spam. Since Akismet doesn't have any option to only filter TrackBack's, I've decided to disable link notifications altogether.

Update your Linux PCs to Support the new DST

For most Linux systems, checking for support of the new DST is as easy as running the following command:

zdump -v /etc/localtime | grep 2007

If you see two lines that say Sun Mar 11 and two lines that say Sun Nov 4 then your Linux system is already ready for the new DST.

If your system says it can't find the zdump command, try /usr/sbin/zdump instead. If your system doesn't list those two days, read this article for more information. I was rather surprised that all four of my Linux servers already had support for the new DST, since I don't usually update them.

Cambridge apartment hit by broken water pipe

Sigh.

I don't know if I should even bother explaining. I'm just happy I was working from home when this happen. I was sitting at my computer yesterday when I started to hear water dripping on the ceiling tiles behind me. Since I've had frozen water pipes at all three of my rental properties in Lowell this week, I instantly knew what it was. I rushed to move the two tables full of computer equipment (4 LCDs, 4 external CD-ROM drives, 2 network switches, 16 network cables, 4 four-port KVM switches, and other VGA cables, power cables, and keyboards).

Only 5 seconds after the dripping sounds started, the water started pouring down. In my rush to move the tables away, two of the monitors fell and some keyboards lost their keys, but I managed to save all of the equipment from the major downpour. Everything was unplugged and turned off when this happen, so I'll probably get lucky and everything will still work -- after it's been thoroughly dried out (a few days, at least).

Apparently, my neighbor (the other basement apartment in this house), said this happen to her a few days ago and the landlord was a dick about it. He said he wouldn't pay for a thing, even though tons of her stuff was ruined. The plumber said I should get renters insurance, because it's cheap and they'll pay for everything even if someone robs me, or if a water pipe breaks.

I've finally figured out a good reason to not live in the basement -- if water pipes break, on any of the floors above you, your basement apartment gets hit the worst, and if there are leaks of any kind above you, you're almost guaranteed to get some of the water. If I'm still living in Cambridge when my lease is up (Jan 1st, 2008), I'm going to look for either a second floor or an attic apartment -- one with lots of light!

The Ice Gods are Angry

At 11am yesterday morning, I received a call from one of the tenants at my Ware St rental property -- their bathroom water didn't work. 😯

I called my bro, confirmed there were no major leaks in the basement, then proceeded to drive to Lowell (from Cambridge). When I arrived, I figured out where the pipes for that unit go up from the basement. I then hooked up an electric space heater, using some metal wire I found on the floor to hang the heater so it blows right on the pipes. About 30 minutes later, I heard a gushing sound -- the ice cleared. I turned the heat on high in the vacant unit where the pipes ran through, so hopefully that won't happen again. I drive back to Cambridge, and arrive at 2:30pm.

Then at 5:20pm, I get another call -- this time from the first floor tenant at my Bowers St property. He says water is pouring out from his kitchen and bathroom ceiling. My stomach drops as I recall the last time this happen and the damage cost me $16k to repair. I told the tenant over the phone, how to turn off the water main, so the water would stop coming out of the broken pipe. After driving through rush hour traffic, I finally arrived around 6:30pm. While I was en route I called a plumber -- he arrived at Bowers St few minutes before I did. He fixed the broken pipe -- a tiny 4 inch section of copper pipe -- then proceed, with my help, to check the rest of the house for possible leaks. Luckily there were none. He charged me $398.96 and left.

Thankfully, there was not very much water damage. The kitchen counter, cabinets, and part of the bedroom were soaked, but the rest of the kitchen and most of the bathroom were spared. The tenant's TV was ruined, which I'll have to pay to replace, but it was nothing fancy, just a basic 27" tube TV. The baseboard electric heater I installed in the hallway a few months ago (specifically to avoid a problem like this) was on high for the past few days, however, people visiting the tenant on the third floor kept leaving the hallway door open -- even though there are two big signs that say "KEEP THE DOOR CLOSED!". Maybe I need to write the signs in 10 other languages.

I decided to install a door closer before I went back to Cambridge, as I don't want to risk this happening again. First I went to Ware St to get my cordless drill from my brother and while I was there, he told me he wants to start painting the vacant 1 bedroom unit in Ware St tomorrow.

9:00pm - I drive to the Nashua Home Depot (in tax-free NH), buy the door closer, two five-gallon buckets of white interior flat latex paint, a box of ceiling tiles (for the tenant to replace the water damaged ones in Bowers St), and two weather strips (for the doors at Ware St -- lots of cold air blows in through the bottom). $183.

10:20pm - Back in Lowell, I drop off the paint and weather strips to my brother at Ware St, then drive to Bowers St to install the door closer. I realize I don't have the drill bit that I need... where did I leave it? Cumberland Rd? Ware St? The factory (the building our family business runs out of)?. Bah, I don't remember, so I drive to Cumberland Rd. Nope. Drive to the factory. Yes! Drive back to Bowers St and spend 30 minutes installing the door closer. The door closer works -- but now there's a problem with the door closing tightly. The door closer isn't strong enough to close the door all the way. I have to modify the door frame to make the door close better -- another 30 minutes of work. I decide to do it later, maybe even this weekend. At least this way the door will never be left open.

12:20am - Arrive back home in Cambridge and write this post before heading to bed.

Changing the default group for a Linux user

I have a couple of bash and PHP scripts I created to checkout a local copy of a specific project, rsync the checked out copy to a staging server, and then remove the checked out files. When I commit something to CVS from Eclipse, it uses the extssh method of connecting to CVS and logs into SSH using the username raam. I discovered that when I create a new file in Eclipse, commit it to CVS, and then run my staging scripts, the staging scripts are unable to checkout and rsync the new file. Why? Because the new file belongs to the raam group, instead of the cvs group.

To solve this problem, I needed to change the default group used when the user raam creates a new file. You can see current group info for yourself using the id command:

raam@mercury:~$ id
uid=1000(raam) gid=1000(raam) groups=1001(cvs),20(dialout),24(cdrom),25(floppy),29(audio), 33(www-data),44(video),46(plugdev),1000(raam)

As you can see from gid=1000(raam), the default group is currently set to raam. This information is stored in the /etc/passwd file:

raam@mercury:~$ cat /etc/passwd | grep raam
raam:x:1000:1000:Raam Dev,,,:/home/raam:/bin/bash

The fourth field holds the default gid. When I ran the id command earlier, I noticed the gid for the cvs group is 1001, so after changing the fourth field for my account in the /etc/passwd file (root access required), I can run the id command again and confirm my default group has changed:

raam@mercury:~$ id
uid=1000(raam) gid=1001(cvs) groups=1001(cvs),20(dialout),24(cdrom),25(floppy),29(audio), 33(www-data),44(video),46(plugdev),1000(raam)

This fixed my problem with the staging scripts, because now every new file committed to CVS automatically has the cvs group and the www-data account which runs those scripts has access to files in the cvs group.

In retrospect, this was probably the wrong (or long) solution to my problem. I should have just added the www-data account to the raam group, so my PHP scripts had access to files I committed to CVS.

Either way, I learned something new! Thanks to tldp.org for this page on File Security, which explains everything I learned.

"Hey, I'm from Portsmouth, NH. My truck broke down and.."

I had to go back to Lowell today for an appointment and while I was there one of my tenants on Cumberland RD (third floor) called. They told me their water wasn't working [insert flashbacks of a few weeks ago]. Panicking, I rushed to Cumberland RD and checked the basement -- no leaks. I went to the first floor -- no leaks. Then I discovered the problem. The first floor apartment has a broken window in one of the bedrooms. With the 40+ mph winds we've been having, the temperature of that bedroom was probably 20 degrees. To make things worse, the water pipes for the third floor apartment run behind the walls in that bedroom. When the carpets were recently pulled up (to be replaced) a section of the water pipes were exposed, through a small crack along the floor.

I stapled some trash bags over the window to prevent the wind from coming in, turned on a portable electric heater, and then turned on another portable electric heater in the basement under those pipes. I also turned on the gas furnace for the first floor (it wasn't on because it costs me ~$70 per day to keep it running!). After about an hour, the ice in the pipes melted and luckily there were no leaks.

Afterwards, I stopped at the Bowers St property to make sure the hallway heater was on high. As I was leaving, a guy approached my truck and said: "Hey, I'm from Portsmouth, NH. My truck broke down and I'm trying to get to Boston. I have $19 and I need $36 for the train and a cab..." -- I stopped him right there. I heard this exact same story from someone a few weeks ago, who also approached my truck as I was leaving one of my other properties. I mean come on people, at least be creative.

Five Online Accounts Secured with Two-Factor Authentication

I received my Paypal Security Key in the mail today. I jumped at the chance to order one after I happen to read about its release on codinghorror.com. The key fob, which uses the same technology as SecureID's, works by generating a new 6 digit number every 30 or 60 seconds. When you login to the website using your username and password+passcode, the server computes what 6 digit passcode should currently be displayed on your key fob and, if it matches what you entered, allows you access. Since the passcode constantly changes, even someone who has your username and password would not be able to login without also physically holding your key fob. This is known as two-factor authentication; something you know (username & password) and something you have (key fob).

I have been a fan of the SecureID ever since I worked with them at Getronics, where I supported an international base of banking employees who used a SecureID to login to Deutsche Bank's internal network. I was responsible for not only educating users on how to use their SecureID, but also for re-syncing the ACE Server (which is used to manage all SecureID's), generating temporary passcodes for users who had misplaced their SecureID, monitoring the ACE log monitor to help diagnose authentication issues, and adding/removing SecureID's from the ACE server. It was probably the most fun I had working at Getronics -- and because I enjoyed it, diagnosing SecureID issues, and understanding how they work, became second nature to me.

When E*TRADE started providing SecureID's, they initially gave them out for free to those who were the first to order them. Of course I jumped on the opportunity and within a few weeks I was logging into my E*TRADE account with my Username and Password + SecureID Passcode. In addition to my brokerage account, I opened an E*TRADE checking account, simply because I loved being able to feel secure about logging into my checking account. However, since there are no E*TRADE branches around here where I can make physical deposits, I still need a local bank account. For that I use TDBanknorth. It would be awesome if TDBanknorth provided a SecureID for online access. Now that E*TRADE is offering a savings account, with no minimums, no fees, and a 5.05% savings interest rate (!), I'm going to close my INGDirect savings account (4.50%) and switch to using E*TRADE exclusively. I will now have a checking, savings, and brokerage account with E*TRADE, all which I can securely access from a single site using the SecureID.

Even though Paypal's Security Key is not an official SecureID, it uses the same technology. SecureID is made and produced by RSA Security. Paypal has created their own version of the SecureID with a 6 digit code that changes every 30 seconds. The Paypal Security Key differs from the SecureID in that instead of always displaying the passcode, the display simply turns off after 30 seconds. You need to press a button on the key fob to turn on the display and show a new passcode. In addition, the Paypal key fob is slightly larger, has an oval shape, feels less durable, and has an annoying string with a metal ring on the end to attach to your key chain. I discarded the string and replaced it with a bigger, more durable keyring. The SecureID is definitely designed better, and the only reason I can think of that the Paypal key uses a button to turn on the display, is to save battery life.

Since Paypal is owned by eBay, you can also activate the Security Key for your eBay account, allowing you to secure both your Paypal account and your eBay account with the same Security Key! I completed the activation process for both accounts, and it was very easy. I simply logged into my account, filled out three boxes (serial number from the back of the Security Key, and two passcodes from the key), clicked submit, and the process was done.

Carrying around two key fobs on my key chain isn't fun, but if it means I can feel a lot more safe about the security of five of my online accounts (brokerage, checking, savings, Paypal, and eBay), then I'm all for it! In fact, besides my TDBanknorth account, I can't think of any other accounts that I really wish I could feel safer about accessing online. Of course, even two-factor authentication is vulnerable to man-in-the-middle and other attacks. If the attacker obtains a current passcode, he has a whole 30 (or 60) seconds to reuse that code. So if you combine a hidden screen-capture or key-logger application with the speed of the Internet, you can have an attacker who monitors your computer activity in real-time and logs into your account only a few seconds after you do. The bottom line: don't allow your computer to be compromised in the first place.

There is no security against human stupidity.

Don't throw away those DVDs!

My sisters' new house had a lot of junk inside when they moved in, including a box of DVDs. They let me take what I wanted from the box before they threw it away. Here's a list of free DVDs I've added to my collection:

  • Unbreakable (vista series)
  • Tombstone (the directors cut)
  • RedDragon
  • Jackass the Movie (special collectors edition)
  • Korn Live (2 discs)
  • Stigmata
  • Spy Game
  • The Recruit

Calendars.com Shipping Screw Up

A few weeks ago I ordered something from calendars.com and had it shipped to my PO BOX address in Lowell. Whenever possible, I always use my PO BOX because I've had problems with people stealing packages left on the porch of my home address. When placing the order I selected the Express shipment method, filled out my PO BOX address and submitted the order. Everything went through and the form didn't complain that they cannot ship to PO BOXes, so naturally I assumed everything was cool.

Several days later, I discover not only was the package shipped UPS instead of USPS, but the package was delivered to one of my investment properties, 53 Ware Street. Ware Street!? My permanent address is on Cumberland RD, not Ware Street, and the Lowell Post Office is aware of that, so why the hell did they ship it to Ware Street? When I checked the UPS tracking, here's what it said:

CHELMSFORD,
MA, US 02/15/2007 9:39 P.M. DESTINATION SCAN
02/15/2007 7:35 P.M. POST OFFICE BOX ADDRESS. UPS IS ATTEMPTING TO OBTAIN AN ADDRESS TO WHICH DELIVERY CAN BE MADE, NOT DELIVERED;THE ADDRESS HAS BEEN CORRECTED. THE DELIVERY HAS BEEN RESCHEDULED

Attempting to obtain an address from WHERE? Did they just randomly pick one of houses I own in Lowell? What if I owned 30 houses? Obviously this whole thing could have been avoided by me going to the help section on calendars.com and reading the section on Express shipping:

Question/Topic
Can I ship Express to a P.O. Box?

Answer/Article
Unfortunately, Express orders can not be shipped to P.O. boxes.

But why should I have to do that? The easiest thing to do would be to have the order form simply check if I'm choosing Express for the shipping method and refuse to accept a PO BOX address in the Ship To field. UPS can't be to blame simply because they were given a PO BOX address to ship to, which obviously they cannot do. They did their best to deliver the package. Calendars.com shouldn't have provided them a PO BOX address in the first place.

Seriously, basic error checking like this should always be implemented when you're running a website that claims to have "The best selection of calendars in the world".

Obviously not the best web programmers in the world.

8th Floor Abnormalities

The office where I work is located on the 8th floor of a 13 story building in Central Square, Cambridge. Every time I get off the elevator on the 8th floor, I feel dizzy and disoriented as if the whole building is moving. I wouldn't think this was strange, if it wasn't for the fact that it only happens on the 8th floor! If I get off on the 7th or 6th floor, I'm fine!

The other thing that makes this strange is that I'm very good with my balance and I don't get dizzy easily -- spinning around several dozen times does not affect my ability to walk in a straight line and doesn't make me feel at all sick. In fact, the only time I've been uncontrollably dizzy is when I was sick.

So what's causing this weird effect? When the elevator stops, is there a slight difference in the height of the elevator compared to the height of the 8th floor? Or is there maybe a rift in the flow of ch'i through that part of the building? I'm interested to see if I feel dizzy when getting off the elevator on the 8th floor of a different building.

The Impersonalization of Blogs

Have you ever wondered why my blog was not more personal? I came across an article on Digg today about making an impression with your resume. The first point in the article answers that question: "Do I know you? Whether I do or not, I'm going to immediately Google you to see if I should. Oh, you a have a weblog. Excellent."

I believe this is the reason many blogs are not personal. Instead, many of them are a simple narrative of the individuals interests and/or opinions, or a chronological account of places they've visited. And I don't blame them! I mean really, how many of us would want our boss to know everything about our personal lives? Heck, what about our parents, co-workers, or even wives and girlfriends? Everyone keeps something from someone -- things they'd rather just keep to themselves. Even if its just a simple thought, or a series of thoughts, or an opinion that you know would be misunderstood by those around you. So what's the big deal? Just keep it all to yourself, right?

The big deal is that humans need to communicate. They need to vent. They need to talk to others about whats on their minds. Who knows, maybe our brains are wired to share such information -- to help pass on knowledge. When we have something thats bugging us, we want to tell others; we want to hear others' opinions. This is why nearly every blog has a commenting function -- the ability to leave a comment on a specific post.

It was only a few generations ago when a person could move out of state, start a new life, and not worry about bringing their past with them. Sure the past might catch up -- someone might wander through town who happens to know who you are -- but in reality people's lives were very much isolated from those living thousands, or even hundreds, of miles away. The advent of the technology has suddenly brought human lives much closer. Do you want to contact John Doe living 5,000 miles away? No problem, lets just pick up the phone and dial his number. Oh, you need to send a letter to Jane Smith 12,000 miles away? Here's her email address -- she will receive the letter within a few minutes. These were unheard of only a few hundred years ago!

Personal lives are no longer personal. For your life to be personal you have to work at it, you have to constantly think about what information you're making available to others. Oh, you're worried about having your identity stolen? Fine, but that means no credit cards, bank accounts, cell phone, car, house, drivers license, birth certificate -- I could go on!

How can someone be personal on a blog when the information is bound to be made public? That would make the personal information public information -- so whats the point? If you want to create a blog, go ahead. Just don't expect to express yourself, especially your personal self, without letting everyone know about it. My blog is intentionally impersonal. I prefer to keep my personal life just that, personal. There have been plenty of times when I wanted to write what was on my mind -- but then I realized I wouldn't want at least half the people I know to read what I would write.

HOW-TO: Easily Secure any Wireless Connection with SSH

For a long time I had been running a Squid proxy on my Linux server, opening an SSH tunnel to the server from my wireless laptop with the -L3128:127.0.0.1:3128 SSH option to create the local tunnel, and then configuring my browser to use the 127.0.0.1:3128 HTTP proxy. This method worked well for a long time, however it had its disadvantages -- namely the extra configuration involved.

Probably the most difficult was the setup and configuration of the Squid proxy (getting the access rights configured correctly in squid.conf), but equally as challenging was explaining the whole process to someone else -- impossible if they were not familiar with Linux.

Recently, my Squid server stopped working and I wasn't able to use the tunneling method mentioned above to secure my wireless connection while I was at Panera Bread (currently the largest provider of free WiFi in the USA). For this reason, I didn't feel safe logging into my WordPress administration interface to work on a blog entry. So while I was searching for Squid configuration instructions, I came across a much easier way of securing my wireless connection. How simple? This simple: ssh -D 9000 raam@c.rd82.net.

Yes, really that simple. Nothing needed to be configured on the server (besides having the SSH server running, which most Linux installations already have by default). I then opened my browser and configured it to use a SOCKS v5 proxy to localhost using port 9000 and bingo, all web traffic was now encrypted over the SSH connection! I confirmed this by running the netstat command on my Linux server and found several new connections to websites I was browsing on my wireless laptop.

If you're running Windows, and don't have access to the wonderful Linux command line utilities such as SSH, you can download Putty. The latest version, v.59, has support for the -D SSH option. After you download and install Putty, enter the connection details to your SSH server (or find a service that provides a free shell account and allows port forwarding/proxying and use that), then click on Connection -> Tunnels in the options on the left. What you need to do is add a dynamic port. You do this by filling out the Port field and choosing Dynamic. Leave everything else blank and click Add. The screen should look like this right before you click Add:

Once you're done, you can save your connection information and then connect. Once you have logged into your shell account, you will need to configure your web browser to use the tunnel instead of a direct connection. I have included directions for configuring Firefox and Internet Explorer (IE isn't as straight forward as you'd expect, go figure).

In Firefox, simply choose Tools -> Options -> Advanced -> Network Settings. Choose "Manual proxy configuration:" and in the SOCKS Host field enter "localhost". For the port, enter "9000". I choose SOCKS v5 from the options below the SOCKS Host field, but I'm not sure if that matters. Here is what your screen should look like:

For Internet Explorer, it took me a bit of trial and error to get it working properly. Here is what you do. Tools -> Internet Options -> Connections -> LAN Settings. Choose "Use a proxy server for your LAN" and click Advanced. Erase everything in all fields, except the "Socks" and corresponding "port" field. Enter "localhost" in Socks field and "9000" in the port. Here is what the screen should look like:

Click OK all the way out to your browser, press refresh and you should be loading the web page through your secured tunnel!

This is the easiest method of securing a wireless connection I have come across. Using only WEP or WPA encryption is a joke. If someone is interested in your wireless traffic enough to be monitoring it, you can be certain they know how, and will, break your WEP encryption. At home, I use WEP encryption in addition to this method of tunneling, so effectively I have two layers of encryption protecting my traffic. And if I'm accessing a website through HTTPS, that adds yet a third layer of encryption.

Although you can also use this SOCKS connection to encrypt your E-Mail (at least in Mozilla Thunderbird), you can also use the SSH -L option to encrypt specific connections for which you have no local control over. However, I will leave that for the next HOWTO.

My Naked Body and Money

We all need it. Some of us need more than others because we refuse to live a lifestyle less than what we've already become accustomed to -- usually a lifestyle we were born into. What does it take to change your lifestyle to one that requires less? You'd think it would be rather simple, right? It should be simple -- how many different "things" do you actually use on a daily basis? Take a minute to think about it and add them up in your head: everything you use during an average day.

OK, now think about everything you own; down to the pen on your desk, toothbrush in your bathroom, even the clothes you're wearing, stuff in your closet and that shoe box under your table. Imagine your body stripped naked and piled next to you is all the stuff that belongs to you; clothes, electronics, cars, houses, tools, food, everything.

I don't know about you, but wow, that’s a pretty big pile next to me! Holy crap. How much of that stuff do I really use? I mean, if I were to actually use each thing for 1 minute, it would probably take me a couple of weeks, if not months, to use them all! There are several things, namely services, I couldn't even include in that pile: my cable TV service, Internet service, propane gas, auto gas, cell phone service, email and web hosting services -- the list goes on! If I were to take all of the physical infrastructure required for my services to exist and add them to that pile, the size of the pile would grow exponentially!

So I think I've made my point: there's a lot of stuff we own, and clutter our life with, that we don't actually need. OK, so that's not going to change overnight. I justify a lot of what I own by telling myself it would be stupid to sell it all at a loss, when the smarter choice would be to reduce what's unnecessary and maintain the rest. My three investment properties are a good example. As much of a struggle as it is to keep them, I know that in the long run they will solidify my financial future. Selling them now would cause me to loose money and I'd gain nothing in the long run (besides maybe some peace of mind, but that's a whole other post in and of itself).

My recent (or rather continuing) financial troubles have made me rethink a lot about what I own and what I need to live. I have observed how habits are what cause much of the unnecessary spending (Starbucks) and discovered that breaking those habits can be incredibly difficult. Instead of breaking them, simply reducing their frequency seems to be the best solution. I feel that my spending habits have reached a turning point, a roller coaster resting at the crest of a track, inching towards the long drop into the trough.

When I'm in a tight spot and I don't have enough money to pay bills, I'm constantly thinking about what I can do make more money. I've been brainstorming for the past few months about what could be done in my spare time to bring in extra cash. I ask myself, what makes a successful person and what have they done to become successful? I know for a fact that hard work makes people successful. But in this world of changing technologies and "work" that doesn't require any physical labor, there is something to be said about those who simply outsmart the masses -- who use their brains and figure out how to make money by using the tools technology has created; namely the Internet.

A friend of mine, who is several years younger than I, has come up with a business model that works very well. He's making 2x - 3x as much money as I, working only a few hours a week. Compare that to my 75+ hour work weeks and you'll probably be dying to know what he's doing. Without going too much into detail, I can say that his business model works on a simple principle: bridging the technological generation gap between those who grew up without the Internet and those who use it for almost every aspect of their lives. There's a generation of people whose only source of news comes from the daily newspaper. And then there's the generation who uses the Internet on a daily basis and has possibly never bought a newspaper. The latter being a generation whose lives move at the speed of light, with information in many different forms, pouring in from every direction.

At the end of the day, I don't take any money with me to bed. I don't go to sleep with my car, computer, food, auto gas, or for that matter my house. I sleep in my house, but might I might as well be sleeping in a cardboard box. When I wake up, I wake up with nothing but the skin on my bones. I need a safe shelter to sleep in, yes, but even shelter is a lifestyle item we've grown accustomed to having. I know many people who could not live in a basement -- I do, and I have no problem with it. For the past 6 years I have lived in either a basement or an attic, mainly because I don't see the point in wasting money on a full size apartment when I can save money in something smaller (living at my parents house would simply be taking advantage of those to whom I already owe my very existence, so that's out of the question).

When I was sitting in the 2 bedroom apartment of one of my rental units, I felt for a moment a sense of luxury. There was nothing luxurious about the place (luxurious, that is, to the average person living in the USA), but I felt as if that small 2 bedroom apartment was so beautiful, with all the light coming through the full size windows, high ceilings that I wasn't able to reach up and touch, and a full size living room with separate, closed off bedrooms. I then realized it felt so luxurious to me because I've been living a lifestyle which doesn't have those luxuries. Instead, I have learned to live with the open style basement or attic apartments, with low ceilings and few windows. I finally understood how grateful the people who actually have to live in cardboard boxes feel about simply having a solid roof above their heads.

The more I understand the driving force behind money, the more disgusted I become with myself and all that is wasted. If a human life is the standard with which we measure the value of material things, where does that leave the person who consumes the equivalent of 100 humans? Does that make the person morally obligated to support the very existence of that number of people? And if he doesn't directly support them does that mean he is committing, on a daily basis, one of the worst crimes known to man -- murder?