I changed my wordpress install so that it is installed direct from subversion today. It works very well and is a really neat idea. I am going to try the same approach with other software.
Author Archive for admin
In response to Patrik Faltstrom on DNSSEC implications Millton Mueller wrote “Not so gratifying is that Patrik’s response reveals that even technical experts in DNS can fail to understand the governance implications of the technologies they work with daily. This has been a longstanding problem in the Internet technical community.”
One could of course argue that it is not so gratifying that even governance experts can fail to understand the technical implications of the technologies they are talking about.
Patrik is absolutely right when he says “trust on the DNS has nothing to do with DNSSEC. It has to do with trust of the namespace, the hierarchy of names that start with the root. The real power because of this sits within the process that define what tokens (or names) should exist directly under the root.”
As Roy Arends, good friend of mine and one of the authors of RFC ’s 4033-35 likes to say “DNSSEC is just error detection”.
Milton goes on to talk about the limitations that DNSSEC puts on the ability of concerned parties to split the root. (For now we will ignore the fact that multiple roots are a very bad idea). As Patrik points out this misses the point. Without DNSSEC, if you want to use a alternate root you just configure different IP addresses for the root. With DNSSEC and signed roots, if you want to use an alternate root you just configure different IP addresses and a different trust anchor. It is easy! Milton goes on to ask Patrik “Have you considered the costs and compatibility issues of coordinating the management and rollover of private keys for multiple roots?” This is irrelevant, if you can manage and rollover the key for one root you can do it for several and no coordination is needed between the roots.
Earlier I wrote about a problem with libpcap on OS X. This is the call in the code that breaks the wireless connection.
/* ask pcap to find a valid device for use to sniff on */ dev = pcap_lookupdev(errbuf);
but replace it with this (en1 is my wireless interface)
dev="en1";
and then use dev in other libpcap functions and it works fine.
I was reading an article about Boreout in the paper this lunch time. This is stress caused by being unchallenged and bored at work, it has happened to me before and I think it was the lack of challenge part that caused me the problem. I remember that when I felt like this it took me a very long time to figure out what the problem was. No amount of money can fix it, only a new job with new challenges can really do the trick.
One of the tv cards in my mythtv backend requires the driver to load firmware at boot time. The driver for this card was crashing repeatedly so I have been keeping an eye out for updates. The firmware received an upgrade a few months ago but it was still crashing and it was weeks before I realized that the old firmware was still being loaded. It turns out that you have to actually remove the power from the system before it will reload the firmware. A reboot is not sufficient. This really needs to be in BIG letters somewhere on the linuxtv site.
Anyway I now have a whole month of uptime on the backend. This is only the second time I have had the system so stable in the 3-4 years I have been running mythtv.