Monday, November 13th, 2006
10:58 pm
Day 1
Day 1 at new employer, moving from 60 people company to 9000 people company.

Some things change. Some things seem to stay the same.

I was tremendously lucky to come in and attend their IT all-hands meeting this morning -- the thorough, well-prepared presentations by my manager and his peers (in addition to his manager) gave me exposure to their core values and guiding principles and let me understand what was going on on a level that it'd have taken me weeks to get to in any other way;

There are a bunch of other good things in the day -- I requested a non-standard laptop, and their Client Engineering Manager gave me the distinct sense that the reason he was pushing back was because he wanted to make sure he could support me best, and so he was trying to figure out what my requirements and how he could adapt their standards, if necessary, rather than simply saying "F Off, buddy, that's not our standard platform." And everyone tried to make me feel welcomed and let me know where the amenities were. Also, getting a Blackberry was as simple as "I need a Blackberry, don't I?" "Oh yes. Which carrier works best in your house?"

Oh, commute! It sucked on the way back, but it always sucks when it rains cats and dogs. And it didn't suck more than it usually sucks given the weather. It was quite nice.

Downsides, sure. My cube is the smallest cube I've ever seen. If I was any wider, I'd not fit. My laptop will probably be here by the end of the week, and it's not going to have a built-in large drive, though they're giving me a secondary drive in the media bay. My access card is still not ready, because Building Security requires appointments, and I missed New Employee Orientation, and they've not been answering emails today (but I've got my boss's access card). Some of my people are disgruntled because I'm coming in saying what they've heard before and there's never been any change. I was accused of being a bungee manager by one of them :) But hell, it's good that they feel comfortable telling me how they feel. In verbose detail.

Oh, and I found out today I've got two less people than I thought I did, because the ongoing reorganization (slated to end, hopefully, in Q1/2007) has them moving to the Data Center Operations group, to take up Tier 1/Tier 2 responsibilities from us. Yay. Open headcount.

Oh wait! Editing because I forgot the best part -- the prohibition on Open Source software in core infrastructure components. This turned out to be a slightly less draconian and stupid thing than originally presented -- it's more a prohibition on using software that we can't get commercial support with SLAs on. Still ... sigh.

Tomorrow will be even better!

Current Mood: tired
Sunday, May 28th, 2006
11:43 pm
Delivery of Precious Cargo
The project plan for my relationship/marriage called for engagement at 365 days after the first date. We were travelling down to San Diego this weekend for my sister's law school graduation and, despite this only being about 330 days from first date, I took the ring with me because it felt like this weekend might be it.

The weekend went well (the graduation was ... interesting), and while there were moments that felt like they might be right, nothing quite worked out. During this weekend, a friend came over to our house and cleaned it up thoroughly; he called me Saturday night to let me know my vacuum cleaner needed replacement.

So here we were, driving back north from San Diego, when Shannan asked me if she should stop for a Foster's Freeze somewhere south of Firebough (maybe about 150 miles south-east from Brisbane). So we were eating our cone and shake, she was sitting in the driver's seat, I was sitting outside, and we started talking about the vacuum. I was pushing for us to get the Dyson, because I've heard good things about it, and at some point, intending to suggest I do the research and come up with some recommendations, I said "I propose" which she interrupted and, jokingly, said "what, now?"

So I thought about it for a second, and said "yeah, why the hell not? I keep waiting for the perfect moment, but the only perfect moments we have are the ones we create ourselves, and I say this is a perfect moment." So ... on the knees, proposal made, and she eventually said yes. And now I don't have to worry about carrying that ring around anymore, and I'm officially engaged. Oh, and so is she.

She's excited. I'm less excited, and more ... peaceful. This just feels perfect. I'm still selecting the bouncy Mood label, though :)

Current Mood: bouncy
Monday, June 21st, 2004
2:15 am
A brilliant defense against some account compromise attacks
I was brushing up on PAM (OK, that's a lie, I never really got around to
really understanding the PAM mechanism and decided I should) and figured
that writing my own PAM authentication module would be one of the best ways
to gain familiarity with the system. While casting about for an idea of
what to implement, I came across a simple, yet brilliant, defense against
some password guessing attacks.

This defense is based on three very simple ideas:
1. Some attackers are not mathematically-inclined and, if faced with the
task of figuring what the square of a random number between 1 and 100 are
likely to just give up the attack and 'go home';
2. Some of the attackers in (1) also are not smart enough to use
calculators to calculate the square of the challenge;
3. Some of the attackers in (2) are also very lazy, so EVEN IF THEY CAN
SNIFF THE WIRES, given that by default there can be up to a 100 different
challenge/response pairs, they may not be willing to wait until the answer
falls into their lap.

Against these attackers, I wrote pam_square.so.1; as a demo, feel free to
telnet to shell.inorganic.org and try to log in as 'squaredemo'. You'll be
prompted with a number from 0 to 99 and requested to enter its square.

Brilliant! I'm thinking of forwarding this to Bruce Schneier.

Sunday, May 30th, 2004
10:23 am
A Holistic View of 24 (With Major Spoilers)
I settled down yesterday to watch the entire third season of 24 (minus the
first and 18th episodes, becaues I missed them for some reason and
BitTorrent was predicting I was going to be able to finish getting them
sometime after Bush gets kicked out of office).

As I watched it, I found myself annoyed by what I was seeing. In the
beginning, it was the points of absurdity -- I even wrote a "things I learned
while watching 24" list (enclosed below). But the more I watched it, the
more revolted I was, and the more it made me to recoil away from my TV.
This is because I found the behavior of the main protagonists so grossly
offensive, and so reminiscent of the things that trouble me about our
current government.

Forgive the spoilers (or, you know, don't read this):

We've got the main CTU protagonists -- Gael, Jack, and Tony -- conspiring
to do a renegade mission to recover a vial of some really nasty virus.
Since it's so bad, it's perfectly OK for them to do this mission without
getting any sort of approval from anyone else. There's some grumbling from
the POTUS about this, but it's clear they're not going to be punished for

There's the situation where Bauer creates a prison riot to bust out Ramon
Salazar, at the cost of several guards' lives.

We've got, again and again, a complete disregard for the basic structure
and controls of an intelligence agency in favor of cowboy action and
deception practiced against anyone who'd stand in the way, even if they're
allies. So ... basically, the cowboys engage in massively illegal action
to recover some WMD.

Sounds familiar.

Even Palmer, traditionally the squeaky-clean POTUS, ends up being
incredibly dirty eventually.

So yeah, it was really bothering me.

And then, at around 4am, it finally hit me.

What if Joel Surnow (Exec Producer of 24) is just really, really brilliant?

What if what we've been seeing over the last three seasons of 24 is
actually a brillian story arc, a-la Babylon 5, about how the best
intentions in the world and the smallest moral compromises can cause us to
serve the causes of the Shadows?

Anyone watching the three seasons of 24 would notice that in some respects,
they feel repetitive. In general, they are:
1. Massive terrorist threat;
2. People have to engage in a whole bunch of unsavory action to protect
against the threat;
3. People have to engage in a whole bunch of unsavory action to protect
their loved ones from physical or political damage;
4. Kim gets kidnapped;
5. Kim takes a shower [OPTIONAL]

Yes, they're repetitive. But each time, Surnow's been ratcheting up the
volume on the moral decisions, and each time they've become less and less
easy for us to accept. It's a road into hell, and Surnow's set it up so in
hindsight, we can't help but look at the road we've travelled and say "yes,
it makes sense, every decision we've made led to this."

In season 3, Bauer murders (yes, the word is appropriate there) a senior
CTU agent -- Ryan Chappelle -- because a terrorist requires it. It's a
heinous act, and despite the fact they set up Chappelle to be a total dick,
to me it was still devastating.

Remember, though -- in season 1, he DOES THE EXACTLY IDENTICAL THING with
Nina, for similar reasons, though in that case he actually manages to save
her (which, err, was somewhat unfortunate all things told).

In season 3, Almeida disregards a most heinous threat to his country's
safety and lets a terrorist that has the credible means to kill millions of
people loose, because his wife is in danger.

Sounds familiar? In season 1, Bauer let terrorists run free because they
had his wife (or his daughter; or his wife and daughter sometimes).

In season 3, Palmer ends up paying Fox -- the same person he spurned in the
first season -- to take care of some damning evidence. In season 1, he was
covering up for his son's potential involvement in the killing of his
daughter's rapist, but didn't actually stoop down to using Fox.

And of course, toward the end of the season, we see our hero -- once Bauer,
then Palmer -- lose his wife, the mother of his child[ren].

In all of these cases, we saw actions -- fairly benign actions -- take
place during the first season, then saw them magnified throughout the
second season (where Palmer, for example, kidnaps a journalist and Jack
murders a man -- though a bad man -- in cold blood, and then saw them give
fruit, give birth to the decisions throughout the third season that leave
our characters seemingly unredeemable. Jack caused, directly, the death of
many innocent Americans throughout S3. He executed Chappelle in cold
blood. Palmer, through the chain of events surrounding Wayne, his chief of
staff, ends up having partial responsibility for the death of three people,
only one of whom deserved to die (well, maybe none. Depends on what you
think about Sherri :) ). Wayne, skiring legal, ethical, and moral rules in
trying to help his brother in whatever way possible, ends up being involved
in the death of the woman he loved. Tony, doing something very similar to
what Jack did in season 1, ends up putting millions of lives at risks and
hopefully going to jail for a very long time.

So what if we can't just take season 3 and compare it to season 2 or season
1? What if the whole point here is to see our heroes reduced through their
own minor faults to pale ruins of the Gods they were in season 1? What if
Surnow's telling us the story of how the Shadows are taking over the
government, with government employees believing they're doing the right
thing, believing that any action is appropriate in the pursuit of national
interests, believing that ethics, morality, and even legality are secondary
to doing what they believe needs to be done? What if he's telling us how
we're going to hell?

Wouldn't that be a kicker?


Here are some of the more amusing things I learned while watching this

Things I learned by watching the third season of 24:

1. Nepotism's no big deal. That's why it makes sense to have your daughter
work for you, for two of her coworkers to be married, and for her to date
another person who works for you. Corrollary 1: It makes perfect sense for
you to intentionally, explicitly, and flagarantly keep your daughter's SO
out of harm's way, and there's no disciplinary measure you need fear due to
this. Corrollary 2: If your daughter works for you, it's best if she
refers to you as "my dad," or "dad" when talking to her coworkes so they
can remember she's special. That's not going to cause discipline or morale
problems; Corrollary 3: It makes perfect sense for your closest political
advisers to be related to you by blood. That won't cause any problems AT

2. As always, the best thing to do is to send your very highest-level
operatives into the field;

3. In a mall crawling with cops and security personnel with a clear target,
someone can still be 10ft away from the target, take out a handgun, shoot
someone, and then dissapear without a trace;

4. Every office needs one good insensitive whiner who thinks it's all about

5. Every confrontation between the bad guy and a good person with the good
person holding a gun on the bad guy and the bad guy having no leverage
where the bad guy is taunting the good person and daring them to shoot will
end up with, at minimum, the bad guy making it out alive and unharmed;

6. Cell phone reception in Los Angeles is universal with no weak spots
whatsoever, even inside garages;

7. Every young, attractive woman who works at a law-enforcement agency
wears low-cut clothing;

8. A man smart enough to win the US Presidency is, in fact, thoroughly
incapable of judging the trustworthiness of his closest advisers. Even
after having been screwed by them once. Even after having been screwed by
them twice. OK, maybe I can give them that one, but Palmer's not a Texan!

9. Bureau of Prisons has bought into the PC tablet concept BIG;

10. The ends _do_ justify the means. No matter how heinous the means;

11. Got a deadly terrorist threat? Are there hundreds of thousands of lives
threatened? Perhaps now would be a good time to pause and have a
good relationship conversation. Please don't rush Kim -- when you rush
Kim, she feels like you're devaluing her feelings;

12. The daughter of a renegade officer helped him violate protocol and
start a deadly riot? Because she was his daughter? Well, heck, poor girl --
lets cut her some slack and keep her at her post. Because, after all, what
are the chances she'll screw up AGAIN? [side-note: Is there ANYONE in CTU
we can like and respect? Because so far, I'm coming up short]

13. Running a time-critical agency with thousands of lives at stake? Make
sure your network infrastructure isn't redundant because hey -- we can
afford large LCDs, G5s, and tiBooks for everyone, but redundant networks? What,
are you nuts?

14. civilian authority helicopters have sensors that are capable of knowing
when someone locks onto their heat signature (in other words, they're
capable of sensing passive sensors. Cute);

15. We really need to neuter all our government personnel. Whenever
their libido, emotions, or feelings get in the way, people die;

16. It's perfectly reasonable to screw the chain of command and go rogue if
your goals are righteous;

17. If your network is completely screwed up and unusable, your VoIP phones
will still be perfectly serviceable (yes, they could have put the phones on
a different network. I know. They didn't establish that);

18. In a highly-sensitive security-driven agency, if the person who most
knows your IT systems is found out to be a malicious mole, there's no
reason to audit your systems as soon as possible;

19. A heroin addict who hasn't gotten his fix in three hours will suffer
horrible withdrawl symptoms. Good thing is that six hours later he'll be
perfectly fine and cured of his addiction.

20. Who the FUCK puts their kid in an active, put-your-life-on-the-line,
counter-terror agency so they can keep them safe? What's next, sending your
son to a whorehouse to keep him a virgin?

21. Your guy lets a terrorist threatening the lives of millions of people
loose because his wife's in danger? Eh, no big deal. I mean, come on!

22. GPS receivers work perfectly well underground with no line of sight to
any satellite;

23. If an officer falls in the line of duty, it makes sense to leave his
widow to collect his things from a high-security environment with lax
enough supervision to allow her to pick up his sidearm;

24. If you're carrying an automatic knife, it's best to store it in your
pocket in the open position, because otherwise you'll have to press the
button between the time you take it out of your pocket and the time you
stab someone which could take, like centiseconds!
