local

Stuff posted in this site by me.

/ local / , , , ,

We’ve been avoiding thinking about work for the past two weeks. Why? Cos we had a jerb interview! Codename hrJerb.

Glorified receptionist but gets us out of the IT sector. We’d be able to get some actual experience working outside of the crypt.

IT Crowd - Hello IT

This would be a full time job. That’s in addition to sysadminJerb, itself a full-time job; and hostJerb, which is a part-time job. We’d have no time for ourselves other than basic system (human) maintenance. We’d be working an average of 85 hours per week— I checked. But we’ll take it if we have to. There is no path forward but pain.

It all came about cos when we got off work today I hit up Inbound Brewing, chatted with a couple friends, and on the way to Nightingale two songs came on just as a decision erupted from my subconscious.

This first one hit hard:

It played just as I was thinking about all the effort I’ve put into hostJerb only to be told “we don’t need your help” when management are clearly underequipped, underprepared, and clearly overtaken by the job.

We’ve tried chasing this kind of thing in the past and it never ends well. We learned.

And just as we were about to feel sorry for ourselves for… Coming up short for people that don’t appreciate us, this song played.

Sure it’s a love song but right there and then it felt like a balm. Like… “oh wow, other workplaces can actually be nice? I don’t have to chase people around?” and “huh we do love ourselves” and “we love this one beer and it’s not her fault the people who make her suck at their jobs”.

It’s Celia Cruz too so that helps.

All we need do is wait. Play capilalists off against one another; one set know what they can do but they don’t want to own up to it, the other coming in blind with cash and benefits. And extra seasoning! Cos all the people at hostJerb who can challenge what hrJerb might offer are out of town, and they are competing with people who are known to not care about their employees. In a competition like this everyone loses.

Then there’s also the fact we’re addicted to this fucken industry.

Read More »

♪ fonts fonts fonts

/ local / , , ,

Honestly it’s probably more like 90% of the work! Am I right! I am joking! (Am i????) this is a design humor account #fonts #fontstudio #design

Source: Honestly it’s probably more like 90% of the work! Am I right! I am joking! (Am i????) this is a design humor account #fonts #fontstudio #design

It’d be awesome if social media platforms allowed some form of searching text people put up on their video, like subtitle metadata or something. It’ll never happen cos they depend on this kind of thing to keep you there.

But in this case, she’s talking about

♪ fonts fonts fonts Read More »

For shame! For shame!

/ rucksack / ,

Well guess what, here’s an actual blog post. For the past few years we’ve been putting stuff on twitter cos it’s easier to get stuff off the cuff, y’know? But we’ve realize that for a lot of things we want to do a bit more thought. Hence the following.

We’d noticed over the past couple weeks a coworker was downright hostile to us. Earlier we finally got the chance to ask her:

“Hey, is there anything we did to make you angry or annoyed?”

Yes

You don’t listen to anyone
You do whatever you feel like
And you drink too much at work

Which, fair.

  1. We listen to people who can actually impinge on our tasks, i.e. management or shift leads. If you want me to go clean tables cos you’d rather get hit on by the hot guy at the bar then no.
  2. We do whatever needs doing right then and there. Food needs doing and you’re busy getting hit on? We’ll run food. Guests in line and you’re busy chatting up a table of men? We’ll ring those guests right up. I’m not at your beck and call. I’m at the business’ beck and call. We’ve told the GM to fuck off cos we’re busy doing things they’d rather not do. We’ve told the fucken CEO off. You’re a mere peon just like me.
  3. This one actually threw us for a loop. We’re currently averaging .9 beers per hour, while the KM is doing about 2 beers/hour, the sous chef is doing 1 weed joint/hour. We believe the issue you have with our drinking is that we start making conversation with the men hitting on you, which means you then have to go and do actual work.

Now, we only found out cos we asked. She wasn’t going to let us know she had a problem, and she sure as hell wasn’t going to let management know there was a problem cos then they’ll look at her work performance.

(Management loves us, by the way. They can find no fault with our work, which is how we like it.)

But it is annoying. When they say that it’s hard to make friends in Minnesota they didn’t say anything about people who can’t deal with their own emotions in a healthy way.

For shame! For shame! Read More »

And fuck your cow too

/ rucksack / , , ,

Dear Spotify. I tried to search for podcasts on your Desktop app. I know you’re into fancy cross-platform Electron framework. I’ve come to terms with it. It’s fine. It’ll do. But, your understanding of interface design seems like it needs a bit of a history lesson. Back in iTunes Good

Source: Dear Spotify. Can we just get a table of songs?

Honestly if you’re using the Electron framework for anything you’re not a software developer. You’re a piece of shit who writes shit code and is out to make the world a shittier place.

And fuck your cow too Read More »

A week of self-discovery

/ local / , , ,
  • We went from three jobs down to two jobs back in March and somehow… our schedule got worse? Perhaps the kitchen job at hostJerb should be counted as a third job, honestly. We’ve been telling people we work like an elemental demon to live like a mortal peasant. No one gets it :(

  • It’s becoming almost impossible to sleep at home. All the neighbors are working on their yards, their cars, their houses. There’s a bit more traffic than at the old apartment. The landlord company are working on the house. The light is bad enough, but the uneven noise is really messing our already chaotic sleep schedule even more.

  • Purchased a Nintendo Switch. I’m not buying any video games until I’ve exhausted Link’s Awakening. Love this game. Trying to figure out how to get an online membership for it without giving Nintendo any more personal data— or our credit card number.

    Screen capture from The Legend of Zelda: Link's Awakening

  • Decided to schedule gym sessions. It’s easier than just going there on a lark. It helps with keeping full awareness of our schedule too. We need to find a good resource for guided gym workouts.

  • The biggest change of the summer? Definitely our biking around. We decided calories are cheap and that’s really helped in getting us out of bed as long as we can get 6 hours or more of sleep between jobs. I’m not going out to party or mingle, sleep is far more important! But we’re making more of an effort to bike around instead of using rideshares or the bus, particularly at night.

    Gotta take advantage of the weather while we can. Once winter is here getting around is going to be that much harder.

Now, to find something to eat…

A week of self-discovery Read More »

Garbage

/ local / , , , ,

In a single week, the Supreme Court of the United States has gutted gun control, weakened the separation of church and state, gave more fuel to the police state, and to top it off, struck down Roe v. Wade entirely.

The worst week for civil rights in the country in decades.

And the court signals they will take more away. Rights to contraception and same-sex marriage are next.

Garbage Read More »

Blast from the ActiveX past by way of iDRAC6

/ toolset / , , , , , , , , , , ,

Recently we acquired a Dell PowerEdge R610. It’s got the goodies and we plan on running a bunch of VMs on there for shits and giggles.

But beware if you’re trying to use iDRAC6. It’s a nifty technology for sure but it has left behind by the Internet moving forward. Now, there are plenty of guides out there on how to get it to work in “modern” settings i.e. Windows 10, Linux ≥ 2020:

But it was this comment that turned us on to the real solution for this:

First we need to obtain and configure a VM for our purposes:
1. Go to Virtual Machines – Microsoft Edge Developer and download the VM for your platform of choice. Since iDRAC6 is from 2008 we went with a Windows 7, IE8 32-bit VM; as we want the ability to manage this from a local workstation we went with a VirtualBox VM.
2. Import it into VirtualBox. You may want to adjust the hardware settings and give it a bit more RAM.
3. Turn it on. You may want to adjust the graphical settings.
4. Open IE and go to the iDRAC IP address or URL. We’ll use https://idrac6.lan. Click Continue to this Website (not recommended).
5. Once the site loads, on the top right go to Tools → Internet Options → Security tab → Trusted Sites. Click the Sites button.
6. In the “Add this website to the zone” enter the iDRAC URL, e.g. https://idrac6.lan. Click Add.
7. Make sure to remove the checkmark from Require server verification (https:) for all sites in this zone.
8. Click Close, then click OK to close the Internet Options window.

Next we need to configure iDRAC:
1. Login to iDRAC.
2. On the left menu make sure you’re in the System menu item.
3. On the top of the main pane go to Console/Media → Configuration.
4. Configure the Virtual Console:
– Enabled: Checked
– Max Sessions: 4
– Remote Presence Port: 5900
– Video Encryption Enabled: Remove this checkmark
– Local Server Video Enabled: Checked
– Plug-in Type: Native. This is the specific setting that makes iDRAC6 choose between ActiveX or Java.
5. Leave Virtual Media on teir defaults.
6. Click Apply
7. Log out of iDRAC, close IE.

At this point you should be able to connect to the virtual console:
1. Open IE and log back into iDRAC.
2. Go to the System left menu, then on the top tab menu go back to Console/Media.
3. Click Launch Virtual Console. IE will freeze for a few moments while it talks to iDRAC and then it will request permission to install the ActiveX control. It will freeze again while it’s installing. Once everything is done the Virtual Console should start it. If it doesn’t or it’s too slow (like moving at >5 FPS), close IE, log back into iDRAC, and restart the virtual console.

Now you have a functioning VM that can give you longer term access to iDRAC6 servers without having to deal with Java bullshit… at least until the iDRAC6 default certificate expires in June of 2024

iDRAC6 - Configuration page, with CA Root Certification Information for the website showing an expiration date of 2024/June/03

When you reboot the VM Windows 7 will download a whole bunch of updates but you should be able to keep using the virtual console. Just make sure to take a snapshot of the VM and you should be good to go.

A fair warning is also necessary:

DO NOT USE THIS VM TO ACCESS THE INTERNET. YOU WILL GET HACKED

We also tried to use the virtual console with Video Encryption enabled but we couldn’t get it to work.

Blast from the ActiveX past by way of iDRAC6 Read More »

Running thunderbolts through crystallized rock to make it think is already magical enough

/ rucksack

At the heart of the problem is that the SELinux policies themselves are sort of magical. The policies have probably been provided by the maintainers of your Linux distribution, e.g., Fedora Linux. There’s nowhere on the system where you can view the policies and look up why something might or might not work. The policies also change over time, without any warning.

Source: SELinux is unmanageable; just turn it off if it gets in your way

Red Hat has made it clear the best way to manage SELinux is for you to outsource it to someone, preferably them. I get it, security of this sort is complex, but having to trust random internet postings for instructions on how to do a small task is how we ended up with github readmes saying “just curl this into bash as root”.

Running thunderbolts through crystallized rock to make it think is already magical enough Read More »

Oh, Photoprism

/ rucksack / , , , ,
mariadb_1 | 2022-04-11 18:17:42 0 [ERROR] InnoDB: preallocating 507904 bytes for file ./photoprism/faces.ibd failed with error 28 mariadb_1 | 2022-04-11 18:17:42 0 [ERROR] [FATAL] InnoDB: Error (Out of disk space) in rollback. mariadb_1 | Fatal signal 6 while backtracing photoprism_mariadb_1 exited with code 139

We recently got our hands on some enterprise hardware and we’re now using it to run some VMs and whatnot. One of the projects I’ve had for a long time is trying to figure out a way to have a web gallery. After looking around at the available options we decided to give a shot to Photoprism.

Requirements aren’t complicated:
– Display pictures and associated metadata quickly, as a gallery.
– Have wide compatibility for various filetypes, including RAW and video files.
– Mobile app helps but it’s not a hard requirement. Web first, preferably with minimum javascript thrown in.

We have about 46 thousand files including pictures and videos, consuming 265 GB of storage. A bit more than what most people would have sure, but any cloud picture solution would definitely charge a good chunk of money to store all of them.

Now, on to PhotoPrims itself. It does Docker Compose but… fine, whatever, you want me to do the devops shit, fine. It’s easy to install, after all:

# mkdir -p /opt/photoprism
# wget https://dl.photoprism.app/docker/docker-compose.yml
# vi docker-compose.yml

You just edit docker-compose.yml with the bits and pieces you need specific to your installation and you’re good to go. Being lazy I mounted pictures storage via CIFS from the storage server. Tried to get it to work directly in Docker but it kept telling me to kick rocks.

Then you run the actual service:

# docker-compose up -d

Starts up a server accesible on the local network at http://server:2342. The documentation does state securing the connection is an exercise left to the reader, but as I only plan to run this on my LAN and accessible only via VPN, it’s fine.

This is where we started running into issues. The first VM created for it had 2 vCPUs, 8GB RAM, 16GB HDD VM. It ran out of drive space after thrashing CPU for a bit. We upgraded the VM to 8 vCPU, 32BM RAM, 32GB HDD. It ran out of disk space after thrashing the CPU cores for a bit longer.

Mmmkay, now we have a bad time going here. Upgraded VM to 16 vCPU, 64GB RAM, 64 GB HDD. It ran out of disk space again after thrashing the CPU cores for a solid 20 hours. We get it, it’s using TensorFlow for AI stuff but as a comparison Digikam is able to do the same things but doesn’t consume nearly as many resources, for as long.

We suppose it really wants you to be using modern hardware of the sort that is incredibly expensive and to find given the current supply chain issues worldwide.

Oh, Photoprism Read More »

Seriously Google, what the fuck

/ local, rucksack / , , , ,

They are altering the agreement, pray they don’t alter it further.

Source: Google to free G Suite users: Pay up or lose your account | Ars Technica

Darth Vader: I am altering the deal. Pray I don't alter it any further

A few years ago I needed to add another domain to my Gsuite account, which led me to start paying for services there. Over time we started using it for more things but we remained leery of purchasing things from Google through Gsuite accounts or free Gmail accounts.

At some point we migrated our Google Voice number from our gmail account to the Gsuite account, and it remained there. When this migration was done Google moved everything through: contacts, text messages, call history, voicemails. Everything happened without issues or difficulties; all you had to do was unlink your carrier number from one account, migrate the GV number from Gmail to Gsuite, and re-link your carrier number.

But starting a couple of years ago Google disabled the ability to migrate from Gsuite to Gmail. Not without losing everything. We’ve been looking to migrate off Google’s infrastructure for email/calendar and everything else and it’s a non-started as long as they hold my main phone number hostage. And now Google is forcing people and companies who made the mistake of choosing Google for their services to pay up or lose everything:

oh fuck

I’ve been using this for my family since Google first introduced it as a way for Families to use vanity domains together. I have over a decade (almost 2?) of purchases tied to this account and the cost to migrate to their enterprise offering for my family is bonkers.

I don’t know what I’m going to do here as I can’t migrate my purchases out of this account and into a normal gmail account. uuuuuuuugh.

While self-hosting files and email and photos is doable, self-hosting your own mobile phone number is still complicated, and on top of that the available services still cannot compete with the simplicity of GV even as Google leaves the service to wither for years at a time. We’ve been looking at using services like https://jmp.chat/ but again, they are non-trivial:

  1. You must port your number from GV to their service.
  2. You lose everything: Contacts, text messages, call history, voicemails.
  3. You have to figure out what XMPP client to use on your devices depending on operating system, as most XMPP clients don’t support them all.
  4. You have to learn the quirks of texting people who aren’t in your contacts already.
  5. Jmp.chat itself is still marketed as Beta, and some features are still in alpha, like group messaging.

Google should offer the option to convert a Gworkspace (nee Gsuite) account to a free Gmail account, or to migrate the data from a Gworkspace account to a Gmail account. They can do it, they just choose not to because nobody can force them to do the right thing.

The current state of things is absolute bullshit.

Seriously Google, what the fuck Read More »

“Burn the witch!”, they yell

/ local / , , , , , ,

This is written in Rust because I personally believe that writing security critical components that we would ship with the operating system in C is a massive disservice to our users. Go also doesn’t really have a good story to do interoperability with core C system components like this (the Go runtime is massive and as of writing this post the entire PAM module I’ve written is smaller than the Go runtime, even with a statically compiled copy of libcurl).

Source: The Surreal Horror of PAM – Xe

You can already see C fanbois off in the distance carrying pitchforks and torches

“Burn the witch!”, they yell Read More »

The more things change the more they stay the same

/ local / , , ,

I first started using Linux and FreeBSD on laptops in the late 1990s. Back then, there were all sorts of hassles and problems, from hangs on suspend to pure failure to boot. I still worry a bit abo…

Source: Managing an External Display on Linux Shouldn’t Be This Hard | The Changelog

Evidently nothing has changed since we stopped using Linux as our daily driver OS. We were actively thinking of switching back as we got tired of Windows rebooting on me whenever it felt like. Slight problem— We have two 4K displays and two 1080p displays hooked to a Radeon GPU and AMD isn’t particularly nice about proper driver support; they’re better than Nvidia but not by much.

We hate to think what would happen if we have to switch to a laptop full-time. We’d probably give in fully to the dark side and run WSL on Win11. More and faster progress is being made on running desktop applications on it than people are doing on fixing these issues on “real” Linux.

The more things change the more they stay the same Read More »