Author Archives: Josh

Slow SSL on Fedora

So, I’ve been using Fedora Core 3 (I really must upgrade to 4) and I’ve noticed that SSL – ie HTTPS – is really slow. Logging into eBay took something like a half hour. I consulted someone who uses FC3 as their primary operating system and his suggestion was to disable the firewall. “but…” I protested. The response was simple: “Stop being such a pussy. You’ve got a firewall in your modem.” And I do.

So I did – Applications | System Settings | Security Level got me to firewall configuration, one option of which was “forgetaboudit”. A reboot of the iptables (iptables is the linux firewall: very sophisticated, very powerful, very fragile, requires a detailed understanding of IP protocols to use correctly) later – either by a command line entry (simple – just enter service iptables restart) or a system reboot (easy to remember, but takes a fair old time – FC boot time is longer than XP’s) and the firewall’s behaviour was changed. Then secure logins went just as fast as straight HTTP, and it was clear that the Red Hat Firewall was the culprit.

Hours of searching the web revealed a suggestion for a change to the configuration file, which I went to implement in a restarted firewall – and it was already there. So, to make Firefox – or any other web browser – do fast SSL when it was going slow – you need to disable, then re-enable the firewall. You can do that by picking Applications | System Settings | Security Level from the menu, disabling the firewall, opening a terminal window and entering service iptables restart, and repeating the process but enabling the firewall this time (ensure you have web turned on).

In FC3 the default firewall install doesn’t like HTTPS. And I thought Windows was freaky. I understand the FC4 doesn’t do this crazy shit.

Antenna saga

As part of the ongoing antenna saga, the weekend before last I acquired some coax from Bunnings (I thought 20m would be plenty – wrong! Just enough), and a mast. I mounted the mast on the facia and strung the coax up in the roofspace, and left it at that.

This weekend it rained cats and dogs Saturday and I was out of the house until mid-afternoon Sunday, so I wasn’t left with much time to finish the job before sunset Sunday. But, like a fairly well oiled machine I managed to disconnect the antenna, loosen all the bolts that needed loosening, cut it down, fold it up, drag it to the manhole, try putting it through, pull it back out again, fold it up better, put it through the manhole, drag it outside and up to the roof, mount it (very cool that the mounting bolts were still hanging on the antenna even though it had originally been hung in the roof space), realise there wasn’t a hope in hell I was going to hook up the coax with the antenna floating out in the air like that, dismount it, hook up the coax (noticing of course how easy it is to slice through the braiding when slicing through the plastic sheath and having to do it again), discover that the weather sheild for the connector was knackered and ‘repaired’ it with a metre of electrical tape, remount it, discover the mounting bracket was on back-to-front, remount it, tighten up all the bolts, tape down the coax to the mast and return to ground level just as the sun set.

A very tidy piece of work, which only required me to attach the other end of the coax to the splitter and away we’d go. My figuring was, hook what we’ve got into the splitter and I’d see how the picture was and make adjustments later; worst case scenario was that our TV reception for a week would consist of bunny ears. Except the modern coax differs from what’s already in the house in two ways: firstly, it’s aluminium shielded instead of copper; secondly it’s smaller and thus the mounting clamp in the splitter wouldn’t actually grip the de-sheathed coax. I ended up creating a solid mechanical connection by restoring the sheath on the top half of the coax.

Testing revealed a miraculously improved analogue picture quality, including rock-solid SBS reception and Channel 31 visibility. Some negative ghosting was evident, and the Channel 31 picture could improve a little more, so perhaps there will be some fine tuning of the direction next weekend utilising the advanced technolgoy of our radio phone. The splitter doesn’t seem to be detracting too greatly from the signal, so it could be staying. I ought to get some 75 ohm resisters ‘tho. I think there are only two active leads from the four-way splitter.

Signal strength reported by the HDTV cards on all channels has improved to the 95-98% range.

Primus – not with-it, hoopy froods

Primus are hopeless. They make Telstra look like really with-it, hoopy froods. I had no problems at all for about 4 years while I had just one phone line connected and didn’t try to change anything.

We signed up for another line. They connected the new line, and cut off the old one. Ring, complain, apologies. Disconnect the new line, reconnect the old. Ring, complain, apologies. The fun continued for a while.

Remember I said iPrimus had a great deal on ADSL? Not long after we signed up for ADSL, our line went dead. “Completely unrelated” says Primus. “Telstra line fault”. Sure. Have you tried reporting a dud phone line when the phone line’s dud? Doesn’t work so good.

Then there was a massive delay with the modem. Eventually we rung up and asked where it was. “We tried delivering it two weeks ago. No one was home. We left a card.” Searching high and low produced no card. However, we found the card the following weekend – they tried to deliver the modem to our old address. Which is not our billing address, or the address where the ADSL line was being set up. I have no idea why they’d want to deliver to that address.

They rung up last night about a missing payment. I didn’t get that bill. Somehow they sent it to 457/457 St Kilda St so I don’t know what would have happened to it. Probably lost in that great postal delivery hole in the sky. Much apologies later, late payment fee waived, all that stuff.

These guys seem to have a lot of bugs in their computer system. Being a telco in Australia only requires that you bill the customers and pay Telstra’s bills. So all primus needs to do is run a billing system. How hard could it be?

But their customer service after these stuff-ups is always really good. Once you get through to a human which can sometimes take a while. At least their call centre isn’t in India. That would be the last straw.

Dead USB port

So, in building the broadband access machine I’ve found a gift computer (twice as powerful as anything else I owned) that was ‘not working’. After loading XP onto and futzing with it for a while, I figured out that doing anything with the USB port locked up the computer… after a while. I tested the theory by running up a memory/CPU intensive game and letting it run for a few hours. It was happy until I transfered some files off the USB stick. Fault identified. If I want to transfer stuff off the machine, I’ll need to get a USB card, or hook up a network. And I think I’ll do the later.

With fault identification complete, I hooked up the broadband modem (Netcomm NB5) via the ethernet connection (given the USB connection wasn’t going to be working on this machine). Entered the IP of the modem into the browser, and got the modem’s login screen. Everything was good, and I shut down all access other than web via port 80 using the modem’s built-in firewall. Connection to the ISP was established, proxies entered into Firefox (not IE – CERT says there are no secure versions), and Google was available. Connectivity proven.

The web browsing machine got Fedora Core 3 loaded on (a simple process), and the proxy setup was repeated with the same results. FC3 comes with a pre-release version of Firefox, so I loaded up the CD with the .gz for 1.0.4 and loaded that onto the desktop. Then I spent a couple of hours figuring out that I needed to be root to install the browser, and where to install it. Having done that, I still haven’t got it as the default browser – that’s still the prerelease Firefox. But I can run up 1.0.4 from the command line, so at least it’s available, and adBlocker is installed, so well and good.

I figure that I’m going to lock the modem down to a single IP address it’s going to talk to, the FC3 machine. Anything else that wants data from the net is going to have to transfer it from the FC3 machine and won’t be exposed to the big bad internet, because I’m not ready to migrate our entire PC collection over to Linux just yet.

Which means I need to buy a switch.

So That’s where our TV signal comes from!

Pretty roofline, poor reception

When we moved into the new home, I couldn’t find the TV antenna. But when we plugged in the TV, we got acceptable reception and then lazyiness kicked in. But the digital reception doesn’t cut it, so I decided to find out if our TV reception was coming from a coat hanger or something more sophisticated. Turns out you can hang an antenna in your roofspace using a length of rope and have a passable signal. Excpet for SBS. Pretty roofline, poor reception. A pretty roofline would be more important if it didn’t already have a evaporative cooling stack and a skylight breaking it up.

It’s winter here, and the roofspace was roasting hot. So, while the insulation had been abused and moved, there was enough of it doing it’s work that… gaugrh. Hot.

I also found out that our ventilation fans vent straight into the roofspace (great for both heat loss and moisture damage) and that our kitchen extractor fan doesn’t vent anywhere, even though it has a riser in the kitchen. Another housing disaster I’m going to have to address.

Now I need to buy a post to externally mount this bastard of an antenna onto. And a length of coax… or perhaps I’ll recycle one of the many lengths running around up there. There used to be a satelite TV link running off to the garage, I think that one might be long enough (turns out no: satelite hook-up was disconnected with wire cutters, leaving insufficient wire to make the distance). Currently the coax runs into a four-way splitter (three splits used), and I have my concerns that the splitter is contributing to our reception issues. Any opinions?

ADSL breaks even

Well, iPrimus are selling 200Mb/mo ADSL for $13/mo, so that was cheap enough to drag me in. But it’s been weeks and the ADSL modem still hasn’t turned up. Should I buy my own and tell them to sod off? It’s meant to be ADSL2 capable…

Now all I need is a bulletproof OS that can hook up to the net at 256Mb/s without turning into a zombie. I’m thinking that Multimedia PC I’m building has to be turned on all the time, so perhaps to hang the modem off it and have it act as a secondary firewall and NAT. Yet another reason to use Fedora.

Fedora Core 4 is out now – do you think I should go there?

HDTV PVR: heartbeat

I tried hooking the cards up to the included antenna. Far worse than the bunny ears. Hooking the cards up to the house antenna made things a lot better. Channels nine and seven are 98% strength, two and ten are passable at ~80% strength, and SBS, with just 60%, is unwatchable.

My house antenna is a funny beast. I can’t find it. It doesn’t have a presence on my roofline. I have to go up into the roofspace this weekend to see if its one of those magical in-roofspace antennas, but I don’t think so. There used to be an antenna mount on the back of the house, which you can tell by the holes and lack of paint at that particular spot. I’m thinking a better antennna (or maybe even having an antenna) will improve the reception.

I’ve also got it doing output via the video card to the TV, but it’s not ideal as it stands. The TV software wants to put a grey boarder around the picture, which is fine if you’re watching a monitor, but bites arse if you’re watching a TV. And, not surprisingly, 16:9 doesn’t look that big on my 4:3 TV. Hopefully switching to PVR software like MythTV will help with this.

As for noise, the plan is to have the box in the next room and run cabling through the walls. Quieter. But it will make loading a DVD a pain in the butt.

So, more problem fixing, but given the hardware seems to work, I’m going to start fiddling with the OS next.

HDTV PVR: intial impressions

I use my video purely for timeshifting – watching a show that screens at midnight at a more socialable hour. But the quality leaves a lot to be desired.

My grand plan is to retire the VHS recorder, replacing it with a shiney new digital thingy – a PVR, Personal Video Recorder. Which you can buy off the shelf, one or two grand (AUD). And I would. But, then again, I’m a geek, and that means why buy something when you can build it yourself for twice the price and with the enormous expenditure of your own time?

For example, it would be nice to be able to burn TV onto DVD. And most PVRs have a single tuner – while we all know that TV stations schedule the show you want to watch at the same time as at least one other you want to watch; you can only record one; and, incidentally, you can’t watch the other unless you have another digital receiver like a settop box (I’ve seen ’em for $80 at Safeway). Sure, you could tape one and watch the other, but that doesn’t work so great at midnight when it’s a schoolnight. And most PVRs are Standard Definition, not High Def – and if you’ve had the misforturne of trying to watch a SD signal, you know it doesn’t hold a candle to analogue (I’m not going to take a step back here). The biggest hard drive you’ll find in a PVR is 120Gig, and that’s the super-top-end-gee-whiz unit; most come with 40Gig – which might be fine with SD, but bites when recording HD at 15Gig/hour.

So in general, PVRs suck arse. I’m gonna build my own.

I got the bits last night – bottom end PC, two tuner cards (different brands – for reasons that will become apparent), 200Gig HDD (I figure I’ll upgrade to a decent sized RAID array later). Loaded up Windows (I’m using it to prove the concept, then swapping to Fedora 3 once I know the hardware’s good), dropped in drivers (God, what a nightmare; it seems like it eventually loaded) and hooked the whole setup to a bunny ear antenna.

One card can show me Channel 9. That card isn’t happy about the other channels it found, which was nowhere near what’s out there. They’re called things like “Ch@&&el T#n”.

The other card doesn’t show anything, but found all the channels. I think it found Channel 7 twice.

From the bunny ears I’m getting 75% signal strength.

So, now I can play around with recording SuperNanny and Enterprise, but I don’t think there’s much of a future with the current setup. I’ve got to try slightly more sophisticated antenna technologies. And I’ve got to see if I sucessfully can hook my creaky old TV up to the video card – there are a number of adapters that look promising.

I’ll keep you posted.

Proximity sense travel cards are vital; processes support falible memory

I lost my train ticket the other day. My monthly. A hundred bucks worth. I recalled that I’d validated it on the bus to get home (because the bus was there; I don’t wait for it if it’s not there – the timing’s a little vauge and I’m not that adverse to exercise). I remembered left in my back pocket along with a bus timetable. And I knew it was lost, because I have processes to deal with a decaying memory. I lock the car with the car keys now, because the car can be locked without them and I know that I can and have left the keys in the car; so locking it with the key means I can’t do that. I knew that I’d only recently walked in the door, and that I’d only been in a limited number of places. I knew that there was only one place it should have been, where I leave all my pcoket stuff – phone, wallet, MP3 player, keys, coins, ID lanyard and travel ticket. And it wasn’t there. Because I was in the process of trying to put it there. But the other stuff was. It wasn’t in any of my pockets.

I concluded that the only remaining explaination is that I had dropped it, which seemed ludicrous. How could that have happened? It was in my pocket! I retraced my steps back to the bus stop, and halfway there I found the bus pass. Another hundred metres and I found the ticket. During the walk home it had worked its way out, sliding up against the bus timetable and onto the footpath.

Now, the reason I had it in my back pocket was because it was a Friday, and on Fridays its casual day at work and as such my shirt didn’t have a pocket in it. So, there was process failure there, but it was to be expected. Little I can do about casual day.

I’ve had scares like this in the past. The reason I keep my ticket in my pocket is because I need it easily accessible, for feeding into the barriers to let me in and out of the train stations. There are most secure locations I can keep it, but they are less accessible. So I’ve left it in the pocket of the previous day’s shirt and not realised until I’ve arrived at the train station.

But the crux of the matter, the reason this is a GeekRant article, is because if the damn ticket was proximity detect I could keep it in my wallet or on my ID lanyard and never lose it and also have it ready to validate at a moment’s notice. The lanyard would be best, because then I couldn’t get to work without taking my lanyard with me, which would remove another thing I could forget and would inconvience me. And this is all the more important now that I’m lugging a thousand buck yearly ticket around with me. It’s not like it can’t be done either – all the validating machines have proximity sense detectors on them. At least the yearly tickets are plastic and will survive a trip through the washing machine.

Stupid MetCard.

Prank

So, that shiny new computer I’ve been given and my propensity to save power have combined with boyish enthusiasm with a practical joke to create a very embarrassing situation for the two other contractors I work with.

I normally leave my box locked overnight, shutting it down on a weekend. So a discovery of a week ago had to wait until Monday to play out.

My new computer has a temperature sensitive main case fan that’s ducted – at higher temperatures the fan is cranked up to increase the airflow over the water cooled CPU heatsink. There’s a BIOS setting to set the idle fan speed; the default value is almost imperceptable, the highest is a roaring not dissimilar to a jet taking off (mainly because of the ducting and air being forced through the heatsink – all the turbulance is very noisy) and certainly seems to move a lot of air. Apparently the other guys here discovered this setting, and thought it would be a great idea to crank up the idle fan speed to “stupidly high” while I was away.

When I powered up the box, and the roaring fan started, I immediately went to Dean, the guy who did the swap-over to the new box. Having a CPU cut out because of overheating is not cool; I imagined that the heatsink might have come off somehow. He couldn’t imagine what was going on, and did note that the air wasn’t hot. Opening it up revealled everything in its place.

At this point the pranksters saw that this could escalate well beyond a prank and intervened with an explanation. Whilst I wasn’t put out, other people put the pranksters in their place. So, kids, be careful with those pranks. They could blowback on you (oh, I hadn’t intended that pun!).

Soundcard problem fixed

Remember my noisy soundcard at work?

Well, the problem has been fixed – by getting a new computer. Naturally, it wasn’t the only reason for an upgrade, but it was the main reason. 😉

But that’s not the impressive thing; the impressive thing has been the upgrade process. It was the smoothest I’ve ever experienced. Old parallel IDE drive out, plugged into new SATA computer’s CD ROM cable; boot OS, copy a couple of directories over, shutdown computer; remove old parallel IDE drive, reassemble box; boot OS, work. And that was it. Must have taken 15 minutes tops – I was expecting two days of downtime or lowered productivity. Every piece of software I need was installed and ready to go, I only had to tweak a couple of preferences. Similar process for all the other upgrades the team has undertaken this week.

So, my opinion of Dean, the guy that organised it all, has gone through the roof. Dean rules. He rocks.

And all because he arranged to not waste my time. What a guy.

Digital SLR: Initial thoughts

So, When Canon introduced the EOS350D, they obsoleted the EOS300D and ran it out at stupidly low prices… well, that’s the justification I used when I bought one last week.

Anyways, I knew when I bought it the 300 runs USB 1.1 rather than 2, and I can live with how astonishing slow it is to transfer pictures.

And the rapid shot buffer is only 4 shots, but I knew that.

And writing to the flash card is slow. Shooting at high resolutions and taking a rapid collection of photos do not go hand in hand. I didn’t know that, but the camera is quite a step up from where I was, so I can live with that.

And the RAW format! Nothing seems to understand it, not even Photoshop. Why have a lossless format if nothing can read it? Just store the things as TIFFs, for the love of God!

But the freak-out thing is the level of OS support for digital cameras. In XP, just plug in random USB memory stick and it works. Plug in a camera, XP says “hey look! A camera! Got a driver?”; if you say “no”, XP says “oh well, forget the camera then. It certainly can’t be anything like all those memory sticks. You’d be wanting to plug that super expensive SLR camera in so you can use it as a web cam, and I need drivers for that. You certainly wouldn’t want to be ripping the images off it to free up the flash card.” XP then proceeds to become unstable, requiring cold boots to get better again.

XP is such crap. So I loaded the drivers, and all the shitty Canon image manipulation software (excluding Photostich; that’s amazing, purely amazing).

On another note, why doesn’t my camera have a built-in MP3 player? How hard would that be? All that lovely flash memory and great thunking battery going to waste…

Oh. Final tip: to claim the GST back on “duty free” (modern equivalent) purchases over $1000, you need a tax invoice with your details on it. Or more precisely, the traveller’s details. Can be a trap for young players.