feren: I AM THE MAN (Technology makes me punchy)
[livejournal.com profile] rainingmeat, [livejournal.com profile] markvd and [livejournal.com profile] asetwoman take note....

While it can be cathartic, it's actually rather important that you don't shout at your disk arrays.
feren: I AM THE MAN (Zhivagod - Feren_silly)
Thanks to the coolest little firewall appliance on the market, SixXS, [livejournal.com profile] frostyw, [livejournal.com profile] nius, the help of several websites and tutorials in addition to a lot of patience... I now have IPv6 service on my wired and wireless networks at the house via an IPv6 tunnel. I had to force an IPv6 address onto my laptop and manually set the default gateway to point to the IPv6 address on the SSG-5's wireless interface, but once I did I was able to see IPv6 websites. I'm also pleased that my SSG-5 is reporting IPv6 packets flowing through it (I have the firewall's policies set to log pretty much everything IPv6). I really did enjoy visiting http://www.WhatIsMyIPv6.net/ and seeing my new, much-more-complex address come up on the page as confirmation.

So now my house is 2001:4978:1a0::/48 on the IPv6 Internet and I'm posting from my wireless workstation with IP 2001:4978:1a0:200:201d:e0ff:f340:7adb. Best of all, it is entirely without NAT! Speaking as a user and as a network engineer I absolutely hate NAT.

Now I just need to figure out how to make stateless autoconfiguration or DHCPv6 work so I don't have to keep executing obscure Windows CLI commands....

[Edit @2013:] Or, if WhatIsMyIPv6 is giving you trouble, you can try http://www.runningipv6.net/what-is-my-ipv6-address.php
feren: I AM THE MAN (ashryn-enthusiastic)
Yes, the Mac had it first -- and then it was ported to XScreenSaver. But now, at long last, Flurry has been made into a Windows-compatible screen saver.

Maybe I'm late to the party on this, but it's such a nice screen saver that I cannot help but gush about it. After I installed it I was pleased to find that it is aware of dual displays in Windows. With just a simple check mark in the settings panel it began to render two different flurries, one on each of my panels. That's just damn cool.
feren: I AM THE MAN (groat)
I woke up this morning from an incredibly detailed and elaborate dream that revolved exclusively around the 52B outdoor telecommunications cabinet being used by Ameritech SBC AT&T to roll out Project Pronto Project Lightspeed U-verse high-speed data services in my neck of the woods. There's currently a great deal of controversy in my neighboring suburbs that surrounds these boxes.

I wish I was joking in what I just said, but I actually did have a dream that I was involved in some sort of neighborhood action and had to explain how big the cabinet was, why it was so big, what was inside it and how the fans could be made to be even more quiet than they already were so as not to disturb the environment the cabinet is placed in.

When you have detailed dream about work-related stuff like telcom gear instead of something fun like snowmobiling or racing cars or whatnot... it's time to get a hobby and find something to distract the reptile brain with.

down to the wire
feren: I AM THE MAN (card)
He showed me this addictive vector-based Pong-variant and now I can't stop playing the damn game. After showing it to [livejournal.com profile] twanfox tonight I discussed it a bit with him and had something of an insight about the game during the chatter. It's so deceptively simple for the first six levels that you find yourself mocking the opponent, I said. You're all "HAHAH stupid AI!" and then suddenly the fucker has skills.

Go ahead and try it for yourself if you don't believe me. My first round had me dead on Level 6 with a score of 17,845.

As the night moves on I continue to go back to challenge my AI pong-playing overlord. I also continue to drink Tanqueray gin (or Tanglefoot as my Texan uncle calls it). As each task progresses I'm sure my coordination will stumble from "coordinated" into the "hilarious to watch" territory while playing.

I understand if you can't talk to me again
feren: I AM THE MAN (chilly-smiling-feren)
I have two new user pictures, commissioned from [livejournal.com profile] screwbald (Warning: Posts in Screwbald LJ are generally rated NSFW and the journal should be viewed at your own risk). Behold!


Also, I have some items of note that are vaguely organized in some sort of order...
  • Work sux at $EMPLOYER, and that's all I've got to say about that right now.
  • On August 23rd I drove to Milwaukee to see a kick-ass concert courtesy of a surprise birthday gift from [livejournal.com profile] captain18 and [livejournal.com profile] spoothbrush -- more on that in a later entry. There was Too Much Awesome For This LJ Post, and suchforth, so I'm writing a detailed entry.
  • I'm going to see [livejournal.com profile] lady_curmudgeon for the extended weekend.
  • I fly to Maine next week for my part in [livejournal.com profile] roho and [livejournal.com profile] genet's wedding. I miss flying for business, so this helps make up for the cutback in my work-related travels.
  • I still am sad that a little girl died, but I think all this coverage about Jon Benet Ramsey is ridiculous.
  • I still love my MacBook and I'm currently in a truce with my iPod that may lead to further purchases of music. There will be a poll on this tomorrow.
  • There's about 2.3 months until Midwest FurFest.
  • Remember how my Expedition had that Check Engine Light (known as a "Malfunction Indicator Lamp" or "MIL") for the last two years? Remember how Roho and I spent $200+ dollars and scalded our arms and hands on red-hot exhaust pipes to change out O2 sensors that I thought were the root cause, but weren't? Remember those P0171 and P0174 OBD-II codes that wouldn't die and how I was at my wit's end? Well, guess what! Last Saturday I fixed the problem with a $4.95 can of electronics cleaner! FUCKING. CARS. I failed emission testing once and spent three hours chasing down parts and over $200 for this?
  • I still like my gin, very much.
  • I have apparently blown out the left ear bud of the ear buds that are provided with my iPod. Yes, I set the volume cap but I still seem to have blown the damn thing out anyway - I hear a most disconcerting buzz/rattle when certain frequencies are hit by my music, but only on that side. When I swap the 'bud from left to right the buzz/distortion/rattle follows. So! Dear LazyWeb: Does anybody with an iPod have a suggestion for replacement ear buds that are compatible with a G5 (Video) iPod but without the shitty "Blowing out at the slightest provocation" feature?
  • I have to go to court about the missing piece of siding on my house. That's right, my village is actually taking me to court over a ten foot length of fascia. Of course I'll plead guilty (I can't deny the fascia is missing) and pay the fine, but for fuck's sake, don't they have better things to do?
I'll post a bit more tomorrow, work permitting.

But today there is no black or white
feren: I AM THE MAN (ashryn-enthusiastic)
Thanks to [livejournal.com profile] tugrik and a host of other people I know (I'm looking at you, Zephyr... as well as you, [livejournal.com profile] mindslide) I have finally cracked under pressure like the little technophile I am. Tonight I ordered two beautiful things that are encased in black:

: 60 GB iPod in black :: 2.0Ghz Intel Duo 13 inch Apple MacBook in black :

Yep, I've officially joined the Cult of Apple. Or, perhaps it's more accurate to say I'm returning to my roots... after all, I did get started in the world of computers "back in the day" with an Apple ][e. Either way, I'm glad to be working for $employer at the moment because I got an excellent educational discount on both the iPod and the MacBook. That's a 60GB iPod in black that I ordered, along with the new 13.3" widescreen MacBook with the 2.0GHz Intel Duo chip, also encased in ebony. I'm looking forward to doing some lightweight video editing with the MB and toting my MP3s with me in the truck instead of having to burn albums to CD for the truck's CD changer.

So now I get to wait impatiently for each box to show up. Looks like the iPod will be here first, with the MacBook following shortly after. At least I had them shipped to the office so they wouldn't sit around on my front porch for any monkey to find and steal...

we're changing highways


Jan. 12th, 2006 04:25 am
feren: I AM THE MAN (ashryn-devious)
I am updating Livejournal over wireless via my PSP. I blame [livejournal.com profile] doomsey for this!
feren: I AM THE MAN (ashryn-gruntle)
Dear Lazyweb,

I have an Abit KN8 motherboard. It claims to support USB 1.1 and 2.0 on-board via the 4 USB ports on the back panel and the three headers provided on the motherboard. The board is running bios revision 14 (NF-CK804-6A61Fa1DC-14) compiled 11/11/2005 and released 11/30, which purports to be the most current version. As near as I can tell I have installed all the latest "motherboard drivers" from nVidia and Abit. The BIOS setting for integrated device is set to "USB 1.1/2.0" which is the only option that invokes the 2.0 standard. As near as I can tell, everything should be working.

Of course, it doesn't. )

Help. Make USB 2.0 go so I too can join this fantastical year of 2001.

[Edit 1828 Central 12/13]: It's fixed. Apparently the solution was "Via the Device Mananger, uninstall all USB devices, hubs and controllers exactly three hundred times, reboot and reinstall them again -- each time hoping you will just happen to install the drivers in the undocumented MAGIC ORDER that will allow the onboard 2.0 controller to coexist peacefully with the onboard 1.1 controller."

I'm standing in my light
feren: I AM THE MAN (ashryn-enthusiastic)
I mentioned in an earlier entry that DSL at Z'ha'dum was acting naughty and thus I had limited to no Internet access at home. The thrilling conclusion (I hope) to that saga has been achieved: After a bunch of troubleshooting on Sunday and Monday with the remarkably helpful techs from SpeakEasy, it started to look like my lack of connectivity was not due to a wiring issue. Moving the DSL modem (it's a bridge but I won't go into that now) from the Blue Room of Death to the NID didn't bring any improvement to the situation, so we were fairly certain inside wiring wasn't at fault. After I rewired the NID to completely remove my house alarm a couple of MLT were run and no problems were found on the loop from the CO to Z'ha'dum. So it wasn't really as if the snow was causing a problem with the phone line. A bit of poking at some of the statistics on the DSLAM revealed there were no training-starts showing up even though the copper to my house was fine and I had power-cycled the modem numerous times.

So, if the copper from the CO is okay and the inside wiring is fine, but the DSL modem won't sync even when it's directly connected to the NID... what's left that could be at fault? That's right, the DSL modem itself. I pushed a little on the subject and the tech ordered a replacement for me. Happily the unit was under warranty so it was a free replacement. Overnight shipping was paid courtesy of SpeakEasy, which impressed me a great deal.

The new unit arrived today. Since I'm sick at home for the second day in a row I was able to unpack it immediately upon delivery. I called up the tech line again and, to the surprise of all involved, as soon as I was picked up from the hold queue I got the same fellow I've been working with for the past few days. I plugged the modem in at the NID and got signal, though the poor tech couldn't pull any stats from the DSLAM due to an internal issue -- frustrating, but something we could deal with. I moved the modem into my computer room, plugged everything back in and was pleased to see the DSL light start flashing as the modem trained with the DSLAM. A minute later it was passing traffic and I could ping sites on the Internet once more.

So, for the last two hours and forty-seven minutes I've been online from home. I think replacing the modem may have actually been the fix for the issue (all signs pointed to it being at fault but I still had nightmarish visions of needing a truck roll from the ILEC so I could get somebody with an Agilent DSL test unit on the premises to confirm good signal). To be on the safe side I'm going to shake the circuit down for the next day by punishing it as much as I can -- streaming audio, a bunch of downloads, you name it. If it stays up and functional I'll ship back the old modem and gradually re-add devices (TiVo, cordless phone, 2600 sets) to make sure I can accurately pin any problems down should a new issue arise.

With that solved I can now move onto the next big annoyance: USB 2.0 on my machine. Expect a Lazyweb post about it.

You fight the sunday crawling
feren: I AM THE MAN (Technology makes me punchy)
... and said I'd only buy a premanufactured one from a major retailer. I'll put it this way, folks: I spent all day yesterday (about 20 hours) building the system, only to find I had to spend another $610 ($399 + $179 + Uncle Sam's cut of the take) to make the system run. Granted, almost all of that will be refunded when the defective/inadequate parts are sent back under RMA, but that doesn't make my wallet feel any better.

What makes it feel worse is that after spending another 10 hours on it today, it still. Doesn't. Run. Reliably.

I have given a name to my pains, and it is Integrator's Lament. Right now I believe I have a terminal case of it.
feren: I AM THE MAN (Technology makes me punchy)
The wildly popular anti-spam system dspam went into production on panther about 4 days ago. The tipping point came after I restored proper routing from "role accounts" (think webmaster, postmaster, etc) to the inbox of a Real Human (read: mine). It's astounding just how much junkmail these role accounts were getting. Since I was frustrated by getting something on the average of 30 spam letters every two hours via the role accounts, and since I'd had a few other users on the system complaining that their mail boxes were out of control too, I decided to take action. I took a cue from [livejournal.com profile] roho and tossed dspam onto the box, thinking "Hey... a bunch of people use this, it's trainable, and I'm not submitting to the horror that is the DNS RBL system (where collateral damage due to crazy people at the helm is a way of life and is somehow viewed as completely acceptable)."

I chose... poorly. Or I'm stupid. )

Cause the thing that's in effect
feren: I AM THE MAN (Default)
First off, it's important to understand I've been running a dual-head display system on my PC for the last sixteen months or so. With that knowledge, you'll better understand how this avalanche got started and lead to the final result.

On Thursday night I found that Dell was having another sale on their wonderful UltraSharp 2005 FPW monitor. I had picked up one of these a few weeks ago to replace the giant 21" Sun CRT that was sitting on my desk and I've loved every minute since. The panel is bright, it's widescreen, it's sharp as heck and I have space available on my desk again. I decided to buy this second one because my old Sony Trinitron Multiscan 200sx has been feeling its age lately. When I wake the monitors up from standby the LCD snaps to life (given its digital nature this is expected) and the Trinitron ... well, it doesn't. What it will do is take 30 seconds to warm up and, once glowing, spend a minute or two flickering, buzzing and rolling like an old TV before it stabilizes. I take that as a sign, so I ordered the second 2005FPW on Thursday night with the intent of using it to replace the Trinitron.

All seemed well until.... )

So there you have it, step by sickening step: that's how the purchase of a $410 monitor spurs me into building a whole new PC from the ground-up that's almost three times the cost of the instigating part.

Grab that cash
feren: I AM THE MAN (groat)
Sancho, you need to contact me on IM or the like to get the passwords reset for your personal account and your website (cell phone is a really bad method as I ramp up for MFF and, more importantly, I have no cell phone reception in the house). Due to the system compromise I have to consider all old passwords as compromised, which means the accounts are locked until the owners contact me. If you can't catch me on AIM you can leave me a voicemail on my cell with the passwords you want the accounts reset to -- the caveat is that due to the aforementioned poor reception, I may not get it for hours or even days. IM is the best, most reliable method.

This goes likewise for anybody who hasn't gotten ahold of me in the last week and is still locked out of the server.
feren: I AM THE MAN (ashryn-gruntle)
This is a belated entry. It was intentionally delayed to try and maintain an advantage in a game of cat-and-mouse I was playing. Since the Super Happy Mega Fun Round is over now and I've returned to the usal day-in day-out dance, I can post this.

Sometime earlier this week, my personal server was compromised. For those who haven't been playing along at home, I have been doing hosting type things for a few years and can briefly recap how it all got started. )

On Wednesday morning I was sitting down at work, sipping on my coffee and preparing for a long day of listening to people building shit with their mouths instead of with their hands. As usual routine I logged into the server and started skimming the mail that had collected since I'd gone to bed. The subject of one in particular grabbed my attention: ** URGENT *** it said. Phishing attack on your server. I read on. The message warned that an attacker was using my server to harvest Amazon accounts and passwords. The informant included the phishing URL and so I was able to check things out and confirm -- sure enough, there was a very nasty set of web pages nestled into one of the subdirectories of a site I'd recently taken on hosting responsibilities for. I know the owner of the site and knew she hadn't done it -- especially since I hadn't yet given her access to the system to maintain her pages. I started getting a sense of low-grade concern, so I backed up the files for evidence and then wiped out the offending directory. Low-grade concern would later give way to frustration and outright dismay.

Okay, I've been compromised, I thought. And I don't know how bad the attack was. Did they r00t it? Are other bad things going on? I better go find out. Thus began a 6 hour journey through the box. I found a couple of things right away that made my stomach sink: programs like top suddenly refused to run, citing dynamic links that had NEVER existed on the server. I kept digging and I eventually got my confirmation: an IRC "bouncer" program had been installed on the machine, listening on an unauthorized TCP port, disguised to look like my production MySQL daemon. Several key binaries like /bin/su and /bin/login had been replaced with trojans. One tool reported a number of cloaked processes running and loadable kernel modules installed, along with evidence of signatures for two prevalent "root kits."

The first law of running a system is that when you've been compromised, you do not try to recover the system as it stands -- you can't be certain that you caught every little dastardly thing the attacker has done. The appropriate procedure is to back everything up for evidence if you can, back up your data files (so you can use them as incrementals to the weekly backups that you're doing... you are doing weekly backups, right?) and then burn the whole damn system to the ground so you can do an install from scratch with clean, trusted media. The problem with this is that the machine in the hosting facility doesn't have a tape drive, and I'm not physically there so I can't swap media in and do an install myself. This momentarily stumped me until I started just making tarballs of everything important (all 24 websites that I host, all the mail files for my users, all the home directories of my users, etc etc) and pulling them off the system to a temporary storage facility. I didn't want to give my attacker any indication that I'd noticed him so, aside from removing the page to prevent further phish from being hooked, I left most everything in place until I was ready to have the system nuked. Wednesday night I was up late, making tarballs and FTPing them down to my PC (hooray for 6Mbps DSL lines and FileZilla!). I stayed home from work on Thursday because I still felt relatively crappy and worn down (small wonder, right?). Time was passed copying more files around between machines and trying to make sure I'd covered all my bases by backing up every last configuration file that I might need again. At around 2:30 PM or so, while talking with [livejournal.com profile] shaddragon, I called it good and sent a service ticket to my hosting provider. In the letter I explained what had happened and gave their techs permission to burn the box down and do a complete reinstall. Shortly after the system suddenly went unreachable, which told me they'd yanked the machine from their network at the very least as a security precaution. All I could do was wait. Later that evening came a follow-up e-mail from the hosting provider -- my request to have Fedora Core 4 installed (since they won't do FreeBSD) would cost me $150/hr since they don't provision Core 4 at this time, just Core 3. I talked with [livejournal.com profile] points for a bit and he pointed me to an FC3->FC4 migration path that could be done remotely, which was perfect. I gave the representitive my blessing to do Core 3 and waited. And waited. And waited. Eventually I went to bed. Total cost of the day's effort? 19 some hours of my time, a bottle of vanilla Smirnoff vodka and three 2L bottles of Diet Sunkist. Oh yeah, and more hair from my head.

When I got up Friday morning I still wasn't feeling great, so I opted to stay home from work again. Good thing I did, because at around 10:30 in the morning I was contacted by the tech team to verify my request (I'd forgotten to give my authorization code) for the rebuild. Once they had the proper documentation they went to work, promising it would be done in "2 hours or so." I didn't get the system back until about 2:30 PM yesterday. I ran the migration and got the system up on an FC4 userland with an FC3 kernel. Since I wasn't about to go through all this suffering and NOT have the latest and greatest versions, I spent the following two hours and change wrestling with getting "yum" to work in a way that made sense to me. In the middle of the final bulk upgrade the system was suddenly halted by root, which severely pissed me off. Either I'd gotten hacked in the three hours since installation (mostly unlikely) or the hosting company had shut down my machine -- in the middle of a huge upgrade -- for no discernable reason. More waiting. Eventually the system came back and I went back to work. First I brought over the websites, then I had to screw around with the pre-installed Apache in order to make it run the way I wanted while supporting the features I needed. That was an adventure. As several of the websites I host depend on the DB back-end to make them go, I had to get the MySQL database system up and running next. This was a relatively painless install for me... but after all the work, I found Apache's PHP wouldn't talk with it. [livejournal.com profile] twanfox was able to lend a bit of insight into that and I got things straightened out. With PHP and MySQL talking I could finally do an upgrade on the phpBB system that FrostFire uses (just to make sure I was current... again, with this much pain I deserve the newest and best). With the websites in place I turned my attention to getting the first of the hosted MUSHes back online, just to make sure I could get predictable behavior on this new OS. I had one small issue and then FrostFire was up and rolling again, so I started working on e-mail. That was at around 8pm last night. I worked on e-mail until 4:23 this morning, at which point I gave up and went to bed.

My desire to do database-backed virtual mail accounts seems to have been a touch... optomistic. I'm in the process of giving it one last college try, then I'm going to fail back to the tried and true old way of just having a shell account for everyone who has e-mail on my system. Not my ideal way of handling it, but I can't have the mail system down much longer.

I've done things I know you'll never understand
feren: I AM THE MAN (ashryn-gruntle)
In lieu of an actual update about anything that's going on in my life, I will herein offer some free advice. My advice to anybody who is considering becoming an afficianado of home theater is this: Don't. Just don't do it. Run. Run now. Run screaming.

Trust me, you'll be much happier if you do yourself a favor and pick up a cheaper, less addictive habit. Something like crack cocaine, maybe.

The beautiful people
feren: I AM THE MAN (ashryn-angst)
I went over to Circuit City today and talked to the sales rep in the TV department for a bit. I explained my current annoyance at Comcast and asked three simple questions about DirecTV. First, how much will this cost me per month when all the features I want are turned on (meaning the package has the channels I want, HD service is enabled and the HD DVR subscription is turned on)? Second, do they supply my local NBC/ABC/FOX/PBS/etc affiliates in HD over the dish, or do I have to go to an off-air antenna? Third, what does DirecTV get me that Comcast doesn't (in other words: mister salesman, earn your keep and "sell" me on this product)? The answers surprised and pleased me:
  • With all the features I want, the cost per month of DirecTV is considerably less than my current Comcast bill. This was surprising given the calculations I was working under yesterday, but serves to illustrate my point about DirecTV failing the test of putting their pricing up front. With DirecTV, DVR service is about $5.99 per month. I already knew their HD service is $10.99 per month. The basic service package is $41.99. Apparently, tax is already handled by the service costs. Total monthly invoice: $58.97. That's about $16 per month less than Comcast is charging me (although it wouldn't include any "premium" channels). I can add a premium channel with DirecTV for something like $12.99 per month, which would still put DirecTV under Comcast for price by a margin of about $4.
  • Despite what I'd read on the various sites, I can indeed get my local network affiliates in HD via the dish, which eliminates the need for an off-air antenna. At this point it is evident that for my requirements, DirecTV is equal to Comcast and comes in at a lower pricepoint -- something that is always attractive to potential customers.
  • DirecTV offers a number of benefits over cable. A big benefit: DirecTV programming is inherently digital across the board. Comcast has a number of "analog" channels still, almost one hundred of them. Simply put, analog stations look like crap on the big screen because you can see the overcompression that Comcast is using. While DirecTV also does compression, all their material is digital so it is handled better. A second advantage over Comcast is that because DirecTV is all digital, almost all the stations support 5.1 surround sound. Hooray, my theater system will no longer go to waste when I'm watching regular television! For the money I spent on the Onkyo and the speakers, everything I watch should be in 5.1 DTS. Third, the DirectTV DVR is based on Tivo and Tivo doesn't suck. While I want to root for Motorola, the simple fact of the matter is that the Comcast DVR solution is still immature, has a lousy GUI, lacks sufficient storage and is prone to a lot of glitches. The DirecTV HD Tivo has a 250 GB HD, so it can store 30 hours of HD content and over 200 hours of standard definition content. This is a vast improvement over my current situation because the Comcast DVR can only hold 30 hours of standard definition content and something like 4 hours of HD.

Faced with a better product for less money per month I bowed to economic pressure and played the part of consumer whore. I plopped out the $599 at Circuit City and came home with the DirecTV HD tuner/Tivo device ($499 after the mail-in rebate). I got a bit of a runaround on the phone but finally reached the right department to schedule the installation of the remaining tuner and the dish. So, in one week hence, I will be up and running on DirecTV and can cut Comcast loose. I'll have to stay home for it because there's a 4 hour window when the installer will arrive. Of course, nobody will tell me when that four-hour window might be, so I consider the entire day a loss. In that respect DirecTV (or maybe the installer is from Circuit City, I dunno exactly in this case... things get all confused when you buy DirecTV service from Circuit City) is no different than Comcast or the phone company. But hey, small price to pay, right?

So, in summation: For me, Comcast blows more than DirecTV and thus is being dropped.

This is my show
feren: I AM THE MAN (ashryn-gruntle)
Reminder to self: While it's cool to have a site-to-site VPN that connects the house to the office, and it's cool to have a Cisco 7960 sitting on my desk that's tied into the company phone network so I can take and make calls at home as if I was at the office... it is not cool to be taking and making business-related calls all day on your weekend.

While talking with [livejournal.com profile] flynhamster today on a non-business-related call, she observed that I'm a glutton for punishment. I think she's paying me a huge compliment by succinctly understating the situation.
feren: I AM THE MAN (ashryn-blahblahblah)
Dear Lazyweb,

I'm trying to find any form of documentation available to (in)validate a behavior on the Internet that involves DNS and lazy, web browsing users. It is not uncommon for DNS administrators to put something akin to the following in their zone files for a particular domain (assume best practices followed for SOA including proper $ORIGIN statements, etc):

                        IN      A
www                     IN      A

This has the effect of allowing somebody to type "http://black-panther.us/" into their web browser and get to my web page because an A RR ( is returned that would be the same as if they typed in "http://www.black-panther.us/". As I said above, this is primarily done to allow lazy web browsers such as myself to type only the domain in the URL bar and get taken to the website. I could go so far as to say that this is now expected behavior on the public Internet. However, just because something is expected doesn't mean it's correct (the opposite is far too often the case, where broken behavior has come to be expected or even accepted as correct). Hence, I ask you, the all-knowing web: where is this behavior documented as being acceptable in the relevant RFCs or DNS best practices papers? So far I have reviewed a slew of RFCs, including 1912, 2181, and 1033, and I have yet to see this described as something that is actually approved and correct. RFC 2219 somewhat references the behavior I'm describing in the second paragraph of section 1 ("Rationale"), but is using it to outline a case for the remainder of the RFC. I've found no allusion to this in the "Best Practices" documentation I've scanned during my scrounging, either.

So is this just a common practice by lazy administrators like myself to keep lazy users like myself from kvetching, or is this actually documented somewhere as being appropriate?

I find it both amusing and, simultaneously, frustrating that I can tell you which RFC indicates an underscore cannot be used in a name (RFC 952) but I'm drawing a complete blank on this.
feren: I AM THE MAN (fcy2k)
.. I am looking at this remarkably affordable proximity badge system and seriously considering buying it for Z'ha'dum. I can pair it off with an automatic door strike and thus have a really nice keyless entry system that would still be perfectly secure should a power failure happen. It would also be a lot nicer than having to fumble around with a key for the deadbolt when it's late at night and I forgot to leave the porch light on.

Last night after school was pretty relaxing and good for my soul: I came home, vegged in front of the TV and then invited myself over to Heather's place around 8pm. Heather and Gary recently obtained a newly refelted eight-foot pool table and set it up in their heated garage, which has become their quasi-permanent recreation room and bar. After making my introductions to the other folks who were visiting I proceeded to drink too much, smoke too much and shoot pool. Apparently [livejournal.com profile] arphalia is my good luck charm... every time she was on AIM and chatting with me I ran the table, and when she wasn't around I had my ass handed to me. Around a quarter to midnight I said good night to everyone at Heather's and drove home. Once I was back at the house I engaged in drunken telephone tomfoolery, with the topic of discussion ranging from serious to seriously amusing. Eventually I fell over for sleep at 1:30.

Right now I'm waiting for a phone call from the roofers -- the plan was that they'd call about an hour ahead of time to confirm their appointment. The appointment is scheduled for noon and there's still been no word from them, so I'm starting to wonder what's going on. I have a contingency plan for today, however, so I'm not worried about it in the least. I'll give them fifteen minutes past the appointment time, and if they don't show up I'll just make an early departure for the Northern suburbs. I'm planning to hit BD's with [livejournal.com profile] roho and [livejournal.com profile] genet, then we'll go back to the apartment with the express purpose of tossing back some gin and tonics while watching Babylon 5. I also will get to see the drawings that Genet put in my sketchbooks since she's doing me the honor of breaking them in -- I keep getting told these sketches are something to behold, and I've been waiting very patiently for the last few days. My breaking point has nearly been reached ... with all the teasing I've received about them my curiousity is positively killing me.

Let me be your armour


feren: I AM THE MAN (Default)

June 2017

1112 1314151617


RSS Atom

Most Popular Tags

Style Credit

Expand Cut Tags

No cut tags
Page generated Oct. 21st, 2017 06:29 am
Powered by Dreamwidth Studios