The Guru College

Nagios Checks for Google Apps

I’ve just moved my Nagios plugin check_google_apps from an internal system out to github. It has a few minor improvements, and now, the improvement will be tracked in public. If you have any suggestions on how to make it better, fork and send me a pull request.

Comment Spam

The spammers are getting funny:

Hi there, i read your blog from time to time and i own a similar one and i was just curious if you get a lot of spam remarks? If so how do you reduce it, any plugin or anything you can advise? I get so much lately it’s driving me mad so any support is very much appreciated.

The comment was finished off with a link to a bluetooth head set and a crappy SEO targeted site. So I checked my stats:

Akismet has protected your site from 26,184 spam comments already.

There are 127 comments in your spam queue right now.

So, the answer – I use Akismet. And it caught you, spammer.

Shipping Notice

I got a notice from Nikon Service and Repair folks that my D7000 is winging it’s way back to my eager hands. For those of you who missed it, the shutter failed some time ago, right around 95,000 clicks. It took me a little while to get it into a box that wouldn’t do more damage to the camera in shipping, and then it sat in a “parts hold” with Nikon for a bit. The hold cleared, the payment was processed, the repair has been finished, and it looks like I may yet catch the tail end of spring photography.

While my camera has been out for service, I’ve been leaning heavily on a borrowed D100 and my iPhone 4S. I’m realizing how I’ve come to rely on the incredible sensor and the frame rate of the D7000. The D100 produces clean shots in reasonable light (far better than the iPhone), but it’s frame rate is incredibly slow and the buffer maxes out at 2 or 3 RAW images. The iPhone runs a much higher buffer, but the crispness of the image, even in broad daylight, isn’t all that good. And for both of them, noise is unusable in anything approaching poor lighting.

It’s going to be nice to fit an f1.4, dial it up to ISO6400, and head out at night. I’ve been missing that.

DynDNS Policy Changes and CloudFlare

Starting now, if you would like to maintain your free Dyn account, you must log into your account once a month. Failure to do so will result in expiration and loss of your hostname. This activity helps us eliminate hostnames that are no longer needed and/or dormant. Note that using an update client will no longer suffice for this monthly login.

This was in my Inbox this morning from DynDNS. I’ve used them for years and years to maintain an easy way to get back to my machines at home when traveling or at the office. A few years ago, they changed their policy and stated that if you ever failed to update your Dyn account with <a href="http://sourceforge.net/apps/trac/ddclient/" target="_blank">ddclient</a> within 30 days, you would lose your hostname, and have to re-register. Now, the same penalty is in effect, but you also have to log into their web interface.

Fun.

This made me look for a non-DynDNS solution, and much to my delight, I can use CloudFlare as a ddclient target. I already have the domains I want to use hosted in CloudFlare, and it took less than 5 minutes to download the patched ddclient from github and set it up.

Five minutes, and I’m done with DynDNS forever. Which, I guess is what they want. I’m a user who was unlikely to ever switch to being a paid customer, and I’m just a drain on their services and infrastructure. But it also means I’ll never be a paying customer in the future.

Google+ Profile Cleanup

I’ve been doing some cleanup of my online presence, and I realized much to my chagrin that my old Google account’s G+ profile was active. There were lots of cross posts to my “real” Google+ profile, and just random junk. So, I’ve nuked Google+ from orbit on my old Google account (which, in essence is just a mail forwarder these days), and I’ve taken a few minutes to update my “real” Google+ profile. While doing all this, I noticed Google+ is less awful. I’ll give it another go.

Two Factor Authentication

In the wake of the massive attack on the WordPress infrastructure, it makes sense to take a moment and talk about security. First and foremost, if you run a copy of WordPress yourself, you must apply updates rigorously. Most of the updates that come out have some form of security patches included in them, and these are important. Second, make sure you aren’t using an account named “admin”, “root”, “administrator” or the like. These are the easiest for the kiddies to target. Third, run something like the Login Security Solution plugin. This prevents brute-force password-guessing attacks by disabling logins from IPs that try lots of passwords against the same username over and over again. It’s not perfect, but it won’t harm legitimate users badly and it will cut down on the number of attacks the botnets can try against your sites.

Finally, look at using a service like Duo Push. It’s easy to integrate into WordPress – signing up for a free account, installing the plugin, and associating my phone with my administrative account took me less than 10 minutes to do this afternoon – and it changes your account password into a two-factor password. That being something you know, like the random string of letters, numbers and special characters that make up your password and something you have, your smart phone, your landline, or your YubiKeys keyfob. This way, even if someone guesses your password, they can’t actually use it unless they also have your phone or whatever with them, and honestly, if they have your phone and can guess your password, you have bigger problems that the security of your WordPress site.

Google Reader Fallout

A few weeks ago, Google announced that they were shutting down Google Reader on July 1st, saying that “usage of Google Reader has declined, and as a company we’re pouring all of our energy into fewer products.” I like many others rely on Google Reader to filter, sort and keep tabs on the world’s news, especially for sites that updates once or twice a week, rather than 50 or 60 times a day. There was a huge uproar at first, and people were going on about how Google could turn off any service and that we needed to pay for services to keep them going.

I’ve thought about it a lot, and realized how wrong this sentiment is. Paying for a service is not the only thing that will keep it afloat. Enough people have to invest time and money to keep a developer interested and working on a service; the market can’t change too significantly; the legal landscape can’t change too suddenly. The only way to make sure a service survives is to own a license to host the service yourself, and run it in-house. This is impractical for many services, especially ones that rely on extended network effects – a locally hosted Facebook with a dozen accounts isn’t interesting.

So everyone: stop bashing Google for this. It’s true of every other company that offers online services of any kind. Go ahead and use the services you like. If they are supported via payments, make sure you pay and don’t freeload/pirate. If they are ad supported, click an add now and again. It’s how the developers pay the bills. If the service closes, pack your bags and move to a new one. Hopefully all services allow data export the way Google does, and selection criteria for new services should keep that in mind.

Newer Posts | Home | Older Posts