Planet Linux Australia
David, Julie and Alex with Jagungal in the background (fullsize)
Alex and I had been thinking we should head up to near Jagungal and check out some of the trails through the wilderness there to ensure bikes could get through. This to ensure our planned route through for the next Canberra to Kosci Ride would work better than the previous one.
We decided to do a new years eve mtb ride on our single speeds in the wilderness around Mt Jagungal (the northern most mountain in Australia over 2000 metres). David and Julie came along for the fun, though I did not have my camera I was able to get my phone out easily through the day and get some good photos. They are all online in my Happy Jacks Jagungal Ride Album. Nice day out and and awesome way to finish off the year even though we arrived back in canberra tired and ready for sleep around midnight.
The boys on the trip overlooking Halls Gap (fullsize)
As I say i the write up, late in 2012 Alex, Lib and I started plotting a week of cycling in Victoria. Inspired to some extent by a cycling tips article, we added in mtb riding to the plan and decided to ask Bleeksie, Brooke and Aaron along for the fun.
We klicked it off with the Otway Odyssey mtb race and then did a bunch of awwesome mtb and road rides aorund the state. I was rather impressed with the grampians having never been there. Such a great week on bikes.
Photos and a few words from the trip are online in the gallery Victorian Epic Cycling Holiday February 2013. Now we just need to work out the next such trip. I suspect a south east Queensland cycling trip could be the go for some time in the future. I know there is a bunch of great riding up there.
A more open section later in the canyoning day (fullsize)
The previous ARNuts canyoning trip had been based on Mark's birthday, this time we all got up there to celebrate Alex's birthday. Another fun day out in the Blue Mountains with the ARNuts.
My photos from the day are on my Whungee Wheengee Canyoning page. I should not find it so amusing but I do that when the guides end up with a group of people who have fun in long AR events or 100KM runs and similar it seems to be a bit of a shock to them as they are used to clients that struggle with the hikes and harder bits rather than clients who are fitter than most people and simply get on with the harder bits having more fun the harder it gets.
I personally have always enjoyed the Ubuntu Developer Summits (UDS), but nowadays they have been converted to the Ubuntu Online Summits (UOS). Attending them is not always convenient (timezone issues, might be travelling, etc.) so I watched the recorded video of a session I was interested in: MySQL & Variants in 16.04.My key takeaways
- Ubuntu 16.04 Xenial Xerus is an LTS release.
- The term “cross-grade” is used a lot (it is not about downgrading/upgrading, but being able to use MySQL or MariaDB or Percona Server interchangeably)
- It would be nice to see MySQL 5.7 in this release (for Xenial as well as Debian Stretch). From Oracle there is a new packager taking over the task (Lars)
- MySQL 5.5 is still the default in Debian, and there needs to be upgrades tested between 5.5 to 5.7 (it looks like the ideal jump is that Ubuntu will not be seeing MySQL 5.6)
- Percona Server 5.7 is 60-90 days out; xtrabackup has had some new modifications and deserves an upgrade
- Boost is a new requirement for MySQL 5.7 & Percona Server 5.7; some old TokuDB problems in the builds are likely already fixed in MariaDB Server so this can be inherited
- MariaDB is waiting to iron out the bugs in 10.0, and may stick to that
- Jon Grimm (Engineering Director for Ubuntu)
- Robie Basak (Ubuntu)
- Otto Kekäläinen (MariaDB Foundation)
- Lars Tangvald, Norvald H. Ryeng (Oracle)
- George Ormond Lorch III (Percona)
Robie: Waiting in Debian for a transition slot from MySQL 5.5 to MySQL 5.6. There’s some discussion with bugs, re: Akonadi, need to also resolve ABI issues with MySQL 5.6. Not really discussed MySQL 5.7 yet.
- Norvald: 5.7, changes to installation. Client library ABI cleaned up. There may be some clients breaking because of that. No more exported symbols. See: The Client Library, Part 1: The API, the Whole API and Nothing but the API & The Client Library, Part 2: The Version Number
- mysql_install_db is now replaced by --initialize in the server, so have to rewrite the post-install scripts. Might also have some AppArmour changes. Spoke to people @ DebConf (so best place is to put AppArmour profiles upstream (i.e. in mysql) and Debian and other distros will get it from there). AppArmour profile is in the MySQL source package now. Probably can get away with doing everything as cmake variables.
- MySQL 5.7 has disabled the old password hashing algorithm, so if people haven’t upgraded they might have problems; so a manual intervention to fix their accounts.
- Going from MySQL 5.7 to MySQL 5.6? It is done by dump and restore. There is no testing automated downgrades. Are there disk format changes? Norvald is not aware of any. If you use virtual columns in 5.7, you can’t downgrade easily to 5.6.
- Robie would prefer to not release 5.6 and 5.7 concurrently. During Trusty, there was some level of user confusion. Debian – release team would prefer to see one transfer than two, so is it better to just do a single transition to 5.7?
- Norvald says there hasn’t been testing from 5.5 -> 5.7. They only support upgrades from 5.5 -> 5.6 -> 5.7. For Ubuntu the choice can be to have 5.6 and then later do 5.7, but Jessie only just released with 5.5, so Stretch with 5.6 might not be a great idea (so users migrating from Jessie to Stretch will go from 5.5 to 5.7). Could also have 5.7 depend on a stripped 5.6 binary (like the embedded server; this is for localhost and the security team shouldn’t be too annoyed) for people to do an upgrade. Norvald says this has not been tried and there needs to be a migration path tested from 5.5 -> 5.7.
- Conclusion: 5.7 in Stretch. Xenial is an LTS release, and 5.7 should be targeted for that.
- If the maintainer script fails (postinstall script fails – don’t leave apt in a weird state). If it fails then upgrades, leave a debconf critical notice to say that the service is disabled and then fix it manually. Otto says that leaving /etc in a broken state is terrible, so we should avoid it.
- Do we (Oracle) have the resources for 5.7 packaging and how soon can it be done in time for Xenial? There were patches from Lars in the git tree, but there haven’t been more recently. Lars will take over the 5.7 transition so if there is a list of work items, this will be settled (Lars will take over from Norvald).
- There will be a separate session with Norvald/Lars/Robie outside of UOS about 5.7. Defer the Boost conversation after the session as well.
- George: Percona is mainly looking out towards the 5.7 work and what kind of resources that will be put to that. There are new folk @ Percona to help with this. Percona inherits so much from the upstream codebase, it just works for Percona Server. There is Percona XtraDB Cluster and Percona xtrabackup, and xtrabackup has moved on quite a bit since the last upload (since last November 2014). So might be good idea to look at a refresh. There has also been a lot of work done on Percona XtraDB Cluster and there are some developments with Codership, so they are unsure if they will have their own Percona XtraDB Cluster 5.7 by the time Ubuntu is supposed to ship. When Percona is ready for something, just give Robie a shout to ensure that things happen. 60-90 days before a Percona Server 5.7 release. Just be aware of feature freeze for Xenial.
- Norvald mentions that Percona Server 5.7 will also depend on Boost and there needs to be a decision on this. George mentions that TokuDB is now part of Percona Server, and it has some of its own requirements as well. Do we include TokuDB? It has requirements like it will only run on 64-bit platforms. Things to figure out going forward? MariaDB has been carrying TokuDB last November, but Robie remembers disabling it in Ubuntu. George says there were some licensing issues back then but they seem to be taken care of.
- Otto says the builds for TokuDB was failing. It has a dependency on jemalloc, and that might have been the reason there were failures (says George). There may be something else where it doesn’t build on Ubuntu builders. But Otto says that there was a commit where this got fixed about last month. George will follow on, just to absorb it, since the legwork is already complete.
- Otto: Trusty has 5.5, and Jessie and all other Ubuntu releases have 10.0, and 10.1 was released last month and I’m not quite pushing it to Debian quite yet. Fix 10.0 build fixes, upstream them, then only focus on 10.1. Blocking? (last summer) 5.6 is not in testing, so could not depend on it/changes done in 5.6 mysql-common. Here’s hoping that mysql-common going forward will be generated separately.
- Robie will take an action to resolve the delta (probably just drop it). To sync MariaDB 10.0 to Xenial.
- Discussion on /var/lib/mysql/*.flag thing on the list — conclusion at: mailing list — goal: within a single Ubuntu release, people can “cross-grade” between MySQL variants. The goal is to support all 3, and users want to try them, and thats when the bug reports come. Robie’s goal: move to a per-variant data directory. Otto says that once directory names change, 3rd party tools might have breakage. So a working prototype. Migration path is difficult. Maybe the best is to turn /var/lib/mysql into a symlink and store the data elsewhere. PostgreSQL does per version directories today; so studying that is going to happen.
At the start line (fullsize)
This was the first year Sri Chinmoy had run this Ultra, an event now in the third year (and I again ran it this year in a team and once more doing 2 legs). In 2013 they had not yet decided on the increase by 1km every year plan, however the course already showed off Canberra really well.
Alex and I decided to Alternate legs, in retrospect probably harder than doing 2 in a row each, however we had a good day out, and this year I got to do 2 in a row to compare. Of course I had my camera out there and took a bunch of photos which are online in my Sri Chinmoy 100 2013 gallery.
I have been a fan of Cadel for a while, I guess since reading mtb magazines through out the 90s and marshaling at the mtb National Championship races in Majura Pines in Canberra when he won the title here. That he won the MTB World Cup series for two years in a row, has also won the Road World Cup series two years running, won the Road World Champs and now the Tour de France it is fairly obvious to all he is the most complete successful cyclist Australia has ever produced.
I still remember watching him lead through some of the single track at Majura in 1997 from where I was marshaling, seeming to be riding on smooth pavement through sections I rattle and bounce over, sure it was a shame when he left mountain biking, I am after all a mountain biker at heart, but there were as we all know bigger achievements in his future, there is nothing in the mtb world that could possibly excite a nation the way he has the last few years.
For the entire tour this year Cadel and his team seemed to be well organised, know what they were doing and went about everything the right way. Leopard also dealt with the race well, thus as Andy Schleck has said it definitely seems the best rider did indeed win this year. The final time trial was an incredible hour of viewing, seeing Cadel so focused and confidant at the start and then he almost won the stage and blasted away everyone else. Of course seeing him get air on a time trial bike was pretty cool too.
I really hope this helps move Australian's recognition of bikes and cycling forward, the reception for Cadel in Melbourne on Friday was awesome, with St Kilda rd lined 5 deep on each side all the way along and then Federation square packed so full along with all of us watching who did not make it down. The media coverage across the board has been positive and pretty good. Now we can all hope for a repeat performance next year. Rock on Cadel.
New and Old Zing Vests (fullsize) By far one of my favourite pieces of clothing is my Mont Zing Vest, I bought my first back in March 2006, then it was shredded in a crash in April 2008, I had however bought a second vest at that point, in yellow. Most cycling vests have mesh backs, I dislike these as I wear my vest to paddle and a waterproof back is great paddling. Also for warmth year round in all manner of activities (running, rogaines, etc) the lack of mesh is a bonus I think.
Due to the fact I use the vest so often through the colder months it is often damp or wet when I want to use it (soaking from paddling to ride home in winter, or from wearing for a run to get home), thus I was keen to get a few more. Mont are a great company and Dave has been very nice to me in the past. They had run out of Zing vests in my size and I had been asking Dave when I would be able to buy two more for a while. He had some ready for the yearly sale that is on next week and told me to come visit. However he had only had yellow vests made, which I was keen to buy another one of, I was however hoping for some colour variety. Dave then offered to make a few out of whatever colour Hydronaute ultra they had in the factory. Sure it is not pink but I am definitely partial to purple too so I was excited to be able to get two brand new vests in purple.
Did the Ainslie run up at lunch today, was letting my HR creep above 180 and then remembered I should not be going too hard so backed it off to 176 or so for the rest of the run up. Still did 15:16 which I thought was alright.
It is interesting to see some companies such as Kryptonite eventually reacted, others seem intent on denying public information, or trying to shut down people who know about it. In computing it is a well known fact (although still ignored by too many people/companies) that security through obscurity will not work, public design and analysis by experts in the field however does work and should be used for things that need to be secure. Although one aspect that comes to mind here is that in the case of locks you may not want to make them impossible as other attack vectors are then used. As the article mentions crooks seem to prefer using a hammer (or maybe explosives) over opening the locks through lock exploits. There were some discussions about this in the car that were I think linked to by Schneier a few years back.
Next was an interesting wikipedia page linked to by kottke, a list of unsolved problems from a number of different field, those listed in Computing are familiar, however looking through the collected information on those in other fields is pretty fascinating. Mmmmmm wikipedia goodness.
Catching up on some LWN reading and I see the mention of a new OpenSSH version approaching, in the list of new features is "Experimental SSH fingerprint visualisation" with a paper (pdf) linked. So I download and had a read of the paper, largely to see what sort of images they generate. It is good to see some work on what is one of the biggest security weaknesses out there, the humans using secure systems.
The professor in charge of the study at RMIT is John Hawley, a google search turned up the article in question. It is quite a common practice among cyclists to head to a coffee shop after a ride, though most of us do not consume 6 cups of coffee and a loaf of bread, we do consume some food and coffee at these gatherings fairly often.
Good to see we can even claim the post ride coffee is part of our important training schedule and recovery plan.
Anyway for anyone who wants to have a look here is our report from the team Out of Range at the 2007 Geoquest Adventure Race. Enjoy.
I remember watching the old series with Clarkson in it when I was living in the UK in 1993, though at the time I paid some small interest in cars (such as watching Ayrton Senna in F1 races) I do not recall Top Gear being so amusing. I suspect they really ramped up the humour of it when they changed the format and started the new series in 2002. My amusement at the pearly gates expression has me trying to think of a few expressions for how various people may want to go, somewhat macabre maybe but I am trying to think of it in a similar manner to my Fairy Tales in the key of Klingon post. Alas nothing comes to mind yet.
It appears the profiling and lower memory foot print work various gurus in the kde and gnome and similar camps has paid dividends as there appears to be a pretty big drop in usage and memory leaks here and everything feels a bit faster all of which is good news. Not that I have done any real testing but perceived feel is relevant to some extent in a computing environment.
The most amusing thing here I thought was my interpretation of how he asked the question, it sounded almost as if something was wrong. As if James was saying "my computer is not using enough memory, and is running to fast, fix it, make it as slow and hoggy as it used to be". I guess at least he was not about to request a change to a computing system that seems to constantly get slower and more user unfriendly with every major release.
Though there was a CORC race on that arguably I should have done as I need the fitness and speed from the race I decided to take the soft option and head out for this road ride.
However upon finding the bunch I see Allan's email had convinced around 30 of the Vets club members into joining in the fun, this included the likes of Nick, Chris, Pete H who like to go fast and a few others who, due to there being no race this weekend decided it would be fun to go a bit faster.
Thus we ended up doing the 100 KM ride with an average speed of 34 KMh, which fortunately was easy if you stayed sitting in the bunch the whole time, however it was entertaining to tease Allan on his ride with far more people and a much higher average speed than sort of advertised.
Anyway I put photos and a report of the 2006 Polaris event online.
Back in November I mentioned this to Steve Walsh of Nerdvana, he told me they do colo, and would throw in new hardware (leasing arrangement) all for less per month than we are currently paying and colocated in a rather nice facility in Sydney. Martijn and I thought this sounded tops so signed up.
Finally we shifted all the domains and config and data and everything across for the final time last night and we now are actively using the new server for all domains we host and everything else. The new machine is definitely a nice step up, now a Dual 3 GHz Xeon with Hyperthreading, 1 GB of RAM and 2 250 GB SATA drives configured in RAID 1 for full redundancy. Damn this new machine is fast, operations that used to take a few minutes now happen in 2 or 3 seconds.
Finally I can do a few things I have been holding off from doing on the old machine for a while, either for lack of disk space, lack of memory or incredibly high load caused by trying to do the things I had in mind. Heck I may even add some sort of comments thing to this diary (Jane reckons I need comments here)
One of the other problems with the old machine was I had never gotten it to cleanly boot up into a kernel newer than 2.2.20pre2, which meant ancient firewalling, probably a few vulnerabilities, inability to try some new things that may have been interesting and a few other issues. The machine was also running Woody, so it is nice to have Sarge with a few even newer bits on the new machine.
RIP calyx.svana.org, long live calyx.svana.org (we did not change the name, which was confusing once or twice while moving config over).
[15:46:41] 9 calyx sjh ~> sh -c 'cat /proc/cpuinfo ; free ; df ; uname -a' | egrep 'MHz|Mem|cg0-data|Linux' cpu MHz : 3000.269 cpu MHz : 3000.269 cpu MHz : 3000.269 cpu MHz : 3000.269 Mem: 1036352 1001088 35264 0 68208 713860 /dev/mapper/vg0-data 235694888 8981204 214741076 5% /data Linux calyx 22.214.171.124 #1 SMP Fri Nov 25 23:43:09 EST 2005 i686 GNU/Linux [15:47:27] 10 calyx sjh ~>
I googled the other day and found the Radio National podcast page, they do indeed have a pretty good selection of shows available for download. I rang Crash to ask if he had been doing any of this podcasting radio national thing, he rides to work every day, a rather nice ~ 23 KM commute, listening to an mp3 player or a radio. Crash had indeed been engaging in this podcasting thing, downloading any new casts night at 3am. I asked what application he used to do this, a Gooey application would be kind of silly to use for this so I hoped there was a basic CLI application for the task.
Crash was able to point out this rather cool shell script, Bashpodder, to download all new/updated feeds from a list of feed URL's. Mikal, sfr and Rusty will I am sure be glad to see a very useful application, written in shell still rather than some other language, that it works reliably and the newer release even shrank from 76 lines of shell to 44 lines (now including more comments too).
I added all the RN feeds I wanted into the file one per line, ran the script and a few minutes later I had 800 MB of cool Radio National content in mp3 format ready for listening anywhere and anywhen. Now if only we could convince the government to fund the ABC and Radio National better so they can keep up the fantastic work well on into the future.
I have not researched this to check my memory is correct, however Ben Folds has talked about this in interviews in the past. If my memory of these interviews is correct, the song was to some extent based on a harrowing experience he had when he was around 18-20. He and his partner at the time went through the process of having an abortion and all the emotions and the shit that happened around the event weighed heavily on him, this song is an outcome of the experiences surrounding that event.
However Ben Folds is to a large extent not alone among musical artists saying, on the whole, over analysing lyrics in his work is not what he intends or expects, many artists seem astounded by the amount of analysis that goes into lyrics they write, often according to them written simply for the rhyme, or to work with the song and containing no deeper meaning. The fans doing the analysis may of course argue the subconcious has other ideas, who knows.
We could block ssh entirely to the student networks however that is not a good thing as students should be able to log on and do work from remote locations.
The solution we are looking at is accounting for all student traffic on both incoming and outgoing such that ssh is blocked to all but one machine. Then on this one machine we have the netfilter patch that lets us account for traffic on the INPUT chain on a per user basis. This will mean we can set student quotas for all data, or maybe even simply subtract the ssh incoming traffic from their web quotas also.
I guess students will simply have to get used to using one machine to access the rest of the student systems, should not be hard for them and will stop the people abusing the system.