Skip to content

The Isoblog. Posts

Uber, Culture and Susan J. Fowler

A few weeks ago, Susan J. Fowler wrote about her very strange year at Uber. Basically, she experienced sexual harassment, HR covering up and a poisonous corporate culture. Apart from her personal experience, she characterises the culture like this:

In the background, there was a game-of-thrones political war raging within the ranks of upper management in the infrastructure engineering organization. It seemed like every manager was fighting their peers and attempting to undermine their direct supervisor so that they could have their direct supervisor’s job. No attempts were made by these managers to hide what they were doing: they boasted about it in meetings, told their direct reports about it, and the like.

6 Comments

Social Comments Plugin

This blog accepts comments without any authentication or account: You can simply enter any name and email address and write stuff. Spam is filtered out via Akismet, and the Email is mostly used for Pre-Approval of comments.

Some people in a discussion on Google plus have been asking for social login buttons using OAuth2 based authentication instead, because they cannot be bothered to enter an Email address (Seems to be mostly a problem on mobile).

2 Comments

Namespaces, but “uname -r” says 2.6

In this blog post, RedHat explains how they not only fork codebases, but also Version Numbers, making any RedHat install cryptic and hard to compare against upstream codebases and developments.

A simple things such as

rpm --queryformat="%{name}\t%{version}\n" -qa

may allow you to say something about lesser distros, but not RedHat.

From the article:

 rpm -q --changelog openssl | grep -E --color \
"(CVE-2016-2108|CVE-2016-0799|CVE-2016-0705|CVE-2016-6304|CVE-2016-2109|CVE-2016-0798|CVE-2016-2182|CVE-2016-6303|CVE-2014-8176)"
- fix CVE-2016-2182 - possible buffer overflow in BN_bn2dec()
- fix CVE-2016-6304 - unbound memory growth with OCSP status request
- fix CVE-2016-2108 - memory corruption in ASN.1 encoder
- fix CVE-2016-2109 - possible DoS when reading ASN.1 data from BIO
- fix CVE-2016-0799 - memory issues in BIO_printf
- fix CVE-2016-0705 - double-free in DSA private key parsing
- fix CVE-2014-8176 - invalid free in DTLS buffering code

Just say “no” to this mess.

3 Comments

Hello, I am interviewing people…

Hello, I am Kris (Article about a Twitter meme in english). I was a Database Scalability Engineer at Booking.com.

When interviewing people for my replacement, I have been looking for a “sense of cost” in architectural decision making. I have been giving people rough problem descriptions of what others or I am currently working on, and asked them what they were thinking about the problem.

Since I did not have a solution to the problem yet, my goal was more observing the idea-discovery process and the reasoning about consequences of various approaches in terms of load, toil, network communication and so on, than an actual solution for the problem.

Oh, and I have been a MySQL consultant and database person since 2005, and still google ALTER TABLE syntax.

3 Comments

WordPressing…

This blog is running a WordPress, using Ubuntu, Apache and MySQL. So it’s a very basic installation.

I made all this with a tiny Scaleway VM and Ansible. My Goal has been to install this thing without actually having to log into the VM (“Look Mom, no hands!”). Of course, I have been logging into the VM, but that’s mostly for checking things are going well.

8 Comments

App can’t be opened because the identity of the developer cannot be confirmed

Policy Settings can prevent the execution of unsigned binaries.

MacOS can be set to prevent the execution of unsigned binaries. This is done by pushing a security policy to the system, which is then enforced by the SecAssessment subsystem.

Of course, you can still install XCode and compile binaries locally, and even execute them. You can also code in interpreted languages such as the local Python, and call system functions from there, so the policy is only of very limited use in locking down the system.

9 Comments

Fertig gelesen: Explorations – First Contact

Explorations: First Contact

Explorations: First Contact is a great concept well executed: This is a writing prompt anthology.

So there is a base story – in this case, humanity sends a probe to the back side of the moon, finds an anomaly which turns out to be a dying alien spaceship that manages to upload the secrets of it’s drive and a partial database of other alien civilisations it once visited into the minds of the astronauts that make the contact.

Leave a Comment

Fertig gelesen: Galactic Exploration

Galactic Exploration

One of the very first things I read on Kindle has been Anomaly by Peter Cawdron – his first publication. My review in German Language is here.

Turns out, Cawdron is a quite productive author, and active and responsive on Goodreads. Seeing my review there, he pointed me to his other works, and to his mailing list. Through that I found Galactic Exploration and other works by him.

Leave a Comment