digest-digest-digests

140 characters at most, 5 minutes, sandwich you catch up while on the run… and then silence at around 2am and wake up call at 6am… this is how life of most of us looks like. daily. I had a chance to get back to book I’ve read too long ago - Rays Bradbury 451* Fahrenheita'. just take a look at following dialogue: “People don’t talk about anything.” “Oh, they must!...

May 28, 2018 · Łukasz Bromirski

don't be evil

if you build motto for your company vision, and it’s blunt like, for example, ‘don’t be evil’… people may notice when you decide to remove it. ‘do the right thing’ doesn’t sound so convincing and blunt. while the ‘don’t be evil’ is left in the last sentence of ‘Code of Business Conduct’ that employees need to accept, it’s softer and flattened. sign of new times?

May 21, 2018 · Łukasz Bromirski

imagineers of war

ARPA, established in 1958, was first and only space agency at that time in United States. to this day it drives fantasies and is unequivocally identified with the emergence of the Internet, but did you know that ARPA (before it became DARPA in 1972) was responsible for underground nuclear testing (as seismology allowed to determine whether other countries somewhere on Earth were conducting their nuclear tests), guerilla warfare (ARPA reps travelled to and stayed in Vietnam, Thailand and Laos long before US under falsifed “proofs” attacked North Vietnam), or development of machine rifle that became what is today known as M-16?...

May 14, 2018 · Łukasz Bromirski

my home network #1

as you can easily guess, i’m networking geek. my home network was thus built with hacking, not with ‘smallest footprint possible’ in mind. it’s great if you can test your “great” ideas before recommending them to anyone, and of course getting feel of new features is also a plus in this case. so, my first assumption was it has to be fast - fiber. both floors are connected with fiber network, that’s aggregated near front door, in the cloakroom....

April 22, 2018 · Łukasz Bromirski

communication

we are herd creatures, naturally social. we have created many tools for remote communication and although the echoes of the electromagnetic wave of our radio transmissions travel fainter and farther into space, today one of the most used tools is the good old e-mail. it was born in around 1971 so already 47 years ago. contrary to the bigots shouting radical slogans louder and louder, i believe that humanity is created for an open exchange of ideas....

April 2, 2018 · Łukasz Bromirski

PLNOG #20

plnog, plnog and… it’s gone. twentieth edition - how the time flies… from the beginning we knew it may be hard, but we can make it. ’let’s target 60 people!’ was the second decision after we agreed to ‘do this’ and create PLNOG. 124 of you showed up. i don’t really remember all of the things that happened that day. and that was only 10 years ago! i remember only the fact, that we couldn’t fit you in one of the Cracows Wawel room that Andrzejs team was able to secure for this experiment....

March 26, 2018 · Łukasz Bromirski

random is... randomized?

it should be. it’s kind of tricky to get right and may feel a bit like an abstract concept. random values should be random (unless you’re talking about Debian randomness). so, let’s try that - take a cube in hand and throw it three times. what’s the probability that you’ll get three times the same number? small, but there is one. similar experiment - your friend throws coin ten times, and eight times there’s eagle....

March 19, 2018 · Łukasz Bromirski

you can't get enough space and speed

my 256GB SSD drive in MacPro 2013 started to fill up recently. i went on short googling to see how to extend it without relying on NAS of course. and i get nice offer. it seems that good people in the internet found a way to interface typical NVMe disk drives with the socket Apple uses. and so i became user of 1TB Samsung SSD drive. that upgrade gave me also speed bump - on encrypted drive transfers shoot up from 500MBbs (reading) and 380MBbs (writing) to 1....

March 12, 2018 · Łukasz Bromirski

it's hard to be a spammer

…if everyone is trying to make your life harder. couple weeks ago I refreshed my private email server on FreeBSD. for some time spam levels were raising and I had to do something about it. old spamassassin was not handling it accurately enough anymore. enter spamd from OpenBSD. current postfix has built in greylisting server that’s working quite well. for my installation I tuned it a bit, by extending period of time that has to pass from last delivery attempt (to 1200 seconds, which is 20 minutes):...

March 5, 2018 · Łukasz Bromirski

trust but verify

during one of the design discussions with one of our Customers, I had a chance to discuss a bit about using anycast to scale out delivery via CDN. unfortunately, as more ads served even on popular sites is malware or even miners for different cryptocoins it begs a question - how should you protect the site you’re maintaining? using reputable CDN is good first step. the other one, i didn’t know about (and it seems to be quite natural if you think about it) is to verify hash of the attached resources....

February 26, 2018 · Łukasz Bromirski

we are all only metadata

6:51 AM, 30 APRIL 1975: SWIFT 22 IS OUTBOUND WITH 11 PAX ON BOARD INCLUDING THE LZ COMMANDER. ALL THE AMERICANS ARE OUT REPEAT OUT. this traditionally short message from NSA signals intelligence, was everything that was needed to confirm that all US citizens left US embassy in Saigon. Saigon changed name to Ho Chi Minh a day later, taken over by North Vietnam army. signals intelligence changed significantly from that time, but the book i’m writing about right now was published way before Snowden era....

February 19, 2018 · Łukasz Bromirski

triggers

jeden z moich znajomych zauważył bardzo celnie, że mam często ‘krótki lont’. nie mogę się nie zgodzić - czasami tak po prostu jest. zrozumienie i opanowanie tego to katorżnicza praca, która w dodatku wymaga codziennego szlifowania umiejętności. każdy kto próbował - wie. na wielu poziomach ten temat dotyka zagadnień dominujących dzisiejsze tzw. szkoły biznesu - jak zbudować zespół, jak jego członkowie powinni wzajemnie się uzupełniać, motywować i jednocześnie - zachęcać do wartościowej pracy....

February 12, 2018 · Łukasz Bromirski

holiday reading

my whole summer vacation this year is a week by the sea. however, I was able anyway to catch up my reading backlog from last few weeks - books put aside and waiting patiently in their queue. so let’s go faster this time, but through the whole list: Matthew Syed - The black box method - a great book describing the process of correcting errors; it starts with aviation, which over the last decades has led to a dramatic increase in flight safety....

August 12, 2017 · Łukasz Bromirski

done is better than perfect

have you thought recently how oversubscribed are acronyms you’re using daily if you’re in IT? i just spent the whole day listening about VPC, but not vPC or VPC - but about Virtual Private Cloud in AWS services. not about virtual Private Channel or Virtual Path Connection and neither about Virtual Packet Core. and i have to admit, i liked it. i’ve spent whole day on a Mirek Burnejkos training dedicated to clouds....

July 20, 2017 · Łukasz Bromirski

freenas and lsi

my old poor LSI 9211-8i RAID card, that was powering my cache NAS server, decided to die. my spare 9261-8i, to my complete suprise, was halting FreeNAS at the boot… and i was not able initially to troubleshoot the problem. it was dropping mysterious timeout errors: mfi0: COMMAND 0xfffffe000150dc08 TIMEOUT AFTER 59 SECONDS mfi0: COMMAND 0xfffffe000150dc90 TIMEOUT AFTER 59 SECONDS mfi0: COMMAND 0xfffffe000150dc18 TIMEOUT AFTER 59 SECONDS run_interrupt_driven_hooks: still waiting after 60 seconds for xpt_config my google-fu immediately shown me some potential solutions, but they were totally random nad kind of voodoo-magic (‘disable Firewire controller!...

April 17, 2017 · Łukasz Bromirski

plnog #18

after being absent on three PLNOG editions, i finally made it to the conference and to agenda. my presentation slides are here. i tried to cover everything important from networking perspective starting from IMP and ending on NPU, reprogrammable ASICs and what’s lurking in the future. of course if you’ll vote by your surveys, i hope to get back to delivering presentations. what’s interesting is that Krzysztof Kania also picked up architectural topics in his article about first routers - go read!...

March 10, 2017 · Łukasz Bromirski

deep work

some of us know it better, some worse, and the rest haven’t heard or thought about it (or claims “i don’t need it”) work ‘in the zone’ got popular immediately after world ended being enchanted by open spaces and mandatory offices, and got back to using rooms or - in XXI century - in “home offices”. the fact that giants like Facebook or Apple still build huge offices and promote unconstrained mobility, availability and capability to forget about home given work is the most important thing you can do (hence “socializing” is as well), doesn’t change too much....

February 20, 2017 · Łukasz Bromirski

please clock me timely!

during the last 30 years, processor speeds has increased from millions of cycles to billions - multiplied by multi-core and special mechanisms that increase the efficiency of working with ‘boring’ cores. Pentium 66 processor from 1993 contained 3.2 million transistors, which is anyway quite a value, considering they are packed into a space comparable to that of four dices - and contains one main unit. available today Xeon E5-2699v4 has 22 cores operating at nominal frequency 2....

February 8, 2017 · Łukasz Bromirski

artificial intelligence or why it's (not) worth to invest in security

January 20, 2017 · Łukasz Bromirski

we're getting older...

NASA spent recently a lot of effort (and i suspect - money) to find Fortran proficient developer to rewrite code working still on Voyager. ideal candidate was found finally at NASA. this begs a question - how much you can do in Fortran having 64kB of RAM and less than 3W of power? it’s completely different task than our typical computers, not to mention bad practices they learn to junior developers due to abundance of hardware resources....

January 13, 2017 · Łukasz Bromirski

openssh and keys - secure ones

somewhere around 2013 (and precisely - for ‘small’ Santa Claus, so 6th of December), OpenSSH was extended to provide new way of storing keys. it’s important because the old format - MD5 hash - can be cracked veeeeery quickly. developers decide to use modification of bcrypt, that will slow down GPU-assisted cracking attempts in hashcat from gigahashes per second, to at most kilohashes. what you need to do to upgrade your defenses?...

January 8, 2017 · Łukasz Bromirski

FreeNAS and Samba - curious case of MacOS

FreeNAS is special edition of tuned-up FreeBSD, with GUI available over WWW to enable easy setup and maintenance. i had to migrate recently my old Synology 1815+ thanks to well known Intel SNAFU with Atom CPUs. interestingly enough, even Synology own service department declined to RMA the NAS, without even discussing the situation. so i managed to setup quickly 12x 3.5" bay server. i had five 3.5" 8TB HDDs from Synology that i wanted to rescue data from....

January 6, 2017 · Łukasz Bromirski

cleaning up...

getting grip of reality after moving is not easy in some situations. when everything is still fresh, and on the other hand - so well known :) you know obviously that stopgaps tend to last for years after they were put “just for a moment”? my december cleaning started with true horror of moving my mails erver from FreeBSD 9-STABLE (just EoLed) to 11-STABLE. traditional make buildworld; make kernel KERNCONF=server; mergemaster -FiU; make installworld; reboot didn’t work, but (WTF?...

January 2, 2017 · Łukasz Bromirski

OpenSSH 7

OpenSSH 7 among other things discontinued older key exchange protocols for Diffie-Hellmans group 1 (diffie-hellman-group1-sha1). we already know that it can be compromised by executing attack known as Logjam. that’s all good and nice, until you try to connect to such device using newly upgraded SSH. if your device doesn’t support DH group 1 key exchange, you need to upgrade software. if you already have software capable of doing so, it needs to be configured on the box....

October 3, 2016 · Łukasz Bromirski

positive influence of technology

i was travelling recently to US and back, essentially sitting for a 10+ hours in planes each way. i decided to invest in myself, and bought myself a gadget - my friend praised it years ago. i’m talking about active noise cancelling headphones - Bose QC35. after 10 hours of listening to music and podcasts and NOT listening to engines, people, coughing, snoring and other traditional noises during transatlantic flight… i have to say, this is technology that really makes a difference....

September 21, 2016 · Łukasz Bromirski

world is changing

…and that’s good thing. with only two weeks to seventeed edition of PLNOGa we have bunch of interesting news. conference, that we started by discussing BGP, MPLS-TE and RSVP and role of 10GE interfaces (we’re in Europe and that was 2009!), today focuses on deploying SDN, and influence of IoT to service provider networks. we’re also discussing public cloud, hybrid cloud, software defined data centers (SDDC) and consequences of proliferation of overlay networks....

September 17, 2016 · Łukasz Bromirski

data is toxic

it’s hard to disagree with Bruce’s article. would blockchain-based solution be the best approach here for accounting? accounted access to data, accounted transactions … something must change. we can’t deal properly with data.

March 15, 2016 · Łukasz Bromirski

unkempt thoughts

how bad our current patent system needs to be broken, to allow building companies just to do business on patent trolling? we see more articles about it but capitalsm doesn’t care. even when law enters the game, there’s often nothing that can be done having SDN in mind, and developers influence on how todays internet works, i’m thinking what we’ll be doing in couple of years (and how pitfully unprepared are companies today to defend any sensitive data - financial, biological - in “web 17....

December 19, 2015 · Łukasz Bromirski

it's unbelievable how governments...

…resent encryption. in particular those that were caught red handed doing mass surveillance of its own and foreign citizens. it’s worth to read this article to understand how PR (written by Camerons speech author) is trying to turn everyone using security and encryption to those helping terrorist. it’s enough today to name somebody ’terrorist’ and suddenly every option is on the table. interrogation, wiretapping, dropping bombs or simply investigating without any specific reason is fair call....

December 5, 2015 · Łukasz Bromirski

why are we so... confident?

while observing how people tend to behave in so called “serious situations” and “serious environment” I began to create different theories. as i’m lacking background in psychology i was not proficient in doing that, but then I stumbled upon this article. in particular, this quote caught my eye: For poor performers to recognize their ineptitude would require them to possess the very expertise they lack. indeed, that’s the case! and it’s worth remembering as well, that:...

October 13, 2015 · Łukasz Bromirski