Geeking Out

Crisis of faith

Recently I made the somewhat unprecedented move of consolidating everything I do onto one computer — my late-2003 15″ PowerBook G4. I was getting tired of things going out of sync, of having to switch between various computers to find what I needed, of having my music in one place and my photos in another and absolutely nothing on my work computer. I’ll talk about my thoughts on consolidation, and some of the cool new utilities I’m now using, at a later time. Right now, I’m thinking about an unintended side effect of the move, which is my complete loss of confidence in Mac OS X.

In short, some of the more fatal flaws of OS X have been masked to me up until now because by jumping between various Mac and Linux computers, I would never leave applications open on the Mac for long periods of time and wouldn’t necessarily use the Mac for some activities. Now I’m running a bunch of different programs all the time on several virtual desktop screens, and the amount of instability I’m experiencing is quite unacceptable. Programs are *constantly* crashing — and these are Apple programs, not third party ones — and occasionally my entire machine becomes unresponsive for brief periods or, when resuming from sleep, just doesn’t even come back up for at least thirty seconds.

What I most love about the Mac is how everything is so nicely integrated into a good UI with global features that make me more productive. But in order to get a lot of this integration, one must use the Apple-provided apps.

Rui Carmo over at The Tao of Mac really nails it with his article Is Mac OS X Becoming Crufty?, which covers most of the issues I’ve been having with Tiger. What I most love about the Mac is how everything is so nicely integrated into a good UI with global features that make me more productive. My chat client and my mail client tie into my address book. All of my passwords for everything are stored securely in my Keychain. Spotlight search lets me find anything anywhere. But in order to get a lot of this integration, or simply because there are no viable market alternatives (as they have been driven out of business by Apple), one must use the Apple-provided apps. iPhoto, which used to stop working after you added more than a few hundred photos, has at last received a much-needed update that causes it to suck less. But Safari gets angry when you have too many windows open and starts behaving strangely. Apple Mail is just an abomination, and Spotlight’s search behavior, not to mention its UI, leaves a lot to be desired.

If I can get a cute little laptop with twice the battery life and twice the power at half the price, and run Ubuntu on it, and have a rock-solid experience, even if its not quite as shiny, maybe there is something to be said for that.

Paul has been leaning on me heavily to ditch the Mac platform with all of its flaws and move over to Linux full time, as that platform (and Ubuntu in particular), is really starting to reach some sort of desktop maturity, finally. On the one hand I really don’t want to leave behind some of the great apps and utilities I use on the Mac, and I really want the slick integration of everything that I theoretically get on the Mac. On the other hand, if I can get a cute little laptop with twice the battery life and twice the power at half the price, and run Ubuntu on it, and have a rock-solid experience, even if its not quite as shiny, maybe there is something to be said for that. My first computer was a Macintosh II. I’ve been a loyal Mac user for *years*. But I’m worried I might be reaching the end of my rope, and it might be time for a change.

Thoughts? Advice? Similar experiences?

On fate and responsibility, with regard to computers

At lunch the other day Hal was talking to me about responding to incidents. In sysadmin world, an incident means that something went wrong or was hacked or otherwise misbehaved such that it needed to be fixed unexpectedly. At Berkman, incidents are pretty frequent. Sometimes they happen during the day, sometimes they happen in the evenings or mornings, occasionally they happen late, late at night.

Hal said that it is very important, especially at Berkman, to take full responsibility for what has broken, fix it promptly, and apologize for what went wrong. We’re running all sorts of not-really-tested applications, we’re understaffed for the amount of stuff we’re doing, and we move too quickly to be able to really test and evaluate and audit every nut and bolt of our setup, so it is inevitable that things will break. People are tolerant of that, as long as the person in charge *takes charge*, admits to the error, fixes it, and shares any lessons learned.

I have no problem with this philosophy, I believe it is a good one. Often times things break for various reasons, sometimes completely out of your control, but when you’re the person in charge of the systems, the buck stops with you and, whatever happens, you’re ultimately responsible for it. That’s me. I’m the guy responsible for everything. It’s a role that I’ve been easing into over the past few months. But I’m still not comfortable with it.

When you’re the person in charge of the systems, the buck stops with you and, whatever happens, you’re ultimately responsible for it. That’s me.

My problem is a simple one, and it gets to my control-freak nature: I want to know everything that’s going on everywhere. I want to know what’s doing what where and why and when and how. This is the proper approach, I’m told, at least in an ideal world. Everything affects everything else, and one little misconfiguration can be the hole the hacker needs to break in, or the proverbial feather that brings everything crashing down. And because we are running a variety of old systems that have grown organically over several years, I’m still not comfortable with what we’ve got going, and so I’m not comfortable taking the responsibility.

When will I be comfortable? When everything has been freshly installed somewhere new, according to the procedures I outlined, with me directly involved in the process. And that’s not to say that my procedures and approaches are at all better than what we have. All it means is that I’ll know exactly what each machine is doing, and, as much as possible, each machine with be configured identically. Creative destruction is what I’m doing, the inevitable churn, and I think in the end we’re going to be in a better place.

And so I’ve been cleaning house ever since I got here, and gee has it been exciting. I’ve learned tons of new things, I’ve messed up tons of systems, and I’ve created tons of great new stuff as well. And we’re getting there. Slowly, with much effort and quite a few missteps and all kinds of unforseen circumstances, we’re getting there. And what I’ve been learning about more and more recently is how important it is to document processes and setups and to test, test, test before deploying anything. That means taking time to create a similar setup on a staging server, run the updates, see what broke, roll it back, fix it, run it again, et cetera until you’re 100% confident, then send out the email scheduling the switch, then do it at the appointed time, and then test it and, if necessary, back out the changes and leave it for another day.

It’s a plodding approach that goes against so much of what I stand for, and clashes with everyone else who wants everything done better and faster, but it is the only approach that really makes sense. More and more I understand why central IT at major organizations is so inflexible and moves at such a glacial pace. And I’m not going to say that I agree with this all the time — I think the bureaucracy that surrounds many small decisions is incredibly overblown and wasteful — but I am starting to really understand how they get the way they do.

The most interesting take-away from everything I’ve learned so far, I believe, can be summed up in four words: *Rich Graves is God*. Rich, you may remember, is that quirky guy who came into Brandeis to implement some new directory stuff and ended up pretty much building UNet, the software and server infrastructure that drives the university network, from the ground up. Probably a hundred times, and I am not exaggerating, I have seen something at Harvard working one way or another, and I’ve either known how they could make it better, because it was better at Brandeis, or I haven’t known, but by looking at the Brandeis documentation and Rich’s bboard posts, I’ve discovered how it *should* be done. Email. Spam filtering. Computer registration. Web space. User file storage. All of these things are better at Brandeis than at Harvard. And on the few occasions when I’ve suggested changes in line with how Brandeis did things, I’ve been met with only silence (see note).

The most interesting take-away from everything I’ve learned so far, I believe, can be summed up in four words: *Rich Graves is God*.

By obsessively documenting and explaining and responding on message boards, Rich created an electronic paper trail that guides me today, even after both he and I have left Brandeis. And as much as he has been my greatest teacher in the field of system administration, I say, thank you Rich. And since I didn’t mean to turn this little rant into fan worship, I guess I should end now.

I honestly didn’t see myself becoming a sysadmin after college. I probably wasn’t qualified for the job that I was given. But as much as I’ll bitch about my work on the days when things are particularily bad, I really love that this is where I ended up. And that’s why I wake up every day excited to go into work and face the next challenge that the computer fates have seen fit to fling my way.

*Note:* I have received a note from a gentleman from the Harvard department that runs CAMail in which he told me they would be considering a modification to their virus filtering based on the suggestion I gave for how Brandeis handles a particular problem. Awesome!

Another reason I’m not willing to consider Digg as a serious competitor to Slashdot: when the comments on an asinine post about how to “fix” Linux are written almost entirely by people who don’t use Linux and don’t know the first thing about it, but choose to add their two cents anyway. No serious geek goes to Slashdot primarily for the articles — we go there for the discussions. Digg has a nice new commenting engine, if only it could attract some good commenters.

Caterina has a point, but David has a better one — all the hype and new “web 2.0” businesses popping up (and no, I’ll never write that without quotation marks around it) is giving us as repeat of the 90s bubble times, when what really makes this new “era” better than the last is the ability and willingness of people to address problems simply, directly, in small teams, charge for the solution, and organically grow a business without the need for crazy VC funding, San Francisco digs, and attending tons of conferences.

Khoi Vinh, whose beautifully crafted blog continues to impress me, writes about the 37signals approach to “web 2.0” development, something they call “getting real.” The post and comments capture the same ambivalence I feel about 37s — impressed by their products, their approach, their success, and their confidence, but also rubbed the wrong way by their attitude towards their readers and their customers (of which I am one). There is a lot all web developers and business people can learn from 37s, but perhaps not all of the lessons are intentional.

William Saletan’s opinions on abortion, as explained in his _Slate_ article, “My Secret Burden,” express exactly what I feel about the issue. I believe that the more moderate voices of the pro-abortion movement must win out of the movement hopes to survive. I remember freshman year of college when a girl from FMLA asked me if I was a feminist, and after I heard her definition of the word, a defintion that included the right to abortion in very stark terms, a definition that made me uncomfortable in its passion, I had to say that I was not. I don’t believe abortions are good. I believe they are bad. I believe we should do all we can to make them as rare as possible. And I believe they should remain legal. Read the article.

Planely

I was teetering on the edge of sleep when I heard a loud, low drone. It took me a few seconds to sort of become awake and place it — a large plane was flying overhead. Hmm. And then I jumped out of bed and went to my window, but didn’t see anything.

I’m used to large planes flying overhead, happens all the time at home. It took me a bit to realize that, as far as I can remember, I’ve never heard a plane fly over Medford. Especially not at 12:30am. The unusualness of the sound in this context was enough to wake me up. I wonder what it was doing up there.

“Have you googled her yet?” “Willow…she’s 17!”

Slashdot just posted another story about how potential employers are googling applicants for jobs, and people need to be wary of what they post online, what it says about them, etc., etc. As if this were somehow new, exciting, strange, or not common knowledge. I know, I know, people post on MySpace and Facebook and wherever without thinking about the consequences, and to those people I say, *wake up and face reality*! I’ve certainly posted things on line, years ago, that I’m less proud of today, but in the year 2006, there’s no excuse for this sort of thing.

Anyway, the article made me decide to google myself, something I haven’t done in quite a while, and the results were pretty favorable.
# AgBlog. Welcome. Here you are.
# Amazon product page for _The Devil and Daniel Silverman_, a book that is not related to me in any way, but that I did buy at some point, although I haven’t read it.
# My Berkman profile page, slightly out of date right now.
# My Flickr photo stream
# My old Brandeis home page, which probably won’t be up for much longer, once Brandeis gets around to closing my account.
# My very few contributions to the OpenACS forum.

And only after *all of that* do we get chief medical officer Daniel Silverman of Princeton, Danny Silverman the actor, a Danny Silverman at UCSB, and then a few more scattered references to me.

What do you find out about me from googling me? That I have a blog, that I went to Brandeis, that I take pictures, that I like open source software, that I had a brief interest in the Rhythmbox music software a few years back, that I wrote a couple messages to a mailing list about wearable computers, that I work at Berkman, that I had a judiciary case in the Brandeis student government court about something having to do with free speech, and that I had a hand in something called Finnegan. None of this stuff bothers me, in fact I’ve written about all or almost all of it right here on this web site. I think my online profile is pretty much under control.

Surprisingly, there is no mention whatsoever to my exploits in high school nor my article on Salon.com. For shame, Google, for shame.

Thirty-five years ago, a group of anonymous activists broke into the small, two-man office of the Federal Bureau of Investigation in Media, Pa., and stole more than 1,000 FBI documents that revealed years of systematic wiretapping, infiltration and media manipulation designed to suppress dissent. I have to wonder, if they did it today, would anyone really care?