Evil Home Stereo

I had a look at my access log today and noticed a bunch of referrer entries from blog.johnkerry.com which were obviosly spam. I mean, how more obvious can it get if the user agent is “StarProse Referrer Advertising System 2004″ or even “Paid for by John Kerry“? (And why should an American candidate for president link to my blog? )

This looked a bit too obvious to me and smelled much like a joe-job; a short `grep johnkerry access | cut -d’ ‘ -f1 | host -x | awk -vRS=’\n\n’ ‘{print $4″\t”$2}’ | sort | uniq -c | sort -nr` gave me:

So those queries are obviously sent through open proxies, spamming random blogs with an obvious user agent string. Joe-job I say. And am not the only one who thinks so.

They did it — went and announced yet another technique to reduce spam instead of supporting one of the existing proposals. (Side note: When I searched for a link to Yahoo!’s Domain Keys announcement, all links were dead — did they withdraw their proposal?)

We discussed the proposal privately before it was officially announced; the discussion was a follow-up to this posting by Meng Weng Wong. Our reactions:

Justin first commented:

XML for SPF?!! argh. This is getting out of control.

Matt later replied:

I wrote half the XML modules on CPAN, and I’m firmly in the anti-XML camp here. XML should be used where it’s appropriate, and it’s not here.

Craig offered:

I’ll even pitch in to buy the gun to shoot
whoever came up with XML over DNS.

My own spontanous reaction was a simple:

XML over DNS… *shudder*

I guess Justin’s answer to Meng summarizes our attitude towards the proposal pretty good:

I think all in the SpamAssassin side are united against the format of XML-over-DNS, at the very least.

SpamAssassin will have to support Caller ID anyway. If the patent license permits. (Which isn’t easy to read without Windows — when will people finally learn that Word is no document exchange format? Fortunately did the SPF guys produce PDF versions of the documents.)

I currently work for the NDR again. My job: Writing a handbook for the (Windows XP-based) notebooks (*yawn*), testing them (all systems are built from a standard client image) to make sure they comply with the specs (or whatever you want to call the document produced by guy from the company which was paid for writing it) and point out where the specs lack (*sigh*). And implement some of the features from the specs (actually, nobody told me officially to do so, but they’re glad if they have a bit less work and I just can’t write all day some boring handbook).

As the system is Windows based, most of the scripting (for login scripts etc.) is done in Batch. You know, that stuff interpreted by cmd.exe (formerly known as command.com).

With the command extensions (introduced with Windows NT 4.0, I think) using this interpreter has become a bit better than it was in DOS days. But if you’re used to Unix shells like Bash, it’s still a PITA. Why didn’t the guys I work for/with decide to equip the client image with a GNU layer like Cygwin when the decisions were made? I dunno, they loathe Linux by no means at all.

Scripting Windows is almost as bad as using it. Most of the system commands return no exit code (aka errorlevel) so you have to grep the output of an (often localized) app to do anything useful. Oh, right, there’s no grep under Windows. The traditional way is to use find which does a simple string comparison. If you need regular expressions, there is findstr. Whichever you use, it returns (and behaves like a good shell command) 0 if the string was found, else 1 (or some other positive integer value indicating an error).

One of the less good behaving programs is devcon; it refuses to return any useful error code. At least is it not localized, so you can grep… errr… find the output. That means as long as find does what it is supposed to do. Like when I had this code:

28: REM -- Enable/disable these device classes.
29: for %%i in (Infrared 1394 PCMCIA MTD TSDHD Modem) do (
30:   @echo Checking class =%%i...
31:   REM -- Is there any device of this class?
32:   devcon find "=%%i" | find /i /v "no match"
33:   if %errorlevel% == 1 (
34:     REM --- Found something
35:     call :dodev %cmd% "=%%i"
36:   )
37:   @echo ... done
38: )

In line 32 devcon prints a list of devices or “No matching devices” if nothing was found, find looks for any line not containing the error string and returns a proper error level. That worked. For an hour or so. Until I changed some other part of the script. And suddenly find insisted on a return value of 0. Whatever devcon said.

First I though it was my fault and I accidently messed up that part of the code But after more than an hour of printf() debugging I was pretty sure that Windows was the real culprit. And what do you do if Windows starts to behave weird? Right, you reboot your machine.

And indeed, when Windows was up again exactly the same script worked fine again and find behaved as it should. Now, does that strengthen your trust in Windows Batch scripts?

I called this article “part I” as I have the bad feeling that I’ll encounter more weird Windows behaviour in the next few days…

After my rant about bad advertisements last week, here comes a really cool one. I saw it at the subway station Jungfernstieg. It’s a poster for a local taxi cooperative. The other ones aren’t as cool as the one I saw but still nice.

While I wrote this text I also found some interesting infos and nice pictures of our (and other) subway lines.

I nominate Homeland Alert for Mac OS X:

Homeland Alert displays in the menu bar the current Homeland Security Advisory status level/color for the entire country. If you are connected to the Internet Homeland Alert checks once every 20 minutes for a change in this alert status. If there is ever a change Homeland Alert updates itself to reflect the current conditions.

And what if the status raises to “Severe” within these 20 minutes and I thus don’t have a chance hopping into my private bunker and get killed by the A-bomb thrown by some weirdo terrorists? Can I sue that company then? (Found via Astrid Paprotta.)

When I looked up something else in the latest print edition of the c’t I came accross an advertisement which already annoyed me when I saw it the first time. It’s on page 73 and advertises the hosting services of T-Online Business.

The ad caught my eye in the first place because it looks like crap (here’s a scan): Some advertisement agency had the great idea of putting the text between HTML markup and draw some frame around to make it look like a Windows XP dialog. But that dialog is transparent and you can see the Aqua-like stripes of the background. All this is garnished with colors which clash violently: The default Windows XP dark blue and red just don’t harmonize with the Telekom magenta and grey. Additionally the HTML highlighting is held in some bluish tint.

But what makes the ad really bad is that the antiquated HTML doesn’t validate (the first font element isn’t closed and they put block-level elements inside inline ones). Plus the used colors are plain stupid (visited and unvisited links are forced to be the same color and that one is used for the headlines, too). The straw that breaks the camel’s back is the URL the ad points you to: If you’ve got JavaScript disabled, all you can do is staring at a blank “Untitled Document” (or have a look at the crappy source of that page which makes you think that it was created by the same person who made the print ad).

The whole advertisement looks like an example for bad HTML as it was written five to ten years ago. But not like something advertising “quality hosting by a professional provider” in a magazie read mostly by tech-savvy people.

Jeremy wrote (again) about Yahoo!/Inktomi vs. Google vs. SEOs:

After the new search is launched (no, I’m *not* telling you when, so don’t even ask), SEOs and other scumbags will find themselves with two systems to game: PageRank and, uh… err… Inktomi’s algorithm. (I’d use it’s real name, but it seems not to be publicly known. Google found only one reference to it.)

The real question is whether or not it will suffer the same fate. Will SEO scumbags figure out how to game it too, resulting in yet another arms race? If history is any guide, I think so.

Actually (old news follows), the rise of Another Big Search Engine ™ besides Google is what the web really needs these days. As we all can see does the current monoculture suffer under the typical symptoms, most strikingly the accomodation of parasites to the system.

Even if/when those parasites adapt their link farms and fake pages to the Inktomi algorithm (and if that one isn’t immune against such attacks), will the owners of the SEO’d sites still have to change their pages themselves to make sure both engines like them. To achieve success, they actually have to use something like a spider-bridge which is not necessarily much harder but at least a bit more expensive to implement than a browser-bridge. Because web spider don’t care about some crappy piece of JavaScript, you’re cheapish host needs to support at least some kind of dynamic content, may it be PHP or ASP or something else. And they have to pay somebody who knows more than a bit Photoshop and HTML to do this right. (Though if I think of some firm I once worked for, I have the bad feeling that a book called “PHP in 7 days” is all they think they need and “doing it right” is relative.)

A variety of search engines of course has other effects too (the simplest being the increased complexity when the engines are dancing and you need to track the changes in their behaviour), but this should throw at least the wannabe-spammers with their throw-away domains at several different (cheapish) providers out of the game. I hope.

Hm. Anybody interested in a short round of Google Whacking to ind out the name of Inktomi’s algorithm?

… at least at the local postoffice, so it seems. Today they tried to deliver a parcel to me but I wasn’t at home, so what did they do? They forwarded it to the school where my mother works. Seems like the postman even knew the address by heart

Slightly related: Somehow I found the site Matthias Friedel Luftbildfotografie today. Great aerial views of Hamburg and other places in Northern Germany. Very cool: The City of Hamburg, zoomable. Here is a view of the place I live at and this is the grammar school I went to, in the background the Wegenkamp Elementary School, the place my parcel was delivered to. Hm, and to complete the list of schools I went to, this is the university I currently study at.

This translated error message which arrived on the KDE mailinglist today is ridiculous:

From: E-Mail-Lieferservice
Subject: Lieferstatusbenachrichtigung

That translation is even better than the suggestion of the Fish. It continues with the inevitable explanation for MIME-incompatible MUAs:

Diese mehrteilige MIME-Nachricht enhält eine Lieferstatusbenachrichtigung.
Wenn Sie diesen Text sehen, kann Ihr Mail-Client MIME-formatierte Nachrichten oder DNS eventuell nicht richtig verarbeiten.
Weitere Informationen hierzu finden Sie unter RFC 2045 bis 2049.

Ok, it’s a multipart MIME message yadda yadda, but what the heck does DNS have to do with displaying MIME messages? The joke is finished with a server error message translated to nonsense:

- Diese Nachrichtenempfänger wurden vom Mail-Server bereits verarbeitet:
user@freesurf.ch; Fehlgeschlagen; 5.7.0 (anderer oder nicht definierter Sicherheitsstatus)

Somebody should take his LART and visit that clueless sysadmin.

Tomorrow I write an exam in Basic Programming. And since two days I’m trying to solve a task from last year’s exam. Number two just didn’t make any sense.

A few minutes ago Jens told me via ICQ that I’m indeed missing something: On his screen there is much more text. I was reading the PDF via KGhostView. So I had a look with the Acrobat Reader. And suddenly the rest of the text appeared. KPDF displays it, too. Have a look yourself:

• Screenshot of KGhostView
• Screenshot of KPDF
• Screenshot of the Acrobat Reader

I noticed before that KPDF beats the pants off KGhostView when it comes to viewing PDF files. But this really sucks and is the worst thing I ever experienced. It stole me at least eight hours of my life.