Wow.
That post got quite a few hits. You know, the one about the Gentoo. While it's true I could come up with more reasons (and maybe I will), no one would like them. The internet is a silly place.
The world would be a much healthier place if…
People never ate any of the following EVER:
Fast Food (McGorditaChickenJrKing)
Soda (Sugar. A LOT of sugar)
Processed Foods (TV Dinners are gross anyway)
Canned Soup (Just drink a steaming cup of ocean. its about the same thing)
"Diet" Stuff. (mmm chemicals)
Reasons *I* love (and hate) gentoo (v2.0)
Well apparently some people got their feelings hurt by my last "love/hate" Gentoo post, and as much as I don't care, I'd like to at least relay a few more things to set the record straight. First off, I like Gentoo, as I said before. I have 2 desktops and 3 servers running it right now *at home*. Why the emphasis? Well, it is my opinion that Gentoo cannot be effectively deployed and managed in a large scale corporate environment. While tools like chef, puppet and cfengine aim to ease these woes, there are certain issues with Gentoo that need to be addressed before it can work seamlessly with these tools. On to my short but sweet list.
Some reasons I love the Gentoo Linux Distribution:
* Fast. Wow is it fast.
* Packages are up to date.
* FreeBSD-ish ports system. Compile everything from scratch.
* Awesome for home uses and personal stuff.
Reasons I *hate* Gentoo:
* FreeBSD-ish ports system. Compiling everything from scratch is awesome for home users, but when you administer hundreds of servers IT SUCKS. Yes, you can set up a binary repository. No, it's not easy. Every other distribution/flavor makes this easy. Why don't you make it easy Gentoo? Was it because of that time in 7th grade I stole your cupcake and your girlfriend all in the same day? Why would you even want that cupcake? it was full of trans fatty acids. I am on my way to heart disease because of that cupcake. That should make you feel better.
* Portage dependency hell. It's awesome that Gentoo is bleeding edge, and has the latest and greatest packages, BUT MAKE A BUILD SYSTEM THAT WORKS. TRANS FATTY ACIDS I TELL YOU.
Disclaimer: You may think this list is uneducated and rough. It is rough, but far from uneducated. I've tried to support an initiative to roll Gentoo out as a production distro a few times. And every time, it's bitten me. If you've gotten it to work, I salute your vigor and steadfast resolve.
Disclaimer 2: "Oh my god, you only have six reasons in your list!". Point being? Those are the first few I could come up with off the top off my head. Do I care what you think? Not really. Make your own list if you want to.
Note: Other people have made these arguments. Much more eloquently than I can, too. Do I need you to remind me of this by leaving a comment? Nope, I sure don't.
The Curse
I must have started at least 5 or 6 posts with the intent to relay this information, but for some reason I always get sidetracked. It's actually fairly ironic that I get distracted from writing a post about why I can get distracted.
So anyway, on to "The Curse".
So in my subset of friends, there are quite a few of us who have a higher than average IQ. Trust me, we've taken tests, and not the rinky dink internet ones. (I know what you're thinking, "Ohmigod hes going to get on a high horse and talk about how he's smarter than everyone! I hate that!"). Actually, nothing could be further from the truth. While its true that I am thankful for my gift (and frankly, probably wouldn't have it any other way), it's a very difficult thing to control sometimes. (Reads: All THE TIME EVER. Well sort of).
Disclaimer: I'm not crazy. I don't suffer from any identifiable mental illness. I do not have an imaginary rabbit friend named professor hops.
Disclaimer being said, the reason I call it a curse is because everyone I know who has an IQ above 150 is just plain odd. Personally, it affects me by completely destroying most of my focus. I can focus on tasks if I put my mind to it, but every once in a while my mind will veer off into some completely different tangent and I lose my focus completely. At the worst of it, my mind will go into multiple streams of thought and I can't really do anything. Not that I don't have control when it does this, but it's amazingly noticeable. Anyone who knows me knows I can "space out" every once in a while.
So what does this affect, practically?
Luckily, it doesn't affect me at work. If anything, I'm more focused at work because of it.
It does affect social interaction, like alot. I'll be in the middle of a sentence and just trail off... what?
ADD? ADHD? No. I'm not talking about made up syndromes here.
Did you notice by reading about this blog that I don't write horribly long posts? Yep. There it is right there. Intelligent people may have a screw loose. We're just plain weird. Don't talk about me like that. Damn you dirty apes!
I digress. Or do I?
Shut up Professor Hops, you have a degree in bologne.
Feet.
Jakalope: Evolution
Since I'm feeling very "General" category heavy lately, I thought I'd write a little piece on a band that I've liked for quite a long time. Jakalope has recently gone through a bit of a transformation, with lead singer Katie B. leaving for her own solo career, and Dave Ogilvie finding Chrystal Leigh hiding somewhere to replace her. This is the part of the post where my mind is going to turn all mushy, because I actually like both incarnations of Jakalope as they are. Here, see for yourself.
This is Jakalope, circa 2004, with Katie B. as the lead singer. "Pretty Life"
And here is the new lead singer, Chrystal Leigh, with "aka Cupcake".
I don't know. I like the way Jakalope is going, but I also like the older Katie stuff.
Anyway. Just a post to fill some DB space.
![Image of by Frank Beddor The Looking Glass Wars [BARGAIN PRICE]](http://ecx.images-amazon.com/images/I/31UTERESEsL._SL160_.jpg "by Frank Beddor The Looking Glass Wars [BARGAIN PRICE]")
/me sighs at Twitter.
Ugh. The tag #unotfromthehoodif could be the dumbest thing I've ever seen. I wonder how many people that use it actually lived in a 'hood.
(Not being a jerk here, I actually did live in the 'hood.)
I find it difficult…
Maybe this shouldn't be the case, but I find it difficult to rant on my blog. And I know that these are supposed to be an outlet for peoples emotions, but for some reason I harbor this deep-seated concern that someone may misconstrue my rantings as unhappy rantings. I'm far from unhappy, just a little stressed out.
Drupal and mod_security : Part 2
Hi all,
I've gotten quite a few emails regarding my last post about Drupal and mod_security, and what those rules I'm removing actually do. Well, I'll explain.
First Rule: 960010
SecRule REQUEST_METHOD "!^(?:get|head|propfind|options)$" \
"chain, t:lowercase, deny,log,auditlog,status:401,msg:'Request content type
is not allowed by policy',,id:'960010',severity:'4'"
SecRule REQUEST_HEADERS:Content-Type "!(?:^(?:application\/x-www-form-urlencoded
(?:;(?:\s?charset\s?=\s?[\w\d\-]{1,18})?)??$|multipart/form-data;)|text/xml)"
This rule basically only allows certain content-type headers to be passed with the request methods listed in REQUEST_METHOD. Apparently, Drupal doesn't respect this rule in posts.
Next, 960015
SecRule &REQUEST_HEADERS:Accept "@eq 0" \
"chain,skip:1,log,auditlog,msg:'Request Missing an Accept Header', severity:'2',,id:'960015',"
SecRule REQUEST_METHOD "!^OPTIONS$" "t:none"
SecRule REQUEST_HEADERS:Accept "^$" \
"chain,log,auditlog,msg:'Request Missing an Accept Header', severity:'2',,id:'960015',"
SecRule REQUEST_METHOD "!^OPTIONS$" "t:none"
This basically says, any request other than an OPTIONS request, *must* have an Accept header sent with it.
Next, 960032:
SecRule REQUEST_METHOD "!^((?:(?:POS|GE)T|OPTIONS|HEAD))$" \
"phase:2,log,auditlog,status:401,msg:'Method is not allowed by policy', severity:'2',,id:'960032',"
This says any methods other than POST, GET, OPTIONS or HEAD aren't allowed. While generally this is true, and I don't know why Drupal will occasionally hit this rule, I just remove it out of completeness.
And Lastly,
Rule 950107:
SecRule REQUEST_FILENAME|ARGS|ARGS_NAMES|REQUEST_HEADERS|XML:/*|!REQUEST_HEADERS:Referer "@validateUrlEncoding" \
"chain, deny,log,auditlog,status:400,msg:'URL Encoding Abuse Attack Attempt',,id:'950107',severity:'4'"
SecRule REQUEST_FILENAME|ARGS|ARGS_NAMES|REQUEST_HEADERS|XML:/*|!REQUEST_HEADERS:Referer "\%(?!$|\W|[0-9a-fA-F]{2}|u[0-9a-fA-F]{4})"
This rule merely checks the URL encoding on a URL. I say merely, but this rule is also matched almost _all of the time_.
I haven't actually run through the Drupal code and figured out why these are completely necessary, however I do know that they've fixed quite a few peoples problems.
Anyway, hope that clarifies some things for people.
Categories
- Gaming (3)
- General (18)
- Link Dump (3)
- Tech (13)
- Content Delivery (1)
- Linux (7)
- OSX (1)
- Virtualization (2)
- Uncategorized (5)
Z Photo a day
Archives
- March 2010
- February 2010
- August 2009
- June 2009
- April 2009
- January 2009
- December 2008
- October 2008
- September 2008
Recent Posts
- Wow.
- The world would be a much healthier place if…
- Reasons *I* love (and hate) gentoo (v2.0)
- The Curse
- Jakalope: Evolution
