Articles by screen

You are currently browsing screen’s articles.

mount bind on osx?

December 29, 2008 in Misc by screen | 1 comment

macfuse_180x180 I’ve been using Connect360 to stream video to my Xbox but it does not allow me to choose more than one video directory to share and it will not follow links onto my external drive. This is a typical problem with a simple solution on Linux, mount --bind. I couldn’t find mount_bind for osx but a simple alternative that really shows off the utility of user filesystems saved the day.

Enter bindfs, a directory mirroring user filesystem that works with macfuse. Running bindfs /path/to/dest /path/to/link provides the same experience. Delving into the man page shows that you have tons of control over permissions of the directory mount as well.

If you plan to use bindfs on osx be sure to install macfuse from macports and save yourself the configure failure when building bindfs from source because you downloaded the dmg and ran the installer.

We’ve been running all of our services here on sizzo in linux chroots that rely heavily on bind mounted directories to share data. It wasn’t until the 2.6.26 kernel that read only bind mounts were working, which provide an extra level of data protection within the chroot. Alternatively using bindfs/fuse on linux seems like it would be another great solution, especially when more fine grained control of permissions is necessary.

Dvorak+Leopard 10.5.6 BEWARE!

December 18, 2008 in Misc by screen | No comments

osx installer Warning: If you are a dvorak user do not, I repeat, DO NOT upgrade OSX to Leopard 10.5.6. In fact if you use any keyboard layout other than US English you should probably wait as well. After upgrading you may find that you are unable to type using dvorak in some applications, or use some application shortcuts.

I got bitten pretty badly in ATOK, a third party Japanese IME, which was rendered completely useless. It wouldn’t recognize any input keyboard layout other than US English. Input layouts in Kotoeri did work fine however.

Now I’ve just finished reverting back to 10.5.5 from a backup. A quick web search turned up similar problems using Epclipse keyboard shortcuts, WOW commands and others.

Update 5/13/09: 10.5.7 is safe, apple has fixed this issue.

Making cd a tad bit smarter.

August 28, 2008 in Misc by screen | No comments

I just realized that I spend way to much time taking a full path w/ filename and then deleting the filename portion after pasting into cd. So here’s a little .bash_profile function that you can alias to cd to make a bit smarter.

function _cd {
  if [[ -n $1 ]]; then
    if [[ -L $1 ]]; then
      [[ "`stat -L $1 -c %F`" != 'directory' ]] && CDIR=`dirname $1`
    elif [[ ! -d $1 ]]; then
      CDIR=`dirname $1`
      [[ "$CDIR" == "." ]] && unset CDIR
    fi
  fi
 
  if [[ -n "$CDIR" ]]; then
    cd $CDIR
  else
    cd $1
  fi
  unset CDIR
}
 
alias cd="_cd"

This should allow you to use cd normall but when you do the following it will put you in the directory that httpd.conf is in:


sizzo:~ screen$ cd /usr/local/apache/conf/httpd.conf
sizzo:/usr/local/apache/conf screen$

If you use or expand this please share your experience! There are a couple known issues such as reverse traversing across links from within link directories, not sure if there’s a way around this yet. I’ll update as issues may arise.

OSCON 2008

July 9, 2008 in PHP by screen | No comments

OSCON 2008I’m happy to be heading to Portland to speak at OSCON in two weeks where I’ll be presenting my performance caching talk for the last time. If you haven’t had a chance to see it yet I hope I’ll see you there. Hrm, now i’ll need to think of something new to talk about…

Update: Slides are now available.

Japanese Verb Conjugation

July 8, 2008 in Japanese by screen | 3 comments

Japanese Intermediate 2 began last week at Soko Gakuen and I’ve been preparing for a while to dive more into verb conjugations. It doesn’t look like we’ll be going terribly far with them just yet but I’ll be ready with the new verb conjugation charts that I’ve been compiling. I’m posting the first two charts as they might be useful to other students.

  • Japanese Verb Conjugation Chart (PDF) (Scribd)
  • て(te) Form Conjugation Chart (PDF) (Scribd)

These are a works progress and if you see any mistakes, please contact me. The main chart should contain most conjugations used in modern japanese and I plan to add more useful compound verbs in the future, as I learn them. I’ve collapsed some rows so the chart would fit on one page, these are indicated by the numeric references in the ‘Pre’ column.

The XHTML charts may not display properly, if at all (Internet Explorer) on Windows, and the PDF versions are formatted for printing on A4 paper.

The charts were compiled with information from the following great resources:


A Nihongo Note

December 11, 2007 in Japanese by screen | 3 comments

Katakana Middle Dot (Interpunct)I just finished taking my Japanese final for Beginning 2 and thought I’d post a little tidbit. Earlier today I managed to spend about 30 minutes figuring out how to input the interpunct character that is used to separate transcribed foreign words written in Katakana like オペレーティング・システム (operating system). In unicode this ・little guy・ is called the ‘katakana middle dot’ or in Japanese, nakaguro. How to input this character in OSX seems to be completely undocumented. In hopes of saving someone this precious time, the kotoeri key combination to use, in kana mode, is ⌥+/ (option/alt + forward slash). You can also enter なかぐろ+[space] ;)

DCPHP Talk

November 24, 2007 in PHP by screen | No comments

I’ve been traveling a lot and almost forgot to get up the slides from my talk in DC a couple weeks ago. If you’d like to check out the slides, they are available in the Talks section. I had a great time giving this talk and meeting the great DC PHP guys as well as hanging out with some of the OmniTI folks.

DCPHP2007

You’re Source Code is Showing

September 24, 2007 in PHP by screen | No comments

01-021-sm.jpgWe’ve all seen Apache serve up some source code when it should have been parsing PHP, or whatever you’re server side language of choice is, but what can we do to prevent it?

Although it seems improbable I have seen a case where this could be attributed to achieving a mysteriously unstable Apache or PHP state. This particular server happened to be mis-configured to load APC as a shared object even though it was already compiled into PHP statically. I recently tried to reproduce this but failed when running a recent build of APC. I do know, however, that removing the erroneous apc.so solved the problem.

We, at Facebook, recently encountered a similar issue resulting in the same outcome. It was the middle of August when I got a message from a user wondering why we were showing him ‘codes’ instead of search results when he was searching for a friend. He was able to reach me because my email address is in the first 10 lines of the source code for s.php. This source code was visible to him rather than the search results he was looking for so I dropped everything to try and figure out why.

This shouldn’t have been possible running the Apache modifications we have in place. We had already patched Apache to detect requested PHP extensions that return a non-handled response, preventing source code from being returned. Although similar results can be achieved using an Apache module such as mod_security, this module only supports output filtering in Apache 2. We decided to patch Apache 1.3 directly which has the added benefit of averting a potential configuration error. This patch for Apache 1.3.37/1.3.39 is now available here.

After looking at every possible angle, I was unable to configure our Apache build to serve source code even if we wanted to. What we eventually found was a single server running a standard distribution build of Apache in our production pool of several thousand web severs. A lot has been posted online blaming PHP for this, however, the server that we eventually found was not running PHP. In order to criticize PHP we should scrutinize the implementation details of the language itself and eschew the attributes that are common among all web server programming languages.

These sorts of issues can and do happen to anyone, large or small, so what can you do to minimize the damage when this situation arises? As I mentioned earlier, you can use a module like mod_security and it’s response parsing features, however this does not come free of cost. You’ll need to be running Apache 2.x and if you are concerned with PHP performance this is not a good choice today, see Ilia Alshanetsky’s article Apache 1 vs Apache 2 Performance. If you’re already running Apache 1.x you can take a look at our patch but you can also do more, like abstract all PHP pages by implementing an include which evaluates code outside of the document root:

/siteroot/docroot/index.php:
include_once '/siteroot/site/index.php'; // point to the real index.php
?>

Although not absolutely preventing source code leaks, this method, proposed in the blog New Web Order, is sound advice and minimizes risk when an exposure occurs. In an optimized APC environment, where apc.stat=0, this added abstraction should come at little to no cost in performance.

Simple problems such as this can affect anyone large or small and as the complexity of an environment increases it requires more robust auditing and monitoring. Open source monitoring toolkits largely lack the necessary features to scale in support of these environments so it is essential that we continue to build and improve these systems internally to prevent and detect problems like this. If you are interested in building these types of systems with us or working on PHP with us, feel free to contact me or checkout Facebook Jobs.

PHP|works Talk

September 14, 2007 in PHP by screen | 1 comment

I did my first PHP conference talk yesterday at PHP|works. I think it went pretty well considering it was my first for this presentation. If you’d like to check it out the slides are available in my new Talks section. Now back to being entertained by Terry Chay’s talk.

PHP|works

From the Archives

March 28, 2007 in Misc by screen | No comments

I’m digging deep in the archives for this one, inspired by a coworker’s own note about crosswords. His recent publication in the New York Times brought back the painfull memory of my own rejection. In light of this I have unearthed my own failed submission to the Times for your consumption.

xword_preview.jpg

If I recall, I had rated this at about a Wendnesday’s difficulty but I’m not entirely positive. If you take the time to do this then I apologize in advance for the two page pdf format. This is the only format I currently have available.

Also, it’s not too late to see Will Shortz speak at UC Berkely this may. Tickets are still available here.