Upgrading the pacemaker device with a SD card, not this time!

IMG_20190813_211758

Its a short story (not in effort and time). I tried it after a colleague suggested it instead of SSD a while ago. I tried it but found the card reader the Kalea Informatique adapter, didn’t support SD cards over 32gig. The description said 64gig but everytime I restored the pacemaker firmware it would only format to 32gig. Even using Gparted (like partition magic) to extend the Fat32 partition caused the pacemaker to no longer be accessible by my laptop (it comes up as generic Linux storage device).

I haven’t given up, I’m returning the Kalea adapter and have bought a Kalea adaptor converter but the compact flash version. Yes in short it would be a ZIF LIF to Compact Flash to SD card.

Hopefully this will actually work

Dada says there might be a problem?

Grandpa's Pocket Ledger & My Field Notes

Following on from the great work being done by the databox project team which recently appeared in BBC News, about the work (BBC R&D) have done with it including the living room of the future and BBC Box project. I was impressed to learn about the Dada wiki.

The Defense Against the Dark Artefacts (DADA) project is a collaboration between the Universities of Cambridge, Nottingham, and Imperial, addressing challenges in security and privacy related to smart home devices. These challenges result from the current, widely-adopted approaches in which cloud services underpin home IoT devices, where network infrastructure protection is minimal and little or no isolation is provided between attached devices and the data traffic they carry.

It addresses these challenges by:

  1. designing and implementing mechanisms for device traffic monitoring with a precise look at packet traces and device profiles;
  2. applying learning technologies to detect devices’ abnormal behavior;
  3. introducing techniques for dealing with traffic anomalies and restoring home network operability;
  4. putting the homeowner in the center of management by informing them of possible security threats and offering a choice of defences.

This although I used the wrong technology, this was what I was pointing towards in my blog titled your home needs a blockchain. All the things in Human Data Interaction – Legibility, Agency and Negotiatability all apply if Dada was a databox application.

Interestingly Dada isn’t the only one in this field. Recently Princeton released IOT inspector to do something similar.

Today, we release Princeton IoT Inspector, a open-source tool that lets you inspect IoT traffic in your home network right from the browser. With a one-click install process, you can watch how your IoT devices watch you within minutes of setup.

However IOT inspector is a tool for inpection, while Dada is a tool and place to upload data for analysis to benefit the research community. Of course you don’t have to upload the data and maybe do the analysis locally (this would fit the Databox model perfectly). There is a privacy policy of course, but I expect this will be expanded in the near future.

We understand that any uploaded device trace might contain personal application data. While we need to analyse the uploaded traces to extract IoT features in order to form ML training datasets, we do not aim to analyse nor store your personal data. Therefore, the processed traces are anonymised and all sensitive application payload is removed before the actual analysis starts.

After analysis is done, our servers store the anonymised trace and the extracted features such as packet headers, addresses, ports and payload size (but not the payload itself).

Of course uploading the data for research purposes could be incredible useful. For example imagine you bought a device which is already in the Dada database. You check the device and it seems to be sending a lot of traffic odd places. You check the version number, firmware, etc but its consuming a lot of traffic which is odd. Maybe it was hacked/hijacked? With a public database, its possible to check. Even better with a databox application, it could be done automaticlly if the user(s) allow it.

Some of you maybe thinking this is insane stuff but can I remind you of the house that spied on me and the follow up which armed people with tools.

Even Mozilla went as far as to create a buyers guide to help people choose IOT devices with more information that whats usually available to you in the shop or without proper research. Now theres loads of stories about IOT hijacking by hackers (hummmm possible) and more likely from the companies who make the hardware to bring new features… 

96656cc2-6c28-4100-a783-f1006f53c102_text_hi.gif

Google Titan key security problem?

I was sure I tooted/tweet a thank you to the Google team in Berlin’s Re:publica conference. But it looks like it never quite happened due to connectivity issues with the wifi at certain points of the day.

So first of all I want to say thanks for giving me a titan security key for spending time listening to what changes Google had made to their security as announced in Google IO 2019.

I was surprised to see Google there with all the ill feeling about the 5 stacks, their monopoly and business practice.

But before I could get home try the key/system, I saw a bunch of problems with the key.

Google Titan Bluetooth Security Key Can Be Used to Hack Paired Devices

Titan-ic disaster: Bluetooth blunder sinks Google’s 2FA keys, free replacements offered

Obviously I was a little concerned, although I had not added the titan key to my google 2 factor auth yet.

After a bunch of reading, it seems its not completely flawed. The Google security blog confirms my research.

The problem is with the Bluetooth fob which to be honest is super convenient wasn’t the most secure idea in the world. The bluetooth stack is limited in its range but because of that, its not got as much security as most things on the net.

Due to a misconfiguration in the Titan Security Keys’ Bluetooth pairing protocols, it is possible for an attacker who is physically close to you at the moment you use your security key — within approximately 30 feet — to (a) communicate with your security key, or (b) communicate with the device to which your key is paired. In order for the misconfiguration to be exploited, an attacker would have to align a series of events in close coordination:

When you’re trying to sign into an account on your device, you are normally asked to press the button on your BLE security key to activate it. An attacker in close physical proximity at that moment in time can potentially connect their own device to your affected security key before your own device connects. In this set of circumstances, the attacker could sign into your account using their own device if the attacker somehow already obtained your username and password and could time these events exactly.

Before you can use your security key, it must be paired to your device. Once paired, an attacker in close physical proximity to you could use their device to masquerade as your affected security key and connect to your device at the moment you are asked to press the button on your key. After that, they could attempt to change their device to appear as a Bluetooth keyboard or mouse and potentially take actions on your device.

This all being a big mistake, Google has offered a replacement key. However because my key hasn’t been added to my account yet, I get a message saying no action is required but a email to override this. However after double checking my key is a type T3 meaning it wasn’t effected.

Good work Google…

This is not Plex on your GPU

https://www.flickr.com/photos/nvidia/30153594058/

I hadn’t really thought Plex Media Server could massively benefit from a GPU, to be fair its not really a thing you put in a headless server? But after reading about it, I gave it a try by borrowing a Nvida Quatro PCI-express card and after some small issues getting the propitery drivers working gave it a try.

I thrown together a shell script to log the CPU and GPU heat to a text file called heat.txt

while true; do date >> heat.txt ;
 nvidia-smi -q -d temperature |
 grep 'GPU Current Temp' >> heat.txt; sensors |
 grep -e 'CPU Temperature' -e 'CPU Fan Speed' 
-e 'MB Temperature' >> heat.txt; sleep 10; 
done

I know theres a better way but it was quick and dirty.

From the short tests I did, it seemed the CPU kicked into high gear for a minute or two before it hands off to, what I thought was the GPU. However… During a stream encode of 4k h.264 content to 1080p h.264, while directly streaming at the same time. I got these results.

Thu 20 Dec 20:23:51 GMT 2018;
> GPU Temperature: 33.0°C
> CPU Fan: 1650 RPM
> CPU Temperature: +71.0°C
> MB Temperature: +34.0°C
Thu 20 Dec 20:24:01 GMT 2018;
> GPU Temperature: 33.0°C
> CPU Fan:: 1599 RPM
> CPU Temperature: +68.0°C
> MB Temperature: +34.0°C
Thu 20 Dec 20:24:11 GMT 2018;
> GPU Temperature: 33.0°C
> CPU Fan: 1261 RPM
> CPU Temperature: +59.0°C
> MB Temperature: +34.0°C
Thu 20 Dec 20:24:21 GMT 2018;
> GPU Temperature: 33.0°C
> CPU Fan: 1167 RPM
> CPU Temperature: +54.0°C
> MB Temperature: +34.0°C

A while later once the transcoding stops

Thu 20 Dec 20:37:40 GMT 2018;
> GPU Temperature: 33.0°C
> CPU Fan: 725 RPM
> CPU Temperature: +37.0°C
> MB Temperature: +35.0°C
Thu 20 Dec 20:37:50 GMT 2018;
> GPU Temperature: 33.0°C
> CPU Fan: 724 RPM
> CPU Temperature: +37.0°C
> MB Temperature: +35.0°C
Thu 20 Dec 20:38:00 GMT 2018;
> GPU Temperature: 33.0°C
> CPU Fan: 725 RPM
> CPU Temperature: +37.0°C
> MB Temperature: +35.0°C

As you can see with proper testing it was clear the GPU isn’t being used for transcoding (unless the CPU magically is doing something else, but looking at Htop, its clearly Plex transcoding). This was confirmed when doing more research on the issue.

Seems the problem I got is the AMD processor and if I was to swich it to a Intel one it should work with the Nvidia GPU?

So this brings me to the idea of maybe changing parts of my server.

Si pointed me at PC part picker which is alright but I don’t really understand why some Linux operating systems are not listed under operating systems? I listed most of my parts here and to be fair changing the CPU, motherboard, case and of course getting my own GPU might be a good idea?

Making Slack useable on x64 Linux?

 

Slack

Its been a while since I reinstalled my work laptop; one thing I haven’t reinstalled properly is the Slack app.

The amount of times I use to start it up and go and make a tea because it would make my ubuntu install act like Windows 95. Most of the time I would come back to find my laptop completely frozen.

I tried removing the amount of slack workspaces I had attached to the app but it made little difference. So I decided to hell with the slack app, which seems to be a wrapper for Chrome, with each slack instance being another instance of chrome!

This time I’m using Slack in Firefox and limiting how many I have open at a time. I noticed if you login into the different slacks, the cookie will hold them open for you without using the resources. This can be done from the main page using the Workspace options.

Slack home

I also noticed the enterprise slack version also has a front page which can be used to reach the other slacks.

Recently I decided to give Flatpak Slack a try. Interestingly I found you can launch the Slack app from the slack pages mentioned above.

It sounds like a lot of hassle but it works and mean my ubuntu system is fully useable.

Hopefully this will be useful for other Linux Slack users?

I bought a Chromebook

https://www.youtube.com/watch?v=YDIhZZJQWRw

The other day my work Dell XPS 13 which has been running Ubuntu 16.04.1 asked me to upgrade. This message has been coming up for a while but I decided it was time for a upgrade, 18.04 was running well on my server and well it was time.

However the upgrade broke and I was left with Ubuntu 18.04 with Busybox. I had backups but as it was a BBC R&D build of Ubuntu, I needed to go to work for them to reinstall it. All of this was just before I went away to Mydata 2018 in Helsinki. On top of that my ubuntu server also had a problem.

Double wammy!

It was clear I could reinstall Ubuntu quickly but I would need to do a bunch of configuration and that takes time. I have a task to create a live CD with a bunch of configurations just for me, incase similar happens again.

I’d been looking at Chromebooks since I bought one for my parents ages ago and seen how ChromeOS has matured. I’m not the only one. It was the ability to run Android and Linux apps which pushed to get one.

Google Makes it Easier to Run Linux Apps on Chromebooks

So I bought the Asus chromebook flip c302, and I’m quite impressed with it. The size is good and the performance is good. As a backup laptop its ideal. It also kinda a solution to my lack of a decent tablet now my Nexus 7 is pretty much dead. I was tempted with the Google Pixelbook but it seemed too close to what the Dell XPS 13 is for.

I did consider getting a second hand XPS and sticking ChromeOS on it myself actually.

Dataportability and Dock.io

Dock.io stack

You may have gotten an invite to dock.io which is a service which reminds me of the late atomkeep;

Atomkeep helps users sync their profile information on social networks, job boards and other Internet sites. Users gain a streamlined way to validate and control their social identity across multiple sites.

The nice thing about the Dock.io is they are doing things more correctly. The potential of blockchain is being talked about everywhere but its great to have these services showing the actual potential.

I always found Atomkeep interesting but found it heavy on the trust and apis. Dock.io benefits from dataportability and GDPR, as I was able to get my Linkedin data dump and drop it in dock.io. Export and import, now thats good! Dock.io reminds me of openhumans as you can have applications which run on top of the protocol which then talks to the actual data.

So far so good, sure to write more about it soon including the use of Ethereum and IPFS.

Do you trust grammarly?

grammarly - better writing made easy

Been looking at Grammarly for a while and to be fair they have been massively advertising too. Obviously Google & Facebook know I’m dyslexic and I imagine Grammarly are targeting people like me.

But I’m not keen on the process of sending the text to their centralised server. I understand but I think there is another way to do this, however that way conflicts with their business model. Maybe its a another case for something which should be a public service not left to the private sector?

I’m not the only one asking questions; I have been browsing the terms and conditions too and not keen on what I’ve read so far, the privacy policy alone speaks volumes.

I’ve been using Language tool as their privacy policy seems more reasonable to me and it can work offline and in a more decentralised manner.

Be interested to hear how others get on with it, maybe the benefits greatly outweigh the data ethical concerns?

 

Docker & Tiny Tiny RSS sorted finally

TTRSS Php error

I have had on my task list for a long time to fix two problems with my Tiny Tiny RSS setup.

  1. Fix the problem I’m having connecting to TTRSS in a browser since a upgrade
  2. Sort out a decent RSS reader for Ubuntu

Originally it was working fine then a upgrade broke the web interface for me and many others. The confusing and joyful thing for me, was any application which talked to the API was unaffected. Meaning my Android clients were fine including the one on my eink tablet. However all the RSS clients on Ubuntu would either not connect to ttrss, were generally rubbish or wouldn’t work in later versions of Ubuntu (like RSS Owl). The advice seemed to point to using a browser extention.

The first problem was something to do with the PHP which seemed pretty easy to fix but all the solutions assumed you were running it all on a standard webserver and had control over everything. Of course I was running it within Docker and had no idea where config.php was or even where docker had installed anything.

After actually sitting down and looking around my server as a sudo not myself (its the first time I actually dedicated time to do), I found the Docker install and learned what docker was actually doing. My ttrss docker image is actually located under /var/lib/docker/aufs/mnt/{random hash}/var/www/ttrss/.

Under that I could find the config.php file and make changes so it was only accessible over my Vpn connection – yeah, I thought this was very clever but maybe obvious to everyone else. So the only way to hit the web front end of my ttrss install is via my Vpn but API calls are done without the Vpn.

As I found the root of ttrss, I was also able to finally install feedreader which is hightly rated by many. The problem I’ve always had is feedreader complained that it needed a certain plugin installed under ttrss’s plugin directory, which previously I couldn’t find to install. Of course now I know where it is and could copy it there, I was very pleased with myself. Next stop brunch at Ezra & Gil and wait for Feedreader to pull down full text for 8500+ items.

https://twitter.com/cubicgarden/status/929712805053435904

Standardnotes my alternative choice to Evernote

Standardnotes

This is continuous fight I keep having with myself… For quite some time I’ve been looking for an alternative to Evernote on Linux & Android. I got it down to 3, Turtl, laverna and standardnotes.

In the end I decided Standardnotes mainly because I needed something which easily syncs like simplenote and I guess evernote. I liked the idea of being able to run my own standardnote server in the future. But the biggest thing for me was being able to convert my evernote notes. Yes it costs but I was happy with the terms (client side encryption) and comfortable with the payment which is less than evernote anyway. I also been looking a little deeper at Standardnotes. The privacy and sustainability statements are just stuff of dreams. Theres very few other services which can say and do these things.

What about the others?

Turtl, was good but the interface drove me a little nutty, having to login each time and no offline support? Maybe in a few years if the project gets more development it grow into something special and I’ll check it out again.

laverna is also good and is very quick and easy to get going but its mainly built around the browser as it uses javascript. There is a android app coming but its not there yet and syncing is tricky because it stores everything in the browser. I think you can move this to a sync container like dropbox, google drive, etc.

Standardnotes

With Standardnotes., I have added it to Wavebox, installed the Android apps (doesn’t install on my ereader as it needs Android 5+) and paid for a year subscription.

So far so good!

I do still use Simplenote for quick and temporary notes, but not I installed the the Linux app, this may go away too. Now I just need to sort out my imported 2177 evernotes!

Wavebox for productivity wins

Wavebox intro

I was using Wmail for a while since I got a little fed up with using Gmail in Chrome, it was good but sometimes I found it zapping resources. I tried using Evolution, Thunderbird and a few other native email apps but missed some of the nice things Gmail does and supports. So when I first saw Wmail I thought I’d give it a try even with the slight skepticism from some around Electron.

So impressed with Wmail, that I donate to the development for it. It wasn’t long till they got in touch and said they were moving to Wavebox and as a nice extra I would get a year subscription to Wavebox pro.

The things I love about Wavebox is being able to hook up multiple gmail accounts including drive, contacts, calender, etc. Trello works great as does Slack (but I opted to keep the slack app for now). But the killer is being able to hook up any site you like. For example I use Mastodon and WordPress (the official linux app locks up a lot). I was tempted to setup Evernote and maybe laverna, standardnotes, a few other things but this will do for now.

The Verge seem to agree too

Its pretty great and the ability to add almost any site is pretty useful, especially with the lack of Linux support for some things. Yes you have to pay for the pro features but its worth it.

There is also a misconception that I won’t pay for software and thats rubbish. Its about the terms, for example Wavebox is actually open source but the terms of what you pay for are fine with me.

Tiny tiny RSS experience a week later?

I have had quite a bit of feedback from my post about moving away from Feedly to a self hosted solution called Tiny Tiny RSS.

Some interesting questions have emerged from people and to be fair it certainly deserves a follow up.

I made my instance of TT-RSS available on the public netw, because I didn’t see the point of installing my VPN software on my eink reader. I also installed the official TT-RSS app which is a 7 day trail before you buy the full version for 4 pounds. I haven’t bought the full version yet because the app doesn’t seem to work well when offline? It would be great if the app understood if the device was offline and automaticilly disabled the update feeds option. It currently doesn’t seem to do this well… I much prefer Greader for this, but ttrss app isn’t far behind.

Simon commented he paid for Feedly because of the IFTTT options, but it seems weird to pay for this  because you can easily turn most of TT-RSS into a another feed and IFTTT has a RSS option which you can use to trigger most things. This reminds me of my work along while back about pipelines.

Because of this, I have been thinking about feeding Greader with the RSS from my TTRSS install. The only real disadvantage is nothing would be synced to the server? This is also something I’ve been thinking about with a linux desktop reader like thunderbird because I can’t seem to install a TTRSS reader which works.

I tried a few but each has had problems.

Feed the Moneky looked very promising but when I finally get the appimage loaded, it shows nothing? Feedreader looked great and after finally getting flatpak working, I’m faced with the error that I need to install the api-feedreader plugin in my TTRSS server. How I do this when I’m using docker is a question I have no answer for, except it seems I need to use another docker container?

So generally its going well but hitting a few points which need straighing out. It would be so useful to compile supported applications into a wiki page.

Oh I found this useful when understanding about appimages, snap, flatpak, etc.

Over 10 years of serious Ubuntu

Desktop Screenshot

Its ironic to hear Microsoft Windows Vista has finally come to its end of life (i’d argue it was dead on arrival), it was the move to Vista which sparked me to stop running Linux on a spare machine/as a second operating system and wipe windows XP off. One day I decided enough playing around, I’m not moving to Vista, I’m moving to Ubuntu 7.04 Feisty Fawn.

Before then I was playing with Knoppix, Debian and earlier versions of Ubuntu 6.06 and 6.10 but it was 7.04 when I took things serious. Since then I’ve not really looked back. It quite amazing to think how Ubuntu has changed over the last 10 years, especially with Unity and Gnome; but the dominance of linux generally is fascinating.

Sony’s new digital paper

https://twitter.com/elvum/status/851525970653851648

It was Steve who first pointed me at Sony’s new digital tablets. Its impressive but of course I don’t read japanese, even with google translate. But of course others do and did the work for me.

sony dpt-rp1 eink A4 tablet

Although it looks amazing, I can’t help but think about the software.

Using the digital pen, users will be able to annotate PDF documents, as with the previous version, but the compatibility is still locked to that format, so you won’t be drawing on anything other than PDFs unfortunately.

Maybe I’ve been slightly spoiled by the Eink tablet I bought, which runs Android 4.3 allowing most Android apps to run smoothly. I can’t imagine living within Sony’s view of the world hoping someone will hack it. It reminds me of the Ipad pro in more than just looks.

Updated

Jason pointed me at remarkable which I hadn’t seen before. Its also pretty pricey but looks very nice. The worry is lack of support for 3rd party applications and their FAQ doesn’t really encourage any joy.

The reMarkable will not initially ship with an officially supported SDK. We might initially, however, release an unsupported SDK for developers we choose to work with.

Shame… but interesting tablet regardless.

Love Linux but sometimes…

DELL XPS13&XPS15_29

Sometimes I come across simple things which just need someone to think about it from a user point of view.

One such example is adjusting the sensitivity on my XPS 13 trackpad. The XPS 13 has a widescreen trackpad which is good (although I do miss the Thinkpad pointer) but the right hand tends to hover around the edge, as there isn’t much room to rest my hand due to the keyboard and trackpad. The solution is to adjust the sensentivity of the trackpad, so I get less hover mistakes trigger from my thumb. Simple!

On my ubuntu setup, the trackpad driver is called synaptics and it can be configured anyway you like. Except to do so, you need to mess with the terminal and maybe even log out and in for the changes to stick.

If I was doing one request, it would be to automaticlly create a gui/wrapper for terminal operations like changing your mouse settings.