I shouldn’t like this song as much as I do. #ChildOfThe90s
Source: SoundCloud / BOOGIE VICE
I meant to post this earlier and completely forgot. This is an absolutely DELICIOUS salad recipe (courtesy of Star Fine Foods and The Food Network.) that is easy and tastes fantastic.
Here are the ingredients:
In bowl, mix olive oil, vinegar, mustard, salt and pepper to taste. Add chicken, walnuts and Gorgonzola cheese and toss lightly. Place greens on individual salad plates. Arrange sliced pears in fan shape along one side on top of greens.
With slotted spoon, divide chicken mixture equally among plates. Drizzle any dressing remaining in bowl over pears and greens.
I recently started reading a couple new comic series and am compelled to spread the word.
Disclaimer: I’m only a few issues in at this point so these comics may fall flat later on (I’m looking at you, The Wake).
Writer: Justin Jordan
Artist: Kyle Stahm
Premise: “Ten years ago, we dug too deep. We unleashed something ancient that couldn’t be controlled. Something that couldn’t be stopped, twisting everything it touched into more of itself. The Spread. Humanity was nearly destroyed before we found a way to slow the Spread to a crawl. Now, deep inside the quarantined zone, one man has found the key to stopping it forever: a baby girl. And if he can save her, he might save the world.”
Why I dig it: Despite having some familiar story elements, this comic feels like it’s a fresh take on the zombie genre. The story itself starts at a fantastic spot — late enough in the timeline not to get bogged down with origin clutter and yet early enough to still offer the possibility of hope. The pacing is also absolutely fantastic.
Series: Death of Wolverine
Writer: Charles Soule
Artist: Steve McNiven
Premise: “Classified”. Marvel claims that Wolverine will be killed off in this 4-part limited series.
Why I dig it: OK, OK. Despite seems like a glaringly obvious marketing ploy by Marvel to spike sales, the story is actually quite good. I personally DISLIKED the Wolverine series itself (including the last few issues leading up to now) but this is different. The story (so far) is very well written and the artwork is GORGEOUS! Check it out:
This is probably more obvious Linux stuff but I’m writing it down anyway.
Individual resource limit (
ulimit) constraints for currently running processes are documented under
Thanks to my colleague Jupin for clarifying on some details.
File this under “Linux stuff I always wanted to know but was too afraid to ask… until now”.
Question: Why are TCP/IP sockets counted as “open files” on a Linux system?
There are different ways to describe/define a socket but essentially, it provides access to streams of bytes through the
write interface, which is the heart of what it means to be a file.
In broader sense, the limit of “open files” essentially is a limit on the number of “file descriptors” (or “kernel handles” in Windows speak) a single process can use at one time. A socket connection is also a file descriptor / kernel handle. So the same limits apply for the same reason.
An interesting question came up recently and I wanted to write down the details in case it comes up again.
Question: Does Sendmail honor DNS TTL values for IPs that it resolves from a FQDN?
For example, let’s say sendmail is configured to smarthost to test.foo.com. Let’s also say that there’s an A record for that with a TTL of 60 seconds pointing to 22.214.171.124. If a DNS admin later updates the record to resolve to 126.96.36.199, how long will it take sendmail to acknowledge the change?
Answer: It’s a little complicated. For the most part, SendMail should honor the TTL of a given DNS record and immediately check DNS the next time it needs to send something after the TTL expires. However, there is an edge case scenario where it may seem like it’s ignoring it — a sendmail feature called “Connection Caching”.
The beloved sendmail “bat book” describes the feature better than I could so I’ll humbly defer to it (page 987):
When sendmail caches a connection, it connects to the host and transmits the mail message as usual. But instead of closing the connection, it keeps the connection open so that it can transmit additional mail messages without the additional overhead of opening and closing the connection each time.
Pretty cool stuff eh? There are a few other things to note:
So, theoretically speaking, under the right conditions it may take an extra 5 minutes for Sendmail to become aware of a new A record update and start using it regardless of what the DNS record TTL is.
As always, check the tweaking configuration options page or the bat book for more details.
I had a SSL certificate chaining issue come up this past week that was a bit frustrating so I thought I’d write a checklist/procedure for manually verifying this information in the future.
Essentially, the question/issue boils down to this: If you have an end-entity certificate (AKA “leaf certificate”) and another certificate that you think is its issuer, how can you be certain that the two fit together as part of a chain?
Here’s what to check (largely based on workflows from the
-verify switch for OpenSSL 0.9.6+):
Not Aftervalidity dates for all certificates within acceptable date ranges?
issuerfield value of the leaf certificate match the
subjectfield value of the issuing cert?
Certificate Key Usagefield of the issuer candidate include a flag to identify it as a
authority key identifierfield value of the leaf certificate match the
subject key identifierof the issuing cert?
The first three items are fairly obvious but until recently, I wasn’t aware of the last bullet point. It’s EXTREMELY helpful when dealing with similarly named CA certs (or certs that have the exact same friendly name because they’ve been reissued).
One additional note: since a root certificate is the top-most part of the chain, it’s
Subject fields will match. Likewise, a root cert will have matching
authority key identifier and
subject key identifier fields.
Adding to the list of geek stuff I love: Readability. In a nutshell, this service scrapes the text off of web sites and presents it in a -wait for it- much more readable fashion.
Why I like it:
Full disclosure - I don’t know if this game is good or not but free is free. :-)
Humble Bundle is giving away free copies of Warlock: Master of the Arcane.
Gift codes are available below (first come, first serve):
Happy gaming folks!
Well, gee. Those burned through quickly. Here are another set of codes. Grab ‘em quick folks!
In case I’m not the only person who gets confused when remotely connecting to a workstation with a different native keyboard layout… here’s a breakdown of American vs British default keyboard configurations.
British (BS 4822):
Continuing my series of posts about geek stuff I like… I wanted to mention Greenshot, a free and open-source windows utility for grabbing screenshots.
At first, I’m sure it sounds unnecessary. After all, Windows already offers a native screenshot feature… right? Well, yeah… sorta. You’d probably be surprised how much a well-managed utility like Greenshot can help though. That’s especially true in a career like mine where screenshots are needed for everything from customer training to documentation and case notes.
So why do I like it?
So there you have it. A free alternative option to snagit. I’m digging it. You should give it a try.