Saturday, May 27, 2017

Garmin 735XT Athlete Watch Review

Subtitle: More Watch than most Athletes will ever need

This is a review and overview of the Garmin 735 XT fitness watch. I'm going to point to my experiences with the watch and also give a quick summary overview of the Sports watch marketplace.

Why Garmin?
Most Athletes or sports people will already be using a fitness watch.  So the reason to go Garmin today is usually because you are already embedded into their ecosystem.

In the early days, and I'm talking 20 plus years ago; Garmin was more the choice of the US military and as portable GPS evolved with early mapping in the late 1990's that of the hiker/ explorer  community too.

Today my Garmin 735 XT watch represents the culmination of years of fine tweaking and enhancement of the GPS sports watch. Including

 - A single web interface where you can look at your individual run/cycle/ other statistics, and dive in for a deeper view of each event

- A watch that contains so many functions and can support so many sports, for example Stand Up Paddle (SUP),  Running, Cycling, Hiking, Cross Country Skiing, Triathlon etcetera you will be totally blown away

- It recharges so fast that after an activity, when I of course head to the shower, by the time I'm out, dried and changed, the battery is normally back to 100%.  Simply astonishing

- Totally customisable screens for each activity.  Example: I can decide on my running activity how many screens to show, how many items on each screen, and what they are.

- Support for Routes.  Means I can simply take a .gpx file downloaded for a race route  and drag it onto the filesystem of the watch when connected to my PC.  Then its a route I can use

- Accuracy: This watch actually records things correctly.  See my Apple Watch critique below

- Tough: Generally dustproof, reliable, tough and spare straps are available from Garmin or ebay

- Integrated HRM.  No need for that chest strap and Heart Rate Monitoring is on 24x7 so you can look at your metrics outside of any activity as well as within

- Activity Monitoring: This measures steps and sleeping and the type of sleeping.  Now you don't need to wear a separate fitness tracker

- Light: At 41 grams, this is a Sports watch, with upto a 12 hour activity life, with GPS and Heart Rate Monitoring.  Incredible.

Many Functions

The definitive review is from DC Rainmaker of course and I've extracted some specs for the 735XT below

It is really doubtful that you will use even a fraction of these facilities!

DCR 735 XT review

Applications, Data Fields, Watch Faces and Widgets
The 735XT supports the modern, 2017 Garmin Smartwatch infrastructure.

Running is a builtin Garmin Application.  Garmin has a programming interface so developers can write alternative apps e.g. Find My Car, or Stopwatch

Data Fields

Example: The Running app has screen containing data fields from Garmin like Time, Distance.   You can add a data field from a developer then use it in any application.

Watch Faces
Replacement Watch Faces used when in watch mode.  A watch face is a special example of a Widget in that it runs at the top level of the watch, outside of any specific activity application like running.

Top level applications that run concurrently with the main Clock application.  You can scroll thru your installed widgets

Note that the above photos represent a small selection of the available items, click on the links for the full listing.

Some Photos

So it is just a watch, but to me one hell of a watch

Garmin Alternatives

- For lesser money you can choose a more restricted Garmin Forerunner 230  This will allow you to record runs and hikes but you can't customise the screens so well and there is no routing  (so you can't download a race course .gpx file and use this whilst in a trail race for example to stop you getting lost).   So it's a more basic product, looking very similar, with a lower price tag.

- Garmin Fenix 5 in its many variants S, normal and X sizes, is a more capable product.  But at a higher price point and a much larger weight from 67 to 98 grams.  To Marcus a heavy Sports watch is irritating, it does not sit comfortably and the Fenix 5 ranges are also thicker, so if you wear them in the office they might not actually fit under a Business shirt cuff.   I'd really try it out before you buy!

- Garmin 935.  Better than the 735 XT in every way.   But it's slightly fatter and more expensive.   If you don't need the longer battery life for a race that exceeds 12 hours then the business case is not so strong.   However if money is no object then by all means knock yourself out, the 935 is actually superior.

Please not the Apple Watch
If ever you see an athlete competing using an Apple watch, then I suggest it says
a) Apple is paying me to wear this watch
b) I'm really a bit of an amateur or a professional who is basically an idiot

Apple had the opportunity to completely wipe out the professional GPS Smartwatch market.  It could so easily have buried Garmin, Suunto, TomTom but by releasing a product who sports tracking capabilities were less than mediocre it is practically a laughing stock for athletes, well, and not exactly on top of its game in others either.

Apple Watch Series 2 for Athletes

To Summarise
The Garmin 735 XT is one hell of a GPS smartwatch.  For races of less than 10 hours it works fantastically.  It can serve many different functions not just running, swimming, cycling, but so many more.  It's tough and at only 41 grams you won't even notice it on your wrist.  Finally it tracks your steps and sleeping so you don't need a separate activity monitor.

Friday, May 26, 2017

Unravelling SambaCry

Subtitle:  Hold on Smug Linux Users!

Marcus did report on the Windows WannaCry ransomware that became famous just a week or so ago.

We wrote this  (and also this )

At the time the Internet was also awash with many smug Linux users patting themselves of the back saying:  Linux is so secure.  So today it's rather comical that whilst doing some due diligence I noticed  this 

Samba Security Notice CVE-2017-7494

Here is the gist of it:

All versions of Samba on Linux from 3.5.0 onwards are vulnerable to a remote code execution vulnerability, allowing a malicious client to upload a shared library to a writable share, and then cause the server to load and execute it.

Basically as far as I can see the issue is

a) malicious Windows client uploads a shared library that if executed will damage or compromise  system
b) server executes shared library on Linux via the IPC$ windows share mechanism

In the Windows world the tool that would perform the remote execution magic is called  Sysinternals PSEXEC

Now, using my Linux 16.04 system with Samba 4.3.11 I was totally unable to compromise my system.  I tried from a latest psexec.exe windows driver.   Nope.   All was good.

From Googling apparently the tool that can is a the Metasploit penetration test software where somebody writes a line in their meta language like this


I don't have Metasploit installed on my testing system so cannot verify but let see what the proposed fixes are anyway

01 Patch your main Linux Samba config file

Patch global section of smb.conf with
nt pipe support = no

# This boolean parameter controls whether smbd(8) will allow Windows NT clients to connect to the NT SMB specific IPC$ pipes.

vi /etc/samba/smb.conf    #make above changes

#restart samba
# ps -ef | grep smb
root     31960     1  0 19:31 ?        00:00:00 /usr/sbin/smbd -D
root     31961 31960  0 19:31 ?        00:00:00 /usr/sbin/smbd -D
root     31965 31960  0 19:31 ?        00:00:00 /usr/sbin/smbd -D
root     32174 27604  0 19:35 pts/1    00:00:00 grep smb
# service smbd restart
# ps -ef | grep smb
root     32214     1  0 19:35 ?        00:00:00 /usr/sbin/smbd -D
root     32215 32214  0 19:35 ?        00:00:00 /usr/sbin/smbd -D
root     32217 32214  0 19:35 ?        00:00:00 /usr/sbin/smbd -D
root     32223 27604  0 19:35 pts/1    00:00:00 grep smb

02 Upgrade the Samba Binaries if a fix is available

My worked example is from one of my trusted servers based on a Ubuntu Linux 16.04 base

# Update the package list database

# apt-get update
Get:1 xenial-security InRelease [102 kB]
Hit:2 xenial InRelease
Hit:3 xenial InRelease
Get:4 xenial-updates InRelease [102 kB]
Get:5 xenial-backports InRelease [102 kB]
Ign:6 serena InRelease
Hit:7 serena Release
Get:8 xenial-updates/main amd64 Packages [544 kB]
Get:9 xenial-updates/main i386 Packages [528 kB]
Get:10 xenial-updates/universe amd64 Packages [469 kB]
Get:11 xenial-updates/universe i386 Packages [454 kB]
Fetched 2'301 kB in 1s (1'443 kB/s)
Reading package lists... Done

# can I upgrade Samba now?

# apt-cache policy samba
  Installed: 2:4.3.11+dfsg-0ubuntu0.16.04.6
  Candidate: 2:4.3.11+dfsg-0ubuntu0.16.04.7
  Version table:
     2:4.3.11+dfsg-0ubuntu0.16.04.7 500
        500 xenial-updates/main amd64 Packages
        500 xenial-security/main amd64 Packages
 *** 2:4.3.11+dfsg-0ubuntu0.16.04.6 100
        100 /var/lib/dpkg/status
     2:4.3.8+dfsg-0ubuntu1 500
        500 xenial/main amd64 Packages

# lets check the Web to see if the update might fix this problem

Well that is lucky then, since  the package database knows about  Candidate: 2:4.3.11+dfsg-0ubuntu0.16.04.7  and that will fix the issue

# Simulate the upgrade, because Marcus is that paranoid

# apt-get --simulate --verbose-versions upgrade samba
Reading package lists... Done
Building dependency tree
Reading state information... Done
Calculating upgrade... Done
The following packages will be upgraded:
   gir1.2-nmgtk-1.0 (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   iproute (1:4.3.0-1ubuntu3 => 1:4.3.0-1ubuntu3.16.04.1)
   iproute2 (4.3.0-1ubuntu3 => 4.3.0-1ubuntu3.16.04.1)
   libjasper1 (1.900.1-debian1-2.4ubuntu1 => 1.900.1-debian1-2.4ubuntu1.1)
   libjbig2dec0 (0.12+20150918-1 => 0.12+20150918-1ubuntu0.1)
   libminiupnpc10 (1.9.20140610-2ubuntu2 => 1.9.20140610-2ubuntu2.16.04.1)
   libnm-gtk-common (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   libnm-gtk0 (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   libnma-common (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   libnma0 (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   libservlet3.1-java (8.0.32-1ubuntu1.3 => 8.0.32-1ubuntu1.4)
   libsmbclient (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   libwbclient0 (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   mint-mirrors (1.1.5 => 1.1.6)
   network-manager-gnome (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   python-samba (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   samba (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   samba-common (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   samba-common-bin (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   samba-libs (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   smbclient (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   vino (3.8.1-0ubuntu9.1 => 3.8.1-0ubuntu9.2)
22 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Inst python-samba [2:4.3.11+dfsg-0ubuntu0.16.04.6] (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64]) []
Inst samba [2:4.3.11+dfsg-0ubuntu0.16.04.6] (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64]) []
Inst samba-common-bin [2:4.3.11+dfsg-0ubuntu0.16.04.6] (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64]) []
Inst smbclient [2:4.3.11+dfsg-0ubuntu0.16.04.6] (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64]) []
Inst samba-libs [2:4.3.11+dfsg-0ubuntu0.16.04.6] (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64]) [libsmbclient:amd64 ]
Inst libwbclient0 [2:4.3.11+dfsg-0ubuntu0.16.04.6] (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64]) [libsmbclient:amd64 ]
Inst libsmbclient [2:4.3.11+dfsg-0ubuntu0.16.04.6] (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64]) []
Inst samba-common [2:4.3.11+dfsg-0ubuntu0.16.04.6] (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [all])
Inst iproute2 [4.3.0-1ubuntu3] (4.3.0-1ubuntu3.16.04.1 Ubuntu:16.04/xenial-updates [amd64])
Inst libnm-gtk0 [1.2.6-0ubuntu0.16.04.2] (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [amd64]) []
Inst libnm-gtk-common [1.2.6-0ubuntu0.16.04.2] (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [all])
Inst gir1.2-nmgtk-1.0 [1.2.6-0ubuntu0.16.04.2] (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [amd64])
Inst iproute [1:4.3.0-1ubuntu3] (1:4.3.0-1ubuntu3.16.04.1 Ubuntu:16.04/xenial-updates [all])
Inst libjasper1 [1.900.1-debian1-2.4ubuntu1] (1.900.1-debian1-2.4ubuntu1.1 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Inst libjbig2dec0 [0.12+20150918-1] (0.12+20150918-1ubuntu0.1 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Inst libminiupnpc10 [1.9.20140610-2ubuntu2] (1.9.20140610-2ubuntu2.16.04.1 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Inst network-manager-gnome [1.2.6-0ubuntu0.16.04.2] (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [amd64]) []
Inst libnma0 [1.2.6-0ubuntu0.16.04.2] (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [amd64]) []
Inst libnma-common [1.2.6-0ubuntu0.16.04.2] (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [all])
Inst libservlet3.1-java [8.0.32-1ubuntu1.3] (8.0.32-1ubuntu1.4 Ubuntu:16.04/xenial-updates [all])
Inst mint-mirrors [1.1.5] (1.1.6 linuxmint:18.1/serena [all])
Inst vino [3.8.1-0ubuntu9.1] (3.8.1-0ubuntu9.2 Ubuntu:16.04/xenial-updates [amd64])
Conf libwbclient0 (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Conf samba-libs (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Conf python-samba (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Conf samba-common (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [all])
Conf samba-common-bin (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Conf samba (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Conf libsmbclient (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Conf smbclient (2:4.3.11+dfsg-0ubuntu0.16.04.7 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Conf iproute2 (4.3.0-1ubuntu3.16.04.1 Ubuntu:16.04/xenial-updates [amd64])
Conf libnm-gtk-common (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [all])
Conf libnm-gtk0 (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [amd64])
Conf gir1.2-nmgtk-1.0 (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [amd64])
Conf iproute (1:4.3.0-1ubuntu3.16.04.1 Ubuntu:16.04/xenial-updates [all])
Conf libjasper1 (1.900.1-debian1-2.4ubuntu1.1 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Conf libjbig2dec0 (0.12+20150918-1ubuntu0.1 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Conf libminiupnpc10 (1.9.20140610-2ubuntu2.16.04.1 Ubuntu:16.04/xenial-updates, Ubuntu:16.04/xenial-security [amd64])
Conf libnma-common (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [all])
Conf libnma0 (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [amd64])
Conf network-manager-gnome (1.2.6-0ubuntu0.16.04.3 Ubuntu:16.04/xenial-updates [amd64])
Conf libservlet3.1-java (8.0.32-1ubuntu1.4 Ubuntu:16.04/xenial-updates [all])
Conf mint-mirrors (1.1.6 linuxmint:18.1/serena [all])
Conf vino (3.8.1-0ubuntu9.2 Ubuntu:16.04/xenial-updates [amd64])

# Looks good, so do the upgrade

apt-get  --verbose-versions upgrade samba
Reading package lists... Done
Building dependency tree
Reading state information... Done
Calculating upgrade... Done
The following packages will be upgraded:
   gir1.2-nmgtk-1.0 (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   iproute (1:4.3.0-1ubuntu3 => 1:4.3.0-1ubuntu3.16.04.1)
   iproute2 (4.3.0-1ubuntu3 => 4.3.0-1ubuntu3.16.04.1)
   libjasper1 (1.900.1-debian1-2.4ubuntu1 => 1.900.1-debian1-2.4ubuntu1.1)
   libjbig2dec0 (0.12+20150918-1 => 0.12+20150918-1ubuntu0.1)
   libminiupnpc10 (1.9.20140610-2ubuntu2 => 1.9.20140610-2ubuntu2.16.04.1)
   libnm-gtk-common (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   libnm-gtk0 (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   libnma-common (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   libnma0 (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   libservlet3.1-java (8.0.32-1ubuntu1.3 => 8.0.32-1ubuntu1.4)
   libsmbclient (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   libwbclient0 (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   mint-mirrors (1.1.5 => 1.1.6)
   network-manager-gnome (1.2.6-0ubuntu0.16.04.2 => 1.2.6-0ubuntu0.16.04.3)
   python-samba (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   samba (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   samba-common (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   samba-common-bin (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   samba-libs (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   smbclient (2:4.3.11+dfsg-0ubuntu0.16.04.6 => 2:4.3.11+dfsg-0ubuntu0.16.04.7)
   vino (3.8.1-0ubuntu9.1 => 3.8.1-0ubuntu9.2)
22 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Need to get 9'833 kB of archives.
After this operation, 1'024 B disk space will be freed.
Do you want to continue? [Y/n] y
Get:1 xenial-updates/main amd64 python-samba amd64 2:4.3.11+dfsg-0ubuntu0.16.04.7 [1'062 kB]
Get:2 serena/main amd64 mint-mirrors all 1.1.6 [4'634 B]
Get:3 xenial-updates/main amd64 samba amd64 2:4.3.11+dfsg-0ubuntu0.16.04.7 [912 kB]
Get:4 xenial-updates/main amd64 samba-common-bin amd64 2:4.3.11+dfsg-0ubuntu0.16.04.7 [506 kB]
Get:5 xenial-updates/main amd64 smbclient amd64 2:4.3.11+dfsg-0ubuntu0.16.04.7 [311 kB]
Get:6 xenial-updates/main amd64 samba-libs amd64 2:4.3.11+dfsg-0ubuntu0.16.04.7 [5'163 kB]
Get:7 xenial-updates/main amd64 libwbclient0 amd64 2:4.3.11+dfsg-0ubuntu0.16.04.7 [30.4 kB]
Get:8 xenial-updates/main amd64 libsmbclient amd64 2:4.3.11+dfsg-0ubuntu0.16.04.7 [53.2 kB]
Get:9 xenial-updates/main amd64 samba-common all 2:4.3.11+dfsg-0ubuntu0.16.04.7 [83.6 kB]
Get:10 xenial-updates/main amd64 iproute2 amd64 4.3.0-1ubuntu3.16.04.1 [522 kB]
Get:11 xenial-updates/main amd64 libnm-gtk0 amd64 1.2.6-0ubuntu0.16.04.3 [70.3 kB]
Get:12 xenial-updates/main amd64 libnm-gtk-common all 1.2.6-0ubuntu0.16.04.3 [5'662 B]
Get:13 xenial-updates/main amd64 gir1.2-nmgtk-1.0 amd64 1.2.6-0ubuntu0.16.04.3 [4'862 B]
Get:14 xenial-updates/main amd64 iproute all 1:4.3.0-1ubuntu3.16.04.1 [2'432 B]
Get:15 xenial-updates/main amd64 libjasper1 amd64 1.900.1-debian1-2.4ubuntu1.1 [130 kB]
Get:16 xenial-updates/main amd64 libjbig2dec0 amd64 0.12+20150918-1ubuntu0.1 [55.3 kB]
Get:17 xenial-updates/main amd64 libminiupnpc10 amd64 1.9.20140610-2ubuntu2.16.04.1 [23.9 kB]
Get:18 xenial-updates/main amd64 network-manager-gnome amd64 1.2.6-0ubuntu0.16.04.3 [290 kB]
Get:19 xenial-updates/main amd64 libnma0 amd64 1.2.6-0ubuntu0.16.04.3 [66.5 kB]
Get:20 xenial-updates/main amd64 libnma-common all 1.2.6-0ubuntu0.16.04.3 [5'650 B]
Get:21 xenial-updates/main amd64 libservlet3.1-java all 8.0.32-1ubuntu1.4 [390 kB]
Get:22 xenial-updates/main amd64 vino amd64 3.8.1-0ubuntu9.2 [140 kB]
Fetched 9'833 kB in 1s (7'209 kB/s)
Preconfiguring packages ...
(Reading database ... 274097 files and directories currently installed.)
Preparing to unpack .../python-samba_2%3a4.3.11+dfsg-0ubuntu0.16.04.7_amd64.deb ...
Unpacking python-samba (2:4.3.11+dfsg-0ubuntu0.16.04.7) over (2:4.3.11+dfsg-0ubuntu0.16.04.6) ...
Preparing to unpack .../samba_2%3a4.3.11+dfsg-0ubuntu0.16.04.7_amd64.deb ...
Unpacking samba (2:4.3.11+dfsg-0ubuntu0.16.04.7) over (2:4.3.11+dfsg-0ubuntu0.16.04.6) ...
Preparing to unpack .../samba-common-bin_2%3a4.3.11+dfsg-0ubuntu0.16.04.7_amd64.deb ...
Unpacking samba-common-bin (2:4.3.11+dfsg-0ubuntu0.16.04.7) over (2:4.3.11+dfsg-0ubuntu0.16.04.6) ...
Preparing to unpack .../smbclient_2%3a4.3.11+dfsg-0ubuntu0.16.04.7_amd64.deb ...
Unpacking smbclient (2:4.3.11+dfsg-0ubuntu0.16.04.7) over (2:4.3.11+dfsg-0ubuntu0.16.04.6) ...
Preparing to unpack .../samba-libs_2%3a4.3.11+dfsg-0ubuntu0.16.04.7_amd64.deb ...
Unpacking samba-libs:amd64 (2:4.3.11+dfsg-0ubuntu0.16.04.7) over (2:4.3.11+dfsg-0ubuntu0.16.04.6) ...
Preparing to unpack .../libwbclient0_2%3a4.3.11+dfsg-0ubuntu0.16.04.7_amd64.deb ...
Unpacking libwbclient0:amd64 (2:4.3.11+dfsg-0ubuntu0.16.04.7) over (2:4.3.11+dfsg-0ubuntu0.16.04.6) ...
Preparing to unpack .../libsmbclient_2%3a4.3.11+dfsg-0ubuntu0.16.04.7_amd64.deb ...
Unpacking libsmbclient:amd64 (2:4.3.11+dfsg-0ubuntu0.16.04.7) over (2:4.3.11+dfsg-0ubuntu0.16.04.6) ...
Preparing to unpack .../samba-common_2%3a4.3.11+dfsg-0ubuntu0.16.04.7_all.deb ...
Unpacking samba-common (2:4.3.11+dfsg-0ubuntu0.16.04.7) over (2:4.3.11+dfsg-0ubuntu0.16.04.6) ...
Preparing to unpack .../iproute2_4.3.0-1ubuntu3.16.04.1_amd64.deb ...
Unpacking iproute2 (4.3.0-1ubuntu3.16.04.1) over (4.3.0-1ubuntu3) ...
Preparing to unpack .../libnm-gtk0_1.2.6-0ubuntu0.16.04.3_amd64.deb ...
Unpacking libnm-gtk0:amd64 (1.2.6-0ubuntu0.16.04.3) over (1.2.6-0ubuntu0.16.04.2) ...
Preparing to unpack .../libnm-gtk-common_1.2.6-0ubuntu0.16.04.3_all.deb ...
Unpacking libnm-gtk-common (1.2.6-0ubuntu0.16.04.3) over (1.2.6-0ubuntu0.16.04.2) ...
Preparing to unpack .../gir1.2-nmgtk-1.0_1.2.6-0ubuntu0.16.04.3_amd64.deb ...
Unpacking gir1.2-nmgtk-1.0:amd64 (1.2.6-0ubuntu0.16.04.3) over (1.2.6-0ubuntu0.16.04.2) ...
Preparing to unpack .../iproute_1%3a4.3.0-1ubuntu3.16.04.1_all.deb ...
Unpacking iproute (1:4.3.0-1ubuntu3.16.04.1) over (1:4.3.0-1ubuntu3) ...
Preparing to unpack .../libjasper1_1.900.1-debian1-2.4ubuntu1.1_amd64.deb ...
Unpacking libjasper1:amd64 (1.900.1-debian1-2.4ubuntu1.1) over (1.900.1-debian1-2.4ubuntu1) ...
Preparing to unpack .../libjbig2dec0_0.12+20150918-1ubuntu0.1_amd64.deb ...
Unpacking libjbig2dec0 (0.12+20150918-1ubuntu0.1) over (0.12+20150918-1) ...
Preparing to unpack .../libminiupnpc10_1.9.20140610-2ubuntu2.16.04.1_amd64.deb ...
Unpacking libminiupnpc10:amd64 (1.9.20140610-2ubuntu2.16.04.1) over (1.9.20140610-2ubuntu2) ...
Preparing to unpack .../network-manager-gnome_1.2.6-0ubuntu0.16.04.3_amd64.deb ...
Unpacking network-manager-gnome (1.2.6-0ubuntu0.16.04.3) over (1.2.6-0ubuntu0.16.04.2) ...
Preparing to unpack .../libnma0_1.2.6-0ubuntu0.16.04.3_amd64.deb ...
Unpacking libnma0:amd64 (1.2.6-0ubuntu0.16.04.3) over (1.2.6-0ubuntu0.16.04.2) ...
Preparing to unpack .../libnma-common_1.2.6-0ubuntu0.16.04.3_all.deb ...
Unpacking libnma-common (1.2.6-0ubuntu0.16.04.3) over (1.2.6-0ubuntu0.16.04.2) ...
Preparing to unpack .../libservlet3.1-java_8.0.32-1ubuntu1.4_all.deb ...
Unpacking libservlet3.1-java (8.0.32-1ubuntu1.4) over (8.0.32-1ubuntu1.3) ...
Preparing to unpack .../mint-mirrors_1.1.6_all.deb ...
Unpacking mint-mirrors (1.1.6) over (1.1.5) ...
Preparing to unpack .../vino_3.8.1-0ubuntu9.2_amd64.deb ...
Unpacking vino (3.8.1-0ubuntu9.2) over (3.8.1-0ubuntu9.1) ...
Processing triggers for libc-bin (2.23-0ubuntu7) ...
Processing triggers for man-db (2.7.5-1) ...
Processing triggers for systemd (229-4ubuntu17) ...
Processing triggers for ureadahead (0.100.0-19) ...
ureadahead will be reprofiled on next reboot
Processing triggers for ufw (0.35-0ubuntu2) ...
Rules updated for profile 'Samba'
Skipped reloading firewall
Processing triggers for libglib2.0-0:i386 (2.48.2-0ubuntu1) ...
Processing triggers for libglib2.0-0:amd64 (2.48.2-0ubuntu1) ...
Processing triggers for desktop-file-utils (0.22-1ubuntu5.1) ...
Processing triggers for gnome-menus (3.13.3-6ubuntu3.1) ...
Processing triggers for mime-support (3.59ubuntu1) ...
Processing triggers for hicolor-icon-theme (0.15-0ubuntu1) ...
Processing triggers for gconf2 (3.2.6-3ubuntu6) ...
Processing triggers for mintsystem (8.3.0) ...
Setting up libwbclient0:amd64 (2:4.3.11+dfsg-0ubuntu0.16.04.7) ...
Setting up samba-libs:amd64 (2:4.3.11+dfsg-0ubuntu0.16.04.7) ...
Setting up python-samba (2:4.3.11+dfsg-0ubuntu0.16.04.7) ...
Setting up samba-common (2:4.3.11+dfsg-0ubuntu0.16.04.7) ...
Setting up samba-common-bin (2:4.3.11+dfsg-0ubuntu0.16.04.7) ...
Setting up samba (2:4.3.11+dfsg-0ubuntu0.16.04.7) ...
Setting up libsmbclient:amd64 (2:4.3.11+dfsg-0ubuntu0.16.04.7) ...
Setting up smbclient (2:4.3.11+dfsg-0ubuntu0.16.04.7) ...
Setting up iproute2 (4.3.0-1ubuntu3.16.04.1) ...
Setting up libnm-gtk-common (1.2.6-0ubuntu0.16.04.3) ...
Setting up libnm-gtk0:amd64 (1.2.6-0ubuntu0.16.04.3) ...
Setting up gir1.2-nmgtk-1.0:amd64 (1.2.6-0ubuntu0.16.04.3) ...
Setting up iproute (1:4.3.0-1ubuntu3.16.04.1) ...
Setting up libjasper1:amd64 (1.900.1-debian1-2.4ubuntu1.1) ...
Setting up libjbig2dec0 (0.12+20150918-1ubuntu0.1) ...
Setting up libminiupnpc10:amd64 (1.9.20140610-2ubuntu2.16.04.1) ...
Setting up libnma-common (1.2.6-0ubuntu0.16.04.3) ...
Setting up libnma0:amd64 (1.2.6-0ubuntu0.16.04.3) ...
Setting up network-manager-gnome (1.2.6-0ubuntu0.16.04.3) ...
Setting up libservlet3.1-java (8.0.32-1ubuntu1.4) ...
Setting up mint-mirrors (1.1.6) ...
Setting up vino (3.8.1-0ubuntu9.2) ...
Processing triggers for libc-bin (2.23-0ubuntu7) ...

# Restart samba

# ps -ef | grep smb
root       379     1  0 20:26 ?        00:00:00 /usr/sbin/smbd -D
root       380   379  0 20:26 ?        00:00:00 /usr/sbin/smbd -D
root       382   379  0 20:26 ?        00:00:00 /usr/sbin/smbd -D
root       394 28055  0 20:26 pts/2    00:00:00 grep smb

So: What did I learn?

Yet again there seems to be an element of scare-mongering here.  Since there is no Linux virus called SambaCry that has been developed or deployed

With an unpatched Linux system I was unable to use the proposed IPC$ share vulnerability to compromise my Linux system, at least from a psexec.exe loaded windows Server test rig.

But the good news is that Linux people, patched the vulnerability quickly after it was highlighted.

Today is Friday morning, May 26 2017.  I am off to sleep now.  I will sleep safely knowing both my Linux and Windows systems are safe.


Thursday, May 25, 2017

The Cunning IKEA Knife Plan

Subject: Almost Global

Marcus and Agata cannot claim to be accomplished cooks but our strive for excellence and minimalism have led us to Global Knives. These are of course Japanese knives hand crafted in Niigata.

A few things about expensive knives:

- You have to hand-wash them  (no dishwasher, which seems very unfair!)
- Global knives look beautiful
- An integrated handle, in this case hollow for balance is usually thought to be superior

- Oh, and they cost a fortune!

The Dilemma
We are soon to leave our perfect home in Lausanne Switzerland for new adventures in England.  Do we take our knives with us?  Or buy a second set in England?  Or something else.

Whilst smoozing around our favourite home furnishings store,  IKEA, we noticed their range of 365+ knives.

They seem to bear an uncanny resemblance to the Global knives

First Marcus bought a test knife.  I was shocked to find it sharper than the almost visually identical Global knife even after I had used a specifically approved Global knife sharpener (no really we do have one).

So we went into full buy mode:

I think the above 6 knives cost less than a single Global and certainly less than the Global knife block that we leave behind.  Our new kitchen is downsized and we can't fit this block in there!

Bloody Terrorists

On a more sobre note,  most large retailers have a voluntary ban on selling knives online.  So for example in the UK  IKEA, Argos  etcetera will ask you politely to goto the store, they will not post Knives to you.  Just another reason why I'll never forgive those terrorists.

Back to the final setup:

So there you have it.   Whilst we are away, the family who will be taking care of things for us will have an almost as good as Global knife family in the original block.   We think that is pretty generous. Right?

Wednesday, May 24, 2017

Ah Numbers

Soft Cell: Numbers

Subtitle: What is 2 Trillion dollars between friends?

Now you might think this post is a thinly veiled excuse for Marcus to promote a Soft Cell song that was a nightclub favourite from a past life.  Well perhaps.

Who´s the person that you woke up next to today
If you were any older
Then you´d know you´d have to pay your way
Well maybe you do already
But you make out they pay you
Did you ask yourself where did love go wrong with you?
Don´t tell me your name I don´t want to know
And don´t forget to take all reminders when you go
Good things have to end
And I was never any good at saying goodbye
Because when I say goodbye a silly thing happens
And I always cry
You´re looking so thin these days are you doing speed?
(No, numbers)
Have you seen your face? Now you´re really going to seed
(Playing numbers)
Doing a nine to five in the day
And you never know their names
Because names make a person real
And there´s no real people in these games
Pass them on and pass them by
Never hold a good thing down for long
Throw ´em away like Kleenex
Pick them up and push them away
Oh numbers
Until you wake up one day
And find that you´re a number

Body one, body two, body three, body four
Body one, body two, body three, body four

But back to the proposed American Budget 2018 

If only the most irritating point of this document was the smug self serving title.   Does anybody believe this kind of showboating?

I shall also try to overlook the offer of the Budget CD-ROM format.  Well because this is in fact the year 2017 and not the year 1987 and we have something called the Internet now.

You can certainly read the 62 pages of optimism.  It reminds me of the fantasy language used in some of the UK 2017 Election manifesto's I have been reading today  (Green Party, Liberal Party  for example)

When you are done I also suggest you look at the Quartz article.  All may not be well in  Accounting Land.   This is not what we mean by Double Entry Book Keeping :-)

The 2 Trillion accounting error++  oops.

Serial Filler

Marcus and Agata are not one to follow even a small proportion of the trends, but we do feel the need to have a direct opinion on just how awful some of the latest Serial blockbusters really are.

Things came to a head when a friend say he actually like Fast and Furious and we realised that the Franchise was now at 
#8 and we had only seen upto #3.

It was off to the school of Fast And Furious

We managed to struggle through episode #4 though we did not have subtitles and there were many times when we just looked at each other say:  Did you Understand that?

Seems like American English, or American Fast and Furious English is becoming a dialect we don't understand

Next stop the Film Trailer

Fast Furious 5

Fast Furious 6

Fast Furious 7

Fast Furious 8

The trailers have become less and less coherent, filled with more and more fast packed action and bangs.  Culminating in F&F#8 where we have absolutely no idea what is going on

Incremental Investment
It is so rare that a sequel to a movie is better than its predecessor so why do movie companies and audiences seem to like them so much?

To Marcus it the theory of Incremental Investment. And Money

Big numbers indeed.  And most outside of the USA

The Production company figures:  Iteration n was a moneyspinner, so chances are n+1 will be too

Joe Public thinks,  iteration n was good,  surely n+1 won't be that much worse.

However we all know some terrible examples  (Pirates of the Carribean er hum) where the franchise has gone from bad to please don't make me watch that film.

In fact in 2017, for Pirates, when the Digital Movie print was stolen, there is a distinct rumour that people are banding together to pay the thieves money not to ever release the film it is so awful :-)

Our Way Forward
Without the assistance of Drugs or Alcohol we plan to make a stab at further Fast and Furious movies.  In sequence of course.

And we reserve the right to move off script and go with some newer fresher contenders


After all of this effort we will declare ourselves,  almost down with the kids, or something like that :-)