Well, my first day at OSCON in Portland was both hot, and pretty cool. The weather was a steamy 230F or so. I don’t remember exactly, because the fluid that protects my brain has evaporated. Luckily, a steady supply of coffee seems to have alleviated that.

I’m attending the conference on a press pass, which allows me to hop around the tutorials more or less at will, so I can cover a little more ground. It’s been wonderful so far. But I’m a geek, really, so I was more interested in learning than writing about the presentations. Still, it’s worth writing about, because there’s some cool stuff.

On Monday, I saw speakers that were really excellent. My main goal was to attend Amy Hoy’s “JavaScript Boot Camp”, because I like Amy’s writing, and I felt I could use a good schooling in javascript just so I could keep up with all the ajax stuff going on now. I do lots of PHP and Perl, and am getting into Python and Ruby, but I’ve successfully avoided JavaScript thus far. Ajax, though, is making that near impossible these days.

Amy’s talk, though hounded early on by a partial power outage and A/V issues, was wonderful. Amy handled all of these issues, not to mention a rather nasty sinus infection, with more grace than could have reasonably been expected. I learned a lot in that talk, and now feel I have the tools to take my knowledge the rest of the way. Thanks Amy!

In the afternoon I attended Brian Aker’s talk about the new features in MySQL 5.1. In the first 20 minutes of the talk, Brian answered a couple of extremely obscure, low-level questions about MySQL with so much ease and authority, that you got the impression that this guy had just done one of those things from the movie “The Matrix” where Neo learns Japanese in about 30 seconds. The guy knows his stuff. Unfortunately, he was covering things like clustering and partitioning, which are things that I’m never going to use in my environment (I’m in a rather small environment, data-wise). But listening to him talk made me misty-eyed for my ginormous-data days when I was a Sybase DBA.

Rather than be teased by all of MySQL’s new features that are for a mostly enterprise audience, I went instead up to Damian Conway’s “Mastering Vim” talk, which was absolutely wonderful. I consider myself a vim power user. I use key maps, I use vim’s ability to recognize file types and change its behavior accordingly, I use shift commands, etc, etc. I *still* learned plenty from Damian’s talk, and Damian is one of the most enjoyable presenters I’ve ever seen at a technical conference. Very entertaining, and extremely effective. I’d go to a presentation I was less than enthused about if Damian were doing the talk.

Day 1 went off without a hitch. And now we’re on to day 2. I’ll write about that tomorrow, since tonight there’s a reception held by O’Reilly, which promises to be a great time with lots of stuff going on.

I love LDAP! I also love beautiful women, but that doesn’t mean I can manage even one.

I found a nice LDAP howto for Debian Sarge. Take a look:

LDAP Auth on Debian Sarge HOWTO.

For those system administrators looking for remote authentication solutions for Postfix this should help. It’s easy to follow and very step by step.

Also, for anyone who hasn’t seen the Fedora Directory Server, you owe it to yourself. Remember that this is Free Software. Can you believe it?

I’ve been administering production UNIX systems since 1998. I’ve been running Linux-and-only-Linux on my desktops and laptops for almost that same period of time. In 2003, after seeing an influx of Macs into our department, my boss asked if I’d keep a Mac around just so we could replicate any issues that were reported by our userbase to help them out. I found it perfectly usable, though at the time it was real work for me to get it to be usable for all of the things I’d need it to do at work, and I never was comfortable with it. Recently, however, I had the opportunity to get a new laptop through work, and I decided to give the new MacBook Pro a shot.

I really committed to making it my primary workhorse, shunning my nice dual-lcd-monitor linux box and a perfectly usable Gateway laptop (”the monster” - 17″ screen and a full numeric keypad!!). It has been about one month since the MacBook Pro showed up, and I haven’t had to use any other machine for about 2 weeks. It took a little bit of googling to find everything I needed, and there’s still one or two pieces of the pie missing, but overall, I think I can definitely call this machine “admin ready”.

So let’s have a look at what I’ve done to my MacBook to make it worthy, and maybe some friendly readers can help me fill in some as yet missing pieces!

Between November 2003 and May 2005, I was working on the rather mammoth task of evaluating my department’s environment, analyzing and auditing our infrastructure services, seeing if we could migrate from NIS to LDAP, and then evaluating LDAP server software, writing tools to perform the migration, writing tools to maintain data consistency between NIS and LDAP (for those things that couldn’t use LDAP yet), and writing tools to administer LDAP and integrate it into our environment.

Software evaluation at the time was fairly quick: I looked at eDirectory and SunOne, both of which (at the time) allowed you to store some obscene number of objects under a no-cost license. I chose OpenLDAP at this time because it was libre software with a pretty active support mailing list.

I spent the next year learning the intricacies of OpenLDAP: which back ends might benefit my deployment, how to configure that back end, why my distribution vendor chose not to use the recommended back end (forcing me to build from source), keeping up with the rather frequent upgrades (which the support list folks demand you do, lest you be heckled rather than supported), figuring out how Access Control Lists work, figuring out why some operations were so slow while others seemed blazing fast (this goes back to choice of back end and its configuration), and the list goes on. Over the course of a year, I probably upgraded OpenLDAP 3 times, upgraded the back end at least two times (one was the advent of Sleepycat BDB 4.0, if memory serves), and began to feel like there was no end to the tweaking. I feared I’d be pigeonholed into being solely an “LDAP Admnistrator” instead of a system administrator.

Then, on June 1, 2005, Fedora Directory Server (and Red Hat Directory Server) was released to the world. It wasn’t yet completely open source, but they announced that they were committed to open sourcing the bits that weren’t yet open in the coming months. I downloaded and installed the server, got on the support IRC channel, and imported all of our data in a couple of hours. By September, just three months later, it was in production, and I haven’t looked back.

Over the weekend, this news item caught my eye. Among other things, this proposed legislation would:

Require any manufacturer of “routing” and “addressing” hardware to offer upgrades or other “modifications” that are needed to support Internet wiretapping.

Recently I decided for some reason to run my site (also, like the O’Reilly blogs, based on Moveable Type) through the W3C Validator to check to see if I was generating valid XHTML. If you’ve ever done this, you shouldn’t be surprised to find out that my site was anything but compliant. Why is this important? Well, it’s probably not going to break most modern browsers as they are quite tolerant of non-compliant code, but it’s bad coding - if your code is valid then you should be displayed well by any compliant browser or parser in use. Non-compliant code can also do bad stuff to dual use content, such as if where you’re using the web entries to provide RSS feeds for your site.

Some of the things that I wasn’t doing correctly included:

Its getting to that time of year when thousands of security professionals and hackers congregate in Las Vegas for the Blackhat and Defcon conferences. My company is generously sending me and a few colleagues to Sin City to attend :-)

The Blackhat line up is pretty strong, and this year features a lot of web application security talks (as summarised here by Jeremiah Grossman). You might spot me there on the speaking list for the Oedipus talk, but I’m not actually going to be speaking this year.

As for EuSecWest earlier this year, I am going to blog a bit of detail about the talks that I make it to - its probably fair to say that these are going to lean heavilly towards the web application security side. I am also going to be attending Defcon, and am looking forward to catching up with a lot of people who don’t really ever go to something quite as commercial as Blackhat.

So, if you’re in Vegas for Blackhat or Defcon, and interested in catching up, drop me an email. I will probably be at the Shadow Bar at Caesar’s on Wednesday night meeting other members of the webappsec mailing list, and otherwise will be around from the 1st to the 7th of August.

I use Ubuntu’s 6.06 TLS Desktop and Debian Sarge 3.1. I have also used Word 2000 for special cases especially when I need some language tools. Recently, I did a search for a thesaurus for Openoffice.org 2 and found a debian package called openoffice.org-thesaurus-sk_2.0.3-2_all.deb. It’s downloadable from here.

To my surprise, it loaded right away on my Ubuntu desktop and works nicely. Here’s the description from the Debian package site:

Openoffice.org is a full-featured office productivity suite that provides a near drop-in replacement for Microsoft(R) Office. This package contains an Slovak thesaurus for OpenOffice.org.

I thought I would pass this along since it works well and provides one more feature to bring Openoffice.org into the status of an industrial strength office productivity suite.

Curious, I started looking for the same thesaurus for other operating systems such as Windows and found this site called lingucomponent . You might check it out.

Fortunately, the Debian package provided me an English language version. I haven’t located one for other systems yet. If you know of one, you might let us know in the comments section.

Hopefully, you’ll find this information as useful as I did.

Every time a former Bell company has merged with yet another former Bell company in the last 10 years:

SBC merges with Ameritech
SBC merges with Pacific Bell
SBC merges with AT&T
(anyone seeing a pattern here?)
Bell Atlantic merges with GTE
Bell Atlantic merges with NYNEX, becomes Verizon

When each of these mergers happened, each company would trot out its press flacks, its CEOs and other assorted fish-faces, and they would all basically say the same thing:

Would it surprise you to discover that Linux administrative and support employees have created barriers to entry for others with similar talents? What if I told you that a difficult job climate has emerged because of your Linux buddies? Would you believe it?

Get a grip because that’s something with which you may have to deal if you attempt to change jobs or enter the market. Recruiters tell me that “Linux guys” take job offers from predominantly Microsoft shops, go through training and within an average of three months leave their employers hanging. That means having Linux credentials could work against you. Technologists with Linux on their resumes might find something akin to age or gender discrimination when they start applying for work.

That’s a shame, because plenty of excellent technologists suffer from the antics of a few. I personally don’t care what platform on which someone employs me to work. I’ll optimize Active Directory and safeguard an Exchange Server when asked. If that’s what the company uses, then that’s what I’ll give them.

I also know plenty of people with the same feelings. In fact, one of the more ardent Linux trained system administrators I know works in an all Microsoft shop. He also gets a fair share of assignments doing technical reviews for Linux books in spite of his day job.

I also know the leader of one of the larger Linux User Groups in the US who spends his days working in a Microsoft shop. He doesn’t go off in a rage if someone won’t listen to one of his proposed solutions using Linux instead of Microsoft. I like him because he’s a diplomat and doesn’t endanger others.

I know you don’t want to hear this but the warnings from publications like “Information Week” about this issue fall closer to home than you may want to admit. Aside from creating barriers to entry for job candidates, IT managers have started shunning Linux and Open Source solutions because of the people issues. So, Linux and open source adoption may suffer as well.

While the mention of Linux is starting to make the hair rise on the necks of many recruiters and IT managers, Open Solaris fanatics have similar problems. In its attempt to retake their market from Red Hat, Sun has spawned a new breed of crazy people too. Hiring managers in turn have started losing their objectivity toward Sun. I’m starting to see migrations from Sun to Microsoft I never thought possible.

What’s the Problem?

The lack of a pragmatic approach to the job market and clear thinking lies at the core of this issue. Windows fanatics appear to get away with their pranks because Microsoft dominates the market. That makes them invisible to managers already enamored with Microsoft’s usability. The same managers will turn a blind eye to the technical advantages of Linux, for example, because of an unwitting perception of Linux fanatics who color the water for everyone.

Define a Pragmatic Approach

In ordinary use, pragmatism refers to behavior, which sets aside an ideal to achieve some specific current or urgent need. If you ever studied Maslow’s scale of needs, then you understand the approach. Advocating free software, while an admirable endeavor, doesn’t usually pay the bills, feed the kids or get you to work in a new automobile. In the common sense survival hierarchy, fanatic ideals fall way short of the basics required of people meeting their primary responsibilities.

Throughout history, vocal minorities have brought about societal change. But what about the rest of the people? While the masses may benefit from the sacrifices of a few brave men and/or women in the long run, those same masses are often quite busily engaged in seeing that their children have something to eat and a roof other their heads.

Fanatics in the IT Industry

For some reason, it doesn’t seem logical to me that an operating system should generate religious fervor. History shows us otherwise. It shows us that people using different computer systems for some reason engage in irrational behavior toward each other as if a holy war actually existed.

Regardless of the history it still makes no sense to me. When someone I’m paid to support needs me to fix their email account what difference does it make if they use Outlook or Evolution? In business process engineering terms, where’s the value add from a preference for Linux, Mac OS X, Solaris or Windows? The client wants his or her email to work; it’s a closed issue.

Fanatics are characterized by excessive enthusiasm for and intense devotion to a cause or idea and are often motivated irrationally. And while quite eloquent at times, fanatics in the IT industry are unnecessary when you think about the other issues on this planet such as starvation, HIV, war mongering, etc. at this time.

In other words, while you may have the means to wreak havoc on the commercial market, your reforms may not benefit mankind as a whole. In fact, the masses probably could care less about your arguments and positions about free versus proprietary software regardless of which side of the fence you’re on.

Potential for a Failed Experiment

While I do not personally believe Linux will go away, I said the same thing about Netware once. When IBM controlled 90% of the PC hardware market, no one believed they would ever lose that business completely. But they have. If Linux fanatics continue to muddy the waters for recruiters and hiring managers, the grand experiment could fail like others before it.

The Linux project demonstrated to the world that a global collaboration of computer engineers and technologists could create a highly functional operating system for free. The concept of collaboration and community has since spread into other industries and has given a lift to countries otherwise bereft of computer resources.

So regardless of the success or failure of the Linux operating system, we have gained from its rich heritage. That in itself could wind up as the legacy of Linux. Who really knows? Are Local Area networks the historical legacy of Netware or a computer in every home the legacy of the IBM PC Company? The possibility exists.

Time for Ordinary Pragmatism in the Job Market

I began this little essay asking a question. Would it surprise you to discover that Linux administrative and support employees had started creating barriers to entry for others with similar talents? It surprises me because I had not realized the degree to which Linux fanatics had infected the market for jobs. But, they have infected the market and you should feel concern if you chose a Linux career path.

As for me, I consider myself a technologist. I’m dazzled by Linux. Does that mean I’ll demand that people only use Linux and shun other operating systems or development environments? No. The only people I’m shunning these days simply don’t know how to keep their mouths shut and their obsessive opinions to themselves.