Categories
Main

Coldplay + Jeffrey R. Holland

One of the Christmas traditions in my parents’ home is a small family “program” on Christmas Eve. My dad asks us each to share a quote, scripture passage, or other thought related to Christmas. I had recently been listening to Coldplay’s latest album Mylo Xyloto. I was struck at the similarity between the album’s last song, Up With the Birds, and a talk by Jeffrey R. Holland.

Coldplay (my emphasis):

The birds they sang, break of day
Start again I hear them say
It’s so hard to just walk away

The birds they sang, all a choir
Start again, a little higher
It’s a spark in a sea of grey

Might have to go where they don’t know my name
Float all over the world just to see her again
But I won’t show or feel any pain
Even though all my armour might rust in the rain
A simple plot, but I know one day
Good things are coming our way

Jeffrey R. Holland:

Don’t you quit. You keep walking. You keep trying. There is help and happiness ahead–a lot of it…. You keep your chin up. It will be all right in the end. Trust God and believe in good things to come.

Categories
Getting Things Done Main Religion Well-being

Attention and Distraction

I was asked to speak in church a few months ago and spoke on the topic of attention and distraction. Here’s the outline of my talk, delivered Aug 28, 2011 in Boulder, CO. By the way, I consider this a very positive topic — the opportunity to direct our attention and feel more peace and flow — not a negative topic about simply avoiding the “perils” of distraction.

Define attention: “your treasure”

You have a limited amount of time. You have even less attention because attention is the subset of your time during which you’re awake, alert, and have energy. Therefore, attention is more valuable than time. How you spend your attention constitutes what is important to you.

“For where your treasure is, there will your heart be also” (3 Ne 13:21)

  • Where does your attention go?
  • Which people get your attention?
  • Which projects and causes and acts of service get your attention?

(The week after I presented this talk, Jason Fried wrote a great post on this concept: “Your Attention Please”.)

Technology can be a source of distraction

NYT Article: “Keep Your Thumbs Still When I’m Talking to You”

  • Story of people at dinner at tech conference.
  • Putting away your phone was like holding your breath.
  • Once one person caved to distraction, all caved.
  • “Mutually assured distraction”

WSJ Article: “When Twittering Gets in the Way of Real Life”

  • “Sometimes, it’s like you’re here and you’re not here,” Joe said to me. “Your mind and soul are in cyberspace, and all we’re left with is the husk.”
  • “Sometimes, I mindlessly find myself logging on to Facebook and staring at photos I have posted of my children when I just as easily could be staring at the real thing. I’m not proud to admit that.”
  • “It’s incumbent upon me to find a way to consume less — and, more importantly, let it consume less of me.”

What we consume consumes us.

David A. Bednar: “Things As They Really Are”

“Please be careful of becoming so immersed and engrossed in pixels, texting, ear buds, twittering, online social networking, and potentially addictive uses of media and the Internet that you fail to recognize the importance of your physical body and miss the richness of person-to-person communication. Beware of digital displays and data in many forms of computer-mediated interaction that can displace the full range of physical capacity and experience.”

We’re here on earth to have a mortal experience with a body, with presence, with real people.

Distraction is the enemy of attention

  • “I am persuaded that two of the greatest sins of our busy and hectic generation are distraction and preoccupation.” (David A. Bednar)
  • “We need to frustrate…distraction by identifying what is critically important in our lives. We must give the cream of our effort to accomplish those things. Where there is limited time or resources, this pattern may require that some good activities be…set aside.” (Richard G. Scott)
  • “Does the use of various technologies and media invite or impede the constant companionship of the Holy Ghost in your life?” (David A. Bednar)
  • “Each of us should be careful that the current flood of information does not occupy our time so completely that we cannot focus on and hear and heed the still, small voice that is available to guide each of us with our own challenges today.” (Dallin H. Oaks)

When we allow some moments of our life to be quiet, peaceful moments, God can speak to our hearts through the Holy Spirit. My prayers are best when I take more time to listen in between what I say. I sometimes feel prompted to pray for something I hadn’t previously considered. We might pray for A, B, C. God may actually want to give us B, C, D, E, F, G, H. If we don’t listen, we may miss those extra things He wants to give.

Dallin H. Oaks: Focus and Priorities

We have thousands of times more available information than Thomas Jefferson or Abraham Lincoln. Yet which of us would think ourselves a thousand times more educated or more serviceable to our fellowmen than they? The sublime quality of what these two men gave to us–including the Declaration of Independence and the Gettysburg Address–was not attributable to their great resources of information, for their libraries were comparatively small by our standards. Theirs was the wise and inspired use of a limited amount of information.

The truck story, ibid.:

Two men formed a partnership. They built a small shed beside a busy road. They obtained a truck and drove it to a farmer’s field, where they purchased a truckload of melons for a dollar a melon. They drove the loaded truck to their shed by the road, where they sold their melons for a dollar a melon. They drove back to the farmer’s field and bought another truckload of melons for a dollar a melon. Transporting them to the roadside, they again sold them for a dollar a melon. As they drove back toward the farmer’s field to get another load, one partner said to the other, “We’re not making much money on this business, are we?” “No, we’re not,” his partner replied. “Do you think we need a bigger truck?”

We don’t need a bigger truckload of information, either. Like the two partners in my story, our biggest need is a clearer focus on how we should value and use what we already have.

Because of modern technology, the contents of huge libraries and other data resources are at the fingertips of many of us. Some choose to spend countless hours in unfocused surfing the Internet, watching trivial television, or scanning other avalanches of information. But to what purpose? Those who engage in such activities are like the two partners in my story, hurrying to and fro, hauling more and more but failing to grasp the essential truth that we cannot make a profit from our efforts until we understand the true value of what is already within our grasp.

Categories
Main Security Tech

How to Password Protect Redmine with Apache, mod_perl, and Redmine.pm

Today I needed to password-protect a Redmine installation. I’ve typically used mod_auth_mysql for similar projects, but Redmine uses a salted password format that’s incompatible with mod_auth_mysql. So, I turned to Apache/Perl authentication, a first for me (I rarely touch Perl) and was able to make it work.

  1. Install mod_perl, and the DBI, MySQL, and Digest (SHA1) Perl modules.
    $ apt-get install libapache-dbi-perl libapache2-mod-perl2 libdbd-mysql-perl libdigest-sha1-perl
    
  2. Copy Redmine.pm to the appropriate Perl location.
    $ cd /path/to/redmine
    $ mkdir -p /usr/lib/perl5/Apache/Authn
    $ cp extra/svn/Redmine.pm /usr/lib/perl5/Apache/Authn/
    
  3. Perhaps I’m not using Redmine’s projects/members/permissions correctly, but I had to patch Redmine.pm to get it to work for me. I greatly simplified the SQL statement used to authenticate a user. There’s no sense of permissions; it’s simply a yes/no for authenticated users.
    --- Redmine.pm	2011-11-12 17:33:10.000000000 -0700
    +++ Redmine.richardkmiller.pm	2011-11-12 17:37:26.000000000 -0700
    @@ -148,16 +148,11 @@
       my ($self, $parms, $arg) = @_;
       $self->{RedmineDSN} = $arg;
       my $query = "SELECT 
    -                 hashed_password, salt, auth_source_id, permissions
    -              FROM members, projects, users, roles, member_roles
    +                 hashed_password, salt
    +              FROM users
                   WHERE 
    -                projects.id=members.project_id
    -                AND member_roles.member_id=members.id
    -                AND users.id=members.user_id 
    -                AND roles.id=member_roles.role_id
    -                AND users.status=1 
    -                AND login=? 
    -                AND identifier=? ";
    +                    users.status=1 
    +                AND login=?";
       $self->{RedmineQuery} = trim($query);
     }
     
    @@ -336,11 +331,12 @@
       }
       my $query = $cfg->{RedmineQuery};
       my $sth = $dbh->prepare($query);
    -  $sth->execute($redmine_user, $project_id);
    +  $sth->execute($redmine_user);
     
       my $ret;
    -  while (my ($hashed_password, $salt, $auth_source_id, $permissions) = $sth->fetchrow_array) {
    -
    +  while (my ($hashed_password, $salt) = $sth->fetchrow_array) {
    +      my $permissions = ":commit_access";
    +      my $auth_source_id = 0;
           unless ($auth_source_id) {
     	  			my $method = $r->method;
               my $salted_password = Digest::SHA1::sha1_hex($salt.$pass_digest);
    
  4. Configure and restart Apache.
    <virtualhost *:80>
        ServerName example.com
        DocumentRoot "/var/www/sites/example.com/public"
        RailsEnv production
    
        PerlLoadModule Apache::Authn::Redmine
    
        <directory "/var/www/sites/example.com/public">
            AuthType basic
            AuthName "Private Area"
            Require valid-user
            PerlAccessHandler Apache::Authn::Redmine::access_handler
            PerlAuthenHandler Apache::Authn::Redmine::authen_handler
            RedmineDSN "DBI:mysql:database=my_database;host=localhost"
            RedmineDbUser my_db_user
            RedmineDbPass my_db_password
        </directory>
    </virtualhost>
    

By the way, I’m running Ubuntu 11.10 (oneiric), Apache 2.2, MySQL 5.1, and Redmine 1.2.2.

Categories
Government Main Politics

Capitalism is pro-markets; corporatism is pro-business

I can empathize with the Occupy Wall Street protestors, but my perception is that many of them misunderstand the cause of their pain. They naively blame capitalism; they should blame corporatism.

Corporatism is the alliance of government and business. It happens on the left (think Solyndra), and on the right (think military-industrial complex), in the Federal government (think bipartisan bailout of GM) and in local government (think Utah naming April 5, 2010 “Cafe Rio day”.)

Corporatism is pro-business. Specific businesses get government subsidies, above-market-rate contracts, or special recognition.

Capitalism is pro-market. The consumer decides whether to favor GM or Ford; Cafe Rio, Costa Vida, Bajio, or Chipotle.

I loved Phil Windley’s post today on how Occupy Wall Street and the Tea Party, though they seem like polar opposites, actually share a disdain of corporatism and ought to work together to fight it.

Image source: James Sinclair

Categories
Main Tech Unix Work

Script to enable/disable SOCKS proxy on Mac OS X

I’m working in a coffee shop today. I used SSH and SOCKS to browse the Internet securely, but today I decided to take it a step further and automate the process with a shell script. Here’s the script, for what it’s worth:

#!/bin/bash
disable_proxy()
{
        networksetup -setsocksfirewallproxystate Wi-Fi off
        networksetup -setsocksfirewallproxystate Ethernet off
        echo "SOCKS proxy disabled."
}
trap disable_proxy INT

networksetup -setsocksfirewallproxy Wi-Fi 127.0.0.1 9999
networksetup -setsocksfirewallproxy Ethernet 127.0.0.1 9999
networksetup -setsocksfirewallproxystate Wi-Fi on
networksetup -setsocksfirewallproxystate Ethernet on
echo "SOCKS proxy enabled."
echo "Tunneling..."
ssh -ND 9999 MYHOST.macminicolo.net

Instructions:

  1. Save this to a file. I saved it to “/Users/richard/bin/ssh_tunnel”.
  2. Make it executable and run it.
    $ chmod a+x /Users/richard/bin/ssh_tunnel
    $ /Users/richard/bin/ssh_tunnel
    
  3. It creates an SSH tunnel to my dedicated server at macminicolo.net and routes Internet traffic through that server.
  4. Hit Control-C to quit. The proxy is disabled. No need to fiddle with Network Preferences manually.

UPDATE March 18, 2011: I haven’t tried it, but Sidestep appears to be a free Mac OS X app that will enable SSH tunneling automatically when you connect to an insecure network.