Angelesen #58

And again got stuck in just drafting things and not publishing them. Let’s fix that.

#NoDeployFriday: helpful or harmful? (theengineeringmanager.com)

Understanding the blast radius of a change The maturity of the deployment pipeline The ability to automatically detect errors The time it takes to fix problems

Good writeup on why I usually decline condemn deployments to production systems on a Friday. Because you usually don’t tick all the boxes you should.

the “future of work” is here… so why aren’t more companies remote-first? (upside.fm)

When I tell people I’m the CEO of a company with 80 team members in 14 time zones and no “real” offices (no offense to WeWork), many look at me like I’m crazy.

Ah… so familiar with that. Conventional company structures still are in the minds of people. In my perspective the pros outweigh the cons on a fully remote team drastically. It will just take time till more and more companies adopt this schema.

RAMBleed (rambleed.com)

We don’t recommend that you stop using SSH any more than we recommend that you stop using the internet.

Rowhammering has been discussed here in the blog already a few times – This time it seems to be more serious. Everything is broken – but also that’s not really news.

Maker Faire halts operations and lays off all staff (techcrunch.com)

Years ago i built the Lunamod together with Habi. Since then I was subscribed to the Makezine. Sad to see that the company is hitting a rough time.

The End of an Era for easyDNS… (easydns.com)

A couple days later the landlord came back, standing firm on 5-year extension, plus an across the board rental increase of about 8%, plus a baked-in annual increase of 6%, plus an additional levy for a new HVAC system on the roof.

Considering this against the macro backdrop: We’re staring a recession in the face. After kicking the can after the 2000 Tech Wreck the 2008 GFC, central banks and policy makers have no dry powder. Interest rates are already near zero, they can’t normalize. Real estate in Canada has topped out and next major move for property prices will likely be down. The next recession will be global and it is going to be brutal. (All IMHO, of course. I write a lot more about these issues over on Guerrilla-Capitalism)

And here we have a chance to painlessly jettison a major chunk of SG&A, along with a long term liability north of 7-digits and the difference goes straight to the bottom line.

The decision was a no-brainer. It was time to pack up shop, and go 100% virtual.

Interesting Twist on virtual teams when it comes to the rental cost of an office.

Fresh Spectre Vulnerabilities May Force Cloud Providers to Disable Intel Hyper-Threading (thenewstack.io)

Because disabling Hyper-Threading will slow the processor speeds — Apple, for example, has seen “up to 40%” degradation in server performance from disabling Hyper-Threading — such measures “could introduce real costs from the loss of available density in these cloud providers’ environments,” he wrote.

Old news – But HyperThreading seems to be broken – And AMD is still smiling (till everyone is digging trough the AMD architecture)

Open Source! – Wenn dein täglich Brot für jede*n einsehbar ist

Am Easterhegg 19 in Wien hatte ich das Vergnügen nebst gutem Kaffe zu trinken, Menschen zu treffen welche ich am Kongress zum letzten mal gesehen habe.

Einige mögen den Talk bereits kennen. Diesmal war das ganze aber in Deutsch und meine Güte, wenn dem Hirn schon bewusst ist was es auf Englisch erzählen würde aber Mensch dann auf Deutsch reden will wird es lustig.

Nebst dem Talk hab ich zum ersten mal auch geengelt als Nachwuchs-AV-Engel hab ich meine ersten paar Schichten bestritten.

Referenzen

Hier mal noch ein paar Referenzen welche im Talk erwähnt werden:

Slides

Recording

Angelesen #57

Uploadfilter und E-Voting dominieren momentan. Darunter sind noch ein guter Beitrag zum Hosting von Webseiten in China. Alles eher Long-Reading daher weniger Artikel aufs mal 🙂

Urheberrechtsreform: Pyrrhus-Sieg heißt jetzt Voss-Sieg (spiegel.de)

Das europäische Leistungsschutzrecht wird ein Debakel, wie das deutsche zuvor, weil die Medienlandschaft abseits jeder Realität argumentierte. Google News wird wahrscheinlich einfach abgeschaltet, dann wird geheult und geschrien.

Uploadfilter werden einen von Google kontrollierten Markt eröffnen, auf dem – absurde Wendung! – Medienkonzerne wahrscheinlich selbst Google-Technologie kaufen werden, wenn sie je eigene Plattformen gründen oder sich daran beteiligen. Was sie vermutlich tun werden, auch weil die Werbegelder der Welt massiv in diese Richtung strömen. Und in der Richtlinie steht, ein Unternehmen müsse nachweisen, dass es "nach Maßgabe hoher branchenüblicher Standards für die berufliche Sorgfalt alle Anstrengungen unternommen hat, um sicherzustellen, dass bestimmte Werke nicht verfügbar sind".

Die "branchenüblichen Standards" für Uploadfilter setzt niemand anders als Google. Die Entwicklung von YouTubes Filtertechnik "Content ID" hat mehr als 100 Millionen Euro gekostet. Googles Wissensvorsprung eingerechnet könnte die Kreativwirtschaft auch mit 500 Millionen Euro diesen Standard nicht erreichen und stattdessen auf neue oder bereits existente, aber sicherlich nicht bessere Technik zurückgreifen.

Last month Scytl criticized researchers for misunderstanding the cryptographic mechanisms in Swiss Post’s "state of the art" e-voting solution. Today Swiss Post have announced they are temporarily suspending e-voting citing (twitter.com)

Beitrag der Post – Wer kommt eigentlich bei der Post auf die Idee das es schlau ist solche Publikationen am Freitagnachmittag zu veröffentlichen – Ich bin ja nicht Kommunikationsfachmensch aber irgendwie… Ich hege ein gewisses Mitgefühl für die Person die die Kanäle monitoren darf übers Wochende. Für die E-Voting-Platform gilt: #lolburnitwithfire

My Cognitive Bias – Why we built this extension (mycognitivebias.com)

Our thinking is riddled with systematic mistakes known to psychologists as cognitive biases. And they affect everything we do. They make us spend impulsively, be overly influenced by what other people think. They affect our beliefs, our opinions, and our decisions, and we have no idea it is happening.

Useful Browser extension.

DARPA Is Developing an Open-Source Voting System (schneier.com)

Evoting : Dear Post Switzerland and Scytl – Take note plase!

A critical flaw in Switzerland’s e-voting system is a microcosm of everything wrong with e-voting, security practice, and auditing firms (boingboing.net)

The belief that companies can be trusted with this power defies all logic, but it persists. Someone found Swiss Post’s embrace of the idea too odious to bear, and they leaked the source code that Swiss Post had shared under its nondisclosure terms, and then an international team of some of the world’s top security experts (including some of our favorites, like Matthew Green) set about analyzing that code, and (as every security expert who doesn’t work for an e-voting company has predicted since the beginning of time), they found an incredibly powerful bug that would allow a single untrusted party at Swiss Post to undetectably alter the election results.

And, as everyone who’s ever advocated for the right of security researchers to speak in public without permission from the companies whose products they were assessing has predicted since the beginning of time, Swiss Post and Scytl downplayed the importance of this objectively very, very, very important bug. Swiss Post’s position is that since the bug only allows elections to be stolen by Swiss Post employees, it’s not a big deal, because Swiss Post employees wouldn’t steal an election.

But when Swiss Post agreed to run the election, they promised an e-voting system based on "zero knowledge" proofs that would allow voters to trust the outcome of the election without having to trust Swiss Post. Swiss Post is now moving the goalposts, saying that it wouldn’t be such a big deal if you had to trust Swiss Post implicitly to trust the outcome of the election.

Cory Doctorow has made a good point there.

So you want your app/website to work in China… (chanind.github.io)

Any time a request needs to go from within China to the outside world, or from the outside world into China, the request crosses the Chinese Great Firewall. When this happens, there’s a lot of latency that gets added, and there’s a high chance the request will randomly fail. Requests through the firewall may appear to work most of the time, but then suddenly get fully blocked for several hours. The firewall doesn’t seem like it’s implemented uniformly across China either, so it’s possible that if you test in Shanghai your request may go through but a user in Changsha will have their requests blocked.

A good insight on what I’m telling some of our clients regularly. Great writeup!

On: Screentime


So here we are. I updated my phone to Android 9 a while back and opted into the Digital Wellbeing Feature. I didn’t think a lot about it – at first. After experimenting with it for a while there are some pretty neat things I started to admire.

Time Limits for Apps 🎉

I limit the screen time for certain Apps quite drastically. Instagram and Twitter are limited to 5-10 minutes a day. Messengers like Telegram or Whatsapp are limited to around 20 Minutes and the Browser to 30 Minutes (where I usually run into when I’m reading an article while commuting.)

I even got more restrictive over time. First I felt the limit is cumbersome – a superficially imposed limitation. But after a while, you get used to it and you start to appreciate the limitedness and stop wasting too much time on stuff that does not matter.

Really why should you spend more than 15 minutes per day on Instagram? Don’t get me wrong here. I enjoy browsing nice imagery but I try to strike a balance. Podcasts, for example, aren’t limited as I enjoy listening to them and usually I selectively listen to certain episodes. But y’all know I’m picky when it comes to podcasts.

Unlocking the Phone – 80+ Times a day.

One of the metrics that surprised me the most was the counter how many time the phone was unlocked per day. I average between 80 and 150 times a day. But that’s really every interaction. I also use the device for work-related duties like on-call alerts and phone calls that also makes a chunk of it. But it left me surprised to see the number.

A thing that totally didn’t work out for me is the Grayscale mode that can be switched on automatically in the evening. It just feels like a big crutch that tries to force me not to use the device. I tried it for a while but got angry because there were no colors anymore – and that’s not fun.

Notifications – Begone!

Another very neat thing is disabling all notifications I don’t use (or don’t want to see). So I am very selective on what can push notifications. I ended up with just a few messenger notifications (but disallowing screen wake entirely). This comes at the cost that sometimes someone pings me on Twitter or Instagram and I don’t see it right away (or I already used up my screentime on that app… sorry if it’s important there are better ways to reach me #notsorry )

The known unknowns

We all know we spend a ton of time thumbing on our mobile devices. But it was really hard to quantify the time spent in front of a phone screen. I’m quite happy that the big manufacturers start to build in features that help us understand how we use our devices and how we can be more mindful with the time we spend in front of a screen.

2018 – Rückblick

Wie schon vergangenes Jahr gibt es wieder einen Jahresrückblick in Stichwortform.

  • JanuarEngagement für die Rettung deiner Lieblingssendung – Wir hatten eine menge Spass!
  • Februar – FOSSDEM, Winterkongress der Digitalen Gesellschaft
  • März – Talk an der Symfony User Group in Basel und Beruflich bei Kunden in Deutschland
  • AprilWeb a Quebec als Speaker!
  • Mai – DevOps Days zum zweiten und PHPDays in Verona
  • Juni  – Drupal Hack Camp in Bucharest, Retreat im Berner Oberland
  • Juli – Kletterseteige, Wandern, Gurtenfestival und viel Zeit draussen verbringen. On-Site Schulung bei einem Kunden in Brüssel
  • August – Vor der Arbeit regelmässig in der Limmat gewesen, Züriopenair und zum vierten mal ein TEDxBern in einen Raum gezaubert
  • September – Drupal Europe in Darmstadt und Wanderferien 
  • Oktober – Arbeiten, Wandern, Atelier einrichten
  • November – Ferien und Freunde treffen in New York und Portland 
  • Dezember – Europapark, Jahresabschluss und 35C3 in Leipzig

2019 – Was geht, was bleibt?

Wenn mich das vergangene Jahr etwas gelernt hat, ist das man nicht an Dingen festhalten soll, die man schon mehrmals gemacht hat. Kontinuität ist etwas gutes, jedoch hat es auch eine ermüdende Komponente. Ich werde im 2019 vermehrt darauf achten, neue Dinge zu tun und alte Dinge los zu lassen um die potentiell entstehenden Leerräume mache ich mir keine zu grossen Sorgen. Es folgt ein Lieblingszitat:

Creating a vacuum entails deliberately leaving a gap in an organization. Rather than filling the gap by identifying a specific person or group of people to fill it, a leader can point out the gap, and then see what happens. The benefit of this approach is that it allows people to work in areas where they are passionate.

Leave Work Unassigned and See who Steps Forward

Code im 2018

Wenn ich so auf meinen Github Commit Graph schaue sieht man die Auswirkungen ziemlich deutlich, dass ein Grossteil meiner Arbeit nun in Lagoon fliesst, jedoch nicht nur. Eigentlich ist alles grössere was ich vergangenes Jahr gecodet habe für jeden einsehbar. Ob dies die Webseite von TEDxBern ist oder die Kampagnen Webseite vom Januar.

Reisen im 2018

Wie bereits letztes Jahr habe ich (automatisiert) über meine Reisetage Buch geführt.

CO2 Kompensation

Ich habe mein verursachtes CO2 verursacht durch Flugreisen in der Vergangenheit bereits kompensiert. Jedoch nicht immer Konsequent. Dies soll sich für dieses und auch die Folgejahre ändern. Wenn es sich einrichten lässt nehme ich den Zug innerhalb Europa.

Fürs 2018 habe ich sämtliche Flüge (geschäftlich wie auch privat) komplett über MyClimate kompensiert und plane dies per sofort lückenlos zu machen. Wer dafür zahlt? Ganz einfach: Ich und die Konferenzen die ich Besuche. Da ich von einigen Konferenzen eine kleine Entschädigung erhalte oder die Reisekosten gedeckt werden habe werde ich dieses Geld einsetzen. Das Umdenken beginnt bei jedem selbst.