The Inner Circle

Okey, so I haven’t been to a dentist in about six years. I haven’t needed to, at least that’s what I think, and still believe, however I should probably get all my teeth checked out.

Four weeks ago we all went to take part in a “Battlefield Sports” event in Chorley, dress up like military bods, get given laser weapons and you have to run about and shoot people tactically. All was going fine until I tripped up, mouth first into the butt of my gun and broke my front left big “bunny rabbit” teeth. That day I went to A&E and they checked me out to make sure that I hadn’t hurt my gum or lip.

They didn’t mention that there was a facility to see a dentist on an emergency dentist that day, so essentially three days later I found out and got to see a dentist who seemed initially offhand. She put a dressing on the exposed dentin and said I had to wait three weeks before anything proper was done. So I came back three weeks later, I have to admit I was a little worried, I’d never had any form of major dental work done before. No fillings, nothing requiring injections, etc.

So I went in and it was the same dentist as last time, she talked to me explain what she was going to do. Inject into the gum and pallet make them numb, then drill off the dressing and then slowly rebuild the tooth with filling. I was a little worried about it all, but in the end it worked out absolutely fine. I didn’t feel pain once during the procedure, and then not initially afterwards. Great I thought.

So that evening I felt some pain, it wasn’t to bad, I just shrugged it off to being due to having it done, took some paracetamol and ibuprofen after remembering you could take both at once, I got a good night sleep and everything felt fine again in the morning. Went to work and by 1pm I was in agony again, I could feel my pulse so strongly in my tooth my jaw was aching. I took more drugs, it went away a little bit and eventually I got another nights sleep.

Last night when I came home I was getting the throbbing and my cheek bone was aching etc, pain killers helped so far but it wasn’t right, I eventually got to sleep then this morning while getting ready I found a small lump in the flesh between my gum and lip which hurt like hell in my tooth when pressure was applied to it. So I decided to call the dental help line again and managed to get an appointment for the same morning, which was impressive.

I turned up kind worried that I was wasting their time because all the pain killers had kicked in, however the same dentist had a look and feel and she said it was likely that the nerve had died and needed to be removed. So I agreed to have root canal. I’d heard really bad things about pain and just being a horrible procedure… maybe it more is if it’s a back tooth. The procedure didn’t hurt, at some point I could feel a slight pressure spike as she “cleaned” the canal out, but all in all it wasn’t painful. Now the local is starting to wear off so I might be saying something different in an hour.

Although I’m now eating and managing, will avoid the tooth until all the pain killers have worn off, then we’ll see.

Anyway, foooood! I’m so hungry!

D.

I don’t have a fear of dentists now, I’m not sure I really did, but I’m pretty sure that root canal is probably one of the worst things you might need, and maybe I’ve just found a really good dentist but I felt reassured and the trust I placed in them was deserved.

So a little over a year has passed since I last wrote in this blog, a lot has happened. I never followed up being chucked out of our old house, we did get chucked, but we found a bigger place which is closer to work. We’re happy there apart from having a little overly “intrusive” land lord (nothing major, just “notices” the grass hasn’t been cut in four weeks, etc.). I can’t remember if I said I’d moved into my new job before I stopped writing but I have, and I’ve already been promoted which should be effective very soon.

I do mean to post more regularly on this blog, however I thought I’d just do a very quick round up before blogging about what I wanted to blog about.

Well, I’ve been in my current place about a year, we’ve grown into it. It initially seemed so nice, having many rooms, places for different things. We’ve got a lot of stuff, study desks, computers, TV, fridge/freezer, washing machine, beds, draws, shelves, etc. We have all our own furnishings, curtains, bath mats, etc. It was also our space, not sharing with my former land lords, not that I had a problem with them, being life long friends and all. We where nicely settled, although we were contemplating a bigger place.

About a week ago I got a call from our letting agency, except it wasn’t, it was from the part of the company who deals with house sales. It turns out that they want to come and value the property as the landlord wants to know if it’s worth selling. So great, now we have the threat over our head that our house could disappear under out feet. Under UK law we have to be given two months notice if we have to move out, which we haven’t received yet, but my other half and I are of two minds, well actually we’re not, we want to move. Some of it is because we want to spite the landlord for even contemplating forcing us out, but we also want more space.

We’re looking at three tomorrow, basically looking for a two up, two down with kitchen, bathroom and maybe a cellar. One of the ones we’re looking at seems a bit modern, but ya never know. The first one we’re gonna see has a lot of space and claims to be recently decorated, double glazing and has a cellar.

Ahh we’ll see.

D.

As many of you know I work at one of the smaller universities in the UK, we have about 12000 students. On our network we have 6500 student residences and over 15000 ports throughout the campus for staff and students. On average we pull 400mbs and push 150mbs to our JANET regional network (which we also run ;).

Now and again various department, such as Physics, like to stress our links by swapping mass quantities of research data, last week they helped us average 980mbs incomming for a good four hours (we have 1gbps). I think it’s important to stress that we are an academic university, we encourage research, we don’t place many restrictions on what staff computers can do on our network. At the end of the day we provide a high speed network to be used.

However based upon experience I think many people are under the impression we are clueless about what happens on our network, or are incapable of looking. Which, I’m afraid is wishful thinking. Now that doesn’t mean we are consiously aware of every single action that takes place on the network, anyone who knows how much data 400mbs is will tell you it’s impossible to comprehend, but that doesn’t mean we don’t have a record. So what do we have…

Proxy/Server Logs
This is by far the most obvious one, every client PC records logs, so by rule you should assume our servers do. Which they do. All web traffic is proxied through one of four http proxies, these record your IP address, the date/time and what webpage you visited. These are kept for a significant amount of time, and we are often asked deal with http based abuse (usually to Wikipedia). Our services that require log on credentials always record who logged in from where and when.

Network Identification
Many people think that if they plug a laptop into a random network port get an IP address that they have never had before and isn’t assigned to them that we don’t know what it is. This isn’t true, everything that can be plugged into our network has a number that is unique (or it’s ment to be). We can simply look up this number and see what other IP addresses it’s been, and then look through the above mentioned server logs for usernames.

Network Authentication
This one is up and coming, we intend to implement a system that allows us who can plug into our network and what level of access they get when they do. I won’t go into how this works because we haven’t decided yet, suffice to say every device will be marked against a person and they will be responsible for it.

NetFlow
Here’s the big one for us, we fully know that the internet is not just webpages. There’s things like eDonkey and BitTorrent for doing peer2peer, there’s IRC, ICQ or Jabber for talking. You can watch movies in QuickTime or RealPlayer that come in live. You can make phone calls with Skype, play games on an Xbox or PC. We can’t proxy these things, so how do we know that they have happened.

Every ISP worth it’s salt, be they Pipex, BT, Zen, Bulldog, Tiscali, JANET, the university all use the same method (and more) to ensure they have records. All large scale routers, we’re talking the ones worth £50k+ not at £40 Belkin or Buffalo (although OSS firmware often has it for them) are capable of recording Network Flows.

Network Flows are records of communications on the internet, they don’t include the content of the communication, they just confirm that it took place. They record your IP address, the IP address of the server, the port numbers involved, the date/time, the number of packets, the number of bytes and a few other more technical pieces of information.

Yeasturday we recorded 1.5Gb of NetFlows which equates to about 30 million records, which our system thinks is 150Gb of data and that’s it not running at 100%.

Mirror Ports
Under the RIPA and the computing AUP the university has rights to ensure that it’s network is being used for purposes that do not break it’s AUP and diagnose network problems. Because of this we have ports coming off of our equipment that provides a complete copy of all data flowing through it. These are plugged into servers that can be used to search through the data and identify different flows in real time. We can also uses these mirror ports for running intrusion detection systems.

What else?
Having written this I try to think whatelse we do to ensure that we have some form of a record of what users do, I’m sure there is something, but I can’t think at the moment. It is exceptionally important to point out that access to all these different pieces of data is controlled heavilly to ensure that it can not be misused, and is not available to the majority of staff at the university.

For example mirror ports and network flows are only available to networking team leaders and the security team, server logs are usually only available to the admin team of that server, network identification records are available to all members of the technical groups as they do not contain sensitive or identifying information. Everyone with access to this type of data takes it very seriously as misuse is a serious incident and potentially illegal.

As I personally administrate the mirror servers and network flow server I can say that I take every care to ensure that the server is kept secure and access is limited to those that have a geniune need.

I hope this has opened a few peoples minds, but not frightened or worried them about big brother. It’s also worth writting that any views stated are my own and not thoose of my employer.

D.

So, I finally decided it was time to have a real play of Windows Vista, I had previous thought that with the release of Vista I’d make the final jump to either Linux or FreeBSD. I’ve generally found that it’s not been the doom bringer that people have forcast it to be, and it’s okey to use. For reference I’m using a work licensed copy of Windows Vista Enterprise via one of our key servers. I’ve noted some of the nicer and anoying things I’ve found below.

Sound Controls
Okey, so BeOS had this about eight years ago, but it is useful. I play music for my SO and I when we are working at our desks, the ability for me to leave WinAmp/iTunes at a higher level then say, Firefox or even World of Warcraft is good in my books. My only grudge is that the tray volume control only permits application volume changes, you have to dig further into the Sounds panel to alter levels.

Windows Updates
It seems wholey more integrated into the system, which can’t be a bad thing. I was pleased to get a screen telling me which updates had been sucessful after a reboot.

Notification of Administrative Access
This is a nice concept from Mac OS X and other OS’ that Microsoft seem to have missed the point, if I’m in the Control Panel I shouldn’t have to be clicking “Continue” to enter config options on a link that I clicked in the control panel. If anything I should have been asked to confirm my password once, and then be permitted to go on my way. I’m happy to see it and get asked when I install an application, although perhaps it popping up for every embedded MSI in the iTunes installation was a little anoying. But having written MSI’s for a living I can understand why that might not be possible if the MSI author isn’t the best.

Windows Aero/Windows Explorer
Aero, “what’s it all aboot?”. I don’t really see this interface as a big selling point, sure it’s nice to see your applications before switching to them, and a little screenshot if you hover over the task bar is nice. The glass effect is “fun” but not exactly life changing. I don’t see the point… I’ve not put it into “Windows NT” mode yet, so I guess that says something about the default theme for me.

As for what used to be Explorer… you can set it back to nearly what it used to be. I’m not convinced of the new fuffyness, but I’m a hard ball. I prefer *nix to Windows, and even prefer a *nix window manager like Ion3. It doesn’t seem to bad though. Although one plus, I could actually delete the Recycle Bin off of the desktop without jumping through hoops.

Windows System Rating
Heh, doesn’t really matter, but it’s slightly odd. I’ve got an Intel Pentium Core 2 Duo 3.6Ghz machine, yet the processor only get’s a rating of 5.0 and thus limits the machine to 5.0 rather then it’s other lowest value of the HD at 5.4… Petty, but still. I’m sure a 3.6Ghz dual core should be more then 5.0.

Task Manager/System Performance Monitor
It appears that this version of Windows keeps a lot more of a track of the applications that are running on it, the monitor allows you to see how much bandwidth each process is using. It’s not a huge step forward, I’d really have liked to have seen SysInternals (now Microsoft) Process Exporer merged into it even if not in the full.

“Start Search”
Another minor one, but, if I want to ping something now, I can just bring up the start menu and type “ping caesium”, I don’t have to do run anymore. I just start typing in the search box.

IPv6
Okey a major one for me in my job. I think Vista will probably be the one thing that pushes IPv6 hard throughout the world. It does everything it can using IPv6 by default. I’ve had to turn off Toredo as I’m not ready to use it at home yet. But this is a good step for the future, and respect to Microsoft for providing the pool of public Toredo servers to allow easy IPv6 connectivity in IPv4 only areas.

Well that’s it for now, I’ll post more once I’ve discovered more. Tomorrow I’ll install World of Warcraft and see, at this point I can see why Becta endorsed a report that basically suggested that while Vista was okey, there was not one “must have” feature that outweighed the cost finacially or in support terms. IPv6 could be one though…

If you wounder why Becta, remember I work at a university that supports over 1000 primary and high schools.

D.