Random header image

MaxMind GeoLite v1 databases discontinued - install GeoLite2

I noticed recently that a few web sites are miscategorising my ISP's static IP as being in the wrong country. I knew it was a recent reallocation of a new block and suspected the web sites were using a stale version of a GeoIP database - probably MaxMind's GeoLite v1 offering.

If you see stuff like this while surfing the web, your IP is probably in the same boat:

It's such a stupid problem, but it's all due to lazy server admins or designers

Getting Postfix working for outbound emails via SMTP and local relay for cron reports

I recently had to diagnose a couple of servers running Postfix which emailed results of rsync cronjobs when they returned a non-OK value. While Postfix was emailing the recipients on rsync failure, I noticed that the cronjob STDOUT was not being locally relayed correctly to the root mail.

I documented my fix on ServerFault, hopefully it's useful for someone else.

Having fixed local root cron reports, I then noticed on the CentOS7 box that the AIDE service was running, had been scanning for integrity checks against the original postfix install (subsequently upgraded to Postfix 3) and as such was throwing errors every night for no real reason, quite annoying.

To fix this I tried running aide --update but it didn't work (probably my fault from doing an --init first). I had to rm the /var/lib/aide/aide.db.gz and /var/lib/aide/aide.db.new.gz files, then run aide --init and rename the newly-made aide.db.new.gz to aide.db.gz. After that, it was happy.

Canon XF305 MXF problems in Premiere? Transcode your clips to ProRes with FFMPEG!

Recently encountered a weird problem with 1080i MXFs straight out of a Canon XF305. The files would play in VLC, but Premiere Pro CC 2017 on a brand new MacBook Pro or iMac failed soon after starting to decode the video, with a horrible red frame and MXF frame decode errors in the Log. It's pretty nasty, but I'm sure we can wield FFmpeg to fix this for us. (more…)

Tiplet: DO NOT USE the # symbol in Oracle Enterprise Communication Broker passwords!

I've been working with Oracle Session Border Controllers and Enterprise Communications Brokers a lot recently, and I encountered what I think is a new bug (it's with Oracle for investigation).

After deploying some new ECB instances, I changed the login and enable passwords, per the Oracle ACLI guide ("secret login" and "secret enable" at the SSH prompt). I used randomly generated strong passwords which included limited special characters -- "#", "%", "?" and "!".

The ECB appliances use two passwords per username - one to log on to the unit, and one to 'enable' (admin mode for configuring them, similar to Cisco's enable mode).

On one appliance, the new password I generated for it was accepted without complaint when typed and retyped at the confirmation prompt. However, attempting to then authenticate a new session using this password resulted in immediate refusal by the appliance. It effectively denied access, with no recovery method. I had to flatten and redeploy the appliance! (more…)

Photography: ONE OK ROCK, Make Out Monday

I've been getting a bit more serious with my band photography recently. Here's two galleries of ONE OK ROCK (from Download Paris 2016) and Make Out Monday from MCM Comic-Con London (May 2016).

BAND-MAID MCM Comic-Con photos coming very soon!

ONE OK ROCK:
20160611 Download Paris - ONE OK ROCK

Make Out Monday (Listen on iTunes | Spotify | Google Play Music)
(Kicking Cars is streamable on GPMAA)
20160529 Make Out Monday at MCM Comic-Con London

I footnotes