From My Heart and From My Hands

It’s ALIVE!!!

So the script I talked about here is now an actual importable Poweshell Module. It wasn’t hard, but it was a pain in the ass, more than I think it should have been. Most of this is because, unsurprisingly, almost all the documentation on modules is highly windows-centric. So hopefully, this post will help that.

This is a very basic module. It exports no cmdlets, just a single function. Which means this post is not going to be a huge help for some gigantic thing, but it hopefully is a start.

The first thing you want to do is make sure you have a working script, aka a .ps1 file. Doesn’t have to be complicated, Get-MacInfo really isn’t. It just grabs a bunch of info, shoves it into a hashtable and shows you what it found. Once your basic code and logic is working, you’ll want to copy the .ps1 file to a .psm1 file. That’s important in the PowerShell world, as that’s the traditional extension for a PowerShell Module.

Next, wrap all your code that isn’t comment-based help in a function. In my case, it was just: function Get-MacInfo {<code>} Since it’s a single-function module, the only function is well, Get-MacInfo. If you’re going to have multiple functions, including setter functions, you really want to read the pertinent MS docs, starting here. Understanding those will help. Once you’ve wrapped it in a function, you want to export that function so it’s available to Powershell. To do that, add an Export-ModuleMember line to the bottom of your .psm1 file like so:

Export-ModuleMember -Function 'Get-MacInfo'

This is the only function I have, so I only need a simple line. If you’re exporting cmdlets or both functions and cmdlets…you’re probably well beyond what I know or can help with.

Next, we want to create the module manifest. This is fairly straightforward, but there’s some gotchas that can make you a bit bonkers. The basic creation is simple, you use the New-ModuleManifest. There’s a lot of parameters you can use, the only one that’s required is, I believe, the -Path variable. Mine looked like this:

New-ModuleManifest -Path 'Path for where you want the .psd1 file to be created' -ModuleVersion '1.0'-Author 'John C. Welch' -Company 'Bynkii.com' -Description 'A macOS version of the Get-ComputerInfo module' -ProjectUri 'https://github.com/johncwelch/Get-MacInfo' -ReleaseNotes 'First module release' -HelpInfoURI'https://github.com/johncwelch/Get-MacInfo/wiki' 

That will create a basic .psd1 file in the location that you specify in the -Path parameter, and you’re almost good to go.

Almost

So there’s a couple things you have to do manually. First, you have to actually tell the manifest what it’s referring to. If you open the manifest file (it’s basic XML), look for the #RootModule = ” line. MAKE SURE YOU UNCOMMENT IT. I didn’t and lost my fool mind for a few hours. Put the name of the .psm1 file in between the single quotes. Mine looks like:

RootModule = 'Get-MacInfo.psm1'

Next, look for the FunctionsToExport line, make sure IT is uncommented (it should be) and put in the name of the function(s) you’re exporting from the .psm1 file. Since I only have the one, mine looks like this:

FunctionsToExport = @('Get-MacInfo')

Everything else should be okay as is. Once you have those two files set up, you want to put them in the right place. You can put them anywhere, but putting them in the paths that PowerShell knows about makes your life much easier. On my machine, since I’m running the 7.1 preview, my paths (and the command to show them) look like this:

 $env:PSModulePath -split ‘:’                                                                                                                                                 ~/.local/share/powershell/Modules                                                                                                                                                  /usr/local/share/powershell/Modules
/usr/local/microsoft/powershell/7-preview/Modules                

If you only want to have the modules available to a single user, put them in the home directory Modules folder. For everyone on the machine, put them in one of the others. I have specific install instructions on the GitHub wiki for the project, so I won’t belabor those here.

If you put the module in the right paths, running Get-MacInfo will automatically import the module, and it will just work. If you put it somewhere else, you have to deal with manually managing Import-Module, and that’s on you.

Please note this is a really simple project. Modules can be really, really complicated and include binary files. This guide will be of no help at all for those. But if you’re just getting started, this may be of use. In any event, if you want to use Get-MacInfo, it’s on GitHub, with the install instructions,

PowerShell Fun

As some of you may know, I’ve been dabbling in Powershell for some time now, and have started trying to make it more useful on the Mac. There’s a lot that you can do on Windows that should work on the Mac and as of yet does not. One of the sillier things is “Get-ComputerInfo” which on Windows shows you all kinds of neat things about your computer, and doesn’t exist on the macOS version of PowerShell. I thought this was a shame so I set about trying to replicate this functionality, so that you get at least some of it. (There’s a lot of windows things that don’t make sense on the mac, so I didn’t worry if I didn’t get those.)

The name of the script is “Get-MacInfo” and it’s available from my Github site. It’s a pretty simple script, that should work under current versions of PowerShell. I’ve built and tested it under the 7.1 preview versions, but there’s nothing in there that shouldn’t work under 7.0. Prior to 7.0, no idea.

The script itself pulls in data from a number of sources, including uname, sw_ver, system_profiler, osascript, sysctl, and some built-in PowerShell functions. It dumps them all into a hashtable so they can be displayed/retrieved easier. If you run the script without any parameters, you get the full table dump, as seen here:

Name                           Value
----                           -----
macOSBuildLabEx                17.7.0:
macOSCurrentVersion            10.13.6
macOSCurrentBuildNumber        17G12034
macOSProductName               Mac OS X
macOSDarwinVersion             17.7.0
EFIVersion                     87.0.0.0.0
SMCVersion                     1.70f6
HardwareSerialNumber           ***************
HardwareUUID                   ********-****-****-****-************
HardwareModelName              MacBook Pro
HardwareModelID                MacBookPro8,3
CPUArchitecture                x86_64
CPUName                        Intel Core i7
CPUSpeed                       2.2 GHz
CPUCount                       1
CPUCoreCount                   4
CPUL2CacheSize                 256 KB
CPUBrandString                 Intel(R) Core(TM) i7-2720QM CPU @ 2.20GHz
L3CacheSize                    6 MB
RAMAmount                      16 GB
AppMemoryUsedGB                9.9869
VMPageFile                     /private/var/vm/swapfile
VMSwapInUseGB                  1.5210
BootDevice                     /dev/disk1s1
FileVaultStatus                Off
EFICurrentLanguage             English (United States)
DSTStatus                      True
TimeZone                       America/New_York
UTCOffset                      -05:00:00
DNSHostName                    ********.local
LocalHostName                  *********
NetworkServiceList             Ethernet, iPhone USB, Wi-Fi, iPad USB, FireWire, Bluetooth PAN, Thunderbolt Bridge
CurrentUserName                ******
CurrentUserUID                 ******
CurrentDateTime                5/20/2020 8:42:19 PM
LastBootDateTime               May 7 17:26
Uptime                         13.03:16:50

If you just want one or more of the parameters, then you’d supply those as a comma-delimited list, i.e.:

./Get-MacInfo.ps1 RAMAmount,NetworkServiceList,macOSCurrentBuildNumber                
Name                          Value                                                                                               
----                          -----                                                                                               
RAMAmount                     16 GB                                                                                               
NetworkServiceList            Ethernet, iPhone USB, Wi-Fi, iPad USB, FireWire, Bluetooth PAN, Thunderbolt Bridge                  
macOSCurrentBuildNumber       17G12034                     

The script itself takes about a second or two to run, as it collects all the info first, then displays what you want. Yes, that’s wasteful to some, but a) takes less than two seconds to run on ten-year-old gear and b) I’m lazy. You’re welcome to improve on it.

Actually, that last part is serious. I didn’t get every possible parameter, i can’t think of them all. The script itself is extensively commented, so even a novice should be able to figure out what’s going on and add to it. I’m also not that clever with output formatting as you can see from the code.

Anyway, now that I have the parameter input done, my next step is to turn it into a proper PowerShell module so you can incorporate it into your system. Hopefully, that will be sooner than later, and I’ll try to put a post up about it when I can.

In terms of using PowerShell, as a language, it’s really very nice. I like it better than most, it’s really easy to get up and running quickly and there is a LOT of documentation and support from both Microsoft and third-parties. (HEY APPLE! YOU SHOULD THINK ABOUT STEALING HOW MICROSOFT DOCUMENTS THEIR AUTOMATION STUFF. IT’S REALLY USEFUL. HINT!!!!)

Visual Studio Code (VSC) is a really nice dev environment for the Mac, and you really only have to install like two extensions to get it working well with PowerShell and GitHub, specifically “PowerShell” and “GitHub Pull Requests and Issues”. Both are easy to use and in conjunction with VSC give you most of the tools you need to get things done.

My biggest complaint about PowerShell is the complete lack of UI primitives, like simple dialog boxes and lists. Building those without external modules is just ridiculously tedious and kind of inexcusable. Come on Microsoft, AppleScript has had “Display Dialog” and “Choose from List” for how many decades? This is just silly that a modern language doesn’t allow you to create simple UI elements without a gob of code setup.

My second biggest is that its OS integration on macOS is pants. I mean, look at the reason for this post. What would be neat, and probably doable, instead of trying to replicate Apple’s existing scripting implementations in PowerShell would be for the PowerShell team to just build an event broker that could take Commands from PowerShell, spit out Apple Events to the OS/other applications and return the results to the script. I’m not saying that’s easy but over time, it’s probably less work to build a daemon that does that instead of trying to replicate many decades of work in terms of OSA languages.

Either way, Powershell on macOS is quite usable, and y’all should give it a try. The instructions for doing so are here, and you can do it via either Homebrew, or just downloading the installer from MS.

It’s A Trap!

Why “If it ain’t broke…” needs to be abandoned

Before you read the rest of this, I want you to read this: https://www.us-cert.gov/sites/default/files/publications/AA20-133A_Top_10_Routinely_Exploited_Vulnerabilities_S508C.pdf

It’s not terribly long, or hard to read, but I want to note some things. First, out of ten listed items, four of them pertain to Office 2007. That’s over 13 years old, yet evidently, in widespread enough use to still be a problem. There’s items for Windows Vista on that list.

It’s not just Office. There’s people using Apache Struts versions that are three years old. The last version of Visual FoxPro was in 2007. Versions of Flash that are years old. Flash. One of the biggest security holes in the world, and people are a) still running it and b) running old versions. Over and over, and over…old software. not months old, but *years* old. Many years in some cases, and I guarantee you one of the justifications for this?

“It still works”

Followed by:

“It’s too much work to update”

There’s more, but you see the point. All of it tends to be driven by the “If it ain’t broke, don’t fix it” philosophy, which is usually driven by desires to reduce costs, either labor or fiscal. But does it work? Really? I have severe doubts that it ends up saving time. Because when you hang on to old software across that many years or decades, the cost to update, to move on, gets higher every year. I mean, I hope no one is still running critical software based on Visual Foxpro, but if they are, the cost premium to move that application, those applications off 13-year-old database software to something modern? Supported? It won’t be small. It’s never small.

And before I hear the “you don’t know…” nonsense start up, yeah Seymour, I do know. I know real well, I have since the mid 1990s. I’ve known since I moved from DOS to Windows to OS/2 to Windows. I’ve known since I moved from System 6 to System 7 to MacOS 8 to MacOS 9 to every version of OS X and macOS since. Solaris, ditto. AIX. OS/400. Linux. I’ve known on a loooot of platforms. In a lot of different industries. At a lot of different levels. I know, all too well.

But that’s part of IT, of tech. You have to stay current. Yes, that’s a pain. Y’all, I’ve been in the Mac ecosystem for a long time, I am well-aware of how people can expect that vendors support old versions of software forever for no cost whatsoever. But that can’t happen. Codebases have to be updated to stay current. That means moving on. It means accepting that even if it’s working correctly, you may have to change it, or “fix” it, or update it. Because if you don’t, you find yourself with ransomware. Or a dead server. Or network.

You have to stay current.

Part of not being “broke” has to include “up-to-date”. Even when that’s inconvenient, or expensive. And sometimes, that means having to move away from something that works well, and is easy to maintain. It means changing platforms. Sometimes it means moving from on-prem to cloud which is even more complicated, because now your security posture, your DR/BCP, your procedural stuff, all of it gets so much more complicated. Deployment gets easier with cloud-based software, sometimes, but other things get worse.

And yes, I get it. Sometimes, there’s stuff you have to stick with longer than you want. But there’s ways to manage that too. Virtualization is your friend there. Yes, that’s more complicated, but again, look at that list. Look at the shear number of years-old software. Sometimes decades-old. I have extreme, extreme doubts that none, or even most of the installs of Office 2007 are necessary, that there’s a hard reason that can’t be overcome.

This can’t continue. This isn’t a case of Company A’s network is completely disconnected from Company B’s like it was when I started in IT. With rare exception, every network is connected, on some level, to every other network. The cheese does not in fact, stand alone. As well, everything happens too fast for humans now. A ransomware attack, a DDOS attack, they happen far too fast for human reaction and response speed. A great example is the Maersk attack from a few years ago. There is no way for humans to respond at all to a modern attack, much less well. I don’t care how smart you are, you’re a human, you’ve evolved in a world where milliseconds are your speed limits. Meanwhile, the computing world is operating in nanoseconds. You’ve lost before you start.

You have to stay current.

If you don’t stay up to date, even with all the pain that can involve, you’re at risk. If you have customers, their data is at risk. If you’re a medical company in any way, that data is at risk. I’m not just talking about someone stealing the data either. What happens to a hospital when their entire EMR system is encrypted by ransomware that has no unlock key? Where you pay up and the thieves run off with their bitcoins and you’re screwed. Backups can help there, but if you’re not planning on how to do network-wide restores, that’s still a non-zero amount of time, and depending on your industry, even if there’s no data exfiltration, you still have a lot of explaining to do.

I am also aware that often, the software you use is based on multiple packages, and those vendors don’t always keep up to date, or vet the sources they use when building their software. Open source can be even more annoying, because “you have the source just build it yourself” is so often the refrain of lazy, well, assholes, who want the fun part of being a software vendor, the cool parts, but not the boring, dull grind that is support and updates to avoid problems.

“Just build it yourself” only works if you have the ability, time, and skills to do so. As well, if I’m going to do all the work to build and maintain software, why would I pay someone else to do it? There’s an economic downside to being an asshat here, people should stop. If my company is an auto repair shop, I’ll do your work for you for free when you show up and fix my customer’s cars for free and pay my rent. (Funny how no one ever takes up that offer. They get all MY time has value” about it. Well Seymour, so does mine.)

Customer support, software support sucks. The economics, in most cases are awful. I read a while back that the third support call on a given piece of software effectively erases any profit made from that sale. Subscriptions may have changed this, but not by much. It’s tedious, but that’s part of the gig. Which means keeping all your stuff current, even that really cool framework you got from someone’s site. Which can be really hard when the person who made that framework decides “nah, i’m done” and punches out.

(There are many reasons why I am not convinced the “build your software from 49087435 remote distribution sites is as good as people think. The above is one of them. So is security.)

It’s even worse when you consider the lackadaisical approach to secure coding in CompSci/Coding Bootcamp programs. Too many effectively ignore it beyond trite warnings, a big chunk of the other have a token class or lecture on it. It’s treated like a bolt-on rather than an integral part of coding starting at the most basic levels. I sometimes think ethics gets taken more seriously.

But you can’t do anything about that. You can’t fix how the people writing your software were taught, how they view things. You have no power there, other than that of the checkbook (assuming you’re paying for your software.) If you do have a “I’m paying you money” relationship, then you have more power than you think. Don’t be an ass about it, but if you’re paying money, then I think you have a reasonable expectation that the company/person accepting your money will keep their stuff up to date so you can as well. But that does mean that when they update, you have to update too.

(No, not immediately. Did I say be stupid? No, I did not. But 13 years is not a reasonable amount of time to test an update.)

Ultimately, if you don’t want to be on the “list of companies that got hacked because of old stuff”, you have to stay current. There’s no other option.

Speaking of ARMs and Legs…

Okay, it’s an awful title, whatever.

Once again, the “OMG ARM-BASED MACS ARE COMING” news is making the rounds. In the past, I’ve been fairly dismissive of this, because it’s been kind of ridiculous for a number of reasons.

But lately…

So looking at it logically, and based on actual past data from the previous CPU architecture changes Apple’s done with the Mac, there’s a number of things that have to be as close to zero-effort as possible:

Application support: This should be assumed without saying, but these days, assuming is a bad idea. The last time Apple moved chip architectures, when they moved to Intel, it was…well, it wasn’t painless, and it obviously wasn’t overly painful. It worked more often than not, and really the only major initial casualties were Classic Mac apps that people were still using. To the best of my knowledge, Apple never even tried to get Classic working on Intel, at least not seriously, and honestly, that was a smart decision. Classic was done, it was time to move on. That left a transitionary period for PowerPC apps to move to Intel, which by and large, Apple handled well. Or at least well enough. There’s a few apps that didn’t make it, but honestly, I think the knifing of 32-bit support in Catalina probably caused more code casualties than the removal of any support for PPC apps. That transition took longer than the 64-bit only one did, and by the time it happened, PPC-only apps were ones that were never going to move.

So is there currently application support for ARM? Mostly. Starting with 10.14 and accelerated by 10.15, the ability to have the same apps with the code run on ARM (i(Pad)OS) and Intel (macOS) is pretty far along. It’s not completely there yet, mostly at the UI level. SwiftUI is very much an i(Pad)OS first, macOS second tool. Every piece of macOS code I’ve seen come out of SwiftUI is very clearly an i(Pad)OS app in appearance.

That’s not to say SwiftUI can’t be improved, I mean, it’s not even a year old yet. But at the moment, would I use it for complex macOS apps that fill UI needs you just aren’t going to have on iPads or iPhones? No. But it’s improvable.

Apple’s also spent the last decade or so building developer tools that not only let devs not have to get down into the iron as it were, but have actively discouraged it. The imminent death of kexts is another example of this. The more distance between code and the underlying hardware you have, the less you care about the underlying hardware. If the frameworks all handle the low-level stuff for you in the ways you need, why waste time fiddling other than to prove you can? Even complex apps don’t have the same need for hand-tuned assembly that they once had.

The apps aren’t there yet, but man, it’s close, and I think you’ll see it get a lot closer in 10.16.

Hardware Performance: Yeah, this is there. In fact, it may be more of a jump in performance than going from PPC to Intel was. At this point, it’s not even close and given the crazy performance ARM provides in resource limited things like iPhones and iPads, ARM in a MacBook Pro? A Mac Pro? Hell, a Mini? Come on, this will be crazy faster. The GPUs might be an issue, but I can’t see AMD or even Nvidia deciding to tie their fortune to Intel on that scale. As well, Apple’s internal GPU design teams have been doing amazing work, again, in environments where power and thermal headspace are really limited. In a Mac Pro?

they’ve gone plaid!

This isn’t even a serious question. The ARM architecture has been performing like Intel wishes it used to. “redonkulous” is a word I would use for it. That’s important because…

Virtualization/Bootcamp: Honestly, this is the only real question in all this. If Apple goes to ARM, whither Bootcamp and virtualization with acceptable performance. Anyone thinking this is a minor feature is…I will be kind and say they are thinking suboptimally. Being able to run Windows/Linux/*BSD/etc. on the physical hardware, or at acceptable speeds in various hypervisors is a serious feature the Mac has. It’s not always as easy as it should be, but it is there, and it is something a lot of people use. Losing that would force a lot of people off the platform, especially in corporate quarters, an area where the Mac has done very well over the last few years.

It’s an important factor, a critical question and one that Apple would not just have to “sort of answer”, but be able to solidly answer and demonstrate said answer should the announcement of ARM Macs be made.

So is Apple going to announce ARM Macs at the 2020 WWDC? Maybe, but I’d not want to put money I cared about on it. 2021? That might be different based on the WWDC, and I think anyone interested in this issue in a serious manner needs to spend quality time with the WWDC sessions this year. Not just the keynote, but pay particular attention to the “State of the Union” sessions, especially the things scrolling by in the background during the “other features we don’t feel like talking about” part. Yeah, it’s a bit of Kremlinology, but those have been pointers before.

I think ARM Macs are far more of a possibility than they were a year or two ago. But I think 2021 is the more realistic year for them.

Well Isn’t That Just Dandy

Yes, yes it is

So for some of you following me on Instagram/Facebook/Twitter, you’ve noticed the tie/vest pics i’ve been posting. Honestly, it started as a lark, but folks seem to dig it, so cool.

If you’re wondering where I get stuff, to date, that’s been easy: The Men’s Wearhouse Clearance rack. Seriously. I get really good, quality shirts/vests/ties for cheap. Cheaper than Target, and much better quality. Like shirts and/or vests for $12. Pants, meh, I get those at Costco.

The tie knots are tutorials from a couple places. https://agreeordie.com/features/fashion/616-how-to-tie-a-necktie-eldredge-knot/ is a good start. They have videos and diagrams. For a lot of the others, it’s videos or nothing, and honestly, some of them, even a good diagram doesn’t work that well. There’s one guy who’s my go to on these, Patrick Novotny. He’s engaging, and he does a really solid job of showing you how to tie some of these really complex knots in a way that doesn’t leave you falling behind or floundering.

I’ve found some good potentials for vests, so as I add to the collection, I’ll show them off. But as a start, Men’s Wearhouse is solid.

It Is Not Your Place

At some point, men have to stop being jerks

First, read this twitter thread, and its associated sub-threads. It’s not a pleasant read, and if you feel called-out by it, good, you should. I genuinely hope you are feeling a good amount of shame and guilt, as the behavior it talks about is bad, and anyone engaging in it should feel bad. The idea, the mental breakdown that passes for a coherent thought that a random guy has the right to go up to a stranger and “pop quiz” her on self-defense, to “educate” her on how she’s being unsafe is…there are not enough letters in “appalling” to properly get across how appalling this is.

First, it’s not your damned place to do that. It never is. And those of us not engaging in this awful behavior, regardless of where we identify on the gender spectrum wish you would stop. Yesterday. Just…just what kind of egotistical, self-centered, full frontal idiocy has taken residence in your brain to where you think it is your job to require a random woman to perform for you? I want it to be brain worms, or an undiagnosed tumor, because that way, it’s not you actually fully doing it.

It is never brain worms or an undiagnosed tumor. It is however, as neat an example of male privilege and patriarchal behavior as one could wish for. The assumption that any woman exists for you to “educate” on some random subject. I mean, there is an unintended benefit. Everyone witnessing this will indeed be aware of how dangerous men are. Starting with you. Because what you are doing is attacking a random woman.

If you wish to raise “but I meant well”, save your breath, and your effort, your intent is meaningless. In fact, it makes things worse, because you actually think, according to your intent, your stated intent, that you are behaving not as an attacker, as someone to treat with extreme wariness and a healthy amount of fear, but as a “friend”, as someone doing someone else a favor. You are literally so…stupid, so self-centeredly, preciously, stupid that you think you are behaving in a societally beneficial way.

You are not. In fact, the only difference between you and a rapist is the lack of sexual assault. You have however, still committed several crimes, of this there is neither doubt nor argument. When you come at someone, when you touch them or verbally engage with them in a threatening manner, deliberately designed to create a fight-or flight reflex, you are committing crimes. You are a criminal. In a just world, you would be arrested and tried as such. But given how (American) society (at least) treats such paternalistic fuckwittery, you’d instead get a pat on the back and encouragement.

“Gee, why do so many women hate men.”

You. It’s because of you, and your ilk, and I rarely use the word “ilk” with such satisfaction as I do here. You aren your ilk are why. If “asshole” could be a gender, so many people would make you its spokesperson. It is not women’s job to exist in a perpetual state of battle readiness just to satisfy you. It is your job to not be an asshole. Alas, we’ve already seen you’re a failure in that arena.

As you are so determined to be “that guy”, allow me to point out that you are also lucky beyond measure, because if one of the women you attacked were actually trained or were actually concealed carrying, you know, the things you (don’t really) want them to be so they can not be (very much be) helpless against “bad” guys (like you), then you would be at best getting a ride in an ambulance, if not a hearse. Let us look at the scenario with the woman who was locking her bike. (for background, I have more than two decades of experience with martial arts/self-defense and am a currently active practitioner. In the last year I’ve had multiple bruised ribs, at least one fracture, and a possible fracture of another bone. Or two. I am not an idle observer in this area.)

I’m kneeling down to lock up my bike on a busy corner; a man steps over the center bar of the bike and onto the shoulder strap of my bag. He then explains, while I’m immobilized, that this was a little free safety advice. No shoulders bags!

So, there are two positions that “kneeling” can apply to, I’m going to go with the most common, on one knee, with one foot on the ground. The woman has some form of shoulder bag, probably in an over the shoulder, ’round the neck, under one arm configuration, that would be the easiest way to carry a shoulder bag on a bike. (We’ll assume bicycle, given her description.) She also, given her activity, has a rather large either U-Lock or a reasonably heavy padlock/chain combination.

Dipshit comes up, probably from behind, and steps on her strap, probably right where it meets the bag, that would be the easiest way for him to pull off this bugfuckery. She’s helpless now, right? Nope.

Since she can’t easily turn, her first priority is to gain some freedom of movement. As the pressure on the shoulder strap would be pulling her down and to one side, her best bet would be to use the foot already planted and shove as hard as she can into the foot/lower leg of her attacker. She only needs to move his foot a bit to get some free space. Even against a large man, this would be effective, especially given our Dudley-Dumb-Right here.

Once she disengages his foot off that strap, then the variables increase. She can pull back the other way, creating more space between her and her attacker, possibly getting the bike or whatever between her and him, (a good choice, gives her more overall options.) If she’s really successful, and more mad than scared, then he’s stumbling as well, and she has a very heavy, very hard weapon in her hands, a solid case of self-defense, and a chucklehead about to have the worst day ever. If he’s lucky, she only hits him in the nuts with the lock. If he’s unlucky, she lays his ass out with it. Possibly permanently.

If she’s got a good grip on the chain, since she knows where at least one leg is, and a quick look will verify the location of the other, then she has a really good triangulation on where his skull is. She also has a chain, with a padlock of some kind on it, and one functioning arm. Even a near-direct hit will work for her immediate needs.

See, here’s the thing these yutzes never think about: while he knows he’s “helping”, she, dear reader, she does not. She only knows that someone is attacking her. And I know women, such women, that would turn that attacker into fuckin’ hamburger, especially if they have such a weapon as a bike lock.

But that’s the benefit of patriarchal privilege isn’t it? To be so sure, solely based on observed gender differences, that you can attack a woman and “reasonably” expect not only that she won’t hurt or kill you, but thank you. That is privilege writ large, it is the most perfect example of privilege one will ever find.

It is my fondest hope that the next time one of these preciously privileged anthropomorphized sphincters pulls something like this, that he does in fact do so on the wrong woman, and she only stops hitting him because her arms and legs are tired. Then, maybe, calls the cops. Or better yet, just goes on about her day and leaves him to the mercy of other random strangers.

I Can’t Believe…

Weight Problems Never Go Away

A couple of years ago, January 2018 to be precise, I changed how I eat. My wife, Melissa, had been doing the keto thing, only a really nice implementation, i.e. not just eggs and steak. Rather, there was a lot of modifications to food I’d eat anyway, like Indian and the like, and as it was working for her, and I was heartily sick of the fifty or so extra pounds I was carrying, I decided to change how I ate, and joined her.

It seems to have worked, across the next year I went from 232lbs to 165lbs, and have done a slow sine wave around 165 going ±2 lbs ever since. I’ve heard about what you’d expect. “Good job”, “you look great”, etc. But I’ve also heard the slight digs: “you’re too skinny”, “you need to eat a sandwich”, and the rest of it. To the first group, thank you, to the second, if you think you’re being funny, only you are amused by what you are saying. I most certainly am not.

There is a third group, the diet shamers, the ones who bag on any diet you’re on. My “favorites” are “just eat fewer calories than you burn, you don’t need a diet to do that.” Well fuckleberry hound, that’s a diet too. For them though, I have a special anger. Because a) they’re full of shit, b) none of them know me well enough to know why some things work for me and others don’t, c) they’re never, ever actually working in the field, and d) none of them could walk up a flight of stairs without needing twenty minutes of rest and a vomit bucket. If you look like a Ditto, don’t tell anyone how to get in shape.

The full of shit part is easy. Google “The death of the calorie”. Probably the best article, or more correctly, the one I’ve found the most useful is here. The gist of it is, it’s not that simple. Calorie counts of food can be off by between 8%-70%. Regulation allows for a 20% inaccuracy. So basically, you don’t know how many calories something has. So much for counting calories as being the “one true way”.

Also, I hate shaming people for trying to lose weight. It’s stupid. It’s wrong. It’s cruel. And yes, I am routinely, routinely frustrated when the people giving me shit are in significantly worse shape than I am. Again, if you look like a goddamned Pokemon Ditto, or you’re not actually working as a dietician or similar, do not tell me that how I am going about my diet and overall lifestyle is wrong or bad, because clearly, you are not an expert.

But I keep hearing that shit. “Eat something, you’re too skinny.” Somehow, I bet if I said “Maybe you should stop eating something, you’re too fat.”, that would not be okay.

Because here’s the thing: weight problems don’t go away. Yeah, I lost the weight, and I’m happy about that. I genuinely am. But, it’s work. Note earlier, I didn’t say “I went on a diet.” I said “I changed how I eat.” Diets, at least in the way we normally think of them, are temporary. What I did was permanent. There’s things I don’t eat anymore, that I may never eat. There’s things, that if I do eat them, are very special occasion things.

But I never “just eat” anymore. I can’t. I used to, and I was 70lbs overweight. I can’t tell you the difference losing that has made, but it’s huge. Like every part of my life was changed by losing that weight, all of it for the better. Well, okay, as it turns out, I have a comically large skull, so that looks a little odd. Other than that, it’s been really fantastic.

But I can’t “just eat”. I am hyper-aware of everything I eat. If I eat a fucking peanut, I have weighed that against a lot of other factors. Everything that goes in my mouth only does so after a process. It sucks, but that is what works, for me at least. Every day, there is a non-zero amount of work to stay on this path. Every day, there’s some schmuck who, consciously or not, goes out of their way to make doing so harder. I’m glad I’m not also an alcoholic, because holy fuck, if I had to deal with the food shit and the “come on, one drink won’t kill you” idiots? Eeesh.

People look at me now and see someone who may be “too skinny” or is in “great shape.” I still see that bit of gut I can never lose, not without surgery or going hardcore crossfit/lifting. Like if I worked really hard, I might lose another ten pounds. I don’t think it would be worth it, but I think about it. Every day. Every day, I think about it. Every day I look down and I see all the things I’ve alway seen as a fat kid who is occasionally skinny, or more accurately, not fat. It’s hard to remember that I’m doing okay. That’s one reason I weigh myself every day, because no matter what my head tells me, as long as I see 165±2, that’s the number I need to see.

The number tells me it’s okay. Sometimes, it’s the only thing, because god knows, people won’t. People will do a lot of work to, for whatever reason, make you want to give up, to stop trying, and if you try to push back, you get some bullshit about how they’re “only being honest/factual/scientifically accurate/etc.” What they’re doing is justifying being a jerk.

Don’t do that. If someone is trying to lose weight, no matter how they are going about it, unless it’s literally dangerous, and unless you’re a dietician or other licensed professional in that area of study, you don’t know that, (I don’t care what the SciBabe says on this, you’re either working in the field, or you’re a putz with a big mouth.) Don’t make the comments. Don’t shit on someone’s process. You know what you say if someone is trying to change how they eat?

“How can I help?”

“What foods are okay on this?”

“Do you need someone to be a diet/workout buddy?”

Be supportive. Be positive. Be encouraging. If someone who never excercises is feeling good because they walked around the block that day, cheer that shit, even if you run marathons. Maybe especially then.

Because it’s hard. Babies, it’s so goddamned hard, I’ve been working on this for almost half a century and it’s so hard. Don’t make this harder than it already is.

Be like…well, here, be like Arnold.

That’s how you help people.

And if anyone going through this process needs some support, I’m @bynkii on twitter. You need someone to be like Arnold for you, I’m here for that, I am so here for that. I got your back.

New Outlook Bug List

Well, mostly NOM

Because Outlook’s in-app bug support doesn’t let you submit a new issue until the old/current issue is closed, here’s a list of things I have seen (not including the big things like no contacts/notes/tasks functionality):

  1. The only indication for unread emails in a folder is the number. There’s no bolding or other indication (NOM)
  2. If a folder has subfolders with unread emails, and the higher level folder is collapsed/closed, there’s no indication of unread emails within (NOM)
  3. .olm file export appears to be broken, as Outlook can’t read its own .olm files (NOM and old Outlook)
  4. The Scripting Dictionary has no knowledge of “pure” O365 accounts at all. (NOM and old Outlook) https://outlook.uservoice.com/forums/293343-outlook-for-mac/suggestions/38964790-update-the-scripting-dictionary-specifically
  5. Can’t change description of any account using the new sync engine (NOM) fixed in 16.33.19120904 Insider fast build
  6. O365 accounts created with NOM don’t exist for old outlook if you switch back. (NOM & old Outlook)
  7. Folders in accounts using the new sync engine don’t update/sync until you click on them. This seems to be a new bug introduced in the latest build or one/two builds before it.
  8. Accounts using the new sync engine don’t have a “resend” option for sent email. This one’s a pain.
  9. In NOM, if you have multiple messages selected, and the TOP messages in the list shows as read, cmd-t (mark selected as read) doesn’t work. If the bottom or any other messages are marked read, (contiguous or not), as long as the TOP messages shows as unread, then cmd-t works as expected (marks all selected messages as read.)
  10. Closing the message window is destructive in that it blows out all your window size/position/folder list width/message list width/reading pane width settings. This isn’t documented anywhere, and there’s no warning. I doubt this will ever get fixed as from what Outlook support says, this is a design decision, and they tried to pitch it as standard behavior in macOS apps. But if it gets enough votes on uservoice, then maybe they’ll fix this nonsense. https://outlook.uservoice.com/forums/293343-outlook-for-mac/suggestions/39358999-stop-having-the-close-window-button-in-outlook-be

As I find more/these get fixed, I’ll try to update this list.

On Wasted Features

Outlook Mac Templates could be so good. Yet they barely exist.

As you can guess, this is about email templates in Outlook for Mac. Specifically in NOM, but I doubt it’s much different in “Old” Outlook. As they exist right now, well, I don’t know why they exist. They don’t seem to do much of anything but make resending an email…not easier than forwarding it. I mean, as soon as the “resend” makes it back into Gmail and O365 accounts in NOM, the entire advantage of templates as they exist goes out the window.

There’s a number of reasons. First, UI for using them is the Finder. Which is not ideal for a number of reasons, but the biggest one is that because Outlook includes no QuickView option for Outlook Templates, you can’t see what one looks like before you use it:

I hope you use really descriptive names

That’s the entire UI for email templates in Outlook for Mac. The Finder. And that’s kind of well…halfassed. Which is why almost no one uses them. Forget where you saved that template? Hope you enjoy spotlight searches or locate in the command line. Or command line find. Because Outlook won’t be of any use.

Oh, and of course, any templates you create on one machine won’t be seen by another unless you’re using OneDrive or iCloud. Even if you use OneDrive, it’s not like Outlook on the Web can use templates worth beans. I mean, if you go into the options, you can enable it, but creating them is non-obvious, and I’ve no idea, nor am I inclined to spend time searching, to figure out where they are saved even if I spend the time figuring out how to create them.

I’ve no idea about Windows, I don’t use Outlook for Windows, I’m much happier that way. And of course, templates don’t seem to exist for Outlook Mobile. So, as best I can tell, templates are only really usable on two of Outlook’s platforms, barely exist on a third and don’t exist at all on two more.

The point is, templates, to be useful have to be obvious, discoverable, predictable, and shareable. Outlook’s implementation currently fails at all of these. That’s a shame because if they added things like a proper UI for them with solid previews, made them accessible for all versions of Outlook for a given O365 account, then they might be better than “resend”. They’d be very useful for orgs that have specifically formatted emails they need to send out (and no, Word is not the way around this), etc. Templates, done well, are useful things.

Which as far as I can tell, is only available on Outlook:Mac anyway.

Really, given how barely there they are, if the Outlook team wanted to clean up some unused stuff, templates would be an easy target. I doubt their absence would actually create any extra work, and were OWA and the other versions of Outlook not on the Mac implement a “resend” feature, most of the use of templates would go away even further.

I’d rather they fix it and make it useful, because there’s a lot of good use space for templates, especially given O365, but if they aren’t, well, deleting unused code is also good.

Why Hiring Is Awful, ATS Edition

These Are Awful Things

There has been a lot, a lot of bits spilled about how awful getting hired in Tech is. It’s not better anywhere, by the way, I’ve a friend wanting to get work as a plant manager. It’s just as awful for him. My son’s trying to get an entry-level gig not in tech. Awful for him too.

A bit part of the reason is the ATS system, the systems that, in theory, automatically ingest resumes and help automate and streamline the hiring process. There are two parts to ATS, the front end, the bits that the applicants deal with and the back end, or the HR side. This post is mostly talking about the front end. I’ve some experience with the back end side of things, and there are parts of that which work really well, like applicant tracking, where someone is in the process, etc. That part works great. The rest?

Failure

So in talking about ATS systems, you have to include the application websites. There’s no way, from the applicant point of view to separate them, so I shan’t. They fail. They fail in ways that honestly beggar the imagination. No really, they do. For example:

  • Job Title fields that only allow for 20 character title names. In some cases for references. I’m sorry, are you paying for storage by the byte?
  • Company name fields that cannot handle a slash or a parentheses. One of my not-too-long ago gigs has a slash in their name. That’s not optional, that slash is part of the name of the company. I have seen so many ATS systems implode trying to ingest that. This is not 1989 anymore, unicode is real.
  • If you have an Associate’s degree in something that isn’t what the ATS allows for, good luck entering that.
  • If you have college experience, but no degree, there are any number of ATS systems that don’t allow for that, so you either don’t include that experience, or you lie and put down a degree you don’t have because you can’t leave the field blank and “no degree” isn’t an option. Morton’s Fork should not be a design philosophy for any system.
  • I know it seems odd, but ten years later, I do not remember the day I started at a gig. Yet for too many companies, that’s important.
  • Why can’t I paste my email address in when creating an account? What is the benefit of this kind of thing?
  • Why is the county in which I live important?

I could go on, but you get the point. These systems are not only designed badly, they don’t work well, and that is perhaps not the impression one should get from a company that presumes to be competent at its job. Or anything.

The worst part of course, is that there’s no penalty for the companies that do this. Like ghosting, the company is allowed to be nigh-completely incompetent at all parts of hiring, but if the applicant misuses an apostrophe, well, they’re completely unqualified to be employed at any position whatsoever. One side must be perfect the other side doesn’t even need to show up.

I literally have yet to see, as an applicant, an ATS that ingested a resume correctly, or even mostly correctly. Ever. To the point that now, people recommend you basically create your resume in vi or some other text editor, solely, solely to increase the chances of the ATS system not losing its addled mind over you using a form of word processing created after 1990 or so.

I get that the assistance in tracking an applicant’s status is important. That part, in my experience works well, but it is literally the only part of every ATS that I’ve worked with or interacted with that works well. The rest is all hot garbage and should be buried next to the E.T. video game carts.