Alden Bates' Weblog

So recently one idiot has been attempting to spam my comments here repeatedly. Despite getting 403 errors, he continues to blat the script 150 or so times per go, sometimes 30 or 40 times per second. Most of the hits originated from the RIPE network (Europe, plus bits of Asia and the Middle East), so these are likely compromised computers. Some hits were from IP addresses owned by photobucket.com (I've notified them).

The spam comments were random text from other sites, and random names - the common factor were the links to files on three pukiwiki sites (www.kde.gr.jp, fansub.andrewlb.com, and laszlo.jp). The pages linked to were user uploaded files (webmasters, don't let random people upload files willy nilly! That's just asking for trouble!) containing spammy porn terms and encrypted javascript redirecting users to alien.js on ncfab.org. alien.js fakes an error page and logs the hit if it happens to be coming from a search engine (and probably infects the browser with a nasty virus).

ncfab.org may, at one time, have been owned by the "Nordic Centre For Artists' Books", but the current registration info is fake (the Cyprus address belongs to a real estate agent.) so it's probably either expired or been hijacked.

Bruce Simpson believes that the problem of zombie PCs may ultimately solve itself when terrorists realise they can pay hackers who have networks of compromised PCs to DOS important sites. At this point, the botnet problem would suddenly become very important to the US government. Personally I doubt any terrorist groups would bother...

You may remember a while back TV Guide printed a photo purporting to be Billie Piper and David Tennant. The latest TV Guide has a photo purporting to be Christopher Eccleston:

Eccleston isn't from *that* far north...

On the up-side, the same issue reveals that Doctor Who got to 19th place on the reader-voted "Best on the Box" award.

TSV issue 41 is now online, completing the 1994 set.

Of particular note this issue is Why the Nimon Should be our Friends, a piece defending The Horns of Nimon, which was reprinted in the book License Denied, published by Virgin. There are loads of other articles as well, including Cthulhu in the New Adventures, K9, and a Script-To-Screen for Vengeance on Varos, plus more New/Missing Adventures reviews, artwork, etc.. The review of First Frontier marks roughly the halfway point of the New Adventures up to The Dying Days.

I feel compelled to explain a bit about this piece of artwork. I had the vague idea of redesigning the Robot (from the story of the same name). I'm not sure why, exactly, I opted to add fins to the design, or the fact that it otherwise it looks almost exactly the same as the original design, but there it is.

Next Paul's sent me more material for the Another Time and Space eBook.

Previously: TSV 40

Why, just the other day another of my friends announced he'd started a blog. And then today I discovered that Tom Baker has one albeit a temporary one. So far as I know, he's the first to have a "blog" though, Colin Baker has a newspaper column which is roughly the same thing, but in a different medium.

Who's going to pop up with one next? :)

Dear Friend,
I am Mrs. SUHA ARAFAT, the wife of YASSER ARAFAT, the Palestinian leader who died in Paris. Since his death and even prior to the announcement, I have been thrown into a state of antagonism,confusion,humiliation, frustration and hopelessness by the present leadership of the Palestinian Liberation Organization and the new Prime Minister. I have even been subjected to physical and psychological torture. As a widow that is so traumatized, I have lost confidence with everybody in the country at the moment You must have heard over the media reports and the Internet on the discovery of some fund in my husband secret bank account and ompanies and the allegations of some huge sums of money deposited by my husband in my name of which I have refuses to disclose or give up to the corrupt Palestine Government. In fact the total sum allegedly discovered by the Government so far is in the tune of about $6.5 Billion Dollars. And they are not relenting on their effort to make me poor for life. As you know, the Moslem community has no regards for woman, hence my desire for a foreign assistance. You can visit the BBC news broadcast below for better understanding of what I am talking about.

http://news.bbc.co.uk/1/hi/world/middle_east/3479937.stm
http://news.bbc.co.uk/1/hi/world/middle_east/3995769.stm

Snip the usual spiel about helping her transfer $6 million out of the country. You'll notice from these two news reports that the authorities are already investigating the whole issue, so actually getting involved at this point would be very silly. Also, although the initial email came from mrs.suha101@yahoo.co.uk, the email later says to reply via mrssuha1@pc.nu.

At the very bottom there's a sig that start out "Mrs Suha Arafat has sent you a link to a page on TellingIt.com, the site about nonfiction narrative." and contains a link to a page on that site, indicating whoever send this used the "email this review" feature they have there.

Site owners, please make sure that if you have a feature which allows people to send emails, that it can't be misused!

My Paged Archives plugin has been pretty popular. Of course, with the amount of use it's getting, there's bound to be a few bugs cropping up, but so far they've been relatively minor.

I've been trying to help people with one bug which has cropped up, and which seems to be related to the way that the software constructs URLs when Movable Type is run on someone's own system rather than a separate site. Unfortunately neither of the people who reported the bug have replied to the last email I sent them, so I'm not sure if the question I asked helped them solve the problem or not.

If you're encountering the same problem when running PagedArchives on localhost and are willing to help me track down the problem, please comment here.

...in the Xtra Broadband sucking department:

Xtra! Taking the "Broad" and the "Band" out of "Broadband"!

The amount of bandwidth the NZDWFC site's been using has been steadily increasing recently, so I've been looking at what I can do to reduce the amount of data sent, hopefully without impacting on anyone's browsing experience. The top ten pages in terms of hits last month were:

1. the index page
2. the new series message board
3. the forums index page
4. the general message board
5. the page of series 2 images
6. a piece of Cyberman artwork
7. The Traders' Corner message board
8. the Andrew Cartmel interview
9. the artwork from the cover of TSV 72
10. Pr1me Computers

I suspect that main culprit is the fifth item there, since it's basically a page of thumbnails, but aside from that seven of the pages there have something in common - they're dynamically generated. When someone hits the forum index, a script grabs the last ten posts on each message board and constructs an HTML page which is sent to the browser.

When a user visits a static page, which is stored as a .html file on the server, the web server sends a "Last-Modified" header telling their browser when the file was last changed. The next time they visit it, the browser sends an "If-Modified-Since" header to the web server to say "send me the page if it's been updated since X date/time". The web server checks against the .html file and will only send it to the browser if it has been changed. This saves a bit of bandwidth by not sending unnecessary data.

If a web page is generated dynamically by a perl script (or a script in any other programming language, for that matter), the web server has no way of knowing whether the contents of the page have changed since the user last looked at it, so it sends it again. Support for "Last-Modified" and "If-Modified-Since" have to be done in the script itself. So last night I implemented it in the script which generates the forum index page.

The problem with this, as I discovered, was that the forum index also has controls on it to expand and shrink the lists for each message board. These affect the way that the script generates the HTML page, so if the script is only checking for changes to the message boards and not changes to these controls, the controls stop being persistent between visits. I probably would have found this out last night if Xtra's broadband wasn't so crap - at one point it completely dropped my connection for about ten minutes...

So I think the answer is to use an ETag header instead. ETags work in a similar way, but you're not limited to a date/time value, so it can include whatever other settings affect the generated page as well. One question I have which I haven't been able to find an answer for is that the If-None-Match header which a browser sends can contain more than one entity-tag value, so how does the browser know when an entity-tag value is no longer valid? The RFC doesn't make it clear what the client should do. Does that mean eventually browsers could be sending hundreds of entity-tag values?

A couple of days ago, Xtra finally introduced uncapped broadband in New Zealand. Like a fool, I thought this would mean a better connection, but since switching I've had speeds only slightly better than dial up, and my connection keeps going dead for minutes at a time.

This sucks hard.

Empirical evidence

So, back in the mid 80s when I was a young lad, and I realise I'm dating myself here¹, my parents gave me a tape deck for Christmas, and an aunt gave me a compilation tape called "The Hottest Summer On Cassette"². I played it many many times, which probably goes some way toward explaining why I like 80s music so much³.

Surprisingly it has no copyright date on it⁴, but I would guess by the songs on it that it came out around '86 or '87. I've never seen a CD version, so I guess CBS Records Limited never released one.

Since I'm wallowing in nostalgia at the moment, here's the track listings:

Side 1

1. Dr & the Medics, Spirit in the Sky
2. Wa Wa Nee⁵, Stimulation
3. Spandau Ballet, Fight for Ourselves
4. Pet Shop Boys, Suburbia
5. Belinda Carlisle, Mad About You
6. Berlin, Take my Breath Away
7. Grace Jones, I'm Not Perfect
8. Miami Sound Machine, Words Get in the Way

Side 2

1. Kenny Loggins, Danger Zone
2. Duran Duran, Notorious
3. Owen Paul⁶, My Favourite Waste of Time
4. Billy Joel, A Matter of Trust
5. Cyndi Lauper, True Colors
6. Don Johnson, Heartbeat
7. Glass Tiger, Don't Forget Me
8. Queen, A Kind of Magic

So when anyone asks what warped my mind, I can truthfully reply "The 80s"!

1. File under "You know you're getting old when..."
2. Worst music-related pun ever.
3. My poor mind!
4. in fact the copyright symbol doesn't appear anywhere on it. Ah, those were the days!
5. They were big in Australia at the time, apparently.
6. Who?! *google* oh.