2008-08-28 · 13:47

Resolved: food allergy warnings not stupid

It’s always fun to joust with my friend Bob Thompson, who is perhaps the most libertarian libertarian I know. Sadly, I think he’s flat-out wrong about food allergy warnings. I admit to being biased; my wife is gluten-intolerant and I have other relatives (and friends) who suffer from various kinds of nut allergy.

The problem with the current labeling standard is this: there is no standard. Quick: what’s the difference between “may contain”, “made in the same factory with”, and “produced on the same equipment with”? If I have three products with those labels, how can I tell which one(s) (if any) are OK to bring home? The existing US law, FALCPA, requires manufacturers to label products that contain certain allergens. Manufacturers have voluntarily been adding “may contain”-style warnings to reduce their liability– but there’s no standard for doing so, and this is resulting in a lot of needless hassle for the producers and consumers.

On the gluten-free front, there is an existing EU standard for deciding which products may be labeled as “gluten-free”, based solely on measured gluten content in the final product. The FDA is in the process of adopting it, which I think is great: it gives people a tangible indicator of whether something is safe to eat, or not, irrespective of where and how it was produced. Until then, I don’t see how standardizing on a labeling phrase could possibly be a bad thing. In fact, if I’m going to have the government spending money on regulations, better they should do it for food safety than on firearms or political contributions.

Comments Off on Resolved: food allergy warnings not stupid

Filed under General Stuff, Musings

2008-08-28 · 10:47

Mutual activity: Gold Rush

[ taking a cue from the LDS Young Men‘s blog, I decided to start keeping a blog of our notable mutual and young men’s activities. No pictures yet, though! ]

Last night, we had a great activity for the young men and young women in our ward. (Note to non-Mormon readers: when we do a combined activity for the YM and YW together, it’s called “mutual night” or a “mutual activity”, or even a “combined activity”.) The weather was forecast to be good, so our YW president invited another local ward to join us for a rousing game of Gold Rush, a game that pits “bandits” armed with squirt guns against “miners” who are trying to collect gold from a field. Get squirted, and you have to drop your gold. Tag a bandit, and he goes to jail and has to sing a song to get out again.

We had six or seven bandits and probably around 40-50 kids. Some of them were a little timid at first, but everyone got into the game after a short while. We saw some groups of kids who would cooperate to evade the bandits, while others relied on their superior running speed to get to the bank before getting squirted. There’s not that much strategy on the bandits’ part (apart from not running out of water in your squirt gun). It was a blast!

, ,

Comments Off on Mutual activity: Gold Rush

Filed under Spiritual Nourishment

2008-08-28 · 09:14

Google: we’re almost sorry about our outage

I got some mail yesterday from Google about their recent Google Apps service outage. Here it is, along with my editorial comments.

We’re committed to making Google Apps Premier Edition a service on which your organization can depend. During the first half of August, we didn’t do this as well as we should have. We had three outages – on August 6, August 11, and August 15. The August 11 outage was experienced by nearly all Google Apps Premier users while the August 6 and 15 outages were minor and affected a very small number of Google Apps Premier users. As is typical of things associated with Google, these outages were the subject of much public commentary.

Well-deserved public commentary, at that, mostly focused on the question of why Google thinks that Google Apps is an enterprise-grade service. Three outages in a nine-day period is not confidence-building.

Through this note, we want to assure you that system reliability is a top priority at Google. When outages occur, Google engineers around the world are immediately mobilized to resolve the issue. We made mistakes in August, and we’re sorry. While we’re passionate about excellence, we can’t promise you a future that’s completely free of system interruptions. Instead, we promise you rapid resolution of any production problem; and more importantly, we promise you focused discipline on preventing recurrence of the same problem.

Notice what’s missing here: any commitment to a particular level of availability, or any information about the cause of the outage, or any information about how they applied “focused discipline” to keep it from happening again.

Given the production incidents that occurred in August, we’ll be extending the full SLA credit to all Google Apps Premier customers for the month of August, which represents a 15-day extension of your service. SLA credits will be applied to the new service term for accounts with a renewal order pending. This credit will be applied to your account automatically so there’s no action needed on your part.

So let me get this straight: in exchange for three days of outages (in fairness, not three complete outages), you’re going to give me a credit for $25/user. That’s not a bad start, but I daresay for most Google Apps customers it’s only a small fraction of their lost productivity. Not to mention that I might not want a service credit in the first place.

We’ve also heard your guidance around the need for better communication when outages occur. Here are three things that we’re doing to make things better:
We’re building a dashboard to provide you with system status information. This dashboard, which we aim to make available in a few months, will enable us to share the following information during an outage:

  • A description of the problem, with emphasis on user impact. Our belief is during the course of an outage, we should be singularly focused on solving the problem. Solving production problems involves an investigative process that’s iterative. Until the problem is solved, we don’t have accurate information around root cause, much less corrective action, that will be particularly useful to you. Given this practical reality, we believe that informing you that a problem exists and assuring you that we’re working on resolving it is the useful thing to do.
  • A continuously updated estimated time-to-resolution. Many of you have told us that it’s important to let you know when the problem will be solved. Once again, the answer is not always immediately known. In this case, we’ll provide regular updates to you as we progress through the troubleshooting process.

Positive steps, but note that there’s no definite delivery date. Note also the weasel language around how “assuring you” is the useful thing to do. No, fixing the problem is the useful thing to do, followed closely by timely and informative status reports. Just look at what Twitter does, then do the opposite. (Actually, for a decent model, check out how the Xbox Live service folks handle outages.)

In cases where your business requires more detailed information, we’ll provide a formal incident report within 48 hours of problem resolution. This incident report will contain the following information:

  1. business description of the problem, with emphasis on user impact;
  2. technical description of the problem, with emphasis on root cause;
  3. actions taken to solve the problem;
  4. actions taken or to be taken to prevent recurrence of the problem;
  5. e. time line of the outage.

This is more like it! However, my business always requires this detailed information. Who says so? I do. I’m betting that Google will closely control this information, and that they will only provide it if they think your business requires such information.

In cases where your business requires an in-depth dialogue about the outage, we’ll support your internal communication process through participation in post-mortem calls with you and your management team.

Translated: “if you take heat for our outages, we’ll be happy to get on the phone and help spin the problem so we don’t lose your account.”

Once again, thanks for you continued support and understanding.
Sincerely, The Google Apps Team

Comments Off on Google: we’re almost sorry about our outage

Filed under FAIL, UC&C

2008-08-25 · 20:12

Exchange 2007 transport config file settings

While tech editing an article by Tony Redmond on Exchange transport back pressure, I wanted to look up the value of a setting in EdgeTransport.exe.config. Here’s the best guide I’ve found to the settings in that file.

Comments Off on Exchange 2007 transport config file settings

Filed under UC&C

2008-08-25 · 12:56

Get a Kindle for $259

This is a pretty sweet deal: Amazon will sell you a Kindle for $259 if you apply for (and qualify for, it must be said) their Amazon-branded credit card from Chase. See details here. (Bonus link: James Fallows on how to avoid becoming a Kindle nerd-bore).

Comments Off on Get a Kindle for $259

Filed under Friends & Family, General Stuff

2008-08-18 · 17:15

Exchange System Manager for Vista

Yay! We finally have a supported version of Exchange System Manager that runs on Vista. Get it here.

Comments Off on Exchange System Manager for Vista

Filed under UC&C

2008-08-14 · 10:14

Experimenting with Twitter

I’ve decided to give Twitter a try. So far, I’m following Chris, Ed Brill, Erica, and Al Tompkins. Follow me here.

Comments Off on Experimenting with Twitter

Filed under General Stuff, UC&C

2008-08-06 · 22:54

Oracle gets hammered on security

It’s like a joke that never gets old. I’ve written about Oracle’s terrible approach to product security before (here, here, here, and here are a few examples… bonus: this). Now security legend Jericho has written this outstanding timeline of exactly what Oracle has failed to do in the security arena. He should have subtitled it “Bring Me the Head of Mary Ann Davidson”. Well worth a read.

Comments Off on Oracle gets hammered on security

Filed under Security, Smackdown!

2008-08-01 · 11:12

Droppin’ science for real

The fine folks at CERN have made an enthralling yet educational rap video about the Large Hadron Collider. FTW!

Comments Off on Droppin’ science for real

Filed under General Stuff

2008-07-31 · 16:21

Key Bank, you’re gonna get it

I am so mad right now I could just spit. Key Bank has been slow-rolling me at every turn as I attempt to get them to pay off on one of Dad’s insurance policies. The latest: I asked them to fax a piece of information to the insurance company. After multiple requests, they finally sent in the necessary form… and left most of it blank. Naturally, the insurance company was not amused, and now I’m essentially back to square 2.

My immediate urge is to write a paint-scorching letter to several of these folks. However, I’m going to give them another two business days to get all their socks in the same basket. If they haven’t squared things away by then, it’s hammer time.

Update 8/25: a supervisor at Key was able to get the documentation problems solved, although it took longer than it should have. I’m debating whether to drop a dime on the incompetent, slow, and generally unfriendly person I had to deal with. On one hand, everyone has periods where they’re less effective than usual, so maybe she was just having a bad day. On the other hand, it’s amazing how a crisp letter can help snap people out of those kind of bad days.

1 Comment

Filed under Smackdown!

2008-07-24 · 10:17

“Amazing Grace”

A wonderful essay at a web site I’d never heard of, by a writer I don’t know, about the grace that the Savior gives each of us every day. It was a real eye-opener for me to read this and recall how often I take His forgiveness for granted.

Comments Off on “Amazing Grace”

Filed under Reviews, Spiritual Nourishment

2008-07-22 · 11:30

HOWTO disable “Play on Phone”

I was recently asked a really good question: how can you disable the “Play on Phone” functionality in Exchange 2007 Unified Messaging? PoP is a handy feature because it lets you use a simple UI in Outlook or OWA to get your voice mail on any phone that your UM server can dial out to. For security reasons, though, some organizations want to prevent people from placing outbound calls to potentially untrusted numbers (like, oh, I don’t know, this).There’s no direct way to do this from the UI, but you can accomplish it with a bit of trickery: set the OutCallsAllowed attribute on the IP gateway used by the UM server (set-UMIPGateway MyUMGateway -OutCallsAllowed $false will do the trick.)

Why does this work? This flag tells the UM server to never send SIP INVITE messages to the gateway for the new call. If there are no gateway objects with the property set to true, then UM will not attempt to place any outbound calls. PoP is the only Exchange UM feature that will result in new outbound SIP INVITE messages; call transfers use the SIP REFER message, so the automated attendant and call answering features will still work. However, this doesn’t disable the PoP user interface, so users will still see the buttons; they just won’t work when clicked.

, , ,

Comments Off on HOWTO disable “Play on Phone”

Filed under HOWTO, Security, UC&C

2008-07-18 · 15:13

The Lawyers’ Guide to Outlook 2007

My friend Ben Schorr, an Outlook MVP who has the good fortune to live someplace nice, just mailed me to tell me that his new book is out. It’s called The Lawyers’ Guide to Outlook 2007, which is a wonderfully descriptive title. I haven’t read it, but based on the table of contents alone I strongly recommend it– the very fact that he has a section called “Why an Empty Inbox?” tells me everything I need to know to recommend it. If you’re an attorney, or work with them, check it out.

Comments Off on The Lawyers’ Guide to Outlook 2007

Filed under Reviews, UC&C

2008-07-18 · 14:17

OCS 2007 presence schema and XSD available

When I talk about UCMA in the UC development classes I’ve been teaching, attendees frequently ask how they can publish custom presence information. The answer is that you can construct custom presence in two ways: using your own completely custom schema (which CWA, OCS, and other MS applications won’t understand) or by passing presence data using Microsoft’s presence schema. That schema is documented here, which makes it much easier to take the second route.

,

Comments Off on OCS 2007 presence schema and XSD available

Filed under UC&C

2008-07-18 · 12:40

HOWTO parse Autodiscover with Cocoa

I’ve recently been spending time programming again. This has been a welcome return to my roots, and it’s certainly reminded me of the pleasure that comes from building good code. Of course, every pleasure has its obverse, and I was reminded of that today because I spent all day beating my head against what appeared to be a bug in NSXMLNode. You’re supposed to be able to use the nodesForXPath: method to do an XPath query against an XML tree. I’d written some code that sent an Autodiscover request to Exchange and parsed the returned data (which looks like this), but my code never found any EwsUrl nodes, even though they were plainly visible.

I tried the xpath command-line tool, and it did what I expected; “xpath ~/Desktop/EWS.xml //EwsUrl” returned both nodes. Apple’s own XMLBrowser sample (in /Developer/Examples/Foundation/XMLBrowser) didn’t work properly either, but the XMLMate plug-in for TextMate did. I looked carefully at the Autodiscover sample in the Exchange 2007 SP1 SDK and found that everything looked OK. Then I went back to my main reference for this stuff. On page 780, I finally found the answer in a subtle clue: the book’s sample was using an XPath query that included the namespace! I modified my code to look like this:

NSXMLNode *rSpace = [NSXMLNode namespaceWithName: @”r”
stringValue:@”http://schemas.microsoft.com/exchange/autodiscover/outlook/responseschema/2006a”];

[[adResponse rootElement] addNamespace:rSpace];

NSArray *idList = [responseRoot nodesForXPath:@”//r:EwsUrl” error:&err];

That solved the problem. So, lesson learned: always make sure that you’ve registered the correct namespace when using nodesForXPath!

Comments Off on HOWTO parse Autodiscover with Cocoa

Filed under General Tech Stuff, UC&C