Complete This Word

Can you complete this word?  If so post a website URL of something that this describes in a comment.

My BOINC Statistics

HOWTO: Securely Setup an NTP (The Network Time Protocol) Server - Simplified

This documentation assumes you have a compiled and installed NTP server version of 4.2.6 or newer.

NTP is a protocol designed to synchronize the clocks of computers over a network. NTP version 3 is an internet draft standard, formalized in RFC 1305. NTP version 4 is a significant revision of the NTP standard, and is the current development version, but has not been formalized in an RFC. Simple NTP (SNTP) version 4 is described in RFC 2030. - [source]

The first two steps to begin the installation is to setup a NTP log file and a statsdir which will hold the servers log messages and time computations acquired from external stratum time servers.  Here is an example of the first two lines in a ntp.conf (/etc/ntp.conf) file:

logfile /var/log/ntpd
statsdir /var/log/ntpstats/

When compiling by source, you may create the log file by issuing the command "touch /var/log/ntpd" and create the directory which will hold your NTPD statistics such as peer communications with the command "mkdir /var/log/ntpstats".

Now we want to keep good track of NTP server communication to better help your server synchronize its internal time clock.  We will add the following four lines for this:

statistics loopstats peerstats clockstats
filegen loopstats file loopstats type day enable
filegen peerstats file peerstats type day enable
filegen clockstats file clockstats type day enable

Next we will list the NTP servers you would like to communicate with in order to synchronize your system's time in conjunction with.  These servers should only be used on a proven and sturdy machine:

server time.nist.gov
server time-a.nist.gov
server time-b.nist.gov
server utcnist.colorado.edu
server utcnist2.colorado.edu

At this point you will want to secure your NTP server.  To do so we will start by denying all traffic in or out of this communication medium:

restrict default ignore

Now in order to negotiate synchronization to the time servers listed above, you will want to allow your server permission to query these hosts by resolving the IP addresses and granting query actions:

# time.nist.gov
restrict 192.43.244.18 mask 255.255.255.245 nomodify notrap noquery
# time-a.nist.gov
restrict 129.6.15.28 mask 255.255.255.245 nomodify notrap noquery
# time-b.nist.gov
restrict 129.6.15.29 mask 255.255.255.245 nomodify notrap noquery
# utcnist.colorado.edu
restrict 128.138.140.44 mask 255.255.255.245 nomodify notrap noquery
# utcnist2.colorado.edu
restrict 128.138.188.172 mask 255.255.255.245 nomodify notrap noquery

In order to allow local or remote hosts access to your time server after it has been properly synced to your correct time, you may add the following rule to respond to queries, with this example, on a class C network:

restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap

Most importantly, do not forget to assign your drift file and directory:

driftfile /var/lib/ntp/drift

You may create this using: "mkdir /var/lib/ntp; touch /var/lib/ntp/drift".  Note that if you decide to run NTPD under a non root user, this directory must have full write access to your alternative username, as with the ntpd and statsdir file and directory mentioned above.

I will touch on two ntpd command switches that may come in usefull.

The "-g" switch will allow your NTPD process to continue running if your internal time clock is off by more than 1000 seconds.  If this switch is not present and your time is stewed & spewed, the process will die.  The "-I eth0" switch, as an example, allows you to bind NTPD to a physical network interface.  The interface may be eth0, eth1, lo, etc.

The configuration above should get you headed in the right direction to set up a network time server and client.

Perrot State Park & Scratch the Cache

My mother and I took off for the weekend and headed to Perrot State Park in Wisconsin.  It is one of my favorite places to visit during the summer for camping.  Their are plenty of spots to pitch a tent and miles of hiking trails to add.

We both needed to get away, so the weekend involved lots of sleep and good eating.  We did walk a mile or two to tell the truth, but we did not take up Brady's bluff on this trip.

I hid a Geocache pretty close to our campsite by the name of "Scratch".  The naming convention represents the big deep scratch across my face I got while trying to find a cozy home for this hide.  Scratch can be found [here].

We both had a great time.  I really enjoyed spending a weekend with my mother to just get away from it all.  I hope to do it again soon!

Google Data Mining Service Integration and Separation

I separate many of my Google services using unique accounts.  The account in question that I feel violated my browsing privacy uses Google Voice, Google Reader, and GMAIL.  GMAIL is used once every few months.  Other services such as Adsense, Adwords, and Google Analytics are separate from the example of my Google Privacy discretion related to my Internet browsing habits and my Blog, Myside's Spew in which I often go by the name Myside.  You should also note that this user name crosses over to a select couple services from unrelated Google content systems.

The following is the quoted Google Voice voice-mail message transcript along with an audio recording of the actual call.

"Hi.  This  is  Myside  gimme  a  call.  Bye."

Random Thought : There will be more Google related spew to follow. For example.. Notice their are no longer adds on this Blog or 3rd level domains? Should Google be voice for our free access to Internet resources?