狗爺語錄

Kakuro strategy: sum of far away cells

Abel — Sun, 09 May 2010 20:28:54 +0000

After a series of kakuro strategies about difference of cells, here comes a variation of theme: sum of seemingly unrelated cells. Here is the starting situation:

Figure 1: original problem

Maybe some smarter people can spot a better way of solving this one, but in my case I’m stuck for quite some time before realizing the next solvable cells can be determined using addition and subtraction of areas again. And finding these areas are definitely not easy:

Figure 2: step 1 (horizontal)

Figure 3: step 2 (vertical)

Subtracting red area (calculated vertically) from green area (calculated horizontally) gives A+B=17, therefore A=9 and B=8.

Is this the end? Not so soon! Two more cells can be determined with similar method and similar areas:

Figure 4: step 3 (horizontal)

Figure 5: step 4 (vertical)

After similar subtration (green area minus red area), we got A-C-D=1. As it was already found above that A=9, thus C=2 and D=6.

Probably this is the last post in the kakuro series until some more elegant strategies can be found, because I don’t have much info to add about subtraction of areas.

9 years of worthless waiting for usable music typesetting program

sapristoire — Fri, 19 Mar 2010 15:15:37 +0000

The history

Immediately after registering and paying for Mup Music Publishing program around summer 2001, I was so fascinated with its ease of usage and simple syntax, so that Lilypond (at that time the only free software for music typesetting) was ditched with no second thought, and even wrote an article about Mup in LinuxHall magazine (disclaimer: I was an editor for the magazine). It was rare for me to prefer shareware to free software, but this was the rare case. With such great tool I saw a glimpse of hope for my wild ambition: getting Prokofiev’s second piano concerto done. Undoubtably it would be a daunting project, especially when considering the user-unfriendliness of Lilypond (it was/is programmers’ solution to typesetting, not musicians’ solution), but with Mup I could see the light of getting the beast done in a year or two: an almost 150 page of orchestral work, containing many obstacles not solvable with simplistic notation programs (though not as bad as contemporary music).

Cross-staff stem

Indeed, it turned out Mup was not that perfect at that moment: cross-staff stem was not doable. That implied giving up and waiting for Mup to implement the functionality. After a long wait, it’s finally there; so a happy user could continue the crusade, after maybe one year later.

That had become sort of a cycle: typesetting till a certain point, an obstacle was encountered, report and wait till Mup has support implemented, and go back to step 1. In these many years, Lilypond has grown a lot too. However, no matter how versatile it was, there were 2 major reasons I actively distant myself from Lilypond:

In the old days vertical spacing between piano staves had to be defined manually using code! (also see what’s done in newer version). That’s RIDICULOUS. No notation program should be called ‘usable’ under such circumstance. To say bluntly, it’s perhaps better off using image editing program to fix the spacing afterwards.
The constantly changing syntax made me really uncomfortable in using Lilypond for any serious purpose. Any major release, any minor release, and even any patch level contains incompatible changes, some as ‘trivial’ as changing plural form for settings (yes, same code wouldn’t work in later version unless using convert-ly to add or remove an ’s’). There was apparently no discussion about the names of settings used, and maintainers seemed to be toying with names arbitrarily at will.

The problem

Everything went on as usual up to a certain point: cross-bar beaming. To put it exactly, I was completely stuck typesetting this passage (from last movement):

8[ s | \numericTimeSignature \time 4/4 bis] s [ s d'] s [ s | \partial 4 cis'] s \bar "" } lh = { \key a \major \clef "bass" \time 2/4 cis,4-> s8 \stemDown \change Staff="RH" cis''[ | \change Staff="LH" \numericTimeSignature \time 4/4 s8 ] s \change Staff="RH" bis'[ \change Staff="LH" s ] s \change Staff="RH" d''[ \change Staff="LH" \partial 4 s ] \bar "" } \score { \new PianoStaff << \new Staff = "RH" << \rh >> \new Staff = "LH" << \lh >> >> \layout {} \midi { \context { \Score tempoWholesPerMinute = #(ly:make-moment 132 4) } } } [/score]' id='sr-f6b31d13117c20d3fd196d058dd1b16b-code'>

While I could anticipate Mup fans introducing lots of hacks or manual drawings to attempt working around the problem, it’s no cure. Changing paper size, and BOOM! All hacks and manual drawings would be broken then. Despite being placed in feature request list (#280), Mup maintainer had not even attempted touching it, while Lilypond had this feature since history. The refusal (well, almost) of Unicode support also saddens me much, though I was well aware of the fact that with currently arcane and spaghetti structured code base it sounds immensely difficult to add Unicode support. Anyway, no cross-measure beaming means 3 straight years of abandoning the project, expecting it would never finish.

Yet the final blow comes recently. While checking out if Lilypond has any new feature, one particular line caught my eyes:

Vertical staff spacing using a skyline algorithm

It very much means an important blockade from using Lilypond was removed. Vertical distance between staffs are now automatically computed and adjusted. Though still maintaining my point of view as programmers’ user-unfriendly solution to typesetting and as the one I dislike most, I actually start to see the potential of finishing the whole thing with Lilypond now, despite taking much longer time than needed using Mup. That’s a great disappointment, because my favorite one failed to do the job while another has progressed far enough to overcome the problem it had. Maybe the definition of love and hate should be refined after all…

The point

Nothing is perfect. Perhaps using Finale and Sibelius, the de facto standard, would mean less headache and less complaining, yet also means people can’t easily modify it (my typesetting is certainly lousy). The reason of my insist on using text instead of point-and-click program is mainly a preference on speed — I feel working much faster this way. But still, completely rejecting GUI programs could be my fault. The persistence on ignoring other tools is, in the end, a hindrance.

The development models are significantly different between Lilypond and Mup:

Mup is developed and maintained by (purportedly) 2 persons. Despite the open source nature, it’s actually a shareware. There’s a mailing list for discussion, but it’s not public. There’s not much discussion about development too, I’d say it’s a pure user discussion and announcement list.
Lilypond is mainly developed by 2 persons too, though more helpers are willing to contribute, and development is more transparent, following free software paradigm.

Such difference decides their fate. Mup is completely user-oriented, so people attracted to it are mostly users who want to get the work done. This spells the pros and cons: easy to use, less tweaking (well, the way for extension is to embed PostScript directly), the wait-for-me-to-feed-you style of feature development.

OTOH, Lilypond is much more programmer oriented (usage of scheme as script language, programming-like TeX syntax), so the ones it attracted are more programmer-like minded. Almost all balanced reviews (NOT those written by fanboys) regard it as one of the most difficult to learn but most flexible.

The (dis)advantages of various development models have been discussed to death; I’m not going to even think about it anymore. The lesson I’ve learnt is, try to learn other tools, even the disliked ones. It is entirely possible that the disliked tools help accomplishing the task.

WordPress Private Post Access plugin updated

Abel — Wed, 10 Feb 2010 11:34:49 +0000

Just made up my mind to push a new version (1.3.0) of the plugin, which can be downloaded from its official page as usual. There are a few mysterious oddities so far:

An odd problem which seemed to affect earlier WordPress 2.8.x versions is just gone, for unknown reason.
When trying to replace the category list retrieved from get_terms(), PHP simply segfaulted, at least on my machine. Failed to get any meaningful error message, nor can I deduce any reason so far.

So for now I just settled in showing empty categories in sidebar widgets, which should work as an internim solution (categories containing ONLY private posts are not shown by default, as the public post count is zero). Of course, the side effect is that even genuinely empty categories are shown as well. I’ll see what can be done later.

Crappy GNOME trash

Abel — Sun, 30 Aug 2009 20:22:57 +0000

Even if a file with the same name and location gets trashed many times, each subsequent trashing must not overwrite a previous copy.

So what is this holy shit called GNOME doing? Originally, I expected those FreeDesktop people still don’t get it after the other most widely used OS have done that 12 years ago (maybe even longer), but it looks like the wrong people have been blamed all along. So lucky it’s not written down till now.

Even FreeDesktop Trash specification has the statement stressed in italic letters, yet GNOME freetards in their infinite wisdom are not follow it! Good job! Looking at how GNOME had implemented previous trash can (which was just yet another directory — an excellent topic for jokes), I didn’t expect much would be done in foreseeable future though.

被搭訕

Abel — Sat, 29 Aug 2009 07:17:59 +0000

昨天食早餐時，很罕有地，坐在對面位的師奶忽然攀談起來。也許是遇到這種事情的可能性太低，開始時還以為對方在自言自語，過一會才意會到是對我講說話。存在感較薄弱的我，有陌生人閒談家常的機會率平常是接近零的。對方年紀和我大概不相上下，很明顯地已有約六七個月身孕，BB 快要出世那種。一開始就是說大家樂的快餐不如某街市的食肆便宜，之後這樣那樣的，言談之間，談及自己在數年前來香港。但廣東話絕對是道地的，聽不出半點口音，除了是本來就住在廣東，或者是語言天才外，想不出有多少可能性。

其餘的時間，都接近是這位師奶的 solo performance：親戚的仔女如何被父母縱壞，菲傭好還是印傭好，諸如此類，都是生活上的鎖碎事。由於沒甚麼經驗，插不上嘴，唯有仔細聆聽。但本來日日如是、平凡悶蛋的早餐，變得有趣味多了。

香港人也許就是缺乏這種親和力。

Yahoo Site Explorer SUCKS. Big time.

Abel — Sun, 12 Jul 2009 20:08:43 +0000

(For those who don’t know about what “webmaster tool” is and what it does: webmaster tool allows site administrators to control how their sites are crawled by search engines. Please refer to this Digital Purview post for a brief introduction.)

While Google Webmaster tool does its job well (even Microsoft one too), Yahoo Site Explorer (interesting that it’s not named Webmaster tool like the others) simply adds no value to webmasters except confusion, impatience and disappointment. The reason?

While Google and Microsoft one allows authentication of site using META tag, similar function by Yahoo simply fail. No idea, and no comprehensive error message. Yahoo just fails and tells you it would retry again later.
Once Yahoo fails to validate your site, what’s next? Revalidate immediately? NO! Even if you choose alternative method (uploading a file into web root folder), it would just indicate that validation will be pending some time soon. How long? No idea.
Therefore, for people impatient enough to demand immediate validation, one have to remove and readd the site, and revalidate afterwards using file upload method. No other choice.
Once validated, can I just revert to previous site content? OK for Google, not for Microsoft and Yahoo. In Yahoo it is indicated clearly:

We will revalidate your site ownership by checking this file regularly.

We will revalidate your site ownership by checking this META tag regularly.
Taiwan version of Site Explorer is equally stupid, one have to stick an image on web page for validation! Speechless. Can’t it just use some less intrusive method for validation?
Too bad that Yahoo doesn’t accept any sort of XML sitemap.

For the functionalities after validation — well, my opinion is, no one is perfect (a combination of all 3 as a single website management tool is most desirable). However, if I were to pick one, I absolutely would not pick Yahoo. So far the only thing worth mentioning is, Yahoo allows removal of selected URLs containing certain substrings or GET parameters.

Hiding WordPress version has no future

Abel — Sat, 11 Jul 2009 16:33:34 +0000

Yesterday I came across this “Replace WP-Version” WordPress plugin (english translation), which tries to mangle or simply hide WordPress version declaration in feeds and web pages.

For example, such HTML is usually found in blog header:

Broadcasting version is generally believed to be a sore point in blog security — it invited crackers to determine easily which blog is exploitable, thus the existance of such plugins. It reminds me about a plugin I have written for myself before, for similar purpose. But on second thought, I didn’t publish and advertise it. Why?

Version can be decided though other means

Since recent WordPress releases (not very recent though), WordPress also emit versions in javascript links. Take my own blog for example:

With javascript versioning, WordPress version can be approximately determined. Even worse, these declarations can’t be disabled. That means just hiding WordPress version is not effective anymore, regardless of other reasons.

Exploits are generic enough to ignore any versioning

While WordPress fanboys are retarded enough to declare any security measure as “obscurity”, this one is probably right. Version hiding is very likely defenceless against most exploits, which simply tries every possible attack method. This renders version hiding pointless.

It affects functionality of other plugins

Some other plugins do check WordPress version in order to behave differently. Take a look at the comment of bs-wp-noversion plugin (which is yet another version hiding plugin). WordPress rendered broken is a possibility if version is changed or hidden.

ssh 伺服器強化

Abel — Wed, 24 Jun 2009 17:48:10 +0000

針對蠕蟲

任何有用心管理伺服器的管理員都會清楚，ssh 伺服器長年累月都會被全世界千千萬萬電腦使用不同的使用者名稱 / 密碼組合，不斷嘗試進入。如果沒有收緊密碼的品質，很易就被人在伺服器內玩個天翻地覆，不亦樂乎。固然制止的方法非常多，就好像我自己，以往是使用 denyhosts 的；但最簡單又有效，應該是更改 port number。因為絕大多數蠕蟲其實都笨得要死，試名稱和密碼，往往只會找 port 22 來不斷試，只要改了 port，立即一片安寧。

不過改了 port，以後使用時是否每次都要用 ssh -p 1234567 那麼麻煩？其實不用那麼煩，只要改一下設定，以後就可一勞永逸。假設需要經常進入兩部不同的伺服器，一個 ssh 用 port 1234，另一個用 port 34567，可以在 ~/.ssh/config 內加入：

Host myhost1
  Hostname blah.myexample.com
  Port 1234

Host myhost2
  Hostname foobar.example12345.info
  Port 34567

以後用 Linux / Unix 進入兩部主機只需要用 ssh myhost1 和 ssh myhost2 就可以，不用記 port。至於 Windows，雖然每個 ssh 程式 (例如 putty) 的設定介面有所不同，但都很輕易就可以改 port。而且這個方法連帶所有依賴 ssh 的服務都一併搞定，例如 subversion 配合 ssh (svn+ssh://)，就不需要好像 subversion 手冊所教那樣用些又煩又容易忘記的途徑處理。

應付有心人

對於人就沒有那麼輕鬆，很大程度上是因為可以進行 port scan，找出更改到哪個 port，然後繼續測試。規避一些 port scanner 經常掃描的 port，特別是 nmap，是可以騙倒一些大笨蛋，但醒目一點的，即使是用防火牆防備 port scan，也只是權宜之計，花多點時間和耐性始終是找得出用哪個 port 的。port knocking 好像未有足夠大眾認知，而且老實說，我對它還是有點戒心。(如果它忽然發傻，那我以後要怎樣進入伺服器？) 所以，到最後加強密碼的質素始終是不二法門。

另外有個稍為麻煩的方法可以採用，就是用防火牆限定某些 IP range 才可進入，像自己用的 ISP、工作地點等等，不過這個 range 不可謂不大，為了它可能要加數十條規則也說不定，不容易做。

世上任何一部伺服器，只要連上互聯網，就有可能被攻擊，除非像人們所說般，關掉伺服器，鎖進夾萬，那才是最安全的。同時，這世上也從未出現過萬能的防御 (有的話，發明的人或許是這世上最有錢的人了)，暫時唯有 defence in depth，將各式有用的防御組合起來，才是王道。就目前來看，改 port 加上防火牆是最節省資源的方式，雖然不表示防火牆容易設定。為節省腦汁，我嘗試過將全香港的 IP range 都加入防火牆。能夠阻擋所有外國的攻擊已算不錯，但那些規則足足有數百條之譜！

2009-08-07: 這篇 mailing list 的回應提供了方法令在 Windows 之下用各種 subversion client 都可以接受 22 以外的 port。

Interesting Regular Expression Quiz

Abel — Sat, 06 Jun 2009 14:46:03 +0000

This is solved. Actually quite a few people immediately figured it out in Twitter and Plurk etc.

Something is very wrong here. What happened? Is sed buggy?

$ cat xxx.csv
113.941112252,22.2889218875
113.941063733,22.288921817
113.941160771,22.2889219579

$ sed 's/,/e,/; s/$/n/' xxx.csv
n13.941112252e,22.2889218875
n13.941063733e,22.288921817
n13.941160771e,22.2889219579

If nobody can solve this mystery in this weekend, one more hint will be provided in the coming Tuesday.

投訴 Google Maps 的人真不該

Abel — Thu, 04 Jun 2009 06:16:21 +0000

一直以來在網上都見到不少人投訴香港 Google Maps 的更新有多慢，資料如何不準確，這些人一定是未用過 Yahoo 那個地圖。如果︰

中環渡輪碼頭外的是南中國海；

九龍和香港之間一條隧道都沒有；

彌敦道和旁邊的橫街是對等的存在；

香港從來沒有一間稱為「城市大學」的建築；

那麼還會不會這麼憤憤不平？就算要指出 Google Maps 的錯處，也不會像是 Google 負了大眾一樣的態度吧？固然 Google Maps 還有許多有待改善的地方，但它已經是全港僅有的兩個值得改善的地圖之一 (另一個要算是中原地圖)。真是身在福中不知福！