How Facebook manipulates our social interactions

Facebook. It’s one of the world’s largest names online. It consumes millions of people on a daily basis, and keeps them tightly held in a lockjaw grip. (Almost) all of our friends are on it. They know so much more about you than you think. Yet is it possibly one of the worst places you could actually entrust with your data, and your mind?

So, You post a picture from that party you went to on the weekend… that embarrassing drunk one, share it amongst your friends allowing them to comment on it and share further. Facebook have recently been doing some changes on the share function which I believe have been rolled back – at one point sharing a post from a friend’s wall would only be visible to mutual friends, unless the post itself was public. It was a bizarre change which I verified by running several tests between my wife’s account and my own, and essentially made the share link redundant – at least for non-public posts.

But what about when Facebook “manipulate” what you do and how you interact not only with the site, but with your own friends?

Yesterday – 7th August – was my 29th birthday. I sat there the night before and thought about what happens on the day of anyone’s birthday – you wake up that morning to a barrage of “Happy birthday” posts left on your wall from your various Facebook friends, with the trend continuing through the day and tailing off early evening. And why? Facebook actively asks you to wish your “friend” a happy birthday and keeps the prompt up all day, just for your convenience.

I hid my date of birth from everyone.

For the first time since I joined Facebook in 2008, I had not received a single happy birthday comment on my wall. With the exception of my sister. But my sister already knew my birthday of course. Everyone who wished me a happy birthday did so via text message or in person (including my sister, who sent me a message before doing so on Facebook), just like it used to be. My children were genuinely excited that it was my birthday.

It turns out that if Facebook doesn’t tell you to wish your Facebook friend happy birthday, then none of your circle of “friends” actually knows. And perhaps that’s a good thing. Facebook has become a site where you can have a circle of friends but know absolutely nothing about them. If Facebook were to close tomorrow, the people I care about and the people I would want to remember my birthday would do exactly what they did yesterday. They would get in touch with me because they genuinely wanted to say those two words. They weren’t told to by a piece of code telling the site’s software to prompt them.

It truly is amazing what happens when you hide one thing from a website. People who would have otherwise made a comment, didn’t.

It’s hard to imagine what the world would be like now without social media, but it does make you wonder if the world would be a better place without it.

 

Apple’s Magic Mouse and the Disconnect Problem

Apple's Magic Mouse

Magic Mouse. Photo by Paul Ingram

Apple’s Mac products are pretty outstanding. They’re also arguably overpriced in many respects. However millions of people worldwide buy their products – including me. I have an iMac, MacBook Pro, iPad Air and iPhone 5S. My experience with their support and Genius Bar in the past has always been outstanding (and I believe that your higher prices not only pay for the fantastic build quality but also the support you receive).

However, like any company they’re not perfect and while I have few complaints about their products, one particular bug bear I have is with their Magic Mouse. It’s a fantastic concept, taking the responsiveness of the capacitor touch screens of their iPhone product and incorporating it into a device that has been used for years to control an arrow on a screen.

The problem
I got my Magic Mouse in 2012 – it was a product that had already been out 3 years so should have been fairly polished. The problem is that it’s not – the device is plagued by constant disconnections and it’s sadly not an isolated issue as mentioned here, here and here. Given that the earliest posts are from 2009, it makes you wonder why Apple haven’t addressed such a simple issue.

Possible fixes
There are only two real fixes. Either it’s a software fault within the mouse, or it’s a design flaw which causes the radio hardware to drop its transmission and therefore drop the connection. Or something’s shorting. Or the mouse is losing power. Somehow.

My fix
I’m not endorsing this as an “official” bodge fix. I’m not saying this will work for everyone. But it’s worked for me and apparently several other people as well.

The actual problem appears to be the design of the battery compartment. The fault can be replicated at will, either by tipping the mouse on its end and tapping it gently on the desk, or gently dropping it on the desk. Or knocking it against something with little force. A little investigation revealed that the slightest jolt of the mouse and the batteries move relatively easily.

It’s clear that the batteries are losing contact with the metal contacts in the mouse, causing a brief power interruption which in turn causes the loss of radio transmission and ultimately disconnection of the mouse. I fixed this in two ways – packing out the connection between the negative terminal of the batteries with small squares of aluminium foil*, making it more difficult for the batteries to move about. The second way was to pack the bottom of the compartment (between the batteries and the cover) with a small square of paper which would reduce any movement in that direction. Many years ago most battery-powered items had a piece of sponge glued to the compartment cover to act in the same way.

* Take care to ensure you don’t cause the potential for short circuit by allowing the aluminium squares to touch each other.

The ideal fix
Apple actually addresses the issue and designs the battery compartment to stop battery movement and disconnections. Many other companies manage it, so surely it’s safe to say that one of the largest companies in the world, known for its focus on design innovation, should really be able to make this simple issue go away?

Using MySQL triggers for audit logging

If you’ve ever had to create a web application that requires user authentication, you may have been required to implement some sort of audit logging. Whether this would be for auditing user logins, maintaining a history of changes to content or keeping a trail of events in say, a call centre environment, there are various ways to achieve this.

Writing methods/functions to insert audit log methods
The “old” way (for me, at least). I had a database table set up for my audit logs, and I would write a method to write to this table. It would take a few parameters and perform the database write based on these; something like:

public static function auditLogSave($type, $userID, $data) {
  if (empty($type) || empty($userID) || empty($data)) { return false; }

  // Validation code
  // Write to database

  return true;
}

While there is certainly nothing wrong with the above, there are a few considerations that might make it less than desirable:

  • It’s an additional method call within your code
  • Potential for speed decrease in your application (particularly if you have a lot of audit log calls)
  • What happens when you want to change how the logger works, but in doing so you want to add an additional parameter? Refactoring time just increased significantly…

MySQL triggers
One way I’ve really taken a good grasp on lately is using MySQL triggers to achieve the exact same task. If you haven’t come across MySQL triggers before, take a look at this introduction – they’re a really good weapon to have in your arsenal!

The idea behind using a trigger is that you can write a query – or a selection of queries – and set them up to automatically run based on an INSERT, UPDATE or DELETE.

  • No additional code to run in your application
  • All of the work is taken care of by the database server
  • Changes mean updates to the trigger(s), which is likely to take a small fraction of the time it would take to refactor your entire application.

I’m currently writing a very basic page manager for a transactional-based website and have just deployed triggers to log any changes made to the content. It took me 10 minutes to set up the triggers for two tables and now I don’t have to remember to run any methods in my application code to audit log any changes!

Using SendMail and SELinux on RHEL-based distros

If you’re using SendMail in Linux and have SELinux installed, you may find emails are not being sent. More specifically, you may notice errors appearing in your /var/log/httpd/error_log file:

chdir /var/spool/postfix: Permission denied

SELinux is known to cause unexpected behaviour with many server functions if the defaults are left configured – in this case, Apache doesn’t have SELinux permissions to send email through Postfix.

Check whether this really is the case by issuing the following command in a bash terminal:

/usr/sbin/getsebool httpd_can_sendemail

The expected response will be (depending on the current setting):

httpd_can_sendmail --> (on|off)

If it is off, this can be changed to on by issuing:

sudo setsebool -P httpd_can_sendmail 1

-P in the command sets it to persist, which will retain your setting change when you reboot.

An exciting announcement

WARNING: This post is full of soppy, sentimental content. You have been warned!

Today was a very exciting day for both me and my wife.

My beautiful wife is currently 20 weeks pregnant, and today we went off to hospital for her scan. Those things are really quite amazing – they take your breath away in an instant when you’re sat there looking at your unborn child moving around, its little legs curled up and its hands waving around. The way you can see your baby’s heart beating, and the way the sonographer can actually tell body what is what. I know they’re trained to do that, but they move along at such a pace.

To think that in just over 4 months I’m going to be holding our developing baby in my arms. Those scans are just one amazing way of bonding with your baby in one way or another, even though it hasn’t actually arrived yet.

As it was the 20 week scan, we were asked if we wanted to know the gender. It’s something we have been waiting so long for, and of course we said yes. We were hopeful for a girl, and had gut feelings it was a girl – but if it wasn’t, we wouldn’t be bothered. As long as it’s healthy.

“It’s a girl,” said the sonographer. Big smiles all around :-)

I’m sat here 9 hours on, and still don’t think it’s quite sunk in that we’re having a girl. We already have a name for her, and I’m really, really looking forward to seeing her next year.

Roll on March 2014.

Remote database administration security

I’ve experienced a few cases recently where website owners have requested some work, FTP and MySQL details have been requested and for some reason, remote access to the MySQL database via a GUI such as Navicat or Sequel Pro has been disallowed. Instead, the hosting provider or website owner has insisted specifically on the use of phpMyAdmin, and very often this is for “security reasons”.

This statement alone worries me. phpMyAdmin, as the name suggests, is an administration panel for MySQL written in PHP. It can run on any web server running PHP, and allows a database admin to administer a database from anywhere. It is also open-source and used on a variety of systems, making it a good, useful target for opportunists to look for vulnerabilities, exploit them and potentially access your data.

Remote access can be restricted to certain IP addresses, either via MySQL user accounts or a firewall on the network. It’s really simple to do, and will provide far more security than using an open source application, simply because if done correctly, only the IP addresses specified will be able to connect to the server.

The verdict
phpMyAdmin is a great tool for quickly accessing a database and running small updates. In terms of efficiency, it’s going to fall flat on its face for anything more than an update here or there. Use remote access in conjunction with correctly configured firewall rules and MySQL user accounts to securely access your data.

For extra security goodness, and if your hosting provider allows, use SSH when connecting to MySQL to ensure your data transfers are encrypted between computer and server.

Why drummers post videos on YouTube

I recently had a comment on one of my YouTube videos asking why I would put covers on YouTube, as “1,000,000 other people in the United States can do that.”

Of course, the first thing that is so great about YouTube is that it’s not just limited to the US. I’m from the UK, so maybe 1,000,000 other people in the US can do it – I’m not one of them! ;-)

There are a number of really good, really constructive reasons why drummers and other musicians post their videos on YouTube. Let’s look at the obvious first:

Audience
The YouTube audience is massive. More than 1 billion unique visits per month. Ironically for the commenter, 70% of YouTube traffic comes from outside the US. Both part of a collection of statistics found on YouTube’s “Statistics” page.

Recognition
Tied in with the audience factor above, there are always people scouting YouTube, looking for that next big thing. Imagine if today was your lucky day! Certainly happened for Justin Bieber…

And now on to the less obvious…

It’s like a personal log
People improve with any skill when they practice. Over and over again. Having videos as you practice can help you see your progression. It can also help you see where you’re going wrong and where you need to improve.

So many other people do it
This was the point raised in the comment. The comment was posted in a negative, trolling fashion (and I’ve looked at the other comments by this person to other people – said person really does come across as a troll!) However the fact that so many other people do it is a massive benefit to any drummer – personally I watch other drummers before I embark on a cover attempt or try to learn something new. Just by watching people’s techniques you can quickly build up your skills and learn new techniques – and it hasn’t cost you a thing! My next cover video – filmed yesterday – is a cover of Paramore’s “Now”. It’s taken me around 14 hours to learn, refine and film the song on the kit, but if I had to do it all from ear it would have taken so much longer.

Community
The fact that YouTube allows comments on videos means that you can establish a community with people from all over the world, who have similar interests to you. Comments allow you to post constructive feedback to fellow drummers and receive constructive feedback from others. “The sticking at 0:45 isn’t quite right” or “I think there’s a triple bass hit at 2:11″ for example. Another resource to help you learn, refine and improve. Maybe when you listened to the song the first time you missed that triple bass hit, but after seeing the comment and listening back over the song, it’s blaringly obvious.

YouTube is… free?
There’s nothing better than utilising freesources to their full potential – for you. Other people may not benefit and it may take you a while to become established or to find benefits yourself. Certainly the biggest benefit – and inspiration – to me is Cobus Potgieter. He is a drummer that – you guessed it – became “famous” by posting drum covers on YouTube. He’s certainly one of the most talked about YouTube cover drummers on the site, and has done some great things that I am really envious of. It takes serious dedication to fly out complete strangers who have auditioned over the internet to a recording studio, and record an album with them. This formed the band Ventura Lights, and they’re actually pretty good! The cover this comment was placed on was actually a competition entry relating to their band, and is clearly written on the video biog. I guess some people just don’t like reading! :)

My music
I’ve been playing music since I was very small. I find it difficult to write my own original content, but I enjoy simply playing music. There are so many talented artists out there who are able to use their instruments to produce outstanding pieces, over so many genres, and one day I would perhaps like to write a piece or two. My channel is over here, if anyone wants a listen!

MVC Frameworks: The Final

…and semi-final, and heats. All in one post.

I’ve spent a lot of time recently looking at MVC frameworks. PHP ones. And when I say a lot of time, I don’t mean I’ve obsessed over the subject like it’s the difference between life and death. Maybe.

Truth is, there are so many PHP frameworks out there and so many “mainstream” ones that all claim they are the best. And maybe they all are… in their own way. However what they all assume is that you – the developer/user – will be willing to conform to the ways and opinions of the developers behind any one framework.

I personally think that a framework should be a means to get up and running quickly. It should be lightweight and flexible enough to allow plugins to be easily installed and used, and easy enough to learn so that you can write your own. It should be secure. It shouldn’t, then, require a CLI script to install a new website, requiring pages of documentation to get you up and running. It shouldn’t, by default, contain every function and method known to man – realistically you’re only going to use 1% or so of those functions. It shouldn’t be so strict that you have to effectively learn a whole new “language” to get going. I want to be able to download the latest release of a framework, drop it into some web space and get going.

Looking at all of the frameworks on a list I found here I decided on CodeIgniter. Why? It was the most flexible framework out of all of them, and allowed me to simply drop in the files and get developing. I fancied a stab at CakePHP, but when I couldn’t even get their built-in authentication module to work I gave up. Using a framework shouldn’t be that complicated!

The other reason my choice rested on CodeIgniter was because, as part of a team effort, I have been involved in writing a PHP MVC framework at my job. I wrote the core code for the framework before everyone else joined in and started writing plugins and adapting the core to our needs, but this framework was loosely based on CodeIgniter. This meant that it was a natural progression from a custom-built framework to a mainstream one, as I already had a good idea of the structure requirements.

I’m not saying CodeIgniter is for everyone and people will have preferences of the other frameworks. But I am saying I think it’s worth a developer looking closely at the different frameworks available before settling on one – choosing the wrong framework could mean extended development times or limitations if you can’t work out how to do something in the chosen framework.

My first potential PR opportunity

Today I received an email with a rather interesting start:

I know you have recently been emailing Xenios, our CEO. I wondered if you’d be interested in being a case study.

I’ve been a member of a site called PeoplePerHour for quite some time as both a “buyer” and a “seller”. It took a while to win any work on there, but I’ve been able to win a few small coding jobs recently and am building up a portfolio – regardless of whether most of the jobs I’ve won are small slide-and-code-email jobs, they’re still jobs.

So these case studies get posted to their blog, which is great in itself. With over 300,000 service providers on the site that’s a hell of a lot of exposure! They also posted a couple of links to news articles where case studies have been used, including one from the Daily Express online. Incredible exposure!

I told Holly I wanted some kind of media exposure by the end of 2015 after seeing Twitter contacts getting interviews in .Net Magazine, but didn’t expect the opportunity to arise so soon!

Obviously I said yes, so am now awaiting a question set from them to complete and send back. Very excited by this prospect!

Raspberry Pi, anyone?

I’ve had a Raspberry Pi for a while now and been using it as a cheap web server to host my projects and various files on. I realised, after three power cuts in a row and a corrupted operating system, that these things don’t really enjoy just having the power snatched away from them. Advice people – get a UPS if you want to use this thing as permanent server!

NOTE TO SELF: I really need to do this. Before the next power cut screws up my OS…

So anyway, after restoring the operating system and Samba configuration to its previous state, I started to wonder if I could also utilise it to be an iTunes server. Bit of a pain in the neck sitting at my desk on my iMac, streaming my music from my MacBook over Home Sharing… not to mention inefficient as far as energy usage goes.

I started reading up on the best ways of achieving this and decided there were two viable solutions: DAAP or SMB. DAAP is the protocol properly optimised for this kind of application, so you can kinda see where I wanted to go. Two OS reinstalls later and I decided it just wasn’t going to work (good ol’ Linux, eh?) so opted for SMB instead. Not so elegant, but if I could get the job done…

Media files went onto the USB drive on the Pi, then config for the SMB share done and tested. I could pull the media over the network into both iTunes installs on MacBook and iMac (taking care to not copy into iTunes libraries… actually that’s a slight lie. The MBP is set to copy so I can take my library on the train with me every day). Test… worked.

What’s so great about this solution is that I don’t have to worry about connecting to shares or authenticating… if I’m not connected to the media share when I open iTunes and hit Play, it will connect for me and just… play! All my media in one single location… to complete it, I just need to get iTunes to check the media location for new files automatically. Shouldn’t be too difficult…