All posts by andy

About andy

Andrew Sharp is many things, among them a motorcycle enthusiast, technical innovator, Linux kernel hacker, dog lover, California native (originally from southern California), SciFi lover and, yes, a bit of a philosopher. Going back even before my college days at Tufts University, where I double majored in Philosophy and Computer Science, I've known that I love to write. Pontificate, even.

Frankie Blue Eyes Gallery

ssh mystery of the year (2018)

computing

To fully document this ssh mystery, first I give the setup:

We have Party-A, which has a black box firewall appliance.

Party-A has ssh-listener-a, a debian server that has port 22 forwarded to it by the firewall, but otherwise all of it’s internet traffic goes through the firewall. So it has an ssh server that sits on the internet as well as the internal network of Party-A.

Party-A also has server-a which is only on the internal network but has outgoing internet access via the firewall.

We have Party-B, which has a debian server server-b sitting on the internet which is a do-everything server and firewall, with an internet IP address (party-b.com) as well as an internal network address, and does all the normal firewall stuff between the two addresses. It also is a file server, email server, database server, and it has home directories on it as well.

Party-B also has desktop-b, which is pretty much what it sounds like, with all internet traffic going through the firewall server-b and no direct connect capability.

Now the symptom:

I ssh from normal user account luser on desktop-b into a normal user account on ssh-listener-a. This connection happens without password, instead using authorized key of luser on desktop-b. From there, I ssh into root@server-a which requires a password. The root account on server-a has only one file in its .ssh directory, and that is known_hosts. No keys and no authorized_keys.

Once logged in, I then do

# scp data-file nuser@party-b.com:directory/

and the scp transfers the file with no password required!

Um, how is that possible? It’s acting as if the nuser@party-b.com account has an authorized key from the root@server-a account, but root@server-a doesn’t have any keys! Nevermind that there’s no such key in the authorized_keys file for the nuser account on server-b ! The nuser@server-b account has exactly 3 authorized keys, all for hosts on the internal network and none for hosts on the internet.

#WTF

RIP `Frankie Blue Eyes’ 4/1/2018

frankie

ashes-to-ashes

Alas, beloved Frankie is no longer with us. He passed just an hour or two into April 1, 2018 at the age of 13, the last 10 of which he was with me. I took him in as a rescue when he was roughly 3 years old in 2008. His original name was Guinness, which is a decent enough name, but I could never remember it when I needed to yell at him about something, so I changed it to Frankie, after Frank Sinatra — the original ol’ Blue Eyes — because of Frankie’s very light blue eyes.

In the middle of the night on or about July 1, 2017, Frankie suffered his first seizure. It was hugely traumatic to both of us: him, because he was all mixed up and wasn’t himself, behaving differently than he had his whole life and forgetting things he knew well; and me, because I had to watch him struggle so mightily with it all. Watching a loved one struggle and suffer like that is definitely the worst, hardest thing I’ve ever experienced. But by the end of July, Frankie had regained about 80% of his former self. We put it behind us and started to go back to normal, happy times.

Then, almost 6 months later to the day, he had another seizure in very early January of 2018. For the next 3 months, it was a nightmare. The seizures began to slowly increase in frequency, and as things rolled into February, I was living with the worst sort of terror hanging over me: that Frankie would have another seizure. They were unbearable to witness, and then trying to nurse him back to some sort of normalcy could take many hours at any time of the day or night, usually starting at night and continuing on well into the next day. Often it took a day or two of constant watchfulness to help him recover. Maybe the worst part was he had no idea why or what was happening to him. The vet could find nothing in his blood tests or his ultrasounds or x-rays. They often mentioned the possibility of a brain tumor, but they said the only way to know if it was a brain tumor was to do an MRI, which is prohibitively expensive. And even then, there are only two outcomes: you know he doesn’t have a brain tumor; or you know he does. If he does, the treatment options for a 13 year old dog have an extremely low probability of giving him any kind of respite, but most like would have resulted in even greater suffering and an even earlier demise.

Now, roughly 4 months after his passing, I’ve reached a state of recovery such that I can write about this, and do other related things, like go through the 4,000 pictures I’ve taken of Frankie over the years and clean them out and organize them a little bit. I even created an account on costcophotocenter.com and had a couple prints made. That’s progress people! Here are a few of my favorites:

fuzzy-face Frankie Photo Gallery

Henry Sharp, Jr.
1925 – 2017

family

Henry and his beloved wife Harriet

Henry and his beloved wife Harriet

Henry Sharp, Jr., born in Illinois August 14, 1925, moved his fledging family with his wife Harriet and their then two children to southern California from Saint Louis, Missouri in the mid-1950s after taking a job as a Sales Engineer in the burgeoning California heating and air conditioning business. Born just outside Chicago, Henry was a life long, dedicated Cubs fan.

For information regarding arrangements and other questions, please go here

First born child Katherine Woods arrived in 1955, and first son Henry III a year and a half later, accompanied them on the westward trip. Andrew Bussian and Edward Robert (1958 and 1961 respectively) are true California natives.

My dad spent 20-something years in the HVAC business in southern California. accoDuring that time, when we would drive around the Los Angeles area, my dad would often point to a building and remark ‘I built that building.’ The first time, eyes wide with wonder, I replied ‘You built that building?!?’ My younger brother might have said ‘All by yourself?’ Whereupon my mother reared her head back and laughed, telling us ‘Your dad is having fun with you. What he really means is that he did the air conditioning for that building.’ Still, he seemed to point to another building every couple of minutes. Perhaps his most marquee accomplishment was winning the bid to do the HVAC for the Queen Mary, which the town of Long Beach had recently purchased and permanently docked as a tourist attraction. Eventually my father and four others from the company bought Acco from Prentiss Fulmore, the original owner.

Hank waited 91 years to see his beloved Cubs take the Series!

Hank waited 91 years to see his beloved Cubs take the Series!


Then in the mid-70′s, after doing relatively well in the HVAc segment of his career, Henry decided to leave the business for good, and signed on to be a high school math and science teacher at the newly starting Chandler High School in Pasadena, California, in 1972.

Henry spent two years at Chandler High School teaching Biology and Geometry, and then took a position teaching Physics, which was his true passion in the academic realm, at the Webb School for Boys in Claremont, California. He commuted daily to Claremont from our home in South Pasadena, and I went with him as I was enrolled as a sophomore at Webb. A year later, with the oldest child already off to college, the family moved into the original Webb house on campus in Claremont.

Henry taught at Webb until 1981, when he retired from teaching, and he and Harriet moved to Santa Barbara, where they had purchased some land with a view of the Pacific Ocean on which

Courtesy of Google Earth

Rancho Harbor Hills, as it is called by the family

they planned to build their dream house. They did build that dream house, where they lived until 2011. The passive, earth sheltered home cut into the Mesa area above Santa Barbara is still owned by the family, and occupied by daughter Kathy with her family. It functions as the local hotel for visiting members of the extended family. In Santa Barbara, Henry settled into the final chapter of his professional life, hanging out a shingle as a registered Financial Planner.

Before my time, on December 7th, 1941 (a date that will live in … well … you know), the Japanese attacked Pearl Harbor. The man who was to become my father 17 years later to the month, decided he needed to get into the fight, and worked extra hard in order to graduate early from his high school and enlist in the Army Air Corp in early 1944. His ability with math and science quickly caused the AAC to send him to Navigator training, where he learned to navigate a Boeing B-29 bomber. After he finished his navigator schooling and radar operator training, and after flight training with his B-29 crewmates, his airplane 632px-B-29_in_flightwas attached to a combat squadron in the Pacific theatre and received orders to fly to their squadron’s base in the Pacific. But fate had other plans, and before the orders took effect, the only atomic weapons ever used ended the war with Japan. If not for that lucky turn of events, me and my siblings probably never would have existed. After he was mustered out of the Army and honorably discharged, he took advantage of the now famous G.I. Bill and applied for admission to MIT, where he was accepted into the Class of ’50.

There at MIT, he played football and lacrosse. He also majored in General Engineering. My dad became an avid supporter of lacrosse at MIT, and that support continued right up until his passing.

Hank and Harriet loved to travel, and also were avid snow skiers since before they met. We know this because they met playing bridge at the only hotel in Aspen, Colorado at the time, the Hotel Jerome which is still in existence today.

Hank and Harriet in Martina Franca, Italy. October 2009

Hank and Harriet in Martina Franca, Italy. October 2009

Hank, an avid bridge player almost all his life, was playing, well, because he was a bridge enthusiast. My mother admits that she was playing because she wanted to meet interesting men, and besides, there was not always a lot of other things to do in the evenings in Aspen in the early fifties. It didn’t take long before they were skiing in the same group, and my dad admitted that he was impressed with Harriet’s skiing. And her bridge playing wasn’t the worst he’d ever seen, either. They started their courtship soon after returning to St. Louis, and were married later that same year: 1953.

After moving to Southern California and having two more children, in 1961 Hank and Harriet used their savings to buy maybe the last plot of unimproved land at Lake Arrowhead that had lake rights. The reasons it was unimproved were two fold: it had been divided off the parcel of land next to it, and it was basically a very steep hillside and came with no rights to the parking area right next to it. So if someone were crazy enough to try and build on it, where would they park? Undaunted, a few years later, Hank had an architect design a steep A-frame house that could be built on the hillside, and had an engineer draw up a parking platform that could also be built out over the hillside complete with a flying stair case down to the house. Although in truth the parking platform did come years later. Note supreme frog catching areaThat house just up the hillside from the lake is responsible for a large part of my personality. Harriet would move the children up to the lake house for the summer, and Hank would visit on the weekends. Us children enjoyed what today would be an unimaginable amount of freedom: my usual attire included only one piece of clothing — a pair of cut-off jeans. The family didn’t have money to waste buying swim suits for kids that would soon outgrow them. I rarely wore shoes (flip-flops were not a thing in those days) and usually no shirt, because it would come off for swimming anyway. My two brothers and I, sometimes with our older sister as well, would wander literally all day in the woods around the lake, no supervision, no compass, no mobile phone, and always out of mother’s yelling range, often times swimming for long distances in strange areas of the lake with no adults in attendance or for [what probably seemed like] miles. Absolutely no life jackets or other flotation devices ever crossed anyone’s mind, least of all the parents. My older brother Kris, while splashing around in the lake one day, spied a sunken row boat on the bottom of the lake. He spent many hours slowly dragging towards shore, one breath at a time. When it got close to the tiny beach where we usually swam, my mother told him to leave it alone, but it was too late, he was totally committed. On his own, he repaired it, installed seating areas with floatation foam firmly attached at Hank’s insistence, rebuilt an old outboard motor he got from a neighbor which also had also seen the bottom of the lake (the motor, not the neighbor), and we, by extension of my brother, had what we called a “putt-putt.” Motorized transportation allowing us to go anywhere on the lake in mere minutes. Something my parents had basically told us we couldn’t, and almost certainly would never, have. I could go on for days with these stories. Suffice it to say, a life-long love of sailing, swimming, freedom and self sufficiency was the result. One interesting thing to note was the Hank designed a passive convection heating element to go into the chimney as the fireplace. All but the openings for the air inlets and outlets were bricked up as part of the wonderful fireplace, and most never even guessed at its existence. I believe it was welded up by some journeymen at Acco, and in the winter it could heat up the entire two story open area of the A-frame in just a couple hours.

Hank, as he was called by his friends, is survived by his wife of 64 years Harriet, his four children, and six grandchildren (so far), to count just a few.

Hank, Harriet, daughter Kathy and her son Rob, and myself (the handsome fellow in the tie)

Hank, Harriet, daughter Kathy and her son Rob, and myself (the handsome fellow in the tie)

Information and arrangements for Henry Sharp, Jr.

family

Henry Sharp, Jr., 1925-2017, passed peacefully in his sleep the night of October 4th in Santa Barbara, California. He was 92 years old.

Hank, as he was called by his friends, is survived by his wife of 64 years Harriet, his four children, and six grandchildren.

Henry Sharp, Jr. has asked that his ashes be scattered into the Pacific Ocean rather than have a funeral. Arrangements are being made by the Neptune Society.

Messages of condolence may be left on Harriet’s voicemail, or can be left here by registering and posting a message.

In lieu of flowers, the family requests that mourners send a donation in the name of Henry Sharp, Jr. to their favorite charity.

Frankie and racoons

frankie

What a funny dog my Frankie is.
Funny faced Frankie

The other day, we got attacked by these two racoons. Lots of fur flying, weird animal sounds, me trying fruitlessly to kick the larger racoon, etc. Lots of unwanted (for me) drama at the end of a nice walk just yards from our gate.

So yesterday, two+ weeks later, Frankie and I were at the pet store buying him food and whatnot, and I see this adorable fuzzy racoon toy. When you squeeze (bite) its tail, it squeaks, and when you squeeze (bite) its mid-section, it goes “wonk.” He’s gonna love it, right?

So, I introduce it to him when we get back home, and he plays with it a bit; seems a tad surprised that it wonks sometimes and squeaks other times, but then doesn’t show much interest after that.

Later that night, as usual, he’s asleep in the front yard while I hack on the computer or watch hulu in the living room in the back of the house. So ungrateful. Anyway, he shows up after a couple of hours at the open door of the living room that leads out onto the back deck. I notice his nose is very dirty. Hey, I asked him if he’d been digging, but like a typical teenager, OK, in dog years technically he’s 21, he refused to answer.

This afternoon, while hacking out on the front porch, I realize I don’t see the racoon anywhere. I start looking for it. I can’t find it. Then, I discover this:
Find the racoon

Yup. The silly git buried the cute little fuzzy racoon toy!
Yulp!

Shannon’s Garage

Shannon

I loved Shannon’s garage. It was such a comfortable place. All
the pictures and postcards and momentos that he had afixed to the
inside of the garage door were endlessly interesting to look at,
read, and laugh with. Pictures of Shannon when he was a kid karting
with his Dad, pictures of all manner of family and friends and
heroes, admission tickets from races, pictures of random
motorcycles he liked from over the years. Old number plates
presumably from Shannon’s moto racing days of yore. Funny ads
clipped from magazines or newspapers. Industry stickers and many
different kinds of reminders of good times and interesting stories.
It was a thing of beauty to make any true gearhead sigh.

Many a party or gathering ended up in there. At least the ones I
was present for. Which was usually when other moto heads were
there, and the garage is where we naturally gravitate to. The
bikes; his Mini that usually lived in the garage. Often his Triumph
Speed Triple that I loved to stare at, sit on, or ask questions
about. Visitor bikes, loaner bikes, bikes he was helping a friend
fix, maintain or store.

I got to use the garage for its true purpose once, as well. When
I got a big brake kit for my Audi S4 wagon, he offered up his garage
to install them. Since his mechanical experience far outstrips my
own, not to mention the fact that mine wasn’t sufficient to perform
the job by myself, I quickly took him up on the offer. He also had
told me of his super-duper brake fluid sucking device that sounded
divine, so I packed up the two big boxes of the kit, Frankie — my
dog — and even the odd tool, and headed over there early one
Saturday morning.

It turned out to be a hellaciously hot day, and Shannon and I sweated
continuously the whole day working on those brakes. The original
ones were a total bitch to get off. It didn’t help that I had
roasted the shit out of them at Laguna Seca raceway a few months
before. The stock brakes of that car were definitely not up to the
rigors of even light track use. My show-the-stock-brakes-no-mercy
driving style at the track that day quite wrecked them, and so there
I was in Shannon’s garage, installing my new uber-cool BBK. I
always forget one or two things, sometimes important, sometimes
minor. This day I forgot to bring the special brake fluid I had
bought, so Shannon took me to a little parts store near his house
in the Mini and I bought some kind of crazy blue German or Austrian
“racing” brake fluid. Turned out to be a good idea because it was
so easy to discern the new fluid from the old, worn out fluid.

Many, many, sweaty hours later, after we had removed both the old
front brakes and installed the new ones, I discovered that the wheels did
not fit over the brakes! Aiee! There were many guarantees on the
web site of the place I bought the kit, and just about every page
of the lengthy instructions and other paperwork that came with the
kit assured the purchaser that no fitment problems would ever occur.
Right. I was completely flabergasted. Shannon kept his cool,
however, and prodded me to call some Audi dealerships, even looking
up the telephone numbers for me. The San Jose dealership, as well
as all the other relatively nearby ones were closed on Saturday.
This was all the more annoying because one of the reasons that my
friend Ken wasn’t involved was that he works for the nearby BMW
dealership in the service department and had to work on Saturday!
I eventually got an answer from the Burlingame Audi dealership, some 40 miles away.
No, they informed me, their service department wasn’t open. I asked
for the parts department, why, I’ll never know, and asked
them if they had any wheel spacers. They said, well, no, they
don’t, and besides they’re closed on Saturday too. But then they
said try this tuner shop down the street from them, they sometimes
work on Audis and who knows what they might have. Long story short,
I hit the odds of the lottery and yes, they did have the correct
wheel spacers (!), and they also turned out to have longer lug bolts
that would fit the new setup, as the stock bolts would be too short
with the spacer installed. Unbelievable luck, or the result of Shannon persistence? It turned out that
while I had cleverly ordered the BBK designed for the previous
generation S4 which had 17″ stock wheels and therefore a smaller and
lighter brake rotor, no one had ever tried to install that kit on the
current generation car which had 18″ stock wheels. The smaller rotor
package weighed significantly less than the larger one, but people
are so incorrectly obsessed with bigger-larger-bigger that I was the
first person to ever try this combination. The way the wheel spokes
eminate out from the center of the wheel, the huge calipers were just
a couple of millimeters too wide to fit. Just goes to show that
there’s always something, and it pays to be prepared as much as
possible.

Shannon was his usual unflagging gracious self and insisted on
driving me all the way to Burlingame and back in the Mini (the S4
sure as hell wasn’t going anywhere), helping immensly at the tuner
shop with advice and questions too. About $16 worth of gas burned
up in the Mini later (gas was still around $4/gallon in those days),
we were back at his garage, got the spacers installed, the wheels
on, and the brake pads bedded in (lots of smoke and smelliness).
By then the temperature had actually started to dip below easy-bake,
and I insisted on buying Shannon dinner, so we went and got some
gourmet pizza at his favorite pizza place.

The best part about that day (and night) was getting to hear the
stories about Shannon and his dad going kart racing when he was a
kid, and Shannon passing on to me all the mechanics advice his dad
had endowed him with over the years. That, and, oh yeah, now I had
new brakes on the wagon that actually worked and didn’t scare the
crap out of me.

I was very jealous of how well Shannon kept his garage so organized,
clean, and functionally useful. My garage should be exactly like
his, but I just watch too much TV I guess. I kept thinking to
myself that I was not a good person, for I did not have a stocked
sink in my garage where hands could be washed and dried before
coming into the house; fluids, tools, parts, rags, grease, oil,
sprays, cleaners … all so well laid out and quickly accessible
for any project. But Shannon had a gift and a desire to make you
feel like his garage was your garage, so then there was no need to
spend your time doing what he had already done. He actually had a
knack for making you feel good about borrowing his garage!

It was truly a man’s garage.

Godspeed Shannon Criss

Shannon

Well, perhaps necessity is the mother of invention, or at least a strong motivator. I think the death of my close friend, Shannon Criss, on June 5th, 2010, was a strong motivator in propelling me to finally get WordPress installed and start a blog, something I’ve been meaning to do for many years. So, for that and for countless other blessed things, I wish you Godspeed, Shannon.

Joseph Shannon Criss was the name he was born with, sometime back in the mid-fifties. I knew him for 15 years, give or take, and I only found out about the Joseph part 3 weeks ago, when he had to present an I.D. that matched the name on his credit card at a hotel in Red Bluff, CA. He, myself, and five other riding brothers had made the trip up to Red Bluff, about an hour north of Sacramento, from various parts of the Bay Area in the middle of May with our motorcycles to spend the weekend riding around the stunningly beautiful roads that run roughly between Red Bluff and Eureka, on the coast. Being old men who don’t need to prove anything (anymore!), we trucked our bikes to Red Bluff and based our operations out of the hotel there.

Shannon, Ken, Tony and Mojo in the back

Because Shannon rode with me in my truck, our motorcycles trailer-mounted behind us, I got to talk to Shannon non-stop for a combined time of probably more than six hours. Shannon and I both tremendously enjoy philosophizing and personal introspection, so it was a fun trip, never mind the two days of world class riding with the best friends that can only be found through a deep common bond of motorcycling.

I thank God, whose existence I have my doubts about, especially now, for those hours with Shannon. Only three weeks later, he has been taken from us, and it doesn’t actually seem possible that he is no longer here. A world without Shannon? We might as well all be floating, deaf and blind, in space. Maybe we actually are.

Riding just won’t ever be the same without Shannon. Watching him wheel around his lovingly hand crafted Triumph Speed Triple, including the occasional wheelie or three ~:^) was always a beautiful sight. But much more than that, really. It was always a comforting sight. Because you always knew that Shannon was in control. So many zillions of miles under his seat. So many blistering laps on the track back in the day. Any of us could fall, but we were all too old to take big chances that might result in something terrible happening. Something terrible like what happened three days ago.

The beloved Speed Triple. Dig that carbon silencer.

Shannon was a big fan of the Ilse of Man TT. It’s fitting then that his first name was Joseph: one of his favorite riders was Joey Dunlop, one of the greatest Ilse of Man champions, ever. Shannon’s helmet and license plate were a tribute to Joey. He also had a license plate holder that was a reference to a trip he made to the Ilse with his nephew, Kelly. The license plate holder says “Cronk-Y-Voddy”, the meaning of which perhaps I’ll blog about another day. I was cheeky enough to talk him into giving me one of these license plate holders about eight months ago and it’s been proudly holding my license plate of my KTM 950 SM ever since. I tried to pay him for it several times, but he just said that he was happy to have another convert. Perhaps it is only fitting then that Shannon would go out doing what he loved, the same way one of his most cherished heroes did: Joey Dunlop lost his life racing in Estonia in the summer of 2000.

Ilse of Man Pride

I have second hand that Shannon’s friend and fellow riding family member Rene was with him when he faded out. Although this must have been impossibly hard on Rene, when I heard this, it was like the 500 lb. gorilla that’s been sitting on my chest since yesterday just lost 100 lbs. I’m also told that he was conscious and talking to Rene for a few minutes. I’m not even sure why, but it seems to give me some small measure of relief to know that he had a friend with him at the end. When you think about it, none of us can really hope for much more than that.

Yesterday, I tried to help relieve my confusion by writing a eulogy for Shannon. I’m not sure I’m ready to post it yet, but maybe in a few days. This may be my first blog entry about Shannon, but it won’t be the last.

Cronk-Y-Voddy Shannon, Cronk-Y-Voddy!