(Sorry, this is going to be a bit long - well that's an unusual mail)
I've been wondering whether I should explain all the details of why I'll
have to leave FRECP11 in a few days or not. I decided to do it, because I
would anyway be overwhelmed with questions if I did not, and also because
it may provide some entertainment to the reader (well it's probably very
funny when you're not the one involved :-) ).
It all started with the installation of RSCSV2. Since we are going to
install VTAM, we had to install RSCSV2 too. When the RSCSV2 tapes
arrived, I realized that the sources tape, which my boss said she had
ordered, was missing. I called our IBM commercial rep, and she said "What
do you need sources for? The code can function perfectly without sources,
it is already compiled as it is sent to you", etc. Well I don't need any
lecture from a commercial <expletive deleted> about what "source files"
means and how the code may run without them, and said I darned well knew
what sources are and needed them to put security mods into the thing,
period. She said it had become quite difficult to get RSCS sources
recently, and there would be a delay. There was nothing I could do so I
said okay, we'll do with the delay.
3 months later, the sources still had not arrived. I called back and got
told there had been unexpected delays. I replied that this would just
mean unexpected delays in the installation of RSCSV2, and hence in the
installation of VTAM and subsequent payment of the license fee. My gosh
why do we need commercial reps besides the "technical" ones?
One week later (still no sources), an operator told me that he had
overheard a conversation between the computing center's administrative
director (henceforth referred to as 'my boss') and our commercial rep.
She said that, from what she had understood, the IBMess was trying to
convince my boss than mod are Evil and that OCO is Good and she should
not let evil sysprogs tamper with the Pristine and Perfect IBM sources.
My boss was worried about the security aspect, but the IBMess was
confident that this had been solved in the last release and mods were no
longer needed. My boss always believes any technical statement made by
IBM, as though it were written down in the Holy Bible.
This ended up in an official interview between my boss, my colleague
sysprog (who is the official Head of the Systems Group - note that she is
also the one and only member of the systems group so this is a purely
honorific title meant to compensate the fact that there are 4 other
persons in her tiny office and she has to share her phone line with 6
others), my boss and IBM. Funny as it may seem, the commercial rep was no
longer confident that RSCSV2 was free of security holes, and the
technical rep even acknowledged the existence of these problems. Still,
they were advocating OCO and the removal of all mods from the system. I
started fighting their arguments, and finally decided to forget it since
I'm leaving this place in 10 weeks anyway - after all it's their problem.
Their main argument was that my colleague would never be able to maintain
them and port them to RSCSV2 (which is perfectly true - when she was
hired, she had never used a VM system and she has been given no training
whatsoever; she also had 6 (now 7) computers from 4 different vendors to
maintain, and has little time for anything but user support). I offered
to port them to RSCSV2 myself before leaving, but this was seen as not
being any solution to the problem. I said of course, the actual problem
is you don't want to give her the training that she needs (eg assembler
courses, or courses on CP/CMS internals). The reply was that she didn't
know any of this training, and assembler is a useless language that
nobody ever needs any more nowadays - in 5 years, you won't ever need any
qualification to be a sysprog (besides reading, writing and arithmetics).
Our commercial rep then came up with the notion that I should write a
complete technical documentation about the mods before I leave, so that
my colleague could maintain them. This is stupid of course - how can you
expect to have someone translate english into chinese if he doesn't have
the slightest notion of chinese, even with the best available dictionary?
The commercial rep, remembering her flattery lessons (IBM confidential),
said she was confident I could write a document empowering my colleague
to port the mods to V2 herself. Well considering that I'm being paid
FF0.00/month, I don't see why I should do any boring work for them,
especially if this work is going to be completely useless - they should
be glad I keep the system running at all. My boss then became extremely
angry, saying that I wasn't billed the ($100 - that's one hundred not one
thousand) CPU time I swallow up every month and that there should
therefore be no reason to give me any money for my service. I don't know
how I managed not to shatter the windows in a shout of anger at the
mention that the service I provided was esteemed to be worth $100 a
month. I simply said I wouldn't write any such document unless they gave
the required training to my colleague (so she could use it), and a decent
amount of money to me. I also mentioned that my mods have been installed
on several other EARN/BITNET nodes, and that nobody complained about the
lack of documentation nor had any problem adapting the mod to fit their
local ones - in other words, a competent sysprogs doesn't need any
'technical document' besides the comments in the PTF file and the
description of what it does, which is already available.
My boss was extremely vexed and went to see the Higher Management, so
that they would 'punish' me (note - that's my impression, she didn't say
anything about it and would certainly pretend to be vexed if she saw that
:-) ). The net result was that she got herself into an extremely bad
situation, and is probably going to incur a blame from the Head Director
himself. She was accused of having allowed a student from another school
play an important role in the maintenance of the system. Students are, by
definition, untrustworthy, incompetent (with the only exception of the
students of the School, which are of course competent), unexperienced,
and write very poor code/research papers/whatever. This is funny because
the same Higher Management had refused to give my boss another sysprog
when the one that was there when I first came to FRECP11 left. That is,
there was ZERO sysprog in the school and nobody looked after the system
(except me). Nobody could create accounts, nobody could do anything if by
some act of God the system suddenly decided to go wrong. As the users
used to say in that time, "They have hired someone to go to the church
every day and burn candles instead, praying that nothing bad will happen
to the system" :-) The second blame that was laid on my boss is that she
had allowed the same student to write code that the official sysprog is
not able to maintain. This strikes me as even more funny since the code
was written when the sysprog was the person before the person before the
current sysprog (as you can see, people don't remain in this shop for
very long - I've seen 3 generations of sysprogs in less than 3 years).
This one said he didn't have any problem with maintaining the code if I
left, although it would of course take him much more time than it would
take me. I guess my boss should have foreseen that he would leave, and
that her successor wouldn't remain much longer (well she had no VM
experience either anyway), and her successor's successor wouldn't be able
to maintain the code. The Higher Management also suggested that they
threw me out on the spot, destroying all my files. My boss replied that
this would certainly not solve the problem, and the Higher Management had
another opportunity to compete for a Guinness Book of Records entry in
its favourite chapter, "Incompetence": "Well, just ask the VFI /* a
student spending his mandatory 'army service' in the school in the
computing center */ to port the mods and write the technical description.
He may never have used a VM system before, but he does know how to use an
IBM PC so it shouldn't take him more than one week or two to get used to
the 4381 and start being productive". It would be funny if it weren't so
sad.
In any case, the Higher Management will discuss the problem with the Head
Director and come up with a decision by monday. There are three
possibilities:
1. Throw me out and destroy all my files, unconditionally. The VFI will
port the mods and write the documentation.
2. Give me some (ridiculous) amount of money in exchange for the Holy
Document, and perform step 1 or 3 if I refuse to abide. I would of
course be paid only when my colleague has managed to port the mods, so
that the quality of the Document may be ascertained. This obviously
means 'never' - well I'd really like to see someone port the VMH or
MULTICS5 mods to RSCSV2 without learning assembler :-)
3. Remove all the mods and all the production software I have written,
throw me out and destroy all my files.
The most likely is (2), then (3). Since I do not plan to accept (2), at
least not with the (previsional) condition that "you do it for (almost)
naught or we zap your account and files" (nice chaps uh?) it will
probably mean that my account won't last very long. I certainly don't
like being threatened of having my files zapped without being allowed to
get a copy (note that this is perfunctory since I already have a full
backup, but still). I certainly don't like being forced to do something
for people who have exploited me for 3 years and are obviously not
satisfied with the money this has already saved them. This simply isn't a
way for fair, civilized people to behave, considering that I have always
tried to be helpful, even when it meant more work for me - I had simply
refused to do something that would be intrinsically useless and had given
good reasons for that. Anyway I prefer to leave right now and leave them
neck-deep in the brown stuff - I was planning to explain to my colleague
how all the software I wrote works, give her recommendations on how to
maintain it, give her my phone number in case there is a serious problem,
etc. I haven't been able to do it yet since she's been in various
training courses for the last 2 weeks (funny - they do have money to give
her UNIX courses). Now I'm glad I haven't.
I feel that the attitude of the Higher Management towards my boss is
undeserved (not that I think the outcome is undeserved - the arguments
are). However, she certainly deserves a blame for the sheer lack of
intellect that she showed when she told me that my account would probably
have to be deleted next week with all files erased (she obviously wasn't
pleased at the notion), unless I accepted a set of conditions which she
probably knows I will never accept. She would have been in a lot of
trouble if I had been the vandal type. My boss, in her Infinite Wisdom,
had decided that all backup tapes, past, present and future, would be
stored in the same place, so we don't have to be searching in several
places when we need to find the last backup. This Holy Vault is a
paper-thin metal sheets cupboard with a pretense lock that a child of 10
could easily break open (I have the key anyway). It would be very easy
for me to mount the 20-30 tapes contained in this cupboard and destroy
them in such a way that they'd look exactly like an unreadable tape (I
prefer not to give details as I don't think this is needed). Furthermore,
my boss, her Overwhelming Wisdom helping, had also decided that backups
should be made on cheapo surplus tapes - we're not a rich site you see,
and there's an unthinkable bunch of backup tapes, over 20! The last 3
attempts at restoring something from a backup tape failed miserably with
an I/O error and the help of DDR's total lack of recovery routine (if the
start of the tape is unreadable, nothing past the scratch can be
restored). If they realized the backups were broken, they probably would
think it's because of the tapes, and they couldn't prove the tapes had
been intentionally damaged. I could then put a mod into CP that would
work for just a few hours on a given day, and would randomly change disk
read operations to writes and vice versa. This would destroy the present
contents of the disks in minutes (if activated during prime time), and
everybody would suspect a transient hardware error. In any case, the
present file store would be damaged beyond repair and backups would be
unreadable. All the work of the users community in the last 5 years would
be completely annihilated. I'm sure my boss would be fired on the spot if
this were to happen - it's utter foolishness to store all available
backup tapes in the same place, what would happen if there was a fire???
Anyway. I'll have more information about the Higher Management's decision
on monday. In any case, I'm confident that they won't remove my account
until monday 21st: the sysprog will be off all the week, and nobody else
has authority to change passwords, remove accounts, etc. My boss had once
requested that she be given the sysprog's password, but then she had
immediately rushed to the users' room to logon to it (note that she has
her own private terminal in her office, 20 seconds distant from the
users' room), and for some reason she "forgot" to logoff when she left
(anyway she has this "local echo" feature that causes her to echo to her
Vocal Subsystem anything that gets output on the Fingertips Facility, a
bit like a VT100 except that she doesn't have the echo suppression
facility for password prompts :-), so I'd be surprised if nobody had
overheard the password while she "typed" it). Well a group of hackers
burst into the system 6h after she had been given the password, stealing
files, printing notebooks of other users from the accounts of innocent
people, etc. She didn't dare to ask for the password again :-)
In any case, I'll be on ERIC@CEARN in 6 weeks of time (unless something
very unexpected happens). In the meanwhile, I'll be reachable via
OLIVIER@PASTEUR, and I'll try to get myself an account on another VM EARN
system in Paris. I'll set up LISTSERV to forward ERIC's mail to
ERIC@CEARN as soon as I am forced to leave. My main problem is precisely
[log in to unmask] They will most probably keep it up (well if they don't,
the 3812 programs will no longer work - LISTSERV performs the accounting
and creates header pages). They will most certainly NOT maintain it. I'm
trying to get rid of all the lists, but it's not that easy. The following
changes have already been made:
EARNSEC --> EARNSEC@CEARN
LCOORD-L --> LCOORD-L@CEARN
LSTSRV-M --> LSTSRV-M@CEARN
LIAISON --> Killed, recipients moved to another LIAISON list.
RSCSMODS --> Killed, recipients moved to another RSCSMODS list.
SCRIPT-L --> Killed, recipients moved to another SCRIPT-L list.
CHAT-L --> Killed, recipients moved to another CHAT-L list.
Note that POLYGRAF is down and I have been unable to update the
appropriate peers. I still have EARNTECH, LSTSRV-L and LINKFAIL to move,
and this is a big problem, especially for LINKFAIL which is the European
entry point (ie the one pointed to by BITNIC), and can't reasonably be
moved on the other side of the FRMOP22-CEARN line. There is only one
other LISTSERV in France (FRULM11), and I'm not sure they have a lot of
disk space and CPU time to spend on LISTSERV. I'll contact the FRULM11
NAD on monday anyway. I will also alter the link weights file to get all
the DISTRIBUTE traffic off FRECP11; whether it will be handled by FRULM11
or cast back on the international lines (meaning duplication of files on
the heavily loaded lines) depends solely upon the amount of CPU FRULM11
can donate to the network, and I will not try to force anything upon them
- 25 minutes a day is hard to swallow for an overloaded 4341. Note that
an omission on my part in the last version of LINKSWT FILE caused all
traffic to be sent to FRULM11 rather than FRECP11 if VERS8802 is not
installed. I will correct this on monday.
In any case, if something goes wrong with LISTSERV@FRECP11, don't panic,
I'll probably be able to do something. None of the people in the
computing center want me off (not even my boss), and they'd probably let
me come some day to make a change to LISTSERV if it really couldn't be
fixed remotely. Of course it wouldn't take me much more than 10 minutes
to get into the system from a vanilla account, now that all the security
mods have been tripped (vanilla IBM sure is nice for hackers), but I'd
rather not do that - it's their CPU after all, not mine (well I would
sure enjoy having a 9370 at home, but unfortunately I'm not rich
enough... :-) ).
Eric
|