Michael Kimsal’s weblog

Web development and new media observations

Dear consultant

November 3rd, 2011 by mgkimsal 2 comments »

Random emails from recruiters we don’t know – we’ve all gotten them at one point or another, but does anyone ever respond to these?

I just got this email. Names removed to protect… why am I protecting them? Nah – names aren’t that important.

Dear Consultant,
This is an excellent opportunity to join a winning team. Take your career to the next level and turn your interest into action. Apply Now! The only way to learn more is by taking the next step.

Job Title : PHP/ MYSQL Developer
Location : Washington DC
Duration : 6+ Months
Rate : $45/Hr on C2C

Process: Goal is a phone screen followed by a 16 hour guarantee

You had me at “dear consultant”. I have a feeling that $45/hr in DC isn’t really all that hot of a rate. They don’t seem to do any filtering at all – this certainly isn’t taking my career to any level I haven’t already been at.

Role: The new CTO inherited a Content Management System that is one of the products they sell. He has his team focused on enhancement and new architecture, but he needs someone to come in and fix/ troubleshoot the bugs of the old system.

So… they’ve got a mess on their hands, and the “CTO” needs a digital janitor. For $45/hour. Even though the existing team probably actually understands the current product/system/business much more than a green outsider would… somehow there’s enough of a need to fix bugs, and spending money on someone to ramp up from ground zero to learn the business and fix bugs is a better use of time than having the current people (who, let’s face it, probably *wrote* the damn bugs in the first place) fix the code.

Skills needed:

PHP/MySQL

Heavy troubleshooting/ de-bugging

Shell Scripting

Expression Engine v 1

http://expressionengine.com/

He really wants this because it is what it is built on

Sounds as good a reason as any, right?

This person needs to be able to work independently. Clearly this is not the most exciting work, but they have the ability to join a really cool team and do cool stuff if they do well.

So… they know it’s crap work, and if I agree to do a bunch of crap work, I may be able to join a really cool team (apparently too cool to maintain their own crap code). And if you do crap stuff well, apparently you’re good enough to do ‘cool’ stuff in the future (and then pass off your own crap code to another newbie 6 months from now).

Really – does ANYONE ever respond to these random recruiter emails?

UPDATE – I just got the same email from someone at a different company, except they didn’t have the editorial about “we know it’s not exciting work”. As corny as that was, it was actually a small spark of real humanity coming through.

I also know the job market is really hot for IT, and remember the dark days of 7-8 years ago when things were tougher. These same emails probably worked far more effectively than they do today, but they must still work *some* otherwise they wouldn’t be sent out like this, right?

Share and Enjoy:

2 comments »

Posted in Job, Web

indieconf promo – what’s is all about?

October 8th, 2011 by mgkimsal No comments »

Best shot and condensing this down to 30 seconds…

Share and Enjoy:

No comments »

Posted in Conferences

indieconf – conference for web freelancers – november 19

October 7th, 2011 by mgkimsal No comments »

indieconf – the conference for independent web professionals – is fast approaching. This year indieconf is on Saturday, November 19, in Raleigh, NC, and it will be a full day of learning from and networking with other freelance and independent web people. Designers, developers and everyone in between are welcome to join us!

This year sees some new speakers joining us – Michael Marshall, Laura Creekmore, Pepper Oldziey just to name a few, and some of our friends from year one are back for year two, including Patrick O’Keefe, Doug Foster, Neil Tortorella and many more.

We’ve got a couple more surprises to the schedule which aren’t announced yet, but don’t let that stop you from registering now.

So… what is indieconf? Some of you readers from last year may remember, but for those of you who don’t, here’s the quick backstory.

I’ve been a freelance web guy for the past 4 years, and I love tech conferences. However, I got discouraged after going to some great conferences, but realizing that most of the info there didn’t really help me all that much. Learning about new tech was great fun, but what I really needed was to understand how to write up better contracts, land better clients, deal with collections, and so on. Now, there’s a lot of business networking groups that help deal with many of these issues, but most of those people there aren’t web people – they don’t know javascript from java – and I just never felt like I was making the most of those events.

From that frustration, indieconf was born as a conference that brings together web freelancers (programmers, designer, writers, etc.) who primarily work on the web ( you know who you are!) together with experts in legal, financial, accounting, marketing and business who *also* understood the web and worked with freelancers. The combination last year was pretty good, and this year we’re looking to make it even better, based on learning from your feedback.

What are you waiting for? Register today or learn more at indieconf.com.

Share and Enjoy:

No comments »

Posted in Conferences, PHP, Web

Help! My mysql queries aren’t updating!

September 8th, 2011 by mgkimsal 3 comments »

I just hit a snag the other day which took me a bit to work through, and thought I’d share it here. It wasn’t overly complex, but a bit of a bugger to track down. I’d taken over maintenance of the system, so hadn’t set it up myself, so had to do a bit of archaeology to find the root cause.

The symptom was quite simple – updates to some tables were not working. The report was “I can’t update anything”. At first blush it looked like any update or insert wasn’t working, but I wasn’t sure. The reports had come from someone using a Drupal front end. When I finally got in to the system, I tried to update a table, and got an error back from the CLI client – ERROR 1449. Something like “there is no user ‘root@foobar’ defined”. Well, the foobar was the name of an earlier server the database was on – it had been moved to a new home about a month earlier – coincidentally, right when the update problems started.

My first thought was that table level permissions were preventing these user connections from update-ing – but checking the UPDATE/INSERT/DELETE privileges in the tables_priv table showed they were already allowed those privileges. This went a bit deeper than that.

It took be a bit more digging, but I finally twigged that there were triggers attached to certain tables that ran on update/insert/deletions to those tables. The triggers were written with a ‘definer’ of ‘root@foobar’. The ‘definer’ is the user under which the trigger will run when the conditions are met (the ‘security context’, if you will – and I know you will!). Because ‘root@foobar’ didn’t exist as a user account on the new server, the triggers weren’t running and the queries triggering the triggers were also failing. Quite a domino effect, and at first glance hard to track down.

This would have been easier had I been the one to actually create this whole database, but I wasn’t. I’m just taking over maintenance. So I got a bit of a trial by fire yesterday making this work on a live server ASAP, but managed to get through it.

The final solution in this case? I created the ‘root@foobar’ account and granted all privileges – this was/is not the best solution, and I’m going to go back and trace through all the triggers to determine what privileges are needed on what tables, and adjust accordingly. Additionally, another approach would be to drop the triggers and recreate them, but there’s no good way to do that other than ‘by hand’ (at least, that’s the only way I saw – perhaps some external tools help with this?). It looks like there were a couple dozen to deal with, so my ‘quick’ fix was much faster.

This is as much for my own sanity and future reference as for anyone else’s benefit, but I hope this saves *someone* in a similar situation a bit of time in the future

Share and Enjoy:

3 comments »

Posted in MySQL

Postal service musings

September 7th, 2011 by mgkimsal 2 comments »

The latest big deal in the US is that our postal service is losing money hand over fist, and may have to scale back or shut down. I don’t suspect shutting down forever will feasibly happen, but we’ll probably see a scaling back.

Email and internet are being blamed for much of the demise of the post office, and there’s a lot to be said about that angle. Yes, we send fewer items now than years ago, largely due to electronic stuff – invoices, contracts, billpay are all often done by the web or email.

And rural post offices are being singled out as largely unprofitable, losing the most money. And it makes some sense – small populations set far apart from each other, rising fuel costs, fewer people paying in to send mail, etc.

How to fix this?

Charge for receiving mail. Perhaps just in rural areas. People will quibble about what’s ‘rural’, and they’ll argue over price. I’ll throw this out to start with $29/year for home delivery of mail. In our area, this might not entirely cover the shortfall, but I’m sure it would go a long way towards helping out.

“But but but… that’s wrong!”. Well… it’s not really. We’ve already conditioned ourselves to pay for email, but for some reason we think we shouldn’t have to pay for USPS.

To send email, I have to have an account. True, some people get away with free webmail accounts at libraries and whatnot, but the overwhelming majority of people taking advantage of electronic billpay, invoices through email, etc – they’re all paying for an internet account. Often multiple times – many people have data plans on phones, home internet, and their employer pays for it at work. Internet providers are making a true killing at this, effectively offering almost ‘unlimited’ correspondence transmission, while the USPS struggles with ‘pay per stamp’ pricing.

I’m not suggesting we all pay a flat rate to mail stuff, but consider this. Someone drives bits of paper to my house every day – for free (yes, the sender paid something, but as we see, the USPS is losing money on this). I get home delivery for *free*. Now… if I want some privacy, I can *pay* for that same mail to stay in a PO box which I’d visit at my convenience. So… *pay money* to have the mail sit at a post office, or *drive* it to my house for free. Does that make much sense?

Charge me $29/year for home delivery – think of it as USPS “Prime” (ala Amazon), and keep my mail at a local PO box for free, but clear it out every 3 days.

This would change the economics in a hurry – many people wouldn’t opt for the home delivery, and they’d miss out on a lot of junk mail. Junk mailers may stop sending as much junk. The junk mail does help subsidize the USPS, but some of that would be offset by income from people paying for the home delivery.

I understand many smaller offices wouldn’t be able to provide boxes for everyone right away – it may have to be manual labor at the front desk for now – show your ID, get your mail. This would encourage people to get home delivery.

It’s not perfect – maybe a little crazy, even – but I’d like to see people coming up with better solutions to this. Certainly people don’t have a problem paying for delivery of stuff to their home – Fedex/UPS manage it – but I do think it’s high time we look at charging for rural mail delivery (perhaps all mail delivery at some point). If it cuts down junk mail, keeps service people on the road, and reduces losses (or helps make a profit) – what’s the downside? I’m sure there’s some, but I can’t think of any right now.

Share and Enjoy:

2 comments »

Posted in Business, Society

ncdevcon – coming to raleigh

August 16th, 2011 by mgkimsal No comments »

ncdevcon is a great conference for web and mobile developers, and will be in Raleigh Sept 17 and 18. I was originally slated to be speaking there, but I’ve got some travel that’s got in the way, so I won’t be speaking.

I’ve gone the last 2 years, and it’s a great conference. The value for the $60 registration as a 2 day conference is really phenomenal (still wondering how they manage to pull that off!).

Visit the site and register today – you won’t be disappointed!

Share and Enjoy:

No comments »

Posted in Uncategorized

virus scanning as a service – looking for feedback

June 19th, 2011 by mgkimsal 8 comments »

I’m looking for feedback on a project idea. This grew out of a project I did last year that involved a lot of user file uploads that are then downloadable by others. Virus scanning needed to be part of the process, but I couldn’t find a good service out that that offered this. I did find one, but they explicitly forbid commercial use of the service, which somewhat took it of the table.

So.. feedback please. Have you ever needed a service like this? Did you just roll your own, or perhaps just went without?

Share and Enjoy:

8 comments »

Posted in Business, Development, Software, Web

mind blowing security practice

June 7th, 2011 by mgkimsal 10 comments »

Yeah, you read that right.

Kids, don’t try this sort of security in your own web apps. This is reserved for high-end financial institutions only.

Share and Enjoy:

10 comments »

Posted in Business, Web

indieconf 2011 call for presenters

June 4th, 2011 by mgkimsal No comments »

Our indieconf 2011 call for presenters is open.

indieconf is the conference for independent web professionals – whether you’re a developer, designer or someone in between, if you’re an independent freelancer or small agency, indieconf is for you.

What are we looking for? Topics of direct or indirect interest to web freelancers – mobile development, server side tech, client side tech, workflow issues, client management topics, financial issues, legal issues, marketing, SEO and more!

indieconf will be held in Raleigh, NC on November 19, and we’ve got an early bird special of $99/ticket going on right now – get your ticket today!

Share and Enjoy:

No comments »

Posted in Business, Conferences, Development, indieconf, PHP, Web

When Google controls the internet…

April 11th, 2011 by mgkimsal No comments »

I’m not a google fanboy (although I do use a lot of gmail and picasa some) – I’m also more than a bit wary about the amount of info they control and manage about me and others. That said, I was reading up on SPDY this morning, and a curious thought struck me.

For those of you old enough to remember the late 90s and the ‘browser wars’, IE was becoming the dominant browser. I remember hearing a rumor that IE was given preferential treatment with IIS servers – meaning that if you used IE against an IIS server, you’d have a faster experience, and that connections from Netscape and others were intentionally throttled down. Again, just a rumor, and not one I could ever confirm. Even if it was *true*, in hindsight, my guess is that it probably wouldn’t have been intentional. Or, to whatever extent it was intentional, it would be from lack of testing (or caring about testing) against non IE browsers. That may be wishful rose-colored thinking on my part, but it’s all in the past now.

Google’s Chrome has been on an upswing the past year or so. It became my default browser for about a year, although I’m using Firefox 4 more often these days. Google’s been experimenting with SPDY – a new protocol intended to augment HTTP. That’s the benign pronouncement – it wouldn’t surprise me if they really would like it to supplant HTTP altogether, but I suspect that won’t ever happen 100%. The SPDY spec has a number of interesting improvements -

X-header ‘hints’ to tell the client other related resources (to avoid having to parse the entire document first)
HTTP Header compression – I think I tweeted this some time ago, but this thought hit me last year. Many HTTP header calls are moderately big, and many pages have dozens or hundreds of these. SPDY reduces HTTP headers by ~80%, which can make for a marked improvement on many larger pages.
Request prioritization – allows the client to indicate which resources should be loaded first

and many more. (See the link above for more info).

The interesting thing to me was the difference between when MS owned the client and server experience (for sites that mattered to me) and now that Google does (for sites that matter to me). MS seemed to go for more lock-in – pushing ActiveX as a browser technology, pushing IIS as the server of choice, etc. Google, on the other hand, investigates, tests, and promotes new technology to reduce load times and HTTP overhead for the whole internet.

Granted, right now, the only company using SPDY is Google, but they’ve published their protocol and research, and I wouldn’t be surprised to see some mainstream webservers support SPDY in the next year or so. If Firefox and/or Safari also support SPDY, we’ll see some radical speed changes which will benefit the entire internet in the form of faster sites. In MS’ favor, I will point out that the beginnings of what became AJAX originated in IE5, and AJAX has been a game changer for the web industry certainly. It’s just a bit sad that it seemed to happen in spite of MS rather than them proactively promoting an IE tech as a cross-platform solution.

One wonders if MS would even be able to pull off something like SPDY today. 10 years ago they *could* have, but didn’t seem to have the foresight or inclination to do so.

A bit about me