Terence Eden’s BlogRegular nonsense about tech and its effects 🙃2026-04-22T14:31:32Zhttps://shkspr.mobi/blog/feed/atom/WordPresshttps://shkspr.mobi/blog/wp-content/uploads/2023/07/cropped-avatar-32x32.jpeg@edenthttps://edent.tel/<![CDATA[Sneaky spam in conversational replies to blog posts]]>https://shkspr.mobi/blog/?p=705282026-04-22T14:31:32Z2026-04-23T11:34:48ZI'm grateful that my blog posts attract lots of engaged, funny, and challenging comments. But any popular post also attracts spammers. I use Antispam Bee to automatically eradicate a couple of hundred crappy comments per day.
Nevertheless, some get through. Here's a particularly pernicious one - it appeared as three comments ostensibly in reply to each other.
At first glance these look like normal comments. They each address the content of the blog post albeit somewhat superficially. The first comment looks like it was from a social media post sharing my link - I get a lot of those as pingbacks, so it initially didn't trigger any suspicions from me.
The second is ostensibly a reply to the first and continues the conversation. Again, a bit shallow, but seems to be engaging in good faith.
The third looks like yet another reply. They all have unique email addresses, none of them have set their username to anything overly odd, and none of the users have filled out their URl.
But notice, in the second one, there's a link to a dodgy casino! There's no https:// so it didn't jump out as a link.
All three came from the same IP address in the Philippines, so easy to block for now.
Each reply is spaced exactly 3 minutes apart which, in retrospect, looks a little odd.
Re-reading them carefully, they all look like AI slop. A plausible sounding summary, written in a casual style, but with very little semantic content. Seeing them as replies to each other primed me to think they were genuine because I'm used to spam coming in individual replies. Having the spam in the middle comment made it easy to glaze over.
Remember, there are no technological solutions to social problems. Sticking more and more barriers in the way of commenting only discourages genuine replies while the profit motive incentivises spammers to work around them.
]]>8@edenthttps://edent.tel/<![CDATA[Better TTS on Linux]]>https://shkspr.mobi/blog/?p=684972026-03-27T16:10:05Z2026-04-21T11:34:07ZThe venerable eSpeak is a mainstay of Linux distributions. It is a clever Text-To-Speech (TTS) program which will read aloud the written word using a phenomenally wide variety of languages and accents.
The only problem is that it sounds robotic. It has the same vocal fidelity as a 1980s Speak 'n' Spell toy. Monotonous, clipped, and painful to listen to. For some people, this is a feature, not a bug. I have blind friends who are so used to eSpeak that they can crank it up to hundreds of words per minute and navigate through complex documents with ease.
For the rest of us, it is a steep and unpleasant learning curve.
There are lots of modern TTS programs using all sorts of advanced AI. Many of them are paywalled or require you to post your text to a webserver - with all the privacy and latency problems that causes. Some are restricted to high-powered GPUs or other expensive equipment.
Piper is different. It is local first, runs quickly on modest hardware, and is open source.
The easiest way to install it on Linux is to use Pied - a simple GUI which allows you to select languages, listen to accents, and then install them.
It will change your speech-dispatcher to use the new Piper voice. That means it is immediately available to your Linux DE's accessibility service and to apps like Firefox.
]]>2@edenthttps://edent.tel/<![CDATA[Book Review: Up - A scientist's guide to the magic above us by Dr Lucy Rogers ★★★★★]]>https://shkspr.mobi/blog/?p=705132026-04-20T10:48:03Z2026-04-20T11:34:38Z
My mate Dr Lucy Rogers has written a book! This is a charming and thought provoking exploration of everything that goes on above our heads. This isn't an impersonal and imperious manuscript, it's a deeply personal and joyful book filled with science, anecdotes, and the thrill of discovery.
It's spectacularly accessible. Written in a relaxed and casual tone, it encourages domestic science. I don't mean bakery, I mean the sorts of observations you can do at home without access to a multi-million pound laboratory. The afterword of the book contains dozens of resources for people who want to get involved in science. Dr Rogers eloquently makes the case that you don't need to dedicate yourself full time - it's perfectly acceptable to engage with it on your own terms.
What I liked most about it was that she gets her hands dirty. It would have been easy to write a literature review from the comfort of a safe and dry office. Instead we get a travelogue of all the places she's been - each trek through the forest, every laboratory, and all the foreign festivals are brilliantly recounted. It's a proper adventure from America's tornado alley down to the Vatican Archives.
I find it remarkable how slow some modern science is. As she points out, "there have been only eight transits of Venus since the telescope was invented" - our knowledge rests on the shoulders of giants, but they can be slow, lumbering beasts.
If, like me, you only have a hazy memory of the science you learned at school, this book will top up your knowledge (and vocabulary). It will reignite your passion and curiosity about the world around you - and make you want to buy a round the world ticket to chase solar eclipses!
]]>0@edenthttps://edent.tel/<![CDATA[Reprojecting Dual Fisheye Videos to Equirectangular (LG 360)]]>https://shkspr.mobi/blog/?p=670872026-03-09T11:04:45Z2026-04-19T11:34:32ZI still use my obsolete LG 360 Camera. When copying MP4 videos from its SD card, they come out in "Dual Fisheye" format - which looks like this:
VLC and YouTube will only play "Equirectangular" videos in spherical mode. So, how to convert a dual fisheye to equirectangualr?
The first part of the video filter is v360=input=dfisheye:output=equirect - that just says to use the 360 filter on an input which is dual fisheye and then output in equirectangular.
The next part is :ih_fov=189:iv_fov=189 which says that the input video has a horizontal and vertical field of view of 189°. That's a weird number, right?
You'd kind of expect each lens to be 180°, right? Here's what happens if :ih_fov=180:iv_fov=180 is used:
The lenses overlaps a little bit. So using 180° means that certain portions are duplicated.
I think the lenses technically offer 200°, but the physical casing prevents all of that from being viewed. I got to the value of 189° by trial and error. Mostly error! Using :ih_fov=189:iv_fov=189 get this image which has less overlap:
It isn't perfect - but it preserves most of the image coherence.
There's another thing worth noticing - the top, right, bottom, and left "corners" of the circle are cut off. If the image sensor captured everything, the resultant fisheye would look something like this:
I tried repaging the video to include the gaps, but it didn't make any noticeable difference.
Sadly, ffmpeg will not write the metadata necessary to let playback devices know the video is spherical. Instead, according to Bino3D, you have to use exiftool like so:
The LG 360 records audio in 5.1 surround using AAC. That's already fairly well compressed, so there's no point squashing it down to Opus.
The default video codec is h264, but the picture is going to be reprojected, so quality is always going to take a bit of a hit. Pick whichever code you like to give the best balance of quality, file size, and encoding time.
That will produce a reasonable equirectangular file suitable for viewing in VLC or in VR.
If this has been useful to you, please stick a comment in the box!
]]>0@edenthttps://edent.tel/<![CDATA[Book Review: How To Kill A Witch - A Guide For The Patriarchy by Claire Mitchell and Zoe Venditozzi ★★★⯪☆]]>https://shkspr.mobi/blog/?p=703222026-04-11T08:42:00Z2026-04-17T11:34:26Z
After reading The Wicked of the Earth, I wanted to understand some of the history behind the stories. Why were women0 accused of being witches? What really happened in those trials? What are the modern consequences of those events?
This is the story of the Scottish Witch Trials - with brief forays into England and abroad. It examines the central tension of whether witchcraft was real to the accusers, or just a convenient means to oppress troublesome women. The descriptions of the imprisonment, torture, and state-sanctioned murder is visceral and horrific.
It's also rather stark in its modern assessment of the historic context:
Nonetheless, it’s important to remember it was a proper legal trial, with evidence being put forward and the judge assessing it and carrying out legal tests. Some people think that witchcraft trials were carried out by angry peasants waving pitchforks. Perhaps this is a more acceptable way for a modern person to think about it. No one wants to think that a judicial system can get it so wrong. But it did, with catastrophic consequences for those accused.
The book is mostly good, it's a spin off from the Witches Of Scotland podcast and that's reflected in the writing. As with any parasocial1 entertainment, it attempts to centre the authors and bring the audience along for the ride - so there's lots of descriptions of the libraries the authors visit, how things make them feel, how enamoured they are with their podcast guests. I found it a little distracting, but it's obviously right for their main audience.
Similarly, there's an attempt to bring the past to life by imagining a little monologue from various historic figures. I found that a little unconvincing; I dislike putting words in peoples' mouths. But with sparse primary documentation, that may be the best way to bring these characters to life. It's also well illustrated. Too many books eschew pictures - but this has a nice collection of woodcuts and portraits to contextualise what we're reading about.
One little nitpick, the book makes the claims:
Life was hard and life expectancy was around 35
and
Lilias was an old woman, at least 60 years old and possibly as old as 80. At a time when life expectancy was much lower than it is now, even the lower estimate was still a considerable age.
That's not quite right. Although the average life expectancy was low, that's the average at birth - with a large number of infant mortalities dragging down the average. When you look at the full data, you'll see people used to live long lives even in the distant past.
In a way, it reminds me of Invisible Women. A national tragedy hidden from view.
It builds to a rousing end. There are parts of the world where witchcraft is still taken seriously - with devastating consequences. The febrile atmosphere which led to unfounded accusations against women is still prevalent even in modern societies.
And a small number of men. But this is firmly focused on the overwhelming majority. ↩︎
]]>4@edenthttps://edent.tel/<![CDATA[Why is it so hard to passively stalk my friends' locations?]]>https://shkspr.mobi/blog/?p=681142026-03-27T16:09:46Z2026-04-15T11:34:45ZI feel terribly guilty when I visit a new city, post photos of my travels, only to have a friend say "Hey! Why didn't you let me know you were in my neck of the woods?"
Similarly, if I bump into an old acquaintance at a conference, we both tend to say "If only I'd known you were here, we could have had dinner together last night!"
I do enjoy the serendipity of events like FOSDEM - randomly seeing a mate and expressing the joy of spontaneity. But I also like arranging to meet up in advance.
At the moment, my strategy is sending a blast on social media saying "I'm visiting [this city] next week, anyone fancy a beer and a natter?" I've met friends all over Europe, Australia, and New Zealand that way. It mostly works. But I can't help feeling it is inefficient and prone to missing connections.
I even wrote my own code to auto-post FourSquare checkins to my other social media sites.
Here are my ideal scenarios. Imagine something built in to Signal / WhatsApp / Whatever app you already use.
I tell my app that I'm going to Barcelona from 14th - 19th February and am happy to meet any of my friends.
✨Background Magic✨
My friend Alice has also planned a trip to Barcelona around those dates. She gets a ping saying that one of her friends is going to be in the same city. Does she want to know more?
The above is very much the "happy path". It doesn't look at any of the knotty problems or grapple with the UI that would be needed to make this work. But we know the technology for sharing location is viable - so what are the social issues that make this so difficult?
Do you want your friends knowing your every movement? I'm sure some people do, but most probably don't. It's possible to sketch out some vague controls:
Only send a notification if I push this button.
Don't send alerts if I am within this radius of my home / work.
Fuzz my location to the city / state / country level.
Is it a risk to let people know vaguely where you are? Is meeting up with (semi-) strangers from the Internet a smart life choice? Is having an app stalk you across the globe giving too much data to advertisers?
Does that creep from work abuse the system to keep popping up whenever you're out with friends?
I said the technology exists for this, and that was sort of true. Every device has GPS & an Internet connection. Storing a log of friends and sending them a message is a solved problem.
But is it solved in a decentralised and privacy preserving way?
No one wants to give all this power to one company. Google will build it and kill it. Facebook will sell your secrets to dropshippers. A funky start-up will be acquhired by Apple & restricted to iOS devices.
My location is fuzzed to an acceptable degree of imprecision and then sent… where? To all my friends directly? To a central server? Can k-anonymity help?
Is this a separate app? Everyone seemed to leave FourSquare after they buggered around with it. Perhaps it is just a feature in existing apps?
Messaging apps like Signal, Telegram, and WhatsApp allow you to share your location with one or more friends.
To me, it feels a bit weird to manually send a dropped pin to some / all of my contact. It also doesn't let you share "tomorrow I will be in…"
Using "Stories" is the common way to share an update with all contacts - but none of them let you automatically share your location in a story.
FourSquare's Swarm app allows you to check in to a "neighbourhood". But there's no obvious way of saying "London" or "Manchester" - and I'm not sure how close to an area you need to be to get an alert that your friend is there.
I don't want to build this. Trying to get everyone I know to adopt a new app isn't going to happen. With the fragmentation of messaging and the lack of interoperability, this is likely to remain an unsolved problem for some time.
So here's my strategy.
Get back in to using FourSquare. Most of my friends seemed to stop using it back in 2017 when it was split into Swarm. But a few are still on there.
Manually post a story on Mastodon, BlueSky, Facebook, WhatsApp, Signal, and Telegram saying "Visiting Hamburg next week. Anyone want a beer?"
Hope that something better comes along.
]]>4@edenthttps://edent.tel/<![CDATA[Android now stops you sharing your location in photos]]>https://shkspr.mobi/blog/?p=701432026-04-06T14:28:44Z2026-04-13T11:34:48ZMy wife and I run OpenBenches. It's a niche little site which lets people share photos of memorial benches and their locations. Most modern phones embed a geolocation within the photo's metadata, so we use that information to put the photos on a map.
Google's Android has now broken that.
On the web, we used to use:
<input type="file" accept="image/jpeg">
That opened the phone's photo picker and let the use upload a geotagged photo. But a while ago Google deliberately broke that.
That opened the default file manager. This had the unfortunate side-effect of allowing the user to upload any file, rather than just photos. But it did allow the EXIF metadata through unmolested. Then Google broke that as well.
Using a "Progressive Web App" doesn't work either.
You can't even directly share via email without the location being stripped away.
Literally the only way to get a photo with geolocation intact is to plug in a USB cable, copy the photo to your computer, and then upload it via a desktop web browser?
Because Google run an anticompetitive monopoly on their dominant mobile operating system.
Privacy.
There's a worry that users don't know they're taking photos with geolocation enabled. If you post a cute picture of your kid / jewellery / pint then there's a risk that a ne’er-do-well could find your exact location.
Most social media services are sensible and strip the location automatically. If you try to send a geotagged photo to Facebook / Mastodon / BlueSky / WhatsApp / etc, they default to not showing the location. You can add it in manually if you want, but anyone downloading your photo won't see the geotag.
And, you know, I get it. Google doesn't want the headline "Stalkers found me, kidnapped my baby, and stole my wedding ring - how a little known Android feature puts you in danger!"
But it is just so tiresome that Google never consults their community. There was no advance notice of this change that I could find. Just a bunch of frustrated users in my inbox blaming me for breaking something.
I don't know what the answer is. Perhaps a pop up saying "This website wants to see the location of your photos. Yes / No / Always / Never"? People get tired of constant prompts and the wording will never be clear enough for most users.
It looks like the only option available will be to develop a native Android app (and an iOS one?!) with all the cost, effort, and admin that entails. Android apps have a special permission for accessing geolocation in images.
If anyone has a working way to let Android web-browsers access the full geolocation EXIF metadata of photos uploaded on the web, please drop a comment in the box.
]]>21@edenthttps://edent.tel/<![CDATA[Cheapest way to keep a UK mobile number using an eSIM]]>https://shkspr.mobi/blog/?p=691402026-03-30T07:48:52Z2026-04-11T11:34:38ZI have an old mobile phone number that I'd like to keep. I think it is registered with a bunch of services for 2FA by SMS, but I can't be sure. So I want to keep it for a couple of years just in case I need it to log on to something.
I don't want to faff around with physical SIMs, so I went looking for the cheapest way to keep my number for the longest time. There are a whole bunch of providers out there who will do low-cost monthly contracts (like Spusu), which I don't want. Similarly, there are some pure PAYG providers who require you to top-up with £10 every few months (like 1pmobile).
In the end, I went with Lyca Mobile (affiliate link). Total cost was £10 which should last indefinitely.
The process isn't particularly straightforward. Here's how it works:
First, add a PAYG SIM to your basket and select "eSIM"
Next, click the Bin icon (🗑) in the top right. You'll get this pop-up:
Select "Discard plan & add credit" - you'll return to this screen:
The minimum top-up is a tenner, so select that. From there, you can add details of your old number, its porting code, and when you want the port to take place. Then pay.
Done! You'll receive your eSIM instantly. Scan it with your phone and you'll be up and running. The phone number porting will take as long as it takes.
OK, but will Lyca let you keep a number indefinitely? Here's what they say:
Normally we will keep your number for 120 days if you do not use our service. However, you may also keep your Lycamobile number for up to 1 year without using our service. Just dial *139*9999# from your Lycamobile and follow the instructions on the screen. Please be aware that there will be a fixed annual fee of £15 which will be deducted from your balance.
Note, their chatbot says the fixed fee is a fiver. Like all half-baked AI systems, it is wrong.
So, what does "using" consist of? This is hard to find out! I think is any chargeable event. Based on their current PAYG pricing the cheapest options are:
Send an SMS for 23p
Use 1MB of data for 15p.
If I'm right, you could use 1MB of data every 120 days. That would deplete your credit in about 22 years. More than long enough for me!
There you have it, I'm pretty sure that's the cheapest way to keep a UK mobile number on an eSIM. You can keep it switched off for 119 days, flick it on, send a quick message, then shut it down again.
]]>10@edenthttps://edent.tel/<![CDATA[Book Review: Small Comfort by Ia Genberg ★★☆☆☆]]>https://shkspr.mobi/blog/?p=700172026-04-04T13:03:54Z2026-04-09T11:34:59Z I was left somewhat unconvinced by this book. I liked the concept - a series of interrelated stories all told in different styles.
Much like the film "Lola Rennt" there's a briefcase full of cash, a cast of morally ambiguous characters, and a meandering philosophical discussion about the nature of economic salvation.
It slams together the naïve and the cynical into a bunch of uneasy conversations.
I loved the slow-burn of the first story - the way it gradually revealed more and more about the characters. But throughout I was left wondering "where is this going?" The answer, disappointingly, was nowhere.
That's the heart of my problem with the book - it was compelling and frustrating in equal measure. The author herself states it best:
The reader needs something to hold on to. A glimmer of hope
It was stylish, there's no doubt about that. The texture of each story was gorgeous. The plotting was inventive and the morality interesting. I also enjoyed the bluntness of the social politics of economics. I just felt the whole was much less than the sum of its parts.
I read this as part of a new book club I'm attending. Thankfully, everyone else seemed to agree that it was a bit of a let down.
I'll admit, I was a little sceptical about returning to Avenue Q. I saw it on its original West End run back in… OH MY GOD I AM SO OLD! FUCK! Where did the time go?
It's always hard to know how much to update a show. Does it need constant reinvention to stay in the zeitgeist or can it be pickled forever as a classic?
"I wish I had taken more pictures" was something that utterly resonated with me about my university experience. Photos were a rare commodity back when film still cost a couple of quid to develop. Perhaps today's uni students will sing "I wish I had posted less on Instagram"?
The show has been sympathetically updated. Some of the references have been modernised, a transphobic joke given the boot, and the lyrics tweaked to sometimes devastating effect. The song "Everyone's A Little Bit Racist" seems to have the most changes - and all for the better.
Parts of the show are adapted for a UK audience. Barely anyone here knows who Gary Coleman was so his intro is changed (although I guess part of the metajoke is that we all watched foreign celebrities on Sesame Street when we were growing up - so what's one more obscure cultural reference?). In the American show, the Bad Idea Bears proffer Long Island Ice Teas - that was a bit tame for UK audiences, so in the original UK run they guzzled absinthe daiquiris - a change inexplicably reverted for this limited run.
As a piece of pure entertainment it is spectacular. The laughs are genuinely non-stop and the whole auditorium rose to give the performers a well-deserved ovation. It is a tender and beautiful show which shows off the power of live theatre.
The songs are still stuck in my head and the puppetry is still amazing. Absolutely hilarious, genuinely shocking in places, utterly filthy - an excellent night out.
I've written before about The art of the Pre-Show and Post-Show. With West End prices higher than ever, it is incumbent on theatres to make their shows a memorable and spectacular evening out. That can be as simple as a bit of set dressing in the foyer, or as extravagant as they can get away with.
The offering is pretty reasonable here. You can buy the T-shirt, hoodie, and commemorative socks at exorbitant prices. The souvenir programme is £8 and, while lush with photos, is pretty sparse. The original West End programme from the early 2000s had a pin-up calendar of Lucy The Slut, a bunch more funny photos, and fake autographs of the puppets.
There's a photo-booth for taking selfies, but it appeared to be broken.
It might been nice to have a few puppets placed around for people to take photos with.
One of the simplest things a venue can do is put on a themed cocktail menu. I'm surprised more shows don't do that. Who is going to turn down a glass of "The Internet Is For Pornstar Martini"?
The Shaftesbury Theatre itself isn't too cramped, even in the cheap seats. Although, at the back of the stalls, the overhang cuts off the top of the set which means you will miss a bit of action in some scenes.
While we were waiting for the show to start, the auditorium was filled with soundscape of subway cars rattling and distorted announcements. Again, fairly cheap and simple, but a nice way to build the mood.
As we exited, we were handed leaflets encouraging us to come back and bring our friends. Even better was the £10 discount on our next booking!
Considering this is a limited run, the production has done a fair job of getting the audience in the mood and rewarding them for their patronage.
Well done to all involved!
]]>0@edenthttps://edent.tel/<![CDATA[Did WordPress VIP leak my phone number?]]>https://shkspr.mobi/blog/?p=698042026-04-06T14:55:30Z2026-04-07T11:34:43ZAs discussed in my last blog post, the scumsuckers at Apollo.io have been giving out my personal details.
Not only did they have my email address, they also had a copy of one of my phone numbers. I asked them where they got it from and they said:
Your phone number came from Parsely, Inc (wpvip.com) one of our customers who participates in our customer contributor network by sharing their business contacts with the Apollo platform.
I've never done any business with Parsely. They have no reason to have my phone number and absolutely no permission to share it with other organisations.
I took advantage of WordPress VIP's GDPR policy and sent a terse but polite "Hey, WTAF?" to them. Their response was quick:
Thanks for reaching out. We are currently investigating our systems to locate any personal data regarding your request. We appreciate your patience.
After a bit of prodding, they eventually replied with:
It appears that we obtained your contact information as a result of a meeting you had with a representative for the WPScan service around August 5, 2022. WPScan is owned by our parent company Automattic.
We have no record of Parsely, Inc. (which is no longer in existence) or WPVIP Inc. (the owner of the Parse.ly service) having any relationship with Apollo.io.
We also have no record of Parsely, Inc. or WPVIP Inc. having sold or otherwise provided your information to any third party.
I have no memory and no record of meeting anyone from WPScan - although I concede it is possible I did as part of a previous job.
But even if it was in an email signature when I contacted them that still doesn't explain how it made its way to Apollo for them to give to spammers everywhere. Was it a hack? A data leak? A treacherous employee? A deliberate sale? A sneaky app update? Or maybe just Apollo lying to me.
I don't care any more. I'm just so tired of shitty companies treating personal data as a commodity to be traded, sold, repackaged, and abused.
]]>1@edenthttps://edent.tel/<![CDATA[Someone at BrowserStack is Leaking Users' Email Address]]>https://shkspr.mobi/blog/?p=686652026-03-27T16:09:35Z2026-04-05T11:34:03ZLike all good nerds, I generate a unique email address for every service I sign up to. This has several advantages - it allows me to see if a message is legitimately from a service, if a service is hacked the hackers can't go credential stuffing, and I instantly know who leaked my address.
A few weeks ago I signed up for BrowserStack as I wanted to join their Open Source programme. I had a few emails back-and-forth with their support team and finally got set up.
A couple of days later I received an email to that email address from someone other than BrowserStack. After a brief discussion, the emailer told me they got my details from Apollo.io.
Naturally, I reached out to Apollo to ask them where they got my details from.
They replied:
Your email address was derived using our proprietary algorithm that leverages publicly accessible information combined with typical corporate email structures (e.g., firstname.lastname@companydomain.com).
Wow! A proprietary algorithm, eh? I wonder how much AI it takes to work out "firstname.lastname"????
Obviously, their response was inaccurate. There's no way their magical if-else statement could have derived the specific email I'd used with BrowserStack. I called them out on their bullshit and they replied with:
Your email address came from BrowserStack (browserstack.com) one of our customers who participates in our customer contributor network by sharing their business contacts with the Apollo platform.
The date of collection is 2026-02-25.
So I emailed BrowserStack a simple "Hey guys, what the fuck?"
I love their cheery little "No spam, we promise!"
Despite multiple attempts to contact them, BrowserStack never replied.
Given that this email address was only used with one company, I think there are a few likely possibilities for how Apollo got it.
BrowserStack routinely sell or give away their users' data.
A third-party service used by BrowserStack siphons off information to send to others.
An employee or contractor at BrowserStack is exfiltrating user data and transferring it elsewhere.
There are other, more nefarious, explanations - but I consider that to be unlikely. I suspect it is just the normalisation of the shabby trade in personal information undertaken by entities with no respect for privacy.
But, it turns out, it gets worse. My next blog post reveals how Apollo got my phone number from from a very big company.
Be seeing you 👌
]]>5@edenthttps://edent.tel/<![CDATA[Book Review: Superintelligence - Paths, Dangers, Strategies by Nick Bostrom ★★★★⯪]]>https://shkspr.mobi/blog/?p=699222026-03-30T08:37:40Z2026-04-03T11:34:34Z
When I finally invent time-travel, the first thing I'll do is go back in time and give everyone a copy of this book. Published in 2014, it clearly sets out the likely problems with true Artificial Intelligence (not the LLM crap we have now) and what measures need to be put in place before it is created.
It opens with The Unfinished Fable of the Sparrows:
Which, frankly, should be the end of the discussion. Oh Scronkfinkle, why didn't they listen to you?
This book attempts to set out they why and the how of protecting humanity from the (inevitable?) arrival of machines which we would describe as "superintelligent". That is, capable of human-level reasoning and understanding, but unlimited in terms of speed, working memory, and accuracy.
For example, automated trading algorithms caused a "Flash Crash" of the stock market in 2010. Unchecked machines very nearly destabilised the financial work. As Bostrom writes:
[…] while automation contributed to the incident, it also contributed to its resolution. The pre-preprogrammed stop order logic, which suspended trading when prices moved too far out of whack, was set to execute automatically because it had been correctly anticipated that the triggering events could happen on a timescale too swift for humans to respond. The need for pre-installed and automatically executing safety functionality—as opposed to reliance on runtime human supervision—again foreshadows a theme that will be important in our discussion of machine superintelligence.
The book is mostly accessible but veers wildly between casual language, deep philosophical tracts, pointed snark, and the occasional dive into maths and physics. For anyone with even a passing interest in the progression of any technology, it is a worthwhile read.
Many of the predictions are spot on:
As of 2012, the Zen series of go-playing programs has reached rank 6 dan in fast games (the level of a very strong amateur player), using Monte Carlo tree search and machine learning techniques. Go-playing programs have been improving at a rate of about 1 dan/year in recent years. If this rate of improvement continues, they might beat the human world champion in about a decade.
In the slightly longer term, the cost of acquiring additional hardware may be driven up as a growing portion of the world’s installed capacity is being used to run digital minds […] as investors bid up the price for existing computing infrastructure to match the return they expect from their investment
While LLMs weren't yet invented when this was written, there's an excellent prediction about how an AI could become a pernicious psychological adversary:
Caution and restraint would be required, however, for us not to ask too many such questions—and not to allow ourselves to partake of too many details of the answers given to the questions we do ask—lest we give the untrustworthy oracle opportunities to work on our psychology (by means of plausible-seeming but subtly manipulative messages). It might not take many bits of communication for an AI with the social manipulation superpower to bend us to its will.
Indeed, I think it is clear that this is already happening. While I don't ascribe malice (or any other motivation) to the AIs, it is clear that their makers have a bias towards obsequiousness.
Other predictions are perhaps a little wide of the mark:
if somebody were to succeed in creating an AI that could understand natural language as well as a human adult, they would in all likelihood also either already have succeeded in creating an AI that could do everything else that human intelligence can do, or they would be but a very short step from such a general capability.
We're a few years in to the LLM revolution and, while we can quibble about what "understand" means, it's clear that natural language can now mostly be interpreted by computers. But that doesn't seem to have made the leap to general intelligence, nor the acceleration of art and science.
Others are hopeful but possibly a bit naïve:
A future superintelligence occupies an epistemically superior vantage point: its beliefs are (probably, on most topics) more likely than ours to be true. We should therefore defer to the superintelligence’s opinion whenever feasible.
Yes, there probably are modern concepts which have more in common with "phlogiston" than reality. But if a scientist were to time-travel back to the early 1700s, how easy would it be for them to disprove the theory? Perhaps AI ought to exist in the "trust but verify" space?
It is slightly over-footnoted, with no distinction between citation and diverting passage. There's also a tendency to go off in fanciful directions - the stuff on genetically enhancing humans goes on a bit too long for my tastes. Similarly, the philosophy of maximising happiness by emulating brains and virtually doping them seemed unconvincing.
That said, some of the thought experiments are both fun and profound - the seminal "Paperclip Maximiser" was introduced in this book.
There are some downsides. An over-reliance on specific individuals like Eliezer Yudkowsky crowds out some of the other important thinkers.
One of the suggestions made has already fallen:
One valuable asset would be a donor network comprising individuals devoted to rational philanthropy, informed about existential risk, and discerning about the means of mitigation. It is especially desirable that the early-day funders be astute and altruistic, because they may have opportunities to shape the field’s culture before the usual venal interests take up position and entrench.
The "Effective Altruism" movement is now hopelessly compromised and seemingly in tatters. Similarly, the cult of rationalism has taken an unfortunate turn to the bizarre and dangerous.
Nevertheless, it's hard to argue with the philosophy. Whether or not "superintelligence" is ever achieved, we should have systems in place now to protect us. It's the same as any other technology - the time to set up nuclear non-proliferation agreements and the systems to monitor them was before we invented them.
]]>0@edenthttps://edent.tel/<![CDATA[Concert Review: London Philharmonic - Pictures at an Exhibition ★★★★★]]>https://shkspr.mobi/blog/?p=699932026-04-02T11:05:54Z2026-04-02T11:34:07ZA delightful and emotional rendition of three rather different works.
Mark-Anthony Turnage's "Three Screaming Popes" was a chaotic cacophony. Wild, bizarre, inventive, and seemingly driven by excess. A fascinating performance, although not one I'll put on in the background. Turnage himself took to the stage to bask in the applause.
Bartók's Violin Concerto No. 1. Reading the story behind the composition made the performance by soloist Alina Ibragimova even more terrifying than it might have otherwise been. The sounds emanating from her violin were somewhere between a tantrum and flirtatious coquette. Stunning to see her tear up the stage.
Mussorgsky's Pictures at an Exhibition. Outstanding. Hearing a 100 piece orchestra power through the score was exhilarating. It is such a vivid piece. There's no other way to describe it - each movement is distinct and full of character. One of those rare pieces where you can feel the music worming its way into your brain.
This concert did some things really well. For a start - the programme was free! I wish the West End was a bit more like Broadway with a free "Playbill" at every show. Even better, the programme was actually useful! Some nice blurbs about the performers and the pieces.
I particularly liked this little snippet:
How wonderful! It's always someone's first time at an orchestral concert. More programmes should have these little comfort notes.
Other than that, there wasn't much. There was no interaction between the conductor and audience, which felt a little odd. The programme had a QR code to a 31(!) point questionnaire. I'm not sure how many people would be bothered to complete that.
Royal Festival Hall is a delight - plenty of space, multiple bars, lots of seating areas, and a larger number of spacious & clean toilets. An excellent venue.
]]>1@edenthttps://edent.tel/<![CDATA[Random File Format]]>https://shkspr.mobi/blog/?p=650272026-04-03T09:24:56Z2026-04-01T11:34:57ZThis was an idea I had back in the days of Naptster.
At the turn of the century, it was common to listen to an "acquired" music file only to find it was missing a few seconds at the end due to a prematurely stopped download. Some video formats would refuse to play at all if the moov atom at the end of the file was missing.
I wondered if it would be possible to make a file format which was close to impossible to read unless the entire file was intact. I don't mean including a checksum to detect download errors - I mean a layout which was intrinsically fragile to corruption.
While digging through an old backup CD, I found my original notes. I'm rather impressed at what neophyte-me had constructed. My outline was:
The file ends with a 32 bit pointer. This points to the location of the first information block.
The information block describes the length of the data block which follows it.
At the end of the data block is another 32 bit pointer. This points to the location of the next information block.
The start of the file may be a pointer, or it may be padded with random data.
There may be random data padded between the data blocks.
This ensures that a file which has been only partially downloaded - whether truncated at the end or missing pieces elsewhere - cannot be successfully read.
Here's a worked example. Start at the end and follow the thread.
Random data.
Data block size is 2.
Data
Data
EOF.
Data block size is 1.
Data.
Go to location 1.
Random data.
Go to location 5.
There are, of course, a few downsides to this idea.
Most prominently, it bloats file size. If the data block size was a constant 1MB, that would pad the size a negligible amount. But with variable data block size, it could increase it significantly. Random padding also increases the size.
If the block size is consistent and there's no random padding data, the files can be mostly reconstructed.
Depending on which parts of the file are missing, it may be possible to recover the majority of the file.
A location block size of 32 bits restricts the file-size to less than 4GB. A 64 bit pointer might be excessive or might be future-proof!
Highly structured files with predictable patterns, or text files, may be easy to recover large bits of information.
A malformed file could contain an infinite loop of pointers.
Perhaps a magic number should be at the start (or end) of the file?
While reading the file is as simple as following the pointers, constructing the file is more complex, especially if blocks have variable lengths.
Here's a trivial encoder. It reads a file in consistently sized chunks of 1,024 bytes. It shuffles them up and writes them to a new file. The last 4 bytes contain a pointer to the first block, which says the data length is 1,024. After that, there is a 4 byte pointer to the next block location.
import random
# Size of data, headers, and pointers.
data_length = 1024
header_length = 4
pointer_length = 4
# Read the file into a data structure.
original_blocks = list()
with open( "test.jpg", "rb") as file:
for data in iter( lambda: file.read( data_length ), b"" ):
# Add padding if length is less than the desired length.
padding = data_length - len( data )
data += b"\0" * padding
original_blocks.append( data )
# How many blocks are there?
original_length = len( original_blocks )
# Create a random order of blocks.
order = list( range( 0, original_length ) )
random.shuffle( order )
# Where is the start of the file?
first_block_index = order.index( 0 )
first_block_pointer = first_block_index * ( header_length + data_length + pointer_length )
# Loop through the order and write to a new file.
i = 0
# Open as binary file to add the pointers correctly.
with open( "output.rff", "wb" ) as output:
while i < original_length:
# Where are we?
current_block = i
current_block_value = order[i]
# Write length of data in little-endian 32 bytes.
output.write( data_length.to_bytes( header_length, "little") )
# Write data
output.write( original_blocks[ current_block_value ] )
i = i+1
# Last block. Write an EOF header.
if ( current_block_value + 1 >= original_length ):
eof = 4294967295
output.write( eof.to_bytes( header_length, "little") )
else:
next_block = order.index( current_block_value + 1 )
# Write pointer to next block
next_block_location = next_block * ( header_length + data_length + pointer_length )
output.write( next_block_location.to_bytes( pointer_length, "little" ) )
# At the end of the file, write the pointer to block 0.
output.write( first_block_pointer.to_bytes( pointer_length, "little" ) )
And here is a similarly trivial decoder. It reads the last 32 bits, moves to that location, reads the block size, reads the data and writes it to a new file, then reads the next pointer.
import os
# Size of data, headers, and pointers.
header_length = 4
pointer_length = 4
# File name to write to.
decoded_file = "decoded.bin"
# Create an empty file.
with open( decoded_file, "w") as file:
pass
# Function to loop through the blocks.
def read_block( position, i ):
# Move to the position in the file.
input_file.seek( position, 0 )
# Read the data length header.
data_length = int.from_bytes( input_file.read( header_length ), "little" )
# Move to the data block.
input_file.seek( position + header_length, 0 )
# Read the data.
data = input_file.read( data_length )
# Read the pointer header.
next_position = int.from_bytes( input_file.read( pointer_length ), "little" )
# If this is the final block, it may have null padding. Remove it.
if ( next_position == 4294967295 ) :
data = data.rstrip(b"\0")
# Append the data to the decoded file.
with open( decoded_file, "ab" ) as file:
file.write( data )
# If this is the final block, finish searching.
if ( next_position == 4294967295 ) :
print("File decoded.")
else:
# Move to the next position.
read_block( next_position, i+1 )
# Open the file as binary.
input_file = open( "output.rff", "rb" )
# Read the last 4 bytes.
input_file.seek( -4, 2 )
# Get position of first block
first_block = int.from_bytes( input_file.read(), "little" )
# Start reading the file.
seek_to = first_block
read_block( seek_to, 0 )
As I said, these are both trivial. They are a bit buggy and contain some hardcoded assumptions.
]]>3@edenthttps://edent.tel/<![CDATA[Gig Review: Vitamin String Quartet at The Barbican ★★★★★]]>https://shkspr.mobi/blog/?p=699522026-03-30T08:37:29Z2026-03-30T11:34:35ZThere is no such thing as theVitamin String Quartet. They're an ever-changing line-up of musicians who have found an excellent schtick; modern songs played like classical music. Somehow they've parlayed that into over 300 albums, covering thousands of artists, and dominating the soundtrack of Bridgerton.
The concert is titled "The Music of Billie Eilish, Bridgerton, and Beyond" - it's all crowd-pleasers covering everything from "Take On Me" to the earworm from KPOP Demon Hunters. Venues now know they can't stop people pulling out their phones, so there was an announcement politely asking people not to record the whole show or use their flash but, other than that, snap away.
It was a delightfully relaxed performance. The audience were encouraged to sing along which filled the hall with pleasing susurrus of half-remembered lyrics. I'll admit to being ignorant of some of Billie Eilish's work but even if you don't recognise the tunes, there's no escaping the brilliance of the performances.
I'm not sure how adapted the setlist was for a UK audience, but it was nice to hear some Radiohead and Coldplay in there. The encore of Bohemian Rhapsody was, of course, outstanding and had everyone leaping to their feet in applause.
If a permutation of the VSQ visits your neighbourhood, I'd highly recommend basking in their talent.
We picked up cheap tickets for the show. There's no such thing as a bad seat at the Barbican Hall. We were literally as far back as possible and still had a superb and unobstructed view of the stage. The acoustics were flawless and the seats were comfortable and had leg-room. Basically, every performance space in London should be this good. Of course, the toilets were another matter!
While there are loos scattered about the building, they're clearly inadequate for the number of patrons. The queue out of the ladies minutes before the show started should be an embarrassment to the Barbican.
I've written before about The art of the Pre-Show and Post-Show. This concert had… nothing! There was no souvenir programme to buy and only a perfunctory pre-show email explaining how to find the venue.
The warm-up act, Tom Speight was decent. A half-hour acoustic set to get us going. His music was charming as was his crowd-work getting us to sing along.
There was meant to be a post-show merch stall with the opportunity of a meet-and-greet with VSQ. The Barbican is a maze and we couldn't find it on our trek from the balcony to the exit. Perhaps a little signposting would help?
The post-show email was utterly generic. No encouragement to share the experience or find out more about the performance or look for future tickets. Just a soulless Net Promoter Score exercise.
]]>0@edenthttps://edent.tel/<![CDATA[OpenBenches hits 40k]]>https://shkspr.mobi/blog/?p=683822026-03-28T11:33:53Z2026-03-28T12:34:11ZBack in November 2023, our crowdsourced website of memorial benches reached 30,000 entries. At the start of March this year, I was delighted when long-time contributor jrbray1 added this gorgeous memorial, taking us up to 40,000 benches catalogued:
Using the power of advanced machine learning, it is possible to plot the growth on an innovative form of data visualisation known as "a graph"!
That's the sort of "number go up" that investors like to see. I reckon someone will come along to give us a bazillion dollarydoos any minute now.
For those of you who like text rather than graphics, here are our historic milestones:
10K - December 2018
20K - August 2021
30K - November 2023
40K - March 2026
50k - ??? Probably September 2027 ???
Tell you what, when we get to fifty-thousand, we'll throw a big party and you'll all be invited 🥳
If you spot a lovely memorial bench while you're out and about, please take a geotagged photo and upload it to OpenBenches.org.
]]>3@edenthttps://edent.tel/<![CDATA[Adding human.json to WordPress]]>https://shkspr.mobi/blog/?p=691902026-03-24T15:08:35Z2026-03-26T12:34:52ZEvery few years, someone reinvents FOAF. The idea behind Friend-Of-A-Friend is that You can say "I, Alice, know and trust Bob". Bob can say "I know and trust Alice. I also know and trust Carl." That social graph can be navigated to help understand trust relationships.
Sometimes this is done with complex cryptography and involves key-signing ceremonies. Other times it involves byzantine XML RDF. Or you can use the baroque XHTML Friends Network.
None of those have been widely adopted. Perhaps it's because PGP is a usability nightmare, XML is out of fashion, or because these relationships mostly live in silos like Facebook and LinkedIn, or just that people value their privacy and don't want to expose their social graph any more than they have to.
Enter a new contender into the ring - human.json - it describes itself as:
a lightweight protocol for humans to assert authorship of their site content and vouch for the humanity of others. It uses URL ownership as identity, and trust propagates through a crawlable web of vouches between sites.
That says that I assert my own blog is written by a human, and that I vouch that my friends Neil and Ana write their own content.
Now, obviously there's no way that I can prove my blog posts are written by an organic, vegan-fed, human. And, while I know and trust the friends I've met AFK, I don't have any special insight into their creative processes. If I suspect them of being synthetic clankers, I can disavow their sites by removing them from my human.json file.
Next, add this to your functions.php or wherever you set your weird options:
// Add rewrite rule for /json and /json/{something}
add_action( "init", function () {
add_rewrite_rule(
'^json(?:/([^/]+))?/?$', // Matches /json and /json/{something}
'index.php?pagename=json&json_param=$matches[1]',
"top"
);
});
// Register custom query variable
add_filter( "query_vars" , function ($vars) {
$vars[] = "json_param";
return $vars;
});
That creates a rewrite so that /json/whatever will be intercepted. For now, this only deals with human.json - but there may be more weird JSON things you want to support later. Hurrah for over-engineering!
This takes a list of your human friends, deduplicates them, sorts them alphabetically, and changes the vouch date to that of when you last updated the files.
add_action( "template_redirect", function() {
if ( get_query_var( "json_param" ) ) {
// https://codeberg.org/robida/human.json
if ( strcasecmp( "human.json", get_query_var( "json_param" ) ) == 0 ) {
// People who I know to be human.
$humans = array_unique([
"https://neilzone.co.uk/",
"https://ohhelloana.blog/",
"https://example.com/",
]);
sort( $humans );
// When was this file updated?
// RFC 3339 date format.
$modified = date( "Y-m-d", filemtime( __FILE__ ) );
foreach ( $humans as $human ) {
$vouches[] = [ "url" => $human, "vouched_at" => $modified ];
}
$data = [
"version" => "0.1.1",
"url" => esc_url( home_url() ),
"vouches" => $vouches
];
// Headers to make sure it all works.
header( "Access-Control-Allow-Origin: *" );
wp_send_json( $data, 200, JSON_PRETTY_PRINT );
} else {
// No valid parameter
wp_send_json( null, 404, JSON_PRETTY_PRINT );
}
}
} );
Perhaps no one will use this. Or perhaps all my friends will turn out to be poorly constructed Turing machines. Or maybe a better standard will come along.
Either way, I think it is nifty and am happy to support it.
]]>12@edenthttps://edent.tel/<![CDATA[Book Review: If We Cannot Go at the Speed of Light by Kim Choyeop ★★☆☆☆]]>https://shkspr.mobi/blog/?p=691572026-03-24T11:12:42Z2026-03-24T12:34:27Z
Short stories offer you the chance to dip briefly into a world and then skip out so there's not much time for development; just straight in to the plot and off we go. But this is all exposition and very little action. Rather than let the plots develop naturally, there are just vast passages of infodumping. I'm sad to say this is a rather dreary and insipid collection of stories.
Some of the stories start out with an interesting premise but then just fizzle out. There's a reasonably good idea in "The Materiality of Emotions" which describes people buying little trinkets which induce emotions in them. Again, emotions as drugs is well-worn stuff, but this builds up momentum nicely before suddenly ending.
The highlight is "Spectrum" which has some delightful world-building but, like the others, it's rather derivative of older stories. A woman's space ship crashes on a strange planet and she tries to befriend the local hominids. You've almost certainly read it before.
Overall I found it underwhelming.
Many thanks to NetGalley for the review copy.
]]>0@edenthttps://edent.tel/<![CDATA[Bored of eating your own dogfood? Try smelling your own farts!]]>https://shkspr.mobi/blog/?p=639572026-03-22T09:44:38Z2026-03-22T12:34:07ZI called a large company the other day. Did I know the information I wanted could be found on their website?0 And was I aware that I could manage my account online?1 And would I like to receive a link to chat with their AI assistant via WhatsApp?2
Naturally, call volumes were higher than expected. I can only assume that whoever was in charge of predicting call volumes had recent suffered a traumatic brain injury and was unable to count beyond five without pulling their other hand out of their fundament.
The cheerful woman warbled through her pre-recorded script and was suddenly replaced with a hideous electronic monstrosity. I recorded the call3 so that you can experience this monument to synthetic glory!
🔊
This is from a company whose website gushes about how innovative it is. AI is transforming its business at scale! Dedicated to technological excellence and delivering ISO accredited quality in all its divisions! And yet, somewhere, someone decided that customer experience was good enough.
"Dogfooding" is a sacred practice in the tech industry. Use your own products. That's it. That's all you have to do. For example, if you work for Slack - you can't use Teams for your messaging solution. You have to show people that you have faith in your own products.
But it goes deeper than that. When I used to work for mobile phone networks, they asked us to spend time in call centres. It isn't enough to receive a quarterly report on customer KPIs. You have to hear the rage in customers' voices as they struggle with your billing system. Perhaps that will convince you to have empathy with the people paying to use your product.
There's an oft told story about Jeff Bezos pausing a meeting to call his own customer service number - and waiting over 10 minutes for an answer. When was the last time the CEO of the above company called their own customer support line?
It's all very well to experience your own product when it is working, but when was the last time anyone in the above organisation went through a "difficult" customer journey.
By contrast, I recently cancelled a subscription to a small start-up's service. Someone from their senior leadership team asked if they could call to chat about why I cancelled. I said sure and had an enjoyable half-hour whinge / chat about their failings. At almost every complaint, they replied either "Oh, yeah, I also find that annoying" or "Huh, I've not experienced that, but I can see why it would suck."
At no point did they ever say "Our metrics don't show a problem" or "Do people really care about that?"
Maybe I was being flattered. Maybe it's a waste of senior leadership time to start every meeting with a ritual phone call to the call centre. Maybe I'm the only one who gets annoyed when people can't be bothered to put the bare minimum effort into their job.
But, maybe, breathing in the noxious output of barely digested slurry is the only way to get people to improve their diet.
]]>
]]>
]]>
]]>
]]>
]]>
]]>
]]>
I was left somewhat unconvinced by this book. I liked the concept - a series of interrelated stories all told in different styles.
]]>
]]>
]]>
]]>
]]>
]]>
]]>
]]>
]]>
]]>
]]>
]]>