Robert Harder

iMovie HD Available Here

Robert Harder — Tue, 17 Aug 2010 18:19:14 +0000

The last good version of Apple’s iMovie was version 6, later called iMovie HD. At least that’s my opinion, and it’s shared by a few others. The later versions became more of a video manager (and not a good one), and a very rudimentary editor (and not a good one).

Realizing, but not admitting, how much people hated the new iMovie, there was a period when Apple would let you download the previous and now-abandoned iMovie HD, but it is no longer available from Apple, even on their Old Software List, so until I’m given a Take Down notice, I’m putting iMovie HD up for grabs here. Of course you’re trusting that I haven’t embedded some kind of nasty malware or anything, which I haven’t.

In the disk image is the “iMovie HD.app” application which you’ll drag to your /Applications folder and an “iMovie” folder which you’ll drag to your /Library/Application Support folder. Enjoy.

Run SpinRite on a Mac

Robert Harder — Thu, 29 Jul 2010 21:56:46 +0000

Yes, I succeeded in running SpinRite 6 on an Intel Mac!

Here’s a screenshot:

Here’s a video:

You might notice that it’s horribly slow: about 1MB/sec if there are no errors. This makes it pretty much useless unfortunately. I’m just not that patient.

How It Is Done

Here are the key components for making this work:

Booting from another hard drive.
Installing VirtualBox.
Setting up VirtualBox to point to your raw disk drive.

Until recently I had no way to do the raw disk access in a virtualization tool. VM Fusion v2 didn’t support it (don’t know about the current version). Sun (now Oracle) VirtualBox didn’t support it, but starting with v1.4, it does.

Step 1: Boot from another hard drive

This isn’t a small step. Get an external hard drive, a cheap one will do. If you have a spare, bare hard drive lying around, get an enclosure for it (I got some 2.5″ laptop HD enclosures for $7 each, shipped, on eBay).

You’ll either have to install Mac OS X on the hard drive directly or use something like Carbon Copy Cloner to copy your installation over. There are instructions for this sort of thing around the net.

Restart your Mac and hold down the Option key. That will present you with a choice of bootable volumes (like grub, for the geeks out there). Select your external drive.

Step 2: Install VirtualBox

VirtualBox is a free tool from Oracle for running other operating systems in a window inside your computer. If you don’t know about it yet, you might be pleased to learn you can run Windows applications right there on your Mac without having to reboot using Boot Camp.

Download and install VirtualBox.

Step 3: Set up raw disk access

The tricky thing here is that instead of having VirtualBox use a file on your hard drive to represent an entire guest operating system’s hard drive, you actually want it to have raw access to a real drive on your computer (your internal drive, presumably). Chapter 9 of the user’s manual describes how to do this but leaves one part out. Perhaps we can get that updated.

First we have to know what to call our raw internal drive. From the Terminal enter this command:

$ diskutil list
/dev/disk0
   #:                       TYPE NAME                    SIZE       IDENTIFIER
   0:      GUID_partition_scheme                        *1.0 TB     disk0
   1:                        EFI                         209.7 MB   disk0s1
   2:                  Apple_HFS Macintosh HD            999.9 GB   disk0s2
... and so on ...

That will list all drives attached to your computer. You’ll have to look at the sizes probably to determine which one is the drive you’re interested in. It’s probably /dev/disk0.

A quick look at this device reveals that it is owned by root, not you. In the Terminal:

$ ls -l /dev/disk0
brw-r-----  1 root  operator   14,   0 Jul 17 18:11 /dev/disk0

You’ll have to fix this. I can’t say that what we’re about to do is normally a good idea, but presumably we’re only doing this on our non-production, SpinRite-dedicated, external boot drive. We need to make the device owned by you. In Terminal, and replacing USERNAME with your user account’s name:

$ sudo chown USERNAME /dev/disk0
Password:

You’ll have to enter your account password.

Now finally we can create a VirtualBox “disk image” that actually points to the raw device. All of the following lines should be on one line; I’ve broken them up for easier reading.

$ VBoxManage internalcommands createrawvmdk
  -filename /full/not/relative/path/to/file.vmdk
  -rawdisk /dev/disk0
  -register

Step 4: Create a VirtualBox virtual machine

Now in VirtualBox you’ll go through the normal process of creating a virtual machine, but instead of creating a new virtual hard drive, you’ll select “Existing VMDK” and point to the VMDK file you just created.

You’ll get a SpinRite ISO image, which presumably you made on a Windows machine when you downloaded SpinRite, and mount that in the virtual machine as well, and when you start the virtual machine, Voila! You have SpinRite running and accessing your Mac HD. Slowly.

Why Is This Necessary?

This is painful. Why can’t you just pop in the SpinRite CD and boot your Mac? You can. Your Mac will boot the SpinRite CD and take you to the title screen where you’ll sit. And sit. And sit. Forever. Because although the CD boots, the software cannot read your keyboard inputs. Ack!

Who’s fault is this? Well, that’s not really the right question. Here is a slightly rough, slightly inaccurate, but generally helpful description of the problem. SpinRite works at a very low level without any operating system support to speak of (except a bit from FreeDOS). To read your keyboard inputs, SpinRite has to monitor actual hardware interrupts, and although these have been the same on PC BIOSes for years, Macs use the newer EFI firmware, and the mappings are different. Thus no keyboard.

Judging from his comments on the Security Now podcast, SpinRite creator Steve Gibson has no plans to update SpinRite, and indeed updating it to account for a new BIOS is no small task. We could perhaps ask him on his feedback page to consider making a slight update to SpinRite which would create a SpinRite CD that automatically selected Drive Maintenance on all attached drives and began working without any user input. That way regular maintenance runs that generally don’t require any intervention could run, and if there was a more serious problem, well, then we’re simply back to square one.

Yes, ask him.

How To Keep Your Radio On When You Start Your Car

Robert Harder — Thu, 29 Jul 2010 20:53:03 +0000

Our car radio has the annoying habit of forgetting what part of a CD it was playing when you turn it off. On long drives this is a real drag; I’ll leave an audio book playing for my family in the car while I gas up, and when I turn the key from Accessory to Start, the radio turns off and back on again.

I built a cheap circuit that keeps the radio powered up five seconds after accessory power is interrupted, and this keeps the radio running while the engine turns over. The three key components for this circuit are a diode, a capacitor and a relay.

Schematic

Here’s a simple schematic of the circuit. From the car’s accessory power, we connect a diode, and from the diode we connect a capacitor and a relay. When the car’s accessory power is turned on, the capacitor is charged, and the relay is activated (the switch closes). Thus the radio has power. When the accessory power is interrupted, the capacitor continues to power the relay until the capacitor has drained enough that it cannot keep the relay activated. The diode keeps the capacitor’s energy from leaking back into the car’s circuitry.

I should point out that you’ll want fuses in relevant places. I left them out of the schematic for the sake of making the pertinent parts more clear.

Parts

Someone smarter than I could probably calculate exactly what capacitor size and relay specs you’d want to hold the relay active for so much time, but I just experimented. I found that I needed a solid state relay because the mechanical, electromagnetic kind drained the capacitor too quickly. Even among the solid state relays I tested, some drained the capacitor faster than others.

Diode. I used a simple “signal” diode that I had in some old Radio Shack kit.

Capacitor. I think it was 35V, 1000 micro farad.

Solid State Relay. This one is a mystery. It says “Daytronic solid state relay model 9398,” but I cannot find out anything about it online.

Mystery Relay: Daytronic model 9398

Extensions

If your relay doesn’t support enough current, as my 10A relay did not, you can use that relay to power the coil of another, bigger relay. In my case I got a traditional electromagnetic relay with a 70A limit, or something ridiculous like that, to power an amateur radio.

I Use CrashPlan for Live Offsite Backup

Robert Harder — Fri, 19 Feb 2010 17:37:12 +0000

One of my favorite podcasts SecurityNow had an advertiser that offered an online/offsite backup service and after trying Carbonite, Mozy, JungleDisk, and CrashPlan, I ended up settling with CrashPlan as my favorite to back up my Macs.

Unfortunately this all happened a few months ago, so I don’t remember all the details about why I liked or disliked each of the products, but here are some brief thoughts on each one.

JungleDisk

I had been using JungleDisk for a year or so, and I liked that I could be confident that my data was being encrypted on my end and that no one else could decrypt the data. The security was my number one concern.

I didn’t particularly like the way the tool integrated into my life, but that’s a preference thing. You may like it just fine. JungleDisk essentially makes available to you a network disk that mirrors whatever you’ve specified that you want to back up. I did find it convenient when I was on my laptop and wanted to retrieve something from my desktop—I could just retrieve it from the network disk.

JungleDisk the software only cost me $20, but it uses Amazon S3 for the backend storage, so my monthly bill came from Amazon. Eventually it just got too expensive for me. My backups grew to 30GB then 50GB then 80GB, and I could see I would want more backed up in the future. The monthly bill was growing to $20. That’s when I decided to look elsewhere.

Carbonite

Because Carbonite was an advertiser on the podcast, I learned that they offered unlimited backup space for about $5 per month, or so they claimed. I checked out Carbonite. It makes me feel dirty. Everything about their business feels creepy to me, and ultimately they were disqualified because I was not satisfied with their encryption technique which, as I recall, involves them having the ability to decrypt my files.

Mozy

I had high hopes for Mozy, because people seemed to think it was Mac-like. Ha. Mozy was OK, but restoring files was a pain, and again I did not trust their encryption techniques.

CrashPlan

Somehow I stumbled onto CrashPlan, which doesn’t seem to be mentioned as often as Mozy and Carbonite. I use it on several of my computers, and I am paying for the family plan (all my computers, unlimited storage) for about $100 per year. Some things I like about CrashPlan:

You can use it for free to back up to your own external drives, other computers, etc, so if you don’t want to pay for online storage, you can still use it as a nice backup solution locally. Near as I can tell, you could also install this on a friend’s (or your parents’) computer and have them backup to your computer for free remotely, if you’re willing to spare some hard drive space. You could have an arrangement with a friend so that each of you backs up each others’ data (encrypted, of course), so as long as your houses don’t both burn down simultaneously, you should be OK.

You can encrypt your data locally with locally-controlled keys that cannot be decrypted by anyone else. You have the option to choose to have the keys stored with CrashPlan so that if you forget your password, you can still access your data, but that’s not what I wanted. How nice of them to offer both services.

Truly unlimited backup space. I found people on various forums complaining with all these services (except JungleDisk/Amazon S3) that “unlimited” really meant 50GB or so, but CrashPlan’s stance is unequivocally, “Unlimited means Unlimited,” and I appreciate that.

Easy interface, easy restore.

Conclusion

That was my adventure, trying all these backup plans. I now use my Macs’ built-in TimeMachine backup for local backup and recovering accidentally-deleted files, and I use CrashPlan to backup offsite.

Command Line Capture of Web Pages to PDF, PNG, SVG, etc

Robert Harder — Tue, 05 Jan 2010 22:35:59 +0000

If you’re on a Mac, you probably know that in any application that prints, you can “print” to a PDF file — handy to be sure — but from the command line, it’s not so easy. Enter CutyCapt, a cross-platform tool that lets you capture web pages in a variety of formats including SVG, PDF, PS, PNG, JPEG, TIFF, GIF, and BMP using WebKit as the rendering engine.

A windows executable is provided on the website, so I had to download the source and compile it. I won’t be talking about the compilation process here. You can compile it yourself, if you don’t trust what I’m about to offer you, or you can download the file from me. I won’t be offended if you compile it yourself.

Download

Here is what I compiled. I have not packaged it as a PKG file. You’ll get a generic-looking application (.app) and a symbolic link pointing to the executable within the application. I recommend copying both files to /usr/local/bin, if that is in your PATH, or somewhere else that is accessible.

Download CutyCapt.zip

Usage

Running CutyCapt without arguments gives us the following options:

----------------------------------------------------------------------------- Usage: CutyCapt --url=http://www.example.org/ --out=localfile.png ----------------------------------------------------------------------------- --help Print this help page and exit --url= The URL to capture (http:...|file:...|...) --out= The target file (.png|pdf|ps|svg|jpeg|...) --out-format= Like extension in --out, overrides heuristic --min-width= Minimal width for the image (default: 800) --max-wait= Don't wait more than (default: 90000, inf: 0) --delay= After successful load, wait (default: 0) --user-styles= Location of user style sheet, if any --header=: request header; repeatable; some can't be set --method= Specifies the request method (default: get) --body-string= Unencoded request body (default: none) --body-base64= Base64-encoded request body (default: none) --app-name= appName used in User-Agent; default is none --app-version= appVers used in User-Agent; default is none --user-agent= Override the User-Agent header Qt would set --javascript= JavaScript execution (default: on) --java= Java execution (default: unknown) --plugins= Plugin execution (default: unknown) --private-browsing= Private browsing (default: unknown) --auto-load-images= Automatic image loading (default: on) --js-can-open-windows= Script can open windows? (default: unknown) --js-can-access-clipboard= Script clipboard privs (default: unknown) ----------------------------------------------------------------------------- is svg,ps,pdf,itext,html,rtree,png,jpeg,mng,tiff,gif,bmp,ppm,xbm,xpm ----------------------------------------------------------------------------- http://cutycapt.sf.net - (c) 2003-2008 Bjoern Hoehrmann - bjoern@hoehrmann.de

Based on the example provided, try a simple test:

$ CutyCapt --url=http://blog.iharder.net --out=blog.png

I get a nice long capture of my blog as a PNG file.

The program does not seem to work if you use a tilde (~) in the path to represent your home folder.

Enjoy!

Jam Resistant Communication Without a Shared Key

Robert Harder — Mon, 07 Dec 2009 19:42:52 +0000

Some US Air Force Academy (USAFA) and National Security Agency (NSA) smart guys (Baird, Bahn, and Collins – BBC) have come up with a way to achieve the kind of jam resistance that shared keys provide (like spread spectrum) but without the need for a shared key. For the crypto guys out there, this would be analogous to what the Diffie-Hellman key exchange brought to the world of symmetric cryptography. In fact one would probably use such a key exchange over BBC and then revert to traditional jam-resistant communication techniques, just as we do with asymmetric/symmetric crypto. Their ideas extend beyond jam resistance, but that’s what we’ll look at here.

Of course they explain it better than I in two papers and an applet I copied here:

Jam-Resistant Communication Without Shared Secrets Through the Use of Concurrent Codes, Baird, Bahn, Collins.

Visually Understanding Jam Resistant Communication, Schweitzer, Baird, Bahn

Visualization Applet further down this page

Baird has over a dozen papers published on the subject on his website.

First let’s understand the kind of attack we’re fighting. To fight jamming, you want to make your enemy work so hard or expend so many resources that the jamming is ineffective when on or not cost effective to even turn on. We cannot pretend to achieve “jam proof.”

Radio jamming adds energy to the spectrum, so a successful jamming adds energy at the specific frequencies that we are trying to read or at the specific moments in time we want to read them. With spread spectrum communication, as one example, successful jamming would require energy to be poured into many, many frequencies on the hope that the particular frequencies specified in the shared key will be covered. This is expensive for a jammer.

Note that a jammer cannot remove energy from the spectrum. This is an additive process, and this will be important.

Encoding

To encode a message, we step through the message, hashing each successively-longer piece, and we use the hash value to “place” energy in the spectrum. (You can use a time-based pulse method as easily). We scale the hash function (like a modulus operator) to an appropriate width (not discussed here).

Say we’re passing the (ridiculously-short) four-bit message 1011. We’ll arbitrarily set our hash width to 50. The hash value of 1, I’m making this up, is h(1) = 37. We continue through the message as well as some padding bits on the end which are analogous to a checksum.

h(1) = 37
h(10) = 8
h(101) = 44
h(1011) = 23
h(10110) = 9
h(101100) = 17

We now have an encoded message that will have peaks at the points 8, 9, 17, 23, 37, and 44. Again this could be frequencies, timed pulses, etc. depending on your radio setup.

A jammer comes along but doesn’t have the energy to jam everything, so he jams points 1-5, 20-29, and 40-49 (for ease of illustration) by turning those points “on.”

Decoding

The listening end cannot distinguish between the original message and the jamming and so receives “on” energy at the points 1-5, 8, 9, 17, 20-29, 37, and 40-49.

We know a message must start with either a zero or a one, so the receiver hashes zero and one to see if their values appear in the received “on” list.

h(1) = 37 ON THE LIST
h(0) = 11 NOT ON THE LIST

So far we know the message begins with a one. The second bit must be zero or one.

h(10) = 8 ON THE LIST
h(11) = 28 ON THE LIST

Hmm, both 10 and 11 may be valid messages. We’ll continue our tree (imagine a tree) and consider adding a zero and one to both 10 and 11. At the end of the four-bit message we know that we add two zeroes, so messages that end with ones can be discarded.

With appropriately chosen hash widths, message lengths, and padding, we’ve successfully decoded the message, despite the jamming, and we’ve discovered that we can actually have multiple valid messages overlapping (protection against a sort of “friendly” jamming).

Visualization Applet

Type a short message in the Message box and hit Return.

See the Decoded Message at the bottom.

“Jam” the communication channel by drawing all over the message.

See how you can cover up to half the message before the message is degraded.

Conclusion

This new concurrent coding can provide keyless jam resistance. The papers linked above discuss other uses such as for RFID tags and even document searching. Since this is government-developed technology (and it’s not classified), it is free for use. Go forth and build more secure radios!

Atlas Shrugged Essay Contest

Robert Harder — Tue, 03 Nov 2009 04:11:57 +0000

Since I’m a student for a little while again, I posted an essay for this year’s Atlas Shrugged essay contest. There’s nothing like writing an essay to really make you feel like a student! [Update: I didn't win. =( ]

Atlas Shrugged Essay Topic #2: In Atlas Shrugged, the heroes want to “make” money while the villains want, on the surface at least, to “have” money. What is the difference between these two views of money? Explain your answer by reference to actual events in the novel.

Distinguishing between “making” money and “having” money is a key insight highlighted by Ayn Rand, however despite the rational selfishness that the main characters put forward, their view of making money necessarily requires the considerations of other people—that one person’s new idea has value only if someone else thinks it has value—whereas the view of having money pits one man against his neighbor where invariably the only way to have is to take. How ironic that the villains in the book who decry selfish ambition are actually embracing the more selfish of the two views of money.

Making money implies that one can increase wealth by work and mental effort. Strictly speaking this is not making money exactly, and Midas Mulligan even reverts to a gold standard for representing money in the Colorado mountains. In this sense the protagonists actually embrace the “having” money point of view, but Hank Rearden acknowledges that it is wealth that is made, and that is the meaning taken here. Gold becomes a means for value exchange enabling wealth to be “made.”

With the notion that wealth can be made comes hope, opportunity, and achievement. One can think of what no one has done or of doing something better, and this creates a value difference between what is currently available and what one proposes. Despite the main characters’ insistence that they follow a selfish path, their philosophy depends on other people and how one’s ideas and actions improve the lives of others. Regarding the desparately-needed new rails for the Rio Norte line, Hank tells Dagny Taggart, “I intend to make you pay for it,” and Dagny gladly does.

New ideas may also benefit the creator directly. John Galt explains to Dagny that such innovations give the inventor time, not money, and time can be redeemed to pursue what one desires. In this sense time is a sort of gold standard with oneself. One cannot pay oneself with gold for a new idea, but time—the ultimate limited resource—can be “saved” by innovation.

The value of a new idea is based on the improvement that it provides another person. It is the recognition of one person’s achievement by another, but it is not a hollow recognition for the benefit of the creator. It is the acknowledgement of one person’s genuine contribution to another. Richard Halley’s fifth concerto, John Galt’s motor, even Hugh Akston’s cooking—these have value because they improve someone else’s life, not necessarily that of the creator. Without this understanding, Hank’s wife Lillian cannot appreciate the significance to the world of the first pouring of Rearden Metal. Instead she offers sarcastically, “Shall we declare it a national holiday, darling?”

Allowing individuals to develop their ideas may lead to more good ideas, such as when Hank proposes his new bridge structure to Dagny. She asks if he invented the bridge in the last two days, and he replies, “I `invented’ it long before I had Rearden Metal. I figured it out while I was making steel for bridges. I wanted a metal with which one would be able to do this, among other things.” His desire to build a better bridge drove him to invent a better metal.

This view of money provides stability and correction because value can be verified, tempered, adjusted not by a single creator but by the people. In its selfishness, it gives power to the consumers to negotiate their futures and demand something better, but these demands come not in the form of declaring a right but proposing a counter-offer: “We will pay you more money for something better.” It respects the creator and creates a lasting relationship among people where respect, not force, is the key ingredient. Everyone benefits, and here the best way to maximize the common good and provide a positive future is to allow individuals to achieve and submit their efforts for peer valuation. In contrast when one views money as something to have, then one must necessarily look around for existing wealth and think of ways to get it, for unless more can be made, the only way to get more of something is to take it.

While it is possible to take money peaceably as with the case of selling goods and services, one might start looking enviously at another person with more money and quickly realize that it is much more efficient to take it by force. One might easily justify it as well, assuming that the person with more money must have in turn gotten it by taking it from someone else.

Without the insight to make money, some characters in the book apply their creativity to inventing ways to take money. Inevitably this leads them to force their ideas on others by law, a common theme among people with this view. Balph Eubanks’s negative view of humanity convinces him that, “We ought to place a limit upon their material greed,” and he suggests that no more than 10,000 copies of a book should be permitted to be sold. James Taggart pushes through the Anti-dog-eat-dog Rule in order to remove the “destructive competition” of Dan Conway’s Phoenix-Durango line. Orren Boyle uses Directive 10-289 and blackmail to force Rearden Metal into the government’s hands.

Even the fair exchange of money can be warped when one has the wrong view. Consider Hank’s mother and his brother Philip who decide it is not right that Philip exist only on Hank’s charity. Her solution is to have Hank give Philip a job instead, “but a nice clean job, of course, with a desk and an office and a decent salary.” Hank’s reply: “But he knows nothing about the steel business!”

The two views of making money and having money ultimately affect the value you place on other people. If you believe that you can make money, then you inherently acknowledge that other people have value and that your positive impact on their lives is what makes money, but if you believe that money can only be had, then other people become an impediment to your happiness, and you will seek ways to take from them as the “looters” in the book often did.

Create Animated GIFs with Mac OS X Preview.app

Robert Harder — Thu, 22 Oct 2009 17:51:19 +0000

If you open an animated GIF in Mac OS X’s Preview application, the default application for viewing images and PDFs, you may know that you can see individual frames of the animation, but did you know you can also create animated GIFs with Preview? Here’s how.

How To

For this example, we will create an animated GIF of us typing some text into a text editor. Preview sets the interframe delay to 0.1 seconds, and I have not seen a way to change that. That is a reasonable typing speed for this effect.

Open a text editor such as TextEdit, TextMate, BBEdit, etc. Resize the window so that it’s a nice, tight size that will look good on a web page.

The first thing you might notice between the screenshot above and the animated GIF at the beginning is that the shadow looks better on this screenshot. That’s because GIF images can only contain 256 different colors, and that’s not enough to see the subtle changes in the shadow.

Save this opening shot by typing Command-Shift-4. Release those keys and type Space. Now click on the text editor window. That creates a screen capture of just the window you clicked and saves it to the desktop.

Open that file in Preview. Choose Save As from the File menu. Select GIF as the file type. Name the file something meaningful like animation.gif. You can now delete the original screen capture image so you don’t accidentally duplicate it during the next steps.

We’ll want to see the sidebar so we can add images to the GIF sequence. Click the Sidebar button in the toolbar.

Let’s just add one character ‘A’ to the text editor, and add that to the sequence.

Type ‘A’ in the text editor window.

Type Command-Shift-4.

Type Space.

Click on the text editor window.

Find the captured image on your Desktop, and drag it onto the Preview window, directly over the “animation.gif” image in the sidebar.

Your Preview window should look something like this now:

Now let’s capture several frames at once to speed this along. After each character that we type in the text editor, we’ll type Command-Shift-4, Space, and click on the text editor window, creating many screenshots saved to the desktop.

Select all of these new screenshots on the desktop, and drag them to the Preview window as shown below so that you tell Preview to add the images to the sequence you began (as opposed to simply opening more files, which it will do if you drag too low on the sidebar).

You’ve got it now. Continue with more frames, and save your GIF. Drag the GIF image to Safari or other animated GIF-enabled viewer, and enjoy. Unfortunately I haven’t found a way to loop the animation in Preview.

Stream iTunes over SSH

Robert Harder — Mon, 28 Sep 2009 21:08:41 +0000

After (mostly unsuccessful) Googling for how to stream iTunes over SSH, I finally tracked down the difficult bits myself and put together a four-line script (five if you count “shebang”):

#!/bin/sh dns-sd -P "Home iTunes" _daap._tcp local 3689 localhost.local. 127.0.0.1 "Arbitrary text record" & PID=$! ssh -C -N -L 3689:localhost:3689 myusername@blahblahblah.dyndns.org kill $PID

Multicast DNS (mDNS) and DNS Service Discovery (DNS-SD) Test Tool

We need to trick iTunes into thinking our home computer is on our local network, because if you’re sitting in Starbucks, then your home computer is not on your local network (and if it is, then you need to address your caffeine addiction). For that we use a tool quietly sitting at /usr/bin/dns-sd that provides a command line interface to the DNS-SD libraries which is normally accessible to programmers via /usr/include/dns_sd.h. Like all good libraries, it helps to have a command line reference tool for scripters, and dns-sd works great for us.

iTunes uses Multicast DNS (mDNS) and DNS Service Discovery (DNS-SD) to announce its presence and to look for other iTunes instances. Apple calls this technology Bonjour (formerly Rendezvous), but it is also known as Zero Configuration Networking (www.zeroconf.org).

The dns-sd man page only gives a few of the many options available. Typing dns-sd at the command line shows you more options but without much explanation.

$ dns-sd dns-sd -E (Enumerate recommended registration domains) dns-sd -F (Enumerate recommended browsing domains) dns-sd -B (Browse for services instances) dns-sd -L (Look up a service instance) dns-sd -R [...] (Register a service) dns-sd -P [...] (Proxy) dns-sd -Z (Output results in Zone File format) dns-sd -Q (Generic query for any record type) dns-sd -C (Query; reconfirming each result) dns-sd -X udp/tcp/udptcp (NAT Port Mapping) dns-sd -G v4/v6/v4v6 (Get address information for hostname) dns-sd -V (Get version of currently running daemon / system service) dns-sd -A (Test Adding/Updating/Deleting a record) dns-sd -U (Test updating a TXT record) dns-sd -N (Test adding a large NULL record) dns-sd -T (Test creating a large TXT record) dns-sd -M (Test creating a registration with multiple TXT records) dns-sd -I (Test registering and then immediately updating TXT record) dns-sd -S (Test multiple operations on a shared socket)

We’ll use the Proxy option -P to indicate that the service we’re advertising will be rerouted, in our case through an SSH tunnel.

dns-sd -P [...] (Proxy)

Looking at the relevant line in our script we see how we match up the fields.

dns-sd -P "Home iTunes" _daap._tcp local 3689 localhost.local. 127.0.0.1 "Arbitrary text record" & PID=$!

Note: Some people need “localhost” and others need “localhost.local.” for this to work. Not sure what’s different about people’s systems. Try both. Updated 1 Sept 2010

The Name parameter will show up in iTunes as the name of the iTunes library we’re sharing. It doesn’t have to be the actual name of the library, so we’ll just use Home iTunes as a convenient placeholder.

Port 3689 is the port used by iTunes for sharing music.

The “Arbitrary text record” is just that—an arbitrary chunk of text that’s required for dns-sd to properly process the command.

The next line of our command, PID=$! saves the process id of the command we just executed into a variable $PID which we’ll need in order to neatly shutdown the proxy when our SSH tunnel closes.

The SSH Tunnel

We use SSH to connect to our home machine and forward connections from our remote machine’s port 3689 (in Starbucks) to our home machine’s port 3689, where you left iTunes up and running before you left this morning (right?).

ssh -C -N -L 3689:localhost:3689 myusername@blahblahblah.dyndns.org

The -C option turns on compression, which may not do much good for streaming MP3′s but a) it doesn’t hurt, and processors are much, much faster than your bandwidth, and b) don’t forget that you’ll be receiving a description of your home iTunes library, which is probably a rather sizable XML file.

The -N option says we’re not executing an SSH command but rather just sitting here port forwarding until the connection is broken (like when you leave Starbucks).

The -L “listen” option is covered extensively in tutorials all over the Internet, but in short it says, “listen for local connections to port 3689 and forward them to the other end and try connecting to localhost on its port 3689.”

The myusername@blahblahblah.dyndns.org portion will be dependent on how you connect to your home computer over SSH. Again, that’s covered in detail all over the Internet. If your remote computer is secured, you might consider using SSH keys to allow automatic login. Then you can put this script in ~/Library/Scripts and launch it from the global scripts menu, if you have that activated.

Cleanup

When the SSH connection eventually closes, such as when you close your laptop or disconnect from the network, the ssh command will exit, and kill $PID will run which closes down the dns-sd proxy, so you won’t see it in iTunes anymore.

Packaging

I find it helpful to put this script in ~/Library/Scripts so that I can execute from my global Scripts menu in my menubar, but it’s up to you how you want to launch it. Good luck.

ImageSnap: Capturing a Video Image with QTKit on Snow Leopard

Robert Harder — Mon, 14 Sep 2009 16:32:28 +0000

ImageSnap is a Public Domain command-line tool that lets you capture still images from an iSight or other video source. You might remember Axel Bauer’s original isightcapture tool (that is no longer supported but still works on most systems). I wanted a similar tool with source available so I could make feature changes or at least recompile with Apple’s ever-changing architectures.

At some point Apple introduced QTKit, a new and oh-so-welcome abstraction bringing QuickTime programming into the 21st century. Nothing against die-hard ANSI C programming, but it fits awkwardly into what are otherwise clean Objective-C Cocoa programs.

Rather than provide a detailed tutorial about using QTKit (sorry if you wanted one), I’ll just point you to the ImageSnap code so you can take a look at a few useful things like starting a QTCaptureSession, capturing output with QTCaptureDecompressedVideoOutput, and saving an NSImage to disk.