Thursday, January 21, 2021

My rants on the sars-cov-2 pandemic

Disclaimer: The words below are "my" rants. I am not a Doctor, chemist or a  Biologist. I am an Engineer. So, there may be mistakes. Do your homework like I have done mine. I dont vouch for authenticity of the matter in the links provided.

     Plenty has been written about the birth and spread of Covid 19. Plenty more than any other pandemic the earth has ever seen. There are already books on the origins and the spread of the virus. They also speak of the spineless governments of the world. The pandemic has had its share of false news and conspiracy theories ranging from 

1. The virus was already existing 

2. It is the same as the normal cold virus 

3. Pharma companies along with the governments have blown it out of proportion

4. Pharma companies wanted to move the people away from usual way of administering medicines to RNA/DNA medicines 

5. Some other businessmen wanted to reduce the population of the world 

6. Pharma industry was not getting enough grants from the governments of the world to shift medicines to RNA/DNA based and ....... 

https://www.livescience.com/common-cold-coronaviruses-t-cells-covid-19-immunity.html 

    The above link tries to explain why the sars-cov-2 virus does not impact certain people. It also talks about our immune system and how it gets trained by one variant of a similar virus and can produce the necessary actions required to nullify the effects of the virus. So, what about a human who has not contacted any related virus. Well, as per the link, that particular person is at risk. If that is so, Americans normally had a vaccine every year for the influenza virus and yet they are one of the most affected countries in terms of percentage of death and infections. First thing is the influenza and the covid virus are of a different class. The antibodies developed for the influenza virus will not(may not) help in fighting the covid 19 variant. 

https://www.britannica.com/story/what-is-the-difference-between-influenza-and-covid-19u 

There, lets us stop the discussion regarding the similarities between them. What about the class of corona virus, were they already existing? Yes. As per the link below 

https://www.healthline.com/health/coronavirus-types

https://www.nationalgeographic.com/science/2021/01/covid-19-will-likely-be-with-us-forever-heres-how-well-live-with-it/

     There have been two well known and documented class of "corona" virus. When we talk about corona virus, we are talking about a class of virus, with a spiked protein cover around the viral payload. These two instances have been contained by isolation and quarantine. These were not spread by asymptomatic humans. If we already know about the corona virus and we contained the previous two, how did we end up in a global pandemic. 

    This can be attributed to the carelessness of the governments of the world. The governments governed by the corporations decided that the aviation industry cannot be stopped. They decided that, the best way to cover this up is to remain silent. May be in many other cases, it might have worked. However, it did not work out in this case. When all the nationalist/jingoist mindsets have been satisfied, the news was allowed into the open. 

    By now SARS-CoV-2, the virus which causes covid 19 was taken everywhere across the globe. The main attribute for this wide spread is that the asymptomatic people were the major spreaders. This aspect of this variant, is what makes it stand apart in the corona series. The damage by the viral load are very similar and attack the respiratory system, the most, with other aspects being discovered as we move ahead in time. If the virus spread was isolated at origin, like the previous two cases, we could have stopped the spread and this blog post wouldn't have existed. 

    Time is a *^%^h. This would be one more instance of a corona virus isolated in a particular geographic place and affect a few 100 people. It is very difficult to gauge the importance of an individual in this business minded planet. It is like this planet has been outsourced and business has to run at any cost, even if the last human is erased. It is like the next batch of humans are toiling somewhere else in a similar manner and all the business will shift to the next planet after the end of the last human on this planet. 

    The lockdowns, or worldwide isolation and quarantine appeared like an eye wash and half hearted, last resort plan. People were moving and the virus was already taken to all the countries across the globe. This isolation and quarantine works only if applied on a scale taken up on the previous known variants of the corona virus. Lockdowns are "face savers" for the politicians and the businessmen. There is no scientific/economical backing for a global lockdown except a political/business perspective. 

    Now, let us come to the treatment. I dont know why the medical companies gave up on treatment and focused only on a vaccine. I dont know the logic/economical aspect of this decision and we dont have a treatment as of date. But, vaccines have been cleared and have been administered to lakhs based on studies on thousands in a very short time. Majority of the vaccines are like proof of concept and highly advanced science of gene editing and precise chemistry of RNA. Reading about the RNA/DNA vaccines, is like reading a fantasy book. It reads like science fiction. If we can do this much for producing a vaccine, how difficult is to use the same technology to do something bad. Dont get me started by denying this. We are not far away, wherein, DNA/RNA jabs with blueprints of all the known viruses will be injected into the human body. It is like an attack dictionary on Missile warning systems. The approach for these vaccines is to generate antibodies for the spike protein. Now, this approach can fail once there is a change in this, in a drastic way. Yes the virus can mutate in many ways. What if, the spike mutates?

    The medical industry took this route by telling that the traditional way of making a vaccine by killing the virus and then injecting this into the human body is time consuming. This is totally %#^*^t. We already have vaccines made from this method and also cleared for use. The major advantage with this approach is we are giving a hint to our immune system about nearly all the properties of this virus. So, this would generate antibodies for many of the chemical combinations present in the virus. 

    The RNA/DNA methodology of making medicines is a great method for big pharma for getting a tight grip on the medicines. This will nearly kill the generics industry. Two recently cleared DNA/RNA vaccines make a statement that the DNA/RNA in the human cells are not touched. Can a normal human, know whether this is true? If DNA/RNA is the methodology of administering medicines, then, governments need to wakeup and ensure that enough competition is fostered and all the developments are available in public domain. It is not wrong, even if the governments start investing in state owned research facilities and upgrade them to the same capabilities as big pharma. In this way we can ensure that there is a lot of testing and availability of these advances are available to the common man. 

    The most interesting take from this pandemic is the polarization of people across the world. The main reason is that big pharma is not good at explaining the cause and the effect. It is like explaining light to the last animal in evolution which had not felt light around it. Our belief systems, our blind beliefs, our limited education, our limited brain usage, our limitation as a human being, has showcased beautifully. It is very interesting to listen to all the conclusions and the reason for these conclusions regarding the pandemic. No two individuals in the same home share the same idea about the pandemic. Many people are convinced that Europeans and Americans are dying of Covid 19 because their immune system is not as strong as their Asian counterpart. This class is forgetting that it originated in Asia and the highest number of deaths happened in Asia. This would have made Russel peters so angry that he would have to change the portion of his standup comedy where he talks about an instance of him landing at Mumbai Airport for the first time and welcomed with smell of shit. 

    We have politicians feeling for the dead, at the least. No corporation has stopped working or repented for any death of their workers. The politicians feel for the dead but are not ready to consider universal healthcare as an option. What is the use of feeling for the dead, when you did not feel for the living? This is the same in all businesses. The plentiful Human resource at its disposal make the business not at all concerned about the people dead with a known reason. People die every minute for a plenty of reasons, but when they die for a reason which the whole world knows may happen is what makes the death more sick. In fact majority of the work available in the world is broken to such an extent that you just have to plugin a new human to do that job. This is what is making the corporations not to take any serious thought towards the pandemic. 

    The medical profession is also at its most liberal best. Any complication can be labelled a "covid 19" case. Stop, dont draw your daggers, this statement was for medical practitioners who have done it or on planning to do it. How am I making this statement so confidently. Well, nobody is allowed to see or touch the patient. He is packed completely and burnt without any second opinion. So, what I am telling is it is very much possible, has been done and can be done. 

    There is one more issue regarding non believers. They are so pissed off by the care taken by the people who believe that there is a virus. Like the non believers who throw the caution to the wind, there is a population who believe that yes, we have a pandemic at hand. Of course there is another population which is exactly in between. They wear their mask below the chin. Never was their hands. These people will wear the mask when they hear some bad news regarding people whom they knew. It will be momentary, maybe for a few days. These people are not bothered about the complete believers or complete non-believers. The problem is with the non-believers. They will make fun of the middlemen and the complete believers alike. The believers will not make fun of the non-believers but are worried that this group will get them affected. They believers are angry on the other two groups. 

    The reason for the hue and cry created by the spread of sars-cov-2 is that, the human body might not detect it as a virus and fight it with enough fervor similar to a virus database it maintains. As time passed we got to know that a major portion of humanity had this virus in their immune database. However, one more issue which caused such widespread attention and lockdown is the fact that asymptomatic people were spreading it. And the virus once in the air, lived a very long time. All this information led to the situation we are today. 

    The good news is that, contrary to initial belief, the human body did fight the virus and many people did develop immunity. Now, the vaccines are here to help people with lesser immunity by adding the info of this virus into their database. This is the reason, I am of the opinion that recipients of the vaccine should be checked for antibodies and the situation of the immune system for this virus before vaccinating them. If they have already developed sufficient amount of immunity, it is of no use to vaccinate them. And we dont know what would be the result of such an action. But, nowhere this is being tested. In fact, every person to be vaccinated should be checked thoroughly for his medical history and compare it with the side effects of the vaccine. Based on satisfactory study and heuristics, the person should be suggested for vaccination. 

 

    Proteins are made of amino acids. And the "some" amino acids on the spike of sars-cov-2 virus are similar to the ones found on the placenta. In fact "some" of these amino acids can be found in other proteins in the human body. A vaccine based on this protein might induce antibodies against the protein with "some" similar amino acids. There is no proof for this. Hence there is no proof to stat that a similarly designed vaccine will induce antibodies attacking the placenta and in turn render woman infertile. There is no proof for this. 

    The human genome is made of DNA. The mRNA vaccine is not supposed to enter the nucleous of the cell. The DNA based vaccines which put the DNA of the spike protein into the cell are not supposed to interfere with the Human DNA. The chances of the vaccine altering the DNA is nearly nil. We dont know what will be the result of that small chance and we dont have any proof if it might happen at all. 

     Whatever be the truth, The wearing of re-usable masks have man advantages. During your commute you are going to filter out at least some of the dust. It will protect your face from the cold breeze. And of course, you are going to be protected from other viruses floating in the air. The other aspect we are practicing is what is difficult to maintain and that is physical distancing. But it is also has many advantages. This will avoid crowded meetings and only the required personnel will be called. This will require plenty of advance planning and to the point discussions. And please kindly use re-usable masks. The planet is already strained to the max with the plastic piling up. 

Sunday, January 17, 2021

Media player daemon: Playing music with mpd and mpc

My love for the Media player daemon is clear if you have gone through my other blog posts. I like its concept. It is simple, straightforward and does what it is supposed to do. Play music. The combination of mpd and mpc is awesome. It is akin to watching a good buddy movie. They are just so perfect together. If you are a person who would like to "see" the song list and control the music by visual controls, you are also covered. There are a plethora of clients for the mpd. In terms of simplicity an curtness, there is nothing closer to mpc. 

 This post is about the barest minimum required to start playing music without the screen filling up with the file names. Installing mpd on arch is as simple as a, b, c.... really. 

pacman -S mpc mpd 

copy /etc/mpd.conf to .config/mpd/mpd.conf Overwrite the file with the information below 

--------------------------------

# Recommended location for database 

db_file "~/.config/mpd/database" 

# Logs to systemd journal 

log_file "syslog" 

# The music directory is by default the XDG directory, uncomment to amend and choose a different directory 

# I like to symlink all my sources of music to the default Music folder. Ultimately, tell the directory where # your media is stored. 

music_directory "~/Music/music" 

# Uncomment to refresh the database whenever files in the music_directory are changed 

#auto_update "yes" 

#These are my choices for the requisite files. Al these files are required. So, if you would like to change the locations, do so. But ensure that these directories are user accessible with write permissions. 

playlist_directory "~/.config/mpd/playlists" 

pid_file "~/.config/mpd/pid" 

state_file "~/.config/mpd/state" 

sticker_file "~/.config/mpd/sticker.sql" 

#This is if you are using pulse audio. If you are using also, change accordingly audio_output { 

type "pulse" 

name "pulse audio" 

----------------------------

Save the file. reboot 

Now, the first step ensure that mpd is running.

mpd 

On success, the above command will not spit out anything. Now, the daemon is running and waiting to server you music. Let us now, build a database of songs available in our directory we specified in mpd.conf. 

Now we have to populate our database. Before doing this step, I suggest you to check whether your music has good metadata related to track names, albums, etc. If not, it is always good to invest some time in editing the id3 tags of your music. This will help us in getting "that" song to play. 

Once you are sure of your metadata. Go ahead and build the database. 

mpc update 

The above command will take some time. Give it a few minutes. To know whether all the songs have been added to the database run the command below. If you see that the last song is the same when you run the command below, multiple times, then you know that the database is completely built. 

mpc listall 

Of course, your database is going to be huge. And depending on your mood, you would like to pick and choose. Let us now create a playlist based on certain criteria. You are now in that retro dance mood and would like to listen to the evergreen Jackson. There are multiple ways to search for Jackson songs in your database based on how your id3 tags are created. If you would like to add all albums with the name Jackson in your album name then you would do 

mpc searchadd album jackson 

I know, Now you want to see what is the playlist which is create by the above command, For this you would 

mpc playlist 

Now, you remembered that there are certain files with Jackson in their names but are not part of an album with jackson in them. Then to add all the songs with title containing jackson 

mpc searchadd title jackson 

Now, check your playlist again 

mpc playlist 

The nerd in you is glowing. You now have all the titles you want to play in your playlist. Hit it. 

mpc play 

Of course, you have got used to seeking music with other command line players by hitting the arrow keys. However, the command for seeking in mpc is(Again, you can map keys and what not.....) 

mpc seek +00:04:00 

The above command is for seeking the song by 04 minutes. I think the logic is clear. This works both for individual files or if you have a file with multiple songs. If you have individual songs in files then 

mpc seek +80% 

would be better. 

 In the middle of your listening pleasure, you would like to know the details of the song being played now

 mpc status  

will give you information regarding the present song and plenty other data related to the present playlist.

For seeking back change the + sign to -. An alias for all the above would be best. 

The post is not complete without gratitude to all the devs and users who make all this possible. The GNU/Linux land and the BSD universe have not stopped surprising me.

 

 PS: Just, one more thing.

 mpc searchplay title jackson

 which will create the playlist and start playing.

Sunday, January 3, 2021

GPG: Encryption and digital signature for the masses Part II

Disclaimer: This is a very serious topic. The observations made here are for a starter. Kindly refer to the man pages and other text books which specialize in guiding for advanced and high stake uses. I am not responsible for any unwanted results by following the notes below. Understand the seriousness of the job on hand and read enough.

 So what is stopping you from creating a key with 

name: Joe biden
email: president@america.gov

Nothing. But you are not going to go a long way with this. The thing is, gpg is not your answer to everything. It is just a tool to sign documents and encrypt the documents. The authenticity of the person sending you the document is still to be checked by going out in the open or from other trusted sources on the public network.

Trust and untrust a key

We have already learnt how to trust your friends public key and record that trust in your keyring. Let us now assume that you want to share the public key of your friend with another of your friends. Now, you extract public key of your friend from your public keyring and save it in an armored format file. Now, if you open the file created for viewing, you can observe that the file also contains your public key also!! How did it land there. It landed there when you "trusted" your friends key. You can forward this file to your another friend who wants the public key of your first friend. The presence of your public key in the file is like you are confirming that the person whose key it belongs is someone you know. This is all good. This is how a "web of trust" is built up. However, this is a two edged sword. When you share the file in question to your second friend. You are also hinting to your second friend that you are "communicating" with that person. This is something that privacy purists will oppose. So, choose wisely. If possible remove your public key from the file your created to share with your second friend.

Let us assume we signed a public key signed@dd.com

Now, we have arrived at some information doubting the key above. So, we have to remove the "trust" we endowed on the above key. Let us remove our signature on the above key

gpg --edit-key signed@dd.com

on the gpg prompt

revsig

go though the queries and revoke the signature.

end the prompt by typing

save

at the prompt

Now, your signature is not on the public key signed@dd.com
If the original public key signed by you is on any key servers, now is the time to push the updated key without your signature on it.

PGP/GPG/OpenPGP


When we talk about asymmetric encryption we come across three abbreviations PGP, OpenPGP and GnuPG(GPG)

PGP is a commercial offering. OpenPGP is an open standard which anybody can implement in code. One such OpenPGP implementation in actual code is GnuPG(GPG). GPG is "free as in freedom" software and is the one to be used by the general public. GPG is licensed under copyleft GNU GPL. So any commercial usage in a tinned product should ensure that the GPL is complied with. For the general public, it is as easy as using GNU/Linux operating systems.

Safeguarding your keys


The key pairs have different exposure levels. The public key has to be made as much "public" as possible and the private key should be kept as private as possible. The "privateness" for your revocation certificate is the same as the private key. Ensure the safe upkeep of these two keys. Guard it upto your life and just below it.

Print your private key and your revocation certificate on good quality paper, store it on storage device, store it on a cdrom and lock it up in a bank safe locker. That is the amount of care you should take care of these two aspects of GPG. If you want to take it with you, ensure that they are encrypted on your storage device and better if the entire device is having file system which is completely encrypted. So, you get two levels of encryption.

Information in your keys


The next thing is the creation of your key pairs. Should you use your "real" name as in "your" name? Should you use your "real" email id? Should the keys expire? If so, what is the optimum expiry age? Should we enter any comment?
These questions have subjective answers. As per the answers for the questions on the public network, the most answers ask users to provide their "real" information. 

This helps in getting you into the "web of trust" which is like the phone book of GPG users. I would suggest, again, a suggestion only, that you should use your real information to bring credibility to your public key. So, yes use your "real" name, "real" email id and also a comment which would make you stand out if your name is more generic. As for the expiry of keys, it is recommended by many experts that you should be expiring your keys at "regular" intervals. Doing so have many advantages. Easy revocation since after the expiry it is of no use to anybody. Keeps your public key ahead of technical obsolescence. 

Dont forget that you can add an image to the created key. This can be your real photograph or any image left for you imagination. Just be careful about whatever decision you take.

More on keys

The last 08 digits of the fingerprint is also called the keyid.
The email id and the name information will be the userid or the UID.

When you want to specify a specific key on the gpg command line, you can use the UID or the keyid.

If you use

gpg --list-keys friend@friendship.com    or
gpg --list-keys A2E43218 ( If using the keyid of the key )

it does not print the fingerprint.

To print the fingerprint of a key

gpg --fingerprint friend@friendship.com


A public key could have been signed previously by other gpg users. On import of a new public key, you can check out all the signatures on the public key by

gpg --list-sigs friend@friendship.com

Keyservers

If you are using keyservers then

1. If you signed a friend's public key after downloading from the keyserver, then you can update the friend's public key with a copy of which you signed.

gpg --send-keys friend.friendship.com --keyserver subkeys.pgp.net(Enter the address of your key server here)

2. To receive a key from the keyserver

gpg --recv-keys friend.friendship.com(Here as usual, you can use the keyid)

3. Keep your keyring updated with any updates to the keys which you have downloaded from the keyserver. There would be changes to the public keys you downloaded a long ago from the keyserver, in terms of UIDs, email ids, the number of signatures on a particular public key

gpg --refresh-keys --keyserver subkeys.pgp.net

Privacy & Anonymity

Though, gpg keeps the information you want to share as private, it does not make you anonymous. But it can "help" you if you are serious on anonymity and you belong to the press. When you send encrypted information through regular public network channels like email, it is still possible to know who has sent the encrypted information, without knowing what is in the encrypted information. 

The public key is advertised publicly. It is trivial to find out the owner of a public key. If you dont want to share the public key with others, then how do you send personalized and encrypted information? One possible way is to encrypt your public key with the public key of the specific recipient. Send that encrypted key to the recipient, who in turn can get your public key by decrypting with his private key. The Tor network can be used for sending gpg encrypted information including the gpg encrypted public key.