This summer I took my Dell Latitude D830 with me on holiday to view the movies that I recorded with a Panasonic HD video camera.
Frustratingly enough, in France it turned out to be impossible to play them on my laptop 
Spent hours fiddling with every imaginable setting. At home everything worked fine though.
Yesterday I had packed my stuff to go watch a movie at a friend’s house, and when checking the downloaded MKV again I noticed that VLC had huge problems playing it, both 720p and 1080i H264 files.
Everything started working when I accidentally swapped power supplies. Turns out the D830 (maybe other models too) severely slows down when you use the small 65 Watt power supply.
Tip: ONLY use the 90 Watt model, unless you want to experience Pentium 4 speeds…
VLC H264 performance issues – solved
January 5th, 2010Sysprep Windows 7 & Secunia PSI
November 30th, 2009I am cooking up an unattended Windows 7 installation image for our users. This is done by carefully preparing a Reference VM using the Audit Mode. This basically means it logs on as administrator, and after sysprepping with the new CopyProfile option, this becomes the profile for newly created users.
I ran into an issue that when the newly created user logs in after installation, Secunia PSI is not started any more.
The reason is that if you install it in Windows 7 (and probably in Vista as well), PSI is not a real service, but merely a task that runs with highest privileges at logon. The task is configured to run with the credentials of the user that installed it – in this case Administrator. However, that account is wiped during sysprep, hence the task cannot be run.
Since I consider Secunia PSI to be vital, I searched around but no solution. I guess because PSI is not meant to be sysprepped and all, and you need Secunia’s corporate version (CSI) for that.
Since CSI was not a suitable solution in our scenario, I worked around quite nicely.
In the sysprep unattended xml file, define a script to be run right after initial logon of the new user. This is done using the FirstLogonCommands option. Suppose it is C:\tmp\runonce.bat.
The new Task Schedular in Windows Vista and 7 is able to import and export its tasks as XML files. The trick is to remove the existing task, which is using the Administrator account, and create a new one using the same XML code, but with the credentials changed to the new user.
Since there is no sed/awk in Windows, I had to resort to a vbscript called SearchAndReplace.vbs, which you can download here: http://www.ericphelps.com/scripting/samples/
The relevant part of my runonce.bat looks like this:
C:\tmp\SearchAndReplace.vbs C:\tmp\Secunia.txt Administrator %USERNAME% schtasks /delete /TN "Secunia PSI Logon Task" schtasks /create /TN "Secunia PSI Logon Task" /xml C:\tmp\Secunia.txt
The Secunia.txt is an XML export of the original Secunia PSI Task, and has the string Administrator. This is replaced by the new user, and then imported back. For some obscure reason, the search/replace does not work when the file has an xml extension – that is why I use txt – whatever. You can create it yourself using schtasks.exe.
After the next reboot or logoff-logon PSI will happily start up 
Bootcamp FAT32 vs. NTFS
October 28th, 2009When installing Windows XP on a Mac, BootCamp creates a FAT32 partition for Windows, with ID “BOOTCAMP”.
When you remove that partition during the Windows installation process, and replace it with an NTFS one, Windows will happily install, but fail upon reboot with:
Windows could not start because the following file is missing or corrupt:
\system32\hal.dll
Please re-install a copy of the above file
The trick to get this working, is to leave the partition schema intact, and only reformat the filesystem.
What you should do, is select the FAT32 BOOTCAMP partition to install Windows on, then pick this option:
Format the partition using the NTFS file system (Quick)
Then press F to format the drive
This should give you a working Windows XP installation.
‘Onze welvaart is geleend’
September 5th, 2009Op vrijdag 14 augustus verscheen in de HP/De Tijd een interview met Kees de Kort.
Kees de Kort (52), financieel analist bij AFS Capital Management en beurscommentator bij BNR Nieuwsradio, staat bekend als somberste econoom van Nederland. Een gesprek over onterechte koersstijgingen en falende toezichthouders. ‘De reĆ«le economie staat er nu nog slechter voor en dat kan nog lang duren.’
Lees hier het volledige artikel (PDF).
RoundCube email hangs on “Sending message…”
August 16th, 2009While configuring one of my clients RoundCube installation in combination with Plesk, it would work almost OK, except that when sending mails RoundCube would hang at the spinner with “Sending message…”.
After some digging it turns out that the Plesk-bundled PEAR module directory was before the RoundCube bundled PEAR modules directory. Both contain Mail_Mime, but the Plesk version was older and did not contain the getMessage() function.
Something similar to this will pop up in apache errorlog:
PHP Fatal error: Call to undefined method rcube_mail_mime::getMessage() in /usr/share/psa-horde/program/steps/mail/sendmail.inc on line 492
This was fixed by changing the include_path so that the RoundCube modules come first for this specific vhost.
Don’t know what else will break further up the chain however 
550 User on holiday
February 26th, 2009Usually vacation messages are sent from userland software, but that option has the disadvantage that you still receive lots of messages during your holiday. Also, because the mailserver accepted the message, you have the responsibility to handle it.
In order to get around this, configure your mail server with a custom permanant error for your address. This way your messages will bounce back to the sender, and you will not receive any messages.
People cannot claim that they sent it – and you can prove it. Presto – no more mailbox weeding after returning from holiday.
Postfix configuration: /etc/postfix/main.cf:
smtpd_recipient_restrictions =
pcre:/etc/postfix/smtpd_rcpt_map
/etc/postfix/smtpd_rcpt_map:
/(dick|visser)@tienhuis.nl/ 550 User on holiday
Best regards
Running Secunia PSI as non-admin
February 21st, 2009Your machine was compromised (again!) by malware you caught up somewhere on the web. Sick and tired of it you went looking for a solution and after reading my religious Non-Admin HOWTO you decided to bite the bullet and downgrade yourself to the Users group. To keep all your applications up-to-date you installed Secunia PSI, which seems to work fine, but unfortunately it only runs with admin privileges:
You seem to have to choices, both of which suck:
- Be admin and run the PSI. You system is ready to be screwed but you do know about vulnerable 3rd party apps
- Be non-admin, and don’t run the PSI. You are saver but you don’t know about vulnerable 3rd party apps. PSI only starts with admin privs so you log in with your admin account once a week and do a scan.
Secunia says it is designed this way so though luck for you. Damn!
However, using RUNAS there is a middle-of-the-road way to have the best of both worlds:
Edit your Secunia startup shortcut C:\Documents and Settings\Joe Average\Start Menu\Programs\Startup\Secunia PSI and change the target to:
runas /user:administrator /env /savecred "C:\Program Files\Secunia\PSI\psi.exe --start-in-tray"
(While you’re at it, consider moving the shortcut to the All Users settings)
Now you can be non-admin and run PSI
Een goed begin…
January 4th, 2009
Is het halve werk. Donderdagochtend met Vincent naar Scheveningen gereden om de nieuwjaarsduik te doen
Michiel Meurs & Dorknoper
December 7th, 2008Is het iemand al eens opgevallen welke fysieke gelijkenis er is tussen Michiel Meurs, de voormalig financieel directeur van Ahold, en ambtenaar eerste klasse Dorknoper?
Ambtenaar eerste klasse Dorknoper
Michiel Meurs
Fixing the Apache “unable to include…” localised errors
November 10th, 2008Apache includes a nice feature that displays localised errors. This makes use of Server Side Includes (SSI).
When you use PHP and have it also parse .html documents, your localised errors are broken. In fact, because the initial error will generate new errors, it becomes a mess. You typically see this in your error log:
unable to include "include/top.html" in parsed file /usr/share/apache2/error/HTTP_NOT_FOUND.html.var unable to include "include/bottom.html" in parsed file /usr/share/apache2/error/HTTP_NOT_FOUND.html.var
I fixed this by using a new extension .err for the error documents.
Snippet from my apache2.conf:
AllowOverride None
Options FollowSymlinks Includes
AddType text/html err
AddOutputFilter Includes err
AddHandler type-map var
Order allow,deny
Allow from all
LanguagePriority en cs de es fr it nl sv pt-br ro
ForceLanguagePriority Prefer Fallback
Then go into /usr/share/apache2/error and rename all files to have .err.var extension (instead of .html.var):
rename 's/\.html\.var/\.err\.var/g' *
Rename the tree files in includes dir:
rename 's/\.html/\.err/g' includes/*
Finally recursively replace the strings in the type-map files too:
perl -pi -e 's/\.html/\.err/g' *
You /usr/share/apache2/error tree now looks something like this:
contact.err.var HTTP_BAD_GATEWAY.err.var HTTP_BAD_REQUEST.err.var HTTP_FORBIDDEN.err.var HTTP_GONE.err.var HTTP_INTERNAL_SERVER_ERROR.err.var HTTP_LENGTH_REQUIRED.err.var HTTP_METHOD_NOT_ALLOWED.err.var HTTP_NOT_FOUND.err.var HTTP_NOT_IMPLEMENTED.err.var HTTP_PRECONDITION_FAILED.err.var HTTP_REQUEST_ENTITY_TOO_LARGE.err.var HTTP_REQUEST_TIME_OUT.err.var HTTP_REQUEST_URI_TOO_LARGE.err.var HTTP_SERVICE_UNAVAILABLE.err.var HTTP_UNAUTHORIZED.err.var HTTP_UNSUPPORTED_MEDIA_TYPE.err.var HTTP_VARIANT_ALSO_VARIES.err.var include README
Now your localised errors should be back again, and you logs will not be flooded anymore.