The Daily Parker

With 58 days until the election, the noise keeps increasing. Here's some of it:

• Jeffrey Goldberg reports from multiple sources that the president referred to wounded soldiers as "losers" and "suckers" for serving the country. The administration moved quickly to lie about this.
• Andrew Sullivan calls the president a "metastasizing cancer."
• Catherine Rampell suggests ways to talk to right-wingers about the president's failures.
• Nick Martin asks, "how did 'if I die, I die' become this country's mantra?"
• Ross Douthat wonders "how many lives would a more normal president have saved?"
• A pro-president boat parade on Lake Travis, Texas, caused so much wake that several of the boats sank.
• Ken Griffin, the richest man in Illinois and therefore the one most likely to lose some money that he can never possibly spend, has donated $20 million to defeating the graduated income tax proposal in the state.
• Los Angeles has selected a new streetlight design, which is pretty cool.
• A bunch of 12-year-olds have discovered that the Edgenuity learning platform has easily-defeated grading algorithms.
• David Benioff and DB Weiss will adapt Liu Cixin's The Three-Body Problem for Netflix.

Finally, The Smithsonian describes how Greg Priore managed to steal priceless documents from the Carnegie Library of Pittsburgh, because he was in charge of security for those items.

This is my 55th post this month, and the fifth month in a row in which I've posted over 50 times. That brings my 12-month total to 581, the third record in a row and the fifth record this year. I guess Covid-19 has been good for something.

Here's what I'm reading today:

• Authorities in Tampa have charged 17-year-old Graham Clark with masterminding last month's massive Twitter hack.
• The Atlantic's David Graham says the president is trying to destroy the election's legitimacy.
• George Will points to the relationship between authoritarianism and emotion.
• Two large restaurant groups in Chicago and 40 smaller restaurants have sued 19 insurance companies for not paying claims related to state-ordered closings.
• The New Yorker's Masha Gessen believes "Homeland Security was destined to become a secret police force."
• New Republic's Jake Bittle bemoans "the Right's increasingly unhinged fight against Black Lives Matter."

I'm excited to add a notch on the Brews and Choos project in a few hours. Check back tomorrow.

First: the difference between how Garmin handled a global outage that lasted 5 days, and how SendGrid managed one that lasted 5 hours. SendGrid handles billions of emails per day, including for Microsoft and other massive companies. So SendGrid going down didn't inconvenience a few athletes and pilots; it crippled Fortune-500 companies' marketing departments. (And it delayed a scheduled release on my own team.)

Within about an hour of their outage, SendGrid created an incident response page to which they posted updates every half-hour. They clearly stated what was going on and how they were trying to fix it, even as they were discovering for themselves what had happened:

Contrast that with Garmin, who still haven't really explained what happened or why it took so long to resolve the outage. (They finally declared their remediation "complete" yesterday, almost 6 days after the outage started.)

Second: the difference between how Germany (and other rich countries) have handled Covid-19 and how we have. Josh Marshall looked into the numbers:

The head of Germany’s equivalent of the CDC told reporters today that he’s “very concerned” about the rising case numbers in the country and accuses Germans of becoming “negligent” in their adherence to mitigation measures. He has good reason to be concerned.

Today Germany reported 638 new cases of COVID. That comes out to .76 cases per 100,000 residents. Let’s round that up to 1 new case per 100,000 for good measure. (The need for round numbers will become clear.)

Today New York State had 3 cases per 100,000. So Germany is concerned by 1/3 the number of cases as we have in New York state, a state which is probably controlling the disease as well as any other state in the country.

Florida today had 43 cases per 100,000. Florida’s outbreak is more than forty-three times the size relative to population.

To state the point baldly, Germany is very concerned about a rise in cases that would still be dramatically better than any other part of the United States. They’re ramping up border restrictions to get things back under control and chiding the population to redouble its collective efforts.

[S]eeing this as, "well, look, everyone’s having problems." Or "we’re not the only ones having new outbreaks" or "we can’t go back to shutdowns…" ... only captures how Americans are having a hard time grappling with just how many universes away we are from what is happening in other countries which are comparably affluent, industrialized and able to mount an effective response.

We’re failing that badly.

Anthony Fauci was on BBC just now, struggling not to call the president out on his criminal negligence. Only 98 days until we can vote the bastard out.

Even as Garmin picks up the pieces from what they now admit was a massive ransomware attack, bulk email provider SendGrid has gone down spectacularly.

I use SendGrid, as does my company, for status emails and such.

Here's my problem, though: I have a code update to put out that specifically targets a bug in SendGrid's .NET library that they claim to have fixed. My automated build pipelines won't release new code unless all the unit tests pass. Right now, the SendGrid tests fail sporadically, and at least one fails every time the tests run.

Ah, technology.

Today I finally solved a problem that has nagged me for months: Given a .NET Core 3.1 Web API, NLog, and a custom log target for NLog, how could I pass secrets into the log target using Azure Key Vault?

The last bit required me to add Azure Key Vault support to the InnerDrive.Logging NuGet package, which I did back in February. The KeyVaultSecretProvider class allows you to retrieve secrets from a specified Azure Key Vault. (I'm in the process of updating it to handle keys as well.) Before that, you'd have to put your secrets in configuration files, which anyone on your development team or who has access to your Git repository can see. For example, to use our SendGridTarget class, you would have to put this in your nLog.config file:

<extensions>
	<add assembly="NLog.Web.AspNetCore"/>
	<add assembly="InnerDrive.Logging"/>
</extensions>

<targets async="false">
	<target xsi:type="SendGridTarget"
	        name="sendgrid"
		apiKey="{supposedly secret key}"
		applicationName="My Cool App"
	        from="service@contoso.org"
	        to="admin@contoso.org"
	/>
</targets>

That is...suboptimal. Instead, you want to use a class that implements ISecretProvider and inject it into the SendGridTarget class through this constructor:

/// <summary>
/// Creates a new instance of <see cref="SendGridTarget"/> with
/// a specified <see cref="ISendGridSender"/> implementation.
/// </summary>
/// <param name="sender">The <see cref="ISendGridSender"/> to use</param>
/// <param name="secretProvider">The <see cref="IConfiguration"/> to use</param>
/// <param name="apiKey">The API key to use</param>
public SendGridTarget(
	ISendGridSender sender, 
	ISecretProvider secretProvider = null, 
	string apiKey = null)
{
	IncludeEventProperties = true;
	if (null != secretProvider) Configuration = secretProvider;
	if (!string.IsNullOrWhiteSpace(apiKey)) ApiKey = apiKey;
	_sender = sender;
}

And now I'm going to save you about 30 hours of research and frustration. To get NLog to inject the secret provider into the target, I added this method to Startup.cs:

public void Configure(IApplicationBuilder app, IWebHostEnvironment env, IComponentContext container)
{
	// Setup code elided
	ConfigureLogging(container);
}

public static void ConfigureLogging(IComponentContext container)
{
	var defaultConstructor = ConfigurationItemFactory.Default.CreateInstance;
	var secretProvider = container.Resolve<ISecretProvider>();
	ConfigurationItemFactory.Default.CreateInstance = type =>
	{
		if (type == typeof(SendGridTarget))
		{
			var sendGridSender = container.Resolve<ISendGridSender>();
			return new SendGridTarget(sendGridSender, secretProvider);
		}

		return defaultConstructor(type);
	};
	LogManager.Configuration = LogManager.Configuration.Reload();
	NLogBuilder.ConfigureNLog(LogManager.Configuration);
}

(Note that the ISecretProvider and ISendGridSender classes need to be registered with your dependency-injection framework.)

Today was a good day.

Four days after I switched from Fitbit to Garmin, all of Garmin's online services have gone offline:

The problems with those services also mean that a range of features can't be used on Garmin's own devices: it is not possible to create new routes to go running or cycling, for instance, or to share those activities on services like Strava once they are completed.

The devices themselves continue to work as normal with the data they do have, however, meaning that any data collected during the outage will be safe.

Garmin wrote on its official Twitter pages that the problems were also affecting its call centres, leaving users unable to get in touch through calls or online messages.

"We are currently experiencing an outage that affects Garmin Connect, and as a result, the Garmin Connect website and mobile app are down at this time," it wrote.

"This outage also affects our call centres, and we are currently unable to receive any calls, emails or online chats. We are working to resolve this issue as quickly as possible and apologise for this inconvenience."

This is not what Garmin customers want to see:

The error message on the Garmin Connect website suggests the problem is with their Cloudflare equipment:

Update: Based on Garmin employee's social-media posts, ZDNet now reports that the company experienced a catastrophic ransomware attack, most likely a new strain of WastedLocker. Fortunately, my Venu can hold 200 hours of data. So as long as they get it back up within a week or so, I shouldn't lose anything—unless the ransomware attack already destroyed my data from this past week.

I think today is Tuesday, the first day of my 10th week working from home. That would make today...March 80th? April 49th? Who knows.

It is, however, just past lunchtime, and today I had shawarma and mixed news:

• Carbon emissions have declined 17% year-over-year, thanks to Covid-19-related slowdowns reducing petroleum consumption. (See? It's not all bad news.)
• Crain's Chicago Business reviews how businesses rate Mayor Lori Lightfoot's first year in office. And their editorial board says we should "start rethinking 'normal'."
• Consistent with the way authoritarian governments have always worked, Attorney General Bill Barr wants to send his own personal history down the memory hole.
• Speaking of populist lies, McSweeney's has the new New York Times style guide on how to avoid saying "the president lied."
• Scientific American explains "death awareness" and how it makes people respond to, say, pandemics.
• Metra, Chicago's heavy-rail commuter agency, will break ground on a new station in Edgewater this month.

Earlier, I mentioned that the state's unemployment office accidentally revealed thousands of records in an own goal. Turns out, Deloitte Consulting did the work, so I am no longer surprised. Note to anyone who needs software written: don't hire a big consulting firm. They don't attract the best developers because they use manager-driven development patterns that irritate the hell out of anyone with talent.

Charlie Pierce, noting that "[p]eople with firearms forced the civil government of the state of Michigan to shut itself down," wants to know in what sense this isn't terrorism. In other fun weekend stories:

• The Illinois Dept. of Employment Security had a "glitch" in their unemployment claims processing app that exposed private information. I'm curious who wrote the software.
• Jared Kushner: evil and stupid.
• Speaking of evil and stupid, the president continues to downplay and undercount Covid-19 deaths because, let's face it, he's responsible for many of them.
• Chicago faces another $1bn budget hole next year.

And it's pouring, and will continue to do so for several more hours.

So believes NYU media professor Jay Rosen about how President Trump will try to win this fall:

The plan is to have no plan, to let daily deaths between one and three thousand become a normal thing, and then to create massive confusion about who is responsible— by telling the governors they’re in charge without doing what only the federal government can do, by fighting with the press when it shows up to be briefed, by fixing blame for the virus on China or some other foreign element, and by “flooding the zone with shit,” Steve Bannon’s phrase for overwhelming the system with disinformation, distraction, and denial, which boosts what economists call “search costs” for reliable intelligence.

Stated another way, the plan is to default on public problem solving, and then prevent the public from understanding the consequences of that default. ... The manufacture of confusion is just the ruins of Trump’s personality meeting the powers of the presidency. There is no genius there, only a damaged human being playing havoc with our lives.

In other fun stories:

• Adam Serwer argues that "the coronavirus was an emergency until Trump found out who was dying."
• Jake Bittle explains "why conservatives dismiss the dangers of the coronavirus."
• Chicago has its own plan to reopen, and it has some differences with the Illinois plan.
• Once things do open up, The Atlantic describes how you can stay safe.
• While you wait for that, check out this excellent set of graphics about how Covid-19 mitigation is progressing in states and countries.
• The city of Palm Beach, Fla., has had just about enough of its most famous resident—starting with the fact that he isn't even allowed to reside there under a 1996 agreement.
• Chicago's police union has just elected a right-wing Trump fan, which we knew would happen because his opponent was also a right-wing Trump fan.
• In June 1965, six English boys were shipwrecked on a deserted island near Tonga and didn't kill each other before (or after) their rescue on 11 September 1966.
• Unrelated to anything corona, C# 8 will have doubly-linked lists. Finally.

Oh, and 151 years ago today, the Union Pacific and Central Pacific railroads completed the Transcontinental Railroad.

Remember slow news days? Me neither.

• Republican legislators and business owners have pushed back on Illinois Governor JB Pritzker's plan to re-open the economy, preferring instead to force their employees into unsafe situations so they can return to making money.
• Professional dilettante Jared Kushner's leadership in getting a bunch of kids to organize mask distribution went about as well as one might predict.
• More reasonable people simply see how it means we're going to be in this a while.
• California has sued Uber and Lyft for violating AB5, claiming the two ride-sharing companies “gain an unfair and unlawful competitive advantage by inappropriately classifying massive numbers of California drivers as independent contractors,” according to California Attorney General Xavier Becerra.
• Assuming states were allowed to go bankrupt, Crain's Steven Strahler believes an Illinois bankruptcy might not be what anyone actually wants.
• Illinois' $560m shortfall in gasoline taxes right now has put transit projects at risk.
• The BBC tries to help the rest of the world understand why the US has a backlash against face masks, as does NBC.
• If you take New York, New Jersey, and Connecticut out of the equation, the number of Covid-19 cases continues to rise in the US.
• Bottled water sales have gone up 57% year-over-year, so Consumer Reports wants to know why people are paying so much for someone else's tap water? Especially since bottlers often don't pay their water bills while residents are getting their water shut off.
• Anyone remember that it's the 20th anniversary of the ILOVEYOU virus?

And finally, a cute diner in Toronto where I had breakfast last June has moved to delivery service during the lockdown. Too bad they can't deliver to Chicago.