Note 318
December 22, 2020
Why I Live In a Bubble
May 4, 2020
You look either silly or suicidal.
I know. lol. I'm wearing something that saves lives.
That doesn't look safe/You're gonna die, don't you know about CO2?
It's safe for me to wear. Yes, I know about the dangers of CO2. That's why my fan has a rated static pressure of 225 Pa, as outlined here.
You CAN kill yourself or someone else hastily emulating something this silly/suicidal looking.
There's something to be said about intuition, particularly yours in this situation.
What am I looking at?
You're looking at the Halo PAPR. This 3D printed model is an adaptation of what a surgeon might use in the operating room while treating COVID-19 patients.
Did you make this?
Yes and no.
While I had the idea to design a 3D printed PAPR very similar to this, my model made use of a full-face snorkel mask.
The man who designed this is Guy Kuo. Kuo is an anesthesiologist who practices in Bellevue, Washington at Overlake Medical Center and Evergreen Health. Apart from having one of the coolest specialties in medicine, he's also a 3D printer fanatic and talented designer and engineer!
Recently, Guy became of one my few man-crushes due to his ingenious design. What you saw me wearing was the "Halo PAPR" or Personal Air Powdered Respirator.
It can be found here.
https://bunnyscience.dozuki.com/Guide/Bunny+Science+PAPR/4
I have another, much bulkier PAPR design that is entirely my own which makes use of a ULPA ("Ultra Low Particulate Air") filter with a MERV 17 rating.
What is new is my adaptation for civilian use:
This alteration makes use of a Nalgene lid, a cut-up n95 mask, a carbon filter mask, some pillow stuffing (aka Ploy-fil useful for compressing the layers of the n95 together to maintain filter performance in addition to adding even more mechanical filtration) and aquarium silicone for a perfect seal.
Ok but why?
I'll be candid, the journey that ended here started with a sort of paranoia.
My 70-year-old mom is one of the best teachers I know. She teaches elementary and middle school as a retired teacher, turned substitute and tutor. Although she is out of work now, as are most of us including myself, I didn't know there would be a shelter-in-place order. Although I hate that she still needs to work, she's the most committed and caring person in my life. Her care and attention to students as well as my gratitude and protectiveness of her had me very concerned, to say the least. Anyone who works with children or know someone who does also knows just how often and easily those people get sick. I remember being pained every time I would see my mother battling whatever seasonal malady had been incubating among her students. I could not face the likely possibility that if she were to keep teaching that she, along with my father, would likely become very ill. I worried that even if they recovered, it might not be fully.
So rather than face this tragic likelihood, I decided to act. With social distancing loosening and uncertainty on the horizon as protesters and anti-vaxers selfishly storm the streets, I am acting once again.
As a wise former-man-crush once said: "You cannot get people to change by force. If you want change, you simply must provide a better alternative."
I act today not out of paranoia. I act to promote science, compassion for others, and creative, intrepid, action instead of ignorance, disregard, and indolence.
Finally, I also act to bring attention to Guy Kuo. Technologies like his Halo PAPR will allow caretakers and doctors in countries like India to protect themselves. It will allow people like me to protect my mom and dad. Kuo's competition, the 3M Versaflo TR-300 and similar are in short supply and can cost upwards of $3000.
How much did this cost you to make?
I was given 3D printer filament by a generous donor on Nextdoor for use in aiding healthcare workers. I took apart an old laptop and retrieved the 51mm blower fan myself. The rest has been put together with what I had around the house. Remember, I'm out of a job and out of money. I haven't even received my $1200 at this point in time.
Grand total of $0.
Why are you wearing a mask? Don't you have enough PPE already?
Look closely at the Halo PAPR. It's ok if you walk back to get a second look, I don't mind. You'll notice that while I'm protected by state of the art filtration and positive pressure...you...well you get the unfiltered exhaust.
The ONLY reason I am wearing a mask is to protect YOU.
You're welcome.
What are you printing right now?
Great question. I'm donating these through masksfordocs.
Can I buy one? (Mask or PAPR or other)
Maybe.
I am living entirely off of the generosity of close family and friends at this point.
You can definitely trade me something on my amazon wishlist or some gift cards for groceries though.
However, I don't know how I feel about the ethics of monetary donations just yet. I guess I'll leave it up to you.
If I get more filament I can donate more supplies to hospitals and doctors.
Shoot me an email: nocovid19here@pm.me
Check out my 3D prints while I work on getting my website working.
If you're hiring, please check out my landing page.
I also design websites, deliver groceries, and offer my consultation and mad research skills. My cup is as empty as my wallet; I'm open and willing to help however I can.
Donations and Cryptocurrency:
Bitcoin: 1E8CvXB4NcZ5vztFkRWKBN1P3r3rGHzpyH
- This one isnt on amazon: Lora32 V2.1 ESP32 OLED 0.96inch BLE WiFi Wireless Module IP5306 915MHz
I don't trust your links.
Good! Smart person. Try this out: https://www.virustotal.com/ or google it yourself if you've got a tin-foil hat/PAPR on too.
Who are you?
That depends on your metaphysical worldview, but this might help.
My best friend in LA, electronic musician fzen, joins the fight and ups the stakes.
His music is absolutely incredible. Seriously moving and melodic stuff. Hope it reminds you of all the beauty in the world. fzen spends hundreds of hours on each track. :o You heard it here first. :p
I wish I could see him right now, but we've got important things to do right where we are. I've finally mastered leveling my Ender 3, so already I'm seeing vast improvements in print time. I've also been using FreeCad to develop a honeycomb laminar flow HEPA powered design of my own. ;)
Pro tip: Use some Aquarium Silicone to coat the inside and out to ensure a watertight, durable design.
Lonny Shavelson, MD and
Thalia DeWolf, RN, CHPN of Bay Area End Of Life Options, these prints and those that follow are yours.
Keep up the amazing work. I can't think of better people or a better cause. :)
Sunny days ahead folks!
chattr and lsattr
March 10, 2020
On Linux operating systems, the chattr command modifies the attributes of files, and lsattr lists (displays) them.
In Linux, file attributes are flags which affect how the file is stored and accessed by the filesystem. They are metadata stored in the file's associated inode.
Description
chattr and lsattr are part of the e2fsprogs software package, available by that name in most package managers. The e2fsprogs homepage is located at http://e2fsprogs.sourceforge.net.
Note
Attributes are not the same as file permissions. For information about setting permissions, see chmod.
Syntax: chattr
<b>chattr</b> [<b>-R</b>] [<b>-V</b>] [<b>-f</b>] [<b>-v</b> <i>version</i>] [<b>-p</b> <i>project</i>] <i>mode</i> ... <i>file</i> ...
Options
chattr takes the following options:
| -R | Recursively change attributes of directories and their contents. |
| -V | Provide verbose output and display program version. |
| -f | Suppress most error messages. |
| -v version | Set the file's version/generation number. This is an arbitrary nine-digit number assigned to a file when it is created. It is not unique. It may be changed to any other arbitrary number. |
| -p project | Set the file's project number. |
| mode ... | One or more mode strings. For more information, see Mode strings, below. |
| file ... | The file or files to be changed. |
Mode strings
A mode string consists of an operator and one or more attributes. It takes the form:
{<b>+</b>|<b>-</b>|<b>=</b>}[<b>aAcCdDeijsStTu</b>]
One of the following operators must appear at the beginning of a mode string:
| character | operation |
|---|---|
| + | Attributes listed will be added to the file. |
| - | Attributes listed will be removed from the file. |
| = | The attributes listed will be added; any attributes omitted will be removed. |
The remainder of the mode string is a series of characters, each representing an attribute. They are case-sensitive, cannot be separated by whitespace, and may appear in any order. For a list of attribute characters, see Attributes, below.
Example mode strings are "+caS", "-Asd", and "=eAsS".
Multiple mode strings may be specified to combine + and - operators in a single command, e.g. "+asD -c" and "-a +s +D -c" are both valid.
Syntax: lsattr
<b>lsattr</b> [<b>-R</b>] [<b>-V</b>] [<b>-a</b>] [<b>-d</b>] [<b>-v</b>] <i>file</i> ...
Options
| -R | Recursively list attributes of directories and their contents. |
| -V | Display the program version. |
| -a | List all files in a directory, including those whose name starts with a period ('.'). |
| -d | List directories as regular files, rather than listing their contents. |
| -v | List the file's version/generation number in addition to its attributes. |
List of Attributes
The following characters represent attributes that may be modified by chattr or listed with lsattr.
| character | attribute | description |
|---|---|---|
| a | append only | The file may only be opened for writing in append mode: its existing data may not be overwritten. It cannot be deleted or renamed; hard links cannot be made to this file; most of its metadata cannot be changed. Modifying this attribute requires root privileges. |
| A | no atime updates | When the file is accessed, its atime record is not modified, which in some situations can reduce disk I/O. |
| c | compressed | Files with this attribute are automatically compressed by the kernel when written to disk. Its contents are uncompressed when read. Note: This attribute has no effect in the ext2, ext3, and ext4 filesystems. |
| C | no copy on write | Files with this attribute are not subject to copy-on-write updates. If this attribute is set on a directory, new files created in that directory will have this attribute set. Note: This attribute is only effective on filesystems which perform copy-on-write. On btrfs, this attribute should be set on new or empty files. If this attribute is set after a btrfs file already contains data, the time when its data will be stable is undefined. |
| d | no dump | Files with this attribute are bypassed in any backup initiated by dump, a legacy tool for ext2 filesystems. |
| D | synchronous directory updates | Changes to a directory with this attribute are written synchronously to disk. That is, the system waits for write completion before doing something else. Equivalent to the the dirsync option to the mount command, applied to a subset of files on a filesystem. |
| e | block extents | Indicates that a file should be stored using block extents. Data is stored contiguously between two blocks, and only those two blocks must be known to find the file's data. Block extent mapping may potentially save disk space, because it reduces the number of blocks which must be listed in the file's inode. |
| i | immutable | Files with this attribute cannot be deleted or renamed; hard links cannot be made to this file; most of its metadata cannot be changed; data cannot be written to the file. Modifying this attribute requires root, or a process with the CAP_LINUX_IMMUTABLE capability, as set with setcap. |
| j | data journalling | A file with this attribute has all its data written to its journal before being written to the file itself. Only effective on ext3 and ext4 filesystems which have journalling enabled and the "data=ordered" or "data=writeback" options set. If journaling is enabled in those systems, but the "data=journal" option is set, this attribute has no effect. Only root or a process with CAP_SYS_RESOURCE capability as set with setcap can change this attribute. |
| P | project hierarchy | A directory with this attribute will enforce a hierarchical structure for project IDs. Files and directories created in the directory will inherit the project ID of the directory. Rename operations are constrained so when those files or directories are moved to another directory, the project IDs will match. Hard links to these files may only be created if the project ID of the target and destination match. |
| s | secure deletion | If a file with this attribute is deleted, its data is overwritten with zeroes, similar to a simple shred. This attribute is ignored by ext2, ext3, and ext4 filesystems. |
| S | synchronous updates | When files with this attribute are modified, the changes are written synchronously to disk. Equivalent to the sync option of the mount command, for individual files. |
| t | no tail merging | A file with this attribute will not have any partial block fragment at the end of the file shared with another file's data. This attribute is necessary for software such as LILO, which reads the filesystem directly and is not aware of tail merging. Some filesystems do not support tail merging, in which case this attribute has no effect. |
| T | top of directory hierarchy | A directory with this attribute is deemed to be the top of directory hierarchies by the Orlov block allocator, used by ext2 and ext3. The attribute gives a hint to the allocator that the subdirectories are not related in how they are used, and their data should be separate when blocks are allocated. For example, the /home directory may have this attribute, indicating that /home/mary and /home/john should be placed in separate block groups. |
| u | undeletable | When a file with this attribute is deleted, its contents are saved, enabling their later undeletion. Undelete tools which can take advantage of this attribute include extundelete. |
Read-only attributes
The following attributes are read-only. They cannot be set or unset by chattr, but can be listed by lsattr.
| character | meaning | description |
|---|---|---|
| E | compression error | The filesystem is not able to automatically compress this file. |
| h | huge file | The file is storing its blocks in units of the filesystem's blocksize instead of in sectors. The file is, or previously was, larger than 2 TB. |
| I | indexed directory | The directory is being indexed with a hashed tree (htree). |
| N | inline data | The file has data stored inline, within the inode itself. |
| X | compression raw access | An experimental attribute indicating that the raw contents of a compressed file may be accessed directly. |
| Z | compressed dirty file | An experimental attribute indicating that a compressed file is dirty (incompletely written). |
Examples
View attributes of files
For this example, we will create three empty files with touch:
touch file file2 .file
We can view their permissions with ls, using the -l option:
ls -l
total 8 -rw-rw-r-- 1 hope hope 0 Jun 28 09:51 file -rw-rw-r-- 1 hope hope 0 Jun 28 09:51 file2
File names starting with a dot (period) are not listed by ls unless the -a option is used:
ls -a
total 28 -rw-rw-r-- 1 hope hope 0 Jun 28 09:51 file -rw-rw-r-- 1 hope hope 0 Jun 28 09:51 .file -rw-rw-r-- 1 hope hope 0 Jun 28 09:51 file2
Now let's view attributes by running lsattr:
lsattr
-------------e-- ./file -------------e-- ./file2
As with ls, we must use the -a option to view files whose name starts with a dot:
lsattr -a
-------------e-- ./file -------------e-- ./file2 -------------e-- ./.file -------------e-- ./. -------------e-- ./..
To view the attributes of a specific file or files, specify their names:
lsattr file
-------------e-- file
lsattr -a file file2 .file
-------------e-- file -------------e-- file2 -------------e-- .file
View attributes of directories
Now let's create a directory and subdirectory with mkdir -p:
mkdir -p dir/subdir
And create some empty files in those directories:
touch dir/file3 dir/file4 dir/subdir/file5
By default, lsattr does not traverse directories:
lsattr
-------------e-- ./file -------------e-- ./file2 -------------e-- ./dir
To recursively traverse and show the contents of directories, use -R:
lsattr -R
-------------e-- ./file -------------e-- ./file2 -------------e-- ./dir ./dir: -------------e-- ./dir/file3 -------------e-- ./dir/file4 -------------e-- ./dir/subdir ./dir/subdir: -------------e-- ./dir/subdir/file5
Change attributes
By default, the files and directories we created in the above examples (on Ubuntu 16.04) have the "block extents" attribute (e) set.
lsattr
-------------e-- ./file -------------e-- ./file2 -------------e-- ./dir
Let's give them the d attribute (a legacy attribute, meaningless on our system), using +d.
chattr +d *
lsattr
------d------e-- ./file ------d------e-- ./file2 ------d------e-- ./dir
Some attributes, such as a (append-only), may only be modified by the root user:
<a href="https://www.computerhope.com/unix/sudo.htm">sudo</a> chattr +a file
lsattr
-----ad------e-- ./file ------d------e-- ./file2 ------d------e-- ./dir
Attributes which apply only to directories, such as D, will not be set on regular files, successfully — no error will be returned. For example, if you try to run chattr +D on a regular file, chattr will do nothing to those files, and return a successful exit status.
Notice in the next command that we try to set the D attribute on both a regular file and a directory. The attribute is set on the directory, is not set on the regular file, and chattr returns successfully.
chattr +D file dir && lsattr
-----ad------e-- ./file ------d------e-- ./file2 ---D--d------e-- ./dir
(The && control operator will run the next command only if the previous command returns a successful exit status. For more information, see Shell grammar in bash.)
To unset an attribute, use the - operator before your list of attributes.
chattr -D dir && lsattr
-----ad------e-- ./file -------------e-- ./file2 -------------e-- ./dir
Only one operator may be specified per mode string, but you can specify multiple attributes one after the other (without whitespace), in any order. You may specify multiple mode strings, each with their own operator.
chattr +sSc -d * && lsattr
s-S--a--c-----e---- ./file s-S-----c-----e---- ./file2 s-S-----c-----e---- ./dir
If an attribute requires root privileges, but you are not running the command as root, chattr will not change any attributes for that file. It will continue trying to operate on other files, and when it completes, it will return a failing exit status (an error).
To illustrate this, in the next command, we'll try to set the a attribute on every file in the current directory without using sudo. This should fail (unless we are logged in as root), because setting a requires superuser privileges.
Also, note that in the next command we use echo to display the value of the bash special parameter ? (a question mark). The ? parameter contains the exit status of the previous command, so it will tell us if chattr succeeded (0) or failed (1). Like all bash parameters, we refer to its value by prefixing its name with $.
chattr -sS +a *; echo $?
chattr: Operation not permitted while setting flags on dir chattr: Operation not permitted while setting flags on file2 1
The exit status 1 indicates an error occurred.
Let's look at how the attributes changed:
lsattr
-----a--c-----e---- ./file s-S-----c-----e---- ./file2 s-S-----c-----e---- ./dir
Notice that file did not cause an error. It already had the a flag from a previous command, so it causes no error; and so the rest of the changes (-sS) went through just fine. The other file and directory both caused an error, and were entirely unchanged.
To set every file to match an explicit set of attributes, use the = operator. Any listed attributes will be set, and any not listed will be unset.
sudo chattr -R =es * && lsattr -R
s----------e---- ./file s----------e---- ./file2 s----------e---- ./dir ./dir: s----------e---- ./dir/file3 s----------e---- ./dir/file4 s----------e---- ./dir/subdir ./dir/subdir: s----------e---- ./dir/subdir/file5
Make files immutable
If you set the i attribute, a file will be marked as "immutable", meaning its data (and some vital metadata) cannot be changed, even by root, until the attribute is unset.
touch immutable && lsattr immutable
--------------e---- immutable
sudo chattr +i immutable && lsattr immutable
----i---------e---- immutable
<a href="https://www.computerhope.com/unix/umv.htm">mv</a> immutable newname
mv: cannot move 'immutable' to 'newname': Operation not permitted
<a href="https://www.computerhope.com/unix/urm.htm">rm</a> immutable
rm: cannot remove 'immutable': Operation not permitted
sudo rm -f immutable
rm: cannot remove 'immutable': Operation not permitted
You cannot create a hard link to an immutable file:
<a href="https://www.computerhope.com/unix/uln.htm">ln</a> immutable hardlink
ln: failed to create hard link 'hardlink' => 'immutable': Operation not permitted
Symbolic links are OK, though:
ln -s immutable symlink && ls -l symlink
lrwxrwxrwx 1 hope hope 6 Jun 29 07:49 symlink -> immutable
This is a good time to note that symbolic links have no attributes of their own:
lsattr symlink
lsattr: Operation not supported While reading flags on symlink
To make files mutable again, use -i:
sudo chattr -i immutable && mv immutable newname && lsattr newname
--------------e---- newname
Make files append-only
The append-only attribute (a) makes a file immutable, except that data can be added to it.
touch appendonly && lsattr appendonly
--------------e---- appendonly
sudo chattr +a appendonly && lsattr appendonly
-----a--------e---- appendonly
You cannot overwrite the file with redirection (>):
echo "Overwriting is not allowed." > appendonly
bash: appendonly: Operation not permitted
But redirecting append-only (>>) is OK:
echo "Appending is allowed." >> appendonly && <a href="https://www.computerhope.com/unix/ucat.htm">cat</a> appendonly
Appending is allowed.
echo "Appending is allowed." >> appendonly && cat appendonly
Appending is allowed. Appending is allowed.
Append-only files may not be moved, removed, renamed, or hard-linked.
sudo rm -f appendonly
rm: cannot remove 'appendonly': Operation not permitted
sudo ln appendonly hardlink
ln: failed to create hard link 'hardlink' => 'appendonly': Operation not permitted
For more information about redirection, see Redirection in bash.
chown — Change the ownership of files or directories.
chmod — Change the permissions of files and directories.
ls — List the contents of a directory or directorie