Social Deconstruction II

Posted on December 18, 2018 by Greg Moore

In a previous post, Social Deconstruction I reflected on a barrier that had been put up on a Thursday, and by Sunday, completely bypassed. I had recent cause to revisit that area again recently and

Barrier bypassed

as you can see, an actual, real gate has been put into the fence. The power of the crowd basically overruled the original intent of the landowner.

Of course, this could have been done from day one.

This is true in the IT world. How often has the security department come and said, “we’re implementing this new security policy” with little input from actual users and are surprised when users get frustrated and try to bypass the new security feature. I had this happen at a client of mine. In the case of the fence above, people bypassed the security the fence builders wanted (presumably to reduce liability), and by doing so, increased their chance of getting hurt (and ironically, presumably increasing liability).

One of the security features that I think annoys most of us are passwords, or more accurately arcane password requirements. For example, some systems require a certain amount of complexity, but don’t necessarily tell you what the rules for complexity actually are! Yes, I’ve had that happen. Turns out they required special characters, but, only a specific subset of special characters and the ones I tried weren’t on that subset.

Now a minimum password length, makes sense. A one character password can be cracked by anyone. But, what about short maximum password lengths? Yes, perhaps that was a good idea when memory and storage were scarce (ok even then, not a great idea) but not so much these days. Yet, I know at least one system where your password has to be between 8 and 14 characters.

Another annoyance is the “must change every N days” where often N is something like 90 (though I’ve seen even lower). What does this mean? Folks end up with passwords like: Secur3Passwrd$1, Secur3Passwrd$2, Secur3Passwrd$3, etc.

Truth is, many of the so called password rules, actually encourage us to create lousy password, and so we repeat stuff, or write it down or take other steps that make it easier for to use them, but also as a byproduct weaken passwords.

The National Institute of Standards and Technology recently released an updated set of guidelines: NIST 800-63B that discuss good password requirements (note I have NOT read the entire document, just large portions of it). Spycloud has a decent review here: New NIST Guidelines Acknowledge We’re Only Human. I’m not going to recap the recap here, but I will add what I generally do:

I use a password manager. You can read reviews for finding one that best meets your needs. Personally, I use one that does NOT have storage on the cloud. While in theory they’re encrypted and secure, I get paranoid. (Yes, I do recognize if someone compromises my desktop, they can get access to my local password manager. But on the other hand, if they get access to my desktop, they can probably just install a keyboard logger and I’m hosed anyway.)
I use a different password, automatically created by the above password manager for nearly every site of system I log into. This ends up meeting most (but not all) of the NIST suggestions (they’re certainly NOT easy to remember, but they don’t have dictionary words, can be as long as I need, most likely are NOT in a previous breech, etc.)

Note, I said most, not all. There’s a few places I used passwords I can remember. These are systems I interact with on a daily or near daily basis, such as my desktop, AND the password manager itself. There would be no point to have a password manager if I couldn’t log into it, or if the password were so simple anyone could guess it.

So, I make sure these passwords are easy to remember, but extremely hard to guess. (For example, they do NOT include the name of my first dog, my mother’s maiden name, etc.)

In conclusion, if you’re in charge of security, make it usable, or else people WILL try to bypass it, simply to get the job done. And, remember, you’re always in charge of your own security, so make it usable, but secure.

Age Impostor Syndrome

Posted on December 11, 2018 by Greg Moore

This past weekend I was at another successful SQL Saturday. It was, as always, great to see so many of my fellow speakers and friends.

I was perhaps a bit more nervous than usual for this SQL Saturday because I was giving a new technical talk and my demo wasn’t working like I wanted and I hadn’t done as many run-thrus as I like to do. But it was well received and people seemed to really like it. (For those interested, it was a demo of running SQL Server for under $200, including licensing and hardware!)

During a conversation this weekend I used the expression that I might grow old, but I don’t have to grow up. But I’ve realized it’s more complicated than that.

In the past week I’ve completed my 51st orbit of the Sun while still breathing
I’m preparing to cook dinner for a bunch of college students this weekend
I’ve been working with two recent college graduates on a couple of projects
I’m consulting on a new project and using my years of experience to guide it in the right direction
My son is completing his first semester at college and coming home this week
Apparently received praise (this is second hand) for work I’ve done in a volunteer community

Physically at times I sometimes feel my age, and there certain facts that suggest I really as old as I am; but mentally, I often actually forget I’m as old as I am. I wonder, “why do folks think so highly of me, I’m just a young kid trying to figure my way out in the world.” Then I realize, I’m not that young kid at his first programming job, trying to figure out how to create a make file. I’m a middle-aged man who has decades of experience in my various fields of expertise. People look to me, the way I look to my mentors because they expect me to have the answers! (And fortunately, they’re actually sometimes right.) Sometimes too I’ll be engaging with people my own age and they treat me as equals and I get excited that they’re treating someone half their age with such respect. Then I remember, “but wait I AM their age.” Or people half my age act as if they’re looking up to me and I want to say, “but I’m no different than you” but then remember, “Oh wait, I do have that many more years of experience.”

So, there’s still a bit of me thinking I’m an impostor. I really don’t know as much as people seem to think I do. Or that I’m not as old as I really am. Can one even be an age impostor? Not really, I mean age is a pretty objective fact. But the truth is, I don’t feel my age, and for that I’m grateful.

I’ll continue getting older, but I simply won’t grow up any faster than I have to.

One final request from this wizened old boy, make sure to subscribe if you haven’t! And speak a little louder so I can hear you.

Procrastination

Posted on December 4, 2018 by Greg Moore

“I’d procrastinate, but I keep putting it off.” It’s an old saw but I think there’s some truth to it, at least for me.

Actually the truth is, when I’m not busy, I tend to procrastinate and things don’t get done. But when I’m busy, I get more done. How many of us say “I perform better under pressure”? I know I do.

The other phrase that comes to mind lately is “When it rain, it pours.” The above two adages seem to be the story of my life lately. This is not necessarily a bad thing.

You see, in the life of a consultant it’s often feast or famine. And some times of the year are often more famine than feast. For example, my largest client goes into a code freeze during the last 2 weeks of the year. Taking this into account, I figured I’d have some downtime and be able to work on some projects around the house.

But then, last week, another client emailed me to ask about my availability. They’re a good client and I enjoy working with them, so I responded right away. Unlike my previous project with them that was just a few hours, this one was a top priority project with a firm deadline and lots of work in a short period of time.

Suddenly, my calendar was more full than I expected.

Then my largest client, during our weekly all-hands call, informed me that a project I had completed, they were probably going to take a completely different tact on, and “oh by the way, we’ve got a strict timeline!”

And then of course today, another client calls in with an issue.

Suddenly my calendar was even more full than I expected.

Oh, and did I mention I have a talk to present at SQL Saturday in DC this weekend? And the hardware I was going to use for it is not working?

Suddenly my schedule was completely topsy-turvy and I’ve had to work harder than ever. But, since I’m already busy, I’ve actually spent a little extra time on other projects that I had been putting off; like finishing the edits on my second article for Red-Gate’s Simple-Talk and then writing a first pass of my third article for Red-Gate’s Simple-Talk. I probably would have procrastinated on that last one a bit longer if I weren’t busy. I know, sounds backwards, but yes, being busy encouraged me to spend time writing.

Of course sometimes even some schedules have to slip, hence this post being 12 hours later than normally scheduled.

When it rain, it pours. And right now, that’s a good problem to have.

Why the submarine wouldn’t work

Posted on November 27, 2018 by Greg Moore

I was going through my old drafts and found this post I had started to write earlier this year but never finished. Actually it appears I meant this to be part of White (K)nights but I cut it out to make that post more readable.

During my media interactions I was asked multiple times to comment on Elon Musk and once or twice on his submarine. I tried to keep my comments fairly neutral, but the truth is, I and some of my fellow trained cave rescuers were pretty bothered by Musk’s attempted involvement. I got into at least one online debate about how the people in charge obviously were clueless and that Musk’s solution of a submarine was a brilliant idea.

It wasn’t and I figured I’d address some of my concerns. Please note as with all situations like this, I was not directly involved, so I’m going on publicly available facts and my training as a cave rescue person and a cave rescue instructor. I am also not in any way speaking on behalf of the National Cave Rescue Commission or the NSS.

Now let’s discuss the device itself:

It almost certainly would not have fit. By all accounts, the tightest pinch was 15″ and hard to navigate. Anyone who has moved through a cave knows that even larger passages can be hard to navigate. Locally we have a cave that has a pinch that’s probably close to 15″, but that is at the bottom of a body sized V-shaped passage. Unless you can bend in the middle, you will not fit through it. A cylinder like Musk designed, would not fit. I don’t know the passages in the Thai cave, but odds are there is more than one passage where flexibility is important.
It also, in many ways was superbly dangerous. Once sealed into the tube, there would be no easy way to monitor the patient’s vitals. And if the tube had started to leak (cave environments can be extremely destructive, even to metal objects), there appears there would have been no recourse except to keep swimming and hoping to get to an air filled chamber quickly enough and that was large enough to debug the issue.
In addition, if the patients were not sedated, I’d have to imagine that being sealed into such a tube, even with lights for 20-40 minutes at a time would have been sheer terror. As it is, the kids were in fact apparently heavily sedated (a fact that some of us still find a bit surprising, even though very understandable), and yet at least one started to come out of sedation while in a water passage. Without being able to directly monitor the vitals of the patient, who knows what would have happened.
There’s probably other issues I could come up with. But let me end with this one. Rarely if ever do you want to beta-test or heck even alpha-test, which is what this would have been, a brand new design in a life or death situation when there are alternatives.

Like our White Knights, we want our brilliant tech solutions, but often we’re better off adapting what we’ve done in the past. In cave rescue we try to teach our students a “bag of tricks” that they can adapt to each particular rescue. Foe example, there is no single rigging solution that will work for every rescue. How I might rig a drop in Fantastic in Ellison’s might be very different from how I’d rig a drop here in New York. How I package a patient for movement here may be different than in a Puerto Rican cave. And honestly I’ve seen a lot of high-tech equipment get suggested for cave rescue that simply doesn’t work well in a cave environment and we often go back to the simple proven stuff.

I will add a tease, to perhaps a future blog post, of a mock rescue rescue where a high-tech approach failed after several hours of trying, and the low-tech solution solved the problem.

Snow Days

Posted on November 20, 2018 by Greg Moore

“I sometimes hear a moment before sleep, that I can never remember whether it snowed for six days and six nights when I was twelve or whether it snowed for twelve days and twelve nights when I was six.” – A Child’s Christmas in Wales by Dylan Thomas

As I’m writing this there is snow gently falling from the sky and the ground is covered.

I woke up this morning to the sound of a plow scraping the roads clear. I got up to check the school closings list, expecting at least a 2 hour delay. Somewhat surprisingly there was none.

But it got me thinking about how the same event can be perceived differently by different people.

As a young kid, many of us loved the idea of a snow day. We hoped we’d wake up to the soft hush a blanket of snow causes, broken only by the occasional scrape of the snow plow. Perhaps we might hear the sound of wheels spinning as a car tried to gain traction to keep on its way. Some even created rituals, such turning their pjs inside out, or sleeping with a spoon under our pillows. (For the record I actually never even heard of any of these until I was an adult). A snow day meant a day of fun in the snow: building a snowman, or better a snow fort and having snow ball fights. I recall one particularly expansive snow fort friends and I built in a snow bank in the center of Falls Village where we grew up. It had a main chamber from which we could survey our domain and at least two side tunnels we could craw through, leading to smaller “towers” that could fit one of us, to provide flanking fire for anyone foolish enough to try an assault on the main chamber.

Sometimes we’d even play the hero and after one blizzard at least, a friend and I went through town, uncovering buried cars, just in case anyone was trapped. Fortunately no one was. Of course we also then had to at one point dodge a snowplow by scrambling through a 5′ embankment of snow created by previous plows.

As we got older, we may have given up on the rituals and built fewer snowmen, but we still enjoyed our snow days. It meant a break from school, perhaps a chance to catch up on homework. But it also often meant chores, the need to shovel the walk, or worse the driveway.

Then we got older still and now we didn’t get days off. We were told, “the office is still open. Please drive safely.” Now those spinning tires we heard as a child were us, trying to keep straight, and on the road, in order to get to work. Those snowplows we hoped to hear as a child were both a boon and a bane. They helped clear the roads, but also seemed to be in the way.

If our children were young enough, suddenly a day off from school for them, became a burden for us as we struggled to find a sitter or some form of daycare.

We no longer looked forward to forecasts of snow. We dreaded them. We started our own rituals, some actually more effective than what we practiced as a child. We’d pre-salt the walkway. We’d make sure we had a snowbrush inside the house ready to go so we could clear off the car before opening the door.

It was the same event, but a completely different perspective. I think I preferred the childhood perspective.

And the irony is not lost on me that my job now actually permits me to sit at home, avoiding the drive, and to write about the snow.

For me, even when I have to drive in it, I actually love the snow and snow days.

For you, I hope you get the day you want, young or old, snow or not.

“So, why are you sitting here?”

Posted on November 13, 2018 by Greg Moore

I had been anticipating the question and it was a fair question, after all, I was one of two men sitting at the Women in Technology Birds of a Feather table at PASS Summit. But let me back up a bit.

Last week was the PASS Summit in Seattle, an annual event that I mentioned two weeks ago that I was headed to. There are several thousand people that attend and in order to promote networking, in the massive lunch hall, they have a number of tables set aside for particular topics, i.e. “birds of a feather”. So if there’s a particular topic or interest group you are associated with you, you can sit at such a table and know you’re among like minded friends. For example on Day One I had set at the “Virtual and Local User Group” table. But today, I found myself at the Women in Technology table.

So why?

Let’s back up even further. I grew up in a small town in the northwest corner of Connecticut. I can’t say my parents were poor, but we probably lived below what many would consider a middle-class lifestyle. However, I was very fortunate to have hard-working parents and grandparents who helped, and more than a bit of privilege. What do I mean by this? One example comes to mind. A couple of years after college when I was first consulting, I needed a small business loan to cover a project for a client. I literally walked into the local bank and on my word got the loan I needed. Even then I realized I had a bit of privilege going on there.

As I’ve grown older, I’ve listened to more and more testimonies from women and persons of color and continued to realize how for granted I’ve taken many aspects of my life. As a result, I’ve worked to listen to others and try to increase their access to opportunities and gain the same privilege I was simply born with by being a white male.

So why was I there?

The question was not a surprise, since the table host, Kathi Kellenberger had said she wanted to go around the table and ask folks why they were there. fortunately she hadn’t started with me first! This gave me time to think about my answer.

To listen. To listen to two women of color talk about their struggles and efforts to make it into the world of being SQL DBAs. To listen to other women talk about their experiences and to learn from them.

So I gave that and a bit more as my answer and then shut up and listened. It was a great lunch and a great experience. As my friend, and WIT Virtual Group co-leader (along Kathi) Rie Irish is wont to say, “if women could solve these problems we’d have done so by now. We need your help”.

So to my fellow men out there, I would say, be an ally. Attend the WIT Luncheon (which was the day before) at Pass Summit. Encourage women to speak at your User Group and at SQL Saturdays, stop others from interrupting them during meetings, amplify their ideas. And sometimes, just shut up and listen. And if you’re involved with SQL Server and PASS and want more information reach out to Rie and Kathi and contact the Virtual Group the manage, Women in Technology. Trust me, men are welcome as allies.

Family

Posted on November 6, 2018 by Greg Moore

Over the weekend on my Twitter feed I saw some tweets about #SQLFamily taking the #SQLTrain up to Seattle for the PASS Conference I’m at this week. It made me reflective. As some of you may know, I grew up in a train station (no trains though) and have always loved trains. And the ride from Portland to Seattle is one I’ve wanted to make because of the scenery.

But I want to write more about family. Family can mean so many things. It can be your blood family, but it can be those you choose to associate with, or that chose you. Both have their value and place.

In my blood family, my daughter, as a tradition, has started to take me to see the latest Star Wars film when it comes out. This has led to some amazing moments, such as in 2015 when I got to see through her eyes, the excitement I felt at a similar age of “a new Star Wars movie“.

Unlike some, I loved The Last Jedi, for many reasons. Yes, it had some weak moments, but I think it was a great movie. And it makes me think about family. Something I alluded to in the post linked above. Kylo had his blood family. He had parents that loved him, an Uncle that care for him. But, he rejected all that, trying to find more. Ultimately, at the end of The Last Jedi we realize, before he does, that he’s utterly alone; that he has rejected everyone in the Universe that cared for him or tried to care for him.

Rey on the other hand, learns just the opposite. Many fans were upset to learn she’s not a Skywalker or a Kenobi or anyone famous. Her parents literally are nobody. She is, in the ultimate sense of the word, an orphan, without family. Or so she thinks. At the end of TLJ, it becomes clear, she is part of a family that has chosen HER, not because of blood, but because of who she is. And she has chosen them.

I am fortunate to have many families. I have my blood family, ones that I hold near and dear. I am fortunate to have them and have such great ones.

I have my #SQLFamily, which is a diverse group of people who all share one passion: SQL Server. It’s a bit nuts at times and we’re all different, but it’s a great group of people for that chosen field. I’m not sure they’re my ride or die family, but I’ll take them!

I have certain friends I consider a family. These are my ride or die family, the ones I would drop anything for if called and asked. I’m visiting some now in Seattle while here for the PASS Summit.

While here, I’ll be visiting yet another eclectic family, my ROC Family: folks who I have shared many adventures with as members of the Rensselaer Outing Club. We all share a common set of experiences and it binds us.

And finally today, election day, I think of a different family: one that I’m perhaps a distaff member of, but that is my friends and associates who are members of the LGBTQTI+ (and if I’ve left off any letters its through oversight not for lack of caring) community. They’ve invited me into their homes, to their birthday parties, weddings and more. Today I think about them because for many, today is about more than tax reform, or foreign policy, it’s about in some cases, whether or not their government will support and protect them, or possibly even try to define them out of existence. So I’m going to again break one of my own rules (what are rules for if not to be broken) and say, if you haven’t voted today, do so. And if you do so, think beyond simply your taxes, your religion and your other views and remember, we are all members of various families and elections can and do have consequences.

I love my families, all of them, in different ways and I hope you all are members of families that love and care. Not every family is of blood nor should it be nor does it need to be.

SQL Pass 2018

Posted on October 30, 2018 by Greg Moore

Next week I’m off to the SQL Pass conference in Seattle. This will be my 4th peregrination to Seattle in 4 years. This has become an annual trip for me. There’s one very obvious reason for going and then a 2nd also important reason. SQL Pass is one of the top events for folks who work with SQL Server. It’s a 3 day conference (plus up to 2 days of pre-con events, including at least one meeting I’ll be attending as our local group leader) full of technical sessions covering a wide range of topics related to SQL Server and related technologies.

Four years ago, when I first attended, I was a newbie and wasn’t sure what to expect. My father had recently passed and I wasn’t entirely sure I still wanted to make the trip. But tickets had been bought and the price to attend been paid, so I decided to go. One of the first (perhaps the first) session I attended, was a session by Kathi Kellenberger on how to get published as an author. I had for years toyed with an idea for a book and I figured it couldn’t hurt to attend and perhaps learn something. Her session was quite helpful and I approached her afterwards for more input and she introduced me to one of the editors at Apress. I pitched my idea and a few months later, the contracts were signed. All I had to do now was actually write the thing. So, I ended up writing IT Disaster Response: Lessons Learned in the Field. (btw, I do obviously recommend it, it covers IT disasters, plane crashes and cave rescues. It’s not your standard cut and dry boring book on disasters.)

A friend of mine who owns a book shop once said, “anyone can write a book, it’s harder actually publish a book.” I had now done both. It was a bit bittersweet because my dad had been an English major and had always wanted to write a book and be published. Now, admittedly, he wanted to write fiction, which I think is far harder, and in his day, the idea of “print on demand” like what Apress tends to do, didn’t really exist. And to be honest, at the end of the day, as Kathi warned me, if I was in it for the money, I’d be better off in terms of hours spent, getting a job at McDonald’s.

But, I digress. That book ended up being my first foray into actually getting paid to write. As I mentioned in an earlier blog post I’ve now contributed to Red Gate’s Simple Talk program with my post on an Intro to PowerShell. And my second post has been submitted and accepted and hopefully is going up in a few weeks or so.

So, to say my first PASS event changed my live would probably be accurate.

Beyond that one session four years ago, I’ve attended many other sessions and learned a wealth of knowledge and leveraged that in my job and in finding speakers for my local SQL Server User Group which I now lead. One of my favorite speakers I had in the last year was Bob Ward who did a remote presentation for us about SQL Server on Linux. And this despite me being a Patriots fan and him being a *cough* Cowboys fan.

So again, I look forward to seeing a lot of my #sqlfamily out in Seattle next week. But I still won’t be doing karaoke, sorry Aunt Kathi!

But I also mentioned a second reason for visiting: my non-sqlfamily, what I might call my #rocfamily. The Rensselaer Outing Club has a number of alumns who all live in the area and we’ve started a yearly tradition of getting together for take-out Thai food at the house I stay in. ROC in its own way changed my life, among other things, teaching me how to be a leader and an effective decision maker.

In addition to all my fellow ROCcers, there’s at least one from my days on sci.space.* on Usenet (where I can still be found btw) and a few other friends I’ve made over the years. I’m quite looking forward to seeing them all.

So see you all next week in Seattle!

The Color Purple

Posted on October 23, 2018 by Greg Moore

Ok, I’ll admit this post was inspired by a political article about a state turning purple. But, it’s not about politics.

It’s about wavelengths and human perception.

What is purple anyway? Historically it was the color of royalty, in part because the secret to making a dye of that color was a closely guarded secret, and expensive to boot.

Technically, it’s a combination of red and blue, but when seen as a spectral color (e.g. splitting white light with a prism) it has a wavelength between 380-420nm and is called violet. So we can see violet as a distinct wavelength or we can see purple as the combination of two colors. In fact, we can’t really create violet on a computer screen. Any purple you see in this post is a combination of red and blue (if we’re talking RGB space, 127,0,255 btw).

But what are we really seeing? That’s the part that fascinates me.

It’s tempting to think our senses accurately perceive the world, but the truth is that they at best our brains form an approximation of the world, and color is one of them. For example, in our eyes, most of us only have 3 types of cells, cones, that are sensitive to light and they are sensitive over a different range of wavelengths; Looking at this graph (courtesy of Wikipedia Commons) you’ll see that pretty much only the blue cones are reacting to wavelength of violet. But, if you mix red and blue, the cones react a bit differently, and we see purple.

So, we’re seeing a color that arguably isn’t what we might think: i.e. violet is not purple, even if we normally equate them and for all intents and purposes they can look the same to us.

Even then, we’re missing out. For example, in most people their lens blocks UV light (which is a good thing in the long run). But some people who have had their lens replaced w/o UV blocking materials can see into the UV. And of course some people, mainly men (because two cone genes are on the X chromosome) are colorblind. But even more rare (at this time there appears to be a single individual who has been identified) is tetrachromacy, there there’s a 4th cone, that is most sensitive between the green and red cones above.

Even more weird are “impossible colors” such as Bluish-Yellow, or Reddish-Green. I’ll let you Google those, but they’re pretty cool.

So, next time you see the color purple, stop and think about what your brain is really seeing, or not seeing. Are you actually seeing violet or purple?

P.S: we’ve got nothing on the Mantis Shrimp, which has between 12-16 different types of cones! That said, it doesn’t seem to be much better at picking out colors than your or I. But I do have to wonder what it would be like to have a higher cone count.

P.P.S: A story I once read, that I’ve never been able to verify is that during WWII the English experimented with lighting some airfields with lights in the near UV range (i.e. just outside of normal human vision) because they had discovered some folks could see into the near UV range. The idea was that by using such fields at night, without any normal light, they could safely operate at night without the Germans bombers seeing them. Apparently the idea fell apart when further research discovered that the people most likely to be able to see into near UV were blond-haired, blue-eyed of German descent. I’d normally write this off as conflating a number of myths, including the carrots make your eyes better, but I’ve seen elsewhere that apparently blue-eyed people ARE more likely to see into the UV range (from what I’ve read, it appears some UV may leak in through the iris). I’d love to find more details on this particular idea (which until I do, I will consider a UL). That said, I’ve got to say, I’ve found my night-vision is far better than most people I know. I guess that makes up for my normal vision for which I need glasses!

The Soyuz Abort

Posted on October 16, 2018 by Greg Moore

Many of you are probably aware of the Soyuz abort last week. It reminded me of discussions I’ve had in the past with other space fans like myself and prompted some thoughts.

Let’s start with the question of whether Soyuz is safe. Yes but…

When Columbia was lost on re-entry a lot of folks came out of the woodwork to proclaim that Soyuz was obviously so much safer since no crew had died the ill-fated Soyuz 11 flight in 1971. The problem with this line of thought was that at the time of Columbia, Soyuz had only flown 77 times successfully vs 89 successful flights since the Challenger Disaster. So which one was safer? If you’re going strictly on the successful number of flights, the Space Shuttle. Of course the question isn’t as simple as that. Note I haven’t even mentioned Soyuz 1, which happened before Soyuz 11 and was also a fatal flight.

Some people tried to argue that the space shuttle was far less safe because during the program it had killed 14 people during its program life vs 4 for Soyuz. I always thought this was a weird metric since it all came down to the number of people on board. Had Columbia and Challenger only flown with 2 on each mission, would the same folks argue they were equally safe as Soyuz?

But we can’t stop there. If we want to be fair, we have to include Soyuz-18a. This flight was aborted at a high altitude (so technically they passed the Karman Line and are credited with attaining space.) Then in 1983, Soyuz T-10a also suffered an abort, this time on the pad.

So at this point I’m going to draw a somewhat arbitrary line as to what I consider a successful mission: the crew obtains an orbit sufficient to carry out a majority of their planned mission and returns safely. All the incidents above, Soyuz and Space Shuttle are failed missions. For example, while Soyuz-11 and Columbia attained orbit and carried out their primary missions, they failed on the key requirement to return their crew safe.

Using that definition, the shuttle was far more successful. There was one shuttle flight that did undershoot the runway at Edwards, but given the size of the lakebed, landed successfully. We’ll come back to that in a few.

Now let me add a few more issues with the Soyuz.

Soyuz-5 – failure of service module to separate, capsule entered upside-down, and the hatch nearly burned through. The parachute lines also tangled resulting in a very hard landing.
TMA-1 – technical difficulties resulted in the capsule going into a ballistic re-entry mode.
TMA-10 – Failure of the Service Module to separate caused the capsule to re-enter in an improper orientation (which could have lead to a loss of the crew and vehicle) which ended up causing the capsule also re-enter in a ballistic re-entry mode. The Russians initially did not tell the US.
TMA-11 – Similar issue as TMA-10, with damage to the hatch and antenna that was abnormal.

And there have been others of varying degree. I’m also ignoring the slew of Progress failures, including the 3 more recent ones that were launched on a rocket very similar to the current Soyuz-FG.

So, what’s safer, the Soyuz or the Space Shuttle? Honestly, I think it’s a bit of a trick question. As one of my old comrades on the Usenet Sci.space.* hierarchy once said, “any time a single failure can make a significant change in the statistics, means you really don’t have enough data.” (I’m paraphrasing).

My personal bias is, both programs had programmatic issues (and I think the Russians are getting a bit sloppier when it comes to safety) and design issues (even a perfectly run shuttle program had risks that could not have been solved, even if they might have prevented both Challenger and Columbia). However, I think the Russian Soyuz is ultimately more robust. It appears a bit more prone to failures, but it has survived most of them. But, that still doesn’t make it 100% safe. Nor does it need to be 100% safe. To open the new frontier we need to take some risks. It’s a matter of degree.

“A ship in harbor is safe, but that is not what ships are built for.” – John A. Shedd.

A spacecraft is safe on the ground, but that’s not what it’s built for.

In the meantime, there’s a lot of, in my opinion naive, talk about decrewing ISS. I suspect the Russians will fly the Soyuz TM-11 flight as scheduled. There’s a slight chance it might fly uncrewed and simply serve to replace the current Soyuz TM-9 capsule, but it will fly.

Green Mountain Software

Formerly thoughts on SQL, Disasters and thinking. Now musings on PA School, and more.