Saturday, December 9, 2017

First land away since PPL renewal

Having done a bit of local flying, including a first flight with passengers I was itching to get out of the local area and head to a different airfield, so set up a plan to fly to Turweston airfield in Oxfordshire.

The weather was looking good for a trip on Friday 1st December, so I booked one of the PA28 Archers the day before, the only issue with the weather would be a cross wind from the north, so it all depended on the strength of the wind.

Arriving at the airfield, I signed the aircraft out, contacted Turweston with the airplane details as they request inbound pilots obtain prior permission and was told they were using runway 27 Right.

A thorough check of the aircraft inline with the PA28 checklist and we were ready to set off.  At Tatenhill the grass on the airfield is waterlogged at the moment so all the planes are parked on the tarmac which makes for a very crowded and complex environment and I had to wait a few minutes for one of the other aircraft to complete its run up and pre takeoff checks.

As Birmingham was on track and heading for the Daventry VOR made a nice kink I was planning to track the radial down to the VOR and turn direct to Turweston when passing Daventry town itself (about 5 miles short of the VOR) and do the reciprocal on the return journey.

Although there was almost a 90 degree crosswind it was fairly light so the take off and turn out of circuit was fairly comfortable.  Although there were few clouds, the base was around 1900ft on the QNH so I stayed below my prefered altitude until around Daventry when they cleared more.

Heading south I set the radio to East Midlands and set up their listening squawk, which was something new to me but something that I think I will use in the future.  Squawking the code for East Midlands allows them and other air traffic units that I am listening on that frequency, so they can give me a call if they need to.

Tracking the Daventry VOR did not go quite as planned on the journey south and I never really got on top of it.

Approaching Turweston I changed the squawk back to 7000 and called them up on the radio, where the joining instructions reiterated runway 27 RH.  Silverstone stood out as a great landmark, but I was late spotting Turweston airfield and put in an orbit north of the airfield to settle myself down and plan the circuit.  Joining downwind and heading down the circuit I heard someone joining for an overhead join.

The circuit at Turweston is odd in that the approach and departures are offset 20 degrees from the runway to avoid houses on the extended centreline, so this was a bit of a new challenge as the last time I had to contend with this was when I was training for my PPL back in the 90s.

My approach went quite well up until I ballooned the flare and so elected to go around and have another go.  Heading back up to circuit height I could see the other aircraft in circuit heading across the upwind of the airfield to start the downwind.  All through the circuit I was aware that it was going to be fairly tight as to whether he would still be on the runway when I arrived to land.  Fortunately he must have had the same problem as I had off the first approach and he also went around for a second attempt leaving the runway clear for me to land.  This attempt was a vast improvement on the first go and is probably one of the best landings since I restarted flying, definitely better than the landing at Tatenhill on the return flight.

Since I was last here there has been a large investment in the airfield and the airfield offices and control have moved out of their previous portacabins and into a nice shiny conference centre/tower complete with cafeteria.  So it was up to the top floor to pay the landing fee and then back down to the first floor for a light lunch and had the chance to bump into some people that I had known when I was flying previously.

The flight back was a lot more relaxed, and I managed to follow the radial back out from Daventry to Tatenhill.

Following us back into Tatenhill we were followed by a student in one of the Cessna 152s as she returned from her qualifying cross country.

After parking the aircraft we tidied up, paid for the flying and headed for home.

This trip allowed me to practice some things that I had not used for so long, and the return leg was much smoother and relaxed as I learned from the issues of the outbound lag and put them into practice for the return.

All in all a successful day’s flying.

Wednesday, September 27, 2017

Walk over The Bosley Cloud

Wanting a short, but slightly strenuous walk today, we decided to follow a walk that appeared in the walking guide 100 Walks in Cheshire by David Bishop (Route no. 52).

Near the start of the walk, Timbers Brook.

The route was easy to follow as it stayed on well developed paths, although we did decide to come of the route as the road that this follows was a bit busier than we would have liked.  There were a couple of times that we had to think about the directions on after we had reached the summit and were on our way down, but checking the map in and a bit of thought showed us the right way.

Panorama near the top.
Even though the weather was hazy, from the summit we could just about make out the radio telescope at Jodrell bank, which according to the sign by the trig point was 8 miles away as well as some of the larger buildings in Macclesfield and would look forward to popping up here again when the weather is clearer.

The walk starts off on an open track and heads through woodland most of the way to the summit.  Pausing at the first clearing that had a view we took advantage of the low seat that was there and had lunch.

As we approached the summit it cleared to open moorland where the best views are to be had in all directions, including a view down towards Rudyard lake.

By the trig point there is a metal plaque pointing out directions and distances to some of the local landmarks, but it is probably optimistic to say you can see London.

The Bridestones.
The walk downhill is also pleasant passing down steps and through more woodland down to the main road, here we walked the short distance to visit The Bridestones, which is the remains of a burial mound, the stones being those that surrounded the burial chamber itself.

Turning to the road we started walking towards the coach and horses, but gave up on this as it stayed to get into tight bends so we checked the map and found a small footpath that cut a corner back to one of the lanes that lead back to the car park.

Overall this was a nice walk, not too strenuous and with great views and a nice variety of terrain and landscape to walk through.

The directions in the guide were reasonably easy to follow and lead us on our way quite well.

Monday, September 25, 2017

Pilots licence renewal (after 17 years)

For a number of reasons 17 years ago I let my pilots licence lapse and stopped flying.

At the end of last year a few people suggested that I should see if I could get flying again. Fortunately I obtained my original licence under the old CAA rules which meant that it was valid for life as long as the pilot kept in current practice or satisfied an instructor during a flight test that the pilot possessed the necessary skills to continue flying.

First thing though was to visit an Aeromedical Examiner (AME) to get a medical sorted out, unfortunately the last test of the medical threw up a problem and the AME could not issue the medical at the time, extra tests would be required and he took a few minutes explaining how I could go about getting them done through the NHS, and provided a letter to take to my GP to get the ball rolling.

It took a few months and a number of tests, but eventually the Consultant declared me all clear, a letter was sent to the AME and a brand new medical certificate, backdated of course to the earlier date that the medical was undertaken.  So with a good 20 months medical it was time to move onto the next step.

Whilst waiting for the medical I had been looking around for a training operator, also checking what steps I need to actually renew.  The consensus was that renewal should be a proficiency check with a flight instructor, following a period of training to bring my skills back up to the standard.

Although there are a number of flying schools near me that had Cessna 152s.  In the past I had rarely flown high wing aircraft and decided to go with a school that had the more familiar, to me, PA28 series of aircraft, although they are around £15/hour more expensive.

My first lesson involved checking to see if I could land OK and getting used to the aircraft.  The first landing was really rusty and was a bit heavy on the nose wheel, not exactly the best way to land a PA28.  Also throughout the flight I was trending to lead with the rudder too much.  After around 10 circuits there was some improvement, but I left for the day feeling a bit deflated and thinking this was going to take a little longer than I originally thought.

Unfortunately this year's appalling weather the second lesson was cancelled due to fog on the airfield.

During the enforced gap I was able to go over the flying in my head, what I did wrong and what went right.  When getting in the aircraft I had lowered the seat quite low and thought it might help if I didn't the next time.

A few weeks later I was back and with a string of lessons already booked over the following couple of weeks.  The second lesson was better, I was relaxed with the aircraft from the start and the higher seating position made me more comfortable and in control.  At the end of the lesson and feeling a lot better about my flying the instructor said that the following day's lesson would be outside the circuit.

The third lesson started with a take off and heading out of the circuit to do some upper air work, I was asked to demonstrate a clean stall.  After carrying out the necessary HASELL checks I closed the throttle and lifted the nose quite high into the air, and executed quite a savage stall.  My instructor was impressed that I had remembered the HASELL checks, but didn't quite want such an aggressive stall. We continued with the lesson, through a clean stall and a stall in landing configuration. Then onto steep turns, a couple of practice forced landings.  Boy PA28 really falls out the sky if you stay at  100 kts and don't set up for best glide.

Returning to the circuit we finished off the lesson with a practice forced landing over the airfield and different landing configurations such as flapless and glide approaches.

I was feeling a bit better after this and even better still when after the flight he said that we should try for the test on the next flight.

Almost a week later and having planned a short navigation exercise to a disused airfield we set off into the air again.

Climbing out of the airfield, I set course for the airfield checking my course as we went along, the halfway point as we crossed the motorway and not forgetting to do a FREDA check the disused airfield appeared just to the right of the nose.

Happy with the Navex we turned back roughly towards the airfield and was given a heading to steer, once over open countryside carried out the upper airwork, stalls and steep turns etc.

A well executed PFL and we were heading back for an overhead join at the airfield and then into the circuit for a number of landings.

Landing off the glide approach we taxied back and after shut down from the passenger seat came the words “You tidy this up and I'll get the computer started and we will sort the paperwork out.”  I Smiled.

After the paperwork was finished, and a well earned coffee, I had a nice beaming smile all the way home.

Tuesday, August 1, 2017

Methods of two factor authentication

Most people are used to logging into a website using a username and password, however a number of security breaches have been caused by the weaknesses in the username/password login methods.

To combat these breaches most online organisations offer some form of 2nd factor login methods.  2nd factor (sometimes called two step) means providing a secondary method of authentication of a different type than the initial verification, eg. using a password and a thumbprint, or a password and a number provided by an SMS message.  This allows for the password to have been discovered by a third party by some method, but the account to remain secure.  It is important to note that the 2nd factor needs to be provided by some other method than the original factor, having a password and a pin number would not be useful as they would probably be exposed by the same weaknesses.

There are a number of two factor authentication methods that online organisations use in addition to passwords and I will take a look at three of the most popular methods for private 2 Factor authentication.

Authentication App

There are a number of authentication apps that you install on your mobile phone and then synchronise with the website with some method.

These offer time-based codes that change every thirty seconds or so, usually 6 digits long.  The user logs in with their username and password and is then presented with a request for the authentication code, the user opens the app and enters the authentication code for that website.  Most of these apps offer a countdown of the number of seconds left that the code is valid for so the user can wait until the next time slot if the current one is running out.

Once the app is installed on the phone setting up for websites that use this method is straightforward.  More than one website’s authentication code can be stored in the app so there is some flexibility.

A few apps and websites allow a slightly different method, when you log into the website a pop-up appears on your phone telling you someone is logging into your account and asks you whether to approve or block the login.

This is my prefered method of 2nd factor for websites, as it is simple and a lot of websites are supporting this method.  Twitter and Facebook have an authentication code app installed in their mobile apps that you can use to authenticate with their services.

Hardware token

Corporate organisations have used hardware tokens for a number of years for remote workers, the most common of these is the RSA token which was a small device with an LED display which displayed a code, similar to the authenticator apps, the main problem with these devices were that they are locked to one system so if you have to authenticate to multiple systems you need multiple keys.

Over the last few year a standard has been created called Universal 2nd Factor (U2F) has been created and has been implemented by online services, the U2F devices are low cost physical devices that use USB or NFC chips to present an authentication code to the service.

Physically they come in a number of shapes, some like small traditional USB sticks, others as flat sheets with just the USB pins at one end.  Often they have a push button or sensitive pad that you press to send the code, there is even one available with a fingerprint reader for extra security.
Yubikey U2F key

Initial setup requires that you register the device with the website or service that you wish to authenticate to and then the next time you need to authenticate with the service you are asked to insert the key, once inserted tapping the activation pad inputs a time sensitive code into the device that provides the authentication.

SMS messages

Often websites offer SMS message authentication, this is simply where you register your mobile number with the website and after you have entered your username and password the website sends you a text message with a login code, enter this code and the login is complete.

If this is the only option available on the website then using it is better than not using it however due to the nature of SMS, it not being encrypted and a few other faults it has been used in a number of banking frauds.  If there is a different option for 2 factor authentication then SMS codes should be disabled.


When enabling 2 factor authentication, a backup method of logging in should be set up and maintained just in case the authentication device is lost or has failed.  Most sites offer a set up backup login codes which you can print off and lock away in a safe.  Also you can use additional methods of 2 factor, such as an authenticator app and a hardware token.

In summary

If you haven’t turned on 2 factor authentication when it is available, please give it a try, the above methods are fairly straightforward to set up and use and provide a huge increase in the level of protection available to your data. have a list of websites that support 2nd factor.

If you only enable it for one or two websites, please set it up for your main email account or the one that receives all your password reset links to.

Saturday, September 20, 2014

2 Factor authentication.

Now is probably the time you should be turning on 2 factor authentication for websites, especially if you cannot remember complex passwords.

This should be definitely turned on, especially for the email address that use to send your password resets to.

I have used Google's 2 factor authentication for my google sites (and any other sites that I can add to this for some time.)  Its simple, works with an app on my mobile phone and has backup codes incase you lose the phone as well.

Setting up is easy, download the Google Authenticator app onto your mobile phone, then on your PC log into your google account and enter the account area, follow the tab for security and enter the 2-step verification page.  Choose the method that you wish to use to verify your account, and then follow the instruction to set this up.

I used the method which continually provides me with one use codes on my phone, as long as you have your phone with you you can use your password and the code to enter your account.

For PCs that you use all the time and where convenience is more important than security, then you can set these up to not require 2 step authentication, and indeed override this should the PC be stolen or you are ready to dispose of.

This method can be used with some other companies systems as well, one of the other accounts that I use with Google authenticator is my hotmail account to get access to all my microsoft systems.

Facebook also have a version of 2 factor authentication for login, which relies on you receiving an SMS on your mobile when you log into a browser or device that Facebook does not recognise, I would strongly recommend this feature being activated as well.

This advice is no excuse to have a simple password, but it can help mitigate any risks from a weak password, bearing in mind that even a complex password if your really unlucky be surprisingly weak.

Thursday, July 31, 2014

My experiences with Mobile Phone Roaming in Europe.

I have recently been on the continent, staying in Germany, Switzerland and finaly France.

Three UK expanded their ‘Feel at Home’ service to more countries including Switzerland and France on the 3rd July 2014.

Unfortunately the outbound leg of our trip through France started prior to the switch being thrown on this, however a few years ago before going on a trip to Italy I purchased a Vodafone Italy SIM card from Europasim , which was prepaid and had good roaming rates within Italy and throughout Europe. Previously I had also used Three’s daily £5 data tariff for all you can eat data for 24 hours, over a 14 day trip this would start getting expensive.

As I was researching for this trip I discovered that the rates had changed on the Vodafone SIM to be called ‘SmartPassport’, the SIM which I had was still live and so I arranged for the tariff to be changed to the Smart Passport and topped up the credit on it.

So my plan was to use the Italian SIM in the areas that Three did not cover with their feel at home package, and then change back to my Three SIM as we entered Switzerland.

Shortly after getting on the ferry at Dover for the run to Dunkirk, my phone connected to Maritime Net and ended up with £3.45 worth of data going over their network, so first lesson is to switch roaming off unless you're sure that you're within a good roaming area.

Approaching Dunkirk I switched over to the Italian SIM and was happy to see a connection and receiving a text message in Italian announcing that 3 euros had been debited and my allowance for the day.  Getting off the ferry I fired up Waze and was happy to see that it connected and downloaded my route to the apartment in Germany that we were staying, along with the emails that arrived whilst we were on the ferry.

For the next few days this worked perfectly, me having 3 euros debited and receiving the same text from vodafone.

The transfer from France to Germany worked fine, with only a couple of minutes lost connection whilst the SIM registered with the new Network.

The apartment was in an area that was only covered by a 2G signal (and did not have WiFi, but although the connection was slow, and I had to be careful to time big downloads and uploads for my quiet time, one night I downloaded the German language pack for Google translate.  I averaged around 100-200MBs/day, well within the 500MB allowance. Including one evening downloading the Google Translate German dictionary, with no problems.

During this time I made a few, although not many calls back to the UK, staying within the 25 minute call allowance.  I checked my credit amount a number of times using the short code 404 and daily the credit decreased by 3 euros each day.

Entering Switzerland I changed the SIM card back to my Three SIM, and waited a few minutes for the connection and confusingly received a text from Three explaining the roaming rates within the EU, shortly before receiving the text that I was in a feel at home country and I could use the phone as if at home.

I found the data rate and experience in Switzerland good and had no problems with signal.

The return back to the UK involved a night in France to break up the journey. Crossing the Switzerland/French border gave the same two texts, first the Euro charging rates, and then the Feel at home text.

During the trip abroad I found both SIM cards lived up to the expectations that I ahd and the service that was advertised.

Both cards could be slightly problematical on the move. The transfers between towers seemed occasionally not to happen, and I would loose signal, and wait some time for the SIM to be registered on the new network, although I did not notice this with the Three SIM until I was in France, so maybe the Swiss network is much better at this.

During the trip I noticed a higher than usual battery drain, probably due to the phone trying to find its home network rather than the roaming network.

It was nice returning back into Portsmouth that I did not have to change my SIM card and was ready to go on leaving the ferry.

I would recommend the Europasim product, just be aware that all the texts from the network are in Italian, although the Europasim website has a quick guide to most of these, so you can have at least a good estimate as to what each means. Also be very careful to read the setup for the APN, which Europasim have on their website as this could cause issues with your data signal.

If you are lucky to be on the Three network and are heading abroad to a Feel at home country, it works fine and you should have no problems, if you are not on Three you could always pick up a prepaid SIM card for the time you are away (make sure your phone is unlocked though).

Sunday, June 8, 2014

Cycle route North Hampshire from Sutton Scotney

Distance: 14.5 Miles
Terrain: Roads, no steep climbs, but parts of the route are seriously undulating.
Refreshments: Coach and Horses (Sutton Scotney), The Swan (Barton Stacey) & The Plough (Longparish).
Route: Runkeeper

This is a nice little route from Sutton Scotney to discover the village of Barton Stacey, and touch the ends of Longparish and Wherwell.  This route is 14.5 miles, but for a shorter route start from the village of Barton Stacey and do a shorter route.

The start point is the Coach and Horses in Sutton Scotney, heading up the side road to the left of the pub (Stockbridge Road), past Naomi house to the A30 and turn left.  Follow the A30 through a few undulations until the a right turn signposted Cocum Barton Stacey.

Arriving in Barton Stacey, there is the Swan Inn, should you need some early refreshment, along with a small store.

The Plough Inn, Longparish
Continuing straight up the road, signed as being 2.5 miles to Longparish, you will pass Dever Springs trout fishery, before passing over the busy A303.  Shortly after passing over the River Test you will reach the Village of Longparish, or at least its western end, at the main road turn left to pass The Plough Inn, which is again a nice place to stop for a drink.

Cross in Longparish
Continue along this road as it twists pas the church and the community hall, but take care as we are approaching the busy A303 again and if you miss the turn for the bridge over you could quite easily find yourself on the slip road.  Turn right just before the A303 following the signpost for Exeter, this will take you over the bridge.  Follow this as it curves round all the way to the T-Junction, and turn right to wind your way into the Village of Wherwell.  Again we don't quite make it all the way into the village as just after the primary school we turn left to join the road to Chilbolton.

Head down the B3420 as it twists left then right and continue along until you reach the A30 again.

Unless you started at Barton Stacey, continue along the A30 back into Sutton Scotney, turning right just after the A34 to return to the Coach and Horses.

If you started in Barton Stacey do start down the A30, but turn left signed Cocum Barton Stacey just after the rifle range to complete the loop to Barton Stacey.