For the past month or two, my place of work (this very website) has been plagued by a relatively harmless but deeply mystifying figure: the phantom lunch thief. What’s happened since
has followed a trajectory sure to be familiar to anyone who’s ever worked in an office with more than, say, 30 employees: a menacing, all-caps Post-It note was posted, instructing the
thief: “PLEASE DO NOT TAKE FOOD THAT DOESN’T BELONG TO YOU.” The appropriate authorities were alerted. The authorities sent out slightly mean emails about how we’re all adults here,
and even those of us who didn’t do anything wrong were embarrassed. For a few days, no lunches were stolen. But then, just when you thought it was safe to leave an Amy’s frozen
burrito in the shared fridge for 12 days, the lunch thief struck again. Collectively, and publicly — all wanting to make very clear that we were innocent — my colleagues and
I wondered: who does this? What kind of person steals lunch from people they work with, and why?
To find out, I had to identify one such person. First, I offered my own office lunch thief immunity (or, well, anonymity) if they came forward to tell me their life story, but nobody
took me up on it. I asked Twitter, where many people expressed outrage over the very idea of lunch theft, but again, no actual thieves surfaced. I even made a Google Form about it,
and nobody filled out my Google Form. I was very nearly too dejected to continue my search when I remembered: Reddit. If not there, where?
On Reddit, I found a few lunch theftdiscussion threads, and messaged about 15 or 20 users who indicated that they had
stolen, or would steal, lunch from a co-worker, several of whom sounded very pleased with themselves. I told them I was a reporter, and asked if they’d be willing to
elaborate on their experiences in lunch theft. Unfortunately, most relevant postings I found were from, like, four years ago, and again it seemed no one would come forward. But then
someone wrote me back. Eventually he agreed to speak with me, and we arranged a phone call. His name is Rob, and he’s a programmer in his early 40s. Together we decided there are
probably enough programmers in their 40s named Rob that divulging this amount of personal information was okay.
…
As a non-lunch-stealer, I’ve never understood the mentality either (I’ve been the victim once or twice at work, at more-often way back when I lived in student accommodation), and this
interview really helped to humanise a perpetrator. I still can’t condone it, but at least now I’ve got a greater understanding. Yay, empathy!
When I first started working at the Bodleian Libraries in 2011, their websites were looking… a little
dated. I’d soon spend some time working with a vendor (whose premises mysteriously caught fire while I was there, freeing me up to spend my
birthday in a bar) to develop a fresh, modern interface for our websites that, while not the be-all and end-all, was a huge leap forwards and has served us well for the last five years
or so.
The colour scheme, the layout, the fact that it didn’t remotely work on mobiles… there was a lot wrong with the old design of the Bodleian Libraries’ websites.
Fast-forward a little: in about 2015 we noticed a few strange anomalies in our Google Analytics data. For some reason, web addresses were appearing that didn’t exist anywhere on our
site! Most of these resulted from web visitors in Turkey, so we figured that some Turkish website had probably accidentally put our Google Analytics user ID number into their
code rather than their own. We filtered out the erroneous data – there wasn’t much of it; the other website was clearly significantly less-popular than ours – and carried on. Sometimes
we’d speculate about the identity of the other site, but mostly we didn’t even think about it.
How a Bodleian Libraries’ website might appear today. Pay attention, now: there’ll be a spot-the-difference competition in a moment.
Earlier this year, there was a spike in the volume of the traffic we were having to filter-out, so I took the time to investigate more-thoroughly. I determined that the offending
website belonged to the Library of Bilkent University, Turkey. I figured that some junior web developer there must have copy-pasted the
Bodleian’s Google Analytics code and forgotten to change the user ID, so I went to the website to take a look… but I was in for an even bigger surprise.
Hey, that looks… basically identical!
Whoah! The web design of a British university was completely ripped-off by a Turkish university! Mouth agape at the audacity, I clicked my way through several of their pages to try to
understand what had happened. It seemed inconceivable that it could be a coincidence, but perhaps it was supposed to be more of an homage than a copy-paste job? Or perhaps they
were ripped-off by an unscrupulous web designer? Or maybe it was somebody on the “inside”, like our vendor, acting unethically by re-selling the same custom design? I didn’t believe it
could be any of those things, but I had to be sure. So I started digging…
Our user research did indicate that putting the site and catalogue search tools like this was smart. Maybe they did the same research?
Menus are pretty common on many websites. They probably just had a similar idea.
Tabs are a great way to show opening hours. Everybody knows that. And this is obviously just the a popular font.
Oh, you’ve got a slider too. With circles? And you’ve got an identical Javascript bug? Okay… now that’s a bit of a coincidence…
Okay, I’m getting a mite suspicious now. Surely we didn’t independently come up with this particular bit of design?
Well these are clearly different. Ours has a copyright notice, for example…
Oh, you DO have a copyright notice. Hang on, wait: you’ve not only stolen our design but you’ve declared it to be open-source???
I was almost flattered as I played this spot-the-difference competition, until I saw the copyright notice: stealing our design was galling enough, but then relicensing it in such a way
that they specifically encourage others to steal it too was another step entirely. Remember that we’re talking about an academic library, here: if anybody ought to
have a handle on copyright law then it’s a library!
I took a dive into the source code to see if this really was, as it appeared to be, a copy-paste-and-change-the-name job (rather than “merely” a rip-off of the entire graphic design),
and, sure enough…
In their HTML source code, you can see both the Bodleian’s Google Analytics code (which they failed to remove) but also their own. And a data- attribute related to a project I wrote
and that means nothing to their site.
It looks like they’d just mirrored the site and done a search-and-replace for “Bodleian”, replacing it with “Bilkent”. Even the code’s spelling errors, comments, and indentation were
intact. The CSS was especially telling (as well as being chock-full of redundant code relating to things that appear on our website but not on theirs)…
The search-replace resulted in some icky grammar, like “the Bilkent” appearing in their code. And what’s this? That’s MY NAME in the middle of their source code!
So I reached out to them with a tweet:
My first tweet to Bilkent University Library contained a “spot the difference” competition.
I didn’t get any response, although I did attract a handful of Turkish followers on Twitter. Later, they changed their Twitter handle and I thought I’d take advantage of the then-new
capability for longer tweets to have another go at getting their attention:
This time, I was a little less-sarcastic and a little more-aggressive. Turns out that’s all that was needed.
Clearly this was what it took to make the difference. I received an email from the personal email account of somebody claiming to be Taner
Korkmaz, Systems Librarian with Bilkent’s Technical Services team. He wrote (emphasis mine):
Dear Mr. Dan Q,
My name is Taner Korkmaz and I am the systems librarian at Bilkent. I am writing on behalf of Bilkent University Library, regarding your share about Bilkent on
your Twitter account.
Firstly, I would like to explain that there is no any relation between your tweet and our library Twitter handle change. The librarian who is Twitter admin at Bilkent did not notice
your first tweet. Another librarian took this job and decided to change the twitter handle because of the Turkish letters, abbreviations, English name requirement etc. The first name
was @KutphaneBilkent (kutuphane means library in Turkish) which is not clear and not easy to understand. Now, it is @LibraryBilkent.
About 4 years ago, we decided to change our library website, (and therefore) we reviewed the appearance and utility of the web pages.
We appreciated the simplicity and clarity of the user interface of University of Oxford Bodlien Library & Radcliffe Camera, as an academic pioneer in many fields. As a not profit institution, we took advantage of your template by using CSS and HTML, and added our own original content.
We thought it would not create a problem the idea of using CSS codes since on the web page there isn’t any license notice or any restriction related to
the content of the template, and since the licenses on the web pages are mainly more about content rather than templates.
The Library has its own Google Analytics and Search Console accounts and the related integrations for the web site statistical data tracking. We would like to point out that there is
a misunderstanding regarding this issue.
In 2017, we started to work on creating a new web page and we will renew our current web page very soon.
Thank you in advance for your attention to this matter and apologies for possible inconveniences.
Yours sincerely,
Or to put it another way: they decided that our copyright notice only applied to our content and not our design and took a copy of the latter.
Do you remember when I pointed out earlier that librarians should be expected to know their way around copyright law? Sigh.
They’ve now started removing evidence of their copy-pasting such as the duplicate Google Analytics code fragment and the references to LibraryData, but you can still find the unmodified
code via archive.org, if you like.
That probably ends my part in this little adventure, but I’ve passed everything on to the University of Oxford’s legal team in case any of them have anything to say about it. And now
I’ve got a new story to tell where web developers get together over a pint: the story of the time that I made a website for a university… and a different university stole it!
As a result of a couple of different health issues and the death of my
old and much-loved mobile, August wasn’t shaping up to be a very good month already. But the biscuit was really taken this week during what turned into An Unexpectedly Expensive
Night Out.
An Unexpectedly Expensive Night Out
It started okay: Ruth and went out for tapas, then for cocktails, and then to the cinema to watch the
(pretty disappointing) Cowboys & Aliens. So a good start, getting worse. The
food was cheap (hooray for vouchers!), the cocktails were reasonably priced (although we did have… a few of them), and the cinema was aided by Orange Wednesdays, so all seemed to be going pretty well, so far, until we came to going home.
Because when we got back to the cycle racks, my bike wasn’t there. By the look of things, somebody cut through my bike lock and had away with it, rendering me bikeless. Suddenly, it
became a far more-expensive night out than I’d planned for.
Here's the kind of lock I was using. Turns out that it's insufficient to stop a determined attacker.
They say that you haven’t lived in Oxford until you’ve had your bike stolen[citation needed]. Well: now I have, and I’ve learned an important lesson about the ineffectiveness
of moderate-security cable locks like the Kryptonite HardWire (the lock I was
using) when up against thieves who are willing to put in the effort to, for example, bring bolt cutters on a night out.
I spoke to a police officer yesterday who’s going to see if any of the nearby CCTV cameras are going to be of any use in finding the bugger. But in the meantime, I’ve had enough
of August. It’s had highlights, like Liz & Simon’s wedding, but mostly it’s been
less-than-great.
PowerPizza! It’s a laptop bag that looks like a pizza box! No longer do you have to worry about your attractive laptop being an easy
target for thieves – who’d want to steal a pizza box?
Also this weekend, a man is killed in a collision between a car and a train. Not particularly noteworthy under normal
circumstances, I know, but the train in question is a tourist attraction – a one-third scale steam train with a top speed of 15mph, and the car was a Ford Escort, probably about the
same size as the steam engine and weighing about half as much. It takes a special kind of bad driver to get struck on a level crossing at which the trains go barely fast enough to
outrun a sprinting child.
Cool And Interesting Thing Of The Day To Do At The University Of Wales, Aberystwyth, #35:
Raid a skip outside the computer labs, filled to the brim with semi-defunct equipment. Steal several cables, some dumb-terminal keyboards, and a PSU (which was funtional, but later
caught fire). Spend much of the remainder of the afternoon taking broken monitors from it and throwing them from great distances into the skip again, just ’cause you want to see if you
can make them implode and blow a hole in the side of the skip. Fail. Spend much of the evening trying to get an old 8086 your flatmate pulled from it to work. Succeed… to a degree… it
just doesn’t *do* much!
The ‘cool and interesting things’ were originally published to a location at which my “friends back home” could read them, during the first few months of my time at the University
of Wales, Aberystwyth, which I started in September 1999. It proved to be particularly popular, and so now it is immortalised through the medium of my weblog.
Cool And Interesting Thing Of The Day To Do At The University Of Wales, Aberystwyth, #33:
Consider a Pot Noodle to be an adequate substitute for breakfast, after you discover that your bread has been stolen and your milk supports more cultures than the United Nations.
The ‘cool and interesting things’ were originally published to a location at which my “friends back home” could read them, during the first few months of my time at the University
of Wales, Aberystwyth, which I started in September 1999. It proved to be particularly popular, and so now it is immortalised through the medium of my weblog.
Cool And Interesting Thing Of The Day To Do At The University Of Wales, Aberystwyth, #9:
Steal a flag from a golf course, and, without the aid of alcohol, smuggle it through town, into and out of burger king, and onto campus, with the overall aim of setting up your own
course near your room, and hide it under a bridge near your back door, and have somebody steal it from you… bugger…
The ‘cool and interesting things’ were originally published to a location at which my “friends back home” could read them, during the first few months of my time at the University
of Wales, Aberystwyth, which I started in September 1999. It proved to be particularly popular, and so now it is immortalised through the medium of my weblog.
Cool And Interesting Thing Of The Day To Do At The University Of Wales, Aberystwyth, #8:
Lose a pair of shoes by leaving them outside your door and finding them missing the following morning. Then find another pair you’ve never seen before underneath your bed.
The ‘cool and interesting things’ were originally published to a location at which my “friends back home” could read them, during the first few months of my time at the University
of Wales, Aberystwyth, which I started in September 1999. It proved to be particularly popular, and so now it is immortalised through the medium of my weblog.
