Do you use let's encrypt?

7771 votes ~ 25 comments


XML Logo

Posted by Steve on Thu 5 May 2016 at 05:00
Tags: , ,

No hugely significant changes, except for the bootstrap-based theme which is still a work-in-progress, and the switch to SSL-everywhere.


Posted by Steve on Fri 5 Feb 2016 at 07:25
Tags: , ,

In the near future this site will be undergoing an overhaul:

  • There will be microservices.
  • The layout will be bootstrap-based.

Partly because I think it'll be a fun experiment, partly because the layout is something I'm just not happy with.


Posted by Steve on Sat 5 Dec 2015 at 05:51

We now use Let's Encrypt for:

Future tweaks to come, but bug reports are most welcome.


Posted by Steve on Sat 28 Nov 2015 at 07:20

I've just culled a few thousand spam accounts, and added recaptcha to our signup-page as a quick hack to see if I can prevent this from becoming even more of a problem.

This site has 124,348 registered users. I suspect maybe 2048 are genuine. The rest are bots. le sigh.


Posted by Steve on Wed 29 Jul 2015 at 06:39
Tags: ,

My (Finnish) wife and I have now relocated from Edinburgh, Scotland, to Helsinki, Finland.

I've been here for 13 days at the moment, and am still settling in. But so far things are going well. So, yeah, that happened.


Posted by Steve on Sun 31 Aug 2014 at 14:55

Originally the code behind this site as 100% open, but during the course of some of the earlier migrations it was closed by accident - jumping from CVS to hg, and now to git things moved around a lot.

Nothing was ever intended to be secret, private, or closed, it was just an aspect I've failed to pay attention to.

Anyway the code behind this site is called YAWNS and once again it is open to the public:


Posted by Steve on Fri 8 Aug 2014 at 10:14
Tags: ,

The code behind this site is badly in need of another overhaul.

At the moment it runs on a set of ropy CGI scripts that are neither efficient nor pleasant.

My current plan is to record the basics from scratch, then port over functionality as time goes on. As part of that I think I'll be coming up with some toy-servers:

  • A HTTP interface that just gets/updates/adds articles.
  • A HTTP server that is solely responsible for get/set comments.

With that structure in mind the core of the site can just mediate between requests and the actual backend - without worrying about actual implementation-details.

In terms of features the only thing I think I'm going to remove is the comment-feed RSSs.

There is a feed for the comments on every article - and that feed gets spidered like mad, for articles that are many years old.

I'm open to the idea of collaboration if there are users who wish to help - and the code will be on github in due course.


Posted by Steve on Wed 16 Jul 2014 at 10:37
Tags: none.

I resigned from the debian project a few years ago, but I'm currently going through the process to un-retire.

Fun times.

(I have more free time now that I'm happily married and my wife works as a Doctor in A&E - having a few late-night shifts in local hospitals.)


Posted by Steve on Fri 27 Jun 2014 at 16:44
Tags: , , ,

So I accidentally released a service which will give you resilient, low-latency, DNS-hosting (which uses Amazons route53 on the backend).

If you'd like to use Git to store your DNS-data, and add/update DNS-entries via a simple "git push" then you should check it out:


Posted by Steve on Tue 3 Jun 2014 at 12:46
Tags: none.

If you're looking for a system administrator, who is very very familiar with Debian GNU/Linux, please do consider getting in touch.

I'm an ex-member of the Debian project, and was a member of the Debian Security Team, which involved handling security updates for the distribution. (This came about as a result of my interest in auditing software, a process which lead to the discovery, and fixing, of numerous flaws in popular open-source applications and servers.)

I'm based in Edinburgh, but I have had many years working remotely, and would be happy to repeat that.

As you can see from my prior submissions I'm very familiar with system administration, including (but not limited to):

  • MySQL, PostgreSQL, SQLite, & etc.
    • Including clustered, sharded, and high-availability (except for SQLite of course!)
  • Apache, Nginx, lightted, & etc.
    • Including optimization, tuning, and writing custom modules.
    • Load-balanced access via Varnish, Pound, nginx, HAProxy, & etc.
  • SMTP, DNS, IMAP, LDAP, & etc.
    • I've developed custom, scalable, mail-servers with high-availability, and documented the process.
    • I've married OpenVPN to LDAP, and used DNS for as the basis for clustered data-storage, and key-value stores.
  • Virtualization
    • Using Xen (I wrote the original version of Xen-tool), KVM, and VMWare
  • Networking..
    • Firewalls, VLANS, segmentation, routing, bridging, & etc.
  • Revision control: Git, Mercurial, etc.
  • Perl, Ruby, C & C++.
  • Shell scripting.
  • Automation via CFEngine, Puppet, Chef, Ansible, and Salt.
  • Monitoring.
  • Backups, restoration, and testing.
  • Using clusters for high availability and redundancy.
  • Securing deployments, and auditing code for security holes.
  • My github profile shows active projects in C, C++, Perl, node.js, and Ruby, and is neatly condensed here.
  • Although I wouldn't describe myself as a coder per se I've written APIs that handle half a million hits a day, non-stop, and put together monitoring software that scales horizontally to provide round the clock coverage of thousands of hosts and service pairs.
  • ...