Author Archives: Gabriel

About Gabriel

I am the sole proprietor of this site. Caveat emptor!

A Blast From the Past

So this is a bit of a take 2 (3?)… I recently recovered the database for the old community forum that used to be hosted on quay.net. I had thought that it was completely lost due to a bad backup and crappy hard drive, but it turned out that I had a copy of the backups stored on my old laptop!

I don’t know if it’s something worthy of full resurrection yet, but at the very least I thought I’d migrate the data to BB software that was supportable and put the old content back up in case people would like to get at their old posts.

For the time being at least it can be found over here.

I’ll likely share this with people via some social media as well once I figure out what to do with the data. If you’re returning, I’d encourage you to take a look at this post.

Let’s Encrypt!

I started to write a draft of an article about Let’s Encrypt back in November, but quite finished it to my satisfaction. In any case I would like to draw attention to the project as it gets closer to becoming live. They just posted the draft of their certificate management policy so things are starting to heat up a bit which is kind of exciting!

If you’re not familiar with the project, here’s an overview of how it works. But basically it’s an automated tool that web server administrators can install and use to generate, sign, manage, and revoke TLS certificates for sites they host. It takes most of the human factor out of things and also helps implement some of the more esoteric features of modern TLS for HTTP.

In light of the news over the past couple of years and the complete ubiquity of the Internet and WWW at this point it’s fairly obvious that proper encryption of All The Things is long overdue. There are a number of steps in that direction taking place right now (HTTP/2 standard is more or less final, 1024-bit roots have been widely superseded, OCSP stapling and HSTS are becoming much more widely deployed), but the biggest challenge I see is that, particularly for small website owners and businesses, properly implementing X.509 certificates for TLS is still enough of a pain that it’s largely avoided unless you’re somewhat savvy or paranoid.

I’ve read a few good blog posts and articles on the Let’s Encrypt project but for some reason it doesn’t seem to be getting that much mainstream coverage. At first I was a bit leery of the idea that I hand certificate management over to a 3rd party system, but the more I’ve looked at it the more the idea seems solid. Basically their assumption is that their tooling can handle certificate management better than the average web administrator can. Combined with the fact that the project has major backing from folks like Cisco, Akamai, the EFF, and Mozilla I’m hoping that it gets major traction. I know that I’m planning on adopting it early even though I have a couple of years left on the RapidSSL certs I’m currently using.

Oh and did I mention that it will be entirely free?

Moving the Dock on OS X

I just learned something about OS X that I didn’t realize was a feature. Then again, sometimes these days the difference between a feature and a bug is marginal!

At work I routinely run my Macbook connected to a second monitor, either at my desk for extra screen space while preparing the latest round of paperwork or when presenting at a meeting. From time to time, the dock (which I just keep at the bottom of my screen) seemingly snaps to the second monitor. This can range from mildly amusing to completely enraging depending on my state of mind and or caffeine level at the moment.

I just learned that this is actually a feature that I’ve been accidentally triggering with sloppy mousemanship. It turns out that you can move the dock on OS X to another display device simply by briefly holding your mouse cursor at the bottom of the device in question.

Now that I know this, what used to seem like a really annoying desktop environment bug has become a cool feature!

The more you know...

Putin and the Truth

In light of the latest news from the Vladimir Putin, I thought I’d share this little article I came across a few days ago. It’s an interesting read discussing some of the psychology of the current Russian regime.

Without Sky: How a dystopian short story was Russia’s model for war

Happy Xmas everybody!

Stopping Flyers and Ad Mail from Canada Post

I just learned over the weekend that you can ask Canada Post to stop delivering flyers and other unaddressed junk mail to your home by filling in the form found here:

https://www.canadapost.ca/cpo/mc/personal/support/helpcentre/receiving/admail_stop.jsf?ssl=1

Hopefully somebody will find this useful.

Vice: The Giants of Iceland

I watched this last night, it was an interesting documentary and it really took me back to the days when I used to watch Magnús Ver Magnússon.

Life is Beautiful

For some reason when I saw this it really touched me. I used to be a big fan of these sort of shorts, but I haven’t seen a good one in a long time.

Hope you enjoy!

Apostrophes and the Ubuntu Font on OS X

Since I’ve breathed a bit life back into this blog, I was playing around with using Google Fonts, deciding to use the Ubuntu font as an example. It turns out that this was a singularly unfortunate choice for testing!

There is a known issue (without an apparent resolution) which under certain circumstances can cause problems with rendering the apostrophe character. In my case I was seeing small superscript 9 characters instead of apostrophes.

There is an example of the issue appearing in a different context on the Xojo forums.

The easiest solution in my case was simply to use a different font. I wasn’t a big fan of how Ubuntu renders minuscule w anyway.

Getting SlickrFlickr to use the Flickr TLS API

Now that I’ve converted the site to use TLS, I’m going about replacing my old homebrewed Flickr plugin to use SlickrFlickr since it seems to be maintained and has similar, but extended, functionality.

I switched mostly so that I wouldn’t have maintain my own plugin, unfortunately I discovered after I finished setting up SlickrFlickr that it only returns the http scheme and not https scheme for the Flickr API.

Not to be too discouraged, I’ve created a simple fix for this and even though it’s a freemium plugin, I may submit a patch to the developer because it’s so simple.

There are three variables that contain the URL scheme in them:

# the variable $url in phpFlickr.php sets some image locations
sed 's/\$url = \"http/$url = \"https/g' wp-content/plugins/slickr-flickr/phpFlickr.php
# these strings also need to be changed in slickr-flickr-api-photo.php
sed -e 's/\$this->url = \"http/\$this->url = \"https/g' -e 's/\$this->link = \"http/\$this->link = \"https/g' wp-content/plugins/slickr-flickr/slickr-flickr-api-photo.php

I’ve actually implemented it as a check in my own local copy of the plugin by verifying the Apache server variables to figure out if the connection is HTTPS. I just don’t currently have this implementation in patch format. I will post it soon.