Let’s Encrypt SSLs

A couple of months back, I went through the process of trying out Let’s Encrypt to setup some SSL certs for my various little sites. Do my sites really need encryption? No. But, at this point, it’s easy enough to setup an SSL cert, and I’d rather my sites pass their data securely, even if no one cares what goes on between my site and your browser. I’m not storing credit cards or capturing info about my visitors (beyond the analytics Google captures), but in a world where the government is increasingly looking for ways to get at the data of citizens, why not do it.

Plus, it’s free.

It’s a little bit of a challenge to get setup if you’re not already used to mucking around with server management. The newer versions (as of this moment, 0.5.0) make things much easier, but you’re still going to need to be at least familiar with git, python, and sudo.

Once you’ve gotten certs and gotten your servers configured, you just need to remember that these certs expire every 3 months, unlike yearly (or longer) for more traditional certs. Currently, you’re on your own to renew them, but it sounds like they’ll be building out renewal scripts to make it easy.

SSL certs are already reasonably inexpensive (providers like Comodo often sell them for less than the cost of your annual domain renewal), but the ability to get certs for any number of subdomains for free is pretty compelling. Once the automation is in place, they’ll be almost no reason to run a server without https.

(Of course, Let’s Encrypt could be a big government ploy to get everyone to install free certs that they have the key to, and they’ll be able to eavesdrop on all of us with ease.)

Microblogging

Manton Reece has been working on an app/business/service that I think is really in the “own your own Twitter” space. Basically, why not own your own work, rather than just pushing it into Twitter.

It’s something I’ve thought about in the past. If I could post to Twitter and push those to my blog at the same time, it’d give me a full accounting for most of what I do on line (suck in Instagram, and you probably get the totality of it).

I’m interested to see what he comes up with. I think, often, that my Tweets only make sense in the context of the moment. A Celtics game or a concert, or whatever is happening on TV. Some are of the moment in a world sense, and make more sense standing alone.

For example,

Serial is pretty popular, so that stands up on its own alright (and, for fun, go search Bergdahl and Rand on Twitter. It’s amazing.)

This tweet, however,

only makes sense when you realize I was at the Celtics/Clippers game before the All Star break, that the Cs pulled out in overtime.

If you push your tweets/microposts to your blog, even if it’s within the context of your other tweets/posts, can you maintain that context of the moment? I’m not sure.

It’d be amazing if, whether via an app or later inside of your blogging applicaiton, you could add that context. If I could post from an app, that knows my location, and can determine I’m at the Celtics game, and add enough meta-data to that tweet to put it in the context of “Posted from the TD Garden during the Celtics victory over the Clippers”, that’d be pretty amazing.

And it’s not really out of reach today. That tweet could have had geo-data, which would put me at the Garden, during the time the game was going on. I mentioned “game”, which likely narrows the context down even further. If an app/web service could even let me go through my tweets later, tag them with context, and have that flow to my site, that would be a pretty amazingly wonderful service.

AirSonos on the Raspberry Pi

I just posted about my little Raspberry Pi server.

The other thing I’m running on it currently is AirSonos. We love our Sonos Playbar sitting beneath our TV. We use it all the time.

But it doesn’t support Airplay, and sometimes you want to use Airplay. I’ll get home from work listening to a podcast on Overcast. I walk in and want to play it on the Sonos while I clean or cook dinner. I can use headphones. I can turn on the TV and Apple TV, and Airplay it to the Apple TV to listen to it through the Sonos.

Or, using the little raspi home server running AirSonos, I can now Airplay it directly to the Sonos. It’s pretty awesome. There’s a little lag when you start it up, but once it gets going, it works swimmingly.

The little raspi is turning into a wonderful addition to our home. I find new uses for it every day (maybe this is next).

My Raspberry Pi Home Server

A month or two ago, I saw a link to Nick Farina’s awesome little node service Homebridge. Homebridge allows things in your house that don’t work with Apple’s HomeKit, say a Nest thermostat, to work with HomeKit. HomeKit enables you to do fun stuff like “Siri, set the temperature downstairs to 66 degrees.”

You know, really important stuff.

I’ve been trying to reign in our power use. We have laptops and iPads and iPhones and a couple of TVs and a WiiU and XBox and DVR etc. That’s a lot of juice. I’ve replaced all (well, most) of our lights with LEDs. I’ve played with power settings and anything else I can find to try to reduce our overall power usage.

The last thing I needed was to run my iMac full time as a home server.

Enter the CanaKit Raspberry Pi.

I’d been looking to muck around with a Raspberry Pi (from here on out, a raspi) for a bit, but never had a good reason to. Here’s a perfect use: a super low power, tiny, always on home server.

I got it last week and spent a few hours getting it configured. Then I setup Homebridge.

(After mucking with my network and nearly breaking everything … ) It all worked.

Homebridge has a bunch of plugins. Our Nest thermostats were added, but I also added our Sonos. And, eventually, I’ll add other devices (I have a Twine in our basement keeping an eye on the temperature – I may work out a way to scrape it’s data and push it to Homebridge).

It’s not the greatest thing in the world, but there’s something nice about being able to tell Siri to turn the temperature down. If I get a smart plug, I could tell Siri that I’m going to bed, and have it turn off the living room lamp, turn the temp down, and (with a little bit of work), maybe even have it turn off the TV.

That’d be pretty cool. And it all runs off a server the size of a couple of packs of cards that makes no noise and probably costs < $10/year to run.

ImageOptim and iPhoto

ImageOptim is a simple Mac app that bundles a few image optimization tools to reduce the file size of your images by 10–20%. Handy, but not a big deal, right?

I ran it against my 40GB iPhoto library (lots of people have even bigger libraries). There are 3 folders in your iPhoto Library that have images:

  • Masters/Originals
  • Thumbnails
  • Previews

It took me about a day of crunching images (just moving back and forth to the computer dragging folders over into the application). I could have scripted it, but I was lazy and walking over to the computer every hour or so was easier.

When finished, it saved about 1.5GB of useless information from my library. That’s not a ton, but that’s basically “free” free space. It’s incremental, and the nice thing about how iPhoto stores your pictures is that you can grab a folder each month and drag it in, and it’ll take about an hour a month or so. It his, however, diminishing returns if you’re using something like an iPhone as a camera. It seems that images generated by the iPhone are already reasonably well optimized, only maybe saving 8–10%.

Anyway—if you’re looking to squeeze a little bit more space out of your disk (maybe you’ve got an SSD), you’ll probably find a free GB or two in optimizing your image collection.

True Inbox Zero

Want to know the simplest way to get to Inbox Zero?

Make it so people can’t send you mail.

The other day I updated the SSL cert I have for my site. I use it on my own mail server so that most mail servers can talk over TLS and exchange mail securely.

When I updated my cert, I was an idiot. I didn’t properly update my postfix config. Postfix would still run and accept mail, but anyone trying to connect via TLS would fail. It turns out that Google (understandably) tries to connect via TLS. When they can’t connect, they don’t try to reconnect using plain SMTP. They just bail out.

So, short version: I’m an idiot. But, for about 12 hours, I didn’t get any mail. It was glorious.

Handy Travel Technology

I’m expecting I’ll be traveling a bit more for work this year and, in preparation for that, I asked for a couple of things for Christmas to help make that a bit easier. There are three devices that I think have become integral to my travel, just in terms of making life a little bit easier.

When you travel, iPhone batteries seem to take a beating. You tend to move around places with weak cell coverage and intermittent wi-fi coverage that keep your phone radios fired up and burning battery. There’s lots of downtime where you’re using your phone to check on fight status, or read the news, or just entertain yourself while waiting for a flight. A couple of years ago I picked up a Mophie Powerstation battery pack. It’s 4000 mAh, which basically means it can charge an iPhone full more than two times, and can also charge an iPad. I charge it, throw it in my bag, and then if I feel like my phone might die that day, it’s small enough to keep in my pocket. One recommendation: get a small cable so that you don’t have to carry the traditional long Lightning cable around with you.

Hotel wifi is notoriously bad. In some hotels, you either pay for each device, or logging one device on bumps another device off. When listening to an episode of Mac Power Users, I heard about the Edimax N150 Travel Router. Basically, it’s a little USB powered wifi router. Once you set it up (it’s not the most straightforward thing), you hook it either into the hotel’s ethernet or wifi. That way, you have one device that’s always connected to the hotel’s internet, and then you connect to it. Since it’s not moving around (the way you often are when using an iPad or iPhone), you don’t worry about losing signal. And, it’s advanced enough to broadcast a hidden (and protected) network so that other folks won’t jump on your connection.

Since it’s USB powered, it fits perfectly right into the Belkin BST300bg. This is a surge protector, USB charger, and outlet expander all in one. So many hotels have only a couple of power outlets, and they’re usually located in the most horrible place possible. You plug the Belkin into any outlet, and it’ll give you 3 surge protected outlets (great for your laptop) and two USB ports. Use one to charge your device, and plug your little Edimax wifi router into the other. Even better at the airport when you need to charge your gear and you’re fighting over one of those airport outlets. Throw this in and share the love.

If you shop smartly (and the links above are to Amazon, so I’ll get a tiny kickback if you buy one), you can pretty much get all three of these for less than $100. That’s $100 well spent, and it’ll make your travel much, much happier.