2024 Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec 2024-W01 (202401) 2024-W02 (202402) 2024-W03 (202403) 2024-W04 (202404) 2024-W05 (202405) 2024-W06 (202406) 2024-W07 (202407) 2024-W08 (202408) 2024-W09 (202409) 2024-W10 (202410) 2024-W11 (202411) 2024-W12 (202412) 2024-W13 (202413) 2024-W14 (202414) 2024-W15 (202415) 2024-W16 (202416) 2024-W17 (202417) 2024-W18 (202418) 2024-W19 (202419) 2024-W20 (202420) 2024-W21 (202421) 2024-W22 (202422) 2024-W23 (202423) 2024-W24 (202424) 2024-W25 (202425) 2024-W26 (202426) 2024-W27 (202427) 2024-W28 (202428) 2024-W29 (202429) 2024-W30 (202430) 2024-W31 (202431) 2024-W32 (202432) 2024-W33 (202433) 2024-W34 (202434) 2024-W35 (202435) 2024-W36 (202436) 2024-W37 (202437) 2024-W38 (202438) 2024-W39 (202439) 2024-W40 (202440) 2024-W41 (202441) 2024-W42 (202442) 2024-W43 (202443) 2024-W44 (202444) 2024-W45 (202445) 2024-W46 (202446) 2024-W47 (202447) 2024-W48 (202448) 2024-W49 (202449) 2024-W50 (202450) 2024-W51 (202451) 2024-W52 (202452) 2025 2025-W01 (202501) 2025-W02 (202502) 2025-W03 (202503) 2025-W04 (202504) 2025-W05 (202505) 2025-W06 (202506) 2025-W07 (202507) 2025-W08 (202508) 2025-W09 (202509) 2025-W10 (202510) 2025-W11 (202511) 2025-W12 (202512) 2025-W13 (202513) 2025-W14 (202514) 2025-W15 (202515) 2025-W16 (202516) 2025-W17 (202517) 2025-W18 (202518) 2025-W19 (202519) 2025-W20 (202520) 2025-W21 (202521) 2025-W22 (202522) 2025-W23 (202523) 2025-W24 (202524) 2025-W25 (202525) 2025-W26 (202526) 2025-W27 (202527) 2025-W28 (202528) 2025-W29 (202529) 2025-W30 (202530) 2025-W31 (202531) 2025-W32 (202532) 2025-W33 (202533) 2025-W34 (202534) 2025-W35 (202535) 2025-W36 (202536) 2025-W37 (202537) 2025-W38 (202538) 2025-W39 (202539) 2025-W40 (202540) 2025-W41 (202541) 2025-W42 (202542) 2025-W43 (202543) 2025-W44 (202544) 2025-W45 (202545) 2025-W46 (202546) 2025-W47 (202547) 2025-W48 (202548) 2025-W49 (202549) 2025-W50 (202550) 2025-W51 (202551) 2025-W52 (202552) 2026 2026-W01 (202601) 2026-W02 (202602) 2026-W03 (202603) 2026-W04 (202604) 2026-W05 (202605) 2026-W06 (202606) 2026-W07 (202607) 2026-W08 (202608) 2026-W09 (202609) 2026-W10 (202610) 2026-W11 (202611) 2026-W12 (202612) 2026-W13 (202613) 2026-W14 (202614) 2026-W15 (202615) 2026-W16 (202616) 2026-W17 (202617) 2026-W18 (202618) 2026-W19 (202619) 2026-W20 (202620) 2026-W21 (202621) 2026-W22 (202622) 2026-W23 (202623) 2026-W24 (202624) 2026-W25 (202625) 2026-W26 (202626) 2026-W27 (202627) 2026-W28 (202628) 2026-W29 (202629) 2026-W30 (202630) 2026-W31 (202631) 2026-W32 (202632) 2026-W33 (202633) 2026-W34 (202634) 2026-W35 (202635) 2026-W36 (202636) 2026-W37 (202637) 2026-W38 (202638) 2026-W39 (202639) 2026-W40 (202640) 2026-W41 (202641) 2026-W42 (202642) 2026-W43 (202643) 2026-W44 (202644) 2026-W45 (202645) 2026-W46 (202646) 2026-W47 (202647) 2026-W48 (202648) 2026-W49 (202649) 2026-W50 (202650) 2026-W51 (202651) 2026-W52 (202652)

2025–W25 #

PocketID continues to be one of the best things that I've learned about through OttawaSystems. I'm using it at work for a dummy OIDC provider when testing locally and for my homelab and for Colocataires to protect our monitoring. Have also figured out enough tinyauth to be dangerous, too, so I can protect random endpoints that are either static or just don't support OpenID Connect.

It's weak how Ansible has basically won config management, on the single server level. Cloud-fans went the "bake an AMI" / immutable infra route and Kubernetes encourages you to run the actual stuff that you care about inside containers, and the ecosystem for "people who keep servers for months and years" is just stuck in 2015.

(I'm on the train to Toronto ahead of a week in KCW, so I'm a little introspective).

Okay, it's kind of cool to have a laptop fast enough to play Forza 4 (with a wireless controller) on the train 😀

For Colocataires I don't think I'm happy with the state of routing, especially for v6. As we get actual customers those decisions will get harder to change so I suppose the time to work on them is now.

When I ran CloudStack at iWeb it used to deploy dedicated router VMs (tiny ones, like 128MiB/1vCPU) for each network. I don't recall the details exactly but I think that they were responsible for OSPFing and handling cross V(X)LAN routing. I remember shifting from VLAN to VXLAN so we didn't end up having to automate a bunch of switch configuration things, or hitting the 128 live VLAN limit in our HP ProCurve switches.

It'd be nice to not NAT people and give out public IPs to machines which needed or wanted a public IP, but then also that gets baked in to config which could be less than ideal. It's easy with IPv6 of course, this is only a problem caused by our lack of IPv4s.

I think doing VXLANs properly is also going to suggest jumbo packets so we don't lose MTU. That should be fine, but it needs to get applied everywhere.

Also this is my vacation and maybe I shouldn't be thinking about it 🙃

My brain is tired, I hope I'm not sick. I had some quiet time and a computer so I redid some HTML and CSS on insom.me.uk -- I wish I was up for more.

Fixed / implemented RSS for the Python version of this weeklog. This probably means that anyone following via RSS now has all of the history of the site marked as new in their feed reader, because it's not a 1:1 match to the old format of posts. But also: probably no one was reading this, so maybe we're just fine?

Reworked IPv6 for Colocataires -- I thought "why are we using private IPv4 space?" and the answer was: "we don't have enough public IPv4 space" and so I reached for the easy -- but probably incorrect answer -- of using private networks and NAT -- and not the much better answer: use IPv6.

Desktop environments on Linux are frustrating. I went through getting my desktop to use Wayland (by force) and I think that's better, but web browsers and sometimes even terminals slow down over time and generally I feel like my experience is just not as low latency as I would expect from a 12th Gen i5 and an Ultra 5 125H.