I just re-watched Dark Matter a few weeks ago! Talk about a network screwing the fan-base. Just when all the plot elements were converging, bam! Canceled on a cliffhanger.
ptz
I'd considered the Razr but was uncertain on the durability of it. Reviews were about 50/50 last I read.
That's awesome you mentioned using it closed most of the time. I'm tired of the "tall, skinny rectangle" form factor (and not being able to use it one-handed despite having not-small hands lol). Since smaller phones seem to be extinct, it's cool there's a middle ground in being able to use it that way.
I do need to make sure I can find one that's bootloader unlockable. Kind of a hard requirement for me and necessary to de-google it to my satisfaction. It's not listed as supported by Lineage, but I'll browse XDA and see what they've been able to do with it.
Thanks!
I have a single Nginx setup which is the frontend for all my web services. So I only need to deploy it there (and to its HA partner). My renewal script just scp
's it to the secondary and does an nginx -s reload
on both.
I do generate separate certs/keys for my non-web servers, but there's only two of those.
You could also, if you wanted, just generate one cert and distribute it and its key to everything with a script or other automation tool (Ansible is what I used to use).
Is there a way I can get Let's Encrypt to dole out a wildcard certificate
Yep. Just specify the domains yourdomain.com
and *.yourdomain.com
in the certbot request. Wildcard domains require the DNS-based challenge, but you've said you're already good there. You don't technically need the apex domain (yourdomain.com
) but I always add it since I do have services running there.
Any subdomains under the wildcard can use internal DNS or internal IPs on the public DNS (I do the former, but the latter works too).
I used to run an internal CA, and it wasn't too hard to setup a CA and distribute my root cert. Except on mobile devices. On Android it was easy, but there was a persistent warning that my network traffic could be intercepted (which is true when there's a custom root cert installed), but it since it was my cert, it got annoying seeing that all the time. Not sure if Apple devices can even do that, but regardless, it wasn't practical for friends who wanted to use my self-hosted services to install a custom cert when they were over.
Oooh!
I've been rocking a de-googled but aging CAT S22 Flip since last August (low-end android smartphone in a flip phone form factor). Absolutely love it but sad there is no clear successor when I have to eventually replace it. It's basically the same concept as this phone.
Sadly, this is not a "new" model. He bought it used on eBay, it's got similar specs to my S22, and only runs Android 12. However, that screen is quite nice and would be a huge upgrade from the S22. The unfortunate conclusion is that there is still no clear successor for my S22 unless I want a slightly/barely less out of date phone and go with this one.
Oh, whoops. I added text to the TenForward crosspost but not this one. I kind-of said mostly that: