Dragon Beaux Restaurant

http://goo.gl/maps/HYRlE

Ginto Izakaya Japonaise

http://maps.google.com/?cid=17054648410607688517&hl=en≷=us

Gyro Xpress

http://goo.gl/maps/AoL3D

Sandstorm is exactly what I want to build.

Sandstorm lets you run your own server and install apps like EtherCalc, GitLab, LibreBoard, Wave, and more as easily as you’d install apps on your phone.

Beijing Restaurant

http://goo.gl/maps/1fiPP

I just moved this thing to a new vm instance with SSDs and a Linux distribution more recent than the Bush Administration. I must say it’s pretty slick to click a button and move disks and IP addresses from the old one to the new one.

what a pain to dig around all that conduit!

Marlowe

http://goo.gl/maps/QC9sh

moved to Coco 500’s location but the last time I’ve been here was at the old location on Townsend next to Caltrain

I finally got motivated enough to get a legit ssl certificate for this thing. Motivated and/or got over my hangup of giving money to certificate authorities. A cheapo cert costs less ($15/3 years) than my domain registration so there you go.

The experience with the CA actually wasn’t that bad except that I didn’t read the instructions and dropped just the cert on the server which worked on my desktop and tablet which had evidentally seen and cached the intermediate CA at some point in the past. But my phone had never seen it so I got a scary warning. This was easy enough to fix — cat the files together — once I had figured out the problem.

The default ssl settings nginx comes with are apparently totally insecure according to the tester at SSL Labs. I followed these instructions which will probably be out-of-date by the time this goes to press. The ssllabs report also flagged that TLS session resumption didn’t work. It turns out that how to configure this correctly is somewhat of an open question.

So that’s how in just 43 easy steps, I got a green lock in the url bar in chrome.

Except for wordpress. I had a yellow lock for that because it was loading content with http for old posts. Because it is poorly designed, the wp_posts sql table contains the raw html of the posts which has the base url for the blog all over the place. So you have to do a search and replace on the whole database to fix up the old links. At least this plugin worked on the first try.

This whole experience reminds me of the article Why Johnny Can’t Encrypt updated by Why Johnny Still Can’t Encrypt. At least some folks are trying to make it better.

http://www.nytimes.com/2015/03/08/opinion/sunday/the-cost-of-paying-attention.html?ref=opinion

Attention is a resource; a person has only so much of it. And yet we’ve auctioned off more and more of our public space to private commercial interests, with their constant demands on us to look at the products on display or simply absorb some bit of corporate messaging. Lately, our self-appointed disrupters have opened up a new frontier of capitalism, complete with its own frontier ethic: to boldly dig up and monetize every bit of private head space by appropriating our collective attention. In the process, we’ve sacrificed silence — the condition of not being addressed. And just as clean air makes it possible to breathe, silence makes it possible to think.