💾 Archived View for gem.pwarren.id.au › gemlog › 2021-11-08.gmi captured on 2023-04-26 at 13:10:52. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2022-07-16)
-=-=-=-=-=-=-
As per:
gopher://sdf.org:70/0/users/christyotwisty/phlog/2021-11-Five_Questions.txt
I can only think of two at the moment
1. Arabic
2. Leatherwork
Other things I want to learn, like solar and mains electrical wiring, Timber framing, growing stuff, land management, permaculture, and probably a bunch more, I kind of want to be not terrible at.
I think Gideon the Ninth by Tamsyn Muir. Really well done.
Oooh, that's an easy one, sausage rolls! I suffer from Coeliac disease, and Gluten Free pastry just isn't the same. So yeah, I miss sausage rolls
No, have you got one that I can try? :)
My Saturdays are pretty close to being perfect, so here's a saturday with the boring bits removed and some embellishments to make it that extra bit perfect!
0700 Up to have breakfast and coffee, catching up on my tech news sites.
0800 Get some baking in the oven.
0830 Gardening
1000 shower
1015 Make a ragout
1100 Morning tea with coffee and baking, catch up on youtube subs
1200 Coffee roasting
1230 prep a quick lunch
1300 watch a movie with my partners
1530 reading in front of the fire
1730 get the pasta on
1815 eat the lovely bolognese! Have a glass of red with it, chat with partners
1930 some night time youtube/tv
2100 bed time!
Yeah, that is a concern now, me and my friends are around the 40 year mark, and things start to take their toll around that age!
SSH key usage is a whole thing. Ideally, you generate a key on your main workstation, which you protect with a long passphrase, and then use the ssh-agent to take that password, decrypt the protected key and send it automagically to SSH servers you're connecting to.
There can be lots of tricks done to forward the agent through jumpbhosts/bastion host etc so that you should only ever need one key.
From that main workstation, you can use the ssh-copy-id to copy the public key of that protected private key to any server you want to connect to without having to enter a password.
That said, I tend to have a key on my laptop, and a separate one on my main admin VM. Admin VM accepts only the laptop key, all other infrastructure accepts the admin VM key.
A different way is to use SSH CAs, which works a bit more like the TLS CAs underlying the HTTPS protocol, where a server will accept all keys signed by a specific CA, as long as everything in the chain is valid. Can also use this to generate ephemeral keys and can be integrated into a site wide AAA system (Authentication, Authorization, Accounting). I've only read about this stuff, have not actually implemented as yet!
nano ;)
Though I mostly use emacs for actual writing, muscle memory from learning it in my undergrad studies.