Andromeda/blog
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix clerical errors

Browse source
This commit is contained in:
mtgmonkey 2025-06-08 15:18:56 +00:00
parent d3b4134824
commit 36fa8afd57
1 changed files with 3 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

7
content/daily/2025-06-08.md
View file

@ -1,11 +1,11 @@
+++ +++
title = "SSL troubles and pushing the server to git" title = "TLS Troubles and Embarrassing Secrets"
date = 2025-06-08 date = 2025-06-08
+++ +++
Last night, this website saw hours of downtime because of a combination of silly mistakes. Let me explain. Last night, this website saw hours of downtime because of a combination of silly mistakes. Let me explain.
### TLS Trouble ### TLS Troubles
This site runs with the [Ferron](https://www.ferronweb.org/) webserver. When you have a website, you need to have TLS certificates so users can use HTTPS to access it. Ferron has these really great configuration options to do this automatically. This site runs with the [Ferron](https://www.ferronweb.org/) webserver. When you have a website, you need to have TLS certificates so users can use HTTPS to access it. Ferron has these really great configuration options to do this automatically.
@ -77,7 +77,7 @@ All code above is, clearly, just simplified snippets; the actual file are linked
- [flake.nix](https://git.mtgmonkey.net/server-configuration.git/tree/flake.nix),the flake to which the above modules are imported - [flake.nix](https://git.mtgmonkey.net/server-configuration.git/tree/flake.nix),the flake to which the above modules are imported
### Secrets Embarrassment ### Embarrassing Secrets
I spent all morning trying to configure different secrets management programs, from [agenix](https://github.com/ryantm/agenix), to [spos-nix](https://github.com/Mic92/sops-nix), to even a simple `.gitignore`. After finally getting agenix configured properly, it occured to me that my only 'secrets' were my ssh *public keys*, which are harmless to share! I don't need *any* secrets management, much less something as complex as agenix. I spent all morning trying to configure different secrets management programs, from [agenix](https://github.com/ryantm/agenix), to [spos-nix](https://github.com/Mic92/sops-nix), to even a simple `.gitignore`. After finally getting agenix configured properly, it occured to me that my only 'secrets' were my ssh *public keys*, which are harmless to share! I don't need *any* secrets management, much less something as complex as agenix.
@ -85,4 +85,3 @@ I spent all morning trying to configure different secrets management programs, f
- [ ] Polish up [the blog](https://blog.mtgmonkey.net) a little bit - [ ] Polish up [the blog](https://blog.mtgmonkey.net) a little bit
- [ ] Get a [translation api](https://github.com/LibreTranslate/LibreTranslate) set up - [ ] Get a [translation api](https://github.com/LibreTranslate/LibreTranslate) set up
- [ ] Take an ACT practice test