If you're setting up a new SSL VPN with certificate authentication, and if you already have an internal PKI, you're probably considering using your internal certification authority to create the SSL keys and certificates for your VPN clients. Awesome! This is a great and easy way to do this job.

But there's a dearth of information on the Interwebs regarding what Extended Key Usages you need to have enabled in your Certificate Template for these. There are a heap available, including Email Signing, Timestamping, Code Signing, IPSec SSL things (about …

Have you ever experienced that thing where you're in your car, stopped at a traffic light - you suddenly get the sensation that you're rolling backward, so you slam on your brake... but you already had your brake on, and you weren't moving! It was the car beside you rolling forward, but your brain misinterpreted it as your own - backwards - motion.

So, another mental image: imagine that you find yourself suddenly transported to a quiet, peaceful mountaintop. There's a monastery here, and Monks are quietly meditating. There is no sound, no …

When I was considering writing my post on time dilation, I expected precisely zero feedback... just on the basis that nobody would read it. I'm really pleased with the feedback I actually got, and you've all spurred me to write another post on the topic. So today, I'm going to give you a brief glimpse into what caused all this ruckus: Einstein's general theory of relativity.

If you remember, Einstein first came up with the special theory of relativity in 1905, and it took another ten years to get to …

So I faced a little challenge with a Zentyal server the other day. I was upgrading from ye olde 6.0 to 6.1, when everything just stopped. I let it sit in the corner for about an hour or so, but it never picked up the thread. All the services were still live, so I logged in to have a look.

Running ps aux, I discovered this line:

sh -c /usr/bin/sudo -p sudo: /var/lib/zentyal/tmp/x2M7gkZVvm.cmd 2> /var/lib/zentyal/tmp/stderr

So, I …

I know this post is only going to be relevant for a couple of weeks, but today I tried to launch StarCraft Remastered under WINE and it crashed.

Pertinent info: StarCraft Version 1.23.2.6926 WINE version 4.20-staging Battle.Net version 1.18.0.11698

Fix was to open the Battle.Net settings -> Game Settings -> "Launch 32-bit client (instead of 64-bit)"

Apparently the 64-bit version has become the default sometime since I last played it (October?!): https://us.forums.blizzard.com/en/starcraft/t/enabling-64-bit/458/7

I remember reading Stephen Hawking's A Brief History of Time back when I was about 16 years old - a bit over 20 years ago. I didn't even come close to understanding it then. I re-read it on Audible a year ago and I can report that I still didn't understand it at all. Either way, I've been interested in physics and spacetime for a huge chunk of my life, and I wish I'd spent more time on mathematics when I was younger, because I'd have really loved to be a …

I've got a spare Check Point 1180 here, and I'm fiddling around with it a bit. Learnings so far:

• Platform: ARM
• CPU / RAM: ARM926EJ-S, 512MB RAM
• System board: Marvell RD-88f6281A LE

It's been a while since I posted, but we bumped into something completely batshit crazy at work that I just had to share.

One of my colleagues was setting up a new computer, and was unable to RDP into the new build. He kept getting the error message "Your session ended because there was a data encryption error. If this keeps happening, ask your admin or tech support for help."

We'd never experienced this error before, and - although the internet knew about it - there were not very many helpful hits …

Yanno how I said it's hard to find American Crew aftershave? Well my better half went out yesterday and found a place in lil'old Te Awamutu that sells their shaving range: Team Seven, beside Viands. She bought me a bottle of my favourite "Post-Shave Cooling Lotion" (oh my god that name), but also got me a tube of their "Moisturising Shave Cream" to try. For shiggles.

Clearly, American Crew are better at chemical formulation than they are at coming up with names. But I digress.

Whelp I whipped out my …

Gather around, children, and I'll regale you with a tale of tonight's shaving.

My go-to razor setup at the moment is my Edwin Jagger DE89, with Derby Extra blades. But that's not new.

You might remember that my favourite aftershave is American Crew's "Post Shave Cooling Lotion". I've been using this almost exclusively for about 5 years now, and I love it. It's wonderfully soothing, and it's a fairly thin balm so it's easy to avoid overly-thick application. It's also not as thin as a milk (such as "The Standard …