Getting WireGuard on Windows - quietly

Posted on Mon 27 April 2020 in Tech • Tagged with Tech, WireGuard

So, I mentioned in my post yesterday that I'm trying to get a bit of a quiet installer for WireGuard on Windows. Not that the current one is noisy, but I have a really simple use-case that I want to meet.

I spent some time seeing if I could just extract WireGuard.exe and run that. Nope, of course - it requires WinTun to be installed to facilitate the Layer 3 tunneling.

Next I played with the idea of just deploying WinTun directly, without installing the WireGuard package itself. I can …

Continue reading

A pork rub for when you've run out of garlic

Posted on Sun 26 April 2020 in Food • Tagged with Recipes, Food

I picked up a set of whole pork loins at Pak 'n Save the other day for like twelve bucks, and being on dinner duty tonight I thought it was time to fire up the smoker. But just last night we'd had a Chicken Tikka Masala which cleaned out our garlic stocks ... what to do?

After a bit of dithering, I made a simple low-garlic rub and it turned out good enough that I'm documenting it here!

Outta Garlic Pork Rub

  • 1 tbsp salt
  • 2 tbsp brown sugar
  • 1 tbsp …

Continue reading

Setting up a Windows Dev VM under ProxmoxVE

Posted on Sun 26 April 2020 in Tech • Tagged with Tech

Righto, I've been using WireGuard for quite a long time now, but I just had my first foray into WireGuard on Windows. I'm trying to roll it into a low-touch VPN deployment sort of thing.

There will be a post about that soon, but this particular post is about setting up the environment for me to play with this stuff... I need a system where I can take snapshots and roll back the drive to a known state. (So I can be sure I'm not missing anything that the installer …

Continue reading

Using Fail2Ban to insta-block malicious hits

Posted on Tue 07 April 2020 in Tech • Tagged with Tech, Security, Linux

Okay so a few days ago I posted about adopting Caddy.

Of course, anyone who hosts anything knows that accessible services on the internet will start getting hit by scanners within literal moments of being accessible. On the very first night of having my site live on the new VPS, Logwatch informed me of a bunch of attempts to access wp-admin.php. Sigh.

Well, this entire site is built with my favourite static site generator Pelican. That means I don't have any PHP on my site whatsoever. Why not just …

Continue reading

Moving to the Caddy web server

Posted on Sun 05 April 2020 in Tech • Tagged with Tech, Security, Linux

For the last couple of years I've been running this site, as well as my friend's site (Under The Umbrella) on Nginx. Recently my VPS host decided to do away with their cheapest tier, so instead of doubling my annual cost, I hopped onto and found myself a replacement Cheaps McGee VPS to host this.

Well, a major change like that is a great time to learn about something new, so I took the opportunity to get started with Caddy. If you don't already know about …

Continue reading

Lockdown Chicken

Posted on Sun 29 March 2020 in Food • Tagged with Recipes, Food

It's the first weekend of New Zealand's COVID-19 lockdown, and having already been working from home for a week I decided I'd get energetic in the kitchen.

Last night, with some guidance from my mate Nevyn, I put a couple chickens into a brine. I've brined before, but this one was super experimental for me, as usually my brines are just that one top result on, which is about as inspired as plain mayonnaise on pizza.

Well, holy shit I just finished dinner and it was good enough …

Continue reading

Eric's BBQ sauce

Posted on Sun 22 March 2020 in Food • Tagged with Recipes, Food

Quite a long time ago, I posted my recipe for smokey BBQ-baked beans. It's still one of the only recipes I've seen which starts with dry beans, and includes slow-cooking in a smoker. Most of the recipes I've found are either for oven baking, or start with a literal can of baked beans (wtf).

Well I'm making baked beans again for the first time in ages, and I've taken the time to write down my tweaks. This is primarily around my BBQ sauce, hence the title of this post!

Just …

Continue reading

Artsy Moose artisan shaving soap review

Posted on Wed 18 March 2020 in Shaving

(Reposting from Facebook - originally written 2020-02-19)

Tonight I've got something a bit special for my #shavingPost... A few weeks ago, I offered to help beta test a new product - a shave soap in a cup - for Grere Coutie of The Artsy Moose.

The Artsy Moose is actually a really groovy little artisan handcraft shop, physically located here in Hamilton, but Grere sells most of her work online as well. Primarily focussed on soaps, there are all sorts on offer - from activated charcoal soap, to gardeners soap, to BEER soap... even …

Continue reading

Where does mass come from?

Posted on Wed 18 March 2020 in Physics

I’m a bit over halfway through a brilliant set of particle physics lectures by Don Lincoln, called The Theory of Everything: The Quest to Explain All Reality. Don has spent many years as an experimental particle physicist, and has worked with particle accelerators at both at Fermilab and at CERN. You may remember him from his co-discovery of the top quark in 1995, or from his membership on the CERN team when they discovered the Higgs boson in 2012. Or heck you might have seen one of his TED …

Continue reading

Fail2Ban+Nginx (blocking repeated 404's, etc)

Posted on Mon 16 March 2020 in Tech • Tagged with Tech, Security, Linux

After hosting a mail server for a few years, I've gotten tired of seeing alllll the 404 attempts in my daily logwatch. Fail2Ban can help here really well, and it turns out to be really easy.

Start with nano /etc/fail2ban/filter.d/nginx-4xx.conf (I'm counting on your running Debian and having things in default locations here), and enter the following:

failregex = ^<HOST>.*"(GET|POST).*" (404|444|403|400) .*$
ignoreregex =

Note: Make sure you use a capital 'D' in Definition there.

Now, edit your /etc/fail2ban/jail.conf …

Continue reading