Technology Solutions for Everyday Folks

Matt Zaske Online Blog

Reconciling Disparate Datasets

A few weeks ago I was asked to help update a centralized inventory dataset, which to us is definitely a "tertiary" system. Several hundred device records were associated with our part of the organization, and every time I opened the list I quickly "noped" out of doing anything with it. But the time came when I needed to actually do something with it lest I wind up on someone's naughty list.

Read More

DMARC: Time to Evaluate Reports

Almost exactly a year ago, I wrote about my first foray into implementing DMARC controls. Specific to domains through which email was not intended to be sent, it was the beginning of my DMARC adventure and expansion into some 35-ish domains.

This became its own series of posts with time:

Read More

Date Math is Gross

This year, I'm working with/mentoring a paid intern on a device monitoring project for a portion of our fleet. These sort of projects are always fun and meaningful in that we identify a problem or opportunity to improve, and then solve said problem in a way we've not done before.

Read More

Implementing Certificate Authority Authorization

During the foray into fixing up the Let's Encrypt root certificate expiration bits for my affected bot host, while using the helpful SSL Server Test tool, I discovered the "new" (not really new) Certificate Authority Aut

Read More

Keeping the Wireless On - Script the Reconnect

Electric arc between two plasma globes

In our classroom fleet, almost all devices are wireless-only for their network access. This as a design is great for mobility and flexibility and the user experience but presents its own set of very unique challenges on the technical side. At various times and for a wide range of reasons, we encounter the situation where devices "lose" their wireless/Wi-Fi connection.

Read More

Breaking the Chain: An Edge Case of Let's Encrypt Root Certificate Expiration

It's been written about and announced for some time—the forthcoming expiration of the DST Root CA X3 certificate. The good news for most folks is that it's not a big deal. And that, I thought, also included me. For the most part, this has panned out to be true.

Read More

A DMARC Follow-Up: Nine Months In

It's been a full nine months since I first wrote about implementing DMARC controls, and over six months since I last wrote about fiddling with DMARC settings, so it's time to provide another quick update.

Read More

Undo the Undo -- A Short Tale of a Git Mistake

Gif with "Abort the mission" text.

I had one of those "Oh shit, Git!" moments this past weekend...

Mine was that I made a necessary change, and since it was pretty minor (really a typo fix of sorts) I just went ahead and did it in the main branch. NBD. Commit, push, and pull on the remote host, and all is good.

Read More

Whoops! Cleaning up Mistakes via API

Gif with "I've made a huge mistake" as caption.

Posting again after kind of a lengthy break. It's summertime, and for lots of disparate reasons I've queued up topics but haven't had the ambition or taken the time to write them all out. So today we get a tale of automation mistakes and the subsequent cleanup.

Read More

Reinstalling reCAPTCHA

In the last post I wrote about finally cutting off the comments feature due to an abundance of spam.

For about two days, this was successful...

Read More

Comments No More

Well, the time has come...to shut down post comments. Presumably for good.

Read More

Cleaning Up Old Mistakes Part Deux: Leveraging Includes

This post is the second of a two-part miniseries identifying and correcting old mistakes. Part one discusses cleaning up Git repos based on permissions faux pas.

Today's atonement for old mistakes: Using centralized/standard "includes" for path variables and eliminating passwords from committed code.

Read More

Cleaning Up Old Mistakes: Git Repos With Nested Accounts

This post is the first of a two-part miniseries identifying and correcting old mistakes. Part Deux is also available.

Today's atonement for old mistakes: Git repos used in production in which nested/disparate accounts run code.

Read More

A Twitter Bot for Dad Jokes

About a month ago, I discovered this gem of a tweet:

Read More

My Personal Git Cheat Sheet

I've used a number of various Git cheatsheets over the years, usually duing a moment of "how do I do __ again?" and sometimes during a moment of panic like "Shit! Undo that commit!"

Recently, I (finally) "removed my training wheels" and uninstalled the UI client I had for Git, for two reasons:

Read More

Git-ting the hang of Hooks

Several months ago I made the decision to finally use Git to manage a more complex "legacy" web application project that I inherited over a decade ago and continue to maintain. Years ago when migrating the web application to a new hosting stack, I ported the development/test and production sites into their own Git repositories.

Read More

Signing Git Commits: Chasing the "Verified" Stamp

I've been working on projects lately that actually involve writing more code than I have in a while...and so I'm using Git/GitHub with greater frequency than I have in some time.

Read More

Implementing DMARC: Adjusting SPF Records

It's been a couple of months since I last wrote about implementing DMARC and what comes next (review and adjustment). So I figured this would be a good time to document a few changes I've made based on the reporting data received so far.

Read More

2020: An Energy Year in Review

Now that I've had a chance to really look at the data from our 2020 electric use, in a modified format from what I've written about before, I thought I'd wrap up with an overview of our overall electric use during a most unusual year.

Read More

My First Twitter Bot: A Journey into Twitter's API

Dancing Robot

Sometime around Thanksgiving/November 2020, I formalized the idea that I would actually build a Twitter bot for the sake of novelty and as an experiment/learning exercise. One night at suppertime, we discussed what might be cool as a bot and those ideas are still on the list as possibilities for the future.

Read More

Exporting Legacy/Archival Emails with Google Apps

At work, we've had a number of folks retire over the last 18 months, and a number of those folks are holders of some significant institutional knowledge and memories. Recently I had the opportunity to work with one of these individuals as they prepared to both hand off information to others, which led me to recall several conversations I've had with my Libraries/archives friends about preserving the "right" subsets of digital messages such as email.

Read More

My Incremental Certbot Panacea

I've written about Certbot more than any other topic in the last 24 months or so, in part because it's been an interesting adventure for me both in helping to demystify SSL certificates, but also because it's been an evolving and incremental process to Make It Better.

Read More

Interruptions and Intentionality

Snip of cartoon saying 'Hey, so I just sent you an email about that thing.'

Interruptions: they're everywhere.

Read More

Implementing DMARC for Active Domains: Policy & Review

This is the second post in a two-part series to implement DMARC controls for actively-used domains, where this post focuses on creating and reviewing/adjusting your DMARC policy and controls.

Read More

Implementing DMARC for Active Domains: Configuring Prerequisites

As a follow-up from my previous post about implementing DMARC controls for unused/alias domains (those not used for actively sending messages), I wanted to write a bit about how to implement basic DMARC controls for those domains actively used to send emails.

Read More