Using pfsense to sign private wildcard SSL certificates

pfsense is a wonderful router appliance BSD distro that I’ve enjoyed for some years now.

I use the pfsense certificate manager to issue certs for my VPN client devices. For my Internet-facing life, I have legit SSL certs for everything, I’ve a neurosis about it. But it’s bothered me that for my LAN servers, I’ve continued to use Self-Signed certs for interfaces. Today I fix that.

Here are my notes on how to create and sign a wild-card SSL cert using pfsense for internal use. Note that this approach means you will make your own certificate authority which then must have its root cert installed on any machine you want to use your own certs.

Continue reading Using pfsense to sign private wildcard SSL certificates

VMware ESXi 6.5 – Replacing the default SSL/TLS certificates

One of my weird hobbies is installing legitimate SSL certificates EVERYWHERE. Here’s steps for replacing the default self-signed garbage SSL certificates you get out of the box with VMware ESXi:

Steps

  1. Get your SSL cert, obviously. You’ll need a .key file and a .crt. (If you need help at this stage, take a look at my SSL cert management scripts on github.)
  2. Enable SSH access to your ESXi box. Login as root over ssh. (If you don’t know about this, perhaps this whole process is not for you at this time)
  3. From your root ssh session to your ESXi box, follow these steps:

    cd /etc/vmware/ssl
    mv rui.crt orig.rui.crt
    mv rui.key orig.rui.key
  4. Use vi to open new rui.key and rui.crt files and paste in your own crt and key files.
  5. Restart services so your certs are in-play:

    /etc/init.d/hostd restart
    /etc/init.d/vpxa restart

Continue reading VMware ESXi 6.5 – Replacing the default SSL/TLS certificates

Introducing ml1610-blaster – how you get a Samsung ML-1610 to work on macOS 10.13

The highly retro monochrome laser printer, Samsung ML-1610, continues to work just fine on macOS 10.13 High Sierra. However, getting driver support took me a long time to figure out a while ago. I got something worked out for macOS 10.12 (Sierra) and posted about it here.

To my great surprise, my old post on getting this going has become the most popular, heavily visited post on dawning.ca. So… I’ve revised things and spun this in to what I’m calling “ml1610-blaster”. There’s a github repo hosting it, here: ml1610-blaster.git

How to get ML-1610 working under macOS 10.13 High Sierra

Continue reading Introducing ml1610-blaster – how you get a Samsung ML-1610 to work on macOS 10.13

Using Apple Script to launch System Preferences in to highly specific location

I’m working on my next update for my goofy little macOS application Trash Talker. This app heavily leverages macOS’s built-in Speech Synthesis engine.

I wanted to add some user-support to help them edit the available voices. I could have just written-out instructions, but reading is for the literate. It took me a while to find a method that I guess will be a good starting point, which is to invoke an Apple Script to direct System Preferences to the right location.

After some hours (I’ve never looked at Apple Script before), I cobbled-together a working solution:

Continue reading Using Apple Script to launch System Preferences in to highly specific location

iOS App: To Free, or not to Free, that is the question

One of my iOS apps is Search Site, is a little functional thing I made mainly to help familiarize myself with the full workflow of iOS app development. (IE, it’s a glorified Hello, World! app). It’s been released for free for a few months and has had very few downloads.

In the last month, it has suddenly started getting a relatively large amount of attention, specifically from Asia. I decided to try making it non-free, so I set it to the minimum possible paid value, $1CAD. After a week I decided to make it free again, for now.

See if you can tell when it wasn’t free:

My plan with it is to leave it free, but perhaps release an improved version that also has banner ads that can be paid to go away. For now, I’ll just enjoy that there’s a user-base growing for this cute little application.