Phil Pennock

@[email protected]
154 Followers
199 Following
179 Posts

Production Joker: I just want to see the world undeployed.

British-American Unix systems programmer, system administrator, Site Reliability Engineer, whatever the current in vogue term is. Think of the stereotype and you have a decent first approximation, beard (in winter) and all.

I do have a sense of humor. It's often dry or quirky. Various expeditions have so far failed to prove the existence of this alleged sense of humor, but equally, they haven't disproven its existence, so I'm still in the game.

Bloghttps://bridge.grumpy-troll.org/
GitHubhttps://github.com/philpennock
Pronounshe/him/his/monster
LocalityPA, USA
Phil Pennock4h ago

Oh this is pretty funny.

https://duckdb.org/2026/04/01/duckdb-now-speaks-dutch

For everyone who thinks it should be a "brandmuur" ipv "firewall".

DuckDB Now Speaks Dutch!

DuckDB now speaks Dutch! Load the EendDB community extension and start writing your queries in het Nederlands.

DuckDB
Phil PennockJan 26

Me: 4 hours of clearing snow; first 30 minutes with snow blower before battery died and the smaller batteries refused to touch this snow, the rest done by hand with a snow shovel, until I’m a twitching wreck.

iOS: 4 hours walking, 5200+ steps, 2.48 miles. Verdict: 8 minutes of exercise.

🤨

Phil PennockJun 17, 2025
Whelp, don’t buy custom sunglass attachments from cliponexpress.com … I ordered on Nov 28th, cost $60, they arrived today (June 16th) and they’re garbage. As in, I’d expect them to retail for $4 and would still feel like an idiot for buying this trash.
Phil PennockJun 16, 2025
BeyondMachines Jun 16, 2025
#VibeCoding your MFA
Phil PennockMay 16, 2025

Keep an eye out for Cory Doctorow’s keynote speech from PyCon US 2025 being posted online. It’s well worth your time and attention to hear it.

Affects everyone who has to make a living in this world, uses apps, or otherwise doesn’t live in a cave in the wilderness.

Phil PennockMar 3, 2025
sjvnMar 3, 2025
MITM. What? You've never heard of a mouse in the middle attack?
Phil PennockFeb 24, 2025
Fi 🏳️‍⚧️Feb 21, 2025
 Hey if you put a DEI policy in your open source projects, the feds can't use it now right?
Phil PennockFeb 20, 2025
Matthew McPherrinFeb 20, 2025
We've issued our first short-lived (6 day) certificate! https://letsencrypt.org/2025/02/20/first-short-lived-cert-issued/
We Issued Our First Six Day Cert

Earlier this year we announced our intention to introduce short-lived certificates with lifetimes of six days as an option for our subscribers. Yesterday we issued our first short-lived certificate. You can see the certificate at the bottom of our post, or here thanks to Certificate Transparency logs. We issued it to ourselves and then immediately revoked it so we can observe the certificate’s whole lifecycle. This is the first step towards making short-lived certificates available to all subscribers.

Phil PennockFeb 14, 2025
Matthew McPherrinFeb 14, 2025

Chrome has published version 1.6 of their root store policy.

Notably, this contains a timeline for deprecating use of the TLS Client Auth extended-key-usage inside the PKIs included in their program.
If you currently use TLS Client Auth from a publicly trusted CA, you may need to take action.

> ... certificates issued on or after June 15, 2026 MUST include the extendedKeyUsage extension and only assert an extendedKeyUsage purpose of id-kp-serverAuth.

https://www.chromium.org/Home/chromium-security/root-ca-policy/#32-promote-use-of-dedicated-tls-server-authentication-pki-hierarchies

Chrome Root Program Policy, Version 1.6

Phil PennockJan 28, 2025
Random Geek in limboJan 28, 2025

They told me "information wants to be free." I kinda liked that.

Then they started getting stock shares and decided it was just my information that wants to be free, for them. I didn't like that.