Nerdy content I made a few changes to the blog. I have moved the URL to www.nuttall.im, rather than http://nuttall.im/chile/. There was not anything interesting on / anyway. I should have got mod_rewrite to do the correct rewriting, but if a url is broken for you - or something is broken for you - let me know at psn _at_ nuttall.im.

I've moved to SSL and STS. The long term goal for ssl is either to set up ajaxterm or similar, or to play around with spdy. I would like ajaxterm as a backup for putty in internet cafes, and I want to play around with spdy anyway. STS protects against sslstrip, and also does a better job at flushing out mixed content warnings.

Adam Langley's blog is pretty good at explaining what to do. I got the certs off startssl - who were puzzled by an Argentinian IP and Dublin address and wanted to ask more questions. They were convinced by a Google maps photo of the roof of my block of flats. Ob Simpson's reference. I also screwed up serving the certs with Apache - and didn't send the full chain. This broke Firefox, but not chrome. Problem found by my Dad and reproduced with ssllabs test thingo.

I have found one problem with ssl - disqus broke. It fetched a resource over http. The Google suggested turning off their 2012 update. It seems to work after that.

I added the www subdomain so I could scope cookies to www.nuttall.im, not nuttall.im. I'm not doing much with cookies, so I might change that back.

The rest of the blog