.github/workflows/jekyll.yml

@@ -46,9 +46,7 @@ jobs:
         uses: actions/configure-pages@v5
       - name: Build with Jekyll
         # Outputs to the './_site' directory by default
-        run:
+        run: bundle exec jekyll build --baseurl "${{ steps.pages.outputs.base_path }}"
-          bundle exec jekyll build --baseurl "${{ steps.pages.outputs.base_path
-          }}"
         env:
           JEKYLL_ENV: production
       - name: Upload artifact

.gitlab-ci.yml

@@ -11,8 +11,7 @@ cache:
     - ${CI_PROJECT_DIR}/vendor
 
 before_script:
-  - apk add --no-cache ruby ruby-dev ruby-bundler make gcc g++ musl-dev
+  - apk add --no-cache ruby ruby-dev ruby-bundler make gcc g++ musl-dev build-base libffi-dev libxml2-dev
-    build-base libffi-dev libxml2-dev
   - bundle install
 
 test:
@@ -38,8 +37,7 @@ pages:
 gitlab-ci-pre-commit:
   stage: build
   before_script:
-    - apk add --no-cache python3 python3-dev py3-pip py3-wheel git gcc musl-dev
+    - apk add --no-cache python3 python3-dev py3-pip py3-wheel git gcc musl-dev bash nodejs-current npm ruby ruby-bundler
-      bash nodejs-current npm ruby ruby-bundler
     - pip install pre-commit --break-system-packages
   script:
     - pre-commit run --all-files --show-diff-on-failure

.pre-commit-config.yaml

@@ -58,8 +58,7 @@ repos:
           [
             --update-only,
             --title,
-            '<em lang="fi">Automaattinen sisällysluettelo</em> / <em
+            '<em lang="fi">Automaattinen sisällysluettelo</em> / <em lang="en">Automatically generated Table of Contents</em>',
-            lang="en">Automatically generated Table of Contents</em>',
           ]
 
   - repo: https://github.com/python-jsonschema/check-jsonschema

.prettierrc

@@ -1,7 +1,4 @@
 {
-  "insertPragma": false,
-  "proseWrap": "always",
-  "singleAttributePerLine": true,
   "plugins": ["@prettier/plugin-xml", "prettier-plugin-sh"],
   "overrides": [{ "files": ".prettierrc", "options": { "parser": "json" } }]
 }

CITATION.cff

@@ -1,7 +1,8 @@
 cff-version: 1.2.0
 title: Aminda.eu
 message: >-
-  If you use this website, please cite it using the metadata from this file.
+  If you use this website, please cite it using the
+  metadata from this file.
 type: software
 authors:
   - given-names: Aminda

Gemfile.lock

@@ -104,7 +104,7 @@ GEM
       jekyll (>= 3.5, < 5.0)
       jekyll-feed (~> 0.9)
       jekyll-seo-tag (~> 2.1)
-    minitest (5.24.0)
+    minitest (5.23.1)
     mutex_m (0.2.0)
     nokogiri (1.16.6)
       mini_portile2 (~> 2.8.2)

README.markdown

@@ -32,37 +32,29 @@ checkmark.
 
 - `sitemap.xml` — automatically generated by Jekyll when building
 - `sitemaps.xml` — manually written sitemap index pointing to sitemaps on my
-  sites. I am not sure how it works when there are multiple domains, so I am
+  sites. I am not sure how it works when there are multiple domains, so
-  keeping all sitemaps in robots.txt and sitemaps.xml on bottom of it. Same will
+  I am keeping all sitemaps in robots.txt and sitemaps.xml on bottom
-  possibly happen with other domains.
+  of it. Same will possibly happen with other domains.
 
 ## Unusual directories
 
 Or directories that generally aren't encountered in other similar projects.
 
 - `n/` - quick notes for my personal reference with memorable addresses.
-- `r/` - my personal url redirector for links that I have to refer to more or
+- `r/` - my personal url redirector for links that I have to refer to more or less often.
-  less often.
+- `txt/` - signed text files such as account list to decrease impact of identity theft attempts.
-- `txt/` - signed text files such as account list to decrease impact of identity
-  theft attempts.
 - `PGP/` - my current and some previous PGP keys.
 
 ### Submodules
 
-- `ir/` - list of I2P services, previously a part of this repository for
+- `ir/` - list of I2P services, previously a part of this repository for memorable addresses.
-  memorable addresses.
+- `lfs-media/` - orphan branch containing lfs-media such as the avatars. However it doesn't work with GitHub pages.
-- `lfs-media/` - orphan branch containing lfs-media such as the avatars. However
-  it doesn't work with GitHub pages.
 - `or/` - same as `ir/`, but for Tor Onion Services.
 
 ## Building
 
 1. Install `bundler` onto your system.
 1. `cd` to root of this repository, if you didn't already.
-1. _Optionally_ configure where you wish bundler to install everything. This
+1. _Optionally_ configure where you wish bundler to install everything. This repository already specifies `bundle config set --local path 'vendor/bundle'` in the gitignored `.bundle/config` file.
-   repository already specifies `bundle config set --local path 'vendor/bundle'`
-   in the gitignored `.bundle/config` file.
 1. Run `bundle install`
-1. You are done, `bundle exec jekyll <build|serve>` and similar commands should
+1. You are done, `bundle exec jekyll <build|serve>` and similar commands should work, just remember `bundle exec` in front of the command so the system wide installation doesn't unintentionally get used.
-   work, just remember `bundle exec` in front of the command so the system wide
-   installation doesn't unintentionally get used.

_config.yml

@@ -6,12 +6,10 @@ author:
 # Jekyll seo, appended after title
 tagline: Aminda Suomalainen ⚧︎
 description: > # this means to ignore newlines until "baseurl:"
-  I am a Highly Sensitive Autistic Pirate with Linux experience since 2008. I am
+  I am a Highly Sensitive Autistic Pirate with Linux experience since 2008. I am familiar with git and looking for employment. ⚧︎
-  familiar with git and looking for employment. &#9895;&#65038; <br/><br/><em
+  <br/><br/><em lang="en">This website is licensed under the
-  lang="en">This website is licensed under the <a
+  <a href="(https://creativecommons.org/licenses/by/4.0/">Creative Commons Attribution 4.0 International License</a>
-  href="(https://creativecommons.org/licenses/by/4.0/">Creative Commons
+  by <a href="https://aminda.eu">Aminda Suomalainen</a>.</em>
-  Attribution 4.0 International License</a> by <a
-  href="https://aminda.eu">Aminda Suomalainen</a>.</em>
 baseurl: "" # the subpath of your site, e.g. /blog/
 # I would like to use www subdomain to not have all cookies passed to top
 # level, but there seems to be a redirect issue otherwise.

blog/_posts/2015-01-10-channels-hostmask-groups-a-basic-howto.md

@@ -9,24 +9,24 @@ sitemap: true
 robots: noai
 ---
 
-`@Annwenn` got me opering at her network after long pause with my opering. She
+`@Annwenn` got me opering at her network after long pause with my opering.
-also named this blogpost and requested me to write this and I don't have any
+She also named this blogpost and requested me to write this and I don't
-better place where to put this, but I am starting with other talk before getting
+have any better place where to put this, but I am starting with other talk
-to the subject.
+before getting to the subject.
 
-It appears that I am not as bad oper as I thought as I was able to identify and
+It appears that I am not as bad oper as I thought as I was able to identify
-find solutions to multiple issues including server-side aliases not working,
+and find solutions to multiple issues including server-side aliases not
-SASL being loaded with services, but not with IRCd, CertFP loaded with services,
+working, SASL being loaded with services, but not with IRCd, CertFP loaded
-but not IRCd, missing oper-only channels (and allowing everyone to join
+with services, but not IRCd, missing oper-only channels (and allowing
-#services) etc.
+everyone to join #services) etc.
 
-The services package is Atheme and IRCd InspIRCd which are the same I would have
+The services package is Atheme and IRCd InspIRCd which are the same I would
-picked if I had started running IRC server which I was avoiding before. The
+have picked if I had started running IRC server which I was avoiding
-forks of Atheme don't have any stable releases yet and Atheme is still getting
+before. The forks of Atheme don't have any stable releases yet and Atheme
-security fixes.
+is still getting security fixes.
 
-I am not linking to the network or complete issue list here as I don't want too
+I am not linking to the network or complete issue list here as I don't want
-much traffic there.
+too much traffic there.
 
 And now to the subject.
 
@@ -59,11 +59,12 @@ First, register a channel, for example #test.
 ```
 
 Here $oper adds people who are opered to access list (if EXTTARGET $oper is
-enabled) and allows people who have +c in group !test to see the access list
+enabled) and allows people who have +c in group !test to see the access
-(even with PRIVATE on), invite themselves or see the channel key using ChanServ
+list (even with PRIVATE on), invite themselves or see the channel key using
-and have autovoice on the channel.
+ChanServ and have autovoice on the channel.
 
-4. Set the options and flags of !test.4. Set the options and flags of !test.
+4. Set the options and flags of !test.4. Set the options and flags of
+   !test.
 
 ```
 /msg groupserv set !test channel #test
@@ -71,9 +72,10 @@ and have autovoice on the channel.
 /msg groupserv set !test open on
 ```
 
-joinflags +cvi means that when people join the group, they automatically have
+joinflags +cvi means that when people join the group, they automatically
-+cvi which allows them to have access in channels where !test has flags, take
+have +cvi which allows them to have access in channels where !test has
-vhosts which are offered to the group and invite other people to the group.
+flags, take vhosts which are offered to the group and invite other people
+to the group.
 
 5. Offer vhosts to the group (requires you to be oper).
 
@@ -90,5 +92,5 @@ vhosts which are offered to the group and invite other people to the group.
 /hs on
 ```
 
-`/hs offerlist` shows which vhosts are offered to you or groups where you have
+`/hs offerlist` shows which vhosts are offered to you or groups where you
-`+v`.
+have `+v`.

blog/_posts/2015-01-24-getting_help_with_channel_issues.md

@@ -1,8 +1,7 @@
 ---
 layout: post
 comments: true
-title:
+title: "Getting help from network operators with channel issues when ops are away"
-  "Getting help from network operators with channel issues when ops are away"
 category: [english]
 tags: [irc, english]
 redirect_from: /english/2015/01/24/getting_help_with_channel_issues.html
@@ -10,18 +9,19 @@ sitemap: true
 robots: noai
 ---
 
-In case you wish network operators to help you when your channel operators are
+In case you wish network operators to help you when your channel operators
-away, please authorize them to do so. You can do this simply by command
+are away, please authorize them to do so. You can do this simply by
-`/msg ChanServ flags #channel $oper +vhoirtAe`. _Note that this assumes that
+command `/msg ChanServ flags #channel $oper +vhoirtAe`. _Note that this
-your network uses Atheme with exttarget $oper loaded._
+assumes that your network uses Atheme with exttarget $oper loaded._
 
-If you don't do this and there is trouble on your channel, it can be assumed
+If you don't do this and there is trouble on your channel, it can be
-that you don't want network operators to intervene and they most likely take no
+assumed that you don't want network operators to intervene and they most
-action. Taking action would also require using operator privileges such as
+likely take no action. Taking action would also require using operator
-`/samode` which might not be so nice unless the flags are set.
+privileges such as `/samode` which might not be so nice unless the flags
+are set.
 
-I repeat that the commnd is `/msg ChanServ flags #channel $oper +vhoirtAe`. The
+I repeat that the commnd is `/msg ChanServ flags #channel $oper +vhoirtAe`.
-only thing that must be changed is `#channel`.
+The only thing that must be changed is `#channel`.
 
 ## Explanation of these flags
 
@@ -32,8 +32,9 @@ only thing that must be changed is `#channel`.
 - r - allows using kick/kickban/ban/unban commands
 - t - allows using topic/topicappend commands
 - A - allows seeing channel access lists and (MemoServ) sendops command
-  - most of our alerts seem to be coming from opers who are accidentally using
+  - most of our alerts seem to be coming from opers who are accidentally
-    their priviledges and seeing access list of channel they have no access to.
+    using their priviledges and seeing access list of channel they have
+    no access to.
   - `<ChanServ> Mikaela ACCESS:LIST: #channel (oper override)`
 - e - exempts from akick and allows unbanning yourself
 
@@ -47,22 +48,22 @@ Some flags change their meaning if written with wrong case:
 - H - automatic halfop and allows using halfop/dehalfop on yourself
 - O - automatic op and allows using op/deop on yourself
 - R - allows using recover, sync and clear commands
-  - recover - deop everyone, remove key, invite yourself, add ban exception on
+  - recover - deop everyone, remove key, invite yourself, add ban
-    yourself, unban yourself, set modes +im (invite-only, only voiced users can
+    exception on yourself, unban yourself, set modes +im (invite-only,
-    talk), op yourself and other fun...
+    only voiced users can talk), op yourself and other fun...
   - sync - sync the channel according to access list
-  - clear - allows clearing akicks (+b flags), bans, flags, users (=kick
+  - clear - allows clearing akicks (+b flags), bans, flags, users
-    everyone)
+    (=kick everyone)
 - a - allows using protect/deprotect commands
-  - protect is sometimes also known as admin and is higher than op, but lower
+  - protect is sometimes also known as admin and is higher than op, but
-    than owner/founder. Combine with +O to make it automatic.
+    lower than owner/founder. Combine with +O to make it automatic.
 
-So you don't want to accidentally confuse different letters. `+VHO` aren't so
+So you don't want to accidentally confuse different letters. `+VHO` aren't
-dangerous and you can freely set them, but avoid confusing +r and +R and
+so dangerous and you can freely set them, but avoid confusing +r and +R and
 avoiding confusing +A and +a can also be a good idea.
 
 ## One last note
 
-`$oper` matches everyone who is opered and requires Atheme to have exttarget
+`$oper` matches everyone who is opered and requires Atheme to have
-$oper loaded. Some other networks use different ways to add opers to be on
+exttarget $oper loaded. Some other networks use different ways to add opers
-access list.
+to be on access list.

blog/_posts/2015-02-24-znc160-ssl.md

@@ -12,59 +12,55 @@ redirect_from:
 
 **TL;DR: if you don't verify SSL certificates, don't use SSL!**
 
-ZNC 1.6.0 was released on 2015-02-12 21:05:48Z. It brings multiple improvements
+ZNC 1.6.0 was released on 2015-02-12 21:05:48Z. It brings multiple
-such as taking IP addresses from round-robins randomly instead of always
+improvements such as taking IP addresses from round-robins randomly instead
-resolving them into same IP and most notably it actually verifies SSL
+of always resolving them into same IP and most notably it actually verifies
-certificates.
+SSL certificates.
 
 - [Changelog](https://wiki.znc.in/ChangeLog/1.6.0)
 
-ZNC 1.6.0 also doesn't have option to blindly accept certificates, which would
+ZNC 1.6.0 also doesn't have option to blindly accept certificates, which
-be stupid, but sadly
+would be stupid, but sadly
 [Quakenet is right about most of people just accepting certificates blindly](https://www.quakenet.org/articles/99-trust-is-not-transitive-or-why-irc-over-ssl-is-pointless)
-as people are asking how to disable the SSL certificate verification on \#znc a
+as people are asking how to disable the SSL certificate verification on
-lot.
+\#znc a lot.
 
-Some people even wrote
+Some people even wrote [a patch and scripts to disable the verification.](https://gist.github.com/KindOne-/52cfade7b937ee8b4c37)
-[a patch and scripts to disable the verification.](https://gist.github.com/KindOne-/52cfade7b937ee8b4c37)
 This isn't a good idea as patching ZNC can cause all kinds of issues as
-sometimes seen with zncstrap
+sometimes seen with zncstrap [1](https://github.com/ProjectFirrre/zncstrap/issues/16) [2](https://github.com/ProjectFirrre/zncstrap/issues/18) [3](https://github.com/znc/znc/issues/384).
-[1](https://github.com/ProjectFirrre/zncstrap/issues/16)
+See also [contributing (reporting bugs) guidelines of ZNC.](https://github.com/znc/znc/issues/384)
-[2](https://github.com/ProjectFirrre/zncstrap/issues/18)
-[3](https://github.com/znc/znc/issues/384). See also
-[contributing (reporting bugs) guidelines of ZNC.](https://github.com/znc/znc/issues/384)
 
-I believe same policy should apply to patching ZNC as to config files, patch ZNC
+I believe same policy should apply to patching ZNC as to config files,
-or edit config file and you will forfeit all support.
+patch ZNC or edit config file and you will forfeit all support.
 
 ## And to the subject
 
-If you don't verify SSL certificates, you only have a false sense of security as
+If you don't verify SSL certificates, you only have a false sense of
-you let anyone between your ZNC and the IRC network. This is called as
+security as you let anyone between your ZNC and the IRC network. This is
-[Man-in the middle (or shortly MITM) attack.](https://en.wikipedia.org/wiki/Man-in-the-middle_attack)
+called as [Man-in the middle (or shortly MITM) attack.](https://en.wikipedia.org/wiki/Man-in-the-middle_attack)
-There are also people asking for ZNC to trust the certificate for the first time
+There are also people asking for ZNC to trust the certificate for the
-and then be alerted if the certificate changes. What if the MITM is there during
+first time and then be alerted if the certificate changes. What if the
-your first connection attempt and then you are alerted when the real IRC server
+MITM is there during your first connection attempt and then you are
-gives you wrong certificate?
+alerted when the real IRC server gives you wrong certificate?
 
 ## So what is the correct way?
 
-- Check the website of your IRC network in case the fingerprints are listed on
+- Check the website of your IRC network in case the fingerprints are
-  their website.
+  listed on their website.
-- Try asking the operators of your IRC network somewhere else if you know them
+- Try asking the operators of your IRC network somewhere else if you know
-  (like another network or email).
+  them (like another network or email).
 - This might not be so recommended, but also check the fingerprints from
   multiple locations.
 
 > But the IRC network has hundreds of servers with different certificates!
 
-In this case do what was recommened before ZNC 1.6.0, check some of the servers
+In this case do what was recommened before ZNC 1.6.0, check some of the
-that are geographically close to you and use them.
+servers that are geographically close to you and use them.
 
 ## Checking the fingerprint from multiple locations
 
-I have shell function (which you can find later on this page) which I run from
+I have shell function (which you can find later on this page) which I run
-multiple places:
+from multiple places:
 
 - my home, Kotka, Finland
 - [Kapsi (shell)](https://www.kapsi.fi/english.html), somewhere in Finland
@@ -87,34 +83,36 @@ serversslcertfp() {
 ```
 
 I hope this article has helped you to understand the issues with blindly
-accepting SSL certificates or at least to understand that _if you don't want to
+accepting SSL certificates or at least to understand that _if you don't
-verify SSL certificates, don't use SSL._
+want to verify SSL certificates, don't use SSL._
 
-- _Updated on 2015-02-26 10:43Z: just use environment variables in the function
+- _Updated on 2015-02-26 10:43Z: just use environment variables in the
-  like suggested by @DarthGandalf on \#znc._
+  function like suggested by @DarthGandalf on \#znc._
 
 ## I am asked to verify fingerprint for network with valid certificate
 
 _Added on 2015-09-03. 4. added on 2016-01-26._
 
-There are usually four causes for this. Lets use liberachat as example network.
+There are usually four causes for this. Lets use liberachat as example
+network.
 
-1. You don't have the `ca-certificates` package installed (`ca_root_nss` on
+1. You don't have the `ca-certificates` package installed (`ca_root_nss`
-   FreeBSD), so your system trusts no certificate authority. Install it and try
+   on FreeBSD), so your system trusts no certificate authority. Install it
-   again.
+   and try again.
 2. You are connecting to wrong address. liberachat's certificate is valid for
-   \*.libera.chat, but there are CNAMEs pointing there. If you connect to CNAME
+   \*.libera.chat, but there are CNAMEs pointing there. If you connect to
-   and the certificate isn't valid for that CNAME, the certificate is invalid.
+   CNAME and the certificate isn't valid for that CNAME, the certificate
+   is invalid.
    - You should always connect to `irc.libera.chat`.
-3. There is MITM which is unlikely, but unlikely is not impossible. Validating
+3. There is MITM which is unlikely, but unlikely is not impossible.
-   the certificates either by trusted certificates or verifying the fingerprints
+   Validating the certificates either by trusted certificates or verifying
-   securely manually protect you from this. If MITM is the case, you shouldn't
+   the fingerprints securely manually protect you from this. If MITM is the
-   connect.
+   case, you shouldn't connect.
-4. You have `ca-certificates` installed, but the remote certificate is signed by
+4. You have `ca-certificates` installed, but the remote certificate is
-   CA that is not included in it. You could try installing system updates in
+   signed by CA that is not included in it. You could try installing
-   case `ca-certificates` have been updated or you will have to treat the
+   system updates in case `ca-certificates` have been updated or you will
-   certificate as invalid until ZNC starts supporting it's own CA storage. See
+   have to treat the certificate as invalid until ZNC starts supporting
-   (and comment if you encounter this)
+   it's own CA storage. See (and comment if you encounter this)
    [znc/znc#909](https://github.com/znc/znc/issues/909).
 
 ---
@@ -123,14 +121,13 @@ Section added on 2018-11-10: I have started using the new option to allow
 invalid SSL certificates in some cases as this post is only written with
 clearnet in mind.
 
-I am on some networks over Yggdrasil or Cjdns which already have E2EE like Tor
+I am on some networks over Yggdrasil or Cjdns which already have E2EE like
-hidden services so as long as they are accessed directly, all benefits of TLS
+Tor hidden services so as long as they are accessed directly, all benefits
-are there already and TLS certificates are an additional burden as with
+of TLS are there already and TLS certificates are an additional burden as
-LetsEncrypt they will change often and LetsEncrypt doesn't support any network I
+with LetsEncrypt they will change often and LetsEncrypt doesn't support
-mentioned.
+any network I mentioned.
 
 ---
 
 _As I seem to be updating this page more than I originally thought I should
-probably add
+probably add [this link to changelog here.](https://github.com/Mikaela/mikaela.github.io/commits/master/_posts/2015-02-24-znc160-ssl.md)_
-[this link to changelog here.](https://github.com/Mikaela/mikaela.github.io/commits/master/_posts/2015-02-24-znc160-ssl.md)_

blog/_posts/2015-03-18-nodcc.md

@@ -9,32 +9,33 @@ tags: [irc, english]
 redirect_from: /english/2015/03/18/nodcc.html
 ---
 
-DCC was way to send files and chat without having IRC server in the between.
+DCC was way to send files and chat without having IRC server in the
-It's not very common nowadays and what is done nowadays is uploading images etc.
+between. It's not very common nowadays and what is done nowadays is
-to social media services or web servers or using other file transfer protocols.
+uploading images etc. to social media services or web servers or using
+other file transfer protocols.
 
 Here are some reasons to not use it:
 
-- There is no proper standard or if there is, no one follows it, all clients
+- There is no proper standard or if there is, no one follows it, all
-  speak their own dialects and may be unable to communicate with other clients.
+  clients speak their own dialects and may be unable to communicate with
-  Not all clients even implement the same features.
+  other clients. Not all clients even implement the same features.
 - NAT and firewalls break it
-  - As DCC requires port on sending/hosting side, it must be opened in firewall
+  - As DCC requires port on sending/hosting side, it must be opened in
-    and if there is NAT which there is in most of situations nowadays, the port
+    firewall and if there is NAT which there is in most of situations
-    must be forwarded. Most of average users have no idea how to do the latter
+    nowadays, the port must be forwarded. Most of average users have
-    if even the first.
+    no idea how to do the latter if even the first.
 - The only place where most of people see it is spam. The only thing lately
   where people have seen is two attacks which @grawity has documented
   [here](https://nullroute.eu.org/~grawity/dcc.html)
 
 ## Disabling DCC
 
-This depends on your client and I am only able to give instructions for three:
+This depends on your client and I am only able to give instructions for
+three:
 
 - WeeChat: "`/plugin unload xfer`" and "`/set weechat.plugin.autoload *,!xfer`"
-  - The option in second command can be also be used to not automatically load
+  - The option in second command can be also be used to not automatically
-    other plugins, I personally use
+    load other plugins, I personally use `/set weechat.plugin.autoload alias,exec,irc,perl,python,script,trigger,logger`.
-    `/set weechat.plugin.autoload alias,exec,irc,perl,python,script,trigger,logger`.
     The `*,!xfer` simply means load everything else than xfer.
 - HexChat: "`/ignore *!*@* DCC`"
 - ZNC & clients behind it: "`/znc *controlpanel addctcp $me DCC`"

blog/_posts/2015-03-25-leaving-bots-life.md

@@ -14,72 +14,78 @@ A little on my life currently
 
 **TRIGGER WARNING: suicide, school bullying, transphobia**
 
-I am 19 years old trans woman who also has Asperger's syndrome studying <s>for
+I am 19 years old trans woman who also has Asperger's syndrome
-vocational qualification in business information technology</s> or would be
+studying <s>for vocational qualification in business information
-studying if there wasn't one "small bullying issue." I haven't been at
+technology</s> or would be studying if there wasn't one "small bullying
-[Etelä-Kymenlaakso vocational college](https://ekami.fi/in-english) for month
+issue." I haven't been at
-and more.
+[Etelä-Kymenlaakso vocational college](https://ekami.fi/in-english) for
+month and more.
 
-It started some time ago when I went there and it was mainly in three events on
+It started some time ago when I went there and it was mainly in three
-different days:
+events on different days:
 
-- Coming from school canteen someone said "hi Mikaela, you are beautiful" in one
+- Coming from school canteen someone said "hi Mikaela, you are beautiful"
-  boy group where I have no idea who said it or who they even are.
+  in one boy group where I have no idea who said it or who they even are.
-- Going to school canteen someone of the same group said "hi" and I replied "hi"
+- Going to school canteen someone of the same group said "hi" and I replied
-  and I got third reply imitating my horrible masculine voice.
+  "hi" and I got third reply imitating my horrible masculine voice.
-- The last time going to school canteen I went to nearby bathroom to \<if I
+- The last time going to school canteen I went to nearby bathroom to
-  understood correctly, trans people do so horrible things in bahtroom that I
+  \<if I understood correctly, trans people do so horrible things in
-  cannot write it here :P\> and I heard my name being shouted there multiple
+  bahtroom that I cannot write it here :P\> and I heard my name being
-  times. When I leeft it and went to canteen, I just ignored them and went to
+  shouted there multiple times. When I leeft it and went to canteen, I
-  canteen normally and heard them shouting after me "ONKO SULLA MUNAT!" which in
+  just ignored them and went to canteen normally and heard them shouting
-  spoken (Finnish) language translates to "DO YOU HAVE TESTICLES?".
+  after me "ONKO SULLA MUNAT!" which in spoken (Finnish) language
+  translates to "DO YOU HAVE TESTICLES?".
 
-I informed this to school social worker and two teachers, but then I learned
+I informed this to school social worker and two teachers, but then I
-that the school is unable to do anything as I have no idea who the people are
+learned that the school is unable to do anything as I have no idea who
-(what class or names). I was one day away and on then went back for some time
+the people are (what class or names). I was one day away and on then went
-and got more and more anxious and stressful on what if I saw the people
+back for some time and got more and more anxious and stressful on what
-somewhere or if they walke to canteen using the side door that I had been using.
+if I saw the people somewhere or if they walke to canteen using the side
-Since then I have been unable to go anywhere near Hamina.
+door that I had been using. Since then I have been unable to go anywhere
+near Hamina.
 
-There was one exception where I had scheduler appointment with the school social
+There was one exception where I had scheduler appointment with the school
-worker and I went there with my mother, but the school social worker was away
+social worker and I went there with my mother, but the school social
-with label on the door saying "if you had scheduled appointment, please contact
+worker was away with label on the door saying "if you had scheduled
-me using Wilma (place to message teachers etc.)" so we wasted time 50 minutes
+appointment, please contact me using Wilma (place to message teachers
-per trip from [Kotka] to [Hamina] and [Hamina] to [Kotka].
+etc.)" so we wasted time 50 minutes per trip from [Kotka] to [Hamina] and
+[Hamina] to [Kotka].
 
 [kotka]: https://www.kotka.fi/en/residents
 [hamina]: https://hamina.fi/en/
 
 ---
 
-_Update: [I graduated on 2015-05-29.]({% post_url blog/2015-05-29-graduation %})_
+_Update:
+[I graduated on 2015-05-29.]({% post_url blog/2015-05-29-graduation %})_
 
-I would graduate in summer without this issue and the only thing I have missing
+I would graduate in summer without this issue and the only thing I have
-is work training. As I don't have work training place I was doing it at school
+missing is work training. As I don't have work training place I was doing
-with some other students until the bullying started.
+it at school with some other students until the bullying started.
 
-The work training didn't went too well as it felt like it was as far from real
+The work training didn't went too well as it felt like it was as far
-work environment as possible, teacher giving some tasks that are done in maybe
+from real work environment as possible, teacher giving some tasks that are
-15 minutes and rest of time other people just playing games and drinking energy
+done in maybe 15 minutes and rest of time other people just playing games
-drinks.
+and drinking energy drinks.
 
 There is also another issue, me being scared of real work environment, but
-nothing can be done to it now and the fear will just be moved to trouble either
+nothing can be done to it now and the fear will just be moved to trouble
-my next school that I have thought to be [KyUAS](https://www.kyamk.fi/Frontpage)
+either my next school that I have thought to be
-(but it seems likely that I will try to get to [Helsinki] or [Jyväskylä] and
+[KyUAS](https://www.kyamk.fi/Frontpage) (but it seems likely that I will
-study there as people have offered to help me find apartment either from there)
+try to get to [Helsinki] or [Jyväskylä] and study there as people have
-or anywhere where I will work in the future if I ever will.
+offered to help me find apartment either from there) or anywhere where I
+will work in the future if I ever will.
 
 [helsinki]: https://www.hel.fi/www/helsinki/en
 [jyväskylä]: https://www.hel.fi/www/helsinki/en
 
-The school also offered to also give remote tasks, but it was too late and I
+The school also offered to also give remote tasks, but it was too late and
-don't feel like I can do anything anymore as the school hasn't done anything to
+I don't feel like I can do anything anymore as the school hasn't done
-help the situation.
+anything to help the situation.
 
-How does this affect me? As people say, bullying leaves eternal scars and I am
+How does this affect me? As people say, bullying leaves eternal scars and I
-not someone who could stay away from school just for fun, I have talked about
+am not someone who could stay away from school just for fun, I have talked
-suicide daily and I have also just been talked out of it for the second time in
+about suicide daily and I have also just been talked out of it for the
-two days. I don't believe I can live like this forever.
+second time in two days. I don't believe I can live like this forever.
 
 ---

blog/_posts/2015-03-26-umode--i.md

@@ -9,26 +9,25 @@ sitemap: true
 robots: noai
 ---
 
-_Or why am I using umode -iI and thus showing all channels that I am on at IRC?
+_Or why am I using umode -iI and thus showing all channels that I am on at
-So you can find channels that may interest you if we have similar interests._
+IRC? So you can find channels that may interest you if we have similar
+interests._
 
 People ask this question from me a lot, often the same people as they don't
 remember my answer.
 
-I am in umode -iI which shows the channels that I am on so if you think that I
+I am in umode -iI which shows the channels that I am on so if you think
-seem sane or interesting or whatever person and feel like you have similar
+that I seem sane or interesting or whatever person and feel like you have
-interests, you can simply `/whois Mikaela` to see the public channels that I am
+similar interests, you can simply `/whois Mikaela` to see the public
-on and join if you see anything interesting.
+channels that I am on and join if you see anything interesting.
 
-But what about the trolls? I haven't had many trolls following me around and if
+But what about the trolls? I haven't had many trolls following me around
-that happens to you, you can simply send logs to network operators and if they
+and if that happens to you, you can simply send logs to network operators
-are good opers, they will take action.
+and if they are good opers, they will take action.
 
-**_This section on (un)setting umodes was broken and moved
+**_This section on (un)setting umodes was broken and moved [here]({% post_url blog/2015-06-03-setting-umodes %})_**
-[here]({% post_url blog/2015-06-03-setting-umodes %})_**
 
-_Update on 2015-04-13: add umode -I which is the InspIRCd way of hiding all
+_Update on 2015-04-13: add umode -I which is the InspIRCd way of hiding
-channels from whois depending on the modules loaded and IRCd config._
+all channels from whois depending on the modules loaded and IRCd config._
 
-_Update on 2015-06-03: setting/unsetting umodes moved
+_Update on 2015-06-03: setting/unsetting umodes moved [here]({% post_url blog/2015-06-03-setting-umodes %})._
-[here]({% post_url blog/2015-06-03-setting-umodes %})._

blog/_posts/2015-03-26-weechat-sasl-simply.md

@@ -14,8 +14,8 @@ redirect_from:
 This seems to confuse many WeeChat users, so I will try to explain it more
 simply as I am repeating myself everywhere about this same thing.
 
-SASL is mechanism for identifying to services at IRC automatically even before
+SASL is mechanism for identifying to services at IRC automatically even
-you are visible to the network.
+before you are visible to the network.
 
 ---
 
@@ -25,10 +25,10 @@ First set mechanism as plain if you have it as anything else.
 /set irc.server_default.sasl_mechanism PLAIN
 ```
 
-PLAIN is simple "login using username and password" mechanism that sends the
+PLAIN is simple "login using username and password" mechanism that sends
-username and password in plaintext which isn't an issue if you also use SSL
+the username and password in plaintext which isn't an issue if you also use
-(like you should) and trust the server (and **use different password
+SSL (like you should) and trust the server (and
-everywhere**).
+**use different password everywhere**).
 
 Then simply set your username and password
 
@@ -39,11 +39,11 @@ Then simply set your username and password
 /save
 ```
 
-_Replace NETWORK with the name of network that you have in WeeChat, for example
+_Replace NETWORK with the name of network that you have in WeeChat, for
-`liberachat`._
+example `liberachat`._
 
-And now after `/reconnect` you should be identified automatically using SASL,
+And now after `/reconnect` you should be identified automatically using
-but you might also ensure that you use SSL.
+SASL, but you might also ensure that you use SSL.
 
 ## Using SSL
 
@@ -62,9 +62,10 @@ _6697 is the [standard SSL port](https://tools.ietf.org/html/rfc7194)._
 liberachat has valid SSL certificate, but if it didn't, you would have two
 choises:
 
-1. Trust the fingerprints manually using `irc.server.NETWORK.ssl_fingerprint`,
+1. Trust the fingerprints manually using
-   see [this post].
+   `irc.server.NETWORK.ssl_fingerprint`, see [this post].
 2. Disable SSL certificate checking using
-   `/set irc.server.NETWORK.ssl_verify off` **NOT RECOMMENDED**, see [this post].
+   `/set irc.server.NETWORK.ssl_verify off` **NOT RECOMMENDED**, see
+   [this post].
 
 [this post]:{% post_url blog/2015-02-24-znc160-ssl %}

blog/_posts/2015-04-01-keep-the-ops-opped.md

@@ -14,53 +14,54 @@ robots: noai
 _Why I think that you should keep the ops opped instead of following
 LiberaChat's recommendations._
 
-Is there an issue with your IRC channel needing op attention? Without having ops
+Is there an issue with your IRC channel needing op attention? Without
-visible, your users will very likely go to the network support channel instead
+having ops visible, your users will very likely go to the network support
-of informing you or your ops.
+channel instead of informing you or your ops.
 
 Without ops being visible, who are ops or how to alert them?
 
 - `/msg chanserv flags #channel`
   - requires whoising all ops to see if they are present
-    - idle time gets reset by CTCP replies, OTR and possibly other things.
+    - idle time gets reset by CTCP replies, OTR and possibly other
-      LiberaChat staffers may also base their judgement on are there ops present
+      things. LiberaChat staffers may also base their judgement on are
-      to handle the issue on idletime of ops.
+      there ops present to handle the issue on idletime of ops.
   - new users most likely have no idea on the command
   - remote (=different server) whois is rate-limited
   - lists accountnames, not nicknames the people are actually using
-    - e.g. I have a less privileged account `Mikaela-`, but my Matrix connection
+    - e.g. I have a less privileged account `Mikaela-`, but my Matrix
-      is usually called `Michaela` which may not instantly connect in people's
+      connection is usually called `Michaela` which may not instantly connect
-      minds. Ciblia which is one of my fallback usernames is even further away
+      in people's minds. Ciblia which is one of my fallback usernames is
-      from `Mikaela`.
+      even further away from `Mikaela`.
 - `/msg memoserv sendops #channel help! X is spamming`
   - requires +A flag which isn't mostly given to everyone
-  - new users are unsure whether they have the flag if they even know about
+  - new users are unsure whether they have the flag if they even know
-    existense of the flag or the MemoServ command.
+    about existense of the flag or the MemoServ command.
 
 There is also third commonly used method, having trigger word that either
-highlights all the ops or makes bot PM or highlight the ops which again has it's
+highlights all the ops or makes bot PM or highlight the ops which again
-own issues:
+has it's own issues:
 
 - are the ops surely highlighting on it?
-- the users can be confused for not getting any kind of acknowledging to the
+- the users can be confused for not getting any kind of acknowledging to
-  triggerword without bot and possibly spam it even more
+  the triggerword without bot and possibly spam it even more
 - if the bot PMs the ops, what if they are on umode +g and miss the bot?
-- if the bot highlights all the ops, what if the ops automatically ignore mass
+- if the bot highlights all the ops, what if the ops automatically ignore
-  highlights (multiple nicks highlighted on the same line)?
+  mass highlights (multiple nicks highlighted on the same line)?
 - and again, are the users aware of the triggerword?
-  - if you clearly document it on webpage of your channel, the users should be
+  - if you clearly document it on webpage of your channel, the users
-    aware of it, but what if they didn't bother to read it or forgot it? Their
+    should be aware of it, but what if they didn't bother to read it or
-    fault probably, but your channel is having issues for longer time...
+    forgot it? Their fault probably, but your channel is having issues
+    for longer time...
 
-And there is also the issue of having to trust services or your bots. What if
+And there is also the issue of having to trust services or your bots.
-the services go down or netsplit and the same happens to your bot? You are out
+What if the services go down or netsplit and the same happens to your bot?
-of luck unless you had the ops opped in which case the outage doesn't affect you
+You are out of luck unless you had the ops opped in which case the outage
-that much at all.
+doesn't affect you that much at all.
 
-Counter argument: if ops are shown on a support channel, that can make people
+Counter argument: if ops are shown on a support channel, that can make
-new to IRC ping them about everything instead of asking in the channel in
+people new to IRC ping them about everything instead of asking in the
-gneral. I think it's up to the channel operators to decide how much that weights
+channel in gneral. I think it's up to the channel operators to decide how
-and can the new users be educated without much effort.
+much that weights and can the new users be educated without much effort.
 
 ## Fixing LiberaChat
 
@@ -73,19 +74,18 @@ Tell ChanServ the following three commands:
 ```
 
 The ! means "add these flags to everyone who currently matches the template
-exactly" so when you do this everyone who you have made xOP with `/msg chanserv
+exactly" so when you do this everyone who you have made xOP with
-someone xOP" gets opped or voiced automatically.<br/> _Note: templates including
+`/msg chanserv someone xOP" gets opped or voiced automatically.<br/>
-F (founder) are not automatically updated even with the !._
+_Note: templates including F (founder) are not automatically updated even
+with the !._
 
 Alternatively if you have been setting flags manually use
-`/msg chanserv flags #channel someone +O` to automatically op them. You must
+`/msg chanserv flags #channel someone +O` to automatically op them. You
-also do this to yourself if you are channel founder, for auto-voicing use +V.
+must also do this to yourself if you are channel founder, for auto-voicing
-_Note: +o allows you to manually op/deop anyone, +v is the same, but for voice,
+use +V. _Note: +o allows you to manually op/deop anyone, +v is the same,
-so don't confuse the casing._
+but for voice, so don't confuse the casing._
 
 Changelog:
 
-- Part 1:
+- Part 1: https://github.com/Mikaela/mikaela.github.io/commits/master/_posts/2015-04-01-keep-the-ops-opped.md
-  https://github.com/Mikaela/mikaela.github.io/commits/master/_posts/2015-04-01-keep-the-ops-opped.md
+- Part 2: https://github.com/Mikaela/mikaela.github.io/commits/master/blog/_posts/2015-04-01-keep-the-ops-opped.md
-- Part 2:
-  https://github.com/Mikaela/mikaela.github.io/commits/master/blog/_posts/2015-04-01-keep-the-ops-opped.md

blog/_posts/2015-04-01-saasta.md

@@ -12,37 +12,39 @@ redirect_from: /finnish/2015/04/01/saasta.html
 
 > Minun pitäisi kai myös antaa jonkinlainen mielipide.
 >
-> En pidä kenenkään nimittelystä ja minusta parasta olisi vain puhua asioita,
+> En pidä kenenkään nimittelystä ja minusta parasta olisi vain puhua
-> mutta aina ovat nämä, jotka eivät kuuntele tai halua ymmärtää ja kai tälle
+> asioita, mutta aina ovat nämä, jotka eivät kuuntele tai halua ymmärtää ja
-> sanalle on oma käyttötarkoituksensa, ei ole kovin usein tullut käytettyä,
+> kai tälle sanalle on oma käyttötarkoituksensa, ei ole kovin usein tullut
-> mutta luulen että joskus loukkaantuneena olen käyttänyt, en muista enempää ja
+> käytettyä, mutta luulen että joskus loukkaantuneena olen käyttänyt,
-> minulla ei muisti ole toiminut viimeaikoina.
+> en muista enempää ja minulla ei muisti ole toiminut viimeaikoina.
 >
-> Tietysti voi kai ajatella niinkin, että jos olisin hyökkäävämpi, olisin yhä
+> Tietysti voi kai ajatella niinkin, että jos olisin hyökkäävämpi, olisin
-> koulussa toisin kuin ihmiset siellä, joita tämä sana mahdollisesti kuvaa...
+> yhä koulussa toisin kuin ihmiset siellä, joita tämä sana mahdollisesti
-> Lyhyesti siellä on siis ensimmäisellä kerralla sanottu "moi Nimi, olet
+> kuvaa... Lyhyesti siellä on siis ensimmäisellä kerralla sanottu "moi
-> kaunis", seuraavalla kerralla "moi" ja pilkattu maskuliinista ääntäni ja
+> Nimi, olet kaunis", seuraavalla kerralla "moi" ja pilkattu
-> kolmannella kerralla en ole saanut käydä vessassa rauhassa vaan nimeäni
+> maskuliinista ääntäni ja kolmannella kerralla en ole saanut käydä
-> huudettiin ja kun en kiinnittänyt niihin minkäänlaista huomiota ne huusivat
+> vessassa rauhassa vaan nimeäni huudettiin ja kun en kiinnittänyt niihin
-> perääni onko minulla munat. No kouluhan ei luonnollisesti voi tehdä yhtikäs
+> minkäänlaista huomiota ne huusivat perääni onko minulla munat.
-> mitään, koska en ole cis, enkä neurotyypillinen eli minä olen vain kotona
+> No kouluhan ei luonnollisesti voi tehdä yhtikäs mitään, koska en ole cis,
-> ollut kuukauden ja varmaan päivittäin puhunut itsemurhasta.
+> enkä neurotyypillinen eli minä olen vain kotona ollut kuukauden ja
+> varmaan päivittäin puhunut itsemurhasta.
 >
 > Olenhan minä kai myös huono ihminen, koska olen riidoissa kaikkien kanssa
-> kaikkialla ja en myöskään ole hyvä transsukupuolinen, koska minä vain toivon,
+> kaikkialla ja en myöskään ole hyvä transsukupuolinen, koska minä vain
-> että olisin cistyttö ja neurotyypillinen ja, että joku voisi joskus rakastaa
+> toivon, että olisin cistyttö ja neurotyypillinen ja, että joku voisi
-> minua. En tiedä onko ulkona oleminen minulle paras vaihtoehto, mutta en voi
+> joskus rakastaa minua. En tiedä onko ulkona oleminen minulle paras
-> muutakaan ja ehkä se auttaa jotakuta edes vähän, vaikka en koskaan kuulisi
+> vaihtoehto, mutta en voi muutakaan ja ehkä se auttaa jotakuta edes vähän,
-> koko henkilöstä mitään ja minä yritän tehdä minkä voin, vaikka mikään ei
+> vaikka en koskaan kuulisi koko henkilöstä mitään ja minä yritän tehdä
-> onnistukaan ja teen ja sanon kaiken aina väärin.
+> minkä voin, vaikka mikään ei onnistukaan ja teen ja sanon kaiken aina
+> väärin.
 >
-> En jaksa tätä sotaa mikä näissä kommenteissa aina on ja jatkuvasti jossakin
+> En jaksa tätä sotaa mikä näissä kommenteissa aina on ja jatkuvasti
-> tapetaan trans-henkilö, etenkin trans woman of colour (en uskalla kääntää tätä
+> jossakin tapetaan trans-henkilö, etenkin trans woman of colour
-> suomeksi) ja joka puolella säädetään erilaisia LGBTIQ+ vastaisia lakeja ja nyt
+> (en uskalla kääntää tätä suomeksi) ja joka puolella säädetään erilaisia
-> on ollut noista vessoista paljon puhetta. Tästä asiasta vain ei ole
+> LGBTIQ+ vastaisia lakeja ja nyt on ollut noista vessoista paljon puhetta.
-> mahdollista saada lepoa.
+> Tästä asiasta vain ei ole mahdollista saada lepoa.
 >
-> (ja onnistuin puhumaan suurimman osan aivan aiheen vierestä, mutta kun minä
+> (ja onnistuin puhumaan suurimman osan aivan aiheen vierestä, mutta kun
-> kerran kirjoitin tämän niin kai minun pitää myös lähettää tämä)
+> minä kerran kirjoitin tämän niin kai minun pitää myös lähettää tämä)
 
 -- Facebook-kommentti

blog/_posts/2015-04-03-scum.md

@@ -12,39 +12,41 @@ redirect_from: /english/2015/04/03/scum.html
 
 > I should probably also say some kind of opinion.
 
-> I don't like calling anyone names and I think it would be best to just talk
+> I don't like calling anyone names and I think it would be best to just
-> about things, but there are always people who don't listen or want to
+> talk about things, but there are always people who don't listen or
-> understand and maybe this word has it's usage, I haven't used it much, but I
+> want to understand and maybe this word has it's usage, I haven't used it
-> think that I might have used it sometime when upset, but I don't remember more
+> much, but I think that I might have used it sometime when upset, but
-> and my memory hasn't worked lately.
+> I don't remember more and my memory hasn't worked lately.
 >
-> Of course it can probably be thought that if I was more attacking, I might
+> Of course it can probably be thought that if I was more attacking,
-> still be at school unlike the people there whom this word possibly
+> I might still be at school unlike the people there whom this word
-> describes... Shortly, first time they said "hi Name, you are beautiful", next
+> possibly describes... Shortly, first time they said "hi Name, you are
-> time "hi" and mocked my masculine voice and the third time I couldn't even use
+> beautiful", next time "hi" and mocked my masculine voice and the third
-> bathroom in peace, my name was shouted and when I ignored them and didn't look
+> time I couldn't even use bathroom in peace, my name was shouted and
-> them at all, they shouted after me if I have \<male genitalia\>. School
+> when I ignored them and didn't look them at all, they shouted after me
-> naturally cannot do anything at all, because I am not cis or neurotypical so I
+> if I have \<male genitalia\>. School naturally cannot do anything at
-> have just been at home for month and talked about suicide possibly daily.
+> all, because I am not cis or neurotypical so I have just been at home
+> for month and talked about suicide possibly daily.
 >
-> I am probably bad human, because I am in disputes with everyone everywhere and
+> I am probably bad human, because I am in disputes with everyone
-> I am not good trans either, because I only wish that I was cis girl and
+> everywhere and I am not good trans either, because I only wish that I
-> neurotypical and that someone could love me some day. I don't know if being
+> was cis girl and neurotypical and that someone could love me some day. I
-> out is the best possible choise for me, but I don't have a choice and maybe it
+> don't know if being out is the best possible choise for me, but I don't
-> will help someone even if I never heard about the person and I try to do
+> have a choice and maybe it will help someone even if I never heard about
-> everything I can even if nothing ever succeeds and I always do and say
+> the person and I try to do everything I can even if nothing ever succeeds
-> everything wrongly.
+> and I always do and say everything wrongly.
 >
-> I am tired of this war which is always in these comments and continuosly trans
+> I am tired of this war which is always in these comments and continuosly
-> person is killed somewhere, especially trans woman of colour and everywhere
+> trans person is killed somewhere, especially trans woman of colour
-> there are laws against LGBTIQ+ people and now there has been aa lot talk about
+> and everywhere there are laws against LGBTIQ+ people and now there has
-> those bathrooms. It's just not possible to get rest from this thing.
+> been aa lot talk about those bathrooms. It's just not possible to get
+> rest from this thing.
 >
-> (and I once again managed to talk offtopic most of the time, but as I wrote
+> (and I once again managed to talk offtopic most of the time, but as I
-> this, maybe I must also send this)
+> wrote this, maybe I must also send this)
 >
-> (ja onnistuin puhumaan suurimman osan aivan aiheen vierestä, mutta kun minä
+> (ja onnistuin puhumaan suurimman osan aivan aiheen vierestä, mutta kun
-> kerran kirjoitin tämän niin kai minun pitää myös lähettää tämä)
+> minä kerran kirjoitin tämän niin kai minun pitää myös lähettää tämä)
 
 -- Facebook comment
 

blog/_posts/2015-04-22-IRC-over-TLS.md

@@ -15,78 +15,71 @@ robots: noai
 _IRC over TLS is not pointless unless you only worry about things that you
 cannot affect at all. SSL is pointless, because of [POODLE]._
 
-I use IRC over TLS on all networks that support it (=other than IRCnet) and I
+I use IRC over TLS on all networks that support it (=other than IRCnet)
-also [verify the certificates]. TLS is used
+and I also [verify the certificates]. TLS is used
 
 _Update on 2015-06-18: I was told that IRCnet does have SSL on
 ssl.irc.atw-inter.net and ssl.rfc1459.ca, but server links are mostly
-unencrypted. I am not able to use those though as Finnish channels are mostly
+unencrypted. I am not able to use those though as Finnish channels are
-stupid and letting people only in from Finnish servers._
+mostly stupid and letting people only in from Finnish servers._
 
 - between my client and bouncer
-  - when they both are on localhost it's not used and my bouncer only listens
+  - when they both are on localhost it's not used and my bouncer only
-    for plain text connections only on `127.0.0.1` and `::1`.
+    listens for plain text connections only on `127.0.0.1` and `::1`.
 - between my bouncer and IRCd
 
-These are the points that I can affect. I cannot do anything to server links
+These are the points that I can affect. I cannot do anything to server
-other than hope that the network operators know what they are doing and use TLS.
+links other than hope that the network operators know what they are doing
-I cannot affect whether other users use TLS or not or do they check the
+and use TLS. I cannot affect whether other users use TLS or not or do they
-certificates or blindly accept whatever they are offered.
+check the certificates or blindly accept whatever they are offered.
 
-As I use TLS everywhere where I can affect, I can be more sure that my
+As I use TLS everywhere where I can affect, I can be more sure that
-discussions aren't so easily read on:
+my discussions aren't so easily read on:
 
 - open WLAN
 - any router between me and the bouncer
 - any router between bouncer and the IRC server
 
-And like everyone else says, you cannot be sure on the server links or other
+And like everyone else says, you cannot be sure on the server links
-people on the channels or queries. You can only make sure that **you** are using
+or other people on the channels or queries. You can only make sure that
-TLS.
+**you** are using TLS.
 
-One example where TLS is very helpful even if you have no idea whether the other
+One example where TLS is very helpful even if you have no idea whether
-people use SSL is passwords:
+the other people use SSL is passwords:
 
-- your NickServ password isn't in plain text between you and the IRC server, but
+- your NickServ password isn't in plain text between you and the IRC
-  you again cannot know if the IRC server sends it to other IRC server(s) in
+  server, but you again cannot know if the IRC server sends it to other
-  plain text that are between the server where you are connected to and services
+  IRC server(s) in plain text that are between the server where you are
-  server.
+  connected to and services server.
-- your /OPER password in case you are IRC operator. Imagine being on open WLAN
+- your /OPER password in case you are IRC operator. Imagine being on
-  or similar situation and transmitting your password in plain text and someone
+  open WLAN or similar situation and transmitting your password in
-  else taking that password. What kind of "fun" things they could do with it?
+  plain text and someone else taking that password. What kind of "fun"
+  things they could do with it?
 
-_Now you can move into reading why [IRC over SSL is pointless],
+_Now you can move into reading why [IRC over SSL is pointless], [web.archive.org]..._
-[web.archive.org]..._
 
 [poodle]: https://en.wikipedia.org/wiki/POODLE
 
-[verify the certificates]:{% post_url blog/2015-02-24-znc160-ssl %} [IRC
+[verify the certificates]:{% post_url blog/2015-02-24-znc160-ssl %}
-over SSL
+[IRC over SSL is pointless]:https://www.quakenet.org/articles/99-trust-is-not-transitive-or-why-irc-over-ssl-is-pointless
-is
-pointless]:https://www.quakenet.org/articles/99-trust-is-not-transitive-or-why-irc-over-ssl-is-pointless
 [web.archive.org]:https://web.archive.org/web/20130425123002/http://www.quakenet.org/articles/99-trust-is-not-transitive-or-why-irc-over-ssl-is-pointless
 
 ## Addition: who is interested in my traffic?
 
 - Finland - Security Police & Defence Forces
-  - Currently law allowing Security Police and the Defence Forces to do network
+  - Currently law allowing Security Police and the Defence Forces to do
-    monitoring without limitations is going to pass in the parlament.
+    network monitoring without limitations is going to pass in the
+    parlament.
 - Sweden - National Defence Radio Establishment & Security Police & Police
-  - Sweden has monitored all traffic going through them since 2008 and most of
+  - Sweden has monitored all traffic going through them since 2008
-    Finnish traffic goes through them.
+    and most of Finnish traffic goes through them.
-  - 2015-04-23
+  - 2015-04-23 https://en.wikipedia.org/w/index.php?title=National_Defence_Radio_Establishment&oldid=651267187#Legal_framework
-    https://en.wikipedia.org/w/index.php?title=National_Defence_Radio_Establishment&oldid=651267187#Legal_framework
+  - 2015-04-23 https://en.wikipedia.org/w/index.php?title=National_Defence_Radio_Establishment&oldid=651267187#Mass_surveillance
-  - 2015-04-23
+  - 2015-04-23 (in Finnish) https://www.hackingthroughcomplexity.fi/2013/10/ruotsin-verkkovalvonta-latakon.html / https://archive.is/iYrsl
-    https://en.wikipedia.org/w/index.php?title=National_Defence_Radio_Establishment&oldid=651267187#Mass_surveillance
-  - 2015-04-23 (in Finnish)
-    https://www.hackingthroughcomplexity.fi/2013/10/ruotsin-verkkovalvonta-latakon.html
-    / https://archive.is/iYrsl
 - UK - GCHQ
   - Cooperating with Sweden
-  - 2015-04-23
+  - 2015-04-23 https://en.wikipedia.org/w/index.php?title=Government_Communications_Headquarters&oldid=656835589#2000s:_Coping_with_the_Internet
-    https://en.wikipedia.org/w/index.php?title=Government_Communications_Headquarters&oldid=656835589#2000s:_Coping_with_the_Internet
 - USA - NSA
   - Cooperating with Sweden
-  - 2015-04-23
+  - 2015-04-23 https://en.wikipedia.org/w/index.php?title=Global_surveillance_disclosures_(2013%E2%80%93present)&oldid=655974095
-    https://en.wikipedia.org/w/index.php?title=Global_surveillance_disclosures_(2013%E2%80%93present)&oldid=655974095
 - Many others? :(

blog/_posts/2015-05-10-znc-ubuntu.md

@@ -8,36 +8,35 @@ redirect_from: /english/2015/05/10/znc-ubuntu.html
 sitemap: false
 ---
 
-_Many people seem to be installing ZNC using some weird instructions and don't
+_Many people seem to be installing ZNC using some weird instructions and
-ever upgrade after that. This is yet another unofficial install guide, but with
+don't ever upgrade after that. This is yet another unofficial install
-this you should be able to upgrade too._
+guide, but with this you should be able to upgrade too._
 
 **This is not the official install guide, if you are looking for that,
-[click here.](https://wiki.znc.in/Installation)** _You will find these same
+[click here.](https://wiki.znc.in/Installation)** _You will find these
-instructions there too though._
+same instructions there too though._
 
-Step 0: If you had already installed ZNC from source, go to the source directory
+Step 0: If you had already installed ZNC from source, go to the source
-and run `make uninstall` or `sudo make uninstall` if needed.
+directory and run `make uninstall` or `sudo make uninstall` if needed.
 
-[Thomas Ward](https://launchpad.net/~teward) has PPA which usually includes the
+[Thomas Ward](https://launchpad.net/~teward) has PPA which usually includes
-latest version of ZNC for
+the latest version of ZNC for [supported Ubuntu releases](https://wiki.ubuntu.com/Releases)
-[supported Ubuntu releases](https://wiki.ubuntu.com/Releases) and this guide
+and this guide uses it.
-uses it.
 
-1. Install required package for adding PPAs:
+1. Install required package for adding PPAs: `sudo apt-get install python-software-properties`
-   `sudo apt-get install python-software-properties`
 2. Add the PPA `sudo add-apt-repository ppa:teward/znc`
 3. Refresh list of packages in the repos `sudo apt-get update`
 4. If you had installed ZNC from Ubuntu repositories, now you could run
    `sudo apt-get upgrade`, otherwise finally install ZNC with
    `sudo apt-get install znc`.
 
-ZNC is now installed. If you had it running before installing from PPA, you
+ZNC is now installed. If you had it running before installing from PPA,
-should restart it especially if it was different version than what the PPA has.
+you should restart it especially if it was different version than what the
+PPA has.
 
-Now you can either (new ZNC user) run `znc --makeconf` to create config file and
+Now you can either (new ZNC user) run `znc --makeconf` to create config
-then (existing ZNC user) run `znc` and your ZNC starts listening on where you
+file and then (existing ZNC user) run `znc` and your ZNC starts listening
-told it to listen.
+on where you told it to listen.
 
 You might also want to read:
 

blog/_posts/2015-05-18-ircs_links.md

@@ -9,33 +9,34 @@ sitemap: true
 robots: noai
 ---
 
-_Yet another note-to-self post, but these links are confusing, how do you make
+_Yet another note-to-self post, but these links are confusing, how do you
-proper irc:// or ircs:// link?_
+make proper irc:// or ircs:// link?_
 
-I started wondering about the proper way to make irc/ircs links today and based
+I started wondering about the proper way to make irc/ircs links today and
-on the following addresses
+based on the following addresses
 
 - https://www.iana.org/assignments/uri-schemes/prov/ircs
 - https://tools.ietf.org/html/draft-butcher-irc-url-04
 
-EDIT 2015-08-30 & 2015-10-10: I got eaten by HTML5 validator, because of what
+EDIT 2015-08-30 & 2015-10-10: I got eaten by HTML5 validator, because of
-was said above :frown: and the proper way how you make links without getting
+what was said above :frown: and the proper way how you make links without
-eaten by HTML5 validator is
+getting eaten by HTML5 validator is
-(https://tools.ietf.org/html/draft-butcher-irc-url-04) and the address would
+(https://tools.ietf.org/html/draft-butcher-irc-url-04) and the address
-become `ircs://irc.example.org:6697/%23channel%2C%23%23channel%2C%21channel`.
+would become
+`ircs://irc.example.org:6697/%23channel%2C%23%23channel%2C%21channel`.
 See [Percent-encoding at Wikipedia]. Thanks Mardeg at irc.mozilla.org.
 
-[percent-encoding at wikipedia]:
+[percent-encoding at wikipedia]: https://en.wikipedia.org/wiki/Percent-encoding#Percent-encoding_reserved_characters
-  https://en.wikipedia.org/wiki/Percent-encoding#Percent-encoding_reserved_characters
 
-- specifies that the link uses SSL with the _s_ (for plain text just remove it)
+- specifies that the link uses SSL with the _s_ (for plain text just remove
+  it)
 - specifies the port so client doesn't have to guess it
-- clearly specifies the channels without leaving prefixes for the client to
+- clearly specifies the channels without leaving prefixes for the client
-  guess
+  to guess
 
-The previously linked pages also contain other forms, but this seems the best to
+The previously linked pages also contain other forms, but this seems the
-me and I am against using channel keys as there are better ways to keep channel
+best to me and I am against using channel keys as there are better ways
-private (such as restricted or +i and +I to authorized people) and server
+to keep channel private (such as restricted or +i and +I to authorized
-passwords aren't used anywhere where I would encounter them, other than
+people) and server passwords aren't used anywhere where I would encounter
-forwarding the password to NickServ, but that is depracted by
+them, other than forwarding the password to NickServ, but that is depracted
-[SASL](https://ircv3.net/specs/extensions/sasl-3.1.html).
+by [SASL](https://ircv3.net/specs/extensions/sasl-3.1.html).

blog/_posts/2015-05-18-life-bot-background.md

@@ -8,41 +8,42 @@ redirect_from: /english/2015/05/18/life-bot-background.html
 sitemap: false
 ---
 
-_More on my life and a little background on bots; also trigger warning about
+_More on my life and a little background on bots; also trigger warning
-probably everything..._
+about probably everything..._
 
-Start with the [previous post on
+Start with the [previous post on the subject]({% post_url blog/2015-03-25-leaving-bots-life %})...
-the subject]({% post_url blog/2015-03-25-leaving-bots-life %})...
 
-_Update: [I graduated on 2015-05-29.]({% post_url blog/2015-05-29-graduation %})_
+_Update:
+[I graduated on 2015-05-29.]({% post_url blog/2015-05-29-graduation %})_
 
 So I have been away from school for months now and the fact that I won't
-graduate seems very sure. I haven't left home unless I have had too either and
+graduate seems very sure. I haven't left home unless I have had too either
-after today I might leave home even then.
+and after today I might leave home even then.
 
-I don't remember last week so well, so probably nothing happened, I was away
+I don't remember last week so well, so probably nothing happened, I was
-from home for two events at Helsinki which is tiring as the bus trip from
+away from home for two events at Helsinki which is tiring as the bus
-Kotka-Helsinki is two hours, rest of the week I was at home with the exception
+trip from Kotka-Helsinki is two hours, rest of the week I was at home
-of visiting cottage and replacing elorn (Banana Pi which didn't like upgrade
+with the exception of visiting cottage and replacing elorn (Banana Pi which
-from Bananian Wheezy to Bananian Jessie) with rbtpzn (a little better system,
+didn't like upgrade from Bananian Wheezy to Bananian Jessie) with rbtpzn
-Raspberry Pi B+ running Arch Linux ARM), I don't remember what else happened.
+(a little better system, Raspberry Pi B+ running Arch Linux ARM), I don't
+remember what else happened.
 
 I have also been anxious too much for being healthy and I have talked about
-suicide probably daily. Last night Doctor [Google] also suggested [Avoidant
+suicide probably daily. Last night Doctor [Google] also suggested
-personality disorder] and I am waiting for seeing "mental health professional"
+[Avoidant personality disorder] and I am waiting for seeing "mental
-again and asking if that is possible.
+health professional" again and asking if that is possible.
 
 [google]: https://encrypted.google.com/
-[avoidant personality disorder]:
+[avoidant personality disorder]: https://en.wikipedia.org/wiki/Avoidant_personality_disorder
-  https://en.wikipedia.org/wiki/Avoidant_personality_disorder
 
-And back to today, I had possibly my worst bus trip between Kotka and Helsinki.
+And back to today, I had possibly my worst bus trip between Kotka and
-First there was bully from previous school and even if they didn't do anything,
+Helsinki. First there was bully from previous school and even if they
-just seeing is enough to trigger heavy anxiety to me. <br/>Then there were two
+didn't do anything, just seeing is enough to trigger heavy anxiety to me.
-people sitting in front of me at the bus, small child and one adult. The child
+<br/>Then there were two people sitting in front of me at the bus, small
-kept making loud noice for most of the trip and at some point dropped whatever
+child and one adult. The child kept making loud noice for most of the trip
-the thing is on bus seats behind your head to me and only stared.<br/> I was too
+and at some point dropped whatever the thing is on bus seats behind your
-anxious even without them, so I didn't tell the adult anything and there
+head to me and only stared.<br/>
-wouldn't have been any use in that as they didn't care about their behaviour
+I was too anxious even without them, so I didn't tell the adult anything
-anyway and it would have been my fault anyway for sitting there or annoying them
+and there wouldn't have been any use in that as they didn't care about
-just for existing.
+their behaviour anyway and it would have been my fault anyway for sitting
+there or annoying them just for existing.

blog/_posts/2015-05-29-graduation.md

@@ -9,23 +9,25 @@ sitemap: true
 robots: noai
 ---
 
-As my blog is so full of suicidality and depression and how I won't graduate, I
+As my blog is so full of suicidality and depression and how I won't
-probably must inform here that I have graduated according to YLE News.
+graduate, I probably must inform here that I have graduated according to
+YLE News.
 
 - [web.archive.org: Etelä-Kymenlaakson ammattiopisto 2015-05-29](https://web.archive.org/web/20150602001658/http://yle.fi/uutiset/etela-kymenlaakson_ammattiopisto/8023952)
-  - YLE had apparently changed their URL breaking the old link and when I was
+  - YLE had apparently changed their URL breaking the old link and when
-    informed of this, I tried to search the current live version, but was only
+    I was informed of this, I tried to search the current live version,
-    able to find it from Waybackmachine.
+    but was only able to find it from Waybackmachine.
 - [Google Translated link](https://translate.google.fi/translate?sl=fi&tl=en&js=y&prev=_t&hl=en&ie=UTF-8&u=https%3A%2F%2Fweb.archive.org%2Fweb%2F20150602001658%2Fhttp%3A%2F%2Fyle.fi%2Fuutiset%2Fetela-kymenlaakson_ammattiopisto%2F8023952&edit-text=)
   - Note that Google Translate changes my name to "Finnish Mikaela" as
     Suomalainen means a Finn or Finnish or similar.
 
 What happens next? Nothing until I am legally recognized as a woman which
-currently seems to happen in winter at soonest. As I have told everyone, I won't
+currently seems to happen in winter at soonest. As I have told everyone,
-be applying anywhere with my current person identification number as all
+I won't be applying anywhere with my current person identification number
-databases mark me as a man and I don't want to have weird situations like I
+as all databases mark me as a man and I don't want to have weird situations
-currently have e.g. student information system separates by gender and puts
+like I currently have e.g. student information system separates by gender
-Mikaela Suomalainen in the middle of men which raises questions…
+and puts Mikaela Suomalainen in the middle of men which raises questions…
 
-What is said in previous posts still applies, I am not moving outdoors unless I
+What is said in previous posts still applies, I am not moving outdoors
-have to which means visit to Helsinki where I am able to move more freely.
+unless I have to which means visit to Helsinki where I am able to move more
+freely.

blog/_posts/2015-05-31-weechat-filter.md

@@ -11,41 +11,43 @@ redirect_from:
 robots: noai
 ---
 
-_Everyone knows the `/ignore` command, but there is also `/filter` which I feel
+_Everyone knows the `/ignore` command, but there is also `/filter` which
-is superiour._
+I feel is superiour._
 
 First, how do they differ?
 
-- Ignore removes all lines from the person you are ignoring permanently and they
+- Ignore removes all lines from the person you are ignoring permanently and
-  aren't logged or anything.
+  they aren't logged or anything.
-- Filter only hides the messages from the person and is very customizable, but I
+- Filter only hides the messages from the person and is very customizable,
-  am only describing my ignoring here. They are still logged and by toggling
+  but I am only describing my ignoring here. They are still logged and
-  filters they become visible.
+  by toggling filters they become visible.
 
 And how do you use it?
 
 - `/filter add FILTERNAME * nick_*NICKHERE* *`
-  - FILTERNAME is the name how you recognize the filter, I usually put the nick
+  - FILTERNAME is the name how you recognize the filter, I usually put
-    there.
+    the nick there.
-  - The first `*` is buffer where the filter is used in and means simply "all
+  - The first `*` is buffer where the filter is used in and means simply
-    buffers".
+    "all buffers".
-  - `nick_*NICKHERE*` means that you want to filter lines from `*NICKHERE*`, the
+  - `nick_*NICKHERE*` means that you want to filter lines from
-    asterisks are important as it makes sure that the user doesn't change their
+    `*NICKHERE*`, the asterisks are important as it makes sure that the
-    nick to `NICKHERE_` who again wouldn't be filtered.
+    user doesn't change their nick to `NICKHERE_` who again wouldn't be
-  - And the last `*`, what do you want to filter from that nick? Everything.
+    filtered.
+  - And the last `*`, what do you want to filter from that nick?
+    Everything.
 
-But doesn't this defeat the whole point of ignoring? That depends on you and do
+But doesn't this defeat the whole point of ignoring? That depends on you
-you think you will ever need the ignored content.
+and do you think you will ever need the ignored content.
 
 One good example where you might want to have the content is when you are
-channel op and someone on your ignore list joins the channel and someone else
+channel op and someone on your ignore list joins the channel and someone
-alerts ops.
+else alerts ops.
 
-With ignore you see nothing, with filter you just toggle your filters and see
+With ignore you see nothing, with filter you just toggle your filters and
-that someone who you had filtered joined on the channel and did something
+see that someone who you had filtered joined on the channel and did
-against the channel rules and you can easily take action.
+something against the channel rules and you can easily take action.
 
-Further reading, check `/help filter`, you will enjoy at least the smart filter,
+Further reading, check `/help filter`, you will enjoy at least
-`/filter add irc_smart * irc_smart_filter *` (hides joins/quits/parts/etc.
+the smart filter, `/filter add irc_smart * irc_smart_filter *` (hides
-unless the person has talked in X minutes configured in
+joins/quits/parts/etc. unless the person has talked in X minutes configured
-`/help irc.look.smart_filter_delay`).
+in `/help irc.look.smart_filter_delay`).

blog/_posts/2015-06-03-setting-umodes.md

@@ -9,18 +9,20 @@ sitemap: true
 robots: noai
 ---
 
-_As I have written more about umodes than I thought, I am breaking the posts
+_As I have written more about umodes than I thought, I am breaking the
-setting/unsetting is documented here and I will link here from other posts._
+posts setting/unsetting is documented here and I will link here from other
+posts._
 
-Simply use `/umode +mo-des` or if that is unknown command (as it's alias in most
+Simply use `/umode +mo-des` or if that is unknown command (as it's alias
-of clients), use `/mode YOURNICK +mo-des` and you set umodes "mo" and unset
+in most of clients), use `/mode YOURNICK +mo-des` and you set umodes "mo"
-"des". _These might not be real umodes and they are here just as an example._
+and unset "des". _These might not be real umodes and they are here just as
+an example._
 
 ## Automatic umodes
 
-Umodes aren't remembered across connections so you must configure your client to
+Umodes aren't remembered across connections so you must configure your
-(un)set them automatically. **Your umodes won't be change this way until you
+client to (un)set them automatically. **Your umodes won't be change this
-reconnect!**
+way until you reconnect!**
 
 _These examples use the umodes that I am using at the time of writing._
 
@@ -29,37 +31,36 @@ _These examples use the umodes that I am using at the time of writing._
 - WeeChat
   - Old way: `/set irc.server_default.command /mode $nick -iI+wRQxg`
   - Modern way (1.7+): `/set irc.server_default.usermode -iI+wRQxg`
-  - _For setting umodes only for one network instead of them all replace
+  - _For setting umodes only for one network instead of them all
-    server_default with server.name, e.g._
+    replace server_default with server.name, e.g._
     - `/set irc.server.liberachat.usermode -iI+wRQxg`
 - ZNC:
   - Traditional way: `/msg *status loadmod perform` and
     `/msg *perform add mode %nick% -iI+wRQxg`
-    - The same can also be done in webadmin and if you load perform for user
+    - The same can also be done in webadmin and if you load perform for
-      level, adding the command `mode %nick% -iI+wRQxg` will set umode -iI+wrqXG
+      user level, adding the command `mode %nick% -iI+wRQxg` will set
-      on all networks.
+      umode -iI+wrqXG on all networks.
-    - The modes will apply to all networks if you load it on user level or only
+    - The modes will apply to all networks if you load it on user
-      the invidual network on network level.
+      level or only the invidual network on network level.
   - Modern way: [ZNC issue #1221](https://github.com/znc/znc/issues/1221)
 
 ### And what these umodes mean
 
-This list is what I want the umodes to mean when I set them automatically. For
+This list is what I want the umodes to mean when I set them automatically.
-what the actual umodes are on your network, try `/quote help umode` or
+For what the actual umodes are on your network, try `/quote help umode` or
 `/quote help umodes`.
 
-- i — invisible, hides your channel list from whois with ircd-seven and possibly
+- i — invisible, hides your channel list from whois with ircd-seven and
-  some other ircds. Also hides you from /who of people who don't share channels
+  possibly some other ircds. Also hides you from /who of people who don't
-  with you. [See also why I unset
+  share channels with you. [See also why I unset it here.]({% post_url blog/2015-03-26-umode--i %})
-  it here.]({% post_url blog/2015-03-26-umode--i %})
+- I — On InspIRCd with [hidechans] module hides your channel list from
-- I — On InspIRCd with [hidechans] module hides your channel list from whois.
+  whois.
-- w — receive wallops, less-important announcements from network operators that
+- w — receive wallops, less-important announcements from network operators
-  are only received by those who are curious and have umode +w. More important
+  that are only received by those who are curious and have umode +w. More
-  announcements are usually global notices.
+  important announcements are usually global notices.
-- R — block PMs from unidentified users (who tend to be spambots and if they
+- R — block PMs from unidentified users (who tend to be spambots and if
-  aren't, they can identify to services).
+  they aren't, they can identify to services).
 - Q — block channel redirects on Charybdis (mode +f or banforward).
-- x — activates IRCd based uncloaking even if it's
+- x — activates IRCd based uncloaking even if it's [not that reliable.](https://gist.github.com/maxteufel/1e2cf7ada079c271bd3c)
-  [not that reliable.](https://gist.github.com/maxteufel/1e2cf7ada079c271bd3c)
 - g — caller-id, people must be `/accepted` or PMed before they can PM you.
 - t — only users using SSL can PM.

blog/_posts/2015-06-08-private_secret_channels.md

@@ -9,27 +9,27 @@ sitemap: true
 robots: noai
 ---
 
-_People often wonder about this and I thought that I could probably write about
+_People often wonder about this and I thought that I could probably write
-this, how do you make IRC channel secret/private, either hiding it from other
+about this, how do you make IRC channel secret/private, either hiding it
-people or not letting others in._
+from other people or not letting others in._
 
 _Modes spbiI are standard and should be the same on all IRCds. I am also
 assuming that your network uses Atheme IRC Services or fork of it._
 
-To make channel secret, there are two useful modes. You might also want to mlock
+To make channel secret, there are two useful modes. You might also want to
-them with `/msg chanserv help set mlock`.
+mlock them with `/msg chanserv help set mlock`.
 
-- +s — hides the channel from all channel lists (for non-opers) -i). Keep in
+- +s — hides the channel from all channel lists (for non-opers)
-  mind that you always see channels that you are on or share with other people
+  -i). Keep in mind that you always see channels that you are on or share
-  in whois. +p also prevents `/knock` (which is command to request invite to the
+  with other people in whois. +p also prevents `/knock` (which is command
-  channel) on some IRCds.
+  to request invite to the channel) on some IRCds.
 
 Other nice modes that you may be interested in are:
 
 - +b — (ban) depnding on does your network support extbans, try
   `/quote help extban`.
-- +r — on Charybdis prevents unidentified users from joining the channel, you
+- +r — on Charybdis prevents unidentified users from joining the channel,
-  will want this with RESTRICTED.
+  you will want this with RESTRICTED.
   - InspIRCd uses +R
 - - S — on Charybdis prevents users not using SSL/TLS from joining.
     - InspIRCd uses +z
@@ -37,43 +37,43 @@ Other nice modes that you may be interested in are:
 And to make channel private, there are two ways, mode +i/+I and ChanServ
 RESTRICTED (auto-kban unauthorized users).
 
-With RESTRICTED you will want to prevent unidentified users from joining or you
+With RESTRICTED you will want to prevent unidentified users from joining
-will get people attempting to join while unidentified and then banned
+or you will get people attempting to join while unidentified and then
-immediately and unable to join after identifying.
+banned immediately and unable to join after identifying.
 
 To use it,
 
-1. Give people who are supposed to be on the channel flags, I use +ViA which
+1. Give people who are supposed to be on the channel flags, I use +ViA
-   means auto-**Voice**, **i**nvite oneself and can see **A**ccess lists, you
+   which means auto-**Voice**, **i**nvite oneself and can see **A**ccess
-   don't have to use these, but these are probably the most safe flags and the
+   lists, you don't have to use these, but these are probably the most
-   users must have at least one account to not be kbanned.
+   safe flags and the users must have at least one account to not be
-   `/msg ChanServ flags #channel account +ViA`
+   kbanned. `/msg ChanServ flags #channel account +ViA`
 2. `/msg ChanServ set #channel restricted on`
 3. You are ready, but you might also want to
    `/msg ChanServ set #channel private on`, so people cannot use
-   `/msg chanserv access #channel list` to see who are the secret people you let
+   `/msg chanserv access #channel list` to see who are the secret people
-   in (and who aren't on the channel between auto-kban).
+   you let in (and who aren't on the channel between auto-kban).
 
-And last, mode +i and +I which are the oldest way to do this, but also the most
+And last, mode +i and +I which are the oldest way to do this, but also the
-difficult.
+most difficult.
 
-First you set the mode +i and now everyone must be `/invite`d to the channel or
+First you set the mode +i and now everyone must be `/invite`d to the
-they cannot join. Then you set +I like you would set a ban (read the `/quote
+channel or they cannot join. Then you set +I like you would set a ban
-help extban), here I assume you use Charybdis.
+(read the `/quote help extban), here I assume you use Charybdis.
 
-To allow user with account `friend` you would `/mode +I $a:friend` and they are
+To allow user with account `friend` you would `/mode +I $a:friend` and
-able to join freely without needing to be `/invite`d every time.
+they are able to join freely without needing to be `/invite`d every time.
 
-You might also find the modes `+g` (Charybdis) and `+A` (InspIRCd) helpful as
+You might also find the modes `+g` (Charybdis) and `+A` (InspIRCd) helpful
-they allow everyone to use the `/invite` command.
+as they allow everyone to use the `/invite` command.
 
 I said that +iI is difficult and I must probably explain why it's so.
 
-- It doesn't use services and the lists get emptied always when the channel gets
+- It doesn't use services and the lists get emptied always when the channel
-  empty.
+  gets empty.
-- It's tied to whatever you give it, if you give it hostmask and that changes,
+- It's tied to whatever you give it, if you give it hostmask and that
-  the person cannot get in anymore. Also if you gave it extban matching to
+  changes, the person cannot get in anymore. Also if you gave it extban
-  accountname and the person changes accountname, they are again unable to join
+  matching to accountname and the person changes accountname, they are
-  until the +I is updated.
+  again unable to join until the +I is updated.
-- _These were the reasons that came to mind at first, if you have others, feel
+- _These were the reasons that came to mind at first, if you have others,
-  free to suggest them._
+  feel free to suggest them._

blog/_posts/2015-06-12-ufw.md

@@ -10,26 +10,28 @@ redirect_from:
 robots: noai
 ---
 
-_This post describes my UFW config and is here so I find it from somewhere and
+_This post describes my UFW config and is here so I find it from somewhere
-with hope that I am told if someone notices something terriby insecure here and
+and with hope that I am told if someone notices something terriby insecure
-is able to offer suggestions. This probably will never be perfect._
+here and is able to offer suggestions. This probably will never be
+perfect._
 
-Having firewall is important as you aren't always in your trusted home network
+Having firewall is important as you aren't always in your trusted home
-(that can also be broken into especially if you have WLAN) and with IPv6 your
+network (that can also be broken into especially if you have WLAN) and
-devices have public IPv6 addresses. Theoretically your router should include a
+with IPv6 your devices have public IPv6 addresses. Theoretically your
-firewall, but at least the Huawei mobile broadband routers or MiFis don't
+router should include a firewall, but at least the Huawei mobile broadband
-include one (and I might be annoyed by it enough to disable it anyway and
+routers or MiFis don't include one (and I might be annoyed by it enough
-configure everything on host level if it was my network).
+to disable it anyway and configure everything on host level if it was
+my network).
 
-_Threat model: service I am not aware of or that I accidentally make listen
+_Threat model: service I am not aware of or that I accidentally make
-wider than intended, with UFW I am aware of what ports are allowed. I assume any
+listen wider than intended, with UFW I am aware of what ports are
-mobile host is going to move randomly and while some whitelists (especially
+allowed. I assume any mobile host is going to move randomly and while
-link-local and IPv4 LANs) will overlap and possibly allow access, it's still
+some whitelists (especially link-local and IPv4 LANs) will overlap and
-better than being open to the internet and overlay networks that I have
+possibly allow access, it's still better than being open to the internet
-interacted with recently._
+and overlay networks that I have interacted with recently._
 
-This post first has list of commands, then explanations that won't be repeated
+This post first has list of commands, then explanations that won't be
-with IPvX ranges.
+repeated with IPvX ranges.
 
 Fedora/firewalld? [n/firewalld](/n/firewalld)
 
@@ -53,20 +55,19 @@ ufw allow 60000:61000/udp
 ```
 
 - 22 TCP/ssh — Allow acces to SSHd you don't want to lock yourself out.
-  - previously I used `ufw limit` but it seems to be too oversensitive, just use
+  - previously I used `ufw limit` but it seems to be too oversensitive,
-    SSHGuard.
+    just use SSHGuard.
 - Deny incoming connections unless the port has been whitelisted.
-- Allow all outgoing connections, keeping list of authorized ports would be too
+- Allow all outgoing connections, keeping list of authorized ports would
-  much for me.
+  be too much for me.
-- Start ufw on boot and now (I am not sure if this step is required, but better
+- Start ufw on boot and now (I am not sure if this step is required, but
-  safe than sorry).
+  better safe than sorry).
 - Put the firewall in force.
-- 113 TCP/ident — Tell "Connection refused" to whoever tries to reach port 113.
+- 113 TCP/ident — Tell "Connection refused" to whoever tries to reach port 113. This makes ident checking IRC servers connect faster as they don't
-  This makes ident checking IRC servers connect faster as they don't have to
+  have to timeout. If you run shell server (for IRC purpouses) you should
-  timeout. If you run shell server (for IRC purpouses) you should allow this
+  allow this instead. And if you don't use IRC or don't care about having
-  instead. And if you don't use IRC or don't care about having to wait for the
+  to wait for the check to timeout, don't do this as you may leave
-  check to timeout, don't do this as you may leave yourself visible to random
+  yourself visible to random port scanners.
-  port scanners.
 - 123 UDP/NTP - syncing time between local hosts
 - 631 both/cups — Allow access to cups for printer sharing from 192.168.8.xxx
   - fe80:://10 is link-local address existing _everywhere_ IPv6 is enabled,
@@ -74,19 +75,18 @@ ufw allow 60000:61000/udp
 - 5353 UDP/mdns/Avahi — used for `.local` addresses.
 - 5900 — VNC port at least for `krfb kdrc` (KDE Remote Desktop server & client).
   I tend to only allow it from specific Yggdrasil address(es).
-- 6771/udp —
+- 6771/udp — [Bittorrent Local Peer Discovery](http://bittorrent.org/beps/bep_0014.html)
-  [Bittorrent Local Peer Discovery](http://bittorrent.org/beps/bep_0014.html)
+- 9001/udp — [Yggdrasil](https://yggdrasil-network.github.io/) automatic
-- 9001/udp — [Yggdrasil](https://yggdrasil-network.github.io/) automatic peering
+  peering port only on link-local.
-  port only on link-local.
+- 60000:61000 UDP/mosh — I feel this is the most insecure part of this
-- 60000:61000 UDP/mosh — I feel this is the most insecure part of this setup and
+  setup and there should be something bettter instead of this. As
-  there should be something bettter instead of this. As something evil could run
+  something evil could run and listen on these ports.
-  and listen on these ports.
 
-_If some host doesn't run some of the mentioned service, it's not open in the
+_If some host doesn't run some of the mentioned service, it's not open in
-firewall._
+the firewall._
 
-KDE Connect which seems painful enough to list separately and doesn't seem to
+KDE Connect which seems painful enough to list separately and doesn't seem
-work IPv6-only or I am too impatient.
+to work IPv6-only or I am too impatient.
 
 ```bash
 #ufw allow from 192.168.8.0/24 to any port 1714:1764 proto tcp
@@ -104,13 +104,11 @@ ufw route allow in on enp3s0 out on wlp2s0
 ufw route allow in on wlp2s0 out on enp3s0
 ```
 
-I am not sure if both rules are required, enp3s0 is the ethernet interface and
+I am not sure if both rules are required, enp3s0 is the ethernet interface
-wlp2s0 the wireless one. I think it would make sense for only the first to be
+and wlp2s0 the wireless one. I think it would make sense for only the first
-required.
+to be required.
 
 ---
 
-Last updated: 2020-10-26 |
+Last updated: 2020-10-26 | [GitHub changelog](https://github.com/Mikaela/mikaela.github.io/commits/master/_posts/2015-06-12-ufw.md) |
-[GitHub changelog](https://github.com/Mikaela/mikaela.github.io/commits/master/_posts/2015-06-12-ufw.md)
-|
 [Blesmrt Gitea changelog](https://gitea.blesmrt.net/mikaela/mikaela-info/commits/branch/master/_posts/2015-06-12-ufw.md)

blog/_posts/2015-06-16-feelings.md

@@ -9,82 +9,88 @@ sitemap: true
 robots: noai
 ---
 
-_If you wanted to know about my current life situation, read something else as I
+_If you wanted to know about my current life situation, read something else
-have no life and this posts talks only about the haunting past._
+as I have no life and this posts talks only about the haunting past._
 
-Everyone probably knows that I haven't had very positive experience with any
+Everyone probably knows that I haven't had very positive experience with
-school, but now I try to bring some events to light from maybe seven years ago.
+any school, but now I try to bring some events to light from maybe
+seven years ago.
 
 There are three event that haunt me the most:
 
-- _I am just being at break like I am always, alone and without friends and I
+- _I am just being at break like I am always, alone and without friends
-  hear one of the bullies talking about me, "that jack pisses me off so much,
+  and I hear one of the bullies talking about me, "that jack pisses me off
-  always walking around in kuoma boots and his face is like ass of prey bird."
+  so much, always walking around in kuoma boots and his face is like ass
-  After that I remember being in physics or chemitry lesson and crying and
+  of prey bird." After that I remember being in physics or chemitry lesson
-  trying to get attention of teacher by writing everything very slowly, but
+  and crying and trying to get attention of teacher by writing everything
-  failing and the only thing that happened was my handwriting looking better._
+  very slowly, but failing and the only thing that happened was my
-- _I don't remember the situation, I think it was a break, but someone from the
+  handwriting looking better._
-  same class said "I know why … is so weird, his grandfathers have had sex with
+- _I don't remember the situation, I think it was a break, but someone from
-  monkeys._
+  the same class said "I know why … is so weird, his grandfathers have had
-- _I don't remember where it began, but one group of bullies took the habit of
+  sex with monkeys._
-  calling me as "ubitch". I don't know where they took that word as even I
+- _I don't remember where it began, but one group of bullies took the habit
-  didn't know about being trans (Asperger's diagnose would also come later), but
+  of calling me as "ubitch". I don't know where they took that word as
-  they had issue when I smiled, so I learned to not smile and that is still
+  even I didn't know about being trans (Asperger's diagnose would also
-  causing me issues to this day includin difficulties in voice training and
+  come later), but they had issue when I smiled, so I learned to not smile
-  potential
+  and that is still causing me issues to this day includin difficulties in
-  [AvPD](https://en.m.wikipedia.org/wiki/Avoidant_personality_disorder). The
+  voice training and potential [AvPD](https://en.m.wikipedia.org/wiki/Avoidant_personality_disorder).
-  same group also did worse things that I don't want to talk about._
+  The same group also did worse things that I don't want to talk about._
 
-What was done? Different appointments with different people, including school
+What was done? Different appointments with different people, including
-social worker who quite directly said "there is no bullying in our school, you
+school social worker who quite directly said "there is no bullying in our
-are scizhophrenic" (don't mind that school social workers aren't able to write
+school, you are scizhophrenic" (don't mind that school social workers
-dignosis) and psychologist who surprised me and my mother by knowing everything
+aren't able to write dignosis) and psychologist who surprised me and my
-about my childhood and "just had to start from something (Asperger's syndrome).
+mother by knowing everything about my childhood and "just had to start from
+something (Asperger's syndrome).
 
-I ended up ending that school half year before it would have been over and at
+I ended up ending that school half year before it would have been over and
-some point starting my long visits to psychiatrical hospital (which is horrible
+at some point starting my long visits to psychiatrical hospital (which is
-if you happen to be neuroatypial and part of Gender/Romantic/Sexual Minority or
+horrible if you happen to be neuroatypial and part of
-multiple of those, but that is for another post).
+Gender/Romantic/Sexual Minority or multiple of those, but that is for
+another post).
 
-There were also other issues that I remember, but I don't feel the same level of
+There were also other issues that I remember, but I don't feel the same
-pain.
+level of pain.
 
-- _One person never talked to me and had some issue with me and always got what
+- _One person never talked to me and had some issue with me and always got
-  they wanted ("I don't want to work with that"). Not that I wanted to work with
+  what they wanted ("I don't want to work with that"). Not that I wanted
-  them, but it would have been nice if anyone thought about asking my opinion._
+  to work with them, but it would have been nice if anyone thought about
-- _On home economics lesson, I don't remember what was talked about, but I said
+  asking my opinion._
-  for some reason that I like tuna over rye crisps and got response that it's
+- _On home economics lesson, I don't remember what was talked about, but
-  "so poor" and it's unclear to this day what does price of food have to do with
+  I said for some reason that I like tuna over rye crisps and got response
-  how does it taste._
+  that it's "so poor" and it's unclear to this day what does price of food
+  have to do with how does it taste._
 - _There was … Suomalainen fanclub at Facebook and it was also reported to
-  police, but no action was took as there was nothing offensive there. In the
+  police, but no action was took as there was nothing offensive there. In
-  end offensive content got there, but it was removed in agreement when
+  the end offensive content got there, but it was removed in agreement
-  anti-bullying FB page with name "bully name bunny club" was removed._
+  when anti-bullying FB page with name "bully name bunny club" was
-  - _I was also friends at some point with the person depending on how much
+  removed._
-    friendship it is to perform Windows repair install and as reward get told
+  - _I was also friends at some point with the person depending on how
-    that we couldn't be friends at school as their reputation would suffer. More
+    much friendship it is to perform Windows repair install and as
-    bullying came..._
+    reward get told that we couldn't be friends at school as their
-- There was also a lot more that happened there, but I would probably write this
+    reputation would suffer. More bullying came..._
-  forever if I wrote about everything and the things that are always on surface
+- There was also a lot more that happened there, but I would probably write
-  are already written.
+  this forever if I wrote about everything and the things that are always
+  on surface are already written.
 
-and as this is titled feelings, I should probably write about those too, not
+and as this is titled feelings, I should probably write about those too,
-that there was anything new.
+not that there was anything new.
 
 - I seem to be always anxious, especially if anyone wants me to go outdoors
-  alone and I am afraid of seeing someone from any school even if they didn't
+  alone and I am afraid of seeing someone from any school even if they
-  recognize me or did nothing, I have already seen people from there twice with
+  didn't recognize me or did nothing, I have already seen people from there
-  both times mentally locking me down.
+  twice with both times mentally locking me down.
-- I am just horrible person, everyone hates me and no one is honest in any good
+- I am just horrible person, everyone hates me and no one is honest in any
-  thing they say to/about me.
+  good thing they say to/about me.
-- I am just bothering everyone by being present in same space whether physical
+- I am just bothering everyone by being present in same space whether
-  or online.
+  physical or online.
-- Most of time I feel I have no friends anywhere even if there are otherwise
+- Most of time I feel I have no friends anywhere even if there are
-  some IRC or IRL, it's just difficult for me to make/maintain friendships, but
+  otherwise some IRC or IRL, it's just difficult for me to make/maintain
-  me being horrible person is nothing new anyway.
+  friendships, but me being horrible person is nothing new anyway.
-- I wish that I had a partner, but it's impossible as I am just horrible person
+- I wish that I had a partner, but it's impossible as I am just horrible
-  and autist (in bad way) and asexual (while most of rest of the world wants
+  person and autist (in bad way) and asexual (while most of rest of the
-  only sex) and trans (which is probably the worse as that translates to "has or
+  world wants only sex) and trans (which is probably the worse as that
-  has had a penis" and makes everyone misinterpred me as being male or being
+  translates to "has or has had a penis" and makes everyone misinterpred me
-  unable to think me as a girl). I don't sleep propery at nights thinking these
+  as being male or being unable to think me as a girl). I don't sleep
-  things and I just cannot get out and as said Kymenlaakso is unable to help.
+  propery at nights thinking these things and I just cannot get out and
+  as said Kymenlaakso is unable to help.

blog/_posts/2015-06-22-ipv6.md

@@ -12,11 +12,10 @@ lang: en
 robots: noai
 ---
 
-_There appears to be a lot of confusion on IPv6 and in this post I try to clear
+_There appears to be a lot of confusion on IPv6 and in this post I try to
-it a little._
+clear it a little._
 
-I am writing this post, because
+I am writing this post, because [TorrentFreak wrote about buggy µTorrent and suggests disabling IPv6 because of it.](https://torrentfreak.com/popular-torrents-being-sabotaged-by-ipv6-peer-flood-150619/)
-[TorrentFreak wrote about buggy µTorrent and suggests disabling IPv6 because of it.](https://torrentfreak.com/popular-torrents-being-sabotaged-by-ipv6-peer-flood-150619/)
 The comments of that post are also totally lost.
 
 <!-- editorconfig-checker-disable -->
@@ -42,16 +41,17 @@ The comments of that post are also totally lost.
 ## IPv4
 
 It's probably best to start with what is wrong with IPv4 and note that all
-modern operating systems (including Windows Vista and newer) are designed to
+modern operating systems (including Windows Vista and newer) are designed
-work with IPv6 and disabling it may break some features.
+to work with IPv6 and disabling it may break some features.
 
-There are no IPv4 addresses for everyone and that is why we have NATs in routers
+There are no IPv4 addresses for everyone and that is why we have NATs in
-so we only have one IPv4 address facing the internet. That isn't enough either
+routers so we only have one IPv4 address facing the internet. That isn't
-so ISPs started having their own NATs too known as CGN (Carrier Grade NAT)
+enough either so ISPs started having their own NATs too known as CGN
-putting _a lot_ of customers behind single IPv4 address.
+(Carrier Grade NAT) putting _a lot_ of customers behind single IPv4
+address.
 
-This means that if someone on the same ISP abused your favourite service X\*,
+This means that if someone on the same ISP abused your favourite service
-all users behind that IPv4 address get banned.
+X\*, all users behind that IPv4 address get banned.
 
 <em>\*X = Wikipedia, your favourite forum or IRC network or whatever</em>.
 
@@ -60,57 +60,59 @@ connecting from single address and it can also increase latencies).
 
 ## IPv6
 
-IPv6, again, is next version of the Internet Protocol and has enough addresses
+IPv6, again, is next version of the Internet Protocol and has enough
-for all your devices and you don't need NAT anymore so you don't have to do port
+addresses for all your devices and you don't need NAT anymore so you don't
-forwards (which didn't help you behind CGN anyway) anymore.
+have to do port forwards (which didn't help you behind CGN anyway) anymore.
 
 People have weird worries with it and many misunderstandings on privacy
 concerns.
 
 ### EUI-64-addresses
 
-EUI-64-addresses are based on your MAC-address and a lot of people seem to be
+EUI-64-addresses are based on your MAC-address and a lot of people seem to
-worried about how they can be used for spying on you as you go through different
+be worried about how they can be used for spying on you as you go through
-networks (phone, laptop).
+different networks (phone, laptop).
 
-This is an unrequired concern though as IPv6 privacy extensions should exist
+This is an unrequired concern though as IPv6 privacy extensions should
-with all IPv6 capable systems (again including Windows which seems to be what
+exist with all IPv6 capable systems (again including Windows which seems
-people worry about the most). The privacy extensions generate a random IPv6
+to be what people worry about the most). The privacy extensions generate
-address which has no MAC-address and is changed over time.
+a random IPv6 address which has no MAC-address and is changed over time.
 
-Arch Linux and Ubuntu MATE (and other Linux distributions?) seem to change it
+Arch Linux and Ubuntu MATE (and other Linux distributions?) seem to change
-every 24 hours (controlled by `net.ipv6.conf.default.temp_prefered_lft`) and I
+it every 24 hours (controlled by `net.ipv6.conf.default.temp_prefered_lft`)
-believe it also gets changed by reconnecting to network or rebooting the system.
+and I believe it also gets changed by reconnecting to network or rebooting
+the system.
 
 On your IPv6-enabled system you should see three addresses:
 
 - EUI-64-address where you see your MAC-address clearly, it just exists and
-  isn't used in outgoing connections so no one knows it unless you decide to
+  isn't used in outgoing connections so no one knows it unless you decide
-  tell them.
+  to tell them.
 - Privacy (extensions) address which is random and used for all outgoing
-  connections and it changes every few hours. You might see multiple of these as
+  connections and it changes every few hours. You might see multiple of
-  the old privacy addresses are still kept for some time, but no outgoing
+  these as the old privacy addresses are still kept for some time, but no
-  connections is made with them.
+  outgoing connections is made with them.
 - Link-local address you see even without global IPv6 connectivity as every
-  IPv6-supporting system generates them automatically. They start with `fe80`
+  IPv6-supporting system generates them automatically. They start with
-  and only work in your LAN. It also has your MAC-address visible.
+  `fe80` and only work in your LAN. It also has your MAC-address visible.
 
-If you are still worried about the MAC-address being visible, you can easily
+If you are still worried about the MAC-address being visible, you can
-confirm that no one sees it by going to [ipv6-test.com](https://ipv6-test.com),
+easily confirm that no one sees it by going to
-looking at "IPv6 connectivity" and check the test that says "SLAAC". If it says
+[ipv6-test.com](https://ipv6-test.com), looking at "IPv6 connectivity" and
-"No" your EUI-64-address is not used, if it says "Yes" they are used and it
+check the test that says "SLAAC". If it says "No" your EUI-64-address
-should never say "Yes". You will probably understand that it's not supposed to
+is not used, if it says "Yes" they are used and it should never say "Yes".
-say "Yes" as getting "Yes" in that test decreases your score.
+You will probably understand that it's not supposed to say "Yes" as getting
+"Yes" in that test decreases your score.
 
 #### Windows IPv6 address randomization
 
 Windows which you shouldn't worry about makes you worry even less by being
-annoying and randomizing all addresses (even if there is no need because you
+annoying and randomizing all addresses (even if there is no need because
-have IPv6 privacy extensions) and this probably causes you a headache if you are
+you have IPv6 privacy extensions) and this probably causes you a headache
-running Windows Server or dual-booting with some other OS.
+if you are running Windows Server or dual-booting with some other OS.
 
-When you dual-boot, you might wonder why even the EUI-64-address is different on
+When you dual-boot, you might wonder why even the EUI-64-address is
-Windows and Linux/OS X/whatever.
+different on Windows and Linux/OS X/whatever.
 
 This is easy to fix though, open cmd.exe or PowerShell as admin and run:
 
@@ -121,13 +123,14 @@ netsh interface ipv6 set global randomizeidentifiers=disabled store=persistent
 
 ##### Disabling privacy extensions
 
-**YOU DON'T WANT TO DO THIS UNLESS YOUR PC IS A SERVER AND WON'T EVER BE MOVED
+**YOU DON'T WANT TO DO THIS UNLESS YOUR PC IS A SERVER AND WON'T EVER BE
-ANYWHERE. BY DOING THIS THE EUI-64-ADDRESS GETS USED AND EVERYONE DOES SEE YOUR
+MOVED ANYWHERE. BY DOING THIS THE EUI-64-ADDRESS GETS USED AND EVERYONE
-MAC-ADDRESS.**
+DOES SEE YOUR MAC-ADDRESS.**
 
-As I am talking so much about privacy extensions, I must probably tell that you
+As I am talking so much about privacy extensions, I must probably tell
-can disable them if you want. I have no idea if that is possible with OS X so I
+that you can disable them if you want. I have no idea if that is possible
-don't say anything about it, I only know that it uses them by default.
+with OS X so I don't say anything about it, I only know that it uses them
+by default.
 
 Windows: start by disabling the randomization and then
 
@@ -136,16 +139,18 @@ netsh interface ipv6 set privacy state=disabled store=active
 netsh interface ipv6 set privacy state=disabled store=persistent
 ```
 
-Linux: check NetworkManager connection editor (or config files of whatever you
+Linux: check NetworkManager connection editor (or config files of whatever
-use) or use the kernel option directly in `/etc/sysctl.conf` or preferably
+you use) or use the kernel option directly in `/etc/sysctl.conf` or
-`/etc/sysctl.d/<whatever>.conf`: `net.ipv6.conf.default.use_tempaddr=0`.
+preferably `/etc/sysctl.d/<whatever>.conf`:
+`net.ipv6.conf.default.use_tempaddr=0`.
 
 The numbers you can use here are:
 
 - 0 — IPv6 Privacy Extensions are disabled.
-- 1 — IPv6 Privacy Extensions are enabled, but **EUI-64-address is preferred.**
+- 1 — IPv6 Privacy Extensions are enabled, but **EUI-64-address is
-- 2 — IPv6 Privacy Extensions are enabled and preferred. This is usually the
+  preferred.**
-  default and what you should use.
+- 2 — IPv6 Privacy Extensions are enabled and preferred. This is usually
+  the default and what you should use.
 
 ### Getting IPv6
 
@@ -153,22 +158,22 @@ For native connectivity I only know about Finland (links in the list in
 Finnish)…
 
 - [IPv6 in Finnish consumer connections](https://ape3000.com/ipv6/)
-  - At the time of writing Elisa and DNA which are two of three biggest carriers
+  - At the time of writing Elisa and DNA which are two of three biggest
-    (Sonera is missing) have IPv6 in all mobile connections, DNA has IPv6 also
+    carriers (Sonera is missing) have IPv6 in all mobile connections, DNA
-    in broadband connections and Elisa is working on it and Sonera has 6rd.
+    has IPv6 also in broadband connections and Elisa is working on it
+    and Sonera has 6rd.
 - [Elisa's page on enabling IPv6](https://asiakastuki.elisa.fi/ohje/541)
 - [DNA's page on IPv6](https://www.dna.fi/ipv6)
   - [DNA's instructions for enabling IPv6 on different devices](https://www.dna.fi/ipv6-laitteet)
 - [Sonera's page on IPv6 that is worse than earlier ones](https://www.sonera.fi/etsi+apua+ja+tukea/ohjeet/Soneran-palvelut-IPv6-valmiita?id=c4779f91-dd1c-4e43-b026-b2e6338d0db1)
 
-…but I can suggest searching the web for `yourISP IPv6` and contacting their
+…but I can suggest searching the web for `yourISP IPv6` and contacting
-customer support asking when they are going to enable IPv6.
+their customer support asking when they are going to enable IPv6.
 
-For tunneling there are multiple services for tunneling and the best are [SixXS]
+For tunneling there are multiple services for tunneling and the best are
-and [Tunnelbroker], but I am going to talk more about Teredo which the protocol
+[SixXS] and [Tunnelbroker], but I am going to talk more about Teredo which
-of last resort for accessing IPv6 sites and Windows comeswith it by default. The
+the protocol of last resort for accessing IPv6 sites and Windows comeswith it by default. The easiest way to enable it is probably saving the
-easiest way to enable it is probably saving the following as `something.reg` and
+following as `something.reg` and running it:
-running it:
 
 [sixxs]: https://www.sixxs.net/
 [tunnelbroker]: https://tunnelbroker.net/
@@ -190,25 +195,25 @@ Short explanation:
 - Enable looking up IPv6 records even with Teredo
 - Enable Teredo…
 - …even if we are in domain
-- use teredo.trex.fi as Teredo server, you might want to use some server that is
+- use teredo.trex.fi as Teredo server, you might want to use some server
-  [closer to you](https://en.wikipedia.org/wiki/Teredo_tunneling#Servers).
+  that is [closer to you](https://en.wikipedia.org/wiki/Teredo_tunneling#Servers).
 
-Linux: install package `miredo` and edit the server in `/etc/miredo.conf` if
+Linux: install package `miredo` and edit the server in `/etc/miredo.conf`
-needed.
+if needed.
 
-And then check [ipv6-test.com](https://ipv6-test.com) and it should detect your
+And then check [ipv6-test.com](https://ipv6-test.com) and it should detect
-Teredo connectivity. Some browsers don't even attempt to use it, at least I
+your Teredo connectivity. Some browsers don't even attempt to use it, at
-think Google Chrome did so.
+least I think Google Chrome did so.
 
 ## Further reading
 
 - [Wikipedia's page on IPv6](https://en.wikipedia.org/wiki/IPv6)
 - [Wikipedia's page on Teredo](https://en.wikipedia.org/wiki/Teredo_tunneling)
 - [Microsoft Technet: A 5 Second Boot Optimization If You’ve Disabled IPv6 on Windows Client and Server by setting DisabledComponents to 0xFFFFFFFF](https://blogs.technet.com/b/askpfeplat/archive/2014/09/15/a-5-second-boot-optimization-if-you-ve-disabled-ipv6-on-windows-client-and-server-by-setting-disabledcomponents-to-0xffffffff.aspx)
-  - TL;DR: depending on how you disabled IPv6 your boot might be 5 seconds less
+  - TL;DR: depending on how you disabled IPv6 your boot might be 5
-    and Microsoft discourages disabling it and they don't test working without
+    seconds less and Microsoft discourages disabling it and they don't
-    IPv6. Disabling IPv6 breaks e.g. HomeGroup.
+    test working without IPv6. Disabling IPv6 breaks e.g. HomeGroup.
 
-_Special thanks to people of `ircs://irc.libera.chat:6697/#IPv6` for checking
+_Special thanks to people of `ircs://irc.libera.chat:6697/#IPv6` for checking that I
-that I don't write total nonsense here and all the fixes made and also @e-ali
+don't write total nonsense here and all the fixes made and also @e-ali for
-for checking for spelling mistakes._
+checking for spelling mistakes._

blog/_posts/2015-06-29-minusta.md

@@ -8,9 +8,9 @@ redirect_from: /finnish/2015/06/29/minusta.html
 published: false
 ---
 
-_Olen 19-vuotias transsukupuolinen nainen, minulla on Aspergerin oireyhtymä ja
+_Olen 19-vuotias transsukupuolinen nainen, minulla on Aspergerin oireyhtymä
-olen aseksuaali. Tämä aiheuttaa minulle kaikenlaisia ongelmia, joista tulen nyt
+ja olen aseksuaali. Tämä aiheuttaa minulle kaikenlaisia ongelmia, joista
-taas kertoman._
+tulen nyt taas kertoman._
 
 Yritetäämpä kirjoittaa suomeksikin välillä, mutta tuskin tämäkään vaikuttaa
 mihinkään, tunnen vain kirjoittavani huonommin ja huonovointisuuteni vuoksi
@@ -20,81 +20,83 @@ Asun Kotkassa ja olen aina asunut täällä. Olin koulukiusattu tarhasta asti
 johtuen erilaisuudestani ja "terveydenhuollon ammattilaiset" tutkivat
 poikkeavuuttani.
 
-Kuitenkin vasta 15-vuotiaana yritettyäni itsemurhaa koulukiusaamisen ja useiden
+Kuitenkin vasta 15-vuotiaana yritettyäni itsemurhaa koulukiusaamisen ja
-muiden ongelmien (mm. dysforian, vaikken tuntenutkaan koko sanaa silloin) kuulin
+useiden muiden ongelmien (mm. dysforian, vaikken tuntenutkaan koko
-vihdoinkin Aspergerin oireyhtymästä ja olevani ilmiselvä tapaus ja että tämä
+sanaa silloin) kuulin vihdoinkin Aspergerin oireyhtymästä ja olevani
-olisi pitänyt selvittää ajat sitten ja nämä kaikki piirteet olivat tiedossa jo
+ilmiselvä tapaus ja että tämä olisi pitänyt selvittää ajat sitten ja nämä
-pikkulapsena, mutta asiantuntijat eivät osanneet yhdistää niitä toisiinsa.
+kaikki piirteet olivat tiedossa jo pikkulapsena, mutta asiantuntijat
-Loistava esimerkki Kotkan toimivuudesta on tätä edeltänyt _koulukuraattorin_
+eivät osanneet yhdistää niitä toisiinsa.
-diagnoosi "skitsofrenia", vaikkei koulukuraattori pysty diagnooseja
+Loistava esimerkki Kotkan toimivuudesta on tätä edeltänyt
-kirjoittamaan, mutta oppilasta on paljon helpompi sanoa mielisairaaksi, kuin
+_koulukuraattorin_ diagnoosi "skitsofrenia", vaikkei koulukuraattori
-hyväksyä koulussa olevaa kiusaamista.
+pysty diagnooseja kirjoittamaan, mutta oppilasta on paljon helpompi sanoa
+mielisairaaksi, kuin hyväksyä koulussa olevaa kiusaamista.
 
-Seuraava koulu, lisää kiusaamista ja tulen ulos transsukupuolisena lukuisien
+Seuraava koulu, lisää kiusaamista ja tulen ulos transsukupuolisena
-itsemurhayritysten jälkeen. Saan lähetteen Helsinkiin sukupuoli-identiteetin
+lukuisien itsemurhayritysten jälkeen. Saan lähetteen Helsinkiin
-tutkimuspoliklinikalle.
+sukupuoli-identiteetin tutkimuspoliklinikalle.
 
 Ensin tapaan sairaanhoitajaa kahden viikon välein muutaman kerran, odotan
-seuraavaa aikaa lääkärille/psykologille monta kuukautta ja sitten seuraavaa.
+seuraavaa aikaa lääkärille/psykologille monta kuukautta ja sitten
-Lopputulos: olen vuoden hormonikorvaushoidossa itse, ilman lääkärin valvontaa
+seuraavaa. Lopputulos: olen vuoden hormonikorvaushoidossa itse, ilman
-_vuoden_ ennen virallista diagnoosia ja reseptiä.
+lääkärin valvontaa _vuoden_ ennen virallista diagnoosia ja reseptiä.
 
-Pelkään kehittäneeni
+Pelkään kehittäneeni [estyneen persoonallisuuden](https://en.wikipedia.org/wiki/Avoidant_personality_disorder)
-[estyneen persoonallisuuden](https://en.wikipedia.org/wiki/Avoidant_personality_disorder)
+kaiken minulle tapahtuneen seurauksena, olen valmistunut ja olen
-kaiken minulle tapahtuneen seurauksena, olen valmistunut ja olen itsetuhoinen.
+itsetuhoinen. Olen myöskin vailla psykiatrista hoitoa. En liiku ulkonaa
-Olen myöskin vailla psykiatrista hoitoa. En liiku ulkonaa ellen sitten joudu
+ellen sitten joudu menemään jollekin sovitulle ajalle tai
-menemään jollekin sovitulle ajalle tai vertaistukiryhmään, koska pelkään
+vertaistukiryhmään, koska pelkään näkeväni entisiä koulukiusaajia, jotka
-näkeväni entisiä koulukiusaajia, jotka laukaisevat minulle kovan ahdistuksen.
+laukaisevat minulle kovan ahdistuksen.
 
 Terveydenhuollosta puhuin jo aiemmin, nyt tarkennan sitä lisää. Olen ollut
-psykiatrisessa sairaalassa useita kertoja hyötymättä siitä mitenkään, olen aina
+psykiatrisessa sairaalassa useita kertoja hyötymättä siitä mitenkään,
-vain ollut siellä säilössä jonkin aikaa, ensimmäisellä kerralla kesäloman ja
+olen aina vain ollut siellä säilössä jonkin aikaa, ensimmäisellä kerralla
-vähän enemmän, koska psykologi oli lomalla eikä voinut antaa palautettaan
+kesäloman ja vähän enemmän, koska psykologi oli lomalla eikä voinut
-tutkimuksestaan ja (perustelemattoman) käytännön vuoksi kukaan muu ei sitä
+antaa palautettaan tutkimuksestaan ja (perustelemattoman) käytännön vuoksi
-voinut tehdä.
+kukaan muu ei sitä voinut tehdä.
 
-Viimeisellä kerralla taas psykiatrisessa sairaalassa kerrottiin minulle melko
+Viimeisellä kerralla taas psykiatrisessa sairaalassa kerrottiin minulle
-suoraan "olet psykoottinen, koska kuvittelet olevasi tyttö".
+melko suoraan "olet psykoottinen, koska kuvittelet olevasi tyttö".
 
 Tämä ei tosin ole mitään harvinaislaatuista Kotkassa, olen myös ollut
-autismisäätiöllä neurologisessa valmennuksessa, missä minulle tehtiin selväksi,
+autismisäätiöllä neurologisessa valmennuksessa, missä minulle tehtiin
-että valmentaja on _oikea nainen_, minä en, jatkuvasti.
+selväksi, että valmentaja on _oikea nainen_, minä en, jatkuvasti.
 
-Somattisella (ei-psykiatrisella) puolella taas kerran piti hakea Kelalle jokin
+Somattisella (ei-psykiatrisella) puolella taas kerran piti hakea Kelalle
-lääkärinlausunto ja lääkäri oli aivan hukassa mitä tehdä kanssani. Olin
+jokin lääkärinlausunto ja lääkäri oli aivan hukassa mitä tehdä kanssani.
-pukeutunut hameeseen ja minulla oli huulipunaa eikä kukaan moneen kuukauteen
+Olin pukeutunut hameeseen ja minulla oli huulipunaa eikä kukaan moneen
-ollut erehtynyt sukupuolestani ja lääkäri sitten alkoi selittämään puhelimeen
+kuukauteen ollut erehtynyt sukupuolestani ja lääkäri sitten alkoi
-miten "tänne tuli tälläinen 1X-vuotias poika"...
+selittämään puhelimeen miten "tänne tuli tälläinen 1X-vuotias poika"...
 
-Aiemmin sanoin olevani vailla psykiatrista hoitoa. Tämä ei oikeastaan pidä
+Aiemmin sanoin olevani vailla psykiatrista hoitoa. Tämä ei oikeastaan
-paikaansa, koska minä olen avohoidossa Kotkan psykiatrisella poliklinikalla.
+pidä paikaansa, koska minä olen avohoidossa Kotkan psykiatrisella
-Tämä tarkoittaa Suomeksi sitä, että siellä työntekijä höpöttää jotakin omiaan,
+poliklinikalla. Tämä tarkoittaa Suomeksi sitä, että siellä työntekijä
-eikä kiinnitä mitään huomiota minuun tai ongelmiini eikä ole yhtään
+höpöttää jotakin omiaan, eikä kiinnitä mitään huomiota minuun tai
-kiinnostunutkaan niistä. Asiantuntemus puuttuu täysin. Edellisellä kerralla
+ongelmiini eikä ole yhtään kiinnostunutkaan niistä. Asiantuntemus puuttuu
-yritin kysyä onko mahdollista, että minulla olisi aiemmin mainittu AvPD, mutta
+täysin. Edellisellä kerralla yritin kysyä onko mahdollista, että minulla
-siihenkään ei voinut saada minkäänlaista vastausta, työntekijä vain luki
+olisi aiemmin mainittu AvPD, mutta siihenkään ei voinut saada minkäänlaista
-lausuntoja "kuvittelee olevansa tyttö, psykoottinen"-lääkäriltä ja lähti
+vastausta, työntekijä vain luki lausuntoja "kuvittelee olevansa tyttö,
-kesälomalle.
+psykoottinen"-lääkäriltä ja lähti kesälomalle.
 
 Entä nyt?
 
 Olen valmistunut eli minua ei sitoisi mikään Kotkaan ellen olisi
-transsukupuolinen. Haluaisin hakea jatko-opintoihin Helsinkiin, mutta minulla on
+transsukupuolinen. Haluaisin hakea jatko-opintoihin Helsinkiin, mutta
-miehen henkilötunnus, joten minut merkittäisiin jokaiseen tietokantaan miehenä
+minulla on miehen henkilötunnus, joten minut merkittäisiin jokaiseen
-ja koulun nimilistat laittaisivat minut miesten keskelle.
+tietokantaan miehenä ja koulun nimilistat laittaisivat minut miesten
+keskelle.
 
-Muuttaessa minun täytyisi taas tehdä ainakin vuokra-sopimus vanhalla
+Muuttaessa minun täytyisi taas tehdä ainakin vuokra-sopimus
-henkilötunnuksella ja jos vuokranantaja ei osaisi lukea sukupuolta
+vanhalla henkilötunnuksella ja jos vuokranantaja ei osaisi lukea sukupuolta
 henkilötunnuksesta, hän alkaisi ihmettelemään henkilötunnuksen vaihtumista.
 
 No miksen minä korjaa henkilötunnusta?
 
 - Lyhyt vastaus: minulla ei ole ihmisoikeuksia siihen.
-- Pitkä vastaus: sukupuoli vahvistetaan juridisesti *second opinion*issa, jonne
+- Pitkä vastaus: sukupuoli vahvistetaan juridisesti *second opinion*issa,
-  tutkimusyksikkö kirjoittaa lähetteen <s>henkilön edettyä vuoden vastakkaisen
+  jonne tutkimusyksikkö kirjoittaa lähetteen <s>henkilön edettyä vuoden
-  sukupuolin roolissa</s>vuoden diagnoosista jälkeen. Tämän lähetteen
+  vastakkaisen sukupuolin roolissa</s>vuoden diagnoosista jälkeen.
-  käsittelyyn ja ajan saamiseen *second opinion*iin taas kestää vähintään
+  Tämän lähetteen käsittelyyn ja ajan saamiseen *second opinion*iin taas
-  puolivuotta.
+  kestää vähintään puolivuotta.
 
 Pientä aikajanaa:
 
@@ -103,17 +105,19 @@ Pientä aikajanaa:
   Facebookissa.
 - 2013-12-30 aloitin hormonikorvaushoidon itse
 - 2014-03-20 vaihdoin nimeni virallisesti
-  - tämä vaatii todella hyvän tuurin, koska minulta vaadittiin vain todistusta
+  - tämä vaatii todella hyvän tuurin, koska minulta vaadittiin vain
-    sukupuolen tutkimuksessa olemisesta, yleensä tähän vaaditaan diagnoosi.
+    todistusta sukupuolen tutkimuksessa olemisesta, yleensä tähän
-    Lainasin myös Amnestyn raporttia transihmisten ihmisoikeuksista.
+    vaaditaan diagnoosi. Lainasin myös Amnestyn raporttia transihmisten
+    ihmisoikeuksista.
 - 2014-12-XX sain diagnoosin ja aloitin hormonit virallisesti
 
 TL;DR: en pysty liikkuman ulkona Kotkassa, minulle ei tarjota ammattimaista
-terveyden huoltoa enkä pysty muuttamaan pois täältä ennen sukupuoleni virallista
+terveyden huoltoa enkä pysty muuttamaan pois täältä ennen sukupuoleni
-vahvistamista, joka taas tapahtuu hyvällä tuurilla vuoden 2016 aikana.
+virallista vahvistamista, joka taas tapahtuu hyvällä tuurilla vuoden
+2016 aikana.
 
-**TIEDÄN ETTÄ TÄMÄ ARTIKKELI KUULOSTAA HULLULTA, MUTTA EN KOE OLEVANI KOVIN
+**TIEDÄN ETTÄ TÄMÄ ARTIKKELI KUULOSTAA HULLULTA, MUTTA EN KOE OLEVANI
-TERVE SUOMEN TAKIA JA ITSEMURHA ON MINULLE AINOA TIE ULOS TÄSTÄ LAILLISESTA
+KOVIN TERVE SUOMEN TAKIA JA ITSEMURHA ON MINULLE AINOA TIE ULOS TÄSTÄ
-KIDUTUKSESTA SUKUPUOLI/NEUROLOGISIA VÄHEMMISTÖJÄ KOHTAAN!**
+LAILLISESTA KIDUTUKSESTA SUKUPUOLI/NEUROLOGISIA VÄHEMMISTÖJÄ KOHTAAN!**
 
 _[Katso myös muut kirjoitukseni elämästäni englanniksi]({{ site.url }}/about#life)_

blog/_posts/2015-07-28-stagefright.md

@@ -8,13 +8,13 @@ redirect_from: /finnish/2015/07/28/stagefright.html
 published: false
 ---
 
-_Stagefright on haavoittuvuus Androidissa, jolla haittakoodia voi ajaa etänä.
+_Stagefright on haavoittuvuus Androidissa, jolla haittakoodia voi ajaa
-Lue lisää
+etänä. Lue lisää [Viestintävirasto Haavoittuvuus 067/2015](https://www.viestintavirasto.fi/kyberturvallisuus/haavoittuvuudet/2015/haavoittuvuus-2015-067.html)_
-[Viestintävirasto Haavoittuvuus 067/2015](https://www.viestintavirasto.fi/kyberturvallisuus/haavoittuvuudet/2015/haavoittuvuus-2015-067.html)_
 
-Valitin aluksi Facebook-seinälläni Viestintäviraston unohtaneen kertoa, kuinka
+Valitin aluksi Facebook-seinälläni Viestintäviraston unohtaneen kertoa,
-rajoittaminen tapahtuu käytännössä ja myöhemmin minulle selvisi asia tarkemmin
+kuinka rajoittaminen tapahtuu käytännössä ja myöhemmin minulle selvisi
-ja se olisi mahdollisesti ollut järkevämpää kirjoittaa tänne suoraan.
+asia tarkemmin ja se olisi mahdollisesti ollut järkevämpää kirjoittaa
+tänne suoraan.
 
 Tähän on kaksi minun tuntemaani tapaa
 
@@ -22,15 +22,16 @@ Tähän on kaksi minun tuntemaani tapaa
 
 1. Avaa `Viestitys`
 2. Paina kolmen päällekkäisen pisteen kuvaa ja valitse Asetukset.
-3. Mene valikkoon Multimediaviesti ja poista rasti ruudusta "Automaattinouto".
+3. Mene valikkoon Multimediaviesti ja poista rasti ruudusta
+   "Automaattinouto".
 
 ## MMS APN-osoitteen poistaminen
 
 Freenodessa (nykyisin Libera.Chat:issa) kanavalla `#vapaakoodi` mentiin
 pidemmälle ja poistettiin koko multimediaviestien APN-osoite.
 
-**VAROITUS: Et tämän jälkeen voi vastaanottaa multimediaviestejä ellet määritä
+**VAROITUS: Et tämän jälkeen voi vastaanottaa multimediaviestejä ellet
-APN-osoitetta uudelleen.**
+määritä APN-osoitetta uudelleen.**
 
 1. Avaa Asetukset.
 2. Verkot välilehdellä valitse "Jakaminen & Verkkoyhteydet".
@@ -40,9 +41,9 @@ APN-osoitetta uudelleen.**
 6. Paina kolmen päällekkäisen pisteen kuvaa ja valitse Poista APN.
 
 Samasta paikasta löytyy myös toinen kiinnostava asetus internet-yhteyden
-käyttöön liittyvästä APN:stä, APN-Protokolla, jolla voidaan ottaa IPv6 käyttöön.
+käyttöön liittyvästä APN:stä, APN-Protokolla, jolla voidaan ottaa IPv6
-Se pitäisi olla IPv4/IPv6 ja asetuksen vaihtamisen jälkeen mobiilidata tulee
+käyttöön. Se pitäisi olla IPv4/IPv6 ja asetuksen vaihtamisen jälkeen
-katkaista ja ottaa uudelleen käyttöön. Lisätietoja:
+mobiilidata tulee katkaista ja ottaa uudelleen käyttöön. Lisätietoja:
 
 - [Elisan IPv6-ohjeet](https://elisa.fi/ipv6)
 - [DNA:n IPv6-laiteohjeet](https://dna.fi/ipv6-laitteet)
@@ -59,13 +60,11 @@ Nämä valikot on tarkistettu pikkuveljeni puhelimella.
   - MMS APN: "Sonera MMS"
     - APN-osoite `wap.sonera.fi`
 
-_Tele Finland ja Sonera eivät muuten vieläkään ole saaneet IPv6:tta käyttöön ja
+_Tele Finland ja Sonera eivät muuten vieläkään ole saaneet IPv6:tta
-ovat ainoat opraattorit Suomessa ilman sitä. Verkko toimii kuitenkin
+käyttöön ja ovat ainoat opraattorit Suomessa ilman sitä. Verkko toimii
-normaalisti, vaikka APN-protokollan vaihtaisi valmiiksi, IPv4/IPv6:ksi, koska
+kuitenkin normaalisti, vaikka APN-protokollan vaihtaisi valmiiksi,
-jos se ei ole tuettu, puhelin yrittää APN-protokollaa IPv4._
+IPv4/IPv6:ksi, koska jos se ei ole tuettu, puhelin yrittää APN-protokollaa
+IPv4._
 
-Pikkuveljen puhelimessa APN:t ovat "Sonera" (käytetään internetiin
+Pikkuveljen puhelimessa APN:t ovat "Sonera" (käytetään internetiin APN-osoitteella "internet") ja Sonera MMS (multimediaviestit, APN wap.sonera.net
-APN-osoitteella "internet") ja Sonera MMS (multimediaviestit, APN wap.sonera.net
+). Puhelin on LG Sprit LTE Android-versiolla 5.0.1. Operaattori taas on Tele Finland, joka ei ymmärtääkseni vieläkään ole saanut itselleen IPv6:tta toimintaan ja sama pätee kai Soneraan.
-). Puhelin on LG Sprit LTE Android-versiolla 5.0.1. Operaattori taas on Tele
-Finland, joka ei ymmärtääkseni vieläkään ole saanut itselleen IPv6:tta
-toimintaan ja sama pätee kai Soneraan.

blog/_posts/2015-09-19-atheme-quickstart.md

@@ -14,72 +14,71 @@ redirect_from:
   - /english/2015/09/19/atheme-quickstart.html
 ---
 
-Atheme IRC Services is the most used IRC service package. However many people
+Atheme IRC Services is the most used IRC service package. However many
-have difficulties with registering a channel and then managing it, which I
+people have difficulties with registering a channel and then managing
-attempt to help with here. I start by explaining NickServ registration (and as a
+it, which I attempt to help with here. I start by explaining NickServ
-bonus HostServ) and then move to channel management and you just cannot talk
+registration (and as a bonus HostServ) and then move to channel
-about that without mentioning GroupServ too...
+management and you just cannot talk about that without mentioning
+GroupServ too...
 
 ## NickServ
 
-You won't be able to do anything unless you register your nick. This is as easy
+You won't be able to do anything unless you register your nick. This is
-as `/msg nickserv register PASSWORD someone@example.net`.
+as easy as `/msg nickserv register PASSWORD someone@example.net`.
 
-Depending on Atheme configuration on the IRC network you are using, you must
+Depending on Atheme configuration on the IRC network you are using, you
-verify your email by checking it and copy-pasting the command which starts with
+must verify your email by checking it and copy-pasting the command which
-`/msg NickServ verify register` to NickServ.
+starts with `/msg NickServ verify register` to NickServ.
 
-In case you wish to have multiple nicks in the same account, that is also easy,
+In case you wish to have multiple nicks in the same account, that is also
-just `/nick AltNick` and `/msg nickserv group`. You can see nicks you have by
+easy, just `/nick AltNick` and `/msg nickserv group`. You can see nicks
-using `/msg nickserv info yournick` (other people (except IRC operators) cannot
+you have by using `/msg nickserv info yournick` (other people (except IRC
-see that part).
+operators) cannot see that part).
 
 Now you should be successfully identified and should configure automatic
-identification, I cannot help with it so much, but I can point you to beginning:
+identification, I cannot help with it so much, but I can point you to
+beginning:
 
 - [liberachat's SASL instructions](https://libera.chat/guides/sasl)
 - [My instructions for SASL with WeeChat]({% post_url blog/2015-03-26-weechat-sasl-simply %})
 - [Searx YOURCLIENTHERE SASL](https://search.disroot.org/?q=YOURCLIENTHERE+SASL)
-- IRCCloud: edit network and go to advanced settings and you will see box for
+- IRCCloud: edit network and go to advanced settings and you will see box
-  NickServ password.
+  for NickServ password.
-- KiwiIRC: Check "I have a password" and type your passsword there. Ensure that
+- KiwiIRC: Check "I have a password" and type your passsword there. Ensure
-  you specified a nick that is grouped to your account.
+  that you specified a nick that is grouped to your account.
 - Matrix: in the admin room (direct chat with the appservice-irc), say
-  `!storepass password` to have the password send with PASS on connect. In case
+  `!storepass password` to have the password send with PASS on connect.
-  of liberachat use `!storepass nick:password` and/or see more information at
+  In case of liberachat use `!storepass nick:password` and/or see more
-  [matrix-appservice-irc wiki].
+  information at [matrix-appservice-irc wiki].
   - [IRC networks with Matrix bridge]
   - [Matrix bridge end-user FAQ register/identify section]
 
-[matrix-appservice-irc wiki]:
+[matrix-appservice-irc wiki]: https://github.com/matrix-org/matrix-appservice-irc/wiki/
-  https://github.com/matrix-org/matrix-appservice-irc/wiki/
+[irc networks with matrix bridge]: https://github.com/matrix-org/matrix-appservice-irc/wiki/Bridged-IRC-networks
-[irc networks with matrix bridge]:
+[matrix bridge end-user faq register/identify section]: https://github.com/matrix-org/matrix-appservice-irc/wiki/End-user-FAQ#how-do-i-registeridentify-to-nickserv
-  https://github.com/matrix-org/matrix-appservice-irc/wiki/Bridged-IRC-networks
-[matrix bridge end-user faq register/identify section]:
-  https://github.com/matrix-org/matrix-appservice-irc/wiki/End-user-FAQ#how-do-i-registeridentify-to-nickserv
 
 ## HostServ
 
-In case the network you are on has HostServ, you can get vhosts with it. Vhosts
+In case the network you are on has HostServ, you can get vhosts with it.
-appear in place of your real host/cloaked host, but
+Vhosts appear in place of your real host/cloaked host, but
 [won't hide your IP](https://gist.github.com/maxteufel/1e2cf7ada079c271bd3c).
 
 There are two ways to get a vhost, take one that is offered to everyone or
 request something.
 
-- Check `/msg hostserv offerlist` and if you see something you like, you can
+- Check `/msg hostserv offerlist` and if you see something you like, you
-  enable it with e.g. `/msg hostserv take $user.irc.example.net` and running
+  can enable it with e.g. `/msg hostserv take $user.irc.example.net` and
-  `/msg hostserv on`.
+  running `/msg hostserv on`.
-- Use `/msg nickserv request blah` and when you receive message telling you that
+- Use `/msg nickserv request blah` and when you receive message telling you
-  your requested vhost has been approved use `/msg hostserv on`.
+  that your requested vhost has been approved use `/msg hostserv on`.
 
 ## ChanServ
 
-And finally to the topic which seems to be the most difficult, channel (access)
+And finally to the topic which seems to be the most difficult, channel
-management.
+(access) management.
 
-First register the channel with `/msg ChanServ register #channel` while you are
+First register the channel with `/msg ChanServ register #channel` while
-opped. Now you are free to setup the channel as you wish.
+you are opped. Now you are free to setup the channel as you wish.
 
 I use the following templates, so I can e.g.
 `/msg chanserv flags #channel someone op` instead of
@@ -87,60 +86,60 @@ I use the following templates, so I can e.g.
 network defaults that you can see with `/msg chanserv template`.
 
 _This is a bash scripts which is ran like `./cstemplate #channel` and
-copy-pasted to ChanServ. It basically allows ops to do everything they could do
+copy-pasted to ChanServ. It basically allows ops to do everything they
-anyway by being opped using services and "trusted users" have became regulars on
+could do anyway by being opped using services and "trusted users" have
-channels I am on. If a flag doesn't exist on the network you are on, Atheme will
+became regulars on channels I am on. If a flag doesn't exist on the network
-just silently ignore it._
+you are on, Atheme will just silently ignore it._
 
-**You should see my cstemplate script here, but the embedding isn't working, to
+**You should see my cstemplate script here, but the embedding isn't
-see it
+working, to see it [please click here to go to the GitHub instance of it](https://github.com/Mikaela/gist/blob/master/irc/atheme/cstemplate).**
-[please click here to go to the GitHub instance of it](https://github.com/Mikaela/gist/blob/master/irc/atheme/cstemplate).**
 
-Another example using my templates would be
+Another example using my templates would be `/msg ChanServ flags #channel !channel-ops op` which would give op permissions above to users in the
-`/msg ChanServ flags #channel !channel-ops op` which would give op permissions
+!channel-ops group.
-above to users in the !channel-ops group.
 
 ## GroupServ
 
-I mentioned groups a little earlier and now I am returning to them. They are a
+I mentioned groups a little earlier and now I am returning to them. They
-way to manage flags of group of users very easily by having all users in the
+are a way to manage flags of group of users very easily by having
-group and just setting flags to the group instead of invidual users.
+all users in the group and just setting flags to the group instead of
+invidual users.
 
-_GroupServ is undervalued service and it might not be surprising if it's missing
+_GroupServ is undervalued service and it might not be surprising if it's
-from your network :(_
+missing from your network :(_
 
-Start by creating your group `/msg groupserv register !blah` (you might want to
+Start by creating your group `/msg groupserv register !blah` (you might
-register a more descriptive name).
+want to register a more descriptive name).
 
-Next, as in this example this group is going to be op #somewhere we close the
+Next, as in this example this group is going to be op #somewhere we close
-group: `/msg groupserv set !group open off`.
+the group: `/msg groupserv set !group open off`.
 
-Now there are only two tasks left, making the group op and adding ops there:
+Now there are only two tasks left, making the group op and adding ops
+there:
 
 - `/msg chanserv flags #channel !blah op`
-  - where `op` can still be replaced with `aop` if you are following Atheme
+  - where `op` can still be replaced with `aop` if you are following
-    defaults or some other template you created or your own set of flags.
+    Atheme defaults or some other template you created or your own
+    set of flags.
 - `/msg groupserv flags !blah user +c`
-  - Repeat as many times as you have ops, to remove ops you simply remove their
+  - Repeat as many times as you have ops, to remove ops you simply remove
-    `-c` flag or all flags (`-*`). You will also want to read
+    their `-c` flag or all flags (`-*`). You will also want to read
     `/msg groupserv help flags` as there is more than I said here.
 
 ## Futher reading
 
-- [Always add opers to access list (this is the $oper in
+- [Always add opers to access list (this is the $oper in my templates)]({% post_url blog/2015-01-10-channels-hostmask-groups-a-basic-howto %})
-  my
-  templates)]({% post_url blog/2015-01-10-channels-hostmask-groups-a-basic-howto %})
   - oops, did I just repeat previous post
 - [Keep the ops opped]({% post_url blog/2015-04-01-keep-the-ops-opped %})
-  - especially read this if you are at liberachat or wondering why you don't get
+  - especially read this if you are at liberachat or wondering why you
-    automatically opped after registering the channel and cycling while being
+    don't get automatically opped after registering the channel and
-    identified!
+    cycling while being identified!
 - `/msg NickServ help`
   - `/msg NickServ help set`
     - especially worth taking a look at: `emailmemos` & `enforce`
 - `/msg ChanServ help`
   - `/msg ChanServ help set`
-    - especially worth taking a look at: `guard`, `keeptopic`, `verbose`
+    - especially worth taking a look at: `guard`, `keeptopic`,
+      `verbose`
     - `/msg ChanServ help flags`
       - what flags are available, what they do and managing them.
     - `/msg ChanServ help template`

blog/_posts/2015-10-09-arch-reflector.md

@@ -12,16 +12,14 @@ redirect_from:
   - /english/2015/10/09/arch-reflector.html
 ---
 
-_Reflector is a tool that checks the most recently upgraded Arch Linux mirrors
+_Reflector is a tool that checks the most recently upgraded Arch Linux
-and ranks them by speed and saves them to your mirrorlist._
+mirrors and ranks them by speed and saves them to your mirrorlist._
 
-**This is largely based on [ArchWiki page on reflector] which is licensed in [GNU
+**This is largely based on [ArchWiki page on reflector] which is licensed
-Free
+in [GNU Free Documentation License 1.3 or later].**
-Documentation License 1.3 or later].**
 
 [archwiki page on reflector]: https://wiki.archlinux.org/index.php/Reflector
-[gnu free documentation license 1.3 or later]:
+[gnu free documentation license 1.3 or later]: https://www.gnu.org/copyleft/fdl.html
-  https://www.gnu.org/copyleft/fdl.html
 
 TL;DR commands:
 
@@ -36,19 +34,18 @@ sudo pacman -Syu
 
 (end of TL;DR and what you actually do)
 
-1. Install reflector itself, additional depedency of rsync to rank the mirrors
+1. Install reflector itself, additional depedency of rsync to rank the
-   by speed, and curl which you use in the second command
+   mirrors by speed, and curl which you use in the second command
 2. to download my reflector.service
-   - differences to Arch Wiki version: requires network-online.target so you
+   - differences to Arch Wiki version: requires network-online.target
-     don't have to enable any wait-online services and uses only https mirrors.
+     so you don't have to enable any wait-online services and uses only
+     https mirrors.
 3. enable the service so it's ran on boot
-4. start it now so it checks the most recently updated mirrors and saves them to
+4. start it now so it checks the most recently updated mirrors and
-   mirrorlist.
+   saves them to mirrorlist.
 5. Check for updates & install them.
 
-Do check the service itself at
+Do check the service itself at https://github.com/Mikaela/shell-things/raw/master/etc/systemd/system/reflector.service !
-https://github.com/Mikaela/shell-things/raw/master/etc/systemd/system/reflector.service
-!
 
 Bonus: edit `/etc/pacman.conf` and add the line:
 
@@ -56,6 +53,6 @@ Bonus: edit `/etc/pacman.conf` and add the line:
 NoExtract = etc/pacman.d/mirrorlist
 ```
 
-so when you upgrade you won't get useless mirrorlist.pacnew file. **NOTE:** it's
+so when you upgrade you won't get useless mirrorlist.pacnew file. **NOTE:**
-intented to be `etc/pacman.d/mirrorlist` without the initial `/`, because it's
+it's intented to be `etc/pacman.d/mirrorlist` without the initial `/`,
-_relative_, not _absolute_, path.
+because it's _relative_, not _absolute_, path.

blog/_posts/2015-10-17-archlinux_change_login_dm.md

@@ -11,32 +11,32 @@ redirect_from:
 sitemap: false
 ---
 
-_Also applies to other distributions based on it, how do you change the display
+_Also applies to other distributions based on it, how do you change
-manager, aka login screen._
+the display manager, aka login screen._
 
 - `--needed` makes pacman not install packages that are already installed.
 - uncommented line = line that doesn't begin with `#`.
 - to change DM you don't need to reboot, you can also
-  `sudo systemctl stop olddm` and `sudo systemctl start newdm`, but this logs
+  `sudo systemctl stop olddm` and `sudo systemctl start newdm`, but this
-  you out.
+  logs you out.
-- my personal recommendation is using LightDM if it works for you, otherwise
+- my personal recommendation is using LightDM if it works for you,
-  sddm. I personally use LightDM, because sddm is missing support for
+  otherwise sddm. I personally use LightDM, because sddm is missing
-  `sudo passwd -de user`
+  support for `sudo passwd -de user` [sddm/sddm#472](https://github.com/sddm/sddm/issues/472)
-  [sddm/sddm#472](https://github.com/sddm/sddm/issues/472)
 
 ## LightDM gtk greeter
 
 - `sudo pacman --needed -S lightdm lightdm-gtk-greeter accountsservice numlockx`
 
-Edit the file `/etc/lightdm/lightdm.conf` and find the uncommented line that
+Edit the file `/etc/lightdm/lightdm.conf` and find the uncommented line
-starts with `greeter-session=` and change it to
+that starts with `greeter-session=` and change it to
 `greeter-session=lightdm-gtk-greeter`.
 
-If you have keyboard with [numpad] you might want to enable Num Lock by default
+If you have keyboard with [numpad] you might want to enable Num Lock by
-by finding the uncommented line starting with `greeter-setup-script=` and
+default by finding the uncommented line starting with
-changing it to `greeter-setup-script=/usr/bin/numlockx on`. If there isn't
+`greeter-setup-script=` and changing it to
-uncommented line anywhere in the file, just uncomment one or add it under the
+`greeter-setup-script=/usr/bin/numlockx on`. If there isn't uncommented
-commented line.
+line anywhere in the file, just uncomment one or add it under the commented
+line.
 
 Then enable it by running `sudo systemctl enable -f lightdm` and reboot.
 
@@ -44,8 +44,8 @@ Then enable it by running `sudo systemctl enable -f lightdm` and reboot.
 
 - `sudo pacman --needed -S sddm`
 
-SDDM is simple display manager for all desktop environments and is successor of
+SDDM is simple display manager for all desktop environments and is
-KDM which is the KDE Display Manager.
+successor of KDM which is the KDE Display Manager.
 
 To create a config file and enable it for next reboot:
 
@@ -54,20 +54,20 @@ sddm --example-config | sudo tee /etc/sddm.conf
 sudo systemctl enable -f sddm
 ```
 
-The lines you might want to change are the one starting with `Nucmlock=` and I
+The lines you might want to change are the one starting with `Nucmlock=`
-recommend changing it to `Numlock=on` if you have the [numpad]. The other line
+and I recommend changing it to `Numlock=on` if you have the [numpad]. The
-starts with `Current=` and is used to select the current theme. Available themes
+other line starts with `Current=` and is used to select the current theme.
-can be seen with `ls /usr/share/sddm/themes`.
+Available themes can be seen with `ls /usr/share/sddm/themes`.
 
-KDE users might also want to install `sddm-kcm` which gives GUI for controlling
+KDE users might also want to install `sddm-kcm` which gives GUI
-sddm.
+for controlling sddm.
 
 ## gdm
 
 - `sudo pacman --needed -S gdm`
 
-The last display manager I am mentioning is the Gnome Display Manager and is
+The last display manager I am mentioning is the Gnome Display Manager and
-only for Gnome users and I am not so familiar with it and I believe using it is
+is only for Gnome users and I am not so familiar with it and I believe
-just `sudo systemctl enable -f gdm`.
+using it is just `sudo systemctl enable -f gdm`.
 
 [numpad]: https://en.wikipedia.org/wiki/numpad

blog/_posts/2015-11-03-moving.md

@@ -8,19 +8,21 @@ redirect_from: /english/2015/11/03/moving.html
 published: false
 ---
 
-_As this blog is so depressing and full of Kotka, I should mention that I moved
+_As this blog is so depressing and full of Kotka, I should mention that I
-to Lauttasaari (~5km from Helsinki centre) a few days ago._
+moved to Lauttasaari (~5km from Helsinki centre) a few days ago._
 
-I think my biggest problems are now over. I can move outside without issues and
+I think my biggest problems are now over. I can move outside without
-there are groups I can visit like HeSeta's gaymer's night where I went on the
+issues and there are groups I can visit like HeSeta's gaymer's night where
-first day here to play board games as I got friend with me.
+I went on the first day here to play board games as I got friend with me.
 
-Getting to places is just 2€ per hour or using season from travel card and works
+Getting to places is just 2€ per hour or using season from travel card and
-for all public transport. From Lauttasaari it's hopping to bus and then changing
+works for all public transport. From Lauttasaari it's hopping to bus and
-to another bus or metro/train/tram. Metro is also coming nearby in August when
+then changing to another bus or metro/train/tram. Metro is also coming
-[West Metro](https://lansimetro.fi/en/home.html) opens.
+nearby in August when [West Metro](https://lansimetro.fi/en/home.html)
+opens.
 
 I don't know about psychiatrical health care yet other than there will be
 appointment on coming weeks about arranging it.
 
-_This post is too short for my taste, but so was the previous one about hau._
+_This post is too short for my taste, but so was the previous one about
+hau._

blog/_posts/2015-11-21-sahkopostia-lakivaliokunnalle-translaki.md

@@ -10,129 +10,61 @@ locale: fi_FI
 robots: noai
 ---
 
-_Toivottavasti tämä viesti on edes jotenkuten järkevä, se olisi ollut vaikea
+_Toivottavasti tämä viesti on edes jotenkuten järkevä, se olisi ollut
-kirjoittaa ilmankin Ketipinorin vaikutusta ja sitä on nyt liian myöhäistä
+vaikea kirjoittaa ilmankin Ketipinorin vaikutusta ja sitä on nyt liian
-muuttaa._
+myöhäistä muuttaa._
 
 ---
 
 Hyvä VASTAANOTTAJA,
 
-Lakivaliokunta käsittelee ensiviikolla tasa-arvoisen avioliittolain
+Lakivaliokunta käsittelee ensiviikolla tasa-arvoisen avioliittolain liitännäislakeja mukaanlukien translain, josta hallitus haluaa poistaa ainoastaan naimattomuusvaatimuksen.
-liitännäislakeja mukaanlukien translain, josta hallitus haluaa poistaa
-ainoastaan naimattomuusvaatimuksen.
 
 Se ei riitä, translain täytyy perustua itsemääräämisoikeuteen.
 
-Tulin ulos transsukupuolisena naisena keväällä/kesällä 2013 ollessani
+Tulin ulos transsukupuolisena naisena keväällä/kesällä 2013 ollessani ammattikoulussa. En uskaltanut edes pyytää opettajia tai muita oppilaita käyttämään minusta omaa nimeäni, koska he olisivat voineet kieltäytyä, koska se ei ollut virallinen nimeni.
-ammattikoulussa. En uskaltanut edes pyytää opettajia tai muita oppilaita
-käyttämään minusta omaa nimeäni, koska he olisivat voineet kieltäytyä, koska se
-ei ollut virallinen nimeni.
 
-Saatuani nimeni vaihdettua tilanne ei parantunut kovin paljon. Pystyin
+Saatuani nimeni vaihdettua tilanne ei parantunut kovin paljon. Pystyin korjaamaan väärää nimeä käyttäviä opettajia, mutta minulla oli yhä miehen henkilötunnus, joka taas aiheuttaa omat vaikeutensa.
-korjaamaan väärää nimeä käyttäviä opettajia, mutta minulla oli yhä miehen
-henkilötunnus, joka taas aiheuttaa omat vaikeutensa.
 
-Kun mikä tahansa lista tulostettin tietokoneelta, miesten keskeltä löytyi aina
+Kun mikä tahansa lista tulostettin tietokoneelta, miesten keskeltä löytyi aina "Mikaela Suomalainen" eikä asialle voinut mitään, koska juridisesti olen mies. Sama ongelma myös aivan arkisissa asioissa, hakiessani pakettia postista minun täytyy näyttää henkilöllisyystodistusta, jossa lukee mies. Hakiessani kirjastokorttia minut merkitään kirjaston järjestelmiin mieheksi, koska kaikkien tietojen on oltava samat, kuin henkilöllisyystodistuksessa.
-"Mikaela Suomalainen" eikä asialle voinut mitään, koska juridisesti olen mies.
-Sama ongelma myös aivan arkisissa asioissa, hakiessani pakettia postista minun
-täytyy näyttää henkilöllisyystodistusta, jossa lukee mies. Hakiessani
-kirjastokorttia minut merkitään kirjaston järjestelmiin mieheksi, koska kaikkien
-tietojen on oltava samat, kuin henkilöllisyystodistuksessa.
 
-Jatkoin kuitenkin koulunkäyntiä vielä jonkin aikaa ennen kuin kouluväkivalta
+Jatkoin kuitenkin koulunkäyntiä vielä jonkin aikaa ennen kuin kouluväkivalta (jonka uhri olen ollut tarhasta asti) alkaa taas. Tällä kertaa ketään ei kuitenkaan kiinnosta puuttua asiaan, koska en ole "normaali". Sain kuitenkin päästötodistuksen vaikka olinkin ollut pitkään poissa koulusta, mutta en uskalla hakea jatko-opintoihin ennnen kuin olen juridisesti nainen, koska muuten tämä kaikki vain tapahtuisi alusta asti uudelleen.
-(jonka uhri olen ollut tarhasta asti) alkaa taas. Tällä kertaa ketään ei
-kuitenkaan kiinnosta puuttua asiaan, koska en ole "normaali". Sain kuitenkin
-päästötodistuksen vaikka olinkin ollut pitkään poissa koulusta, mutta en uskalla
-hakea jatko-opintoihin ennnen kuin olen juridisesti nainen, koska muuten tämä
-kaikki vain tapahtuisi alusta asti uudelleen.
 
-Sinulla, hyvä lakivaliokunnan jäsen, on mahdollisuus vaatia
+Sinulla, hyvä lakivaliokunnan jäsen, on mahdollisuus vaatia itsemääräämisoikeuteen perustuvaa translakia Suomeen. Älä anna enää muiden kärsiä näin.
-itsemääräämisoikeuteen perustuvaa translakia Suomeen. Älä anna enää muiden
-kärsiä näin.
 
-Myös Suomen Keskusta kannattaa translain uudistamista. Vuoden 2014 Turussa
+Myös Suomen Keskusta kannattaa translain uudistamista. Vuoden 2014 Turussa pidetyssä puoluekokouksessa hyväksyttiin aloite tasa-arvoisesta translaista ilman äänestystä.
-pidetyssä puoluekokouksessa hyväksyttiin aloite tasa-arvoisesta translaista
-ilman äänestystä.
 
-Liitän loppuun myös usean ihmisoikeusjärjestön vetoomuksen
+Liitän loppuun myös usean ihmisoikeusjärjestön vetoomuksen itsemääräämisoikeudesta uuden translain perusteeksi.
-itsemääräämisoikeudesta uuden translain perusteeksi.
 
 16.10.2015
 
-Ihmisoikeusjärjestöt vaativat: itsemääräämisoikeus sukupuoleen lakiuudistuksen
+Ihmisoikeusjärjestöt vaativat: itsemääräämisoikeus sukupuoleen lakiuudistuksen lähtökohdaksi
-lähtökohdaksi
 
-Sukupuolen juridista vahvistamista koskevaa lainsäädäntöä uudistetaan
+Sukupuolen juridista vahvistamista koskevaa lainsäädäntöä uudistetaan avioliittolain muutoksen yhteydessä. Me allekirjoittaneet ihmisoikeusjärjestöt vaadimme kyseisen translain uudistamista siten, että sukupuolen juridiseen vahvistamiseen riittää henkilön oma ilmoitus.
-avioliittolain muutoksen yhteydessä. Me allekirjoittaneet ihmisoikeusjärjestöt
-vaadimme kyseisen translain uudistamista siten, että sukupuolen juridiseen
-vahvistamiseen riittää henkilön oma ilmoitus.
 
-Tällä hetkellä sukupuolen vahvistamisen ehtona on muun muassa naimattomuus,
+Tällä hetkellä sukupuolen vahvistamisen ehtona on muun muassa naimattomuus, lisääntymiskyvyttömyys ja täysi-ikäisyys. Uusi avioliittolaki edistää tasa-arvoa yhteiskunnassa: tämän tasa-arvon on ulotuttava koskemaan myös sukupuolivähemmistöjä. Nykyinen translaki aiheuttaa perus- ja ihmisoikeusloukkauksia, jotka poistuvat, kun laki muutetaan ihmisoikeuslähtöiseksi.
-lisääntymiskyvyttömyys ja täysi-ikäisyys. Uusi avioliittolaki edistää tasa-arvoa
-yhteiskunnassa: tämän tasa-arvon on ulotuttava koskemaan myös
-sukupuolivähemmistöjä. Nykyinen translaki aiheuttaa perus- ja
-ihmisoikeusloukkauksia, jotka poistuvat, kun laki muutetaan
-ihmisoikeuslähtöiseksi.
 
-Valtioneuvostolle esiteltiin 15.10 lakimuutosehdotus, jossa vain
+Valtioneuvostolle esiteltiin 15.10 lakimuutosehdotus, jossa vain naimattomuusvaatimus esitetään poistettavaksi translaista. Tämän ehdon poistuminen on edistysaskel, mutta perus- ja ihmisoikeusnäkökulmasta täysin riittämätön.
-naimattomuusvaatimus esitetään poistettavaksi translaista. Tämän ehdon
-poistuminen on edistysaskel, mutta perus- ja ihmisoikeusnäkökulmasta täysin
-riittämätön.
 
-Sukupuolen juridista vahvistamista koskevaa lainsäädäntöä on muutettu viime
+Sukupuolen juridista vahvistamista koskevaa lainsäädäntöä on muutettu viime vuosina ympäri maailmaa. Itsemääräämisoikeuteen perustuvia lakeja on hyväksytty muun muassa Euroopan katolilaisissa maissa Irlannissa ja Maltalla. Pohjoismaista Tanska on jo uudistanut lakinsa itsemääräämisperustaiseksi. Norjassa vastaavanlainen lakimuutos astunee voimaan keväällä 2016.
-vuosina ympäri maailmaa. Itsemääräämisoikeuteen perustuvia lakeja on hyväksytty
-muun muassa Euroopan katolilaisissa maissa Irlannissa ja Maltalla. Pohjoismaista
-Tanska on jo uudistanut lakinsa itsemääräämisperustaiseksi. Norjassa
-vastaavanlainen lakimuutos astunee voimaan keväällä 2016.
 
-Suomessa voimassa oleva translaki on karkean syrjivä. Tästä syystä nyt esitelty
+Suomessa voimassa oleva translaki on karkean syrjivä. Tästä syystä nyt esitelty hallituksen esitys on pettymys. Ihmisoikeusjärjestöt odottivat, että translakiin esitettäisiin perinpohjaisia muutoksia tasa-arvoisen avioliittolainsäädännön valmistelun yhteydessä. Painetta translain muutokseen synnyttää myös uudistunut tasa-arvolaki, jossa syrjinnän kielto on laajennettu koskemaan sukupuoli-identiteetin ja sukupuolen ilmaisuun koskevaa syrjintää. Muutostarve on perusteltavissa muunkin lainsäädännön pohjalta. Myös kansainväliset ihmisoikeuselimet ovat kiinnittäneet huomiota Suomen translain syrjivyyteen. Suomi on saanut huomautuksia translain suhteen niin Euroopan neuvoston ihmisoikeusvaltuutetulta kuin YK:n alaiselta naisten oikeuksien sopimusta valvovalta komitealtakin. YK:n kidutuksen vastainen erityisraportoija on vaatinut muun muassa vaatimusta lisääntymiskyvyttömyydestä poistettavaksi.
-hallituksen esitys on pettymys. Ihmisoikeusjärjestöt odottivat, että translakiin
-esitettäisiin perinpohjaisia muutoksia tasa-arvoisen avioliittolainsäädännön
-valmistelun yhteydessä. Painetta translain muutokseen synnyttää myös uudistunut
-tasa-arvolaki, jossa syrjinnän kielto on laajennettu koskemaan
-sukupuoli-identiteetin ja sukupuolen ilmaisuun koskevaa syrjintää. Muutostarve
-on perusteltavissa muunkin lainsäädännön pohjalta. Myös kansainväliset
-ihmisoikeuselimet ovat kiinnittäneet huomiota Suomen translain syrjivyyteen.
-Suomi on saanut huomautuksia translain suhteen niin Euroopan neuvoston
-ihmisoikeusvaltuutetulta kuin YK:n alaiselta naisten oikeuksien sopimusta
-valvovalta komitealtakin. YK:n kidutuksen vastainen erityisraportoija on
-vaatinut muun muassa vaatimusta lisääntymiskyvyttömyydestä poistettavaksi.
 
-”Me allekirjoittaneet järjestöt emme tyydy lakiuudistukseen, joka edelleen
+”Me allekirjoittaneet järjestöt emme tyydy lakiuudistukseen, joka edelleen syrjii transsukupuolisia. Jos lakia sorvataan nyt, niin se on tehtävä kunnolla, transihmisten ihmisoikeuksia kunnioittaen. Ja kun Suomi ajaa kansainvälisessä ihmisoikeuspolitiikassaan aktiivisesti seksuaali- ja sukupuolivähemmistöjen oikeuksia niin eikö tämän pitäisi näkyä myös sisäpolitiikassa?” Amnestyn Suomen osaston asiantuntija Pia Puu Oksanen kysyy.
-syrjii transsukupuolisia. Jos lakia sorvataan nyt, niin se on tehtävä kunnolla,
-transihmisten ihmisoikeuksia kunnioittaen. Ja kun Suomi ajaa kansainvälisessä
-ihmisoikeuspolitiikassaan aktiivisesti seksuaali- ja sukupuolivähemmistöjen
-oikeuksia niin eikö tämän pitäisi näkyä myös sisäpolitiikassa?” Amnestyn Suomen
-osaston asiantuntija Pia Puu Oksanen kysyy.
 
-Nykylain mukaan sukupuolen juridinen vahvistaminen vaatii pitkät tutkimukset
+Nykylain mukaan sukupuolen juridinen vahvistaminen vaatii pitkät tutkimukset yliopistollisessa keskussairaalassa sekä lausunnon toisestakin yliopistollisesta keskussairaalasta. Lisääntymiskyvyttömyydestäkin vaaditaan lääketieteellinen lausunto. ”Juridinen ja lääketieteellinen korjausprosessi on erotettava toisistaan ja sukupuolen vahvistamisen kaikkien osien tulee hoitua sujuvasti ja läpinäkyvästi”, Trasek ry:n puheenjohtaja Antti Karanki vaatii.
-yliopistollisessa keskussairaalassa sekä lausunnon toisestakin yliopistollisesta
-keskussairaalasta. Lisääntymiskyvyttömyydestäkin vaaditaan lääketieteellinen
-lausunto. ”Juridinen ja lääketieteellinen korjausprosessi on erotettava
-toisistaan ja sukupuolen vahvistamisen kaikkien osien tulee hoitua sujuvasti ja
-läpinäkyvästi”, Trasek ry:n puheenjohtaja Antti Karanki vaatii.
 
-Nykylaki edellyttää täysi-ikäisyyttä sukupuolen juridiselle vahvistamiselle.
+Nykylaki edellyttää täysi-ikäisyyttä sukupuolen juridiselle vahvistamiselle. Käytännössä tämä luo tilanteita, joissa juridiikka laahaa todellisuudesta jäljessä. Näissä tilanteissa nuoret altistuvat syrjinnälle. Papereissa kummitteleva vanhentunut sukupuolimerkintä aiheuttaa ongelmia ja esimerkiksi vähentää halua hakea koulutukseen.
-Käytännössä tämä luo tilanteita, joissa juridiikka laahaa todellisuudesta
-jäljessä. Näissä tilanteissa nuoret altistuvat syrjinnälle. Papereissa
-kummitteleva vanhentunut sukupuolimerkintä aiheuttaa ongelmia ja esimerkiksi
-vähentää halua hakea koulutukseen.
 
-”Myös nuorten oikeus omaan sukupuoleensa on turvattava ja nuorten sukupuolen
+”Myös nuorten oikeus omaan sukupuoleensa on turvattava ja nuorten sukupuolen juridisen vahvistamisen tulee olla mahdollista”, Setan puheenjohtaja Panu Mäenpää kertoo.
-juridisen vahvistamisen tulee olla mahdollista”, Setan puheenjohtaja Panu
-Mäenpää kertoo.
 
-Näistä syistä me, allekirjoittaneet järjestöt vaadimme sujuvaa ja läpinäkyvää,
+Näistä syistä me, allekirjoittaneet järjestöt vaadimme sujuvaa ja läpinäkyvää, aidosti itsemääräämisoikeuteen perustuvaa lakia sukupuolen juridiselle vahvistamiselle.
-aidosti itsemääräämisoikeuteen perustuvaa lakia sukupuolen juridiselle
-vahvistamiselle.
 
 Allekirjoittajat:
 
 Amnesty International, Suomen osasto ry
 
-Pia Puu Oksanen, sukupuoleen ja seksuaalisuuteen perustuvan syrjinnän
+Pia Puu Oksanen, sukupuoleen ja seksuaalisuuteen perustuvan syrjinnän asiantuntija
-asiantuntija
 
 Dreamwear Club ry
 
@@ -154,6 +86,8 @@ Trasek ry
 
 Antti Karanki, puheenjohtaja
 
-Ystävällisin terveisin, Mikaela Suomalainen https://mikaela.info
+Ystävällisin terveisin,
+Mikaela Suomalainen
+https://mikaela.info
 
 ---

blog/_posts/2015-12-25-asus-tunnelbroker-net.md

@@ -9,8 +9,8 @@ lang: en
 robots: noai
 ---
 
-_I am typing this, because there is a lot of misinformation on this, especially
+_I am typing this, because there is a lot of misinformation on this,
-about the dynamic DNS part._
+especially about the dynamic DNS part._
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -48,14 +48,14 @@ Go to the router web panel and IPv6 under advanced settings.
 
 ### IPv6 LAN Setting
 
-- LAN IPv6 Prefix: _Routed /64 from Routed IPv6 Prefixes from tunnelbroker.net
+- LAN IPv6 Prefix: _Routed /64 from Routed IPv6 Prefixes from
-  tunnel details_
+  tunnelbroker.net tunnel details_
 - LAN Prefix Length: 64
 
 ### IPv6 DNS Setting
 
-- IPv6 DNS Server 1: 2001:470:20::2 _(this is the one tunnelbroker.net says for
+- IPv6 DNS Server 1: 2001:470:20::2 _(this is the one tunnelbroker.net
-  me)_
+  says for me)_
 - IPv6 DNS Server 2: 2001:4860:4860::8888 _Google DNS 1_
 - IPv6 DNS Server 3: 2001:4860:4860::8844 _Google DNS 2_
 
@@ -71,24 +71,25 @@ Go to Advanced Settings, WAN, DDNS
 - Server: WWW.TUNNELBROKER.NET
 - Host Name: _tunnel ID from tunnelbroker.net tunnel details_
 - User Name or E-mail address: \*username of tunnelbroker.net
-- Password or DDNS Key: _Update Key from tunnel details under the Advanced tab_
+- Password or DDNS Key: _Update Key from tunnel details under the Advanced
+  tab_
 
 All guides I have seen say that username is user ID from index of
-tunnelbroker.net and password is account password, but that doesn't work for me.
+tunnelbroker.net and password is account password, but that doesn't work
-This is how I got it working guessing the details based on _Example Update URL_
+for me. This is how I got it working guessing the details based on
-at the same place you got the Update Key.
+_Example Update URL_ at the same place you got the Update Key.
 
 Now it should either work or not.
 
-- If it gives error saying something about trying again later, you are doing
+- If it gives error saying something about trying again later, you are
-  something wrong.
+  doing something wrong.
-- If it gives error about endpoint IP not changed since the last update, it
+- If it gives error about endpoint IP not changed since the last update,
-  works.
+  it works.
 - If you don't get error, it doesn't work.
 
 Now I would suggest you to go to Administration and from there
-Restore/Save/UPload Setting and clicking the "Save setting"s "Save" button so in
+Restore/Save/UPload Setting and clicking the "Save setting"s "Save" button
-case something bad happens you can easily restore the working state.
+so in case something bad happens you can easily restore the working state.
 
-And I probably shouldn't need to say this, but I will say it anyway: **don't use
+And I probably shouldn't need to say this, but I will say it
-admin/admin as username/password combination!**
+anyway: **don't use admin/admin as username/password combination!**

blog/_posts/2016-01-14-dnssec-trigger_ubuntu.md

@@ -18,9 +18,10 @@ It's very simple.
 sudo apt-get update && sudo apt-get install unbound dnssec-trigger
 ```
 
-And this is the farthest I have gotten before. But today at IRC there was talk
+And this is the farthest I have gotten before. But today at IRC there
-on DNS proxies which Ubuntu and Fedora use, Ubuntu uses dnsmasq and Fedora
+was talk on DNS proxies which Ubuntu and Fedora use, Ubuntu uses dnsmasq
-unbound. That made me _read the fine manual_ of NetworkManager.conf...
+and Fedora unbound. That made me _read the fine manual_ of
+NetworkManager.conf...
 
 ```man
        dns
@@ -42,14 +43,12 @@ unbound. That made me _read the fine manual_ of NetworkManager.conf...
            none: NetworkManager will not modify resolv.conf.
 ```
 
-And there is the solution, unbound. The third line of NetworkManager.conf is
+And there is the solution, unbound. The third line of NetworkManager.conf
-usually `dns=dnsmasq`, just change it to `dns=unbound` or add the line if it
+is usually `dns=dnsmasq`, just change it to `dns=unbound` or add the line
-doesn't exist and restart networkmanager with
+if it doesn't exist and restart networkmanager with `sudo systemctl restart NetworkManager.service` and your dnssec-trigger should now work.
-`sudo systemctl restart NetworkManager.service` and your dnssec-trigger should
-now work.
 
-And when you `sudo reboot` you should see new dnssec-trigger tray icon in your
+And when you `sudo reboot` you should see new dnssec-trigger tray icon in
-tray bar or whatever it was called as.
+your tray bar or whatever it was called as.
 
 _Edit_: Arch users do remember do `systemctl enable dnssec-triggerd` and
 `systemctl enable unbound`.

blog/_posts/2016-03-09-weechat-tmux-quickstart.md

@@ -10,8 +10,8 @@ sitemap: true
 robots: noai
 ---
 
-_Sometimes you don't have GUI when you need remote support, luckily you don't
+_Sometimes you don't have GUI when you need remote support, luckily you
-need it even if you have only one device._
+don't need it even if you have only one device._
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -34,16 +34,17 @@ need it even if you have only one device._
 
 ## What is what?
 
-- Tmux is terminal multiplexer which allows you to have "multiple terminals" in
+- Tmux is terminal multiplexer which allows you to have "multiple
-  one terminal. You can also detach it which means returning to the terminal
+  terminals" in one terminal. You can also detach it which means returning
-  where you ran tmux leaving tmux and everything there running and later return
+  to the terminal where you ran tmux leaving tmux and everything there
-  to it.
+  running and later return to it.
 - WeeChat is popular text based IRC client.
 
 ## Installing things
 
-_Note: WeeChat has multiple optional depedencies, but I am only listing the most
+_Note: WeeChat has multiple optional depedencies, but I am only listing
-important ones (I will return to it later) unless they are all in one package._
+the most important ones (I will return to it later) unless they are all
+in one package._
 
 - Arch & deriatives:
   - `sudo pacman --needed -S tmux weechat perl gpm pastebinit`
@@ -52,14 +53,14 @@ important ones (I will return to it later) unless they are all in one package._
 
 ## tmux
 
-Just run `tmux` and you will find yourself in a new shell, but with tmux bar on
+Just run `tmux` and you will find yourself in a new shell, but with tmux
-the bottom where you see open "windows".
+bar on the bottom where you see open "windows".
 
 Basic navigation:
 
-\*Note: Tmux users ctrl + b by default instead of ctrl + a as it was developed
+\*Note: Tmux users ctrl + b by default instead of ctrl + a as it was
-in screen. That can be changed with tmux.conf (check further reading after
+developed in screen. That can be changed with tmux.conf (check further
-WeeChat).
+reading after WeeChat).
 
 - Ctrl + b + c = new "window"
 - Ctrl + b + number = move to "window" number
@@ -69,13 +70,14 @@ WeeChat).
 
 ## WeeChat
 
-Time to finally go to IRC. Go to tmux first and there run `weechat` (or if your
+Time to finally go to IRC. Go to tmux first and there run `weechat` (or
-distribution has ancient version of WeeChat, `weechat-curses`, but in that case
+if your distribution has ancient version of WeeChat, `weechat-curses`, but
-you should upgrade (if your distribution is
+in that case you should upgrade (if your distribution is
 [Debian/Ubuntu/Raspbian, use this repository](https://weechat.org/download/debian/))).
 
-WeeChat welcomes you and suggests you to read at least the quickstart guide and
+WeeChat welcomes you and suggests you to read at least the quickstart
-recommends reading user's guide too, but in this case we can skip those.
+guide and recommends reading user's guide too, but in this case we
+can skip those.
 
 First we must connect to the network where the support channel of our
 distribution is.
@@ -86,43 +88,42 @@ distribution is.
    - `/connect liberachat`
 3. Join the channel of your distribution.
    - `/join #distribution`
-     - you can also join multiple channels at once by separating them by commas
+     - you can also join multiple channels at once by separating them by
-       e.g. `/join #channel,#channel2`.
+       commas e.g. `/join #channel,#channel2`.
 
 You might want to have friendly channel listing and be able to click the
-channels with mouse? That is why you installed perl and gpm (you might need to
+channels with mouse? That is why you installed perl and gpm (you might
-`sudo systemctl start gpm` or whatever init system you use).
+need to `sudo systemctl start gpm` or whatever init system you use).
 
 1. `/script install buffers.pl`
 2. `/mouse enable`
 
-Now you should see bar with the core buffer (`weechat`), server buffers merged
+Now you should see bar with the core buffer (`weechat`), server buffers
-to it (`liberachat`) and `#distribution`. If mouse doesn't work, you can
+merged to it (`liberachat`) and `#distribution`. If mouse doesn't work, you
-`/buffer X` where X is the number to move. For moving between merged buffers
+can `/buffer X` where X is the number to move. For moving between merged
-move to the buffer and press Ctrl + x.
+buffers move to the buffer and press Ctrl + x.
 
-And the last thing, if you need to see just plain lines without sidebars or
+And the last thing, if you need to see just plain lines without
-anything, press `alt + l` (`alt` can be replaced with `esc`).
+sidebars or anything, press `alt + l` (`alt` can be replaced with `esc`).
 
 ## pastebinit
 
-You are often wanted to pastebin something which can be difficult without GUI.
+You are often wanted to pastebin something which can be difficult without
-Luckily there is pastebinit which you can use instead of typing everyting by
+GUI. Luckily there is pastebinit which you can use instead of typing
-hand.
+everyting by hand.
 
 Usage:
 
 - `pastebinit file.txt` to pastebin the content of `file.txt`
 - `dmesg | pastebinit` to pastebin output of `dmesg`
 
-Pastebinit replies by givig you address to the paste which you can then give to
+Pastebinit replies by givig you address to the paste which you can then
-IRC.
+give to IRC.
 
 Alternatives to pastebinit with some pastebins:
 
 - [ix.io](http://ix.io/): `command | curl -F 'f:1=<-' ix.io`
-- [sprunge.us](http://sprunge.us/):
+- [sprunge.us](http://sprunge.us/): `command | curl -F 'sprunge=<-' http://sprunge.us`
-  `command | curl -F 'sprunge=<-' http://sprunge.us`
 
 These also answer by giving you link to the paste.
 

blog/_posts/2016-03-14-autostart-tmux-weechat.md

@@ -8,11 +8,11 @@ redirect_from: /english/2016/03/14/autostart-tmux-weechat.html
 sitemap: false
 ---
 
-_This is another note-to-self post, but I think other people might also be
+_This is another note-to-self post, but I think other people might also
-wondering this._
+be wondering this._
 
-**THIS IS ENTIRELY UNTESTED UNTIL THE SHELL WHERE I AM USING THIS REBOOTS THE
+**THIS IS ENTIRELY UNTESTED UNTIL THE SHELL WHERE I AM USING THIS REBOOTS
-NEXT TIME!**
+THE NEXT TIME!**
 
 ```cron
 ## Environment
@@ -28,10 +28,11 @@ TZ=Europe/Helsinki
 ```
 
 - `@reboot` = tell cron to do this on reboot
-- `sleep 500` = the shell where I intent to use this primarily is using NFS and
+- `sleep 500` = the shell where I intent to use this primarily is using NFS
-  I think it's reasonable to expect everything to be mounted in five minutes.
+  and I think it's reasonable to expect everything to be mounted in five
+  minutes.
 - `tmux -2u" = force enable 256 colors & UTF-8
 - `new-session -s auto -d` = start a new session with name `auto` (as in
   automatically started) and detach it
-- `tmux send -t auto weechat ENTER` type `weechat` to tmux session named auto
+- `tmux send -t auto weechat ENTER` type `weechat` to tmux session named
-  and press ENTER to execute it.
+  auto and press ENTER to execute it.

blog/_posts/2016-03-27-puhelimet-kellojen-siirto-pysyvasti.md

@@ -25,33 +25,36 @@ pysyvästi, mutta kirjoittelen siitä nyt kuitenkin._
 Kaikki luultavasti tietävät, että puhelimet siirtelevät kelloja
 aikavyöhyketietokannan mukaan, kuten myös tietokoneet.
 
-Jos kelloja siirrettäisiin pysyvästi, aikavyöhyketietokanta pitäisi päivittää
+Jos kelloja siirrettäisiin pysyvästi, aikavyöhyketietokanta pitäisi
-puhelimista tai ne jatkaisivat kellojen siirtelyä samoina päivinä, kuin nytkin.
+päivittää puhelimista tai ne jatkaisivat kellojen siirtelyä samoina
+päivinä, kuin nytkin.
 
 Ideaalitapauksessa kaikki laitevalmistajat päivittäisivät
-aikavyöhyketietokannat, mutta tämä ei tapahdu suurimmalla osasta puhelimista.
+aikavyöhyketietokannat, mutta tämä ei tapahdu suurimmalla osasta
+puhelimista.
 
-Tämä ongelma on kuitenkin helppoa ratkaista, koska mikäli siirtyisimme pysyvästi
+Tämä ongelma on kuitenkin helppoa ratkaista, koska mikäli siirtyisimme
-Keski-Euroopan aikaan, kelloja ei enää siirrettäisi ja se olisi niinkin helppoa
+pysyvästi Keski-Euroopan aikaan, kelloja ei enää siirrettäisi ja se olisi
-kuin poistaa asetuksista automaattinen kellojen siirto käytöstä ja asettaa aika
+niinkin helppoa kuin poistaa asetuksista automaattinen kellojen siirto
-itse.
+käytöstä ja asettaa aika itse.
 
-Android-laitteiden, jotka ovat suurin ongelma päivitysten suhteen, on myös kaksi
+Android-laitteiden, jotka ovat suurin ongelma päivitysten suhteen, on myös
-muutakin vaihtoehtoa: aikavyöhyketietokannan päivittäminen itse (_TimeZone Fixer
+kaksi muutakin vaihtoehtoa: aikavyöhyketietokannan päivittäminen itse
-(ROOT)_) tai ulkoisen aikavyöhyketietokannan lataaminen.
+(_TimeZone Fixer (ROOT)_) tai ulkoisen aikavyöhyketietokannan lataaminen.
 
-TimeZone Fixer (ROOT)in tapauksessa puhelimeene täytyy olla pääkäyttäjäoikeudet,
+TimeZone Fixer (ROOT)in tapauksessa puhelimeene täytyy olla
-ja sen on sanottu joissakin tapauksessa sekoittavan puhelimen käyttöjärjestelmän
+pääkäyttäjäoikeudet, ja sen on sanottu joissakin tapauksessa sekoittavan
-niin että se on täytynyt asentaa uudelleen. Tällä tavalla puhelin kuitenkin
+puhelimen käyttöjärjestelmän niin että se on täytynyt asentaa uudelleen.
-jatkaa normaalisti toimintaa ulkomailla mukaanlukien maat, jotka ovat vaihtaneet
+Tällä tavalla puhelin kuitenkin jatkaa normaalisti toimintaa ulkomailla
-aikavyöhykettä pysyvästi puhelimen aikavyöhyketietokannan tietämättä.
+mukaanlukien maat, jotka ovat vaihtaneet aikavyöhykettä pysyvästi
+puhelimen aikavyöhyketietokannan tietämättä.
 
 Ulkoisella aikavyöhyketietokannalla taas tarkoitan esimerkiksi
 _ClockSync_-sovellusta, joka päivittää laitteen ajan käyttäen internetin
-NTP-palvelimia) jolle on saatavilla oma aikavyöhyketietokantansa, jota
+NTP-palvelimia) jolle on saatavilla oma aikavyöhyketietokantansa,
-käytettäessä laitteen omasta aikavyöhyketietokannasta ei välitetä. Haittapuolena
+jota käytettäessä laitteen omasta aikavyöhyketietokannasta ei
-tosin aikavyöhyke täytyy asettaa ClockSyncin asetuksista käsin ja vaihtaa aina
+välitetä. Haittapuolena tosin aikavyöhyke täytyy asettaa ClockSyncin
-esimerkiksi ulkomaille mennessä.
+asetuksista käsin ja vaihtaa aina esimerkiksi ulkomaille mennessä.
 
 Linkkejä:
 

blog/_posts/2016-09-24-on-facebook.md

@@ -8,28 +8,29 @@ redirect_from: /english/2016/09/24/on-facebook.html
 sitemap: false
 ---
 
-_My wellbeing is more imporant than whatever you do at SOME and I reserve the
+_My wellbeing is more imporant than whatever you do at SOME and I reserve
-right to ignore you._
+the right to ignore you._
 
-I have had my Facebook deactivated for 24 days. However I have started missing
+I have had my Facebook deactivated for 24 days. However I have started
-events (as you must be at Facebook to know what is happening) and Nearby friends
+missing events (as you must be at Facebook to know what is happening)
-(good luck getting people to other solutions).
+and Nearby friends (good luck getting people to other solutions).
 
-During this time I have been mainly at Twitter and Google+ and in the later I
+During this time I have been mainly at Twitter and Google+ and in the later
-especially like the collections feature which allows me to specify which larger
+I especially like the collections feature which allows me to specify which
-subject my message is related to. I think I will continue using them primarily
+larger subject my message is related to. I think I will continue using them
-(even if I should use Diaspora\*).
+primarily (even if I should use Diaspora\*).
 
-I originally left Facebook as it was taking too much of my time in form of idle
+I originally left Facebook as it was taking too much of my time in form of
-newsfeed reading and notifications (which I gathered too much from all kinds of
+idle newsfeed reading and notifications (which I gathered too much from
-groups and people I know IRL (_in real life_) and I just don't like them.
+all kinds of groups and people I know IRL (_in real life_) and I just
+don't like them.
 
-Now I am returning after I have writing this and as I said on top, I am going to
+Now I am returning after I have writing this and as I said on top, I am
-clear notifications aggressively and I will be ignoring you unless there is an
+going to clear notifications aggressively and I will be ignoring you
-emergency in which case you should send me a message and I might take a look at
+unless there is an emergency in which case you should send me a message
-whatever it is. It might mean not reading your posts or newsfeed or replying or
+and I might take a look at whatever it is. It might mean not reading
-even liking your comments, as I care more about my wellbeing than whatever noise
+your posts or newsfeed or replying or even liking your comments, as
-you cause burneding me.
+I care more about my wellbeing than whatever noise you cause burneding me.
 
-Am I selfish? Note that I am not even obligated to write this post, I just felt
+Am I selfish? Note that I am not even obligated to write this post, I
-like writing this.
+just felt like writing this.

blog/_posts/2017-04-18-tanssitunti.md

@@ -8,40 +8,42 @@ redirect_from: /finnish/2017/04/18/tanssitunti.html
 published: false
 ---
 
-_Minusta tuntuu, että tästä pitäisi kirjoittaa nyt ja koska git/blogi ei ole
+_Minusta tuntuu, että tästä pitäisi kirjoittaa nyt ja koska git/blogi ei
-tässä ja nyt, vuodatuskanava kelpaa._
+ole tässä ja nyt, vuodatuskanava kelpaa._
 
 _Lisätty blogiin muokkaamattomana alkuperäisellä kirjoituspäivämäärällä
 2017-04-30._
 
-Kotkan Keskuskoulu joskus syystalvella. On pakollinen tanssitunti, mahdollisesti
+Kotkan Keskuskoulu joskus syystalvella. On pakollinen tanssitunti,
-senhetkiseen opetussuunnitelmaan perustuen.
+mahdollisesti senhetkiseen opetussuunnitelmaan perustuen.
 
-En ole kiusaamisesta johtuen liikuntatuntien ystävä, mutta nämä tunnit olisivat
+En ole kiusaamisesta johtuen liikuntatuntien ystävä, mutta nämä tunnit
-mahdollisesti voineet olla siedettäviä ellei niistä tulisi traumaattinen
+olisivat mahdollisesti voineet olla siedettäviä ellei niistä tulisi
-kokemus, joka syöpyy mieleen yksityiskohtaisesti muun päivän unohduttua.
+traumaattinen kokemus, joka syöpyy mieleen yksityiskohtaisesti muun päivän
+unohduttua.
 
 Mitälie tanssia varten täytyy aloittaa ottamalla toista, olisikohan ollut
-pakotetusti tyttö-poika parit, kädestä ja kukaan ei halua koskea minuun. Tätä
+pakotetusti tyttö-poika parit, kädestä ja kukaan ei halua koskea minuun.
-jatkuu pari kierrosta, jonka jälkeen luovutan edes yrittämisen ja minut
+Tätä jatkuu pari kierrosta, jonka jälkeen luovutan edes yrittämisen ja
-siirretään sivuun liikuntavälineiden taakse nurkkaan.
+minut siirretään sivuun liikuntavälineiden taakse nurkkaan.
 
-Vietän lopputunnin katsoen ikkunasta ulos harmaata pilvistä taivasta ajatellen
+Vietän lopputunnin katsoen ikkunasta ulos harmaata pilvistä taivasta
-miten kaikki olisi paremmin jos vain tappaisin itseni. Näidenkään ajatusten
+ajatellen miten kaikki olisi paremmin jos vain tappaisin itseni.
-kanssa en saa olla rauhassa vaan kaksi tyttöä tulee kyselemään "ootko autisti"
+Näidenkään ajatusten kanssa en saa olla rauhassa vaan kaksi tyttöä tulee
-ja yritän olla reagoimatta mitenkään olon pahentuessa lisää.
+kyselemään "ootko autisti" ja yritän olla reagoimatta mitenkään olon
+pahentuessa lisää.
 
 Opettajat taas eivät tätä koulua käydessäni koskaan kommentoi tapausta.
-Myöhemmin lopetan kouluun menemisen, aloitan lukuisat itsemurhayritykset ja
+Myöhemmin lopetan kouluun menemisen, aloitan lukuisat itsemurhayritykset
-kuulen olevani ilmiselvästi Asperger-tapaus ja että minusta oli tutkittu
+ja kuulen olevani ilmiselvästi Asperger-tapaus ja että minusta oli
-jokaista autismin piirrettä erikseen suunnilleen lapsesta asti ajattelematta
+tutkittu jokaista autismin piirrettä erikseen suunnilleen lapsesta
-niitä yhdessä.
+asti ajattelematta niitä yhdessä.
 
 Lisää aiheesta:
 
-_Tästä osasta voisi tehdä Jekyll-ystävällisemmän (blogialusta) ja riippumattoman
+_Tästä osasta voisi tehdä Jekyll-ystävällisemmän (blogialusta) ja
-muunmoassa domainista ja polusta, mutta nyt en jaksa vaan siirryn
+riippumattoman muunmoassa domainista ja polusta, mutta nyt en jaksa vaan
-ajankohtaisempaan blogaukseen._
+siirryn ajankohtaisempaan blogaukseen._
 
 - https://mikaela.info/blog/english/2015/06/16/feelings.html
 - https://mikaela.info/about#life

blog/_posts/2017-04-30-post-trans.md

@@ -8,177 +8,181 @@ redirect_from: /english/2017/04/30/post-trans.html
 robots: noai
 ---
 
-_A little confusing flood of what my fingers brought up on the last past year
+_A little confusing flood of what my fingers brought up on the last past
-and a little more._
+year and a little more._
 
 ---
 
 **_CONTENT WARNINGs: NSFW, genitalia, surgery descriptions_**
 
-I don't have any well-laid plan how to type this post, but lets see what comes
+I don't have any well-laid plan how to type this post, but lets see what
-out of my fingers. By the way, orchiectomy is surgical removal of testicles,
+comes out of my fingers. By the way, orchiectomy is surgical removal of
-even if it's fun to talk about it without explaining it and have people searxing
+testicles, even if it's fun to talk about it without explaining it and have
-what it is...
+people searxing what it is...
 
 I don't usually discuss my genitalia, but I feel like I have to make an
-exception for this post as the majority of trans people only talk about the full
+exception for this post as the majority of trans people only talk about
-genital surgery ("gender-reassignment surgery", but I tend to take the Finnish
+the full genital surgery ("gender-reassignment surgery", but I tend to take
-word and translate it into English, many people don't know that orchiectomy is
+the Finnish word and translate it into English, many people don't know
-an option.
+that orchiectomy is an option.
 
-_Dear reader, for this part of this post I am assuming that you are trans as I
+_Dear reader, for this part of this post I am assuming that you are trans
-am typing this for you in hope that it will help you, not for anyone reading
+as I am typing this for you in hope that it will help you, not for anyone
-this only, because they are curious on what I have between my legs or what trans
+reading this only, because they are curious on what I have between my
-people have between their legs._
+legs or what trans people have between their legs._
 
-First question would probably be how did I end up to orchiectomy instead of the
+First question would probably be how did I end up to orchiectomy instead of
-full genital surgery.
+the full genital surgery.
 
-If you have been reading this blog, you know that I was having very bad time
+If you have been reading this blog, you know that I was having very bad
-mentally suffering from depression, AvPD (it was confirmed and I healed, but
+time mentally suffering from depression, AvPD (it was confirmed and I
-that later in this post), anxiety and everything. Thus everyone thought that I
+healed, but that later in this post), anxiety and everything. Thus everyone
-wouldn't have mental resources for the full genital surgery.
+thought that I wouldn't have mental resources for the full genital surgery.
 
-If I recall correctly, I was complaining about this at
+If I recall correctly, I was complaining about this at [Transtukipiste](https://transtukipiste.fi/in-english/)
-[Transtukipiste](https://transtukipiste.fi/in-english/) (Trans support point,
+(Trans support point, runs peer support groups and supports trans people
-runs peer support groups and supports trans people otherwise) coffee evening and
+otherwise) coffee evening and somehow I ended up wondering if I should
-somehow I ended up wondering if I should try getting orchiectomy and someone
+try getting orchiectomy and someone encouraged me to ask. Could this have
-encouraged me to ask. Could this have even been the last day of 2015...
+even been the last day of 2015...
 
 Knowing that orchiectomy doesn't prevent having full genital surgery later
-(confirm from your doctor though, I only know this is the case in Finland as
+(confirm from your doctor though, I only know this is the case in Finland
-long as you repeat to your doctor that you want to keep the option open), I
+as long as you repeat to your doctor that you want to keep the option
-asked about the doctor who asked my therapist and (as this post is not about the
+open), I asked about the doctor who asked my therapist and (as this post is
-process) skipping things a little, I finally got permission for it.
+not about the process) skipping things a little, I finally got permission
+for it.
 
-At some point before the surgery I started sleeping naked and started becoming
+At some point before the surgery I started sleeping naked and started becoming very
-very comfortable with my body and I started feeling that I might be happy with
+comfortable with my body and I started feeling that I might be happy with
-just orchiectomy, but I decided that I would think about it after the surgery if
+just orchiectomy, but I decided that I would think about it after the
-I started feeling like it.
+surgery if I started feeling like it.
 
 ---
 
 **_Same content warnings, except that only now is actually the surgery._**
 
-On evening of October 17th I took the last Androcur. It's the male-hormone
+On evening of October 17th I took the last Androcur. It's the
-blocker that all trans people are prescribed in Finland by default and the
+male-hormone blocker that all trans people are prescribed in Finland by
-medicine that appears to make almost everyone depressed and I was using
+default and the medicine that appears to make almost everyone depressed
-half-dosage as it's strong and if you have read my old posts, you have some kind
+and I was using half-dosage as it's strong and if you have read my old
-of image on how much I suffered it.
+posts, you have some kind of image on how much I suffered it.
 
-On the next morning I was at Peijas hospital and had the orchiectomy. I remember
+On the next morning I was at Peijas hospital and had the orchiectomy. I
-being there long time before the appointment and getting a little lost inside
+remember being there long time before the appointment and getting a little
-the hospital, but when I found there, everything happened easily and I spend
+lost inside the hospital, but when I found there, everything happened
-there only a few hours. And there was no depression anymore.
+easily and I spend there only a few hours. And there was no depression
+anymore.
 
-The recovery period should have been two weeks, but the wound opened so it took
+The recovery period should have been two weeks, but the wound opened so
-a little longer, but that isn't what this post is about either.
+it took a little longer, but that isn't what this post is about either.
 
 ---
 
 What this post is about is how I feel.
 
-I have finished the trans process. I have a penis and empty testicle sack that
+I have finished the trans process. I have a penis and empty testicle sack
-has decided to rise up so I don't even see it in the mirror.
+that has decided to rise up so I don't even see it in the mirror.
 
-I don't feel dysphoria or have any issues looking at my own body, no discomfort
+I don't feel dysphoria or have any issues looking at my own body, no
-or anything, I am me. I transitioned for me, not other people and if my
+discomfort or anything, I am me. I transitioned for me, not other
-genitalia is something people don't expect, that isn't my problem.
+people and if my genitalia is something people don't expect, that isn't
+my problem.
 
 I can use dirtier toilets easily as I don't have to sit down, it doesn't
-necessary even have to be a toilet and in case there is a long queue, I can also
+necessary even have to be a toilet and in case there is a long queue, I
-use urinal if I need to.
+can also use urinal if I need to.
 
-Public saunas and changing areas etc.? I am a woman regardless of what people
+Public saunas and changing areas etc.? I am a woman regardless of what
-may think about my body parts which aren't their business. I haven't yet visited
+people may think about my body parts which aren't their business. I haven't
-any of those, but as I said whatever people think isn't my problem. I actually
+yet visited any of those, but as I said whatever people think isn't my
-even have a temptation to visit such areas, just because my body is "sinful" and
+problem. I actually even have a temptation to visit such areas, just
-everything, according to whatever you wish to call cis beauty standards.
+because my body is "sinful" and everything, according to whatever you wish
-<!-- This is possibly a little kinky. -->
+to call cis beauty standards. <!-- This is possibly a little kinky. -->
 
-How do I know that I don't need the full genital surgery? I haven't even thought
+How do I know that I don't need the full genital surgery? I haven't even
-about it recently and I have no feelings of wrongness or thoughts or anything
+thought about it recently and I have no feelings of wrongness or thoughts
-pointing that I would need it. I even sometimes forget that I am not cis or that
+or anything pointing that I would need it. I even sometimes forget that
-my body isn't "normal". _Normal doesn't exist by the way._
+I am not cis or that my body isn't "normal". _Normal doesn't exist by
+the way._
 
-Trans people are also often worried about erections, based on my experience and
+Trans people are also often worried about erections, based on my
-what I have heard, I think it depends entirely on your relationship with your
+experience and what I have heard, I think it depends entirely on your
-body. I have them sometimes as I am a human and asexuality doesn't close them
+relationship with your body. I have them sometimes as I am a human
-out.
+and asexuality doesn't close them out.
 
-I feel indifferent about them, but that might be connected to me being asexual
+I feel indifferent about them, but that might be connected to me
-or also being sex-repulsed which to me means that I feel repulsed seeing
+being asexual or also being sex-repulsed which to me means that
-erections or bodily fluids.
+I feel repulsed seeing erections or bodily fluids.
 
 ---
 
 _Should I content warning about Esperanto?_
 
-After the surgery I have heard that people often have crisis on what to do after
+After the surgery I have heard that people often have crisis on what to do
-transition. I solved that by becoming insane :D
+after transition. I solved that by becoming insane :D
 
-I read about Esperanto, which is the most spoken artificial language in the
+I read about Esperanto, which is the most spoken artificial language in
-world and then I just had to learn it. I did Duolingo and associated Memrise
+the world and then I just had to learn it. I did Duolingo and associated
-course for three months ... <em lang="eo">kaj mi parolas Esperanton!</em>
+Memrise course for three months ... <em lang="eo">kaj mi parolas
+Esperanton!</em>
 
-Thanks to online-friend I also happened to read about Buddhism and it made a lot
+Thanks to online-friend I also happened to read about Buddhism and it made
-more sense than Christianity that was forced on me ever did. It's more on
+a lot more sense than Christianity that was forced on me ever did. It's
-experiencing things than believing blindly and even Buddha said _don't believe
+more on experiencing things than believing blindly and even Buddha said
-me, experience it by yourself_ and I started trying to use their methods (you
+_don't believe me, experience it by yourself_ and I started trying to
-may have heard _Mindfulness_) or maybe it would be more accurate to say that I
+use their methods (you may have heard _Mindfulness_) or maybe it would be
-started practicing it.
+more accurate to say that I started practicing it.
 
-If individuality is an illusion, how could I be worse than everyone else? If
+If individuality is an illusion, how could I be worse than everyone else?
-past and future aren't here _now_ and I am finally "given" the permission to let
+If past and future aren't here _now_ and I am finally "given" the
-go of them, why should I be stuck in the past? And the future won't be like I
+permission to let go of them, why should I be stuck in the past? And the
-think so why be stuck in imaginary future on my worseness?
+future won't be like I think so why be stuck in imaginary future on my
+worseness?
 
-The books I read are _How To Be An Adult in Relationships_ by _David Richo_
+The books I read are _How To Be An Adult in Relationships_ by
-(thanks to
+_David Richo_ (thanks to [attachment styles - a primer at the dirty normal](https://www.thedirtynormal.com/post/2010/06/21/attachment-styles-a-primer/)
-[attachment styles - a primer at the dirty normal](https://www.thedirtynormal.com/post/2010/06/21/attachment-styles-a-primer/)
 which recommends a different book with similar name, so happy accident
 happened), _The Way Things Are_ by _Lama Ole Nydahl_ and _Living Dharma_ by
-_Lama Yeshe Losaf_. I am also reading more books about the subject, those were
+_Lama Yeshe Losaf_. I am also reading more books about the subject, those
-about Diamond Way Buddhism and now I am reading about Zen (_Everyday Zen_ by
+were about Diamond Way Buddhism and now I am reading about Zen
-_Charlotte Joko Beck_ (this seems to be for Zen what _Living Dharma_ is for
+(_Everyday Zen_ by _Charlotte Joko Beck_ (this seems to be for Zen what
-Diamond Way.)
+_Living Dharma_ is for Diamond Way.)
 
 _No one is perfect, including you, everyone makes mistake._
 
 _Everyone is as capable to hurting you as making you good._
 
-So I have learned Esperanto and according to my mother <em lang="eo">mi diras
+So I have learned Esperanto and according to my mother <em lang="eo">mi diras Esperanto
-Esperanto duono de tempo</em> and came to religion, can I be more crazy?
+duono de tempo</em> and came to religion, can I be more crazy?
 
-Esperanto gave me self-esteem with my capability of learning languages so I
+Esperanto gave me self-esteem with my capability of learning languages so
-started learning
+I started learning
 
 - Swedish, which I regret not learning at junior high school, but I had
-  dysphoria, bullying, suicidality, depression and everything and I think I hear
+  dysphoria, bullying, suicidality, depression and everything and I think
-  it in Helsinki daily and it's also official language in Finland.
+  I hear it in Helsinki daily and it's also official language in Finland.
-- Spanish as <em lang="eo">mi amas Esperanton</em>, it looks so much like
+- Spanish as <em lang="eo">mi amas Esperanton</em>, it looks so much like Esperanto so
-  Esperanto so I feel I almost understand everything written in it and it's the
+  I feel I almost understand everything written in it and it's the second
-  second most spoken language in the world, so I have to learn it.
+  most spoken language in the world, so I have to learn it.
 - Lojban thanks to the friend mentioned earlier.
 
-<em lang="eo">Do mi nun parolas la finnan, la anglan, Esperanton kaj mi lernas
+<em lang="eo">Do mi nun parolas la finnan, la anglan, Esperanton kaj mi lernas hispanan,
-hispanan, la svennan kaj la lojbanon.</em> Entirely sane.
+la svennan kaj la lojbanon.</em> Entirely sane.
 
 ---
 
-And life otherwise, I haven't gotten to continue studying yet, which I think was
+And life otherwise, I haven't gotten to continue studying yet, which I
-mentioned as a goal in the other posts, but I just wasn't able to. I have
+think was mentioned as a goal in the other posts, but I just wasn't able
-applied to four places and I think I failed one entrance examination, but that
+to. I have applied to four places and I think I failed one entrance
-is three left.
+examination, but that is three left.
 
-I was also local election candidate for Helsinki Pirates (part of Pirate Party
+I was also local election candidate for Helsinki Pirates (part of Pirate
-Finland) and I got surprisingly many votes (20 IIRC) and collective votes helped
+Party Finland) and I got surprisingly many votes (20 IIRC) and collective
-us get one candidate through to the Helsinki municipal council and we also got
+votes helped us get one candidate through to the Helsinki municipal
-some other seats and backup seats.
+council and we also got some other seats and backup seats.
 
-I think I have finished typing this blog post now. However I was supposed to
+I think I have finished typing this blog post now. However I was supposed
-start this with an apology about some of my old blog posts (which I am not
+to start this with an apology about some of my old blog posts (which I am not censoring as I don't feel like that would be the right thing either),
-censoring as I don't feel like that would be the right thing either), so I
+so I apologise about them now. I don't know if the text says it, but I
-apologise about them now. I don't know if the text says it, but I feel like I
+feel like I have improved as a person a lot in addition to getting over
-have improved as a person a lot in addition to getting over mental health issues
+mental health issues and finishing the trans process.
-and finishing the trans process.

blog/_posts/2017-09-19-teleirc-instead-of-telematrix.md

@@ -13,30 +13,31 @@ published: false
 
 _FAQ at SailfishOS Fan Club: why everything was made worse for Matrix users?_
 
-I am not sure which order should I put the issues with TeleMatrix in and the
+I am not sure which order should I put the issues with TeleMatrix in and
-first issue is actually multiple interlinked issues and I am just trying to open
+the first issue is actually multiple interlinked issues and I am just
-it somehow.
+trying to open it somehow.
 
 ---
 
-Issue 1: Matrix display names are based on Telegram real name and not username.
+Issue 1: Matrix display names are based on Telegram real name and not
-In practive this means that Matrix (and IRC) users won't know what is the
+username. In practive this means that Matrix (and IRC) users won't know
-username to use in order to ping a Telegram user.
+what is the username to use in order to ping a Telegram user.
 
-This was workaroundable by setting Telegram real name into `@username`, but the
+This was workaroundable by setting Telegram real name into `@username`, but
-new Riot Web mentions broke this.
+the new Riot Web mentions broke this.
 
-And as display names at Telegram don't have any limitations (unlike usernames),
+And as display names at Telegram don't have any limitations (unlike
-everyone who had only UTF-8 characters as their "real name" at Telegram became
+usernames), everyone who had only UTF-8 characters as their "real name" at
-"Telegram" at IRC and as there were 5 users named Telegram, the IRC bridge got
+Telegram became "Telegram" at IRC and as there were 5 users named Telegram,
-easily confused on who is who and lost the connection between Matrix and IRC
+the IRC bridge got easily confused on who is who and lost the connection
-users resulting into the IRC bridge repeating everything the Matrix user said
+between Matrix and IRC users resulting into the IRC bridge repeating
-resulting into duplicated messages at Matrix and Telegram.
+everything the Matrix user said resulting into duplicated messages at
+Matrix and Telegram.
 
 As requested, I workarounded this by setting quiet on `#jollafanclub` for
-`*Telegram*!*@*` preventing anyone whose username nickname included the word
+`*Telegram*!*@*` preventing anyone whose username nickname included the
-Telegram from saying anything. Thus IRC users were unable to see parts of
+word Telegram from saying anything. Thus IRC users were unable to see
-discussion with at least 5 users missing.
+parts of discussion with at least 5 users missing.
 
 - [Telematrix#28: Replying from Matrix to Telegram doesn't ping the user](https://github.com/SijmenSchoon/telematrix/issues/28)
 - [Telematrix#33: Allow configuring bridged user display name format](https://github.com/SijmenSchoon/telematrix/issues/33)
@@ -50,85 +51,83 @@ discussion with at least 5 users missing.
 Issue 2: When Telegram users replied to messages, Telematrix sent the whole
 original message to Matrix/IRC.
 
-For Matrix users this wasn't an issue, but the Matrix IRC bridge pastebins every
+For Matrix users this wasn't an issue, but the Matrix IRC bridge pastebins
-message that goes over three lines in order to avoid angering IRC ops and
+every message that goes over three lines in order to avoid angering IRC ops
-serverside antispam measures.
+and serverside antispam measures.
 
 For example normal message from Telegram user would become this at IRC.
 
-> 2017-09-19 16:30:09+0300 \* @Mikaela- sent a long message:
+> 2017-09-19 16:30:09+0300 \* @Mikaela- sent a long message: Mikaela-\_2017-09-19_13:30:08.txt <https://matrix.org/_matrix/media/v1/download/matrix.org/PuaTAbMsMmuboFHpHMuLBruj>
-> Mikaela-\_2017-09-19_13:30:08.txt
-> <https://matrix.org/_matrix/media/v1/download/matrix.org/PuaTAbMsMmuboFHpHMuLBruj>
 
 _Where I said Telegram, I meant TeleMatrix, and only noticed this later._
 
-Telegram users often reply to each other and when half of the discussion is like
+Telegram users often reply to each other and when half of the discussion
-this and requires clicking all the time, IRC users simply cannot follow the
+is like this and requires clicking all the time, IRC users simply cannot
-discussion. For some reason I got the impression that Matrix users don't mind if
+follow the discussion. For some reason I got the impression that Matrix
-their messages get unreadable for IRC and Telegram users.
+users don't mind if their messages get unreadable for IRC and Telegram
+users.
 
-For comparsion, here is how TeleIRC with the current configuration looks like, a
+For comparsion, here is how TeleIRC with the current configuration looks
-little ugly, but no need to switch apps or click dozens of links.
+like, a little ugly, but no need to switch apps or click dozens of links.
 
 ```
 2017-09-19 16:28:03+0300 <#@M1kaela> Typing an example message for my blog post. This is the first line. … This is the second line. … This is the third line.
 2017-09-19 16:28:56+0300 <#@oldandwise> @@M1kaela [Typing an example message …], typing an example of reply for your blog,  … you haven't asked but i assumed it may be helpful.  … would it be?
 ```
 
-_I am using WeeChat script parse_relayed_msg.pl, normal users would see the
+_I am using WeeChat script parse_relayed_msg.pl, normal users would see
-message in the following format:_
+the message in the following format:_
 
 - `<T4> <@TelegramUserName> @@OriginalAuthor [Snippet of original message]`
 
-_The double @ is caused by setting username format in TeleIRC config.js to start
+_The double @ is caused by setting username format in TeleIRC config.js to
-with @ in order to remind users that the @ is necessary to ping Telegram users._
+start with @ in order to remind users that the @ is necessary to ping
+Telegram users._
 
-_This is technically not an issue in either associated project, so I cannot add
+_This is technically not an issue in either associated project, so I cannot
-issue links._
+add issue links._
 
 ---
 
 Minor(?) technical(?) issues:
 
-- Telegram users appear as separate IRC connections draining resources on both
+- Telegram users appear as separate IRC connections draining resources
-  matrix.org (running the bridge) and IRC server and freenode has expressed
+  on both matrix.org (running the bridge) and IRC server and freenode
-  being unhappy about idle connections. In case of SailfishOS Fan Club this
+  has expressed being unhappy about idle connections. In case of SailfishOS
-  meant 300 additional connections.
+  Fan Club this meant 300 additional connections.
-  - The Telegram users also cannot be sent private messages and all Matrix/IRC
+  - The Telegram users also cannot be sent private messages and all
-    users appear as single bot at Telegram, so I don't think it's worth it.
+    Matrix/IRC users appear as single bot at Telegram, so I don't think
-- TeleMatrix isn't currently maintained (to be honest, TeleIRC isn't a lot more
+    it's worth it.
-  maintained, but it doesn't have this many/serious issues).
+- TeleMatrix isn't currently maintained (to be honest, TeleIRC isn't a lot
+  more maintained, but it doesn't have this many/serious issues).
 
 Links:
 
 - Freenode's unhappiness:
   - [matrix-appservice-irc#388: Please can we regularly and automatically reap idle-presence connections on all networks](https://github.com/matrix-org/matrix-appservice-irc/issues/388)
   - [matrix-appservice-irc#450: Channels on IRC that contain only matrix users should not be bridged to IRC](https://github.com/matrix-org/matrix-appservice-irc/issues/450)
-- BONUS:
+- BONUS: [TeleMatrix sends all joins/parts to Telegram anoying users](https://github.com/SijmenSchoon/telematrix/issues/13)
-  [TeleMatrix sends all joins/parts to Telegram anoying users](https://github.com/SijmenSchoon/telematrix/issues/13)
+  - tchncs.de instance is running modified code with this behaviour
-  - tchncs.de instance is running modified code with this behaviour disabled, I
+    disabled, I had originally forgotten it from this post.
-    had originally forgotten it from this post.
 
 ---
 
-Proposed solution: Changing the middle protocol from IRC to Telegram as Matrix
+Proposed solution: Changing the middle protocol from IRC to Telegram as
-didn't work as can be read from this article, so everyone is happy.
+Matrix didn't work as can be read from this article, so everyone is happy.
 
-Matrix users could use TeleMatrix and IRC users TeleIRC so Matrix users wouldn't
+Matrix users could use TeleMatrix and IRC users TeleIRC so Matrix users
-suffer any worse experience than before and I wouldn't need to type this
+wouldn't suffer any worse experience than before and I wouldn't need to
-article.
+type this article.
 
-**ISSUE: Telegram bots won't see messages from other bots**, so Telegram would
+**ISSUE: Telegram bots won't see messages from other bots**, so Telegram
-see everyone and IRC and Matrix wouldn't see each other.
+would see everyone and IRC and Matrix wouldn't see each other.
 
-> 2. Bot admins and bots with privacy mode disabled will receive all messages
+> 2. Bot admins and bots with privacy mode disabled will receive all
->    except messages sent by other bots.
+>    messages except messages sent by other bots.
 
-> Bots talking to each other could potentially get stuck in unwelcome loops. To
+> Bots talking to each other could potentially get stuck in unwelcome
-> avoid this, we decided that bots will not be able to see messages from other
+> loops. To avoid this, we decided that bots will not be able to see
-> bots regardless of mode.
+> messages from other bots regardless of mode.
 
-via
+via [Telegram Bots FAQ](https://core.telegram.org/bots/faq#what-messages-will-my-bot-get) "What messages will my bot get?" and "Why doesn't my bot see
-[Telegram Bots FAQ](https://core.telegram.org/bots/faq#what-messages-will-my-bot-get)
+messages from other bots?" on 2017-09-19.
-"What messages will my bot get?" and "Why doesn't my bot see messages from other
-bots?" on 2017-09-19.

blog/_posts/2017-09-29-as-hsp-sensory-stimulus-stress.md

@@ -8,22 +8,22 @@ redirect_from: /english/2017/09/29/as-hsp-sensory-stimulus-stress.html
 sitemap: false
 ---
 
-_Sensory stimulus stress (aistiärsykestressi) is a word that you hear from me
+_Sensory stimulus stress (aistiärsykestressi) is a word that you hear from
-often if we are any closer. I have been planning typing this for some time now,
+me often if we are any closer. I have been planning typing this for some
-so people would hopefully understand me better._
+time now, so people would hopefully understand me better._
 
-I have no idea how I should type this post, so I will just go to how I feel like
+I have no idea how I should type this post, so I will just go to how I feel
-typing this, so I will start from my events of 19th, continue to 20th and jump
+like typing this, so I will start from my events of 19th, continue to 20th
-to today before trying to explain what is sensory stimulus stress without
+and jump to today before trying to explain what is sensory stimulus stress
-examples.
+without examples.
 
 I guess that before I do that, I should explain the beginning of the title.
 
-I am an autist (I have diagnosed Asperger's syndrome) and a highly sensitive
+I am an autist (I have diagnosed Asperger's syndrome) and a highly
-person (HSP) and while over (and under) sensitive senses are associated mainly
+sensitive person (HSP) and while over (and under) sensitive senses are
-with autism, they are also part of high sensitivity and I cannot separate what
+associated mainly with autism, they are also part of high sensitivity
-causes which trait for me. They have some overlap and some conflicts that are
+and I cannot separate what causes which trait for me. They have some
-interesting to me.
+overlap and some conflicts that are interesting to me.
 
 _UPDATE: Asperger's Syndrome is being removed from the diagnostics manuals
 leaving only Autism Spectrum Disorder._
@@ -33,200 +33,209 @@ leaving only Autism Spectrum Disorder._
 2017-09-19
 
 There isn't much to say of that day, I had a dental operation under local
-anesthesia. In the evening I was somewhat ill and had to disable some lights and
+anesthesia. In the evening I was somewhat ill and had to disable some
-even then fridge light hurt my eyes. Interestingly after vomiting my senses were
+lights and even then fridge light hurt my eyes. Interestingly after
-like they usually are.
+vomiting my senses were like they usually are.
 
 2017-09-20
 
-Regardless of being ill on the previous night, I found myself from my politics
+Regardless of being ill on the previous night, I found myself from my
-hobby and agreed to be someone from Young Pirates at Metropolia University of
+politics hobby and agreed to be someone from Young Pirates at Metropolia
-Applied Sciences term starting sports party MetroSport.
+University of Applied Sciences term starting sports party MetroSport.
 
-I started by quickly visiting our office to fetch Pirate vests by taking a bus
+I started by quickly visiting our office to fetch Pirate vests by taking a
-and hopping onto metro. From there I continued unfamiliar route using [Moovit]
+bus and hopping onto metro. From there I continued unfamiliar route using
-to reach tram and then to bus stop where I would reach the bus taking me to
+[Moovit] to reach tram and then to bus stop where I would reach the bus
-Vantaa and the event.
+taking me to Vantaa and the event.
 
 [moovit]: https://moovitapp.com/
 
-Being a sports event it naturally happened at sports hall where I had to start
+Being a sports event it naturally happened at sports hall where I had to
-by wearing ear fillers and sun glasses as it was so loud, because of the amount
+start by wearing ear fillers and sun glasses as it was so loud, because
-of people and different music from multiple sources and there were bright
+of the amount of people and different music from multiple sources and there
-lights.
+were bright lights.
 
-I spent a few hours there with another Pirate activist before leaving for open
+I spent a few hours there with another Pirate activist before leaving for
-doors of Helsinki Pirates which later turned out to be a mistake.
+open doors of Helsinki Pirates which later turned out to be a mistake.
 
-We walked to train station from where I took a train and later a metro to the
+We walked to train station from where I took a train and later a metro to
-office again. At first there were only a few of us activists before other people
+the office again. At first there were only a few of us activists before
-started appearing and then we possibly had a record on the amount of new people
+other people started appearing and then we possibly had a record on the
-who were interested about the party.
+amount of new people who were interested about the party.
 
 I had had too much of draining events, so at some point I left quietly
-explaining to activist outside how I was leaving as I had had too much of
+explaining to activist outside how I was leaving as I had had too much
-sensory stimuluss stress and I possibly started crying at that point, I am not
+of sensory stimuluss stress and I possibly started crying at that point, I
-sure.
+am not sure.
 
-I am sure that I was crying when I encountered another activist going to the
+I am sure that I was crying when I encountered another activist going to
-open doors at metro station where I said the same things.
+the open doors at metro station where I said the same things.
 
 _I don't know how much it would be OK for me to say, so I am saying barely
-anything about the people involved. I don't know if anyone of them understood
+anything about the people involved. I don't know if anyone of them
-what I meant, but at home I thought more about finally typing this and wrote it
+understood what I meant, but at home I thought more about finally typing
-down onto a piece of paper._
+this and wrote it down onto a piece of paper._
 
 2017-09-29 (today)
 
-Last night I slept a little worse than usually and I have been tired and my
+Last night I slept a little worse than usually and I have been tired and
-senses more sensitive than usually, but not as sensitive as if I was ill.
+my senses more sensitive than usually, but not as sensitive as if I was
+ill.
 
-My mother was visiting me and that made me be affected by the world more than
+My mother was visiting me and that made me be affected by the world more
-usually.
+than usually.
 
-First I took a bus to the nearest _open_ metro station and went to Central
+First I took a bus to the nearest _open_ metro station and went to
-Railway Station to fetch her, we visited library and returned to my apartment.
+Central Railway Station to fetch her, we visited library and returned to
-Later we ate at nearby salad bar and I escorted her to tram stop where she
+my apartment. Later we ate at nearby salad bar and I escorted her to
-continued elsewhere with my grandmother.
+tram stop where she continued elsewhere with my grandmother.
 
-Returning home I had again had too much, this time I didn't cry, but I think
+Returning home I had again had too much, this time I didn't cry, but I
-panic attack was close as I was using a full bus which I reached through full
+think panic attack was close as I was using a full bus which I reached
-shopping centre that was having some sort of a shopping party.
+through full shopping centre that was having some sort of a shopping party.
 
-I survived by focusing on my breathing and listening to music with wireless
+I survived by focusing on my breathing and listening to music with
-earbud/microphone as it wasn't so long bus trip. And then it's typing this blog
+wireless earbud/microphone as it wasn't so long bus trip. And then it's
-with some distractions.
+typing this blog with some distractions.
 
 ---
 
-Now I have typed some sort of a introduction to this post and some events on
+Now I have typed some sort of a introduction to this post and some events
-three days, I think it's the time to say why, which I think might be the most
+on three days, I think it's the time to say why, which I think might
-difficult part of this post.
+be the most difficult part of this post.
 
 _I think I should disclaim that I am not a mental health professional or
-researcher or neurologist or anything (I do have vocational qualification on
+researcher or neurologist or anything (I do have vocational qualification
-business information technology though) and this is based on my lived experience
+on business information technology though) and this is based on my lived
-(even if I only heard of highly sensitive people this year and was told that I
+experience (even if I only heard of highly sensitive people this year and
-am one by my therapist) and what I have understood from talking with
+was told that I am one by my therapist) and what I have understood from
-professionals, reading books, watching documentaries etc._
+talking with professionals, reading books, watching documentaries etc._
 
-When I previously talked with my therapist on the subject, I explained that it's
+When I previously talked with my therapist on the subject, I explained that
-like there is a battery that is drained by sensory stimulus stress and breaking
+it's like there is a battery that is drained by sensory stimulus stress
-down crying is one sign of it being critically low and requiring recharge.
+and breaking down crying is one sign of it being critically low and
-Typing this I guess that panic attack might be short-circuiting the battery?
+requiring recharge. Typing this I guess that panic attack might be
+short-circuiting the battery?
 
-And now I finally get to the point (if I wasn't in the point all the time?),
+And now I finally get to the point (if I wasn't in the point all the
-what is that _sensory stimulus stress_? It's everything that is sensed,
+time?), what is that _sensory stimulus stress_? It's everything that is
-regardless of whether it's positive, neutral or negative. I think positive might
+sensed, regardless of whether it's positive, neutral or negative. I think
-drain the battery slower than negative would, but it will drain regardless.
+positive might drain the battery slower than negative would, but it will
+drain regardless.
 
-If you have any knowledge about autism, you probably know that people on the
+If you have any knowledge about autism, you probably know that people on
-spectrum need time to recover from social interactions. Do you know why? Yes,
+the spectrum need time to recover from social interactions. Do you know
-sensory stimulus stress is behind it too, hearing other people, hearing own
+why? Yes, sensory stimulus stress is behind it too, hearing other people,
-talking, background noise, looking anywhere, colours. Especially maintaining eye
+hearing own talking, background noise, looking anywhere, colours.
-contact is a good way of draining.
+Especially maintaining eye contact is a good way of draining.
 
-If I return to the first day/night that I talked about, I was ill, so my senses
+If I return to the first day/night that I talked about, I was ill, so my
-were a lot more sensitive than usually so even the fridge light hurt my eyes
+senses were a lot more sensitive than usually so even the fridge light
-while often I might not be mindful about it being there.
+hurt my eyes while often I might not be mindful about it being there.
 
 On the second day, there were the people, the buses, the trams, PA systems,
 escalators, metros, music (that I listened during transport to drain more
 slowly), lights and everything. As with illness, stress also causes faster
-draining and stress is easy to get by going into a new situation at new place
+draining and stress is easy to get by going into a new situation at new
-with new people and being hungry makes highly sensitive people horrible.
+place with new people and being hungry makes highly sensitive people
+horrible.
 
 On the third day, today, there were other people (naturally, I live in the
-capital of Finland), bus, escalators, metro, musician between central railway
+capital of Finland), bus, escalators, metro, musician between central
-station and the metro station, PA systems, talking with mother, grocery store
+railway station and the metro station, PA systems, talking with mother,
-noises, being at my apartment with mother having tea and talking, during lunch
+grocery store noises, being at my apartment with mother having tea and
-there was also some machine keeping noise etc.
+talking, during lunch there was also some machine keeping noise etc.
 
-I think this is the place for the _do you hear sounds that other people don't
+I think this is the place for the _do you hear sounds that other people
-hear_ joke. _Yes, I do, as my family is half-deaf and we have family joke on how
+don't hear_ joke. _Yes, I do, as my family is half-deaf and we have family
-I should share some of my hearing_ even if how good and how sensitive hearing is
+joke on how I should share some of my hearing_ even if how good and how
-are two separate things.
+sensitive hearing is are two separate things.
 
-I think this post is finished with the exception of one thing which I am not
+I think this post is finished with the exception of one thing which I am
-sure if I wish to type. However I feel that my typing finally started flowing
+not sure if I wish to type. However I feel that my typing finally started
-well after hours of trying to get this into words and I think it would be unfair
+flowing well after hours of trying to get this into words and I think
-from me to say that everything is draining, so I think I should type some of the
+it would be unfair from me to say that everything is draining, so I think
-methods that I discussed with my previous therapist to ease the situation.
+I should type some of the methods that I discussed with my previous
+therapist to ease the situation.
 
-_I must again disclaim that this might only apply to me and not to you (when did
+_I must again disclaim that this might only apply to me and not to you
-I make the reader another aspie or HSP?), and I should probably say that my
+(when did I make the reader another aspie or HSP?), and I should
-senses are mostly oversensitive except that my sense of touch defies logic and
+probably say that my senses are mostly oversensitive except that my
-can either make me feel "hug deprived" and wishing that someone would touch me
+sense of touch defies logic and can either make me feel "hug deprived" and
-or send me into panic attack from someone accidentally touching me from
+wishing that someone would touch me or send me into panic attack from
-behind..._
+someone accidentally touching me from behind..._
 
 - General: Pushing the wall with strength for around 15 to 30 seconds.
-- Hearing: Music that you like from earbuds or similar, preferably something
+- Hearing: Music that you like from earbuds or similar, preferably
-  that reminds you of some very good experience.
+  something that reminds you of some very good experience.
 - Seeing: pastel/pale colours.
   - I would like to add that bright colours are especially bad and I hate
-    stripes and balls and dots and prefer my clothing to be single colour while
+    stripes and balls and dots and prefer my clothing to be single colour
-    I might wear clothes that I would dislike seeing.
+    while I might wear clothes that I would dislike seeing.
-  - I think we talked something about black being a neutral colour that isn't
+  - I think we talked something about black being a neutral colour that
-    draining while it might not help easing sensory stimulus stress either. I
+    isn't draining while it might not help easing sensory stimulus stress
-    recommend using dark themes on phones and everything that has the option for
+    either. I recommend using dark themes on phones and everything that
-    it.
+    has the option for it.
-  - Smell: leaving the situation or avoiding, but it might also help to get a
+  - Smell: leaving the situation or avoiding, but it might also help to
-    pleasant smelling lip balm that could be stealthily smelled while applying
+    get a pleasant smelling lip balm that could be stealthily smelled
-    it.
+    while applying it.
   - Sense: massaging with a (stress) ball.
-    - I would very often like a hug or to be touched, but when I am asked if
+    - I would very often like a hug or to be touched, but when I am
-      anyone can do anything to help me, I will lie and say nothing as I am
+      asked if anyone can do anything to help me, I will lie and say
-      often ashamed of having undersensitive sense of touch (if I can say that,
+      nothing as I am often ashamed of having undersensitive sense of
-      as I said before, it defies logic and all rules that I try to put on it to
+      touch (if I can say that, as I said before, it defies logic and
-      explain how it works). I think it's this Finnish culture.
+      all rules that I try to put on it to explain how it works). I
-      - I think sense of touch might be some kind of a inbuild recovery method
+      think it's this Finnish culture.
-        andchoring me to this moment or giving me strength to continue from
+      - I think sense of touch might be some kind of a inbuild
-        overwhelming.
+        recovery method andchoring me to this moment or giving me
-        - And I naturally forgot something important, overwhelming is how _The
+        strength to continue from overwhelming.
-          Highly Sensitive Person_ calls the situation with too much sensory
+        - And I naturally forgot something important, overwhelming
-          stimulus stress ane need for recharging. Before encountering _high
+          is how _The Highly Sensitive Person_ calls the situation
-          sensitivity_, I used words "soft limit" where warning signals started
+          with too much sensory stimulus stress ane need for
-          appearing about coming panic attack or having had too much sensory
+          recharging. Before encountering _high sensitivity_, I
-          stimulus stress and needing rest and if I borrow the term from ICT,
+          used words "soft limit" where warning signals started
-          why I wouldn't call panic attacks as hard limit?
+          appearing about coming panic attack or having had too
-          - Finns, this overwhelming is the same thing as _ylivirittyneisyys_.
+          much sensory stimulus stress and needing rest and if I
-            - and now I probably said more than I wondered if I wanted to say
+          borrow the term from ICT, why I wouldn't call panic
-              above. I wonder how horrible will this post look at on the blog
+          attacks as hard limit?
-              while this looks this funny in Vim which I am using to type
+          - Finns, this overwhelming is the same thing as
+            _ylivirittyneisyys_.
+            - and now I probably said more than I wondered if
+              I wanted to say above. I wonder how horrible will
+              this post look at on the blog while this looks
+              this funny in Vim which I am using to type
               this...
 - Motion: calm/slow moves
-  - If I recall correctly, there was some reason why the previous therapist
+  - If I recall correctly, there was some reason why the previous
-    wanted to put motion as a sense, but I cannot remember what the actual
+    therapist wanted to put motion as a sense, but I cannot remember
-    reason was. I think I haven't ever had an issue with motion other than
+    what the actual reason was. I think I haven't ever had an issue
-    having the motorical clumsiness that I think is part of diagnostic criteria
+    with motion other than having the motorical clumsiness that I think
-    from autism.
+    is part of diagnostic criteria from autism.
 
 _Addition: the TL;DR of the above list could probably be put into one word.
 Stim!_
 
-And now I think I am actually finished with a few hours spend typing this and
+And now I think I am actually finished with a few hours spend typing this
-just moving onto the 209th line in Vim. In the end I only want to say that
+and just moving onto the 209th line in Vim. In the end I only want to say
-remember that you aren't alone, 20% of the population are estimated to be highly
+that remember that you aren't alone, 20% of the population are estimated
-sensitive people and while I don't know the percent for people on autism
+to be highly sensitive people and while I don't know the percent for
-spectrum, there is at least one of us in mostly every IRC channel that you can
+people on autism spectrum, there is at least one of us in mostly every
-find.
+IRC channel that you can find.
 
 I think I should also link to
-[Wikipedia: Sensory processing sensitivity](https://en.wikipedia.org/wiki/Sensory_processing_sensitivity)
+[Wikipedia: Sensory processing sensitivity](https://en.wikipedia.org/wiki/Sensory_processing_sensitivity) and [HSPerson.com](https://hsperson.com/) and
-and [HSPerson.com](https://hsperson.com/) and why not to
+why not to [their self/tests](https://www.hsperson.com/test/highly-sensitive-test/)
-[their self/tests](https://www.hsperson.com/test/highly-sensitive-test/) in case
+in case you are like me and haven't encountered it before or haven't
-you are like me and haven't encountered it before or haven't thought that it has
+thought that it has anything to do with you.
-anything to do with you.
 
-I trust that you have heard something of autism or that you are able to find
+I trust that you have heard something of autism or that you are able to
-information about it easily while High Sensitivity is very unknown.
+find information about it easily while High Sensitivity is very unknown.
 
-Oh, the _Highly Sensitive Person_ book didn't comment much on on autism or that
+Oh, the _Highly Sensitive Person_ book didn't comment much on on autism
-one person might be both, so I want to link you to their blog
+or that one person might be both, so I want to link you to their blog
 [About High Sensitivity, Autism, and Neurodiversity](https://hsperson.com/about-high-sensitivity-autism-and-neurodiversity/).
 
-And now I am finally going to end typing this at 230 lines, I hope that this
+And now I am finally going to end typing this at 230 lines, I hope that
-post was any help or at least not negative or including misinformation or
+this post was any help or at least not negative or including misinformation
-anything, but if that would happen to be the case, please do tell me
+or anything, but if that would happen to be the case, please do tell
-[by opening an issue!](https://github.com/mikaela/mikaela.github.io/issues)
+me [by opening an issue!](https://github.com/mikaela/mikaela.github.io/issues)

blog/_posts/2018-10-21-dnscrypt-proxy-quick-dirty-debian.md

@@ -12,61 +12,64 @@ sitemap: false
 ---
 
 _DNSCrypt-proxy encrypts DNS queries that would otherwise go in plaintext
-ensuring that they won't be seen or modified by anyone in the middle. It works
+ensuring that they won't be seen or modified by anyone in the middle. It
-as a localhost DNS server sending queries to configured DNS resolvers._
+works as a localhost DNS server sending queries to configured DNS
+resolvers._
 
-I guess I should also say why you would want dnscrypt v1 vs v2. V1 which is in
+I guess I should also say why you would want dnscrypt v1 vs v2. V1 which
-most of repos currently uses broken resolver by default and only supports one
+is in most of repos currently uses broken resolver by default and only
-resolver at a time, while v2 can use multiple of them while comparing them for
+supports one resolver at a time, while v2 can use multiple of them while
-the best ones.
+comparing them for the best ones.
 
-This post is on getting v2 to Debian Stable and Ubuntu pre 18.10 which contain
+This post is on getting v2 to Debian Stable and Ubuntu pre 18.10 which
-v1 and I (sadly) don't know a better way to do this.
+contain v1 and I (sadly) don't know a better way to do this.
 
 In order to check which version your distro has available, check the
 dnscrypt-proxy search page for your distribution:
 
 - [Debian](https://packages.debian.org/dnscrypt-proxy)
-  - 2018-11-03: the version in _stretch (stable)_ is `1.9.4-1` which has the
+  - 2018-11-03: the version in _stretch (stable)_ is `1.9.4-1` which has
-    issues why I wrote this post.
+    the issues why I wrote this post.
 - [Ubuntu](https://packages.ubuntu.com/dnscrypt-proxy)
-  - 2018-11-03: I cannot find dnscrypt-proxy from Ubuntu at all, while I am sure
+  - 2018-11-03: I cannot find dnscrypt-proxy from Ubuntu at all, while I
-    it previously had the Debian version 1.
+    am sure it previously had the Debian version 1.
 
 ---
 
-1. Update your local apt cache `sudo apt update` and install curl that will be
+1. Update your local apt cache `sudo apt update` and install curl that will
-   used for downloading the package from Debian `sudo apt-get install curl`
+   be used for downloading the package from Debian `sudo apt-get install curl`
 
-Check the version number at
+Check the version number at [Debian's dnscrypt-proxy package download page](https://packages.debian.org/sid/amd64/dnscrypt-proxy/download) and fix it
-[Debian's dnscrypt-proxy package download page](https://packages.debian.org/sid/amd64/dnscrypt-proxy/download)
+below:
-and fix it below:
 
-2: download the
+2: download the package`curl -LO https://deb.debian.org/debian/pool/main/d/dnscrypt-proxy/dnscrypt-proxy_2.0.16-2_amd64.deb`
-package`curl -LO https://deb.debian.org/debian/pool/main/d/dnscrypt-proxy/dnscrypt-proxy_2.0.16-2_amd64.deb`
 
-**WARNING: This part is not supported by either Debian or Ubuntu, you are taking
+**WARNING: This part is not supported by either Debian or Ubuntu, you are
-a package from another distribution and attempting to install it on another.**
+taking a package from another distribution and attempting to install it
+on another.**
 
 **WARNING: Usually when you use apt, it will verify package signatures and
-ensure that the package hasn't been tampered with. I have no idea how to do that
+ensure that the package hasn't been tampered with. I have no idea how to
-with direct downloads (if it's even possible) so you will be trusting the Debian
+do that with direct downloads (if it's even possible) so you will be
-repository mirror or CDN blindly.**
+trusting the Debian repository mirror or CDN blindly.**
 
-3. install the package you downloaded: `sudo dpkg -i dnscrypt-proxy<TAB>` (TAB
+3. install the package you downloaded: `sudo dpkg -i dnscrypt-proxy<TAB>`
-   (above capslock) automatically completes rest of the filename for you).
+   (TAB (above capslock) automatically completes rest of the filename for
+   you).
    1. In case there was a problem, attmept `sudo apt-get install -f` to fix
       broken package depedencies. **Remember to check that what it suggests
-      looks reasonable!** If it asks to remove dnscrypt-proxy, you are out of
+      looks reasonable!** If it asks to remove dnscrypt-proxy, you are out
-      luck and should do that instead of attempting to replace important system
+      of luck and should do that instead of attempting to replace important
-      components from another distribution (creating "Frankendebian").
+      system components from another distribution (creating
+      "Frankendebian").
 
-Hopefully dnscrypt-proxy is now running, check `journalctl -u dnscrypt-proxy`,
+Hopefully dnscrypt-proxy is now running, check
-there should be a line saying
+`journalctl -u dnscrypt-proxy`, there should be a line saying
 `[NOTICE] Wiring systemd TCP socket #0, dnscrypt-proxy.socket, 127.0.2.1:53`
 
-Edit `/etc/NetworkManager/NetworkManager.conf` to avoid overlapping resolvers
+Edit `/etc/NetworkManager/NetworkManager.conf` to avoid overlapping
-breaking each other, it should say say `dns=none` e.g.:
+resolvers breaking each other, it should say say `dns=none`
+e.g.:
 
 ```
 [main]
@@ -97,15 +100,15 @@ options edns0 single-request-reopen
 
 Nameserver is the host where dnscrypt-proxy said to be listening on in
 journalctl, options are from dnscrypt-proxy documentation and search means
-domains that are automatically searched for if you don't use fully qualified
+domains that are automatically searched for if you don't use fully
-domain names, e.g. `ssh machine` in my (uncommented) config would turn into
+qualified domain names, e.g. `ssh machine` in my (uncommented) config
-`ssh machine.mikaela.info`. Update: I find this a privacy leakage (whenever
+would turn into `ssh machine.mikaela.info`. Update: I find this a privacy
-NXDOMAIN happens), which is why I nowadays have it commented.
+leakage (whenever NXDOMAIN happens), which is why I nowadays have it commented.
 
-You should also tell dhclient to not touch resolv.conf or you may get many files
+You should also tell dhclient to not touch resolv.conf or you may get many
-into `/etc` beginning with names `resolv.conf.dhclient-new.` according to
+files into `/etc` beginning with names `resolv.conf.dhclient-new.`
-[Debian wiki](https://wiki.debian.org/resolv.conf#Stop_dhclient_from_modifying_.2Fetc.2Fresolv.conf)
+according to
-which gives the following two commands and
+[Debian wiki](https://wiki.debian.org/resolv.conf#Stop_dhclient_from_modifying_.2Fetc.2Fresolv.conf) which gives the following two commands and
 [Debian bug 860928](https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860928):
 
 ```bash
@@ -115,9 +118,9 @@ chmod 755 /etc/dhcp/dhclient-enter-hooks.d/leave_my_resolv_conf_alone
 
 ---
 
-**WARNING from 2018-10-21!** It appears that the cache and log directories of
+**WARNING from 2018-10-21!** It appears that the cache and log directories
-dnscrypt-proxy don't sometimes get created automatically (at least on Debian
+of dnscrypt-proxy don't sometimes get created automatically (at least on
-GNU/Linux 9.6 (stretch).
+Debian GNU/Linux 9.6 (stretch).
 
 If this happens to you or you would like to be sure to get them:
 
@@ -128,16 +131,14 @@ sudo chown -R _dnscrypt-proxy:nogroup /var/cache/dnscrypt-proxy /var/log/dnscryp
 
 ---
 
-For the curious my dnscrypt-proxy config
+For the curious my dnscrypt-proxy config [is in my shell-things repository](https://github.com/Mikaela/shell-things/tree/master/etc/dnscrypt-proxy) [mirror](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/etc/dnscrypt-proxy).
-[is in my shell-things repository](https://github.com/Mikaela/shell-things/tree/master/etc/dnscrypt-proxy)
-[mirror](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/etc/dnscrypt-proxy).
 
 ---
 
 ## 2019-07-22 update
 
-I have also started performing local DNSSEC validation by running Unbound in
+I have also started performing local DNSSEC validation by running Unbound
-front of DNSCrypt-proxy, so my queries go resolv.conf -> Unbound ->
+in front of DNSCrypt-proxy, so my queries go resolv.conf -> Unbound ->
 dnscrypt-proxy -> configured resolvers. This has the advantage that if the
 resolver didn't perform DNSSEC validation or lied about performing it, the
 protection by DNSSEC would still be received.
@@ -145,12 +146,11 @@ protection by DNSSEC would still be received.
 The steps are simple:
 
 1. `sudo apt install unbound`
-   - You should see a file
+   - You should see a file `/etc/unbound/unbound.conf.d/root-auto-trust-anchor-file.conf`
-     `/etc/unbound/unbound.conf.d/root-auto-trust-anchor-file.conf` which simply
+     which simply says `server:` and on another line after intending
-     says `server:` and on another line after intending
+     `auto-trust-anchor-file: "/var/lib/unbound/root.key"` (the path varies
-     `auto-trust-anchor-file: "/var/lib/unbound/root.key"` (the path varies by
+     by distribution) which means it's performing DNSSEC validation with
-     distribution) which means it's performing DNSSEC validation with those
+     those trust anchors.
-     trust anchors.
 2. `sudo nano /etc/unbound/unbound.conf.d/dnscrypt-proxy.conf`
 
 ```
@@ -161,6 +161,6 @@ forward-zone:
 ```
 
 3. `sudo systemctl restart unbound`
-4. Ensure `/etc/resolv.conf` points to `127.0.0.1` and optionally `::1` instead
+4. Ensure `/etc/resolv.conf` points to `127.0.0.1` and optionally `::1`
-   of `127.0.2.1` where dnscrypt-proxy runs by default. For more details, CTRL +
+   instead of `127.0.2.1` where dnscrypt-proxy runs by default. For more
-   F for resolv.conf or chattr.
+   details, CTRL + F for resolv.conf or chattr.

blog/_posts/2019-07-11-android-private-dns-in-practice.md

@@ -1,8 +1,7 @@
 ---
 layout: post
 comments: true
-title:
+title: "Android 9 Private DNS behaviour with 853 blocked & DoT server comparsion"
-  "Android 9 Private DNS behaviour with 853 blocked & DoT server comparsion"
 category: [english]
 tags: [english, Android, DNS-over-TLS, DNS, security, privacy]
 redirect_from:
@@ -12,10 +11,10 @@ lang: en
 robots: noai
 ---
 
-_Since I first heard of Android 9 Private DNS I wondered how it will work when
+_Since I first heard of Android 9 Private DNS I wondered how it will work
-the port is blocked or there is a captive portal. I didn't find this information
+when the port is blocked or there is a captive portal. I didn't find this
-anywhere and now that I have gotten the Android 9 Go update on my Nokia 1, I am
+information anywhere and now that I have gotten the Android 9 Go update on
-able to type my own blog post about it._
+my Nokia 1, I am able to type my own blog post about it._
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -37,94 +36,78 @@ able to type my own blog post about it._
 
 - Phone: Nokia 1 (TA-1047) running Android 9 (Go Edition)
   - I think I got the update on 9th of July
-  - Language: Finnish (and as I am typing in English I may accidentally invent
+  - Language: Finnish (and as I am typing in English I may accidentally
-    my own words)
+    invent my own words)
 - In all tests mobile data was disabled to not cause confusing results.
 - As Private DNS is technically DNS over TLS, I am calling it as DoT.
-  - In Android 9 it's enabled from Settings, Network & Internet, Advanced
+  - In Android 9 it's enabled from Settings, Network & Internet, Advanced settings, Private DNS
-    settings, Private DNS
     - I am using [dns.quad9.net](https://quad9.net/) as hostname.
 - Automatic mode connects to the DNS server port 853 without validating
-  certificate, "Hostname of private DNS provider" (which I call as the manual
+  certificate, "Hostname of private DNS provider" (which I call as the
-  mode) also validates the certificate and disallows downgrading.
+  manual mode) also validates the certificate and disallows downgrading.
 - [Google's documentation](https://support.google.com/android/answer/9089903?hl=en).
-- [Intra](https://getintra.org/) detects when private DNS is enabled and says
+- [Intra](https://getintra.org/) detects when private DNS is enabled and
-  that it doesn't have to be enabled at those times. However it gets confused
+  says that it doesn't have to be enabled at those times. However it gets
-  easily as between the metro and DHCP offering Quad9 it claimed secure DNS was
+  confused easily as between the metro and DHCP offering Quad9 it claimed
-  disabled. Later before the captive portal test Intra again claimed DoT was
+  secure DNS was disabled. Later before the captive portal test Intra again
-  disabled when there was no connectivity to DoT server, so I guess it's only
+  claimed DoT was disabled when there was no connectivity to DoT server, so
-  able to detect when Android is actually connected to the DoT server.
+  I guess it's only able to detect when Android is actually connected to the
+  DoT server.
 - [My messy notes for making this post](https://github.com/Mikaela/mikaela.github.io/issues/149)
 
 ## The tests
 
 ---
 
-Test: _automatic mode without DoT capable server from DHCP_; the setting says
+Test: _automatic mode without DoT capable server from DHCP_; the setting
-"automatic".
+says "automatic".
 
 ---
 
-Test: _DoT with port 853 blocked_; Android reports that the WLAN network has no
+Test: _DoT with port 853 blocked_; Android reports that the WLAN network has
-internet connectivity until I disable private DNS and toggle WLAN. I tested this
+no internet connectivity until I disable private DNS and toggle WLAN. I
-in Helsinki metro.
+tested this in Helsinki metro.
 
 ---
 
-Test: _automatic mode with DoT capable server from DHCP_; Android says that DoT
+Test: _automatic mode with DoT capable server from DHCP_; Android says that
-is "enabled". For this test I configured a WLAN AP to use
+DoT is "enabled". For this test I configured a WLAN AP to use [Quad9](https://quad9.net/)
-[Quad9](https://quad9.net/) DNS servers `149.112.112.112` and `9.9.9.9`.
+DNS servers `149.112.112.112` and `9.9.9.9`.
 
-I would also have configured the IPv6 addresses `2620:fe::9` and `2620:fe::fe`
+I would also have configured
-as the network was dualstack, but naturally the router was missing ability to
+the IPv6 addresses `2620:fe::9` and `2620:fe::fe` as the network was dualstack,
-configure IPv6 DNS servers and forced using the ISP ones. At least the Android 9
+but naturally the router was missing ability to configure IPv6 DNS servers
-was happy with the IPv4 servers.
+and forced using the ISP ones. At least the Android 9 was happy with the IPv4
+servers.
 
-I didn't do this at home as my main network connectivity is a MiFi "box" that
+I didn't do this at home as my main network connectivity is a MiFi
-doesn't allow me to specify a DNS server and I tend to avoid it anyway by using
+"box" that doesn't allow me to specify a DNS server and I tend to avoid it anyway
-[dnscrypt-proxy](https://github.com/jedisct1/dnscrypt-proxy/) with
+by using [dnscrypt-proxy](https://github.com/jedisct1/dnscrypt-proxy/) with [this config](https://github.com/Mikaela/shell-things/blob/master/etc/dnscrypt-proxy/dnscrypt-proxy.toml) and Intra. Sadly I have some
-[this config](https://github.com/Mikaela/shell-things/blob/master/etc/dnscrypt-proxy/dnscrypt-proxy.toml)
+little used devices that have no way to encrypt DNS and they either use the
-and Intra. Sadly I have some little used devices that have no way to encrypt DNS
+ISP DNS or in case of Chromecasts I am under impression that they are
-and they either use the ISP DNS or in case of Chromecasts I am under impression
+hardcoded to use Google DNS. I don't use them much though.
-that they are hardcoded to use Google DNS. I don't use them much though.
 
-Why do I care about encrypted DNS so much? Encrypt everything! And to quote my
+Why do I care about encrypted DNS so much? Encrypt everything! And to quote
-index:
+my index:
 
-> The only traffic I am not encrypting is probably my WLAN. For some reason my
+> The only traffic I am not encrypting is probably my WLAN. For some reason my router requires a reboot once per hour with WPA2 encryption while on open network I only have to reboot it once per day (I have asked about this confusing behaviour from wiser people on IRC and they weren't able to explain it either). I support the <a href="https://openwireless.org/">Open Wireless Movement</a> and think that if someone really wanted to cause me harm, they could break into the network anyway and that would be more difficult to prove on consumer grade device than the network being open. There are firewalls on all networks and while a passerby would be able to observe unencrypted SNIs, isn't that also <a href="https://en.wikipedia.org/wiki/Global_surveillance">being done by international security agencies already</a> while even <a href="https://fi.wikipedia.org/wiki/Suomen_tiedustelulains%C3%A4%C3%A4d%C3%A4nt%C3%B6">Finland has given permission to monitor traffic crossing our borders</a> ((TODO: better link in English as the situation develops)and how much of traffic doesn't do that?). I also don't like being somewhere where the only available WLANs are printers and smart thermostats :)
-> router requires a reboot once per hour with WPA2 encryption while on open
-> network I only have to reboot it once per day (I have asked about this
-> confusing behaviour from wiser people on IRC and they weren't able to explain
-> it either). I support the <a href="https://openwireless.org/">Open Wireless
-> Movement</a> and think that if someone really wanted to cause me harm, they
-> could break into the network anyway and that would be more difficult to prove
-> on consumer grade device than the network being open. There are firewalls on
-> all networks and while a passerby would be able to observe unencrypted SNIs,
-> isn't that also
-> <a href="https://en.wikipedia.org/wiki/Global_surveillance">being done by
-> international security agencies already</a> while even
-> <a href="https://fi.wikipedia.org/wiki/Suomen_tiedustelulains%C3%A4%C3%A4d%C3%A4nt%C3%B6">Finland
-> has given permission to monitor traffic crossing our borders</a> ((TODO:
-> better link in English as the situation develops)and how much of traffic
-> doesn't do that?). I also don't like being somewhere where the only available
-> WLANs are printers and smart thermostats :)
 
 ---
 
-Bonus test: _DoT + DoH via the [Intra app](https://getintra.org/)_ configured to
+Bonus test: _DoT + DoH via the [Intra app](https://getintra.org/)_
-use server `https://149.112.112.112/dns-query` in Helsinki metro; Android claims
+configured to use server `https://149.112.112.112/dns-query` in Helsinki
-that the network has no connectivity and shows the x on the WLAN symbol in the
+metro; Android claims that the network has no connectivity and shows the x
-statusbar, but everything works regardless. My hypothesis that I am not enough
+on the WLAN symbol in the statusbar, but everything works regardless.
-interested in confirming is that if I was using
+My hypothesis that I am not enough interested in confirming is that if I was
-`https://dns.quad9.net/dns-query` nothing would work as the Intra app would have
+using `https://dns.quad9.net/dns-query` nothing would work as the Intra app
-been unable to resolve that name due to DoT being blocked.
+would have been unable to resolve that name due to DoT being blocked.
 
 ---
 
-Test: _DoT + Captive Portal_; I get the captive portal prompt asking me to login
+Test: _DoT + Captive Portal_; I get the captive portal prompt asking me to
-to the network as usual, so I guess Android handles captive portal separately
+login to the network as usual, so I guess Android handles captive portal
-from DoT which is a good thing in my opinion as otherwise that feature would
+separately from DoT which is a good thing in my opinion as otherwise that
-likely be too confusing or difficult for many people to use.
+feature would likely be too confusing or difficult for many people to use.
 
 I performed this test next to a closed Espresso House, which luckily hadn't
 turned off their WLAN AP, but I treat SSIDs as free advertising anyway.
@@ -133,37 +116,36 @@ turned off their WLAN AP, but I treat SSIDs as free advertising anyway.
 
 ## Why I use Quad9?
 
-I had an idea of blogging about this separately long before I got Android 9 and
+I had an idea of blogging about this separately long before I got Android 9
-was able to perform this testing, but as I mention it so much I guess it's
+and was able to perform this testing, but as I mention it so much I guess
-better to merge the posts.
+it's better to merge the posts.
 
 What I wish from a DNS server is privacy/security (including DoT), [DNSSEC],
-being stable (or unlikely to go away without warning in near future) and thus
+being stable (or unlikely to go
-being able to recommend it to my family members (read as: configure it on their
+away without warning in near future) and thus being able to recommend it to
-routers while being tech support).
+my family members (read as: configure it on their routers while being tech
+support).
 
 [dnssec]: https://www.dnssec.net/
 
-The options
+The options [judging by DNSPrivacy.org](<https://dnsprivacy.org/wiki/display/DP/DNS+Privacy+Public+Resolvers#DNSPrivacyPublicResolvers-DNS-over-TLS(DoT)>) are the following:
-[judging by DNSPrivacy.org](<https://dnsprivacy.org/wiki/display/DP/DNS+Privacy+Public+Resolvers#DNSPrivacyPublicResolvers-DNS-over-TLS(DoT)>)
-are the following:
 
 - Quad9 (I am only talking about the secure variant as the insecure disables
   DNSSEC)
   - non-profit
   - [privacy policy](https://quad9.net/privacy/) (I seem to have too much
     problems with the others to even look at their policies)
-  - same malicious domain filtering for everyone (I was going to compare it to
+  - same malicious domain filtering for everyone (I was going to compare it
-    Cisco/OpenDNS without realizing that the DoT requirement dropped them out
+    to Cisco/OpenDNS without realizing that the DoT requirement dropped them out
     already) that I haven't yet encountered
   - [FAQ](https://quad9.net/faq/)
-  - supports DNS over HTTPS (I need it for Firefox which at the time of typing
+  - supports DNS over HTTPS (I need it for Firefox which at the time of typing requires
-    requires DoH for ESNI support)
+    DoH for ESNI support)
   - has a node in Finland (see TREX under regional providers)
-  - I have heard that they plan a network map (Adguard on the bottom has it) and
+  - I have heard that they plan a network map (Adguard on the bottom has it)
-    I hope to see it soon, because I would have no idea they have a node in
+    and I hope to see it soon, because I would have no idea they have a node
-    Finland without knowing about TREX and having performed DNS leak test (see
+    in Finland without knowing about TREX and having performed DNS leak test
-    TREX under regional providers for more details on both).
+    (see TREX under regional providers for more details on both).
 - Cloudflare
   - for-profit company
   - too big for my taste and possibly getting even bigger if Firefox starts
@@ -174,18 +156,19 @@ are the following:
     queries too.
 - CleanBrowsing
   - I never looked it before, but it appears to be for-profit
-  - allows custom filters? What prevents filters from another user from being
+  - allows custom filters? What prevents filters from another user from
-    applied to me? This was a problem with Cisco OpenDNS.
+    being applied to me? This was a problem with Cisco OpenDNS.
 - Adguard
-  - I never looked at them before either, but they look surprisingly good and I
+  - I never looked at them before either, but they look surprisingly good
-    could consider using them with the short reading I did for this post.
+    and I could consider using them with the short reading I did for this
+    post.
   - for-profit (even though they claim to make money by their other products
     than DNS, but so do Cloudflare and Google?)
   - I worry they could block something more than ads/malware by accident
-    - and I think they are more likely to do that than Quad9 due to blocking so
+    - and I think they are more likely to do that than Quad9 due to blocking
-      much more.
+      so much more.
-      - and this could be painful to start troubleshooting over the phone with
+      - and this could be painful to start troubleshooting over the phone
-        family members.
+        with family members.
   - [privacy policy](https://adguard.com/en/privacy.html)
   - based in Cyprus (EU)
   - [Adguard DNS page including FAQ](https://adguard.com/en/adguard-dns/overview.html)
@@ -194,41 +177,38 @@ are the following:
 
 Then there are regional providers like:
 
-- [TREX recursive name service](http://www.trex.fi/service/resolvers.html) for
+- [TREX recursive name service](http://www.trex.fi/service/resolvers.html) for Finnish users
-  Finnish users
+  - "Our resolvers do not support DNS over TLS, DNS over HTTPS or dnscrypt. But TREX hosts a Quad9 node, which offers a secure service with those features."
-  - "Our resolvers do not support DNS over TLS, DNS over HTTPS or dnscrypt. But
+    - this can be confirmed by running a [DNS leak test](https://dnsleaktest.com/)
-    TREX hosts a Quad9 node, which offers a secure service with those features."
+      which in Finland replies "TREX Regional Exchanges Oy" and being hosted
-    - this can be confirmed by running a
+      by TREX is a plus for Quad9 in my eyes as it's
-      [DNS leak test](https://dnsleaktest.com/) which in Finland replies "TREX
+  - often recommended for Finnish users instead of Google DNS by people in
-      Regional Exchanges Oy" and being hosted by TREX is a plus for Quad9 in my
+    my circles
-      eyes as it's
+- [CZ.NIC Open DNSSEC Validating Resolvers](https://www.nic.cz/odvr/) for Czech users
-  - often recommended for Finnish users instead of Google DNS by people in my
+  (English readers: enable cookies and click "English")
-    circles
-- [CZ.NIC Open DNSSEC Validating Resolvers](https://www.nic.cz/odvr/) for Czech
-  users (English readers: enable cookies and click "English")
   - has DNSSEC, DoT & DoH
-  - probably wouldn't make much sense to use from Finland (or anywhere else far
+  - probably wouldn't make much sense to use from Finland (or anywhere
-    from Czech Republic, I imagine all the neighbouring countries would also
+    else far from Czech Republic, I imagine all the neighbouring countries would also have their
-    have their own equivalent regardless of CZ.NIC being so big name (you have
+    own equivalent regardless of CZ.NIC being so big name (you have heard of e.g. [Turris Omnia](https://en.wikipedia.org/wiki/Turris_Omnia)?))
-    heard of e.g. [Turris Omnia](https://en.wikipedia.org/wiki/Turris_Omnia)?))
+  - (thus I promote centralization, but) a regional not-anycasted DNS server
-  - (thus I promote centralization, but) a regional not-anycasted DNS server may
+    may be impractical while traveling as your DNS would always go through
-    be impractical while traveling as your DNS would always go through home and
+    home and possibly be slower than it could be. As a counter argument it
-    possibly be slower than it could be. As a counter argument it wouldn't hurt
+    wouldn't hurt that much or be difficult to change, but would you
-    that much or be difficult to change, but would you remember to do it while
+    remember to do it while traveling (I guess I would) and would your
-    traveling (I guess I would) and would your family members remember that?
+    family members remember that?
 
-And the golden option of hosting your own DNS. (It's actually easy with Unbound,
+And the golden option of hosting your own DNS. (It's actually easy with
-I haven't tried DoH/DoT hosting though!)
+Unbound, I haven't tried DoH/DoT hosting though!)
 
 - Hosting where?
 - Hosting with what money?
 - On my laptop? What about when it goes down?
-- On three of my active devices separately? I don't think the root nameserver
+- On three of my active devices separately? I don't think the root
-  admins would be very happy if everyone did that.
+  nameserver admins would be very happy if everyone did that.
-- On my VPS? What if it went down due to being so cheap? What to say when my
+- On my VPS? What if it went down due to being so cheap? What to say when
-  family called that "the internet is broken"? How to provide the additional
+  my family called that "the internet is broken"? How to provide the additional
-  line of defence against malware and phishing as well as Quad9 does it with all
+  line of defence against malware and phishing as well as Quad9 does it with
-  their information sources and partners?
+  all their information sources and partners?
 
 To me Quad9 seems the least bad (or the least scary?) option with all these
 things considered, but some other provider may seem better to you.

blog/_posts/2021-08-03-matrix-perfect-privacy-not.md

@@ -32,217 +32,172 @@ administrating experience due to not having any with Matrix personally._
 
 ## Element, what Element?
 
-Element is the defacto Matrix client. If you wish to get into Matrix, you will
+Element is the defacto Matrix client. If you wish to get into Matrix, you
-likely hear the advice to install Element or use it on the web.
+will likely hear the advice to install Element or use it on the web.
 
 It comes with two problems:
 
-- you will likely register your account on the `matrix.org` homeserver and later
+- you will likely register your account on the `matrix.org` homeserver and
-  hear that you made a mistake in using it as it's overloaded and you should
+  later hear that you made a mistake in using it as it's overloaded and you
-  instead use some other homeserver which would also be good for healthy
+  should instead use some other homeserver which would also be good for
-  federation, but the interface doesn't suggest or offer you any other servers.
+  healthy federation, but the interface doesn't suggest or offer you any
-  - maybe in the future
+  other servers.
-    [your account will be decentralized and that won't matter](https://github.com/matrix-org/matrix-spec/issues/246)?
+  - maybe in the future [your account will be decentralized and that won't matter](https://github.com/matrix-org/matrix-spec/issues/246)?
-- if you happen to be like me and use both Element Web and Element iOS, you will
+- if you happen to be like me and use both Element Web and Element iOS, you
-  notice they are wildly inconsistent. I cannot comment on Element Android as my
+  will notice they are wildly inconsistent. I cannot comment on Element
-  phone (Nokia 1 / TA-1047) is too weak powered for pleasant Matrix experience
+  Android as my phone (Nokia 1 / TA-1047) is too weak powered for pleasant
-  and I don't use it much.
+  Matrix experience and I don't use it much.
 
-Comparing the later two platforms, I imagine you will hit some of these problems
+Comparing the later two platforms, I imagine you will hit some of these
-sooner or later:
+problems sooner or later:
 
-- <s>You see a link in the channel. If you were using Element Web or possibly
+- <s>You see a link in the channel. If you were using Element Web or
-  even Element Android you would immediately know what it was about. However you
+  possibly even Element Android you would immediately know what it was
-  use <a href="https://github.com/vector-im/element-ios/issues/888">Element iOS
+  about. However you use <a href="https://github.com/vector-im/element-ios/issues/888">Element iOS that never got URL preview support!</a></s>
-  that never got URL preview support!</a></s>
 - You hear of interesting room on another room and you wish to join it. You
   touch the name wishing to get into there? What happens instead? You will get
-  an error message
+  an error message [cannot rejoin an empty room](https://github.com/vector-im/element-ios/issues/1066).
-  [cannot rejoin an empty room](https://github.com/vector-im/element-ios/issues/1066).
+  - I hope that doesn't annoy you and you wish to hear the workaround of
-  - I hope that doesn't annoy you and you wish to hear the workaround of running
+    running `/join #room:example.net` by hand instead.
-    `/join #room:example.net` by hand instead.
 - This may be a bit more rare one, but if you share rooms with bots, you may
-  notice that on Element Web they are more gray than people.
+  notice that on Element Web they are more gray than people. [Element iOS just never got messages from bots being rendered differently](https://github.com/vector-im/element-ios/issues/882).
-  [Element iOS just never got messages from bots being rendered differently](https://github.com/vector-im/element-ios/issues/882).
+- I may again be a bit weird, but I wish to have [timestamps for all messages visible all the time](https://github.com/vector-im/element-ios/issues/524),
-- I may again be a bit weird, but I wish to have
+  but Element says no. They exist on Web, not on iOS. Same if you [wanted to see seconds](https://github.com/vector-im/element-ios/issues/3901)
-  [timestamps for all messages visible all the time](https://github.com/vector-im/element-ios/issues/524),
+- <s>I almost forgot, but the <a href="https://element.io/blog/spaces-the-next-frontier/">new spaces</a>
-  but Element says no. They exist on Web, not on iOS. Same if you
+  just <a href="https://github.com/vector-im/element-ios/issues?q=label%3AA-Spaces+">don't exist on iOS</a>,
-  [wanted to see seconds](https://github.com/vector-im/element-ios/issues/3901)
+  should you attempt to join or be invited to one, you will get a banner
-- <s>I almost forgot, but the
+  saying that they aren't implemented yet and you cannot accept or reject
-  <a href="https://element.io/blog/spaces-the-next-frontier/">new spaces</a>
+  the invite unless you open Element Web to do that.</s>
-  just
-  <a href="https://github.com/vector-im/element-ios/issues?q=label%3AA-Spaces+">don't
-  exist on iOS</a>, should you attempt to join or be invited to one, you will
-  get a banner saying that they aren't implemented yet and you cannot accept or
-  reject the invite unless you open Element Web to do that.</s>
 - <s>Another issue I am editing in hours later is pills, when you mention
   someone on Element (Web), or someone else mentions someone, there is a clear
   pill shape around their name and it can be clicked to get to their profile,
-  <a href="https://github.com/vector-im/element-ios/issues/3526">but not on
+  <a href="https://github.com/vector-im/element-ios/issues/3526">but not on Element (iOS)</a></s>
-  Element (iOS)</a></s>
 
-And that is probably enough of annoyances with Element iOS, I hope the situation
+And that is probably enough of annoyances with Element iOS, I hope the
-will improve in foreseeable future there due to
+situation will improve in foreseeable future there due to
 [Matrix exploding with Element securing $30M funding to revolutionise the app’s usability, build out major new features, expand in the enterprise market and take Matrix fully mainstream!](https://element.io/blog/element-raises-30m-as-matrix-explodes/)
 
 2022-01-29: As seen from the strikethrough, two of six points on my list have
-been resolved, however today
+been resolved, however today [FluffyChat released version 1.2.0 featuring stories](https://ko-fi.com/post/Whats-new-in-FluffyChat-1-2-0-Z8Z09LEO7).
-[FluffyChat released version 1.2.0 featuring stories](https://ko-fi.com/post/Whats-new-in-FluffyChat-1-2-0-Z8Z09LEO7).
+At the time of writing [stories are a draft Matrix spec proposal](https://github.com/matrix-org/matrix-spec-proposals/pull/3588)
-At the time of writing
-[stories are a draft Matrix spec proposal](https://github.com/matrix-org/matrix-spec-proposals/pull/3588)
 that in incompatible clients (such as Element Web and Element Android) appear as
-read-only rooms, however
+read-only rooms, however [Element iOS hides them completely with the exception of notifications that cannot be acknowledged](https://github.com/vector-im/element-ios/issues/5455).
-[Element iOS hides them completely with the exception of notifications that cannot be acknowledged](https://github.com/vector-im/element-ios/issues/5455).
 
 ## You mentioned privacy?
 
-Yes, privacy is a big reason why Matrix is advertised and the lack of it is a
+Yes, privacy is a big reason why Matrix is advertised and the lack of it is
-fact you agree to by using Matrix or getting bridged to Matrix (which is out of
+a fact you agree to by using Matrix or getting bridged to Matrix (which is
-scope for this blog post as it involves other protocols too much, whether you
+out of scope for this blog post as it involves other protocols too much,
-know Matrix or not).
+whether you know Matrix or not).
 
-As with the internet in general, the most safe assumption is that once you post
+As with the internet in general, the most safe assumption is that once you
-something it's there forever. It may be encrypted in a private Matrix room or it
+post something it's there forever. It may be encrypted in a private Matrix
-may be public in a public room, but it will most likely be there forever.
+room or it may be public in a public room, but it will most likely be there
+forever.
 
-Matrix does support
+Matrix does support [history retention if you are advanced enough to enable it](https://brendan.abolivier.bzh/matrix-retention-policies/),
-[history retention if you are advanced enough to enable it](https://brendan.abolivier.bzh/matrix-retention-policies/),
+this assumes [your homeserver explicitly enables it as it's not default](https://github.com/matrix-org/synapse/blob/ba5287f5e8be150551824493b3ad685dde00a543/docs/sample_config.yaml#L481-L484)
-this assumes
+and as your room is hosted on every homeserver that has users in your room,
-[your homeserver explicitly enables it as it's not default](https://github.com/matrix-org/synapse/blob/ba5287f5e8be150551824493b3ad685dde00a543/docs/sample_config.yaml#L481-L484)
+have a single homeserver that hasn't explicitly enabled it, or doesn't otherwise support it, and the room
-and as your room is hosted on every homeserver that has users in your room, have
+history never goes away. Executing `/upgraderoom {{site.matrixLatestRoomVersion}}` or any other version [will also remove the event](https://github.com/matrix-org/synapse/issues/11279).
-a single homeserver that hasn't explicitly enabled it, or doesn't otherwise
-support it, and the room history never goes away. Executing
-`/upgraderoom {{site.matrixLatestRoomVersion}}` or any other version
-[will also remove the event](https://github.com/matrix-org/synapse/issues/11279).
 
-**_WARNING!_**
+**_WARNING!_** [Enabling history **_retention_** may **_corrupt your Synapse database_**](https://github.com/matrix-org/synapse/issues/13476)
-[Enabling history **_retention_** may **_corrupt your Synapse database_**](https://github.com/matrix-org/synapse/issues/13476)
+and [will make your room **_unrejoinable_** if a homeserver leaves it for long enough](https://github.com/matrix-org/synapse/issues/11448).
-and
+Upgrading the room will fix that, but it's just a fancy
-[will make your room **_unrejoinable_** if a homeserver leaves it for long enough](https://github.com/matrix-org/synapse/issues/11448).
+way of saying "discontinue the old room and add a note saying where the new
-Upgrading the room will fix that, but it's just a fancy way of saying
+room is".
-"discontinue the old room and add a note saying where the new room is".
 
-**_WARNING! Always before executing `/upgraderoom` check that everyone in your
+**_WARNING! Always before executing `/upgraderoom` check that everyone in your room has a recent Matrix server that supports your target room version, otherwise you may lock some of your users out._** For example `/invite @version:maunium.net` and once it joins, say
-room has a recent Matrix server that supports your target room version,
+`!servers upgrade {{site.matrixLatestRoomVersion}}` to get a list of servers that don't support room version {{site.matrixLatestRoomVersion}} yet.
-otherwise you may lock some of your users out._** For example
-`/invite @version:maunium.net` and once it joins, say
-`!servers upgrade {{site.matrixLatestRoomVersion}}` to get a list of servers
-that don't support room version {{site.matrixLatestRoomVersion}} yet.
 
-In case there isn't enough confusion, retention shouldn't be confused with
+In case there isn't enough confusion, retention shouldn't be confused with actual [self-destructing/disappearing messages](https://github.com/vector-im/element-meta/discussions/682).
-actual
-[self-destructing/disappearing messages](https://github.com/vector-im/element-meta/discussions/682).
 
-_Technical note: sorry about calling <s>reference</s> homeserver implementation
+_Technical note: sorry about calling <s>reference</s> homeserver implementation by the <s>matrix.org team</s> New Vector Ltd issue
-by the <s>matrix.org team</s> New Vector Ltd issue as a Matrix protocol issue._
+as a Matrix protocol issue._
 
-You may say that this requires you to trust the homeserver admin anyway and that
+You may say that this requires you to trust the homeserver admin anyway and
-is true, I wish people could trust each other and even if someone modified their
+that is true, I wish people could trust each other and even if someone
-Synapse to never remove anything or had a client logging everything, they
+modified their Synapse to never remove anything or had a client logging
-wouldn't throw that history to people who don't want to see it.
+everything, they wouldn't throw that history to people who don't want to see it.
 
-Speaking of removals, once you remove a message
+Speaking of removals, once you remove a message [it will be stored in the database for server admins for 7 days](https://github.com/matrix-org/synapse/blob/ba5287f5e8be150551824493b3ad685dde00a543/docs/sample_config.yaml#L456-L461) which is fine for me, but if [this message happened to be media instead of text, it would never be removed](https://github.com/matrix-org/synapse/issues/1263) and should you have copied link to the media, it would keep on working
-[it will be stored in the database for server admins for 7 days](https://github.com/matrix-org/synapse/blob/ba5287f5e8be150551824493b3ad685dde00a543/docs/sample_config.yaml#L456-L461)
+and if you changed the homeserver address in your copied link, it would still
-which is fine for me, but if
+keep on working. Is this something you expect from a private protocol? I don't, or I didn't before getting familiar with Matrix. There is also an [alternative proposal about this](https://github.com/matrix-org/matrix-spec-proposals/pull/2228).
-[this message happened to be media instead of text, it would never be removed](https://github.com/matrix-org/synapse/issues/1263)
-and should you have copied link to the media, it would keep on working and if
-you changed the homeserver address in your copied link, it would still keep on
-working. Is this something you expect from a private protocol? I don't, or I
-didn't before getting familiar with Matrix. There is also an
-[alternative proposal about this](https://github.com/matrix-org/matrix-spec-proposals/pull/2228).
 
-_By the way Synapse is still a <s>reference</s> homeserver implementation by the
+_By the way Synapse is still a <s>reference</s> homeserver implementation by the <s>matrix.org team</s> New Vector Ltd and not
-<s>matrix.org team</s> New Vector Ltd and not Matrix protocol itself, so sorry
+Matrix protocol itself, so sorry about that for anyone technical reading this._
-about that for anyone technical reading this._
 
 Do you use different names in different contexts? Like your Full Name in
-professional context, a nickname somewhere else and maybe what will be your real
+professional context, a nickname somewhere else and maybe what will be your
-name after gender transitioning or even have a diffferent name in direct chat
+real name after gender transitioning or even have a diffferent name in direct
-with your partner?
+chat with your partner? [Congratulations, whatever is your latest room-specific name may now be public (especially when the room federates and has users from different homeservers), same with your potential avatar](https://github.com/matrix-org/synapse/issues/5677).
-[Congratulations, whatever is your latest room-specific name may now be public (especially when the room federates and has users from different homeservers), same with your potential avatar](https://github.com/matrix-org/synapse/issues/5677).
 
-_Synapse didn't become Matrix protocol itself by the way, there are still other
+_Synapse didn't become Matrix protocol itself by the way, there are still other implementations!_
-implementations!_
 
-This issue does have a potential solution
+This issue does have a potential solution [an API planned for room specific details (2015)](https://github.com/matrix-org/matrix-spec/issues/103)
-[an API planned for room specific details (2015)](https://github.com/matrix-org/matrix-spec/issues/103)
+and what I am hopeful about in the future <a href="https://github.com/matrix-org/matrix-spec-proposals/pull/3189">open pull request specification for space specific profiles</a>,
-and what I am hopeful about in the future
+unless it just moves the issue to a different level. Which is [cancelled or delayed for an undefined time period](https://github.com/matrix-org/matrix-spec-proposals/pull/3189#issuecomment-905761797),
-<a href="https://github.com/matrix-org/matrix-spec-proposals/pull/3189">open
-pull request specification for space specific profiles</a>, unless it just moves
-the issue to a different level. Which is
-[cancelled or delayed for an undefined time period](https://github.com/matrix-org/matrix-spec-proposals/pull/3189#issuecomment-905761797),
 ["until extensible profiles and sync v3 become more concrete"](https://github.com/matrix-org/matrix-spec-proposals/pull/1769)
 
 2021-08-27: I don't know how serious issue this may be for you, but any emoji/
 [reactions made on end-to-end-encrypted messages aren't encrypted](https://github.com/matrix-org/matrix-spec/issues/660).
-It's fun in [E2EE test rooms](matrix:r/megolm:matrix.org?action=join) when you
+It's fun in [E2EE test rooms](matrix:r/megolm:matrix.org?action=join) when you cannot read the other party, but
-cannot read the other party, but regardless see their reactions on your
+regardless see their reactions on your messages.
-messages.
 
 2022-01-10: In E2EE features, when you are invited to E2EE rooms, you generally
 cannot see the previously encrypted messages. However when those are encrypted,
-viewing
+viewing [message source will reveal the older messages in body and formatted_body](https://github.com/matrix-org/matrix-spec/issues/368)
-[message source will reveal the older messages in body and formatted_body](https://github.com/matrix-org/matrix-spec/issues/368)
+which [have been under deprecating plans since 2020-09-19, maybe in the future...](https://github.com/matrix-org/matrix-spec-proposals/pull/2781)
-which
-[have been under deprecating plans since 2020-09-19, maybe in the future...](https://github.com/matrix-org/matrix-spec-proposals/pull/2781)
 
-I think that was my biggest complaints on Matrix (or Synapse itself), that don't
+I think that was my biggest complaints on Matrix (or Synapse itself), that
-involve other protocols and I have personally experienced. My notes for this
+don't involve other protocols and I have personally experienced. My notes
-blog post include
+for this blog post include [Elements not having real contacts list](https://github.com/vector-im/element-web/issues/4488),
-[Elements not having real contacts list](https://github.com/vector-im/element-web/issues/4488),
+or in other words [Matrix not having canonical direct messages](https://github.com/matrix-org/matrix-spec-proposals/pull/2199),
-or in other words
-[Matrix not having canonical direct messages](https://github.com/matrix-org/matrix-spec-proposals/pull/2199),
 but they didn't occur to me and I guess it has been doing fine enough without
 implementing those.
 
-If any of these issues is a dealbreaker for you or you don't want to hear a bad
+If any of these issues is a dealbreaker for you or you don't want to hear
-word about Matrix, you may be wondering what is the perfect flawless solution? I
+a bad word about Matrix, you may be wondering what is the perfect flawless
-don't know, personally I don't think it may not exist and I don't want to enter
+solution? I don't know, personally I don't think it may not exist and I don't
-discussing compromise solutions or other protocols in this post at all. This
+want to enter discussing compromise solutions or other protocols in this post
-list also wasn't complete on what issues I have with Matrix (and so close to the
+at all. This list also wasn't complete on what issues I have with Matrix
-end I don't want to dig for references) and I have specific wishes that no
+(and so close to the end I don't want to dig for references) and I have
-protocol offers (at least not consistently, such as using multiple names and
+specific wishes that no protocol offers (at least not consistently,
-knowing which name I am using where or managing 50 different rooms with same
+such as using multiple names and knowing which name I am using where or managing
-operators everywhere, but
+50 different rooms with same operators everywhere, but [that may get answered by Matrix](https://github.com/matrix-org/matrix-spec-proposals/pull/2962).)
-[that may get answered by Matrix](https://github.com/matrix-org/matrix-spec-proposals/pull/2962).)
 
 You may wonder was it nice of me to write so negative blog post. I find it
-therapeutic as
+therapeutic as [I have had an issue to me to write this since 2021-01-15](https://github.com/Mikaela/mikaela.github.io/issues/230)
-[I have had an issue to me to write this since 2021-01-15](https://github.com/Mikaela/mikaela.github.io/issues/230)
+and now I have finally done it, a bit over half an year late,
-and now I have finally done it, a bit over half an year late, spending a bit
+spending a bit over an hour to it and I feel better after getting these problems
-over an hour to it and I feel better after getting these problems out of my head
+out of my head and maybe they weren't so big after all. Up to you.
-and maybe they weren't so big after all. Up to you.
 
-Lastly I apologise to you-know-who-you-are for not titling this post
+Lastly I apologise to you-know-who-you-are for not titling this post "undefined",
-"undefined", or even M.UNKNOWN (which I would have imagined to be one of the
+or even M.UNKNOWN (which I would have imagined to be one of the issues for me to write about, but
-issues for me to write about, but I don't remember seeing it in a long time, so
+I don't remember seeing it in a long time, so maybe the situation is improving.
-maybe the situation is improving.
 
-Feedback? I have [a discussion room in many apps](https://aminda.eu/discuss), or
+Feedback? I have [a discussion room in many apps](https://aminda.eu/discuss),
-you can find me from a lot of the linked issues and there is also
+or you can find me from a lot of the linked issues and there is also [issue tracker for this site](https://github.com/Mikaela/mikaela.github.io/issues).
-[issue tracker for this site](https://github.com/Mikaela/mikaela.github.io/issues).
 
 - [Changelog, also known as git commit history](https://github.com/Mikaela/mikaela.github.io/commits/master/blog/_posts/2021-08-03-matrix-perfect-privacy-not.md)
-  - Clicksaver for edits done on day of publishing: I have fixed a typo
+  - Clicksaver for edits done on day of publishing: I have fixed a typo resulting one
-    resulting one link being a 404 error, added mention on Element (iOS) not
+    link being a 404 error, added mention on Element (iOS) not doing URL previews
-    doing URL previews and later added pills not being supported by it either. I
+    and later added pills not being supported by it either. I didn't consider
-    didn't consider
     [outdated emoji picker](https://github.com/vector-im/element-ios/issues/4654)
     worth mentioning here, but it came up in the same context as URL previews
     and wasn't reported to upstream, so I might as well mention it in this part.
-  - 2021-08-27: Noted cancellation/delay of space-specific profiles, mention
+  - 2021-08-27: Noted cancellation/delay of space-specific profiles,
-    emoji/reactions not being encrypted at all, added link to E2EE test room and
+    mention emoji/reactions not being encrypted at all, added link to E2EE
-    this list item.
+    test room and this list item.
   - 2021-09-09: It's brought to my attention that URL previews exist on Element
     iOS! It's 23.15 in Finland so I only strikethrough this issue.
-  - 2022-01-10: I am told that
+  - 2022-01-10: I am told that [Synapse is not a reference homeserver implementation since 2021-10-06](https://github.com/matrix-org/synapse/pull/10971#event-5418418970)
-    [Synapse is not a reference homeserver implementation since 2021-10-06](https://github.com/matrix-org/synapse/pull/10971#event-5418418970)
     so I have strikethrouged that and changed it to "by the matrix.org team".
-    - Typing this it looks like this blogpost predates the demote of Synapse,
+    - Typing this it looks like this blogpost predates the demote of Synapse, but
-      but I wish to stay up-to-date with this post.
+      I wish to stay up-to-date with this post.
-    - I am also noting that `m.room.retention` doesn't persist across room
+    - I am also noting that `m.room.retention` doesn't persist across room upgrades
-      upgrades and linking to the Element-meta issue on
+      and linking to the Element-meta issue on self-destructing/disappearing messages
-      self-destructing/disappearing messages to not be confused with retention.
+      to not be confused with retention.
     - Oh and reply fallbacks leaking previously encrypted messages too.
   - 2022-05-31: I noticed that Element iOS has gotten pills. Strikethrough time.
   - 2023-07-05: I added warning that room retention may cause database

blog/_posts/2021-11-23-leaving-privacyguides.md

@@ -7,35 +7,36 @@ lang: en
 robots: noai
 ---
 
-_PrivacyGuides.org was supposed to be the continuation of PrivacyTools.io based
+_PrivacyGuides.org was supposed to be the continuation of PrivacyTools.io
-on transparency/openess, actually reviewing recommendations and having at least
+based on transparency/openess, actually reviewing recommendations and having
-two reviews by team members before un/recommending anything. That is no longer
+at least two reviews by team members before un/recommending anything. That
-the case._
+is no longer the case._
 
-Between 2021-11-12 and 2021-11-20 I had a friend visiting me physically so I was
+Between 2021-11-12 and 2021-11-20 I had a friend visiting me physically so
-less available online. During that time, on 2021-11-18 9.30 UTC+2 a pull request
+I was less available online. During that time, on 2021-11-18 9.30 UTC+2
-was force-merged by a team member listing three new projects and removing two.
+a pull request was force-merged by a team member listing three new projects
+and removing two.
 
 - [privacyguides/privacyguides.org#274](https://github.com/privacyguides/privacyguides.org/pull/274)
 
 This was mentioned in the team room and reviews were asked during one hour
 period before the force-merge, but no one was online to review before it was
-already merged. I didn't realize what had happened, until another PR came in on
+already merged. I didn't realize what had happened, until another PR came in
-2021-11-21.
+on 2021-11-21.
 
-I believe this change violates what Privacy Guides stands for and as no one has
+I believe this change violates what Privacy Guides stands for and as no one
-any interest making an announcement (this may be the first one) or reverting the
+has any interest making an announcement (this may be the first one) or
-pull request until proper process, I consider that the team has no purpose and
+reverting the pull request until proper process, I consider that the team
-isn't needed for reviewing anything as opinions of an individual can be
+has no purpose and isn't needed for reviewing anything as opinions of an
-force-pushed through like that.
+individual can be force-pushed through like that.
 
-This has brought me enough anxiety and stress to distract me from other aspects
+This has brought me enough anxiety and stress to distract me from other
-of my life and I consider my departure to be healthy in general.
+aspects of my life and I consider my departure to be healthy in general.
 
 The way things appear to be going is that there will be a change of criteria
-that will then justify the change. To me this is just the other side of the coin
+that will then justify the change. To me this is just the other side of the
-from changing a law to ban something and then punishing people for it and not
+coin from changing a law to ban something and then punishing people for it
-the way a transparent project should work.
+and not the way a transparent project should work.
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -59,50 +60,49 @@ the way a transparent project should work.
 
 ## Previous leaving
 
-I previously left Privacy Guides team, then known as Privacy Tools due to there
+I previously left Privacy Guides team, then known as Privacy Tools due to
-having been an issue I viewed as conflict of interest, someone in the then-team
+there having been an issue I viewed as conflict of interest, someone in the
-being offered work or gig by a software/service that was willing to be listed,
+then-team being offered work or gig by a software/service that was willing to
-which the rest of the team didn't consider as one or worth mentioning, but you
+be listed, which the rest of the team didn't consider as one or worth mentioning,
-can find more information about that online.
+but you can find more information about that online.
 
-Maybe I am just incapable of working in teams that claim to be something they
+Maybe I am just incapable of working in teams that claim to be something
-are not, while I personally aspire to stand for my values and be openly and
+they are not, while I personally aspire to stand for my values and be openly
-honestly myself.
+and honestly myself.
 
 ## Other issues
 
 ### Cleanup older solutions now, instruct on new ones later
 
-Like everything else in tech, privacy field changes fast and it can be hard to
+Like everything else in tech, privacy field changes fast and it can be hard
-keep up. Privacy Guides appear to have adapted a policy to get rid of old
+to keep up. Privacy Guides appear to have adapted a policy to get rid of old
 recommendations such as HTTPS Everywhere as soon as possible.
 
 HTTPS Everywhere is deprecated and going away as web browsers are rapidly
-gaining an option for enforcing HTTPS connections everywhere. However it is not
+gaining an option for enforcing HTTPS connections everywhere. However it is
-enabled by default in most of web browsers and Privacy Guides has delisted the
+not enabled by default in most of web browsers and Privacy Guides has delisted
-extension without instructions on how to enable the HTTPS-only mode.
+the extension without instructions on how to enable the HTTPS-only mode.
 
 In my opinion the issue is even worse when considering that the option doesn't
 even sync in some web browsers such as Microsoft Edge.
 
-Counter-argument: Microsoft Edge is not private browser, use \<whatever Privacy
+Counter-argument: Microsoft Edge is not private browser, use \<whatever Privacy Guides recommends\>.
-Guides recommends\>.
 
 I hope that helps tech/privacy support people using Privacy Guides as material,
 less techy people may have difficulties even installing extensions.
 
 ### Community communication
 
-I haven't been in the Matrix rooms of Privacy Guides in a long time outside of
+I haven't been in the Matrix rooms of Privacy Guides in a long time outside
-the team, as I find them very draining. I think I have an issue with how
+of the team, as I find them very draining. I think I have an issue with how
 multiple people communicate and there are ongoing discussions on improving the
 Code of Conduct.
 
 ### Privacy, is it one size fits all, what can be sacrificed for it?
 
-As may be clear from this writing, I have multiple values and while privacy is
+As may be clear from this writing, I have multiple values and while privacy
-one of them, I don't consider privacy to be above everything else. For example I
+is one of them, I don't consider privacy to be above everything else. For
-care about climate change and diversity of the internet.
+example I care about climate change and diversity of the internet.
 
 I get the impression that Privacy Guides is going towards a direction where, to
 exaggregate a bit, only VPN providers and internet giants alongside big enough
@@ -110,127 +110,109 @@ organizations exist. And by VPN, I don't mean a service that connects two
 networks together letting you access private network resources, I mean a service
 that everyone in ICT field appears to tell you to get to be private and secure
 online, commonly without explaining why you need one, or which one, which
-results into a risk of getting one that may be a bit shady or paying it's way
+results into a risk of getting one that may be a bit shady or paying it's
-into rankings (Privacy Guides doesn't take money to my knowledge, but who can
+way into rankings (Privacy Guides doesn't take money to my knowledge, but who
-know if force-merges will make that the norm in the future).
+can know if force-merges will make that the norm in the future).
 
-I disagree and wish to see a connected world where anyone can host a server even
+I disagree and wish to see a connected world where anyone can host a server
-at their home or even host on P2P networks without caring about NAT or
+even at their home or even host on P2P networks without caring about NAT or
-port-forwarding, while that goes to firewalls versus NAT territory and brings in
+port-forwarding, while that goes to firewalls versus NAT territory and brings
-the dark side of Internet of Things which likely call home, don't interoperate
+in the dark side of Internet of Things which likely call home, don't interoperate
 with each other, and never get updates or may just stop working should the
-manufacturer go out of business, but that would be something for another blog
+manufacturer go out of business, but that would be something for another blog post.
-post.
 
-I argue that today enforcing HTTPS everywhere and encrypting DNS is enough for
+I argue that today enforcing HTTPS everywhere and encrypting DNS is enough
-majority of people and in case of family tech-administrators can go a long way
+for majority of people and in case of family tech-administrators can go
-in upkeeping security in form of malicious domain filtering without drawbacks of
+a long way in upkeeping security in form of malicious domain filtering without
-VPNs (increased latencies, captchas, connectivity problems in poor network
+drawbacks of VPNs (increased latencies, captchas, connectivity problems in
-connections).
+poor network connections).
 
-- _Before following any of this, please see
+- _Before following any of this, please see [Quad9 privacy policy](https://quad9.net/service/privacy/) and decide whether it suits for you_
-  [Quad9 privacy policy](https://quad9.net/service/privacy/) and decide whether
+  - DoT vs Private DNS vs DoH? (Private DNS is) DoT which actually cares about diverse internet, has less bloat on it
-  it suits for you_
+    and due to separate port is likely choice of your network admin. However **_DoH actually works everywhere_**
-  - DoT vs Private DNS vs DoH? (Private DNS is) DoT which actually cares about
+    due to using the same port, so as someone who just wants to use the internet, it should be preferred.
-    diverse internet, has less bloat on it and due to separate port is likely
+    If you are implementing encrypted DNS somewhere, I would request support
-    choice of your network admin. However **_DoH actually works everywhere_**
+    for both for the [DoT opportunistic mode which should be default](https://datatracker.ietf.org/doc/html/rfc8310#section-5).
-    due to using the same port, so as someone who just wants to use the
-    internet, it should be preferred. If you are implementing encrypted DNS
-    somewhere, I would request support for both for the
-    [DoT opportunistic mode which should be default](https://datatracker.ietf.org/doc/html/rfc8310#section-5).
 - Android9+: Settings -> Advanced -> Private DNS: `dns.quad9.net`
 - Apple: [encrypted-dns.party](https://encrypted-dns.party/)
-- SailfishOS:
+- SailfishOS: [feature request](https://forum.sailfishos.org/t/support-doh-for-sailfish/3616?u=mikaela)
-  [feature request](https://forum.sailfishos.org/t/support-doh-for-sailfish/3616?u=mikaela)
+- Linux: [systemd-resolved on Arch Wiki](https://wiki.archlinux.org/title/Systemd-resolved#DNS_over_TLS) [Actually secure DNS over TLS in Unbound on ctrl.blog](https://www.ctrl.blog/entry/unbound-tls-forwarding.html)
-- Linux:
+- Windows 11: [proper method](https://docs.microsoft.com/windows-server/networking/dns/doh-client-support) or (read first: [Microsoft: Windows registry for advanced users](https://docs.microsoft.com/troubleshoot/windows-server/performance/windows-registry-advanced-users)) [improper method that only experienced users if even them should use](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/Windows/DoH/DohWellKnownServers.reg) and in any case network settings
-  [systemd-resolved on Arch Wiki](https://wiki.archlinux.org/title/Systemd-resolved#DNS_over_TLS)
-  [Actually secure DNS over TLS in Unbound on ctrl.blog](https://www.ctrl.blog/entry/unbound-tls-forwarding.html)
-- Windows 11:
-  [proper method](https://docs.microsoft.com/windows-server/networking/dns/doh-client-support)
-  or (read first:
-  [Microsoft: Windows registry for advanced users](https://docs.microsoft.com/troubleshoot/windows-server/performance/windows-registry-advanced-users))
-  [improper method that only experienced users if even them should use](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/Windows/DoH/DohWellKnownServers.reg)
-  and in any case network settings
 
-Counter-argument: encrypted DNS doesn't encrypt the IP address you are
+Counter-argument: encrypted DNS doesn't encrypt the IP address you are connecting
-connecting to which often maps back to the plaintext domain, and SNI is still
+to which often maps back to the plaintext domain, and SNI is still visible so
-visible so the sites you visit are still visible.
+the sites you visit are still visible.
 
 Counter-counter-argument: do people around you really care if the ISP and
 encrypted DNS provider know they are visiting sites like `facebook.com` and
 `youtube.com` as they still cannot see what you are doing there?
 
-In case encrypting what is being done on sites (https) and encrypting DNS (to
+In case encrypting what is being done on sites (https) and encrypting DNS
-protect from DNS hijacking) is not enough, I would advice using
+(to protect from DNS hijacking) is not enough, I would advice using [Tor](https://torproject.org/) instead
-[Tor](https://torproject.org/) instead and becoming familiar with their website.
+and becoming familiar with their website.
 
-What if the WiFi-AP/ISP/VPN/encrypted-DNS server is lying whether intentionally
+What if the WiFi-AP/ISP/VPN/encrypted-DNS server is lying whether intentionally or not? DNSSEC
-or not? DNSSEC and certificate authorities. Also out of scope for this post, but
+and certificate authorities. Also out of scope for this post, but if your
-if your interest is piqued, please do use your favourite search engine to learn
+interest is piqued, please do use your favourite search engine to learn more,
-more, I already wrote too much about encrypted DNS...
+I already wrote too much about encrypted DNS...
 
 ### Real time communication platforms
 
-If you look into Privacy Guides instant messaging platforms, at the time of
+If you look into Privacy Guides instant messaging platforms, at the time
-writing it will suggest you to use Element. That means nothing, [there are three
+of writing it will suggest you to use Element. That means nothing,
-different apps called as Element on three different platforms, the only thing
+[there are three different apps called as Element on three different platforms, the only thing in common is the name and if you are looking for privacy, you should look into it deeper or look entirely elsewhere, but that is my previous blog post]({% post_url blog/2021-08-03-matrix-perfect-privacy-not %}). TL;DR is that (at the time of writing)
-in common is the name and if you are looking for privacy, you should look into
+your room specific display names may leak and media files are never actually
-it deeper or look entirely elsewhere, but that is my previous blog
+removed. If that is fine for you, great. If your issue is just with
-post]({% post_url blog/2021-08-03-matrix-perfect-privacy-not %}). TL;DR is that (at
+room specific display names, I would suggest a Matrix client that allows
-the time of writing) your room specific display names may leak and media files are
+using multiple different accounts such as [FluffyChat](https://fluffychat.im/) (note:
-never actually removed. If that is fine for you, great. If your issue is just with
+I am a contributor).
-room specific display names, I would suggest a Matrix client that allows using multiple
-different accounts such as [FluffyChat](https://fluffychat.im/) (note: I am a contributor).
 
-Privacy Guides not warning about Matrix may be partially my fault as
+Privacy Guides not warning about Matrix may be partially my fault
-[I was the team member mainly warning about it and assigned the issue to myself](https://github.com/privacyguides/privacyguides.org/issues/50)
+as [I was the team member mainly warning about it and assigned the issue to myself](https://github.com/privacyguides/privacyguides.org/issues/50) though.
-though.
 
-XMPP? Privacy Guides doesn't mention it, because there is no single app to
+XMPP? Privacy Guides doesn't mention it, because there is no single app
-recommend across all platforms (and I am grateful about that as opposed to
+to recommend across all platforms (and I am grateful about that
-Element not being Element not being Element) and the protocol doesn't enforce
+as opposed to Element not being Element not being Element) and the protocol
-end-to-end encryption. I am not sure if being under control of the server admin
+doesn't enforce end-to-end encryption. I am not sure if being under control
-counts as Matrix also allows server admin to perform takeover and other
+of the server admin counts as Matrix also allows server admin to perform takeover
-hostilities.
+and other hostilities. [Compatibility suites?](https://xmpp.org/about/myths/#everybody-implements-different-incompatible-extensions),
-[Compatibility suites?](https://xmpp.org/about/myths/#everybody-implements-different-incompatible-extensions),
 they don't care.
 
 Speaking of end-to-end encryption, another rejected solution especially for
-teams is IRC, especially [Ergo](https://ergo.chat/) (which I am going to blog in
+teams is IRC, especially [Ergo](https://ergo.chat/) (which I am going
-the future about) as end-to-end encryption isn't useful in public channels, it
+to blog in the future about) as end-to-end encryption
-can easily be used in internal network (maybe accessed by not-misnomer-VPN I
+isn't useful in public channels, it can easily be used in internal network
-wrote about above) or ran in public allowing Tor access without requiring
+(maybe accessed by not-misnomer-VPN I wrote about above) or ran in public
-registration, at the time neither Slack or Discord provides end-to-end
+allowing Tor access without requiring registration, at the time neither Slack
-encryption and neither Slack or Element provides guest access to my knowledge.
+or Discord provides end-to-end encryption and neither Slack or Element provides
-(The toggle in room settings? It was removed accidentally without never getting
+guest access to my knowledge. (The toggle in room settings? It was removed
-reimplemented).
+accidentally without never getting reimplemented).
 
 Anyway, there may be a time and place for every communication platform,
-personally I perform a lot of mix-and-matching as that is what people I actually
+personally I perform a lot of mix-and-matching as that is what people I
-do want to communicate with do, I haven't been able to talk my family from
+actually do want to communicate with do, I haven't been able to talk my
-WhatsApp by <s>FACEBOOK</s> Meta (I actually tried to leave it pre-pandemic and
+family from WhatsApp by <s>FACEBOOK</s> Meta (I actually tried to leave
-thus lost access to many people and peer support groups), I have several Signal
+it pre-pandemic and thus lost access to many people and peer support groups),
-contacts, Matrix and IRC are in my daily use and I don't see XMPP going away any
+I have several Signal contacts, Matrix and IRC are in my daily use and I
-time soon either.
+don't see XMPP going away any time soon either.
 
 ## What now
 
 I hope leaving Privacy Guides will leave me more time to do things that matter
 to me and my hobbies and other things taking time. For example, I am at work
-try-out practice, seeking for employment and I have recently agreed to
+try-out practice, seeking for employment and I have recently agreed to contribute
-contribute into [FluffyChat's](https://fluffychat.im/) Finnish translations
+into [FluffyChat's](https://fluffychat.im/) Finnish translations (while I feel
-(while I feel a bit guilty about the state of Finnish translations in KISS
+a bit guilty about the state of Finnish translations in KISS Launcher and Onion Share
-Launcher and Onion Share that I haven't looked into in ages). Language learning
+that I haven't looked into in ages). Language learning also takes a lot of time
-also takes a lot of time and stubborness to not give up. And then there is this
+and stubborness to not give up. And then there is this website where I currently
-website where I currently have 49 issues/ideas open (26 of them labeled as blog)
+have 49 issues/ideas open (26 of them labeled as blog)
 
-Obligatory: should I be believed on this over Privacy Guides? Neither should be
+Obligatory: should I be believed on this over Privacy Guides? Neither
-believed in, take everything with a grain of salt, use your favourite search
+should be believed in, take everything with a grain of salt, use your
-engine and reach your own answers. Do also check whether there is money
+favourite search engine and reach your own answers. Do also check whether
-involved, does the service/app have affiliate programme? I think a lot of what I
+there is money involved, does the service/app have affiliate programme? I think
-am saying is my opinions and privacy sites reflect opinions of their writers, so
+a lot of what I am saying is my opinions and privacy sites reflect opinions
-I wish you good luck trying to find any absolute fact that works in every
+of their writers, so I wish you good luck trying to find any absolute fact
-situation should you attempt that venture.
+that works in every situation should you attempt that venture.
 
-See also
+See also [Media literacy on Wikipedia](https://en.wikipedia.org/wiki/Media_literacy).
-[Media literacy on Wikipedia](https://en.wikipedia.org/wiki/Media_literacy).

blog/_posts/2021-12-05-matrix-community-abuse-security-by-obscurity.md

@@ -1,25 +1,22 @@
 ---
 layout: post
-title:
+title: "Matrix abuse protection model for community maintainers: security by obscurity"
-  "Matrix abuse protection model for community maintainers: security by
-  obscurity"
 category: [english]
 tags: [matrix]
 lang: en
 robots: noai
 ---
 
-_I am administrator or moderator in multiple communities in Matrix, the most
+_I am administrator or moderator in multiple communities in Matrix, the most sizable
-sizable being 23 rooms + two spaces. I don't have my own homeserver or Mjolnir.
+being 23 rooms + two spaces. I don't have my own homeserver or Mjolnir. And I am tired._
-And I am tired._
 
 If I was using Discord, I would make a guild, make roles within it and then
 right click people and assign them roles and they would be able to manage all
 channels those roles let them. Time estimate less than 15 minutes.
 
 Sadly I am not using Discord, I am using Matrix. This means that while burnt out
-it feels like no one has thought of the case where a community with more than a
+it feels like no one has thought of the case where a community with more than
-couple of rooms wants to use Matrix.
+a couple of rooms wants to use Matrix.
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -49,107 +46,93 @@ smaller steps:
 1. Use https://develop.element.io/ (or have a config.json allowing you to use
    labs)
 2. Create a space.
-3. Through developer mode `/upgraderoom {{ site.matrixLatestRoomVersion }}`. 2.
+3. Through developer mode `/upgraderoom {{ site.matrixLatestRoomVersion }}`. 2. **_WARNING_** You should check [the Matrix spec](https://spec.matrix.org/latest/rooms/)
-   **_WARNING_** You should check
+   for the latest stable room version. Or maybe the [unstable spec](https://spec.matrix.org/unstable/rooms/)?
-   [the Matrix spec](https://spec.matrix.org/latest/rooms/) for the latest
+   Or maybe you should just [search GitHub](https://github.com/matrix-org/matrix-spec-proposals/issues?q=room%20version)? 3. **_WARNING! Always before executing `/upgraderoom` check that everyone in your room has a recent Matrix server that supports your target room version, otherwise you may lock some of your users out._** For example `/invite @version:maunium.net` and once it joins, say
-   stable room version. Or maybe the
+   `!servers upgrade {{site.matrixLatestRoomVersion}}` to get a list of servers that don't support room version {{site.matrixLatestRoomVersion}} yet.
-   [unstable spec](https://spec.matrix.org/unstable/rooms/)? Or maybe you should
-   just
-   [search GitHub](https://github.com/matrix-org/matrix-spec-proposals/issues?q=room%20version)? 3.
-   **_WARNING! Always before executing `/upgraderoom` check that everyone in
-   your room has a recent Matrix server that supports your target room version,
-   otherwise you may lock some of your users out._** For example
-   `/invite @version:maunium.net` and once it joins, say
-   `!servers upgrade {{site.matrixLatestRoomVersion}}` to get a list of servers
-   that don't support room version {{site.matrixLatestRoomVersion}} yet.
 4. Clear cache and reload so the old space maybe disappears.
-5. See also
+5. See also [Element-web#19208: Allow upgrading spaces](https://github.com/vector-im/element-web/issues/19208)
-   [Element-web#19208: Allow upgrading spaces](https://github.com/vector-im/element-web/issues/19208)
 6. Now that there is a space, right click it to create a new room under it and
    select that it can only be joined by space members. You will hopefully end up
    with room version 9 (the default at time of writing is 6 and has even worse
    situation with abuse pretention).
-7. Go to room settings and set the room to public join assuming it's supposed to
+7. Go to room settings and set the room to public join assuming it's supposed
-   be public (14 of this worst case scenario are)
+   to be public (14 of this worst case scenario are)
-8. Repeat steps 5-7 for all rooms you need, you can hopefully figure out how to
+8. Repeat steps 5-7 for all rooms you need, you can hopefully figure out how
-   handle a private space (9 rooms in this case).
+   to handle a private space (9 rooms in this case).
 
 ### Bus factor
 
-As we are a serious organisation using Matrix here, even if we have no money or
+As we are a serious organisation using Matrix here, even if we have no money
-people or homeserver or Mjolnir, what happens if you somehow become unable to
+or people or homeserver or Mjolnir, what happens if you somehow become unable
-access your account or are asleep or something when you are needed? You add more
+to access your account or are asleep or something when you are needed? You add
-people with power and also register yourself on multiple homeservers, so if your
+more people with power and also register yourself on multiple homeservers, so
-main account goes down, you have power somewhere else.
+if your main account goes down, you have power somewhere else.
 
-Let's say you have 20 rooms (you get it a bit more easy than I do), I think you
+Let's say you have 20 rooms (you get it a bit more easy than I do), I think
-have three methods to promote your other accounts:
+you have three methods to promote your other accounts:
 
 **_WARNING: administrator status cannot be removed by others._**
 
-- A. Using the graphical user interface, invite the other administrators to the
+- A. Using the graphical user interface, invite the other administrators to
-  room and click the buttons to make them administrators. I am too tired to
+  the room and click the buttons to make them administrators. I am too tired
-  check how to do this, but it's a graphical user interface, good luck! Remember
+  to check how to do this, but it's a graphical user interface, good luck!
-  you will do this twenty times, once for every room/administrator.
+  Remember you will do this twenty times, once for every room/administrator.
-- B. You can type `/invite @user:example.org` and then
+- B. You can type `/invite @user:example.org` and then `/op @user:example.org 100`
-  `/op @user:example.org 100` and copy-paste it all the time!
+  and copy-paste it all the time!
-- C. My favourite, you can have a pre-formatted power-level event in json in a
+- C. My favourite, you can have a pre-formatted power-level event in json in
-  git repository from which you can copy-paste it to all rooms, first
+  a git repository from which you can copy-paste it to all rooms, first `/devtools`,
-  `/devtools`, then "room state", "m.room.power_levels", "edit" and you can
+  then "room state", "m.room.power_levels", "edit" and you can paste your new
-  paste your new administrators there and press "send"! This is the only mass
+  administrators there and press "send"! This is the only mass option you have,
-  option you have, and you will have to do this in each twenty rooms.
+  and you will have to do this in each twenty rooms.
 
 Remember you will have to do this every time you add a new moderator (or they
 will be unable to act in the room when they are needed)!
 
-We also have a matterbridge (which has it's own configuration for every room,
+We also have a matterbridge (which has it's own configuration for every room, but
-but offtopic here) which has administrator / power level 100 in every room, so
+offtopic here) which has administrator / power level 100 in every room, so if
-if I am not available the administrator team can login as it and take care of
+I am not available the administrator team can login as it and take care of
 the situation.
 
 ## Abuse finds you!
 
 Congratulations, if abuse has found you, the security through obscurity model
 has failed and now you get to deal with it! That is very simple, you just check
-the abuser MXID, and paste `/ban @yourorgisbad:evil.example.invalid` to all
+the abuser MXID, and paste `/ban @yourorgisbad:evil.example.invalid` to all twenty
-twenty rooms.
+rooms.
 
 Did you find out that you have a lot of abuse from a single server and Matrix
-doesn't support wildcards in bans? No problem,
+doesn't support wildcards in bans? No problem, [Matrix has your back with "Moderation in Matrix!"](https://web.archive.org/web/20211205204104/https://matrix.org/docs/guides/moderation/),
-[Matrix has your back with "Moderation in Matrix!"](https://web.archive.org/web/20211205204104/https://matrix.org/docs/guides/moderation/),
+you simply use `/devtools` and ban the entire server by sending a completely new event
-you simply use `/devtools` and ban the entire server by sending a completely new
+`m.room.server_acl`, luckily you are a professional `/devtools` user at this point
-event `m.room.server_acl`, luckily you are a professional `/devtools` user at
+so having to do this 20 times is nothing to you.
-this point so having to do this 20 times is nothing to you.
 
-_2022-01-10 addition:_ this becomes worse as Matrix Synapse alongside
+_2022-01-10 addition:_ this becomes worse as Matrix Synapse alongside [the Matrix protocol itself will authorise everything done by servers that don't honour the `m.room.server_acl` event](https://github.com/matrix-org/matrix-spec/issues/928)
-[the Matrix protocol itself will authorise everything done by servers that don't honour the `m.room.server_acl` event](https://github.com/matrix-org/matrix-spec/issues/928)
+so as per the guide, you will have to acl those servers too (or the ACL might as well not exist).
-so as per the guide, you will have to acl those servers too (or the ACL might as
-well not exist).
 
 ### Icing on the cake
 
-Could this get any better? Yes, the abuse could happen when you are sleeping or
+Could this get any better? Yes, the abuse could happen when you are sleeping
-otherwise out of the picture, so your fellow ICT team member (who has no
+or otherwise out of the picture, so your fellow ICT team member (who has no interest
-interest in touching this mess with a long stick) has to step in for you and
+in touching this mess with a long stick) has to step in for you and resolve the issue.
-resolve the issue.
 
 It's a stress situation for them, will the ICT team be able to find the shared
 password for the Matrix administrator account you hopefully have and speedlearn
 to be a `/devtools` professional or able to handle even easier forms of spamming
-or flooding without you present? My money is on the spammer. Good luck,
+or flooding without you present? My money is on the spammer. Good luck, high-five
-high-five for the next team meeting where you wonder what happened, how to
+for the next team meeting where you wonder what happened, how to prevent it from
-prevent it from happening again and will you even support Matrix in the future?
+happening again and will you even support Matrix in the future?
 
-I hope someone thanked you for ever having your organization there, I know that
+I hope someone thanked you for ever having your organization there, I know
-I have only gotten complaints about matterbridge looking ugly and not using
+that I have only gotten complaints about matterbridge looking ugly and not
-matrix-appservice-irc, \<redacted-for-similar-trouble\>,
+using matrix-appservice-irc, \<redacted-for-similar-trouble\>, matrix-whatever-discord,
-matrix-whatever-discord, etc.
+etc.
 
 ## Aminda, are you ok, has this happened to you?
 
 Thank you for asking, I am not ok, I have a burnout and xmas is poor time for me
-in general, and this whole issue is ridiculous, someone could have thought of it
+in general, and this whole issue is ridiculous, someone could have thought of
-since 2014, everything I am saying is public knowledge, but no one cares.
+it since 2014, everything I am saying is public knowledge, but no one cares.
 
 It's whoever is running Matrix without hosting their own homeserver and Mjölnir
 (which brings all reasonable management for organizations) who is at fault (me).
@@ -160,14 +143,13 @@ it off the internet before beginning.
 
 It's [Pirate Party of Finland](https://piraattipuolue.fi/en). I cannot say
 whether it's us or Matrix that is obscure enough to have avoided the nightmare I
-painted in this blog post, but as I am the only administrator at Matrix, I have
+painted in this blog post, but as I am the only administrator at Matrix, I
-locked it down so the rest of the ICT team can continue not touching Matrix or
+have locked it down so the rest of the ICT team can continue not touching Matrix
-practicing `/devtools` first without a stressful situation.
+or practicing `/devtools` first without a stressful situation.
 
 [Our main space](matrix:r/space.piraatit.fi:matrix.org?action=join) requires
 knocking before it can be joined. Don't ask me what Matrix clients support
-knocking, it's part of
+knocking, it's part of [Matrix spec version 1.1](https://spec.matrix.org/v1.1/rooms/v7/#authorization-rules),
-[Matrix spec version 1.1](https://spec.matrix.org/v1.1/rooms/v7/#authorization-rules),
 don't even ask me what Matrix servers support it.
 
 Our public rooms within that space require being a member of that space.
@@ -175,20 +157,19 @@ Our public rooms within that space require being a member of that space.
 Our more sensitive rooms that desire working peace from spammers are in a
 subspace, which again require belonging to it, and which requires knocking too.
 We have similar system in place at Discord where we just grant people a role
-once they have talked a bit and shown themselves to not be malicious and this is
+once they have talked a bit and shown themselves to not be malicious and this
-the best <s>we</s> I can do at Matrix.
+is the best <s>we</s> I can do at Matrix.
 
-The above looks a bit weird as I was going to put the actual json events there,
+The above looks a bit weird as I was going to put the actual json events
-but I am too tired to bother with that.
+there, but I am too tired to bother with that.
 
 ## Afterword
 
-If I am wrong at anything I said, please contact me instantly either in
+If I am wrong at anything I said, please contact me instantly either in [my discussion channels](/discuss),
-[my discussion channels](/discuss),
 [the GitHub issue for this post](https://github.com/Mikaela/mikaela.github.io/issues/268)
-or mention `@Mikaela` in any GitHub.com/GitLab.com issue (I am not reading my
+or mention `@Mikaela` in any GitHub.com/GitLab.com issue (I am not reading my email actively though)
-email actively though) as if I am wrong and there is a reasonable Discord-style
+as if I am wrong and there is a reasonable Discord-style interface for this
-interface for this without additional money, you are improving my life greatly
+without additional money, you are improving my life greatly as I am not just
-as I am not just going to stop using Matrix.
+going to stop using Matrix.
 
 - [Obligatory changelog link](https://github.com/Mikaela/mikaela.github.io/commits/master/blog/_posts/2021-12-05-matrix-community-abuse-security-by-obscurity.md)

blog/_posts/2022-08-22-ssh-signing-verifying-functions.md

@@ -6,33 +6,26 @@ tags: [ssh]
 robots: noai
 ---
 
-_I have been using SSH signed git commits from 8 months and started signing
+_I have been using SSH signed git commits from 8 months and started signing things with my SSH key instead of PGP keys and thought to share how to do that more easily_
-things with my SSH key instead of PGP keys and thought to share how to do that
-more easily_
 
 If you didn't know that SSH can be used for this, I suggest reading
 
 - [Andrew Ayer: It's Now Possible To Sign Arbitrary Data With Your SSH Keys](https://www.agwa.name/blog/post/ssh_signatures)
-- [Caleb Hearth: Signing Git Commits with Your SSH Key](https://calebhearth.com/sign-git-with-ssh)
+- [Caleb Hearth: Signing Git Commits with Your SSH Key](https://calebhearth.com/sign-git-with-ssh) ([web.archive.org](https://web.archive.org/web/20211117182628/https://calebhearth.com/sign-git-with-ssh))
-  ([web.archive.org](https://web.archive.org/web/20211117182628/https://calebhearth.com/sign-git-with-ssh))
 
 ## Signing
 
-Usually you do `ssh-keygen -Y sign -f MYPUBLICKEY -n TYPE filename`, but that is
+Usually you do `ssh-keygen -Y sign -f MYPUBLICKEY -n TYPE filename`, but that is a bit of effort, why not make an alias for it? In my shellrc's I have:
-a bit of effort, why not make an alias for it? In my shellrc's I have:
 
 ```bash
 alias ssh-sign-file="ssh-keygen -Y sign -f ~/.ssh/signingkey.pub -n file"
 ```
 
-As I don't change which key I use so often, I can export my public key to
+As I don't change which key I use so often, I can export my public key to `~/.ssh/signingkey.pub`
-`~/.ssh/signingkey.pub` or symlink it to the right place and now when I need to
+or symlink it to the right place and now when I need to sign something, I can just `ssh-sign-file file.txt`
-sign something, I can just `ssh-sign-file file.txt` to generate a
+to generate a `file.txt.sig`. Of course this assumes that I always sign files, but I don't remember signing other things as git handles the commits for me.
-`file.txt.sig`. Of course this assumes that I always sign files, but I don't
-remember signing other things as git handles the commits for me.
 
-Thus to sign file, I simply say `ssh-sign-file hello.txt` to receive
+Thus to sign file, I simply say `ssh-sign-file hello.txt` to receive `hello.txt.sig` containing my signature.
-`hello.txt.sig` containing my signature.
 
 ```
 Signing file hello.txt
@@ -41,11 +34,7 @@ Write signature to hello.txt.sig
 
 ## Verifying
 
-There isn't much point in signing things, unless you are able to verify them.
+There isn't much point in signing things, unless you are able to verify them. The command for this is `ssh-keygen -Y verify -f $allowed_signers -I $EMAIL -n file -s SIGNATUREFILE < $2`, isn't that a bit much to keep in mind? In my opinion it is and thus the function gets a bit more complicated:
-The command for this is
-`ssh-keygen -Y verify -f $allowed_signers -I $EMAIL -n file -s SIGNATUREFILE < $2`,
-isn't that a bit much to keep in mind? In my opinion it is and thus the function
-gets a bit more complicated:
 
 ```bash
 sshAllowedSigners=$HOME/src/gitea.blesmrt.net/Mikaela/ssh-allowed_signers/allowed_signers
@@ -55,19 +44,16 @@ ssh-verify-file() {
 }
 ```
 
-First I specify where is my `allowed_signers` file so I don't have to repeat it
+First I specify where is my `allowed_signers` file so I don't have to repeat it and in case I misuse the function, it reminds me how to use it:
-and in case I misuse the function, it reminds me how to use it:
 
 ```bash
 % ssh-verify-file hello.txt
 ssh-verify-file:1: 2: Usage: ssh-verify-file <email> <file-to-verify>
 ```
 
-I again don't remember verifying other types of files as git handles it for me
+I again don't remember verifying other types of files as git handles it for me and I think it's a safe assumption that the signature ends to `.sig`.
-and I think it's a safe assumption that the signature ends to `.sig`.
 
-So to use it properly and verify the previously signed file
+So to use it properly and verify the previously signed file `ssh-verify-file noreply@aminda.eu hello.txt`
-`ssh-verify-file noreply@aminda.eu hello.txt`
 
 ```
 Good "file" signature for noreply@aminda.eu with ED25519 key SHA256:y2OpGEbett3Fqn8XFrP0X4mWfCVKf4rWkxERzqPY81U
@@ -75,13 +61,11 @@ Good "file" signature for noreply@aminda.eu with ED25519 key SHA256:y2OpGEbett3F
 
 ## Extra: having git handle it for me
 
-When git is configured properly with `gpg.ssh.allowedSignersFile` the usual git
+When git is configured properly with `gpg.ssh.allowedSignersFile` the usual git verification commands work with SSH as well:
-verification commands work with SSH as well:
 
 - `git log --show-signature` for the usual git log with signatures visbile
 - `git verify-tag 1.0` for verifying a specific tag signature.
-- `git verify-commit HEAD` to verify the latest commit signature or just to see
+- `git verify-commit HEAD` to verify the latest commit signature or just to see that git signing is working.
-  that git signing is working.
 
 Isn't the last command again effort? What if I could just say `git verify`?
 

blog/_posts/2024-05-17-https-everywhere.md

@@ -11,23 +11,16 @@ lang: en
 robots: noai
 ---
 
-_I used to be sad since the EFF discontinued HTTPS Everywhere extension since
+_I used to be sad since the EFF discontinued HTTPS Everywhere extension since the setting often didn't sync and it only applied to me as opposed to everyone using a shared computer. However since I have dived into browser policies, this is no longer an issue for me._
-the setting often didn't sync and it only applied to me as opposed to everyone
-using a shared computer. However since I have dived into browser policies, this
-is no longer an issue for me._
 
-I will be referring to my
+I will be referring to my [shell-things](https://gitea.blesmrt.net/mikaela/shell-things/) repository a lot, particularly
-[shell-things](https://gitea.blesmrt.net/mikaela/shell-things/) repository a
+`etc/`, in case the link rots in the future, chances are my git forges still
-lot, particularly `etc/`, in case the link rots in the future, chances are my
+have that available. I also have [a script etc/init-browser-profiles.bash](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/etc/init-browser-policies.bash) that creates the directories, symlinks for Chromium-based browsers and sets the permissions properly (if something won't work for you, check the permissions!),
-git forges still have that available. I also have
+so I only need to manage Chromium to also manage Brave, Google Chrome,
-[a script etc/init-browser-profiles.bash](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/etc/init-browser-policies.bash)
+Microsoft Edge, Vivaldi etc.
-that creates the directories, symlinks for Chromium-based browsers and sets the
-permissions properly (if something won't work for you, check the permissions!),
-so I only need to manage Chromium to also manage Brave, Google Chrome, Microsoft
-Edge, Vivaldi etc.
 
-Please note that I don't have a Windows or macOS at paw and my only advice for
+Please note that I don't have a Windows or macOS at paw and my only advice
-those is the official documentation (bottom of the page).
+for those is the official documentation (bottom of the page).
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -51,11 +44,11 @@ those is the official documentation (bottom of the page).
 
 I love Chromium policies as I can just throw them in the directories
 `/etc/opt/chromium/policies/{managed,recommended}/` in different `.json` files
-and then just copy what I need instead of... Now I am going ahead of myself with
+and then just copy what I need instead of... Now I am going ahead of myself
-Firefox. Managed means that the setting will be locked for the user and that is
+with Firefox. Managed means that the setting will be locked for the user
-what I am using here, recommended will change the default and show an indicator
+and that is what I am using here, recommended will change the default and
-for the user about it being recommended while still allowing it to be changed by
+show an indicator for the user about it being recommended while still allowing
-the way.
+it to be changed by the way.
 
 The case of HTTPS Everywhere is simple. I will copy a bit of my script:
 
@@ -70,8 +63,8 @@ sudo chmod -v a+rx /etc/opt/chromium/policies/{managed,recommended}/
 
 If you don't speak \*nix, `mkdir -vp` creates the directories verbosely
 including their parent directories if those don't exist already and
-`chmod -v a+rx` verbosely allows everyone to read and execute, which is required
+`chmod -v a+rx` verbosely allows everyone to read and execute, which is
-for listing directory contents.
+required for listing directory contents.
 
 ```bash
 # An example, without the -p there would be error about the parent directory
@@ -85,8 +78,8 @@ mode of '/tmp/meow' retained as 0755 (rwxr-xr-x)
 
 ---
 
-Anyway, HTTPS Everywhere for Chromium. Once the directory exists, it's just a
+Anyway, HTTPS Everywhere for Chromium. Once the directory exists, it's just
-matter of creating a json file there, e.g.
+a matter of creating a json file there, e.g.
 `/etc/opt/chromium/policies/managed/https-everywhere.json`:
 
 ```json
@@ -101,28 +94,28 @@ Now visit `about:policy` and see the policy appear (or if Chromium was already
 running, click `Update policies`) and you are done. Try visiting
 [http.badssl.com](https://http.badssl.com) to see it in action.
 
-Of course the user can still navigate there, but HTTPS Everywhere the extension
+Of course the user can still navigate there, but HTTPS Everywhere the
-had that behaviour too and there is likely a separate policy for that.
+extension had that behaviour too and there is likely a separate policy for
+that.
 
 _EncryptedClientHello was added here some hours after publishing the article
 alongside with Firefox DNS-over-HTTPS. See the bottom of page for changelog
 link._
 
 To put `EncryptedClientHello` simply, it will hide which domain you are
-requesting from https capable web server, which may be serving multiple domains
+requesting from https capable web server, which may be serving multiple
-when DNS-Over-HTTPS is used
+domains when DNS-Over-HTTPS is used ([Chromium restriction](https://issues.chromium.org/issues/40935452)), while
-([Chromium restriction](https://issues.chromium.org/issues/40935452)), while
 generally the query for `example.net` would go in plaintext alongside _Server
 Name Indication_.
 
-It's good for your privacy, bad for enterprise network admin or those willing to
+It's good for your privacy, bad for enterprise network admin or those willing
-perform censorship.
+to perform censorship.
 
 ### DNS-over-HTTPS
 
-You might have noticed that Chromium no longer allows you to use DNS over HTTPS
+You might have noticed that Chromium no longer allows you to use DNS over
-since the browser is now "managed by an organization". This will require another
+HTTPS since the browser is now "managed by an organization". This will require
-policy that either unlocks it or forces everyone to use it.
+another policy that either unlocks it or forces everyone to use it.
 
 `/etc/opt/chromium/policies/managed/doh-unlocked-unset.json`:
 
@@ -143,28 +136,27 @@ and the user is once again free to use their preferred DoH provider.
 }
 ```
 
-And the user is using DNS-over-HTTPS from Quad9 with fallback to system resolver
+And the user is using DNS-over-HTTPS from Quad9 with fallback to system
-allowed (which for me is encrypted anyway). The `automatic` could be replaced
+resolver allowed (which for me is encrypted anyway). The `automatic` could be
-with `secure` to not allow downgrade, but I had issues with Chromium losing
+replaced with `secure` to not allow downgrade, but I had issues with Chromium
-connectivity entirely.
+losing connectivity entirely.
 
 You may notice that multiple DoH providers are allowed, however I don't know
-what logic is used for choosing between them. Oh and the weird https port 5053?
+what logic is used for choosing between them. Oh and the weird https port
-It comes from
+5053? It comes from
 [docs.quad9.net/services](https://docs.quad9.net/services/#alternate-ports).
 
 ## Firefox
 
 Firefox is a bit more complicated in the sense that everything belongs to one
-`policies.json` file, so there is no separating different policies to different
+`policies.json` file, so there is no separating different policies to
-files _and_ there is no direct policy for HTTPS-only mode.
+different files _and_ there is no direct policy for HTTPS-only mode.
 
-_**WARNING for [LibreAwoo](https://librewolf.net/) users**_!
+_**WARNING for [LibreAwoo](https://librewolf.net/) users**_! [This will mask LibreAwoo's policy](https://codeberg.org/librewolf/issues/issues/1767)
-[This will mask LibreAwoo's policy](https://codeberg.org/librewolf/issues/issues/1767)
 (`/usr/share/librewolf/distribution/policies.json`,
 [codeberg](https://codeberg.org/librewolf/settings/src/branch/master/distribution/policies.json)),
-so make sure to copy the parts you wish to use before applying this (although I
+so make sure to copy the parts you wish to use before applying this (although
-think it might have this out of the box).
+I think it might have this out of the box).
 
 Hoping you read the Chromium section above, you may know the drill with the
 commands and flags:
@@ -206,20 +198,20 @@ editor and have contents similar to:
 }
 ```
 
-After saving and restarting Firefox, `about:policies` should display the change,
+After saving and restarting Firefox, `about:policies` should display the
-`about:config` should display the two preferences as grayed out and within
+change, `about:config` should display the two preferences as grayed out and
-settings HTTPS-Only mode is used in all windows and grayed out.
+within settings HTTPS-Only mode is used in all windows and grayed out.
 
 An easy test is again [http.badssl.com](http://http.badssl.com).
 
 ### DNS-over-HTTPS
 
-_This section was edited in afterwards some hours after the publishing. Refer to
+_This section was edited in afterwards some hours after the publishing. Refer
-the log link on the bottom for more information._
+to the log link on the bottom for more information._
 
-Like Chromium, Firefox also supports DoH, although here it must be in the same
+Like Chromium, Firefox also supports DoH, although here it must be in the
-`/etc/firefox/policies/policies.json` file as before. It's simply appended (or
+same `/etc/firefox/policies/policies.json` file as before. It's simply appended
-prepended) a bit:
+(or prepended) a bit:
 
 ```json
 {
@@ -251,25 +243,24 @@ The new sections are also quite self-explanatory with boolean `true` or `false`
 values.
 
 - Is DoH enabled by default?
-- Is it OK to automatically use system resolver if the DoH server doesn't work?
+- Is it OK to automatically use system resolver if the DoH server doesn't
-  (There is a similar warning as with HTTPS only mode even if this was `false`
+  work? (There is a similar warning as with HTTPS only mode even if this was
-  like in the example.)
+  `false` like in the example.)
 - Is the user allowed to change these options (including which DoH server (if
   any) they want to use) or are they grayed out? I like locking it so I don't
   have to worry where else I may have configured it.
 - Which URL is used for queries? I am under impression that unlike with
   Chromium, multiple addresses aren't allowed here.
 
-_Have you seen a note about temptation to write about IPv6 here? Perhaps you are
+_Have you seen a note about temptation to write about IPv6 here? Perhaps you
-looking for `network.dns.preferIPv6` and `network.trr.early-AAAA`?_
+are looking for `network.dns.preferIPv6` and `network.trr.early-AAAA`?_
 
 **Updated note on Firefox ECH:** DNS-Over-HTTPS is no longer required for ECH,
-since `network.dns.native_https_query` exists (if you aren't using ESR branch on
+since `network.dns.native_https_query` exists (if you aren't using ESR
-version 115). You should already know how to enable it if you have read this far
+branch on version 115). You should already know how to enable it if you have
-😼
+read this far 😼
 
-**_SEQUEL ANNOUNCEMENT!_** [Part Ⅱ: Browser policies Ⅱ: Deploying PrivacyBadger
+**_SEQUEL ANNOUNCEMENT!_** [Part Ⅱ: Browser policies Ⅱ: Deploying PrivacyBadger and uBlock Origin]({% post_url blog/2024-05-22-policy-contentblocker %}) is now online!
-and uBlock Origin]({% post_url blog/2024-05-22-policy-contentblocker %}) is now online!
 
 ## Documentation and other policies
 
@@ -286,18 +277,14 @@ complaining about all the nice settings being hidden in browser policy.
 - The official documentation:
   - [mozilla.github.io/policy-templates](https://mozilla.github.io/policy-templates/)
     - [LibreAwoo policies.json could be mentioned here as well](https://codeberg.org/librewolf/settings/src/branch/master/distribution/policies.json)
-  - [chromeenterprise.google/policies/](https://chromeenterprise.google/policies/)
+  - [chromeenterprise.google/policies/](https://chromeenterprise.google/policies/) mostly also applies to Chromium based browsers, who may have their own additions:
-    mostly also applies to Chromium based browsers, who may have their own
-    additions:
     - [Brave group policy](https://support.brave.com/hc/en-us/articles/360039248271-Group-Policy)
     - [Microsoft Edge policy documentation](https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies)
 - Other documentation that may be interesting:
   - [Ecosia as default search engine through Group Policy](https://ecosia.helpscoutdocs.com/article/487-windows-group-policy-guides)
   - [Privacy Badger enterprise deployment and configuration](https://github.com/EFForg/privacybadger/blob/master/doc/admin-deployment.md)
     - [I maybe got involved there too a bit](https://github.com/EFForg/privacybadger/discussions/2947)
-  - [Deploying uBlock Origin](https://github.com/gorhill/uBlock/wiki/Deploying-uBlock-Origin)
+  - [Deploying uBlock Origin](https://github.com/gorhill/uBlock/wiki/Deploying-uBlock-Origin) and [deploying uBlock Origin configuration](https://github.com/gorhill/uBlock/wiki/Deploying-uBlock-Origin:-configuration)
-    and
-    [deploying uBlock Origin configuration](https://github.com/gorhill/uBlock/wiki/Deploying-uBlock-Origin:-configuration)
     - These also apply to [AdNauseam](https://adnauseam.io/), just change the
       extension ID in your policy.
 - Possibly helpful Wikipedia articles:

blog/_posts/2024-05-22-policy-contentblocker.md

@@ -11,15 +11,9 @@ lang: en
 robots: noai
 ---
 
-_I previously wrote about enforcing HTTPS for all users/profiles through browser
+_I previously wrote about enforcing HTTPS for all users/profiles through browser policy receiving some positive feedback and I felt like continuing on the subject by instructing with extension installation. This barely scratches the surface of what browser policy can do for you either though._
-policy receiving some positive feedback and I felt like continuing on the
-subject by instructing with extension installation. This barely scratches the
-surface of what browser policy can do for you either though._
 
-I recommend reading the [browser policy part Ⅰ on enforcing HTTPS
+I recommend reading the [browser policy part Ⅰ on enforcing HTTPS only mode]({% post_url blog/2024-05-17-https-everywhere %}) as especially the Firefox part will continue building on it and I will try to not repeat myself, although that is unavoidable.
-only mode]({% post_url blog/2024-05-17-https-everywhere %}) as especially the
-Firefox part will continue building on it and I will try to not repeat myself,
-although that is unavoidable.
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -48,105 +42,48 @@ although that is unavoidable.
 
 ## Chromium
 
-[I previously instructed with the directory creation and permissions in the
+[I previously instructed with the directory creation and permissions in the part Ⅰ]({% post_url blog/2024-05-17-https-everywhere %}#chromium) and there I also mentioned loving how I can create separate files
-part Ⅰ]({% post_url blog/2024-05-17-https-everywhere %}#chromium) and there I
+there as opposed to messing everything together. I tend to use the filename
-also mentioned loving how I can create separate files there as opposed to
+`aminda-extensions.json` for all extension related as Chromium isn't perfect
-messing everything together. I tend to use the filename `aminda-extensions.json`
+either and only lets the options appear once.
-for all extension related as Chromium isn't perfect either and only lets the
-options appear once.
 
-So the file may look a bit scary, but it's actually quite simple (and the
+So the file may look a bit scary, but it's actually quite simple (and the difficulty comes from getting json formatted correctly, which I am leaving for `pretty-format-json` pre-commit hook), so I am going to explain everything before the actual json:
-difficulty comes from getting json formatted correctly, which I am leaving for
-`pretty-format-json` pre-commit hook), so I am going to explain everything
-before the actual json:
 
 The `3rdparty` and `extensions` let us configure extensions in advance.
 
-`cjpalhdlnbpafiamejdnhcphjbkeiagm` is the ID of uBlock Origin from Chrome Web
+`cjpalhdlnbpafiamejdnhcphjbkeiagm` is the ID of uBlock Origin from Chrome Web store which can be seen from its URL: `https://chromewebstore.google.com/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm` and everything specified here will become a part of it's configuration.`trustedSiteDirective` means the sites it will be disabld on, the extension pages are recommended in the documentation and I don't mind Ecosia displaying ads since they go to planting trees. Note that the user can add their own sites or remove these from the extension settings.
-store which can be seen from its URL:
-`https://chromewebstore.google.com/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm`
-and everything specified here will become a part of it's
-configuration.`trustedSiteDirective` means the sites it will be disabld on, the
-extension pages are recommended in the documentation and I don't mind Ecosia
-displaying ads since they go to planting trees. Note that the user can add their
-own sites or remove these from the extension settings.
 
-`toOverwrite` says clearly it will overwrite user settings, so the lists
+`toOverwrite` says clearly it will overwrite user settings, so the lists everyone on your system wishes to use should be specified here. In this case, this contains the default lists, the Finnish adblocking list and the quick fixes list, which updates more rapidly in cases such as the cat-and-mouse with YouTube and adblockers.
-everyone on your system wishes to use should be specified here. In this case,
-this contains the default lists, the Finnish adblocking list and the quick fixes
-list, which updates more rapidly in cases such as the cat-and-mouse with YouTube
-and adblockers.
 
-There is also the EFF DNT allowlist which was introduced to me by [AdNauseam].
+There is also the EFF DNT allowlist which was introduced to me by [AdNauseam]. You have most likely heard of how ads let content to be free and supports content creators and all that, I don't want to take away their revenue, but I don't want to risk targeted malvertising or manipulation either, so this is my compromise. Respect my privacy, and I will see your ads, or be blocked.
-You have most likely heard of how ads let content to be free and supports
-content creators and all that, I don't want to take away their revenue, but I
-don't want to risk targeted malvertising or manipulation either, so this is my
-compromise. Respect my privacy, and I will see your ads, or be blocked.
 
-Onwards to [PrivacyBadger], the ID again comes from Chrome Web Store URL
+Onwards to [PrivacyBadger], the ID again comes from Chrome Web Store URL `https://chromewebstore.google.com/detail/privacy-badger/pkehgijcmpdhfbdbbnkijodmdjhbjlgp` and the settings are clear on what they do. If they are removed, it's up to the default value or user configuration what will happen.
-`https://chromewebstore.google.com/detail/privacy-badger/pkehgijcmpdhfbdbbnkijodmdjhbjlgp`
-and the settings are clear on what they do. If they are removed, it's up to the
-default value or user configuration what will happen.
 
-This [PrivacyBadger] configuration will simply always set these options on
+This [PrivacyBadger] configuration will simply always set these options on browser start:
-browser start:
 
-- `"checkForDNTPolicy": true` check if the domain has a
+- `"checkForDNTPolicy": true` check if the domain has a [`.well-known/dnt-policy.txt`](https://www.eff.org/dnt-policy) and if so, won't block it.
-  [`.well-known/dnt-policy.txt`](https://www.eff.org/dnt-policy) and if so,
+- `"disabledSites": []` configures the domains that are allowed to perform tracking/disrespect DNT. While here it's the same as with uBlock Origin, in my actual policies I allowlist domains more freely in uBlock Origin than [PrivacyBadger].
-  won't block it.
+- `"learnInIncognito": true` [**_WARNING! May make you more trackable_**](https://www.eff.org/deeplinks/2020/10/privacy-badger-changing-protect-you-better) Same as below, but in incognito mode.
-- `"disabledSites": []` configures the domains that are allowed to perform
+- `"learnLocally": true` [**_WARNING! May make you more trackable_**](https://www.eff.org/deeplinks/2020/10/privacy-badger-changing-protect-you-better) [PrivacyBadger] has rare ability to learn who tracks you without having to ask anywhere else, so with this enabled, it may block something before it gets added to either the premade list or something uBlock Origin has.
-  tracking/disrespect DNT. While here it's the same as with uBlock Origin, in my
+- `"sendDNTSignal": true` Whether or not to configure the web browser to send Do Not Track and Global Privacy Control signals.
-  actual policies I allowlist domains more freely in uBlock Origin than
+- `"showCounter": true` Whether to display the number of blocked trackers in the [PrivacyBadger] icon.
-  [PrivacyBadger].
+- `"showIntroPage": false` Whether or not to display the welcome to PrivacyBadger screen on start. In general having less displayed automatically on browser start is a good thing, and if you set this to `true`, [PrivacyBadger] would greet you every browser start and I bet you would get annoyed quickly.
-- `"learnInIncognito": true`
+- `"socialWidgetReplacementEnabled": true` Whether to display social media embeds directly or replace them with a notice on how [PrivacyBadger] has blocked them from tracking you with the menu options on what to do.
-  [**_WARNING! May make you more trackable_**](https://www.eff.org/deeplinks/2020/10/privacy-badger-changing-protect-you-better)
-  Same as below, but in incognito mode.
-- `"learnLocally": true`
-  [**_WARNING! May make you more trackable_**](https://www.eff.org/deeplinks/2020/10/privacy-badger-changing-protect-you-better)
-  [PrivacyBadger] has rare ability to learn who tracks you without having to ask
-  anywhere else, so with this enabled, it may block something before it gets
-  added to either the premade list or something uBlock Origin has.
-- `"sendDNTSignal": true` Whether or not to configure the web browser to send Do
-  Not Track and Global Privacy Control signals.
-- `"showCounter": true` Whether to display the number of blocked trackers in the
-  [PrivacyBadger] icon.
-- `"showIntroPage": false` Whether or not to display the welcome to
-  PrivacyBadger screen on start. In general having less displayed automatically
-  on browser start is a good thing, and if you set this to `true`,
-  [PrivacyBadger] would greet you every browser start and I bet you would get
-  annoyed quickly.
-- `"socialWidgetReplacementEnabled": true` Whether to display social media
-  embeds directly or replace them with a notice on how [PrivacyBadger] has
-  blocked them from tracking you with the menu options on what to do.
 
 Now the only thing to do remains actually installing the extension.
 
-**_BONUS!_**
+**_BONUS!_** [`"ExtensionManifestV2Availability": 2`](https://chromeenterprise.google/policies/#ExtensionManifestV2Availability) will extend the time how long until ManifestV3 gets forced (and Google kills content filters).
-[`"ExtensionManifestV2Availability": 2`](https://chromeenterprise.google/policies/#ExtensionManifestV2Availability)
-will extend the time how long until ManifestV3 gets forced (and Google kills
-content filters).
 
 Anyway there is the same extension ID as before and four new options:
 
-- `installation_mode` has options `normal_installed`, `force_installed` and
+- `installation_mode` has options `normal_installed`, `force_installed` and `blocked`. The first means it's installed by default, but the user can choose to unload it, the second used here will prevent unloading the extension and the third prevents installing and loading it entirely.
-  `blocked`. The first means it's installed by default, but the user can choose
-  to unload it, the second used here will prevent unloading the extension and
-  the third prevents installing and loading it entirely.
 - Typing this I am not sure if `override_update_url` is actually required.
-- `force_pinned` will pin the extension to Chromium toolbar by default and not
+- `force_pinned` will pin the extension to Chromium toolbar by default and not allow unpinning and moving it to the extension menu. I strongly recommend it with content blockers, especially when there is site breakage as it makes it so much easier to see at a glance when something is blocked. The other option would be `default_unpinned`.
-  allow unpinning and moving it to the extension menu. I strongly recommend it
+- `update_url` is required for automatically installed extensions and while here it's the Chrome Web Store, it could as well be `https://edge.microsoft.com/extensionwebstorebase/v1/crx` and although the IDs are different there, they are again visible in the URL bar.
-  with content blockers, especially when there is site breakage as it makes it
-  so much easier to see at a glance when something is blocked. The other option
-  would be `default_unpinned`.
-- `update_url` is required for automatically installed extensions and while here
-  it's the Chrome Web Store, it could as well be
-  `https://edge.microsoft.com/extensionwebstorebase/v1/crx` and although the IDs
-  are different there, they are again visible in the URL bar.
 
 ### `/etc/opt/chromium/policies/managed/aminda-extensions.json`
 
-I hope I didn't scare you too badly by saying this isn't scary, but it's all
+I hope I didn't scare you too badly by saying this isn't scary, but it's all explained above.
-explained above.
 
 ```json
 {
@@ -223,22 +160,14 @@ _2024-06-04: I added uBlock Origin Lite here, see the questions and answers._
 
 ## Firefox
 
-If you haven't read the previous blog post yet, please do that now as Firefox
+If you haven't read the previous blog post yet, please do that now as Firefox forces everything to be in `/etc/firefox/policies.json` and thus this file will begin by expanding the end result from there. And to not repeat myself, please also read the Chromium section above as due to everything being webextensions, the new part within extension configuration is the same.
-forces everything to be in `/etc/firefox/policies.json` and thus this file will
-begin by expanding the end result from there. And to not repeat myself, please
-also read the Chromium section above as due to everything being webextensions,
-the new part within extension configuration is the same.
 
 Let's begin by what differs from Chromium:
 
-- The extension ID is most easily readable from `about:support` instead of addon
+- The extension ID is most easily readable from `about:support` instead of addon URL.
-  URL.
 - We can sideload the extension, although that won't affect Firefox sync.
-- It's a lot easier to figure out what extension a block belongs to as the names
+- It's a lot easier to figure out what extension a block belongs to as the names appear here.
-  appear here.
+- While there is no `ExtensionManifestV2Availability`, there are domains protected by default (`extensions.webextensions.restrictedDomains`) that we could unset.
-- While there is no `ExtensionManifestV2Availability`, there are domains
-  protected by default (`extensions.webextensions.restrictedDomains`) that we
-  could unset.
 
 _Oh meow, no more json!_ I am sorry.
 
@@ -338,97 +267,52 @@ _Oh meow, no more json!_ I am sorry.
 }
 ```
 
-Doesn't that look familiar? Yes, it's practically the same file [from
+Doesn't that look familiar? Yes, it's practically the same file [from part Ⅰ]({% post_url blog/2024-05-17-https-everywhere %}#dns-over-https-1) and the extensions took the exact same values as Chromium, only the IDs and download locations changed and some Chromium extras disappeared.
-part Ⅰ]({% post_url blog/2024-05-17-https-everywhere %}#dns-over-https-1) and
-the extensions took the exact same values as Chromium, only the IDs and download
-locations changed and some Chromium extras disappeared.
 
-Well, in uBlock Origin I did add the Mozilla/Firefox domains to avoid breakage
+Well, in uBlock Origin I did add the Mozilla/Firefox domains to avoid breakage and in the end I removed the extra protection those sites would have from extensions which would permit tracking by Mozilla. However, [PrivacyBadger] would still protect from that while being less likely to break.
-and in the end I removed the extra protection those sites would have from
-extensions which would permit tracking by Mozilla. However, [PrivacyBadger]
-would still protect from that while being less likely to break.
 
-_Would you like to restore the protection for Mozilla pages? Replace the `user`
+_Would you like to restore the protection for Mozilla pages? Replace the `user` in `status` of `extensions.webextensions.restrictedDomains {}` with `clear` so it will be restored to default value while `user` persists even if the lines are removed as they appear as if the user had changed them in `about:config`._
-in `status` of `extensions.webextensions.restrictedDomains {}` with `clear` so
-it will be restored to default value while `user` persists even if the lines are
-removed as they appear as if the user had changed them in `about:config`._
 
 _2024-06-04: I added uBlock Origin Lite here, see the questions and answers._
 
 ## Answers to potential questions
 
-As I sometimes tend to be a bit controversial when balancing security, privacy,
+As I sometimes tend to be a bit controversial when balancing security,
-digital carbon footprint and all, there are going to be questions and I keep
+privacy, digital carbon footprint and all, there are going to be questions
-answering them otherwise too.
+and I keep answering them otherwise too.
 
 ## Where can I see what policies extensions can take?
 
-In Chromium `about:policies` has a checkbox "show unset policies" which will
+In Chromium `about:policies` has a checkbox "show unset policies" which will bring a long list including the extensions. It also has a lovely search box.
-bring a long list including the extensions. It also has a lovely search box.
 
 ### Why both PrivacyBadger and uBlock Origin?
 
-I admit they have some overlap, but uBlock Origin relies on human made lists
+I admit they have some overlap, but uBlock Origin relies on human made lists instead of an algorhitm to block trackers (note that [PrivacyBadger] doesn't even try to block ads, it happens by accident).
-instead of an algorhitm to block trackers (note that [PrivacyBadger] doesn't
-even try to block ads, it happens by accident).
 
-Additionally uBlock Origin does nothing about Instagram, Disqus, etc. widgets. I
+Additionally uBlock Origin does nothing about Instagram, Disqus, etc. widgets. I could block JavaScript (which I do), but sometimes I will allow it to a website anyway and then the widget learns I am there even if I had no interest in seeing comments in that case. And if I wanted to allow them somewhere, I could click "always allow this widget on this site".
-could block JavaScript (which I do), but sometimes I will allow it to a website
-anyway and then the widget learns I am there even if I had no interest in seeing
-comments in that case. And if I wanted to allow them somewhere, I could click
-"always allow this widget on this site".
 
-I also love its ability to self-learn trackers, even if that may make me more
+I also love its ability to self-learn trackers, even if that may make me more trackable. I think there are easier methods to track me (like my HTTP user-agent saying I am on Windows, while my `navigator.useragent or `navigator.platform` say something different) and Firefox Nightly is newer than most people use and there are a countless of small things in browser fingerprinting, which could be it's own blog post.
-trackable. I think there are easier methods to track me (like my HTTP user-agent
-saying I am on Windows, while my `navigator.useragent or `navigator.platform`
-say something different) and Firefox Nightly is newer than most people use and
-there are a countless of small things in browser fingerprinting, which could be
-it's own blog post.
 
 ### Why EFF DNT allowlist?
 
-I think I already answered this in the Chromium section, but I don't hate ads.
+I think I already answered this in the Chromium section, but I don't hate ads. They may be important source of money to creators and I wouldn't mind some financial support as well (if that wasn't practically illegal in Finland).
-They may be important source of money to creators and I wouldn't mind some
-financial support as well (if that wasn't practically illegal in Finland).
 
-What I mind is targeted advertising, tracking, the potential for targeted
+What I mind is targeted advertising, tracking, the potential for targeted malvertising without it affecting anyone else and how they are used for manipulation especially politically and with elections on discouraging some people from voting.
-malvertising without it affecting anyone else and how they are used for
-manipulation especially politically and with elections on discouraging some
-people from voting.
 
 ### Where did uBlock Origin Lite come from?
 
-I added it here on 2024-06-04 and set uBlock Origin to `normal_installed`
+I added it here on 2024-06-04 and set uBlock Origin to `normal_installed` instead of `force_installed`, because I am worried about ManifestV2 extensions not syncing as the majority probably won't have the policy to allow it configured.
-instead of `force_installed`, because I am worried about ManifestV2 extensions
-not syncing as the majority probably won't have the policy to allow it
-configured.
 
-This gives the users the choice to use either of the two, both (which may be
+This gives the users the choice to use either of the two, both (which may be discouraged) or neither, while PrivacyBadger is forced on and I think it may perform better with ManifestV3 anyway considering the local learning feature, which I consider essential for non-English content anyway.
-discouraged) or neither, while PrivacyBadger is forced on and I think it may
-perform better with ManifestV3 anyway considering the local learning feature,
-which I consider essential for non-English content anyway.
 
 Speaking of PrivacyBadger, other concerns I have with uBlock Origin Lite are:
 
-1. I cannot allow non-tracking ads as I cannot add the EFF DNT allowlist. I
+1. I cannot allow non-tracking ads as I cannot add the EFF DNT allowlist. I would need to convince the developer to add it, which I am not even going to try, as it would go against the principle of the extension.
-   would need to convince the developer to add it, which I am not even going to
+1. <del>I didn't get uBlock Origin Lite's `"noFiltering": [""]` policy working, so I cannot pre-emptively handle broken captchas or allow Ecosia to show me tracking ads in exchange of them planting trees.</del>. A day later I got `"noFiltering": [""]` working, but it works like `toOverwrite` from uBlock Origin, so any edits outside of the policy will reset upon restart. Then again that may also be a feature, please do send your best regards to Google...
-   try, as it would go against the principle of the extension.
-1. <del>I didn't get uBlock Origin Lite's `"noFiltering": [""]` policy working,
-   so I cannot pre-emptively handle broken captchas or allow Ecosia to show me
-   tracking ads in exchange of them planting trees.</del>. A day later I got
-   `"noFiltering": [""]` working, but it works like `toOverwrite` from uBlock
-   Origin, so any edits outside of the policy will reset upon restart. Then
-   again that may also be a feature, please do send your best regards to
-   Google...
 
-Google only has themselves to blame for not thinking of the scenario where their
+Google only has themselves to blame for not thinking of the scenario where their users might be ok with non-tracking ads and now have no option to allow them due to being more concerned about malvertising than how advertising businesses are doing, since they they ruined the compromise solution that tried to account both.
-users might be ok with non-tracking ads and now have no option to allow them due
-to being more concerned about malvertising than how advertising businesses are
-doing, since they they ruined the compromise solution that tried to account
-both.
 
-I may trust myself to avoid malicious content online or that DNS filtering will
+I may trust myself to avoid malicious content online or that DNS filtering will catch it, but I don't have such trust on my less technical family members.
-catch it, but I don't have such trust on my less technical family members.
 
 I should also say that ManifestV3 and uBlock Origin Lite have good sides as
 well, considering it not needing or requesting access to all pages visited out
@@ -437,39 +321,23 @@ actually get installed through policy.
 
 ### How do I enable more default lists in uBlock Origin?
 
-As you saw, external blocklists are just matter of entering the URL into the
+As you saw, external blocklists are just matter of entering the URL into the policy, but integrated ones are a bit more challenging. See the eye icon in uBlock Origin dashboard? I have been pointing it and looking at the URL which ends e.g. `/asset-viewer.html?url=fanboy-social` where `fanboy-social` would be the list name.
-policy, but integrated ones are a bit more challenging. See the eye icon in
-uBlock Origin dashboard? I have been pointing it and looking at the URL which
-ends e.g. `/asset-viewer.html?url=fanboy-social` where `fanboy-social` would be
-the list name.
 
-More technical solution would be looking into the
+More technical solution would be looking into the [`assets/assets.json` file in uBlock Origin's GitHub repository](https://github.com/gorhill/uBlock/blob/master/assets/assets.json) where the same names appear.
-[`assets/assets.json` file in uBlock Origin's GitHub repository](https://github.com/gorhill/uBlock/blob/master/assets/assets.json)
-where the same names appear.
 
-Remember that
+Remember that [more filter lists make you more identifiable](https://browserleaks.com/proxy) and _do as I say, not as I do_.
-[more filter lists make you more identifiable](https://browserleaks.com/proxy)
-and _do as I say, not as I do_.
 
 ## What do you think about this blog post?
 
-I feel a bit disappointed with it, I felt the previous one was more meaningful
+I feel a bit disappointed with it, I felt the previous one was more meaningful and did everything better, but I hope this will be some benefit to someone regardless or be something I can link to when I inevitably get asked these questions again.
-and did everything better, but I hope this will be some benefit to someone
-regardless or be something I can link to when I inevitably get asked these
-questions again.
 
 ## Will there be browser policies part Ⅲ?
 
-Honestly, I don't know. I was surprised part Ⅱ happened, although this is also
+Honestly, I don't know. I was surprised part Ⅱ happened, although this is also just scratching the tip of the iceberg and there is really a lot you can do with browser policies.
-just scratching the tip of the iceberg and there is really a lot you can do with
-browser policies.
 
 ### Where is all the futher reading?
 
-If you have read both blog posts carefully, this one didn't actually say
+If you have read both blog posts carefully, this one didn't actually say anything new, it's all linked [from part Ⅰ]({% post_url blog/2024-05-17-https-everywhere %}#documentation-and-other-policies).
-anything new, it's all linked [from
-part
-Ⅰ]({% post_url blog/2024-05-17-https-everywhere %}#documentation-and-other-policies).
 
 _[Obligatory changelog link](https://github.com/Mikaela/mikaela.github.io/commits/master/blog/_posts/2024-05-22-policy-contentblocker.md)_
 

blog/index.html

@@ -3,26 +3,14 @@ layout: page
 title: Blog
 navigation: true
 permalink: /blog/
-excerpt:
+excerpt: "Blog index, posts in English and posts in Finnish — Blogin etusivu, postaukset englanniksi ja postaukset suomeksi."
-  "Blog index, posts in English and posts in Finnish — Blogin etusivu,
-  postaukset englanniksi ja postaukset suomeksi."
 lang: en
 robots: noai
 ---
 
 <p>
-  Posts
+  Posts <a lang="en" href="#in-english">in English here</a> &amp;
-  <a
+  <a lang="fi" href="#suomeksi">suomeksi täällä</a>.
-    lang="en"
-    href="#in-english"
-    >in English here</a
-  >
-  &amp;
-  <a
-    lang="fi"
-    href="#suomeksi"
-    >suomeksi täällä</a
-  >.
 </p>
 <hr />
 <div lang="en">

index.html

@@ -1,26 +1,16 @@
 ---
 layout: index
 title: Index
-excerpt:
+excerpt: "I am a Highly Sensitive Autistic Pirate with Linux experience since 2008. I am familiar with git and looking for employment."
-  "I am a Highly Sensitive Autistic Pirate with Linux experience since 2008. I
-  am familiar with git and looking for employment."
 robots: noai, nofollow
 ---
 
 <p id="avatar">
-  <a
+  <a class="h-card" href="https://aminda.eu/">
-    class="h-card"
+    <img src="{{site.avatar}}" alt="Photo of me" /><br />Aminda Suomalainen</a
-    href="https://aminda.eu/"
-  >
-    <img
-      src="{{site.avatar}}"
-      alt="Photo of me"
-    /><br />Aminda Suomalainen</a
   ><br />
   <small
-    ><a
+    ><a rel="prefetch me" href="https://cv.aminda.eu/"
-      rel="prefetch me"
-      href="https://cv.aminda.eu/"
       >Curriculum Vitae</a
     ></small
   >
@@ -106,34 +96,20 @@ robots: noai, nofollow
   <li id="some">
     <span class="monospaced">SOME:</span>
     <em
-      ><a
+      ><a href="https://gitea.blesmrt.net/mikaela" rel="me"
-        href="https://gitea.blesmrt.net/mikaela"
-        rel="me"
         >gitea.blesmrt.net</a
       ></em
     >
-    <a
+    <a href="https://bsky.app/profile/did:plc:k4n3logit2gplz7mbgkrsdl2" rel="me"
-      href="https://bsky.app/profile/did:plc:k4n3logit2gplz7mbgkrsdl2"
-      rel="me"
       >bsky</a
     >
     <em
-      ><a
+      ><a href="https://github.com/{{ site.github_username }}" rel="me"
-        href="https://github.com/{{ site.github_username }}"
-        rel="me"
         >GitHub.com</a
       ></em
     >
-    <a
+    <a href="https://gitlab.com/Mikaela" rel="me">GitLab.com</a>
-      href="https://gitlab.com/Mikaela"
+    <a href="https://git.com.de/mikaela" rel="me">git.com.de</a> (<a
-      rel="me"
-      >GitLab.com</a
-    >
-    <a
-      href="https://git.com.de/mikaela"
-      rel="me"
-      >git.com.de</a
-    > (<a
       href="http://gitea.qzzf2qcfbhievvs5nzkccuwddroipy62qjocqtmgcgh75vd6w57m7yad.onion/Mikaela"
       rel="me"
       >&#129477;&#65038;</a
@@ -143,19 +119,11 @@ robots: noai, nofollow
       href="{{site.keyoxide}}/aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY"
       >Keyoxide</a
     >
-    <a
+    <a rel="me" href="https://liberapay.com/Mikaela">LiberaPay.com</a>
-      rel="me"
+    <a rel="me" href="https://www.linkedin.com/in/{{ site.linkedin_username }}/"
-      href="https://liberapay.com/Mikaela"
-      >LiberaPay.com</a
-    >
-    <a
-      rel="me"
-      href="https://www.linkedin.com/in/{{ site.linkedin_username }}/"
       >LinkedIn.com</a
     >
-    <a
+    <a href="https://git.piraattipuolue.fi/mikaela.suomalainen" rel="me"
-      href="https://git.piraattipuolue.fi/mikaela.suomalainen"
-      rel="me"
       >git.piraattipuolue.fi</a
     >
     <a
@@ -171,10 +139,7 @@ robots: noai, nofollow
       >sauna.social</a
     >
   </li>
-  <li
+  <li class="monospaced" id="ssh">
-    class="monospaced"
-    id="ssh"
-  >
     SSH:
     <a
       href="https://gitea.blesmrt.net/mikaela/ssh-allowed_signers/src/branch/cxefa/aminda/aminda.pub"

ipfs-files/README.markdown

@@ -4,5 +4,5 @@ published: false
 
 [IPFS](https://ipfs.io) related files
 
-The directory isn't called IPFS in case it would cause confusion to IPFS capable
+The directory isn't called IPFS in case it would cause confusion to IPFS
-software.
+capable software.

n/3g.md

@@ -7,8 +7,8 @@ sitemap: false
 lang: en
 ---
 
-Finland will mostly discontinue 3G networks by end of 2023. Suomen yhteisverkko
+Finland will mostly discontinue 3G networks by end of 2023. Suomen
-will begins 3G shutdown early 2024.
+yhteisverkko will begins 3G shutdown early 2024.
 
 - [DNA.fi/3g]
 - [Elisa.fi/3g]

n/5g.md

@@ -6,9 +6,7 @@ redirect_from:
   - /r/5G.html
 sitemap: false
 lang: en
-excerpt:
+excerpt: List of carrier/WISP maps in Finland for quickly finding whether a place has 5G or not. Carriers eagerly sell it to people who don't have signal.
-  List of carrier/WISP maps in Finland for quickly finding whether a place has
-  5G or not. Carriers eagerly sell it to people who don't have signal.
 ---
 
 _{{ page.excerpt }}_

n/coauthor.md

@@ -1,8 +1,6 @@
 ---
 title: Co-authoring and private emails with Git Forges
-excerpt:
+excerpt: This note tells how to mark me as a git commit coauthor and my privatized email addresses.
-  This note tells how to mark me as a git commit coauthor and my privatized
-  email addresses.
 layout: mini
 permalink: /n/coauthor.html
 sitemap: true
@@ -12,11 +10,11 @@ robots: noai
 
 # Git forge private emails
 
-**_WARNING! These are vendor lock-in and contribution activity will not pass on
+**_WARNING! These are vendor lock-in and contribution activity will not
-to other platrforms._** It may not matter much with sign-offs though.
+pass on to other platrforms._** It may not matter much with sign-offs though.
 
-Forges generally have a feature for private email addresses and it can be used
+Forges generally have a feature for private email addresses and it can be
-at least by co-authored commits, e.g. [r/coauthor](/r/coauthor.html):
+used at least by co-authored commits, e.g. [r/coauthor](/r/coauthor.html):
 
 > `Co-authored-by: NAME <NAME@EXAMPLE.COM>`
 

n/copyrightyear.md

@@ -9,8 +9,7 @@ lang: en
 
 # Do copyright years need yearly updates?
 
-Apparently it depends on whether you care about when the project enters public
+Apparently it depends on whether you care about when the project enters public domain.
-domain.
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -36,8 +35,7 @@ domain.
 ## Yes
 
 - [Information for maintainers of GNU software, 6.5: copyright notices](https://www.gnu.org/prep/maintain/maintain.html#Copyright-Notices)
-  - At the time of writing they practically say to update every file that has
+  - At the time of writing they practically say to update every file that has more than 10 lines.
-    more than 10 lines.
 
 ## Other links
 

n/dns.md

@@ -1,8 +1,6 @@
 ---
 title: Philosophical pondering on DNS and its features and usage
-excerpt:
+excerpt: What DNS server is used, does it support ECS, is that threat or possibility, and everything that doesn't have a better place?
-  What DNS server is used, does it support ECS, is that threat or possibility,
-  and everything that doesn't have a better place?
 layout: mini
 permalink: /n/dns.html
 redirect_from:
@@ -51,8 +49,7 @@ _{{ page.excerpt }} For DNS resolvers, refer to [r/resolv.tsv](/r/resolv.tsv)_
 
 ## Identifying DNS resolver
 
-- [DNS-OARC's Check My DNS](https://cmdns.dev.dns-oarc.net) - popup under
+- [DNS-OARC's Check My DNS](https://cmdns.dev.dns-oarc.net) - popup under "Network".
-  "Network".
 - [dnsleaktest](https://dnsleaktest.com)
 - [whatsmydnsserver](https://www.whatsmydnsserver.com)
 - [ipleak.net](https://ipleak.net)
@@ -60,8 +57,7 @@ _{{ page.excerpt }} For DNS resolvers, refer to [r/resolv.tsv](/r/resolv.tsv)_
 - [browserleaks.net/dns](https://browserleaks.net/dns)
 - [dnscheck.tools](https://www.dnscheck.tools)
 
-The above list is based on
+The above list is based on [redirect2me/which-dns README alternatives section](https://github.com/redirect2me/which-dns/blob/main/README.md)
-[redirect2me/which-dns README alternatives section](https://github.com/redirect2me/which-dns/blob/main/README.md)
 
 ---
 
@@ -69,8 +65,8 @@ The above list is based on
 
 At it's current state of implementation, Encrypted Client-Hello requires
 DNS-over-HTTPS in the browser level or it won't be used. If downgrade from
-application level DoH to OS resolver is allowed, ECH will get disabled at least
+application level DoH to OS resolver is allowed, ECH will get disabled at
-temporary. Thus I think this list belongs here close enough.
+least temporary. Thus I think this list belongs here close enough.
 
 - [Cloudflare Browser Check](https://www.cloudflare.com/ssl/encrypted-sni/)
   which still speaks of ESNI, while ECH replaced Encrypted Server Name
@@ -84,37 +80,32 @@ temporary. Thus I think this list belongs here close enough.
 
 ## What is ECS?
 
-[EDNS](https://en.m.wikipedia.org/wiki/Extension_Mechanisms_for_DNS)
+[EDNS](https://en.m.wikipedia.org/wiki/Extension_Mechanisms_for_DNS) [Client-Subnet](https://en.wikipedia.org/wiki/EDNS_Client_Subnet) is a DNS extension letting the authoritative nameserver
-[Client-Subnet](https://en.wikipedia.org/wiki/EDNS_Client_Subnet) is a DNS
+know your subnet, generally a `/24` (IPv4) or a `/56` (IPv6), but the revealed
-extension letting the authoritative nameserver know your subnet, generally a
+subnet size is up to your DNS resolver configuration.
-`/24` (IPv4) or a `/56` (IPv6), but the revealed subnet size is up to your DNS
-resolver configuration.
 
-_See also simpler explanation at
+_See also simpler explanation at [PrivacyGuides.org DNS Overview](https://www.privacyguides.org/en/advanced/dns-overview/#what-is-edns-client-subnet-ecs)._
-[PrivacyGuides.org DNS Overview](https://www.privacyguides.org/en/advanced/dns-overview/#what-is-edns-client-subnet-ecs)._
 
-- /24 is the first three parts of your IPv4 address e.g. 192.0.2.xxx. The last
+- /24 is the first three parts of your IPv4 address e.g. 192.0.2.xxx.
-  part of your IP address (the xxx) again is a number between 1 to 254 (since 0
+  The last part of your IP address (the xxx) again is a number between 1
-  is reserved for the network itself and 255 is the broadcast address).
+  to 254 (since 0 is reserved for the network itself and 255 is the
-- `/56` includes 256 `/64`s and if your ISP (Internet Service Provider) follows
+  broadcast address).
-  [RFC 6177](https://datatracker.ietf.org/doc/html/rfc6177), it's assigned
+- `/56` includes 256 `/64`s and if your ISP (Internet Service Provider)
-  solely to you meaning the authoritative nameserver will know the request
+  follows [RFC 6177](https://datatracker.ietf.org/doc/html/rfc6177),
-  originated from your network.
+  it's assigned solely to you meaning the authoritative nameserver will know
-  - However many ISPs, especially wireless ones, will just assign you a `64`
+  the request originated from your network.
-    which is required for
+  - However many ISPs, especially wireless ones,
+    will just assign you a `64` which is required for
     [stateless address autoconfiguration](<https://en.m.wikipedia.org/wiki/SLAAC#Stateless_address_autoconfiguration_(SLAAC)>)
     which is the most common way of getting IPv6 address in your local area
     network as opposed to IPv4 where you would have
     [Dynamic Host Configuration Protocol (DHCP)](https://en.m.wikipedia.org/wiki/Dynamic_Host_Configuration_Protocol).
-    - Your router does get the IPv6 subnet assignment for LAN distribution by
+    - Your router does get the IPv6 subnet assignment for LAN distribution by means of [DHCPv6 Prefix Delegation](https://en.m.wikipedia.org/wiki/Prefix_delegation) which is also common on mobile networks.
-      means of
-      [DHCPv6 Prefix Delegation](https://en.m.wikipedia.org/wiki/Prefix_delegation)
-      which is also common on mobile networks.
 
-If you are reading my personal notes (that being useful for you would bring me a
+If you are reading my personal notes (that being useful for you would bring me
-bit of happiness), please note that **_I am somewhat indecisive and change the
+a bit of happiness), please note that **_I am somewhat indecisive and change
-DNS resolver a lot (at least daily judging by my feelings), but do check the git
+the DNS resolver a lot (at least daily judging by my feelings), but do check
-log._**
+the git log._**
 
 - [History of this page at GitHub](https://github.com/Mikaela/mikaela.github.io/commits/master/n/dns.md)
 
@@ -122,120 +113,78 @@ log._**
 
 _Android DoH3 option:_ `dns.google`
 
-> [...] The longer the distance the data must travel from the data centre to the
+> [...] The longer the distance the data must travel from the data centre to
-> end-user device, the more energy the transmission consumes – regardless of the
+> the end-user device, the more energy the transmission consumes –
-> transmission path used. Intercontinental transmission networks are
+> regardless of the transmission path used. Intercontinental transmission
-> fundamentally very efficient. Transferring data from the United States to
+> networks are fundamentally very efficient. Transferring data from the
-> Europe may consume a fraction of the energy compared to the last kilometre
+> United States to Europe may consume a fraction of the energy compared to
-> from the base station to the mobile phone.
+> the last kilometre from the base station to the mobile phone.
 
-- [Green Code](https://www.exove.com/green-code/)
+- [Green Code](https://www.exove.com/green-code/) ([pdf](https://www.exove.com/app/uploads/2023/09/Green-Code-v2.pdf) [txt](https://www.exove.com/app/uploads/2023/09/greencode-v2.txt))
-  ([pdf](https://www.exove.com/app/uploads/2023/09/Green-Code-v2.pdf)
-  [txt](https://www.exove.com/app/uploads/2023/09/greencode-v2.txt))
 
-If you utilize services of internet giants or content delivery networks, ECS
+If you utilize services of internet giants or content delivery networks, ECS will likely give you [the shortest distance, the lowest latency, the highest speed](https://en.m.wikipedia.org/wiki/Edge_computing) and may help with decreasing your _digital carbon footprint_.
-will likely give you
-[the shortest distance, the lowest latency, the highest speed](https://en.m.wikipedia.org/wiki/Edge_computing)
-and may help with decreasing your _digital carbon footprint_.
 
 _The above means GAFAM, if you don't use them in any form, there may not be a
 need for ECS._
 
-If those matter to you, you may also like to consider
+If those matter to you, you may also like to consider [increasing your minimum TTL to around an hour in a local server](https://blog.apnic.net/2019/11/12/stop-using-ridiculously-low-dns-ttls/).
-[increasing your minimum TTL to around an hour in a local server](https://blog.apnic.net/2019/11/12/stop-using-ridiculously-low-dns-ttls/).
 
 ### Why to not use ECS?
 
 _Android DoH3 option:_ `cloudflare-dns.com`
 
-> [...] we [Cloudflare] don’t pass along the EDNS subnet information. This
+> [...] we [Cloudflare] don’t pass along the EDNS subnet information. This information leaks information about a requester’s IP and, in turn, sacrifices the privacy of users. This is especially problematic as we work to encrypt more DNS traffic since the request from Resolver to Authoritative DNS is typically unencrypted. **_We’re aware of real world examples where nationstate actors have monitored EDNS subnet information to track individuals,_** which was part of the motivation for the privacy and security policies of 1.1.1.1.
-> information leaks information about a requester’s IP and, in turn, sacrifices
-> the privacy of users. This is especially problematic as we work to encrypt
-> more DNS traffic since the request from Resolver to Authoritative DNS is
-> typically unencrypted. **_We’re aware of real world examples where nationstate
-> actors have monitored EDNS subnet information to track individuals,_** which
-> was part of the motivation for the privacy and security policies of 1.1.1.1.
 >
 > [...]
 >
-> We are working with the small number of networks with a higher network/ISP
+> We are working with the small number of networks with a higher network/ISP density than Cloudflare (e.g., Netflix, Facebook, Google/YouTube) to come up with an EDNS IP Subnet alternative that gets them the information they need for geolocation targeting without risking user privacy and security. Those conversations have been productive and are ongoing. [...]
-> density than Cloudflare (e.g., Netflix, Facebook, Google/YouTube) to come up
-> with an EDNS IP Subnet alternative that gets them the information they need
-> for geolocation targeting without risking user privacy and security. Those
-> conversations have been productive and are ongoing. [...]
 
-- [Cloudflare co-founder](https://news.ycombinator.com/item?id=19828702),
+- [Cloudflare co-founder](https://news.ycombinator.com/item?id=19828702), emphasis mine.
-  emphasis mine.
 
-ECS will decrease the cost of mass surveillance as instead of having to surveill
+ECS will decrease the cost of mass surveillance as instead of having to surveill everything happening on the network, anyone between your DNS server and the authoritative nameserver can see which IP addresses access the site with a reasonable accuracy.
-everything happening on the network, anyone between your DNS server and the
-authoritative nameserver can see which IP addresses access the site with a
-reasonable accuracy.
 
-Then there are those with commercial interests, particularly outside of Europe,
+Then there are those with commercial interests, particularly outside of
-advertisers may be interested in making money out of the additional metadata.
+Europe, advertisers may be interested in making money out of the additional
-There may also be adblockers which don't block the DNS request, causing the
+metadata. There may also be adblockers which don't block the DNS request,
-advertising company to receive your IP address (or close enough to it) even if
+causing the advertising company to receive your IP address (or close enough to
-you didn't see the advertisement itself.
+it) even if you didn't see the advertisement itself.
 
 Some say _the less metadata is produced, the smaller incentive there is for
 starting collecting and monetizing it._
 
 This isn't even mentioning that the internet isn't a nice place or foreign
 advanced persistent threats or threat actors, who may not need a reason to
-attack you.
+attack you. [_CISA: Mitigating Cyber Threats with Limited Resources: Guidance for Civil Society_](https://www.cisa.gov/resources-tools/resources/mitigating-cyber-threats-limited-resources-guidance-civil-society)
-[_CISA: Mitigating Cyber Threats with Limited Resources: Guidance for Civil Society_](https://www.cisa.gov/resources-tools/resources/mitigating-cyber-threats-limited-resources-guidance-civil-society)
 
-Additionally researchers (below) have used it to perform cache poisoning against
+Additionally researchers (below) have used it to perform cache poisoning against an individual target directing them to a wrong location and with low TTL making it near impossible to audit later.
-an individual target directing them to a wrong location and with low TTL making
-it near impossible to audit later.
 
-What domains do you use? What if someone far above you knew regardless of
+What domains do you use? What if someone far above you knew regardless of Encrypted Client-Hello?
-Encrypted Client-Hello?
 
-Are the domains you use DNSSEC-signed? Do you verify DNSSEC locally? Do you use
+Are the domains you use DNSSEC-signed? Do you verify DNSSEC locally? Do you use HTTPS everywhere? Do you know to not accept warnings about certificate issues? Do the other (less technical) users of your network? Would you or them be a delicious target? Do you even use GAFAM services?
-HTTPS everywhere? Do you know to not accept warnings about certificate issues?
-Do the other (less technical) users of your network? Would you or them be a
-delicious target? Do you even use GAFAM services?
 
 See also:
 
 - [_Understanding the Privacy Implications of ECS_](https://yacin.nadji.us/docs/pubs/dimva16_ecs.pdf)
 
 <del>_Later I have been torn on whether the quote above is correct and helps
-decrease my digital climate footprint more or less than adblocking on DNS level,
+decrease my digital climate footprint more or less than adblocking on DNS
-but what really put the scales towards ECS for me was late night GApple update
+level, but what really put the scales towards ECS for me was late night GApple
-that was keeping me from sleeping. So ECS is for busy people who want to
+update that was keeping me from sleeping. So ECS is for busy people who want
-sleep?_</del> _The CISA link above makes me question this the very next day
+to sleep?_</del> _The CISA link above makes me question this the very next day
 considering I belong to gender and sexual minorities, Pirate Party of Finland,
 and everything..._
 
 ### Why to use private ECS?
 
-_Android DoH3 option:_
+_Android DoH3 option:_ [?](https://cs.android.com/android/platform/superproject/main/+/main:packages/modules/DnsResolver/PrivateDnsConfiguration.h)
-[?](https://cs.android.com/android/platform/superproject/main/+/main:packages/modules/DnsResolver/PrivateDnsConfiguration.h)
 
-Do you want the benefits of ECS with the privacy and security of not having ECS?
+Do you want the benefits of ECS with the privacy and security of not having ECS? Private ECS is a compromise solution in the middle, although not without its own issues.
-Private ECS is a compromise solution in the middle, although not without its own
-issues.
 
-Your private DNS provider will lie for you and say that your IP address is
+Your private DNS provider will lie for you and say that your IP address is somewhere else where it will also place many others from your ISP. However what if it says you are a customer of another ISP, possibly even located in another country? It tends to have greater accuracy with IPv4 than IPv6, [see AdGuard Google Domains issue](https://adguard-dns.io/en/blog/dns-google-domains-fixed.html). What if no one else uses the same DNS server as you, especially from your ISP? I guess you can always advocate your DNS provider so it could be someone else too (I couldn't)? If it works most of time, does that outweight the times it won't work? Is perfect the enemy of good enough?
-somewhere else where it will also place many others from your ISP. However what
-if it says you are a customer of another ISP, possibly even located in another
-country? It tends to have greater accuracy with IPv4 than IPv6,
-[see AdGuard Google Domains issue](https://adguard-dns.io/en/blog/dns-google-domains-fixed.html).
-What if no one else uses the same DNS server as you, especially from your ISP? I
-guess you can always advocate your DNS provider so it could be someone else too
-(I couldn't)? If it works most of time, does that outweight the times it won't
-work? Is perfect the enemy of good enough?
 
-In that case you may <del>get even worse performance</del> be in even worse
+In that case you may <del>get even worse performance</del> be in even worse situation than without ECS. Then again if everything works properly, you will get the benefit of ECS without the privacy impact and lessened security impact.
-situation than without ECS. Then again if everything works properly, you will
-get the benefit of ECS without the privacy impact and lessened security impact.
 
-See the next section for testing "where you are." Consider also what is
+See the next section for testing "where you are." Consider also what is important for you if you had to pick one or two from privacy, performance and climate.
-important for you if you had to pick one or two from privacy, performance and
-climate.
 
 See also:
 
@@ -248,8 +197,8 @@ See also:
 It's likely greener to just use adblocking DNS no matter where it is located,
 preferably on router level. I don't trust router/DHCP provided DNS and encrypt
 it on the end device anyway. And if something needs unfiltered access
-(AdNauseam?), give it DNS over HTTPS like all browsers and curl have the ability
+(AdNauseam?), give it DNS over HTTPS like all browsers and curl have the
-nowadays.
+ability nowadays.
 
 Are you someone whom someone might want bad things to just for existing?
 
@@ -270,38 +219,26 @@ dig +short TXT whoami-ecs.v6.powerdns.org.
 dig +short TXT whoami-ecs.v4.powerdns.org.
 ```
 
-- Note:
+- Note: [Cloudflare sends ECS only for `whoami.ds.akahelp.net`, nowhere else](https://developers.cloudflare.com/1.1.1.1/faq/#does-1.1.1.1-send-edns-client-subnet-header).
-  [Cloudflare sends ECS only for `whoami.ds.akahelp.net`, nowhere else](https://developers.cloudflare.com/1.1.1.1/faq/#does-1.1.1.1-send-edns-client-subnet-header).
 
 ---
 
 ## [DNS0.eu] or [Quad9]?
 
 In my experience [DNS0.eu] tends to have better filtering and
-[reporting options](https://www.dns0.eu/report) than [Quad9], while
+[reporting options](https://www.dns0.eu/report) than [Quad9], while [servers being located only in](https://www.dns0.eu/network) the
-[servers being located only in](https://www.dns0.eu/network) the
+[European Union](https://european-union.europa.eu) is mildly problematic when your users start traveling
-[European Union](https://european-union.europa.eu) is mildly problematic when
+outside it either for work or leisure, which across continents tends to bring
-your users start traveling outside it either for work or leisure, which across
+round-trips overseas. Additionally private ECS (see above) tends to be bad
-continents tends to bring round-trips overseas. Additionally private ECS (see
+poor for IPv6 and for very small AS like a school, it directs to another side
-above) tends to be bad poor for IPv6 and for very small AS like a school, it
+of the country, but that is a very minor issue.
-directs to another side of the country, but that is a very minor issue.
 
-Meanwhile [Quad9] blocking seems almost as good in
+Meanwhile [Quad9] blocking seems almost as good in [tests like this](https://techblog.nexxwave.eu/public-dns-malware-filters-tested-in-2024/) and they give me impression [of more transparency](https://quad9.net/about/transparency-report) (as opposed to [DNS0.eu only
-[tests like this](https://techblog.nexxwave.eu/public-dns-malware-filters-tested-in-2024/)
+having a <del>Twitter</del> X account](https://twitter.com/dns0eu)). [Quad9] also has more options on whether to ECS or not (see above).
-and they give me impression
-[of more transparency](https://quad9.net/about/transparency-report) (as opposed
-to
-[DNS0.eu only having a <del>Twitter</del> X account](https://twitter.com/dns0eu)).
-[Quad9] also has more options on whether to ECS or not (see above).
 
-The end-users traveling outside of the EU is also solved as they
+The end-users traveling outside of the EU is also solved as they [have servers all around the world](https://quad9.net/service/locations/).
-[have servers all around the world](https://quad9.net/service/locations/).
 
-Back to [DNS0.eu], while disabling private ECS is not an option, they do have
+Back to [DNS0.eu], while disabling private ECS is not an option, they do have other options; [default filters](https://www.dns0.eu), [no filters](https://www.dns0.eu/open), [heavier filtering (zero)](https://www.dns0.eu/zero) and [kids](https://www.dns0.eu/kids).
-other options; [default filters](https://www.dns0.eu),
-[no filters](https://www.dns0.eu/open),
-[heavier filtering (zero)](https://www.dns0.eu/zero) and
-[kids](https://www.dns0.eu/kids).
 
 [DNS0.eu]: https://www.dns0.eu
 [Quad9]: https://quad9.net
@@ -347,19 +284,18 @@ with desktop versions etc._
 
 ### Android
 
-Use either `cloudflare-dns.com` (which doesn't have ECS) or `dns.google` (which
+Use either `cloudflare-dns.com` (which doesn't have ECS) or `dns.google`
-has ECS) as the (Settings → Network & Internet → Advanced →) _Private DNS_
+(which has ECS) as the (Settings → Network & Internet → Advanced →)
-server as
+_Private DNS_ server as [they have special handling](https://cs.android.com/android/platform/superproject/main/+/main:packages/modules/DnsResolver/PrivateDnsConfiguration.h) and are thus DNS over
-[they have special handling](https://cs.android.com/android/platform/superproject/main/+/main:packages/modules/DnsResolver/PrivateDnsConfiguration.h)
+HTTPS3 instead of the usual DNS over TLS. This can be confirmed with
-and are thus DNS over HTTPS3 instead of the usual DNS over TLS. This can be
+[`https://1.1.1.1/help`](https://one.one.one.one/help) (when using
-confirmed with [`https://1.1.1.1/help`](https://one.one.one.one/help) (when
+`cloudflare-dns.com`). **_However is connectivity in limited networks and
-using `cloudflare-dns.com`). **_However is connectivity in limited networks and
+maybe a bit faster speed in bad network more important than a level of
-maybe a bit faster speed in bad network more important than a level of security
+security reached by a filtering resolver?_**
-reached by a filtering resolver?_**
 
-Then setup your web browser (including Firefox (other than stable which disables
+Then setup your web browser (including Firefox (other than stable which
-`about:config`) and Chrome) to use DNS over HTTPS with your preferred server and
+disables `about:config`) and Chrome) to use DNS over HTTPS with your preferred
-while at it enabling HTTPS only mode.
+server and while at it enabling HTTPS only mode.
 
 At least `https://security.cloudflare-dns.com/dns-query` won't downgrade to
 system DNS resolver so
@@ -381,8 +317,7 @@ If testing Cloudflare, see also:
 Do other Android based OSes contain the special handling of specific _Private
 DNS_ domains turning into DNS-over-HTTP/3?
 
-- GrapheneOS:
+- GrapheneOS: [yes](https://github.com/GrapheneOS/platform_packages_modules_DnsResolver/blob/13/PrivateDnsConfiguration.h)
-  [yes](https://github.com/GrapheneOS/platform_packages_modules_DnsResolver/blob/13/PrivateDnsConfiguration.h)
 - LineageOS:
   [yes](https://github.com/LineageOS/android_packages_modules_DnsResolver/blob/lineage-20.0/PrivateDnsConfiguration.h)
   - /e/OS:
@@ -390,13 +325,14 @@ DNS_ domains turning into DNS-over-HTTP/3?
 
 ### [Rethink](https://github.com/celzero/rethink-app)
 
-**_NOTE!_** This pretends to be a VPN and thus breaks things depending on seeing
+**_NOTE!_** This pretends to be a VPN and thus breaks things depending on
-the IP directly such as wireless debugging LAN IP, Briar LAN connections, cause
+seeing the IP directly such as wireless debugging LAN IP, Briar LAN
-warnings in Ooni Probe and disable automatic testing, Syncthing Fork will not
+connections, cause warnings in Ooni Probe and disable automatic testing,
-autostart due to detecting the network as metered, unless it's given permission
+Syncthing Fork will not autostart due to detecting the network as metered,
-to run in metered networks.
+unless it's given permission to run in metered networks.
 
-1. Use either GitHub or F-Droid release as Google Play doesn't have blocklists.
+1. Use either GitHub or F-Droid release as Google Play doesn't have
+   blocklists.
 1. Enable it.
 1. In Android Settings, Internet, Advanced, VPN, select Rethink, make it
    always-on and block connections not using it.
@@ -414,17 +350,19 @@ to run in metered networks.
 - Network: _Perform connectivity checks_
 
 1. Remember to also visit Android app details for Rethink, in battery menu
-   select unrestricted and in network allow unlimited data even with data saver.
+   select unrestricted and in network allow unlimited data even with data
-1. I also have a suspicion that Android _Developer_ Setting
+   saver.
-   `Always keep mobile data active` is interfering with Rethink as always-on VPN
+1. I also have a suspicion that Android _Developer_ Setting `Always keep
-   causing connectivity issues or it not being sure whether "metered" or
+mobile data active` is interfering with Rethink as always-on VPN causing
-   unmetered network is being used.
+   connectivity issues or it not being sure whether "metered" or unmetered
+   network is being used.
    1. The setting is enabled by default nowadays, to access it, go to about
-      phone and rapidly tap `Software build number` (backtranslated to English
+      phone and rapidly tap `Software build number`
-      from Finnish (like everything else (TODO: check in English)).
+      (backtranslated to English from Finnish (like everything else (TODO:
+      check in English)).
    1. Once you are a developer, `System Settings` (within `Settings`) should
-      have a new `Developer Settings` menu `Mobile data always active` is under
+      have a new `Developer Settings` menu `Mobile data always active` is
-      `Connection properties` section (which is above `Input`)
+      under `Connection properties` section (which is above `Input`)
 
 Hopefully there is no situation where Rethink stops working and thinks it's
 still working. As can be deduced from this section, sometimes Rethink and I
@@ -436,9 +374,10 @@ I think a few of the blocklists in Rethink are blocking apkpure's domain
 breaking Obtainium and their official app and the steps to fix that are:
 
 1. Use a DNS server that doesn't have the block (`https://open.dns0.eu/` or
-   `https://unfiltered.adguard-dns.com/dns-query` if private ECS is desirable?)
+   `https://unfiltered.adguard-dns.com/dns-query` if private ECS is
-1. Select `Apps` in Rethink's main screen (the biggest button below `Proxy` and
+   desirable?)
-   `Logs`.
+1. Select `Apps` in Rethink's main screen (the biggest button below `Proxy`
+   and `Logs`.
 1. Search for `Obtainium` or `APKPure` and select it.
 1. Select `Domain Rules`.
 1. Select the floating `+` from bottom right.

n/emoji.md

@@ -11,8 +11,10 @@ lang: en
 
 # Unemojied emojis
 
-[John D. Cook shares a nice trick to prevent emojis from being displayed as emojis](https://www.johndcook.com/blog/2022/09/30/preventing-emoji/)
+[John D. Cook shares a nice trick to prevent emojis from being displayed as
-and I want to store it here alongside the more personally relevant symbols.
+emojis](https://www.johndcook.com/blog/2022/09/30/preventing-emoji/) and I
+want to store it here alongside the more personally
+relevant symbols.
 
 So to make something not an emoji, `U+FE0E` or `︎` and to use emoji,
 `FE0F` or (`&#65039`).
@@ -47,8 +49,7 @@ _My shellrc has some reminders for me and these are the sequences there._
 ## aminda.eu
 
 - 🧅︎ Onion: `\u1f9c5` `🧅︎`
-  - I guess it just doesn't have a non-emoji variant at least on my system at
+  - I guess it just doesn't have a non-emoji variant at least on my system at the time of writing?
-    the time of writing?
 
 ### friends
 
@@ -57,26 +58,20 @@ _My shellrc has some reminders for me and these are the sequences there._
 
 ## Flags
 
-- 🏴‍☠︎ Pirate Flag: `\u1f3f4\u200d\u2620\ufe0f\ufe0e`
+- 🏴‍☠︎ Pirate Flag: `\u1f3f4\u200d\u2620\ufe0f\ufe0e` or `🏴‍☠︎`
-  or `🏴‍☠︎`
+- 🏳️‍🌈︎ Pride Flag: `🏳️‍🌈`
-- 🏳️‍🌈︎ Pride Flag:
+- 🏳️‍⚧️‍︎ Trans Pride Flag: `🏳️‍⚧️‍︎`
-  `🏳️‍🌈`
-- 🏳️‍⚧️‍︎ Trans Pride Flag:
-  `🏳️‍⚧️‍︎`
 
 ## Kingdom Hearts
 
-Well, one must be prepared to discuss the clash between Light and Darkness and
+Well, one must be prepared to discuss the clash between Light and Darkness and the χ-blade, in case someone resurrects it?
-the χ-blade, in case someone resurrects it?
 
 - χ can be expressed as `\U03C7`, `χ` or neatly `χ`.
-  - In case of `&Chi` making it a capital letter turns it into Χ, but can
+  - In case of `&Chi` making it a capital letter turns it into Χ, but can you even distinguish that from X?
-    you even distinguish that from X?
 
 ### Roman Numerals
 
-_You have no idea how often I miss these. And I don't even mean to discuss the_
+_You have no idea how often I miss these. And I don't even mean to discuss the_ Organization ⅫⅠ.
-Organization ⅫⅠ.
 
 **_WARNING: The first syntax may be incorrect._**
 

n/essentialsoftware.md

@@ -32,39 +32,27 @@ _{{ page.excerpt }}_
 
 ## Security
 
-- `microcode` - propietary, but otherwise CPU holes are going to be gaping open.
+- `microcode` - propietary, but otherwise CPU holes are going to be gaping open. Refer to `tail -n +1 /sys/devices/system/cpu/vulnerabilities/*`
-  Refer to `tail -n +1 /sys/devices/system/cpu/vulnerabilities/*`
   - Debian calls this as `amd64-microcode` or `intel-microcode`
 - `ufw` for Deb-based or `firewalld` on Fedora
 - `sshguard` for mitigating shared systems where others refuse to use keys
-- `needrestart` for knowing when updates actually require services to be
+- `needrestart` for knowing when updates actually require services to be restarted or a kernel upgrade happens and requires reboot
-  restarted or a kernel upgrade happens and requires reboot
+- `molly-guard` so you won't accidentally `reboot` or `poweroff` production rather than local machine.
-- `molly-guard` so you won't accidentally `reboot` or `poweroff` production
-  rather than local machine.
 - `apt-listchanges` changelogs are worth knowing when updating.
 - `apt-listbugs` known bugs are especially nice when performing bigger updates.
-- `chrony` - security demands the time to be correct, Chrony supports NTS and is
+- `chrony` - security demands the time to be correct, Chrony supports NTS and is proper NTP server instead of just SNTP like systemd-timesyncd.
-  proper NTP server instead of just SNTP like systemd-timesyncd.
   - alternatively configure `systemd-timesyncd`
-- `unbound` - my choice for both DNSSEC validating and DNS-over-TLS, even if I
+- `unbound` - my choice for both DNSSEC validating and DNS-over-TLS, even if I had it connect to upstream dns\[crypt\]proxy
-  had it connect to upstream dns\[crypt\]proxy
+  - alternatively configure `systemd-resolved`. Simultaneously `systemd-networkd` may be a good idea.
-  - alternatively configure `systemd-resolved`. Simultaneously
+- `unattended-upgrades` or `dnf-automatic` so security updates are at least downloaded if not even directly installed (see configuration and systemd units!)
-    `systemd-networkd` may be a good idea.
+  - if `dnf-automatic`, consider `sudo systemctl enable dnf-automatic-install.{timer,service}`
-- `unattended-upgrades` or `dnf-automatic` so security updates are at least
+    or at least `sudo systemctl enable dnf-automatic-download.{timer,service}`
-  downloaded if not even directly installed (see configuration and systemd
-  units!)
-  - if `dnf-automatic`, consider
-    `sudo systemctl enable dnf-automatic-install.{timer,service}` or at least
-    `sudo systemctl enable dnf-automatic-download.{timer,service}`
 
 ## Usability
 
 - `nvim git tmux zsh` - good luck without these
-- if cryptographic operations are taking ages, consider something like
+- if cryptographic operations are taking ages, consider something like `haveged`. It's controversial, so if there are no issues, don't install a random number generator.
-  `haveged`. It's controversial, so if there are no issues, don't install a
+- userspace oom killer, may avoid frozen systems, much more pleasant than actually having to deal with a frozen system.
-  random number generator.
-- userspace oom killer, may avoid frozen systems, much more pleasant than
-  actually having to deal with a frozen system.
   - `earlyoom`
     - remember to `sudo systemctl enable --now earlyoom`
   - `systemd-oomd`
@@ -75,16 +63,14 @@ _{{ page.excerpt }}_
 - `thermald` for additional help keeping system cool, especially intel
   - `sudo systemctl enable --now thermald`
 - `vnstat` - help for observing bandwidth usage
-- `yggdrasil` - essential for getting through Carrier Grade NAT whether there is
+- `yggdrasil` - essential for getting through Carrier Grade NAT whether there is IPv6 or not. Also gives static internal IPv6 reducing need for dynamic DNS.
-  IPv6 or not. Also gives static internal IPv6 reducing need for dynamic DNS.
 - `tlp` - for laptop power management, especially ThinkPad.
   - `sudo tlp-stat | less`
   - `sudo systemctl enable --now tlp`
 
 ## Offtopic system configuration
 
-This is just too close to not mention here (and was besides in my planning
+This is just too close to not mention here (and was besides in my planning issue):
-issue):
 
 ### Debian-based
 
@@ -96,5 +82,4 @@ issue):
 ### SSD
 
 - `sudo systemctl enable --now fstrim.timer`
-- check that `/etc/fstab` has `noatime` so every file access isn't written to
+- check that `/etc/fstab` has `noatime` so every file access isn't written to the disk. BTRFS filesystems should also have `ssd` flag.
-  the disk. BTRFS filesystems should also have `ssd` flag.

n/f-droid.md

@@ -1,8 +1,6 @@
 ---
 title: F-Droid repository list
-excerpt:
+excerpt: F-Droid is kind of apt for Android with multiple repositories available. This is my note to self on which repositories I tend to have configured.
-  F-Droid is kind of apt for Android with multiple repositories available. This
-  is my note to self on which repositories I tend to have configured.
 layout: mini
 permalink: /n/f-droid.html
 redirect_from: /n/fdroid.html
@@ -13,8 +11,7 @@ robots: noai
 
 _{{ page.excerpt }}_
 
-Remember to prefer the
+Remember to prefer the [F-Droid Basic](https://f-droid.org/packages/org.fdroid.basic) app!
-[F-Droid Basic](https://f-droid.org/packages/org.fdroid.basic) app!
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -34,46 +31,32 @@ Remember to prefer the
 
 ## Official F-Droid repositories
 
-F-Droid and GuardianProject are configured by default, however cloudflare isn't
+F-Droid and GuardianProject are configured by default, however cloudflare
-enabled by default. And for some reason my Yeul decided that it needs 0
+isn't enabled by default. And for some reason my Yeul decided that it
-repositories out of the box, so time to add them too.
+needs 0 repositories out of the box, so time to add them too.
 
 - [cloudflare.f-droid.org/repo](fdroidrepos://cloudflare.f-droid.org/repo?fingerprint=43238d512c1e5eb2d6569f4a3afbf5523418b82e0a3ed1552770abb9a9c9ccab)
   - <s>[cloudflare.f-droid.org/archive](fdroidrepos://cloudflare.f-droid.org/archive?fingerprint=43238d512c1e5eb2d6569f4a3afbf5523418b82e0a3ed1552770abb9a9c9ccab)</s>
 
 ## Additional F-Droid repositories
 
-- [apt.izzysoft.de/fdroid/repo](fdroidrepos://apt.izzysoft.de/fdroid/repo?fingerprint=3bf0d6abfeae2f401707b6d966be743bf0eee49c2561b9ba39073711f628937a)
+- [apt.izzysoft.de/fdroid/repo](fdroidrepos://apt.izzysoft.de/fdroid/repo?fingerprint=3bf0d6abfeae2f401707b6d966be743bf0eee49c2561b9ba39073711f628937a) is a less strictly foss repository by an F-Droid maintainer.
-  is a less strictly foss repository by an F-Droid maintainer.
+- [fdroid.frostnerd.com/fdroid/repo](fdroidrepos://fdroid.frostnerd.com/fdroid/repo?fingerprint=74bb580f263ec89e15c207298dec861b5069517550fe0f1d852f16fa611d2d26) contains Frostnerd's apps, mainly Nebulo.
-- [fdroid.frostnerd.com/fdroid/repo](fdroidrepos://fdroid.frostnerd.com/fdroid/repo?fingerprint=74bb580f263ec89e15c207298dec861b5069517550fe0f1d852f16fa611d2d26)
-  contains Frostnerd's apps, mainly Nebulo.
 - [guardianproject.info/fdroid/repo](fdroidrepos://guardianproject.info/fdroid/repo?fingerprint=b7c2eefd8dac7806af67dfcd92eb18126bc08312a7f2d6f3862e46013c7a6135)
   - <s>[guardianproject.info/fdroid/archive](fdroidrepos://guardianproject.info/fdroid/archive?fingerprint=b7c2eefd8dac7806af67dfcd92eb18126bc08312a7f2d6f3862e46013c7a6135)</s>
-- [s2.spiritcroc.de/fdroid/repo](fdroidrepos://s2.spiritcroc.de/fdroid/repo?fingerprint=6612ade7e93174a589cf5ba26ed3ab28231a789640546c8f30375ef045bc9242)
+- [s2.spiritcroc.de/fdroid/repo](fdroidrepos://s2.spiritcroc.de/fdroid/repo?fingerprint=6612ade7e93174a589cf5ba26ed3ab28231a789640546c8f30375ef045bc9242) contains SpiritCroc's apps, mainly SchildiChat.
-  contains SpiritCroc's apps, mainly SchildiChat.
+- [s2.spiritcroc.de/testing/fdroid/repo](fdroidrepos://s2.spiritcroc.de/testing/fdroid/repo?fingerprint=52d03f2fab785573bb295c7ab270695e3a1bdd2adc6a6de8713250b33f231225) contains testing versions of SpiritCroc's apps, mainly SchildiChat.
-- [s2.spiritcroc.de/testing/fdroid/repo](fdroidrepos://s2.spiritcroc.de/testing/fdroid/repo?fingerprint=52d03f2fab785573bb295c7ab270695e3a1bdd2adc6a6de8713250b33f231225)
+- [divestos.org/apks/official/fdroid/repo](fdroidrepos://divestos.org/apks/official/fdroid/repo?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) contains the DivestOS apps such as Hypatia and Mull Browser (not to be confused with Mullvad Browser).
-  contains testing versions of SpiritCroc's apps, mainly SchildiChat.
-- [divestos.org/apks/official/fdroid/repo](fdroidrepos://divestos.org/apks/official/fdroid/repo?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467)
-  contains the DivestOS apps such as Hypatia and Mull Browser (not to be
-  confused with Mullvad Browser).
 
 ## Official repositories for a single project
 
-- [mobileapp.bitwarden.com/fdroid/repo](fdroidrepos://mobileapp.bitwarden.com/fdroid/repo?fingerprint=bc54ea6fd1cd5175bcccc47c561c5726e1c3ed7e686b6db4b18bac843a3efe6c)
+- [mobileapp.bitwarden.com/fdroid/repo](fdroidrepos://mobileapp.bitwarden.com/fdroid/repo?fingerprint=bc54ea6fd1cd5175bcccc47c561c5726e1c3ed7e686b6db4b18bac843a3efe6c) is Bitwarden password manager.
-  is Bitwarden password manager.
+- [briarproject.org/fdroid/repo](fdroidrepos://briarproject.org/fdroid/repo?fingerprint=1fb874bee7276d28ecb2c9b06e8a122ec4bcb4008161436ce474c257cbf49bd6) is Briar local mesh/Tor messenger.
-- [briarproject.org/fdroid/repo](fdroidrepos://briarproject.org/fdroid/repo?fingerprint=1fb874bee7276d28ecb2c9b06e8a122ec4bcb4008161436ce474c257cbf49bd6)
+- [microg.org/fdroid/repo](fdroidrepos://microg.org/fdroid/repo?fingerprint=9bd06727e62796c0130eb6dab39b73157451582cbd138e86c468acc395d14165) is an open implementation of Play Services and used just for devices without them.
-  is Briar local mesh/Tor messenger.
+- [fdroid.emersion.fr/goguma-nightly/repo](fdroidrepos://fdroid.emersion.fr/goguma-nightly/repo/?fingerprint=ACC8CFEDDF58C590D021FCF37534A54F5919E026D7A8333AA01C1ABB3D34E68D) is the Goguma IRC client nightly repository.
-- [microg.org/fdroid/repo](fdroidrepos://microg.org/fdroid/repo?fingerprint=9bd06727e62796c0130eb6dab39b73157451582cbd138e86c468acc395d14165)
+- [app.simplex.chat/fdroid/repo](fdroidrepos://app.simplex.chat/fdroid/repo?fingerprint=9f358ff284d1f71656a2bfaf0e005deae6aa14143720e089f11ff2ddcfeb01ba) is the SimpleX messenger repository.
-  is an open implementation of Play Services and used just for devices without
+- [molly.im/fdroid/repo](fdroidrepos://molly.im/fdroid/repo?fingerprint=3B7E93B1FE32C6E35A93D6DDFC5AFBEB1239A7C6EA6AF20FF33ED53CDC38B04A) is Molly the Signal fork's repo.
-  them.
+- [molly.im/fdroid/foss/fdroid/repo](fdroidrepos://molly.im/fdroid/foss/fdroid/repo?fingerprint=5198DAEF37FC23C14D5EE32305B2AF45787BD7DF2034DE33AD302BDB3446DF74) is Molly FOSS the Signal fork's repo without propietary components.
-- [fdroid.emersion.fr/goguma-nightly/repo](fdroidrepos://fdroid.emersion.fr/goguma-nightly/repo/?fingerprint=ACC8CFEDDF58C590D021FCF37534A54F5919E026D7A8333AA01C1ABB3D34E68D)
-  is the Goguma IRC client nightly repository.
-- [app.simplex.chat/fdroid/repo](fdroidrepos://app.simplex.chat/fdroid/repo?fingerprint=9f358ff284d1f71656a2bfaf0e005deae6aa14143720e089f11ff2ddcfeb01ba)
-  is the SimpleX messenger repository.
-- [molly.im/fdroid/repo](fdroidrepos://molly.im/fdroid/repo?fingerprint=3B7E93B1FE32C6E35A93D6DDFC5AFBEB1239A7C6EA6AF20FF33ED53CDC38B04A)
-  is Molly the Signal fork's repo.
-- [molly.im/fdroid/foss/fdroid/repo](fdroidrepos://molly.im/fdroid/foss/fdroid/repo?fingerprint=5198DAEF37FC23C14D5EE32305B2AF45787BD7DF2034DE33AD302BDB3446DF74)
-  is Molly FOSS the Signal fork's repo without propietary components.
 
 ---
 

n/fairbuds.md

@@ -1,9 +1,6 @@
 ---
 title: Fairbuds XL and the equalizer settings
-excerpt:
+excerpt: I have the misnamed XL and while it's clear, even with factory reset by pushing the joystick to the right until it says "factory reset complete", but the studio eq may not be so clear.
-  I have the misnamed XL and while it's clear, even with factory reset by
-  pushing the joystick to the right until it says "factory reset complete", but
-  the studio eq may not be so clear.
 layout: mini
 permalink: /n/fairbuds.html
 redirect_from:
@@ -38,15 +35,7 @@ Shamelessly copied from Matrix.
 
 ### 2024-04-11
 
-> My settings for Studio so far is 60hz+0db, 230hz+2db, 1.1khz+0db, 4khz+5db,
+> My settings for Studio so far is 60hz+0db, 230hz+2db, 1.1khz+0db, 4khz+5db, 10khz+4db. I think the some people may prefer +/- a db or two on the 4khz and 10khz levels depending on their taste and "head related transfer function" (rabbit hole, not worth digging into). I could go for one more db on those myself since I tend to prefer that BUT that can also lead to some sharpness for my ears on some tracks. This is a better comfortable level for me. Also those settings don't assume the Fairbuds XL are flat because they're not, instead these settings aim to "correct" the issues I feel they have with the tools given in the app without being silly. :)
-> 10khz+4db. I think the some people may prefer +/- a db or two on the 4khz and
-> 10khz levels depending on their taste and "head related transfer function"
-> (rabbit hole, not worth digging into). I could go for one more db on those
-> myself since I tend to prefer that BUT that can also lead to some sharpness
-> for my ears on some tracks. This is a better comfortable level for me. Also
-> those settings don't assume the Fairbuds XL are flat because they're not,
-> instead these settings aim to "correct" the issues I feel they have with the
-> tools given in the app without being silly. :)
 
 In clearer words, in the app drag the four sliders to
 

n/firewalld.md

@@ -12,8 +12,8 @@ robots: noai
 
 # Quick note on firewalld usage
 
-This is practically [/ufw](/ufw), but for Firewalld which Fedora comes with. The
+This is practically [/ufw](/ufw), but for Firewalld which Fedora comes with.
-blog post also predates me having a /n directory here.
+The blog post also predates me having a /n directory here.
 
 **_After done, run `sudo firewall-cmd --reload`_**
 
@@ -36,12 +36,12 @@ blog post also predates me having a /n directory here.
 
 ## Zones
 
-firewalld zones are privilege of NetworkManager users, this tends to be a
+firewalld zones are privilege of NetworkManager users, this tends to be
-systemd-networkd household. Then again I don't believe in absolutely trusted
+a systemd-networkd household. Then again I don't believe in absolutely trusted
 zones.
 
-Zone would be specified by `--zone=home` in the commands. The other zone I could
+Zone would be specified by `--zone=home` in the commands. The other zone I
-imagine using is `public`.
+could imagine using is `public`.
 
 ## Protocols
 
@@ -49,10 +49,8 @@ imagine using is `public`.
 sudo firewall-cmd --add-protocol=ipv6-icmp --permanent
 ```
 
-- Tells computers when things go wrong with IPv6 network. See also
+- Tells computers when things go wrong with IPv6 network. See also [Neil Alexander: Understanding ICMP and why you shouldn't just block it outright](https://neilalexander.dev/2017/04/16/understanding-icmp).
-  [Neil Alexander: Understanding ICMP and why you shouldn't just block it outright](https://neilalexander.dev/2017/04/16/understanding-icmp).
+  - _Motivation for being here is [20/20 in IPv6-test.com](https://ipv6-test.com)._
-  - _Motivation for being here is
-    [20/20 in IPv6-test.com](https://ipv6-test.com)._
 
 ## Services
 
@@ -64,10 +62,11 @@ sudo firewall-cmd --add-service=syncthing --permanent
 sudo firewall-cmd --add-service=mdns --permanent
 ```
 
-- I trust Chrony (ntp) to not allow it to be used from outside of LAN as
+- I trust Chrony (ntp) to not allow it to be used from outside of LAN
-  `firewalld` is apparently not designed with limiting source addresses in mind.
+  as `firewalld` is apparently not designed with limiting source
-- `syncthing` is the client, not to be confused with `syncthing-gui` or
+  addresses in mind.
-  `syncthing-relay`.
+- `syncthing` is the client, not to be confused with `syncthing-gui`
+  or `syncthing-relay`.
 
 ## Ports
 
@@ -76,7 +75,6 @@ sudo firewall-cmd --permanent --add-port=9001/udp
 sudo firewall-cmd --permanent --add-port=6771/udp
 ```
 
-- `9001/udp` is Yggdrasil automatic peering, although link-local and unlikely to
+- `9001/udp` is Yggdrasil automatic peering, although link-local and
-  be recognised by predefined rules.
+  unlikely to be recognised by predefined rules.
-- `6771/udp` is
+- `6771/udp` is [Bittorrent Local Peer Discovery](http://bittorrent.org/beps/bep_0014.html)
-  [Bittorrent Local Peer Discovery](http://bittorrent.org/beps/bep_0014.html)

n/gpg.md

@@ -1,8 +1,6 @@
 ---
 title: GPG notes without a better place
-excerpt:
+excerpt: Creating Ed25519/future key, configuring WKD, Keyoxide PGP and something on Keybase.
-  Creating Ed25519/future key, configuring WKD, Keyoxide PGP and something on
-  Keybase.
 layout: mini
 permalink: /n/gpg.html
 redirect_from:
@@ -44,8 +42,8 @@ robots: noai
 
 ## Ed25519 (or future default) key creation
 
-To create an Ed25519 key, or whatever will be the default version in the future
+To create an Ed25519 key, or whatever will be the default version in the
-as defined by your GPG version:
+future as defined by your GPG version:
 
 ```
 gpg2 --quick-gen-key address@domain.example future-default
@@ -61,28 +59,26 @@ deluid # to delete the uid which doesn't contain your name
 save
 ```
 
-\*
+\* [OpenPGP User ID Comments considered harmful by dkg on debian-administrator.org (via web.archive.org)](https://web.archive.org/web/20201020082313/https://debian-administration.org/users/dkg/weblog/97)
-[OpenPGP User ID Comments considered harmful by dkg on debian-administrator.org (via web.archive.org)](https://web.archive.org/web/20201020082313/https://debian-administration.org/users/dkg/weblog/97)
 
-Then you are ready to publish the public key however you generally publish it,
+Then you are ready to publish the public key however you generally publish
-preferably in multiple places from where some recognise revokation certificates
+it, preferably in multiple places from where some recognise revokation
-if the time ever comes.
+certificates if the time ever comes.
 
-NOTE: You can extend the expiry time of an expired gpg signature by issuing the
+NOTE: You can extend the expiry time of an expired gpg signature by issuing
-`expire` command in `--edit-key` and the key is valid again when the update is
+the `expire` command in `--edit-key` and the key is valid again when the
-reimported to gpg keyrings by other people.
+update is reimported to gpg keyrings by other people.
 
 ## Keybase
 
-To publish the key `keybase pgp select --multi` (where multi is required for
+To publish the key `keybase pgp select --multi` (where multi
-multiple PGP keys per account) and to submit changes to it,
+is required for multiple PGP keys per account) and to submit changes to it,
 `keybase pgp update --all` (where --all is again necessary only if you have
 multiple keys).
 
 ## Claws-mail note that is somewhat related.
 
-Debian:
+Debian: `sudo apt install claws-mail claws-mail-address-keeper claws-mail-attach-warner claws-mail-gdata-plugin claws-mail-pgpinline claws-mail-pgpmime claws-mail-smime-plugin`
-`sudo apt install claws-mail claws-mail-address-keeper claws-mail-attach-warner claws-mail-gdata-plugin claws-mail-pgpinline claws-mail-pgpmime claws-mail-smime-plugin`
 
 Load plugins from Configuration (menu) --> Plugins --> Load, they are all
 somewhere in `/usr/lib/x86_64-linux-gnu/claws-mail/plugins` or similar path.
@@ -107,19 +103,17 @@ xxxx xxxx xxxx xxxx xxxx  xxxx xxxx xxxx xxxx xxxx
 
 ```
 
-Note the empty line in the end, as PGP/INLINE is the way to sign emails, it the
+Note the empty line in the end, as PGP/INLINE is the way to sign emails,
-PGP signature comes after it and in my opinion looks a bit cleaner with the
+it the PGP signature comes after it and in my opinion looks a bit cleaner
-signature ending to an empty line.
+with the signature ending to an empty line.
 
 ---
 
 ## WKD
 
-Setting up GPG WKD (Web Key Directory), _mostly stripped/adjusted from Matt Rude
+Setting up GPG WKD (Web Key Directory), _mostly stripped/adjusted from
-whose page is NXDOMAIN and not in Wayback Machine.
+Matt Rude whose page is NXDOMAIN and not in Wayback Machine. [What I find is](https://openpgpkey.mattrude.com/)
-[What I find is](https://openpgpkey.mattrude.com/) pointers to
+pointers to [1](https://wiki.gnupg.org/WKD) [2](https://wiki.gnupg.org/WKS) [3](https://tools.ietf.org/html/draft-koch-openpgp-webkey-service)_
-[1](https://wiki.gnupg.org/WKD) [2](https://wiki.gnupg.org/WKS)
-[3](https://tools.ietf.org/html/draft-koch-openpgp-webkey-service)_
 
 Requires a control over domain/.well-known and email under that domain.
 
@@ -132,8 +126,7 @@ Requires a control over domain/.well-known and email under that domain.
 7. in Jekyll `_config.yml` ensure existence of `include: [.well-known]` if
    applicable.
 8. deploy
-9. test with
+9. test with `gpg -v --auto-key-locate clear,wkd,nodefault --locate-key email@example.net`
-   `gpg -v --auto-key-locate clear,wkd,nodefault --locate-key email@example.net`
 
 NOTE: The empty `policy` goes to the `openpgpkey` directory, not `hu` (I
 initially failed at this part)
@@ -151,8 +144,7 @@ commands in `gpg --edit-key "key fingerprint here"`:
 - Add notations: `notation`
 - Remove notations: `notation` from `showpref` with a `-` in the beginning
 
-Don't forget to
+Don't forget to `gpg --keyserver hkps://keys.openpgp.org --send-keys "your keyid here"` !
-`gpg --keyserver hkps://keys.openpgp.org --send-keys "your keyid here"` !
 
 ### Keyoxide docs
 

n/helen.md

@@ -15,9 +15,7 @@ hattiwattlowprice: "10 c/kWh"
 lang: fi
 ---
 
-Tuntihinta @
+Tuntihinta @ [Apple App Store](https://apps.apple.com/app/tuntihinta/id824684537) [Google Play](https://play.google.com/store/apps/details?id=fi.fingrid.tuntihinta)
-[Apple App Store](https://apps.apple.com/app/tuntihinta/id824684537)
-[Google Play](https://play.google.com/store/apps/details?id=fi.fingrid.tuntihinta)
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -42,49 +40,28 @@ Tuntihinta @
 
 Helen markkinahintasähkö kuukaudelle {{ page.month }} on {{ page.monthly }}.
 
-- Helen sähköverkot Oy:n siirron perusmaksu: {{ page.basicdistribution }},
+- Helen sähköverkot Oy:n siirron perusmaksu: {{ page.basicdistribution }}, siirron marginaali {{ page.distributionmargin }}.
-  siirron marginaali {{ page.distributionmargin }}.
+- Helenin pörssisähkön kuukausihinta: {{ page.basicstock }}, marginaali {{ page.stockmargin }}.
-- Helenin pörssisähkön kuukausihinta: {{ page.basicstock }}, marginaali
-  {{ page.stockmargin }}.
 
 ## Yhtälöt Tuntihinnalle
 
 _Jekyll ei salli matematiikkaa suoraan tietoturvasyistä._
 
-- Kallis: <strong>{{ page.monthly }} + {{ page.distributionmargin }}</strong>
+- Kallis: <strong>{{ page.monthly }} + {{ page.distributionmargin }}</strong> (Helenin markkinasähköhinta + siirtohinta kWh)
-  (Helenin markkinasähköhinta + siirtohinta kWh)
+- Halpa: <strong>({{ page.monthly }} + {{ page.distributionmargin }}) / 2</strong> (Helenin markkinasähköhinta + siirtohinta kWh / 2), **_pyöristettynä alaspäin_**
-- Halpa: <strong>({{ page.monthly }} + {{ page.distributionmargin }}) /
+- Marginaali: <strong>{{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (Helen Sähköverkot Oy siirtohinta kWh + pörssisähkön marginaali).
-  2</strong> (Helenin markkinasähköhinta + siirtohinta kWh / 2),
+- OmaHelen kohtelee alle {{ page.omahelenlowprice }} halpana ja yli {{ page.omahelenhighprice }} kalliina, joten vaihtoehtoiset kaavat ovat:
-  **_pyöristettynä alaspäin_**
+  - Kallis: <strong>{{ page.omahelenhighprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (OmaHelenin korkea hinta + Marginaali)
-- Marginaali: <strong>{{ page.distributionmargin }} +
+  - Halpa: <strong>{{ page.omahelenlowprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (OmaHelenin matala hinta + Marginaali)
-  {{ page.stockmargin }}</strong> (Helen Sähköverkot Oy siirtohinta kWh +
+- [HattiWatt](https://hattiwatt.com/) vuorostaan sanoo korkean olevan yli {{ page.hattiwatthighprice }} ja halvan olevan alle {{ page.hattiwattlowprice }}. Se tosin näyttää hinnan myös liikennevaloin.
-  pörssisähkön marginaali).
+  - Halpa: <strong>{{ page.hattiwattlowprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (HattiWattin matala hinta + Marginaali)
-- OmaHelen kohtelee alle {{ page.omahelenlowprice }} halpana ja yli
+  - Kallis: <strong>{{ page.hattiwatthighprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (HattiWattin korkea hinta + Marginaali)
-  {{ page.omahelenhighprice }} kalliina, joten vaihtoehtoiset kaavat ovat:
-  - Kallis: <strong>{{ page.omahelenhighprice }} +
-    {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (OmaHelenin
-    korkea hinta + Marginaali)
-  - Halpa: <strong>{{ page.omahelenlowprice }} + {{ page.distributionmargin }} +
-    {{ page.stockmargin }}</strong> (OmaHelenin matala hinta + Marginaali)
-- [HattiWatt](https://hattiwatt.com/) vuorostaan sanoo korkean olevan yli
-  {{ page.hattiwatthighprice }} ja halvan olevan alle
-  {{ page.hattiwattlowprice }}. Se tosin näyttää hinnan myös liikennevaloin.
-  - Halpa: <strong>{{ page.hattiwattlowprice }} +
-    {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (HattiWattin
-    matala hinta + Marginaali)
-  - Kallis: <strong>{{ page.hattiwatthighprice }} +
-    {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (HattiWattin
-    korkea hinta + Marginaali)
 
 ## Lähteet
 
-- [Helen.fi: Markkinasähkö; ja sähkön markkinahinta](https://www.helen.fi/sahko/sahkosopimus/markkinahinta)
+- [Helen.fi: Markkinasähkö; ja sähkön markkinahinta](https://www.helen.fi/sahko/sahkosopimus/markkinahinta) määrittää kalliin hinnan.
-  määrittää kalliin hinnan.
+  - Helen veloittaa sitä markkinasähköasiakkailtaan koko kuukauden ja pyrkii sillä kattamaan omat kulunsa ja varmistamaan, ettei myy sähköä liian edullisesti.
-  - Helen veloittaa sitä markkinasähköasiakkailtaan koko kuukauden ja pyrkii
+- Siirtohinta näkyy _Oma Helen_-sovelluksessa ja muutokset ilmoitetaan Helenin asiakaslehdessä.
-    sillä kattamaan omat kulunsa ja varmistamaan, ettei myy sähköä liian
-    edullisesti.
-- Siirtohinta näkyy _Oma Helen_-sovelluksessa ja muutokset ilmoitetaan Helenin
-  asiakaslehdessä.
 
 <div lang="en">
 
@@ -92,44 +69,27 @@ _Jekyll ei salli matematiikkaa suoraan tietoturvasyistä._
 
 Helen's monthly market price for month {{ page.month }} is {{ page.monthly }}.
 
-- Distribution price: {{ page.basicdistribution }} and
+- Distribution price: {{ page.basicdistribution }} and {{ page.distributionmargin }}.
-  {{ page.distributionmargin }}.
 - Stock price: {{ page.basicstock }} and {{ page.stockmargin }}.
 
 ## Equations for Tuntihinta
 
 _Jekyll doesn't allow maths directly for infosec reasons._
 
-- Expensive: <strong>{{ page.monthly }} + {{ page.distributionmargin }}</strong>
+- Expensive: <strong>{{ page.monthly }} + {{ page.distributionmargin }}</strong> (Helen's Market Price Electricity + distribution margin)
-  (Helen's Market Price Electricity + distribution margin)
+- Cheap: <strong>({{ page.monthly }} + {{ page.distributionmargin }}) / 2</strong> (Helen's Market Price Electricity + distribution margin / 2), **_round down_**
-- Cheap: <strong>({{ page.monthly }} + {{ page.distributionmargin }}) /
+- Margin: <strong>{{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (Distribution fee + stock margin)
-  2</strong> (Helen's Market Price Electricity + distribution margin / 2),
+- OmaHelen app treats {{ page.omahelenlowprice }} as cheap and over {{ page.omahelenhighprice }} as expensive, so alternative equations are:
-  **_round down_**
+  - Expensive: <strong>{{ page.omahelenhighprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (OmaHelen's high price + Margin)
-- Margin: <strong>{{ page.distributionmargin }} +
+  - Cheap: <strong>{{ page.omahelenlowprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (OmaHelen's low price + Margin)
-  {{ page.stockmargin }}</strong> (Distribution fee + stock margin)
+- [HattiWatt](https://hattiwatt.com/) again treats over {{ page.hattiwatthighprice }} as high price with low price being {{ page.hattiwattlowprice }}. It however shows price in traffic lights.
-- OmaHelen app treats {{ page.omahelenlowprice }} as cheap and over
+  - Cheap: <strong>{{ page.hattiwattlowprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (HattiWatt's low price + Margin))
-  {{ page.omahelenhighprice }} as expensive, so alternative equations are:
+  - Expensive: <strong>{{ page.hattiwatthighprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (HattiWatt's high price + Margin)
-  - Expensive: <strong>{{ page.omahelenhighprice }} +
-    {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (OmaHelen's
-    high price + Margin)
-  - Cheap: <strong>{{ page.omahelenlowprice }} + {{ page.distributionmargin }} +
-    {{ page.stockmargin }}</strong> (OmaHelen's low price + Margin)
-- [HattiWatt](https://hattiwatt.com/) again treats over
-  {{ page.hattiwatthighprice }} as high price with low price being
-  {{ page.hattiwattlowprice }}. It however shows price in traffic lights.
-  - Cheap: <strong>{{ page.hattiwattlowprice }} +
-    {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (HattiWatt's
-    low price + Margin))
-  - Expensive: <strong>{{ page.hattiwatthighprice }} +
-    {{ page.distributionmargin }} + {{ page.stockmargin }}</strong> (HattiWatt's
-    high price + Margin)
 
 ## Sources
 
-- Definition of monthly plan price:
+- Definition of monthly plan price: [Helen: Market Price Electricity](https://www.helen.fi/en/electricity/electricity-products-and-prices/marketpriceelectricity)
-  [Helen: Market Price Electricity](https://www.helen.fi/en/electricity/electricity-products-and-prices/marketpriceelectricity)
+  - They use it all month following stock market price and trying to get their own citation.
-  - They use it all month following stock market price and trying to get their
-    own citation.
 - Distribution is in _Oma Helen_ and changes are announced in their newspaper.
 
 </div>

n/index.html

@@ -1,11 +1,7 @@
 ---
 layout: default
 title: Notes
-excerpt:
+excerpt: You have discovered my notes listing, where I ramble about random subjects for future me, so I don't have to rediscover the things again. I tend to access these with direct link, but for your benefit, they are also listed here. It is not without realm of possibility for you to be reading this page already.
-  You have discovered my notes listing, where I ramble about random subjects for
-  future me, so I don't have to rediscover the things again. I tend to access
-  these with direct link, but for your benefit, they are also listed here. It is
-  not without realm of possibility for you to be reading this page already.
 permalink: /n/index.html
 redirect_from: /n/n.html
 navigation: true

n/keyoxide.md

@@ -9,12 +9,10 @@ lang: en
 robots: noai
 ---
 
-> Keyoxide is a decentralized tool to create and verify decentralized online
+> Keyoxide is a decentralized tool to create and verify decentralized online identities.
-> identities.
 
 - For painful OpenPGP proofs using notations refer to [n/gpg](/n/gpg.html).
-- For ASP profiles
+- For ASP profiles [Keyoxide-flutter](https://codeberg.org/Berker/keyoxide-flutter).
-  [Keyoxide-flutter](https://codeberg.org/Berker/keyoxide-flutter).
   - [n/obtainium](/n/obtainium.html) is that way.
 
 ## My ASP profile
@@ -23,8 +21,6 @@ robots: noai
 
 ### Proofs
 
-- Plain:
+- Plain: [`aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY`](https://keyoxide.org/aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY)
-  [`aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY`](https://keyoxide.org/aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY)
   - <code>[`aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY`](https://keyoxide.org/aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY)</code>
-- Hashed:
+- Hashed: `$argon2id$v=19$m=8192,t=2,p=4$UeKcKenApsCHc+YGJUGCHw$hoTY1qFVXf56BZpZCUNG39/2IrQjwKrT`
-  `$argon2id$v=19$m=8192,t=2,p=4$UeKcKenApsCHc+YGJUGCHw$hoTY1qFVXf56BZpZCUNG39/2IrQjwKrT`

n/ksoy.md

@@ -11,9 +11,7 @@ stockmargin: "0.23 c/kWh"
 lang: fi
 ---
 
-Tuntihinta @
+Tuntihinta @ [Apple App Store](https://apps.apple.com/app/tuntihinta/id824684537) [Google Play](https://play.google.com/store/apps/details?id=fi.fingrid.tuntihinta)
-[Apple App Store](https://apps.apple.com/app/tuntihinta/id824684537)
-[Google Play](https://play.google.com/store/apps/details?id=fi.fingrid.tuntihinta)
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -35,26 +33,19 @@ Tuntihinta @
 
 _Siirtohinnasto ei tiedossa, joten se ei ole mukana yhtälöissä._
 
-KSOYn Jatkuvan sähkösopimuksen hinta kuukaudelle {{ page.month }} on
+KSOYn Jatkuvan sähkösopimuksen hinta kuukaudelle {{ page.month }} on {{ page.monthly }}.
-{{ page.monthly }}.
 
-- KSOY Pörssisähkön hinta: {{ page.basicstock }}, marginaali
+- KSOY Pörssisähkön hinta: {{ page.basicstock }}, marginaali {{ page.stockmargin }}.
-  {{ page.stockmargin }}.
 
 ## Yhtälöt Tuntihinnalle
 
 _Jekyll ei salli matematiikkaa suoraan tietoturvasyistä._
 
-- Kallis: <strong>{{ page.monthly }}</strong> (KSOY jatkuvan sähkösopimuksen
+- Kallis: <strong>{{ page.monthly }}</strong> (KSOY jatkuvan sähkösopimuksen hinta)
-  hinta)
+- Halpa: <strong>{{ page.monthly }} / 2</strong> (KSOY jatkuvan sähkösopimuksen hinta / 2), **_pyöristettynä alaspäin_**
-- Halpa: <strong>{{ page.monthly }} / 2</strong> (KSOY jatkuvan sähkösopimuksen
-  hinta / 2), **_pyöristettynä alaspäin_**
 - Marginaali: <strong>{{ page.stockmargin }}</strong> (pörssisähkön marginaali).
 
 ## Lähteet
 
-- [KSOY jatkuva sähkösopimus](https://www.ksoy.fi/sahkon-myynti/sahkoa-kotiin/ksoy-jatkuva/)
+- [KSOY jatkuva sähkösopimus](https://www.ksoy.fi/sahkon-myynti/sahkoa-kotiin/ksoy-jatkuva/) määrittää kalliin hinnan.
-  määrittää kalliin hinnan.
+  - KSOY veloittaa sitä jatkuvilta sähköasiakkailtaan koko kuukauden ja pyrkii sillä kattamaan omat kulunsa ja varmistamaan, ettei myy sähköä liian edullisesti.
-  - KSOY veloittaa sitä jatkuvilta sähköasiakkailtaan koko kuukauden ja pyrkii
-    sillä kattamaan omat kulunsa ja varmistamaan, ettei myy sähköä liian
-    edullisesti.

n/localectl.md

@@ -1,8 +1,6 @@
 ---
 title: Quick localectl config
-excerpt:
+excerpt: Reminder on systemd keyboard and language settings, also including more regionally tailored ones.
-  Reminder on systemd keyboard and language settings, also including more
-  regionally tailored ones.
 layout: mini
 permalink: /n/localectl.html
 redirect_from:
@@ -51,24 +49,22 @@ sudo localectl set-x11-locale fi
 sudo localectl set-locale LANG=en_IE.UTF-8 LC_TIME=en_DK.UTF-8 LC_MONETARY=fi_FI.UTF-8 LC_NAME=fi_FI.UTF-8 LC_TELEPHONE=fi_FI.UTF-8
 ```
 
-- Everything will be in English, but time will be in ISO 8601, financial units
+- Everything will be in English, but time will be in ISO 8601, financial units use Finnish separators, names are sorted according to Finnish alphabet (a, …, x, y, z, å, ä, ö) and phone numbers begin with the Finnish `+358` prefix.
-  use Finnish separators, names are sorted according to Finnish alphabet (a, …,
-  x, y, z, å, ä, ö) and phone numbers begin with the Finnish `+358` prefix.
 
 ## Explanations
 
-- LANG is the language and defaults for other variables if they are unset. en_DK
+- LANG is the language and defaults for other variables if they are unset.
-  gives ISO 8601 date format for everything respecting LC_TIME.
+  en_DK gives ISO 8601 date format for everything respecting LC_TIME.
-  - `LANG=en_IE date` returns `Sun 02 Jun 2024 11:05:04 EEST`, while
+  - `LANG=en_IE date` returns `Sun 02 Jun 2024 11:05:04 EEST`,
-    `LANG=en_DK date` returns `2024-06-02T11:05:04 EEST`.
+    while `LANG=en_DK date` returns `2024-06-02T11:05:04 EEST`.
 - LC_MONETARY sets the currency and how sums of it are managed.
-- LC_NAME sets name format and I prefer Finnish (just the name) to Irish which
+- LC_NAME sets name format and I prefer Finnish (just the name) to Irish
-  probably has `M{r,s,rs}` and I hate them being gendered and I doubt it
+  which probably has `M{r,s,rs}` and I hate them being gendered and I doubt it
   understands Mx.
-- LC_TELEPHONE sets telephone number format and I set it to fi_FI as it defaults
+- LC_TELEPHONE sets telephone number format and I set it to fi_FI as it
-  international numbers to +358 and I am more likely to be typing Finnish
+  defaults international numbers to +358 and I am more likely to be typing
-  numbers than Irish. I imagine it can affect office tools, and it's here more
+  Finnish numbers than Irish. I imagine it can affect office tools, and
-  of just in case.
+  it's here more of just in case.
 
 And naturally to use these locales, they must be compiled.
 
@@ -82,12 +78,13 @@ fi_FI.UTF-8 UTF-8
 
 and as always, after editing that file, you must run `sudo locale-gen`.
 
-(Debian & deriative users, you have `dpkg-reconfigure locales` that merges the
+(Debian & deriative users, you have `dpkg-reconfigure locales` that merges
-editing and locale-gen and that is probably what you are supposed to use.)
+the editing and locale-gen and that is probably what you are supposed to
+use.)
 
-It seems like I didn't even say anything about that UTF-8 part, but it's 2024
+It seems like I didn't even say anything about that UTF-8 part, but
-and everything is UTF-8 (or your things are horribly broken and the rest of the
+it's 2024 and everything is UTF-8 (or your things are horribly broken
-world hates you).
+and the rest of the world hates you).
 
 Sources/thanks:
 
@@ -95,37 +92,32 @@ Sources/thanks:
 - [Locale Helper: en_IE](https://lh.2xlibre.net/locale/en_IE/)
 - [Locale Helper: fi_FI](https://lh.2xlibre.net/locale/fi_FI/)
 - [Wikipedia: UTF-8](https://en.wikipedia.org/wiki/UTF-8)
-  - Random misplaced advice: disable charset fallback in your IRC client and be
+  - Random misplaced advice: disable charset fallback in your
-    UTF-8 only! You will see when someone is not using UTF-8 and won't submit
+    IRC client and be UTF-8 only! You will see when someone is not
-    useless bug reports to bots/bridges/whatever that are UTF-8 only (as
+    using UTF-8 and won't submit useless bug reports to
-    supporting every charset is impossible, since IRC has nothing to declare
+    bots/bridges/whatever that are UTF-8 only (as supporting every
-    character set, and there is zero reason why you wouln't be using UTF-8! Well
+    charset is impossible, since IRC has nothing to declare character
-    nowadays some have
+    set, and there is zero reason why you wouln't be using UTF-8! Well nowadays
-    [IRCv3 `UTF8ONLY` `ISUPPORT` token](https://ircv3.net/specs/extensions/utf8-only)).
+    some have [IRCv3 `UTF8ONLY` `ISUPPORT` token](https://ircv3.net/specs/extensions/utf8-only)).
 - [ISO 8601](https://en.wikipedia.org/wiki/ISO_8601)
-  - You should read it or at least be aware of it especially if you are in
+  - You should read it or at least be aware of it especially if you are
-    contact with people from other countries and even more if you are in
+    in contact with people from other countries and even more if you
-    international communities trying to get anything done with anything that has
+    are in international communities trying to get anything done with
-    to do with time or date!
+    anything that has to do with time or date!
 
 ---
 
-2019-12-27: I don't see LANGUAGE mentioned here, but it was blocking me from
+2019-12-27: I don't see LANGUAGE mentioned here, but it was blocking me
-changing language of GNOME and `sudo dpkg-reconfigure locales` in the end gave
+from changing language of GNOME and `sudo dpkg-reconfigure locales` in the
-me
+end gave me `*** update-locale: Warning: LANGUAGE (en_US:en) is not compatible with LANG (fi_FI.UTF-8). Disabling it.`.
-`*** update-locale: Warning: LANGUAGE (en_US:en) is not compatible with LANG (fi_FI.UTF-8). Disabling it.`.
 
 Either I was wrong on it being list of fallback languages I wish to use, or
-GNOME has different view on it, but as I think I have seen errors related to it
+GNOME has different view on it, but as I think I have seen errors related
-before, I will drop `LANGUAGE` from the variables I set.
+to it before, I will drop `LANGUAGE` from the variables I set.
 
 ---
 
-2024-04-04: `export LANGUAGE=eo:fi:en` in a file read by my
+2024-04-04: `export LANGUAGE=eo:fi:en` in a file read by my [`zshrc`](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/rc/zshrc) works fine as it gets read before my [`startsway`](https://gitea.blesmrt.net/mikaela/scripts/src/branch/master/bash/usr-local-bin/startsway) anyway.
-[`zshrc`](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/rc/zshrc)
-works fine as it gets read before my
-[`startsway`](https://gitea.blesmrt.net/mikaela/scripts/src/branch/master/bash/usr-local-bin/startsway)
-anyway.
 
 ---
 

n/matrixspoilers.md

@@ -1,8 +1,6 @@
 ---
 title: Spoilers on Matrix protocol
-excerpt:
+excerpt: Instructions for proper spoiling on Matrix using FluffyChat, Nheko and Element Web.
-  Instructions for proper spoiling on Matrix using FluffyChat, Nheko and Element
-  Web.
 layout: mini
 permalink: /n/matrixspoilers.html
 redirect_from:
@@ -17,10 +15,10 @@ The Matrix specification supports spoilers since version 1.1:
 
 - [Spoiler messages at Client-Server API of Matrix Specification](https://spec.matrix.org/latest/client-server-api/#spoiler-messages)
 
-My favourite Matrix clients, FluffyChat and Nheko, support spoilers when the
+My favourite Matrix clients, FluffyChat and Nheko, support spoilers when
-spoiler is in the following format;
+the spoiler is in the following format; `||Reason why this is a spoiler|Actually
-`||Reason why this is a spoiler|Actually spoilered text.||` It can also be
+spoilered text.||` It can also be in-line and a spoiler without reason is just
-in-line and a spoiler without reason is just `||spoiler goes here||`.
+`||spoiler goes here||`.
 
 Element Web supports whole message spoilers through the `/spoiler` command.
 
@@ -30,8 +28,9 @@ Other clients supporting formatting may have to enter the HTML directly e.g.:
 <span data-mx-spoiler="REASON HERE">Spoilered text</span>
 ```
 
-Some clients, like Nheko, have a `/plain` command to disable formatting for that
+Some clients, like Nheko, have a `/plain` command to disable formatting for
-message which allows sending this message in plain text to help someone else.
+that message which allows sending this message in plain text to help someone
+else.
 
 ```html
 /plain <span data-mx-spoiler="REASON HERE">Spoilered text</span>

n/nomap.md

@@ -19,11 +19,10 @@ excerpt: Previously a blog post, now a note on _nomap in SSID.
 
 _{{ page.excerpt }}_
 
-`_nomap` in the end of your SSID will exclude your network from Google, Apple,
+`_nomap` in the end of your SSID will exclude your network from Google, Apple, WiGLE etc.
-WiGLE etc.
 
-Microsoft has a separate
+Microsoft has a separate [location services
-[location services opt-out](https://account.microsoft.com/privacy/location-services-opt-out)
+opt-out](https://account.microsoft.com/privacy/location-services-opt-out)
 which uses MAC addresses instead.
 
 <!-- editorconfig-checker-disable -->
@@ -43,13 +42,10 @@ which uses MAC addresses instead.
 
 ## Why?
 
-Privacy. WiGLE.net may point your home directly just by entering the SSID and
+Privacy. WiGLE.net may point your home directly just by entering the SSID and who knows how many similar services there are. While I have been thinking of this since 2015, there is at least one case where this has been used:
-who knows how many similar services there are. While I have been thinking of
-this since 2015, there is at least one case where this has been used:
 
 - [Christian Haschek: The curious case of the Raspberry Pi in the network closet](https://blog.haschek.at/2018/the-curious-case-of-the-RasPi-in-our-network.html)
 
 ## `_optout`
 
-Legacy from 2015-2016. Used to be part of Microsoft WiFi Sense that shared WiFi
+Legacy from 2015-2016. Used to be part of Microsoft WiFi Sense that shared WiFi networks and passwords to all contacts.
-networks and passwords to all contacts.

n/obtainium.md

@@ -1,9 +1,6 @@
 ---
 title: Obtainiun
-excerpt:
+excerpt: Obtainium downloads apps directly from forge/whatever without need for app stores and theoretically I can bootstrap it by copy-pasting the txt linked below into it, especially on devices that Google doesn't smile upon.
-  Obtainium downloads apps directly from forge/whatever without need for app
-  stores and theoretically I can bootstrap it by copy-pasting the txt linked
-  below into it, especially on devices that Google doesn't smile upon.
 layout: mini
 permalink: /n/obtainium.html
 sitemap: true
@@ -13,20 +10,18 @@ robots: noai
 
 _{{ page.excerpt }}_
 
-[Obtainium](https://github.com/ImranR98/Obtainium/) downloads apps directly from
+[Obtainium](https://github.com/ImranR98/Obtainium/) downloads apps directly from forge/whatever without need for app
-forge/whatever without need for app stores and theoretically I can bootstrap it
+stores and theoretically I can bootstrap it by copy-pasting the txt linked
-by copy-pasting the txt linked below into it, especially on devices that Google
+below into it, especially on devices that Google doesn't smile upon.
-doesn't smile upon.
 
 - [Obtainium's latest release](https://github.com/ImranR98/Obtainium/releases/latest)
 
-See also
+See also [2022-01-02 F-Droid Security Issues on privsec.dev](https://privsec.dev/posts/android/f-droid-security-issues/),
-[2022-01-02 F-Droid Security Issues on privsec.dev](https://privsec.dev/posts/android/f-droid-security-issues/),
 regardless of my list containing F-Droids. Regarding that, **prefer
-[F-Droid Basic](https://f-droid.org/packages/org.fdroid.basic) over F-Droid**
+[F-Droid Basic](https://f-droid.org/packages/org.fdroid.basic) over
-whenever possible (if nearby features aren't required) as it addesses some
+F-Droid** whenever possible (if nearby features aren't required)
-issues such as targeting higher API version and having automatic updates on
+as it addesses some issues such as targeting higher API version and having
-Android 12+.
+automatic updates on Android 12+.
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -48,10 +43,8 @@ Android 12+.
 
 ## Importable app list
 
-- For apps that don't require API keys to be entered into Obtainium, see
+- For apps that don't require API keys to be entered into Obtainium, see [txt/obtainium.txt](/txt/obtainium.txt).
-  [txt/obtainium.txt](/txt/obtainium.txt).
+- For apps that require GitHub or GitLab API key to be entered into Obtainium, see [txt/obtainium2.txt](/txt/obtainium2.txt)
-- For apps that require GitHub or GitLab API key to be entered into Obtainium,
-  see [txt/obtainium2.txt](/txt/obtainium2.txt)
 
 ## Third party F-Droid repositories
 
@@ -74,57 +67,34 @@ _However I would use [the F-Droid repositories directly](/n/f-droid.html)._
 - `https://divestos.org/apks/official/fdroid/repo?appId=us.spotco.malwarescanner`
   - Hypatia malware scanner. Third party F-Droid repo.
 - `https://divestos.org/apks/official/fdroid/repo?appId=us.spotco.fennec_dos`
-  - Mull Browser (not to be confused with Mullvad). Often suggested as the
+  - Mull Browser (not to be confused with Mullvad). Often suggested as the closest to [LibreWolf](https://librewolf.net)
-    closest to [LibreWolf](https://librewolf.net) on Android. Third party
+    on Android. Third party F-Droid repo.
-    F-Droid repo.
 
 ## App Stores
 
 _Always exercise caution when installing apps, even from Google Play Store!_
 
 - `https://github.com/accrescent/accrescent`
-  - Accrescent is a recent App Store which I have seen recommended especially in
+  - Accrescent is a recent App Store which I have seen recommended especially in privacy circles, while it's a bit plain and doesn't have much selection yet.
-    privacy circles, while it's a bit plain and doesn't have much selection yet.
 - `https://apkpure.net/apkpure/com.apkpure.aegon`
-  - APK Pure. Full of intrusive advertising, I wouldn't use it without adblocker
+  - APK Pure. Full of intrusive advertising, I wouldn't use it without adblocker and even then would keep my family away from it.
-    and even then would keep my family away from it.
 - `https://gitlab.com/AuroraOSS/AuroraStore`
-  - Open source and anonymous interface for Google Play Store. Google doesn't
+  - Open source and anonymous interface for Google Play Store. Google doesn't like it, so the accounts often don't work, which is the reason this section has so many apps regardless of the common advice to install nothing outside of Play Store (that I obviously disagree with as there are dangerous and unwanted apps there too).
-    like it, so the accounts often don't work, which is the reason this section
-    has so many apps regardless of the common advice to install nothing outside
-    of Play Store (that I obviously disagree with as there are dangerous and
-    unwanted apps there too).
 - `https://f-droid.org/packages/org.fdroid.fdroid`
-  - FOSS-only app store with support for additional
+  - FOSS-only app store with support for additional [repositories](/n/f-droid.html). I prefer the Basic version though, see below.
-    [repositories](/n/f-droid.html). I prefer the Basic version though, see
-    below.
 - `https://f-droid.org/packages/org.fdroid.basic`
-  - F-Droid without local application sharing. Used to target higher API level
+  - F-Droid without local application sharing. Used to target higher API level than the main app allowing automatic updates for apps targeting recent enough app version. This is what I recommend and have installed for family for years.
-    than the main app allowing automatic updates for apps targeting recent
-    enough app version. This is what I recommend and have installed for family
-    for years.
 - `https://github.com/Tobi823/ffupdater`
-  - Installer and updater for privacy friendly browsers (and itself), including,
+  - Installer and updater for privacy friendly browsers (and itself), including, but not limited to Firefox, Chromium and other browsers based on them (except obviously not Google Chrome). Would install for family, if they didn't have Google Play Store.
-    but not limited to Firefox, Chromium and other browsers based on them
-    (except obviously not Google Chrome). Would install for family, if they
-    didn't have Google Play Store.
 - `https://appgallery.huawei.com/app/C27162`
-  - Huawei App Gallery. I don't think I recommend it, unless it comes with your
+  - Huawei App Gallery. I don't think I recommend it, unless it comes with your phone, but it's nice to know it exists and can be installed?
-    phone, but it's nice to know it exists and can be installed?
 - `https://github.com/ImranR98/Obtainium`
-  - An app downloader that can install apps directly from the publishers, a few
+  - An app downloader that can install apps directly from the publishers, a few other app stores and F-Droid repositories (see an earlier section on this page). But you should know that already considering this page is of no interest to anyone else than Obtainium users (and mainly only me).
-    other app stores and F-Droid repositories (see an earlier section on this
-    page). But you should know that already considering this page is of no
-    interest to anyone else than Obtainium users (and mainly only me).
 - `https://uptodown-android.en.uptodown.com/android`
-  - Uptodown app store, pleasant interface and not so intrusive advertising as
+  - Uptodown app store, pleasant interface and not so intrusive advertising
-    opposed to APK Pure. I would consider installing it for a family member,
+    as opposed to APK Pure. I would consider installing it for a family member, should they reach ??? apps outside of Play Store that it offers (such as AdGuard (which Google again dislikes), Telegram.org/Android...)
-    should they reach ??? apps outside of Play Store that it offers (such as
-    AdGuard (which Google again dislikes), Telegram.org/Android...)
 - `https://lite-uptodown-app-store.en.uptodown.com/android`
-  - Lighter version for less powerful phones, thinking of you Android Go
+  - Lighter version for less powerful phones, thinking of you Android Go Edition, or certain other 8 GB memory phones. Additionally Google is stripped out of it.
-    Edition, or certain other 8 GB memory phones. Additionally Google is
-    stripped out of it.
 
 ## Other noteworthy apps:
 

n/prettier.md

@@ -41,22 +41,16 @@ _{{ page.excerpt }}_
 
 ## Installation
 
-1. `npm install -D -E prettier@3.3.2 prettier-plugin-nginx@1.0.3 @prettier/plugin-ruby@4.0.4 prettier-plugin-toml@2.0.1 @prettier/plugin-xml@3.4.1 prettier-plugin-sh@0.14.0`
+1. `npm install -D -E prettier@3.3.2 prettier-plugin-nginx@1.0.3 @prettier/plugin-ruby@4.0.4 prettier-plugin-toml@2.0.1 @prettier/plugin-xml@3.4.1 prettier-plugin-sh@0.14.0` or probably just `pnpm install -D` if it's not your project.
-   or probably just `pnpm install -D` if it's not your project.
+1. If they don't exist already `echo "{}" > .prettierrc && touch .prettierignore`
-1. If they don't exist already
-   `echo "{}" > .prettierrc && touch .prettierignore`
 1. `pnpm exec prettier . --write` or `pnpm exec prettier . --check`
 
 ## Configuration
 
-I do with `.editorconfig` what I can, but for example my template `.prettierrc`
+I do with `.editorconfig` what I can, but for example my template `.prettierrc` looks like:
-looks like:
 
 ```json
 {
-  "insertPragma": true,
-  "proseWrap": "always",
-  "singleAttributePerLine": true,
   "plugins": [
     "@prettier/plugin-ruby",
     "@prettier/plugin-xml",
@@ -69,17 +63,12 @@ looks like:
     {
       "files": "conf/librewolf.overrides.cfg",
       "options": { "parser": "javascript" }
-    },
-    {
-      "files": "conf/autoconfig.js.online",
-      "options": { "parser": "javascript" }
     }
   ]
 }
 ```
 
-at the time of writing. It's directly from documentation excluding the plugin
+at the time of writing. It's directly from documentation excluding the plugin names, but I will want it everywhere.
-names, but I will want it everywhere.
 
 ## `.pre-commit-config.yaml`
 
@@ -87,11 +76,7 @@ This is the file that controls [`pre-commit`]s behaviour.
 
 ### Offline
 
-I accidentally wrote this while updating this page to reflect me using prettier
+I accidentally wrote this while updating this page to reflect me using prettier outside of [`pre-commit`] too nowadays. This has the advantage that the same local environment gets reused and dependencies are managed centrally, but assumes everyone uses pnpm, won't work in [`pre-commit` ci] and may have other issues I am not thinking of as a not-coder myself.
-outside of [`pre-commit`] too nowadays. This has the advantage that the same
-local environment gets reused and dependencies are managed centrally, but
-assumes everyone uses pnpm, won't work in [`pre-commit` ci] and may have other issues
-I am not thinking of as a not-coder myself.
 
 [`pre-commit`]: https://pre-commit.com
 [`pre-commit` ci]: https://pre-commit.ci

n/puhelin.md

@@ -13,8 +13,8 @@ sitemap: false
 lang: fi
 ---
 
-Uudet puhelimet: https://android.com/one LineageOS-yhteensopivuus:
+Uudet puhelimet: https://android.com/one
-https://wiki.lineageos.org/devices/
+LineageOS-yhteensopivuus: https://wiki.lineageos.org/devices/
 
 Käytettyjä puhelimia suomalaisilta tai suomenkielisiltä yrityksiltä:
 

n/reuse.md

@@ -35,13 +35,12 @@ SPDX-License-Identifier: CC-BY-SA-4.0
 
 > reuse is a tool for compliance with the REUSE recommendations.
 
-says [their GitHub description](https://github.com/fsfe/reuse-tool) and in
+says [their GitHub description](https://github.com/fsfe/reuse-tool) and
-practice this means having a license header in all files or alternatively a
+in practice this means having a license header in all files or alternatively
-`file.license` file. The tool can generate these, but I never remember the
+a `file.license` file. The tool can generate these, but I never remember
-commands.
+the commands.
 
-For more detailed explanation, consult
+For more detailed explanation, consult [reuse.software/tutorial](https://reuse.software/tutorial/)
-[reuse.software/tutorial](https://reuse.software/tutorial/)
 
 ---
 

n/systemd-boot.md

@@ -11,10 +11,9 @@ sitemap: false
 lang: en
 ---
 
-This is mostly based on
+This is mostly based on [kowalski7.cc.xyz instructions](https://kowalski7cc.xyz/blog/systemd-boot-fedora-32/) which also tells
-[kowalski7.cc.xyz instructions](https://kowalski7cc.xyz/blog/systemd-boot-fedora-32/)
+more clearly what to do. These are my notes on what I have done on top of it
-which also tells more clearly what to do. These are my notes on what I have done
+and probably not very much comprehensible by others than me.
-on top of it and probably not very much comprehensible by others than me.
 
 <!-- editorconfig-checker-disable -->
 <!-- prettier-ignore-start -->
@@ -44,17 +43,17 @@ later.
 1. `sudo mkdir $(cat /etc/machine-id)` also note the machine-id, it's used a
    lot.
 1. `sudo dnf install systemd-boot-unsigned sdubby -y`
-1. `cat /proc/cmdline` noting it, it will become included in `kernel_cmdline=""`
+1. `cat /proc/cmdline` noting it, it will become included in
-   in `/etc/dracut.conf.d/99-cmdline.conf` (or other freeform name as long as it
+   `kernel_cmdline=""` in `/etc/dracut.conf.d/99-cmdline.conf` (or other
-   ends to .conf?) Might also be worth it to note other dracut configuration
+   freeform name as long as it ends to .conf?) Might also be worth it to note
-   files including defaults `/usr/lib/dracut/dracut.conf.d`
+   other dracut configuration files including defaults
+   `/usr/lib/dracut/dracut.conf.d`
 1. TODO BOOTCTL INSTALL FROM ARCH WIKI?
 1. TODO `printf "\tsudo mkdir /boot/%b/%b\n" "$MACHINEID" "$EXPECTEDKERNEL"`
-1. TODO
+1. TODO `printf "\tsudo kernel-install add %b /lib/modules/%b/vmlinuz\n" "$EXPECTEDKERNEL" "$EXPECTEDKERNEL"`
-   `printf "\tsudo kernel-install add %b /lib/modules/%b/vmlinuz\n" "$EXPECTEDKERNEL" "$EXPECTEDKERNEL"`
+1. The original instructions said to `sudo dnf reinstall kernel-core`, but
-1. The original instructions said to `sudo dnf reinstall kernel-core`, but this
+   this has deviated with systemd-uki. They also said to `sudo bootctl` to
-   has deviated with systemd-uki. They also said to `sudo bootctl` to see if it
+   see if it got installed properly before...
-   got installed properly before...
 1. `sudo reboot`
 1. TODO: PROTECTED PACKAGES SHELL-THINGS!
 
@@ -65,9 +64,9 @@ the image, but that doesn't seem to be the case for UKI. TODO!
 
 # REMOVE ME UPON CONFIRMING THE ABOVE IS CORRECT
 
-1. Read https://kowalski7cc.xyz/blog/systemd-boot-fedora-32/ very helpful and
+1. Read https://kowalski7cc.xyz/blog/systemd-boot-fedora-32/ very helpful and base of this
-   base of this
+2. Anaconda inst.sdboot
-2. Anaconda inst.sdboot 3.efi mounttaus /efi, fstab
+   3.efi mounttaus /efi, fstab
 3. Mkdir /efi/machine-id
 4. systemd-boot-unsigned sdubby
 5. cat /proc/cmdline

n/telegram.md

@@ -1,8 +1,6 @@
 ---
 title: Telegram language links
-excerpt:
+excerpt: You have ended up to my note-to-self on languages of Telegram that I care about (as /setlanguage/xx[<-beta>] is so difficult to remember)?
-  You have ended up to my note-to-self on languages of Telegram that I care
-  about (as /setlanguage/xx[<-beta>] is so difficult to remember)?
 layout: mini
 permalink: /n/telegram.html
 redirect_from: /r/telegram.html

n/telia.md

@@ -5,24 +5,23 @@ redirect_from: /r/telia.html
 sitemap: false
 lang: fi
 locale: fi_FI
-excerpt:
+excerpt: Telia on pistänyt silmiini monissa asioissa, etenkin miten monta kertaa
-  Telia on pistänyt silmiini monissa asioissa, etenkin miten monta kertaa heidän
+heidän verkkonsa on ollut nurin koko maassa ilman muiden operaattoreiden
-  verkkonsa on ollut nurin koko maassa ilman muiden operaattoreiden vastaavan
+vastaavan häiriön tapahtumista.
-  häiriön tapahtumista.
+
 ---
 
 _{{ page.excerpt }}_
 
-Telian IPv6:
+Telian IPv6: https://yhteiso.telia.fi/t5/Kiinteat-nettiyhteydet-ja/Telia-IPv6/m-p/190240#M11822
-https://yhteiso.telia.fi/t5/Kiinteat-nettiyhteydet-ja/Telia-IPv6/m-p/190240#M11822
 
-- 2019-11-22: https://yle.fi/uutiset/3-11082343 "Telian verkon vikatilanteesta
+- 2019-11-22: https://yle.fi/uutiset/3-11082343 "Telian verkon
-  johtuen koko Suomessa hätäpuhelujen soittamisessa Telian liittymistä on
+  vikatilanteesta johtuen koko Suomessa hätäpuhelujen soittamisessa Telian
-  ilmennyt häiriöitä."
+  liittymistä on ilmennyt häiriöitä."
   - https://yle.fi/uutiset/3-11083175 vaaratiedote ohi
 - 2020-02-12: https://yle.fi/uutiset/3-11205636 "Telian mobiiliverkossa oli
   laaja vikatilanne "
-- 2020-04-25: https://yle.fi/uutiset/3-11323265 "Telialla ongelmia yhteyksissä –
+- 2020-04-25: https://yle.fi/uutiset/3-11323265 "Telialla ongelmia
-  vikaa selvitellään parhaillaan, syy ei vielä selvillä"
+  yhteyksissä – vikaa selvitellään parhaillaan, syy ei vielä selvillä"
 - 2020-09-21: https://yle.fi/uutiset/3-11554861 "Telian liittymissä oli
   häiriöitä hätäpuheluiden soittamisessa – Vika on korjattu"

n/yrityskone.md

@@ -9,7 +9,9 @@ lang: fi
 <div lang="fi">Käytettyjä enimmäkseen yrityskoneita suomalaisilta tai suomenkielisiltä
 yrityksiltä:
 
-https://cimos.fi/ https://taitonetti.fi/ https://www.inrego.fi/
+https://cimos.fi/
+https://taitonetti.fi/
+https://www.inrego.fi/
 
 Katso myös /n/puhelin
 
@@ -17,11 +19,13 @@ Katso myös /n/puhelin
 
 <div lang="en">
 
-International used devices (the goal of this note is business devices, but I am
+International used devices (the goal of this note is business devices, but
-unsure whether all here are):
+I am unsure whether all here are):
 
-Hungary: https://www.marseus.com/
+Hungary:
+https://www.marseus.com/
 
-Czech Republic in Czech https://www.gigacomputer.cz/
+Czech Republic in Czech
+https://www.gigacomputer.cz/
 
 </div>

pages/404.markdown

@@ -6,5 +6,4 @@ excerpt: "404, not found, don't bother clicking..."
 lang: en
 ---
 
-Sorry, whatever you were looking for, is not here. Maybe the navigation bar
+Sorry, whatever you were looking for, is not here. Maybe the navigation bar above or on the top right on smaller displays will help you?
-above or on the top right on smaller displays will help you?

pages/about.markdown

@@ -2,100 +2,100 @@
 title: About me
 layout: page
 permalink: /about.html
-excerpt:
+excerpt: "A little about me on transness, Asperger's syndrome/autism, feminism, asexuality & using Linux."
-  "A little about me on transness, Asperger's syndrome/autism, feminism,
-  asexuality & using Linux."
 published: false
 lang: en
 ---
 
-<em>Even if I talk about these things openly here, I prefer that <strong>you
+<em>Even if I talk about these things openly here, I prefer that
-don't talk about me being these minorities to anyone</strong> and <strong>let me
+<strong>you don't talk about me being these minorities to anyone</strong>
-tell by myself</strong> if I see reason to do it. People interested enough can
+and <strong>let me tell by myself</strong> if I see reason to do it.
-put my name to any search engine and find here sooner or later.</em>
+People interested enough can put my name to any search engine and find here sooner or later.</em>
 
-<em>If you did out me, you would risk me being treated differently and possibly
+<em>If you did out me, you would risk me being treated differently and
-cause dangerous concequences.</em>
+possibly cause dangerous concequences.</em>
 
-On this page I am trying to explain myself more or those things that you might
+On this page I am trying to explain myself more or those things that you
-wonder in my self-description. Some things that I explain here may overlap with
+might wonder in my self-description. Some things that I explain here may
-different features.
+overlap with different features.
 
 _For more material about these things, please see [GRSM links](/links2)._
 
 ## GirlsLikeUs — I am a trans woman
 
-It simply means that I was incorrectly defined as boy at birth which I never
+It simply means that I was incorrectly defined as boy at birth which I
-was. I didn't always know it, but around 14-15 Dysphoria really hit me.
+never was. I didn't always know it, but around 14-15 Dysphoria really hit
+me.
 
-I was always different from boys and I have been always bullied and I became
+I was always different from boys and I have been always bullied and I
-suicidal and depressed. I was diagnosed with AS which didn't so much, but
+became suicidal and depressed. I was diagnosed with AS which didn't so
-finally I came to realization on who I am and started the progress to be
+much, but finally I came to realization on who I am and started the
-recognized as myself.
+progress to be recognized as myself.
 
 As the progress is too slow in Finland I ended up starting HRT
 ([Hormone Replacement Therapy](https://en.wikipedia.org/wiki/Hormone_replacement_therapy))
-by myself (like many (if not most) of us here do) and was on it for year before
+by myself (like many (if not most) of us here do) and was on it for year
-getting diagnosed and getting HRT officially.
+before getting diagnosed and getting HRT officially.
 
-Many people have said that I am nowadays happier and smile more and other things
+Many people have said that I am nowadays happier and smile more and other
-like that and I know this is who I am.
+things like that and I know this is who I am.
 
-It's also not very nice when you separate sex and gender by saying "your gender
+It's also not very nice when you separate sex and gender by saying "your
-can be female, but you are always biologically male" and it has been noted
+gender can be female, but you are always biologically male" and it has
-multiple times that gender is biological. _[GRSM links](/links2)_
+been noted multiple times that gender is biological.
+_[GRSM links](/links2)_
 
 - [How to respect a Transgender person at WikiHow](http://www.wikihow.com/Respect-a-Transgender-Person)
 
-_I feel this part doesn't transmit how being trans feels and some things should
+_I feel this part doesn't transmit how being trans feels and some things
-possibly be mentioned here..._
+should possibly be mentioned here..._
 
 ## AS - Asperger's Syndrome
 
-I am AS-person and you might see it from the way I write and speak. I have some
+I am AS-person and you might see it from the way I write and speak. I have
-over-sensitive senses like sense of hearing and it becomes difficult for me to
+some over-sensitive senses like sense of hearing and it becomes difficult
-speak if I try to look into your eyes at the same time, so I am not trying to be
+for me to speak if I try to look into your eyes at the same time, so I am
-impolite or anything, it's just easier to not look at you while I speak. Same
+not trying to be impolite or anything, it's just easier to not look at you
-applies to understanding your speaking.
+while I speak. Same applies to understanding your speaking.
 
 _This paragraph is stub -.-_
 
 - [How to understand Autism at WikiHow](http://www.wikihow.com/Understand-Autism)
-  - Might apply more to children, but it's a feature so one won't simply get
+  - Might apply more to children, but it's a feature so one won't simply
-    healed from it.
+    get healed from it.
 
-_I have afterwards learned that I am also a
+_I have afterwards learned that I am also a [Higly Sensitive Person (HSP](https://en.wikipedia.org/wiki/Sensory_processing_sensitivity), but it
-[Higly Sensitive Person (HSP](https://en.wikipedia.org/wiki/Sensory_processing_sensitivity),
+overlaps with autism a little and I don't know what to start typing it and
-but it overlaps with autism a little and I don't know what to start typing it
+it's piece of information that would mainly interest another HSP like
-and it's piece of information that would mainly interest another HSP like many
+many other things on this page, so I am just leaving it here._
-other things on this page, so I am just leaving it here._
 
 ## Ace & Relationship Anarchist
 
 _I am asexual and possibly relationship anarchist, but it will be seen..._
 
-I used to define myself as poly-curiuos (wondering if I am poly (capable of
+I used to define myself as poly-curiuos (wondering if I am poly (capable
-having simultaneous close romantic relationships with two or more people or not)
+of having simultaneous close romantic relationships with two or more
-and demiromantic (the ace of diamonds playing card is their symbol shared by
+people or not) and demiromantic (the ace of diamonds playing card is their
-demisexuals) which means only forming romantic attraction after forming close
+symbol shared by demisexuals) which means only forming romantic attraction
-emotional bond with the person
+after forming close emotional bond with the person
 
-At some point I started wondering does touching and caring have to be limited
+At some point I started wondering does touching and caring have to be
-into relationship and found
+limited into relationship and found
-[Romantic Asexual, or Touch Hunger?](https://abnormaldiversity.blogspot.fi/2012/12/romantic-asexual-or-touch-hunger.html?)
+[Romantic Asexual, or Touch Hunger?](https://abnormaldiversity.blogspot.fi/2012/12/romantic-asexual-or-touch-hunger.html?) which made sense and made
-which made sense and made me think that there is no romanticity, just sensuality
+me think that there is no romanticity, just sensuality and in the bottom
-and in the bottom relationship anarchy. As what is the difference between friend
+relationship anarchy. As what is the difference between friend and partner,
-and partner, what prevents you from (consentually) cuddling or having sex with
+what prevents you from (consentually) cuddling or having sex with friends?
-friends? What prevents you from loving your friends and is loving so different
+What prevents you from loving your friends and is loving so different from
-from liking and don't you sometimes use the words interchangeably? What prevents
+liking and don't you sometimes use the words interchangeably? What prevents
-you from doing all the things you wish to do with your partner with some friend?
+you from doing all the things you wish to do with your partner with some
-What if love comes after you stop for especially looking for one or multiple
+friend? What if love comes after you stop for especially looking for one
-people to call as partner(s)?
+or multiple people to call as partner(s)?
 
 I have found a word for this, _quoiromantic_ (aka _wtfromantic_ or
-_whatromantic_) and I think I can still use the ace of diamonds symbol as
+_whatromantic_) and I think I can still use the ace of diamonds symbol
-_demisensual_ is the closest to describe my relationship with touch (meaning
+as _demisensual_ is the closest to describe my relationship with
-that I might like it after there is some sort of a emotional bond).
+touch (meaning that I might like it after there is some sort of a emotional
+bond).
 
 However labels such as partner still appear to be necessary with unique
 relationships based on their development or otherwise I am not understood.
@@ -108,22 +108,24 @@ happen will be seen when it happens._
 
 ## Feminist
 
-I support equal rights for everyone and the right of self-definition (or not
+I support equal rights for everyone and the right of self-definition (or
-requiring anyone to define themselves). Everyone should also be the one to
+not requiring anyone to define themselves). Everyone should also be the one
-choose what they do with their body (abortion, gender transition etc.) freely
+to choose what they do with their body (abortion, gender transition etc.)
-without complicated researchs and other people or society judging them.
+freely without complicated researchs and other people or society judging
+them.
 
 _This is basicaly everything, but shouldn't I also say something more?_
 
 ## Linux user
 
-I have been used Linux since 2008, I started with [Ubuntu] \(8.04). My preferred
+I have been used Linux since 2008, I started with [Ubuntu] \(8.04).
-distribution is [Ubuntu MATE] or [Arch Linux] or with servers [Debian], but I am
+My preferred distribution is [Ubuntu MATE] or [Arch Linux] or with servers
-also familiar with other distributions, mainly [Debian]-deriatives.
+[Debian], but I am also familiar with other distributions, mainly
+[Debian]-deriatives.
 
-I have experience with [Fedora] and other distributions from that side too and I
+I have experience with [Fedora] and other distributions from that side too
-am not entirely lost while using them, but somehow I have always preferred
+and I am not entirely lost while using them, but somehow I have always
-Debian side. Maybe it's just that I have learned to use it.
+preferred Debian side. Maybe it's just that I have learned to use it.
 
 [ubuntu]: http://www.ubuntu.com/desktop
 [ubuntu mate]: https://ubuntu-mate.org/
@@ -141,30 +143,26 @@ getting removed entirely sometime._
 
 ## Life
 
-This link list to life post on my blog shouldn't be here, but it has no better
+This link list to life post on my blog shouldn't be here, but it has no
-place, so where else should it be?
+better place, so where else should it be?
 
 _Time of writing in YYYY-MM-DD (ISO 8601): title or what it's about._
 
 - [2015-03-25: Leaving bot communities & a little on my life]({% post_url 2015-03-25-leaving-bots-life %})
 - [2015-04-03: Scum]({% post_url 2015-04-03-scum %})
   - [2015-04-01: Saasta (same in Finnish)]({% post_url 2015-04-01-saasta %})
-- [2015-05-18: Somewhat more on my life & untold background
+- [2015-05-18: Somewhat more on my life & untold background of bots]({% post_url 2015-05-18-life-bot-background %})
-  of bots]({% post_url 2015-05-18-life-bot-background %})
+- [2015-06-16: Feelings and wounds of school bullying]({% post_url 2015-06-16-feelings %})
-- [2015-06-16: Feelings and wounds of
-  school bullying]({% post_url 2015-06-16-feelings %})
 - [2015-06-29: Google translated "suicide post"](https://translate.google.fi/translate?sl=fi&tl=en&js=y&prev=_t&hl=fi&ie=UTF-8&u=https%3A%2F%2Fmikaela.info%2Ffinnish%2F2015%2F06%2F29%2Fminusta.html&edit-text=)
   - _I was at psychiatrical hospital after writing this._
-- [2015-09-09: The most important post that I
+- [2015-09-09: The most important post that I have written]({% post_url 2015-09-09-act-around-trans %})
-  have written]({% post_url 2015-09-09-act-around-trans %})
 - [2015-11-03: I moved to Lauttasaari, Helsinki]({% post_url 2015-11-03-moving %})
   - way too positive for this section, but where else...
 - [2015-11-21: Email to Legal Affairs Committee on how trans law must be based on the right of self-definition](https://translate.google.fi/translate?sl=fi&tl=en&js=y&prev=_t&hl=en&ie=UTF-8&u=https%3A%2F%2Fmikaela.info%2Ffinnish%2F2015%2F11%2F21%2Fsahkopostia-lakivaliokunnalle-translaki.html&edit-text=)
 - [2017-04-18: Google Translated dance lesson trauma](https://translate.google.com/translate?sl=fi&tl=en&js=y&prev=_t&hl=en&ie=UTF-8&u=https%3A%2F%2Fmikaela.info%2Ffinnish%2F2017%2F04%2F18%2Ftanssitunti.html&edit-text=)
-- [2017-04-30: After trans process and AvPD, everything
+- [2017-04-30: After trans process and AvPD, everything is OK]({% post_url 2017-04-30-post-trans %})
-  is OK]({% post_url 2017-04-30-post-trans %})
 
 ---
 
-_Please keep in mind that everything in this page is just my opinion and not all
+_Please keep in mind that everything in this page is just my opinion and
-trans or AS or \<any group\> people are the exact same._
+not all trans or AS or \<any group\> people are the exact same._

pages/browser-extensions.markdown

@@ -169,9 +169,7 @@ TODO: Sort this list.
 
 # Chromium flags
 
-These can generally be found from `about:flags` on Chromium based browsers, for
+These can generally be found from `about:flags` on Chromium based browsers, for Vivaldi explicit `vivaldi://flags` is required and it also has `chrome://settings` for the usual Chromium settings.
-Vivaldi explicit `vivaldi://flags` is required and it also has
-`chrome://settings` for the usual Chromium settings.
 
 - `#enable-quic` - enabled
 - `#enable-force-dark` - enabled with increased text constract
@@ -190,49 +188,29 @@ These likely also exist, but just without the `vendor-` part when searhcing.
 
 # Firefox about:config
 
-_On LibreAwoo or autoconfig, refer to my
+_On LibreAwoo or autoconfig, refer to my [conf/librewolf.overrides.cfg in my shell-things repo](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/conf/librewolf.overrides.cfg) which has kind of replaced this section?._
-[conf/librewolf.overrides.cfg in my shell-things repo](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/conf/librewolf.overrides.cfg)
-which has kind of replaced this section?._
 
-- `security.certerrors.mitm.auto_enable_enterprise_roots` to `false` in order to
+- `security.certerrors.mitm.auto_enable_enterprise_roots` to `false` in order to not trust system CA store in case of enterprise MITM
-  not trust system CA store in case of enterprise MITM
+- `security.OCSP.require` to `true` in order to not allow [OCSP](https://en.wikipedia.org/wiki/OCSP_stapling) soft fail. This may be a bit paranoid, but _only the paranoid survive._
-- `security.OCSP.require` to `true` in order to not allow
+- `privacy.resistFingerprinting.letterboxing` = `true` so letterboxing is
-  [OCSP](https://en.wikipedia.org/wiki/OCSP_stapling) soft fail. This may be a
+  used to hide real browser size. [Tor Browser support](https://support.torproject.org/tbb/maximized-torbrowser-window/)
-  bit paranoid, but _only the paranoid survive._
-- `privacy.resistFingerprinting.letterboxing` = `true` so letterboxing is used
-  to hide real browser size.
-  [Tor Browser support](https://support.torproject.org/tbb/maximized-torbrowser-window/)
   - [Bug 70315: text in menus and boxes unreadable if using dark GTK theme](https://bugzilla.mozilla.org/show_bug.cgi?id=70315))
-- `image.animation_mode` to `once` in order to have gifs play once and then stop
+- `image.animation_mode` to `once` in order to have gifs play once and
-  everywhere (`none` to never have them play).
+  then stop everywhere (`none` to never have them play).
-- `geo.provider.network.url` to
+- `geo.provider.network.url` to `https://location.services.mozilla.com/v1/geolocate?key=%MOZILLA_API_KEY%` in order to send nearby WiFi networks to Mozilla instead of Google. See also [MLS Software](https://wiki.mozilla.org/CloudServices/Location/Software).
-  `https://location.services.mozilla.com/v1/geolocate?key=%MOZILLA_API_KEY%` in
+- `network.IDN_show_punycode` to `true` in order to see punycode instead of UTF-8 in case of spoofing attempt. However makes reading non-ASCII domains painful. E.g. Cyrillic alphabet
-  order to send nearby WiFi networks to Mozilla instead of Google. See also
+- `reader.parse-on-load.force-enabled` to `true` in order to allow reader use to be used on ~all websites and devices (regardless of low RAM?)
-  [MLS Software](https://wiki.mozilla.org/CloudServices/Location/Software).
-- `network.IDN_show_punycode` to `true` in order to see punycode instead of
-  UTF-8 in case of spoofing attempt. However makes reading non-ASCII domains
-  painful. E.g. Cyrillic alphabet
-- `reader.parse-on-load.force-enabled` to `true` in order to allow reader use to
-  be used on ~all websites and devices (regardless of low RAM?)
 
-Future note:
+Future note: [`network.dns.blockDotOnion;false`](https://bugzilla.mozilla.org/show_bug.cgi?id=1497263) ?
-[`network.dns.blockDotOnion;false`](https://bugzilla.mozilla.org/show_bug.cgi?id=1497263)
-?
 
 ## Advertising
 
-Firefox seems to contain a lot of advertising or sponsoring nowadays, whether to
+Firefox seems to contain a lot of advertising or sponsoring nowadays, whether to other Mozilla products or whoever pays them. See also [Bug 1773860: Provide global long-term "disable all promos" flag](https://bugzilla.mozilla.org/show_bug.cgi?id=1773860).
-other Mozilla products or whoever pays them. See also
-[Bug 1773860: Provide global long-term "disable all promos" flag](https://bugzilla.mozilla.org/show_bug.cgi?id=1773860).
 
-- `browser.newtabpage.activity-stream.showSponsored` &
+- `browser.newtabpage.activity-stream.showSponsored` & `browser.newtabpage.activity-stream.showSponsored` to `false` to stop sponsored links.
-  `browser.newtabpage.activity-stream.showSponsored` to `false` to stop
+- `browser.vpn_promo.enabled` to `false` to hopefully stop Mozilla VPN advertisements
-  sponsored links.
-- `browser.vpn_promo.enabled` to `false` to hopefully stop Mozilla VPN
-  advertisements
 - `browser.promo.focus.enabled` to `false` to stop Firefox Focus advertisements?
-- `browser.preferences.moreFromMozilla` to `false` to not hear from other
+- `browser.preferences.moreFromMozilla` to `false` to not hear from other Mozilla products?
-  Mozilla products?
 
 ## [Cookie banner blocking](https://www.ghacks.net/2022/12/24/configure-firefox-to-reject-cookie-banners-automatically/)
 
@@ -246,69 +224,44 @@ defaultPref("cookiebanners.bannerClicking.enabled", true);
 
 ## DNS over HTTPS
 
-- `network.trr.mode` depends, `3` to enforce DoH (required for ECH) or `5` to
+- `network.trr.mode` depends, `3` to enforce DoH (required for ECH) or `5` to explicitly disable. `2` to prefer DoH, but fallback to system also exists.
-  explicitly disable. `2` to prefer DoH, but fallback to system also exists.
+  - [DoH is required by Firefox ESNI/ECH support](https://bugzilla.mozilla.org/show_bug.cgi?id=1500289) which encrypts SNI/ClientHello which would still leak which
-  - [DoH is required by Firefox ESNI/ECH support](https://bugzilla.mozilla.org/show_bug.cgi?id=1500289)
+    sites you visit. [Another bug about ESNI/ECH + Android DoT](https://bugzilla.mozilla.org/show_bug.cgi?id=1542754#c3)
-    which encrypts SNI/ClientHello which would still leak which sites you visit.
+  - Are you using a VPN? Do they provide a DoH server? If yes, maybe the answer is 3 for ESNI/ECH?
-    [Another bug about ESNI/ECH + Android DoT](https://bugzilla.mozilla.org/show_bug.cgi?id=1542754#c3)
-  - Are you using a VPN? Do they provide a DoH server? If yes, maybe the answer
-    is 3 for ESNI/ECH?
 - `network.trr.early-AAAA` `true` to hopefully prefer IPv6
 - `network.trr.uri` for the actual resolver address, e.g.
   `https://doh.mullvad.net/dns-query`
-  - and if they provide as SOCKS proxy as a killswitch,
+  - and if they provide as SOCKS proxy as a killswitch, `network.proxy.socks_remote_dns` must be `false`
-    `network.proxy.socks_remote_dns` must be `false`
+- `network.trr.disable-ECS` to `false` if preferring speed over privacy or using NextDNS private ECS.
-- `network.trr.disable-ECS` to `false` if preferring speed over privacy or using
-  NextDNS private ECS.
   - [Wikipedia: EDNS Client Subnet](https://en.wikipedia.org/wiki/EDNS_Client_Subnet)
 
 Some notes:
 
-- There is also `network.trr.exclude-etc-hosts` for those using `/etc/hosts` for
+- There is also `network.trr.exclude-etc-hosts` for those using `/etc/hosts` for blocking.
-  blocking.
+- You can confirm TRR working by visiting `about:networking#dns` where
-- You can confirm TRR working by visiting `about:networking#dns` where you
+  you should be seeing DNS cache of Firefox and a lot of `TRR: true`.
-  should be seeing DNS cache of Firefox and a lot of `TRR: true`.
+- ECH requires `network.dns.echconfig.enabled` and `network.dns.use_https_rr_as_altsvc` to be `true`,
-- ECH requires `network.dns.echconfig.enabled` and
+  but they seem to default to true at least in Firefox Nightly so maybe no action is needed.
-  `network.dns.use_https_rr_as_altsvc` to be `true`, but they seem to default to
+- [While investingating how Android 9 Private DNS works, I also wrote a DNS provider comparsion here on 2019-07-11]({% post_url blog/2019-07-11-android-private-dns-in-practice %})
-  true at least in Firefox Nightly so maybe no action is needed.
-- [While investingating how Android 9 Private DNS works, I also wrote a DNS
-  provider comparsion here on 2019-07-11]({% post_url blog/2019-07-11-android-private-dns-in-practice %})
 
 ## SSDs
 
-This information is from
+This information is from [Arch Wiki on Firefox tweaks](https://wiki.archlinux.org/index.php/Firefox/Tweaks)
-[Arch Wiki on Firefox tweaks](https://wiki.archlinux.org/index.php/Firefox/Tweaks)
 
 <!-- - `browser.cache.disk.enable` to `false` to only cache to RAM.
 - (`browser.cache.memory.enable` to `true` which should be default) -->
 
-- `browser.sessionstore.interval` to `600000` in order to only store open
+- `browser.sessionstore.interval` to `600000` in order to only store open session every ten minutes (instead of 15 seconds) in case of crashes.
-  session every ten minutes (instead of 15 seconds) in case of crashes.
+  - alternatively `browser.sessionstore.resume_from_crash` to `false` to not store the session data for crash recovery at all. I think this may be the more healthy option with all the information flood and dozens of tabs.
-  - alternatively `browser.sessionstore.resume_from_crash` to `false` to not
-    store the session data for crash recovery at all. I think this may be the
-    more healthy option with all the information flood and dozens of tabs.
 
 Why?
 
-> Every object loaded (html page, jpeg image, css stylesheet, gif banner) is
+> Every object loaded (html page, jpeg image, css stylesheet, gif banner) is saved in the Firefox cache for future use without the need to download it again. It is estimated that only a fraction of these objects will be reused, usually about 30%. This because of very short object expiration time, updates or simply user behavior (loading new pages instead of returning to the ones already visited). The Firefox cache is divided into memory and disk cache and the latter results in frequent disk writes: newly loaded objects are written to memory and older objects are removed.
-> saved in the Firefox cache for future use without the need to download it
-> again. It is estimated that only a fraction of these objects will be reused,
-> usually about 30%. This because of very short object expiration time, updates
-> or simply user behavior (loading new pages instead of returning to the ones
-> already visited). The Firefox cache is divided into memory and disk cache and
-> the latter results in frequent disk writes: newly loaded objects are written
-> to memory and older objects are removed.
 
-> Firefox stores the current session status (opened urls, cookies, history and
+> Firefox stores the current session status (opened urls, cookies, history and form data) to the disk on a regular basis. It is used to recover a previous session in case of crash. The default setting is to save the session every 15 seconds, resulting in frequent disk access.
-> form data) to the disk on a regular basis. It is used to recover a previous
-> session in case of crash. The default setting is to save the session every 15
-> seconds, resulting in frequent disk access.
 
 and this is the reason why Firefox is at times accused of killing SSDs.
 
 ---
 
-Changelog:
+Changelog: [GitHub.com commits](https://github.com/Mikaela/mikaela.github.io/commits/master/pages/browser-extensions.markdown) | [gitea.blesmrt.net commits](https://gitea.blesmrt.net/mikaela/mikaela-info/commits/branch/master/pages/browser-extensions.markdown)
-[GitHub.com commits](https://github.com/Mikaela/mikaela.github.io/commits/master/pages/browser-extensions.markdown)
-|
-[gitea.blesmrt.net commits](https://gitea.blesmrt.net/mikaela/mikaela-info/commits/branch/master/pages/browser-extensions.markdown)

pages/discuss.markdown

@@ -14,14 +14,9 @@ robots: noai
 
 I have multiple instant messaging chatrooms.
 
-- [The ones listed below](#the-links) are for comments to my blog, this website
+- [The ones listed below](#the-links) are for comments to my blog, this website in general, my FOSS <s>spam</s> activity and a contact point for reaching me in general for not so private matters. They are connected together by [Matterbridge](https://github.com/42wim/matterbridge/#matterbridge).
-  in general, my FOSS <s>spam</s> activity and a contact point for reaching me
-  in general for not so private matters. They are connected together by
-  [Matterbridge](https://github.com/42wim/matterbridge/#matterbridge).
 - Many linking here utilize the rules listed below.
-- Others are simply curious about protocols, transports, relays, bridges, etc.
+- Others are simply curious about protocols, transports, relays, bridges, etc. _Why did they end up on this page when they could have ended up anywhere else?_
-  _Why did they end up on this page when they could have ended up anywhere
-  else?_
 
 ---
 
@@ -47,63 +42,43 @@ I have multiple instant messaging chatrooms.
 
 ## Rules
 
-[Contributor Covenant 2.1](https://www.contributor-covenant.org/version/2/1/code_of_conduct/)
+[Contributor Covenant 2.1](https://www.contributor-covenant.org/version/2/1/code_of_conduct/) is the primary Code of Conduct here (which isn't forked due to this community forming around me and my website. Any project growing bigger would have its own), but we do have a couple of other rules too:
-is the primary Code of Conduct here (which isn't forked due to this community
-forming around me and my website. Any project growing bigger would have its
-own), but we do have a couple of other rules too:
 
-- Don't send private messages without asking for a permission first unless your
+- Don't send private messages without asking for a permission first unless your message is purely moderation related.
-  message is purely moderation related.
+  - Please include your business in your first message and not only greeting. See [nohello.net](https://nohello.net) for more about that.
-  - Please include your business in your first message and not only greeting.
+- Don't share personal affairs of other people outside of the room. This includes, but isn't limited to, gender/sexual/romantic orientation questioning, plurality, religion, etc. When in doubt, assume it's private.
-    See [nohello.net](https://nohello.net) for more about that.
+  - Mind the limitations of machines and people especially in the private side. Transport encryption is not [end-to-end encryption](https://en.wikipedia.org/wiki/End-to-end_encryption), which can be broken by a compromised client device (including, but not limited to bot/relay/bridge) or the protocol in question may neglect to encrypt something [like Matrix does for reactions](https://github.com/matrix-org/matrix-spec/issues/660).
-- Don't share personal affairs of other people outside of the room. This
+- For other matters, [_Chatham House Rule_](https://www.chathamhouse.org/about-us/chatham-house-rule) applies.
-  includes, but isn't limited to, gender/sexual/romantic orientation
-  questioning, plurality, religion, etc. When in doubt, assume it's private.
-  - Mind the limitations of machines and people especially in the private side.
-    Transport encryption is not
-    [end-to-end encryption](https://en.wikipedia.org/wiki/End-to-end_encryption),
-    which can be broken by a compromised client device (including, but not
-    limited to bot/relay/bridge) or the protocol in question may neglect to
-    encrypt something
-    [like Matrix does for reactions](https://github.com/matrix-org/matrix-spec/issues/660).
-- For other matters,
-  [_Chatham House Rule_](https://www.chathamhouse.org/about-us/chatham-house-rule)
-  applies.
 
 ## Languages
 
 As for languages; English is preferred due to majority of the discussion
 participants speaking it, but Finnish and Esperanto are also fine.<br> I sadly
-don't consider myself capable of holding a discussion in other languages, but I
+don't consider myself capable of holding a discussion in other languages, but
-do hope to be able to grow this list in the future.
+I do hope to be able to grow this list in the future.
 
 ## The links
 
-- IRC@Etro, [`#mikaela.info`](ircs://etro.mikaela.info:6697/#mikaela.info) my
+- IRC@Etro, [`#mikaela.info`](ircs://etro.mikaela.info:6697/#mikaela.info)
-  selfhosted IRC server.
+  my selfhosted IRC server.
   - [(Recommended) Gamja webchat](https://irc.etro.mikaela.info/#mikaela.info)
   - `MapAddress etro.mikaela.info otzmigofmchtadpek223bkmrzqoa6mmvhmr5dxqurcrtwalizfibuxid.onion`
 - [LiberaChat], [`#mikaela.info`](ircs://irc.libera.chat:6697/#mikaela.info)
-  - [Gamja webchat](https://web.libera.chat/gamja/#mikaela.info),
+  - [Gamja webchat](https://web.libera.chat/gamja/#mikaela.info), [KiwiIRC webchat](https://web.libera.chat/#mikaela.info). _Warning: Libera.Chat has no message history_
-    [KiwiIRC webchat](https://web.libera.chat/#mikaela.info). _Warning:
-    Libera.Chat has no message history_
   - `MapAddress palladium.libera.chat libera75jm6of4wxpxt4aynol3xjmbtxgfyjpu34ss4d7r7q2v5zrpyd.onion`
-- [Matrix],
+- [Matrix], [`#aminda.eu:pikaviestin.fi`](matrix:roomid/ruWhXaXgrPjaSSecvb:matrix.org?action=join&via=matrix.org&via=tedomum.net&via=pikaviestin.fi&via=beeper.com&via=envs.net),
-  [`#aminda.eu:pikaviestin.fi`](matrix:roomid/ruWhXaXgrPjaSSecvb:matrix.org?action=join&via=matrix.org&via=tedomum.net&via=pikaviestin.fi&via=beeper.com&via=envs.net),
   a decentralised conversation store.
   - [Convene webchat](https://letsconvene.im/app/#/join/%23mikaela.info:matrix.org)
 - [PirateIRC], [`#mikaela.info`](ircs://irc.pirateirc.net:6697/#mikaela.info)
   - [Gamja webchat](https://webchat.pirateirc.net/)
   - `MapAddress irc.pirateirc.net cbmtec5xuhpjwjq245kpp5jk2wij63ydgu5vwbxvdamzibfubc5uzaqd.onion`
-- [Telegram], [invite link](https://t.me/joinchat/OEuthjzmg60xNzA0) a popular
+- [Telegram], [invite link](https://t.me/joinchat/OEuthjzmg60xNzA0) a
-  instant messenger with open source clients.
+  popular instant messenger with open source clients.
 - [Twitch], [Ciblia](https://twitch.tv/Ciblia), a propietary game streaming
   platform.
-  - Expect my streaming to happen in
+  - Expect my streaming to happen in [mikaela@libremedia.video](https://libremedia.video/accounts/mikaela/)
-    [mikaela@libremedia.video](https://libremedia.video/accounts/mikaela/)
     (PeerTube) instead.
-- [XMPP],
+- [XMPP], [`mikaela.info@conference.blesmrt.net`](xmpp:mikaela.info@conference.blesmrt.net?join),
-  [`mikaela.info@conference.blesmrt.net`](xmpp:mikaela.info@conference.blesmrt.net?join),
   a federated chat protocol.
 
 [ergochat]: https://ergo.chat/
@@ -115,81 +90,67 @@ do hope to be able to grow this list in the future.
 [twitch]: https://twitch.tv/
 [xmpp]: https://xmpp.org/
 
-**_NOTICE ON LOG AVAILABILITY!_** The logging and history visiblity varies by
+**_NOTICE ON LOG AVAILABILITY!_** The logging and history visiblity varies by protocol and thus
-protocol and thus users joining in the future could see messages up to one year
+users joining in the future could see messages up to one year or longer in the
-or longer in the past.
+past.
 
 ## A couple of words on protocols
 
 - _IRC_ was invented in 1988 and regardless of developing integrated message
-  storage since then, it's still _trivial to setup_ and runs well on _a
+  storage since then, it's still _trivial to setup_ and runs well on _a toaster_.
-  toaster_. _IRC servers_ are generally
+  _IRC servers_ are generally _[easy to enable Tor support on](https://github.com/ergochat/ergo/blob/master/docs/MANUAL.md#tor)_ and _IRC clients_
-  _[easy to enable Tor support on](https://github.com/ergochat/ergo/blob/master/docs/MANUAL.md#tor)_
+  widely come with _[proxy settings](https://hexchat.readthedocs.io/en/latest/tips.html#tor)_ where _[Tor can be enabled](https://weechat.org/files/doc/stable/weechat_user.en.html#irc_tor_sasl)_. My personal
-  and _IRC clients_ widely come with
+  _IRC_ history begins in 2010 as user and since then I have also opered
-  _[proxy settings](https://hexchat.readthedocs.io/en/latest/tips.html#tor)_
+  mostly on _Charybdis+Atheme_ and nowadays on a couple of _Ergos_.
-  where
+- _XMPP_ runs on _a bit more powerful toaster_ and the servers talk to each other
-  _[Tor can be enabled](https://weechat.org/files/doc/stable/weechat_user.en.html#irc_tor_sasl)_.
+  without prior approval, it was originally introduced in 1999. I don't have
-  My personal _IRC_ history begins in 2010 as user and since then I have also
+  a record on when I begun using it as _all multi-protocol chat apps_ that were
-  opered mostly on _Charybdis+Atheme_ and nowadays on a couple of _Ergos_.
+  common even before 2010 supported it. I haven't had a need or desire to _selfhost_.
-- _XMPP_ runs on _a bit more powerful toaster_ and the servers talk to each
-  other without prior approval, it was originally introduced in 1999. I don't
-  have a record on when I begun using it as _all multi-protocol chat apps_ that
-  were common even before 2010 supported it. I haven't had a need or desire to
-  _selfhost_.
 - _Telegram_ was introduced in 2013 and is a popular _instant messenger_ with
   many _open source clients (not server)_ also on minority platforms (by third
-  parties). It's favoured by many for stickers and ease-to-use, while that comes
+  parties). It's favoured by many for stickers and ease-to-use, while that
-  with _concern on security and privacy_.
+  comes with _concern on security and privacy_.
 - _Matrix_ was introduced in 2014 and I started using it in 2016. Many of the
-  _client and server implementations are heavy_, _especially on server side_
+  _client and server implementations are heavy_, _especially on server side_ requiring what to outside looks
-  requiring what to outside looks like _a constant maintenance_ to deal with the
+  like _a constant maintenance_ to deal with the _implementation performance issues_,
-  _implementation performance issues_, _I am not interested in even trying to
+  _I am not interested in even trying to selfhost a Matrix (home)server and bridges
-  selfhost a Matrix (home)server and bridges until the situation significantly
+  until the situation significantly improves_. _[Matrix clients also seldom support connecting through Tor easily](https://github.com/vector-im/element-meta/issues/200)_,
-  improves_.
+  while the _[Synapse server by Matrix.org team doesn't support connecting](https://github.com/matrix-org/synapse/issues/5152) through [I2P or Tor](https://github.com/matrix-org/synapse/issues/5455) at [all](https://github.com/matrix-org/synapse/issues/7088)_.
-  _[Matrix clients also seldom support connecting through Tor easily](https://github.com/vector-im/element-meta/issues/200)_,
+  - Exception: [Hydrogen](https://hydrogen.element.io) ([GitHub](https://github.com/vector-im/hydrogen-web))
-  while the
+    is the only client I have encountered that works well on Nokia 1 TA-1047
-  _[Synapse server by Matrix.org team doesn't support connecting](https://github.com/matrix-org/synapse/issues/5152)
+    or in other words passes the so-called toaster test. It does self-describe
-  through [I2P or Tor](https://github.com/matrix-org/synapse/issues/5455) at
+    as _A minimal Matrix chat client, focused on performance, offline
-  [all](https://github.com/matrix-org/synapse/issues/7088)_.
+    functionality, and broad browser support_, which it redeems.
-  - Exception: [Hydrogen](https://hydrogen.element.io)
+  - Good luck to users of either [dendrite.matrix.org or matrix.org for entering captchas in Matrix clients.](https://github.com/matrix-org/matrix.org/issues/1314)
-    ([GitHub](https://github.com/vector-im/hydrogen-web)) is the only client I
-    have encountered that works well on Nokia 1 TA-1047 or in other words passes
-    the so-called toaster test. It does self-describe as _A minimal Matrix chat
-    client, focused on performance, offline functionality, and broad browser
-    support_, which it redeems.
-  - Good luck to users of either
-    [dendrite.matrix.org or matrix.org for entering captchas in Matrix clients.](https://github.com/matrix-org/matrix.org/issues/1314)
 
 ## And on transports, relays and bridges
 
 - One of the marketing points of _XMPP_ was to connect to other protocols by
   means of transports. They plug into a _XMPP server_ and can be provided either
   by yours or be open for other _XMPP servers_.
-- The word _relay_ is often used on _bots which copy messages from one
+- The word _relay_ is often used on _bots which copy messages from one protocol/network
-  protocol/network and paste (or more simply said relay) it to another_. They
+  and paste (or more simply said relay) it to another_. They aren't transparent and thus the
-  aren't transparent and thus the messages from them appear to be coming from
+  messages from them appear to be coming from bots beginning with the message
-  bots beginning with the message sender instead of being completely
+  sender instead of being completely transparent. This is what is _commonly
-  transparent. This is what is _commonly used on IRC to connect to other IRC
+  used on IRC to connect to other IRC networks or protocols_.
-  networks or protocols_.
   - _Matterbridge regardless of the name acts like a relay. Like IRC and XMPP_,
-    it also _runs on a toaster requiring only
+    it also _runs on a toaster requiring only [the binary](https://github.com/42wim/matterbridge/releases)
-    [the binary](https://github.com/42wim/matterbridge/releases) and a
+    and a [config file](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/irc/matterbridge/matterbridge-example.toml)_
-    [config file](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/irc/matterbridge/matterbridge-example.toml)_
     being trivial to setup anywhere quickly or move around.
   - _[Recent IRC development allows (RELAYMSG)](https://github.com/ircv3/ircv3-specifications/pull/417)_
-    allows relays to be transparent making messages appear from users outside of
+    allows relays to be transparent making messages appear from users outside
-    the channel that don't actually exist. This is similar to _Discord webhooks
+    of the channel that don't actually exist. This is similar to _Discord webhooks
     (that Matterbridge also supports) and Matrix Discord bridge_.
-  - Common complaint from _Matrix_ users is that they look ugly, but as shown by
+  - Common complaint from _Matrix_ users is that they look ugly, but as shown
-    _IRC and Discord_, that doesn't have to be the case
+    by _IRC and Discord_, that doesn't have to be the case
     _[and I hope Matrix will fix their issue allowing low-budget "toasterbridges"](https://github.com/matrix-org/matrix-spec/issues/840)_.
 - _Bridges are popularised by Matrix_ and _are almost XMPP transports_. However
-  while _XMPP transports connect to the other protocol, bridges attempt to copy
+  while _XMPP transports connect to the other protocol, bridges attempt to
-  everything on both sides_ so _Matrix users_ see each other directly instead of
+  copy everything on both sides_ so _Matrix users_ see each other directly instead
-  through the _transport_ on the other side and on the other side of _open
+  of through the _transport_ on the other side and on the other side of _open protocols_
-  protocols_ _Matrix users_ can be interacted with as if they were native to it.
+  _Matrix users_ can be interacted with as if they were native to it.
-  - Unlike _XMPP_, the _bridges also tend to be heavy and require a full
+  - Unlike _XMPP_, the _bridges also tend to be heavy and require a full homeserver
-    homeserver setup._ The _IRC bridge also generally requires blessing from the
+    setup._ The _IRC bridge also generally requires blessing from the IRC network_
-    IRC network_ and while some public bridges exist, they _move the control
+    and while some public bridges exist, they _move the control away from you_
-    away from you_ hijacking the room to _their rules_ and often have
+    hijacking the room to _their rules_ and often have _performance trouble
-    _performance trouble compared to "local toaster matterbridge"._
+    compared to "local toaster matterbridge"._

pages/irc/bot.markdown

@@ -3,9 +3,7 @@ layout: page
 title: The IRC bot Euforia
 permalink: /irc/bot.html
 sitemap: true
-excerpt:
+excerpt: "A little about my IRC bot. Useful links, why it doesn't reply to me, how to make it recognize me, what does it actually do?"
-  "A little about my IRC bot. Useful links, why it doesn't reply to me, how to
-  make it recognize me, what does it actually do?"
 redirect_from: /bot.html
 published: false
 ---
@@ -19,13 +17,14 @@ _Please read also [rules of my channels.](https://mikaela.info/channel.html)_
 
 ## Limnoria
 
-My bot is [Limnoria] which is currently the most popular [Supybot] fork that is
+My bot is [Limnoria] which is currently the most popular [Supybot] fork
-still under active development and it has merged in features of another popular
+that is still under active development and it has merged in features of
-fork, [Gribble].
+another popular fork, [Gribble].
 
-My role with [Limnoria] was Finnish translator and IRC support and I also made
+My role with [Limnoria] was Finnish translator and IRC support and I also
-minor changes to make some default configuration variables more reasonable. Most
+made minor changes to make some default configuration variables more
-of [documentation] since [Supybot] and before my leaving is also written by me.
+reasonable. Most of [documentation] since [Supybot] and before my leaving
+is also written by me.
 
 [supybot]: https://github.com/Supybot/Supybot
 [limnoria]: https://github.com/ProgVal/Limnoria
@@ -36,8 +35,8 @@ of [documentation] since [Supybot] and before my leaving is also written by me.
 
 ### Addressing the bot
 
-The following table opens where the bot will reply to in channel. In PM the bot
+The following table opens where the bot will reply to in channel. In PM
-replies to everything _(without prefix)_.
+the bot replies to everything _(without prefix)_.
 
 <table>
     <tr>
@@ -74,8 +73,8 @@ replies to everything _(without prefix)_.
     </tr>
 </table>
 
-For checking the channel specific prefixes, refer to the following commands.
+For checking the channel specific prefixes, refer to the following
-They can be used in channel (if you know the prefix) or PM.
+commands. They can be used in channel (if you know the prefix) or PM.
 
 <table>
     <tr>
@@ -100,27 +99,28 @@ They can be used in channel (if you know the prefix) or PM.
 ### Quick start
 
 Use `list` command to get list of plugins, `list <plugin>` to get list of
-commands in plugin, `help <plugin> <command>` to get usage instructions for
+commands in plugin, `help <plugin> <command>` to get usage instructions
-\<command\> in \<plugin\>.
+for \<command\> in \<plugin\>.
 
-If the bot tells you `(X more messages)`, use the `more` command to see more
+If the bot tells you `(X more messages)`, use the `more` command to see
-output.
+more output.
 
-There are also default plugins which means that when you use only `<command>`
+There are also default plugins which means that when you use only
-the command is automatically understood as `<plugin> <command>` for example
+`<command>` the command is automatically understood as `<plugin> <command>`
-`tell` is configured to be `later tell` which tells text to nick next time it's
+for example `tell` is configured to be `later tell` which tells text
-seen. If `command` exists only in one plugin, it's gets turned to
+to nick next time it's seen. If `command` exists only in one plugin,
-`<plugin> <command>` automatically.
+it's gets turned to `<plugin> <command>` automatically.
 
-In case command exists in multiple plugins, the bot will tell you that the
+In case command exists in multiple plugins, the bot will tell you that
-command exists in multiple plugins and asks you to specify the plugin before it.
+the command exists in multiple plugins and asks you to specify the plugin
+before it.
 
 ## Users
 
 The bot doesn't allow anyone to register and I will register channel ops
 manually on the channels the bot is on. Users are primarily identified by
-NickServ account, but on networks where there are no services it's required to
+NickServ account, but on networks where there are no services it's required
-use hostmasks.
+to use hostmasks.
 
 Requirements for getting account:
 
@@ -131,60 +131,59 @@ Requirements for getting account:
 
 ### Identifying
 
-_All users have a password in the bot, but I have made them invalid (by adding
+_All users have a password in the bot, but I have made them invalid (by
-`!` in front of the hash in users.conf). If you have password set separately as
+adding `!` in front of the hash in users.conf). If you have password set
-said below, it will work._
+separately as said below, it will work._
 
 - If you have a password, `/msg <bot> user identify username password`
-  - Passwords can be asked from me if needed. After getting one, change it
+  - Passwords can be asked from me if needed. After getting one, change
-    immediately with `/msg <bot> user set password OLDPASSWORD NEWPASSWORD`
+    it immediately with
+    `/msg <bot> user set password OLDPASSWORD NEWPASSWORD`
 - If you use NickServ account:
   - Use the `auth` command.
   - `/cycle` so extended-join sends your account name to the bot.
-  - `/kick <bot>` so the bot will automatically rejoin and send whox requests to
+  - `/kick <bot>` so the bot will automatically rejoin and send whox
-    the channel receiving your NickServ account.
+    requests to the channel receiving your NickServ account.
 - [Other methods / Official documentation](https://limnoria-doc.readthedocs.org/en/latest/use/getting_started.html#making-supybot-recognize-you)
 
 ## Channels
 
-List of the channels where the bot is on can be seen with /whois. However this
+List of the channels where the bot is on can be seen with /whois. However
-list doesn't include secret/private channels (mode +s/+p).
+this list doesn't include secret/private channels (mode +s/+p).
 
-The bot can also be requested to join other channels, but I reserve the right to
+The bot can also be requested to join other channels, but I reserve the
-not join it anywhere or to not register specific channel ops to the bot.
+right to not join it anywhere or to not register specific channel ops
+to the bot.
 
 ## What does the bot do?
 
-Currently the bot is primarily spamming my channels with new items in some RSS
+Currently the bot is primarily spamming my channels with new items in some
-feeds. You can find list of the feeds added to the bot at
+RSS feeds. You can find list of the feeds added to the bot at
 [the web documentation for RSS plugin](https://bot.mikaela.info/plugindoc/RSS/),
-but listing the feeds automatically announced on the channel isn't possible
+but listing the feeds automatically announced on the channel isn't
-[yet](https://github.com/ProgVal/Limnoria/issues/1085).
+possible [yet](https://github.com/ProgVal/Limnoria/issues/1085).
 
-It's also protecting channels from spam using the
+It's also protecting channels from spam using the [AttackProtector plugin.](https://github.com/ProgVal/Supybot-plugins/tree/master/AttackProtector)
-[AttackProtector plugin.](https://github.com/ProgVal/Supybot-plugins/tree/master/AttackProtector)
 
-The bot also has `ops` command for getting op attention, but it requires correct
+The bot also has `ops` command for getting op attention, but it requires
-prefix to be used.
+correct prefix to be used.
 
 ## Issues you may encounter
 
-For all known issues, see the issue tracker link below relevant subtopic as this
+For all known issues, see the issue tracker link below relevant subtopic
-section only lists those that you are likely to see or that others have asked
+as this section only lists those that you are likely to see or that others
-about from me.
+have asked about from me.
 
-I am trying to run
+I am trying to run [the latest released version of Limnoria.](https://github.com/ProgVal/Limnoria/tags)
-[the latest released version of Limnoria.](https://github.com/ProgVal/Limnoria/tags)
 
-External plugins are updated whenever I see need for it, but at least when I
+External plugins are updated whenever I see need for it, but at least when
-upgrade Limnoria.
+I upgrade Limnoria.
 
 ### Limnoria issues
 
 - Issue tracker: https://github.com/ProgVal/Limnoria/issues
 
-_Includes Limnoria core and
+_Includes Limnoria core and [included plugins](https://github.com/ProgVal/Limnoria/tree/master/plugins)._
-[included plugins](https://github.com/ProgVal/Limnoria/tree/master/plugins)._
 
 - [Title is only told for the first link in a message](https://github.com/ProgVal/Limnoria/issues/152)
 - [Some commands using hostmasks behave weirdly](https://github.com/ProgVal/Limnoria/issues/281)
@@ -196,12 +195,11 @@ _Includes Limnoria core and
 - [Meta descriptions for links aren't told](https://github.com/ProgVal/Limnoria/issues/650)
   - these could be useful with news sites.
 - [DNS command doesn't mention CNAMEs/ALIASes](https://github.com/ProgVal/Limnoria/issues/864)
-- Internet whois is quite broken
+- Internet whois is quite broken [1](https://github.com/ProgVal/Limnoria/issues/993) [2](https://github.com/ProgVal/Limnoria/issues/994)
-  [1](https://github.com/ProgVal/Limnoria/issues/993)
-  [2](https://github.com/ProgVal/Limnoria/issues/994)
 - [RSS: no announced feeds in web interface](https://github.com/ProgVal/Limnoria/issues/1085)
 - [html/javascript redirects aren't followed](https://github.com/ProgVal/Limnoria/issues/1120)
-  - you will especially see this if you encounter links to my "URL shortener"
+  - you will especially see this if you encounter links to my
+    "URL shortener"
 - [Google says: Error invalid resultSize](https://github.com/ProgVal/Limnoria/issues/1163)
 - [Web title & titlesnarfer are broken](https://github.com/ProgVal/Limnoria/issues/1173)
 
@@ -209,12 +207,11 @@ _Includes Limnoria core and
 
 - Issue tracker: https://github.com/ProgVal/Supybot-plugins/issues
 
-_Includes plugins from @ProgVal's/pinkieval's
+_Includes plugins from @ProgVal's/pinkieval's [plugin repository.](https://github.com/ProgVal/Supybot-plugins)_
-[plugin repository.](https://github.com/ProgVal/Supybot-plugins)_
 
 - LinkRelay
   - [Doesn't sync topics between relayed channels](https://github.com/ProgVal/Supybot-plugins/issues/31)
   - [Status of user in the channel isn't shown](https://github.com/ProgVal/Supybot-plugins/issues/60)
   - [What the bot says isn't relayed.](https://github.com/ProgVal/Supybot-plugins/issues/288)
-    - **This is currently the most visible issue on channels where LinkRelay is
+    - **This is currently the most visible issue on channels where
-      used.**
+      LinkRelay is used.**

pages/irc/channel.fi.markdown

@@ -3,9 +3,7 @@ layout: page
 title: IRC-kanavien ja muiden sellaisten säännöt
 permalink: /irc/channel.fi.html
 sitemap: true
-excerpt:
+excerpt: "IRC-kanavieni säännöt. Lyhyesti: Käytä maalaisjärkeä, ole kiva, ei syrjintää, ei julkisia lokeja, älä tuo botteja ilman lupaa. Kiitos ♥"
-  "IRC-kanavieni säännöt. Lyhyesti: Käytä maalaisjärkeä, ole kiva, ei syrjintää,
-  ei julkisia lokeja, älä tuo botteja ilman lupaa. Kiitos ♥"
 redirect_from:
   - /kanava.html
   - /channel.fi.html
@@ -14,11 +12,10 @@ published: false
 
 **[In English](channel.html)**
 
-Säännöt kanavalle X verkossa Y.<br/>Kanavien, joita nämä säännöt koskettavat
+Säännöt kanavalle X verkossa Y.<br/>Kanavien, joita nämä säännöt
-pitäisi linkittää tälle sivulle ENTRYMSG:ssä (tai muussa botin automaattisesti
+koskettavat pitäisi linkittää tälle sivulle ENTRYMSG:ssä (tai muussa botin automaattisesti lähettämässä viestissä) tai topic:issa. Kanavan URL ei ole
-lähettämässä viestissä) tai topic:issa. Kanavan URL ei ole kovin hyvä paikka,
+kovin hyvä paikka, koska monet asiakasohjelmat piilottavat sen jonnekin
-koska monet asiakasohjelmat piilottavat sen jonnekin (joka tosin tapahtuu
+(joka tosin tapahtuu kaikilla muillakin tavoilla TOPICcia lukuunottamatta).
-kaikilla muillakin tavoilla TOPICcia lukuunottamatta).
 
 _[Lisää botistani (joka on tai ei ole kanavalla) (englanniksi).](bot.html)_
 
@@ -27,37 +24,35 @@ _[Lisää botistani (joka on tai ei ole kanavalla) (englanniksi).](bot.html)_
   - Vahdi kielenkäyttöäsi, älä kiroile tai hauku.
   - Ellet (englantia puhuessa) ole varma mitä pronominejä käyttää, käytä
     [singular theytä)](https://en.wikipedia.org/wiki/Singular_they)
-  - Ilmaise selkeästi mitkä linkit eivät ole turvallisia kaikille, lisäämällä
+  - Ilmaise selkeästi mitkä linkit eivät ole turvallisia kaikille,
-    niiden eteen `[NSFW]` tai jotakin vastaavaa.
+    lisäämällä niiden eteen `[NSFW]` tai jotakin vastaavaa.
-  - Kunnioita muiden rajoja, älä lähetä ihmisille yksityisviestejä kysymättä
+  - Kunnioita muiden rajoja, älä lähetä ihmisille yksityisviestejä
-    ensin.
+    kysymättä ensin.
-    - _Opeille voi lähettää yksityisviestejä tai opit voivat lähettää sinulle
+    - _Opeille voi lähettää yksityisviestejä tai opit voivat lähettää
-      yksityisviestejä, mikäli sitä vaaditaan mahdollisen ongelman ratkaisuun
+      sinulle yksityisviestejä, mikäli sitä vaaditaan mahdollisen
-      rauhallisesti._
+      ongelman ratkaisuun rauhallisesti._
 - Älä julkaise kanavan lokeja.
 - Älä tuo kanavalle botteja kysymättä ensin opeilta.
 
-_Nämä säännöt koskevat myös (puoli)operaattoreita (ja korkeampia tahoja), jos
+_Nämä säännöt koskevat myös (puoli)operaattoreita (ja korkeampia tahoja),
-näet heidän rikkovan näitä sääntöjä, sano se._
+jos näet heidän rikkovan näitä sääntöjä, sano se._
 
 - Mikäli tarvitset apua kanava-operaattorilta...
-  - pingaa tai lähetä yksityisviesti, mutta pidä mielessä, että he voivat estää
+  - pingaa tai lähetä yksityisviesti, mutta pidä mielessä, että he voivat
-    kaikki yksityisviestit.
+    estää kaikki yksityisviestit.
   - jos verkko tukee sitä ja sinulla on oikeat liput (voice?),
     `/msg memoserv sendops #kanava <ongelma tähän>`
-  - `!ops` saattaa toimia mikäli opit pingaavat siihen tai botti käsittelee sen,
+  - `!ops` saattaa toimia mikäli opit pingaavat siihen tai botti
-    mutta tämä ei ole yhtä suositeltu tapa, kuin muut.
+    käsittelee sen, mutta tämä ei ole yhtä suositeltu tapa, kuin muut.
   - ellei kanav-operattoreita ole paikalla, yritä otaa yhteyttä
     verkko-operaattoreihin, heillä pitäisi olla liput auttamista varten.
 
 Lisälukemista:
 
 - [Pidä opit oppeina (englanniksi)]({% post_url blog/2015-04-01-keep-the-ops-opped %})
-- [Kaikkien yksityisviestien estäminen
+- [Kaikkien yksityisviestien estäminen oletuksena (enlanniksi)]({% post_url blog/2015-04-02-umodeg %})
-  oletuksena (enlanniksi)]({% post_url blog/2015-04-02-umodeg %})
 
-Muutosloki
+Muutosloki ([GitHubissa](https://github.com/Mikaela/mikaela.github.io/commits/master/pages/channel.fi.markdown)):
-([GitHubissa](https://github.com/Mikaela/mikaela.github.io/commits/master/pages/channel.fi.markdown)):
 
 - 2015-06-28: lisää yleistystä ja selvennetty yksityisviestejä (rajojen
   kunnioittamisessa)

pages/irc/channel.markdown

@@ -3,9 +3,7 @@ layout: page
 title: Rules of my IRC channels and others like that
 permalink: /irc/channel.html
 sitemap: true
-excerpt:
+excerpt: "Rules of my IRC channel. TL;DR: Use common sense, be nice, no discrimination, no public logging, don't bring bots without permission. Thanks ♥"
-  "Rules of my IRC channel. TL;DR: Use common sense, be nice, no discrimination,
-  no public logging, don't bring bots without permission. Thanks ♥"
 redirect_from:
   - /channel.html
   - /channel.en.html
@@ -15,52 +13,51 @@ published: false
 
 **[Suomeksi](channel.fi.html)**
 
-Rules of channel X in network Y.<br/>The channels which use these rules should
+Rules of channel X in network Y.<br/>The channels which use these rules
-link to this page in ENTRYMSG (or other automatic msg by bot) or topic. Channel
+should link to this page in ENTRYMSG (or other automatic msg by bot) or
-URL is not so good as many clients hide it somewhere (which actually happens
+topic. Channel URL is not so good as many clients hide it somewhere (which
-with everything else than topic)
+actually happens with everything else than topic)
 
 _[More about my bot (which might or might not be on this channel) here.](bot.html)_
 
 - **Use common sense.**
 - Be nice, no discrimination
-  - Mind your language, not everyone is e.g. your brother ("bro"), don't swear
+  - Mind your language, not everyone is e.g. your brother ("bro"), don't
-    or use slurs.
+    swear or use slurs.
-  - In case you aren't sure which pronouns to use about someone else, please use
+  - In case you aren't sure which pronouns to use about someone else,
-    [singular they](https://en.wikipedia.org/wiki/Singular_they)
+    please use [singular they](https://en.wikipedia.org/wiki/Singular_they)
-  - Clearly tell when links aren't safe for everyone by prefixing them with
+  - Clearly tell when links aren't safe for everyone by prefixing them
-    `[NSFW]` or similar.
+    with `[NSFW]` or similar.
   - Respect boundaries, don't PM people without asking first.
-    - _You may PM ops or ops may PM you if it's required for solving potential
+    - _You may PM ops or ops may PM you if it's required for solving
-      channel issue peacefully._
+      potential channel issue peacefully._
 - Don't log the channel publicly.
 - Don't bring bots to the channel without asking ops first.
 
-_These rules also affect (h)ops (and higher), if you see them breaking these
+_These rules also affect (h)ops (and higher), if you see them breaking
-rules, please do say it._
+these rules, please do say it._
 
 - If you need help from channel op...
   - ping or PM them (but keep in mind they might be blocking all PMs)
   - if the network supports it and you have correct flags (voice?),
     `/msg memoserv sendops #channel <the issue>`
-  - `!ops` might work if the ops are highlighting on it or there is bot handling
+  - `!ops` might work if the ops are highlighting on it or there is bot
-    it, but it's not as recommended as the other ways.
+    handling it, but it's not as recommended as the other ways.
-  - if there are no ops present, try contacting the network operators, they
+  - if there are no ops present, try contacting the network operators,
-    should have flags to help.
+    they should have flags to help.
 
 Furher reading:
 
 - [Keep your ops opped!]({% post_url blog/2015-04-01-keep-the-ops-opped %})
 - [Blocking all PMs by default]({% post_url blog/2015-04-02-umodeg %})
 
-Changelog
+Changelog ([at GitHub](https://github.com/Mikaela/mikaela.github.io/commits/master/pages/channel.markdown)):
-([at GitHub](https://github.com/Mikaela/mikaela.github.io/commits/master/pages/channel.markdown)):
 
 - 2015-06-28: more generalization & clarifying on PMing (on respecting
   boundaries)
 - 2015-05-07: make getting help from ops a little more clear
-- 2015-05-03: add TL;DR to meta description & remove weird feeling line & fix
+- 2015-05-03: add TL;DR to meta description & remove weird feeling line &
-  language & Finnish translation
+  fix language & Finnish translation
 - 2015-05-02: no \*isms --> no discrimination & cleaning
 - 2015-04-26: typo fixes, cleaning up
 - 2015-04-14: Initial version

pages/irc/irc.markdown

@@ -3,25 +3,23 @@ layout: page
 title: IRC
 navigation: true
 permalink: /irc/
-excerpt:
+excerpt: "Where do you find me at IRC and verify that it's me. Also includes my IRC related posts that are hopefully helpful."
-  "Where do you find me at IRC and verify that it's me. Also includes my IRC
-  related posts that are hopefully helpful."
 robots: noai
 ---
 
 IRC has been a big part of my life, I discovered it during junior high school
-and have several friends and communities there. This is also shown by the amount
+and have several friends and communities there. This is also shown by
-of blog posts, I have below.
+the amount of blog posts, I have below.
 
-I am running my own [IRC@Etro](ircs://etro.mikaela.info:6697/#mikaela.info)
+I am running my own [IRC@Etro](ircs://etro.mikaela.info:6697/#mikaela.info) ([webchat](https://irc.etro.mikaela.info/))
-([webchat](https://irc.etro.mikaela.info/)) and oper on a couple of other
+and oper on a couple of other networks too. For a list of my registered IRCaccounts
-networks too. For a list of my registered IRCaccounts in general, please see
+in general, please see [txt/irc.txt](/txt/irc.txt)
-[txt/irc.txt](/txt/irc.txt) and [my discuss page](/discuss) for registered
+and [my discuss page](/discuss) for registered channels outside of IRC@Etro.
-channels outside of IRC@Etro.
 
 ### IRC-related posts
 
-_Note that this section is manually updated and might be missing some links._
+_Note that this section is manually updated and might be missing some
+links._
 
 - General
   - [Getting help from network operators when channel ops are away]({% post_url blog/2015-01-24-getting_help_with_channel_issues %})
@@ -29,14 +27,10 @@ _Note that this section is manually updated and might be missing some links._
   - [Keep the ops opped]({% post_url blog/2015-04-01-keep-the-ops-opped %})
   - [IRC over TLS is not pointless.]({% post_url blog/2015-04-22-IRC-over-TLS %})
   - [Forming irc:// or ircs:// links]({% post_url blog/2015-05-18-ircs_links %})
-  - [Making channel secret
+  - [Making channel secret or private]({% post_url blog/2015-06-08-private_secret_channels %})
-    or private]({% post_url blog/2015-06-08-private_secret_channels %})
+  - [Atheme quickstart: NickServ, HostServ, ChanServ & GroupServ]({% post_url blog/2015-09-19-atheme-quickstart %})
-  - [Atheme quickstart: NickServ, HostServ, ChanServ
-    & GroupServ]({% post_url blog/2015-09-19-atheme-quickstart %})
 - Oper
-  - [Channels & Hostmask groups: A
+  - [Channels & Hostmask groups: A Basic howto]({% post_url blog/2015-01-10-channels-hostmask-groups-a-basic-howto %})
-    Basic
-    howto]({% post_url blog/2015-01-10-channels-hostmask-groups-a-basic-howto %})
 - WeeChat
   - [Easy instructions for using SASL PLAIN]({% post_url blog/2015-03-26-weechat-sasl-simply %})
   - [Ignoring with /filter]({% post_url blog/2015-05-31-weechat-filter %})

pages/irc/znc.markdown

@@ -10,8 +10,8 @@ published: false
 
 ## ZNC
 
-Vardiera is hosting stable ZNC (latest git tag) where people I trust can get
+Vardiera is hosting stable ZNC (latest git tag) where people I trust can
-accounts.
+get accounts.
 
 ### Simple rules
 
@@ -21,34 +21,33 @@ accounts.
   - accounts can be removed at any time.
   - it can crash any time without me being there to fix it.
   - it can be restarted any time to install upgrades.
-- No logging unless you load the log module by yourself (log access requires
+- No logging unless you load the log module by yourself (log access
-  shell access which I don't give!)
+  requires shell access which I don't give!)
 - If you use the [SASL](http://wiki.znc.in/sasl) or
-  [NickServ](http://wiki.znc.in/nickserv) module, your password is stored in
+  [NickServ](http://wiki.znc.in/nickserv) module, your password is stored
-  plain text.
+  in plain text.
-  - I won't ever read it there, but I think it should be mentioned. Don't use
+  - I won't ever read it there, but I think it should be mentioned. Don't
-    server password unless you have to as that password is thrown to my eyes in
+    use server password unless you have to as that password is thrown
-    ZNC startup messages.
+    to my eyes in ZNC startup messages.
 - In case more networks are needed, contact me.
 
 ### Tips & tricks
 
 1. Read the [ZNC wiki], at least [FAQ].
 2. **Load savebuff** so your buffers aren't lost on restart/crash/etc.
-   - **Don't specify a password or I am going to be angry and you are going to
+   - **Don't specify a password or I am going to be angry and you are
-     lose your account!**
+     going to lose your account!**
-3. If your network has NickServ,
+3. If your network has NickServ, [load SASL and read it's wiki page for automatic identification.](http://wiki.znc.in/sasl)
-   [load SASL and read it's wiki page for automatic identification.](http://wiki.znc.in/sasl)
 
 [znc wiki]: http://wiki.znc.in/
 [faq]: http://wiki.znc.in/FAQ
 
 #### Accessing webadmin
 
-- https://vardiera.mikaela.info:1234/ (invalid certificate, valid fingerprints
+- https://vardiera.mikaela.info:1234/ (invalid certificate, valid
-  are listed below)
+  fingerprints are listed below)
-- https://znc.mikaela.info/ (CloudFlare, https only between you and CloudFlare
+- https://znc.mikaela.info/ (CloudFlare, https only between you and
-  (aka not recommended or use only if you have to))
+  CloudFlare (aka not recommended or use only if you have to))
 
 ### Certificate fingerprints
 
@@ -72,9 +71,9 @@ SHA512 Fingerprint=FF:B3:D6:8B:EB:2E:2B:96:10:C0:7C:F0:7A:17:28:8F:77:14:73:FC:6
 
 _If you forget -ssl, `/set irc.server.WHATEVER.ssl on`_
 
-Read also [WeeChat page on ZNC wiki](http://wiki.znc.in/WeeChat). You want to
+Read also [WeeChat page on ZNC wiki](http://wiki.znc.in/WeeChat). You want
-read at least the _Enabling server-time & other IRCv3 capabilities_ to make your
+to read at least the _Enabling server-time & other IRCv3 capabilities_ to
-experience smoother.
+make your experience smoother.
 
 ### Webchat
 

pages/keys.markdown

@@ -10,8 +10,6 @@ redirect_from:
   - /pgp.html
   - /wire.html
 redirect_to: /keys.txt
-excerpt:
+excerpt: "My public key fingerprints (that I think can be put here, if I am missing something, tell me) for secure communication with me."
-  "My public key fingerprints (that I think can be put here, if I am missing
-  something, tell me) for secure communication with me."
 lang: en
 ---

pages/links2.markdown

@@ -7,9 +7,9 @@ sitemap: false
 lang: en
 ---
 
-_This page has some kind of link list on minorities which mostly somehow affect
+_This page has some kind of link list on minorities which mostly somehow
-me and is probably always under construction. The order is somewhat random and
+affect me and is probably always under construction. The order is somewhat
-[improvements are welcome here.](https://github.com/Mikaela/mikaela.github.io/edit/master/pages/links2.markdown)_
+random and [improvements are welcome here.](https://github.com/Mikaela/mikaela.github.io/edit/master/pages/links2.markdown)_
 
 _This page is also in need of attention._
 
@@ -47,13 +47,13 @@ _This page is also in need of attention._
   - I think there are a lot better pages telling this than this one.
 - [Review article provides evidence on the biological nature of gender identity](http://medicalxpress.com/news/2015-02-article-evidence-biological-nature-gender.html)
 - [Sex redefined](http://www.nature.com/news/sex-redefined-1.16943?WT.mc_id=FBK_NatureNews)
-  - _So if the law requires that a person is male or female, should that sex be
+  - _So if the law requires that a person is male or female, should that
-    assigned by anatomy, hormones, cells or chromosomes, and what should be done
+    sex be assigned by anatomy, hormones, cells or chromosomes, and what
-    if they clash? “My feeling is that since there is not one biological
+    should be done if they clash? “My feeling is that since there is not
-    parameter that takes over every other parameter, at the end of the day,
+    one biological parameter that takes over every other parameter, at
-    gender identity seems to be the most reasonable parameter,” says Vilain. In
+    the end of the day, gender identity seems to be the most reasonable
-    other words, if you want to know whether someone is male or female, it may
+    parameter,” says Vilain. In other words, if you want to know whether
-    be best just to ask._
+    someone is male or female, it may be best just to ask._
 - [Gender identity is biological study says](https://gma.yahoo.com/gender-identity-biological-study-says-090824140--abc-news-health.html)
 - [Stop Using Phony Science to Justify Transphobia - Scientific American Blog Network](https://blogs.scientificamerican.com/voices/stop-using-phony-science-to-justify-transphobia/)
 

pages/matrix.markdown

@@ -11,12 +11,11 @@ robots: noai
 ---
 
 Just like [IRC](/irc/), _Matrix_ has became a part of my social life online. My
-room can be found from [my discuss page](/discuss) alongside some protocol
+room can be found from [my discuss page](/discuss) alongside
-comparison and my main accounts are in [index](/).
+some protocol comparison and my main accounts are in [index](/).
 
-I also have a [txt with a list of all my accounts](/txt/matrix.txt) which
+I also have a [txt with a list of all my accounts](/txt/matrix.txt) which [has SSH signature](/txt/matrix.txt.sig).
-[has SSH signature](/txt/matrix.txt.sig). Some of my accounts are also on my
+Some of my accounts are also on my [Keyoxide ASP profile](https://keyoxide.org/aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY).
-[Keyoxide ASP profile](https://keyoxide.org/aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY).
 
 [Questions and Answers about Matrix](#questions--answers)
 
@@ -24,14 +23,12 @@ I also have a [txt with a list of all my accounts](/txt/matrix.txt) which
 
 ## Matrix-related posts
 
-_Note that this section is manually updated and might be missing some links._
+_Note that this section is manually updated and might be missing some
+links._
 
 - Critique
   - [Inconsistency issues of Element, Element and Element, also privacy concerns]({% post_url blog/2021-08-03-matrix-perfect-privacy-not %})
-  - [Without selfhosting a homeserver or even then, Matrix moderation tools rely
+  - [Without selfhosting a homeserver or even then, Matrix moderation tools rely on security through obscurity]({% post_url blog/2021-12-05-matrix-community-abuse-security-by-obscurity %})
-    on security
-    through
-    obscurity]({% post_url blog/2021-12-05-matrix-community-abuse-security-by-obscurity %})
 - [A couple of words on protocols (on the Discuss page)](/discuss.html#a-couple-of-words-on-protocols)
 
 ## Questions & Answers
@@ -83,14 +80,10 @@ _Note that this section is manually updated and might be missing some links._
 
 ### Where else can I read about Matrix?
 
-- [Miki is the Matrix wiki](https://en.miki.community/) where I will attempt to
+- [Miki is the Matrix wiki](https://en.miki.community/) where I will attempt to contribute to.
-  contribute to.
 - [Matrix.org](https://matrix.org/) is the official website.
-- [My gist repository also has notes on Matrix, mostly /devtools related ones](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/matrix),
+- [My gist repository also has notes on Matrix, mostly /devtools related ones](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/matrix), they predate Miki and I hope to sort more relevant or historical parts there.
-  they predate Miki and I hope to sort more relevant or historical parts there.
+  - PPFI also has [a couple of Matrix files](https://git.piraattipuolue.fi/Pikaviestimet/Pikaviestimet/src/branch/master/matrix), ([GitHub mirror](https://github.com/piraattipuolue/pikaviestimet)).
-  - PPFI also has
-    [a couple of Matrix files](https://git.piraattipuolue.fi/Pikaviestimet/Pikaviestimet/src/branch/master/matrix),
-    ([GitHub mirror](https://github.com/piraattipuolue/pikaviestimet)).
     <!-- and [PPFI wiki page has an article](https://wiki.piraattipuolue.fi/Matrix) ([waybackmachine](https://web.archive.org/web/20230000000000*/https://wiki.piraattipuolue.fi/Matrix)).-->
     _Note that they are in Finnish_.
 - This site has random assortment of Matrix details around.
@@ -98,25 +91,22 @@ _Note that this section is manually updated and might be missing some links._
   - [n/matrixspoilers](/n/matrixspoilers.html) has a quick note on spoilers.
 - [the-apothecary.club has a Matrix Tips & Tricks page](https://the-apothecary.club/coc/matrix-tricks/)
   - At the time of writing also on using spoilers and custom emotes/stickers.
-- Cos has written
+- Cos has written [Matrix tips they don't tell you](https://wordsmith.social/cos/matrix-tips-they-dont-tell-you) containing a FAQ, hints and guides.
-  [Matrix tips they don't tell you](https://wordsmith.social/cos/matrix-tips-they-dont-tell-you)
-  containing a FAQ, hints and guides.
 
 ### Is there any kind of Matrix etiquette I should know about?
 
 Not particularly, you will find the same kind of social expectations like
 anywhere else, such as at IRC or Telegram. Here are some guidelines:
 
-- Ask for a permission in room before starting a private/direct
+- Ask for a permission in room before starting a private/direct message/discussion with someone.
-  message/discussion with someone.
+  - There is commonly an exception when you are contacting a moderator of about an issue in
-  - There is commonly an exception when you are contacting a moderator of about
+    the chat and wish to avoid getting attention on yourself.
-    an issue in the chat and wish to avoid getting attention on yourself.
 - When you eventually do message someone, state your business, without leaving
   your first message to a greeting. For more information about this, refer to
   [nohello.net](https://nohello.net/).
-- When creating a new room, avoid advertising it in existing rooms. The first
+- When creating a new room, avoid advertising it in existing rooms. The
-  guideline also applies, refrain from inviting random people from other rooms
+  first guideline also applies, refrain from inviting random people from
-  without their permission.
+  other rooms without their permission.
   - If you do perform mass inviting of strangers, you will be considered as a
     spammer and most likely end up on shared banlists resulting a significant
     portition of Matrix communities instantly banning you even if you never
@@ -143,124 +133,90 @@ profiles.
 
 ### How do you do custom not-emoji reactions?
 
-As long as your client isn't by Element HQ
+As long as your client isn't by Element HQ ([element-hq/element-web#19409](https://github.com/element-hq/element-web/issues/19409),
-([element-hq/element-web#19409](https://github.com/element-hq/element-web/issues/19409),
 [matrix-org/matrix-react-sdk#6628](https://github.com/matrix-org/matrix-react-sdk/pull/6628#issuecomment-1598708914)),
 there are a couple of methods to try:
 
 - Reply to the message you wish to react to with `/react something`. This will
   commonly add a reaction `something` to the message.
-  - This works at least within [FluffyChat](https://fluffychat.im),
+  - This works at least within [FluffyChat](https://fluffychat.im), [Gomuks](https://docs.mau.fi/gomuks/commands.html#sending-special-messages) and [Nheko](https://github.com/Nheko-Reborn/nheko/blob/master/man/nheko.1.adoc#custom-messages).
-    [Gomuks](https://docs.mau.fi/gomuks/commands.html#sending-special-messages)
-    and
-    [Nheko](https://github.com/Nheko-Reborn/nheko/blob/master/man/nheko.1.adoc#custom-messages).
 - Hold the message and look at the emoji bar. There may be a `…` allowing for
   free-form reactions.
-  - This works at least within
+  - This works at least within [Hydrogen](https://github.com/element-hq/hydrogen-web/).
-    [Hydrogen](https://github.com/element-hq/hydrogen-web/).
+- Does the emoji bar have search? Some allow entering arbitary reactions
-- Does the emoji bar have search? Some allow entering arbitary reactions through
+  through it offering a `react` button or `react with <your query>` option.
-  it offering a `react` button or `react with <your query>` option.
+  - This works at least within [Cinny](https://cinny.in) and [SchildiChat](https://schildi.chat).
-  - This works at least within [Cinny](https://cinny.in) and
-    [SchildiChat](https://schildi.chat).
 
-Please note that your
+Please note that your **_[reactions are NOT encrypted](https://github.com/matrix-org/matrix-spec/issues/660)_** even in encrypted
-**_[reactions are NOT encrypted](https://github.com/matrix-org/matrix-spec/issues/660)_**
+rooms. See also my blog post, [Inconsistency issues of Element, Element and Element, also privacy concerns]({% post_url blog/2021-08-03-matrix-perfect-privacy-not %}).
-even in encrypted rooms. See also my blog post, [Inconsistency issues of
-Element, Element and Element, also privacy concerns]({% post_url blog/2021-08-03-matrix-perfect-privacy-not %}).
 
 ### What are ghost and puppets?
 
 They are related to bridging Matrix with other protocols.
 
-- A ghost is a virtual user account created by a bridge service to represent a
+- A ghost is a virtual user account created by a bridge service to represent a user from another protocol (controlled by the actions of that user). They appear when an entire room is bridged. Some protocols like Discord or Slack have no native support for ghosts but can approximate them by changing the display name and avatar of the messages sent by the bridge.
-  user from another protocol (controlled by the actions of that user). They
+- A puppet is a real user account controlled by a bridge service (based on their actions on another protocol). They may arise from personal bridging but also from room-level bridging when the target protocol does not support ghosts (such as IRC). Unlike a ghost, it's possible to log in to a puppet account using a normal client application so it's impossible to tell at a glance if the controller is a human or a bridge service (however message contents may provide hints).
-  appear when an entire room is bridged. Some protocols like Discord or Slack
+- Double puppeting is when a user bridges their real accounts from two protocols so their actions on either side are mirrored on the other.
-  have no native support for ghosts but can approximate them by changing the
-  display name and avatar of the messages sent by the bridge.
-- A puppet is a real user account controlled by a bridge service (based on their
-  actions on another protocol). They may arise from personal bridging but also
-  from room-level bridging when the target protocol does not support ghosts
-  (such as IRC). Unlike a ghost, it's possible to log in to a puppet account
-  using a normal client application so it's impossible to tell at a glance if
-  the controller is a human or a bridge service (however message contents may
-  provide hints).
-- Double puppeting is when a user bridges their real accounts from two protocols
-  so their actions on either side are mirrored on the other.
 
 ### What does the public history visibility mean? I don't want to appear in search engines
 
 The public/world-readable history visibility option means exactly what it says,
-public even without joining the room. These rooms are accessible to tools such
+public even without joining the room. These rooms are accessible to tools
-as [Matrix Static](https://view.matrix.org/) and its successor
+such as [Matrix Static](https://view.matrix.org/) and its successor [Matrix Viewer](https://github.com/matrix-org/matrix-viewer)
-[Matrix Viewer](https://github.com/matrix-org/matrix-viewer) and thus their
+and thus their history is visible in search engines.
-history is visible in search engines.
 
-Note that as the option name hints, the history visibility option will not apply
+Note that as the option name hints, the history visibility option will not
-to previous messages. Thus if you first make room public and then restrict it to
+apply to previous messages. Thus if you first make room public and then
-members only the messages between these two changes are public and new users
+restrict it to members only the messages between these two changes are public
-will see them. Same if messages are visible to members and then restricted
+and new users will see them. Same if messages are visible to members and
-further.
+then restricted further.
 
 Another thing worth noting here is that encryption will not prevent new users
-from reading the future messages, Matrix will share keys to new joiners to some
+from reading the future messages, Matrix will share keys to new joiners to
-extent. For more information refer to
+some extent. For more information refer to [Matrix Spec issue #1](https://github.com/matrix-org/matrix-spec/issues/1)
-[Matrix Spec issue #1](https://github.com/matrix-org/matrix-spec/issues/1) and
+and related issues.
-related issues.
 
 ### Can I see who is in any specific room without being there?
 
 It depends.
 
-You can try [Matrix Viewer](https://github.com/matrix-org/matrix-viewer/), e.g.
+You can try [Matrix Viewer](https://github.com/matrix-org/matrix-viewer/), e.g. for Matrix HQ ~~[archive.matrix.org/r/matrix:matrix.org](https://archive.matrix.org/r/matrix:matrix.org)
-for Matrix HQ
+or~~ [matrix-archive.evulid.cc/r/matrix:matrix.org](https://matrix-archive.evulid.cc/r/matrix:matrix.org) ([@evulid-crawler:evulid.cc](matrix:u/evulid-crawler:evulid.cc))
-~~[archive.matrix.org/r/matrix:matrix.org](https://archive.matrix.org/r/matrix:matrix.org)
+or [view.gaytix.org/r/matrix:matrix.org](https://view.gaytrix.org/r/matrix:matrix.org)
-or~~
-[matrix-archive.evulid.cc/r/matrix:matrix.org](https://matrix-archive.evulid.cc/r/matrix:matrix.org)
-([@evulid-crawler:evulid.cc](matrix:u/evulid-crawler:evulid.cc)) or
-[view.gaytix.org/r/matrix:matrix.org](https://view.gaytrix.org/r/matrix:matrix.org)
 omitting the leading `#`.
 
-_Until 2023-06-27
+_Until 2023-06-27 [Matrix Foundation considered members-only rooms as public](https://matrix.org/blog/2023/07/what-happened-with-the-archive#a-note-on-shared-history-visibility)
-[Matrix Foundation considered members-only rooms as public](https://matrix.org/blog/2023/07/what-happened-with-the-archive#a-note-on-shared-history-visibility)
+so some outdated or intentionally misbehaving archive instances may still reveal information.
-so some outdated or intentionally misbehaving archive instances may still reveal
-information.
 [Method to opt-out is still not in sight.](https://github.com/matrix-org/matrix-viewer/issues/47)_
 
-Alternatively if the room in question has an alias, you can try poking the room
+Alternatively if the room in question has an alias, you can try poking the room directory API e.g. for [#matrix.fi:matrix.org](matrix:r/matrix.fi:matrix.org): [https://matrix-client.matrix.org/\_matrix/client/v3/directory/room/%23matrix.fi%3Amatrix.org](https://matrix-client.matrix.org/_matrix/client/v3/directory/room/%23matrix.fi%3Amatrix.org), you get the room ID and list of homeservers in it and if you see a single user (or otherwise not so popular homeserver), you can make educated guesses on who may be in the room. Note that this particular link requires `matrix.org` to be in the room and aware of the alias.
-directory API e.g. for [#matrix.fi:matrix.org](matrix:r/matrix.fi:matrix.org):
-[https://matrix-client.matrix.org/\_matrix/client/v3/directory/room/%23matrix.fi%3Amatrix.org](https://matrix-client.matrix.org/_matrix/client/v3/directory/room/%23matrix.fi%3Amatrix.org),
-you get the room ID and list of homeservers in it and if you see a single user
-(or otherwise not so popular homeserver), you can make educated guesses on who
-may be in the room. Note that this particular link requires `matrix.org` to be
-in the room and aware of the alias.
 
 Otherwise no, you cannot.
 
 ### How can I remove my messages automatically like on Signal, WhatsApp, Telegram and everything else?
 
-Matrix doesn't support it, but some clients, mainly Nheko (nightly) do. For more
+Matrix doesn't support it, but some clients, mainly Nheko (nightly) do. For
-information including countless reasons why you would like to do this, consult
+more information including countless reasons why you would like to do this, consult
 [Element Meta discussion #682: Self-destructing/disappearing messages](https://github.com/vector-im/element-meta/discussions/682).
 
 #### How can I remove my messages automatically on Nheko?
 
 Assuming you are on nightly build, there are three steps:
 
-1. In global settings of Nheko, enable _Periodically disable expired events_, it
+1. In global settings of Nheko, enable _Periodically disable expired events_,
-   will affect all profiles upon restart.
+   it will affect all profiles upon restart.
-2. In the room where you wish to automatically remove your messages, go to room
+2. In the room where you wish to automatically remove your messages, go to
-   settings and select _Configure_ next to _Automatic event deletion_. There you
+   room settings and select _Configure_ next to _Automatic event deletion_.
-   will find the options _Expire events after X days_, _Only keep latest X
+   There you will find the options _Expire events after X days_, _Only keep
-   events_, _Always keep latest X events_ and _Include state events_.
+   latest X events_, _Always keep latest X events_ and _Include state events_.
 3. Keep your Nheko running for at least 20 minutes. Nheko will automatically
    remove the messages older than the time you specified and will check for
-   event expiry occassionally after running for at least 20 minutes, regardless
+   event expiry occassionally after running for at least 20 minutes,
-   of which client send the event in the first place or whether Nheko was online
+   regardless of which client send the event in the first place or whether
-   at that time.
+   Nheko was online at that time.
 
 Secretly it's also possible to configure defaults for all rooms using Element
-Web's `/devtools` through
+Web's `/devtools` through [`im.nheko.event_expiry` account data event](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/matrix/account-data/im.nheko.event_expiry/README.md).
-[`im.nheko.event_expiry` account data event](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/matrix/account-data/im.nheko.event_expiry/README.md).
 
 ```json
 {
@@ -269,21 +225,21 @@ Web's `/devtools` through
 }
 ```
 
-This configuration would make Nheko remove all other messages than state events
+This configuration would make Nheko remove all other messages than state
-when they became one year old (and the scheduled expiry job ran after Nheko
+events when they became one year old (and the scheduled expiry job ran after
-being online for around twenty minutes).
+Nheko being online for around twenty minutes).
 
-I am intentionally not going into deeper detail since that may be dangerous and
+I am intentionally not going into deeper detail since that may be dangerous
-if you cannot figure it out, you probably shouldn't be touching it.
+and if you cannot figure it out, you probably shouldn't be touching it.
 
 #### How can I install Nheko nightly?
 
-I use the nightly flatpak which is easy to install for all users as you just add
+I use the nightly flatpak which is easy to install for all users as you
-the nightly repo and install it. However I am assuming you have already
+just add the nightly repo and install it. However I am assuming you have
-performed the [Flathub setup](https://flathub.org/setup).
+already performed the [Flathub setup](https://flathub.org/setup).
 
-_Note that `#` means a comment and is there just to explain what is being done,
+_Note that `#` means a comment and is there just to explain what is being
-not to be actually entered into the terminal._
+done, not to be actually entered into the terminal._
 
 ```bash
 # Add the Nheko nightly remote onto your system
@@ -297,8 +253,8 @@ sudo flatpak install nheko-nightly im.nheko.Nheko --assumeyes
 
 For installing it just for one user, omit `sudo` and append `--user`.
 
-To run it, either use the new application menu icons or
+To run it, either use the new application menu icons or `flatpak run
-`flatpak run im.nheko.Nheko//master`.
+im.nheko.Nheko//master`.
 
 To use something else than flatpak, ask someone else like Nheko documentation.
 
@@ -308,66 +264,49 @@ The term is used least in two different scenarios:
 
 - when your display name and/or avatar return back to what they were previously
   without anyone doing anything.
-- more seriously when the Matrix federation decides that the room is actually in
+- more seriously when the Matrix federation decides that the room is actually
-  the past adding/removing users who were (or weren't) in the room at that time.
+  in the past adding/removing users who were (or weren't) in the room at that time.
   This also affects administrator/moderator access.
 
 [This issue was supposed to be fixed at room version 2 with State Resolution Version 2](https://spec.matrix.org/latest/rooms/#complete-list-of-room-versions),
-but regardless
+but regardless [still happens in all versions after that](https://github.com/matrix-org/synapse/issues/8629) ([element-hq/synapse#8629](https://github.com/element-hq/synapse/issues/8629)). If you are affected, your best bet is to
-[still happens in all versions after that](https://github.com/matrix-org/synapse/issues/8629)
+`/upgraderoom {{site.matrixLatestRoomVersion}}` in developer mode enabled in `/devtools`, which is a bit distruptive operation as all your users have to join the upgraded version and all homeservers involved must support it.
-([element-hq/synapse#8629](https://github.com/element-hq/synapse/issues/8629)).
-If you are affected, your best bet is to
-`/upgraderoom {{site.matrixLatestRoomVersion}}` in developer mode enabled in
-`/devtools`, which is a bit distruptive operation as all your users have to join
-the upgraded version and all homeservers involved must support it.
 
-You shouldn't just trust me or the variable on this site on what is the latest
+You shouldn't just trust me or the variable on this site on what is the latest version, [consult the Spec](https://spec.matrix.org/latest/rooms/#complete-list-of-room-versions) and add [Version Checker](matrix:u/version:maunium.net) or [their sibling](https://github.com/maubot/rsvc) to your room and once they join, `!servers upgrade {{site.matrixLatestRoomVersion}}` replacing the {{site.matrixLatestRoomVersion}} with your target version.
-version,
-[consult the Spec](https://spec.matrix.org/latest/rooms/#complete-list-of-room-versions)
-and add [Version Checker](matrix:u/version:maunium.net) or
-[their sibling](https://github.com/maubot/rsvc) to your room and once they join,
-`!servers upgrade {{site.matrixLatestRoomVersion}}` replacing the
-{{site.matrixLatestRoomVersion}} with your target version.
 
-- See also
+- See also [Matrix spec issues reported by Neil](https://github.com/matrix-org/matrix-spec/issues/neilalexander).
-  [Matrix spec issues reported by Neil](https://github.com/matrix-org/matrix-spec/issues/neilalexander).
 
 #### How about DAG splits?
 
 DAG splits are a phenomenon somehow related to state resets above, but instead
-of all servers accepting the same old state, they disagree and split to
+of all servers accepting the same old state, they disagree and split to different
-different directions with varying severity.
+directions with varying severity.
 
 In minor case some servers may decide that a user is not in the room and not
-display messages from them, while in more severe situations the room may
+display messages from them, while in more severe situations the room may practically
-practically be two different rooms with no new messages in common between
+be two different rooms with no new messages in common between different sides
-different sides kind of resembling
+kind of resembling [IRC's netsplits before sync.](https://en.wikipedia.org/wiki/Netsplit)
-[IRC's netsplits before sync.](https://en.wikipedia.org/wiki/Netsplit)
 
 People understanding state resolution (which by the way don't include me)
-disagree on the exact cause only agreeing that it's difficult to fix. From what
+disagree on the exact cause only agreeing that it's difficult to fix. From
-is told to me, I understand it to be tracked
+what is told to me, I understand it to be tracked [in the same Synapse issue #8629](https://github.com/matrix-org/synapse/issues/8629) or actually [element-hq/synapse#8629](https://github.com/element-hq/synapse/issues/8629).
-[in the same Synapse issue #8629](https://github.com/matrix-org/synapse/issues/8629)
-or actually
-[element-hq/synapse#8629](https://github.com/element-hq/synapse/issues/8629).
 
-- See also
+- See also [Matrix spec issues reported by Neil](https://github.com/matrix-org/matrix-spec/issues/neilalexander).
-  [Matrix spec issues reported by Neil](https://github.com/matrix-org/matrix-spec/issues/neilalexander).
 
 ### Can I have a non-federated room?
 
 Yes, there are two methods.
 
 1. During room creation, Element Web offers an option to have a non-federated
-   room. That will permanently prevent any other homeserver from joining and to
+   room. That will permanently prevent any other homeserver from joining and
-   change that a manual room upgrade is required.
+   to change that a manual room upgrade is required.
 1. What I recommend instead is setting a server ACL, so if necessary it can be
    changed later. This may be helpful when migrating to another domain (which
    Matrix doesn't support) or cooperation with another entity with their own
    homeserver or anything.
 
-The second method begins with the usual `/devtools`, explore room state,
+The second method begins with the usual `/devtools`, explore room state, `Send
-`Send custom state event`, enter type as `m.room.server_acl` and contents:
+custom state event`, enter type as `m.room.server_acl` and contents:
 
 ```json
 {
@@ -377,8 +316,8 @@ The second method begins with the usual `/devtools`, explore room state,
 }
 ```
 
-Now assuming all homeservers in the room implement ACL, only `example.org` users
+Now assuming all homeservers in the room implement ACL, only `example.org`
-can join the room.
+users can join the room.
 
 For futher reading about ACL:
 
@@ -393,15 +332,14 @@ Room upgrading basically means:
 
 1. Create a new room.
 1. Send an event to old room saying "the room has now moved to new room"
-1. Unless upgraded manually, the client copies some state such as power levels
+1. Unless upgraded manually, the client copies some state such as power
-   from the old room to the new one.
+   levels from the old room to the new one.
 
 Manual upgrading means poking the API endpoint manually and thus not copying
 creation event (non-federation state) or power levels. For an example see my
 [matrix-tombstone-room.bash script](https://gitea.blesmrt.net/mikaela/scripts/src/branch/master/bash/matrix-tombstone-room.bash)
 
-See also
+See also [Matrix Specification on room versions](https://spec.matrix.org/latest/rooms/)
-[Matrix Specification on room versions](https://spec.matrix.org/latest/rooms/)
 or `CTRL-F` this page for `/upgraderoom {{site.matrixLatestRoomVersion}}`
 (Element Web `/devtools` _developer mode_ command to perform the upgrade).
 
@@ -411,14 +349,14 @@ I think there are three important questions that will each require
 consideration:
 
 - Do you want to encrypt the room?
-  - Is the room public? If so, encryption will just cause strange issues for you
+  - Is the room public? If so, encryption will just cause strange issues for
-    to troubleshoot and hinder the purpouse of the channel (which you should
+    you to troubleshoot and hinder the purpouse of the channel (which you
-    also consider).
+    should also consider).
   - Do you want to use bridges or integrations? Unless you or someone close to
     you is selfhosting those, they are untrusted and will defeat the point of
     encryption, so don't encrypt.
-  - Does the room only contain trustworthy participants? Encryption may be your
+  - Does the room only contain trustworthy participants? Encryption may be
-    friend.
+    your friend.
 - Who can see the room history?
   - If you want everyone to be able to read it, choose everyone or
     `world_readable`.
@@ -426,27 +364,21 @@ consideration:
     publish the history further), choose members-only or `shared`.
   - If you want users to see the history since they were invited to the room,
     select `invited`
-  - Otherwise select `joined` to have users only see history since they joined.
+  - Otherwise select `joined` to have users only see history since they
+    joined.
 - Who can join the room? This is self-explanatory so probably everyone or
   invited users.
-  - However my favourite rules are `knock` so that users have to ask for
+  - However my favourite rules are `knock` so that users have to ask for permission to
-    permission to join and `knock_restricted` so users in trusted rooms can join
+    join and `knock_restricted` so users in trusted rooms can join directly
-    directly without knocking.
+    without knocking.
 
 If you choose to make your room public as in joinable by anyone and history
 viewable by members joining in the future, _please communicate that in the room
 topic_.
 
-> Some projects may wish to log their channels publicly, if you do so the
+> Some projects may wish to log their channels publicly, if you do so the logging should be authorised by the channel owners and users in the channel should be notified (through for instance the topic, entry message, or similar) that public logging is taking place. Channel operators should consider ways for users to make unlogged comments and a process for requesting the removal of certain logs.
-> logging should be authorised by the channel owners and users in the channel
-> should be notified (through for instance the topic, entry message, or similar)
-> that public logging is taking place. Channel operators should consider ways
-> for users to make unlogged comments and a process for requesting the removal
-> of certain logs.
 
-- [Libera.Chat policies on public logging](https://libera.chat/policies/#public-logging)
+- [Libera.Chat policies on public logging](https://libera.chat/policies/#public-logging) which I consider as good advice regarldess of being written for IRC rather than Matrix.
-  which I consider as good advice regarldess of being written for IRC rather
-  than Matrix.
 
 Sample events for `/devtools`
 
@@ -499,185 +431,130 @@ Sample events for `/devtools`
 
 ### What are these idlekicks for inactivity, why are they for?
 
-Some Matrix rooms decide to connect their channel to IRC maintaining the same
+Some Matrix rooms decide to connect their channel to IRC maintaining the same users on both sides, which can be heavy for the IRC network depending on bridge type of which there are three "major" variants:
-users on both sides, which can be heavy for the IRC network depending on bridge
-type of which there are three "major" variants:
 
-- matrix-appservice-irc which creates a ghost for every Matrix user on the IRC
+- matrix-appservice-irc which creates a ghost for every Matrix user on the IRC side. All of these pretend to be separate clients, so if you have 1000 ghosts at IRC, all internal PING/PONG (keepalive) traffic will be sent 1000 times every few minutes and so will every message received.
-  side. All of these pretend to be separate clients, so if you have 1000 ghosts
+- heisenbridge has two modes, either it acts as a IRC bouncer keeping everything separate for every user or a single bot connection to IRC while creating puppets for IRC users to use at Matrix. It also supports RELAYMSG for more modern IRC networks.
-  at IRC, all internal PING/PONG (keepalive) traffic will be sent 1000 times
+- matterbridge is the most lightweight of the three working as a traditional relaybot on both sides. Unlike the others, it doesn't require selfhosting your own homeserver making it the most accessible for those with less resources and the option I use whenever possible. Sadly it doesn't look that great [without RELAYMSG support I live in hope of Matrix implementing one day](https://github.com/matrix-org/matrix-spec/issues/840).
-  every few minutes and so will every message received.
-- heisenbridge has two modes, either it acts as a IRC bouncer keeping everything
-  separate for every user or a single bot connection to IRC while creating
-  puppets for IRC users to use at Matrix. It also supports RELAYMSG for more
-  modern IRC networks.
-- matterbridge is the most lightweight of the three working as a traditional
-  relaybot on both sides. Unlike the others, it doesn't require selfhosting your
-  own homeserver making it the most accessible for those with less resources and
-  the option I use whenever possible. Sadly it doesn't look that great
-  [without RELAYMSG support I live in hope of Matrix implementing one day](https://github.com/matrix-org/matrix-spec/issues/840).
 
-As matrix-appservice-irc very quickly becomes traffic-intensive, its operators
+As matrix-appservice-irc very quickly becomes traffic-intensive, its operators generally have agreement with IRC networks (or are IRC networks by themselves) to remove unused connections after a month or three of inactivity, which is judged by lack of public read-receipts anywhere the bridge can see. It could have been implemented better [pretending to be a server instead](https://github.com/matrix-org/matrix-appservice-irc/issues/329), which would have a problem of practically being `root` and thus not many IRC networks would open their door to a third party bridge and the Ergo IRCd doesn't even support server linking (opting to be HA instead, but more of that in "Why should I use Matrix instead of IRC?").
-generally have agreement with IRC networks (or are IRC networks by themselves)
-to remove unused connections after a month or three of inactivity, which is
-judged by lack of public read-receipts anywhere the bridge can see. It could
-have been implemented better
-[pretending to be a server instead](https://github.com/matrix-org/matrix-appservice-irc/issues/329),
-which would have a problem of practically being `root` and thus not many IRC
-networks would open their door to a third party bridge and the Ergo IRCd doesn't
-even support server linking (opting to be HA instead, but more of that in "Why
-should I use Matrix instead of IRC?").
 
-Being a server would also resolve IRC users getting annoyed by huge
+Being a server would also resolve IRC users getting annoyed by huge disconnection floods whenever matrix-appservice-irc restarts as it could be [batched by the IRCd users are connected to](https://ircv3.net/specs/batches/netsplit).
-disconnection floods whenever matrix-appservice-irc restarts as it could be
-[batched by the IRCd users are connected to](https://ircv3.net/specs/batches/netsplit).
 
-The issues of matrix-appservice-irc grow worse when the room has bridges to
+The issues of matrix-appservice-irc grow worse when the room has bridges to other protocols, as those grow the IRC user count, use nicknames (sometimes capturing nicknames of people using both protocols and may be difficult to regain if the bridge doesn't answer to `!irc nick SomethingElse`) especially when the other protocol doesn't support direct/private messages and doesn't have even that excuse of using a connection slot.
-other protocols, as those grow the IRC user count, use nicknames (sometimes
-capturing nicknames of people using both protocols and may be difficult to
-regain if the bridge doesn't answer to `!irc nick SomethingElse`) especially
-when the other protocol doesn't support direct/private messages and doesn't have
-even that excuse of using a connection slot.
 
-I hope this answer helped explain why this behaviour exists and that IRC users
+I hope this answer helped explain why this behaviour exists and that IRC users aren't opposed to bridging out of malice.
-aren't opposed to bridging out of malice.
 
 #### But the relaybots look so ugly
 
-IRC users have dealt with them since always, I tend to use Limnoria IRC bot
+IRC users have dealt with them since always, I tend to use Limnoria IRC bot which is forked from Supybot and has had the Relay plugin (for relaying messages between multiple IRC networks) [since possibly before `Wed Feb 2 06:45:35 2005 +0000`](https://github.com/progval/Limnoria/commit/e4e5c1482489451c1ae9b6b4ee9b9147a295320e) and I imagine it was far from the first IRC relay.
-which is forked from Supybot and has had the Relay plugin (for relaying messages
-between multiple IRC networks)
-[since possibly before `Wed Feb 2 06:45:35 2005 +0000`](https://github.com/progval/Limnoria/commit/e4e5c1482489451c1ae9b6b4ee9b9147a295320e)
-and I imagine it was far from the first IRC relay.
 
-This means that even before IRCv3 RELAYMSG and displayname proposals, which I
+This means that even before IRCv3 RELAYMSG and displayname proposals, which I wish to merge so modern clients could show displaynames and legacy RELAYMSGs, there have been client-side solutions that have also been evolving:
-wish to merge so modern clients could show displaynames and legacy RELAYMSGs,
-there have been client-side solutions that have also been evolving:
 
-- Irssi I haven't used personally, but I hear it has a
+- Irssi I haven't used personally, but I hear it has a [detelexify](https://github.com/zouppen/irssi-detelexify/) that looks a bit like it's made with Heisenbridge in mind.
-  [detelexify](https://github.com/zouppen/irssi-detelexify/) that looks a bit
+- WeeChat used to have a separate script for this, but at version 1.1 in gained the Trigger plugin able to perform actions without scripts, thus meaning you can use something like [this Relaybot 2 Trigger example](https://github.com/weechat/weechat/wiki/Triggers#relaybot-2) without having to install anything (while `/script` would be easy too).
-  like it's made with Heisenbridge in mind.
-- WeeChat used to have a separate script for this, but at version 1.1 in gained
-  the Trigger plugin able to perform actions without scripts, thus meaning you
-  can use something like
-  [this Relaybot 2 Trigger example](https://github.com/weechat/weechat/wiki/Triggers#relaybot-2)
-  without having to install anything (while `/script` would be easy too).
 
 I hope Matrix will get better at this too.
 
 ### I am told that I should Matrixify my IRC channel, what does that mean?
 
-You are likely using IRCnet and I am sorry that you have to deal with this
+You are likely using IRCnet and I am sorry that you have to deal with this raider group. It means some mix of:
-raider group. It means some mix of:
 
 - setting a Matrix avatar to the room
 - removing the `#` from the name of the Matrix room
-- setting a main alias to the Matrix room that doesn't contain the IRC network's
+- setting a main alias to the Matrix room that doesn't contain the IRC network's name
-  name
+- bridging to Matrix in a way that Matrix user (that may not be you) has full power over the room, potentially also over the bridge bot
-- bridging to Matrix in a way that Matrix user (that may not be you) has full
-  power over the room, potentially also over the bridge bot
   - be careful if you are told to answer a bot `yes` in a `/query`!
 
 ### Why should I use Matrix instead of IRC?
 
 No reason, if IRC suits you better than Matrix. As I have said before, I find
-maintaining IRC easier. IRC also tends to work better for me in poor network
+maintaining IRC easier. IRC also tends to work better for me in poor network conditions
-conditions and with [IRCv3](https://ircv3.net/) specifications and implemented
+and with [IRCv3](https://ircv3.net/) specifications and implemented draft proposals,
-draft proposals, it can be very pleasant modern experience without the issues
+it can be very pleasant modern experience without the issues that come from federation.
-that come from federation.
 
-There is a usecase for every tool and while federation is important feature in
+There is a usecase for every tool and while federation is important feature
-general I am yet to miss it in IRC.
+in general I am yet to miss it in IRC.
 
-I keep mentioning Ergo IRCd, which
+I keep mentioning Ergo IRCd, which [scales](https://github.com/ergochat/ergo/blob/master/docs/MANUAL.md#scalability), has serverside history and integrated bouncer
-[scales](https://github.com/ergochat/ergo/blob/master/docs/MANUAL.md#scalability),
+feature so it's just a matter of adding it to your IRC client alongside your
-has serverside history and integrated bouncer feature so it's just a matter of
+SASL credentials and you will receive your offline messages whenever you
-adding it to your IRC client alongside your SASL credentials and you will
+reconnect. Ergo also supports `RELAYMSG` making messages from other protocols
-receive your offline messages whenever you reconnect. Ergo also supports
+seem more native to read and many graphical IRC clients even provide integrated
-`RELAYMSG` making messages from other protocols seem more native to read and
+image uploading support.
-many graphical IRC clients even provide integrated image uploading support.
 
-[Pirate Party of Finland](https://piraattipuolue.fi/en) considers Ergo-based
+[Pirate Party of Finland](https://piraattipuolue.fi/en) considers Ergo-based [PirateIRC](https://pirateirc.net/)
-[PirateIRC](https://pirateirc.net/) and
+and [its webchat](https://webchat.pirateirc.net/) a reasonable fallback should we have to leave other protocols
-[its webchat](https://webchat.pirateirc.net/) a reasonable fallback should we
+or they would be unusable otherwise.
-have to leave other protocols or they would be unusable otherwise.
 
 #### Why isn't Pirate Party of Finland using Matrix?
 
-This goes a bit past my personal Q&A, but we are using it kind of as a "tech
+This goes a bit past my personal Q&A, but we are using it kind of as a "tech demo".
-demo". However it cannot currently mature past that as:
+However it cannot currently mature past that as:
 
 - we don't have people interested in Matrix (obviously excluding me).
-- we don't have resources for hosting a Matrix homeserver, while we had IRC
+- we don't have resources for hosting a Matrix homeserver, while we had IRC before we were founded.
-  before we were founded.
+- moderation tools are so bad it's only me dealing with them (see critiques near top of the page).
-- moderation tools are so bad it's only me dealing with them (see critiques near
-  top of the page).
 - [Matrix flagship clients, Element Web, Element Android and Element iOS don't support knocking](https://github.com/vector-im/element-meta/issues/43)
-  which has been supported by Matrix Specification since September 2021 or so
+  which has been supported by Matrix Specification since September 2021 or so meaning
-  meaning users of those aren't able to request access to our rooms, unless they
+  users of those aren't able to request access to our rooms, unless they
   are members of an allowed rooms first.
 
 If you want in, your options are:
 
-- Join [Matrix Suomi Space](matrix:r/matrix-suomi:kapsi.fi), which lists Finnish
+- Join [Matrix Suomi Space](matrix:r/matrix-suomi:kapsi.fi), which lists
-  speaking rooms and then [our space](matrix:r/space.piraatit.fi:matrix.org).
+  Finnish speaking rooms and then [our space](matrix:r/space.piraatit.fi:matrix.org).
-  - Due to aforementioned lack of moderation tools, this can be withdrawn should
+  - Due to aforementioned lack of moderation tools, this can be withdrawn should that become necessary to mitigate abuse.
-    that become necessary to mitigate abuse.
+- Knock one of our rooms using Nheko and [hope someone is watching from Nheko](https://github.com/Nheko-Reborn/nheko/issues/1226).
-- Knock one of our rooms using Nheko and
+- Come to [#verkkopalvelut using PrateIRC webchat](https://webchat.pirateirc.net/?channel=#verkkopalvelut)
-  [hope someone is watching from Nheko](https://github.com/Nheko-Reborn/nheko/issues/1226).
+  and tell `AmindaSuomalainen` your Matrix ID in a nice message (to show you aren't a bot) that you wish in.
-- Come to
-  [#verkkopalvelut using PrateIRC webchat](https://webchat.pirateirc.net/?channel=#verkkopalvelut)
-  and tell `AmindaSuomalainen` your Matrix ID in a nice message (to show you
-  aren't a bot) that you wish in.
 
 ### I don't currently want to touch Matrix, but I am seeing abuse from there, what can I do?
 
 If you are using Telegram or Discord, you are out of luck, as while you can
-remove messages, that may get removed from Matrix, you cannot remove the abusive
+remove messages, that may get removed from Matrix, you cannot remove the
-users. If you are using XMPP you may be out of luck.
+abusive users. If you are using XMPP you may be out of luck.
 
 However if you use IRC and the Matrix users are behind matrix-appservice-irc
-([check this list](https://github.com/matrix-org/matrix-appservice-irc/blob/develop/docs/bridged_networks.md)
+([check this list](https://github.com/matrix-org/matrix-appservice-irc/blob/develop/docs/bridged_networks.md) or your network operators) you may be in luck as long as
-or your network operators) you may be in luck as long as
 [you or your ops haven't answered "yes" to the Matrix bot](https://github.com/matrix-org/matrix-appservice-irc/issues/462).
 
-Matrix-appservice-irc attempts to sync permissions from IRC in a limited
+Matrix-appservice-irc attempts to sync permissions from IRC in a limited fashion,
-fashion, and if it's unable to join a ghost (see an earlier question), it will
+and if it's unable to join a ghost (see an earlier question), it will kick the
-kick the user from Matrix for as long as the ban stays in place.
+user from Matrix for as long as the ban stays in place.
 
 In other words, if you were using Matrix personally, the IRC bridge would
 drastically increase the moderation tools available for you! You can now use
-wildcard bans that aren't natively supported and even extbans like
+wildcard bans that aren't natively supported and even extbans like (LiberaChat's)
-(LiberaChat's) `/mode #yourchannel +b $r:*:matrix.org*` to ban all matrix.org
+`/mode #yourchannel +b $r:*:matrix.org*` to ban all matrix.org users from your
-users from your channel or set `+e` ban exceptions on them!
+channel or set `+e` ban exceptions on them!
 
 _Note: this obviously stops working should the Matrix user change their
 gecos/"real name" in which case your only option is to ban the entirety of
-Matrix. E.g. on LiberaChat `/mode +b _!_@2001:470:69fc:105::/64` assuming your
+Matrix. E.g. on LiberaChat `/mode +b _!_@2001:470:69fc:105::/64` assuming
-abusers don't have a cloak (vhost in any other IRC network)._
+your abusers don't have a cloak (vhost in any other IRC network)._
 
 #### I fear someone has said yes
 
-In that case someone may have near absolute power on the Matrix side and could
+In that case someone may have near absolute power on the Matrix side and could have
-have removed the matrix-appservice-irc bot from power thus preventing it from
+removed the matrix-appservice-irc bot from power thus preventing it from
 kicking users banned from IRC letting them spam freely on Matrix while being
-invisible to IRC. In even worse scenario the abusive user was given power and
+invisible to IRC. In even worse scenario the abusive user was given power
-they are immune to whatever is done from IRC.
+and they are immune to whatever is done from IRC.
 
-There is also the chance that
+There is also the chance that [a netsplit gives a Matrix user moderator permissions that are never removed when sync occurs](https://github.com/matrix-org/matrix-appservice-irc/issues/518).
-[a netsplit gives a Matrix user moderator permissions that are never removed when sync occurs](https://github.com/matrix-org/matrix-appservice-irc/issues/518).
 
 ##### That doesn't help me
 
-If everything else fails, you can always mail abuse at matrix dot org, who will
+If everything else fails, you can always mail abuse at matrix dot org, who
-want the following details (as of 2022-10-16):
+will want the following details (as of 2022-10-16):
 
 - Your matrix ID
 - the room ID(s) your report is about
 - timestamps or links to the events you are telling us about
 
-Assuming you are an IRC user and thus unable to provide the two first, I would
+Assuming you are an IRC user and thus unable to provide the two first,
-include:
+I would include:
 
 - IRC network in question
 - IRC channel in question
@@ -694,25 +571,25 @@ sending raw events in JSON to them.
 My reasons for that are many and I am often proved correct in them.
 
 - By having multiple accounts on different homeservers, there is no single
-  entity that can decide whether I participate on Matrix or not. This is also a
+  entity that can decide whether I participate on Matrix or not. This is also
-  benefit of decentralisation in general.
+  a benefit of decentralisation in general.
   - Matrix rooms are hosted on all homeservers that have at least one account
     joined to them.
-- In case of federation meltdown, I have multiple entrypoints to send events and
+- In case of federation meltdown, I have multiple entrypoints to send events
-  thus hopefully one of them goes through faster. There have been multiple
+  and thus hopefully one of them goes through faster. There have been
-  incidents where this could have been useful for room administrators.
+  multiple incidents where this could have been useful for room
+  administrators.
   - Matrix homeservers used to allow open registration with no kind of
-    protection and no warnings they are being ran with that configuration until
+    protection and no warnings they are being ran with that configuration
-    some time before room version 10 was released. This allowed multiple rooms
+    until some time before room version 10 was released. This
-    to be spammed trivially and it took days for all homeservers to sync ACL
+    allowed multiple rooms to be spammed trivially and it took days for all
-    bans in the worst cases. It also resulted to a lot of state resetting so the
+    homeservers to sync ACL bans in the worst cases. It also resulted to a lot
-    affected rooms never got cleaned up as the spam users kept coming back and
+    of state resetting so the affected rooms never got cleaned up as the spam
-    clients had issues handling so inflated rooms.
+    users kept coming back and clients had issues handling so inflated rooms.
-  - Federation also fails when a spammer sends messages after getting banned and
+  - Federation also fails when a spammer sends messages after getting banned
-    thus moderation bots fail to remove messages from them as those don't get to
+    and thus moderation bots fail to remove messages from them as those don't
-    the banning server. Thus moderators need more accounts again.
+    get to the banning server. Thus moderators need more accounts again.
-    - [matrix-org/synapse#9329: Soft-failures make federated bans racy and frustrate redaction](https://github.com/matrix-org/synapse/issues/9329).
+    - [matrix-org/synapse#9329: Soft-failures make federated bans racy and frustrate redaction](https://github.com/matrix-org/synapse/issues/9329). [The issue was migrated to element-hq/synapse#9329: Soft-failures make federated bans racy and frustrate redaction](https://github.com/element-hq/synapse/issues/9329)
-      [The issue was migrated to element-hq/synapse#9329: Soft-failures make federated bans racy and frustrate redaction](https://github.com/element-hq/synapse/issues/9329)
 - State resets keep happening and thus I cannot trust other accounts than the
   one which created a room in question stay as power level 100.
 - Homeservers come and go, sometimes with little to no warning. As I have many
@@ -723,90 +600,62 @@ My reasons for that are many and I am often proved correct in them.
 ##### Brief history of my experiences with dead homeservers
 
 Believe my concern on homeservers coming and going or not, no homeserver is
-safe, you should have backup accounts on multiple independent ones. Or maybe I
+safe, you should have backup accounts on multiple independent ones. Or maybe
-am just personally unlucky?
+I am just personally unlucky?
 
-1. 2018-09-07:
+1. 2018-09-07: [Disroot.org announced Matrix closure](https://disroot.org/en/blog/matrix-closure).
-   [Disroot.org announced Matrix closure](https://disroot.org/en/blog/matrix-closure).
+1. 2019-04-12: [Matrix.org was compromised](https://matrix.org/blog/2019/04/11/we-have-discovered-and-addressed-a-security-breach-updated-2019-04-12)
-1. 2019-04-12:
-   [Matrix.org was compromised](https://matrix.org/blog/2019/04/11/we-have-discovered-and-addressed-a-security-breach-updated-2019-04-12)
    resulting the homeserver being down for a while, some integrations even
    longer and the XMPP bridge returned months later.
-1. From Disroot I moved to Feneas, the <em>Fe</em>derated <em>ne</em>tworks
+1. From Disroot I moved to Feneas, the <em>Fe</em>derated <em>ne</em>tworks <em>as</em>sociation, thinking that homeserver being a paid
-   <em>as</em>sociation, thinking that homeserver being a paid membership
+   membership benefit would help it to stay up and be reliable. However in
-   benefit would help it to stay up and be reliable. However in
+   [late 2021](https://gitea.blesmrt.net/mikaela/gist/src/commit/b50dacc0a457754c44ee901ce9e78988a39714fa/associations/feneas/meeting-logs/2021-12-09-annual-general-assembly.txt) and [early
-   [late 2021](https://gitea.blesmrt.net/mikaela/gist/src/commit/b50dacc0a457754c44ee901ce9e78988a39714fa/associations/feneas/meeting-logs/2021-12-09-annual-general-assembly.txt)
+   2022](https://gitea.blesmrt.net/mikaela/gist/src/commit/f3277852084d1a644189c7f9198f0bf470bc0ba4/associations/feneas/meeting-logs/2022-01-04-annual-general-meeting.txt) we decided to disband the association due to
-   and
+   COVID-19 pandemic, lack of volunteers, lack of money (which wasn't helped
-   [early 2022](https://gitea.blesmrt.net/mikaela/gist/src/commit/f3277852084d1a644189c7f9198f0bf470bc0ba4/associations/feneas/meeting-logs/2022-01-04-annual-general-meeting.txt)
+   by [Finnish money gathering law issues](https://github.com/liberapay/liberapay.org/issues/30))
-   we decided to disband the association due to COVID-19 pandemic, lack of
-   volunteers, lack of money (which wasn't helped by
-   [Finnish money gathering law issues](https://github.com/liberapay/liberapay.org/issues/30))
    etc.
 1. Around 2023-04-24 the-apothecary.club went down and returned sometime
-   2023-05-06. That would have been a long time with no communication on Matrix
+   2023-05-06. That would have been a long time with no communication on
-   and not having access to any rooms, but luckily I have been using my account
+   Matrix and not having access to any rooms, but luckily I have been using my
-   there just for accessibility testing and even if it was my primary account, I
+   account there just for accessibility testing and even if it was my primary
-   would have had backup accounts. I still don't know what exactly happened
+   account, I would have had backup accounts. I still don't know what exactly
-   there, but I am not an active member of their community and they are
+   happened there, but I am not an active member of their community and they
-   volunteers like most of Matrix (excluding EMS and other paid homeserver
+   are volunteers like most of Matrix (excluding EMS and other paid homeserver
    offerings).
 1. 2023-05-08 13:15 [Kapsi.fi](https://www.kapsi.fi/english.html)
-   [database server physically died](https://www.kapsi.fi/tiedotteet/2023.html#488)
+   [database server physically died](https://www.kapsi.fi/tiedotteet/2023.html#488) taking down their homeserver and
-   taking down their homeserver and [pikaviestin.fi](https://www.pikaviestin.fi)
+   [pikaviestin.fi](https://www.pikaviestin.fi) (alongside [sauna.social](https://sauna.social)
-   (alongside [sauna.social](https://sauna.social) and
+   and [järkkää.fi](https://jarkkaa.fi)) which hosts my main account. It
-   [järkkää.fi](https://jarkkaa.fi)) which hosts my main account. It returned a
+   returned a couple of days later on the evening of 2023-05-11.
-   couple of days later on the evening of 2023-05-11.
+1. On 2023-10-25 [IT group of Pirate Party Austria made an announcement that
-1. On 2023-10-25
+   pirateriot.net pirateriot.net shut down on 2023-10-31](https://web.archive.org/web/20231027060957/https://t.me/globalpirates/39814).
-   [IT group of Pirate Party Austria made an announcement that pirateriot.net pirateriot.net shut down on 2023-10-31](https://web.archive.org/web/20231027060957/https://t.me/globalpirates/39814).
+1. 2023-12-24 saw that _[the hard drive hosting the jae.fi matrix server shat
-1. 2023-12-24 saw that
+   itself](https://soc.jae.fi/notes/9nmcgdonjxailf51)_ and as per that
-   _[the hard drive hosting the jae.fi matrix server shat itself](https://soc.jae.fi/notes/9nmcgdonjxailf51)_
+   announcement, it's not returning anytime soon. My matterbridge had account
-   and as per that announcement, it's not returning anytime soon. My
+   #4 there while it later returned to account #3 on tedomum.net.
-   matterbridge had account #4 there while it later returned to account #3 on
+1. 2024-01-18 brought the [shutdown of Diasp.in PirateIRC bridge](https://github.com/ppau/PirateIRC/pull/39)
-   tedomum.net.
-1. 2024-01-18 brought the
-   [shutdown of Diasp.in PirateIRC bridge](https://github.com/ppau/PirateIRC/pull/39)
    and their [call for volunteers page](https://diasp.in/volunteer) has sunset
-   date set for 2024-01-31. As I have been PirateIRC operator since 2017-05-11,
+   date set for 2024-01-31. As I have been PirateIRC operator since
-   Diasp.in received a spot in this listing.
+   2017-05-11, Diasp.in received a spot in this listing.
 
 #### Why do you use Matrix URI scheme instead of matrix.to?
 
-I dislike matrix.to as a concept. It's a centralized service on decentralized
+I dislike matrix.to as a concept. It's a centralized service on decentralized protocol and in my opinion it shows lack of self-esteem on Matrix side considering neither XMPP or IRC require something like it, both of those trust being known or handled appropiately.
-protocol and in my opinion it shows lack of self-esteem on Matrix side
-considering neither XMPP or IRC require something like it, both of those trust
-being known or handled appropiately.
 
 #### Why does one of your accounts have capital letter in the username?
 
-In 2016 or so I mistakenly thought that usernames would be case-insensitive and
+In 2016 or so I mistakenly thought that usernames would be case-insensitive
-they only
+and they only [got banned in Synapse on 10th November 2017](https://github.com/matrix-org/synapse/pull/2662).
-[got banned in Synapse on 10th November 2017](https://github.com/matrix-org/synapse/pull/2662).
 
 #### Which client do you recommend?
 
-Honestly the only one that I can recommend is
+Honestly the only one that I can recommend is [Nheko nightly flatpak](#how-can-i-install-nheko-nightly).
-[Nheko nightly flatpak](#how-can-i-install-nheko-nightly).
 
-I have also said it before, but for any serious use of Matrix, you will need
+I have also said it before, but for any serious use of Matrix, you will need [Element Web](https://github.com/vector-im/element-web) and especially the `/devtools` command it has.
-[Element Web](https://github.com/vector-im/element-web) and especially the
-`/devtools` command it has.
 
-If you absolutely need Matrix somewhere neither fits you, ~~maybe
+If you absolutely need Matrix somewhere neither fits you, ~~maybe [Hydrogen](https://github.com/vector-im/hydrogen-web) is your _PWA_ hoping your needs don't include too many Matrix accounts ([#783](https://github.com/vector-im/hydrogen-web/issues/783), [#817](https://github.com/vector-im/hydrogen-web/pull/817)) and hoping you [don't use SailfishOS](https://forum.sailfishos.org/t/progressive-web-app-pwa-in-native-browser/3867?u=mikaela) ([#1000](https://github.com/sailfishos/sailfish-browser/issues/1000)) or [Ubuntu Touch (#1144)](https://github.com/ubports/ubuntu-touch/issues/1144).~~ Good luck!
-[Hydrogen](https://github.com/vector-im/hydrogen-web) is your _PWA_ hoping your
-needs don't include too many Matrix accounts
-([#783](https://github.com/vector-im/hydrogen-web/issues/783),
-[#817](https://github.com/vector-im/hydrogen-web/pull/817)) and hoping you
-[don't use SailfishOS](https://forum.sailfishos.org/t/progressive-web-app-pwa-in-native-browser/3867?u=mikaela)
-([#1000](https://github.com/sailfishos/sailfish-browser/issues/1000)) or
-[Ubuntu Touch (#1144)](https://github.com/ubports/ubuntu-touch/issues/1144).~~
-Good luck!
 
-On Android I often find myself using
+On Android I often find myself using [SchildiChat](https://s2.spiritcroc.de/fdroid/repo) ([Beta](https://s2.spiritcroc.de/testing/fdroid/repo)), which suffers many Element shortcomings being a fork and Matrix isn't too mobile friendly protocol in my opinion. (For my view of the repo fingerprints, refer to [n/f-droid](/n/f-droid.html), but note the pages intend of _my personal use._)
-[SchildiChat](https://s2.spiritcroc.de/fdroid/repo)
-([Beta](https://s2.spiritcroc.de/testing/fdroid/repo)), which suffers many
-Element shortcomings being a fork and Matrix isn't too mobile friendly protocol
-in my opinion. (For my view of the repo fingerprints, refer to
-[n/f-droid](/n/f-droid.html), but note the pages intend of _my personal use._)
 
 <!-- The one that fits your needs. Personally I mix-and-match:
 
@@ -825,74 +674,58 @@ in my opinion. (For my view of the repo fingerprints, refer to
 
 I don't know, I have
 [spaces.md](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/matrix/spaces.md)
-which doubles as a critique towards Matrix room directory, which is centralized
+which doubles as a critique towards Matrix room directory, which is
-and everyone wants to be on `matrix.org` room directory, which again leads to
+centralized and everyone wants to be on `matrix.org` room directory, which
-them registering on `matrix.org` to add themselves there and did I mention that
+again leads to them registering on `matrix.org` to add themselves there and
-on 29-02-2024 it has been locked for a couple of months for a cleanup?
+did I mention that on 29-02-2024 it has been locked for a couple of months for
+a cleanup?
 
-> Of course this file makes me the curator/authority of room listing and thus I
+> Of course this file makes me the curator/authority of room listing and thus
-> challenge you, the reader, to make your own space or version of this file,
+> I challenge you, the reader, to make your own space or version of this file,
 > maybe I can even link to your list here? :smiley_cat:
 
 - [spaces.md](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/matrix/spaces.md)
 
 #### Which homeserver do you recommend?
 
-I am hesistant to recommend any. Finnish users may be interested in the
+I am hesistant to recommend any. Finnish users may be interested in the [Linux.fi wiki listing](https://www.linux.fi/wiki/Matrix), everyone else may be served by [joinmatrix.org listing](https://servers.joinmatrix.org).
-[Linux.fi wiki listing](https://www.linux.fi/wiki/Matrix), everyone else may be
-served by [joinmatrix.org listing](https://servers.joinmatrix.org).
 
 #### Why don't you run your own?
 
-As can be read between the lines from my critiques, I don't consider any
+As can be read between the lines from my critiques, I don't consider any homeserver to be in the state that it's either safe to run legally or lightweight enough or not require constant maintenance as opposed to IRC which I do selfhost.
-homeserver to be in the state that it's either safe to run legally or
-lightweight enough or not require constant maintenance as opposed to IRC which I
-do selfhost.
 
 The world situation in general discourages me from anything as heavy.
 
 #### Why cannot I see history in your Matrix rooms?
 
-Matrix doesn't support self-destructing messages or message expiry in general,
+Matrix doesn't support self-destructing messages or message expiry in general, so
-so I don't feel comfortable with world-readable logs (which would easily end to
+I don't feel comfortable with world-readable logs (which would easily end to
 search engines forever).
 
-If you need to see something in the backlog, I suggest using IRC (IRC@Etro or
+If you need to see something in the backlog, I suggest
-PirateIRC especially) or XMPP which each store messages only for 7 days (Ergo
+using IRC (IRC@Etro or PirateIRC especially) or XMPP which each store messages
-default) or some months (Prosody default) on a single server.
+only for 7 days (Ergo default) or some months (Prosody default) on a single server.
 
 #### So do you wish Matrix to fail?
 
-No, I have been using countless of hours at writing these critiques and
+No, I have been using countless of hours at writing these critiques and performing "quality assurance"/testing,
-performing "quality assurance"/testing, localizing clients to Finnish, providing
+localizing clients to Finnish, providing support on their rooms for users of those clients, writing a Matrix
-support on their rooms for users of those clients, writing a Matrix Spec Change
+Spec Change proposal (that was merged), having coauthored another, writing or contributing documentation in two languages
-proposal (that was merged), having coauthored another, writing or contributing
+and whatever else I have been doing since 2016.
-documentation in two languages and whatever else I have been doing since 2016.
 
-Matrix has a place in my heart, just as IRC and XMPP and while none of the three
+Matrix has a place in my heart, just as IRC and XMPP and while none of the three are perfect, I wish for the issues
-are perfect, I wish for the issues get resolved and the fighting between them to
+get resolved and the fighting between them to end and I am tired of the "stop having fun" or "you are worse person for still using deprecated IRC"
-end and I am tired of the "stop having fun" or "you are worse person for still
+or "I wish IRC/XMPP just died already as it's so old" or whatever attitude I see amongst certain Matrix user/enthustiastic groups.
-using deprecated IRC" or "I wish IRC/XMPP just died already as it's so old" or
-whatever attitude I see amongst certain Matrix user/enthustiastic groups.
 
 However I admit sometimes having difficult time believing that either _Matrix
-Foundation_ or _New Vector trading as Element_ has their users best interests in
+Foundation_ or _New Vector trading as Element_ has their users best interests
-heart. On my worse days, I especially hardwordedly criticise
+in heart. On my worse days, I especially hardwordedly criticise [media never being removed](https://github.com/matrix-org/synapse/issues/1263#issuecomment-1120225193) ([element-hq/synapse#1263](https://github.com/element-hq/synapse/issues/1263))
-[media never being removed](https://github.com/matrix-org/synapse/issues/1263#issuecomment-1120225193)
+or [fear that Matrix may endanger gender or sexual minorities by leaking room-specific profiles](https://github.com/matrix-org/synapse/issues/5677#issuecomment-894831845) ([element-hq/synapse#5677](https://github.com/element-hq/synapse/issues/5677))
-([element-hq/synapse#1263](https://github.com/element-hq/synapse/issues/1263))
+and especially [lack of self-destructing messages (that is nowadays a discussion rather than an issue)](https://github.com/vector-im/element-meta/discussions/682#discussioncomment-3803806)
-or
-[fear that Matrix may endanger gender or sexual minorities by leaking room-specific profiles](https://github.com/matrix-org/synapse/issues/5677#issuecomment-894831845)
-([element-hq/synapse#5677](https://github.com/element-hq/synapse/issues/5677))
-and especially
-[lack of self-destructing messages (that is nowadays a discussion rather than an issue)](https://github.com/vector-im/element-meta/discussions/682#discussioncomment-3803806)
 considering even [DeltaChat (also known as an email client)](https://delta.chat)
 manages to implement it without control over the underlying protocol and even
 less guarantees!
 
 ---
 
-_The lucky Matrix number is `{{site.matrixLatestRoomVersion}}`, but do
+_The lucky Matrix number is `{{site.matrixLatestRoomVersion}}`, but do [consult the Spec for that](https://spec.matrix.org/latest/rooms/#complete-list-of-room-versions) and definitely ask `!servers upgrade {{site.matrixLatestRoomVersion}}` from [Version Checker](matrix:u/version:maunium.net) or [their siblings](https://github.com/maubot/rsvc)._
-[consult the Spec for that](https://spec.matrix.org/latest/rooms/#complete-list-of-room-versions)
-and definitely ask `!servers upgrade {{site.matrixLatestRoomVersion}}` from
-[Version Checker](matrix:u/version:maunium.net) or
-[their siblings](https://github.com/maubot/rsvc)._

pages/some.markdown

@@ -13,13 +13,12 @@ excerpt: "Links to my my referral links around the internet."
 lang: en
 ---
 
-Looking for my social media accounts? They have moved to the
+Looking for my social media accounts? They have moved to the [index](/index.html#web).
-[index](/index.html#web).
 
 - [Wolt](http://get.woltapp.com/93O1)
-  - "_Every time a new friend signs up to Wolt with your personal code and makes
+  - "_Every time a new friend signs up to Wolt with your personal code
-    their first order, they get a €5.00 discount and you get €5.00 worth in
+    and makes their first order, they get a €5.00 discount and you get
-    credits. Happy sharing!_"
+    €5.00 worth in credits. Happy sharing!_"
     - `93O1`
 - [N26](https://n26.com/r/mikaelas0922)
   - `mikaelas0922`