Tell HN: Thanks to thehodge and littlewarden.com, this site is up today
Dom runs https://littlewarden.com/, which monitors sites for upcoming issues and lets you know when you're about to publicly embarrass yourself. In a twist on eat-your-own-dog-food (eat someone else's dog food as a service?), he had set up alerts for HN in their system. Lo and behold, it delivered the goods, and that is why you're reading HN as usual today instead of certificate scoldings, and therefore also why my ass is in a saved state, which is how I like it.
I figure the least we can do is proclaim our thanks, so all hail Dom and Little Warden! Yes, I know most of you can do this in 3 lines of Python and a cron job, and yes yes, there are other alert services—but only one has personally helped you waste time unimpeded on the internet. That is all.
80 comments
[ 6.1 ms ] story [ 260 ms ] threadWill you name drop them so I can be angry at their ethics for you?
https://hn.algolia.com/?sort=byDate&type=comment&dateRange=a...
Plus, do I need to publicly thank every person that emails and helps me?
I have been bitten with this before. I had a good plan, and had actually renewed that one but hadn't reloaded nginx. That's the day I found out that uptimerobot alerts you if your site goes down, but stays willfully silent if it's technically up but using an expired or invalid certificate.
Thanks for saving us from potential frustrations and for reminding us that helping others can be simply an act of kindness without a monetization scheme attached.
> probably a mistake
I hope you won't ever end up thinking that. :)
But now with Lets Encrypt & autocert(Go) it's not the case anymore. But still Little Warden would be useful to detect nasty surprises and besides you're offering other features.
P.S. I've added Little Warden to my curated list of startup tools - https://startuptoolchain.com/#website .
(for the curious)
I can setup a monitor (FOSS) for the computer that is doing the site monitoring, since I only use open source software that I can inspect.
Just recently, I let one of my certificates expire. The cronjob correctly renewed it, but nginx was not reloaded and kept using the previous certificate. This had never happened before, because I would usually make changes regularly and trigger a reload, which would load the new certificate. Therefore this website had run without issues for 2 years with an incomplete renewal configuration until it finally broke...
> Yes, I know most of you can do this in 3 lines of Python and a cron job
At first I thought this was a tongue-in-cheek reference to the famous Dropbox dismissal by BrandonM https://news.ycombinator.com/item?id=9224
(Also, this is offtopic but I'm on a quest to get people to realize that BrandonM's comment has been unfairly characterized:
https://news.ycombinator.com/item?id=28293146
https://news.ycombinator.com/item?id=27068148
https://news.ycombinator.com/item?id=23229275)
Unless I'm totally out of touch, I've always seen the comment referenced as either dismissing a simple solution because a complicated one exists, and/or now having a grasp on how complicated a solution is.
Most recently I referenced the comment in a discussion around Laravel Forge, which deploys and manages servers for hosting websites. I love it personally, but a friend was of the opinion that "it's unnecessary, all you have to do to setup a server is..."I get that he was trying to be helpful with his post, but that doesn't dismiss the fact that his very first point was "You can already do this by..." and then proceeding to provide a valid, but complicated solution that very few people could do.
There's nothing wrong with his post, but it does act as a good reminder that there's room for products that provide a simple solution where only complicated options exist.
As I said then: 'Usually when I see it it's used either in a humbling reminder that the future isn't known sense, or a suggestion not to underestimate the value in simplifying, de-nerd-ifying existing things that work.' But also perhaps/hopefully the most 'jerky' ones get flagged out of my view, and unfortunately into dang's.
I certainly don't see (and would flag myself) anything I felt was saying 'Oh this [BM] guy doesn't know what he's talking about, what an idiot, hahahaha'. It's usually just 'oof, isn't hindsight wonderful, I must try to learn from this'.
Very classy callout in any case. I love the story of a startup getting good press for doing something nice. Also this sounds like a really good case study for them to put up.
Show HN: Little Warden, monitoring the tedious things about websites - https://news.ycombinator.com/item?id=15199067 - Sept 2017 (30 comments)
How does Littlewarden solve that problem? "Personally contacting the face of the site through a back channel" is a great answer, but not so scalable.
https://news.ycombinator.com/item?id=24967320 (Nov 2020)
Edit: ok, what the hell:
addons.thunderbird.net SSL certificate has expired - https://news.ycombinator.com/item?id=28116117 - Aug 2021 (55 comments)
W3.org Cert Expired - https://news.ycombinator.com/item?id=27363813 - June 2021 (119 comments)
Cmake.org SSL server certificate have expired - https://news.ycombinator.com/item?id=27314666 - May 2021 (3 comments)
.NET NuGet Package Validation Broken: Certificate Expired - https://news.ycombinator.com/item?id=25929235 - Jan 2021 (4 comments)
Krebsonsecurity.com has an expired SSL certificate - https://news.ycombinator.com/item?id=25132182 - Nov 2020 (63 comments)
Intermediate certificate used for issuance of Comodo certs has expired - https://news.ycombinator.com/item?id=23360624 - May 2020 (6 comments)
Techcrunch SSL Cert Expired - https://news.ycombinator.com/item?id=22422227 - Feb 2020 (95 comments)
Microsoft Teams outage due to expired certificate - https://news.ycombinator.com/item?id=22227266 - Feb 2020 (172 comments)
Mozilla Expired Add-Ons Certificate Post-Mortem - https://news.ycombinator.com/item?id=20423221 - July 2019 (3 comments)
DNSCrypt – how expired certificates became a thing of the past - https://news.ycombinator.com/item?id=19830910 - May 2019 (13 comments)
Apidock.com SSL cert is expired - https://news.ycombinator.com/item?id=19731409 - April 2019 (3 comments)
O2 outage due to expired Ericsson certificate - https://news.ycombinator.com/item?id=18622169 - Dec 2018 (89 comments)
Over half the firmwares uploaded to TCSL Armor have invalid certificates - https://news.ycombinator.com/item?id=17993511 - Sept 2018 (17 comments)
All of Oculus’s Rift headsets have stopped working due to an expired certificate - https://news.ycombinator.com/item?id=16541235 - March 2018 (376 comments)
Ask HN: Does YC blog has an expired SSL certificate? - https://news.ycombinator.com/item?id=14580560 - June 2017 (3 comments)
Mac Store Apps Stopped Working Due to Expired Security Certificate - https://news.ycombinator.com/...
https://news.ycombinator.com/item?id=25055115
https://news.ycombinator.com/item?id=23808741
Ultimate troll :) Maybe dang is the secret writer of n-gate
Hope they're okay, and just bored with writing updates.
https://www.bbc.co.uk/news/uk-england-leeds-56099072
Dom is a legend in his own lunchtime. A hugely positive inspiration to everybody who has had the good fortune to meet him.
disneyland is for capitalist pigs
I noticed a spelling error on this page: https://littlewarden.com/features "XML Sitemap Change Montioring"
Your various site & DNS checks - do they work on IPv4 and V6? We recently managed to mess up our V6 records whilst our V4 were fine. Turns out our site checkers ran on V4! We've managed to get Prometheus to check on both now (kinda, there are some DNS caching issues somewhere) but now I'm surprised more checkers don't offer this feature.
The IPv6 thing, tbh nobody has tried it yet, but it's certainly something that if it doesn't work, we will fix it so it does :)