‹ Alexander Stekelenburg

Hello World

Welcome to my website/blog. I might post stuff here, or I might not; we’ll see!

How it’s set up

The site is generated using Hugo with a modified version of a theme called Rocinante. I modified the theme to add alt text to the images, reduce their size, and conform to more of Google’s Lighthouse checks for accessibility and SEO. Not that the latter matters at all in this case, but it’s fun to make all the dials turn green. I’ve set up a post-receive hook so that I can simply add a post, call Hugo, commit it, and push it. The hooks will call Hugo to generate the pages and move the generated files to the correct folder. In addition to the normal site content Hugo also has a static folder which is used to provide static (non-generated) files. One of the uses I have for this is populating the .well-known folder. Its structure looks like this:

.w     e     lladgos-unpp ekttce cno-.nuocmpjphprwoaosguoinnilopltflinkiyiccehc.goyytytn.zxfthtixogtp-svc1w.q1s.qxamylhweckpntmhfmucpdzu

The config-v1.1.xml file allows Thunderbird and other mail clients to discover the appropriate settings to connect to my mail server using POP3, IMAP, and SMTP. (Don’t run your own mail server it’s not worth the effort) The dnt-policy.txt file is a verbatim copy of the EFF’s Do Not Track policy which is a promise not to track the visitors of this website (that’s you!). Adhering to this promise is relatively easy in my case since I don’t collect analytics, or place any cookies. All I had to do is set up my access logs so that they’re not kept for more than 10 days. The gpc.json file is a similar promise that I will adhere to preferences specified in the Sec-GPC header, since I don’t collect or sell any information that is automatically taken care of. The htzhopscwqsqayhweckpntmhfmucpdzu file contains my PGP key which you can use to verify my commits and signed messages, and to send me emails only I can decrypt. This follows the Web Key Directory standard which allows email clients to automatically find the appropriate PGP key for sending encrypted messages. The policy file is required by the specification, but it is of no real use here because I don’t provide any way for users to upload updated keys (since I’m the only user of this mail server). Finally, there is the security.txt file that I generated using securitytxt.org. This file provides information on how to disclose security vulnerabilities to me. This file is also signed with the aforementioned PGP key.