I just renewed onepostwonder.com for three more years. 🎂

Every few years I reach out to the guy who owns onepo.com. He always says no. I have made some credible offers. That's cool, the man likes his domain.

I should really take "beta" off the site, huh.

• Three roma tomatoes
• Two carrots, peeled
• Two green onion stalks
• Two stalks of celery
• 6 small mushrooms of varying kinds
• 6 ounces tomato paste
• Goodly shake of MatoZest
• Goodly shake of italian seasoning 
• 1/2 tablespoon nutritional yeast

Chop everything. Chuck everything in a vitamix or good blender. Add enough water to get the blender to cooperate. Blend until it looks right — no huge bits but still texture, mostly from the carrots.

Simmer and serve over zucchini noodles.

The carrots lend it a meat sauce texture.

I have tried both Google's my maps and scribble maps and boy, it is a pain in the ass to just... make a map of an interesting route. With some waypoints and some connecting lines. it's not impossible, it's just so fussy that I say forget it. Is this always so bad? Is there a tool that everybody swears by? should I just give up on the idea that I should be able to do this on my phone?

Oops, I forgot to take a picture before enjoying.

Ingredients

1 red rose black tea bag

1/4 teaspoon fresh-grated nutmeg

1/4 teaspoon fresh-grated ginger

1/4 teaspoon cinnamon

2-3 cloves

1 scant handful almonds

A few raisins

1 teaspoon brown sugar

Instructions

Bring a mug's worth of water, less an inch or so, to a boil. Steep the tea for a few minutes.

Pour the tea and everything else into the vitamix.

Run a smoothie cycle.

Pour into mug.

Enjoy.

Notes

Tastes as good as a "chai latte" and who the hell knows how much sugar (and perhaps fat?) is in those.

If you haven't worked with whole nutmegs before, the "small holes" side of any grater can handle it just fine. Ditto grating fresh ginger.

Mnemonic

Cinnamon and ginger, nutmeg and cloves

That's what gave me this shiny red nose.

A helicopter on Mars?

Sounds crazy - the atmosphere is so thin! - but apparently if you don't mind spending a lot of power, there's no reason in principle you can't just spin the rotor a whole lot faster. And the goal isn't efficient travel, it's to reach places a rover can't, in short hops.

Neat.

Destroyed by madness, starving, hysterical starting at 5am because they can't believe they will get fed at seven.

... You are looking cute!

Specifically, you'll note there is now a little picture icon after you hit reply.

Currently you can post either a picture, or text, not both in a single comment.

Enjoy!

I just wrapped up the followup work I mentioned on making sure existing notifications in the system go away when someone gains or loses access to a lock, or the lock is removed, or the locks of a post are updated.

I need to be realistic about this: I'm one guy, alas, and there will be issues. These were minor in terms of people affected and likelihood of impacting someone. I think I've designed well to avoid more serious problems. I could be mistaken.

So the best I can do is try to be proactive, be responsive when things are pointed out, and oh yeah, be straight with y'all that I'm one guy.

So yeah: I'm not the entire Internet security department of Amazon. Consider yourself reminded. (:

If OPW were to grow, making sure there is a second engineer involved regularly and a code review process in place would be a priority for me. It's not intended as a high-wire act.

(Edited to add: Sean made many large contributions to OPW, including tons of code. Grateful for that! I'm thinking more of what would happen if we had a real budget in terms of best practices for review.)

So how big is OPW anyway, and will it grow? Well: it's tiny. There are about 25 posts per week.

And: it's constant. There have been about 25 posts a week since things settled down in 2015.

But everybody who's here really likes it here. So!

We'll see if little changes like the new Network posts indicator help bring the occasional newcomer more successfully into the fold. But if not... hey. It works for us.

I made two security fixes just now:

1. Previously, if you knew the id of a post and were a mutual follower of the poster, you could comment on it, even if you did not have the keys to the post. Note that this did not mean you could see the post. However, see below.

2. If you had commented on a post, you would continue to receive notifications of later comments on that post, even if your own access to it had been revoked. Notifications contain roughly 100 characters or so of each comment.

Both issues have been fixed. I apologize for these mistakes in my code.

At no point was it possible to read an actual post you should not have been able to read. But, security issues are never good.

Many thanks to the user who brought issue #2 to my attention, which led me to discover issue #1.

Edited to add: notifications already in the system are still there. I will be working to purge those, and also to purge notifications as needed whenever the privacy settings of a post change. Of course an email sent is an email sent, but I should do what I can do.