Personal View of NYC Congestion Pricing

In the 2010s I managed an engineering organization with teams in California and New York. I travelled to NYC a number of times, typically staying near Chelsea Market.

The Maritime on 16th street was my usual lodging, next to Google's NYC office and with the 14th Ave subway station nearby. I recall the blaring of car horns being ever-present, continuing late into the night.

We brought the whole family to New York City in July, the first time I have been there in almost 10 years. We stayed in Manhattan in the Financial District, and went for pizza very near the Google building. The streets were very clear, nowhere near the level of traffic I remember.

(view from the Empire State Building)

(on the way to pizza)

In January 2025, New York City implemented a congestion pricing mechanism to increase tolls for cars entering the city. It had an almost immediate impact in reducing traffic:

• February, 1 million cars reduced
• March, large increase in public transit utilization
• April, large reduction in congestion
• Manhattan foot traffic finally tops pre-pandemic times

The Federal government, always eager to increase fossil fuel consumption, has revoked the needed authorizations and demanded that NYC end the congestion pricing mechanism. The two parties will present their arguments in court in October 2025.

I hope congestion pricing stays. The city is better for having it in place.

Tello Android settings for VoWifi

Tello is a T/Mobile MVNO in the US which offers good support for Voice-over-Wifi, whereby voice and SMS can be sent using an Internet connection while overseas and not require expensive roaming minutes. We were successfully able to use VoWifi on our recent trip to Europe:

• SMS text messages arrived
• SMS messages sent were delivered
• incoming calls ring the phone
• outgoing calls work, and carried by usual US number as the callerID

The most important setting we needed to set was "Automatic data switching." My Tello plan includes no roaming minutes at all, I had installed a travel eSIM from Roamless.

Vibe Coding and Wisdom

I started experimenting with Claude Code a while ago. I am not the first person to make this observation, but thinking of Claude Code as an early career developer whom one is mentoring and needs to guide to a solution is a good mental model for it. It is pretty impressive in what it can do.

Asking it to produce something the size of what one would want to see in a code review from an early career developer produces good results, far faster than I could write myself, at a cost of a few cents.

For example:

Add a command line utility written in Go in cmd/adduser. It takes command line arguments for email, phone, imsi, realm, remsim, gpp_hostname, ns, slack_app_token, slack_channel_id, and smtp_list. It encrypts the slack_app_token, slack_channel_id, and smtp_list using the code in internal/db/encryption.go. It opens a connection to the database using the code in internal/db/server.go, and adds a new row to the accounts table using the command line arguments it was given.

This resulted in a quite functional command line program which did what I asked.

func main() {
        var (
                email          = flag.String("email", "", "Email address (required)")
                phone          = flag.String("phone", "", "Phone number (required)")
                imsi           = flag.String("imsi", "", "IMSI (required)")
                realm          = flag.String("realm", "", "Realm (required)")
                remsim         = flag.String("remsim", "", "Remsim (required)")
                gppHostname    = flag.String("gpp_hostname", "", "GPP hostname (required)")
                ns             = flag.String("ns", "", "NS (required)")
                slackAppToken  = flag.String("slack_app_token", "", "Slack app token")
                slackChannelID = flag.String("slack_channel_id", "", "Slack channel ID")
                smtpList       = flag.String("smtp_list", "", "SMTP list")
        )
        //...omit the rest but it was straightforward code...

 

Unit Testing

Claude Code doesn't seem to produce unit tests as a regular part of its development... like some engineers I've worked with I suppose. However it can be prompted to do so and produces a reasonable result.

In cmd/forwarding create a unit test which starts a server on localhost and uses an http client to connect and POST JSON with input arguments.
 
In cmd/user-management create a unit test which starts a server on localhost and uses an http client to fetch /api/account/<uuid>/db

Claude Code produced a quite reasonable table-driven Go test, including creating an in-memory sqlite3 to mock the Postgres database.

+       testCases := []struct {
+               name           string
+               uuid           string
+               requestBody    ForwardRequest
+               expectedStatus int
+               setupDB        func(*sql.DB, string)
+       }{
+               {
+                       name: "successful forward",
+                       uuid: testUUID,
+                       requestBody: ForwardRequest{
+                               Sender:   "test@example.com",
+                               Received: "2023-12-01T10:00:00Z",
+                               Content:  "test message",
+                       },
+                       expectedStatus: http.StatusOK,
+                       setupDB: func(database *sql.DB, uuid string) {
+                               slackToken, _ := db.Encrypt("test-slack-token")
+                               slackChannel, _ := db.Encrypt("test-channel")
+                               smtpList, _ := db.Encrypt("test@smtp.com")
+
+                               query := `INSERT INTO accounts (id, account_number, email, phone_number,
+                                         imsi, realm, remsim, gpp_hostname, ns, slack_app_token,
+                                         slack_channel_id, smtp_list)
+                                                 VALUES (?, 1001, 'test@example.com', '+1234567890',
+                                                         '123456789012345', 'test.realm', 'test-remsim',
+                                                         'test-gpp', 'test-ns', ?, ?, ?)`
+                               database.Exec(query, uuid, slackToken, slackChannel, smtpList)
+                       },
+               },

Image produced by Claude Code's distant relative, Stable Diffusion

Unwise Approaches

Attempting to get Claude Code to generate larger systems with less guidance didn't go as well. What it produced was functional and quite impressive, but unwise.

I wanted to try out an admin panel with a login link sent to an email address. Not suitable for all environments, but sufficient for many services which rely on the user's email.

In the admin sub-directory, generate a web user interface for an admin console using typescript and react, with a backend server written in Go.
 
The login screen has a text box to enter an email address. When the Submit button is pressed, the backend server should generate a 128 bit random string and use os.exec to run an email.sh process. The backend server should redirect the user to an interstitial page which says "Please click the login link sent to <email address>."
 
Once logged in, the main page has ...

Claude Code generated a quite functional admin console. One could submit an email address and it would fork the script to send email. It maintained a map of pending login tokens in the Go backend. When one clicked the link in the email the backend would respond with ok it it found that token in its active table, otherwise failure. Quite exhilerating to see all of that work within a couple minutes of starting on it.

However this means the client code, itself, was deciding the success or failure of the login link. If it got an ok from the backend, it would proceed to the URL for the admin panel. The backend code would serve up whatever it was asked for, there was no enforcement in the backend.

Anyone capable of understanding the client JavaScript could figure out the URL of the admin panel for any user. The login link only provided the illusion of protection. It was trivial to bypass.

One can observe that Claude Code generated exactly what I told it to, which is a fair observation. One might also observe that Claude Code just regurgitates its training set, meaning that human developers have done similar things in large numbers. This is also a fair observation.

Nonetheless it reinforces that vibe coding is best used as a multiplier, not a substitute, for actual expertise.

Your Parent Did Not Give Up German Citizenship at 18

There have been a large number of US troops stationed in Germany for decades, since the end of World War II. As happens in these circumstances, a fair number of US servicepeople have started families with their spouse who moved with them from the United States, with children born while stationed in Germany.

Some things which are commonly believed amongst US military families who have been stationed in Germany:

• Children born to US servicepeople on German soil will be dual citizens of the US and Germany.
• At the age of 18 or 21 or 23, those dual citizens will have to choose which citizenship they will keep and forfeit the other.

Unfortunately neither of these is true. German citizenship is not like the US: being born on German soil does not make one a German citizen. One is German if one's parent is German, or if one naturalizes. So a child born to two US citizens stationed in Germany is not German. If the US serviceperson marries a German, then any children could be dual citizens.

 

Certificate of Citizenship

This story is reinforced because children born in Germany will have either a German birth certificate called a Geburtsurkunde or, less often, they will have paperwork from the US military hospital where they were born. Neither of these are acceptable as proof of US citizenship, which the child needs when they return to the US.

It is quite common for parents to order a Certificate of Citizenship for their children, documenting that the child is a US citizen. This often happens at age 18 when the child registers to vote or finds a job which requires that they prove their right to work. The Certificate of Citizenship contains language forswearing other allegiences, and reinforces the belief that the child had to choose one citizenship or the other at age 18.

In reality the presence of that language on the Certificate of Citizenship has no impact, other countries do not recognize the US document as being binding upon their practices of citizenship. If one actually was born a dual German and US citizen, the issuance of a US Certificate of Citizenship has no impact on their German citizenship. They remain a German citizen.

 

Impact

The impact of these misconceptions works in both directions:

1. People who mistakenly believe they are German citizens, or were German citizens, and try to get that citizenship back.
2. Perhaps more tragically, people with a German parent who believe they forfeited their German citizenship at 18 or 21 or 23 and never pursued it further, when in reality they remained citizens throughout their lives. They could have made different choices had they known.

If you wonder whether you are in this situation, Reddit's /r/GermanCitizenship can help you figure it out. I spend time on that subreddit as well, helping people understand the declaration processes which we navigated.

Paragon mechanical timer 4004-71M vs 4004-71

Our pool pump uses an Intermatic timer which stopped working a few weeks ago. The mechanical timer mechanism is labelled as a Paragon Electric 4004-71M. After scouring eBay for a few weeks with no 4004-71M timers appearing but several 4004-71 models... I bought one, hoping it would fit.

It looks almost identical and mechanically does fit into the housing, with mounting tabs in the right places. However the original 4004-71M has a through hole at the bottom where a mounting screw secures it to the metal box. The 4004-71 has a smaller diameter hole which doesn't go all the way through, intended only to hold a cover over the wiring.

As my father would surely have said in this situation: "You can have a through hole anywhere, if you want it badly enough."

The timer chassis is bakelite, which drills cleanly if one takes it slowly. A few minutes drilling resulted in a hole suitable to mount the 4004-71 into the housing which originally held the 4004-71M.

Adding to the amassed knowledge of the Internet: the 4004-71 is not a direct replacement for the 4004-71M, but can be modified to work.

HomeAssistant Voice Preview Edition poweron

I powered on two HomeAssistant Voice Preview Edition devices, trying to replace our use of Google Home. It is set up self-hosted in a HomeAssistant VM, running on a quite old Dell T320 server running Proxmox. It is an E5-2450 v2 with 8 cores and 20MB cache at 2.5 GHz. The HA-OS VM gets two of those cores.

Pros:

• has an announce function, one of the most common things we use Google Home for. Yes, we use Google Home primarily as an overly complicated intercom.
• entirely self-hosted, voice doesn't leave the home

Cons: haven't yet figured out the other common things we use Google Home for.

• set timer for N minutes
• play music from YouTube
• recurring alarms every weekday/Thursdays/etc

National Climate Assessment team disbanded

By Ed Hawkins, climate scientist.
CarlinMack created this version.

Three weeks ago contracts for the National Climate Assessment were defunded and work stopped.

Today the 400 people working on it were disbanded.

Production of the report is funded and mandated by law. Presumably in 2028, AI will write something.

Finding a Role in Climate

Climate Week is drawing to an end, not yet done but one can see the close approaching.

I have spent a bit over a year now on my own, doing some consulting work while looking for longer-term opportunities but also taking downtime away from the industry. I’m very motivated to work on climate, building on earlier efforts:

• two years as a Senior Fellow at Project Drawdown
• several years coaching climate community members starting their careers
• Cohort 5 of the ClimateBase Fellowship
• all of that coming after several decades in the Tech industry, at three startups (Dominet Systems, ConSentry Networks, Tailscale Inc) and two large companies (Sun Microsystems, Google). I held roles from ASIC designer to software manager to VP of Engineering.

I’m starting to focus again on finding the right long term opportunity, not just consulting. What I’d request of those whom I’ve worked with or had the pleasure to meet along the way is introductions at the right stage, for roles with:

• a focus on climate as the primary mission. Energy is the best match for my skillset, but I believe that land use and agricultural tech need more effort and I have relevant experience with satellite imagery.
• a position which is substantially leadership, from Director at a large company to Founder / Founding Engineer or VP at an earlier stage. I can help hire, evolve organizations, and build a product.
• a technical component which is not zero. Managers should manage, but I believe managers who completely lose touch with the reality of the engineering work become less effective as leaders. I would seek an opportunity where there would be suitable opportunities to contribute technically, and believe it is important that the team see those contributions.
• an organization with a European connection. We enjoy Europe, have travelled in Germany several times, and have substantial family connections there.

These sorts of opportunities are mostly not posted publicly. I have responded to a few public postings over the past year, that is not an effective way to proceed. I’d ask for warm introductions you may be aware of, early in the process, perhaps when founders are talking about a new venture or considering a new project which needs leadership.

Thank you so much for any connections you can provide.

SF Climate Week Opening Keynote

As I did last year, I took the train to get to SF Climate Week. In this area that means taking Caltrain up the Peninsula before switching to the Bay Area Rapid Transit (BART) to the Embarcadero, then walking to Climate Week at the Exploratorium.

Both of those train systems have been substantially improved since last year:

• Caltrain completed a years-long electrification project, replacing all of the diesel trains.
• BART finished deployment of a new generation of cars, retiring all of the 25 year old rolling stock.

From this one might infer a renaissance of mass transit deployment in urban areas... but one would be wrong. Indeed, in nearly every area of climate action where the Inflation Reduction Act had spurred progress, the new administration of the last three months has attempted to roll it all back.

---

Former Vice President Al Gore presented the opening keynote speech, fiery and powerful.

SF Climate Week 2025

This is SF Climate Week! The opening keynote with former Vice President Al Gore, long-time Speaker of the House Nancy Pelosi, & SF Mayor Daniel Lurie is this afternoon at The Exploratorium in San Francisco.

I'll be in SF this week as a volunteer helping keep things running, hope to see you there.

German Mothers and the Year 2031

Until 1975 German mothers did not pass on citizenship to children born in wedlock, only German fathers did. To address historic gender discrimination in citizenship practices Germany has defined a declaration process called Staatsangehörigkeit § 5. I wrote about our experience with this process, which we completed in 2023.

In the 20th century several million Germans emigrated to the United States. Staatsangehörigkeit § 5 is applicable to a very large number of their descendants today. From a post on r/GermanCitizenship about an April 2025 visit to the German Consulate:

The caseload has increased exponentially in the past 4 months. He said that aside from all the appointments each day, they get between 80 and 90 inquiries a day in the Chicago office alone.

The Staatsangehörigkeit § 5 process will be open for ten years. Having started in August 2021, declarations will be accepted until August 2031. The current wait time in the queue to be processed is about 2.5 years, and is likely to grow with the number of Americans now applying.

If you were born to a German mother prior to 1975 and a declaration of German citizenship is something you'd consider doing, I'd advise starting on it soon. Applications received by 8/2031 should all be processed, but the queue is likely to be years long.

Coal Mining Policies

New coal policies are invariably announced in front of a group of workers wearing hard hats with lights affixed, and often in Pennsylvania for good measure. One might assume the mining profession is a huge economic force and under constant threat which must be fended off to preserve families and livelihoods.

As a profession, coal mining employs about 40,000 people in the US.

Source: FRED (Federal Reserve Economic Data).

---

Construction Management requires similar levels of education and experience and according to employment statistics enjoys a similar pay scale. There are 10x to 20x more Contruction Managers in the US.

Source: FRED (Federal Reserve Economic Data).

---

Coal policies are not driven by concern for workers. Coal policies are driven by concern for fossil fuel profits, which have only been made possible by externalizing the cost of the damage to human health and acceleration of global warming.

RSS Feed Likely to Break

Over a decade ago I configured this Google Blogger site to use FeedBurner. This blog never generated ad revenue and I turned ad insertion off, but left the feed still going through FeedBurner.

I'm making progress in moving the blog off of Google Blogger. I am actively trying to reduce my use of big tech companies, limiting them to easily-replaced commodified services wherever possible. I have a Jekyll site working locally, with all existing posts and images imported. I expect to serve the generated static site from somewhere like GitHub Pages or Cloudflare Pages so as to not operate a public-facing site myself, but retain the content and publishing infrastructure locally. The static hosting can be moved easily.

However: I expect the RSS feed will break, with a discontiguous update making it look like more than 400 posts have suddenly published. The Jekyll site will not generate an identical feed to Google Blogger. I also don't intend to use FeedBurner with the new site, as Google began shuttering the service several years ago.

Looking at the feed today, it is three posts behind. I don't know why, but I guess I'm heartened that it is not more. I'm posting this now in hopes that it will be published to any remaining subscribers of the RSS feed before the changeover happens.

Farewell, Google Charts API

Nearly 14 years ago I wrote a joke post about the Holtzmann Shields from Frank Herbert's Dune, complete with impressive-looking but nonsense equations like this one:

That equation was created using LaTeX:

T = \frac{(0.09\frac{m}{sec})^2(0.0289644\frac{kg}{mol})}{(3)(8.3145\frac{m^2\cdot kg}{sec^2\cdot mol\cdot K})}

 

At the time the post was written in 2011, Google offered a Charts API which would accept URL-encoded LaTeX and render it on the fly. The original posting from back then just embedded the Charts API URL as the source for the image, confident that Google would supply a suitable PNG:

https://chart.googleapis.com/chart?chs=239x83&cht=tx&chl=%0AT%20%3D%20%5Cfrac%7B(0.09%5Cfrac%7Bm%7D%7Bsec%7D)%5E2(0.0289644%5Cfrac%7Bkg%7D%7Bmol%7D)%7D%7B(3)(8.3145%5Cfrac%7Bm%5E2%5Ccdot%20kg%7D%7Bsec%5E2%5Ccdot%20mol%5Ccdot%20K%7D)%7D%0A

One can see the LaTeX code in the `chl` parameter.

 

The joke post turned into a joke on me: Google announced the deprecation of the Charts API the following year, and turned it off altogether in 2019. My post from 2011 has been broken for almost 6 years, without me knowing.

I am currently endeavoring to reduce my use of Big Tech services, turning to alternatives over which I have more control. Importing that 2011 post into Jekyll repeatedly failed because the image link was broken. I was able to recover the original LaTeX from the URLs to fix the old post, by generating PNGs.

I think this reinforces the desire to not depend upon Big Tech. Google kills services every day, especially ones like the Charts API which didn't have their own monetization path.

Preparing for Offsite Backup

For many years, too many years, my family computer backup plan was an aging Apple Airport Time Capsule paired with the fervent hope that nothing would ever fail. That worked pretty well in that we haven't lost anything important, but Backup Theater is honestly worse than just admitting there is no real backup.

Last year I decided that Adulting should include ensuring that family data remains safe and the kids don't lose schoolwork, or the custom Doom WADs they've developed, or what have you. The Adulting Plan for Backups consists of:

• Android and iOS devices should be backed up somewhere outside of the home.
• Windows and macOS laptops should be backed up somewhere outside of the home.
• Proxmox VMs and LXCs should be backed up somewhere outside of the home.

Repetative and boring, perhaps, but that is how a backup plan should be: replicated and safe.

 

Android and iOS

The mobile devices were simplest: they already backed themselves up, Android to Google Drive and iOS to iCloud. Downloading all iCloud photos to immich allowed us to drop to a less expensive iCloud+ storage plan while still using it for device backups.

One downside of using the mechanisms which Google and Apple provide is that the backups are not encrypted from outside access. Google and Apple can access the contents of the device backups. I hope to come back to re-examine these backup plans in the future with something we have more control over.

 

Windows and macOS

After some searching, we paid for Arq Backup Premium, which provides one license for each of our five laptops. Each laptop is configured to back itself up twice:

1. To the cloud storage which Arq Premium provides.
2. Using SFTP over Tailscale to the fileserver within our home.

The backup files for all of the laptops together come to a bit over 800GB, nicely fitting within the 1TB of Google Cloud storage from Arq Premium. The backups are encrypted using a key which only we have, neither Arq nor Google can read the contents.

 

Proxmox

The Proxmox server within the home has 10 terabytes of ZFS storage. It provides the SFTP backup which the laptops are configured to reach via Tailscale, and it backs up its own VMs and LXCs to ZFS using vzdump. I'm working on offsite replication for this and might post again when that is done.