@anth@a.9srv.net I actually don’t have a clue how old my public-facing domain is 🤣 I have another more personal one that’s probably around ~15 years, but I’m not even sure how to check tbh 😅
↳
In-reply-to
»
One thing about my design here is that it would no longer incorporate "regex"-based rules like OWASP, mostly because my experience thus far has taught me that these rules are kind of overly sensitive, produce false positives and I'm not sure they are really very effective. For example, why is the point of performing SQL injection detection at the Edge using a WAF if you already handle SQL properly in the first place? (seriously does anyone still construct SQL queries by hand with effectively
⤋ Read More
printf?!)
@lyse@lyse.isobeef.org I agree with this sentiment 🙌
↳
In-reply-to
»
One thing about my design here is that it would no longer incorporate "regex"-based rules like OWASP, mostly because my experience thus far has taught me that these rules are kind of overly sensitive, produce false positives and I'm not sure they are really very effective. For example, why is the point of performing SQL injection detection at the Edge using a WAF if you already handle SQL properly in the first place? (seriously does anyone still construct SQL queries by hand with effectively
⤋ Read More
printf?!)
@prologic@twtxt.net There have always been and there will always be people who have absolutely no clue what they’re doing. I’ve been 100% one of them when I started. Guaranteed, heaps of new SQL injections are born every single day, numbers rising.
That doesn’t justify all the WAF crap in the first place, though. In my opinion it’s just a filthy plaster applied to an injected wound. The software itself must be secure. Otherwise, don’t put that shit on the internet. Probably not even operate it at all. Nowhere. Fix it or throw it in the bin.
↳
In-reply-to
»
Also spent the morning continuing to think about a new design for EdgeGuard's WAF. I'm basically going to build an entirely new pluggable WAF that will be designed to only consider Rate Limiting, IP/ASN-based filtering, JavaScript challenge handling, Basic behavioral analysis and Anomaly detection.
⤋ Read More
And yes I’m taking some inspiration from Anubis here 😅
↳
In-reply-to
»
i got a shelf for all my cassette tapes! from a lovely person on facebook marketplace :] i don't think they produce these anymore, i think i got a good deal Media
⤋ Read More
@kat@yarn.girlonthemoon.xyz @bender@twtxt.net Hahaha! I can’t recall either, maybe even just a chisel or a knive? I’m not terribly good at it, not even close. It’s just fun. And I do it all too rarely. :-/
↳
In-reply-to
»
I've been poking around with #Crowdsec for the past couple of days, had to deal with a lot of false paositives but I'm starting to get it. I've even hooked it up with #Ntfy just because I can. Now I should try making my own scenarios and see how it goes.
⤋ Read More
@aelaraji@aelaraji.com this is awesome!!!!
I’ve been poking around with #Crowdsec for the past couple of days, had to deal with a lot of false paositives but I’m starting to get it. I’ve even hooked it up with #Ntfy just because I can. Now I should try making my own scenarios and see how it goes.
@terron@duque-terron.cat este gato habla Castellano, o Catalan? Esa oracion suena extranya en Castellano. Yo hubiera escrito:
“En estos momentos, no sé si le está pidiendo a un dios que libere su pueblo felino, o está mirando una paloma.”
↳
In-reply-to
»
i got a shelf for all my cassette tapes! from a lovely person on facebook marketplace :] i don't think they produce these anymore, i think i got a good deal Media
⤋ Read More
@kat@yarn.girlonthemoon.xyz woodworking is completely down @lyse@lyse.isobeef.org ally. You could really say that he was born with a saw in his hands. Or an axe, I don’t remember.
↳
In-reply-to
»
Sometimes things go wrong when buying CDs second-hand. I bought an album quite cheap – but as it turned out, they only checked the cover, not the content, so I got something else instead which is actually much more expensive. 🤣
⤋ Read More
@movq@www.uninformativ.de a first edition signed Superman comic book, carefully folded just to fit, but not damaged enough to have lost its value?
Pascal’s Law
⌘ Read more
↳
In-reply-to
»
i got a shelf for all my cassette tapes! from a lovely person on facebook marketplace :] i don't think they produce these anymore, i think i got a good deal Media
⤋ Read More
@lyse@lyse.isobeef.org oooh that’s a good point! woodworking is scary and i don’t have much room for it but i do have SOME room in mind that could work for it… i feel like i’d just hurt myself in the process though LOL
↳
In-reply-to
»
i got a shelf for all my cassette tapes! from a lovely person on facebook marketplace :] i don't think they produce these anymore, i think i got a good deal Media
⤋ Read More
@kat@yarn.girlonthemoon.xyz That’s cool. Also, looks like a fun woodworking project in case you exceed the hundred slots. :-) The plywood lap joints might be quite repetetive, but gang cutting them with a story stick or some other fixture shouldn’t be too terrible.
↳
In-reply-to
»
Sometimes things go wrong when buying CDs second-hand. I bought an album quite cheap – but as it turned out, they only checked the cover, not the content, so I got something else instead which is actually much more expensive. 🤣
⤋ Read More
@movq@www.uninformativ.de Their gold teeth collection? ;-)
What do you think I just learned about in this awesome Computerphile video with Matt Godbolt called “Subroutines in Low Level Code”? https://www.youtube.com/watch?v=1su3lAh-k4o
Here’s the plot twist, the phrase “till the cows come home”. Hahaha, I never heard this before, but I love it! It’s always interesting to me to hear English sayings. Sometimes we have the same in German, sometimes – like in this case – entirely different ones. It’s fascinating that even though one hasn’t come across proverbs, it’s typically still clear from the context what’s meant.
Yep, some unexpected language stuff. ;-)
i got a shelf for all my cassette tapes! from a lovely person on facebook marketplace :] i don’t think they produce these anymore, i think i got a good deal 
↳
In-reply-to
»
@lyse Nice! Next up: Passing file descriptors over Unix sockets. 😃
⤋ Read More
Thanks, @movq@www.uninformativ.de! That seems to be much easier. It’s already implemented in the Python docs as examples of recvmsg(…) and sendmsg(…):
- https://docs.python.org/3/library/socket.html#socket.socket.recvmsg
- https://docs.python.org/3/library/socket.html#socket.socket.sendmsg
I looked at them sooo many times in order to figure out why my SCM_CREDENTIALS sending code didn’t work. :-D
@prologic@twtxt.net Exactly. 😂 (Texudus.)
↳
In-reply-to
»
Yesterday, I had a look at Unix domain sockets and how to obtain the caller information: https://lyse.isobeef.org/caller-information-via-unix-domain-sockets/
⤋ Read More
@lyse@lyse.isobeef.org Nice! Next up: Passing file descriptors over Unix sockets. 😃
Yesterday, I had a look at Unix domain sockets and how to obtain the caller information: https://lyse.isobeef.org/caller-information-via-unix-domain-sockets/
@sorenpeter@darch.dk spot on! xD
↳
In-reply-to
»
i started a little thing on my dreamwidth and called it a flash prompt box. basically it's a limited time thing where people can prompt me for stuff i'm offering, like short fanfiction, photoshop-edited user icons, music recs, and a bit more! i'm having sooo much fun with it so far it's been a blast just making stuff for friends :)
⤋ Read More
@kat@yarn.girlonthemoon.xyz Ahh I see ! 😅
↳
In-reply-to
»
i started a little thing on my dreamwidth and called it a flash prompt box. basically it's a limited time thing where people can prompt me for stuff i'm offering, like short fanfiction, photoshop-edited user icons, music recs, and a bit more! i'm having sooo much fun with it so far it's been a blast just making stuff for friends :)
⤋ Read More
@prologic@twtxt.net ah that’s alright! the banner is just for fun :] it might be easier to skip to the comments with this link if you want (it’s in the site view mode rather than my page’s theme) https://luckyzukky.dreamwidth.org/98451.html?style=site#comments
↳
In-reply-to
»
i started a little thing on my dreamwidth and called it a flash prompt box. basically it's a limited time thing where people can prompt me for stuff i'm offering, like short fanfiction, photoshop-edited user icons, music recs, and a bit more! i'm having sooo much fun with it so far it's been a blast just making stuff for friends :)
⤋ Read More
@kat@yarn.girlonthemoon.xyz You’ll have to forgive me 🙏 My vision impairment is getting in the way of seeing this “prompt box” thingy 🤣
↳
In-reply-to
»
i started a little thing on my dreamwidth and called it a flash prompt box. basically it's a limited time thing where people can prompt me for stuff i'm offering, like short fanfiction, photoshop-edited user icons, music recs, and a bit more! i'm having sooo much fun with it so far it's been a blast just making stuff for friends :)
⤋ Read More
@prologic@twtxt.net yeah, the post is here! you can check the comments to see my friends and i talking and stuff it’s so fun https://luckyzukky.dreamwidth.org/98451.html
@sorenpeter@darch.dk Hah 😅 Just like how we ‘all just talk about Twtxt right? 🤣
↳
In-reply-to
»
i started a little thing on my dreamwidth and called it a flash prompt box. basically it's a limited time thing where people can prompt me for stuff i'm offering, like short fanfiction, photoshop-edited user icons, music recs, and a bit more! i'm having sooo much fun with it so far it's been a blast just making stuff for friends :)
⤋ Read More
@kat@yarn.girlonthemoon.xyz This sounds cool! 😎 Can you show me? 🤔
↳
In-reply-to
»
grafana is confusing af i deployed it again for my job (that is so wild to say...) and i'm like HOW DO THESE ALERTS WORK
⤋ Read More
@kat@yarn.girlonthemoon.xyz Look into using something like pyrra for creating and managing SLO(s) with Prometheus 👌 I use this myself actually, plus I also use HetrixTools for external monitoring with SLO-style measures via status.mills.io 👌
new blog post: how i organized my obsidian vault for writing and made it super cool and awesome! https://bubblegum.girlonthemoon.xyz/articles/13
↳
In-reply-to
»
grafana is confusing af i deployed it again for my job (that is so wild to say...) and i'm like HOW DO THESE ALERTS WORK
⤋ Read More
@prologic@twtxt.net noted! that all sounds very scary to me but i should lock in for the best experience for my users! (the best experience for my users is my server not crashing most of the time though so i guess the next best experience LOL)
↳
In-reply-to
»
Really hoping Elizabeth Watson Brown wins and hold her seat here in Ryan 🙏
⤋ Read More
@bender@twtxt.net Me too! She’s awesome 🙌
↳
In-reply-to
»
grafana is confusing af i deployed it again for my job (that is so wild to say...) and i'm like HOW DO THESE ALERTS WORK
⤋ Read More
@kat@yarn.girlonthemoon.xyz I’d recommend alerting off of Prometheus 👌
↳
In-reply-to
»
Watched the third installment of Andor for last night. That was some intense story telling. When it finished I was shaking from how much it had brought me into it all. Just wow.
⤋ Read More
@xuu@txt.sour.is Cool! I’ll have to give it a watch 👌
↳
In-reply-to
»
Watched the third installment of Andor for last night. That was some intense story telling. When it finished I was shaking from how much it had brought me into it all. Just wow.
⤋ Read More
@xuu@txt.sour.is a Star Wars series, eh? Never been a fan. I am Trekkie instead; it comes across as more science fiction, less fantasy. Still, I would see it if only we had Disney+. 😩
↳
In-reply-to
»
Really hoping Elizabeth Watson Brown wins and hold her seat here in Ryan 🙏
⤋ Read More
@prologic@twtxt.net I read a little about her. Looks to be a good fit for the seat she is holding. I hope she gets to keep it.
↳
In-reply-to
»
@lyse yes, it’s bad, but it’s the message what’s important. Now, if you want, I can give you a different perspective on the site, so that you will not see it as horrible anymore. And I will do for only $199.99. A bargain!
⤋ Read More
@bender@twtxt.net Deal!
@prologic@twtxt.net @movq@www.uninformativ.de @bender@twtxt.net That would be fantastic! I encourage you to give feedback or give your experience as an issue: https://codeberg.org/Texudus/website/issues
The specification gives the feeling that it is complete, but there is always gap for small adjustments.
↳
In-reply-to
»
@prologic no clue whenever my servers crash i never know why i just wing it
⤋ Read More
@bender@twtxt.net LMAOOO ty bender!!! everything i do is vibes alone
↳
In-reply-to
»
@prologic no clue whenever my servers crash i never know why i just wing it
⤋ Read More
@kat@yarn.girlonthemoon.xyz if I haven’t said it before, please allow me to say it now: I kinda like your attitude. Heck, I love it!
↳
In-reply-to
»
one of my servers (the one that hosts yarn!) crashed while i was asleep and i woke up to several discord pings telling me it's down T__T AND my terminal stopped working and i had to install new drivers! i am half asleep!!!!
⤋ Read More
@prologic@twtxt.net no clue whenever my servers crash i never know why i just wing it
↳
In-reply-to
»
one of my servers (the one that hosts yarn!) crashed while i was asleep and i woke up to several discord pings telling me it's down T__T AND my terminal stopped working and i had to install new drivers! i am half asleep!!!!
⤋ Read More
@kat@yarn.girlonthemoon.xyz Any idea why?
Globe Safety
⌘ Read more
↳
In-reply-to
»
@movq @bender @kat Oh yeah, this is a great article! The site looks quite horrible, but tastes are different. :-)
⤋ Read More
@lyse@lyse.isobeef.org yes, it’s bad, but it’s the message what’s important. Now, if you want, I can give you a different perspective on the site, so that you will not see it as horrible anymore. And I will do for only $199.99. A bargain!
↳
In-reply-to
»
https://alex.party/posts/2025-05-05-the-future-of-web-development-is-ai-get-on-or-get-left-behind/
⤋ Read More
@movq@www.uninformativ.de @bender@twtxt.net @kat@yarn.girlonthemoon.xyz Oh yeah, this is a great article! The site looks quite horrible, but tastes are different. :-)
↳
In-reply-to
»
https://alex.party/posts/2025-05-05-the-future-of-web-development-is-ai-get-on-or-get-left-behind/
⤋ Read More
And on a similar note, cross-post from Mastodon:
What I love about HTML and HTTP is that it can degrade rather gracefully on old browsers.
My website isn’t spectacular but I don’t think it looks horrible, either. And it’s still usable just fine all the way down to WfW 3.11:
It’s not perfect, but it’s usable. And that makes me happy. Almost 30 years of compatibilty.
The biggest sacrifice is probably that I don’t enforce TLS and that HTTP 1.0 has no Host: header, so no vhosts (or rather, everything must come from the default vhost). (Yes, some old browsers send Host:, even though they predate HTTP 1.1. Netscape does, but not IBM WebExplorer, for example.)
(On the other hand, it might completely suck on modern mobile devices. Dunno, I barely use those. 🤪)
↳
In-reply-to
»
https://alex.party/posts/2025-05-05-the-future-of-web-development-is-ai-get-on-or-get-left-behind/
⤋ Read More
@movq@www.uninformativ.de I LOVE THIS POST LOL
↳
In-reply-to
»
https://alex.party/posts/2025-05-05-the-future-of-web-development-is-ai-get-on-or-get-left-behind/
⤋ Read More
@movq@www.uninformativ.de hahaha! They sure have a point. There is always the next, shinny bandwagon to jump into.
↳
In-reply-to
»
one of my servers (the one that hosts yarn!) crashed while i was asleep and i woke up to several discord pings telling me it's down T__T AND my terminal stopped working and i had to install new drivers! i am half asleep!!!!
⤋ Read More
@lyse@lyse.isobeef.org it’s thankfully sorted out now but i literally turned on my PC and was like WTF IS GOING ON
↳
In-reply-to
»
locked tf in today and set up prometheus + grafana + etc for my servers. grafana is demonic
⤋ Read More
@bender@twtxt.net kinda sorta, it’s in a docker container so not a VM but like VM-ish?