↳
In-reply-to
»
Also spent the morning continuing to think about a new design for EdgeGuard's WAF. I'm basically going to build an entirely new pluggable WAF that will be designed to only consider Rate Limiting, IP/ASN-based filtering, JavaScript challenge handling, Basic behavioral analysis and Anomaly detection.
⤋ Read More
@prologic@twtxt.net anubis is THE BESTTTTTTTTTTTTTT
↳
In-reply-to
»
My main domain name turned 24 years old today. That feels weird.
⤋ Read More
@anth@a.9srv.net Congrats, that’s pretty cool! Quite some time, I’m impressed.
@prologic@twtxt.net You’ll sometimes find the “Creation Date” in whois. Our domain was registered in 2009. Woah. That’s also been a while, crazy.
↳
In-reply-to
»
@lyse … and I realized only now that that’s the guy behind godbolt.org? I never assumed “godbolt” to be a human name, more like some kind of wordplay. 🥴
⤋ Read More
@movq@www.uninformativ.de Yup, that’s Mr. Compiler Explorer. :-)
↳
In-reply-to
»
What do you think I just learned about in this awesome Computerphile video with Matt Godbolt called "Subroutines in Low Level Code"? https://www.youtube.com/watch?v=1su3lAh-k4o
⤋ Read More
@lyse@lyse.isobeef.org … and I realized only now that that’s the guy behind godbolt.org? I never assumed “godbolt” to be a human name, more like some kind of wordplay. 🥴
↳
In-reply-to
»
One thing about my design here is that it would no longer incorporate "regex"-based rules like OWASP, mostly because my experience thus far has taught me that these rules are kind of overly sensitive, produce false positives and I'm not sure they are really very effective. For example, why is the point of performing SQL injection detection at the Edge using a WAF if you already handle SQL properly in the first place? (seriously does anyone still construct SQL queries by hand with effectively
⤋ Read More
printf?!)
@lyse@lyse.isobeef.org I agree with this sentiment 🙌
↳
In-reply-to
»
One thing about my design here is that it would no longer incorporate "regex"-based rules like OWASP, mostly because my experience thus far has taught me that these rules are kind of overly sensitive, produce false positives and I'm not sure they are really very effective. For example, why is the point of performing SQL injection detection at the Edge using a WAF if you already handle SQL properly in the first place? (seriously does anyone still construct SQL queries by hand with effectively
⤋ Read More
printf?!)
@prologic@twtxt.net There have always been and there will always be people who have absolutely no clue what they’re doing. I’ve been 100% one of them when I started. Guaranteed, heaps of new SQL injections are born every single day, numbers rising.
That doesn’t justify all the WAF crap in the first place, though. In my opinion it’s just a filthy plaster applied to an injected wound. The software itself must be secure. Otherwise, don’t put that shit on the internet. Probably not even operate it at all. Nowhere. Fix it or throw it in the bin.
↳
In-reply-to
»
i got a shelf for all my cassette tapes! from a lovely person on facebook marketplace :] i don't think they produce these anymore, i think i got a good deal Media
⤋ Read More
@kat@yarn.girlonthemoon.xyz @bender@twtxt.net Hahaha! I can’t recall either, maybe even just a chisel or a knive? I’m not terribly good at it, not even close. It’s just fun. And I do it all too rarely. :-/
↳
In-reply-to
»
I've been poking around with #Crowdsec for the past couple of days, had to deal with a lot of false paositives but I'm starting to get it. I've even hooked it up with #Ntfy just because I can. Now I should try making my own scenarios and see how it goes.
⤋ Read More
@aelaraji@aelaraji.com this is awesome!!!!
@terron@duque-terron.cat este gato habla Castellano, o Catalan? Esa oracion suena extranya en Castellano. Yo hubiera escrito:
“En estos momentos, no sé si le está pidiendo a un dios que libere su pueblo felino, o está mirando una paloma.”
↳
In-reply-to
»
i got a shelf for all my cassette tapes! from a lovely person on facebook marketplace :] i don't think they produce these anymore, i think i got a good deal Media
⤋ Read More
@kat@yarn.girlonthemoon.xyz woodworking is completely down @lyse@lyse.isobeef.org ally. You could really say that he was born with a saw in his hands. Or an axe, I don’t remember.
↳
In-reply-to
»
Sometimes things go wrong when buying CDs second-hand. I bought an album quite cheap – but as it turned out, they only checked the cover, not the content, so I got something else instead which is actually much more expensive. 🤣
⤋ Read More
@movq@www.uninformativ.de a first edition signed Superman comic book, carefully folded just to fit, but not damaged enough to have lost its value?
↳
In-reply-to
»
i got a shelf for all my cassette tapes! from a lovely person on facebook marketplace :] i don't think they produce these anymore, i think i got a good deal Media
⤋ Read More
@lyse@lyse.isobeef.org oooh that’s a good point! woodworking is scary and i don’t have much room for it but i do have SOME room in mind that could work for it… i feel like i’d just hurt myself in the process though LOL
↳
In-reply-to
»
i got a shelf for all my cassette tapes! from a lovely person on facebook marketplace :] i don't think they produce these anymore, i think i got a good deal Media
⤋ Read More
@kat@yarn.girlonthemoon.xyz That’s cool. Also, looks like a fun woodworking project in case you exceed the hundred slots. :-) The plywood lap joints might be quite repetetive, but gang cutting them with a story stick or some other fixture shouldn’t be too terrible.
↳
In-reply-to
»
Sometimes things go wrong when buying CDs second-hand. I bought an album quite cheap – but as it turned out, they only checked the cover, not the content, so I got something else instead which is actually much more expensive. 🤣
⤋ Read More
@movq@www.uninformativ.de Their gold teeth collection? ;-)
↳
In-reply-to
»
@lyse Nice! Next up: Passing file descriptors over Unix sockets. 😃
⤋ Read More
Thanks, @movq@www.uninformativ.de! That seems to be much easier. It’s already implemented in the Python docs as examples of recvmsg(…) and sendmsg(…):
- https://docs.python.org/3/library/socket.html#socket.socket.recvmsg
- https://docs.python.org/3/library/socket.html#socket.socket.sendmsg
I looked at them sooo many times in order to figure out why my SCM_CREDENTIALS sending code didn’t work. :-D
@prologic@twtxt.net Exactly. 😂 (Texudus.)
↳
In-reply-to
»
Yesterday, I had a look at Unix domain sockets and how to obtain the caller information: https://lyse.isobeef.org/caller-information-via-unix-domain-sockets/
⤋ Read More
@lyse@lyse.isobeef.org Nice! Next up: Passing file descriptors over Unix sockets. 😃
@sorenpeter@darch.dk spot on! xD
↳
In-reply-to
»
i started a little thing on my dreamwidth and called it a flash prompt box. basically it's a limited time thing where people can prompt me for stuff i'm offering, like short fanfiction, photoshop-edited user icons, music recs, and a bit more! i'm having sooo much fun with it so far it's been a blast just making stuff for friends :)
⤋ Read More
@kat@yarn.girlonthemoon.xyz Ahh I see ! 😅
↳
In-reply-to
»
i started a little thing on my dreamwidth and called it a flash prompt box. basically it's a limited time thing where people can prompt me for stuff i'm offering, like short fanfiction, photoshop-edited user icons, music recs, and a bit more! i'm having sooo much fun with it so far it's been a blast just making stuff for friends :)
⤋ Read More
@prologic@twtxt.net ah that’s alright! the banner is just for fun :] it might be easier to skip to the comments with this link if you want (it’s in the site view mode rather than my page’s theme) https://luckyzukky.dreamwidth.org/98451.html?style=site#comments
↳
In-reply-to
»
i started a little thing on my dreamwidth and called it a flash prompt box. basically it's a limited time thing where people can prompt me for stuff i'm offering, like short fanfiction, photoshop-edited user icons, music recs, and a bit more! i'm having sooo much fun with it so far it's been a blast just making stuff for friends :)
⤋ Read More
@kat@yarn.girlonthemoon.xyz You’ll have to forgive me 🙏 My vision impairment is getting in the way of seeing this “prompt box” thingy 🤣
↳
In-reply-to
»
i started a little thing on my dreamwidth and called it a flash prompt box. basically it's a limited time thing where people can prompt me for stuff i'm offering, like short fanfiction, photoshop-edited user icons, music recs, and a bit more! i'm having sooo much fun with it so far it's been a blast just making stuff for friends :)
⤋ Read More
@prologic@twtxt.net yeah, the post is here! you can check the comments to see my friends and i talking and stuff it’s so fun https://luckyzukky.dreamwidth.org/98451.html
@sorenpeter@darch.dk Hah 😅 Just like how we ‘all just talk about Twtxt right? 🤣
↳
In-reply-to
»
i started a little thing on my dreamwidth and called it a flash prompt box. basically it's a limited time thing where people can prompt me for stuff i'm offering, like short fanfiction, photoshop-edited user icons, music recs, and a bit more! i'm having sooo much fun with it so far it's been a blast just making stuff for friends :)
⤋ Read More
@kat@yarn.girlonthemoon.xyz This sounds cool! 😎 Can you show me? 🤔
↳
In-reply-to
»
grafana is confusing af i deployed it again for my job (that is so wild to say...) and i'm like HOW DO THESE ALERTS WORK
⤋ Read More
@kat@yarn.girlonthemoon.xyz Look into using something like pyrra for creating and managing SLO(s) with Prometheus 👌 I use this myself actually, plus I also use HetrixTools for external monitoring with SLO-style measures via status.mills.io 👌
↳
In-reply-to
»
grafana is confusing af i deployed it again for my job (that is so wild to say...) and i'm like HOW DO THESE ALERTS WORK
⤋ Read More
@prologic@twtxt.net noted! that all sounds very scary to me but i should lock in for the best experience for my users! (the best experience for my users is my server not crashing most of the time though so i guess the next best experience LOL)
↳
In-reply-to
»
Really hoping Elizabeth Watson Brown wins and hold her seat here in Ryan 🙏
⤋ Read More
@bender@twtxt.net Me too! She’s awesome 🙌
↳
In-reply-to
»
grafana is confusing af i deployed it again for my job (that is so wild to say...) and i'm like HOW DO THESE ALERTS WORK
⤋ Read More
@kat@yarn.girlonthemoon.xyz I’d recommend alerting off of Prometheus 👌
↳
In-reply-to
»
Watched the third installment of Andor for last night. That was some intense story telling. When it finished I was shaking from how much it had brought me into it all. Just wow.
⤋ Read More
@xuu@txt.sour.is Cool! I’ll have to give it a watch 👌
↳
In-reply-to
»
Watched the third installment of Andor for last night. That was some intense story telling. When it finished I was shaking from how much it had brought me into it all. Just wow.
⤋ Read More
@xuu@txt.sour.is a Star Wars series, eh? Never been a fan. I am Trekkie instead; it comes across as more science fiction, less fantasy. Still, I would see it if only we had Disney+. 😩
↳
In-reply-to
»
Really hoping Elizabeth Watson Brown wins and hold her seat here in Ryan 🙏
⤋ Read More
@prologic@twtxt.net I read a little about her. Looks to be a good fit for the seat she is holding. I hope she gets to keep it.
↳
In-reply-to
»
@lyse yes, it’s bad, but it’s the message what’s important. Now, if you want, I can give you a different perspective on the site, so that you will not see it as horrible anymore. And I will do for only $199.99. A bargain!
⤋ Read More
@bender@twtxt.net Deal!
@prologic@twtxt.net @movq@www.uninformativ.de @bender@twtxt.net That would be fantastic! I encourage you to give feedback or give your experience as an issue: https://codeberg.org/Texudus/website/issues
The specification gives the feeling that it is complete, but there is always gap for small adjustments.
↳
In-reply-to
»
@prologic no clue whenever my servers crash i never know why i just wing it
⤋ Read More
@bender@twtxt.net LMAOOO ty bender!!! everything i do is vibes alone
↳
In-reply-to
»
@prologic no clue whenever my servers crash i never know why i just wing it
⤋ Read More
@kat@yarn.girlonthemoon.xyz if I haven’t said it before, please allow me to say it now: I kinda like your attitude. Heck, I love it!
↳
In-reply-to
»
one of my servers (the one that hosts yarn!) crashed while i was asleep and i woke up to several discord pings telling me it's down T__T AND my terminal stopped working and i had to install new drivers! i am half asleep!!!!
⤋ Read More
@prologic@twtxt.net no clue whenever my servers crash i never know why i just wing it
↳
In-reply-to
»
one of my servers (the one that hosts yarn!) crashed while i was asleep and i woke up to several discord pings telling me it's down T__T AND my terminal stopped working and i had to install new drivers! i am half asleep!!!!
⤋ Read More
@kat@yarn.girlonthemoon.xyz Any idea why?
↳
In-reply-to
»
@movq @bender @kat Oh yeah, this is a great article! The site looks quite horrible, but tastes are different. :-)
⤋ Read More
@lyse@lyse.isobeef.org yes, it’s bad, but it’s the message what’s important. Now, if you want, I can give you a different perspective on the site, so that you will not see it as horrible anymore. And I will do for only $199.99. A bargain!
↳
In-reply-to
»
https://alex.party/posts/2025-05-05-the-future-of-web-development-is-ai-get-on-or-get-left-behind/
⤋ Read More
@movq@www.uninformativ.de @bender@twtxt.net @kat@yarn.girlonthemoon.xyz Oh yeah, this is a great article! The site looks quite horrible, but tastes are different. :-)
↳
In-reply-to
»
https://alex.party/posts/2025-05-05-the-future-of-web-development-is-ai-get-on-or-get-left-behind/
⤋ Read More
@movq@www.uninformativ.de I LOVE THIS POST LOL
↳
In-reply-to
»
https://alex.party/posts/2025-05-05-the-future-of-web-development-is-ai-get-on-or-get-left-behind/
⤋ Read More
@movq@www.uninformativ.de hahaha! They sure have a point. There is always the next, shinny bandwagon to jump into.
↳
In-reply-to
»
one of my servers (the one that hosts yarn!) crashed while i was asleep and i woke up to several discord pings telling me it's down T__T AND my terminal stopped working and i had to install new drivers! i am half asleep!!!!
⤋ Read More
@lyse@lyse.isobeef.org it’s thankfully sorted out now but i literally turned on my PC and was like WTF IS GOING ON
↳
In-reply-to
»
locked tf in today and set up prometheus + grafana + etc for my servers. grafana is demonic
⤋ Read More
@bender@twtxt.net kinda sorta, it’s in a docker container so not a VM but like VM-ish?
↳
In-reply-to
»
locked tf in today and set up prometheus + grafana + etc for my servers. grafana is demonic
⤋ Read More
@kat@yarn.girlonthemoon.xyz are you running Grafana in a separate physical machine (or VM) than the one you are pulling metrics from?
↳
In-reply-to
»
one of my servers (the one that hosts yarn!) crashed while i was asleep and i woke up to several discord pings telling me it's down T__T AND my terminal stopped working and i had to install new drivers! i am half asleep!!!!
⤋ Read More
@kat@yarn.girlonthemoon.xyz Oh dear, what a way to start the day! :-(
↳
In-reply-to
»
locked tf in today and set up prometheus + grafana + etc for my servers. grafana is demonic
⤋ Read More
@aelaraji@aelaraji.com you got this!!!!!! grafana is SO confusing but you’ll get there :D
@bender@twtxt.net I think this would be a good idea as @movq@www.uninformativ.de and @andros@twtxt.andros.dev have done ✅ I may even join the experiments if I have any spare time to hack a custom yrand branch and run it up on say something like a yarnexp.mills.io or something 🤔
↳
In-reply-to
»
(#yvpi2xa) Why are we testing, or playing with, an alternate non-fully-compatible feed format within the same feed that we use daily?
⤋ Read More
@bender@twtxt.net This ☝️
@sorenpeter@darch.dk No because as the spec statd originally, and we didn’t change that syntax at all:
Mentions are embedded within the text in either @ or @ format
So the lextwt parser we use will simply call this an invalid mention, which it does.
@sorenpeter@darch.dk Unfortunately it does break all clients, because the original spec stated:
Mentions are embedded within the text in either @ or @ format