![](https://reddthat.com/pictrs/image/bb659a0f-b287-43f8-bfd8-7c05cbc3b1a0.jpeg)
![](https://fry.gs/pictrs/image/c6832070-8625-4688-b9e5-5d519541e092.png)
Has anyone gone through the documents? Any interesting findings? Is it time to create a website?
Has anyone gone through the documents? Any interesting findings? Is it time to create a website?
Me neither buddy, me neither…
Falsehoods About Time: … Time always moves forwards.
I had to learn this the hard way… I was working at a platform that pulled measurements from sensors. The sensors did not declare the timezone for the timestamps of the measurement and the platform broke down twice after daylight saving. The first time there were duplicated records which caused conflicts and the second one we weren’t handling impossible timestamps.
Typing in python leaves a lot to be desired… Being looking at peps for quite some time, but it’s really hard for the language to make progress without breaking compatibility.
Hopefully at some point MOJO becomes mature enough to use in a professional setting.
I am not using Jenkins anymore but this seems like a lifesaver, thanks for sharing
Unless you are using groovy (jenkins), then you are running the pipeline to find syntax errors.
Jack Dorsey, good or bad?
(bonus points if you get the community reference)
Stremio with the local files extension? Not exactly a video player, but if you want to watch movies and TV shows, it will get the job done.
I have serious sleep issues so I heavily really on my alarm app, I need features like:
It may sound boring, but I would appreciate a good open source alarm app for android.
why is signal not an option?
neither, I am autistic, it’s not a choice, it’s a need.
You spelled Fin Tech Bros wrong
yay yay Musk is bad… BUT, and hear me for a second, I kinda agree that OpenAI has betrayed its goal to benefit humanity. Ulterior motive or not, I hope this gets somewhere.
If you use a recent release of Fedora (last 2-3 years). Try disabling WiFi and/or Bluetooth before suspending. There is an issue with some hardware, especially adapters. It doesn’t happen everytime, and it’s hard to accurately reproduce. Also, the symptoms can vary from black screen to sudo being stuck.
It’s a wild guess, but try to disable Bluetooth or WiFi before suspending.
It’s doesn’t happen with all hardware, but it is a knowing issue.
A good place to start is the owasp cheat sheet. They provide up-to-date, high value information about software security, I wish there was a resource like this when I started learning about security.
Even though, I have a decent background in software security, it’s hard to decide on an encryption schema that’s both safe and easy to use. My goal is to increase the number of components an attacker has to compromise in order to get access to the data.
Great resource!
Write database migrations in both directions so people can downgrade on failures.
Good point. Personally, I take backups before upgrades and restore if anything goes wrong. But, I understand how downgrading sometimes is just easier.
I have trouble coming up with a migration procedure that makes sense to me. I have the following in mind:
Make it possible to configure your system via ENV variables, ENV files and config files.
I am bit worried about this one, environment variables can be a security concern. Specifically, I am not sure if I should allow providing secrets (like db connection strings) through environment variables. I am inclined to let people do what they want to, but issue a warning.
Make it possible to disable authentication to add Authelia or LDAP through the webserver. Make clear that this is only to be used for external authentication.
I am considering adding support for oauth through keycloak. My assumption is that if you are going to host your own LDAP, you can probably configure keycloak too. Do you think that makes sense?
Make it possible to run multiple parallel instances of your software without affecting the database consistency, e.g. for high availability or horizontal scaling.
Ideally, an instance shouldn’t be big enough to need it. I know, famous last words, but in my case I think it’s a bad problem to have. I am going out of scope, but I am wondering where is the line between discouraging large scale deployments and designing something pre-destined to obscurity.
Telemetry
Not even on my radar, thanks for bringing it into my attention 🙏
Great point, I always consider dependencies from a security perspective, but for management/setup sometimes I am like “the devops are going to figure it out”…
To clarify, would an example be supporting sqlite, so people won’t have to deploy postgres unless they need to?
My plan is to offer a docker-compose configuration people can tinker with. I had the mindset that whatever happens in the container stays in the container, but your comment made me realize I should be mindful of other installation methods. Thanks 🙏
Here is a list of note-taking apps:
https://github.com/tehtbl/awesome-note-taking
By the way, I am building my own Journaling system, it’s still early stages and I am looking for ideas!