1. 5

    Going to build a Mattermost bot in Go. It’ll moderate arguments going on in the channel and keep track of points for each participant. And since it’s all good fun, I’ll probably code in a way for folks to try and bribe it by direct messaging it with a sufficient offer

    1. 6

      This is a bit of a rant but I really don’t like software that invents its own query language

      So this post should have the rant tag

      1. 2

        Users can suggest tags.

      1. 17

        I strongly disagree with a CVE tag. If a specific CVE is worth attention it can be submitted under security, most likely with a nice abstract discussing it like the Theo undeadly link or the SSH enumeration issue. Adding a CVE tag will just give a green light to turning lobste.rs in a CVE database copy - I see no added value from that.

        1. 7

          I agree. I think it comes down to the community being very selective about submitting CVEs. The ones that are worth it will either have a technical deep-dive that can be submitted here, or will be so important that we won’t mind a direct link.

          1. 2

            Although I want to filter them, I agree this could invite more of them. Actually, that’s one of @friendlysock’s own warnings in other threads. The fact that the tags simultaneously are for highlighting and filtering, two contradictory things, might be a weakness of using them vs some alternative. It also might be fundamentally inescapable aspect of a good, design choice. I’m not sure. Probably worth some contemplation.

            1. 2

              I completely agree with you. I enjoy reading great technical blog posts about people dissecting software and explaining what went wrong and how to mitigate. I want more of that.

              I don’t enjoy ratings and CVSS scores. I’d rather not encourage people by blessing it with a tag.

            1. 6

              I object!

              Just kidding, thanks for the hard work @alynpost

              1. 11

                You should add Paperkast to the list of sister sites.

                1. 2

                  Done. Thank you very much for the suggestion.

                  1. 1

                    Maybe there should be some sort of standardized directory?…

                    1. 2

                      How is https://github.com/lobsters/lobsters/wiki not a standardized directory?

                      1. 4

                        I suppose it is, but it was not obvious to discover.

                        1. 1

                          I also wish I’d discovered it sooner. However, other than nesting it under the “Wiki” link at the bottom page, I don’t see a solution that wouldn’t start cluttering up the site with information most people won’t need.

                          1. 3

                            It’s linked from the about page.

                      2. 1

                        Can you expand it a little bit?

                    1. 5

                      Sounds interesting, might solve a problem I have at work, too bad it’s coupled to github =(

                      1. 3

                        What would you prefer it to use as the underlying storage? (I am trying to understand what people actually want.)

                          1. 4

                            I was thinking of storing everything, including the comments in a git instance, which would work independently of what git frontend you are using, but then I would have to speak git protocol from the browser which sucks. I may have a look at git.js

                            1. 3

                              Looking at git.js documentation :(

                              “I’ve been asking Github to enable CORS headers to their HTTPS git servers, but they’ve refused to do it. This means that a browser can never clone from github because the browser will disallow XHR requests to the domain.”

                              1. 1

                                Anything self-hosted would be viable, but everything on git would be even better, although probably more complicated. We use gerrit at work (which sucks at several levels), and mostly anything third-party is very much disallowed. Maybe you could create an abstraction that would speak Github API to github and git protocol to other servers where this would work?

                                The other possibility could be a sort of optional backend/proxy, so, if the git server doesn’t have CORS, you could spin that optional server.

                                1. 2

                                  After thinking about it some more, there’s a lot that GitHub offers that I would have to reimplement myself. Authentication, for one thing. If it was used in a stand-alone mode in enterprise, some kind of authentication would be still needed. People would probably want SSO. Then there are notifications. GitHub sends you an email when you are mentioned in a bug. I would have to somehow interact with company’s mail server. And so on. This is my hobby project and I don’t really have time to go into that amount of complexity.

                                  1. 1

                                    Sure, makes sense. It’s still a cool project, nonetheless, so, congrats =)

                              2. 2

                                sounds like a job for the backend

                            2. 1

                              The only issue that I have with it is sharing my organization details. Although you could do it manually, I’m always a bit annoyed about this.

                          1. 4

                            Well, the same thing as the last time: porting my IRC daemon from C to Go. I’ve had some problems with motivation, though that has sorted itself out and now I have before me the task of rewriting about 4000 lines of fairly straight-forward “business logic” code. It’s mind-numbingly boring and fairly time-consuming.

                            Since this is part of an over-ambitious project where I replace most GUI/TUI applications that I use, this rewrite being a warm-up exercise for Go in a problem domain that I’m comfortable with, I am considering starting a blog-of-sorts. I’m not sure if I could keep it alive for long as one needs to remember to describe the steps he takes and put them in context for readers which, needless to say, takes its time, but also as a side effect often provides interesting insights. There’s definitely a lot to write about.

                            What does one use to share a stream of short updates? I don’t feel like spamming an aggregator with them would be very productive and summarizing events at fixed time intervals seems like a hassle.

                            1. 4

                              I’d recommend http://jrnl.sh/ if you want to quickly do streams of updates directly from command-line.

                              I personally like my fork which has one additional feature: native exporting directly to HTML https://git.timetoplatypus.com/timetoplatypus/jrnl

                              1. 2

                                Keeping a log/record of things you have learned, wanted to share, or ran into in an issue tracker for the project would work probably. Possibly just a markdown file? Makes it easy to at a later date write about the process from beginning to end.

                                1. 3

                                  Looks good. Definitely interested to hear if the project is open source. I like the snappiness and minimal amount of JavaScript

                                  1. 19

                                    I ran across a pretty interesting talk about zig here.

                                    Note: I got a good laugh at the end of the talk where he said he made tabs in the source a hard compile error. Well played Andrew. ;)

                                    1. 9

                                      I personally loved the whole “Ya I know saying Zig is faster than C is a big statement since programming language performance is measured as a fraction of C, but I’m telling you it’s an improper fraction”

                                      1. 1

                                        Agreed. It was a good presentation – there were a few memorable moments like that.

                                    1. 3

                                      Been using jrnl to keep notes of things I’ve done or ideas I intend to execute on.

                                      1. 1

                                        jrnl is great. I use it as my personal journal.

                                      1. 2

                                        Should have an option to emit TAP

                                        1. 1

                                          +1

                                          I’ll definitely look into that, thanks

                                        1. 1

                                          Why do you have a AUTHORS() macro? Isn’t that why version control is for?

                                          1. 2

                                            Yep, version control can provide that, but I didn’t want to rely on it being present. I think from a developer standpoint, it’s convenient to know then and there who wrote a particular test (compared to perusing a changelog to find who wrote it). I used this at work and that was my experience, at least.

                                          1. 3

                                            Nice! Really like the minimalist approach of it.

                                            1. 3

                                              Thanks!

                                              I’m certainly aiming for a minimal front-end. As I write new features, I try to hold to a quote I once heard: “if it needs a manual to work, it’s not ready for production”. Obviously there are exceptions to this, but the spirit of the saying is that features should be as intuitive as possible. So I’m comfortable with the backend code getting sophisticated (and ideally not complicated) as long as writing the tests remains straightforward. I measure straightforwardness by how easy it is to explain a new feature using an example. If it’s difficult to explain using an example, it’s not ready

                                            1. 1

                                              This would be a useful extension to tldr

                                                1. 1

                                                  Ugh, I searched and didn’t see it. Thanks.

                                                  1. 1

                                                    Yup, no problem.

                                                1. 5

                                                  Love finding writings like this where the author has clearly worked on something very specific, and can articulate nuances that you’d either never think about or wouldn’t think existed (for example, buildings that are numbered zero)

                                                  1. 3

                                                    We need something like that for every category in one place. Plus, premade components in common languages that enforce their best practices by default with escape hatches for some stuff where it makes sense. minimax’s link is a good start.

                                                    1. 14

                                                      This is literally how the guy makes a living, so, maybe don’t do that?

                                                      1. 9

                                                        I took it down.

                                                        1. 2

                                                          Very considerate of you! :)

                                                          1. 3

                                                            Ya I didn’t intend to upset anyone, it was purely a convenience thing.

                                                        2. 8

                                                          “First, everything is free all week”

                                                          He’s encouraging people to grab his videos by giving everything away for free. All he required was a login which may have monetary value later that timetoplaytypus’s share negates. It’s possible, though, he thinks they can only grab a small amount of videos with some portion of people paying for the rest after deal expires. That’s on top of new, recurring revenue from it on future videos. Maybe this hurts him on at least gap between what he though could be shared and what would be. In that case, he’d have made a gamble that may or may not pay off vs offering a limited number of videos with a clear prohibition on sharing them.

                                                          On ethical side focusing on results, I don’t think there’s a huge difference of someone here sharing his videos all at once in convenient form for free vs him saying grab as many as you want after you log in for free. Given freeloading users vs type and number that would pay him, I don’t think he’d have many losses in that scenario if any at all. The kind of people that would pay him would probably mostly still pay him. Hopefully, no effect.

                                                          1. 0

                                                            He’s encouraging people to take a free look at his work and see if they think it would be worth for them to pay for more of it in the future. Shitty people that don’t care about anything else but themselves might interpret this offer as an invitation to take advantage of someone’s work, and even actively undermine this someone’s livelihood. I think these people are at least half of what is wrong with the word and they should all go live in a cave and never interact with anyone else ever again.

                                                            1. 2

                                                              I hear you. It’s a sensible perspective. I prefer he keeps getting paid for doing good work, too. I also agree that this should be the norm instead of pervasive parasiting.

                                                              1. 2

                                                                I think you see the situation a bit radically.

                                                                On one hand when someone publishes a free software and people use it for their benefit without any pay then they are shitty? When someone decides to publishing something for free, then the factor that some people may not pay for it must be calculated into that decision.

                                                                I believe that the ad-supported word is a bigger threat, as makes the feeling that stuff are for free a norm.

                                                                1. 0

                                                                  Neither of those examples apply. OP is publishing something for free for a LIMITED amount of time, with the very obvious intention of giving people a preview of his product. Free software and free content are very different propositions.

                                                                  1. 2

                                                                    I still think that the possibility had to be factored into this offer, and it likely was. The style and language are still harsher than I think the situation justifies.

                                                                    1. -5

                                                                      Fortunately, I don’t care what you think.

                                                                      1. 2

                                                                        You should reconsider your approach to commenting on lobste.rs.

                                                                        1. 0

                                                                          That is your right to do so.

                                                              2. 8

                                                                let’s be real here. the first thing i thought of when i saw this was “can i write a script to download everything before the deadline” and im pretty sure 99% of people here thought something along that line.

                                                                given the target audience of his screencasts, you kinda have to expect this.

                                                                1. 0

                                                                  Everybody thinks stupid thoughts, but not everyone acts on it. And since we’re a big part of Gary’s target audience, wouldn’t it be nice, if it turns out he overestimated the amount of dicks among us? By the way, first thing in my head also was “Hmm, can I download it?”, but then I remember the guy has to eat.

                                                                  1. 4

                                                                    The swearing you demonstrate in your comments is disturbing. I hope it will not become the norm in the comments section.

                                                                    I believe you could also communicate your point very well without using words like “shitty people” and “dicks”.

                                                              3. 4

                                                                I come to comment on this because I remembered this tweet he posted on the matter, a while ago: https://twitter.com/garybernhardt/status/870721629440983041

                                                                I’m glad it’s been taken down already, I think its just fair to the author’s work.

                                                                1. 1

                                                                  I probably should have read the comments before spending 20 minutes writing a scraper.

                                                                  1. 1

                                                                    The HTTP 451 is intentional, no?

                                                                    1. 2

                                                                      Any endpoint on my site that doesn’t exist returns HTTP 451

                                                                      Edit: for example, https://timetoplatypus.com/abc

                                                                      1. 1

                                                                        FWIW it looks like the HTTP response is only a 404. is this because many clients/servers don’t respect 451 yet?

                                                                        1. 1

                                                                          Nah, it’s just a mistake on my part. I’ll get around to fixing it…eventually

                                                                  1. 2

                                                                    DHS also said that its NPPD is “not aware of any current DHS technical capability to detect IMSI catchers.”

                                                                    “NPPD is aware of anomalous activity outside the [National Capital Region] that appears to be consistent with IMSI catchers,”

                                                                    These statements contradict each other.

                                                                    1. 1

                                                                      Why?

                                                                      First statement: DHS says NPPD doesn’t know about DHS’s ability to detect IMSIs

                                                                      Second statement: NPPD can detect IMSis

                                                                      1. 1

                                                                        Good point, I missed the “DHS technical capability”.

                                                                    1. 17

                                                                      Trying to finish a long running project: my e-ink computer.

                                                                      1. 3

                                                                        Amazing! Please keep us posted!

                                                                        Are you documenting the project anywhere else besides sporadic tweets?

                                                                        1. 4

                                                                          Yes, I document everything along the way. I do not like to publish about ongoing projects as I tend not to finish them when I do that :).

                                                                          Both the code and the CAD designs will be open sourced once the project will be finished.

                                                                          I also plan to write a proper blog post about it. I still need to figure out the proper way to do partial refresh with this screen and it should be more or less done (the wooden case still needs some adjustments).

                                                                          [Edit] Typos.

                                                                          1. 1

                                                                            Same, I would definitely be interested in following the project progress.

                                                                          2. 2

                                                                            Nice! What screen are you using, and how are you controlling it? Have you written any blog posts?

                                                                            1. 2

                                                                              It seems to be this one, same marks on the bottom corners and the shield looks the same:

                                                                              https://www.waveshare.com/wiki/7.5inch_e-Paper_HAT

                                                                            2. 1

                                                                              Is that a raspi it’s hooked up to? Where did you buy the screen?

                                                                              There is another guy doing e-ink stuff on the internet recently. You should go search for him. He is researching how to get decent refresh rates too.

                                                                              Instead of creating a laptop-like enclosure, you should make a monitor-like enclosure. It will look way better and more reusable.

                                                                              1. 1

                                                                                So, one of the thigns that annoys me about this world is how we don’t have e-ink displays for lots of purposes that nowadays get done with a run of the mill tablet. You don’t need a tablet for things like a board that shows a restaurant menu, or tracking buses in the area. So why can’t I find reasonably sized E-ink displays for such purpses?

                                                                                1. 1

                                                                                  Entirely agree with you.

                                                                                  I guess it can be explained by the fact that LCD screens have a better brightness, they are better to catch human eye attention.

                                                                                  The eink technology is bistable on the other hand, making it highly energy efficient for such applications - when no frequent updates are needed.

                                                                                  Energy is cheap nowadays, we don’t really care about energy consumption anymore. But I guess this might change past the peak oil.

                                                                                  I guess these techs will start developing as soon as energy becomes scarce and expensive.