Before clicking the link and reading the article I was thinking… “Why would you put ‘Eclipse’ in the name? Don’t they know that like 10 years ago there used to be this horrible IDE for Java called Eclipse?”

Then opening the link…

Some seven years in the making, the Eclipse Foundation’s Theia IDE project is now generally available

git reset head~9
git add -A
git commit -am 'Rebased lol'
git push -f

Cowboy Programming:

PO: Hey we want to go to Mars
- 3 weeks of silence -
Developer: Hey I’m there, where are you?

We have seen time and again, especially on Android, that whenever a moderately-popular app goes open-source, it is immediately picked up by unscrupulous developers. They download the source, add obnoxious ads […]. tracking code […]. Finally, they publish it to the Play Store

This is a pretty bad argument, especially when you’re specifically talking about Android. Android APKs are extremely easy to just download from closed-source, decompile them, and add new things or overwrite existing things.

The argument makes more sense for things that are harder to decompile and recompile

Yea, I wasn’t saying it’s always bad in every scenario - but we used to have this kinda deployment in a professional company. It’s pretty bad if this is still how you’re doing it like this in an enterprise scenarios.

But for a personal project, it’s alrightish. But yea, there are easier setups. For example configuring an automated deployed from Github/Gitlab. You can check out other peoples’ deployment config, since all that stuff is part of the repos, in the .github folder. So probably all you have to do is find a project that’s similar to yours, like “static file upload for an sftp” - and copypaste the script to your own repo.

(for example: a script that publishes a website to github pages)

I suppose in the days of ‘Cloud Hosting’ a lot of people (hopefully) don’t just randomly upload new files (manually) on a server anymore.

Even if you still just use normal servers that behave like this, a better practice would be to have a build server that creates builds, like whenever you check code into the Main branch, it’ll create a deploy for the server, and you deploy it from there - instead of compiling locally, opening filezilla and doing an upload.

If you’re using ‘Cloud Hosting’ - for example AWS - If you use VMs or bare metal - you’d maybe create Elastic Beanstalk images and upload a new Application or Machine Image as a new version, and deploy that in a more managed way. Or if you’re using Docker, you just upload a new Docker image into a Docker registry and deploy those.

I would assume this just relies on the Discord API being read by the bot - and not on having a local discord installed…

Hmm, well the first round(s) are doable for beginners. If you want to get into programming, these kinda games are a good way to start, since you’re getting visual feedback of what your bot is actually doing.

And you can participate in loads of languages, so you can pick anything that you’re somewhat familiar with.

However, once you’re getting into higher rounds, ranks, and leagues, you’ll be playing against other peoples’ bots. So obviously if you have 0 experience it’ll be way harder to beat people with loads of experience, that understand which algorithms are suitable etc.

But I’d say go ahead and try it out. Its free. Maybe it turns out to be too difficult, maybe you’ll manage.

You can use Tblock - Or you can check which router they have, and tell them to flash it with FreshTomato

Then their router can service as a raspi with a pihole: https://wiki.freshtomato.org/doku.php/advanced-adblock

Chaotic neutral: If you complain a lot and keep saying your ticket has high priority, you’ll automatically have lower priority than the guy that doesn’t really care when I do something

Defragging an SSD on a modern OS just runs a TRIM command. So probably when you wanted to shrink the windows partition, there was still a bunch of garbage data on the SSD that was “marked for deletion” but didn’t fully go through the entire delete cycle of the SSD.

So “windows being funky” was just it making you do a “defragmentation” for the purpose of trimming to prepare to partition it. But I don’t really see why they don’t just do a TRIM inside the partition process, instead of making you do it manually through defrag

If “build the server and client in the same language” is a hard requirement, I believe your only choice is JavaScript…

You can probably also use Java. And I’ve used dotnet / c# for it. You can build the server in ASP-core, and a desktop client in Avalonia, or a website in Blazor

Like feathering somebody after tar pitting. I dont know what that would’ve meant. Maybe servers ridiculing an attacker or something

Could be a feature where servers would add your IP to a list, and send it to the clients (like a list somewhere in case of a website)

Then clients would start sending random metasploit-esk requests to those IPS

I guess cloud big boys would be using key management systems to move the key off the local instance

Yes, AWS uses KMS - by default everything like RDS is encrypted at rest through the AWS default KMS key (default for your account, not globally default). I’m still not entirely sure what the point is, since once you login to the AWS console, or connect to the database, everything is decrypted by default anyways. So I suppose the main thing it protects from is physical access.

You can make it more complicated by having more complicated KMS schemes, for example, see Demystifying KMS keys operations - That has a pretty good explanation of what KMS is, and the point of encrypted at rest (at AWS).

A reason customers could ask for encryption at rest could be that they want to be in control of the decryption key. Then at any point that would give them the ability to revoke the decryption key, and practically revoke your access to their data

But as @recursive_recursion mentioned, you should probably ask the stakeholder what the point is. 90% of the time the point is just some checkbox on a ISO27001 or SOC2 form. And “really providing any extra security” is not

The amount of times I’ve been alerted in the middle of the night because CPU was running high for 5 minutes is too damn high.

I’d suggest to just set up automatons to fix those things automatically. Lets say 80% CPU for 5 minutes it too high. Ok, add an auto-scale rule at 65% CPU for 3 minutes to add an extra node to the cluster to load balance the CPU load

It’s like we’re trying to prevent outages by monitoring for potential issues rather than actually making our system more robust and automate-able.

Like it sounds like you’re saying the issues are caused by systems not being robust and lack of automation… If they’re this scared of outages and breaking SLA, they should work on having less outages, or having fall-backs when they occur.

But it could get pretty difficult to get management to do this kinda things from random suggestions from some SRE. I’d probably talk with the team-lead about this, and other people in your team, cause you’re probably not the only one with these issues. And then have a meeting with the entire dev/SRE team and management to point out it’s not sustainable the way it’s going, and with suggestions to improve it

Hmm, as a programmer the game looks pretty fun.

But I checked the steam store, and it’s still in early access, but there are a bunch of different editions, and a couple of (paid) DLCs already. I’m a bit confused on what “edition” to even get - And it doesn’t really bode well for the future if every small extra thing is going to be a DLC

I’m not completely sure which classes you’re talking about - but it sounds like the Business Process Layer

I would call them “services” but I’m looking for a less overloaded term. Maybe capabilities? Controllers?

“Controllers” (in dotnet at least) is usually reserved for the class that initially intakes the http request after middleware (auth, modelbinding etc)

It’s probably easier with a concrete example, so lets say the action is “Create User”

It depends on the rest of your architecture, but I usually start with a UserController - that takes all user related requests.

To make sure the Controller doesn’t get super big with logic, it sends it though mediatr to a CreateUserCommandHandler

But it’s a big vague which parts you’re asking about…

“there is a class of … classes/modules that does the needful.”.

Everything else you’ve described

“API resources, queue workers, repositories, clients” and serializers

Is “cross-cutting”, “Data Access Layer”, and “Service Agent Layer” maybe a bit “Anti-corruption Layer” - but there’s a lot of other things in between that “do the needful”

It would be easy for Google to remove the guardrails from WebAssembly in some sort of public testing version of Chromium

Google is not the authority on WASM, W3C is. Google diverging from the standards and removing any guardrails would result in “This page only works in Chrome” kinda bullshit we’ve seen before

It’s not a big red flag, but it indicates that the product is not fully open source. You can get the full community edition from Github, but for the Self-hosted Enterprise version you have to contact sales.

So all the Enterprise features are most likely closed source, and when you buy/license it, you’ll just get the compiled version. And since their Cloud hosting model has a “Per 1,000 sessions/mo” model, their Enterprise self hosted model might have that as well. So it’ll have some kinda DRM/License managing, and maybe a “call home” to check your license or usage every once in a while

Just wait until she learns child processes get aborted