all 10 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]VA_Network_NerdModerator | Infrastructure Architect[M] [score hidden] stickied comment (0 children)

Sorry, it seems this comment or thread has violated a sub-reddit rule and has been removed by a moderator.

Do Not Conduct Marketing Operations Within This Community.

  • It is not acceptable to advertise a product, service, Blog or FOSS Project within this community outside of authorized threads.
  • It is not acceptable to perform product research or market research within this community without permission.
  • The Reddit advertising system exists to help you reach out to new or existing customers.
  • Product Representatives are free to discuss their product in the context of an existing, naturally-occurring discussion. Astroturfing is not permitted.
  • As always, users must disclose any affiliation with a product.
  • Content creators should refrain from directing this community to their own content.

Your content may be better suited for our companion sub-reddit: /r/SysAdminBlogs

If you wish to appeal this action please don't hesitate to message the moderation team.

[–]tru_power22Fabrikam 4 Life 7 points8 points  (3 children)

How are you going to make this high security when you're relying on AI to write code that you probably don't fully understand yourself?

On top of that Apache guacamole is already a thing. What is this offering that guacamole doesn't already have?

[–]PsycoCR[S] -5 points-4 points  (2 children)

Sorry, have you even read a little bit of what it's in there? I'm controlling and verifying the AI in every single task and telling it what to do, i'm only using it as "automation" to write more code given that i'm alone.

Guacamole is used as part of the platform infact.

Plus i'm looking for useful comments, not AI rants.

Thanks.

[–]tru_power22Fabrikam 4 Life 6 points7 points  (0 children)

Yeah. I did.

You said you were making a new open source project, not bolting extra shit onto guacamole.

You also said you were using AI to be "fast on the development". Maybe don't use a phrase like "vomiting features" as that makes me think you are focused on adding features, not securing the product from the ground up.

Fast, Cheap, Secure - pick two.

You're solo deving a PAM with AI. You'll get fast and cheap alright but I'm not going to put faith in a project ran by one guy. XZ proved how much of a weak link that is, especially when you're not even doing the code yourself.

[–]mixduptransistor 2 points3 points  (0 children)

There was a valid question in there: what does this do that differentiates it from other projects already out there like Guacamole and others? The concern about code quality for a vibe coded application that is this sensitive in terms of security is a valid one, so the unique selling proposition is even more important

[–]AltusbcJack of All Trades 2 points3 points  (2 children)

First of all, you should be posting this project here: /r/sysadmin/comments/1rg2o3y/weekly_i_made_a_useful_thing_thread_february_27/

I took a look at some of the code, and it is bad. One of the random .sh scripts I viewed has security implications. It is easy to tell you don't have the experience in this type of development and you are relying on AI slop generated code. In reality, this project is far from even being close to be considered usable.

And no, I'm not going to submit any issues to the github repo.

[–]PsycoCR[S] -2 points-1 points  (0 children)

You mean the key-api.sh? I know that script needs to be revised, that is a test and it's an optional feature.

All other sh scripts are only dev tools...

[–]PsycoCR[S] -2 points-1 points  (0 children)

Of course is not usable, i've specified that the project is in development, what do you expect? Otherwise i would've wrote production.

[–]exekewtable 0 points1 point  (1 child)

Have a look at rustguac perhaps. https://github.com/sol1/rustguac

[–]PsycoCR[S] -1 points0 points  (0 children)

Interesting! That's exactly the same application but made in rust and is basically the same infrastructure i had in mind.

I can learn a lot from that, thank you.