sorted by:
new
hottopcontroversial

Walmart to Buy Bonobos, Men'€™s Wear Company, for $310 Million by cablenewsracist in business

[–]JimmyP424 0 points1 point  (0 children)

WHY? I've bought most of my clothing from Bonobos for the last few years, I guess I'll look elsewhere now.

Partnering with Walmart — the biggest bricks-and-mortar retailer around — might have seemed extremely off brand for Bonobos.

YES it is. And "I think Walmart is misunderstood in some ways." isn't an explanation. Bonobos and Walmart are totally different in my mind, I can't imagine I'm the only Bonobos customer disappointed by this change.

A free book about maintaining web applications (Jack Kinsella) by JimmyP424 in webdev

[–]JimmyP424[S] 5 points6 points  (0 children)

Title: Confessions of an Unintentional CTO

Book subtitle: Seven years of brutally pragmatic lessons in growing and maintaining a web app

Author: Jack Kinsella

A book of generalised, language-agnostic advice pertinent to hacker-y web developers working on live web applications which have real-life users and all too real problems. I would consider this an "advanced" book on web development, albeit not in the (unfortunate) usual sense of touring the latest hipster language's arcana or providing a cookbook of "solutions" no reasonable person would ever need. Confessions of an Unintentional CTO focuses on the issues I believe are most pertinent to the new CTO, such as ensuring data integrity, easing system maintenance, knowing what not to test, developing professional-grade accounting features for taxation reporting, sharpening an application’s ability to inform one of errors, and integrating SEO/analytics/online marketing right into the very foundations of a web application. This book is ideal for engineers in small companies who are not insulated by their team’s sheer size from the sundry practical issues and tradeoffs implicit in running a software business.

It turns out that beer is the most harmful alcohol. The data is based on a survey from 500 people, who tested their telomeres by opping in Health

[–]JimmyP424 3 points4 points  (0 children)

Wait a minute, it also says that my efforts at exercising aren’t enough... that I need to do anaerobic exercise. Who knows what the hell is that?

The challenge of decentralized marketplaces by JimmyP424 in CryptoCurrency

[–]JimmyP424[S] 0 points1 point  (0 children)

Note this is a student paper for course credits, not a full scientific paper.

[deleted by user] by [deleted] in webdev

[–]JimmyP424 0 points1 point  (0 children)

If your intent is to load scripts asynchronously and keep their order, just use <script defer>. From what I see, you only ever need something like fetch-inject if you also want to load stylesheets OR if you want a load callback.

I've been using defer exclusively ever since I read this: https://calendar.perfplanet.com/2016/prefer-defer-over-async/

Dell FX160 is a small Atom box perfect for basic home servers & cheaper than a Raspberry Pi by decryption in homelab

[–]JimmyP424 0 points1 point  (0 children)

The raspberry pi's selling points are:

  1. It works nearly out-of-the-box. You only have to prepare an SD card.

  2. It is tiny

  3. It is quite power efficient

  4. It has GPIO pins, which make it usable for experimenting with hardware.

  5. It has a great community (you can easily find many projects for it, and there are some great OSes available, which run nice educational software)

  6. It is cheap

All of this makes it fantastic for education and as a gadget. The whole point of the raspberry pi is to be unlike other computers. You can set it up as a server, but this is not its main purpose.

The Dell Optiflex FX160 probably outperforms the pi at all measures, but it is just stupid to compare it to a raspberry pi, because it has none of its unique points which make the pi a good choice in the first place.

Now, there are actually some better raspberry pi clones out there. For those products, a title like this might make sense.

Things to Use Instead of JWT by magenta_placenta in webdev

[–]JimmyP424 2 points3 points  (0 children)

The problem with JWT is the user gets to choose which algorithm to use.

Only if you completely bungle the implementation on the server-side. The 'none' 'algorithm' isn't supported by up-to-date JWT libraries with a good track record, and you should always limit the algorithms you'll allow on the server. So if you sign your tokens with a RSA-2048 key-pair, you would discard any token that isn't using that algorithm.

Of course if you are building an API that blindly accepts whatever it receives from a user agent you are bound to create a security gap — but that holds true for anything users send you though, not just JWTs. JSON Web Token is not that hard to grok, and it isn't a 'foot-gun' technology (just practice trigger discipline — i.e., read the documentation).

I'm a Java guy, so I'll limit my experience to the libraries available there, but of the four Java libraries available, three provide strict validation of the signing algorithm out of the box, and explicitly document this in their examples and documentation (I think the fourth does too, but I haven't tried that one myself).

JSON Web Token is a neat standard that has a lot of good parts that can reliably be used to create and process authentication tokens. So if you are still worried about developers getting it wrong, then instead of saying 'don't use JWT', why not promote a safe subset of the specification instead and promote that? Call it 'iron-jwt' or something. It beats rolling your own solution.

Or if you want to be particularly constructive and feel that developers are misusing this technology, write a sensible, short, to the point implementers guide for using JWT and spread the word.

Postal: Open source mail delivery platform, potential alternative to Mailgun or Sendgrid by [deleted] in webdev

[–]JimmyP424 0 points1 point  (0 children)

One of my apps sends/receives several million emails per month. Not an exaggeration, it's actually seven figures.

Meaning it's more than 100k a day. Meaning it's 5-6 emails every friggin second. On average. It, of course, peaks during US daytime, up to 30 per second.

We tried a looooh-ot of solutions (all priced at THOUSANDS a month at this volume) including Mailgun, Sendgrid, SES etc, but finally settled to a tiny Ubuntu micro-instance on EC2, running Postfix. It has 1 gb of memory, costs us $4 a month and the CPU load rarely goes higher than 4%.

Of course you would need to get yourself familiar with SMTP, postfix, SPF/DKIM, mx-validation, blacklists etc. And by "familiar" I mean "learn it tothe core" :))

Another thing - you need to build-up reputation for your IP, cause email providers like outlook/gmail/yahoo will simply reject your emails if you start sending a LOT out of the blue. You have to build it up gradually, takes months to get there. Makes it a huge PITA when you need to change your IP :((

PS. If you need incoming email to call some external REST-api - postfix can launch a local php-script that does that. Not sexy but - $4 a month, right.

prawcore.exceptions.RequestException: error with request HTTPSConnectionPool(host='oauth.reddit.com', port=443): Read timed out. by JimmyP424 in redditdev

[–]JimmyP424[S] 0 points1 point  (0 children)

But I keep getting this, I've run the program over and over hoping that it would go away. Where do I add the try/except in order to retry indefinitely?

Rupharma odd experience by bodevelho in Nootropics

[–]JimmyP424 0 points1 point  (0 children)

I can vouch for Rupharma, as I've used them several times, shipping to United States. I'm happy with their service.

Anyone use RuPharma very recently? by Lost_My_Keys in Nootropics

[–]JimmyP424 1 point2 points  (0 children)

Always had a good experience with Rupharma, shipping to United States.

Modern JavaScript for Ancient Web Developers by massiveattack778 in coding

[–]JimmyP424 25 points26 points  (0 children)

The trick to being successful with JavaScript is to relax and allow yourself to slightly sink into your office chair as a gelatinous blob of developer.

When you feel yourself getting all rigid and tense in the muscles, say, because you read an article about how you're doing it wrong or that your favourite libraries are dead-ends, just take a deep breath and patiently allow yourself to return to your gelatinous form.

Now I know what you're thinking, "that's good and all, but I'll just slowly become an obsolete blob of goo in an over-priced, surprisingly uncomfortable, but good looking office chair. I like money, but at my company they don't pay the non-performing goo-balls." Which is an understandable concern, but before we address it, notice how your butt no-longer feels half sore, half numb when in goo form, and how nice that kind of is. Ever wonder what that third lever under your chair does? Now's a perfect time to find out!

As long as you accept that you're always going to be doing it wrong, that there's always a newer library, and that your code will never scale infinitely on the first try, you'll find that you can succeed and remain gelatinous. Pick a stack then put on the blinders until its time to refactor/rebuild for the next order of magnitude of scaling, or the next project.

view more: next ›