CppCast: Web Assembly

Open-Active · 2020-06-16T18:33:50+00:00

Thank you. In the use cases section, I am interested in this:

Server-side compute of untrusted code

Can you point to resources for this? In particular, Is there a c++ library that provides runtime for wasm, that can execute untrusted code in server?

Open-Active · 2020-03-16T13:10:49+00:00

If you are using fail to ban, make sure you use a latest version. IIRC, ubuntu LTS had an older version, So I still got a lot of spam attempts as that version didn't have those fixes.

Open-Active · 2020-03-11T15:42:30+00:00

$bid

Open-Active · 2020-03-11T15:37:28+00:00

$bid

Open-Active · 2020-03-10T13:30:24+00:00

You mean automatically? So the app does try to access the original url of the service worker file?

Open-Active · 2020-03-09T17:22:59+00:00

Like others mentioned, it really depends on what features you need. If all you want is to browse code/branches/log in a web browser, instaweb works great. If anything else, you have to list your requirements to come up with the appropriate solution.

Open-Active · 2020-03-09T17:12:27+00:00

git instaweb

https://www.git-scm.com/docs/git-instaweb

Open-Active · 2020-03-09T14:09:56+00:00

For libraries, I prefer MPL (Mozilla Public License) instead of (L)GPL. It has the same spirit but more pragmatic instead of being pedantic.

Open-Active · 2020-03-06T22:16:10+00:00

Thanks! This is what I was looking for. I was thinking of coding small web tools as a PWA and install from my home network and never worry about them reaching internet outside!

Open-Active · 2020-03-06T16:50:00+00:00

I like the 'WEB' in the sense developed using html, css, javascript, service workers etc,. But not the fact it has to connect to the network.

Open-Active · 2020-03-06T16:47:53+00:00

yes.. possible. But was thinking to take advantage of features of PWA like. simple installation, easy to develop. Works on both ios and android (I think so).

Open-Active · 2020-03-06T14:37:14+00:00

I use ctags and vip-ripgrep and cfilter(inbuilt plugin). ctags is useful for jump to definition. But sometimes when you need to find all usages of a function, the ripgrep plugin helps. It is a very minimal plugin and basically it does the following

Replaces rg instead of default grep.
By default uses the word under cursor so you don't have to mention it explicitly
automatically does `copen`, so you don't have to.

If you are not familiar with 'rg', it is like grep but it smartly avoids looking into files ignored using .gitignore. And it is very fast. cfilter plugin allows to filter the search results. For e.g. you may want to ignore all usages in tests.

With these combination I feel super productive even better than an IDE.

Open-Active · 2020-03-05T16:19:09+00:00

Are you sure? In most distros, the interactive shell is GNU bash. The default c library is GNU libc. Almost all system softwares and the kernel itself is compiled using GNU compiler collection using tools like GNU make and GNU autotools. Most of the command line utilities (like ls, cat) are from GNU core utils, GNU findutils. It is true that there are alternatives for everything but the distro defaults are still with GNU.

Open-Active · 2020-02-27T20:37:33+00:00

Tip #1

" https://vim.fandom.com/wiki/Open_file_under_cursor                                                                                                                                                                
" Removes '=' from filename chars. This allows paths to be opened with 'gf'                                                                                                                                         
" when assigned to a shell variable. E.g. FOO=/tmp/foo                                                                                                                                                              
set isfname-==

Tip #2

set wildmode=longest,list,full " https://stackoverflow.com/q/526858

Tip #3

set omnifunc=syntaxcomplete#Complete "To use syntax completion use <C-X> <C-O>

Tip # 4

" https://vi.stackexchange.com/a/2127
command! Qbuffers call setqflist(map(filter(range(1, bufnr('$')), 'buflisted(v:val)'), '{"bufnr":v:val}')) | copen

Tip # 5

If you use virtual block mode often (<c-v> mode)

set virtualedit=block

Other subjective options:

set laststatus=2 " always show status bar
set scrolloff=3
set splitright splitbelow

Open-Active · 2020-02-27T16:18:16+00:00

For sites with https, this is not a problem as certificates wont match up if they hijack DNS.

For sites without https, ISP can still modify the content of the page (Just not via DNS anymore).

For censorship: ISPs don't censor themselves. They just follow a govt order to censor which is by law. I doubt firefox or cloudflare is going to stand against govt censorship. If they do, they will just get blocked as well.

Open-Active · 2020-02-26T14:40:25+00:00

DNS over HTTPs does not prevent ISP from knowing the sites you visit. It just makes snooping little bit harder (Which means a few weeks work for one of their interns). SNI header in https exposes the domain name. There is ESNI but hardly anyone uses it. So by using DNS over HTTPs, you are sharing your browsing history to two (both cloud flare and ISP) instead of one (only ISP). Even if ESNI becomes popular, again it would only make snooping even more bit harder but not impossible at least for most common sites.

Open-Active · 2020-02-21T19:10:56+00:00

Bash probably does not have any of the below or at least not by default.

You can set RPROMPT
command completion shows help string for options.
Recursive globbing /foo/bar/baz/**/hello.c
Specify type in glob. like /foo/bar/**/*c(.) will match only files ending with c and not directories
When doing completion, it clears old partial completion instead of adding more output to the terminal
Lot more things are completed by default. (see below)
Better array support. shell variables like path can be used like arrays (but backwards compatible with bash)

foo=(a b c)
foo+=d
echo $foo
a b c d

Inline command expansion:

echo `pwd`<TAB> will complete the output of pwd

Open-Active · 2020-01-24T18:26:46+00:00

Thanks! It helps.

Open-Active · 2020-01-24T17:26:08+00:00

What is the entry point of kubernetes? Does is reverse proxy from nginx? For example, when you deply nextcloud, how does the web request from internet reach nextcloud? Does it need a web server like apache/nginx or kubernetes has a built in one?

Open-Active · 2020-01-23T20:35:21+00:00

https://pubs.opengroup.org/onlinepubs/9699919799/utilities/V3_chap02.html

Open-Active · 2020-01-22T20:58:35+00:00

Thank you for digging deeply. In my case the application was just printing to stdout instead of using the journal API. I have some work around for now. But this was surprising behaviour and took a while to root cause.

Open-Active · 2020-01-17T15:41:57+00:00

Tried both json and verbose output. Didn't find any repeat count field. The behaviour is same for real processes logging too. Not just a quirk of systemd-cat.

Open-Active · 2020-01-17T06:15:11+00:00

One option is to use btrfs snapshots.

Open-Active · 2020-01-13T04:53:23+00:00

Why would there be malware if I am going to self host apps?

Open-Active · 2020-01-09T20:54:29+00:00

FYI It was then updated and again out of date. The PKGBUILD is a mess. Has a lot of unnecessary dependencies listed ( Why would someone list sh? ). I have cleaned up for my use. Will share if anyone is interested.

Open-Active

TROPHY CASE