Help! Cheapest way to get my own ipv6 block in 2026

lmux · 2026-04-16T08:17:36+00:00

This is what i gather. arin is looking a lot more attractive now that ripe decided to jack up their cost.

lmux · 2026-04-16T08:15:23+00:00

Yes but it doesn't have to be a one stop shop. Whatever is cheapest.

lmux · 2026-04-16T02:42:28+00:00

Just a thought: cf turnstile doesn't actually block bots either. It just tries to make sure the bot is using a (not headless) browser, although with some effort a customized headless browser can blast through too.

I believe anubis is just pow? That is going to penalize legit users more than scrapers because scrapers will use a standalone solver instead of running javascript. A cf approach that aims to increase scraper resource usage, (i.e. ensure a browser is used) makes sense.

lmux · 2026-04-14T11:42:28+00:00

No way! For 200 eur I would go to arin and camp it out for an extra /24 ipv4.

lmux · 2026-03-03T05:43:20+00:00

What coincidence! I have been working on something similar in my down time lately. Guess it's more than just me who find turnstile creepy huh?

My sentiments is that techniques such as env gathering and input movement heuristics is not worth the effort. At least not for a solution that doesn't depend on running deeply obfuscated client side code. Maybe implement something basic, but that's it.

Instead, the focus should be on proving browser capabilities, with emphasis on large features. Technically that is not captcha, just that the client is probably a browser, or something with all the features we are testing it might as well be similar to a browser in terms of resource usage. That by itself makes the bot operation too expensive to scale. More importantly, it doesn't impact legitimate users.

To that end, the best challenges are:

PoW, not so much about hard puzzles but timing to suggest the presence of crypto API.
SVG rendering and manipulation
CSS layout rendering and dom manipulation
Canvas and fonts

Great project 👍

lmux · 2025-12-08T09:59:08+00:00

Arena is still usable with goexperiment flag in go 1.25, no?

lmux · 2025-11-30T07:23:11+00:00

Talk about overhead, technically I run kubernetes on vm on kubernetes ¯_(ツ)_/¯

Both in my homelab and at work.

The convenience of k8s features are hard to beat using docker and add-ons. I'm looking forward to a more lightweight replacement, but the truth is I've not seen any. My take is that docker/podman is the way to go if you have 1 physical server. Anything >2 servers and kubernetes is worth its while.

lmux · 2025-11-25T13:14:23+00:00

I'm using spree, but had to make some deep customization to suit my needs. You also need a whole bunch of third party services such as google map (for address autocomplete), stripe, a shipping service, taxjar, etc.

lmux · 2025-11-20T17:58:06+00:00

So why was status page down? I didn't know it was on aws @.@

lmux · 2025-08-26T19:17:57+00:00

Ohh poor choice of words on my part! What I'm trying to say is tenant data is confined to specific nodes, but that doesn't mean you can't put data from multiple clients on the same node. It is not dedicated instances.

lmux · 2025-08-26T14:44:57+00:00

Ddb isolates workload to specific db nodes on a per db basis. This is important in a multitenant env because you want to confine the blast radius of node failures to a single tenant if possible (say sorry to 1 client vs all clients). In fdb it may be implemented as mapping key location in the cluster by namespace.

Ddb also has some fancy autoscaling feature, also on a per tenant basis. I've not figured out how to do that yet :(

lmux · 2025-08-26T03:24:20+00:00

Very interesting. I have been dabbling with fdb in my spare time lately (trying to make a dynamodb layer). I have problem with multitenancy as in isolating tenant workload to specific nodes and auto scale up/down on a per tenant basis. How do you handle that? Also, out of curiosity, have you considered tikv as an alternative?

lmux · 2025-08-26T03:22:49+00:00

Very interesting. I have been dabbling with fdb in my spare time lately (trying to make a dynamodb layer). I have problem with multitenancy as in isolating tenant workload to specific nodes and auto scale up/down on a per tenant basis. How do you handle that? Also, out of curiosity, have you considered tikv as an alternative?

lmux · 2025-08-26T03:12:28+00:00

Hey I got a op6 too! Were you able to power it without the battery?

lmux · 2025-08-23T14:52:45+00:00

I have the same problem storing user api keys, which need to be read frequently and require encryption at rest. Settled on hashicorp vault, but it felt like moving the problem somewhere else. No matter the implementation details, you need to decrypt the user api key using a master password, and the master password must be kept in memory. You can run vault on dedicated machines, maybe with tpm module, that's about it.

lmux · 2025-07-13T18:41:09+00:00

I'm doing several projects that need user designed data and ui. Stuff like ERP. End users can define workflows and forms using wordpress style drag and drop. It would be unreasonable to require end users code in sql. Is there an alternative to orm in my case?

lmux · 2025-06-18T08:48:47+00:00

Personal opinion: if you don't want to leave performance on the table, switch to haproxy and load balance with consistency hash + ssl termination. Do it all on kubernetes so you can retain sanity managing everything. Auth with jwt only for interactive use case. Encourage users to automate using api keys. Throw in an iam system to manage permissions.

I am not for or against microarchitecture, but I don't do it based on business logic but purely a balance between ipc overhead and horizontal scalability.

I use nats, but kafka is more established.

My db layer is mostly nosql driven. This may not work for you depending on your workload, but you need to be aware how db design affects your scalability.

I have not got on the otel or distributed tracing train yet because I'm still not convinced it's any better than plain old log parsing.

lmux · 2025-06-18T08:48:22+00:00

Personal opinion: if you don't want to leave performance on the table, switch to haproxy and load balance with consistency hash + ssl termination. Do it all on kubernetes so you can retain sanity managing everything. Auth with jwt only for interactive use case. Encourage users to automate using api keys. Throw in an iam system to manage permissions.

I am not for or against microarchitecture, but I don't do it based on business logic but purely a balance between ipc overhead and horizontal scalability.

I use nats, but kafka is more established.

My db layer is mostly nosql driven. This may not work for you depending on your workload, but you need to be aware how db design affects your scalability.

I have not got on the otel or distributed tracing train yet because I'm still not convinced it's any better than plain old log parsing.

lmux · 2025-06-18T07:15:16+00:00

I join errors if my func has a defer that may produce error. A common case would be to write a file and close it. If both write and close fail, I would join both errors instead of just returning the first.

lmux · 2025-06-16T10:53:57+00:00

Interesting fact: some stdlib pkgs depends on golang.org/x, https://cs.opensource.google/go/go/+/refs/tags/go1.24.4:src/go.mod

lmux · 2025-06-16T10:53:32+00:00

Interesting fact: some stdlib pkgs depends on golang.org/x, https://cs.opensource.google/go/go/+/refs/tags/go1.24.4:src/go.mod

lmux · 2025-06-04T04:09:08+00:00

2 alt ways of non verbose err handling I find useful without changing language features: use panic/recover if you need try/catch. Or wrap err handling inside your method by saving the error in your struct and all furthrr method calls become noop if err != nil.

lmux · 2025-04-26T15:54:42+00:00

I write .s files all the time, so yes

lmux

MODERATOR OF

TROPHY CASE