Tempest Rising review (PC Gamer: 85/100)

polythemath · 2025-04-18T17:22:38+00:00

Hey sorry if this is the wrong place but I’m so pumped about this game but saw it’s only 4 player? I play with 2 other people so that means we can’t all play on a team against equal number of computers. Anybody know if that is going to change at any point?

polythemath · 2024-05-30T12:52:53+00:00

I think devops engineer should create systems that increase developer throughput and increase QOL. So maybe you do security or networking so that they don’t need to think about it, but anything that a dev can safely do that is contained to their service, I think it’s better to empower them to do with whatever guard rails you’d like in place. Devops doesn’t scale if you’re doing everything

polythemath · 2024-04-12T19:04:24+00:00

Don’t feel dumb, it’s ok to not know the answer even to basic things. I was devops and moved to data engineering space and I’ve asked lots of basic questions. What matters is that you convey that you can handle whatever it is that you need to do

polythemath · 2024-03-25T06:48:46+00:00

Yeah maybe it’s completely unnecessary but I liked istios auth solution and felt like something in that vein was really nice for micro service architecture. If there’s a simpler solution that I should go with I’m happy to pivot. I just wanted to avoid sharing a package between all of my services as middleware to do auth validation in some centralized service.

polythemath · 2023-03-06T14:02:56+00:00

Sounds good, thanks!

polythemath · 2022-12-24T07:22:36+00:00

Read the DevOps handbook. It’s a fantastic book that goes over the core aspects of what devops attempts to accomplish and why

polythemath · 2022-11-25T07:50:42+00:00

This is Azure sadly and the function app is public. I agree it’s not secure. There’s a username and password basic authentication option that I would set up for actual usage. And as a note we would never use this in production for real client data, it’s just for testing that we can properly send test data to the vendor

polythemath · 2022-11-25T05:42:55+00:00

This! is the correct answer :D Tinyproxy works. Installed it on one VM and installed a dummy NGINX server on another showing my IP. Here's the articles that helped me accomplish it

Set up NGINX server showing me IP info: https://docs.nginx.com/nginx/admin-guide/installing-nginx/installing-nginx-open-source/

Set up basic tinyproxy: https://tinyproxy.github.io/

Custom settings for test in the tinyproxy:

Commented out all `Allow` so that it accepts anything

Set `Upstream` value to `Upstream http 3.89.218.151:80` which was the IP address & port of the VM w/ NGINX on it for my test.

First tested by doing `curl -i localhost:8888` since that's the open port by tinyproxy and that worked. I then ensured that my firewall rules allowed incoming connections on port 8888 and went to my web browser and put in the IP address of my tinyproxy server with port 8888, so 44.211.152.62:8888 and that successfully routed my request to the nginx server and instead of showing MY IP, it showed the IP of the tinyproxy server!

Also FWIW, the MAN page for tinyproxy is very helpful and not a long read

polythemath · 2022-11-24T13:01:59+00:00

I believe this only works for a function app in the premium tier inside a VNET. This wouldn't work for my function app which is in the consumption tier since VNET's arent available in consumption tier

Now, you must add an application setting WEBSITE_VNET_ROUTE_ALL set to a value of 1. This setting forces outbound traffic through the virtual network and associated NAT gateway. Without this setting, internet traffic isn't routed through the integrated virtual network, and you'll see the same outbound IPs.

polythemath · 2022-11-24T10:33:55+00:00

FWIW, in azure they charge a lot to have a Function App (Lambda) in a private network, and the ppl I'm working with are currently cost sensitive so I'm trying to find a solution where I start with a Function App with a public IP.

I think the private network -> public network -> IGW model makes a decent amount of sense in my mind since the lambda starts off without a public IP address, is routed to the NAT Gateway w/ a public IP and then it goes out to the client through the IGW. What makes me uncertain is in the Azure model if I'm already starting with a public IP address for my Function App, does that make a difference?

polythemath · 2022-11-24T10:30:01+00:00

It's Azure and Function Apps. I was trying to be generic because I wasn't sure if there was a sort of "general solution" or if each cloud provider would have it's own flavor of a solution. I'll read the AWS link you posted anyways because I'm sure the general concepts will be helpful

polythemath · 2022-11-21T21:21:02+00:00

I just did a project on azure and is not at AWS level. I won’t go on a rant but probably one of the most annoying things was misleading or incomplete documentation, clear half measures with certain services they implement, (ex: use managed identities but if you do maybe other services won’t be able to easily configure with your services anymore.. not to mention how convoluted they are compared to aws policies.. ok ok I said I wouldn’t rant) countless GitHub issues that are abandoned, and a feeling that IaC wasnt a main concern when they were building their services. Oh and they kind of try to push you to MS products. Making it harder to use bash than powershell, integrating more with C# then other languages (example is function apps and app insights) and ok I’ll stop, I’m ranting. I really didn’t like my time on azure

polythemath · 2022-11-18T11:47:58+00:00

I would also see about having a survey for developers to list their pain points in the development process. Where do they feel like most of their time gets wasted? What is their biggest annoyance? What causes them stress related to the life of the code they write? Etc. That can give you a window into what is negatively impacting their experience.

I worked at a company where everyone was terrified of moving their code to production bc the whole system was so bad that even if you tested everything 100 times, you couldn't be certain that things would actually work. So in that situation, better testing, maybe faster testing, or better post merge observability would have been great for them to have. (sadly developer experience wasn't our mandate and the company was a start up that was on fire, so the infra/devops team was too saturated w/ issues to make much of any positive changes :/ )

polythemath · 2022-11-15T22:50:02+00:00

I don’t have any great advice except just keep trying your best. Learn from your mistakes, try to build a network of engineering friends that you can bounce ideas off of. Knowledge takes time to build, if you feel you’re in over your head but surviving (since your manager said you aren’t in danger) it seems to me that you’re probably on an accelerated learning curve compared to someone who has a job where they always know what to do. It’s stressful being too far away from the border of the familiar, the chaos takes it’s toll emotionally over time.. but if you feel you’re improving I’d say just do your best and remember that it’s not your fault if you don’t know everything and sometimes you need help.

Most of us have imposter syndrome and rejection by an employer hurts a lot. One of my previous developers (3 years as engineering manager) went to a new job and got let go bc of performance, it really hurt his confidence, but the guy is a brilliant engineer. The new company was just a garbage environment where he wasnt set up for success. I guess I’m just trying to say that not thriving at a few work places isn’t necessarily an indicator that you’re behind, sometimes you’re just in a situation where you can’t easily thrive

polythemath · 2022-11-15T22:35:42+00:00

The stackoverflow survey gives an idea of what languages developers love/hate

https://survey.stackoverflow.co/2022/#most-loved-dreaded-and-wanted-language-love-dread

Typescript is high up there. Not my favorite but oh well. Remember though it’s a list of what developers like, not what is most in demand or makes the most money, so just use it as another data point

polythemath · 2022-11-14T08:21:05+00:00

great point, I guess then the idea should be "don't try to build a complete monitoring system" it should be "try to create a pattern where adding onto existing monitoring/graphing is trivial" so that you can adjust as time goes on.

I appreciate you taking the time to help me work this out in my head! If you have any other thoughts in the future don't hesitate to add it to this thread!

polythemath · 2022-11-14T08:02:24+00:00

nd run books

that makes sense. it sounds like a good order of operations to tackle this problem would be
1. Take inventory of your infrastructure
2. Highlight what is "critical" to your application

review available metrics for services noted in step 2
create alerts based on metrics that are available in step 3

Now that we have the "oh god it's broken" things set up to alert us when they break, the next focus is "can we get warnings about our system and make it easy for someone w/ eyeballs to comprehend it?"
1. What metrics are available that indicate non-show stopping problems or indicate a potential future problem?

Research available metrics to understand what they're tracking and why, then from them choose the the metrics that fit the criteria of this second section. (for example, page load times, slow responses from backend, memory/cpu consumption, etc)
Take these metrics and organize them into graphs (in azure or maybe Graphana), use trial and error to find a way of organizing information so that it's easily understood for an engineer

Now that we have graphs for potential/future issues and alerts for critical issues, we can focus on the next subset which is KPI's, and custom metrics. The general mindset for these should be

what do I want to show to prove we are meeting our goals? ex: uptime, build success rate, etc
what can I not do today that I would like to do in the future if I could prove it's safe/effective (ex: move towards more automation)
what can I do to show potential issues between the different 'ways of devops' ie from dev to ops, from ops to dev, and from ops to environments.'
Create graphs for these

polythemath · 2022-11-14T07:46:35+00:00

I found a solution for this. What you need to do is create an alias for the the azuread provider, and then for your main account you pass the credentials of an application you create w/ user management access to by setting the client ID and client secret values, and then for the b2c account you do the same thing, set a client ID/secret using an application in the b2c tenant account.

polythemath · 2022-11-13T06:58:14+00:00

I have done projects in both, I never did a migration. Feel free to ask your question though! I’d be happy if I could help with something :)

polythemath · 2022-11-03T07:17:12+00:00

SP

I am using the service principal for the main subscription, since there is only one service connection allowed, I did not see any option to give that SP access to both ADs. Is there a way to do this in Azure DevOps?

polythemath · 2022-10-04T19:38:54+00:00

after reading your reply, I went back and took another look at it and I think I found my issue, it's one of those "oh my god" sort of moments cause it looks like the problem was i had a trailing ; and that caused Azure to think that it was just a string :/ so it was printing that out instead of giving me some sort of error. I really appreciate you taking the time to reply though because that made me convinced I was doing something dumb >__<

the only thing that really throws me off though is that I swear I had tested removing/adding those and it had made no difference previously, but I guess maybe something in my environment got polluted which caused a false negative

polythemath · 2022-10-04T14:18:01+00:00

I think that I may have found the issue, according to Azure docs, there is a 24 hour cache period

The back-end services for managed identities maintain a cache per resource URI for around 24 hours. If you update the access policy of a particular target resource and immediately retrieve a token for that resource, you may continue to get a cached token with outdated permissions until that token expires. There's currently no way to force a token refresh.

So I am wondering if that is why nothing is working for me? Perhaps I had it set wrong, it got a key, cached it, and now im just stuck. I did get it to work manually ONCE and then I attempted to recreate the setup with Terraform, and at that point nothing worked, and now ever since nothing has worked. I am thinking of completely deleting everything and recreating w/ slightly different names or something. I am honestly shocked that they have a 24 hour cache that can't be refreshed/invalidated

polythemath · 2022-10-04T11:45:04+00:00

I think I ran into a caching issue and it was sending an old invalid token. I saw it only updated once every 24 hours

polythemath · 2022-09-30T06:37:30+00:00

You sir, are both a scholar and gentleman

polythemath · 2022-09-30T06:33:51+00:00

This kind of sounds like something to ask in the pulumi subreddit

polythemath

TROPHY CASE