Me ha encantado ☺️

I share a simple API template with Clean Architecture using #flask and #fastapi
https://git.andros.dev/andros/api-template-with-clean-architecture
#cleancode #cleanarchitecture

A random suggestion. You should add a password to your private ssh key. Why? If someone steals your key, they won’t be able to do anything without the password.
You should run: ssh-keygen -p
And remember to make a backup copy of key file. As a developer, it is a one of the most valuable files on your computer.

#FridayReads #Lamego #25Abril

#bookstodon

Image

I fell asleep again during snoozing, and started dreaming intensely. My own mind woke me up in time by setting everything I loved on fire within my dream. That jolted me awake alright.

hey wats up

1. Make sure the machine is off. ✅ (confirmed via remote IPMI)
   
2. Unplug the power cables.
   
3. Unrack the machine.
   
4. Bring to office bench.
   
5. Unscrew the cover.
   
6. Plug in a new SATA DOM on a spare SATA cable.
   
7. Boot a bootable Live Linux Rescue system
   
8. Login and confirm both SATA DOM(s) are visible
   
9. Use dd to copy the contents of the old SATA DOM to the New.
   
10. Power off
    
11. Remove old SATA DOM
    
12. Confirm the machine comes back in it’s original state.

Took today off work. My workplace has a special form of leave called “My Day” that you can take in addition to your usual Annual leave. So nice! 😊 I’m using one of them today to take advantage of the long weekend coming up (Australia Day). Planning on making repairs to one of my Hypervisor nodes that is currently down and powered off for repairs. The SATA DOM (Disk on Module) boot disk is kind of dead and the controller refusing to take any new writes. It’s about ~5 years old 🤣

Plan is to take the machine out of the Rack, place it on my office desk to open it up. Plug in a new 2nd SATA DOM on another SAtA cable. Boot it back up with a Linux Rescue bootable ISO and do a dd of the old to the new. Then swap ‘em around and hope 🤞 for the best 😅

A QR code that sends you to a different destination – lenticular and adversarial
Article URL: https://mstdn.social/@isziaui/113874436953157913

Comments URL: https://news.ycombinator.com/item?id=42809268

Points: 500

# Comments: 69 ⌘ Read more

On my blog: Real Life in Star Trek, Chain of Command, Part 1 https://john.colagioia.net/blog/2025/01/23/chain-command-1.html #scifi #startrek #closereading

@movq@www.uninformativ.de Progress! They could be at your door any second now. ;-)

@movq@www.uninformativ.de That’s cool! :-)

@movq@www.uninformativ.de Docker Swarm to the rescue! 🤣

So am I 🤣

¿Cuál es el propósito de la lectura?
https://text.eapl.mx/cual-es-el-proposito-de-la-lectura

@xuu@txt.sour.is I’m innocent!

Thank HN: My bootstrapped startup got acquired today
Hello HN,

I’m Paras Chopra, founder of VWO. We’re an A/B testing platform that was born here as a Show HN in 2009: https://news.ycombinator.com/item?id=876141

Today, I sold the company to a private equity firm for $200mn.

It’s covered on TechCrunch: https://techcrunch.com/2025/01/23/everstone-acquires-bootstr…

I was a … ⌘ Read more

@movq@www.uninformativ.de Have the workers even arrived yet?

@arne@uplegger.eu Unzählige Stellschrauben hab ich auch noch vor mir. Ich will gar nicht dran denken. :-D

@prologic@twtxt.net @lyse@lyse.isobeef.org it seems a recent update reset my pod settings to open registration.

Para a #musiquinta com o tema “Pedra na PM”, um clássico que marcou uma geração- pelo menos pelos meus lados:

https://youtu.be/lCg2tvCqrog

https://pt.wikipedia.org/wiki/Pol%C3%ADcia_(can%C3%A7%C3%A3o)

The T on the cars made by the car manufacturer lead by E Musk really stood for Trump all along

Got my teeth cleaned professionally today and I am still feeling it. Recommendation is that I use an electric toothbrush… Health over sustainability I suppose.

Predicting what is to be expected in about four years in the USA : there is no way in Hell where Trump will allow any form of return to the way it use to be before he took hold of the country. He will let other people die to make sure his regime will stay on for as long as at least he lives.

@doesnm@doesnm.p.psf.lt It stores it in the devices secure store, whatever that is on the device. It’s different for Android and iOS.

Interesting where Goryon saves current logged account? Because if i kill app it will logout me :(. Save i noticed with IndiePass but it logout me in random moment (or maybe same after killed)

@birb@birb http://shifter.pt

👋 Hello @emily0824@txt.sour.is, welcome to txt.sour.is, a Yarn.social Pod! To get started you may want to check out the pod’s Discover feed to find users to follow and interact with. To follow new users, use the ⨁ Follow button on their profile page or use the Follow form and enter a Twtxt URL. You may also find other feeds of interest via Feeds. Welcome! 🤗

I’m snowed in. Well, not really, but there are no snow plows here and the roads are icy.

Für heute reicht es dann auch mal. Neue Funktionen:

• Login-Bereich
  
• Wechsler zwischen Zeitachse und Unterhaltung
  
• Paginierung nur noch, wenn benötigt
  
• Twtxt-Parsing optimiert (Parser-Plugins für: Youtube, iFrames, Bilder, Erwähnungen, kaputtes HTML, …)
  
• unter der Haube aufgeräumt
  

Die bisher verwendeten ext. Bibliotheken sind:

• josantonius/session - Sessionverwaltung
  
• typo3fluid/fluid - Templating
  
• phpfastcache/phpfastcache - Caching
  
• erusev/parsedown - Markdown

@dfaria.eu@dfaria.eu Farewell! 👋

@lyse@lyse.isobeef.org Danke! Ja, es gibt noch unzählige Stellschrauben an dem Ding. Deine Anmerkungen werde ich einarbeiten. Eine mobile Ansicht wär auch noch schön. Derzeit sitzt es auf dem Smartphone doch noch recht stramm.

@Unterhaltungen: Die von gestern zu verschlüsselten Nachrichten war ausschlaggebend für die Umsetzung. In “Timeline” und “Yarn” haben mich die Lösungsansätze bisher nicht überzeugt. Aber wir können ja alle etwas von einander lernen.

@arne@uplegger.eu Uuuuhhh, das fühlt sich klasse an, gute Arbeit mein Lieber! :-)

Besonders positiv hervorheben muss ich die Rohdatenansicht. Sowas hab ich mir auch schon in der Vergangenheit hin und wieder gewünscht. Wie toll es doch wär, direkt den Eintrag im Original zu sehen, ohne erst im Feed mühsam auf die Suche gehen zu müssen, was auch noch einen Wechsel auf den Browser oder den Editor erzwingt. Das werd ich mir definitiv auch einbauen. Insbesondere für die Entwicklung absolut hilfreich. Die Textarea könntest Du noch mit einem readonly-Attribut ausstatten.

Die Gesamtbaumansicht einer Unterhaltung gefällt mir ebenfalls. Davon bin ich ja ein großer Verfechter. Nicht nur die direkten Antworten zu sehen, sondern alle. Klar, bei tief verschachtelten Unterhaltungen und sehr langen Beiträgen verliert man da doch mal den Überblick, aber die kommen in der Praxis meiner Erfahrung nur selten vor.

Die zwei Elemente in der Fußzeile eines Beitrags würde ich auch noch versuchen in die Kopfzeile zu verschieben, dann wird die Darstellung insgesamt kompakter, gerade bei Unterhaltungen könnte das von Vorteil sein.

Weiter so!

@lyse@lyse.isobeef.org Du kannst selbst gern mal im TwtxtReader-Dummy herumklicken. Da ist natürlich alles auf meinen Feed eingestellt.
Bildschirmfotos wirken irgendwie nicht.

@arne@uplegger.eu Klingt gut, Du darfst uns gern mal ein paar Bildschirmfotos vom aktuellen Stand zeigen. :-) Die erste Aufnahme sah bereits recht aufgeräumt aus.

Ich müsste auch endlich mal an meinem Client weitermachen. Aber heut nimmer.

@arne@uplegger.eu Ahja, danke für die Erläuterung! Einrückungen waren meinem Parser tatsächlich egal, der dürfte einfach ein trim() angewendet haben, bevor sich die Zeile zur näheren Verarbeitung angesehen hat. :-D

@movq@www.uninformativ.de It says F=700, D=70 and RK=20. I have to research what magnification that translates to, a few days have passed since physics class. Your Celestron Ultima 100 looks much more high quality than this thing.

@movq@www.uninformativ.de Großartig! :-D

What about this nice new neofo - here’s some info about how to keep your hair scurf-free! - lk record?

#Videoclips used to be promotional tools, a way for an artist or band to promote their music. Now you cannot see one without being interrupted in the middle so the platform it was published on can serve you an ad promoting something else…

With politicians now finally realizing the perils of having main social media controlled by millionaires, perhaps now it is a good time to promote #fedigov again:

https://fedigov.eu/

Are you in touch with politicians? If so, you might want to send them this link!

Mastercard DNS error went unnoticed for years
Article URL: https://krebsonsecurity.com/2025/01/mastercard-dns-error-went-unnoticed-for-years/

Comments URL: https://news.ycombinator.com/item?id=42793783

Points: 500

# Comments: 151 ⌘ Read more

squirrel report: my tan-ear-tuffed friend has survived the -25 degree cold days, to my relief

Die Bastelei am TxtwtReader geht gut voran. Neben diversen Filtern und Ansichten werden Unterhaltungen nun schön strukturiert angezeigt. Jetzt müsste ich mich auch mal um das Verfassen von Einträgen kümmern. Wenn ich mit dem Projekt zufrieden bin, lasse ich es vielleicht auch auf die Welt los. #OpenSource

👋 Hello @empockelimi@txt.sour.is, welcome to txt.sour.is, a Yarn.social Pod! To get started you may want to check out the pod’s Discover feed to find users to follow and interact with. To follow new users, use the ⨁ Follow button on their profile page or use the Follow form and enter a Twtxt URL. You may also find other feeds of interest via Feeds. Welcome! 🤗

@aelaraji@aelaraji.com I’ve been noticing the same, so I opened an issue now (https://github.com/sorenpeter/timeline/issues/55) and then we will have to look into it.

Tang Console: Compact FPGA Platform for Development and Retro Gaming
Sipeed has recently launched the Tang Console, described as a compact FPGA platform designed for developers and hardware enthusiasts. It offers a flexible and portable solution for applications such as hardware prototyping and retro gaming system emulation. The device is available in two configurations. The 60K variant includes 60K LUTs, 468Kbit SSRAM, and 2Gb DDR3,

Toradex Adds SMARC iMX8M Plus and iMX95 to Its Embedded Portfolio
Toradex has introduced a new System on Module family to support projects requiring the SMARC standard. Featuring connectivity, advanced multimedia, and machine learning capabilities, the modules are compatible with Torizon Embedded Linux, offering long-term support and secure remote management. The SMARC iMX8M Plus incorporates four Arm Cortex-A53 cores at 1.6 GHz for general processing and

A celebração do Dia do #DomínioPúblico em #Portugal é já amanhã!

Na Biblioteca Nacional, com a @wikimediapt@wikimediapt e a @ansol@ansol, há programa para a manhã e a tarde, a participação é gratuita mas sujeita a inscrição que deve ser feita através do formulário!

https://wikimedia.pt/eventos/dia-do-dominio-publico-2025/

@prologic@twtxt.net I know! I know! 🤣 and it feels like I won’t be either, at least for a while … On the bright #Go side, I’m trying to switch everything (static web stuff and reverse-proxy) to #Caddy

@aelaraji@aelaraji.com Haha don’t ask me 🤣 I don’t do PHP 😆

May be no joke chronically ill…fascinating

Ross Ulbricht granted a full pardon
Article URL: https://twitter.com/Free_Ross/status/1881851923005165704

Comments URL: https://news.ycombinator.com/item?id=42786962

Points: 511

# Comments: 598 ⌘ Read more

Image

@lyse@lyse.isobeef.org Die meisten Hersteller von Internetradios (Sony, Denon, Marantz, …) binden einen externen Dienstleister (vTuner) fest(!) in ihre Geräte ein, damit die Nutzer sich durch eine große große Liste von weltweiten Internetradio-Stationen hören können.
Nun hat vTuner seit ca. 2020 sein Geschäftsmodell geändert. Man darf da nun für jedes Gerät (MAC-Adresse) bezahlen. Die Kosten steigen auch von $3 auf $7 pro Jahr. Die Hersteller zucken einfach mit den Schultern. Im schlimmsten Fall schaltet vTuner einfach die Domain ab und dann steht man da - wie bei mir: http://sagem.vtuner.com
Der XML-Parser von der alten Sagem-Huddel verlangt zeilenweise Einträge ohne Einzüge. Vielleicht standest Du mit Deinem Parser ja Pate!? 😉

@arne@uplegger.eu Hahaha, vor Dekaden hab ich auch mal einen „XML“-„Parser“ selbst gebaut. Der wollte dann pro Zeile entweder einen öffnenden oder einen schließenden Tag oder aber einen Wert haben. :-O Ganz übel, aber für den damaligen Anwendungsfall hat’s gelangt. War halt bloß kein XML. :-D

Was konkret war dann das Problem von dem zu sauberen XML in Deinem Fall? Und schön zu hören, dass Du das Gerät vor dem vorzeitigen Elektroschrotttod bewahrt bekommen hast. :-)

Zum Abschluss noch ne ganz doofe Frage, ganz offensichtlich hab ich von Radios keinen blassen Schimmer. Wieso muss denn das Ding überhaupt mit XML rumfuhrwerken? O_o

LECK MICH FETT!
Das Küchenradio (Sagem - My Dual Radio 700) gibt wieder Töne von sich! Der XML-Parser von dem Ding ist sowas von hinüber. Die “Fertiglösungen” YCast und YTuner haben ein zu ordentliches XML erstellt. Per Trial and Error habe ich dann die Formatierung gefunden, die die olle Kiste braucht. 🥳

@lyse@lyse.isobeef.org i trusted all pods yesterday and now when i pull it up they are all untrusted.

@xuu@txt.sour.is The Pod.LastSeen and Pod.LastUpdated fields are only ever updated in the Cache.DetectPodFromUserAgent(…) function as far as I can tell. This function is called in Cache.DetectClientFromRequest(…) and Cache.DetectClientFromResponse(…).

Cache.DetectClientFromRequest(…) is only invoked when the twtxt.txt is requested and looks at the User-Agent HTTP request header.

Cache.DetectClientFromResponse(…) is only called in Cache.FetchFeeds(…) and looks at the Powered-By HTTP response header. This header would be set in twtxt.txt HTTP responses from yarnd. A bunch of places invoke Cache.FetchFeeds(…), including a periodic job (UpdateFeedsJob.Run()). Maybe something is iffy around these locations.

@movq@www.uninformativ.de It’s an old, cheap Optus without any model information on it. It was maybe 180DM or so in a discounter 25, 30 years ago. Its main job is to collect dust, can’t even remember its last use. That must have been easily 15 years ago I reckon. Thus, absolutely no surprise. Maybe I’ll just take it apart and see what I can see as the week progresses.

did I just break something else? 😅🤣

@lyse@lyse.isobeef.org @prologic@twtxt.net 😆 There was something weird going on with my #Timeline instance, the text input box was visible even though I was logged out and I was able to twt from it … It has to do with cache because it wouldn’t disappear unless I whip my website’s cache from the browser.

Poke @sorenpeter@darch.dk and @eapl.me@eapl.me I have no Idea how to reproduce this.

I’m rather frozen after half an hour looking at Venus and Saturn through the telescope outside. I couldn’t see any rings around Saturn. Disappointing. It also appeared rather dark. The very bright Venus on the other hand told me that there is something growing inside the scope. :-( Or maybe there is dust.

@xuu@txt.sour.is I added some logging when a “dead” peer is removed as I suspect this to be a hot candidate for all the trouble. https://git.mills.io/yarnsocial/yarn/commit/21538951f9dc71b9366db6dbb784a8078096a4c8 Does this yield anything?

@aelaraji@aelaraji.com @prologic@twtxt.net Hmmm!

0-click deanonymization attack targeting Signal, Discord, other platforms
Article URL: https://gist.github.com/hackermondev/45a3cdfa52246f1d1201c1e8cdef6117

Comments URL: https://news.ycombinator.com/item?id=42780816

Points: 503

# Comments: 179 ⌘ Read more

It’s nice to see we’re all largely thinking along the same lines. e.g: Salty.im 😅

@eapl.me@eapl.me Yeah this is true. Previously RSA and AES were more common. These days Salsa and Chacha and Curve are fairly prevalent. For example all the Wireguard stuff uses Curve25519 / Ed25519 crypto. Signal uses very similar crypto too, but with some very nice double ratcheting 3DH.

@eapl.me@eapl.me I -think we’ve gotten use to it somewhat 🤣

a year ago I had a struggle to find documentation about it and now it seems there are more examples, cool!

I agree 🙂, although it’s easy to lose comments over time and are not so grouped by topic, it’s not so easy to vote or make a survey about it…

I prefer a forum for that 😊

here are a few ideas you might take into consideration when designing a secure IM https://developer.virgilsecurity.com/docs/e3kit/fundamentals/secure-instant-messaging/

Obviously if you’ve worked on something similar, you already know it, he

I made a draft of an “encrypted public messenger”, which was basically a Feed for an address derivate from the public ket, let’s say ‘abcd..eaea’

Anyone could check, “are there any messages for my address?” and you get a whole list of timestamps and encrypted stuff.

Inside the encrypted message is a signature from the sender. That way you ‘could’ block spam.

Only the owner of the private key could see who sent what, and so…

And even with that my concussion was that users expectations for a private IM might be far away from my experiment.

@doesnm@doesnm.p.psf.lt whilst technically true, expensive and unnecessary.

Again: if you can decrypt - it’s for you

It is not possible to remove it, otherwise you do not know that the message is for you. With that information you can’t decrypt.

@doesnm@doesnm.p.psf.lt I always do 👌

I updated the specification with base64, Curve25519 and more examples: https://github.com/tanrax/twtxt-direct-message-extension

Can you share summary after meeting?

@prologic@twtxt.net @lyse@lyse.isobeef.org First, please leave me your comments on the repository! Even if it’s just to give your opinion on what shouldn’t be included. The more variety, the better.

Second, I’m going to try to do tests with Elliptic keys and base64. Thanks for the advice @eapl@eapl.me

Finally, I’d like to give my opinion. Secure direct messages are a feature that ActivityPub and Mastodon don’t have, to give an example. By including it as an extension, we’re already taking a significant leap forward from the competition. Does it make sense to include it in a public feed? In fact, we’re already doing that. When we reply to a user, mentioning them at the beginning of the message, it’s already a direct message. The message is within a thread, perhaps breaking the conversation. Direct messages would help isolate conversations between 2 users, as well as keeping a thread cleaner and maintaining privacy. I insist, it’s optional, it doesn’t break compatibility with any client and implementing it isn’t complex. If you don’t like it, you’re free to not use it. If you don’t have a public key, no one can send you direct messages.

Keep breathing and stay cool.

👋👋 Reminders that this weekend our monthly Yarn.social online meetup. Who’s coming? 🤔 Some possible topics:

• Direct Messaging for Twtxt
  
• @prologic@twtxt.net ’s new EdgeGuard services 🤣
  
• What’s the weather like? 👍
  

Details:

• When: 25th Jan 2025 at 12:00PM UTC (midday)
  
• Where: https://meet.mills.io/call/Yarn.social

@eapl.me@eapl.me@eapl.me@eapl.me But we’re actively discussing on Twtxt 🤣

@eapl.me@eapl.me@eapl.me@eapl.me Agree with the base64 encoding 👌

While the US politicians and tech billionaires are going full-on fascist mode, here is a reminder that there are European alternatives for many well known digital and online services: https://european-alternatives.eu