• 0 Posts
  • 16 Comments
Joined 1 year ago
Cake day: September 26th, 2023
  • ____@infosec.pubtoSelfhosted@lemmy.worldWhy do so many people use NGINX?English
    13·
    2 months ago

    Right there with you on “just works,” as well as the simple fact that the config snippets you need are readily available - either in the repo of whatever you’re putting behind the proxy, or elsewhere on the internet.

    I consistently keep in mind that it’s ultimately an RU product, of course. But since it’s open source and changes relatively infrequently, that’s mitigated to a large degree from where I sit.

    Nothing against Caddy, though Apache gets heavy quickly from a maintenance standpoint, IMHO. But nginx has been my go to for many, many years per the above. It drops into oddball environments without having to rip and tear existing systems out by the roots, and it doesn’t care what’s behind it.

    Ages ago, I had a Tomcat app that happened to be supported indirectly by an embedded Jetty (?) app that didn’t properly support SSL certs in a sane way on its own.

    That was just fine to nginx and certbot, the little-but-important Jetty app just lived off to the side and functionally didn’t matter because with nginx and certbot, nothing else gave a crap - including the browser clients and the arcane build system that depended on that random Jetty app.

  • ____@infosec.pubtoUnited Kingdom@feddit.ukDWP told to pay £50,000 to Deaf job-seeker after repeated failure to provide BSL interpreterEnglish
    1·
    3 months ago

    Entirely valid question, that as a USian, I might just be qual to answer. The ratio between them varies by individual, but it boils down to a core American exceptionalism that’s taught actively from very young; some ridiculous blather about how having founding docs / written constitution makes our rights safer even in context of significant social change; and my personal least fave, the idea that if one didn’t directly and proximately earn something through capital or wage slavery, they just aren’t working hard enough and therefore shouldn’t have it.

    Those things are at the core of a very large group of American voters’ opinions, and all are fatally flawed.

    Of course, as a child of the very early eighties, growing up it was still (at least conceptually) possible to buy a house and a car on one income, within relatively recent history. As it absolutely should be.

    Kicking that exceptionalism thought process is quite the struggle (as is the rest), even for those motivated to do it.

    Civilised world has mostly lower paid docs (relative to us) but also mostly some sort of universal care. I’d gladly accept NHS-level wait times, if it meant that I could take the $2k a month that my emp and I together now pay for insurance (just 2 adults) - even if taxed to support that sort of system, that is real money.

    Things are bettter than they were in my lifetime, even though ObamaCare was basically a typical American “personal responsibility” solution, just with subsidies to avoid actively excluding only the less financially well off.

    Used to be that you had to have continuous coverage in order to get a new cost, or pre existing conditions weren’t covered under a newer policy even if one could buy one privately (you really couldn’t, practically).

    Healthcare before ACA was a sanctioned and mostly very profitable betting operation for large carriers because the risk pool for each individual policy was large, and there were max amounts and sometimes lifetime total limits that could be paid.

    By comparison, what we have is pretty great for folks who lived thru that era, but… Hot garbage compared to many other developed nations.

    We’re a nation full of people literally trained to think our system is the best in the world. Helluva barrier to overcome, all the more so when the ACA did actually make things better.

    Mild sidetrack but the only reason to assume by default our system might be better is the education (indoctrination) we receive early and often, and consistently.

    Always appreciate a comment that makes me question why/how I made some assumption.

  • ____@infosec.pubtoUnited Kingdom@feddit.ukDWP told to pay £50,000 to Deaf job-seeker after repeated failure to provide BSL interpreterEnglish
    1·
    4 months ago

    Things are no better stateside. To get social security disability takes years, and a lawyer who will take a portion of your back pay settlement when finally awarded.

    And of course one can’t be earning money during the process.

    Even with private short term disability coverage through employer, while it was more efficient than that, I still barely had the strength to get through it just to get partially paid for 10 hrs a week for a few months, in hopes that I can regroup, get things back together, and be able to make it through forty hour weeks.

    Since that’s an external company, and our HR and payroll is a different external company, now I have to stay on the latter to make sure a) they get the memo and b) I actually get the pay in question.

  • ____@infosec.pubtoOpen Source@lemmy.mlGermany's Sovereign Tech Fund Now Supporting FFmpeg
    2·
    4 months ago

    It’s amazing how many companies rely on a crazy amount of FOSS libs, etc.

    In the relatively recent past, a boss who I had software PMd for across numerous years had the unmitigated gall to ask me for a list of licenses for “all the software we used.”

    I literally laughed in his face, explained open source and the rabbit hole such a question goes down, and he just couldn’t (wouldn’t) get it.

    Unfortunately, the biz side of the house doesn’t like “yeah, it’s all legal, but fuck you if you think I’m documenting every piece of code in every library in a ten plus year old code base, allllllll the way down.”

  • ____@infosec.pubtoUnited Kingdom@feddit.ukBritish tech firm Raspberry Pi lines up £500m floatEnglish
    4·
    4 months ago

    On one hand, I’m a fan of the ESP32 as a challenge.

    OTOH, sometimes you actually need a full fledged computer for your semi embedded task, and sometimes you just don’t want to (or can’t be seen to, from PR standpoint) support Beijing.

    While arguments can be made either way about the prior para, from a biz POV, it’s pretty binary.

    Would love to find similar platforms that don’t involve those concerns and might theoretically be commercializable by hackers, but I’m not aware of many.

  • ____@infosec.pubtoSelfhosted@lemmy.worldSelf-hosted website for posting web novel/fictionEnglish
    2·
    4 months ago

    Not aware of a FOSS 1:1, but that sounds like Ghost or your blogging platform of choice.

    Except WP, if self hosting, IMHO. Wordpress == PHP == trouble and risk. I don’t mean to malign WP specifically, but if you’re a noob, you want to avoid exposing PHP to the public internet - especially if there’s any possibility you’ll eventually forget about maintaining and upgrading.

    Just too damn easy for some threat actor to come along and exploit a vuln you missed, in the software or the web server or WP.

    That said, years of WP taught me that, roughly, you want “pages” linking to “posts” ( == chapters). In theory, the former is a permanent reference and the latter is dynamic to some degree.

    In reality, the existence of search engines before enshittification means the two have been conflated frequently.

    Pages would often get links in a sidebar or menu. Posts might get buried much farther down, but can also be linked to. They’re often, but not always, time—specific.

    “2023 NY [financial product] Guide” (page) might well link to a years-old post about subrogation regarding an attempted BBQ of a random wild animal that went wrong and caused a fire, because it’s a positively classic example of the same that makes a great deal of sense to most people, even if they don’t understand terms like subrogation.

    Post/page are distinctions that WP makes, but are abstractly relevant to setting up abs any CMS (which is what you want, Content Management System) so that you (ideally) never have to figure out how or where to link something, its just native. Changing the structure means changing the URLs which is annoying at best, and fraught with peril at worst.

    Above 2023 xxxx Guide page, would be https://example.org/NY-Xxxx-Guide and that way you DGAF about the sidebar links, for instance. Link it once, and then you only have to update 50 posts with the year and/or some change in the data, which can be done programmatically in the db as a trivial exercise. “UPDATE page SET title = (SELECT title FROM… WHERE ‘2022’ in title TO ‘2023’;”

    Disclaimer: do not run that query as copypasta, it’s meant to illustrate a point and not to exhibit valid SQL on any db (Not least because I intentionally left out at least one closing paren and simplified a bit. I’m a PG guy, and I am 100% certain it would fail as written, but fully expect anything approaching the standard to reject it. But you get the idea, update 50 states at once with a fairly simple query, once a year.

    Lots going on here, but go for a modern CMS and repeatable updates, not a legacy product with a bunch of tech debt accumulated. Build it clean, plan it out first, and know whatever DB is backing it fairly well.

  • ____@infosec.pubtoSelfhosted@lemmy.worldCustom Domain EmailEnglish
    5·
    5 months ago

    Migadu has been amazing. It “”just works,”and there’s no reason to deal with any of the crap that comes with hosting email.

    They are affordable, and provide exactly what they claim to provide.

    Email is not - IMHO - worth the trouble to self host. There are too many hard stops where email is required as login, etc to bother.

    I enjoy hosting and using a variety of services. But I’ve no desire to bother with something I can ship out to folks who live and breathe that particular service.