Go with pachanka...

My fortune today

This product is meant for educational purposes only. Any resemblance to real persons, living or dead is purely coincidental. Void where prohibited. Some assembly may be required. Batteries not included. Contents may settle during shipment. Use only as directed. May be too intense for some viewers. If condition persists, consult your physician. No user-serviceable parts inside. Breaking seal constitutes acceptance of agreement. Not responsible for direct, indirect, incidental or consequential damages resulting from any defect, error or failure to perform. Slippery when wet. For office use only. Substantial penalty for early withdrawal. Do not write below this line. Your cancelled check is your receipt. Avoid contact with skin. Employees and their families are not eligible. Beware of dog. Driver does not carry cash. Limited timeoffer, call now to insure prompt delivery. Use only in well-ventilated area. Keep away from fire or flame. Some equipment shown is optional. Price does not include taxes, dealer prep, or delivery. Penalty for private use. Call toll free before digging. Some of the trademarks mentioned in this product appear for identification purposes only. All models over 18 years of age. Do not use while operating a motor vehicle or heavy equipment. Postage will be paid by addressee. Apply only to affected area. One size fits all. Many suitcases look alike. Edited for television. No solicitors. Reproduction strictly prohibited. Restaurant package, not for resale. Objects in mirror are closer than they appear. Decision of judges is final. This supersedes all previous notices. No other warranty expressed or implied.

this is going to be a rough week fortune linux

en.wikipedia.org

Tarasque

zoocryptology tarasque

Any application that can be written in JavaScript, will eventually be written in JavaScript.

Atwood’s Law, proposed as a corollary to Tim Berners-Lee’s Rule of Least Power.

Source: Wikipedia Jeff Atwood Atwood's Law Principle of Least Power javascript

developers.google.com

Using JavaScript modules on the web

Bundling is the future.

If you are using ~300 modules and 8 frameworks do do:

var content = sel = false;
window.setTimeout(function(){
  if(content) UpdateDom(sel, content);
},50);
function UpdateDom(sel, content){
  document.querySelector(sel).innerHTML = content;
}

javascript bloated web

Node is fun, flashy and terrifying.

Edit: This morning I managed to get it all down to only 1 fixable vulnerability by setting:

? Set up unit tests: No
? Setup e2e tests with Nightwatch? No

Still, I think I’ll keep this on the dev-box until I’m reasonably certain I can control this beast.

Why not check out vuejs I thought… I’m new to all this server side JavaScript. But it sounds like fun, so lets see…

Hmmm… I just did an npm install fresh outta the box after installing some Vue.js prefabricated stuff ($ vue init webpack project_name) and my cmd spit out this:

added 1513 packages from 1798 contributors and audited 12011 packages in 33.859s. found 21 vulnerabilities (11 low, 1 moderate, 7 high, 2 critical) run "npm audit fix" to fix them, or "npm audit" for details

Neat!! 1513 packages! Wow. Thats a huge amount of Open Source spagetti. We are legion! We are NPM!!

These smart guys in the JS community, they have a command to fix vulnerabilities!

I don’t know how that would work, but I commend you brave anonymous programmer!

Wait… 2 Critical out-of-the-box security vulnerabilities? Ok, so npm audit fix it is… Now what?

fixed 0 of 21 vulnerabilities in 12011 scanned packages 4 package updates for 21 vulns involved breaking changes (use "npm audit fix --force" to install breaking changes; or do it by hand)

Umm, ok… npm audit then.

# Run npm install --save-dev nightwatch@1.0.6 to resolve 6 vulnerabilities SEMVER WARNING: Recommended action is a potentially breaking change

Meh. Breaking sheaking… lets do this!

npm install --save-dev karma@2.0.4

Six down, and only 15 vulnerabilities left…

npm install --save-dev url-loader@1.0.1

14… At this point the --force option is starting to look tempting. No. Can’t let the machine win on the dev box, this is my turf dammit!

I head over to the docs and see:

To address the vulnerability, you can

Check for mitigating factors
Update dependent packages if a fix exists
Fix the vulnerability
Open an issue in the package or dependent package issue tracker

Ok… lets try the first one. What does this say:

Affected versions of growl do not properly sanitize input prior to passing it into a shell command, allowing for arbitrary command execution.

What? arbitrary command execution?? No, no, fuck that. Jesus… I tried updating the package to the latest version. No fix.

So fix it myself? On my first day on the job?.. What the heck, lets see. The node page says …

1,217,161 downloads this week. Nope. I’m not up to that amount of crazy. Normal crazy maybe. But this is one million two hundred thousand crazies. Nope, nope. No.

Right. Maybe I try Rust next time. I hear the rust-todoMVC is lovely this time of the year.

node nodejs npm security npm audit panic at the dev box javascript vuejs

eventbrite.github.io

Britecharts, a D3.js based charting library of reusable components

Britecharts is a client-side reusable Charting Library based on D3.js v5 that allows easy and intuitive use of charts and components that can be composed together creating amazing visualizations.

I don’t know why Birtecharts does not get the attention it deserves. Perhaps obscured buy its sister lib C3, britecharts is a great option.

Non D3 options for chart libs include Chartist, and Chart.js (I like chartjs a lot). Which can avoid the overhead if you are not already using D3.

resource d3 charts graph lib statistical representation javascript

pimylifeup

pimylifeup.com

Installing Gitea on the Raspberry Pi

All the steps to setting up Raspberry Pi Gitea.

pachanka

Ooh, just what I’ve been looking for. Gitea looks promising.

git gitea versioning howto tutorial raspberry pi

tumblr.zendesk.com

Export your tumblr blog

You can export of all of the content you’ve posted to your blog, and we’ll package it up into a convenient ZIP file for you to download. To start the process, go to your account settings on the web...

I’m a big fan of backup.

resource backup tumblr

Source: twitter.com net neutrality comcast lies more than the weatherman

914a3bcc2

ffactory:
“James Benning, List of Meanings; code used by Ted Kaczynski in his journals, originally written in the 1970s
”
Here it is in a convenient JS object.

Source: museum-joanneum.at js number code code cryptography Unabomber

medium.com

Downloading the profiles of everyone on LinkedIn who works for ICE

As ICE continues to ramp up its inhumane surveillance and detention efforts, I believe it’s important to document what’s happening, and by…

Sam Lavigne

So many happy faces.

data resource site scraping

Source: twitter.com infosec humour

beemill

freebsdfoundation.org

June 19 is FreeBSD Day!

We’re pleased to announce that June 19 has been declared FreeBSD Day. Join us in honoring The FreeBSD Project’s pioneering legacy and continuing impact on technology.

beemill

What is FreeBSD

FreeBSD is an open-source operating system developed out of the University of California at Berkley in 1993. Used by billions of people around the globe, FreeBSD is used to teach operating system concepts in universities. Companies also develop products on FreeBSD, and universities use it as a research platform.

In fact, there’s a good chance you’re already using at least some code derived from FreeBSD in your everyday life. For example, if you stream movies via Netflix, chat with friends on WhatsApp, or play the latest PlayStation 4 game sensation, you’re already using FreeBSD.

As a pioneer in open-source technology, FreeBSD can be modified and redesigned to meet the needs of the user, free of charge within the guidelines of the license.

Why June 19th

June 19, 1993 was the day the official name for FreeBSD was agreed upon. See part of the email thread here.

Help Us Celebrate

If you love FreeBSD as much as we do, help us celebrate 25th anniversary of your favorite open source operating system by doing the following:

Introducing someone to FreeBSD or hosting an Installfest with your local meetup group
Helping to promote the day by printing and distributing the poster.
Sending us stories of how your company uses FreeBSD to great success
Telling us why you love FreeBSD using #FreeBSDDay on your Facebook, Twitter, and Instagram posts
Consider donating to the Foundation to help us continue our support of the Project

Slides and materials for hosting a FreeBSD installfest can be found here.
From TrueOS to FreeBSD on Virtual Box to Installing Ports, you can find a number of how-tos here.
Read more about the history of FreeBSD here.
Check out the list of companies using and products based on FreeBSD.

We look forward to commemorating the 25th anniversary of our favorite open source operating system on June 19, and we hope you’ll join us!

FreeBSD Berkley

Bill Joy's greatest gift to man – the vi editor

Linux Mag then asked:
So you didn't really write vi in one weekend like everybody says?
Bill Joy:
No. It took a long time. It was really hard to do because you've got to remember that I was trying to make it usable over a 300 baud modem. That's also the reason you have all these funny commands. It just barely worked to use a screen editor over a modem. It was just barely fast enough. A 1200 baud modem was an upgrade. 1200 baud now is pretty slow.
[...]
It was a world that is now extinct. People don't know that vi was written for a world that doesn't exist anymore - unless you decide to get a satellite phone and use it to connect to the Net at 2400 baud, in which case you'll realize that the Net is not usable at 2400 baud. It used to be perfectly usable at 1200 baud. But these days you can't use the Web at 2400 baud because the ads are 24KB.

Source: theregister.co.uk vi vim Bill Joy Berkley Unix history

github.com

dbrgn/orochi

orochi - Orochi is an interactive command line client for 8tracks.com.

I’ve found a way to have 8tracks without having to deal with their site… Life has never been better.

command line 8tracks resource

daily-klingon

Plans For July

I have plans for the month of July. Watch this blog.

plans

See, that’s what the app is perfect for.