// Good: choose between two options as appropriate (see below). import * as ng from '@angular/core'; import {Foo} from './foo'; // Only when needed: default imports. import Button from 'Button'; // Sometimes needed to import libraries for their side effects: import 'jasmine'; import '@polymer/paper-button'; Import paths TypeScript code must use paths to import other TypeScript code. Paths may be r
こんにちは佐々木です。 先日、VPCのFAQに追加された項目が話題となっていました。2 つのインスタンスがパブリック IP アドレスを使用して通信する場合、トラフィックがインターネットを経由するかどうかという問いに対して、AWSがノーと言っています。これは、どういうことなのでしょうか? これがプライベートネットワークの通信と明示された意味は大きい 『Q:2つのインスタンスがパブリック IP アドレスを使用して通信する場合、またはインスタンスが AWS のサービスのパブリックエンドポイントと通信する場合、トラフィックはインターネットを経由しますか?』https://t.co/uy26KyCZKn— Takuro SASAKI (@dkfj) 2021年4月22日 このことを起点に、インターネットとは何か、AWSのネットワークの現状について考察してみます。難しい事を言っていますが、みんな疑問に
0 issue "letsencrypt.org" 0 issuewild "letsencrypt.org" 0 iodef "mailto:yourmail@example.jp" §OS再インストール さくらVPSのコントロールパネルから、OSを再インストールするサーバを選ぶ。 www99999ui.vs.sakura.ne.jp §OSのインストール操作 Ubuntu 22.04 LTS を選ぶ。 OSインストール時のパケットフィルタ(ポート制限)を無効にして、ファイアウォールは手動で設定することにする。 初期ユーザのパスワードに使える文字が制限されているので、ここでは簡単なパスワードにしておき、後ですぐに複雑なパスワードに変更する。 公開鍵認証できるように公開鍵を登録しておく。 §秘密鍵と公開鍵の作成 クライアントマシン側で生成した公開鍵を ~/.ssh/authorized_k
「DIは必ずしも善ではない」| Dependency injection is not a virtue by DHH
DHHの Dependency injection is not a virtue(2013) という記事は有名ですが、ちゃんとした日本語訳が意外とないようなので、書き出してみて思ったことを要約してみた。[1] Rubyのエンジニアの中には、何も考えずに他のモデルのnewを書いてる人の割合が多いという(コードレビュー時のヒアリングによる)体感があり、また8年前の記事なので経験の浅い人は読んだことがない人もいると思う。該当する方は是非読んでほしい。 全部読む時間が無い人は要約へ. 原文と訳文 In languages less open than Ruby, hard-coded class references can make testing tough. If your Java code has Date date = new Date(); buried in its guts,
Understanding how Facebook disappeared from the Internet
Understanding how Facebook disappeared from the Internet10/04/2021 This post is also available in 简体中文, 繁體中文, 日本語, 한국어, Deutsch, Français, Español, Português, Pусский, and Italiano. The Internet - A Network of Networks“Facebook can't be down, can it?”, we thought, for a second. Today at 15:51 UTC, we opened an internal incident entitled "Facebook DNS lookup returning SERVFAIL" because we were worr
Sections What is time Representing time Where do we usually find time on Unix System time, hardware time, internal timers Syncing time with external sources What depends on time Human perception of time What is time Time is relative Measuring time and standards Coordinating time Time zones DST Time, a word that is entangled in everything in our lives, something we’re intimately familiar with. Keep
TL;DR can you trust every browser to generate globally unique identifiers at scale? At Teads, we have tried, and the answer is yes, with a few caveats. This article describes the experiments we’ve run and the discoveries we made along the way. Why we need client-side unique identifiersGenerating unique identifiers is a common need that third-party scripts integrated on Web pages and e-commerce sit
id:sora_h です。最近は RubyKaigi の Organizer や Wi-Fi NOC をやっていましたが… 何屋なんだろう? 一応 Software Engineer (Site Reliability, Corporate Engineering) を名乗っていますが…。あっ RubyKaigi から戻ってからは学者をやってますね。落ち着いたら本業を思い出していこうと思います。 さて、Cookpad は 2010 年より RubyKaigi に協賛していますが、近年は Wi-Fi Sponsor など*1として携わっています。実体的には、 id:sora_h (筆者) が RubyKaigi 前にほぼフルタイムで Wi-Fi の準備に提供されたり、細々とした機材、一部の回線・ラックスペースの提供を行っています *2。 本稿では RubyKaigi 2023 Wi-Fi ネ
using (var client = new HttpClient()) { var response = await client.GetAsync(url); .... } これは間違いです。HttpClientオブジェクトは dispose してはいけません! Stackoverflowにも沢山この間違いがあります。 (追記: 正確に言うとdisposeしてはいけないわけではなく、生成と破壊を繰り返すのが誤りです) 正しい使い方はAPIの公式ドキュメントに書いてある通りです。 public class GoodController : ApiController { private static readonly HttpClient HttpClient; static GoodController() { HttpClient = new HttpClient(); } } 上
This post is about why we need a coroutine package for Go, and what it would look like. But first, what are coroutines? Every programmer today is familiar with function calls (subroutines): F calls G, which stops F and runs G. G does its work, potentially calling and waiting for other functions, and eventually returns. When G returns, G is gone and F continues running. In this pattern, only one fu
using (var client = new HttpClient()) { var response = await client.GetAsync(url); .... } これは間違いです。HttpClientオブジェクトは dispose してはいけません! Stackoverflowにも沢山この間違いがあります。 (追記: 正確に言うとdisposeしてはいけないわけではなく、生成と破壊を繰り返すのが誤りです) 正しい使い方はAPIの公式ドキュメントに書いてある通りです。 public class GoodController : ApiController { private static readonly HttpClient HttpClient; static GoodController() { HttpClient = new HttpClient(); } } 上
Announcing the next wave of AI innovation with Microsoft Bing and Edge - The Official Microsoft Blog
All Microsoft Global Microsoft 365 Teams Copilot Windows Surface Xbox Deals Small Business Support Software Windows Apps AI Outlook OneDrive Microsoft Teams OneNote Microsoft Edge Skype PCs & Devices Computers Shop Xbox Accessories VR & mixed reality Certified Refurbished Trade-in for cash Entertainment Xbox Game Pass Ultimate PC Game Pass Xbox games PC and Windows games Movies & TV Business Micro
Andreas Andreakis, Ioannis Papapanagiotou OverviewChange-Data-Capture (CDC) allows capturing committed changes from a database in real-time and propagating those changes to downstream consumers [1][2]. CDC is becoming increasingly popular for use cases that require keeping multiple heterogeneous datastores in sync (like MySQL and ElasticSearch) and addresses challenges that exist with traditional
JavaScript eventing deep dive Stay organized with collections Save and categorize content based on your preferences. preventDefault and stopPropagation: when to use which and what exactly each method does. Event.stopPropagation() and Event.preventDefault() JavaScript event handling is often straightforward. This is especially true when dealing with a simple (relatively flat) HTML structure. Things
❇️ View the official GitHub public product roadmap1 Our product roadmap is where you can learn about what features we're working on, what stage they're in, and when we expect to bring them to you. Have any questions or comments about items on the roadmap? Share your feedback via GitHub public feedback discussions. The roadmap repository is for communicating GitHub’s roadmap. Existing issues are cu
TL;DR: DuckDB-Wasm is an in-process analytical SQL database for the browser. It is powered by WebAssembly, speaks Arrow fluently, reads Parquet, CSV and JSON files backed by Filesystem APIs or HTTP requests and has been tested with Chrome, Firefox, Safari and Node.js. You can try it in your browser at shell.duckdb.org or on Observable. DuckDB-Wasm is fast! If you’re here for performance numbers, h
はじめに みなさん こんにちは。 はじめまして ネクストモード株式会社の柳です。 今年7月の会社設立と同時にインテグレーション事業部にJOINし、主にAWSのコンサル/設計構築/保守運用業務などに携わっています。得意なジャンルはネットワーク全般です。何よりも猫が好きなので、ペンネームはnekoです。 早速ですが、今回 AWS Direct Connect の Public接続環境を構築する機会がありましたので、ご紹介したいと思います。 ネットワーク構成 今回の接続構成は以下のようになっています。 構成を補足しますと、拠点側回線はフレッツ光を使っていますが、今回はインターネットを利用しないシーンを想定しています(ISP網は通らずにNGNから直接AWSに接続する構成) NGNからAWSに接続するために、NTT東日本の法人向けサービス「フレッツ・キャスト」を介して、EquinixのDCへ専用線に
Security Best Practices Intent This document intends to extend the current threat model and provide extensive guidelines on how to secure a Node.js application. Document Content Best practices: A simplified condensed way to see the best practices. We can use this issue or this guideline as the starting point. It is important to note that this document is specific to Node.js, if you are looking for
Building a more accurate time service at Facebook scale
UPDATE: To continue our support of this public NTP service, we have open-sourced our collection of NTP libraries on GitHub. Almost all of the billions of devices connected to the internet have onboard clocks, which need to be accurate to properly perform their functions. Many clocks contain inaccurate internal oscillators, which can cause seconds of inaccuracy per day and need to be periodically c
Posted Jun 2, 2021 2021-06-02T07:00:00-07:00 by Abdulrahman Alqabandi IntroductionWhen it comes to an application’s user interface (UI), one may care for the aesthetics, design consistency, simplicity, and clarity to ensure a good UI. However, an application like a browser where untrusted content is loaded, parsed, and given APIs to invoke all sorts of UIs then a new layer of concern appears: Desi
NOTE TO READERS I did not originate this text. It came from https://board.net/p/r.e6a8f6578787a4cc67d4dc438c6d236e but that has fallen over. This is an archive for readability's sake. Check out my soundcloud: https://xeiaso.net 11/21/2023 To the Board of Directors of OpenAI: We are writing to you today to express our deep concern about the recent events at OpenAI, particularly the allegations of m
The string that contains one graphical unit consists of 5 Unicode scalar values. First, there’s a base character that means a person face palming. By default, the person would have a cartoonish yellow color. The next character is an emoji skintone modifier the changes the color of the person’s skin (and, in practice, also the color of the person’s hair). By default, the gender of the person is und
How To Secure Node.js Applications with a Content Security Policy | DigitalOcean
The author selected the Free Software Foundation to receive a donation as part of the Write for DOnations program. Introduction When the browser loads a page, it executes a lot of code to render the content. The code could be from the same origin as the root document, or a different origin. By default, the browser does not distinguish between the two and executes any code requested by a page regar
【仕様変更】一部のCloudTrailのログでSourceIPAddressとUserAgentが”AWS Internal”になる件 | DevelopersIO
【仕様変更】一部のCloudTrailのログでSourceIPAddressとUserAgentが”AWS Internal”になる件 中山です とあるCloudTrailの仕様変更について、気がついていない方が多いのではないかと思いましてこの記事を書いています。 結論 AWS Management Console等のProxy client経由で行われるAWS APIへのアクセスについて、CloudTrailのログに含まれるsourceIPAddressおよびuserAgentの情報が"AWS Internal"に置き換わる。 この仕様変更が2022年2月24日から展開されている。 変更された仕様について CloudTrailのDocument historyには以下の記載があります。 Starting Feb 24, 2022, AWS CloudTrail began changin
GitHub - hjmangalam/parsyncfp: follow-on to parsync (parallel rsync) with better startup perf
NB: If you don't want to transfer at least 10s of GB across a network, this is probably not the the tool you want. Use rsync alone if a sync, 'tar and netcat' if a fresh copy, or scp if the copy needs to be encrypted. parsyncfp is the offspring of my parsync (more info here) and Ganael LaPlanche's fpart, which collects files based on size or number into chunkfiles which can be fed to rsync on a ch
Questionable Advice: “My boss says we don’t need any engineering managers. Is he right?”
I recently joined a startup to run an engineering org of about 40 engineers. My title is VP Engineering. However, I have been having lots of ongoing conflict with the CEO (a former engineer) around whether or not I am allowed to have or hire any dedicated engineering managers. Right now, the engineers are clustered into small teams of 3-4, each of which has a lead engineer — someone who leads the
AWS Direct Connect でのアクティブ/パッシブ BGP 接続の構築 | Amazon Web Services
Amazon Web Services ブログ AWS Direct Connect でのアクティブ/パッシブ BGP 接続の構築 この記事は Creating active/passive BGP connections over AWS Direct Connect を翻訳したものです。 お客様のデータセンターを AWS に接続する方法はたくさんあります。本記事では AWS Direct Connect (DX) を用いてネットワークを構築する際に、お客様からよくご質問いただく、オンプレミスと AWS との間で Direct Connect 経由のアクティブ/パッシブ Border Gateway Protocol (BGP) 接続を構築する方法について解説します。 冗長性を確保し、高いキャパシティを得るために、多くのお客様が 2 つ以上の DX 接続をデプロイしています。この場合のよ
Static IP for Lambda: ingress, egress and bypassing the dreaded NAT Gateway | theburningmonk.com
Static IP for Lambda: ingress, egress and bypassing the dreaded NAT Gateway Many vendors require you to have a static IP address for your application. Such that all requests to their API must originate from an allow-list of IP addresses. In some cases, they even mandate that you use a static IP address for ingress traffic too. So they can communicate with your system through a trusted IP address.
DataSpii - A global catastrophic data leak via browser extensions
DataSpii: The catastrophic data leak via browser extensions Sam Jadali SecurityWithSam.com Abstract We present DataSpii (pronounced data-spy), the catastrophic data leak that occurs when any one of eight browser extensions collects browsing activity data — including personally identifiable information (PII) and corporate information (CI) — from unwitting Chrome and Firefox users. Our investigation
AWS CloudFront Pricing and Cost Optimization Guide | CloudForecast
CloudFront is AWS own CDN (Content Delivery Network). CDNs are primarily used for caching, and many customers also use AWS CloudFront CDN as a security layer, or use it to handle network spikes. With AWS CloudFront CDN, when a user requests a webpage or an image, the request is routed to one of Amazon’s 225+ edge server locations. If the edge server already has the resource cached, it’s served to
Noah Harari is a historian, philosopher and the bestselling author of Sapiens, Homo Deus and Unstoppable Us. Many people blame the coronavirus epidemic on globalization, and say that the only way to prevent more such outbreaks is to de-globalize the world. Build walls, restrict travel, reduce trade. However, while short-term quarantine is essential to stop epidemics, long-term isolationism will le
AWS App Runner now supports privately accessible services within Amazon VPC
AWS App Runner now supports private services which enables access to App Runner services from within an Amazon Virtual Private Cloud (VPC). App Runner makes it easier for developers to quickly deploy containerized web applications and APIs to the cloud, at scale, and without having to manage infrastructure. By default, App Runner services are accessible publicly over the internet. Now, with privat
Amazon EKS を利用した、ステートレスなマルチリージョンアプリケーションの運用 | Amazon Web Services
Amazon Web Services ブログ Amazon EKS を利用した、ステートレスなマルチリージョンアプリケーションの運用 この記事は、Operating a multi-regional stateless application using Amazon EKS を翻訳したものです。 本投稿は、Sr Solutions Architect の Re Alvarez-Parmar と、Technical Account Manager の Avi Harari により寄稿されました。 AWS の上で運用を行う主な利点の一つは、お客様が AWS のグローバルフットプリントを利用して複数のリージョンでワークロードを実行することが、いかに簡単かという点です。ディザスターリカバリーをサポートするため、あるいはエンドユーザーとなるお客様の近くでアプリケーションを稼働させるためにマルチリ
I recently started learning the Rust programming language by going through "the book", which does a phenomenal job of explaining the language basics. After working through the book’s main content I got started with my first non-trivial, real-world application. But I soon found myself faced with a question I didn’t yet feel well-equipped to handle: “How should you structure error handling in a matu
(Hey, we're having problems showing images in RSS right now, so if you want a better reading experience, consider viewing this article online [here](https://zellwk.com//blog/express-errors. We hope to fix this soon!). I had a hard time learning how to handle errors in Express when I started. Nobody seemed to have written the answers I needed, so I had to learn it the hard way. Today, I want to sha
The most important thing I look for when choosing which tools to use is longevity. Learning software is an investment, and if you have to switch to another application later, you lose some of that investment. In most software categories, choosing the software with longevity is easy, the most popular tools are usually the ones that have been around the longest. Microsoft Excel and Adobe Illustrator
なぜ伝染病の多くがアジアとアフリカで発生するのか?
2019年12月から世界で急速に感染拡大をみせる新型コロナウイルス感染症(COVID-19)は、中国湖北省の武漢市が感染源となったとされています。また、致死率が非常に高いことで知られるエボラ出血熱はアフリカ中央部で発生したといわれており、多くの伝染病がアジアやアフリカで発生しているイメージを持つ人も多いはず。なぜアジアやアフリカで伝染病が発生しやすいのかを、ペンシルバニア州立大学でウイルス感染を研究するスレシュ・クチプディ教授が解説しています。 Why so many epidemics originate in Asia and Africa – and why we can expect more https://theconversation.com/why-so-many-epidemics-originate-in-asia-and-africa-and-why-we-can-e
Introducing Firefox’s new Site Isolation Security Architecture – Mozilla Hacks - the Web developer blog
Introducing Firefox’s new Site Isolation Security Architecture Like any web browser, Firefox loads code from untrusted and potentially hostile websites and runs it on your computer. To protect you against new types of attacks from malicious sites and to meet the security principles of Mozilla, we set out to redesign Firefox on desktop. Site Isolation builds upon a new security architecture that ex
ネット上で「似ている」と話題にされることがある中国の国家主席・習近平氏と「くまのプーさん」について、中国製のチャットAIである「Ernie」では比較が禁止されており、実際に行うとBANされることが確認されています。 China AI Ernie Bot bans chats on Xi Jinping, Winnie the Pooh https://nypost.com/2023/05/19/china-ai-ernie-bot-bans-chats-on-xi-jinping-winnie-the-pooh/ Why is Chinese chatbot Ernie banning users on being asked about Winnie the Pooh? - Hindustan Times https://www.hindustantimes.com/technology
First published: Oct 2, 2019 Last updated: Jan 5, 2023 Tagged: webperf, ramblings, webpagetest. Matt Hobbs Read time: 149 mins Table of contents Basic Layout 1 - Key 2 - Request list 3 - Request timeline 4 - CPU Utilisation 5 - Bandwidth In 6 - Browser Main Thread 7 - Page is Interactive (Long Tasks) Vertical lines Horizontal timings Request 1 - The HTML Request 7 - A third-party JavaScript file R
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
Google TypeScript Style Guide
AWSのグローバルIPの空間はインターネットなのか? - NRIネットコムBlog
Ubuntu 22.04 LTS サーバ構築手順書
Time on Unix
Generating UUIDs at scale on the Web
RubyKaigi 2023 Wi-Fi: 足回り徹底解説 - クックパッド開発者ブログ
HttpClientをusingで囲わないでください - Qiita
research!rsc: Coroutines for Go
HttpClientをusingで囲わないでください - Qiita
DBLog: A Generic Change-Data-Capture Framework
JavaScript eventing deep dive | Articles | web.dev
GitHub - github/roadmap: GitHub public roadmap
DuckDB-Wasm: Efficient Analytical SQL in the Browser
AWS Direct ConnectでPublic接続をやってみた | DevelopersIO
Node.js — Security Best Practices
UI Security - Thinking Outside the Viewport
openai-message-to-board.md
It’s not wrong that "🤦🏼♂️".length == 7
In the Battle Against Coronavirus, Humanity Lacks Leadership
Rust: Structuring and handling errors in 2020
Handling Errors in Express | Zell Liew
The Era of Visual Studio Code
習近平とくまのプーさんの比較が中国製チャットAI「Ernie」では封じられている
How to read a WebPageTest Waterfall View chart - Matt Hobbs