#url — Public Fediverse posts

#Development #Guides
Browser caching with No-Vary-Search · Better HTTP caching by ignoring irrelevant query parameters https://ilo.im/16crk2

_____
#Caching #URL #UrlParameters #HTTP #HttpCache #HttpHeaders #Browsers #WebPerf #WebDev #Frontend

It is incorrect to "normalize" // in HTTP URL paths

https://runxiyu.org/comp/doubleslash/

#HackerNews #normalize #HTTP #URL #paths #doubleslash #webdevelopment #technews #coding

#Business #Launches
Ziptable · Just share small datasets inside a link https://ilo.im/16bvsq

_____
#Sharing #DataTables #Content #SocialMedia #URL #QrCode #CSV #JSON #WebDev #Frontend

Is this a #secure #MessagingApp? Maybe not yet, but it’s time to think about #DigitalPrivacy.

Imagine a #Messaging platform that’s as #secure as #Signal but requires #NoRegistration and #NoInstallation. By leveraging #WebRTC for direct #BrowserToBrowser communication, this #OpenSource project eliminates the #Middleman entirely. Simply share a unique #URL to establish an #Encrypted #PrivateChannel. It is a #Lightweight, #Disposable method to bypass #DataHarvesting and reclaim #DigitalSovereignty.

This project introduces a new #Paradigm in #ClientSide managed #Encryption. Send #Secure messages with #NoSetup, #NoCloud, and #NoTrace.

Experience the #Features:
* #PWA (#ProgressiveWebApp) for instant access
* #P2P (#PeerToPeer) connectivity
* #EndToEndEncryption (#E2EE)
* #SignalProtocol & #PostQuantum #Cryptography
* #Multimedia, #FileTransfer, & #VideoCalls
* #NoDatabase & #Stateless architecture
* #TURN server support for reliable connections

While not yet a direct replacement for #Simplex or #WhatsApp, this introduces a unique approach to #SecureCommunication.

Try the #LiveDemo now:
https://p2p.positive-intentions.com/iframe.html?globals=&id=demo-p2p-messaging--p-2-p-messaging&viewMode=story

Explore the #Technical roadmap:
https://positive-intentions.com/docs/technical/p2p-messaging-technical-breakdown

Read the full #Documentation:
https://positive-intentions.com/docs/technical

#PrivacyTech #Privacy #CyberSecurity #Infosec #WebDev #JavaScript #Decentralized #EncryptionProtocol #QuantumResistant #Tech #FOSS #SoftwareEngineering #DataPrivacy #SecureChat #NoLog #P2PChat #WebRTCProtocol #Coding #DevCommunity #DigitalPrivacy #InternetFreedom #SecureMessaging #WebTech #AppDevelopment #CryptographyResearch #PrivateMessaging #WebPlatform #ZeroTrust #Innovation

Is this a #secure #MessagingApp? Maybe not yet, but it’s time to think about #DigitalPrivacy.

Imagine a #Messaging platform that’s as #secure as #Signal but requires #NoRegistration and #NoInstallation. By leveraging #WebRTC for direct #BrowserToBrowser communication, this #OpenSource project eliminates the #Middleman entirely. Simply share a unique #URL to establish an #Encrypted #PrivateChannel. It is a #Lightweight, #Disposable method to bypass #DataHarvesting and reclaim #DigitalSovereignty.

This project introduces a new #Paradigm in #ClientSide managed #Encryption. Send #Secure messages with #NoSetup, #NoCloud, and #NoTrace.

Experience the #Features:
* #PWA (#ProgressiveWebApp) for instant access
* #P2P (#PeerToPeer) connectivity
* #EndToEndEncryption (#E2EE)
* #SignalProtocol & #PostQuantum #Cryptography
* #Multimedia, #FileTransfer, & #VideoCalls
* #NoDatabase & #Stateless architecture
* #TURN server support for reliable connections

While not yet a direct replacement for #Simplex or #WhatsApp, this introduces a unique approach to #SecureCommunication.

Try the #LiveDemo now:
https://p2p.positive-intentions.com/iframe.html?globals=&id=demo-p2p-messaging--p-2-p-messaging&viewMode=story

Explore the #Technical roadmap:
https://positive-intentions.com/docs/technical/p2p-messaging-technical-breakdown

Read the full #Documentation:
https://positive-intentions.com/docs/technical

#PrivacyTech #Privacy #CyberSecurity #Infosec #WebDev #JavaScript #Decentralized #EncryptionProtocol #QuantumResistant #Tech #FOSS #SoftwareEngineering #DataPrivacy #SecureChat #NoLog #P2PChat #WebRTCProtocol #Coding #DevCommunity #DigitalPrivacy #InternetFreedom #SecureMessaging #WebTech #AppDevelopment #CryptographyResearch #PrivateMessaging #WebPlatform #ZeroTrust #Innovation

Is this a #secure #MessagingApp? Maybe not yet, but it’s time to think about #DigitalPrivacy.

Imagine a #Messaging platform that’s as #secure as #Signal but requires #NoRegistration and #NoInstallation. By leveraging #WebRTC for direct #BrowserToBrowser communication, this #OpenSource project eliminates the #Middleman entirely. Simply share a unique #URL to establish an #Encrypted #PrivateChannel. It is a #Lightweight, #Disposable method to bypass #DataHarvesting and reclaim #DigitalSovereignty.

This project introduces a new #Paradigm in #ClientSide managed #Encryption. Send #Secure messages with #NoSetup, #NoCloud, and #NoTrace.

Experience the #Features:
* #PWA (#ProgressiveWebApp) for instant access
* #P2P (#PeerToPeer) connectivity
* #EndToEndEncryption (#E2EE)
* #SignalProtocol & #PostQuantum #Cryptography
* #Multimedia, #FileTransfer, & #VideoCalls
* #NoDatabase & #Stateless architecture
* #TURN server support for reliable connections

While not yet a direct replacement for #Simplex or #WhatsApp, this introduces a unique approach to #SecureCommunication.

Try the #LiveDemo now:
https://p2p.positive-intentions.com/iframe.html?globals=&id=demo-p2p-messaging--p-2-p-messaging&viewMode=story

Explore the #Technical roadmap:
https://positive-intentions.com/docs/technical/p2p-messaging-technical-breakdown

Read the full #Documentation:
https://positive-intentions.com/docs/technical

#PrivacyTech #Privacy #CyberSecurity #Infosec #WebDev #JavaScript #Decentralized #EncryptionProtocol #QuantumResistant #Tech #FOSS #SoftwareEngineering #DataPrivacy #SecureChat #NoLog #P2PChat #WebRTCProtocol #Coding #DevCommunity #DigitalPrivacy #InternetFreedom #SecureMessaging #WebTech #AppDevelopment #CryptographyResearch #PrivateMessaging #WebPlatform #ZeroTrust #Innovation

Is this a #secure #MessagingApp? Maybe not yet, but it’s time to think about #DigitalPrivacy.

Imagine a #Messaging platform that’s as #secure as #Signal but requires #NoRegistration and #NoInstallation. By leveraging #WebRTC for direct #BrowserToBrowser communication, this #OpenSource project eliminates the #Middleman entirely. Simply share a unique #URL to establish an #Encrypted #PrivateChannel. It is a #Lightweight, #Disposable method to bypass #DataHarvesting and reclaim #DigitalSovereignty.

This project introduces a new #Paradigm in #ClientSide managed #Encryption. Send #Secure messages with #NoSetup, #NoCloud, and #NoTrace.

Experience the #Features:
* #PWA (#ProgressiveWebApp) for instant access
* #P2P (#PeerToPeer) connectivity
* #EndToEndEncryption (#E2EE)
* #SignalProtocol & #PostQuantum #Cryptography
* #Multimedia, #FileTransfer, & #VideoCalls
* #NoDatabase & #Stateless architecture
* #TURN server support for reliable connections

While not yet a direct replacement for #Simplex or #WhatsApp, this introduces a unique approach to #SecureCommunication.

Try the #LiveDemo now:
https://p2p.positive-intentions.com/iframe.html?globals=&id=demo-p2p-messaging--p-2-p-messaging&viewMode=story

Explore the #Technical roadmap:
https://positive-intentions.com/docs/technical/p2p-messaging-technical-breakdown

Read the full #Documentation:
https://positive-intentions.com/docs/technical

#PrivacyTech #Privacy #CyberSecurity #Infosec #WebDev #JavaScript #Decentralized #EncryptionProtocol #QuantumResistant #Tech #FOSS #SoftwareEngineering #DataPrivacy #SecureChat #NoLog #P2PChat #WebRTCProtocol #Coding #DevCommunity #DigitalPrivacy #InternetFreedom #SecureMessaging #WebTech #AppDevelopment #CryptographyResearch #PrivateMessaging #WebPlatform #ZeroTrust #Innovation

Is this a #secure #MessagingApp? Maybe not yet, but it’s time to think about #DigitalPrivacy.

Imagine a #Messaging platform that’s as #secure as #Signal but requires #NoRegistration and #NoInstallation. By leveraging #WebRTC for direct #BrowserToBrowser communication, this #OpenSource project eliminates the #Middleman entirely. Simply share a unique #URL to establish an #Encrypted #PrivateChannel. It is a #Lightweight, #Disposable method to bypass #DataHarvesting and reclaim #DigitalSovereignty.

This project introduces a new #Paradigm in #ClientSide managed #Encryption. Send #Secure messages with #NoSetup, #NoCloud, and #NoTrace.

Experience the #Features:
* #PWA (#ProgressiveWebApp) for instant access
* #P2P (#PeerToPeer) connectivity
* #EndToEndEncryption (#E2EE)
* #SignalProtocol & #PostQuantum #Cryptography
* #Multimedia, #FileTransfer, & #VideoCalls
* #NoDatabase & #Stateless architecture
* #TURN server support for reliable connections

While not yet a direct replacement for #Simplex or #WhatsApp, this introduces a unique approach to #SecureCommunication.

Try the #LiveDemo now:
https://p2p.positive-intentions.com/iframe.html?globals=&id=demo-p2p-messaging--p-2-p-messaging&viewMode=story

Explore the #Technical roadmap:
https://positive-intentions.com/docs/technical/p2p-messaging-technical-breakdown

Read the full #Documentation:
https://positive-intentions.com/docs/technical

#PrivacyTech #Privacy #CyberSecurity #Infosec #WebDev #JavaScript #Decentralized #EncryptionProtocol #QuantumResistant #Tech #FOSS #SoftwareEngineering #DataPrivacy #SecureChat #NoLog #P2PChat #WebRTCProtocol #Coding #DevCommunity #DigitalPrivacy #InternetFreedom #SecureMessaging #WebTech #AppDevelopment #CryptographyResearch #PrivateMessaging #WebPlatform #ZeroTrust #Innovation

[Перевод] 10 веб-API, заменяющих многие библиотеки JavaScript

Современные браузеры тихо съедают экосистему JavaScript живьем. За последние несколько лет основные браузеры выпустили нативные веб-API, которые заменяют удивительно большое количество утилит, которые мы до сих пор устанавливаем по привычке. Тем не менее, многие разработчики продолжают использовать уже ненужные, но привычные библиотеки. Если зависимость всегда работала, она остается в стеке, даже если браузер уже умеет выполнять ту же работу. Такой подход обходится дороже, чем кажется. Каждый дополнительный пакет увеличивает вес сборки, затраты на обслуживание, частоту обновления версий и риск отказа от проекта в долгосрочной перспективе. Нативные API-интерфейсы стоят пользователям 0 КБ данных, работают глубоко в движке (часто вне основного потока (main thread)) и используют оптимизации, недоступные библиотекам.

https://habr.com/ru/articles/1015134/

#javascript #js #webapi #fetch #formdata #url #popover #clipboard #resizeobserver #viewtransitions

Hallo meine Lieben,

heute teile ich hier mal einige meiner "Useful Links" auf denen ich immer mal wieder vorbeischaue, um zu schauen was es Neues im Bereich Studiotechnik gibt.

1.) GEARNEWS
https://www.gearnews.de/bereich/recording/
2.) AMAZONA
https://www.amazona.de/category/studio/
3.)BONEDO
https://www.bonedo.de/recording/news/
4.) STUDIOFEST
https://studio-fest.com/
5.) DELAMAR
https://www.delamar.de/studio-equipment/

#useful #links #url #studio #technology #technik #gear #news #amazona #bonedo #studiofest #delamar #software #hardware #test

Hallo meine Lieben,

heute teile ich hier mal einige meiner "Useful Links" auf denen ich immer mal wieder vorbeischaue, um zu schauen was es Neues im Bereich Studiotechnik gibt.

1.) GEARNEWS
https://www.gearnews.de/bereich/recording/
2.) AMAZONA
https://www.amazona.de/category/studio/
3.)BONEDO
https://www.bonedo.de/recording/news/
4.) STUDIOFEST
https://studio-fest.com/
5.) DELAMAR
https://www.delamar.de/studio-equipment/

#useful #links #url #studio #technology #technik #gear #news #amazona #bonedo #studiofest #delamar #software #hardware #test

Hallo meine Lieben,

heute teile ich hier mal einige meiner "Useful Links" auf denen ich immer mal wieder vorbeischaue, um zu schauen was es Neues im Bereich Studiotechnik gibt.

1.) GEARNEWS
https://www.gearnews.de/bereich/recording/
2.) AMAZONA
https://www.amazona.de/category/studio/
3.)BONEDO
https://www.bonedo.de/recording/news/
4.) STUDIOFEST
https://studio-fest.com/
5.) DELAMAR
https://www.delamar.de/studio-equipment/

#useful #links #url #studio #technology #technik #gear #news #amazona #bonedo #studiofest #delamar #software #hardware #test

Hallo meine Lieben,

heute teile ich hier mal einige meiner "Useful Links" auf denen ich immer mal wieder vorbeischaue, um zu schauen was es Neues im Bereich Studiotechnik gibt.

1.) GEARNEWS
https://www.gearnews.de/bereich/recording/
2.) AMAZONA
https://www.amazona.de/category/studio/
3.)BONEDO
https://www.bonedo.de/recording/news/
4.) STUDIOFEST
https://studio-fest.com/
5.) DELAMAR
https://www.delamar.de/studio-equipment/

#useful #links #url #studio #technology #technik #gear #news #amazona #bonedo #studiofest #delamar #software #hardware #test

Hallo meine Lieben,

heute teile ich hier mal einige meiner "Useful Links" auf denen ich immer mal wieder vorbeischaue, um zu schauen was es Neues im Bereich Studiotechnik gibt.

1.) GEARNEWS
https://www.gearnews.de/bereich/recording/
2.) AMAZONA
https://www.amazona.de/category/studio/
3.)BONEDO
https://www.bonedo.de/recording/news/
4.) STUDIOFEST
https://studio-fest.com/
5.) DELAMAR
https://www.delamar.de/studio-equipment/

#useful #links #url #studio #technology #technik #gear #news #amazona #bonedo #studiofest #delamar #software #hardware #test

Hi @mwichary,
giving strong #Aaron vibes "Building for Users: #Design​ing #URL​s" in "A Programmable #Web.":
https://codeberg.org/mro/ProgrammableWebSwartz2013/src/branch/master/content/pages/2-building-for-users.md

In #Wikipedia steht die Antwort möglicherweise. Es dauert aber, herauszufinden, in welchem Artikel, Listenartikel oder Unterartikel. Die #Suche von Wikipedia verwendet zwar #ElasticSearch, aber um die Vorteile von dieser starken Engine auch zu erhalten, hätten 100000e Menschen, die Wikipedia-Artikel auch verschlagworten müssen (#wikidata). Ausserdem kann es sein, dass etwas so praktisches wie formatstrings als #unenzyklpädisch eingestuft wurde und daher entfernt.

In #Stackexchange muss ich mehrfach bestätigen, dass ich ein Mensch bin, finde dann einen Artikel, der unbeantwortet geschlossen wurde, weil #Duplikat. Dann zwei veraltete, die inzwischen falsch sind, dann welche mit einem nicht mehr funktionierenden link auf die Lösung.

Bei #archive_org, archive.is und #AnnasArchive muss ich die #URL des gesuchten Artikels wissen, um suchen zu können.

Eine #Suchmaschine sucht nicht. Eine Suchmaschine liest die "Sutemap.XML" Dateien aus, die websitebetreiber online stellen für die #crawler der Suchmaschinen. Ich finde also fünf Jahre alte Artikel auf Websites die seit fünf Jahren nicht mehr gepflegt werden. Und maximal ein jahr alte Artikel, die meine Frage nicht beantworten aber in der #sitemap stehen. Die 100 Websites, die die richtige Antwort in einem zwei bis vier Jahre alte Artikel enthalten, finde ich nicht, weil diese Artikel nicht mehr in der sitemap stehen.

Die GPTbots haben Wikipedia, stackexchange, Archiv.org, Annas archive und alle Websites gescrapt und dabei #robots.txt und sitemap ignoriert. Ich bekomme die richtige Antwort und zwar schneller als mit allen zuvor genannten Varianten.

Oder ich suche in #Grokipedia. Grokipedia besteht aus 1Million statischen seiten im #CDN von #Cloudflare die von wikipedia gescrapt wurden. Die suche ist ein GPTbot und 57mal besser als die suche in wikipedia.

@malteengeler @awinkler @evawolfangel @bkastl @Raymond @wikipedia

[Перевод] URLPattern теперь доступен в Baseline

API URLPattern официально стал базовой возможностью и доступен во всех основных браузерах с сентября 2025 года. Однако он может не работать на старых устройствах или в старых браузерах. Узнать больше . Когда требуется функциональность, реагирующая на изменения URL, часто приходится писать сложные регулярные выражения или подключать сторонние библиотеки для маршрутизации. Теперь, когда URL Pattern API вошел в Baseline, у нас появилось стандартное, мощное и универсальное решение для этой задачи.

https://habr.com/ru/companies/timeweb/articles/960722/

#javascript #js #url #urlpattern #regex #routing #роутинг #маршрутизация #baseline #timeweb_статьи_перевод

[Перевод] URLPattern теперь доступен в Baseline

API URLPattern официально стал базовой возможностью и доступен во всех основных браузерах с сентября 2025 года. Однако он может не работать на старых устройствах или в старых браузерах. Узнать больше . Когда требуется функциональность, реагирующая на изменения URL, часто приходится писать сложные регулярные выражения или подключать сторонние библиотеки для маршрутизации. Теперь, когда URL Pattern API вошел в Baseline, у нас появилось стандартное, мощное и универсальное решение для этой задачи.

https://habr.com/ru/companies/timeweb/articles/960722/

#javascript #js #url #urlpattern #regex #routing #роутинг #маршрутизация #baseline #timeweb_статьи_перевод

[Перевод] URLPattern теперь доступен в Baseline

API URLPattern официально стал базовой возможностью и доступен во всех основных браузерах с сентября 2025 года. Однако он может не работать на старых устройствах или в старых браузерах. Узнать больше . Когда требуется функциональность, реагирующая на изменения URL, часто приходится писать сложные регулярные выражения или подключать сторонние библиотеки для маршрутизации. Теперь, когда URL Pattern API вошел в Baseline, у нас появилось стандартное, мощное и универсальное решение для этой задачи.

https://habr.com/ru/companies/timeweb/articles/960722/

#javascript #js #url #urlpattern #regex #routing #роутинг #маршрутизация #baseline #timeweb_статьи_перевод

[Перевод] URLPattern теперь доступен в Baseline

API URLPattern официально стал базовой возможностью и доступен во всех основных браузерах с сентября 2025 года. Однако он может не работать на старых устройствах или в старых браузерах. Узнать больше . Когда требуется функциональность, реагирующая на изменения URL, часто приходится писать сложные регулярные выражения или подключать сторонние библиотеки для маршрутизации. Теперь, когда URL Pattern API вошел в Baseline, у нас появилось стандартное, мощное и универсальное решение для этой задачи.

https://habr.com/ru/companies/timeweb/articles/960722/

#javascript #js #url #urlpattern #regex #routing #роутинг #маршрутизация #baseline #timeweb_статьи_перевод

Ghost CMS: La Odisea

Parece que lo mío con el self-hosting es una odisea constante, comparavble a la de Homero o la espacial… Y es que cuando quieres, pero no sabes, todo es más cuesta arriba, cual pendiente del Angliru… se sube pero hay que lidiar con las piernas, la cabeza y, sobre todo, la gravedad….

Uno de mis anhelos al hospedar mis propias aplicaciones, es migrar éste blog. WordPress, mi querido WordPress, se ha vuelto un monstruo que necesita mucho mantenimiento. En mi opinión, después de usarlo muchos años en diferentes etapas, ya no sirve para el que quiere abrir un simple blog.
En esa tesitura, he mirado migrar a sitios estáticos como Hugo o Jekyll, pero he leído muchas bondades de Ghost, un CMS similar a WordPress, pero más moderno y más limpio.
Así que vamos a ello. Con Docker, por supuesto.

services:  ghost:    image: ghost:6    container_name: ghost_blog    restart: unless-stopped    ports:      - "2368:2368"    depends_on:      - db    environment:      url: https://localhost:2368   #URL de tu dominio      mail__transport: SMTP      mail__options__host: smtp.gmail.com      mail__options__port: 587      mail__options__secure: "false"      mail__options__auth__user: [email protected]  #un email de Gmail.      mail__options__auth__pass: XXXXXXXXXXX #clave de Gmail.      database__client: mysql      database__connection__host: db      database__connection__user: ghostuser      database__connection__password: password   #cambiar clave      database__connection__database: ghostdb    volumes:      - ./content:/var/lib/ghost/content  db:    image: mysql:8    container_name: ghost_mysql    restart: unless-stopped    environment:      MYSQL_ROOT_PASSWORD: rootpass      MYSQL_DATABASE: ghostdb      MYSQL_USER: ghostuser      MYSQL_PASSWORD: password   #cambiar clave    volumes:      - ./db_data:/var/lib/mysqlvolumes:  db_data:

Si usas el docker-compose oficial de Ghost CMS, instala perfectamente pero una vez cierras sessión, no vas a poder loguearte de nuevo. Necesita enviarte un código para poder hacerlo y no puede si no lo configuras….

Éste docker-compose lo he sacado de un blog personal, pero no recuerdo cual. El autor, a diferencia de otros, recomienda configurar un email, en éste caso de Gmail, para autentificarte….
Éste paso se omite en muchos docker-compose que he probado y me daba un problema al loguearme para poder postear o simplemente toquetear.

Y es que Ghost CMS (según el autor) es un sistema pensado para la monetización, para crear comunidades en torno al blog/página que creas. Tiene todos los elementos como sistema de pagos, membresía… ya integrado, facilitando mucho la tarea.
Para ello necesita una cuenta autentificada y la mejor manera y quizá más sencilla, ya que casi todo el mundo tiene una cuenta de Google, es hacerlo a través de su portal.

Antes de lanzar el docker-compose, debes ir a tu cuenta de Google y crear una «Cuenta de Aplicaciones». Para ello hay unos requisitos y una vez creada, debe poner la contraseña en el docker-compose de arriba, dónde pone «clave de Gmail».
Al loguearte con tu usuario y contraseña en Ghost CMS, éste te enviará un email con una clave única y ya serás dueño nuevamente.

Primer escollo solucionado…. vamos a por el segundo: la migración….

Para empezar en otro sistema, sea Ghost CMS u otro, es requisito imperativo poder poasar el contenido de éste blog. No perder nada.
Tanto Ghost CMS como WordPress disponen de herramientas para importar/exportar el contenido. Ghost CMS además incorpora una para varios sistemas, entre ellos WordPress.
Lo primero es crear una URL válida, no sirve «localhost». Lo hice a través de un proxy inverso, en mi caso Nginx. También la coloco en el docker-compose de arriba….

Ghost CMS se conecta a la url de éste blog y te dicta unos pasos sencillos a seguir. Todo comienza perfecto, pero al cabo de pocos segundos…. ERROR!!. Por algún motivo, según entiendo, se pierde la comunicación con mi blog y no puede hacer la migración.
Lo intento de varias maneras, descargando en .zip, en .json, en .xlm…. incluso descargando un plugin para copias de seguridad en WordPress…. Siempre el mismo problema.

Desesperado, ya estaba pensando en reescribir todo el blog o más probable, mardar todo a la mierda e instalar WordPress….. En un alarde de desesperación, me da por descomprimo el .zip que me ha soltado WordPress. En él sólo están las imágenes subidas y un archivo .json que es realmente el blog, los artículos. Unos 150mb.
Por algún motivo, cosas de tener canas imagino, simplemente vuelvo a comprimir la carpeta y vuelvo a intentarlo como antes, a través de Ghost CMS… ET VOILÁ!!!!

El blog está en una versión de pruebas, pero se ve bien. He configurado un tema que viene por defecto, de una manera similar a éste, en forma de rejilla.
Pero pasa algo similar a WordPress con los temas. Temas gratuítos hay, pero muy limitados. La mayoría, los guais, los muy configurables, son de pago y por un montante de 50€ para arriba. No tengo nada en contra de los desarrolladores que hacen los temas, pero me parece excesivo. Mucho, la mayoría, supera los 80€.

En cuanto a la instalación quiero pensar que hay formas más simples de hacerlo. He instalado varios docker-compose de varias fuentes y siempre he encontrado el mismo problema de login. Éste lo ha solucionado. En los foros de Ghost CMS aparecen varias entradas con el problema sin aparente solución.
La migración ha venido después. Un problema extraño, pero parece que recurrente, ya que he leído también varias entradas en los foros oficiales.

Toca decidir qué hacer, si seguir con WordPress, pasar a Ghost ahora que «sé hacerlo» o intentarlo con Hugo, que me atrae mucho…. Me gustaría dar el salto en Enero….

#cambiar #clave #docker #selfhosted #un #URL #wordpress

Visual deception in phishing attacks is more present today than many care to admit. Phishing campaigns, for example, the recent Unpaid Toll Scams, employ visual deception. In this post, we show how phishers exploit peoples' tendencies to see what they want to read rather than what appears in a message or hyperlink.

https://interisle.substack.com/p/common-visual-deceptions-in-phishing

#phishing #url #infringement #tollscam #lookalikedomain

#Astuce #Firefox, oui, tiens, pour une fois :tony_wee:

Si vous n'avez que faire du nouveau #panneau #latéral de discussion avec une "Intelligence Artificielle" (en option sur versions #Beta et #Nightly), vous pouvez modifier une entrée d'about:config pour y placer une #url que vous visitez fréquemment.

J'ai pris l'exemple de #VivaldiStatus pour suivre l'état des services :vivaldi_blue: Web, Mail, Mastodon, blogs perso, que vous pourriez utiliser même si vous n'utilisez pas #Vivaldi.

- Modifiez dans about:config :
browser.ml.chat.provider avec la valeur https://vivaldistatus.com

- Vérifiez dans about:config que
browser.ml.chat.enabled=true

Cliquez sur la petite #icône ✨ pour faire apparaitre/disparaitre ce panneau latéral, intelligent, lui 👍

Looking at #ABC news articles, and fiddling with their #URL to politely remove what looked like a tracker. (It is not)
<refer to the pasted image. It conveys my meaning without rogering the URL texts, because my post is about URL mechanics, not about the targets of the links>

THE PROPOSAL
When pasting any ABC news URL into the socials (think of the children!) - copy that last identifying number and then type in the beginning bit up to "news/"
then camel case the next bit to better suit the real story, then add back the slash and the last number:

https://www.abc.net.au/news/MyGodWhyHasItTakenThisLongToRegulateTheseCunts/104333828

... lovely.

#ABCNews #AustralianBroadcastingCorporation #funWithWebservers

👉New URL: Drixpell.com

https://drixpell.com/2024/05/08/new-url-drixpell-com/

#drixpell #drix #pell #new #url #domain #news #web #website #blog #art #design #happy #announcement #info #information #notice #site #page #note #dp #data #communication #contact #link #expression #connection #network #share #creativity

Une adresse ( #uri / #url ) = plusieurs #protocoles ?

Qu'en pensez vous ?
#question #internet

CyberChef from GCHQ: Cyber Swiss Army Knife
https://gchq.github.io/CyberChef/
#ycombinator #base64 #hex #decode #encode #encrypt #decrypt #compress #decompress #regex #regular_expressions #hash #crypt #hexadecimal #user_agent #url #certificate #x_509 #parser #JSON #gzip #md5 #sha1 #aes #des #blowfish #xor

CyberChef from GCHQ: The Cyber Swiss Army Knife
https://gchq.github.io/CyberChef/
#ycombinator #base64 #hex #decode #encode #encrypt #decrypt #compress #decompress #regex #regular_expressions #hash #crypt #hexadecimal #user_agent #url #certificate #x_509 #parser #JSON #gzip #md5 #sha1 #aes #des #blowfish #xor

[⤴️ https://octospacc.altervista.org/2024/02/01/emmebi-telegrammico/]

L’ultimissimo miglioramento che ho in ogni caso poi fatto ad #MBViewer è stato l’aggiunta di una funzione per importare codice #CSS e #JavaScript, per modificare come i post possono essere visualizzati. Entrambi funzionano allo stesso modo, con i relativi parametri URL che accettano sia #URL esterni che data URI. Niente di particolare per gli stili, semplicemente importo nella pagina la qualunque cosa venga data lì, ma per gli #userscripts è stato leggermente più #complicato. 😕️

Il punto sta nel voler evitare che #script essenzialmente non affidabili siano iniettati nel contesto della pagina semplicemente da URL, perché potrebbero fare tante cosine cattive; prima fra tutte, rubare #dati dall’archiviazione del #browser del mio dominio, cosa che è un #problema, perché gli utenti inesperti che aprono la app da #link non andranno a cercare di investigare cosa accade dietro le quinte (e, molto probabilmente, non lo farei realisticamente nemmeno io, seguendo la logica del “i miei siti sono miei e li conosco, sui siti altrui ho le protezioni del browser attive“). E quindi inizio a scendere in un rabbithole… ☠️

• #Iframe? Hmm… non so, non è il caso, sarebbero insicuri, ci sono alcuni modi in cui una pagina in frame può fare robe fastidiose. Non può essere assolutamente un’idea, proprio mai (foreshadowing). 🪟️
• Trovo un bel po’ di #librerie vecchie che ricompilano codice #JS per rimuovere pericoli, o lo analizzano preventivamente per la presenza di operazioni dannose così che possa non essere mai eseguito… praticamente tutte abbandonate, qualcuna esplicitamente dichiarata insicura e non patchata, e per qualcun’altra lo possiamo dare per scontato. 🐛️
• Forse questa libreria più recente, jailed, che sfrutta un iframe assieme ad un Web Worker per creare una sandbox forte e bloccare tutte le #API eccetto alcune che si decidono… No, l’ho provata e non va bene, non si riescono a passare alla sandbox oggetti complessi, tra cui i costruttori, è impossibile far funzionare API tipo quella del DOM. 🚧️
  • Sarebbe stata un’idea usare qualche reimplementazione del #DOM per NodeJS tramite browserify, tipo Cheerio, ma farla anche solo girare lì dentro è un altro casino allucinante. 🥴️
• WASM tecnicamente è una #sandbox a sua volta, e non accede alle API del browser se non con codice colla, quindi magari… teoricamente ok, ma nella pratica non ho trovato nessuna soluzione già bella e pronta che potessi usare per questo specifico scopo. 🕳️
• La pazzia: PyScript… sarebbe quasi già pronto, ma avrei dovuto comunque modificarlo per bloccare tutte le API insicure (rimuovere #codice), e poi richiede 15+ MB di dipendenze di runtime… non ideale. 🗿️

Alla fine ci ho pensato meglio, e sono arrivata alla conclusione che è abbastanza sicuro far girare gli script in un iframe con proprietà src="data:[...]" e sandbox="allow-scripts" (che significa, “blocca tutte le proprietà sensibili eccetto gli script”)… voglio dire, nel visualizzare il contenuto dei siti, già permetto eventuali iframe provenienti dai post, e quelli teoricamente possono già fare quello che vogliono eccetto accedere ai dati della finestra root. Nella pratica, i programmini degli utenti quindi hanno accesso a (quasi) l’intera API JavaScript senza poter fare cose bruttissime. 🎉️

Finisco con dati ancora più tecnici, per chi non ha una vita: con questo #design, ogni #userscript deve provvedere ad esporre una funzione che, tramite la Channel Messaging API, viene richiamata dalla #app per ogni messaggio appena questo viene aggiunto al documento visibile; questa funzione riceve dati utili (per ora, solo l’HTML del contenuto; oltre a dati come l’id del messaggio nel flusso, che non sono granché utili all’utente ma devono essere restituiti alla app) e può rimandare nuovi dati indietro richiamando una funzione che è invece l’applicazione ad esporre allo script. Tutto questo ambaradan permetterebbe agli script di effettuare anche operazioni asincrone, comunque, non per forza di dover agire immediatamente alla chiamata. 🤓️

https://octospacc.altervista.org/2024/02/01/emmebi-javascriptico/

#API #app #browser #codice #complicato #CSS #dati #design #DOM #JavaScript #JS #librerie #link #MBViewer #messaggi #problema #sandbox #script #stile #URL #userscript #userscripts

What iF there was a new #ViralTrend of people going to the #Meta HQ sign, holding up a #QRCode but the URL to the QRCode goes to their #tiktok & or #snapchat & or #YouTube channel #URL and not their #Instagram, #WhatsApp or #Facebook?

That wouldn't be a good #ViralVideo #joke meme on #MarkZuckerburg, would I.T.? 🤔

Here, I'll start first: ⚠️👉🛣️ #Exit404

#svp quand vous utiliser des #qrCode dans vos #pdf et autres #présentation, n'oubliez pas de mettre le #lien en #texte lisible avec.

On peut cliquer dessus dans les pdf, ou juste taper l' #url directement dans le #navigateur. C'est #pratique !!

#merci :)

Heute bin ich bei der Implementierung der Kinder #Radiosender auf ein ungeahntes Problem gestoßen. 😮

Werden dort #Weblinks in #qrcode Codes hinterlegt, werden diese teilweise so groß das die Erkennungsrate deutlich darunter leidet. Also, kurz noch nen #Shlink Container aufgesetzt um die #URL's zu kürzen. 😄

———
💡 Infos:
https://wiki.lemue.org/t0nybox

#xmms2 #mp3player #qrcode #toniebox #t0nybox #zbarcam #lirc #flirc #sekislim #selfmade #wiki @fedieltern

Heute bin ich bei der Implementierung der Kinder #Radiosender auf ein ungeahntes Problem gestoßen. 😮

Werden dort #Weblinks in #qrcode Codes hinterlegt, werden diese teilweise so groß das die Erkennungsrate deutlich darunter leidet. Also, kurz noch nen #Shlink Container aufgesetzt um die #URL's zu kürzen. 😄

———
💡 Infos:
https://wiki.lemue.org/t0nybox

#xmms2 #mp3player #qrcode #toniebox #t0nybox #zbarcam #lirc #flirc #sekislim #selfmade #wiki @fedieltern

Frage an die Fachwelt: Früher war der Common Name in einem #Zertifikat maßgebend. Mittlerweile verlangt entweder der Standard oder der faktische Industrie-Quasi-Standard #SAN-Einträge. (SAN: #SubjectAlternateName). Welcher codierte Standard ist maßgebend? Welche #Browser setzen den Standard wie um? Wenn im Common Name z.B. der #FQDN steht, im SAN nur der einfache Hostname ohne Domain, was versucht welcher Browser zuerst? DIese Konstellation scheint gerade flackernde Probleme zu verursachen, je nachdem, welche #URL eingegeben wird, wirft ein Aufruf Fehler, der nächste Aufruf der gleichen URL geht sauber durch und zeigt ein geschlossenes oder grünes Schloss. Wo finde ich hierfür belastbare Info? (FQDN: #FullyQualifiedDomainName, URL: Unified Resource Locator, auch: #Link, im einfachsten Fall ein https-Link einer Webseite)

#DIRB is a web #URL #fuzzer.

DIRB is a program that exhaustively checks if a website has hidden resources. DIRB performs checks using wordlists, and checks each and every word in the list to see if it possibly exists. If a directory is found DIRB will recursively search the directory once its parent is finished being scanned.

Website 🔗️: http://dirb.sourceforge.net/

apt 📦️: dirb

#free #opensource #foss #fossmendations #security #fuzzing