More

dopp0 · 2025-09-06T18:15:40 1757182540

I have fond memories of scripting for mIRC, it was one of my first dev languages, together with clipper and delphi/pascal.

dopp0 · 2025-06-25T14:45:57 1750862757

the world belongs to the braves

dopp0 · 2025-03-03T11:44:31 1741002271

I think what he meant is that the wildcard is not supported in the origin itself, for instance: https://*.somedomain.com.

per documentation, it's either "*" or "https://subdomain.somedomain.com"

chuckadams · 2025-03-03T13:17:26 1741007846

That was in fact it, lack of a subdomain wildcard. I got really confused because I opened one project I thought had this issue, saw the ACAO header was set to *, and thought I hallucinated the whole thing out of some different issue. But it was a different project where I needed to allow internal access, which would have been easy with a hardwired response with a wildcard, but instead I needed to write a whole lambda endpoint just to pull out the requesting host and put it in the ACAO header. Also easy, but what a waste.

Either way, kind of a digression into details of CORS that wasn't necessary for the introductory treatment, so I edited it out.

dopp0 · on Nov 11, 2024

if it's just travelling: most streaming services allow downloading music so you can listen offline for some time (ie spotify)

dopp0 · on Oct 24, 2024

why 443? are you assuming ssl here? serious question, I'm not sure. But if it is, wouldn't it be hard to disregard the weight of SSL in the metric?

semiquaver · on Oct 25, 2024

The code closes the connection immediately after opening a plain TCP socket, so no SSL work is done. Presumably 443 is just a convenient port to use.

nullindividual · on Oct 25, 2024

tcp/443 is likely an open port on the target service (Dynamodb based on the domain name). TLS is not involved.

ICMP ECHO would be a bad choice as it is deprioritized by routers[0].

[0] https://archive.nanog.org/sites/default/files/traceroute-201...

quie · on Oct 25, 2024

The script connects to well known 'dynamodb.' + region_name + '.amazonaws.com' server that expects HTTPS

dopp0 · on Oct 22, 2024

> fairly robust DNS setup that consists of not only giving A records to all my hosts

looks nice, can you give more details on this? tks!

dopp0 · on Oct 6, 2024

which LLM are you using for those frontend usecases? chatgpt? and you ask in prompts for some framework such as tailwind?

iamandoni · on Oct 6, 2024

Shadcn & Vercel have created https://v0.dev/ which is pretty incredible

jasonlotito · on Oct 6, 2024

See Vercel's v0.dev.

dopp0 · on Sept 12, 2024

Thanks for the memories. Good old times I was programming in SuperWaba for palmOS!

dopp0 · on Sept 3, 2024

if they were obfuscated the urls the app itself would need to process it to un-obfuscate, then the performance would take a hit, but I get your point. It's just the wrong service to host this.

PS: could not check the link, as my country blocked twitter.

dopp0 · on Sept 3, 2024

you can check the CHANGES.md [1] or here [2]

[1] https://github.com/openssl/openssl/blob/master/CHANGES.md [2] https://github.com/openssl/openssl/compare/openssl-3.3.2...m...

rurban · on Sept 3, 2024

2 CVE's: CVE-2024-6119 and CVE-2024-5535