Aral Balkan @aral@mastodon.ar.al

@feld @moonglum There’s a good write up that I agree with here: https://www.staldal.nu/tech/2007/10/31/why-can-only-root-listen-to-ports-below-1024/

@moonglum PPPS. (The Auto Encrypt work is for Site.js. To replace the third-party library I’m using right now that’s a real mess.)

@moonglum PS. If you want to see how I’m handling permissions aside from that, check out the code for Site.js (https://source.small-tech.org/site.js/app – main site: https://sitejs.org)

@moonglum Hey man, thanks :)

PS. You don’t have to (and shouldn’t) run Node as root. Your best bet is to request those permissions directly. E.g., for Node itself:

sudo setcap 'cap_net_bind_service=+ep' `which node`

Sadly, all this is security theatre anyway. So-called “privileged ports” are a relic from the days of mainframe computers and, far from providing security, are a security threat these days. Hope Linux will follow macOS and Windows in scrapping them.

Well I just successfully encoded my first ASN.1 structure with the help of a 3rd-party library and it only took me about 10 minutes to create the equivalent of [5] in JavaScript:

forge.asn1.create(forge.asn1.Class.UNIVERSAL, forge.asn1.Type.SEQUENCE, true, [ forge.asn1.create(forge.asn1.Class.UNIVERSAL, forge.asn1.Type.INTEGER, false, forge.asn1.integerToDer(5).getBytes())])

That’s WITH A LIBRARY. A sizable library. And why? To tell Let’s Encrypt: ocspMustStaple = true

ASN.1 is devil spawn.

PS. Here it is if you want to use it. Just download it somewhere and add its path to the Icon field in your kitty.desktop file (GNOME/Ubuntu/etc.)

I’m not procrastinating… YOU’RE procrastinating!

#HelloKitty #kitty #terminal #icon

@stsp @mwlucas Maybe because he wants to live.

@craigmaloney Oh they made SOAP after ASN.1 but if you really want to gouge your eyes out see this combination of the two… https://www.itu.int/en/ITU-T/asn1/Pages/Fast-Web-Service.aspx

ASN.1 is the biggest middle finger to humanity that nobody’s ever heard of. This is my opinion and I’m sticking by it.

@tempo They’re not both as bad as each other but Apple isn’t a long term solution either.

FML

Our car insurance is due to be renewed in April. This is what my Apple News feed looks like right now.

Apple protects your privacy my ass.

#SurveillanceCapitalism

Imagine how bad someone’s code must be* that not only does it make you implement your own library via an RFC from scratch but that now it has you learning ASN.1 – fucking ASN.1 FFS – because you don’t want a single line of it anywhere near your app.

🤬

* hint: centralised telemetry added to nearly every module of what is supposedly an open source project bad

ASN.1 Made Easy

https://www.oss.com/asn1/resources/asn1-made-simple/example.html

PS. If you ever find yourself needing this… I’m sorry. I know. Things will get better. Please stop crying.

@ssokolow @codesections Saw. Doesn’t change anything. They do this, they kill Offline Web Apps. And with it, the possibility of using the web as a bridge to p2p.

@Jelv Right so, they’ve killed Offline Web Apps. 👏

@EdwardTorvalds This is not going to kill the centralised web. It’s going to kill the possibility of a private web and a bridge from the web to p2p. So not nice move.

Just updated my blog post on Apple killing Offline Web Apps with questions after they silently updated their blog post (thanks for the heads up @xerz).

I’m now confused and wondering if they thought this out at all.

I’ve also added a link to @soapdog’s blog post on the same subject.

https://ar.al/2020/03/25/apple-just-killed-offline-web-apps-while-purporting-to-protect-your-privacy-why-thats-a-bad-thing-and-why-you-should-care/

@xerz @humanetech @soapdog Thanks for the heads-up on this update Xerz! But I’m confused. So what does it mean for apps that are not added to the home screen? Also, what does it mean on macOS?