@feld @moonglum There’s a good write up that I agree with here: https://www.staldal.nu/tech/2007/10/31/why-can-only-root-listen-to-ports-below-1024/
@moonglum PPPS. (The Auto Encrypt work is for Site.js. To replace the third-party library I’m using right now that’s a real mess.)
@moonglum Hey man, thanks :)
PS. You don’t have to (and shouldn’t) run Node as root. Your best bet is to request those permissions directly. E.g., for Node itself:
sudo setcap 'cap_net_bind_service=+ep' `which node`
Sadly, all this is security theatre anyway. So-called “privileged ports” are a relic from the days of mainframe computers and, far from providing security, are a security threat these days. Hope Linux will follow macOS and Windows in scrapping them.
forge.asn1.create(forge.asn1.Class.UNIVERSAL, forge.asn1.Type.SEQUENCE, true, [ forge.asn1.create(forge.asn1.Class.UNIVERSAL, forge.asn1.Type.INTEGER, false, forge.asn1.integerToDer(5).getBytes())])
That’s WITH A LIBRARY. A sizable library. And why? To tell Let’s Encrypt: ocspMustStaple = true
ASN.1 is devil spawn.
PS. Here it is if you want to use it. Just download it somewhere and add its path to the Icon field in your kitty.desktop file (GNOME/Ubuntu/etc.)
@craigmaloney Oh they made SOAP after ASN.1 but if you really want to gouge your eyes out see this combination of the two… https://www.itu.int/en/ITU-T/asn1/Pages/Fast-Web-Service.aspx
@tempo They’re not both as bad as each other but Apple isn’t a long term solution either.
Our car insurance is due to be renewed in April. This is what my Apple News feed looks like right now.
Apple protects your privacy my ass.
Imagine how bad someone’s code must be* that not only does it make you implement your own library via an RFC from scratch but that now it has you learning ASN.1 – fucking ASN.1 FFS – because you don’t want a single line of it anywhere near your app.
* hint: centralised telemetry added to nearly every module of what is supposedly an open source project bad
ASN.1 Made Easy
PS. If you ever find yourself needing this… I’m sorry. I know. Things will get better. Please stop crying.
@Jelv Right so, they’ve killed Offline Web Apps. 👏
@EdwardTorvalds This is not going to kill the centralised web. It’s going to kill the possibility of a private web and a bridge from the web to p2p. So not nice move.
Just updated my blog post on Apple killing Offline Web Apps with questions after they silently updated their blog post (thanks for the heads up @xerz).
I’m now confused and wondering if they thought this out at all.
I’ve also added a link to @soapdog’s blog post on the same subject.