Fedora Magazine runs a handy article for anyone using work/corporate VPNs from a home computer – “Using the NetworkManagerās DNSMasq plugin“. This is also not the only use for the DNSMasq plugin. It comes in useful when you work local cluster setups for development or testing. Furthermore, pretty much any setup where you need to route DNS queries to different servers, this can either be used out of the box, or provide good ideas as to how to solve the problem.
Category: Web work
These days, most of my work is very related to the online world. Building web sites, reviewing web applications, integrating with web services, coordinating people who are far away from each other, etc. Whenever I find a new tool or service or an innovative, interesting idea about working online, I share it in this category.
Eventual consistency
This is awesome!
Dgraph – fast, transactional, distributed graph database
Dgraph is a fast, transactional distributed graph database, written in Go. It’s Open Source too.
If you need a quick introduction to graph databases or if you are wondering whether you need to use one, here’s a good video to get you started.
For even more insight, read “Why Google Needed a Graph Serving System“. There are some interesting examples of problems, solutions, and data discovery. For example:
Cerebro would often reveal very interesting facts that one didnāt originally search for. When youād run a query like
[us presidents]
, Cerebro would understand that presidents are humans, and humans have height. Therefore, it would allow you to sort presidents by height and show that Abraham Lincoln is the tallest US president. It would also let people be filtered by nationality. In this case, it showed America and Britain in the list, because US had one British president, namely George Washington. (Disclaimer: Results based on the state of KG at the time; canāt vouch for the correctness of these results.)
Learn Enough Docker to be Useful
“Learn Enough Docker to be Useful” is a series of articles (so far 6) that explains different parts of Docker in a very simple and straightforward way. Here are the parts so far:
Intro to basic web application security
“Intro to basic web application security” is an excellent overview of the most common mistakes web developers make when it comes to security. The article provides practical examples (including code snippets and screenshots), which illustrate the problems and ways to solve them. The list includes:
- SQL injection (of course! no such guide would be complete without it)
- Cross-site scripting (XSS)
- Cross-site Request Forgery (CSRF/XSRF)
- Local file inclusion (LFI)
- Insufficient password hashing
- Man in the middle (MITM)
- Command injection
- XML external entity (XXE)
- Sensitive data exposure (including error messages and exceptions)
- Login rate limits
- and a variety of other, small, but potentially dangerous issues.