|
I'm working on a new site, what is the latest/hipsteriest frontend framework now? http://www.getmdl.io ? I'm looking to specifically not use bootstrap/pure/foundation
|
# ¿ Jul 7, 2015 02:08 |
|
|
# ¿ May 19, 2024 18:55 |
|
Oh nah, I'm not hating on any of them, I just want to use something different for a change pretty much. Probably sounds dumb.
|
# ¿ Jul 7, 2015 03:21 |
|
Loezi posted:Please stop asking me for a "state or provice" when I'm living in a country that does not use them as part of their postal system. Forcing a user to mangle his/her address to a format that is illogical and foreign just to satisfy some database schema you brewed up is just stupid from the user's perspective.
|
# ¿ Jul 7, 2015 07:00 |
|
fuf posted:roger that. oneprovider paris resells online.net. i pay about 30something euros for ~32/64gb ram machines at online. and more notably, $2/month for 2GB RAM full dedicated servers. they (online.net) are free.fr, one of the larger isps in france, and occasionally have some hilarious deals - i still have a "limited offer" 2x2tb hwraid dual E5 with 64 GB ram for something like $49/m Impotence fucked around with this message at 12:26 on Aug 8, 2015 |
# ¿ Aug 8, 2015 10:54 |
|
check error.log, probably has nothing to do with file itself
|
# ¿ Aug 9, 2015 10:03 |
|
v1nce posted:Place your bets now! My money is on an .htaccess mistake. Apache 2.4 breaks people that don't know how to use grant/deny, it's really funny too But yeah probably htaccess typo or something
|
# ¿ Aug 9, 2015 13:41 |
|
Lumpy posted:I'm going long shot money on parent directory set to 600 permissions. this should generally just show a 403 I would think
|
# ¿ Aug 9, 2015 22:08 |
|
you aren't loading bootstrap.js properly, or not calling button on all elements
|
# ¿ Aug 31, 2015 23:49 |
|
anyone try this yet? https://github.com/OfficeDev/Office-UI-Fabric
|
# ¿ Sep 1, 2015 12:53 |
|
comedy option i've seen is also setting the entire body to invisible or off-screen, then hooking domcontentloaded and setting it visible all at once, possibly with a horrendous css3 upward-fadein transition so it appears to load faster even though it doesn't
|
# ¿ Sep 18, 2015 19:02 |
|
onemillionzombies posted:I'm very new to web design and I recently made a modern website for a small business I work for. Everything seems great except the new wholesale form which I put up for them is getting all of its confirmation emails sent directly to customer's spam folders. It's using the exact same from/sender addresses as the old wholesale form, but those confirmation e-mails are getting through just fine. send via something like amazon ses instead.
|
# ¿ Sep 19, 2015 04:14 |
|
I know someone that will do it for free that wants some portfolio padding for simple tasks, hilariously enough. How exactly is this managed right now? I don't see any flash loading on a browser with flash enabled.
|
# ¿ Sep 29, 2015 05:26 |
|
this doesn't have a git repo and build server and continuous integration??
|
# ¿ Sep 29, 2015 15:33 |
|
Sent a pm, i'm out for a run right now on mobile so I'll reply when I get back I guess
|
# ¿ Sep 29, 2015 16:13 |
|
try rewrite ^/sitemap.xml$ /index.php?sitemap=1 last;
|
# ¿ Sep 30, 2015 14:06 |
|
https://enterprise.github.com/case-studies could help a bit?
|
# ¿ Oct 1, 2015 18:15 |
|
Karthe posted:I'm not sure if this is a good place to ask this, but do all SSL certificate services require you to enter your personal information even if the cert is intended for your employer? A friend pointed me to StartSSL for their free tier 1 certificates. I tried registering with our business address but afterwards I received an e-mail from them that said that I had to enter my personal address and phone number. I'm really uncomfortable with that idea and I think it's silly that that's a requirement when I'm not going to be using the certificate for a personal site. no, most don't ask for anything at all startssl is not a businessey thing, they are basically meant for personal sites and playing around, do not use it for business
|
# ¿ Oct 6, 2015 19:13 |
|
fuf posted:Regarding the above: how can I figure out which London datacentre OneProvider (http://oneprovider.com/ , part of https://gobsn.net) is using for their servers? oneprovider is basically just a reseller + markup, which might be why they don't like to out all of the dc info
|
# ¿ Oct 15, 2015 02:35 |
|
nexus6 posted:Yeah, they've decided to move to Umbraco but we've no idea why. I can't even think of any sites that use it. https://www.nexon.net and its sub-sites and microsites are built on umbraco if that matters
|
# ¿ Oct 17, 2015 00:00 |
|
try put it above the location / for wordpress's rewrites, or ^~ /logs or something
|
# ¿ Oct 21, 2015 06:23 |
|
Omits-Bagels posted:I'm assuming the theme is fairly bloated <link href='//fonts.googleapis.com/css?family=Open+Sans:100,100italic,200 ,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,70 0italic,800,800italic,900,900italic%7CRaleway:100,100italic,200,200italic ,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,8 00,800italic,900,900italic%7CLora:100,100italic,200,200italic,300,300ita lic,400,400italic,500,500italic,600,600italic,700,700italic,800,800itali c,900,900italic%7CMontserrat:100,100italic,200,200italic,300,300italic,4 00,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900 ,900italic%7CMontserrat+Alternates:100,100italic,200,200italic,300,300it alic,400,400italic,500,500italic,600,600italic,700,700italic,800,800ital ic,900,900italic%7COpen+Sans:100,100italic,200,200italic,300,300italic,4 00,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900 ,900italic%26subset%3Dlatin%2Clatin-ext' rel='stylesheet' type='text/css' /> <link rel='stylesheet' id='ls-google-fonts-css' href='//fonts.googleapi s.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Fl ower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext' type ='text/css' media='all' />
|
# ¿ Oct 23, 2015 05:46 |
|
foreach (JSON.parse(<file.har>).entries as e) { console.log(e.url); }, dump that out as one per line?
|
# ¿ Oct 27, 2015 05:58 |
|
Munkeymon posted:Is it actually all that common for attackers to get code+db dumps but not be able to read environment values from live machines or find setup scripts/chef configs/whatever? Yes: not code dumps, but SQLi results in DB dumps, but NOT code dumps or reading envvars. But if you use a poo poo db that allows some form of SELECT EXEC(WHATEVER) then all bets are off AM has a whole other group of issues, and no this would not have helped in any way - AM appears to have been significantly compromised well past db considering even internal emails were leaked, and on top of that they weren't even close to following best practice considering no verification of emails, and hashing passwords with md5() Impotence fucked around with this message at 16:36 on Nov 4, 2015 |
# ¿ Nov 4, 2015 16:34 |
|
v1nce posted:What happens if someone gets access to the server? What happens if an attacker convinces your hosting company (assuming not AWS) to hook up IPMI/OOB-KVM, reboot into single user mode? Are disks encrypted at rest too?
|
# ¿ Nov 5, 2015 04:12 |
|
v1nce posted:Questions like this are why you need to play the game with knowledgeable people. Half the time I get to play this game with freelance or contract clients it results in "why can't we just use godaddy shared hosting"
|
# ¿ Nov 5, 2015 04:41 |
|
Munkeymon posted:OK great so what's preventing an attacker from making what looks like a perfectly normal key request from an owned machine? In this scenario, the attacker can see the code that makes the requests, so it should be trivial to replicate one. Or are we assuming they got the code with, say read-only-no-execute access? If they see the code, they still need to be able to execute the request from within your internal network. Secret managements basically result in a ton of pros: every single key request being logged and auditable [and possibly rejectable if they look suspicious, happen at a time that don't coincide with reboots or restarts of your machines, be at a higher volume than normal], immediate invalidation and cycling of keys throughout the entire infrastructure or disabling the ability of an owned machine to acquire any secrets at all, passwords not being present in envvars, config files, or otherwise, using a secrets-server allowing automated management of AWS KMS and IAM.
|
# ¿ Nov 5, 2015 17:51 |
|
flip key / value over in $alphabet and look for $alphabet[get_firstletter($str)] so you have $alphabet = ['a' => 1]; array_search somewhat overkill when you can do a single constant time lookup since you already know the array index
|
# ¿ Nov 16, 2015 06:22 |
|
Munkeymon posted:There's no PHP involved. I just mention it because every result on Google is some PHP noob not knowing how to get the data into $_POST Are you adding disabled to any part of the select chain? Because that will stop it from showing up. Jsfiddle or something the entire thing + JS if you can.
|
# ¿ Nov 20, 2015 17:07 |
|
Karthe posted:Alright guys, I need help with something. How am I supposed to leverage environment variables to store things like database passwords if these variables exist only for the life of the session in which they're created? Right now I run gunicorn from within Screen (soon Supervisor) to keep my server running in the background, but I can't think of a way to do this without writing a bash script to set the environment variable before launching gunicorn. That would defeat the purpose of env variables since I'd end up hardcoding the password in the bash file, right? Acquire your passwords with/from something like https://github.com/square/keywhiz or https://github.com/hashicorp/vault .
|
# ¿ Dec 17, 2015 23:50 |
|
I'm hella curious why you would move to Mongo from MySQL. I don't really have any advice on how to do it, just really really curious as to the why.
|
# ¿ Jan 5, 2016 00:26 |
|
an skeleton posted:I don't disagree with y'all, unfortunately I don't really have the clout at this point to convince the powers-that-be that we should revert back to SQL. I'm assuming that even though NoSQL dbs are technically schemaless, they still try to enforce some level of normalization? Like... we need to expect some type of structure, right? (I just read that article for the 2nd time and the answer appears to be No) no, not at all. lol if you want to store documents where you can't control or know the schema associated with other relations, i think the best way is still postgres' json/jsonb type
|
# ¿ Jan 5, 2016 17:01 |
|
an skeleton posted:Hahahaha. Well. Will report back when I'm dead. you are an skeleton already
|
# ¿ Jan 5, 2016 17:22 |
|
have to steal as much code as possible before the licence change, if i have it saved already they can't get me!!
|
# ¿ Jan 15, 2016 21:13 |
|
kedo posted:If I were SO I would immediately start injecting the following into people's clipboard when they copy something off the site. 1 minute hackjob, use it as a bookmarklet or greasemonkey or something Impotence fucked around with this message at 01:41 on Jan 16, 2016 |
# ¿ Jan 16, 2016 01:35 |
|
Non Serviam posted:I'm trying to update my site's podcast, and now the feed isn't loading properly. You don't HAVE a podcast feed there. You need to get one before you can add it. The URL you probably want to add is http://www.metalblast.net/category/podcast/feed/
|
# ¿ Jan 17, 2016 23:18 |
|
File extensions are completely meaningless; that IS the xml file you are looking for, and it is xml. You probably had a redirect or a saved file cached there.
|
# ¿ Jan 17, 2016 23:42 |
|
Kings Of Calabria posted:Ok, here's four current sites I'm working on... three of them are ongoing which is garbling my brain and making me completely unable to view them as an outsider, as I have been staring at all of them for hours and hours by this point. You have mismatched tags all over the place like <section><a><div></section></a>, multiple <body> elements stacked in each other, <script> outside of <html>, and a lot of duplicate attributes like <div class="" class="">
|
# ¿ Feb 7, 2016 00:30 |
|
Kings Of Calabria posted::/ is that a back to basics html thing? I never even noticed but ya that seems like something I would do and not notice because it works in my specific browser. What body elements am I using wrong and what should I be doing instead? Yes. I'm surprised your links even go to the proper place when clicked, because this is really really not valid - you don't close links, so if you click the inner one, do you know deterministically which location will go to? Code-wise your class names and etc are basically meaningless and the equivalent of <div style="width:50;height:50;">. Additionally, you're horrendously abusing tables. Every single link being a table is Also never use to position content quote:like vertical aligning with a 100% width/height table It would be easier to literally just apply CSS vertical aligns with position/top/transform or display:table/table-cell;vertical-align For things like navbars, have to played with line-height? --- Syntax: More nested tags that are illegal to nest: --- I am actually curious as to why you would do this, I want to hear your reasoning on it: CSS supports letter-spacing. Impotence fucked around with this message at 01:09 on Feb 7, 2016 |
# ¿ Feb 7, 2016 00:51 |
|
Evil Vin posted:Thanks for the help. It might not be worth the effort for something I was just really playing around with. Though I may still ask them about next time I email them. comedy option code:
|
# ¿ Feb 19, 2016 20:51 |
|
|
# ¿ May 19, 2024 18:55 |
|
did you `service nginx restart`? it looks like it should work
|
# ¿ Apr 8, 2016 12:21 |