Trending Feed

today successfully Performed crud operations in docker Mongo container using Prisma. which was tough for me because Prisma required replica set database. it took lots of time cuz there was unknown type bug in that mongo image which is forbidden to connect express server. i tried to find that problem over the whole internet even chat gpt did'nt solve my problem i was very frustrated and i tried many steps to solve that problem like running many time multiple containers on same network bridge, port ,db,rs.initiate,extra_hosts,environment configuration etc . but end the end I solved that problem now i am very happy and confident to configure and deploy Mongo replica set to any machine

Help Needed: File Association Error (Code: VSC-006)

I hope you're all doing well. I'm running into a bit of a snag with my ThinkPad L14 Gen 3 laptop [ https://www.lenovo.com/ca/en/laptops/ ] and Visual Studio Code. I'm encountering a "File Association Error" with the error code "VSC-006" and could use some community wisdom to help resolve it.

Problem Description: Whenever I try to open certain files in Visual Studio Code, I'm hit with a "File Association Error (Code: VSC-006)." This error is preventing me from seamlessly working on my projects.

Symptoms: The error message appears when attempting to open specific file types. Other files open without issue. I've checked default file associations on my laptop, and they seem correct.

Your help would make a significant difference in getting back to smooth coding. Thanks in advance for your expertise!

I was tasked with migrating data found in an array containing a series of arrays of objects within the documents of our Firestore database to a subcollection. The purpose of this migration was to improve the management of this information, making it easier to filter, edit, and delete this data. I developed a function to filter the documents that had some data within these arrays and soon found over 500 documents to migrate. To solve this problem, I developed a JavaScript logic that involved separating this data into an object called "data" and also obtaining the document's ID to which this data belonged. Then, I saved this data in the subcollection of the document with that ID.

Snippet of code to retrieve documents in the collection:

const q = query(
  collection(db, "clientes"),
  where("empresa", "!=", "teste")
);
const querySnapshot = await getDocs(q);

Snippet of code where i filter the necessary data from each document:

let clientes = [];
querySnapshot.forEach((doc) => {
  const acessos = doc.data().acessos;

  if (acessos && typeof acessos === "object") {
    Object.entries(acessos).forEach(([categoria, objetos]) => {
      if (Array.isArray(objetos)) {
        objetos.forEach((objeto) => {
          const {
            email = "",
            nome = "",
            observacao = "",
            senha = "",
          } = objeto || {};

          let cliente = {
            id: doc.id,
            razaoSocial: doc.data().razaoSocial,
            categoria,
            email,
            nome,
            observacao,
            senha,
          };
          clientes.push(cliente);
        });
      } else {
        const {
          email = "",
          nome = "",
          observacao = "",
          senha = "",
        } = objetos || {};

        let cliente = {
          id: doc.id,
          razaoSocial: doc.data().razaoSocial,
          categoria,
          email,
          nome,
          observacao,
          senha,
        };
        clientes.push(cliente);
      }
    });
  }
});

return clientes;

Function I used to retrieve and separate the data, and then register it in the subcollection with the registerAccess() function:

async function fetchCustomersWithAccess() {
  const result = await listCustomersWithAccess();
  result.forEach((doc) => {
    const data = {
      categoria: doc.categoria,
      email: doc.email,
      nome: doc.nome,
      observacao: doc.observacao,
      senha: doc.senha,
    };

    const docId = doc.id;

    registerAccess(docId, data);
  });
}

Best OS Options for 1U Rack Servers: Linux vs. Windows Server

Hello Everyone

I'm currently in the process of setting up a new 1U rack server, and I'm facing a crucial decision regarding the operating system (OS) to install. I know that the choice of OS can significantly impact performance, security, and overall server functionality. In particular, I'm torn between Linux and Windows Server.

I would greatly appreciate your insights and experiences on this matter. Here are a few questions to consider and discuss:

Which operating system (Linux or Windows Server) have you found to be more reliable for 1U rack servers [ https://www.lenovo.com/ch/fr/c/servers-storage/servers/racks/ ] in your experience?

Are there specific use cases or workloads where one OS outperforms the other on a 1U rack server?

What are the security considerations when choosing between Linux and Windows Server for your rack server?

How user-friendly are these OS options when it comes to server management and administration?

Are there any compatibility issues with hardware or software that you've encountered with either OS on 1U rack servers?

What are the licensing costs associated with both options, and how do they factor into your decision?

Have you had any notable experiences, positive or negative, with support and community resources for either OS?

Are there any other factors that you believe are crucial in making this decision?

Your insights and experiences will be immensely valuable in helping me make an informed choice for my 1U rack server. I'm eager to learn from your expertise and engage in this discussion.

Thank you in advance

So, - you like using Windows, - you like using Docker, - you still want to use a Linux VM in a hypervisor, but found out that using a Type-2 Hypervisor like VirtualBox with Docker Desktop installed on Windows relegates it to run in software mode (the slow mode), and not hardware-accelerated, - AND you don't want to pay for a Windows Pro/Enterprise license, so you stick to Home.

Now, what do you do?

You brew a cup of coffee (or beer if that's what you like) and run this script (linked to Github): https://github.com/palaashatri/mostlyrandom/blob/main/scripts/hyper-v-on-windows-home.bat

OR the PowerShell alternative (linked to Github): https://github.com/palaashatri/mostlyrandom/blob/main/scripts/hyper-v-on-windows-home.ps1

And voila, you can now use Hyper-V manager (a type-1/native hypervisor), on a Windows 10/11 Home device, along with Docker Desktop! Enjoy your hardware-accelerated Linux VMs, Docker, all on Windows Home, as if they're running a Pro/Enterprise license of Windows!

Tested and running on Windows 11 Home.

Hello everyone,

I'm a computer engineering student, and I want to become a fullstack developer but I have a tendency to machine learning and data. Recently I decided to learn Python for the backend because I already know JavaScript with the React library for the frontend to create fullstack web apps. I want to know if I'm going on the right path with combining the backend with the frontend for future AI projects.

Thanks.

When analyzing our access log, we saw some attack patterns. We wrote some block rules to filter the most common ones. These are the ones, that fit our application. Since we use Symfony with speaking URLs, eg. no valid URL should contain a ".php" ending. This rule alone prevents most of the traffic reaching deeper into the stack. Also blocking of dot-files (common configs) is an additional safety net. Since we analyze our access log on a regular base, we can add additional rules if needed.

map $request_uri $isBlocked {
  default 0;
  # still allow .well-known
  ~^/\.well-known 0;

  # wordpress attack
  ~*.*wp-(admin|login|content).* 1;
  ~*.*wordpress.* 1;

  # other common attacks
  ~*.*(phpmyadmin|pma|myadmin)([^a-zA-Z0-9\.\-].*)?$ 1;
  ~*.*(typo3|joomla|drupal|contao).* 1;
  ~*.*(setup|install)\.php.* 1;
  ~*.*(cgi-|cgibin).* 1;
  ~*.*/(webtools|ws|storage|htbin)/.* 1;

  # file endings: x.exe, x.exe.foo, x.exe/foo; but not x.exefoo
  ~*.*\.(exe|cmd|asp|cgi|pl|php|sql|py|cfg|yaml|yml|dat|log|lock)([^a-zA-Z0-9\.\-].*)?$ 1;

  # like "php://filter/convert.iconv..." or other like "ftp://" in path
  ~*.://.* 1;

  # parent directory "../"
  ~*.*\.\./.* 1;
  # dot files like, .env, .git/config
  ~*.*/\..* 1;

  # sql injections
  ~*.*union.*select.* 1;
  ~*.*('|")(.*)(drop|insert|md5|select|union).* 1;

  # script tag injection
  ~*.*(<|%3C).*script.* 1;

  # evil methods
  ~*.*(eval|xor|sysdate|sleep|now|chr|delay)\(.* 1;

  # base64 en-/decoding
  ~*.*base64(_)?(en|de)code.* 1;

  # php super globals
  ~*.*(GLOBALS|ENV|REQUEST|SESSION|SERVER)(=|\[|\%).* 1;
}

map $http_referer $isInvalidReferer {
  default 1;

  # empty is fine
  "" 0;
  "-" 0;

  # should contain valid URL including protocol
  ~^http(s)?://.+ 0;
}

server {
  # ...

  # prevent communication of current nginx version
  server_tokens off;

  if ($isBlocked) {
    return 404;
  }
  if ($isInvalidReferer) {
    return 400;
  }

  # location ...
}

Besides this, attacks are reported to the providers abuse contact. If attacks don't stop we use an additional rule set for blocking IP-ranges.

We plan to migrate our continous integration platform from Drone to Woodpecker CI, since the open source version of drone is no longer maintained. Alternatives were Jenkins, Bitbucket Pipelines, Concours CI or a migration to GitLab. Woodpecker CI as fork looked like the easiest way to migrate. The migration is currently evaluated. Results may follow later.