1. docker

Last 5 email alerts sent for docker on Hacker News

I personally would have liked to see my code being used by someone else (even a company) instead of it being deleted. Nonetheless, the blog author decided to use AGPL, i do respect that fully. General speaking, i always try to contribute back but holy shit is that shitty. There are enough projects out there were people don't want to add features because they don't need it, they don't care or whatever. You hit so fast a point were it is much easier to fork it and keep the fork up to date than contributing back :| One project did a great job, came up with the idea on how to make money from it (not successful) by removing the docker images and making the docker images private. I get it but do you think he would be happy for a PR which adds proper documentation on how to build those docker images? Or a multi stage docker build which will take care of building it for you? -> no Every person getting born has to learn the open source software mentality fresh. We have so many people and minds which have not yet learned this and there will always be a percentage of people of it.
by Fumtumi 2020-10-21 14:18:56 | link | parent | submission

Run the DB in docker, import the stored procedures as part of the setup migrations and run tests against that from your normal test suite.
by dkersten 2020-10-21 08:41:46 | link | parent | submission

I use a Docker instance for localhost development, so much easier. There are so many problems that can occur in that communication to the database, it's invaluable to test it
by marcus_holmes 2020-10-21 08:20:40 | link | parent | submission

Including a real DB in continuous integration is a must for any development IMO. (And these days usually very easy to throw up a database using Docker -- each of our full CI runs runs in 2 minutes and does hundreds of "create database" calls and populate real SQL databases from scratch..) For instance: 1) You want to implement idempotency in your backend by using uniqueness constraints in your DB 2) That's important to test 3) That's not really tested unless you include a real DB After including a real DB in our CI setup I will never move back.
by dagss 2020-10-21 08:00:32 | link | parent | submission

2. Kubernetes

Last 5 email alerts sent for Kubernetes on Hacker News

> [7 years] is a lifetime in software development. If we were talking about something like Kubernetes best practices, I'd definitely agree with this point. In this case, though, I don't see what substantially changed about ORMs or SQL in the last 7 years.
by majewsky 2020-10-21 08:33:57 | link | parent | submission

You're correct and absolutely want it all wrapped up in a container (or multiple containers, depending on preferences). And yes, you want the host as vanilla as possible. Generally just running the orchestration layer (Kubernetes, Swarm, Nomad) and maybe some logging / metrics stuff (and, depending on who you ask, sshd).
by sgk284 2020-10-21 08:25:17 | link | parent | submission

Components were an implementation detail, to an immediate-mode rendering paradigm for DOM. Previously we had been doing retained-mode rendering. We would modify & shuffle around the pieces of the page. React's components were there to let you re-render the app quickly. When state changed, a new render happened, with new elements emitted. You didn't think of what elements used to be there. React was about the virtual dom. It was about creating an abstraction to let us not have to regard what was on the page, when we were deciding what is on the page. Incidentally, imo, that involved components, but components, while comprising numerous html elements, serve a very similar function to html elements (especially to web components), and were not, imo, a particularly novel part of React. Yes, there was a lot to their creation & implementation, there was a lot of tech work that went into making Components a thing. But components, to me, are far outshadowed by the vdom, by the performance & speed of a data-system designed to go diff & en-act desired state into the live DOM tree. In kubernetes world, we'd call the vdom a controller. It reads the canonical state, the component tree, and insures the target DOM machinery is kept up to date & reflects this desired state.
by rektide 2020-10-21 08:00:23 | link | parent | submission

Alpine's DNS resolver behaves differently than glibc (in particular it ignores the `ndots` option) which can lead to DNS query amplification. In Kubernetes clusters this can be taxing on the kube-dns service and lead to cluster reliability issues around DNS lookups.
by otterley 2020-10-21 03:43:07 | link | parent | submission

We are considering prisma cloud to monitor an on premise kubernetes deployment. Is there anything I should be concerned about or better options to consider?
by CameronNemo 2020-10-21 02:58:48 | link | parent | submission

3. aws

Last 5 email alerts sent for aws on Hacker News

"In my Cloudflare Analytics versus Plausible Analytics comparison, Cloudflare Analytics is inaccurate to the point that the data is pretty much useless as web analytics... Seems for now that the brand new Cloudflare Analytics is simply a server log tool with server log accuracy." Okay, this is nice to distinguish but I would kinda like to know both numbers: what's the raw load coming through CF to my website and what are the "real human users" -- and what tools can CF provide to block the former while allowing the latter? If CF can provide easy to configure and understand WAF rules to filter more of the bots and other raw traffic that I don't want then I'm going to save on my AWS/Azure/hosting bill.
by mikece 2020-10-21 13:26:36 | link | parent | submission

Also interested in any CDN that has decent server-side analytics. It seems like it wouldn't be hard to at least make an attempt to exclude bot requests from the results -- filtering out the main AWS-owned (and other cloud providers) CIDRs alone would go a long way I'm sure
by pickledish 2020-10-21 13:11:04 | link | parent | submission

AWS is IPv4 internally. You know how they promote that their regions are independently isolated and to be the most redundant, you should be in 2 regions. Well, a big part of that was they were running out of IPv4 addresses in their multi-region interconnected network and they were too cheap to upgrade so they started creating every new AWS region in its own separate IPv4 network to save address space in the main one.
by gekonipjawfjn 2020-10-21 13:02:18 | link | parent | submission

> they have allocated roughly 53 Million IPv4 addresses to existing AWS services. We found that all their IPv4 addresses combined equates to approximately 100 Million IPv4 addresses. That means they still have ~47 Million IPv4 addresses, or 47% available for future allocations. No wonder they aren't ready to let of go off this investment easily. This is probably the reason they have no intention of supporting IPv6 on their flagship websites. https://github.com/quaintdev/awesome-no-ipv6-websites
by quaintdev 2020-10-21 09:11:52 | link | parent | submission

4. coreos

Last 5 email alerts sent for coreos on Hacker News

Does anyone have experience using either BUildroot or Yocto to build a virtual appliance? That is, a VM image that runs on a typical x64-based hypervisor. I'd be particularly interested in experience building an immutable image with an A/B setup for updates, in the style of Chromium OS or the old CoreOS (now Flatcar Linux).
by mwcampbell 2020-10-16 22:30:02 | link | parent | submission

Isn't that (one of) the design goals of CoreOS, Alpine, Clear Linux, etc.?
by piaste 2020-10-15 00:08:19 | link | parent | submission

Speaking as someone who frequently injects the most ridiculous of things into a makefile in order to bootstrap build tools and such things... and as someone who had learned my way through enough of the Chrome OS build tool chain to customise a fork of it for building my own variant of CoreOS back in the early days before Kubernetes won the container platform wars... It depends. Sometimes you use these tools because they are already responsible for so much stuff it makes sense to just extend it no matter how crazy it is (Chrome Os build tool was built as hundreds of lines of shell script which built on top of portage which is even more hundred of lines of shell script) ... sometimes it’s because that’s the tool you know will be available (the dozens of bootstrap scripts I’ve beaten crushed and smashed into makefiles complete with OS detection and other stuff) ... and sometimes you don’t have any read you just do it because it’s what your comfortable thinking in. I’ve definitely written bash scripts that would have been better in Python but at the time my mind was building the script up as a sequence of Unix tool operations and pipelines not as a Python program.
by techdragon 2020-10-02 14:48:20 | link | parent | submission

> The problem is not in any particular stack. It’s system design overall. Are you aware that unlike Windows, Chromium OS has been designed from the ground up with security in mind[1]? And that it can run on almost any hardware[2]? > All your mentioned alternatives could just as easily fail if not properly secured. Software has to be designed and chosen with security in mind from the beginning. If a hospital is running something like Windows Server instead of self-updating Container Linux, it has much larger attack vector space. [1] https://www.chromium.org/chromium-os/chromiumos-design-docs/... [2] http://www.neverware.com/enterprise
by krn 2020-09-18 23:27:49 | link | parent | submission

> They got dozens of servers with patient data hacked and encrypted and had to shutdown their intensive care and reroute patients elsewhere. Wouldn't simply using a cloud-based B2B service with something like Chrome OS / Cloudready instead of Windows solve the entire problem? If that wouldn't work for data privacy or network availability reasons, it could be an open-source self-hosted server application, accessible locally only through a REST API. > I don't think there is a single hospital that completely fulfills those standards. Why can't a single technical solution be designed and supported for all state-owned hospitals in Germany?
by krn 2020-09-18 22:41:46 | link | parent | submission

5. javascript

Last 5 email alerts sent for javascript on Hacker News

v8 is not C-fast on general code. A lot of people seem to have the mistaken impression that v8 makes Javascript "fast". It's "fast" for a dynamic language. But on general code... it's still slow. It seems to plateau around 10x slower than C, as with the other JIT efforts to speed up dynamic languages, with a roughly 5-10x memory penalty in the process. Microbenchmarks like the benchmark game tend to miss this because a lot of microbenchmarks focus on numeric speed. But numeric code is easy mode for a JIT. Now, that's cool, and there's nothing wrong with that. If it's the sort of code you have, great! You win. But that performance doesn't translate to general code. These are not value judgments, these are just facts about the implementation. I expect v8 is roughly as fast as JS is going to get, and it's now news if they can eke out a .5% improvement on general code. You can also do much better with v8 if you program in a highly restricted subset of JS that it happens to be able to JIT very well. However, this is not really the same as writing in JS. It's an undocumented subset, it's a constantly changing subset, and there's not a lot of compiler support for it (I'm not aware of anything like a "use JITableOnly" or anything).
by jerf 2020-10-21 16:15:23 | link | parent | submission

> ...Is there any good analytics solution which is only server side? Getting some good statistics but not exposing to visitors they are tracked (even in a friendly mode) would be nice... I'm in the same boat. About a year ago i migrated over to Matomo (fka Piwik) and away from google analytics for all my (and family, friend) web sites that i manage. While i really don't have many big complaints of Matomo, i really wish i didn't have to use javascript for this. I started looking at - but did NOT implement - GoAccess [ http://goaccess.io]...but don't think it fills what i need. Honestly, for the websites that i manage - and in these days where i want to preserve both my privacy and the privacy of my web visitors - I'm wondering if i should just very well shut off all tracking on the front-end, and try using GoAccess or even AWStats, and process stuff offline. I'm not running any ecommerce site after all. And, removing yet another little element (javascript) from websites helps with performance for visitors. Sorry, not helping much, maybe give a look at GoAccess...? Good luck!
by mxuribe 2020-10-21 16:14:26 | link | parent | submission

Well, Javascript has similar dynamism and yet v8 exists. I'm not saying the investment will ever happen for Python, but I do think it's possible for humans.
by robertlagrant 2020-10-21 16:01:57 | link | parent | submission

User Agent and Referer, sure, but you can't get IP with Javascript. (Except by making an HTTP call to some service that returns the IP address.)
by luhn 2020-10-21 16:01:31 | link | parent | submission

You could say the same about JavaScript, but with very heavy investment there are now several implementations that have improved its performance significantly. Also see PyPy, which manages to squeeze a lot more performance out of Python for many use cases without changing the language.
by Liquid_Fire 2020-10-21 15:52:46 | link | parent | submission

6. machine learning

Last 5 email alerts sent for machine learning on Hacker News

Using machine learning to tune your Kubernetes HPA (www.carbonrelay.com)
by digi59404 2020-10-21 16:02:03 | comments

"Googles search results and ad targeting are now entirely powered by machine learning. So basically all of their revenue is now from ML. PageRank is ancient stuff." I wonder if that is the reason I feel Google search has gotten so much more dull.
by rightbyte 2020-10-21 13:37:10 | link | parent | submission

7. python

Last 5 email alerts sent for python on Hacker News

AsciiDoc (the format) is currently being developed in an Eclipse Foundation working group ( https://projects.eclipse.org/working-group/asciidoc ). This working group includes leads from both the Asciidoctor/Ruby and Asciidoc/Python projects. (I'm lurking on the mailing lists but not really part of this effort.) It seems like the goal is to shore up the AsciiDoc standard and prevent further divergence between Python AsciiDoc tools and AsciiDoctor. IMO AsciiDoc's advantage over Markdown, RST, LaTeX and others is its adoption of DocBook XML as an industrial-strength backing format. The combination of a pragmatic markup language and a proven, stable, and relatively media-independent translation target is unique and extremely useful. I'm an enthusiastic believer in Asciidoc-the-language, but the tooling situation is confusing in parts, fragmented in others, and not really living up to its premises. This is exactly why I'm watching the asciidoc-wg project with great interest. My personal wish is for a modern and first-class replacement for the various AsciiDoc-to-PDF flows. I'd bet on CSS Paged Media, although it's been a long haul. The current options (FO/XSLT, dblatex, and asciidoctor-pdf) all have pretty severe limitations. If any of the AsciiDoc/AsciiDoctor devs are reading this, thank you 1,000,000 times for your efforts. It's an extremely complex project and I am grateful there's a community of talented people working on it.
by gsmecher 2020-10-21 18:03:14 | link | parent | submission

I feel like Python's readability and interoperability with C will give it more staying power. Is this wishful thinking?
by rmrfstar 2020-10-21 18:01:13 | link | parent | submission

Many people don't start with Python for speed. They are exactly like you - they write a script that is done in few seconds. Then the data scales, then it takes a few minutes. Then you need it to be faster, and now you either need to rewrite the script. It would be helpful if you didn't need to make this choice.
by nemothekid 2020-10-21 17:45:48 | link | parent | submission

The two that seem to get the most love: VSCode ( https://code.visualstudio.com/docs/python/python-tutorial ) and PyCharm. You may want to take at least a glance at Spyder, as well, if data science is your specialty.
by jdbowman 2020-10-21 17:43:31 | link | parent | submission

4 times is a huge boost, and that's on average. For certain operations it's much much faster. Also comparing a volunteer project to an interpreter that has the resources of google behind it is IMO pretty unfair. Also saying the effort of PyPy is purely around speed is misleading. After all, another huge goal of the project was to implement a python interpreter in python, which they succeeded at.
by overgard 2020-10-21 17:35:14 | link | parent | submission

8. ruby

Last 5 email alerts sent for ruby on Hacker News

I love asciidoc - it has the potential to disrupt Roam Research. However, the primary language of development of asciidoctor is ruby. The nodejs port is autogenerated from Ruby and is killing adoption. In a world where 99% of markdown adoption is through the frontend, this is a harsh reality. None of the pastebin, hackmd guys want to adopt an autogenerated lib.
by sandGorgon 2020-10-21 19:13:02 | link | parent | submission

Without running again using GraalVM EE which TruffleRuby needs for things like Partial Escape Analysis these benchmarks aren’t very useful. I’ve made the same mistake myself before when benchmarking TR. Crystal had wildly different semantics to Ruby, so it’s not a good alternative at all.
by jashmatthews 2020-10-21 19:01:05 | link | parent | submission

> There are good reasons why these limits cannot be overcome in that the complexity and dynamism of the language precludes it. Can you give specific examples and prove that they cannot be overcome? I'll give you a concrete example of how I see it - people said monkey-patching in Python and Ruby was a hard overhead to peak temporal performance and fundamentally added a cost that could not be removed... turns out no that cost can be completely eliminated. I could give you a list of similar examples as long as you want.
by chrisseaton 2020-10-21 18:56:57 | link | parent | submission

Lua doesn’t have assignment as an expression. Lua 5.1 has float as the only numeric type. Lua varargs are easier to implement. Each VM op for Python or Ruby ends up being bigger and having more branches. For Ruby this is quite painful on the numeric types. Branching, boxing and unboxing is far slower than just testing and adding floats in the LuaJIT VM. Due assignment as an expression and things like x = foo(x, x+=1) Ruby, Python and JS all need to copy x into a new VM Register when it’s used. LuaJIT can assume locals aren’t reassigned mid statement and doesn’t need copies.
by jashmatthews 2020-10-21 18:41:46 | link | parent | submission

I'm not familiar with Ruby, but it doesn't seem like TruffleRuby is really competitive with languages known for performance. These are only simple benchmarks, but do indicate a rough ballpark for TruffleRuby: https://github.com/kostya/benchmarks As I understand it, Crystal would be a good Ruby alternative if you want performance. This is of course a whole new language designed with performance in mind from the beginning and here is a repeating theme: you need to consider performance at the start, not 20 years later.
by arc776 2020-10-21 18:41:22 | link | parent | submission

9. bitcoin

Last 5 email alerts sent for bitcoin on Hacker News

Yes, that's one approach. It's a very conservative approach though, to stay far away from new technologies until they're firmly established. There's a lot of money to be made by getting into things when they're still on the bleeding edge though, and the entire startup community exists to take advantage of that fact. The real question is, is it still early days for Bitcoin, in which case it would make sense to get into it now (albeit still risky)? Or are the early days over and all those gains have already been realized? You'd need a crystal ball to know for sure.
by CydeWeys 2020-10-21 19:54:37 | link | parent | submission

Muting key words is a fantastic way to weed your Twitter garden. I mute many politician names and organizations (and variations like possessives and plurals) and annoying memes of the week. Even then, a surprising amount of related tweets get through (because the muted word is in a linked news article or attached image, not the Tweet text). Unfortunately, the mute list has a hard coded limit of only 200 words. I'm always hitting that max and needing to retire old words, which is a hassle. Also, Twitter's own ads are not affected by the mute list. I mute words related to Bitcoin and cryptocurrency, yet I still get ads that contain those exact words. Muting instructions: https://help.twitter.com/en/using-twitter/advanced-twitter-m...
by cpeterso 2020-10-21 19:37:07 | link | parent | submission

I don't see your point actually. Yes bitcoin is both digital gold but a type of gold that can be used also as currency which is not possible right now. Also its not centralized that's a myth. So?
by biolurker1 2020-10-21 19:29:42 | link | parent | submission

I read that comment as saying it doesn't require touching fiat. Bitcoin is a currency, so doing any sort of store-and-forward of it makes you a money transmitter. > For traditional Bitcoin mixers as in this case, someone receives money from users and then transmits money to many users. This is money transmission and requires registration with FinCEN and sometimes requires registration with states ( though some states have exemptions for completely crypto to crypto transmission that doesn't touch USD or other fiat ). Some states having exceptions for pure crypto transmission implies that most states don't.
by andreareina 2020-10-21 19:08:23 | link | parent | submission

From what I gather, the ledger is what makes it possible for bitcoins to be owned. Without a ledger anyone could claim any bitcoin their own. If my understanding is correct, you're basically saying that bitcoins have the ability to be owned, an ability most physical assets already have. Not comparable at all with the actual intrinsic properties of gold.
by lottin 2020-10-21 18:55:59 | link | parent | submission

10. ios

Last 5 email alerts sent for ios on Hacker News

Google had 61% of the search market in 2008. Google used their free browser, paid placement deals, and acquisitions to further enhance their position to the 90%+ that it is now. Why do you think Google bought Android? Google panicked after seeing a private demo of iOS. Remember, back then Google execs were sitting on the Apple board.
by cwhiz 2020-10-21 19:24:36 | link | parent | submission

Firefox iOS has a "Tracking Protection" feature which will block ads that do more aggressive tracking. It's on by default but I recommend toggling it onto strict mode for best results. You can also use Firefox Focus to apply the same functionality to the default Safari browser. The thing with the most potential on iOS is Lockdown, a local-only firewall which filters network connections from any application. It'll break apps like Facebook Messenger if you turn on all the options. But again, it's focused on trackers, not ads specifically.
by jamesgeck0 2020-10-21 19:16:14 | link | parent | submission

The best adblocking extension is uBlock origin and is available on Firefox Android and desktop. I can't speak for iOS though.
by jmnicolas 2020-10-21 18:20:35 | link | parent | submission

I recently switched to Edge on my iphone because it has adblock by default. Firefox doesn't have the adblocking ability. Then, I switched to Edge on my MacOS as well because I want to maintain my bookmarks sync between the 2 devices. I would definitely go back to Firefox if it has adblock in iOS.
by mrbonner 2020-10-21 18:02:57 | link | parent | submission

Hi everyone, My cofounder Richard and I just launched Bento on ProductHunt. It's a mobile app that helps diners save $2.00 per order on food delivery by letting them compare the prices across different service providers such as DoorDash, UberEats and GrubHub. We used RN as our framework so we were able to launch our MVP for both iOS and Android in a short 2 months. Please feel free to check it out and any feedback would be greatly appreciated!
by jasonca0716 2020-10-21 17:51:35 | link | parent | submission