I wanted to have a default server that catch ~wrong DNS query to the server
Solution
I don't know how to link to my previous lemmy post, so here it is again
server {
listen 443 ssl;
server_name _;
ssl_certificate /etc/nginx/ssl/catchall.crt;
ssl_certificate_key /etc/nginx/ssl/catchall.key;
error_page 404 /404_CatchAll.html;
# Everything is a 404
location / {
return 404;
}
location /404_CatchAll.html {root /var/www/html/;}
}
The full working code:
server {
listen 443 ssl;
server_name _;
ssl_certificate /etc/nginx/ssl/catchall.crt;
ssl_certificate_key /etc/nginx/ssl/catchall.key;
error_page 404 /404_CatchAll.html;
# Everything is a 404
location / {
return 404;
}
location /404_CatchAll.html {root /var/www/html/;}
}
ok I've found something that ~works !
server {
listen 443 ssl;
server_name _;
ssl_certificate /etc/nginx/ssl/catchall.crt;
ssl_certificate_key /etc/nginx/ssl/catchall.key;
error_page 404 /404.html; #at /var/www/html/
location /404.html {internal;}
return 404;
}
so i get the default 404 html from nginx. but not the one that I specified error_page 404 /404.html;
any ideas ?
line 5 you mean ?
error_page 404 /404.html; #this one ?
Hi,
You might be aware that if a DNS request point your nginx server.
and this later do not have a server rule for it , nginx will server anyway the first server found in your config file, WTF !
So I've found https://stackoverflow.com/a/23281442
```nginx server { listen 80 default_server; server_name everythingelse;
error_page 404 /404.html;
Everything is a 404
location / { return 404; #return the code 404 }
link the code to the file
location = /404.html { #EDIT this line to make it match the folder where there is your errors page #Dont forget to create 404.html in this folder root /var/www/nginx/errors/; } } ```
But this is not working !
I made one of my domain pointing to this nginx server, and he still server another site aka server For httpS for http nothing appear..
Thanks.
cross-posted from: https://programming.dev/post/13465911
> Hi,
>
> I'm confuse about those mandatory legal notices that governments impose for websites..
>
> Before going further I invite you to read:\
> A Declaration of the Independence of Cyberspace \
> and \
> Discourse on Voluntary Servitude[^1] \
>
> From all the articles[^2] that I read about the mandatory notice to display for website none of them reference the URL of their claim !! / of the legal text !! WTF[^links]
>
> Internet is by essence world wide, and when reading all those legal requirement it's seem that you should display notices for EVERY country !
>
> it's seem also that if you own a private website, just for your own or family use, like for example a web file hosting services. (NextCloud etc..)
> You should comply with the same requirement that are asked for company ! again... WTF !
>
> Also I don't understand, why make mandatory those notices...(beside the scam (money) ) , I'll come back to this below.
>
> - If you want to buy something off a website, and this later do not mentions any legal address , contact info and so on, the responsibility to buy or not should be only yours. (For example, will you buy a yogurt in the supermarket if there were no brand, contact info on the packing or bill ?)
> - if the state want to censor "regulate" a website on the old internet[^OI] there is plenty of way to know who is the author or at the very least where is it hosted..
> - if a website use/distribute a copyrighted© elements. The right holder can do/contact in the following order:
> - check the website for contact (if any)
> - check the DNS record
> - check the hosting
> - contact the owner of the IP (IP are leased by company../ ISP )
>
>
> So there is no sense to ask everyone that extra heavy burden.
> The only advantage is for law firm (and those cookies related firm) that make a profit out of it. I heard in my entourage peoples that had pay thousandth of $$ to generate those text, keep up to date etc.. even for small website.
>
> - If you think those legal notice are a good thing please do not hesitate to motivate your answer.
> - If you have any good links about it, feel free to share.
> - What are you doing your self on website of customer and/or for your private websites ?
> - if you know a Lemmy community worth to share this post, step forward.
>
> Thanks...
>
> [^1]:https://en.wikipedia.org/wiki/Discourse_on_Voluntary_Servitude \
> https://archive.org/details/0000-00-00-00-etienne-de-la-boetie-00_202201/1548-00-00_Discourse%20on%20Voluntary%20Servitude_1942_org/mode/2up \
> --
> [^2]:https://elementor.com/blog/website-legal-requirements
> https://www.websitepolicies.com/blog/legal-requirements-for-websites
> [^OI]:The one that you are using now with the domains scam. A future internet might be using TOR or GNU Name System
>
> [^links]: if you have those links feel free to share !
Hi,
I'm confuse about those mandatory legal notices that governments impose for websites..
Before going further I invite you to read:\ A Declaration of the Independence of Cyberspace \ and \ Discourse on Voluntary Servitude[^1] \
From all the articles[^2] that I read about the mandatory notice to display for website none of them reference the URL of their claim !! / of the legal text !! WTF[^links]
Internet is by essence world wide, and when reading all those legal requirement it's seem that you should display notices for EVERY country !
it's seem also that if you own a private website, just for your own or family use, like for example a web file hosting services. (NextCloud etc..) You should comply with the same requirement that are asked for company ! again... WTF !
Also I don't understand, why make mandatory those notices...(beside the scam (money) ) , I'll come back to this below.
- If you want to buy something off a website, and this later do not mentions any legal address , contact info and so on, the responsibility to buy or not should be only yours. (For example, will you buy a yogurt in the supermarket if there were no brand, contact info on the packing or bill ?)
- if the state want to
censor"regulate" a website on the old internet[^OI] there is plenty of way to know who is the author or at the very least where is it hosted.. - if a website use/distribute a copyrighted© elements. The right holder can do/contact in the following order:
- check the website for contact (if any)
- check the DNS record
- check the hosting
- contact the owner of the IP (IP are leased by company../ ISP )
So there is no sense to ask everyone that extra heavy burden. The only advantage is for law firm (and those cookies related firm) that make a profit out of it. I heard in my entourage peoples that had pay thousandth of $$ to generate those text, keep up to date etc.. even for small website.
- If you think those legal notice are a good thing please do not hesitate to motivate your answer.
- If you have any good links about it, feel free to share.
- What are you doing your self on website of customer and/or for your private websites ?
- if you know a Lemmy community worth to share this post, step forward.
Thanks...
CrossPosted on:
https://lemmy.ml/post/15583047
[^1]:https://en.wikipedia.org/wiki/Discourse_on_Voluntary_Servitude \ https://archive.org/details/0000-00-00-00-etienne-de-la-boetie-00_202201/1548-00-00_Discourse%20on%20Voluntary%20Servitude_1942_org/mode/2up \ -- [^2]:https://elementor.com/blog/website-legal-requirements https://www.websitepolicies.com/blog/legal-requirements-for-websites [^OI]:The one that you are using now with the domains scam. A future internet might be using TOR or GNU Name System
[^links]: if you have those links feel free to share !
Something worth reading regarding Systemd https://www.devuan.org/os/announce/ Cheers.
Hi,
Unfortunately I need to register a domain name for the "old" Internet. So this one with the domain name scam[^DomainScam] and so on..
So which registrar would you recommend that is the closed regarding the FLOSS / GNU philosophy ?
And then I hope the world, will migrate to something better than this WWW scam and I could get rid of this domain..
Thanks.
[^DomainScam]: - https://www.namepros.com/threads/is-the-domain-industry-like-a-ponzi-scheme.725672 - https://www.w3.org/2014/strint/papers/65.pdf - https://www.gnunet.org/en - https://www.torproject.org - https://youbroketheinternet.org
cross-posted from: https://programming.dev/post/10497245
> Hi,
>
> For websites I've always restricted username to use Apostrophe ' and " and some times even space . If a website necessitate special character then I prefer to create an additional DB field ~DisplayName.
>
> It's easier to forbid the use of Apostrophe, otherwise you will have to escape also your search query to match what has been recorded in the DB.
>
> On the topic I've this
> https://security.stackexchange.com/questions/202902/is-single-quote-filtering-nonsense
>
> But if you have better documentation feel free to share :)
>
> Thanks
>
Hi,
For websites I've always restricted username to use Apostrophe ' and " and some times even space . If a website necessitate special character then I prefer to create an additional DB field ~DisplayName.
It's easier to forbid the use of Apostrophe, otherwise you will have to escape also your search query to match what has been recorded in the DB.
On the topic I've this https://security.stackexchange.com/questions/202902/is-single-quote-filtering-nonsense
But if you have better documentation feel free to share :)
Thanks
I've received a lot of reactions on the original post: https://programming.dev/post/10465121
But if someone is involved with the development of Thunderbird I think this is worth reading: https://programming.dev/comment/7677398
For my part I will use the OpenPGP sigin tools for now.
Cheers.
Thank you all for your quick reactions !!
To summarize if I want to use the PDF built-in signing I will need to convert my OpenPGP into a X.509 cert otherwise I can simply use the OpenPGP file signing
I want to stick to the UNIX Philosophy especially:
Write programs that do one thing and do it well.
So I will use the OpenPGP signing tool :)
Thanks !
cross-posted from: https://programming.dev/post/10465121
> Hi everyone, > > I was wondering if you know a way to use the generated OpenPGP key created trough Thunderbird to sign PDF's ? > > (Devuan distro) > > Thanks.
Hi everyone,
I was wondering if you know a way to use the generated OpenPGP key created trough Thunderbird to sign PDF's ?
(Devuan distro)
Thanks.
You can interact with the HTML DOM with Python !!!!!
Thanks all for your input.
My only workaround was to check programmatically all those input and set them with a setCustomValidity()
Too bad there isn't a method to relaunch the validity across all the page :/
Cheers
Thank @daisyKutter@lemmy.ml
it's look like that that code only verify the form when submitting.. I need to check the validity when the element has been loaded.
btw checkValidity() do not solve this issue as it return True when the length is longer than maxlength ! O_o I guess this is were is lying the "bug"
My two cent
For me this is a huge flaw ! I don't understand how we (dev) are we still developing on "standard" that are so f*ck-up..
Thank you @coffee_poops@sh.itjust.works that exactly my question.. how can I trigger the validation process again ?
It will not be digest to send all what I use for you to see it (it will lead to TL;DR)
but here an elements (loaded with XHR that give the problem
So normally this element should be invalid and a CSS selector of :invalid should match. but it's not the case because the browser seem to not run the validation check on loaded elements... !?
if we edit manually the input , for example removing one character then the validation process kick-in and the CSS selector work etc..
~~ cross-posted from: https://programming.dev/post/9179830 ~~
> Hi,
>
> I'm loading some content with XHR (aka Ajax) the loaded input elements that have a invalid value assigned are not checked trough the validation process.
>
> so the CSS styling with :invalid is for example not working etc..
>
> is there a way to force the validation process on those elements ?
>
> edit: Browser is Firefox
>
> Thanks.
cross-posted from: https://programming.dev/post/7667731
> Hi, > > As CSS do not have a color-overlay[^1] filter. > > There is some heavy work around: > > https://isotropic.co/tool/hex-color-to-css-filter/ > > that use a combination of CSS filter to target the desired color... > > Those online calculators are neat, but I would like an offline version, in case the provided one become inaccessible. > > I've downloaded the zip of https://codepen.io/sosuke/pen/Pjoqqp > > But it doesn't work locally.. :/ > > So I would like to know, if someone know one in π Python ? or how can I make one then ? > > Or if someone know another way to have the color-overlay[^1] effect in html\css, I'm all ears ! > > Thank. > > > [^1]: To apply like in Photoshop a color on the shape of the image (so not on the parts that have transparency.
Hi,
As CSS do not have a color-overlay[^1] filter.
There is some heavy work around:
https://isotropic.co/tool/hex-color-to-css-filter/
that use a combination of CSS filter to target the desired color...
Those online calculators are neat, but I would like an offline version, in case the provided one become inaccessible.
I've downloaded the zip of https://codepen.io/sosuke/pen/Pjoqqp
But it doesn't work locally.. :/
So I would like to know, if someone know one in π Python ? or how can I make one then ?
Or if someone know another way to have the color-overlay[^1] effect in html\css, I'm all ears !
Thank.
[^1]: To apply like in Photoshop a color on the shape of the image (so not on the parts that have transparency.
Thanks for your output, but RSA seem to not be recommended anymore, dig on a search engine..
cross-posted from: https://programming.dev/post/6788379
> Hi, > > As we might all know ( Early adopter of Lemmy ). > Lemmy has been (also) made to give an alternative to the censor kingdom of Reddit ! > https://en.wikipedia.org/wiki/Lemmy_(software) > > And further more Lemmy is fLOSS π > > Great ! but watch out ! we don't want that Lemmy take the same path as Reddit did ! ( hopefully this is limited as it run as a ~Federated model ) > > Anyways, I believe to avoid censorship and jeopardize users privacy the following should be considered by Instance admins and moderators. > > - Avoid as possible a mandatory email to register > Doing so is not reducing spam or whatever you're afraid ! > It's limiting users to create account that preserve their anonymity ! > If you don't know why anonymity is important I'll suggest you to dig this website to start with https://www.laquadrature.net/en/support/#chiffrement > BTW if I couldn't be anonymous, I wouldn't write any post on Lemmy, as I'm not living in a free country !! > Look on other instances some admin have found clever way to circumvent bots without the need of an email. > > - Also Lemmy don't require too much of moderation ! as any user can use the block feature in their options ! > so you should not censor content in behave of others ! > > If the freedom of expression is limited to the ideas that we like, it is not freedom of expression. > Noam Chomsky. > > Cheers,
cross-posted from: https://programming.dev/post/6788379
> Hi, > > As we might all know ( Early adopter of Lemmy ). > Lemmy has been (also) made to give an alternative to the censor kingdom of Reddit ! > https://en.wikipedia.org/wiki/Lemmy_(software) > > And further more Lemmy is fLOSS π > > Great ! but watch out ! we don't want that Lemmy take the same path as Reddit did ! ( hopefully this is limited as it run as a ~Federated model ) > > Anyways, I believe to avoid censorship and jeopardize users privacy the following should be considered by Instance admins and moderators. > > - Avoid as possible a mandatory email to register > Doing so is not reducing spam or whatever you're afraid ! > It's limiting users to create account that preserve their anonymity ! > If you don't know why anonymity is important I'll suggest you to dig this website to start with https://www.laquadrature.net/en/support/#chiffrement > BTW if I couldn't be anonymous, I wouldn't write any post on Lemmy, as I'm not living in a free country !! > Look on other instances some admin have found clever way to circumvent bots without the need of an email. > > - Also Lemmy don't require too much of moderation ! as any user can use the block feature in their options ! > so you should not censor content in behave of others ! > > If the freedom of expression is limited to the ideas that we like, it is not freedom of expression. > Noam Chomsky. > > Cheers,
cross-posted from: https://programming.dev/post/6788379
> Hi, > > As we might all know ( Early adopter of Lemmy ). > Lemmy has been (also) made to give an alternative to the censor kingdom of Reddit ! > https://en.wikipedia.org/wiki/Lemmy_(software) > > And further more Lemmy is fLOSS π > > Great ! but watch out ! we don't want that Lemmy take the same path as Reddit did ! ( hopefully this is limited as it run as a ~Federated model ) > > Anyways, I believe to avoid censorship and jeopardize users privacy the following should be considered by Instance admins and moderators. > > - Avoid as possible a mandatory email to register > Doing so is not reducing spam or whatever you're afraid ! > It's limiting users to create account that preserve their anonymity ! > If you don't know why anonymity is important I'll suggest you to dig this website to start with https://www.laquadrature.net/en/support/#chiffrement > BTW if I couldn't be anonymous, I wouldn't write any post on Lemmy, as I'm not living in a free country !! > Look on other instances some admin have found clever way to circumvent bots without the need of an email. > > - Also Lemmy don't require too much of moderation ! as any user can use the block feature in their options ! > so you should not censor content in behave of others ! > > If the freedom of expression is limited to the ideas that we like, it is not freedom of expression. > Noam Chomsky. > > Cheers,
@crystal@feddit.de I didn't know about GrapheneOS too bad it only work Pixel phones (that are also owned by Google ! ) So If I'm against Google for all what they do https://degooglisons-internet.org/en/ I'll certainly not give them money !
(Finding and importing a phone is something you have to do even when using the stock OS.)
True, but you will do it multiple time if the phone that your looking for doesn't have an available ROM somewhere..
cross-posted from: https://programming.dev/post/6749271
> Hi,
>
> ::: spoiler Intro about XDA forum (skippable)
>
> I was using a lot xda-developers.com for anything that was related to Android development and phone support. (ROM etc..)
>
> But it became rotten -->
>
> ! π±
>
> ! π±
> :::
>
> ::: spoiler Current situation ton Install another ROM ~OS
>
> As you may know, in order to install another ROM
> For example to get rid of Google ! πΏ
>
> You need one that is specifically build for your devices
> for example: https://wiki.lineageos.org/devices/
>
> This is so inefficient !
>
> You might have heard of Treble that focus on this problem
> - https://android-developers.googleblog.com/2017/05/here-comes-treble-modular-base-for.html
> - https://www.hsc.com/resources/blog/what-is-android-treble/
>
> sadly it's made by google πΏ and I doubt that they will release all the code. We will see.
>
> If you don't know what is AOSP <--
>
>
> :::
>
> ::: spoiler The question : How to install AOSP on a "Supported device"
>
> I've always use only google-free smartphone ! But OMG it's time consuming.
> 1. Found a smartphone ( with the spec you want and in your budget )
> 2. Check if you can have\import it in your "country"
> 3. Check if someone already cook a ROM that support that specific model
> 4. or create it by yourself (even more time consuming )
> 5. Sometimes: bypass any protection that prevent to install another ROM !
> 6. Finally install the ROM's, boot loader etc...
>
> At this time, when it seem that Treble is not there yet...
> Do you have a quicker path\Solution ?
>
> Thanks
> :::
Hi,
Intro about XDA forum (skippable)
I was using a lot xda-developers.com for anything that was related to Android development and phone support. (ROM etc..)
But it became rotten -->
Current situation to Install another ROM ~OS
As you may know, in order to install another ROM For example to get rid of Google ! πΏ
You need one that is specifically build for your devices for example: https://wiki.lineageos.org/devices/
This is so inefficient !
You might have heard of Treble that focus on this problem
- https://android-developers.googleblog.com/2017/05/here-comes-treble-modular-base-for.html
- https://www.hsc.com/resources/blog/what-is-android-treble/
sadly it's made by google πΏ and I doubt that they will release all the code. We will see.
If you don't know what is AOSP and this article too
The question : How to install AOSP on a "Supported device"
I've always use only google-free smartphone ! But OMG it's time consuming.
- Found a smartphone ( with the spec you want and in your budget )
- Check if you can have\import it in your "country"
- Check if someone already cook a ROM that support that specific model
- or create it by yourself (even more time consuming )
- Sometimes: bypass any protection that prevent to install another ROM !
- Finally install the ROM's, boot loader etc...
At this time, when it seem that Treble is not there yet... Do you have a quicker path\Solution ?
Thanks
Has I found nothing, I've write a piece of code in Python π ! and compile it for Windows..
Thank you @Vilian@lemmy.ca Seem great, I'll keep it for later :)
But not for what I need now, as
Mutt is a small but very powerful text-based mail client for Unix operating systems
and it's a "full" client, I need just the SMTP functionality.
OMG that too bad ! Lemmy that is federated and LOSS use github to track the bugs :/ Too bad I don't have an account. So anyone, feel free to report this bug. Thanks.
see my comment in the original post ( https://programming.dev/post/6111023) for more info on the suspected bug.
ok I manage to send my post ! (it look like a lemmy bug... , do you know where to report it ? )
it seem that lemmy didn't support the following
Hi,
How can we (under Windows...) encrypt file (or stdout) asymmetrically ? (best will be with ECC)
I see I'm not alone with this question https://security.stackexchange.com/questions/86721/can-i-specify-a-public-key-file-instead-of-recipient-when-encrypting-with-gpg
Apparently with GnuPG (bin for Windows) it's not working the best, you have first to import the public key ..
And ideas, or alternatives ?
Thanks.
