Skip to content

Instantly share code, notes, and snippets.

💭
Decentralize and democratize the Web.

Jacky Alciné jalcine

💭
Decentralize and democratize the Web.
Block or report user

Report or block jalcine

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@lizthegrey
lizthegrey / attributes.rb
Last active Nov 4, 2019
Hardening SSH with 2fa
View attributes.rb
default['sshd']['sshd_config']['AuthenticationMethods'] = 'publickey,keyboard-interactive:pam'
default['sshd']['sshd_config']['ChallengeResponseAuthentication'] = 'yes'
default['sshd']['sshd_config']['PasswordAuthentication'] = 'no'
View email_to_google_recruiter.md

Hi B—,

I appreciate that I made it through your candidate filters, it is a true privilege. I have friends at Google and, from what I've heard, it seems like it can be a great place to work.

Unfortunately I cannot imagine working at Google and I feel a responsibility to pass along my reasoning to you in the hopes that I might (if marginally) make a case for better corporate business practices. I want to make a case that key strategic choices are impacting your capacity to attract talent.

  • It doesn't seem like the conditions that motivated the Google Walkout have been fundamentally addressed.
  • Project Maven, Dragonfly, and probably other things that haven't yet come to light are extremely troubling.
  • A detail from the Dragonfly story that struck me was how the company excluded the privacy review team from its considerations.
  • From CNBC: "Google's annual diversity report reveals that the company's workforce is still largely white and male and that it made very little progress in the last year to change th
@cleverdevil
cleverdevil / overcast-recently-played.py
Last active Nov 2, 2019
Fetch recently played episodes from Overcast.fm. Then, publish history to my website.
View overcast-recently-played.py
'''
You'll need to pip install some dependencies:
* python-dateutil
* requests
Also, populate your EMAIL and PASSWORD below.
'''
from xml.etree import ElementTree
@pnathan
pnathan / fb_to_blog.lisp
Created Dec 23, 2018
facebook post archive -> md file generator
View fb_to_blog.lisp
;; this code is (C) Paul Nathan (@pnathan@mastodon.social), licensed
;; under AGPL3, or CC0, or Public Domain. Whichever the reader
;; desires.
;;
;; essential instructions:
;;
;; download and unzip the archive file, IN JSON FORMAT, from the Zuckerland.
;; this file goes in the toplevel of that directory.
@dominictarr
dominictarr / readme.md
Created Nov 26, 2018
statement on event-stream compromise
View readme.md

Hey everyone - this is not just a one off thing, there are likely to be many other modules in your dependency trees that are now a burden to their authors. I didn't create this code for altruistic motivations, I created it for fun. I was learning, and learning is fun. I gave it away because it was easy to do so, and because sharing helps learning too. I think most of the small modules on npm were created for reasons like this. However, that was a long time ago. I've since moved on from this module and moved on from that thing too and in the process of moving on from that as well. I've written way better modules than this, the internet just hasn't fully caught up.

@broros

otherwise why would he hand over a popular package to a stranger?

If it's not fun anymore, you get literally nothing from maintaining a popular package.

One time, I was working as a dishwasher in a restu

@dariusk
dariusk / friendcamp.md
Last active Sep 13, 2019
Friend Camp Info
View friendcamp.md

Some quick things about Friend Camp

from your admin, Darius

  • Friend Camp is compatible with any mobile Mastodon app BUT you will not have friend camp specific features like the ability to post local-only posts just to Friend Camp. For this reason I recommend using the web client (https://friend.camp in your mobile browser) whenever possible.

    • On Android this is fine because Android lets a website send native notifications. Just go to Friend Camp in your browser and choose "add to home screen" from the browser menu. It will behave just like an app and you'll get notifications like normal.
    • On iOS you can pin the website to your home page and it will work great EXCEPT there are no native notifications, so for that reason a lot of users on iOS use other clients like Amaroq or Mast. But I also recommend trying out friend camp without notifications at all! It's nice.
  • Please file bugs with me. Just DM them to me or @ them to me. I will add them to the Friend Camp todo list.

  • We have lots of friend

View gif-from-tweet.md

gif-from-tweet

There are so many great GIFs out there and I want to have copies of them. Twitter makes that harder than it should be by converting them to MP4 and not providing access to the source material. To make it easier, I made a bash pipeline that takes a tweet URL and a filename, extracts the MP4 from that tweet and uses ffmpeg to convert back to GIF.

Dependencies

  • ffmpeg
    • macOS: brew install ffmpeg
    • Ubuntu/Debian: apt install ffmpeg
View suggestions.md

Some suggestions for Twitter to help devs struggling with the Streaming API deprecation

I'm writing this up in a hurry tonight, apologies if it's a little rambly/ranty. There are a lot of devs out there who have really great apps that rely on the Streaming API and really want to port their apps to webhooks but have no idea how to do it because the technical communication around all this has been scattershot.

-Darius Kazemi, @tinysubversions, 14 May 2018

Make your Securing Webhooks document more helpful

If there is one thing that your team has been clear on, it is this: we need to replace our usage of the Streaming API with the Account Activity API, which uses webhooks. In your Getting Started with webhooks document, the first step is "get your auth keys", which is fine. The second step refers the reader to [Securing webhooks](https://deve

@nolanlawson
nolanlawson / how_to_check_signal_apk.md
Last active Nov 7, 2018
How to check Signal APK SHA256 fingerprint
View how_to_check_signal_apk.md

To verify the SHA256 fingerprint of a Signal APK you downloaded from their website, use apksigner on the command line, like so:

/path/to/android-sdk/build-tools/26.0.2/apksigner verify --print-certs \
    /path/to/Signal-website-release-4.12.3.apk | grep SHA-256
> dSigner #1 certificate SHA-256 digest: 29f34e5f27f211b424bc5bf9d67162c0eafba2da35af35c16416fc446276ba26
echo 29:F3:4E:5F:27:F2:11:B4:24:BC:5B:F9:D6:71:62:C0 EA:FB:A2:DA:35:AF:35:C1:64:16:FC:44:62:76:BA:26 \
@joyeusenoelle
joyeusenoelle / Mastodon.md
Last active Jul 5, 2019
An increasingly less-brief introduction to Mastodon
View Mastodon.md
You can’t perform that action at this time.