woof?
1073 stories
·
59 followers

Hot Yellow

2 Shares

Follow @lamebook on instagram

Read the whole story
ChrisDL
1 day ago
reply
New York
freeAgent
1 day ago
This is why we can't have nice things.
dreadhead
1 day ago
reply
Vancouver Island, Canada
Share this story
Delete

#1393; In which the Floor is open

1 Comment and 4 Shares

One second later, the floor LITERALLY opens. The audience trapdoor is in Herr Doktor's rider.

Read the whole story
ChrisDL
4 days ago
reply
a million times this.
New York
Share this story
Delete

Alex Turner, Alex Kapranos and Julian Casablancas

1 Comment


Alex Turner, Alex Kapranos and Julian Casablancas

Read the whole story
ChrisDL
5 days ago
reply
Alex Turner = Arctic Monkeys
Alex Kapranos = Franz Ferdinand
Julian Casablancas = The Strokes

You're welcome.
New York
Share this story
Delete

Secure at the network level

1 Comment

Two weeks ago Travis CI published a postmortem describing an outage that was caused by a script that truncated all tables on a production database. The script was designed to run against a test database but instead ended up wiping the production one. The remediation steps highlighted are a great start but I’m surprised they didn’t pick the most obvious one - protect systems at the network level.

Relying on confirmation steps, user permissions, and unique credentials per environment are great steps and should be best practices but they don’t actually stop malicious or accidental behavior. They reduce the risk by adding more friction but it’s still possible to circumvent these blocks.

The way to eliminate these types of issues is to not rely on hoops but get rid of the loophole entirely. In the scenario above, the database should block traffic from all IPs that have not been whitelisted. And the whitelisted IPs should belong to production applications that need access to the system. In turn, these applications should not allow any SSH access to prevent someone from tunneling through. The way this is done in AWS is by using security groups and giving them the least allowable permissions while still allowing them to function properly. Exceptions can be made but they should be temporary and overseen by more than a single person to avoid any problems.

This sounds draconian but by investing in this approach up front you end up with a much stronger system in the long term that you don’t have to revamp to secure. And since doing this manually is a huge pain you end up investing in tools, such as terraform, that make these rules much simpler to manage.

Read the whole story
ChrisDL
6 days ago
reply
Preach!
New York
Share this story
Delete

I’ve been ruined by Long Long Man, the greatest love story ever told by Japanese gum commercials

1 Comment

As we all know, candy is an extremely important part of life. Chi-chan, the star of a series of commercials by Japanese gum company Sakeru that has utterly ravaged everything I thought I knew about life, believes this deeply. She and her boyfriend Tooru-san are huge fans of Sakeru Gummy, a line of “rippable” chewing gum that comes in both short and “looong” formats. The practical, down to earth Tooru-san prefers the smaller, more traditional size of gum. Unfortunately for him, however, Chi-chan’s desires are more... unconventional.

Over the years, many an American confection company has attempted to market comically large portions of chewing gum to youths. Indeed, many have done quite well; in the 1980s and ‘90s, Wrigley used Terry...

Continue reading…

Read the whole story
ChrisDL
17 days ago
reply
For once a headline was correct. this was in fact amazing.
New York
Share this story
Delete

When you’re too stressed to work and need to relax but also too...

1 Comment and 2 Shares


When you’re too stressed to work and need to relax but also too stressed to relax because you need to work ⚰️

Read the whole story
ChrisDL
21 days ago
reply
accurate.
New York
jlvanderzwan
21 days ago
reply
Share this story
Delete
Next Page of Stories