04:13 <isd> I see the blog post has hit hacker news: https://news.ycombinator.com/item?id=22231922

04:30 <ill_logic> Was it one of ours? I was wondering when someone might notice. Perhaps an rss reader out in the wild.

04:31 <ill_logic> At any rate it's #1 so people care!

04:32 <abliss> is that what being #1 means? :)

05:33 <ill_logic> I see people taking issue with the login system. When I made my server, I didn't want to rely on anything on the outside, but LDAP was a whole thing I didn't want to take time to figure out.

05:34 <ill_logic> I ended up just making it email a local user and I SSH in to get the key.

05:34 <ill_logic> I wonder if there's a dead easy LDAP. Like, as easy as Sandstorm itself.

05:34 <isd> Doubtful

05:34 <isd> I haven't looked recently, but the last time I looked, FreeIPA was probably the best thing out there.

05:35 <isd> Don't know how it compares though

05:49 <fkautz> did sandstorm stop taking payments? i kept my account active and just noticed it's on a free plan. not sure how long it's been like that :p

05:49 <ill_logic> Check out the second to last blog post.

05:51 <fkautz> ah makes sense

05:51 <ill_logic> I hope you were able to xfer your stuff out in time!

05:51 <fkautz> it's all still there :)

05:51 <isd> I think it's still possible to download stuff.

05:51 <ill_logic> oh good

08:16 <pie_[bnc]> does sandstorm still use ekam?

08:17 <pie_[bnc]> oh yeah i guess it does https://github.com/sandstorm-io/sandstorm/blob/master/Makefile

12:08 <abliss> Yeah, though we've discussed ripping it out, as it seems to be a barrier to newcomers getting involved in hacking on the core (myself included).

13:19 <ocdtrekkie> TIL Cloudron is no longer open source.

13:20 <ocdtrekkie> Apparently 11 months ago they replaced AGPL with a proprietary one.

13:21 <ocdtrekkie> And it's not like a commons clause or SSPL thing, it's a "you must have a subscription to use this code" license.

14:13 <TimMc__> ill_logic: The news came through on my feed reader a couple hours after I heard about it here. :-)

15:04 <ocdtr_web> Holy crud, there went Google's famed data security: https://twitter.com/jonoberheide/status/1224525738268905477

15:05 <ocdtr_web> Literally sent random other people your private Google Photos videos.

15:06 <abliss> There is no cloud, just someone else's computer...

15:07 <ocdtr_web> There's some good lawsuit material in here. Without even specifying what video... like, if a single affected user has a single video in their account that's sensitive/adult content, they should sue.

15:07 <ocdtr_web> The best part is how the letter ends that if you have further questions you should "contact Google Support". That's the comedy gold right there.

15:10 <TimMc> amazing

15:10 <abliss> pretty sure they all clicked through some pretty airtight EULAs that forbid suing for this exact thing. which is not to say google won't pay them a quickie settlement anyway.

15:13 <abliss> I'd love to see the postmortem. At a wild guess, based on the fact that only videos and not photos were leaked, I wonder if they are still using some ancient+janky streaming tech leftover from the integration of the youtube acquisition into the picasa acquisition

15:14 <ocdtr_web> I'd bet a dollar on some part of the export process piping through Google+ too.

15:15 <ocdtr_web> My favorite recent bit about how Google products are glommed on top of old, dead Google products, was that Google Cloud Print depends on Google Talk. Not Hangouts. Talk.

15:16 <TimMc> Coral reef.

16:10 <kentonv> wow looks like that blog post was popular overnight

16:11 <ocdtr_web> Sandstorm is still apparently interesting.

16:11 <ocdtr_web> Also, if you upload your private videos to Sandstorm, Google can't sent them to random other users.

16:11 <ocdtr_web> \o/

16:20 <kentonv> the US postal service forwarded me a letter that was originally addressed to a random person in Mountain View, where I have never lived.

16:21 <ocdtr_web> I bet you also lost a letter that didn't get forwarded properly too.

16:22 <TimMc> Conservation of mass. :-P

16:22 <ocdtr_web> Or an off by one error. :P

16:22 <abliss> wait, did Google Photos take over the physical mail delivery in mountain view too? rimshot

16:24 <TimMc> ocdtr_web: A local grocery store where I had placed a bulk order said that my pecans didn't come in, and instead they got a box of shoes. I'm imagining a terrible screwup at UPS where each box in line got the address label for the previous box.

16:33 <ocdtr_web> One thing we learned from HN today is that six years into the project, people still think Darude jokes are original and funny.

16:33 <ocdtr_web> I was tempted to respond to someone with a link to someone making the exact same joke over five years ago in an HN comment.

16:39 <ill_logic> haha

16:40 <ill_logic> Maybe we should just add something about it to the site and move on.

16:41 <kentonv> someone sent me a web site PR once to make it so when you type the Konomi code on your keyboard, it plays Darude Sandstorm. Ughhhh.

16:42 <ocdtr_web> This one: https://github.com/sandstorm-io/sandstorm-website/pull/19

16:43 <ocdtr_web> I thought it was funny in 2015. I think it's okay to just call a joke old by 2020.

16:44 <ill_logic> <ocdtr_web "Holy crud, there went Google's f"> "Apologize for the inconvenience" it's like they're trying to make us angry. Nobody believes this.

16:47 <kentonv> if they'd actually deployed the fine-grained encryption and authentication stuff that I helped build at Google, this bug probably would not have been possible.

16:49 <TimMc> THat's frustrating. :-/

18:41 <CaptainCalliope> Are there any analytics or access logs on the blog? I'm curious about how much traffic comes on hackernews days.

18:42 <ocdtr_web> It used to have Google Analytics but it was removed in 2018.

18:43 <kentonv> cloudflare provides analytics

18:44 <kentonv> we went from ~200 unique visitors per hour up to ~6,000 while it was #1 on HN

18:45 <kentonv> and ~2,000 requests per hour before to ~100,000 per hour while #1 on HN

18:47 <ocdtr_web> That's pretty nice.

18:47 <ocdtr_web> (Also probably a good day to have a static web page behind Cloudflare.)

18:50 <kentonv> the one nginx server could probably handle the traffic on its own, but it's definitely nice to have edge caching for speed and bandwidth reasons.

19:25 <ill_logic> initdb on sandstorm required me to explicitly specify UTF8 encoding; I believe I didn't need to on my dev environment

19:26 <ill_logic> I found this out because I tried creating a new database with explicit UTF8 encoding and it stopped me on Sandstorm because it didn't match the template database's encoding.

19:27 <ill_logic> (I didn't get this error for the dev environment, so I assume that the template there is UTF8, but I didn't explicitly check. If it's worth taking the time I can try it again and check.)

19:29 <ill_logic> I'm just wondering if this comes as a surprise, and if it means there may be other problems? It looks like it's tied to locale.

19:29 <ill_logic> Setting it explicitly seems to have gotten around the problem for now.

19:33 <ill_logic> Actually it says it's setting the database to the locale "C". It was "as such" defaulting to ASCII before I explicitly told it to use UTF8.

20:32 <isd> I think I'd like to put ekam/build stuff on the agenda for tonight. It seems like on of those things where people have voiced opinions and we haven't really sat down and come to any decisions based on those murmuringss

20:34 <abliss> I'm very curious to know who here besides Ian Denhardt has successfully built sandstorm repo?

20:35 <isd> Put a bullet point on the agenda

20:36 <isd> But yeah, I'd also like to know that.

20:36 <isd> (as well as who has tried and failed...)

20:40 <ocdtr_web> I am not sure I've ever wanted to do something that absolutely required I build Sandstorm to fiddle with it. As I don't really test HTML PRs and that's about as deep into the platform as I've gotten...

20:41 <ocdtr_web> I won't be there tonight but it'd be good to talk about the HN comments and where that should lead some of our roadmap priorities.

21:30 <isd> I really want to un-bundle some of our dependencies

21:31 <isd> I'm realizing to test the solution I've written for #3027, I'm going to need to integrate node-capnp into the new test app. We've already got some funky logic in sandstorm itself to let us use a node-capnp built in-tree, and I'm not looking forward to trying to extend that. And it feels like not a good use of time.

22:18 <kentonv> isd, the problem with unbundled dependencies is that it becomes very hard to make cross-cutting changes. You tend to have to make a complete change to your dependency and release it before you can test if it actually works to solve whatever problem you wanted to solve in the dependent.

22:18 <kentonv> I like to be able to develop both sides together.

22:20 <isd> I appreciate that, but capnproto hasn't changed much recently. I wouldn't suggest this if its development were still largely driven by the needs of sandstorm, but at this point sandstorm should work against stable and we're not needing changes to it frequently (if at all).

22:21 <isd> Longer term I'd also like to have a setup where we can build with nix, and I think that will also make it easier to swap in a dependency for the purposes of developing them together.

22:22 <kentonv> I don't think I agree that sandstorm and capnp are decoupled. It depends on what part you're working on. When rewriting the HTTP layer I definitely had to make KJ changes.

22:32 <isd> I do have some ideas about how to get the best of both worlds using nix, though last time I experimented I got stuck packaging ekam. Maybe I'll experiment some more.

22:33 <isd> I think we should definitely try to get an up to date version of node-capnp up on npm though, so apps can use it without having to deal with the same stuff.

22:35 <kentonv> yes... though that requires figuring out some other strange error where everything works great until the package is published publicly and then it won't build. :(

22:37 <isd> Is there a description of said error somewhere?

22:38 <kentonv> https://github.com/capnproto/node-capnp/issues/41#issuecomment-452095765

22:39 <kentonv> happy to give you publishing rights if you want to try to figure it out...

22:41 <isd> I can take a whack at it.

22:42 <isd> I probably need to sign up for an npm account or something.

22:43 <kentonv> yep

22:50 <isd> Ug, hitting some error trying to sign up ("That word is not allowed" -- it's a randomly generated password that meets their stated requirements though). I'll let you know when I've got it sorted out.