• 3 Posts
  • 94 Comments
Joined 1 year ago
cake
Cake day: July 14th, 2025

help-circle


  • Can you please learn how to use git or at least some source control software instead of creating a new (almost) empty repository every release? Pretty please with a cherry on top?

    If you’re just going to include source code archives in the release instead of pushing them to the repo itself, you should at least disable the automatic source code archives. But you’d be better off not using a source control website at all if you’re not going to use source control.







  • I too spin up a new DB for every service that needs one. It makes maintenance less intrusive since I only have to shut down one service at a time to update or do a full file backup and I can safely tweak the DB config to best suit the service without worrying about negatively impacting other services on the same DB. I also like the flexibility to choose the best DB for the service, e.g. I use Postgres for a lot of the services I develop but they do also support MySQL/MariaDB, but I have other services that are more tested on MariaDB.

    I’d imagine having one database for everything could eventually cause performance problems across all services if the database gets too big or clunky or queries get too complex, even if just one service is causing the problem.

    I also run a lot of physical servers (I have about 10 low power computers I use as servers right now) so having a dedicated DB per service allows me to get better performance since the DB can be on the same machine as the service. Not that they need high performance, but it also helps with the efficiency.


  • An attacker can still send a compromised payload if there’s no signature verification of the update. It takes a more sophisticated attack (e.g. supply chain attack, hijacking AMD’s update website, etc.) but it has happened before to other companies. If the payload is signed and verified, an attacker would also need to gain access to AMD’s private key to successfully send out a bad update. Assuming reasonable security, getting that private key would be a lot harder to get on top of somehow compromising AMD’s update web service.

    Also CRC checks over the internet are sort of silly and redundant since every packet sent would already be subject to a similar CRC check and bad packets would be ignored (dropped and re-requested). It would only prevent corruption on disk or in memory which are a lot less likely than transmission corruption.










  • If earth is round

    🤨

    Anyway, we do send rockets left or right. It’s required to get into orbit, since basically orbits are something moving fast enough sideways so that it always misses Earth. We don’t send rockets down, obviously, because that would be into the ground. But if you’re talking in cardinal directions then yes, we do fly rockets in all directions. Polar orbits are called that because the satellite flies north- or southwards.

    The reason why rockets launch facing up (opposite gravity; not north) is because it’s more efficient to leave the thick parts of the atmosphere before getting most of your speed because of drag. You could launch a rocket parallel (tangential) to a point on Earth it’d just take a lot more fuel. Space planes do technically launch like that, but they use the atmosphere to their advantage by using wings (lift) to gain height.