/srv/irclogs.ubuntu.com/2016/10/18/#ubuntu-za.txt

Kilosmorning south africa06:03
Kilosohi superfly , hows things going there?06:04
Kiloshi inetpro paddatrapper thatgraemeguy and everyone else06:04
paddatrapperHey Kilos. Hoe gaan dit?06:05
Kilosgoed dankie en self?06:05
zipperHello has anyone seen Symmetria?06:06
KilosMaaz seen symmetria06:07
MaazKilos: symmetria was last seen 17 days, 10 minutes and 41 seconds ago in #ubuntu-za on freenode [2016-09-30 22:56:31 PDT], and has been offline on freenode since 2016-10-04 14:24:55 PDT06:07
Kiloszipper email him06:07
zipperhmmm let me see06:07
zipperI have it somewhere06:07
pavlushkaahoy ZA!06:11
pavlushkaHey Kilos zipper :)06:11
Kiloshi pavlushka 06:11
pavlushkaand paddatrapper :)06:11
paddatrapperKilos: goed dankie 06:12
paddatrapperHey pavlushka06:12
zipperpavlushka: lol you people haven't learned not to mention people in one sentence?06:12
zipperYou don't know how to make people feel special.06:12
pavlushkazipper: lol06:12
zipperYour wives must really get angry sometimes.06:12
zipper"Hello wife and bunch of other people all at once" :P06:13
pavlushkazipper: I really wish that :p06:13
zipperpavlushka: You wish what?06:13
zipperhmmm?06:13
pavlushkazipper: that I could do a "Hello wife and bunch of other people all at once" :p06:14
zipperpavlushka: :)06:14
zipperYou can06:14
pavlushkazipper: fortunately or unfortunately I dont have any to make angry :p06:14
pavlushkazipper: but you gave me that idea06:15
zipperpavlushka: Oh, makes two of us :D06:16
zipperpavlushka: When I'm older, hopefully.06:16
pavlushkazipper: but you are more experienced I guess.06:16
pavlushkaamong the two :p06:16
zipperpavlushka: nope, I'm just a dude typing into a terminal. :)06:17
zipperFree Ethiopia!!!06:20
inetprogood evening07:01
pavlushkainetpro: good evening - 6 hours :)07:02
Kiloshi inetpro 08:48
Kilos10 to 8 here so you close enough08:48
Kilosnight all. have a good day12:10
magespawngood da all12:34
magespawnday too12:34
magespawnthe statement boggles the mine a little.12:34
magespawns/mine/mind12:34
=== RemonShai is now known as r3m0n
inetprogood mornins19:46
pavlushkaGood Night everyone :)19:48
* pavlushka yawning19:48
pavlushkaMorning inetpro :)19:48
inetprohmm...19:49
kulelu88hey superfly . do you use Redis?21:17
superflykulelu88: no. I know what it is, and I remember when it came out21:17
kulelu88aah okay. I am attempting to use (or find) a datastore that is *fast* for sending messages to users for my bot. apparently redis is a bad idea on its own. Is this true?21:18
kulelu88superfly: ^^21:18
superflyit depends on how you set redis up21:19
superflyIIRC one of the big differences between redis and memcached is that redis is persistent.21:20
superflyTrixar_za: have you worked with redis?21:20
kulelu88I was chatting to the guys in #redis and they said I can make redis backup to disk, which sounds like a better option than to go the : couchdb -> redis -> flask -> uswgi -> nginx route21:21
kulelu88superfly: what is a 'set' in Python ?21:23
superflykulelu88: yeah, I'd do redis to disk. erm, a set... kinda like a cross between a dictionary and a list21:24
superflya set is a list where each value can only appear once21:24
superflyit's create for doing things like finding the intersection of two lists21:24
kulelu88#redis: <minus> hash = dict <minus> list = list <minus> set = set21:24
superfly*great21:24
kulelu88superfly: for a data structure like this:  ID, number, firstname, lastname, location, is_valid  ... Would you use a dict or list ?21:25
superflykulelu88: depends on whether you want random access or sequential access21:26
kulelu88sequential being following a certain order to the data? 21:27
kulelu88superfly: ^^21:27
kulelu88(keep forgetting to not tag)21:27
superflykulelu88: sequential means that if you want to find a particular record, you have to iterate through the list until you find that record21:28
superflykulelu88: ever done backup to tape?21:28
kulelu88superfly: I'm not sure how I can architect it for best I/O performance, but when sending a message to a user, it will be a random user each time (eg. The 3rd-party server will send a POST request with the USERS NUMBER, I will then index the DB, see if IS_VALID is true, then send the message)21:30
superflywell, how would you identify that user in your database?21:34
kulelu88you mean validate them? I have already instituted a validation process via the bot21:34
superflyno, you're sending a message, right?21:38
kulelu88yeah, from my server to the user. I will have the users number stored in the redis DB21:38
superflykulelu88: you said that the server will send a post with a user number, then you'll "index the DB" -- what does that mean?21:39
kulelu88I will search for the users number21:39
kulelu88Unless... I make the ID = number ? 21:39
superflywhat is the "users number"?21:40
kulelu88oh shizz. sorry, the users number is their actual number they used to register telegram21:41
superflyso why don't you use that in your database?21:41
kulelu88I believe I am: ID, number, firstname, lastname, location, is_valid21:42
superflyin redis you need a key anyway, so make that the key21:42
kulelu88Will it be a bad idea to keep the ID = number? Is that bad security policy ?21:42
superflyand then make that Telegram user number the ID in the database too21:43
superflyit depends....21:43
kulelu88then again, if the server is pwned, they can see the ID and number in any case21:43
superflysecurity is like an ogre21:43
kulelu88I already took care of user validation21:44
kulelu88I mean, REST API validation21:44
superflyhttps://www.youtube.com/watch?v=7d6ZsRM36RU21:47
superfly(security and ogres)21:47
kulelu88superfly: is there any way to shield user data in the DB? do people encrypt other data besides the password?21:49
superflywell, you could store it on an encrypted disk21:49
superflyalso, don't store everything on the same server21:50
superflyand don't use the same accounts on all the servers, or the same SSH keys.21:50
superfly(if you are really really serious about security)21:50
kulelu88you mean don't store the app-server and DB-server on the same *actual* server?21:51
superflyyep21:51
superflyif you want security, that's kinda how to go about it. separate the systems, make it so that if they get access to one system, none of the other systems are compromised21:52
kulelu88that makes sense. That I can achieve. I will split up redis into it's own container (for testing purposes)21:54
kulelu88Does having 2 VPS servers equate to 2 separate servers or is pwnage still likely?21:54
kulelu88anyway, thanks for the help superfly 22:00
superflykulelu88: uh, not quite. and you probably want backup servers too.22:01
superflykulelu88: but this is really high level security, and the reality is that unless you have a really popular server, you're probably not going to be a target for much other than passersby spam bots22:02
kulelu88superfly: I'm not sure how my server will get *that easily pwned* though. Access is only granted via HTTPS client-certificates. So attackers first need a valid cert22:03
kulelu88With fail2ban, only a small subset of IPs will actually be able to reach the server, although I know IP spoofing is possible22:04

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!