Marcos Ojeda nsfmc

Simple Security Guidelines

Using an iDevice? (Best option)

Use an iPod or an iPad without a SIM card
Use an iPhone
Do not jailbreak
Always upgrade to new iOS versions
Use Brave browser

Need Secure chat?

What forces layout / reflow

All of the below properties or methods, when requested/called in JavaScript, will trigger the browser to synchronously calculate the style and layout*. This is also called reflow or layout thrashing, and is common performance bottleneck.

Generally, all APIs that synchronously provide layout metrics will trigger forced reflow / layout. Read on for additional cases and details.

Element APIs

Getting box metrics

elem.offsetLeft, elem.offsetTop, elem.offsetWidth, elem.offsetHeight, elem.offsetParent

better caches with rethinkdb

TL;DR - smelly software engineer discusses using rethinkdb changefeeds for building caches, breaks hearts, shaves the cheerleader, shaves the world.

Let's talk about caches.

Imagine that you build UIs for an ecommerce company, possibly in a fancy office with free coffee and whatnot. You've just been asked to build a way for the marketing / sales folks to change landing pages whenever they're running campaigns. After a number of angry discussions involving the ux team about what they can and cannot change, you settle on a 'document' format for these pages. It could be json describing a tree of widgets of banners and carousels, or html, or yaml, or whatever. Maybe you also invent a dsl that marks out parts of the document as dynamic, based on request parameters or something. I dunno, I'm not your boss. You build a little ui over the weekend (with react? maybe!) that lets these folks login, drag and drop their banners, maybe upload an image or two, and save to database.

Yo

architectures and whatnot

plain ol' React

let state = initial
render(view(state), element)

view is pure!

brew install gnupg, pinentry-mac (this includes gpg-agent and pinentry)
Generate a key: $ gpg --gen-key
Take the defaults. Whatevs
Tell gpg-agent to use pinentry-mac:
```
$ vim ~/.gnupg/gpg-agent.conf 
```

Cryptographic Best Practices

Putting cryptographic primitives together is a lot like putting a jigsaw puzzle together, where all the pieces are cut exactly the same way, but there is only one correct solution. Thankfully, there are some projects out there that are working hard to make sure developers are getting it right.

The following advice comes from years of research from leading security researchers, developers, and cryptographers. This Gist was [forked from Thomas Ptacek's Gist][1] to be more readable. Additions have been added from

	'use strict';

	//mock for superagent - __mocks__/superagent.js

	var mockDelay;
	var mockError;
	var mockResponse = {
	status() {
	return 200;
	},

	# Cache 10GB for 1 Month
	proxy_cache_path /var/cache/nginx keys_zone=GS:10m inactive=720h max_size=10240m;

	upstream gs {
	server 'storage.googleapis.com:80';
	keepalive 100;
	}

	server {
	set $my_domain "yourdomain.com";

	// When I was working on our React/Flummox app I got to the point where, per the docs, I had ~100 lines of code
	// which were substantially predictable boilerplate, so I used some JS metaprogramming to condense them by 80%.

	// Flummox docs: http://acdlite.github.io/flummox

	// I use underscore.js below for utility but you can also just do a for loop.

	class AppFlux extends Flux {

	constructor() {

	// give it a name so it reuses the same window
	var win = window.open(null, "redux-devtools", "menubar=no,location=no,resizable=yes,scrollbars=no,status=no");

	// reload in case it's reusing the same window with the old content
	win.location.reload();

	// wait a little bit for it to reload, then render
	setTimeout(function() {
	React.render(
	<DebugPanel top right bottom left >