Disqus - Latest Comments for candrewswpi

Re: Hibernate Validator 6.1.0.Final and 6.0.18.Final released

candrewswpi — Tue, 19 May 2020 21:51:57 -0000

Since @SafeHtml is deprecated in Hibernate Validator, I think it would be a good idea to move it to a project which can maintain it, jsoup. I've reported https://github.com/jhy/jsou... with jsoup requesting that they include it.

I believe this approach makes more sense than asking all users to copy the @SafeHtml code into their projects. Having a centralized project to own this code allow collaboration, including for vulnerability assessment, maintenance, and improvements, as opposed to every project that needs this validator having to copy it and inevitably making mistakes, or best case, just spending a lot of time doing so.

Re: Serverless Progressive Web Apps using React with Cloudflare Workers

candrewswpi — Sat, 24 Nov 2018 20:20:54 -0000

My apologies that this message is off topic and not about the awesome work!

The RSS feed of this blog doesn't validate (there's a problem with some text in this post); can you please look into that? It's breaking my RSS reader
(FreshRSS, FWIW), and I assume impacting others as well. Thanks!

https://validator.w3.org/fe...

Re: Encrypt that SNI: Firefox edition

candrewswpi — Wed, 24 Oct 2018 16:00:44 -0000

I requested the OpenSSL add support for ESNI at https://github.com/openssl/...

Re: Encrypt that SNI: Firefox edition

candrewswpi — Thu, 18 Oct 2018 15:30:22 -0000

Are there plans to support ESNI in popular web server software, such as Apache, nginx, IIS, etc?

Re: Optimizing HTTP/2 prioritization with BBR and tcp_notsent_lowat

candrewswpi — Fri, 12 Oct 2018 12:15:41 -0000

Would it be better (or at least the same) to use fq_codel instead of fq? My understanding is that fq_codel got pacing (the key requirement of BBR for efficiency) in 4.13.

Re: Get a head start with QUIC

candrewswpi — Tue, 25 Sep 2018 13:28:20 -0000

I noticed that google.com uses the alt-svc HTTP response header to indicate QUIC support (as well as support version information and port). https://cloudflare-quic.com/ doesn't respond with this header, so how do clients discover the availability of QUIC support?

Re: The QUICening

candrewswpi — Tue, 25 Sep 2018 10:54:29 -0000

My apologies that this message is off topic and not about the awesome QUIC work and news.

The RSS feed of this blog doesn't validate (it did before today's 2 QUIC posts); can you please look into that? It's breaking my RSS reader (FreshRSS, FWIW), and I assume impacting others as well. Thanks!

https://validator.w3.org/fe...

Re: Spring Data Lovelace GA released

candrewswpi — Mon, 24 Sep 2018 15:46:43 -0000

If such concerns existed, why were they not expressed anywhere? This is the first I've heard of them, and I can't find them expressed in any pull request or issue. Clearly, after a year and a half, it's not about quickly merging a PR.

Furthermore, for every bug reported, there are very often many users who encounter the issue and don't report it. There are pretty high barriers to reporting bugs - you have to create an account, write up the issue, Spring Data REST generally rejects every bug that doesn't include a test case, and even then it tends to ignore bug reports discouraging others from reporting bugs. Lots of people may have encountered this issue and simply said nothing, seeing that it was reported and believing that nothing further needed to be done. So IMHO, I would change your position - just because only one user reported the issue doesn't mean it's not an issue.

Take a look at https://github.com/spring-p... - as a user who found a bug, and contemplated submitting a PR fixing it, would you bother after seeing all of those issues which have gone unanswered for months? After having looked at the issue tracker and seeing so many issues open without so much as an acknowledging comment in response, would you bother reporting an issue?

Another incredibly frustrating thing is the email you sent me on November 5, 2017:
> we're gonna get that sorted out. We're just quite packed with work this
days with all the releases piling up on the road to Spring 5 GA.
> I'll get back to you ASAP.

Notably, nothing is said about there being any concerns. And when I replied a year later, I never got a response.

It seems the only way to contact Spring Data REST is by commenting on a public page. There are no responses to bugs reports, pull requests, or emails. At least I found this venue for communication. Although I fully expect for you to ignore me here, now, too.

I've always greatly enjoyed working with Spring - and have been doing so for over a decade. This subproject is the only one in the Spring ecosystem that has been such a disappointment, but I continue to hold out hope that things can be turned around. And I continue to be nothing but impressed with every other Spring project I've had the pleasure of using.

Re: Spring Data Lovelace GA released

candrewswpi — Fri, 21 Sep 2018 19:34:42 -0000

Can you please look at https://jira.spring.io/brow... and the pull request fixing it at https://github.com/spring-p... ? I've been trying for a year and a half to get this fixed, and I never even get a response. I'd really really like to get this fixed - is there anything I can do?

Re: Spring Data Ingalls SR7 and Kay RC3 released

candrewswpi — Mon, 25 Sep 2017 15:51:23 -0000

I've been trying since March to get some feedback on a PR I've created fixing a bug (DATAREST-1033) in Spring DATA Rest:
https://github.com/spring-p...

I'm completely at at a loss as to what I'm doing wrong. With all other Spring projects, I've always had a fantastic experience working with developers and the community, but I'm getting no where with Data REST. The project is completely unresponsive via email, github issue tracker, project Jira, and gitter.im. Yet new releases keep being made, so it's not dead - Can someone please help?

Re: Tiny Tiny RSS: don't support Nazi sympathisers

candrewswpi — Tue, 05 Sep 2017 10:50:31 -0000

NewsBlur seems to be quite a nightmare to install and maintain when self hosting.
For those who currently use ttrss, I strongly recommend taking a look at FreshRSS - it's the same stack (PHP) and therefore it's super easy to perform the migration. I moved from ttrss to FreshRSS with less than an hour of effort.

Re: Blocking USB devices while the screen is locked

candrewswpi — Fri, 11 Aug 2017 14:38:31 -0000

Is there work being done to get this into Gnome itself or into any distros (I'm specifically thinking of Fedora)?

Thanks!

Re: Spring Data Release Train Kay M3 Released

candrewswpi — Tue, 09 May 2017 21:26:34 -0000

Is there anyway https://jira.spring.io/brow... can be fixed in a future release?

I submitted a PR fixing it a month ago and even submitted a second PR with an alternative approach. I'm not sure what else to do.

Re: Classloader leaks VI – “This means war!” (Leak Prevention library)

candrewswpi — Mon, 10 Dec 2012 14:23:39 -0000

Could you add this to Maven Central? https://docs.sonatype.org/d...

Thanks!

Re: GZip your downloads - Miguel de Icaza

candrewswpi — Sun, 11 Jul 2010 12:08:41 -0000

Deflate is a faster, more efficient, all around better mechanism than gzip for http compression.

I think you should be using request.AutomaticDecompression = DecompressionMethods.GZip | DecompressionMethods.Deflate;

So either will work.

Re: TweetStation: Elevating the Discourse - Miguel de Icaza

candrewswpi — Thu, 01 Jul 2010 13:56:19 -0000

You've never heard of StatusNet? StatusNet is the software that runs http://identi.ca amongst other sites, both public and behind firewalls. It's has a Twitter compatible API (include oAuth) and is supported by many other Twitter clients already. Seriously, check it out - and it too accepts patches (unlike Twitter) :-)

Re: TweetStation: Elevating the Discourse - Miguel de Icaza

candrewswpi — Thu, 01 Jul 2010 13:40:44 -0000

Does this app support StatusNet (or alternative API endpoints)? If so, do you know if it will support login names that are different from nicknames (this happens a lot in StatusNet corporate installations - users will have "ugly" LDAP usernames [candre001] and nice nicknames used in StatusNet [candrews])?

Re: ffmpegthumbnailer vs totem-video-thumbnailer - Does not compute

candrewswpi — Sun, 30 May 2010 13:34:52 -0000

Very interesting discovery - perhaps you should file a bug at https://bugzilla.gnome.org/ to let the totem developers know about this horrid performance. (And link to the bug here so your faithful readers can subscribe to it :-) ). Thanks!

Re: Branching for Mono 2.6 - Miguel de Icaza

candrewswpi — Fri, 25 Sep 2009 21:35:00 -0000

Do you and the Mono team have plans to attempt to align releases with the 6 month cycles that Canonical, Gnome, and other companies/projects are promoting?

Re: On Richard Stallman - Miguel de Icaza

candrewswpi — Wed, 23 Sep 2009 21:41:49 -0000

If RMS were merely holding a grudge, his argument would make a lot less sense.

He's explicitly stated (I was in the room when he said it) that he has no problem with Mono development, or applications already written on Mono (he even said it was a great way for proprietary software to transition to Free). RMS even praised Miguel's work on Mono.

RMS does not think new Free applications should be developed for Mono - that's the part that I think was misinterpreted or otherwise lead to this confusing explosion. He's concerned about the patents involved, and doesn't trust Microsoft "promise." I think the argument makes a great deal of sense, and I agree with it - it certainly doesn't sound like grudge-induced malice.

Re: On Richard Stallman - Miguel de Icaza

candrewswpi — Wed, 23 Sep 2009 21:15:07 -0000

That's because Stallman (and the FSF, and myself) don't like, or want, "open source software" - Free software is the goal. Patent encumbrance or lacking any of the 4 freedoms are simply unacceptable, and I'm sure if you thought about it, you'd agree.

Saying the FSF slows development is absurd. The FSF is responsible for:
-the SFLC, which has created an impressive legal backing for Free software, allowing much more corporate use and development
-the huge decrease in the use of DRM
-lots of activism that leads to the development of more Free software
-the GCC project ('nough said)
and much more!

The FSF doesn't only not slow development - it *started* development in the first place, and continues to accelerate it and encourage it.

RMS may not be the most eloquent or friendly speaker, or the best dressed person, but he certainly knows his stuff. He's thought long and hard about these topics, and worked with many people in the process, and ultimately changed the world, very much for the better. He and his organization deserve a little respect.

Re: oohEmbed.com

candrewswpi — Fri, 04 Sep 2009 14:44:29 -0000

I believe you are out of the oembed spec with your Wordpress.com responses. Can you please take another look at this ticket? http://code.google.com/p/oo...

Re: Twitter’s platform shortcomings

candrewswpi — Mon, 10 Aug 2009 10:55:44 -0000

You've outlines many of the reasons why I use identi.ca instead of Twitter. For example, Identi.ca default URL shortening service is ur1.ca. Right on the front page at http://ur1.ca, you can download the database - no questions asked. So if ur1.ca dies... all the data at least is still available. The same kind of thing applies to the rest of the identi.ca sphere - the code is all open, and the database (with passwords and other private information removed, of course) is available upon request. Unlike Twitter, identi.ca's database and software will *never* go away, it's not possible.

Re: Private: Twitter Apps Can Only Grow so Far

candrewswpi — Tue, 04 Aug 2009 15:38:51 -0000

I don't understand how you can make 2 completely contradictory statements in the *same sentence.* How can "Developing for closed platforms isn't a bad thing at all" be true, while "developers completely at the mercy of another party" (in other words, your business model is in someone else's hands) is also true?

Re: oohEmbed.com

candrewswpi — Thu, 30 Jul 2009 14:52:34 -0000

My apologies, I was inaccurate. photodroid was what was I meant - here's a sample URL: http://phodroid.com/09/07/3...