Push API - Web APIs | MDN
The Push API gives web applications the ability to receive messages pushed to them from a server, whether or not the web app is in the foreground, or even currently loaded, on a user agent. This lets developers deliver asynchronous notifications and updates to users that opt in, resulting in better engagement with timely new content.
12 days ago
Web Push: Data Encryption Test Page
A page to aid in creating and debugging a WebPush compliant encryption library.
12 days ago
Libraries useful for working with WebPush and VAPID
12 days ago
An application server can voluntarily identify itself to a push service using the described technique. This identification information can be used by the push service to attribute requests that are made by the same application server to a single entity. This can used to reduce the secrecy for push subscription URLs by being able to restrict subscriptions to a specific application server. An application server is further able to include additional information that the operator of a push service can use to contact the operator of the application server.
12 days ago
Using VAPID with WebPush | Mozilla Cloud Services
One of the problems with offering a service that doesn’t require identification is that it’s hard to know who’s responsible for something. For instance, if a consumer is having problems, or not using the service correctly, it is a challenge to contact them. One option is to require strong identification to use the service, but there are plenty of reasons to not do that, notably privacy.
WebPush  VAPID 
12 days ago
Sending VAPID identified WebPush Notifications via Mozilla’s Push Service | Mozilla Cloud Services
This document addresses the app server side portion in detail, including integrating VAPID and Push message encryption into your server effectively, and how to avoid common issues.
WebPush  VAPID 
12 days ago
This memo introduces a content coding for HTTP that allows message payloads to be encrypted.
12 days ago
A message encryption scheme is described for the Web Push protocol. This scheme provides confidentiality and integrity for messages sent from an Application Server to a User Agent.
12 days ago
indutny/asn1.js: ASN.1 Decoder/Encoder/DSL
Node library to read/write DER compliant certificates.
programming  javascript  security  crypto  WebPush 
march 2016
beverloo/php-ece - C - GitHub
ECE encryption library for PHP (including p256 import/export, aesgcm128 encrypt & decrypt functions. Built off of OpenSSL and is a proper C extension.
push_demo  WebPush  notifications 
january 2016
ServiceWorker Cookbook
Handy set of tools and examples on how to use Service Workers and Web Push.
push_demo  WebPush 
january 2016
Mattermost is “Slack-compatible, not Slack-limited”, supporting a superset of Slack’s incoming and outgoing webhook integrations, including compatibility with existing Slack integrations. From your existing Slack teams, you can import users, public channel history and even theme setting colors into Mattermost.
january 2016
Demo code for the Timely Security Analytics and Analysis 2015 Re:Invent presentation.
october 2015
Hygieia is a single, configurable, easy to use dashboard to visualize near real-time status of the entire delivery pipeline.
october 2015
AWS NoSQL database DynamoDB is a great service, but it lacks automated throughput scaling. This is where Dynamic DynamoDB enters the stage. It provides automatic read and write provisioning for DynamoDB.
october 2015
Haunted By Data
Why we should consider "big data" to be as toxic as nuclear waste, has failed to deliver some of the promises, and should consider privacy good for both users and companies.
october 2015
The Big List of Naughty Strings is an evolving list of strings which have a high probability of causing issues when used as user-input data. This is intended for use in helping both automated and manual QA testing; useful for whenever your QA engineer walks into a bar.
september 2015
Flexx is a pure Python toolkit for creating graphical user interfaces (GUI's), that uses web technology for its rendering. You can use Flexx to create desktop applications, web applications, and (if designed well) export an app to a standalone HTML document.
python  programming 
september 2015
Ubiquiti Networks - EdgeRouter™ Lite
High packet routing for when the bridge in the garage blows up again.
network  toys  house  gadgets 
july 2015
Optimize Python with Closures - Tech at Magnetic
So if even dictionaries are too slow, how can we resolve this performance crisis? We can turn the “variables” stored in the dictionary into local variables (sort of), which are the fastest to access since they are stored in an array and referenced by pre-computed offset. Accessing a local variable in Python is nearly instantaneous, or as close to it as we can get writing Python code.
programming  python 
may 2015
Blade: A data center garbage collector | the morning paper
By taking a distributed systems perspective rather than just a single node view, Blade collaborates with the application to move load away from a node that is about to garbage collect.
may 2015
Less is Moore
Less frame, more work. A discussion on the value of disposable app building and reducing the moving parts.
may 2015
Transport Layer Security (TLS)
From "High Performance Browser Networking"

Very nice description of the TLS protocol, structures and effects.
security  network  ssl  crypto 
may 2015
Introducing a cross-platform debugger for Go
godebug takes a different approach: take the source code of a target program, insert debugging code between every line, then compile and run that instead. The result is a fully-functional debugger that is extremely portable. In fact, thanks to gopherjs, you can run it right here in your browser!
programming  whyDidINotKnowAboutThis 
april 2015
CockroachDB - A Scalable, Geo-Replicated, Transactional Datastore
Cockroach is a distributed key/value datastore which supports ACID transactional semantics and versioned values as first-class features. The primary design goal is global consistency and survivability, hence the name. Cockroach aims to tolerate disk, machine, rack, and even datacenter failures with minimal latency disruption and no manual intervention. Cockroach nodes are symmetric; a design goal is one binary with minimal configuration and no required auxiliary services.
february 2015
BroadcastChannel API in Firefox 38 ✩ Mozilla Hacks – the Web developer blog
This API can be used for simple messaging between browser contexts that have the same user agent and origin. This API is exposed to both Windows and Workers and allows communication between iframes, browser tabs, and worker threads.

The intent of the BroadcastChannel API is to provide an API that facilitates communicating simple messages between browser contexts within a web app.
javascript  hack  mozilla 
february 2015
Mozilla Presentation Boilerplate
HTML 5 / CSS presentation system
january 2015
JSON Mail Access Protocol Specification (JMAP)
JMAP is a transport-agnostic, stateless JSON-based API for synchronising a mail client with a mail server. It is intended as a replacement for IMAP. The specification is based on the API currently used by FastMail’s web app. It aims to be compatible with the IMAP data model, so that it can be easily implemented on a server that currently supports IMAP, but also allows for reduced data usage and more efficient synchronisation, bundling of requests for latency mitigation and is generally much easier to work with than IMAP.
network  notifications  protocol  services  synchronization 
january 2015
dedis@yale | Dissent: Accountable Anonymous Group Communication
The Dissent project is a research collaboration between Yale University and UT Austin to create a powerful, practical anonymous group communication system offering strong, provable security guarantees with reasonable efficiency.
sideproject  security 
december 2014
Launching in 2015: A Certificate Authority to Encrypt the Entire Web | Electronic Frontier Foundation
oday EFF is pleased to announce Let’s Encrypt, a new certificate authority (CA) initiative that we have put together with Mozilla, Cisco, Akamai, Identrust, and researchers at the University of Michigan that aims to clear the remaining roadblocks to transition the Web from HTTP to HTTPS.
security  privacy  operations  network  mozilla  http 
november 2014
devtcg: Push services: Implementing persistent mobile TCP connections
As a result of my work on IMAP IDLE support in Android's default mail application, I have been experimenting with various strategies for implementing long-lived services and persistent connections that operate efficiently in a variety of circumstances. Several quirks about Android and mobile devices in general arose that could be of value to anyone implementing similar services.
october 2014
sysdig | Home
Sysdig is open source, system-level exploration: capture system state and activity from a running Linux instance, then save, filter and analyze.
Think of it as strace + tcpdump + lsof + awesome sauce.
With a little Lua cherry on top.
operations  security  services  network 
september 2014
boot2docker is a lightweight Linux distribution based on Tiny Core Linux made specifically to run Docker containers. It runs completely from RAM, weighs ~27MB and boots in ~5s (YMMV).
programming  hacking  sideproject 
september 2014
Did You Yahoo! License Frames
This is the company I used to order the frames.
august 2014
The φ Accrual Failure Detector
We present a novel abstraction, called accrual failure dete
ctors, that emphasizes flexibility and expressiveness
and can serve as a basic building block to implementing failu
re detectors in distributed systems.
services  synchronization  programming  network 
august 2014
lowdown on lidar.pdf
How LIDAR may not always provide an accurate measurement of speed at distances over 1000 ft.
july 2014
twister | P2P microblogging platform
twister is the fully decentralized P2P microblogging platform leveraging from the free software implementations of Bitcoin and BitTorrent protocols.
july 2014
Mirage OS
Mirage OS is a library operating system that constructs unikernels for secure, high-performance network applications across a variety of cloud computing and mobile platforms. Code can be developed on a normal OS such as Linux or MacOS X, and then compiled into a fully-standalone, specialised unikernel that runs under the Xen hypervisor. Runs OCAML
sideproject  security 
july 2014
Awesome Sysadmin
A curated list of amazingly awesome open source sysadmin resources inspired by Awesome PHP
july 2014
Java library for secure, distributed, P2P-based file synchronization and sharing
Hive2Hive is an open-source library, written in Java, for secure, distributed, P2P-based file synchronization and sharing. It is built on top of TomP2P, which is an advanced, high-performance DHT for multi-key-value pairs.
july 2014
A P2P-based high performance key-value pair storage library
TomP2P is a P2P library and a distributed hash table (DHT) implementation
which provides a decentralized key-value infrastructure for distributed
applications. Each peer has a table that can be configured either to be
disk-based or memory-based to store its values.
july 2014
Automatically Bypassing DRM Protection in Streaming Media Services
In this
paper, we introduce a general memory-based approach that
circumvents the protections deployed by popular video-on-
demand providers. We apply our approach to four different
examples of streaming services: Amazon Instant Video,
Hulu, Spotify, and Netflix and we demonstrate that, by
using our technique, it is possible to break DRM protection
in a semi-automated way.
may 2014
« earlier      
alternet android apple arguewithmom aws chromecast cooking crypto databases demonstrations earthquakes encryption etsy filesystem firefoxos fonts gadgets games hack hacking halloween haskell house http iclusterfuck javascript learninghtml lego manuals mesh meshnet mobile mongo movie mozilla mtv network nosql notifications nsa office operations peer2peer phone pre presence privacy production programming project protocol push_demo python readinglist recipe rpg scale science screen security services share shell sideproject simple simplepush sniffing social solvingdrm ssh ssl sync synchronization terminal timekiller tmux toys tty unix usgs utf8 vacation vapid videos watchlater webdev webpush whydidinotknowaboutthis xss

Copy this bookmark: