V2EX = way to explore
V2EX 是一个关于分享和探索的地方
现在注册
已注册用户请  登录
V2EX  ›  azuginnen  ›  全部回复第 9 页 / 共 14 页
回复总数  261
1  2  3  4  5  6  7  8  9  10 ... 14  
2015-04-27 17:07:44 +08:00
回复了 liuchunhui 创建的主题 Evernote 被印象笔记坑了一把
There are many horror stories on the web of users losing their data. I thought it was already well known that Evernote software cannot be trusted. Recently, two HN users made comments about data loss[1][2].

I'm baffled that users continue to trust it. I do understand that it's a slick product with nice features but if it fails the primary purpose (save the data and also retrieve it later), the GUI bells & whistles are meaningless. (Example[3].) In other words, programming a flashy drag&drop tool that saves data to /dev/null negates the point, right?


https://news.ycombinator.com/item?id=9090135
2015-04-27 16:37:35 +08:00
回复了 azuginnen 创建的主题 职场话题 想请问 V2EX 大大们,两个 offer 该如何选呢?
@armysheng 楼主最后哪也没去~~

囧,说明一个道理,处女座纠结个毛线啊!!!
2015-04-27 16:33:30 +08:00
回复了 cheny95 创建的主题 MacBook Pro 刚才入了 840,咨询一下..
@armysheng 戴口罩~~:)
2015-03-10 20:21:43 +08:00
回复了 roushan 创建的主题 酷工作 [杭州] 移动互联网 O2O 项目求开发
公司信息太少啦

我自己出手,应该是在这里 http://2dfire.com/help.html

大致就知道公司主要做些啥了。

不过花名是食物真的大丈夫????
2015-03-09 10:11:00 +08:00
回复了 fy 创建的主题 问与答 如何爬取 angularJs 的站?
返回的是个json
_______________________________________________________

GET /twe_at_en/att_rom_levis_armaturae?_nonce=jrZO5C6sdYKfyDcU HTTP/1.1
Host: attila-db.totalwar.com
Proxy-Connection: keep-alive
Accept: application/json
Origin: http://atenc.totalwar.com
User-Agent: Safari/536.36
Content-Type: application/json
Referer: http://atenc.totalwar.com/
Accept-Encoding: gzip, deflate, sdch
Accept-Language: zh-CN,zh;q=0.8,en;q=0.6,zh-TW;q=0.4,ja;q=0.2

_______________________________________________________

{
"_id": "att_rom_levis_armaturae",
"_rev": "1-392fb8fd27191a085ac7d3c5a2d95493",
"index": 421,
"campaign": "main_attila",
"additional_picture": "",
"name": "Levis Armaturae",
"next_unit": "att_rom_matiarii",
"picture": "att_rom_levis_armaturae.png",
"prev_unit": "att_rom_funditores",
"requires_region": [
"",
"",
"",
"",
"",
"",
// delete some
"",

""
],
"ability_block": [
"",
"enc_text_manual_battle_conflict_attributes_fatigue",
"enc_text_manual_battle_conflict_attributes_scrub",
"",
"",
"",
"",
"",
"",
"",
""
],
"ability_link": [
"",
"0086_enc_page_battle_play_phase_conflict_attributes",
"0086_enc_page_battle_play_phase_conflict_attributes",
"",
"",
"",
"",
"",
"",
"",
""
],
"ability_text": [
"As these men are inexperienced sailors. Caught up in sea combat, they suffer various penalties.",
"Fatigue has less of an effect on this unit.",
"This unit can hide in forests until enemy units get too close.",
"",
"",
"",
"",
"",
"",
"",
"",
"",
"",
""
],
"ability_title": [
"Sea Sickness",
"Resistant to Fatigue",
"Hide (forest)",
"",
"",
"",
"",
"",
"",
"",
"",
"",
"",
""
],
"class": "Missile Infantry",
"class_description": "Long range units who provide support for melee units, but are themselves very weak in close combat.",
"faction": [
"att_fact_illyricum",
"att_fact_macedonia",
"att_fact_aegyptus",
"att_fact_hispania",
"att_fact_gallia",
"att_fact_italia",
"att_fact_britannia",
"att_fact_dacia",
"att_fact_septem_provinciem",
"att_fact_africa",
"att_fact_eastern_roman_empire",
"att_fact_ostrogothi",
"att_fact_western_roman_empire",
"att_fact_oriens",
"att_fact_pontus",
"att_fact_asia",
"",
"",
"",
"",
"",
"",
""
],
"description": [
"Levis armaturae' literally translates as 'lightly armoured'. These flexible, sparsely-clad infantry formed a large part of late Roman Legions, acting primarily as a skirmishing force. They were used to harass the enemy and hurled slingshot, javelins and plumbatae - deadly lead darts - before falling back through the maniples of heavy infantry as they advanced. They could then continue skirmishing on the enemy's flanks. In this way, levis armaturae never gave the enemy pause to regroup or breathe; successful skirmishers maintained a defensive screen as an army manoeuvred, able to keep pressure on the enemy and an eye on their Legion's flanks.",
""
],
"next_key": "att_rom_matiarii",
"prev_key": "att_rom_funditores",
"requires_building_faction_id": [
"att_fact_eastern_roman_empire",
"att_fact_western_roman_empire",
"",
"",
"",
"",
"",
""
],
"requires_building_id": {
"1": {
"1": "att_bld_roman_east_military_1att_cult_romanatt_sub_cult_roman_east",
"2": "",
"3": "",
"4": ""
},
"2": {
"1": "att_bld_roman_west_military_1att_cult_romanatt_sub_cult_roman_west",
"2": "",
"3": "",
"4": ""
},
"3": {
"1": "",
"2": "",
"3": "",
"4": ""
},
"4": {
"1": "",
"2": "",
"3": "",
"4": ""
},
"5": {
"1": "",
"2": "",
"3": "",
"4": ""
},
"6": {
"1": "",
"2": "",
"3": "",
"4": ""
},
"7": {
"1": "",
"2": "",
"3": "",
"4": ""
},
"8": {
"1": "",
"2": "",
"3": "",
"4": ""
}
},
"strengths_and_weaknesses_title": "Strengths & Weaknesses",
"strengths_and_weaknesses": [
"Excellent Rate of Fire",
"Very Poor Armour",
"Low Ammunition"
],
"stat_label": [
"Recruitment Cost",
"Upkeep Cost",
"Melee Attack",
"Melee Damage",
"Charge Bonus",
"Melee Defence",
"Armour",
"Health",
"Morale",
"Speed",
"Missile Damage",
"Ammunition",
"Capture Power",
"Missile Block Chance",
"Rate of Fire",
"Spotting",
"Range",
"Hiding"
],
"stat_percentage": [
"",
"",
"4.16667",
"8",
"0.333333",
"25.8333",
"6.66667",
"22.2857",
"22.6667",
"33.3333",
"90",
"16",
"40",
"20",
"30.5",
"50",
"16",
"50"
],
"stat_value": [
"300",
"150",
"5",
"6",
"1",
"31",
"8",
"78",
"34",
"40",
"90",
"8",
"10",
"20",
"61",
"500",
"80",
"1"
],
"game": "at_lb",
"tag": "654012",
"typeof": "Units",
"collection": "Units",
"modifiedBy": "martin.haynes",
"date_created": "2015-03-03T08:50:46+00:00",
"operation": "updated",
"data_updated": "2015-03-03T08:50:46+00:00"
}
2015-01-08 09:45:08 +08:00
回复了 exploreexe 创建的主题 问与答 你的账户是否被黑?
2015-01-07 20:13:19 +08:00
回复了 azuginnen 创建的主题 问与答 拿到新的 digital ocean 的一台 vps 需要做哪些事情
好吧。这是我从v站搜索到的

分享给有需要的人

===

1、修改iptable只开放80端口(或需要使用的其他端口)
2、新建一个用户(eg:tweb),分配某块区间(eg:/usr/www/myweb)的读写权限,并禁止其登陆。tomcat就交给这个用户管理。这样,及时网站被破解了拿到了用户密码,也只能操作这个区间内的东西,不会影响你其他的分区和资源。
3、不要拿tomcat做http服务器,装nginx或apache做这个事情。把图片、css、js等静态资源交给nginx处理,动态请求交给tomcat处理。
4、用类似Fail2Ban这样的东西限制登录次数,保证不被穷举破解。
5、其实,Linux的安全核心应该是:用户+iptable。二者配合,足够啦。

===

另一条

做物理隔离最简单,VPN次之,上公网后安全没有一劳永逸,有的搞。
以linux中debian/ubuntu为例,最基础的:

1. 系统内核参数,改/etc/sysctl.conf 跳转参数。
2. 端口只开放 ssh/http/https, 改ssh 端口到其它数字,并fail2ban,
条件许可时ssh用ip白名单、纯证书访问。
3. 服务器内各进程权限独立,特别是私有程序编译时,除了守护进程用root,其它全部降权。
4. 用户权限与文件夹权限:关闭root登陆,管理员另起sudo用户名,web文件夹755 文件644
各种配置文件640加服务器Deny Access Protection,多用户隔离。
5. 如果允许用户上传文件,取消一切执行权限,最好放在另一台media服务器。
6. Hot Links/Reverse Proxy偷流量好防,DDOS被盯上就要出血,穷人解法用varnish/load balancer稍微挡一下,总之得烧钱。

网站程序自身还要具备各种Validation, SSL加密敏感交互,特殊字符escape,防SQL注入和XSS机制。
Tomcat 和 Oracle具体防护又是另外话题了,感觉运维里面很大一部分成本被安全占了。


===


对于确保linux系统安全的,不知道大家还有没有心得。
2014-11-15 09:04:59 +08:00
回复了 jason52 创建的主题 程序员 vim 黑科技啊,炒股也可以。。。
@icedx 博主嘲讽很到位的
我去,楼主太坑爹了啦。打钱没
2014-11-14 19:27:06 +08:00
回复了 yakczh 创建的主题 问与答 采集一个电影网站的数据,该收多少钱?
我有一个同学是豆瓣运维。。。
赶紧报告!!!!!
2014-11-09 22:18:00 +08:00
回复了 jason52 创建的主题 分享发现 有个叫做 榫 · 卯 的 app 真心牛逼
手机太卡了。。。
2014-11-09 22:17:02 +08:00
回复了 bullettrain1433 创建的主题 macOS 求个靠谱的邮箱客户端
现在的年轻人,就不知道好好学学emacs
李叔推荐过的!!!
分!!!!
2014-11-01 14:17:43 +08:00
回复了 yanshum 创建的主题 程序员 聚合数据:回复关于 SDK 的问题
2014-11-01 12:11:12 +08:00
回复了 yanshum 创建的主题 程序员 聚合数据:回复关于 SDK 的问题
1  2  3  4  5  6  7  8  9  10 ... 14  
关于   ·   帮助文档   ·   博客   ·   API   ·   FAQ   ·   实用小工具   ·   2814 人在线   最高记录 6679   ·     Select Language
创意工作者们的社区
World is powered by solitude
VERSION: 3.9.8.5 · 32ms · UTC 12:08 · PVG 20:08 · LAX 04:08 · JFK 07:08
Developed with CodeLauncher
♥ Do have faith in what you're doing.