Aleksander Łukasz 🌱
@aflukasz.pl
Practicing mindfulness with Bash, CSS and YAML • Zażółcam gęślą jaźń • aflukasz.pl
NGINX Introduces Native Support for ACME Protocol – NGINX Community Blog
blog.nginx.org
August 13, 2025 at 6:32 PM
#pg_dump outputs data in disk order, so this makes comparing such outputs tricky, e.g. if doing so as a migration verification step.
In 2010 (that was long time ago!) there was an idea to add `--ordered` option, but it didn't gain enough interest: archives.postgresql.org/pgsql-hacker... .
1/
In 2010 (that was long time ago!) there was an idea to add `--ordered` option, but it didn't gain enough interest: archives.postgresql.org/pgsql-hacker... .
1/
[PATCH] Add --ordered option to pg_dump
I needed a way to run diffs on two database dumps to see what data developers put in their local …
archives.postgresql.org
August 9, 2025 at 2:53 PM
#pg_dump outputs data in disk order, so this makes comparing such outputs tricky, e.g. if doing so as a migration verification step.
In 2010 (that was long time ago!) there was an idea to add `--ordered` option, but it didn't gain enough interest: archives.postgresql.org/pgsql-hacker... .
1/
In 2010 (that was long time ago!) there was an idea to add `--ordered` option, but it didn't gain enough interest: archives.postgresql.org/pgsql-hacker... .
1/
#Ansible can sometimes fail with "Timeout (12s) waiting for privilege escalation prompt" error.
Somewhat unexpectedly, this 12s value is not directly configurable and the reason for the error may not necessarily have that much to do with privilege escalation itself.
1/
Somewhat unexpectedly, this 12s value is not directly configurable and the reason for the error may not necessarily have that much to do with privilege escalation itself.
1/
August 1, 2025 at 8:53 PM
#Ansible can sometimes fail with "Timeout (12s) waiting for privilege escalation prompt" error.
Somewhat unexpectedly, this 12s value is not directly configurable and the reason for the error may not necessarily have that much to do with privilege escalation itself.
1/
Somewhat unexpectedly, this 12s value is not directly configurable and the reason for the error may not necessarily have that much to do with privilege escalation itself.
1/
For some reason #Cloudflare really likes to hide account id value. They even had to document how to find it: developers.cloudflare.com/fundamentals..., which isn't exactly a strong indicator that their web #ui has no need for improvement.
Alas, documented method does not currently work...
1/
Alas, documented method does not currently work...
1/
Find account and zone IDs
Once you set up a new account and add your domain to Cloudflare, you may need access to your zone and account IDs for API operations.
developers.cloudflare.com
July 22, 2025 at 1:40 PM
For some reason #Cloudflare really likes to hide account id value. They even had to document how to find it: developers.cloudflare.com/fundamentals..., which isn't exactly a strong indicator that their web #ui has no need for improvement.
Alas, documented method does not currently work...
1/
Alas, documented method does not currently work...
1/
When generating config files from a template, it's sometimes easy to end up with something like this (here using jinja2 syntax):
```
{% if condition %}
setting = val
{% endif %}
```
The problem is that if condition is false, there is no trace of a decision of NOT putting this setting in...
1/
```
{% if condition %}
setting = val
{% endif %}
```
The problem is that if condition is false, there is no trace of a decision of NOT putting this setting in...
1/
July 22, 2025 at 9:21 AM
When generating config files from a template, it's sometimes easy to end up with something like this (here using jinja2 syntax):
```
{% if condition %}
setting = val
{% endif %}
```
The problem is that if condition is false, there is no trace of a decision of NOT putting this setting in...
1/
```
{% if condition %}
setting = val
{% endif %}
```
The problem is that if condition is false, there is no trace of a decision of NOT putting this setting in...
1/
#POSIX standardized `paste` takes a list of files and outputs lines consisting of the sequentially corresponding lines from each of them (examples in bash):
```
$ paste <(echo -e "1\n2") <(echo -e "a\nb")
1 a
2 b
```
And it has interesting extra property when used with stdin...
#shell
1/n
```
$ paste <(echo -e "1\n2") <(echo -e "a\nb")
1 a
2 b
```
And it has interesting extra property when used with stdin...
#shell
1/n
July 14, 2025 at 11:02 AM
#Postgresql has two timestamp types - "without time zone" and "with time zone". And none of them directly store any time zone information.
If you create a table `create table test (tnotz timestamp without time zone, ttz timestamp with time zone)` and...
#postgres #timezones #sql
1/
If you create a table `create table test (tnotz timestamp without time zone, ttz timestamp with time zone)` and...
#postgres #timezones #sql
1/
July 7, 2025 at 9:55 PM
#Postgresql has two timestamp types - "without time zone" and "with time zone". And none of them directly store any time zone information.
If you create a table `create table test (tnotz timestamp without time zone, ttz timestamp with time zone)` and...
#postgres #timezones #sql
1/
If you create a table `create table test (tnotz timestamp without time zone, ttz timestamp with time zone)` and...
#postgres #timezones #sql
1/
Web browsers really like #favicons. If your site does not declare one with ``, most (all?) of the mainstream ones will issue request to `/favicon.ico` anyway, in a hope of getting one.
Favicons are a whole topic on its own. But what if we don't use one? Can we somehow...
1/
Favicons are a whole topic on its own. But what if we don't use one? Can we somehow...
1/
May 29, 2025 at 9:05 AM
Web browsers really like #favicons. If your site does not declare one with ``, most (all?) of the mainstream ones will issue request to `/favicon.ico` anyway, in a hope of getting one.
Favicons are a whole topic on its own. But what if we don't use one? Can we somehow...
1/
Favicons are a whole topic on its own. But what if we don't use one? Can we somehow...
1/
#Ansible has a task called add_host. It adds extra hosts to the inventory at play execution time. It has two non obvious properties, though.
First, such a host is not automatically selected as execution target during current play. Only subsequent plays that run in the same execution context...
1/
First, such a host is not automatically selected as execution target during current play. Only subsequent plays that run in the same execution context...
1/
May 27, 2025 at 3:51 PM
#Ansible has a task called add_host. It adds extra hosts to the inventory at play execution time. It has two non obvious properties, though.
First, such a host is not automatically selected as execution target during current play. Only subsequent plays that run in the same execution context...
1/
First, such a host is not automatically selected as execution target during current play. Only subsequent plays that run in the same execution context...
1/
A few days ago I missed an important detail in my post on #psql and /etc/shadow.
@hillu.bsky.social, useful insights, thanks for sharing!
Yeah, I missed that wrapping. Turns out it's not psql "fault". Now I chuckle at me saying earlier that this is not some custom setup - as form psql pov it actually is...
Btw, first line of the wrapper code you've cited also suggests how...
Yeah, I missed that wrapping. Turns out it's not psql "fault". Now I chuckle at me saying earlier that this is not some custom setup - as form psql pov it actually is...
Btw, first line of the wrapper code you've cited also suggests how...
May 26, 2025 at 3:08 PM
A few days ago I missed an important detail in my post on #psql and /etc/shadow.
#psql, at least version 15.12, really likes `/etc/shadow` file. To such a degree that it tries to read it upon each invocation:
```
$ strace psql 2>&1 | grep /etc/shadow
openat(AT_FDCWD, "/etc/shadow", O_RDONLY|O_CLOEXEC) = -1 EACCES (Permission denied)
```
#auditd #bwrap #alerting #linux
1/
```
$ strace psql 2>&1 | grep /etc/shadow
openat(AT_FDCWD, "/etc/shadow", O_RDONLY|O_CLOEXEC) = -1 EACCES (Permission denied)
```
#auditd #bwrap #alerting #linux
1/
May 23, 2025 at 10:09 AM
Interesting display, as this is not a conference slide, popular YT'ber, rehearsed demo, CEO keynote or a tweet. Just a real, big, meaningful code base with actual developers spending their day time job actually testing #AI selling points, in public.
Overall, it's a good idea. Results so-so for now?
Overall, it's a good idea. Results so-so for now?
May 22, 2025 at 11:29 AM
Interesting display, as this is not a conference slide, popular YT'ber, rehearsed demo, CEO keynote or a tweet. Just a real, big, meaningful code base with actual developers spending their day time job actually testing #AI selling points, in public.
Overall, it's a good idea. Results so-so for now?
Overall, it's a good idea. Results so-so for now?
#Postgresql in version 17 introduced `sslnegotiation` connection param: www.postgresql.org/docs/17/libp....
Setting it to `direct` skips asking the server if it supports #SSL connections and proceeds establishing such connection directly.
#postgres #tls #performance
1/
Setting it to `direct` skips asking the server if it supports #SSL connections and proceeds establishing such connection directly.
#postgres #tls #performance
1/
32.1. Database Connection Control Functions
32.1. Database Connection Control Functions # 32.1.1. Connection Strings 32.1.2. Parameter Key Words The following functions deal with making a connection …
www.postgresql.org
May 22, 2025 at 10:22 AM
#Postgresql in version 17 introduced `sslnegotiation` connection param: www.postgresql.org/docs/17/libp....
Setting it to `direct` skips asking the server if it supports #SSL connections and proceeds establishing such connection directly.
#postgres #tls #performance
1/
Setting it to `direct` skips asking the server if it supports #SSL connections and proceeds establishing such connection directly.
#postgres #tls #performance
1/
Recently I've landed on a blog post from 2011 titled "URL as UI": alanhogan.com/url-as-ui. One claim caught my eye in particular - "an ideal URL is guessable":
"Synonyms should ideally redirect. If you have a support page at /support and a user types /help...
#ui #ux #url #usability #web
1/
"Synonyms should ideally redirect. If you have a support page at /support and a user types /help...
#ui #ux #url #usability #web
1/
URL as UI
URLs are part of your user interface. Guidelines, inspiration, and criticism of URL design.
alanhogan.com
May 21, 2025 at 4:22 PM
Recently I've landed on a blog post from 2011 titled "URL as UI": alanhogan.com/url-as-ui. One claim caught my eye in particular - "an ideal URL is guessable":
"Synonyms should ideally redirect. If you have a support page at /support and a user types /help...
#ui #ux #url #usability #web
1/
"Synonyms should ideally redirect. If you have a support page at /support and a user types /help...
#ui #ux #url #usability #web
1/
This is slightly embarrassing, but I've learned just recently that `tail` command has `-F` option. It's a CAPITAL F, not commonly used lower case `-f`.
It's not #POSIX standardized, but many implementations have it. #GNU #coreutils is an example closest to my daily usage, but...
#linux #tail
1/
It's not #POSIX standardized, but many implementations have it. #GNU #coreutils is an example closest to my daily usage, but...
#linux #tail
1/
May 20, 2025 at 3:10 PM
This is slightly embarrassing, but I've learned just recently that `tail` command has `-F` option. It's a CAPITAL F, not commonly used lower case `-f`.
It's not #POSIX standardized, but many implementations have it. #GNU #coreutils is an example closest to my daily usage, but...
#linux #tail
1/
It's not #POSIX standardized, but many implementations have it. #GNU #coreutils is an example closest to my daily usage, but...
#linux #tail
1/
Some programs require that the name of the passed file has a specific scheme. For example, just now I want to start some `programX` and it won't work, if config file has no proper extension.
There are better or worse reasons to do that. But the con side contains...
#linux #interop #bash #zsh
1/
There are better or worse reasons to do that. But the con side contains...
#linux #interop #bash #zsh
1/
May 19, 2025 at 3:49 PM
It's 2025 - and it's as funny as always to read older communication saying something like "Stop doing that, it's 2007" or "This is inexcusable in 2012".
So cute. 🤗
#time
So cute. 🤗
#time
May 18, 2025 at 11:49 AM
It's 2025 - and it's as funny as always to read older communication saying something like "Stop doing that, it's 2007" or "This is inexcusable in 2012".
So cute. 🤗
#time
So cute. 🤗
#time
@bluefacts.app for my handle you say “signed up ahead of 88% of all Bluesky users, joining before many others”.
I just joined like 2 weeks ago - something is not right. 🐛 Or just some kind of empty state amnesia?
I just joined like 2 weeks ago - something is not right. 🐛 Or just some kind of empty state amnesia?
May 16, 2025 at 1:56 PM
@bluefacts.app for my handle you say “signed up ahead of 88% of all Bluesky users, joining before many others”.
I just joined like 2 weeks ago - something is not right. 🐛 Or just some kind of empty state amnesia?
I just joined like 2 weeks ago - something is not right. 🐛 Or just some kind of empty state amnesia?
May 16, 2025 at 11:22 AM
#nftables has some peculiarities in its syntax.
One of my "favorites" is the fact that you can't define an empty set while using `elements` keyword and contents literal.
For example, let's create a table: `nft add table test_tbl`.
Now we can add a set...
#linux #netfilter #firewall
1/
One of my "favorites" is the fact that you can't define an empty set while using `elements` keyword and contents literal.
For example, let's create a table: `nft add table test_tbl`.
Now we can add a set...
#linux #netfilter #firewall
1/
May 13, 2025 at 4:38 PM
#nftables has some peculiarities in its syntax.
One of my "favorites" is the fact that you can't define an empty set while using `elements` keyword and contents literal.
For example, let's create a table: `nft add table test_tbl`.
Now we can add a set...
#linux #netfilter #firewall
1/
One of my "favorites" is the fact that you can't define an empty set while using `elements` keyword and contents literal.
For example, let's create a table: `nft add table test_tbl`.
Now we can add a set...
#linux #netfilter #firewall
1/
#Pgbackrest does not support HTTP proxies (in its #s3 client). This was raised on Github couple of times.
Suggested workaround is to use #proxychains.
Discovering you need to slap some extra component into a critical path of a critical workflow is exciting...
#postgresql #backup #httpproxy
1/
Suggested workaround is to use #proxychains.
Discovering you need to slap some extra component into a critical path of a critical workflow is exciting...
#postgresql #backup #httpproxy
1/
May 12, 2025 at 11:36 AM
#Pgbackrest does not support HTTP proxies (in its #s3 client). This was raised on Github couple of times.
Suggested workaround is to use #proxychains.
Discovering you need to slap some extra component into a critical path of a critical workflow is exciting...
#postgresql #backup #httpproxy
1/
Suggested workaround is to use #proxychains.
Discovering you need to slap some extra component into a critical path of a critical workflow is exciting...
#postgresql #backup #httpproxy
1/
Reposted by Aleksander Łukasz 🌱
What does a decentralized social coding platform look like?
Find out on our latest episode with the founders of tangled.sh @oppi.li and @icyphox.sh
creators.spotify.com/pod/show/dev...
www.youtube.com/watch?v=7kHJ...
Find out on our latest episode with the founders of tangled.sh @oppi.li and @icyphox.sh
creators.spotify.com/pod/show/dev...
www.youtube.com/watch?v=7kHJ...
May 7, 2025 at 8:01 PM
What does a decentralized social coding platform look like?
Find out on our latest episode with the founders of tangled.sh @oppi.li and @icyphox.sh
creators.spotify.com/pod/show/dev...
www.youtube.com/watch?v=7kHJ...
Find out on our latest episode with the founders of tangled.sh @oppi.li and @icyphox.sh
creators.spotify.com/pod/show/dev...
www.youtube.com/watch?v=7kHJ...
History of the default #PBKDF2 iterations count in #Django hasher module used for hashing user #passwords:
2013-09-19 12000
2014-07-11 20000
2015-01-16 24000
2015-09-19 30000
2016-05-20 36000
2017-01-17 100000
2018-05-13 120000
2018-05-17 150000
2018-12-27 180000
2019-09-12 216000
1/
2013-09-19 12000
2014-07-11 20000
2015-01-16 24000
2015-09-19 30000
2016-05-20 36000
2017-01-17 100000
2018-05-13 120000
2018-05-17 150000
2018-12-27 180000
2019-09-12 216000
1/
May 9, 2025 at 7:52 AM
History of the default #PBKDF2 iterations count in #Django hasher module used for hashing user #passwords:
2013-09-19 12000
2014-07-11 20000
2015-01-16 24000
2015-09-19 30000
2016-05-20 36000
2017-01-17 100000
2018-05-13 120000
2018-05-17 150000
2018-12-27 180000
2019-09-12 216000
1/
2013-09-19 12000
2014-07-11 20000
2015-01-16 24000
2015-09-19 30000
2016-05-20 36000
2017-01-17 100000
2018-05-13 120000
2018-05-17 150000
2018-12-27 180000
2019-09-12 216000
1/