Un blog tecnico che approfondisce architetture software moderne, sicurezza, crittografia, sistemi distribuiti e sviluppo full-stack, con articoli pratici su JavaScript, Docker, Go, WebAssembly, cloud e best practice per sviluppatori.
41 articles from this blog
Analysis of a real-world account takeover attack, highlighting how AI agents enable fast, coordinated credential stuffing and the new economics of cybercrime.
A guide to using Revaulter and passkeys to unlock encrypted ZFS datasets without storing keys on the server.
Argues against placing business logic in stored procedures, advocating for keeping it in the application layer for better maintainability and scalability.
A developer shares insights and design considerations for building a distributed actor framework, based on experience with Dapr, Orleans, and a custom Go project.
An introduction to the distributed actor model for building concurrent, resilient systems, explaining its core concepts and benefits.
Explains how to achieve high availability for services over Tailscale using DNS-based load balancing, avoiding single points of failure.
The author discusses a new architecture proposal for Hereditas v0.3, a tool for creating trustless digital legacy boxes, and seeks community feedback.
Announcing a new book for JavaScript developers on practical cryptography, covering hashing, encryption, and digital signatures.
Explains why storing secrets like passwords and API keys in Git is a security risk and discusses better alternatives for secret management.
A guide to overcoming x86/ARM architecture mismatch issues when developing on ARM-based machines using VS Code and Docker.
A developer reflects on leaving the decentralized web (IPFS) after realizing its potential for misuse and ethical concerns.
A technical guide on using Go with WebAssembly to create JavaScript objects, Promises, HTTP requests, and streaming in the browser.
A developer recounts accidentally creating a spying app as a teenager while trying to solve the iPhone's 1000-SMS limit, exploring early mobile hacking.
Guide to installing Docker and Docker Compose on Raspberry Pi OS, covering 32-bit vs 64-bit variants and Lite vs Desktop editions.
Explains when to use dependencies vs devDependencies in package.json, with examples for client-side and server-side apps.
Learn how and why to sign Git commits using GPG keys to verify authorship and prevent impersonation.
Explains why developers should avoid building custom authentication and use Identity-as-a-Service providers for security and efficiency.
A talk on deploying static JavaScript apps to the Distributed Web using IPFS, IPNS, and Cloudflare with a full DevOps pipeline.
Guide on auto-mounting LUKS-encrypted drives at boot using a remote key stored securely, with systemd units.
Explores the evolution of web development from static sites to dynamic apps and back to static with modern JAMstack architecture.
