Posts

Showing posts from November, 2018

Nginx with Naked Domains

This right I'm going naked on everything! Non-www and everything lowercase. Just to simplify my urls. If you couldn't write it out naturally or if it takes too long then I avoid making it a path. Special cases like unique guid url parameters being the exception. For the sites that have a ton parameters this its understandable but for the domains this rule really should be applied. In some cases might say the path is up to the application however if the framework doesn't handle this is a fall back.

https://superuser.com/questions/432674/nginx-remove-www-from-httpshttps://www.digitalocean.com/community/tutorials/how-to-redirect-www-to-non-www-with-nginx-on-ubuntu-14-04http://nginx.org/en/docs/http/server_names.html

Orchard 1.10.1 - Seo & Social Module

Most of the work I do for orchard is open source, this is because nothing other than content is property of my employer. Even if open source makes some employers uncomfortable a lot of my work is about success of a given project or the development process flow. In other words is everyone able to achieve what with the development or features created within a given project. That's just my take on things, I'm sure someone will disagree, putting security in a much higher priority. Which I think is a big part of my reason for being open source on the things I could improve unpon.

Notes:

https://stackoverflow.com/questions/11149157/orchard-getting-the-contents-title-from-the-theme-layouthttps://stackoverflow.com/questions/11688626/orchard-theme-placement-not-overriding-module-placementhttps://stackoverflow.com/questions/13000711/add-individual-page-titles-to-html-document-head-in-orchard-cmshttps://stackoverflow.com/questions/17737509/orchard-cms-custom-theme-every-page-displaying-ti…

Content Security Policy & Best Practices

Image
This article is mostly on configuration with nginx and maybe a little on IIS.



Notes:
https://developer.mozilla.org/en-US/docs/Web/HTTP/CSPhttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/frame-ancestorshttps://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/frame-ancestorshttps://csp-evaluator.withgoogle.comhttps://securityheaders.io/

Nginx Best Practices Extended

Bootstrap Cheatsheet

There are many things I wouldn't call myself a master of but bootstrap is one of them. I never seem to have difficultly with css but do forget a few things cause they aren't really all that important! Haha css joke...

https://stackoverflow.com/questions/11425115/css-media-queries-for-pixel-density-moz-min-device-pixel-ratio-vs-min-moz-dehttps://stackoverflow.com/questions/23700941/bootstrap-full-responsive-navbar-with-logo-or-brand-name-texthttps://stackoverflow.com/questions/8805208/css-min-width-and-max-width-and-flexible-layout
Positions

Learn CSS Positioning in Ten Steps: position static relative absolute floatCSS z-index propertyCSS PositioningFree responsive html5 CSS website templates, create your own free websiteHow to Center Anything with CSS50+ Nice Clean CSS Tab-Based Navigation ScriptsTable centering using CSS or HTML: theodorakis.netHTML5 Simplequiz 6: Zeldman’s fat footer | HTML5 Doctor CSSTidy
https://css-tricks.com/multiple-class-id-selectors/opacityparam tag Miscel…

CSharp Cheatsheet

Linux: Set Default Permissions with Directives

I would normally put this in an update for one of my cheatsheets, and will probably put a link to it for linux for this article. However I don't see a lot of people talk about this often and use these commands normally when I'm setting up a folder for a web application. I'll normally work in the /var/www folder but I attached the Gitlab CI to this but nginx needs read access.

sudo setfacl -d -m g::rwx EXAMPLE
sudo getfacl EXAMPLE
Note: https://linux.die.net/man/1/setfacl

Windows via Command-Line Cheatsheet

I think if you use a server it should be with minimal graphical environments, this protects you and the clients from simple mistakes in my experience. Commands are easier to repeat. Programming and process power are limited to what matters. A developer's focus can't be any clearer. So let's stop using windows like a desktop please...

Initial Goals
disable all processes using the UIdisable remote connections if it use a terminal.look into securitybridge the gap into windows vs. linux basic commands.
Notes: Coming soon

Docker Cheatsheet

More coming soon... trying to get ahead but starting off creating all my cheatsheets so I don't have work at creating multiple notes for specific problems I run into.

Notes:

https://stackoverflow.com/questions/42365336/how-to-stop-dockerhttp://blog.baudson.de/blog/stop-and-remove-all-docker-containers-and-imageshttps://mtarnawa.org/2017/11/10/running-secured-private-docker-registry-nginx-proxy-letsencrypt/

Avoiding Select Options by Design

Image
This is just a foot note in my career after years of developing websites. You can take it as a rant or a word of caution. So for a lot of reasons, I really don't like the select tag. For starters its buggy, there are many things about it that don't work across browsers or behave differently. I wish it didn't, and instead could replace the css alternative, dropdowns. An example of my experience over the years, where I tried disabling a option, apple's safiri didn't like that. On another project I tried to just style one of the options again I ran into a wall with firefox. I don't know if these issues still exist but
its giving me enough reasons to avoid.


Notes:

Not allowed cursor of a disabled field appears in a select taghttps://jsfiddle.net/3sq410wk/1/https://github.com/twbs/bootstrap/issues/16088https://github.com/twbs/bootstrap/issues/14528