Interplanetary Peers | Techsnap 384

There’s an excellent example of using orbit DB on the github page for the orbit DB project where.

They basically say you know run two browsers side-by-side go to this webpage and it you can.

Connection over IPS ipfs and then having my blog post comments you know hello from hello from hello from with lots and lots of different people posting into that so if you’re looking to build a dynamic system on.

Top of IP FS then you might want to look at using orbit as your database layer that sits on top of that right and it’s not you know in many ways this doesn’t burn you know you do need some some higher-level tooling for to replicate everything that we’ve been doing on the on the centralized web but IPP ipfs can provide this this base layer of technology that.

We can start building more of those tools on and just have this peer-to-peer idea more at the core and not be reliant on centralized infrastructure or at least less reliant yeah and the guys that.

Have created ipfs are also looking at lots of other distributed.

Technologies as well so it’s not just ipfs they’re involved in I think the namecoin projects and things like that as well.

Of different technologies that they’re involved in they’re working with and that they’re trying.

To make it so that we’re not all reliant the Facebook’s and the googles of this world even though their code is largely hosted on sites like github right and.

Another interesting thing I noticed going through this is just you know.

It doesn’t it doesn’t even necessarily have to rely on the public internet if you have your own you know if you have your.

Own private networks that you’re running well type EFS could function on those just fine yeah absolutely so for example if you’re if you’re working for an offline network as long as you’ve got nodes that can see each other they can use IP FS they can communicate over and they basically set up this overlay network that lives to transit the information around it and that’s a really powerful way of publishing you know again.

You’re not down you’re not reliant on on a core set of servers to service your content for you it’s down to you know potentially you your fans if you’re producing works of art or code commits and things like that there are my PFS git repositories so you can commit your code in to get.

In ipfs so then you can be pulling from that without without needing to use HTTP or HTTPS without needing to use a service that exposes the content you’re looking for yeah it also seems to me that we’ve you know we’ve gone so far with our centralized infrastructure but in many ways we’ve ended up reinventing things that we wouldn’t have to spend so much time on.

Now let’s say that you wouldn’t need to do these things but you know we we scale out infrastructure we have complicated load.

To set up various levels of redundancy but but because it’s all on top of a centralized system we end up with all kinds of of DNS hacks and an IP layer hacks just to get this to.

Work and seem consistent to the end user with ipfs it just feels cleaner right you’re like well no bi added it a bunch of nodes have pinned it and you just ask the.

Network and well one of those nodes will serve you the content another thing I have enjoyed while experimenting with IP FS is it’s just really simple to get started with the main implementation is in go so you can just go by go download.

Nice static single binary you can run on your system the tooling is really easy especially if you’re.

Already familiar with the command line you know you can do stuff like ipfs cat and then you paste the the hash that you’re interested in and it pulls it from the network prints it to your standard out so all these tools already.

Work if it’s very nicely into a UNIX based workflow and you.

Don’t have to you know you can use cloud flares new gateway you can use the existing gateways but if you really want to start playing with it I would go install the daemon and just start.

Adding some of your files and.

See what it’s like and like you said if you if you are looking for a simple way of exploring it from a command line there is also an IP FS files command.

So where we mentioned before about having this mutable content system with an immutable data layer with the IP FS files command you can actually explore the files that would be in that blob just from a shell and you can edit.

Create change your files and then effectively commit that immutable.

Blob into your mutable file system there’s also.

An implementation in JavaScript so if.

You wanted to use Java scripts like a JavaScript web app singer then single page web application.

Or something like you can use that to work back and pull information from the IP.

FS network or you can use nodejs to integrate ipfs content into your.

JavaScript based command line or GUI applications Oh see there that would be really handy you don’t even have to rely on some on some native binary if you’ve got JavaScript access well who doesn’t it.

About everywhere one interesting.

Thing is you know you can you can be skeptical of what cloud fledged motivations are here but they’ve done a lot of work trying to make their gateway work well so.

They’ve reimplemented some things they’ve they’ve.

Some time to write even a DNS that client to make sure that when you use their service which of course does let you tie into some.

Of their their fancy product offerings and take advantage of their edge network for good or for bad but they’ve obviously cared about that right they want you to help you runs nice services if you do use some other services they’re making it pretty easy to go get your own domain name and start hosting stuff on ipfs with CloudFlare as a fancy cache at the edge.

But getting verified content out of the network and then serving it over SSL so I’ve had a bit of a poke around at the CloudFlare ipfs front-end and it’s.

Definitely a very easy way of exploring ipfs don’t think of it as the only way to do so hopefully it’s just one way that can make this.

Neat technology more accessible to people but of course the main benefit is you don’t need this there’s other gateways and you don’t need a gateway you can start playing with it right now on your home machine without having to sign up for anything absolutely it’s definitely worth giving a good try thank you John that was a lot of great information you’re.

Probably wondering audience like how do you go earn more well we’ve tried to make it easy tech snap dot systems slash 384 we’ve got all kinds of link CloudFlare as their own documentation which does a pretty good job of ensuring this of course there’s ipfs IO.

Which have their own guides plus some stuff like how do you go about running a blog well we’ve got examples of that and links to other projects that you might want to use either with IP FS or examples of cool products based on IP FS or hey if you’ve already used it you want us to talk more about it or you want to just.

Brag about the cool stuff you’re doing with it we’d love to hear about it tech snap dot systems slash contact as much as I would love.

To talk about ipfs all day we do have a time limit on this show so it’s time for our final thoughts first up just a little security notice for all of you docker users out there there’s been a bit of.

An issue with alpine now Alpine is the teeny-tiny lightweight linux distro that is very popular for docker.

Containers you know it doesn’t it has a small userland.

Doesn’t take up a lot of space people love that unfortunately well they’ve had a bit of a.

Problem with their package manager which meant that all alpine derived docker images are suspect so like you.

Said alpine linux is is a very tiny distribution most of the.

Time you’re looking like five or six mega for it they’ve got a packaging system called apk that sits on top of that this APK application you can actually make your exit with a zero exit code by writing to proc and then the process ID slash memory which means that you can install packages during the installation you can inject further commands into it and it will still exit as though it’s built properly so what.

This means is that as an attacker could intercept a package request so say for example.

You wanted to install node ideal I really do want to install though you were in exactly you want to run you want to install node to run your.

You’ve downloaded the apk package using the apk tool that’s built into alpine it downloads this tar gzip file so it unpacks the archive and then runs the.

Suspicious code so apparently a malware can escape detection while being hidden inside the commit hooks directory which is a bit of an unusual place to put code but you know I guess that’s probably where.

You’re looking at it so fortunately a patch diversion apk is now included in the latest version of Alpine so anyone that has got a docker image that is running without hone on it is encouraged to go and rebuild their images and probably because Alpine is such a fundamental part of how a lot of people are working with docker the guy that found the.

Vulnerability is suggesting making it donation to our point aside for anything else they’ve got wonderful one main developer for apk and he fixed that bug in less than a week I’m the lead maintainer who again is part of a small small collection of people managed to cut a new release of the distribution within a very.

Short period that’s really impressive and I mean Alpine underlies so many containers many of them running on you know private cloud services out there people are even s that I think about it right you’re you’re.

Six layers deep in docker inheritance but it’s all it’s all pulling in.

Alpine and somewhere this story is interesting for a couple of reasons one it’s a good reminder that I mean you got.

Check where your where your doctor files are coming from to well package management is tricky and it’s always wise to think about when you’re installing a package whoever’s authored that package or in this case you know something could be man-in-the-middle or a malicious mirror they have root on your box while.

That package is installing in this case you know there’s some issues with not not really checking things before all that extraction took place and some some quibbling with symlinks and hard links and making it work so that you could get files maliciously.

On the file system so watch out there and third you have no excuse not to rebuild this doctor makes it so easy just go to your CI system trigger some new builds test them and push them out I’ve got an awful lot of stuff with docker but like you said creating a new build in docker.

Is is such a slight piece of work and docker is designed to be very low not necessarily low maintenance but low impact to make changes to the system so it’s definitely.

Worth giving it a reboot if.

Said go give some support to help mine they’re doing.

They’re doing great work they’re helping make it make docker better so if you rely on that technology try to throw some bucks that way that’s gonna be about it for text nap 384 thank you so much for joining John this has been so much fun in particular I’d like to point people to your excellent podcast the admin admin podcast admin admin podcast co uk.

So where else can they find you I am pretty much on all of the centralized social networks as John the nice guy so please feel free to look for me there or I have a blog out Johnsbury yes that’s SP r IG GS and that’s John with no H that is John with no H although I will answer to emails that say John in my name you are just.

So gracious so thank you again for.

Joining us if you want to get all the details about this episode that’s tech snap dot systems slash 384 you can find the whole network over there Jupiter broadcasting comm or on Twitter at Jupiter signal I’m at West Payne and thank.

You so much for joining us for this week’s episode of tech snap we’ll see you next week you.

Posted in Linux<a href="https://baby2471.com/tag/alpine-linux" rel="tag">Alpine Linux</a> <a href="https://baby2471.com/tag/cloudflare" rel="tag">Cloudflare</a> <a href="https://baby2471.com/tag/content-addressable-storage" rel="tag">Content-addressable storage</a> <a href="https://baby2471.com/tag/data-breach" rel="tag">Data Breach</a> <a href="https://baby2471.com/tag/decentralization" rel="tag">Decentralization</a> <a href="https://baby2471.com/tag/decentralized-storage" rel="tag">Decentralized Storage</a> <a href="https://baby2471.com/tag/devops" rel="tag">DevOps</a> <a href="https://baby2471.com/tag/dnslink" rel="tag">DNSLink</a> <a href="https://baby2471.com/tag/docker" rel="tag">Docker</a> <a href="https://baby2471.com/tag/filecoin" rel="tag">Filecoin</a> <a href="https://baby2471.com/tag/filesystems" rel="tag">Filesystems</a> <a href="https://baby2471.com/tag/government-payment-service" rel="tag">Government Payment Service</a> <a href="https://baby2471.com/tag/govpaynow" rel="tag">GovPayNow</a> <a href="https://baby2471.com/tag/interplanetary-filesystem" rel="tag">Interplanetary Filesystem</a> <a href="https://baby2471.com/tag/ipfs" rel="tag">IPFS</a> <a href="https://baby2471.com/tag/ipns" rel="tag">IPNS</a> <a href="https://baby2471.com/tag/javascript" rel="tag">Javascript</a> <a href="https://baby2471.com/tag/magecart" rel="tag">Magecart</a> <a href="https://baby2471.com/tag/newegg" rel="tag">Newegg</a> <a href="https://baby2471.com/tag/orbitdb" rel="tag">OrbitDB</a> <a href="https://baby2471.com/tag/payment-systems" rel="tag">Payment Systems</a> <a href="https://baby2471.com/tag/peer-to-peer" rel="tag">Peer-to-Peer</a> <a href="https://baby2471.com/tag/podcast" rel="tag">Podcast</a> <a href="https://baby2471.com/tag/sysadmin" rel="tag">Sysadmin</a> <a href="https://baby2471.com/tag/wd-my-cloud" rel="tag">WD My Cloud</a> <a href="https://baby2471.com/tag/western-digital" rel="tag">Western Digital</a>