# TLS Rotation - We need `media.hachyderm.io` working on CDN nodes - We need `hachyderm.io` working on CDN nodes ### cdn-fremont-1 ```bash sudo certbot delete --cert-name cla.aurae.io sudo certbot delete --cert-name privilegeescalation.org sudo certbot delete --cert-name grafana.hachyderm.io ``` ```bash certbot certonly -d media.hachyderm.io --nginx Successfully received certificate. Certificate is saved at: /etc/letsencrypt/live/media.hachyderm.io-0001/fullchain.pem Key is saved at: /etc/letsencrypt/live/media.hachyderm.io-0001/privkey.pem ``` ### slappy So this is the server that the **LetsEncrypt ACME** challenge resolves `hachyderm.io` to. ```bash certbot certonly -d hachyderm.io --nginx Successfully received certificate. Certificate is saved at: /etc/letsencrypt/live/hachyderm.io-0001/fullchain.pem Key is saved at: /etc/letsencrypt/live/hachyderm.io-0001/privkey.pem ``` ### General Steps - [ ] Rotate `media.hachyderm.io` on `cdn-fremont-1` - [ ] Scp new certs from `/etc/letsencrypt/live` to fleet - [ ] Rotate `hachyderm.io` on `esme.hachyderm.io` - [ ] Scp new certs from `/etc/letsencrypt/live` to fleet ``` # Example scp command scp -r /etc/letsencrypt/live/media.hachyderm.io* root@cdn-frankfurt-1.hachyderm.io:/etc/letsencrypt/live ```
Last changed by  
Kris Nova
162

Read more

Artifical Intelligence and Machine learning Resources

Sorted by "genre" Consciousness Video Could a Large Language Model be Conscious?Talk and slides of David Chalmers at NeurIPS2022, written version coming soon Machine Learning Book: Natural Language Processing BookNatural Language Processing with Transformers (Building with Python library: Hugging Face) Artificial Intelligence Book: Artifical Intelligence EnginesTutorial on Mathematics and Deep Learning

3/26/2023
Untitled

From @thisismissem: hey, sorry if I wasn't communicating correctly on twitch, I've experience of the mastodon codebase (former contributor), and I wrote one of the first node websocket servers; trying to help via chat whilst you stream isn't easy, more than happy to help someone debug via voice chat or on discord. I don't think the 5xx's or alerts should be caused by either rack-attack (rate limiting connections from clients because they're spamming requests, likely due to unstable mobile networks) This is the rack-attack configuration, so you can see the different rules it's applying: https://github.com/mastodon/mastodon/blob/main/config/initializers/rack_attack.rb#L57 Essentially, if node streaming talking to directly to the ruby server (rack), then it'd be (hopefully) over localhost, and therefore not rate limited based on those rules, as localhost connections are excluded from the rate limiter. (to clarify: node.js is not talking to ruby/rack, it's talking only with postgresql and redis) This is the logging setup for rack-attack, which is where the rate limit messages are logged:

1/8/2023
Postgres Migration

:warning: Public Document :warning: State of The World pgbouncer is not running anywhere freud no sidekiqs (confirmed) postgresql.service running

12/19/2022
Cooperative Corporation

Quick notes and FAQ for forming a "Cooperative Corporation". It is possible to buy *.coop domains from Identity COOP. Profits At the end of the day a cooperative can still be a for profit business entity, however the ownership of the corporation is given to the employees instead of the shareholders. See the NCBA article to understand other differences between a cooperative and a corporation. Any profits the cooperative earns are either re-invested in the company, similar to a nonprofit corporation, or distributed among its member-owners, as with a for-profit corporation.

12/12/2022
Read more from Kris Nova
Published on HackMD