Hacker News new | comments | show | ask | jobs | submit | gabrtv's comments login

I'd say the niche is "creatives". Designers, artists, musicians, hipsters, etc.

-----


Agreed.

Also, I suspect that the release of mobile apps (supposedly this spring) will be a huge boost for them. I know that I would be checking in on activity there much more if I could do it on my phone.

-----


I was hoping to see something about optional SSL/TLS. I'm even willing to pay for it.

-----


You can use CloudFlare with flexible SSL in front of it and set up a page rule to redirect to HTTPS.

-----


I had no idea. That's great news!

-----


Be warned, though: this will only create a secure connection between the user and CloudFlare, not between CloudFlare and GitHub Pages.

-----


While a potential for concern... I would guess that CloudFlare's own routing would take them to an exit node close to Github's... that does make quite a few assumptions though. It would still be more complicated to mitm between CloudFlare and Github than ISP-X (or China) and Github...

-----


There already kinda is TLS on github.io but it's only user<->CDN, CDN<->Github is unencrypted. [https://konklone.com/post/github-pages-now-sorta-supports-ht...]

And it doesn't work on custom domains (Github can't present a cert for your domain); you can make it "work" via Cloudflare but that only works if Cloudflare doesn't validate Github's cert, which introduces yet another unsecure link. [https://github.com/isaacs/github/issues/156]

-----


Edit: forgot to say I'm also willing to pay for it.

-----


Ello, the popular social network, was founded by designers: https://ello.co/wtf/post/founders

-----


> The services are considered to be in a trusted network and are accessed by a private token passed in the ‘Authorization' header plus the user id of the requester in an ‘X-USER’ header.

This reads like the user ID is exposed in a header without any sort of encryption.

-----


What does 'trusted network' mean to you?

A lean quick service is not going to want to wait on encryption handshaking.

-----


On modern hardware, I believe AES and SHA-384 are very cheap. But yes, in a private network it's overhead.

-----


I'm a big believer in "Readme driven development" [1]. It's critical you go through the exercise of 1) explaining what the software will do and 2) how it will be used with concrete examples. The value of this documentation will always outweigh the time spent writing it.

[1]: http://tom.preston-werner.com/2010/08/23/readme-driven-devel...

-----


Not many PostgreSQL DBaaS offerings out there. This is great news.

-----


Deis maintainer here. We understand Deis can be a bit heavy for those who don't want a multi-node HA setup. For the 'humble web developer' we strongly recommend Dokku. In fact, we're now sponsoring that project: http://deis.io/deis-sponsors-dokku/

-----


This is exactly why we sponsor Dokku: http://deis.io/deis-sponsors-dokku/ Go Dokku! :)

-----


No. As a PaaS designed to run enterprise workloads with high availability, Deis has a 3-node minimum.

If you're looking for a similar workflow but with a smaller footprint, Deis now sponsors the Dokku project: http://deis.io/deis-sponsors-dokku/

-----


Short answer: Deis is easier to install/operate and it's designed to leverage Docker from the ground up. You won't be promoting Docker images through a CI/CD pipeline with Cloud Foundry any time soon.

Email me for a longer answer: gabriel@opdemand.com. ;)

-----

More

Applications are open for YC Summer 2016

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact

Search: