投稿時間:2023-02-01 06:20:39 RSSフィード2023-02-01 06:00 分まとめ(26件)

カテゴリー等	サイト名等	記事タイトル・トレンドワード等	リンクURL	頻出ワード・要約等/検索ボリューム	登録日
AWS	AWS Partner Network (APN) Blog	Using CAST and AWS Migration Hub Refactor Spaces to Modernize Legacy Applications	https://aws.amazon.com/blogs/apn/using-cast-and-aws-migration-hub-refactor-spaces-to-modernize-legacy-applications/	Using CAST and AWS Migration Hub Refactor Spaces to Modernize Legacy ApplicationsMany organizations still rely on monolithic applications for their most critical business operations where knowledge of the internal application structure is limited Learn how to solve challenges related to transforming into a microservices architecture through recipes driven by CAST Software and AWS Migration Hub Refactor Spaces CAST is an AWS Migration and Modernization Competency Partner and technology provider for software intelligence that enables digital transformation	2023-01-31 20:49:05
AWS	AWS Networking and Content Delivery	Reduce latency for end-users with multi-region APIs with CloudFront	https://aws.amazon.com/blogs/networking-and-content-delivery/reduce-latency-for-end-users-with-multi-region-apis-with-cloudfront/	Reduce latency for end users with multi region APIs with CloudFrontAs organizations grow they must often serve geographically dispersed users with low latency prompting them to have a distributed global infrastructure in the cloud In this article we describe how to deploy global nbsp API nbsp endpoints to reduce latency for end users while increasing an application s availability By using the AWS Global Network nbsp and Amazon CloudFront nbsp to deploy applications into multiple …	2023-01-31 20:33:34
AWS	AWS Security Blog	Define a custom session duration and terminate active sessions in IAM Identity Center	https://aws.amazon.com/blogs/security/define-a-custom-session-duration-and-terminate-active-sessions-in-iam-identity-center/	Define a custom session duration and terminate active sessions in IAM Identity CenterManaging access to accounts and applications requires a balance between delivering simple convenient access and managing the risks associated with active user sessions Based on your organization s needs you might want to make it simple for end users to sign in and to operate long enough to get their work done without the disruptions associated …	2023-01-31 20:12:39
AWS	AWS	Mitigating Advanced Bad Bot Traffic with AWS Bot Control for Targeted Bots | Amazon Web Services	https://www.youtube.com/watch?v=J8ura5LUoVg	Mitigating Advanced Bad Bot Traffic with AWS Bot Control for Targeted Bots Amazon Web ServicesIn this video Michael Leighty with AWS takes us under the hood to preview a new AWS WAF feature release AWS Bot Control for Targeted Bots This new WAF feature provides a new tier of bot control that includes an extra layer of security for sophisticated targeted bots that are programmed to specifically evade detection and target critical enterprise applications such as e commerce retail and financial services websites To learn more read the AWS Bot Control for Targeted Bots blog Check out the AWS Bot Control Subscribe More AWS videos More AWS events videos ABOUT AWSAmazon Web Services AWS is the world s most comprehensive and broadly adopted cloud platform offering over fully featured services from data centers globally Millions of customers ーincluding the fastest growing startups largest enterprises and leading government agencies ーare using AWS to lower costs become more agile and innovate faster AWSWAF BotControl WAF Security AWS AmazonWebServices CloudComputing	2023-01-31 20:15:09
AWS	AWS	Introducing AWS WAF Captcha | Amazon Web Services	https://www.youtube.com/watch?v=5JSwP6IA5vg	Introducing AWS WAF Captcha Amazon Web ServicesAWS WAF Captcha helps block unwanted bot traffic by requiring users to successfully complete challenges before their web request are allowed to reach AWS WAF protected resources You can configure AWS WAF rules to require WAF Captcha challenges to be solved for specific resources that are frequently targeted by bots such as login search and form submissions You can also require WAF Captcha challenges for suspicious requests based on the rate attributes or labels generated from AWS Managed Rules such as AWS WAF Bot Control or the Amazon IP Reputation list WAF Captcha challenges are simple for humans while remaining effective against bots In this introductory video we go about this feature and how to configure in AWS Console CAPTCHA and Challenge actions in AWS WAF How the CAPTCHA and Challenge actions work Best practices for using the CAPTCHA and Challenge actions Use AWS WAF CAPTCHA to protect your application against common bot traffic Subscribe More AWS videos More AWS events videos ABOUT AWSAmazon Web Services AWS is the world s most comprehensive and broadly adopted cloud platform offering over fully featured services from data centers globally Millions of customers ーincluding the fastest growing startups largest enterprises and leading government agencies ーare using AWS to lower costs become more agile and innovate faster AWSEdgeshorts Edgeshorts AWSWAF AWSWAFCAPTCHA AWS CAPTCHA AmazonWebServices CloudComputing CloudSecurity	2023-01-31 20:12:37
AWS	AWS Security Blog	Define a custom session duration and terminate active sessions in IAM Identity Center	https://aws.amazon.com/blogs/security/define-a-custom-session-duration-and-terminate-active-sessions-in-iam-identity-center/	Define a custom session duration and terminate active sessions in IAM Identity CenterManaging access to accounts and applications requires a balance between delivering simple convenient access and managing the risks associated with active user sessions Based on your organization s needs you might want to make it simple for end users to sign in and to operate long enough to get their work done without the disruptions associated …	2023-01-31 20:12:39
js	JavaScriptタグが付けられた新着投稿 - Qiita	console.logだけではないconsoleの使い方	https://qiita.com/asameshiCode/items/6fd893cf99647d13654c	console	2023-02-01 05:38:27
海外TECH	MakeUseOf	What Is Input Validation and Why Is It Important?	https://www.makeuseof.com/what-is-input-validation/	fields	2023-01-31 20:31:16
海外TECH	MakeUseOf	How to Fix Discord App Lag on Windows	https://www.makeuseof.com/fix-discord-app-lag-windows/	issues	2023-01-31 20:15:17
海外TECH	MakeUseOf	The 7 Best Free Media Players for Windows	https://www.makeuseof.com/tag/top-5-free-media-players-for-windows/	windows	2023-01-31 20:06:16
海外TECH	DEV Community	Hackathon Reflections	https://dev.to/jd2r/hackathon-reflections-ggc	Hackathon ReflectionsRecently I was fortunate enough to take part in a hackathon I don t normally physically go out among other coders a lot so this was a pretty new experience for me Despite my initial nervousness I had a blast learning and coding with other like minded folks In this post I ll share some of what went on during the event and some lessons I wish I d had known beforehand What happened A bunch of things actually There were three main objectives during the day among others Main ChallengeTechnical ChallengesSeminarsI ll start by talking about the main challenge This one was the big one the one with all the prizes D printers and gaming keyboards In order to be eligible to win you had to create a project that was centered around the theme this year it was code change You created it with your team throughout the day and it was judged right before the close of the event I ll share what my team came up with in a moment The second focus of the day was technical challenges These were all problems that somewhat reminded me of Advent of Code or even LeetCode s collection They were all technical related problems that required a strong understanding of algorithms and problem solving The prize for coming top spot in the point system for this challenge An Arduino robot kit The third aspect of the event was the seminars I appreciated this segment and this hackathon in general because they invited beginners as well as experienced programmers You could pick and choose which seminars to attend with topics varying widely from basic Python programming to Robotics to querying APIs with JavaScript This was definitely a good option to learn some cool stuff I attended a talk given by a UI UX designer from a large banking corporation about making good looking websites Cool Prizes from this segment Raffle tickets were given out at each talk to win various tech gadgets along with an Oculus VR Headset They also gave us free lunch and dinner so that definitely made it worth going Reflections on the EventAfter arriving early in the day I took half an hour trying to get on the WiFi Always get there much earlier than you think you should You can always sit in the parking lot and wait The doors opened at and the event started at Luckily for me I got there at and there was a delay in starting You re a programmer You should know that we re always late starting things I didn t have a team so I got one assigned after the opening remarks Luckily for me everyone on the team was reasonably chill and we all got along pretty well No one really had any idea about what to do so we just pushed it off in the classic that s future me s problem and buckled down on the technical challenges before splitting up and going to pretty much every seminar we could Both choices paid off as by lunch we were in the lead on the technical by about times the score of the runner up We had also amassed a great deal of knowledge that we used to complete more technical questions Done and done During the afternoon panic started to set in Having no other ideas we began to work on a Python program that translated Gen Z slang to boomer talk Our method A simple find and replace Did it work out Not really but enough so that we had a bit of confidence Our project was definitely a fan favorite but in the end the judges didn t seem to like it that much We didn t place at all for the main challenge which was disappointing to say the least having spent so much of our time trying to work out dumb bugs I blame it on the fact that all the judges were boomers themselves but that remains to be verified As an interesting side note this program turned out to be a source of inspiration to someone who noticed it on GitHub Obviously dissatisfied with our method they built an AI model using TensorFlow and ChatGPT data It s much cooler than ours was and I encourage you to check it out if you have time However the story doesn t end badly for Team At the end of the day we were officially declared the winners of the technical challenge even after a controversial three way tie I don t think the two other teams will ever forgive us but I don t care We were in the lead for longer What I LearnedI think I learned quite a bit Sure the seminars were fantastic and I finally learned how to interact with APIs but I think I learned more about teamwork and time management Teamwork It s difficult No denying that My only other hackathon was one I attended last summer My team won first prize but I felt slightly unhelpful as it had really been one guy spearheading the entire operation Though it s sometimes easy to sit back and let the other guy do it it s much better to insert yourself and offer to help The worst they could do is turn you down which is what you were going to be doing anyway It s often said that the best way to problem solve is by splitting up big tasks into little ones This is totally true By inserting yourself you re lessening the load on the first guy and that helps both of you in the long run I know for a fact that by the sixth or seventh hour of straight coding all of us were getting tired Take breaks Eat something My solution was to knock back half a case of Coke over the course of the event which I dearly regretted the next day Don t be afraid to walk away Sometimes I was tempted to go sit in the back of a seminar and just take a little nap which I didn t mind you but looking back it might have been a good idea I needed a break Our team right before dinner left the main hacking room and booked it to a quiet hallway where we could focus Y know the funny thing We did twice as much work there Breaks You know you need em Another lesson I saw come into play was that of perserverance Many of the other teams didn t complete all of the technical challenges because they got super hard at one point The guys on our team would pass the problem around give some insight or a way we thought we could approach it and then implement a solution We finished all but one And while other teams spent their time watching YouTube and playing Pokémon we won a robot kit and a free trip on stage in front of the rest of them Talk about a flex The last important lesson was that of talking to other people I ve been reading a lot about networking recently and simply talking with other teams gave us an advantage One of our solutions came from another team that we traded solutions with We got inspiration for our project by walking around and asking other people what they were making And of course there was a healthy dose of trash talk going around It s all part of the game It s even more fun to walk around and see how other teams react when you tell them that you re the ones who are blowing everyone else out of the water on the technical challenges You get treated like a literal celebrity ConclusionThis took me minutes to write It probably took you minutes to read I sure hope that in those minutes you learned something or can agree or elaborate on a point I made I think a hackathon is something that we should all do You might not win but I can promise you you ll have a seriously good time Good luck as you continue your learning journey	2023-01-31 20:31:30
海外TECH	DEV Community	Remote Debugging Dangers and Pitfalls	https://dev.to/codenameone/remote-debugging-dangers-and-pitfalls-4f3g	Remote Debugging Dangers and PitfallsThis is the last part of the debugging series to learn the rest you ll need to get the book or the course One of the most frequently asked questions I receive is can we do these things in VS Code The answer is unfortunately no But I elaborate on the debugging capabilities of VS Code in this video I ll do a blog post that covers that next week Below is the last video in the series TranscriptWelcome back to the ninth part of debugging at scale where we really know the quality of your code Remote debugging doesn t always deal with a remote machine we often need it when debugging into Kubernetes or Docker We ll delve more into that later but for now we ll discuss the basic mechanics How to connect how to make it slightly less vulnerable to security attacks and then we ll discuss the problems of remote debugging The Connection and Command LineWe ll start with a discussion around the connection We first need to run the process that we ll connect to remotely To do that we need to run a command similar to this one Notice that this is a simplified version in many cases the argument should be embedded in configuration files When you inspect your maven or gradle files you might see many of the arguments listed here This is how these things work under the hood Let s go over the command and break it down piece by piece to see that we understand it correctly The first part is the launch of the Java command line This is pretty obvious We need quotes in bash since there s a star at the end of the line and bash wants to expand it Without this quote the command won t work properly Agent lib is the system that loads the native library wiring directly into the virtual machine and JDWP is the Java Debug Wire Protocol This is the underlying networking protocol used to communicate between the debugger and the running process It s a high level protocol that means it can be implemented on top of various transports Typically it s implemented over TCP sockets but it s the same protocol we used to debug devices directly You don t need to know too much about JDWP but the concept is simple you send commands and can query the system That s what the IDE does for you When you add a breakpoint the IDE sends a JDWP command to add a breakpoint at the given location When the breakpoint is hit JDWP sends back an event to the IDE indicating that The IDE can then query the details about the current environment stack variables etc In this case we transfer the details via a server socket We can use dt shmem which stands for shared memory as the wire protocol This is faster and useful for processes that have access to a shared memory area This is actually pluggable and you can build your own JDWP transport This isn t useful usually but speaks to the power and flexibility of the API We can optionally suspend the virtual machine on launch if you want to debug something right from the start I ve set this to no which means the VM will start running right away If you set it to yes with the letter y the vm will pause on launch and wait for the JDWP connection This is the address and port we are listening on In this case I allow anyone to connect on port I can limit this to localhost only by changing the star character This is probably the better approach although it won t make the protocol fully secure This is the rest of the command the class we re running Typically you would have something more substantial here In this case I m just running the PrimeMain class To start debugging we need to edit the run configuration in intellij Connecting from IntelliJ IDEANext we need to locate a configuration for remote debugging Once I select that we can add it Notice it s pre configured with the defaults such as port I give the new run configuration a name and we re ready to go with debugging the app Notice there are many options to tune here but we don t need any of them Also check out this area right here Seems familiar That s the exact line we discussed before The IDE is showing us how to set up the command line for the remote process This lets us verify that we entered everything correctly We now have a new Debug Remote run configuration We can switch to a different configuration from the same location But when we want to do remote debugging we need to toggle it here Next we need to press the debug button to run this command We are now instantly connected to the running process Once that is done this feels and acts like any debugger instance launched from within the IDE I can set a breakpoint step over inspect variables etc So why do it In some cases running the server locally in the IDE is impractical A good example would be debugging a container on your own machine That might not be trivial Security Implications of JDWPCalling JDWP insecure is inaccurate That would be like putting your house keys and home address wrapped in a nice gift wrapping with an itemized list of your valuables sorted by value in front of your house This is an open door An open door isn t a security vulnerability It s an open door JDWP is very insecure when used remotely Locally on your own machine it isn t a problem but it has almost no security protections There s no solution for that But there s a very partial workaround of tunneling it over SSH This is relatively trivial Just use this command to open a tunnel between the remote machine to your local machine For both sides it will seem like local debugging So the example I showed before of connecting to a local host server would work perfectly with this remote host as SSH will move all the packets back and forth Securely We can t ssh into a Kubernetes container but we can port forward which is almost identical We can do something similar to this command to forward the port from the given pod to the local machine and vice versa Same idea as the SSH tunneling but appropriate to the Kubernetes world Dangers of Remote DebuggingIn this final section I want to talk about the dangers of remote debugging in production Breakpoints break seems obvious That s what they re here to do But if we run on a server we block it completely by mistake We can use tracepoints As I said they re great But they are no replacement to breakpoints and an accidental click in the gutter can literally stop your server in its tracks JDWP effectively allows remote code execution Lets you access all the bytecode of the app which is effectively the same as giving access to your full source code It lets attackers do almost anything since it wasn t designed with security in mind We need to relaunch the application with debugging enabled That means killing the running process and starting it over again Disconnecting existing users etc That isn t great Some operations in the debugger require more than one step in terms of the protocol As a result you could send a request to the debuggee lose your connection and the debuggee could be stuck in a problematic state This is an inherent limitation of the JDWP protocol and can t be worked around in a standard debugger The problem is that even unintentional actions can demolish a server A simple conditional breakpoint that invokes a method as part of the condition can demolish server performance and crash it JDWP effectively allows remote code execution Lets you access all the bytecode of the app which is effectively the same as giving access to your full source code It lets attackers do almost anything since it wasn t designed with security in mind Imagine placing a breakpoint where the user password is passed to authentication…If JDWP is open for your server a member of your team might use that and you will never know There s no tracking at all of security hacks happen from within the organization If your company does remote debugging they have no way of knowing whether an employee used that to manipulate the application state or siphon user details There s no tracking or anything This can be in violation of various rules and regulations since it might expose personal user data Remote debugging into production can trigger liability risks I discuss some of the solutions for those problems both in the low level tooling and in higher level observability solutions This is covered in the book and in the full course Final WordWith this we finished the first part of the course If you want to check out the full course go to debugagent com to learn more…The next video covers the strategies for debugging and the science of debugging If you have any questions please use the comments section Thank you	2023-01-31 20:01:55
Apple	AppleInsider - Frontpage News	Apple won't guarantee advertising viewer counts for MLS Season Pass	https://appleinsider.com/articles/23/01/31/apple-wont-guarantee-advertising-viewer-counts-for-mls-season-pass?utm_medium=rss	Apple won x t guarantee advertising viewer counts for MLS Season PassApple plans to launch its coverage for Major League Soccer soon on Apple TV and will forgo some traditional advertising practices MLS Season PassMajor League Soccer starts February on Apple TV kickiing off a decade long relationship Fans can subscribe for per month or per season via the Apple TV app Read more	2023-01-31 20:57:27
海外TECH	Engadget	Twitter is killing off co-authored tweets after less than a year	https://www.engadget.com/twitter-cotweets-removed-203823878.html?src=rss	Twitter is killing off co authored tweets after less than a yearTwitter has quietly killed off a feature that allowed users to publish co authored tweets The company enabled CoTweets on quot select quot accounts last July in the US Canada and Korea but the feature never made it beyond the experimental stage As of today you ll no longer be able to post CoTweets quot We re sad to say that the current experiment is coming to an end quot Twitter wrote on an updated support page quot Already existing CoTweets will be viewable for one more month at which point they will revert to retweets quot nbsp If you invited someone to CoTweet with you that tweet will remain on your account according to Mashable For those who were invited to co author a tweet CoTweets will soon appear as retweets from the other person s account All clear on that Swell This may not completely be the end of CoTweets quot We re still looking for ways to implement this feature moving forward quot Twitter said So it could return at some point It s unlikely to be high on Twitter s list of priorities however particularly given that some percent of employees have left the company since Elon Musk took over in late October A recent report suggested Twitter now has fewer than full time engineers who may have their hands full with other things	2023-01-31 20:38:23
海外TECH	Engadget	343 is reportedly 'starting from scratch' on Halo development after layoffs	https://www.engadget.com/343-industries-halo-unreal-engine-202439779.html?src=rss	is reportedly x starting from scratch x on Halo development after layoffs Industries and Halo may be here to stay despite Microsoft s mass layoffs but that doesn t mean it s business as usual for the franchise Bloombergsources claim is effectively restarting Halo development between multiple changes that include the loss of quot at least quot jobs including directors and key contractors Notably the studio is reportedly switching to Epic s Unreal Engine after both a leadership shuffle and struggling with its aging in house platform Slipspace ーit s even breaking from its familiar story driven gameplay according to the tipsters The team is understood to be using Unreal for an unannounced game nicknamed quot Tatanka quot developed with the help of long time ally Certain Affinity It was originally built as a battle royale title but might quot evolve quot into other forms the sources say While some at are supposedly worried Unreal might affect how Halo feels to play Slipspace s glitches and hard to use tech have apparently held back multiplayer features in Halo Infinite that include past favorites like Assault and Extraction Many of the laid off workers were crafting game prototypes in Unreal rather than producing new missions for Halo Infinite Bloomberg says had considered switching engines for the past decade the insiders claim but it wasn t until studio lead Bonnie Ross and engine overseer David Berger left in late that the company committed to the change Pierre Hintze who replaced Ross is said to have focused the company on quot greenlighting quot new tech while expanding Infinite Microsoft has declined to comment A revamped strategy wouldn t be surprising even without layoffs While Infinite was well received on launch delayed modes seasons and even a cancelled split screen mode haven t helped its reputation has also played a role in some of the Halo series less than stellar projects including the problematic Halo Master Chief Collection and offshoots like Halo Wars A fresh start isn t guaranteed to reinvigorate the sci fi shooter but it may address lingering concerns	2023-01-31 20:24:39
海外科学	NYT > Science	Deer Could Be a Reservoir of Old Coronavirus Variants, Study Suggests	https://www.nytimes.com/2023/01/31/health/coronavirus-variants-deer.html	Deer Could Be a Reservoir of Old Coronavirus Variants Study SuggestsEven after Delta became the dominant variant in humans Alpha and Gamma continued to circulate in white tailed deer according to new research	2023-01-31 20:15:41
海外TECH	WIRED	Spotted a UFO? There’s an App for That	https://www.wired.com/story/spotted-a-ufo-theres-an-app-for-that/	aerial	2023-01-31 20:19:41
ビジネス	ダイヤモンド・オンライン - 新着記事	日本電産EVモーター急拡大から一転「下方修正」の大誤算、トヨタ系“アイシンの悪夢”再来の恐怖 - 日本電産 永守帝国の自壊 LEVEL2	https://diamond.jp/articles/-/316902		2023-02-01 05:25:00
ビジネス	ダイヤモンド・オンライン - 新着記事	日本M&Aセンター「最強ビジネスモデル」に綻び、急成長を支えた地銀＆証券の離反 - 日本M＆Aセンター 砂上の「絶対王者」	https://diamond.jp/articles/-/316758	日本MampampAセンター「最強ビジネスモデル」に綻び、急成長を支えた地銀証券の離反日本MAセンター砂上の「絶対王者」日本MampAセンターホールディングスHDの急成長を支えてきたのは、全国の地方銀行と証券会社などの金融機関、会計事務所などの情報網だ。	2023-02-01 05:20:00
ビジネス	ダイヤモンド・オンライン - 新着記事	アクセンチュア、マッキンゼー…外資コンサル「給与引き上げ合戦」最新事情＆職位別の給与レンジ【再編集】 - 賃上げ待ったなし！徹底取材「あの会社の年収」	https://diamond.jp/articles/-/316777	引き上げ	2023-02-01 05:17:00
ビジネス	ダイヤモンド・オンライン - 新着記事	都心で特別養護老人ホーム「開設ラッシュ」の光と影、補助金頼みで定員割れも - 最適な介護施設選び＆老人ホームランキング	https://diamond.jp/articles/-/316623	二の舞い	2023-02-01 05:15:00
ビジネス	ダイヤモンド・オンライン - 新着記事	東電が家庭向け料金値上げへ！3つの数字が示す崖っぷちの「ギリギリ感」とは - Diamond Premium News	https://diamond.jp/articles/-/316965	diamondpremiumnews	2023-02-01 05:10:00
ビジネス	ダイヤモンド・オンライン - 新着記事	【スクープ】キリンビールが「既存流通網のリストラ」着手か、取引条件変更を卸業者に通知 - Diamond Premium News	https://diamond.jp/articles/-/317001	diamondpremiumnews	2023-02-01 05:07:00
ビジネス	ダイヤモンド・オンライン - 新着記事	ABCマートは売上高2桁増、JINSは2桁減…専門店5社の業績に明暗が出た理由 - コロナで明暗！【月次版】業界天気図	https://diamond.jp/articles/-/316941		2023-02-01 05:05:00
ビジネス	東洋経済オンライン	｢医師の働き方改革｣で手術や救急に支障が及ぶ訳 来年春から｢勤務医の残業時間に上限｣の懸念点 | 医療・病院 | 東洋経済オンライン	https://toyokeizai.net/articles/-/648903?utm_source=rss&utm_medium=http&utm_campaign=link_back	働き方改革	2023-02-01 05:40:00
ビジネス	東洋経済オンライン	毎日フラッシュバックする｢宗教虐待｣の心の傷 宗教2世を苦しめ続ける｢時間の献金｣と体罰 | 宗教を問う | 東洋経済オンライン	https://toyokeizai.net/articles/-/648733?utm_source=rss&utm_medium=http&utm_campaign=link_back	安倍晋三	2023-02-01 05:20:00