so i just heard that oracle has been tracking 5b+ users

Bloctans · August 25, 2022, 12:22am

what do we use that oracle owns

Tnix · August 25, 2022, 12:24am

nothing I’m pretty sure

Bloctans · August 25, 2022, 12:26am

i think all we are using is:
scratch
turbowarp
cloudlink
nginx
websocket
cloudlink-server
flask
cloudflared
whatever is the host buying company we got meower.org and everything else with

Tnix · August 25, 2022, 12:27am

We use a bunch of other stuff, but majority of the stuff we use is open source.

Bloctans · August 25, 2022, 12:27am

like?

Tnix · August 25, 2022, 12:32am

Well just for beta 6:

Python modules:
cloudlink
better-profanity
bcrypt
uuid
flask
flask_cors
pymongo
pyotp
requests
pycryptodome
passlib
python-dotenv
serial

Other things that make the server work:
Cloudflared (agent is open source)
Python
MongoDB (community edition is open source)
nginx
gunicorn

Scratch client:
Turbowarp
Scratch CloudLink
Meower utils

Svelte client:
Svelte
CLJS

Forums:
Discourse

Everything here is open source.

mdwalters · August 26, 2022, 3:31am

java

Tnix · August 26, 2022, 7:46am

Well we don’t use Java, and if we did, we would probably use the open source version (OpenJDK).

JoshAtticus · August 29, 2022, 5:45am

Ew Cloudflare, they aren’t privacy friendly.

Tnix · August 29, 2022, 5:47am

Well, a third of the internet is on Cloudflare, so you can’t really get away from them. They are the only way we can deploy Meower fast, securely, and for free.

JoshAtticus · August 29, 2022, 5:48am

Tnix · August 29, 2022, 5:51am

Ah, ok, well actually most of the stuff is about Cloudflare’s protection, we’ve configured it to be quite low, it’ll never block a request unless 1) we’ve enabled “We’re under attack”, 2) we’ve hard banned the IP, or 3) Cloudflare has detected it as a DDoS attack.

Tnix · August 29, 2022, 5:53am

I just checked our security logs, nothing has been blocked by Cloudflare within the last 2 weeks.

Tnix · August 29, 2022, 5:56am

Cloudflare provides access to our servers, without Cloudflare we would probably need to port forward which is a massive security risk and not one we can reasonably take.

I also saw they mentioned Cloudflare going down, it barely ever does (it has a lot of downtime in certain datacenters, but they get re-routed temporarily), if it goes down a third of the internet goes down so they are pretty damn fast at restoring it.

JoshAtticus · August 29, 2022, 6:00am

Tnix · August 29, 2022, 6:04am

I’m pretty sure we can supply our own certificate so Cloudflare won’t be able to access any data between our servers and the users of Meower, but that costs money and Cloudflare offers it to us for free.

I’m also sure Cloudflare does not do anything with data inside of request bodies (they do look at request URIs but that’s only logged for like 2 weeks. The people at Cloudflare seem pretty genuine.

JoshAtticus · August 29, 2022, 6:09am

Let’s Encrypt?

JoshAtticus · August 29, 2022, 6:10am