gogogo2000 最近的时间轴更新 gogogo2000 最近的时间轴更新 |
gogogo2000V2EX 第 54931 号会员,加入于 2014-01-25 14:22:31 +08:00 |
gogogo2000 最近回复了
20 天前 回复了 hugozach 创建的主题 › 程序员 › AI 生成的代默认都是 React。 Vue 危 ?! |
@wuzhewuyou react signal 表示,啊?难道这不是趋势?
21 天前 回复了 FaiChou 创建的主题 › 宽带症候群 › tailscale 为什么经常打洞失败? |
Here’s a parting “TL;DR” recap: For robust NAT traversal, you need the following ingredients:
A UDP-based protocol to augment
Direct access to a socket in your program
A communication side channel with your peers
A couple of STUN servers
A network of fallback relays (optional, but highly recommended)
Then, you need to:
Enumerate all the ip:ports for your socket on your directly connected interfaces
Query STUN servers to discover WAN ip:ports and the “difficulty” of your NAT, if any
Try using the port mapping protocols to find more WAN ip:ports
Check for NAT64 and discover a WAN ip:port through that as well, if applicable
Exchange all those ip:ports with your peer through your side channel, along with some cryptographic keys to secure everything.
Begin communicating with your peer through fallback relays (optional, for quick connection establishment)
Probe all of your peer’s ip:ports for connectivity and if necessary/desired, also execute birthday attacks to get through harder NATs
As you discover connectivity paths that are better than the one you’re currently using, transparently upgrade away from the previous paths.
If the active path stops working, downgrade as needed to maintain connectivity.
Make sure everything is encrypted and authenticated end-to-end.
A UDP-based protocol to augment
Direct access to a socket in your program
A communication side channel with your peers
A couple of STUN servers
A network of fallback relays (optional, but highly recommended)
Then, you need to:
Enumerate all the ip:ports for your socket on your directly connected interfaces
Query STUN servers to discover WAN ip:ports and the “difficulty” of your NAT, if any
Try using the port mapping protocols to find more WAN ip:ports
Check for NAT64 and discover a WAN ip:port through that as well, if applicable
Exchange all those ip:ports with your peer through your side channel, along with some cryptographic keys to secure everything.
Begin communicating with your peer through fallback relays (optional, for quick connection establishment)
Probe all of your peer’s ip:ports for connectivity and if necessary/desired, also execute birthday attacks to get through harder NATs
As you discover connectivity paths that are better than the one you’re currently using, transparently upgrade away from the previous paths.
If the active path stops working, downgrade as needed to maintain connectivity.
Make sure everything is encrypted and authenticated end-to-end.
21 天前 回复了 FaiChou 创建的主题 › 宽带症候群 › tailscale 为什么经常打洞失败? |
tailscale 会自动创建 upnp 端口映射的,所以
> 我的想法是,打洞失败,既然能连接 derp 服务器,那就能控制另一端,搞个脚本,让另一台设备主动请求 OpenWrt ( upnp/nat-pmp)开放一个临时端口。然后 tailscale 是否支持这样搞?
人家本来是这样的。
> tailscale 是暴力遍历端口(它们官网有教程),实践下来还是能够打洞成功的。
tailscale 是生日算法,并不是暴力遍历 https://tailscale.com/blog/how-nat-traversal-works
"But we can get rid of STUN, the birthday paradox trick, port mapping protocols, and all the hairpinning bumf. That’s much nicer!"
> 我的想法是,打洞失败,既然能连接 derp 服务器,那就能控制另一端,搞个脚本,让另一台设备主动请求 OpenWrt ( upnp/nat-pmp)开放一个临时端口。然后 tailscale 是否支持这样搞?
人家本来是这样的。
> tailscale 是暴力遍历端口(它们官网有教程),实践下来还是能够打洞成功的。
tailscale 是生日算法,并不是暴力遍历 https://tailscale.com/blog/how-nat-traversal-works
"But we can get rid of STUN, the birthday paradox trick, port mapping protocols, and all the hairpinning bumf. That’s much nicer!"
27 天前 回复了 yuhuij 创建的主题 › React › react antd 就是包了巧克力的屎 |
@zombiej 是的,实际上 rc 基本上也是蚂蚁的人写的,但是这种套娃的写法使得找实现和做优化修改难度剧增,很多功能都是套了好几层才暴露出来的,需要花很大力气才能搞清楚最终实现
27 天前 回复了 yuhuij 创建的主题 › React › react antd 就是包了巧克力的屎 |
27 天前 回复了 yuhuij 创建的主题 › React › react antd 就是包了巧克力的屎 |
@yuhuij #13 你会发现 antd 整个基本就是 rc 的壳,几乎所有控件最终都会调用 rc-*控件
27 天前 回复了 liuliancc 创建的主题 › Vue.js › 求助 Vue 大佬,为什么使用 reactive 数据没有双向绑定? |
js 的对象无论是 getter/setter 还是 proxy 都是一个对象,你直接把对象给替换了,当然就无法监听变化了
ref 无论你怎么替换,实际上你置换的都是对象的.value 值。
基本上你可以理解为 ref=reactive{ value: ??? },所以使用 ref 时,ref 对象本身永久都不会变,自然总是可以监听到变动
ref 无论你怎么替换,实际上你置换的都是对象的.value 值。
基本上你可以理解为 ref=reactive{ value: ??? },所以使用 ref 时,ref 对象本身永久都不会变,自然总是可以监听到变动
39 天前 回复了 NSAgold 创建的主题 › 宽带症候群 › 部分 Cloudflare 的域名近期在大陆无法访问 |
域名被分配到了.1 了,不过还可以正常访问。
感觉免费的就很可能会被分配过去,我从来没有用任何域名+cf 做过代理等滥用的情况,也不是新号
感觉免费的就很可能会被分配过去,我从来没有用任何域名+cf 做过代理等滥用的情况,也不是新号
39 天前 回复了 E263AFF275EE4117 创建的主题 › 程序员 › 自建 Bitwarden,想问下 V 友们这样安全系数高吗? |
现在主流密码管理器的设计在服务器上存放的都是高度加密的密文,而打开密码库的主密钥从头到尾是不会在网络上传输的,即便被监听了也抓不到。但如果是访问者中了木马被记录键盘了自然就另当别论了。
96 天前 回复了 airchaoz 创建的主题 › FFmpeg › 早就听说过 ffmpeg,但是一直不知道有多牛 |
@w88975 openssl 的同类替代品还是很多的,而且 openssl 本身屎山有点严重,ffmpeg 要好太多了
Select Language