Home on Kevin J.

Getting Rid of Bots

Fri, 25 Apr 2025 19:18:53 +0200

In my previous post I released the statistics of human vs. bot traffic for my whole website. Human traffic makes up 3% of the total requests I logged since the 9th of April - 50 thousand requests.

With this, it is clear that bots have to go. I do not want my server to waste needless bandwidth on crawlers, A.I. bots, directory enumerators, sshd enumerators, etc.

This allowed me to finally get comfortable with fail2ban. A daemon which polls your logs in search of specific regex patterns which you configure. If it detects N matches from a specific IP inside a certain time period M, it throws the IP in a jail for W amount of time. Needless to say, those parameters are all configurable.

Bad Bot Statistics For My Website

Thu, 24 Apr 2025 00:54:16 +0200

Context: “Dead Internet Theroy Confirmed: 51% of Traffic now Non-Human”

My droplet runs on Apache2. A bit of text manipulation tells me that since the 9th of April:

it served about 50k client requests - in total.
- cat access.log* | wc -l outputs 52818
48k of which contained the word “bot” in their apache access log line.
- cat access.log* | grep -i "bot" | wc -l outputs 48396
2k of which did not.
- cat access.log* | grep -v -i "bot" | wc -l outputs 2018

With this I can confidently say that barely 3% of my total traffic is not an A.I. bot. I certainly cannot classify private, custom, hacking bots. Which is why I round the number and say ~3% while the math shows 3.82%. A bit of searching through the access.log files shows numerous requests of dictionary attacks and the like. Which is why I am rounding the percentage down in the first place and call THAT my end estimate of normal, healthy traffic.

Let me say it again. In a span of 15 days, my server received 50k client requests and a good 3% of which was normal, healthy traffic.

Ah, long time no see! Mobsecurity!

Gallery

Sun, 27 Oct 2024 22:28:56 +0100

Debugging multiprocessing software with GDB

Sat, 28 Sep 2024 14:33:17 +0200

Backstory

Since ever I started the development of my high school finals project - a proxy library - I have had the desire to master the art of debugging multiprocessing software. Up until now I had no idea it was even possible due to the scarse general information available about it.

set follow-fork-mode [mode] seemed promising and quite honestly, worked as expected. Except, I realized that to debug my proxy, I was in need of a more dynamic approach such as:

being asked whether to follow the child/parent as I catch multiple forks
switching between the parent or multiple children instantly
releasing the parent while I only debug the child or vice versa

I read more about it online and it seemed as if the first of my requirements was an already supported feature of GDB - (set follow-fork-mode ask) - which would ask the user at runtime whether they want to follow the child or the parent the second they hit a fork/vfork syscall. Sadly, newer versions of GDB have had it cut off and deprecated for whatever reason.

The frustration got me really close to taking initiative and writing myself a little patch for the modern versions of GDB so they would also have this useful feature. But something told me there had to be a better way. And oh boy, better way there was.

Start

 1/* main.c */
 2
 3#include <stdio.h>
 4#include <unistd.h>
 5
 6int main(void) {
 7 fprintf(stdout, "--multiprocessing example--\n");
 8 for (int i = 0; i < 5; i++) {
 9 pid_t pid = fork();
10 if (pid == 0) {
11 fprintf(stdout, ">>hello from child: %d\n", i);
12 return 0;
13 }
14 if (pid < 0) {
15 fprintf(stderr, ">>failed forking\n");
16 return -1;
17 }
18 }
19
20 fprintf(stdout, ">>hello from parent\n");
21
22 return 0;
23}

We are going to step through this program - getting into the nitty griddy of debugging and seeing what options we have depending on our demands. First of all, use your compiler of choice. I am going to use GCC and turn on debugging info.

gcc -g3 main.c -o main

Before we continue, make sure you at least have the following setting enabled in .gdbinit:

set detach-on-fork off

A very convenient option that will block execution of both the parent and the new child - not letting one of them run unless you manually call continue.

Following the parent

This scenario is unsurprisingly simple. GDB does this automatically, therefore, I will not cover it.

 1[hemisquare@detached-hemi tmp]$ gdb main
 2(gdb) break main 
 3Breakpoint 1 at 0x1161: file main.c, line 7.
 4(gdb) run
 5Starting program: /home/hemisquare/tmp/main 
 6[Thread debugging using libthread_db enabled]
 7Using host libthread_db library "/usr/lib/libthread_db.so.1".
 8
 9Breakpoint 1, main () at main.c:7
107	 fprintf(stdout, "--multiprocessing example--\n");
11(gdb) s
12--multiprocessing example--
138	 for (int i = 0; i < 5; i++) {
14(gdb) 
159	 pid_t pid = fork();
16(gdb) 
17[New inferior 2 (process 51915)]
18[Thread debugging using libthread_db enabled]
19Using host libthread_db library "/usr/lib/libthread_db.so.1".
2010	 if (pid == 0) {
21(gdb) p pid
22$1 = 51915
23(gdb) # we are the parent

Following the child

Similar to the parent example, I will step until we hit the first fork syscall.

 1[hemisquare@detached-hemi tmp]$ gdb main 
 2(gdb) break main
 3Breakpoint 1 at 0x1161: file main.c, line 7.
 4(gdb) run
 5Starting program: /home/hemisquare/tmp/main 
 6[Thread debugging using libthread_db enabled]
 7Using host libthread_db library "/usr/lib/libthread_db.so.1".
 8
 9Breakpoint 1, main () at main.c:7
107	 fprintf(stdout, "--multiprocessing example--\n");
11(gdb) s
12--multiprocessing example--
138	 for (int i = 0; i < 5; i++) {
14(gdb) 
159	 pid_t pid = fork();
16(gdb) 
17[New inferior 2 (process 52175)]
18[Thread debugging using libthread_db enabled]
19Using host libthread_db library "/usr/lib/libthread_db.so.1".
2010	 if (pid == 0) {
21(gdb)

So, currently we are inside the parent “inferior”. And inferior is just a GDB term for processes, threads, or whatever it is that you are debugging. Through forks, we create another inferior which we can switch to. As you can see, we now have two inferiors:

1(gdb) info inferiors
2 Num Description Connection Executable 
3* 1 process 52172 1 (native) /home/hemisquare/tmp/main 
4 2 process 52175 1 (native) /home/hemisquare/tmp/main 
5(gdb)

The ‘*’ indicates the inferior we are currently residing in. Inferior 2 is the newborn child we just forked. Let’s switch into the child!

 1(gdb) inferior 2 
 2[Switching to inferior 2 [process 52175] (/home/hemisquare/tmp/main)]
 3[Switching to thread 2.1 (Thread 0x7ffff7dab740 (LWP 52175))]
 4#0 0x00007ffff7e90b57 in _Fork () from /usr/lib/libc.so.6
 5(gdb) finish
 6Run till exit from #0 0x00007ffff7e90b57 in _Fork () from /usr/lib/libc.so.6
 70x00007ffff7e966e2 in fork () from /usr/lib/libc.so.6
 8(gdb) finish
 9Run till exit from #0 0x00007ffff7e966e2 in fork () from /usr/lib/libc.so.6
100x0000555555555192 in main () at main.c:9
119	 pid_t pid = fork();
12(gdb) nexti
1310	 if (pid == 0) {
14(gdb) p pid 
15$1 = 0
16(gdb) s
1711	 fprintf(stdout, ">>hello from child: %d\n", i);
18(gdb) 
19>>hello from child: 0
2012	 return 0;
21(gdb)

As you can see, here, we were able to step through the code of the child. Notice that the parent is still handing where we left it at. It is totally okay to now switch back into the parent inferior and continue the execution from there.

Conclusion

Knowing this is essential for debugging my proxy library. I am thankful I now know GDB just a little better and was hopefully able to provide you with a useful learning resource. I might extend this article in case I master more interesting multiprocessing or multithreading techniques.

Hacker Ethic

Mon, 12 Aug 2024 08:40:06 +0200

Access to computers - and anything which might teach you something about the way the world works - should be unlimited and total. Always yield to the Hands-On imperative!
All information should be free.
Mistrust authority - promote decentralization
Hackers should be judged by their hacking, not bogus criteria such as degrees, age, race, or position.
You can create art and beauty on a computer.
Computers can change your life for the better.

proxy.c

Wed, 07 Aug 2024 00:20:45 +0200

I am writing a HTTP/s proxy server from scratch in C. So far I have successfully implemented basic HTTP proxying. Much work still has to be done though. I am looking for interested folks who would be interested in helping me and build a bond to advance this project further, if their interest or passion is genuine and strong.

The reason for such an absurd goal is to write a new terminal foss wanna-be BurpSuite hacking utility. One that does not impose hard delay limits on the user’s requests nor hides any functionality behind an expensive license - like BurpSuite. I want this to be a swiss army knife of my hacking days. Potentially helping my-future-self and, if this really succeeds, other web security engineers as well - a dream. Thus I am looking forward to any contacts at jerebica dot kevin at gmail from interested candidates.

In the meantime, you can take a look at the progress or source-code of the proxy.c at tesseract:81/0xdeadbeer/proxy - my self-hosted Gitea instance

Current TODO list:

Parse port out of Host header (default_value:80)
Implement server message parsing
Verify and search for memory leaks
More testing, debugging, fixing
Implement HTTPS with OpenSSL

Floppies

Thu, 25 Apr 2024 21:21:30 +0200

Floppy reader positioned on my 2 year old custom-built PC. What an occurrence! The old meets the new hahah

A youngster like me could hardly appreciate the simplicity behind these things, let alone the struggle elders had to go through to work with such technology. I was searching for a male aux to male aux connector the other day and stumbled on this reader with a stack of floppies nearby. The mounting process was unsurprisingly easy since I am running Linux. I have no idea what is the case with Windows, and franky, I do not care at this point in time. I rush to my computer in all awe, excited to see what obscure and ancient data these might have in them or how they even work. Most had MS DOS executables and Batch installation scripts for some kind of software as well as some XLS tables and other uninteresting data.

The mounting process had a peculiarity though.. I had to mount the whole disk and not just a partition whose file-system has been recognized by the kernel (mount /dev/sda /mnt instead of mount /dev/sda1 /mnt). Is that weird? I do not know..

After minutes of staring at these boring files and finding nothing that would suffice my interest.. I have decided to format one of the floppies with an ext4 file-system and make it my personal mini space. It is not like I can fit 4K images in here, but a couple of text files will suffice.

Here I collected all diskettes with English shortnotes

An interesting feature of floppies is that you can forcibly restrict the reader’s head from writing to the disc by flicking a tiny switch on the bottom right side of the plastic cover. Not all floppies have that switch though.

One thing I learned from researching floppies is their design mechanism. From what I read, they work magnetically just like modern hard disks and beneath the plastic is located the actual disc where the data is stored. When you insert the floppy into the reader, it flicks the metal shield, exposing the internal disc (black rectangle), attaches to it a read/write head and there it operates according to the system’s commands (reading/writing the data while the disc spins around).

Information Scarcity

Fri, 01 Mar 2024 21:55:39 +0100

I will not be picking battles between the extreme right or left side of the political spectrum. In fact, I will merely try to report on the negative impacts that capitalism has had on this astounding technology, referred to as “the internet”. I will also try to stay away from emotional writing, even if such a technology lies very close to my heart. This does not mean I side with left nor right. This means the common individual should focus more on the problem at hand and come up with the best possible solution for that specific scenario rather than just falling onto the extreme left or right wing.

This is especially true for developers..

We live in a world where money is power. That fact should not be ignored. The creation of internet was an unexpected turn for the market. Companies realized that it was a powerful tool to gain new customers with. And of course, how could it not be? You are more exposed to the new customers’ eyes and are therefore, more likely to make more sales and profit, right? How could have that possibly turned for the worse?

Data Protection

The internet that we live in today is a mess. Service creation -> data collection -> data breach. In that order. Service creation refers to any act of writing or shipping software for the end-user (or the end-developer depending on what you are creating). Data collection refers to the collection of personally identifiable information without explicit or full consent from the user (which, let’s be real, is the case in 2024. Well, unless you are keen on reading the 2000 word long privacy policy for every product that you use, which can be changed by the company at any time of the day. Without your consent. Have fun reading these vague essays). Data breach refers to the unescapable information compromise that will happen sooner or later in the process of shipping software to a wider audience. Production code is never 100% safe and free from security vulnerabilities. Therefore, every time a maliscious user discovers an unknown vulnerability, a potential data breach is about to take place. The possible outcomes range from absolutely nothing to the total data compromise for the users.

Sometimes I find myself questioning the intelect of the people who create solutions to simple problems, yet feel this internal need to surround the solution with software rubbish. Perhaps you have noticed that many websites nowadays require account creation with a personally identifiable email address, phone number, gender, address, and much more. Most of such websites deal with problems whose core solution is SIMPLIFICATION, yet they go the other way around, endlessly complicating their systems over and over again until they break. And as you might imagine, the more code a product has, the more vulnerable it is to security vulnerabilities. That is the number one lesson every developer should be aware of before starting out on their problem solving journey.

Not to mention the pace at which the developers are forced to work. Data protection is most definitely not the top priority for a company as much as the process for profiting is. Developers are constantly pounded and pounded to create software as quickly as possible. Limiting them with impossibly short deadlines and stressing them out. This most definitely leads to security bugs.

Rise for the Money

Do we really wish for such use of such a powerful technology? A technology that has the potential to transmit GIGABYTES of information every second, yet is limited by the SOS (shiny object syndrome) of humans and their will to make money by wasting processing power on advertisements, distract the end-users with useless popups, make them fill forms, and create accounts to spam them with new deals and make even more money? All of that while also collecting in bulk all sorts of personally identifiable information? Just to give them the content that they needed to inform themselves? Just to accomplish the one basic idea that internet, this stunning technology, promised to bring to the table since it ever came to existence? How did that happen? How did usage of such a technology further push drawbacks against it?

The approach that the first internet took, was by far the best at fulfilling what we define as “internet” - a place for people to find and share information, not necessarily limited by race, background, actions, political standpoint, or any other form of bias. Before the companies realized the potential of this technology and invaded it with bloat, internet was a place for individuals to share information, get to know other people, and create something personal. Something private. Something that was a digital footprint of the community. That footprint represented people and their will to collaborate and share information.

However, as companies and governments got more involved, they started throwing more and more capitalistic structures into it, which resulted in a slow death of the initial goal and reason behind this technology.

This can be widely shown from the fact, that blogs, BLOGS, a once subjective and private online expression of somebody’s persona or presence, are now spitting blood to be the top tier result on Google’s search page. That evidently puts money and power before community, collaboration, and especially, content quality. Which is quite self-evident after you notice the vagueness that most articles have online. The page fills you with popups, advertisements, forms to fill, and required login pages, just to access content that is precooked by artificial intelligence, is extremely vague, and potentially misleading. Yes, it is indeed, a triumph for information scarcity that is taking place on one of the biggest highways of information we currently possess. And it does indeed, show one of many negative traits of capitalism after you throw it into a free cyber space.

Clapback

Formerly, to escape this hellish use of the internet, you had to stop using the internet. Now, there is a new world that digital rights activists and freedom seekers are creating. It is a strong and willingful movement that has been standing its ground for many decades. It was in September 1983 that Richard Stallman launched the GNU project, whose goal was to create a fully functioning operating system and a toolset to work with data on that system. Today, a combination of the GNU project and Linux kernel (the core of an operating system) is known as GNU/Linux and it is a perfect alternative to the proprietary systems like OS X or MS Windows that we do not deserve nor need.

OpenSSL Notes and Resources

Sat, 24 Feb 2024 17:35:10 +0100

Note: This article will get updates over time as I continue on reading the source code of the OpenSSL project.
Note: These notes mainly cover the latest version at the time of updating this article. Currently, I am reading: v3.2.1
Note: Notes are provided at my will and convenience. Keep in mind that it takes time for me to take notes and write articles. If you desire an even deeper understanding of the project, you are welcome to read the source code, and if you can, contributing to this article would be greatly appreciated.

Common structs

These are the most common structs you will come accross when reading the source code.

SSL_CTX: context for a program. Can be created using SSL_CTX_new(3)
SSL (SSL_CONNECTION) represents a SSL connection (and is created under a context)
SSL_METHOD: struct with function pointers that a context inherits and can use when it has to perform an SSL action (connect, read, peek, write, ctrl, etc.)
SSL_SESSION:
SSL_CIPHER:

TLS_client_method: a SSL_METHOD with client utility function pointers
TLS_server_method: a SSL_METHOD with server utility function pointers

BIO: struct that can be used to handle program I/O. There are two types of BIOs, source/sink and filter. A BIO can represent an open file, a network socket, a memory buffer, etc. [1] [2]
BIO_METHOD: struct with function pointers that a BIO inherits and can use when it has to perform an I/O action (bwrite, bread, bputs, bgets, crtl, etc.)

Resources

The Hacker Mindset

Sat, 24 Feb 2024 16:43:00 +0100

Image credit: AT&T Tech Channel - Cliff Stoll: Good Science

First, there comes excruciating pain. Suddenly, an eye blinding flash travels across his eyes. Look at him. He finally gazed outside the womb. He is now a small fraction of this world and all of its complications. Where will this child go? Just how will reality shape him? Will he break and succumb to despair, or regrow into an even more resilient, mature human? As the mother cries in joy, his little neurons start to fire little sparks of data that resonate all across his brain from hemisphere to hemisphere. And they do so very quickly. With a sheer speed of 100 meters per second. His brain has millions if not billions of connections! That is not a super computer. That is a human.

Before his parents know it, he is already learning his first ABCs and doing basic mathematics. A few years pass, and he starts developing new emotions. More years pass and he is capable of deep abstract thought. Curiosity and questions are like fuel and oxygen. Waiting for the little spark to complete the job and burst into a violent reaction of fire. For knowledge. A new experiment proves to be as exciting as a new question. Forcing the child to push the limits of his brain and make connections based on his experience, or lack thereof.

This is how I like to describe hackers. We lack hackers. Passionate people. People that will pass knowledge down the generations with real excitement. And you cannot imagine THE BEST of such people until you see them in action. If you scout through the internet carefully, you might notice them. Here are some that I cannot help myself but to share. For they have deeply impacted my thinking:

“Hackers”. I am not referring to cyber security specialists, consultants, or attackers, although they do constitute a big portion of individuals with such a mentality. I am referring to people that wonder and explore. What hackers used to be defined as before media acted out with its usual “drama, drama, drama.. drama” move and pictured us as “the bad guys”. The bad guys are not hackers. They are criminals. End of the story.

Why do we lack them? Because people are not flawless. We make mistakes, even when we think we are doing the right thing. A statement kills curiosity. It closes your options and puts you on a single track. Some parents do that. Some teachers do that. Which can have profound effects on the child. Children need questions. They are born to be curious. If the environment models them to be silent, shut up, and not question about the system or statement in question, how will they ever familiarize themselves with it? That is why extreme patience is needed when introducing somebody to a topic. Especially children.

Is there a way out of such closed thinking? Perhaps. For me it was FOSS (Free and Open-Source Software). I no longer am tied to a proprietary system that I detest. I am free to use my computer however I like. Which pushes me to understand my own system better and in more depth. It enables me to think in new ways and make my computer do funny things. Even if impractical, it still is.. fun. The reason behind it also lies in data protection and privacy. But that is another discussion. For you, the entry point might also reside in FOSS, or maybe mathematics, physics, chemistry, biology, etcetera. At the end of the day, all major subjects are fundamentally interlinked. Curiosity will push you outside of your own field if you just let it do so. That is when you will realize that every subject has a profound meaning and beauty.

The greatest twist will come when you discover something new on your own that is interlinked with what you know you LOVE doing. But that resides inside a completely different field that you remember hating because of a past experience - like school.

This is what I learned in my concluding years of adolescence. I now like to think optimistically about the coming generations. Let’s take care and be welcoming of our future pioneers. Let’s respect the work of the ones who came before us. They are after all, the reason why we are here.

The Machinery of Life

Wed, 13 Dec 2023 23:25:43 +0100

For my 18th birthday, I asked my relatives for some books that I have not gotten to yet in my read list. One particularly stood out.. titled The Machinery of Life from David S. Goodsell. I remember noting this title after watching a live stream from one of my most respected YouTubers, @TheThoughtEmporium.

The live was about starting out in genetic engineering. How difficult it is, how expensive can it get, all the caveats that come along the way, etc. I do not know why I watched that live. Maybe just because the title seemed cool and interesting. But after finishing the live stream and noting a couple of interesting resources Justin offered (books, websites, …), I closed my text editor and never looked at that notes file again. Re-seeing this title in my notes file right before my birthday made me want to explore it. And so this is what I got.

I must say that I have been really enjoying this book, even though I have not devoted many hours of my life to biology - and my main focus is still in computer science. I particularly like the illustrations, most of which were (apparently) either hand drawn with watercolors (see the thumbnail) or rendered by a computer.

As this is my first book that delves deep into biology, reading it is a real perspective shifter an a half! I never considered the level of complexity one has to fight when dealing with biology at such a minuscule level.

Here is my favorite quote, taken directly from the book:

..................................Cells in our retina are filled with
arrays of opsin proteins for sensing light, light that is focused by layers of
eye lens cells packed full of clear crystalling proteins. Cells in our skin
spin enormously long strands of keratin proteins into hairs, and other cells
sense their slightest movement. These and other sensory data are transmitted
and processed by nerve cells that carry electrical currents propagated by
proteins and insulated by con- centric layers of lipid. Fine control of
movement is accomplished by an enormous skeleton of mineralized bone cells,
moved by muscle cells filled with proteins that do nothing but contract, all
glued together by connective tissue cells that built tough layers of sugar and
protein...........................................................

It is so beautiful how, with some imagination, you can picture the author taking you to every part of your body. Imagine just how complex that system has to be to work so well for such a long time and be able to sustain itself while running. It is also an amazing analogy I remember from the book..

...............................................Think about this feat for a
moment-it is remarkable. You can't take your cells to a shop for repairs, like
you would with a broken clock. Cells must make their repairs in place, without
ever disturbing the ongoing processes of living. Imagine replacing a worn fan
belt on your car, but doing it while driving down the road...................

Weekend Reseach

Sun, 12 Nov 2023 11:56:14 +0100

If anybody is going through this weekend endlessly searching for purpose, here is some material your brain might find appealing:

Write about what you learn. It pushes you to understand topics better: addyosmani.com/…
Detecting Exploits - Linux Logging with Auditd: youtube.com/…
Reading Linux v0.01: seiya.me/…
Rkhunter - Rootkit Scanner: wiki.archlinux.org/…
Trolling your neighbours using Iptables: ex-parrot.com/…
Algorithms for Modern Hardware: en.algorithmica.org/…
Miller in 10 minutes: miller.readthedocs.io/…
Hardware Security - Eldritchdata: eldritchdata.neocities.org/…

Wish you a wonderful day!

Black Clover & Japanese Language Immersion

Tue, 15 Aug 2023 16:49:55 +0200

Today I wanted to share my language learning experience of Black Clover. If you are a fellow learner of the Japanese language and would like to hear some feedback on this anime, this is the post for you.

I should point out that this is my first anime I ever fully watched with Japanese subtitles. And so, big thanks to Asbplayer and Yomichan for making this possible. Splendid tools for sentence mining.

If you do not know what they are, in short:

Yomichan is an extension which allows you to highlight Japanese words and show you their dictionary translations (alongside also provides amazing shortcuts for adding the word directly into Anki).
Asbplayer is an extension which allows you to insert custom subtitle files into a webplayer (also provides handy shortcuts for automatically inserting audio/screenshots into Anki cards)

Not only was watching anime with subtitles suddenly much easier, I could finally do real sentence mining with Anki and extract all the new words I wanted with the shortcuts that the two extensions provided.

The whole experience was super fun and engaging enough to make me say “oh come on, one more episode. *click*” (this is especially true because at some point I even started getting the jokes)

With all this said, it is totally possible that not everybody will enjoy the anime the same way as I did. Given the preferences, knowledge difference, etc. that we might have. But overall I recommend this anime to anybody who feels that they are at least N4 or better.

Now, what did I get from this anime?

Roughly 200-300 new words
Listening and reading skills improved a lot
Fun

Fun Spaced Repetition

Tue, 25 Jul 2023 16:23:26 +0200

Introduction

In this post I wanted to share some ideas about language learning gamification with my fellow internet readers. Why? because I think they are worth a thought or two. I believe they have the potential to improve the language learning field and make it more fun to learn languages (if done right). But honestly, not just the language learning field.. any field that can be studied through spaced repetition in an efficient manner.

My ideas revolve around an imaginary game that would implement spaced repetition in a fun and engaging/competitive way. The whole chain of thoughts about this started a year ago, when I wanted to build a fork of osu!lazer that would help you study japanese. I did not think of integrating any spaced repetition at that time though. I merely tried to replace numbers of each circle with random japanese characters before giving up.

But 1-2 months ago it struck me: “Why is not there still a game for studying kanji/words?”. Think about it, there is all sorts of games for the two japanese alphabets (katakana and hiragana). Both of them can be learned in a relatively short period of time. After you learn them you usually move to kanji or vocabulary building - the step that takes the longest (usually 3-6 years from what I have heard).

So why is every developer focusing on those two alphabets, that represent a mere 2-3% of the whole learning material (excluding grammar, language immersion, etc.)?

I say there should be more focus on the other 98% of the language - which is where the main problem lies.

Ideas

This is where the fun begins. It is time that we, as people, stand up and build something that will be fun and engaging.

It does not have to be osu! level addiction. It just has to be fun and keep the user coming back. Allow me to (finally) share some examples:

Game similar to Space Invaders where vocabulary words are falling from the top of the player’s screen. The player has to guess their meaning by typing the correct translation of the word, or picking a choice. If the correct choice is made, points are awarded. Else the player looses points.
Multiplayer website where a group of friends can challenge each other by doing reviews of spaced repetition cards. When a player selects a choice correctly, they have the freedom to select the question card for the next person. Whoever fails gets disqualified. Essentially creating a fireball game.
2D multiplayer open world game where players get rewarded by doing small routines like arraging foreign vocabulary with translations, rephrasing sentences, etc.
Uno (website) alternative where each card has a (spaced repetition) word attached to it. Essentially allowing players to match cards together by vocabulary as well.
Chess (website) alternative that allows players to combine attacks from points that they earn by selecting correct translations of foreign words that popup during gameplay.
(Feeling inspired yet? Hit me up!)

At this point, the only limit is truly the imagination.

Development

I am honestly surprised at the fact that nobody has built something like this so far. There is of course KanaInvaders, which is where a good part of my inspiration comes from.. but as I have said earlier, we have to focus on the other 98%.

I would be super glad to see more people open up to those ideas, team up, and create amazing open-source projects that will make learning so much more fun!

At the time of writing this post, I have started working on MonR (spaced repetition backend for games/apps), MonW (the first Unity example game that implements MonR), and some other projects that are yet to come on Github.

At this point, any help is indispensable - because I am afraid I will not be able to keep it up alone. Therefore, if you want to contribute, and you know you have some will power within you, I say do not hesitate to spread the word, hit me up, or do some passive contributions directly on the mentioned repositories.

Thank you. Cheers

Joyfulness With Language Immersion

Sun, 28 May 2023 12:59:12 +0200

In this post I would like to talk about one of the most (in my opinion) joyful moments you will ever get when doing language immersion.

What exactly inspired me to write this is the fact that I myself have experienced this 1 day before writing this article. For context, I have been trying to get a torrent set up on one of my VMs on which I usually host things temporarily, and decided to listen to some japanese music in the background since I knew that this was gonna be a long process.

Most of those songs were songs that I have not listened to in well over a year and completely forgot about them. But these songs (like any other song) had specific emotions and memories attached to them and relistening them not only proved to give me a big hit of nostalgia and flashbacks, but the fact that I was able to comprehend most of them was so amazing I could not believe what I was listening to (Blue Encount from 僕のヒーローアカデミア being by far the best example of what I could not understand a year ago).

For a second it seemed like I unlocked a new area of the song that was once hidden to me and completely out of discussion. What I was once listening to and “letting it go by, without thinking about it is meaning” as to say, was now being automatically converted in my brain. And this is the experience I am talking about. The only sign of improvement I ever get is this. And I am so thankful that I get it from time to time because it really keeps me going like nothing else.

“Oh,” you might say, “but surely you can see your progress and advancement over time as you start to notice that you understand more and more of the content that you absorb.” Well, that is actually quite false, in my opinion. As you advance in a language and learn new words day after day, the relative difference between what you knew 5 days ago and what you know now are so slim that you practically cannot see it. At the beginning though, those differences are quite large. As Tom Scott put it, “Going from 201 to 202 feels like a tiny change, but going from 1 to 2 is a doubling.” Although the topic of that video was not language learning, I honestly feel like it applies to language learning as well. That is why I get so happy and motivated when this occurence happens. It tells me that whatever I knew about Japanese last year is completely different to what I know now. Knowing that you are making progress is way better than having the idea that you are stuck in one place for the whole time in my opinion.

Thanks for reading this.

TLPI: Linux Signals

Sat, 29 Apr 2023 16:21:24 +0200

0 Introduction

I have started reading The Linux Programming Interface! And throughout the book I will be writing some cool articles regarding new things I learned. The book is being read in no particular order, so expect the articles to follow that non-orderness (if that is even a word). In this article specifically, however, I will be writing about signals. What are signals? How do they work? How to implement them inside my own program? and much more.

Note: If you want to follow along, this article is based on the 20th chapter of the book (Signals: Fundamental Concepts). I may add my own tips and lessons from time to time though.

1 Signals

In short, signals are software interrupts. During the program’s execution, if the program receives a signal, it will stop the program’s execution and finish some new and more important job. That job can depend on which signal was fired and what the program is set to do after receiving that specific signal.

“Ok, in what context is that useful?” you might ask. Well, a simple example might be killing a program through the shell. If you have worked with Linux for long enough, you might know that pressing CTRL+C kills any currently pending program that was executed from the shell. All the shell is really doing is waiting for keyboard input, and sending a specific kill signal to the program.

There is more signals than just the kill signal though (i.e. SIGINT or SIGKILL in many cases)

Usually, every signal has it is own default action that should be taken after the program receives it. But guess what, we can change it! That is called Signal Disposition. And we can change it to: func(int) SIG_IGN or SIG_DFL

func(int): could be a custom function that we want to execute when the signal is received.
SIG_IGN: just ignore the signal (i.e. no action for a specific signal)
SIG_DFL: execute default action of the signal (whatever it may be)

And we can do so, using either:

void (signal(int sig, void (func)(int)))(int);

or a more flexible/complex alternative:

int sigaction(int sig, const struct sigaction act, struct sigaction
oldact);

both of which are defined in <signal.h>

2 Sending signals

Signals can be sent using the following function.

int kill(pid_t pid, int sig); // send signal to a process int killpg(int
pgrp, int sig); // send signal to a process group

Or an alternative (in case you want to send the signal to the same program)

int raise(int sig); // literally the same as the line below kill(getpid(),
sig);

You might be already familiar with the program kill from the command line. And in case you are wondering.. well, yeah, they serve practically the same purpose.

Note: Just because they are named kill, it does not mean that they specifically have to kill a process. It is just called that way because originally you could in fact, only kill processes. But now you can send various signals with it (and also check if a PID is in use - more on that later).

3 Signal mask

What if we want to block a signal? Or just temporarily let the program know that we do not want to accept certain types of signals? In that case we use something called a Signal Mask.

You can use the following function to change/edit the process signal mask.

int sigprocmask(int how, const sigset_t set, sigset_t oldset);

Note: sigset_t is a type of data structure that can contain all types of signals. Imagine it more like a dictionary than a Queue or array where you can find multiple elements of the same signal type.

Hint: More information can be found here

If a signal of a specific type is being sent to a process which blocked that type, it will be marked as pending and will be delivered once the signal mask unblocks it (if ever).

If you want to view all the currently pending signals you can do so, using the following function.

int sigpending (sigset_t set);

Note: Yes, it does return a signal set, and so no matter how many pending signals of a blocked type you will send, they will still be counted as one and sent only once after they are unblocked. As I have said, this is not a queue, but more like a dictionary.. or.. queue where duplicates do not exist.

4 Pause

If you want to suspend the execution of the program and wait for signals, you can do so using the following function

int pause(void);

Note: from what the book said, yes, it is more optimal to use pause than to use a loop. Although I did not verify this in practice, I am giving it the benefit of the doubt. You can verify it yourself if you care that much about program timings.

Reflections Are Fun

Fri, 21 Apr 2023 17:50:05 +0200

Honestly, I have no idea if I am going to come off as a creep by posing this, but I think that reflections are ~~fun~~ scary!

I am not sure how many people are aware of this, but I am going to share it anyway because it is a thing I kindof like doing while being bored. One day, I was on the Internet seeing what new things I can learn and explore. I was getting bored. And suddenly I see an article titled “Glass Reflections in Pictures + OSINT = More Accurate Location. Now that, my friend, is something to fill my boredom with.

I instantly take a look at it and next thing I know I am amazed by it. Reflections are just so cool! To be fair, I think I have been using reflections way before that day even, but this article taught me something new. I have to pay close attention as well. Not just with pictures, but also real life!

Some great examples of what I am talking about:

The bus (at this point literally engineered to stalk others lol. Look out the window and you can see the phone of the person that is right in front of you.
My computer whose left side is covered with glass. If you come in my room, you may catch a frame or two of my monitors because of the reflections from the monitor to the glass of my computer to your eyes.
Eyeglasses (I think there was even a study where OSINT experts tried to recover X% of the user’s screen by just looking at the reflection in their glasses though a video call - was not able to find it unfortunately, but I remember the percentage was super high in some example rooms)

Outfucking All Cloud

Mon, 17 Apr 2023 18:29:38 +0200

Introduction

Lately, I have been facing a serious issue with my backup system. The problem was the following. I usually keep backups scattered across all of my disks in order to fulfill some basic availability rule. However, the problem arises when you notice that all of those disks are always connected to my computer, which does not have any lightning protection. And since I have been getting quite cautious about my spendings, I would rather avoid buying a surge protector of some sort. And so, in case of a lightning strike, all of those backups will be gone. Parts of the computer included. Therefore, the most elegant solution to this problem? Rclone!

Outcome

Let me explain my solution. If you read my Secure Linux Setup article, you may have noticed I have a strong will to protect my data. And so, you might expect me to be all against cloud. And to be fair, I surely am. That is, when I serve them raw data heheee

Problem is, I cannot afford a server at the moment. And cloud really seems like the only option to choose for high availability. Therefore, I did exactly what you would expect from a Linux security-conscious person o.o

Take my files, zip them, encrypt those fellas like no tomorrow, and finally send them over to the big tech.

That is right, I am encrypting all my data before sending it online. Crazy right? Who would have thought? No but for real, I do not know why I did not start doing it before. For the ones that want even more security over their data, you may as well just encrypt it multiple times with different keys before sending it online.

/bin/bash

A couple of months ago I saw somebody mention it inside one of the Linux servers that I am in. I did not give it too much thought at that time, I thought that local backups were all I needed to stay safe. But after realizing the problem (two weeks ago), I started digging into the tool and realized how cool it actually is. All I had to do was create a project inside the Google API console, create a basic consent screen, generate a client ID & secret, and BOOM! The dopamine hit I was looking for!

I was able to mount my Google Drive as a “disk” onto my Linux filesystem. That inspired me to create another backup script, which would serve the cloud with my encrypted data multiple times a day.

I am not joking when I say that this tool is fucking awesome! Just look at what it takes to mount my Google Drive to /mnt: rclone mount main_gdrive: /mnt

For the curious individuals, this is the guide I followed, and this is my new backup script

Hint: It is recommended to encrypt your Rclone config (~/.config/rclone/rclone.conf) also. Fortunately, that functionality is already provided by Rclone whenever you use it so you do not have to encrypt/decrypt it on your own. On the other hand, you may choose to do so to have more control over what algorithm to use when encrypting the config. But for more security, please encrypt your configs, since they usually hold all sorts of sensitive information (especially in Rclone’s case)…

Note: It is likely that I will be forced to change my backup scripts because of obvious privacy reasons. But I hope you get the idea.

Resources

Fri, 14 Apr 2023 20:46:19 +0200

English Youtubers

Melodysheep
- Please, really consider watching his content. It is pure gold. No questions asked.
Veritasium
SomeOrdinaryGamers
Computerphile
Numberphile
PowerfulJRE
Jordan B. Peterson
Lex Fridman
LiveOverflow
BugsWriter
Luke Smith
NetworkChuck
Mental Outlaw
Ben Eater
Andreas Kling
Linus Groh
Jdh
CQURE Academy
Seytonic
Write your own Operating System
Zanidd
Guided Hacking
TED

Science

Feynman Lectures of Physics, Mathematics and Astronomy

Favorite Japanese Youtubers

IT blogs

Old-Fashioned Internet

Linux & Unix

Research Paper Resources

Psychology

Changing Minds

Talks

Secure Linux Setup

Wed, 12 Apr 2023 11:53:13 +0200

This post is dedicated to the ones that have been in the Linux game for years now or have just started experimenting, but do not have a very secure system. But wait, what do I mean by secure? Well, a lot of factors come down to how secure your system is. And by no means I am claiming that this will be a guide to perfect security. Let alone perfect anonymity. That is simply because you cannot be a hundred percent secure and anonymous online. It is a fact. What I want to teach you with this post, is how to increase your anonymity. How to increase your security. How to make your life easier in case something bad happens to your data.

Throughout the post you may notice how nicely all the security practices connect. One being dependent of the other. Creating a nice security framework for your computer.

First off, you have to understand how important data is. You need to have a reason to hide or protect it. The reason usually comes after some time when you realize how much surveillance is happening on a tick-per-tick basis. The possibility of you giving a shit about your data can go even lower if you are still a teenager. After you get a job, mature, realize how cruel the world is, you will start caring much more about freedom in general. And so should you about Internet freedom, privacy, security, etc.

1 Passwords

Let’s talk ~~basics~~ passwords. They are not that simple to deal with. I know that. We all do. And so, let’s facilitate it to a concept that you are already familiar with - Password Managers. No, I am not going to be selling you a Password Manager, or telling you about this awesome service that helped me stay secure for the past X years. Keeping your credentials on a third-party service is not even a good option - as you can see here. I am going to give you an open-source tool that has made my life eaiser when dealing with passwords. You are free to find alternatives, but for me, this was the best I was able to find.

It is called KeePassXC. It is cross-platform and you can run it on Linux - which is exactly what we needed. Passwords are stored in a file called a Database which contains groups. A group can either contain more groups, or simply passwords. The whole database is by default encrypted with the industry-standard AES256 and a key provided by the user (make sure it is a long one that you can remember).

For more security, the user is advised to distribute passwords across multiple databases. For example:

VMs database: passwords regarding all VMs on the user’s computer (VM’s encrypted disk, users, etc.)
Hardware database: passwords regarding user’s hardware (encrypted USB keys, hard drives, etc.)
Social database: passwords regarding social media
Finance database: passwords regarding finance (bank accounts, crypto accounts, etc.)
Work database: passwords regarding your work

2 VMs (Virtual Machines)

Virtual machines are so underrated for desktop usage. And that is sad because they are so flexible and useful when it comes to security! Example of a VM security framework:

Gaming VM: strictly use for gaming (#moreinfo)
Work VM: strictly use for work stuff
Social VM: strictly use for social media
…

Hint: notice how password databases can now be isolated across your VMs. So each VM has only the passwords it needs.

3 Backups

Backing up important information is very important. Especially if your income depends on it. This might include the password databases I have mentioned earlier, high importance VMs, pictures, projects, work, presentations, plans, goals, etc. First, if you have some money to spare, invest 100-200 dollars into backup disks because you are gonna need them. Else you can simply try to get them over a longer period of time, or backup your things to USB sticks. After that, you have two options:

Find some backup tool that does all the hard work
Script your own tool - giving you more freedom to customize the backup system

In my case specifically, I like designing the structure of my computer. And so, I created my own script. You can use it if you want. With that step done, you have to automate the process of calling this tool X times per day. X may depend on how you design your backup system, but for me 3 to 2 times each day is more than enough.

Hint: such automation is usually achieved with cronjobs.

Another cool thing you can do is self-host a server and send backups over there. Or even better, agree with more people to host a server somewhere and each have your own copies over there. Of course, do not forget about encryption and access permissions ;)

Hint: backups over network can be achieved with rsync or rclone as far as I know.

4 File Recovery

Be careful how you delete files. Especially if you are going to be selling your disk or something. Data may not be 100% deleted like you think it might be. That is why I never buy/sell used disks. Because it is just not worth it. For the sake of security, whenever you delete a file, it usually just gets flagged as “NEW DATA, OVERWRITE ME PLEASE”. And so you have not actually deleted the contents, you have just removed it from the filesystem’s structure and told it that what was once a file is now usable space waiting to be overwritten.

And guess what, that data which has not been yet overwritten can be read. And pretty easily I might add. #moreinfo1 #moreinfo2

But how do you make sure it is actually deleted? Well, a good tool to look into is shred (Securely Wipe Disk)

Hint: a cool one-liner I have learned recently from Luke Smith is dd if=/dev/random of=/tmp/erase_secrets; rm -rf /tmp/erase_secrets. The command fills the disk with random data (overwriting all the not-fully-deleted-data and then deallocates the file from the file-system).

Books

Sun, 09 Apr 2023 00:46:11 +0200

Everything started with walking, understanding what people around me were saying, recognizing the dangers that are out there, learning cultures, to eventually being broad to an institution that is supposed to teach me about life - school. That is where I was forced to read. Everyday, non stop, till I reached that deadline and had to write a summary of what I learned during that period. “Is this what life is all about?” I asked myself. “So I will be forced to read books and study topics that I have never seen being used in real life for the next 9 years (minimum)?”

I have passed the first 9 grades studying my state, basic algebra, sociology, basic law, making a small website, biology, etc. etc. Yet if I was to be tasked with a minor issue in real life, I would find an excuse that would delay my action or completely throw the problem out of my life altogether. How is it, that most kids nowadays hate learning? The second they hear the word math their first emotions are suffering, pain, and boredom.

We went from encouraging the contributions to humanity to making it seem like it is the dullest activity someone could be doing to keep themselves busy. In my opinion, we have created that by constructing a wrong educational system over time and letting social media companies get away with selling their social platforms to us. “What does social media have to do with learning?” you might ask. Let me reply to that with “When iss the last time you were in the middle of studying something very important, got frusturated at it, and decided to distract yourself for a little while?”

The majority of us does that on a daily basis and we cannot deny the uselessness of social media. No matter how much you try to hide it, you will know that most of it does not provide any sort of value whatsoever and is just a time killer engineered in a specific way to extrapolate as many minutes of your attention as possible.

“Oh, but you can educate yourself through social media” - Ignoring sites like Youtube, how in world do you think that those 200 characters that you can fit into your post will give anyone a good understanding of any topic.

“Oh, but I need to talk to my friends” - Yup, ever heard of SMS before? Look, I would totally understand.. if it was just ONE application. Why the fuck does the majority have 4 platforms that all provide the same god damn service. Some alternatives to SMS may include email, IRC, self-hosted chat server (if you know what you are doing), matrix, etc.

Over the course of my teenagehood I realized how strongly this can impact one’s thinking abilities. In just a span of a year I turned my brain upside down and had completely the opposite opinions from what I used to have before. How did that happen though? Well, I deleted a good part of the social media I used to use, I started investing more time in myself, I started talking and listening to myself, I started seeing failure as the potential to grow rather than what I was taught at school (failure = failed individual), and what I noticed in the last 2 to 4 months was what I now call The Deception of Everything.

Biology, Sociology, Psychology, Mathematics, Physics!! They are all connected with what I initially thought was the only field I would ever truly admire and love! Computers! They are all interconnected subjects! A firing of neurons finally made sense! What is so special about all of those subjects, and.. any subject for that matter!! There will always be a reason people have invented it and if I had to study it in school, there was probably a good reason. Because it is all just connected and interesting! “No shit” you might think, but you see, that is the problem. The fact that most of the people around me have not realized it by now scares the shit out of me. Or at least.. that is how it seems.

The mentioned event also occured in the most perfect timing it could have. As I realized it, I was also in the middle of figuring out that books are way more interesting than what I was taught at school. Here, I am not forced to learn anything, I do not explore because I have to. I am doing it because it is so fun it makes me start laughing by just thinking of it. I felt such an idiot to finally realize how stupidy interesting it actually is I stayed there in my dark room for 5 minutes laughing. And as I am now scrolling through the Amazon’s homepage of books, I cannot help myself but to smile everytime I see a book that sparkles my interest.

About & Contact

Sat, 08 Apr 2023 19:24:58 +0200

I am Kevin Jerebica. I live in Slovenia and I have a strong passion for programming, cyber security, data protection, languages, reading and learning about the world. I study Japanese (or at least I like to think so). I deeply care about software freedom and so I primarily like to deal with free and open-source software solutions, though I do believe in healthy business practices as well. Many of my ideas and goals come from my love towards space. I cannot stop dreaming about it. I have a general appreciation for art and literature.

Public Knowledge Archive: http://archive.0xdeadbeer.xyz/
Public Key: http://archive.0xdeadbeer.xyz/public-key.txt
Email: jerebicakevin@gmail.com
YouTube: @0xdeadbeer
Github: @0xdeadbeer

Switching to Linux

Sat, 08 Apr 2023 15:44:15 +0200

Going from hearing about this word “Linux” from one of my computer geek friends, to installing it as my first VM, to making the switch, to then spread the word about how cool it is and the practical benefits that it can provide. I love Linux! And I got tied into it is ecosystem so hard that going back to Windows would instantly harm my productivity and make everything much more difficult. Ignoring the war of Windows - MacOS - Linux, I am going to talk about my switch. How did I switch to Linux? How can YOU switch to Linux? What is the safest way to switch without losing all of your data that you accumulated over the years?

Before switching, here is something you have to know. Linux will be different than Windows and even if you think you wll be okay without Windows because of XYZ (say for example: you are a software engineer or something and know your way around computers), you must accept the fact that there will be a learning process lying ahead of you. And if you wll skip it, it will most likely end badly. Keep your curiosity and goals up and you might just make it passed the 5 reinstalls you are most likely going to do before getting quite comfortable with Linux.

Much of the applications you used on Windows will have different names on Linux, and at some point or another, you will have to get familiar with the terminal. So the sooner you get used to CLI (Command Line Interface), the better. Watch out for the commands you copy-paste into your terminal, especially at the beginning. Not just because someone might want to steal your data, but also because you might end up breaking your computer accidentally. Acknowledge that you are going to make mistakes in the future and start making backups of your files as soon as you know you are storing valuable information into your disk. That was (and still is) one of the most fun challenges for me personally. I love designing a whole backup system for my Linux and I am constantly updating it as my demands are slowly shifting. For example: recently I have been introduced the idea of file recovery - and even though I knew you could technically read deleted files off the disk it did not scare me that much. But now that I know how easy it is, I am paying a lot more attention to how my backup scripts copy files from one disk to another. And that is the beauty! Using Linux will be so cool you cannot even imagine! The deeper you will go the more interesting it will get!

With that said, you might think that my switch was flawless? Pfttt, do not make me laugh. Did I ever tell you about that one time when I selected the wrong disk for installation and ended up losing 1TB of data? Not to mention all the hiccups I had to deal with, such as dependency hell, grub booting me into a shell rather than a display manager, Windows deciding to fuck up my Linux installation (that is when I was still dual booting it), and so on. In short, it was a pain to get where I am today. And that is what taught me Linux. Making mistakes is the key to learning.

Thankfully, after 2-3 solid years of experimenting with Linux, I can say that I am pretty stable. I know my way around Arch quite well, but I am not negating the fact, that I still have a lot to learn. There is probably tens of thousands of tools in the Arch Wiki that I have not heard of. And if you happen to know some cool tools, for crying out loud do not hesitate to share them online. Linux-passionates will love you for sharing those incredible resources, or for just having the thought of sharing. And so, that is what I want to achieve with this blog. Sharing is carying.

Good Content

Sat, 08 Apr 2023 00:33:53 +0200

These days finding good content on the internet is a real challenge. A lot of the times I find myself staring at the monitor wondering what I should search for, just to find that juicy content that goes into the detail of how something works, and also does not annoy me with advertisements, newsletters, and the like.

The original idea for the internet was really simple, a place for folks to share, store, and find information. It was no more than static websites serving HTML and CSS. Now that we have big tech tracking us on practically every corner of the Internet, it is really difficult to find a clean resource you could say. Search algorithms prefer clicks, revenue, advertisements, and beauty over simplistic but gold content.

If you are a fellow searching for structured content and want answers RIGHT NOW rather than in the next 10 minutes, here is what you have to know. Unless you are a person with serious mental diseases, the following applies to you. Your brain is made to be flexible, to adapt to new environments. Whether they are filled with Netflix & Chill, reading books, doing fun activities, interacting with people, or anything else. And your brain may well have a favorite learning style, but that does not mean that you should limit yourself to just that learning style. In fact, you have to challenge your brain to step out of its comfort zone and learn, think, adapt, and consider. This is why I think learning styles are nothing more than temporary classification of how your brain is preferenced to devour information from the outside world.

I only realized this after coming into IT, at the beginning I thought that learning was going to be as simple as a watch & learn process. Well, after 5 years of being into IT, I can safely say that I was wrong. Most learning requires the will to read, explore, dig deeper, and most importantly.. experiment!

If this seems new to you, or even strange, know that it will show up sooner or later in your career and the sooner you start experimenting, the easier and more fun it will be! So why not start today? Get yourself a damn book, go read some research papers online, share, learn, adapt, wonder, and grow.

I wll be leaving you with some good resources that I accumulated over the last year.

More resources are available in the resources page.