Trustin Lee

Feel free to connect with me if you're at OSS Japan 👋

Hi all, We are happy to announce the release of #netty 4.1.116.Final. This is a bug-fix release, please check our release announcement for all the details: netty.io/news/2024/12/1…

@trustin Unfortunately it was included as well 🤦‍♂️

Sitting in a Lyft with the driver playing Xmas songs…. Need to stay strong 😂💩

I am proud to share that #netty was selected by @SpotifyEng to receive their #OSS fund this year. This wouldn't have been possible without all the help of our community. Thanks a lot to everyone and of course @SpotifyEng itself: engineering.atspotify.com/2024/11/congra…

@normanmaurer You now should teach me, buddy! Pretty sure there are a lot to learn from you 🙌

@trustin Thanks a lot … without you I wouldn’t be where I am today. You teached me a lot over the years

10 years at Apple 🍎… can’t believe it’s been so long…. Made a lot of friends and worked on interesting things. 🎉

Please share this far and wide. As far and wide as you can. NIST Password Guidelines for 2024 are in the process of being updated. This is a HUGE pet-peeve of mine (when vendors in particular are still operating like its 2017 and keep changing passwords every 60 days, STOP DOING THIS, it's outdated and has been shown to put you MORE at risk than less -- NIST explains why it does in this document, meticulously outlining user behavior**) so I'm sharing this in the hopes all of you will pass it along to your bosses. The Special Publication series governing passwords is SP 800-63 "Digital Identity Guidelines". The 2024 version is 800-63-4. Here: pages.nist.gov/800-63-4/ The companion docs are also on that link. They are 800-63A, 800-63B and 800-63C. These are different documents for different scenarios in play at your org. The previous update was in2020. The changes in the 2020 version from the 2017 version were numerous but one of them was that the password verification method should NO LONGER require passwords be changed at specific intervals (i.e. every 60 days) but in the following circumstances instead: 1. After a breach/compromise 2. User request 2024 repeats this and adds a bunch more guidlines but here is a screenshot of page 13 of the new 800-63-4 (note the # 4 after it) which outlines how your systems should now and moving forward, be handling passwords. This goes for Active Directory, too. All your systems which have passwords should align with these guidelines provided there isn't another standard or framework you must adhere to which overrules this. Most frameworks, however, have moved away from arbitrary password resets and complexity rules. **We cybersec researchers and hackers use wordlists from breaches in a variety of different ways. Hackers use them in tooling to crack passwords whereas researchers use breach dumps to see the kinds of passwords users are creating and the psychology behind them. Using complexity rules gets you the user psychology of: Password1 Password2 and so on Use phrasing instead and allow for spaces, which is important. Humans type phrases with spaces. They also mention phish-resistant methods and most vendors are on-board with MS going to be turning off all Legacy Auth next month, across all free accounts and tenancies. I'm so excited for the new changes! Ok I'm off my soapbox. Share the love! Thank you!

@tison1096 Just need to find some time... 🥲

接了一个 os-maven-plugin 在 Maven 4.0 上兼容的需求，back patch 一下 .. 其实我更希望跟上游 @trustin 合作反正我时不时都会看一遍所有 maintain 的项目。fork 并不是一个好的选择。 github.com/tisonkun/os-de…

@WilbertRoget @Pilestedt @ArrowheadGS @PlayStation Where can I purchase and download it, instead of streaming it? Wanna cherish this awesome soundtrack in my personal FLAC collection! Bungie sells and distributes their soundtracks in their web store for an instance.

...and how it's going 😀 At last, the #Helldivers2 #gamemusic OST is released on all platforms! Huge thanks to @Pilestedt and @ArrowheadGS for bringing me on this journey, Nashville Scoring Orchestra and all our soloists, and @PlayStation for helping bring the score to life.

@lobaorn @shipilev @forked_franz @tstuefe @volker_simonis Thank you, @lobaorn ! It was never possible from all the users that contributed by asking questions and reporting bugs ❤️

The work on the JVM ecosystem always amazes me, especially how much someone has solved the problems you may be facing. In this case, I tip my hat to @shipilev @forked_franz @trustin @tstuefe, and @volker_simonis ...

An awesome encounter with @cra in Japan!

@rakyll Dark mode is so 80. Using it only for terminals 😝

Unpopular opinion: Dark mode is cool until you turn to your 40s.

🚀 It's live: @trustin's Spring I/O talk about Armeria's powerful Spring Boot integration! Learn how Armeria simplifies your architecture by enabling seamless migration between different protocols unlike any other youtu.be/GTITs9lJY4U #gRPC #ApacheThrift #GraphQL #Java #Kotlin

Armeria 1.29.0 has been released! 🔧 Enhanced HTTP/JSON to #gRPC transcoding with custom method support 🧹 Configurable multipart temp file removal strategy 🌀 Kotlin Coroutines-based HTTP service #microservices #Kotlin armeria.dev/release-notes/…

I'm in Berlin right now for the Open Source Fair on 14th. Find me at the @armeria_project booth or feel free to DM me!

@joschi83 NoMachine is pretty good. Cross-platform and feature-rich.

@normanmaurer @java @netty_project @armeria_project @ljcjug Sure thing!

@trustin @java @netty_project @armeria_project @ljcjug Enjoy! Hope to be able to catch up in person again at some point

🛬Arrived in beautiful London last night! ☕Please feel free to DM me for a coffee chat on @java @netty_project @armeria_project or even a tech talk session. 🗓️I'll be here until 12th. /cc @ljcjug

Great to see you @trustin my fellow Korean @Java_Champions again at @spring_io Trustin talking @armeria_project and @springboot