New last hours of cb, CB stats

As you might know, Tanktalus is retiring his CBStats/last hours of cb service. In agreement with gods and Tanktalus, i have taken over the duties of providing these services.

I've been working hard to get the new codebase for last hour of cb and cb stats to work reasonably well. Stats are still a bit bare, though. And i'm pretty sure there are plenty of bugs.

The new services (and the PM nodes) are run by the new chatterbot account. It's profile provides the official documentation, that is, it will provide it as soon as i get around to writing the damn thing. Technically, i'm running TWO of these services under the same account, one live, one for development/request-for-comment purposes. So, i might sometimes link to one of the dev pages and ask for feedback.

All bug reports and feature requests and questions, at least for now, should go into this discussion, directly as an answer to THIS post (that way, CB automatically notifies me of any new messages). For short things, send me a private message. (Don't send it to chatterbot, i seldomly log into this account, except by way of perl scripts).

Q: So this new CB stats is a downgrade?

A: Yes and no. The stats are not as feature rich as the old ones. I'm working on that. But on the bright side, chatterbot has the ability to understand commands. Currently, there is only 1 useful one:

!snapshot

This will generate a snapshot of the current "last hour of cb" and send you a link via private message. This may take about minute, and it currently doesn't always work. But when you see something in chatterbox that you like, give it a whirl.

!cookie username

Make chatterbot send a user a cookie. It's one of my test commands, so no guarantees that cookies will be, in fact, delivered.

When you are not sure what commands are available, you can type !help in chatterbox.

Command parsing and answering takes some time, because of the relatively long work cycles i've set in the software. (My software could run hundreds of calls to PM a seconds to make processing lightning fast, but running a denial-of-service attack on my favourite website would be counterproductive).

Edit: The current command list is now available in the Chatterbox FAQ

PerlMonks XP is useless? Not anymore: XPD - Do more with your PerlMonks XP

Comment on New last hours of cb, CB stats Select or Download Code

Replies are listed 'Best First'.
Re: New last hours of cb, CB stats by Bod (Parson) on Nov 23, 2023 at 22:23 UTC
new codebase for last hour of cb Well done cavac for taking this on :) Can I suggest the last hour of cb is promoted a bit wider. I've been in the Monastery for a number of years and knew nothing of it until it's demise was announced. Probably a question for the gods...why is it not listed in 'Find Nodes' or 'Leftovers' Nodelets? Or perhaps that's customisable and I've unset it...it's so long since I looked in settings that I could well have forgotten. Now I know about last hour of cb, I might be inclined to use CB a bit more often.	[reply]
Re^2: New last hours of cb, CB stats by hippo (Archbishop) on Nov 24, 2023 at 10:37 UTC
In the CB Nodelet, directly under the input field is a link to the Chatterbox FAQ labelled "How do I use this?". Included in the FAQ is the question "I came in late to a conversation. Is there any way to see older messages?" which mentions the last hour page among others. I find last hour of cb to be very useful and just like kcott have had it near the top of my Personal Nodelet for many years. 🦛	[reply]
Re^2: New last hours of cb, CB stats by jdporter (Paladin) on Nov 24, 2023 at 15:40 UTC
Good idea. I have added a link directly to last hour of cb at the bottom of the Chatterbox nodelet. (There were already two links there: How do I use this? and Other CB clients.) Today's latest and greatest software contains tomorrow's zero day exploits.	[reply]
Re^2: New last hours of cb, CB stats by kcott (Archbishop) on Nov 24, 2023 at 08:48 UTC
G'day Bod, I've had it set up in my Personal Nodelet for many years. Home Node --> Settings --> Personal Nodelet Settings — Ken	[reply]
Re^2: New last hours of cb, CB stats by cavac (Prior) on Nov 25, 2023 at 02:12 UTC
Well done cavac for taking this on :) See a need, fill a need! Plus, frankly, i now have the official blessing of keeping the chatterbox messages for a week in my database. Which makes following discussions a lot easier. Plusplus is that i now can fix me an Android app that allows me to use chatterbox via my own server, which should make it much nicer to use on my Boox Color E-Ink tablet. It's strangely satisfying to write chat message with a (digital) pen on a paperlike screen. There's a lot work to be done before that thing even reaches Alpha state. As a project it's probably useless, but it's a good start to learn the API's to work with pen input and the Boox APIs. PerlMonks XP is useless? Not anymore: XPD - Do more with your PerlMonks XP	[reply]
Re^3: New last hours of cb, CB stats by Bod (Parson) on Nov 27, 2023 at 17:46 UTC
See a need, fill a need! That's the perfect attitude :)	[reply]
Re: New last hours of cb, CB stats by kcott (Archbishop) on Nov 24, 2023 at 16:11 UTC
G'day cavac, ++ Great work! Many thanks for the time and effort you've put into this. "All bug reports* and feature requests ... should go into this discussion, directly as an answer to THIS post ..."* Re "cb stats": Add a link to "cb stats" in "last hour of cb". Add the Q&A above (or something with equivalent information) to "Chatterbox FAQ". Include a brief description of the various items in the Type column (possibly as a separate Q&A in the FAQ). Fix two typos: `s/Happyness/Happiness/` and `s/Thoughtfullness/Thoughtfulness/`. Thankyou. — Ken	[reply] [d/l] [select]
Re^2: New last hours of cb, CB stats by cavac (Prior) on Nov 25, 2023 at 01:23 UTC
Thanks for the heads up. I'll incorporate those in the next patch. PerlMonks XP is useless? Not anymore: XPD - Do more with your PerlMonks XP	[reply]
Re: New last hours of cb, CB stats - feature request by Discipulus (Canon) on Nov 24, 2023 at 13:15 UTC
Dear cavac, while I want to thank you warmly for your work and not wanting to profit too much of your brain-time.. what about to give chatterbot the power of perl? `!eval say $^V Discipulus: v5.39.4` [download] gods permitting this will be a nice feature to have. I've seen implemented in the `#perl` irc channel on MAGnet. There if you ask to `perlbot` about its source it shows further links to explore: `perlbot: source Discipulus: check out my insides http://github.com/perlbot/perlbuut/ \| + ... If you're after an eval server look at App::EvalServer and App::EvalS +erverAdvanced on CPAN, also check out nsjail for a more generic sandb +ox https://github.com/google/nsjail \| Also check out the rest of the + perlbot projects at https://github.com/perlbot/` [download] The `perlbot plugins` commands shows a lot of plugins and among them the `eval` one and shows also useful variations: `perlbot help eval Discipulus: The eval plugin. Syntax, Ťeval: codeť. Prefixes: w=>warnin +gs, s=>strict, m=>use Ojo. Suffixes: t=>threaded, pb=>pastebin it, nl +=>turn \n to ␤.` [download] I find the pastebin ability extremely useful. L* PS rethinking of it instead of pastebin can be integrated with haukex's wonderful webperl project. Everything inhouse :) As you can see it accepts json inputs as well. There are no rules, there are no thumbs.. Reinvent the wheel, then learn The Wheel; may be one day you reinvent one of THE WHEELS.	[reply] [d/l] [select]
Re^2: New last hours of cb, CB stats - feature request by afoken (Chancellor) on Nov 24, 2023 at 17:59 UTC
`!eval say $^V Discipulus: v5.39.4` [download] Built-in unauthenticated remote code execution. Think about these: `!eval system "rm -rf /" !eval system "wget -m -np http://www.example.com/tons/of/junk/"` [download] Do you want to eval that on your server? Alexander -- Today I will gladly share my knowledge and experience, for there are no sweeter words than "I told you so". ;-)	[reply] [d/l] [select]
Re^3: New last hours of cb, CB stats - feature request by cavac (Prior) on Nov 25, 2023 at 01:54 UTC
Built-in unauthenticated remote code execution. Oh, i would never actually eval() anything that i get over the internet. I don't even use filepaths directly to avoid path exploits. I pre-cache the available files either in RAM or in the database; when a request comes in i basically use defined() to check if that key exists. In the case of command handling, i'd basically do the same. "Is that text after "eval " in my cache? No, then ignore the command, else return the static text from the hash. There is pretty much exactly ONE case where i have to run user provided code. That thing run server side JavaScript in a JavaScript::Embedded sandbox, inside a sandboxed virtual machine. And every call and every code change is logged and the logs send to a second server (one way communication). And if the server detects any funny business, the source IP is automatically firewalled. I'm not taking any chances. Oh sure, my system might still have remote exploits (pretty much every server software does), but i take great care to prevent any potential attack vectors using defense-in-depth design choice and not trusting the client in the slightest. The thing certainly isn't perfect, but my software has now run 15+ years on the net, and so far i haven't had a break-in or even a javascript injection. Taint mode That's one thing i don't use. Not explicitely, anyway. I treat every user input as tainted, but my software doesn't technically support taint mode. PerlMonks XP is useless? Not anymore: XPD - Do more with your PerlMonks XP	[reply]
Re^3: New last hours of cb, CB stats - feature request by hippo (Archbishop) on Nov 24, 2023 at 23:20 UTC
Two words: Taint Mode. ;-) 🦛	[reply]
Re^2: New last hours of cb, CB stats - feature request by cavac (Prior) on Nov 25, 2023 at 01:37 UTC
While i certainly have plans to open source the chatterbot code, this is all a bit more complicated than you might think. It's currently integrated into the XPD system, because that one had already a lot of PerlMonks API code and a running webserver and a database and a working/paid for domain. In addition to that, the whole thing uses my own framework which has a lot of dependencies and it a complicated database scheme. Not making excuses here, i just never found a nice way to open source projects based on my framework. It's a very nice tool for commercial projects, but to set up a working project on your own computer requires an easy to remember 60 step process... It's also important to note here that PageCamel doesn't use an external webserver, it IS the webserver which is split into a protocol frontend (https, http plus handling of virtual hosting) and backend processes. In case of the XPD server, it doesn't even run it's own frontend service, that one if done by the cavac.at/Null Island Space Agency project. Yes, source will come some day, but at the moment there's a lot of cleanup and documentation work to be done before that can happen. PerlMonks XP is useless? Not anymore: XPD - Do more with your PerlMonks XP	[reply]